firefox.settings.services.mozilla.com/v1/
143.204.55.27200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 143.204.55.27:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 99b7d23c1748d0526782b9ff9ea45f09
eadd801a3ba2aa00632c6fb52e1f9125bd6d5b4f
48f81668f76955320480b484138aebdad5d03c471036b4449c737aca1ecab08e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Type, Content-Length, Backoff, Retry-After, Alert
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Wed, 14 Sep 2022 10:09:30 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 475d4ecb64796af058573c6f1048e898.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: h6x4sO-j7uR46OLgT51YNUGV9_7n1O8VvSktKg_DMSn8zffowqiXAg==
Age: 2268
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash be88d3e043e3b95b52e41812e50fb634
0318ba1ce487817ea7cba61dd9413bed29213800
b5f178d23e633283f226cca7a9ae79b01e6cab2299ff7065c980d3a9953212fd
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B5F178D23E633283F226CCA7A9AE79B01E6CAB2299FF7065C980D3A9953212FD"
Last-Modified: Tue, 13 Sep 2022 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11802
Expires: Wed, 14 Sep 2022 14:04:00 GMT
Date: Wed, 14 Sep 2022 10:47:18 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain
143.204.55.25200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain
IP 143.204.55.25:0
File type PEM certificate\012- , ASCII text
Hash 742edb4038f38bc533514982f3d2e861
cc3a20c8dc2a8c632ef9387a2744253f1e3fdef1
b6bfa49d3d135035701231db2fffc0c0643444394009a94c6a1b4d829d6b8345
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 20 Aug 2022 23:18:05 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Wed, 14 Sep 2022 04:35:16 GMT
etag: "742edb4038f38bc533514982f3d2e861"
x-cache: Hit from cloudfront
via: 1.1 142be88a35733307a5e7de05da0a20b8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 8rp5L1UEB-dIOTaDf53hh-R6Ct_EQu7MWfhqfiKubxHxqiqMg8I5_g==
age: 22323
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 14 Sep 2022 10:47:18 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
143.204.55.27200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 143.204.55.27:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Date: Wed, 14 Sep 2022 10:03:22 GMT
Cache-Control: max-age=3600
Expires: Wed, 14 Sep 2022 10:03:50 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 6cb1d4b545e7beb4ead790454f4807c6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: EU5Eh37cHxh0nhi0rriYRZW8DBvjMjx0sZny_wJYPy1ky6Mf9KX3Yw==
Age: 2637
regio.brecht-caravan.de/
91.250.114.206301 Moved Permanently 0 B IP 91.250.114.206:0
ASN #8972 Host Europe GmbH
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Malware
GET / HTTP/1.1
Host: regio.brecht-caravan.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Wed, 14 Sep 2022 10:47:19 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Redirect-By: WordPress
Location: https://regio.brecht-caravan.de/
X-Powered-By: PHP/7.3.5, PleskLin
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash d3ac56507d17ffff5e8b486406985d68
17d26336cd8ea65af3f23db166945f1b3fbbfbab
e7e321340eed681c1269f715b0214e1511d5762fffbe930e7c157b800afa9a39
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4843
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 14 Sep 2022 10:47:19 GMT
Last-Modified: Wed, 14 Sep 2022 09:26:36 GMT
Server: ECS (ska/F71A)
X-Cache: HIT
Content-Length: 471
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 56c10572b63e1282a6069a931c041b6b
96018bbe9b8b993ff28b693810aabb36f2ccf7cb
db9225838b9fd427caf303ed127b6410929f23213cf719311db6fc5663823ca5
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DB9225838B9FD427CAF303ED127B6410929F23213CF719311DB6FC5663823CA5"
Last-Modified: Tue, 13 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21594
Expires: Wed, 14 Sep 2022 16:47:13 GMT
Date: Wed, 14 Sep 2022 10:47:19 GMT
Connection: keep-alive
push.services.mozilla.com/
52.88.220.109101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.88.220.109:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: Irtb0Z7CoYJy8bIKw7ESwQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: +EFJpGYmYdAfaQlEFzIlEZ/fNHI=
regio.brecht-caravan.de/wp-content/themes/Getblue/assets/css/style.min.css?ver=6.2.3
91.250.114.206200 OK 177 kB URL HTTP/2 regio.brecht-caravan.de/wp-content/themes/Getblue/assets/css/style.min.css?ver=6.2.3
IP 91.250.114.206:0
ASN #8972 Host Europe GmbH
File type ASCII text, with very long lines (65536), with no line terminators
Size 177 kB (177090 bytes)
Hash 1ff01c0380d8f01bb2372a2133a73706
2029a252b786b270b005ffee17f131e9409ba7bd
3e431414a23b4e99994ee982a3fc47a01dfd07f2df55f08f313e993af542ebbc
GET /wp-content/themes/Getblue/assets/css/style.min.css?ver=6.2.3 HTTP/1.1
Host: regio.brecht-caravan.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://regio.brecht-caravan.de/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 14 Sep 2022 10:47:19 GMT
content-type: text/css
content-length: 177090
last-modified: Tue, 10 Nov 2020 15:44:34 GMT
etag: "5faab562-2b3c2"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
regio.brecht-caravan.de/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
91.250.114.206200 OK 11 kB URL HTTP/2 regio.brecht-caravan.de/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP 91.250.114.206:0
ASN #8972 Host Europe GmbH
File type ASCII text, with very long lines (11126)
Hash 79b4956b7ec478ec10244b5e2d33ac7d
a46025b9d05e3df30d610a8aef14f392c7058dc9
029e0a2e809fd6b5dbe76abe8b7a74936be306c9a8c27c814c4d44aa54623300
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: regio.brecht-caravan.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://regio.brecht-caravan.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 14 Sep 2022 10:47:19 GMT
content-type: application/javascript
content-length: 11224
last-modified: Thu, 14 Jan 2021 15:15:07 GMT
etag: "60005ffb-2bd8"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
regio.brecht-caravan.de/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
91.250.114.206200 OK 90 kB URL HTTP/2 regio.brecht-caravan.de/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
IP 91.250.114.206:0
ASN #8972 Host Europe GmbH
File type ASCII text, with very long lines (65447)
Hash 02dd5d04add4759122013c5ab4dc5cc2
a45a56e396ac549b4ff39b696ce9e0c16a7612de
bd4de6a3fc0fb68d6f76ba7b93514b96a92e585c295b5351c31ad92a4b0777ea
GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.0 HTTP/1.1
Host: regio.brecht-caravan.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://regio.brecht-caravan.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 14 Sep 2022 10:47:19 GMT
content-type: application/javascript
content-length: 89521
last-modified: Tue, 12 Oct 2021 10:21:30 GMT
etag: "616561aa-15db1"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
regio.brecht-caravan.de/wp-includes/css/dist/block-library/style.min.css?ver=6.0.2
91.250.114.206200 OK 89 kB URL HTTP/2 regio.brecht-caravan.de/wp-includes/css/dist/block-library/style.min.css?ver=6.0.2
IP 91.250.114.206:0
ASN #8972 Host Europe GmbH
File type ASCII text, with very long lines (43771)
Hash b7915926fe42d76e9c802353ab01dae4
3a8192a4312f25f53de25b100d62829c0f14d67c
d7705700d24d5919255576642ad2c28bfc790390b7183a369038ff5c1e814d51
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/css/dist/block-library/style.min.css?ver=6.0.2 HTTP/1.1
Host: regio.brecht-caravan.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://regio.brecht-caravan.de/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 14 Sep 2022 10:47:19 GMT
content-type: text/css
content-length: 88932
last-modified: Fri, 22 Jul 2022 07:16:17 GMT
etag: "62da4ec1-15b64"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
regio.brecht-caravan.de/wp-content/themes/Getblue/includes/lib/assets/min/js/library/modernizr.js?ver=3.3.1
91.250.114.206200 OK 13 kB URL HTTP/2 regio.brecht-caravan.de/wp-content/themes/Getblue/includes/lib/assets/min/js/library/modernizr.js?ver=3.3.1
IP 91.250.114.206:0
ASN #8972 Host Europe GmbH
File type ASCII text, with very long lines (12991), with no line terminators
Hash 5c6f8c2d5542d6fa991c13b497d05b42
4136a4ad9c4514563be497f968ce56d11539c8a8
45489ffcf01ef61169bda340908095cfc2c0ddcfa78a6cad71a2d1b636feccdf
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/Getblue/includes/lib/assets/min/js/library/modernizr.js?ver=3.3.1 HTTP/1.1
Host: regio.brecht-caravan.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://regio.brecht-caravan.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 14 Sep 2022 10:47:19 GMT
content-type: application/javascript
content-length: 12991
last-modified: Tue, 10 Nov 2020 15:44:34 GMT
etag: "5faab562-32bf"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
regio.brecht-caravan.de/wp-content/themes/Getblue/includes/lib/assets/min/js/library/jquery.fitvids.js?ver=1.1
91.250.114.206200 OK 1.8 kB URL HTTP/2 regio.brecht-caravan.de/wp-content/themes/Getblue/includes/lib/assets/min/js/library/jquery.fitvids.js?ver=1.1
IP 91.250.114.206:0
ASN #8972 Host Europe GmbH
File type HTML document, ASCII text, with very long lines (1767), with no line terminators
Hash 882a4f6998e5d6878f6f53f15008e525
2f73282313194a5ea50186b3d94842b47f941274
233cb2b905dec5df68df039e52e26980f674880fee51a8f6b7f75486760f1f3e
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/Getblue/includes/lib/assets/min/js/library/jquery.fitvids.js?ver=1.1 HTTP/1.1
Host: regio.brecht-caravan.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://regio.brecht-caravan.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 14 Sep 2022 10:47:19 GMT
content-type: application/javascript
content-length: 1767
last-modified: Tue, 10 Nov 2020 15:44:34 GMT
etag: "5faab562-6e7"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
regio.brecht-caravan.de/wp-content/themes/Getblue/includes/lib/assets/min/js/library/fusion-video-general.js?ver=1
91.250.114.206200 OK 6.8 kB URL HTTP/2 regio.brecht-caravan.de/wp-content/themes/Getblue/includes/lib/assets/min/js/library/fusion-video-general.js?ver=1
IP 91.250.114.206:0
ASN #8972 Host Europe GmbH
File type ASCII text, with very long lines (6803), with no line terminators
Hash c47fc57967c35a064f5d1918f173f9d0
96b06b5db2ef750abc8f6232771d7c52879a06d3
dcefc5cafed5481f31bf826c91496e5368751599dd37c4e8d39af82711b439fd
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/Getblue/includes/lib/assets/min/js/library/fusion-video-general.js?ver=1 HTTP/1.1
Host: regio.brecht-caravan.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://regio.brecht-caravan.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 14 Sep 2022 10:47:19 GMT
content-type: application/javascript
content-length: 6803
last-modified: Tue, 10 Nov 2020 15:44:34 GMT
etag: "5faab562-1a93"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
regio.brecht-caravan.de/wp-content/themes/Getblue/includes/lib/assets/min/js/library/jquery.mousewheel.js?ver=3.0.6
91.250.114.206200 OK 2.6 kB URL HTTP/2 regio.brecht-caravan.de/wp-content/themes/Getblue/includes/lib/assets/min/js/library/jquery.mousewheel.js?ver=3.0.6
IP 91.250.114.206:0
ASN #8972 Host Europe GmbH
File type ASCII text, with very long lines (2604), with no line terminators
Hash 5118a4965e81da6dcb7def1ca48b189b
f67279ea1c87e5605f9930c9eedfc4cb54c6adf5
136859a04a16d051a3d15752d0b415a6c2c837f1278a56dbb87a0e93ba8b9601
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/Getblue/includes/lib/assets/min/js/library/jquery.mousewheel.js?ver=3.0.6 HTTP/1.1
Host: regio.brecht-caravan.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://regio.brecht-caravan.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 14 Sep 2022 10:47:19 GMT
content-type: application/javascript
content-length: 2604
last-modified: Tue, 10 Nov 2020 15:44:34 GMT
etag: "5faab562-a2c"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
regio.brecht-caravan.de/wp-content/themes/Getblue/includes/lib/assets/min/js/general/fusion-lightbox.js?ver=1
91.250.114.206200 OK 6.7 kB URL HTTP/2 regio.brecht-caravan.de/wp-content/themes/Getblue/includes/lib/assets/min/js/general/fusion-lightbox.js?ver=1
IP 91.250.114.206:0
ASN #8972 Host Europe GmbH
File type ASCII text, with very long lines (6687), with no line terminators
Hash 2a26fbc83240650485f5745fdee66d03
82528831d8d0398f18bc1924267152f3f98afa02
ad6e433f81355d2027a167a1dc4f841c75babc2cf5a14316e48e1419a2eb3352
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/Getblue/includes/lib/assets/min/js/general/fusion-lightbox.js?ver=1 HTTP/1.1
Host: regio.brecht-caravan.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://regio.brecht-caravan.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 14 Sep 2022 10:47:19 GMT
content-type: application/javascript
content-length: 6687
last-modified: Tue, 10 Nov 2020 15:44:34 GMT
etag: "5faab562-1a1f"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
regio.brecht-caravan.de/wp-content/themes/Getblue/includes/lib/assets/min/js/library/imagesLoaded.js?ver=3.1.8
91.250.114.206200 OK 6.8 kB URL HTTP/2 regio.brecht-caravan.de/wp-content/themes/Getblue/includes/lib/assets/min/js/library/imagesLoaded.js?ver=3.1.8
IP 91.250.114.206:0
ASN #8972 Host Europe GmbH
File type ASCII text, with very long lines (6785), with no line terminators
Hash 6fb516503ad779228bc4ce728695f863
4327965b2c094d7b2e0723e98fdc5278241faba5
e1ad0b4138c80c3d001287d48a3915724c963ef85787df537a8de61f906c5f8e
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/Getblue/includes/lib/assets/min/js/library/imagesLoaded.js?ver=3.1.8 HTTP/1.1
Host: regio.brecht-caravan.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://regio.brecht-caravan.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 14 Sep 2022 10:47:19 GMT
content-type: application/javascript
content-length: 6785
last-modified: Tue, 10 Nov 2020 15:44:34 GMT
etag: "5faab562-1a81"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
regio.brecht-caravan.de/wp-content/themes/Getblue/includes/lib/assets/min/js/library/isotope.js?ver=3.0.4
91.250.114.206200 OK 35 kB URL HTTP/2 regio.brecht-caravan.de/wp-content/themes/Getblue/includes/lib/assets/min/js/library/isotope.js?ver=3.0.4
IP 91.250.114.206:0
ASN #8972 Host Europe GmbH
File type ASCII text, with very long lines (34773), with no line terminators
Hash 2da6e4c018f2e2f1dfea2ebaa3ae11d5
b885a7a727ad25230a3bcdd3314da471df899371
ed00ca0964cbfca3e3a28ff14ba988ead8846f695adc310f8d3ad796ffed28fb
GET /wp-content/themes/Getblue/includes/lib/assets/min/js/library/isotope.js?ver=3.0.4 HTTP/1.1
Host: regio.brecht-caravan.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://regio.brecht-caravan.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 14 Sep 2022 10:47:19 GMT
content-type: application/javascript
content-length: 34773
last-modified: Tue, 10 Nov 2020 15:44:34 GMT
etag: "5faab562-87d5"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
regio.brecht-caravan.de/wp-content/themes/Getblue/includes/lib/assets/min/js/library/packery.js?ver=2.0.0
91.250.114.206200 OK 14 kB URL HTTP/2 regio.brecht-caravan.de/wp-content/themes/Getblue/includes/lib/assets/min/js/library/packery.js?ver=2.0.0
IP 91.250.114.206:0
ASN #8972 Host Europe GmbH
File type ASCII text, with very long lines (13723), with no line terminators
Hash 05440d2fd20d5cad51df4b4ed447435d
ea9dba717a70c0afeb61f7a046c6682a62eed827
2b01072bc605e2004b2013b56510475dba15fc901809de67475269d32fb3384d
GET /wp-content/themes/Getblue/includes/lib/assets/min/js/library/packery.js?ver=2.0.0 HTTP/1.1
Host: regio.brecht-caravan.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://regio.brecht-caravan.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 14 Sep 2022 10:47:19 GMT
content-type: application/javascript
content-length: 13723
last-modified: Tue, 10 Nov 2020 15:44:34 GMT
etag: "5faab562-359b"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
regio.brecht-caravan.de/wp-content/plugins/fusion-core/js/min/avada-faqs.js?ver=1
91.250.114.206200 OK 1.1 kB URL HTTP/2 regio.brecht-caravan.de/wp-content/plugins/fusion-core/js/min/avada-faqs.js?ver=1
IP 91.250.114.206:0
ASN #8972 Host Europe GmbH
File type ASCII text, with very long lines (1131), with no line terminators
Hash 8c1f36e3c027675079a56b1fbdf0018a
dda09c295433922615fb2c407c53e0abe21d55f6
522e41becdacdc1f0a263e0b96346f7c17c1d60fe3a9094f916b0b149758f08f
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/fusion-core/js/min/avada-faqs.js?ver=1 HTTP/1.1
Host: regio.brecht-caravan.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://regio.brecht-caravan.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 14 Sep 2022 10:47:19 GMT
content-type: application/javascript
content-length: 1131
last-modified: Wed, 11 Nov 2020 16:29:31 GMT
etag: "5fac116b-46b"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
regio.brecht-caravan.de/wp-content/themes/Getblue/includes/lib/assets/min/js/library/jquery.infinitescroll.js?ver=2.1
91.250.114.206200 OK 21 kB URL HTTP/2 regio.brecht-caravan.de/wp-content/themes/Getblue/includes/lib/assets/min/js/library/jquery.infinitescroll.js?ver=2.1
IP 91.250.114.206:0
ASN #8972 Host Europe GmbH
File type ASCII text, with very long lines (21001), with no line terminators
Hash 182792369c29563f52abf6b0f6aadaab
988149f266f2dbec09c205ec1c5f564cd70a165a
dd3683b4ac4218364a65840dfef8655020d51ec5acc7ac6bda41bbc727c90e66
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/Getblue/includes/lib/assets/min/js/library/jquery.infinitescroll.js?ver=2.1 HTTP/1.1
Host: regio.brecht-caravan.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://regio.brecht-caravan.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 14 Sep 2022 10:47:19 GMT
content-type: application/javascript
content-length: 21001
last-modified: Tue, 10 Nov 2020 15:44:34 GMT
etag: "5faab562-5209"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
regio.brecht-caravan.de/wp-content/plugins/fusion-core/js/min/avada-portfolio.js?ver=1
91.250.114.206200 OK 14 kB URL HTTP/2 regio.brecht-caravan.de/wp-content/plugins/fusion-core/js/min/avada-portfolio.js?ver=1
IP 91.250.114.206:0
ASN #8972 Host Europe GmbH
File type ASCII text, with very long lines (13618), with no line terminators
Hash adac662a01508b35cb271074d149b49f
dd59fb4bdf5147ab32bd1dac98f04df75cead4d8
fa9a3b629c012eed6db49a8e209db8ee513f18c4de69ef5a4762838dbddb67dc
GET /wp-content/plugins/fusion-core/js/min/avada-portfolio.js?ver=1 HTTP/1.1
Host: regio.brecht-caravan.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://regio.brecht-caravan.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 14 Sep 2022 10:47:19 GMT
content-type: application/javascript
content-length: 13618
last-modified: Wed, 11 Nov 2020 16:29:31 GMT
etag: "5fac116b-3532"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
regio.brecht-caravan.de/wp-content/plugins/fusion-builder/assets/js/min/general/fusion-chart.js?ver=1
91.250.114.206200 OK 5.2 kB URL HTTP/2 regio.brecht-caravan.de/wp-content/plugins/fusion-builder/assets/js/min/general/fusion-chart.js?ver=1
IP 91.250.114.206:0
ASN #8972 Host Europe GmbH
File type ASCII text, with very long lines (5217), with no line terminators
Hash e6bc39884fd8636370d4727968d40c9c
4412499648cfeb0a2ec2f69d788c414c9a4177aa
b026d303f9cf5c28c00da0fa4d537b574556524e49fb50434e580530715c00b6
GET /wp-content/plugins/fusion-builder/assets/js/min/general/fusion-chart.js?ver=1 HTTP/1.1
Host: regio.brecht-caravan.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://regio.brecht-caravan.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 14 Sep 2022 10:47:19 GMT
content-type: application/javascript
content-length: 5217
last-modified: Wed, 11 Nov 2020 16:30:02 GMT
etag: "5fac118a-1461"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
regio.brecht-caravan.de/wp-content/plugins/fusion-builder/assets/js/min/general/fusion-column-bg-image.js?ver=1
91.250.114.206200 OK 1.8 kB URL HTTP/2 regio.brecht-caravan.de/wp-content/plugins/fusion-builder/assets/js/min/general/fusion-column-bg-image.js?ver=1
IP 91.250.114.206:0
ASN #8972 Host Europe GmbH
File type ASCII text, with very long lines (1843), with no line terminators
Hash d9c1ce75f7a4d6b3119445df9961e750
d6bb3e4f417a808f47037db41a7da51acbad2f9f
c9b312a9ed8b686e4e9f6ef88d30874c8f12222b9d5afca7dafdaa446042ec6f
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/fusion-builder/assets/js/min/general/fusion-column-bg-image.js?ver=1 HTTP/1.1
Host: regio.brecht-caravan.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://regio.brecht-caravan.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 14 Sep 2022 10:47:19 GMT
content-type: application/javascript
content-length: 1843
last-modified: Wed, 11 Nov 2020 16:30:02 GMT
etag: "5fac118a-733"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
regio.brecht-caravan.de/wp-content/themes/Getblue/includes/lib/assets/min/js/library/cssua.js?ver=2.1.28
91.250.114.206200 OK 3.3 kB URL HTTP/2 regio.brecht-caravan.de/wp-content/themes/Getblue/includes/lib/assets/min/js/library/cssua.js?ver=2.1.28
IP 91.250.114.206:0
ASN #8972 Host Europe GmbH
File type ASCII text, with very long lines (3344), with no line terminators
Hash 6ee34d5acab69cb428cb2d5f4eb00d17
3b7ba1fea4b197f7363d0631ebb70ff1247594d5
daf181ab9ead5372eefb6fe5d87704d7abdbfa6c09e4c79a2a2f688c6fac5ada
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/Getblue/includes/lib/assets/min/js/library/cssua.js?ver=2.1.28 HTTP/1.1
Host: regio.brecht-caravan.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://regio.brecht-caravan.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 14 Sep 2022 10:47:19 GMT
content-type: application/javascript
content-length: 3344
last-modified: Tue, 10 Nov 2020 15:44:34 GMT
etag: "5faab562-d10"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
regio.brecht-caravan.de/wp-content/themes/Getblue/includes/lib/assets/min/js/library/jquery.waypoints.js?ver=2.0.3
91.250.114.206200 OK 7.5 kB URL HTTP/2 regio.brecht-caravan.de/wp-content/themes/Getblue/includes/lib/assets/min/js/library/jquery.waypoints.js?ver=2.0.3
IP 91.250.114.206:0
ASN #8972 Host Europe GmbH
File type ASCII text, with very long lines (7507), with no line terminators
Hash b91d520e927a3eae9283e85bf959decb
4be69b91e8186114b91efb0a7f6c492da6e94a2c
b3ce23d3aa6ae1702a3d39482e3959ee43cda13fb33bb9136b09606eef2efd50
GET /wp-content/themes/Getblue/includes/lib/assets/min/js/library/jquery.waypoints.js?ver=2.0.3 HTTP/1.1
Host: regio.brecht-caravan.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://regio.brecht-caravan.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 14 Sep 2022 10:47:19 GMT
content-type: application/javascript
content-length: 7507
last-modified: Tue, 10 Nov 2020 15:44:34 GMT
etag: "5faab562-1d53"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
regio.brecht-caravan.de/wp-content/plugins/fusion-builder/assets/js/min/general/fusion-animations.js?ver=1
91.250.114.206200 OK 1.7 kB URL HTTP/2 regio.brecht-caravan.de/wp-content/plugins/fusion-builder/assets/js/min/general/fusion-animations.js?ver=1
IP 91.250.114.206:0
ASN #8972 Host Europe GmbH
File type ASCII text, with very long lines (1710), with no line terminators
Hash 70eee3cb857777d0d1799887c1ece674
68a332673bc8eafc9b532234f3e06cb687545def
c87f539817d339f25966b76b34edcefb306389e761d5d318e6fe14c291ae51e4
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/fusion-builder/assets/js/min/general/fusion-animations.js?ver=1 HTTP/1.1
Host: regio.brecht-caravan.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://regio.brecht-caravan.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 14 Sep 2022 10:47:19 GMT
content-type: application/javascript
content-length: 1710
last-modified: Wed, 11 Nov 2020 16:30:02 GMT
etag: "5fac118a-6ae"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
regio.brecht-caravan.de/wp-content/themes/Getblue/includes/lib/assets/min/js/general/fusion-waypoints.js?ver=1
91.250.114.206200 OK 271 B URL HTTP/2 regio.brecht-caravan.de/wp-content/themes/Getblue/includes/lib/assets/min/js/general/fusion-waypoints.js?ver=1
IP 91.250.114.206:0
ASN #8972 Host Europe GmbH
File type ASCII text, with very long lines (479), with no line terminators
Hash f3e94f8fba3206554d0687716e311abd
6f0f5318efc05a0d9d224925ca37427c4f7fd40a
4b4bf1a3a692fa61c7f8c88ebf6d2326356193b6ce6f50a8efeb24b4e378b02e
GET /wp-content/themes/Getblue/includes/lib/assets/min/js/general/fusion-waypoints.js?ver=1 HTTP/1.1
Host: regio.brecht-caravan.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://regio.brecht-caravan.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 14 Sep 2022 10:47:19 GMT
content-type: application/javascript
content-length: 271
x-accel-version: 0.01
last-modified: Tue, 10 Nov 2020 15:44:34 GMT
etag: "1df-5b3c28e309bb3-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-powered-by: PleskLin
X-Firefox-Spdy: h2
regio.brecht-caravan.de/wp-content/themes/Getblue/includes/lib/assets/min/js/general/fusion-equal-heights.js?ver=1
91.250.114.206200 OK 1.4 kB URL HTTP/2 regio.brecht-caravan.de/wp-content/themes/Getblue/includes/lib/assets/min/js/general/fusion-equal-heights.js?ver=1
IP 91.250.114.206:0
ASN #8972 Host Europe GmbH
File type ASCII text, with very long lines (1417), with no line terminators
Hash 044f04f1b997661773e5fb7a98f0283e
0e6a82d2e4e086f07b3a2f4043d444d44ae45a14
18d6442774348bade3c7053b5775acde74021892a547b57511e8f0c9842f74da
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/Getblue/includes/lib/assets/min/js/general/fusion-equal-heights.js?ver=1 HTTP/1.1
Host: regio.brecht-caravan.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://regio.brecht-caravan.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 14 Sep 2022 10:47:19 GMT
content-type: application/javascript
content-length: 1417
last-modified: Tue, 10 Nov 2020 15:44:34 GMT
etag: "5faab562-589"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
regio.brecht-caravan.de/wp-content/plugins/fusion-builder/assets/js/min/general/fusion-column.js?ver=1
91.250.114.206200 OK 5.1 kB URL HTTP/2 regio.brecht-caravan.de/wp-content/plugins/fusion-builder/assets/js/min/general/fusion-column.js?ver=1
IP 91.250.114.206:0
ASN #8972 Host Europe GmbH
File type ASCII text, with very long lines (5069), with no line terminators
Hash 40719b9116c5d2ecdc5963c3a1096492
7324973e34c2aecb3286fc1ef6637eb1ba3ebebd
171292f14119b55d0106dfa2df43e052b778a713c7bfa629364fae708223e76f
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/fusion-builder/assets/js/min/general/fusion-column.js?ver=1 HTTP/1.1
Host: regio.brecht-caravan.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://regio.brecht-caravan.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 14 Sep 2022 10:47:19 GMT
content-type: application/javascript
content-length: 5069
last-modified: Wed, 11 Nov 2020 16:30:02 GMT
etag: "5fac118a-13cd"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
regio.brecht-caravan.de/wp-content/themes/Getblue/includes/lib/assets/min/js/library/jquery.fade.js?ver=1
91.250.114.206200 OK 1.2 kB URL HTTP/2 regio.brecht-caravan.de/wp-content/themes/Getblue/includes/lib/assets/min/js/library/jquery.fade.js?ver=1
IP 91.250.114.206:0
ASN #8972 Host Europe GmbH
File type ASCII text, with very long lines (1162), with no line terminators
Hash eef83ebcbba649dcd3d4939d9221df41
cb1d24ed2c6d23e3b41023935aa50177829033d0
836e98f92408ccb7250927acef9b494fbacc18678ef18888f835101557bddd37
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/Getblue/includes/lib/assets/min/js/library/jquery.fade.js?ver=1 HTTP/1.1
Host: regio.brecht-caravan.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://regio.brecht-caravan.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 14 Sep 2022 10:47:19 GMT
content-type: application/javascript
content-length: 1162
last-modified: Tue, 10 Nov 2020 15:44:34 GMT
etag: "5faab562-48a"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
regio.brecht-caravan.de/wp-content/themes/Getblue/includes/lib/assets/min/js/library/jquery.requestAnimationFrame.js?ver=1
91.250.114.206200 OK 337 B URL HTTP/2 regio.brecht-caravan.de/wp-content/themes/Getblue/includes/lib/assets/min/js/library/jquery.requestAnimationFrame.js?ver=1
IP 91.250.114.206:0
ASN #8972 Host Europe GmbH
File type ASCII text, with very long lines (695), with no line terminators
Hash 0921c87a11483e7ea5c29d7adeb6575e
7f4edddc51e12385b8ee8c859abbadaae5f2f899
dee531dca244cc30d1bd9e80253cf7362928cc9dfbbf58b3ea020edfdbc6fcbd
GET /wp-content/themes/Getblue/includes/lib/assets/min/js/library/jquery.requestAnimationFrame.js?ver=1 HTTP/1.1
Host: regio.brecht-caravan.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://regio.brecht-caravan.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 14 Sep 2022 10:47:19 GMT
content-type: application/javascript
content-length: 337
x-accel-version: 0.01
last-modified: Tue, 10 Nov 2020 15:44:34 GMT
etag: "2b7-5b3c28e303df3-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-powered-by: PleskLin
X-Firefox-Spdy: h2
regio.brecht-caravan.de/wp-content/themes/Getblue/includes/lib/assets/min/js/library/fusion-parallax.js?ver=1
91.250.114.206200 OK 12 kB URL HTTP/2 regio.brecht-caravan.de/wp-content/themes/Getblue/includes/lib/assets/min/js/library/fusion-parallax.js?ver=1
IP 91.250.114.206:0
ASN #8972 Host Europe GmbH
File type ASCII text, with very long lines (12004), with no line terminators
Hash e985c6ff520271e147f180d04a411ec3
57fe22916ef0180d5226f5d157497da54d7dcadf
cc4b131c9e9bc64d98932c96c3c65bc4106c8891a3b3fdc2ecd68a70b9051ff6
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/Getblue/includes/lib/assets/min/js/library/fusion-parallax.js?ver=1 HTTP/1.1
Host: regio.brecht-caravan.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://regio.brecht-caravan.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 14 Sep 2022 10:47:19 GMT
content-type: application/javascript
content-length: 12004
last-modified: Tue, 10 Nov 2020 15:44:34 GMT
etag: "5faab562-2ee4"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
regio.brecht-caravan.de/wp-content/plugins/fusion-builder/assets/js/min/general/fusion-container.js?ver=1
91.250.114.206200 OK 14 kB URL HTTP/2 regio.brecht-caravan.de/wp-content/plugins/fusion-builder/assets/js/min/general/fusion-container.js?ver=1
IP 91.250.114.206:0
ASN #8972 Host Europe GmbH
File type ASCII text, with very long lines (13605), with no line terminators
Hash 455fb50d2239ec5a705f5421797d3a8a
11e8715f0b1b8c15282fb2c88c653d6e163b1608
9657d9acfc3347cb04d62bbfcdc2ab8d45418230b6a90cbc7240eb79026ff3bd
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/fusion-builder/assets/js/min/general/fusion-container.js?ver=1 HTTP/1.1
Host: regio.brecht-caravan.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://regio.brecht-caravan.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 14 Sep 2022 10:47:19 GMT
content-type: application/javascript
content-length: 13605
last-modified: Wed, 11 Nov 2020 16:30:02 GMT
etag: "5fac118a-3525"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
regio.brecht-caravan.de/wp-content/themes/Getblue/includes/lib/assets/min/js/library/fusion-video-bg.js?ver=1
91.250.114.206200 OK 5.3 kB URL HTTP/2 regio.brecht-caravan.de/wp-content/themes/Getblue/includes/lib/assets/min/js/library/fusion-video-bg.js?ver=1
IP 91.250.114.206:0
ASN #8972 Host Europe GmbH
File type ASCII text, with very long lines (5277), with no line terminators
Hash ce20febc6b8dffe5b4ffd090862aa897
d651067c1e4cc7204bb31dc6580a80f0c3ea4089
a96a401df5c08d96515158eedd46c80a3915f09020b6d2a0a559ac9d7d62227c
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/Getblue/includes/lib/assets/min/js/library/fusion-video-bg.js?ver=1 HTTP/1.1
Host: regio.brecht-caravan.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://regio.brecht-caravan.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 14 Sep 2022 10:47:19 GMT
content-type: application/javascript
content-length: 5277
last-modified: Tue, 10 Nov 2020 15:44:34 GMT
etag: "5faab562-149d"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
regio.brecht-caravan.de/wp-content/plugins/fusion-builder/assets/js/min/general/fusion-content-boxes.js?ver=1
91.250.114.206200 OK 4.2 kB URL HTTP/2 regio.brecht-caravan.de/wp-content/plugins/fusion-builder/assets/js/min/general/fusion-content-boxes.js?ver=1
IP 91.250.114.206:0
ASN #8972 Host Europe GmbH
File type ASCII text, with very long lines (4175), with no line terminators
Hash a01980edb8ba1fed86d49b04a66306d8
c86ae4c928e5e17f9404e904a56dacc35e86acae
38c4234cba77d179e82329a80ba957df457d4831a842ebdc24e00179a3d4b537
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/fusion-builder/assets/js/min/general/fusion-content-boxes.js?ver=1 HTTP/1.1
Host: regio.brecht-caravan.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://regio.brecht-caravan.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 14 Sep 2022 10:47:19 GMT
content-type: application/javascript
content-length: 4175
last-modified: Wed, 11 Nov 2020 16:30:02 GMT
etag: "5fac118a-104f"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
regio.brecht-caravan.de/wp-content/plugins/fusion-builder/assets/js/min/library/jquery.countdown.js?ver=1.0
91.250.114.206200 OK 2.9 kB URL HTTP/2 regio.brecht-caravan.de/wp-content/plugins/fusion-builder/assets/js/min/library/jquery.countdown.js?ver=1.0
IP 91.250.114.206:0
ASN #8972 Host Europe GmbH
File type ASCII text, with very long lines (2876), with no line terminators
Hash 50c6e717421b2e0215533bfc20411908
91945c6eff79501dd3637a40919f61368cbaf730
8fde2abd4112a36fd4ac293c1207d81435d3c68e378928b911569ea448eec4d3
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/fusion-builder/assets/js/min/library/jquery.countdown.js?ver=1.0 HTTP/1.1
Host: regio.brecht-caravan.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://regio.brecht-caravan.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 14 Sep 2022 10:47:19 GMT
content-type: application/javascript
content-length: 2876
last-modified: Wed, 11 Nov 2020 16:30:02 GMT
etag: "5fac118a-b3c"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
regio.brecht-caravan.de/wp-content/plugins/fusion-builder/assets/js/min/general/fusion-countdown.js?ver=1
91.250.114.206200 OK 329 B URL HTTP/2 regio.brecht-caravan.de/wp-content/plugins/fusion-builder/assets/js/min/general/fusion-countdown.js?ver=1
IP 91.250.114.206:0
ASN #8972 Host Europe GmbH
File type ASCII text, with very long lines (522), with no line terminators
Hash fed87aeee911ffd0e37289d7b95221f8
18c75a93ebd981354df7809a60fd6250e6977fc6
956db31bb259e866379bd531cd3e063472a971449b0d95b24d6e1d3a02b3b67e
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/fusion-builder/assets/js/min/general/fusion-countdown.js?ver=1 HTTP/1.1
Host: regio.brecht-caravan.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://regio.brecht-caravan.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 14 Sep 2022 10:47:19 GMT
content-type: application/javascript
content-length: 329
x-accel-version: 0.01
last-modified: Wed, 11 Nov 2020 16:30:02 GMT
etag: "20a-5b3d74ea4e77b-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-powered-by: PleskLin
X-Firefox-Spdy: h2
regio.brecht-caravan.de/wp-content/plugins/fusion-builder/assets/js/min/library/jquery.countTo.js?ver=1
91.250.114.206200 OK 430 B URL HTTP/2 regio.brecht-caravan.de/wp-content/plugins/fusion-builder/assets/js/min/library/jquery.countTo.js?ver=1
IP 91.250.114.206:0
ASN #8972 Host Europe GmbH
File type ASCII text, with very long lines (945), with no line terminators
Hash fba7a7fe877c30b28aac94da6ab21f05
4449a8cb948839e3679388160107daf9afbbf57f
cd512f9a349ed6e18864ce7472063481a7ad5d07c062bfedf664556d8eaff491
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/fusion-builder/assets/js/min/library/jquery.countTo.js?ver=1 HTTP/1.1
Host: regio.brecht-caravan.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://regio.brecht-caravan.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 14 Sep 2022 10:47:19 GMT
content-type: application/javascript
content-length: 430
x-accel-version: 0.01
last-modified: Wed, 11 Nov 2020 16:30:02 GMT
etag: "3b1-5b3d74ea4995b-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-powered-by: PleskLin
X-Firefox-Spdy: h2
regio.brecht-caravan.de/wp-content/plugins/fusion-builder/assets/js/min/general/fusion-counters-box.js?ver=1
91.250.114.206200 OK 1.3 kB URL HTTP/2 regio.brecht-caravan.de/wp-content/plugins/fusion-builder/assets/js/min/general/fusion-counters-box.js?ver=1
IP 91.250.114.206:0
ASN #8972 Host Europe GmbH
File type ASCII text, with very long lines (1274), with no line terminators
Hash 9d438d9adbb8fa931323fab6ad97ff4d
670263b8f0fe26afb5219391abd01ca8b5bdf8f1
06c49df1e161d431beb0c50227884fd97c5ab52ab83373ca0ed0e1ee074034fe
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/fusion-builder/assets/js/min/general/fusion-counters-box.js?ver=1 HTTP/1.1
Host: regio.brecht-caravan.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://regio.brecht-caravan.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 14 Sep 2022 10:47:19 GMT
content-type: application/javascript
content-length: 1274
last-modified: Wed, 11 Nov 2020 16:30:02 GMT
etag: "5fac118a-4fa"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
regio.brecht-caravan.de/wp-content/themes/Getblue/includes/lib/assets/min/js/library/jquery.appear.js?ver=1
91.250.114.206200 OK 3.0 kB URL HTTP/2 regio.brecht-caravan.de/wp-content/themes/Getblue/includes/lib/assets/min/js/library/jquery.appear.js?ver=1
IP 91.250.114.206:0
ASN #8972 Host Europe GmbH
File type ASCII text, with very long lines (2985), with no line terminators
Hash 6cf842b08dffbc10e95807c46f7d0573
cc654b95bdc330edf20372e8db8e5d822ecc013e
fa80baec432350a1a335a421479336b65432f358727c89f0e414fe11fa39cd10
GET /wp-content/themes/Getblue/includes/lib/assets/min/js/library/jquery.appear.js?ver=1 HTTP/1.1
Host: regio.brecht-caravan.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://regio.brecht-caravan.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 14 Sep 2022 10:47:19 GMT
content-type: application/javascript
content-length: 2985
last-modified: Tue, 10 Nov 2020 15:44:34 GMT
etag: "5faab562-ba9"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
regio.brecht-caravan.de/wp-content/themes/Getblue/includes/lib/assets/min/js/library/jquery.easyPieChart.js?ver=2.1.7
91.250.114.206200 OK 3.6 kB URL HTTP/2 regio.brecht-caravan.de/wp-content/themes/Getblue/includes/lib/assets/min/js/library/jquery.easyPieChart.js?ver=2.1.7
IP 91.250.114.206:0
ASN #8972 Host Europe GmbH
File type ASCII text, with very long lines (3555), with no line terminators
Hash 1399e3163023f835423766d8ed6fd081
88ef0a2aa9b006c8d622f598d07149f4568ba010
225978e62705950d43f151a42fe6bbee9d02a3c75cfae8121d6c42608f98e317
GET /wp-content/themes/Getblue/includes/lib/assets/min/js/library/jquery.easyPieChart.js?ver=2.1.7 HTTP/1.1
Host: regio.brecht-caravan.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://regio.brecht-caravan.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 14 Sep 2022 10:47:19 GMT
content-type: application/javascript
content-length: 3555
last-modified: Tue, 10 Nov 2020 15:44:34 GMT
etag: "5faab562-de3"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
regio.brecht-caravan.de/wp-content/plugins/fusion-builder/assets/js/min/general/fusion-counters-circle.js?ver=1
91.250.114.206200 OK 3.4 kB URL HTTP/2 regio.brecht-caravan.de/wp-content/plugins/fusion-builder/assets/js/min/general/fusion-counters-circle.js?ver=1
IP 91.250.114.206:0
ASN #8972 Host Europe GmbH
File type ASCII text, with very long lines (3393), with no line terminators
Hash dd8aaca9c551d99c6577006dc749cbb7
152d08bb782d9355d1837eee22ea891f1cd99d0f
0449a9e038e3339d3f289637b406d00323fdb1137a61d707fb8e749d5e7536bc
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/fusion-builder/assets/js/min/general/fusion-counters-circle.js?ver=1 HTTP/1.1
Host: regio.brecht-caravan.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://regio.brecht-caravan.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 14 Sep 2022 10:47:19 GMT
content-type: application/javascript
content-length: 3393
last-modified: Wed, 11 Nov 2020 16:30:02 GMT
etag: "5fac118a-d41"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
regio.brecht-caravan.de/wp-content/plugins/fusion-builder/assets/js/min/general/fusion-gallery.js?ver=1
91.250.114.206200 OK 1.9 kB URL HTTP/2 regio.brecht-caravan.de/wp-content/plugins/fusion-builder/assets/js/min/general/fusion-gallery.js?ver=1
IP 91.250.114.206:0
ASN #8972 Host Europe GmbH
File type ASCII text, with very long lines (1900), with no line terminators
Hash 44400d4919eab602739395cc400898e7
81e3213ba003192c982abc210a2cafb86dcd7e99
3eb054e82dde7d4fa01c7edcd6216bbe66cc0d1457d5ba4a45fae14b3477ad71
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/fusion-builder/assets/js/min/general/fusion-gallery.js?ver=1 HTTP/1.1
Host: regio.brecht-caravan.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://regio.brecht-caravan.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 14 Sep 2022 10:47:19 GMT
content-type: application/javascript
content-length: 1900
last-modified: Wed, 11 Nov 2020 16:30:02 GMT
etag: "5fac118a-76c"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
regio.brecht-caravan.de/wp-content/plugins/fusion-builder/assets/js/min/general/fusion-flip-boxes.js?ver=1
91.250.114.206200 OK 2.7 kB URL HTTP/2 regio.brecht-caravan.de/wp-content/plugins/fusion-builder/assets/js/min/general/fusion-flip-boxes.js?ver=1
IP 91.250.114.206:0
ASN #8972 Host Europe GmbH
File type ASCII text, with very long lines (2740), with no line terminators
Hash a706b10989b0311a777c2cade22bc417
a720b4e90e69b88ada39910c526d515fb34e4a61
a6e683147bf97993b9cdabbf0ba7f967fff4a87b32736ed8d0e515c10d155373
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/fusion-builder/assets/js/min/general/fusion-flip-boxes.js?ver=1 HTTP/1.1
Host: regio.brecht-caravan.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://regio.brecht-caravan.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 14 Sep 2022 10:47:19 GMT
content-type: application/javascript
content-length: 2740
last-modified: Wed, 11 Nov 2020 16:30:02 GMT
etag: "5fac118a-ab4"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
regio.brecht-caravan.de/wp-content/themes/Getblue/includes/lib/assets/min/js/library/jquery.fusion_maps.js?ver=2.2.2
91.250.114.206200 OK 5.7 kB URL HTTP/2 regio.brecht-caravan.de/wp-content/themes/Getblue/includes/lib/assets/min/js/library/jquery.fusion_maps.js?ver=2.2.2
IP 91.250.114.206:0
ASN #8972 Host Europe GmbH
File type ASCII text, with very long lines (5699), with no line terminators
Hash a1531e56b5c6340e633d97a1159d34c1
d81a0714f78dd07733a03c5afd2d09c9bebd9016
fe85251352045b1d73418f58468a6aa1344866115e8c3a3a67a9b65168aa4350
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/Getblue/includes/lib/assets/min/js/library/jquery.fusion_maps.js?ver=2.2.2 HTTP/1.1
Host: regio.brecht-caravan.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://regio.brecht-caravan.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 14 Sep 2022 10:47:19 GMT
content-type: application/javascript
content-length: 5699
last-modified: Tue, 10 Nov 2020 15:44:34 GMT
etag: "5faab562-1643"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
regio.brecht-caravan.de/wp-content/themes/Getblue/includes/lib/assets/min/js/general/fusion-google-map.js?ver=1
91.250.114.206200 OK 302 B URL HTTP/2 regio.brecht-caravan.de/wp-content/themes/Getblue/includes/lib/assets/min/js/general/fusion-google-map.js?ver=1
IP 91.250.114.206:0
ASN #8972 Host Europe GmbH
File type ASCII text, with very long lines (499), with no line terminators
Hash 96384af790f02ac5f134d8bb2112e74d
e9e34685a85a9984bcee642fd58117b8dfec56c0
52c2d9f15d7e9c34aedd1f48c6d9429e1d0f07f47cecee2fe91e5b21698910bd
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/Getblue/includes/lib/assets/min/js/general/fusion-google-map.js?ver=1 HTTP/1.1
Host: regio.brecht-caravan.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://regio.brecht-caravan.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 14 Sep 2022 10:47:19 GMT
content-type: application/javascript
content-length: 302
x-accel-version: 0.01
last-modified: Tue, 10 Nov 2020 15:44:34 GMT
etag: "1f3-5b3c28e30805b-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-powered-by: PleskLin
X-Firefox-Spdy: h2
regio.brecht-caravan.de/wp-content/plugins/fusion-builder/assets/js/min/library/jquery.event.move.js?ver=2.0
91.250.114.206200 OK 5.4 kB URL HTTP/2 regio.brecht-caravan.de/wp-content/plugins/fusion-builder/assets/js/min/library/jquery.event.move.js?ver=2.0
IP 91.250.114.206:0
ASN #8972 Host Europe GmbH
File type ASCII text, with very long lines (5443), with no line terminators
Hash 581dff110540eff59ad07eb14e50c6ca
aa7ad46c7680999047d73fce39e201c414175223
c4d2094f4bbc80388b22b1fc80b91a2224cc4f5d324a88e1a50f174111771e0b
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/fusion-builder/assets/js/min/library/jquery.event.move.js?ver=2.0 HTTP/1.1
Host: regio.brecht-caravan.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://regio.brecht-caravan.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 14 Sep 2022 10:47:19 GMT
content-type: application/javascript
content-length: 5443
last-modified: Wed, 11 Nov 2020 16:30:02 GMT
etag: "5fac118a-1543"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
regio.brecht-caravan.de/wp-content/plugins/fusion-builder/assets/js/min/general/fusion-image-before-after.js?ver=1.0
91.250.114.206200 OK 3.1 kB URL HTTP/2 regio.brecht-caravan.de/wp-content/plugins/fusion-builder/assets/js/min/general/fusion-image-before-after.js?ver=1.0
IP 91.250.114.206:0
ASN #8972 Host Europe GmbH
File type ASCII text, with very long lines (3090), with no line terminators
Hash 4eb698c427157704e880425235e5f53c
bdd2679972e7c1e9b47a64bcd40bf8063fdbb6eb
3a3c5895b14229a9b899dc6c8b697577c6427c7f77708ea58bb701468a420178
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/fusion-builder/assets/js/min/general/fusion-image-before-after.js?ver=1.0 HTTP/1.1
Host: regio.brecht-caravan.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://regio.brecht-caravan.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 14 Sep 2022 10:47:19 GMT
content-type: application/javascript
content-length: 3090
last-modified: Wed, 11 Nov 2020 16:30:02 GMT
etag: "5fac118a-c12"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
regio.brecht-caravan.de/wp-content/themes/Getblue/includes/lib/assets/min/js/library/bootstrap.modal.js?ver=3.1.1
91.250.114.206200 OK 4.0 kB URL HTTP/2 regio.brecht-caravan.de/wp-content/themes/Getblue/includes/lib/assets/min/js/library/bootstrap.modal.js?ver=3.1.1
IP 91.250.114.206:0
ASN #8972 Host Europe GmbH
File type ASCII text, with very long lines (3974), with no line terminators
Hash 47e44bc47462aaaaacc7ba1fd0df9a2b
1352b9107bf17346cc99f5824d2e9f9e2c771c4c
9a2d11b76feb7a9e531a9d055fae88e495017645e5c823a010c818a7744b2c45
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/Getblue/includes/lib/assets/min/js/library/bootstrap.modal.js?ver=3.1.1 HTTP/1.1
Host: regio.brecht-caravan.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://regio.brecht-caravan.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 14 Sep 2022 10:47:19 GMT
content-type: application/javascript
content-length: 3974
last-modified: Tue, 10 Nov 2020 15:44:34 GMT
etag: "5faab562-f86"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
regio.brecht-caravan.de/wp-content/plugins/fusion-builder/assets/js/min/general/fusion-modal.js?ver=1
91.250.114.206200 OK 2.4 kB URL HTTP/2 regio.brecht-caravan.de/wp-content/plugins/fusion-builder/assets/js/min/general/fusion-modal.js?ver=1
IP 91.250.114.206:0
ASN #8972 Host Europe GmbH
File type ASCII text, with very long lines (2434), with no line terminators
Hash ba5d0c301bec2b0bed272a306d426bbf
5144c5ff4c42691a89d97bade52a8a390fe29785
fd62d3be0dbe94aa82b3ee2aecc1dc031ecc4d4e4c83870e952ba4bf3937d303
GET /wp-content/plugins/fusion-builder/assets/js/min/general/fusion-modal.js?ver=1 HTTP/1.1
Host: regio.brecht-caravan.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://regio.brecht-caravan.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 14 Sep 2022 10:47:19 GMT
content-type: application/javascript
content-length: 2434
last-modified: Wed, 11 Nov 2020 16:30:02 GMT
etag: "5fac118a-982"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
regio.brecht-caravan.de/wp-content/plugins/fusion-builder/assets/js/min/general/fusion-progress.js?ver=1
91.250.114.206200 OK 341 B URL HTTP/2 regio.brecht-caravan.de/wp-content/plugins/fusion-builder/assets/js/min/general/fusion-progress.js?ver=1
IP 91.250.114.206:0
ASN #8972 Host Europe GmbH
File type ASCII text, with very long lines (768), with no line terminators
Hash df87567cabc52ace83c919ce177d250e
d3e47a19eb848058a61ab63aa5c6d7e1d42a73b4
0d4c4fcda482525550273834a736a3d9f2ffaf1c5ce3606b0707bf76d293303c
GET /wp-content/plugins/fusion-builder/assets/js/min/general/fusion-progress.js?ver=1 HTTP/1.1
Host: regio.brecht-caravan.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://regio.brecht-caravan.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 14 Sep 2022 10:47:19 GMT
content-type: application/javascript
content-length: 341
x-accel-version: 0.01
last-modified: Wed, 11 Nov 2020 16:30:02 GMT
etag: "300-5b3d74ea4dfab-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-powered-by: PleskLin
X-Firefox-Spdy: h2
regio.brecht-caravan.de/wp-content/plugins/fusion-builder/assets/js/min/general/fusion-recent-posts.js?ver=1
91.250.114.206200 OK 2.0 kB URL HTTP/2 regio.brecht-caravan.de/wp-content/plugins/fusion-builder/assets/js/min/general/fusion-recent-posts.js?ver=1
IP 91.250.114.206:0
ASN #8972 Host Europe GmbH
File type ASCII text, with very long lines (1965), with no line terminators
Hash c78072eca09f914f1553fbf60fc2e80d
581d81b8edba90866f99253e64bc515ce7829cc8
1abeabde02ffffcaa1287c39134ae90d13606d423ca99119b4bca9cb5515489c
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/fusion-builder/assets/js/min/general/fusion-recent-posts.js?ver=1 HTTP/1.1
Host: regio.brecht-caravan.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://regio.brecht-caravan.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 14 Sep 2022 10:47:19 GMT
content-type: application/javascript
content-length: 1965
last-modified: Wed, 11 Nov 2020 16:30:02 GMT
etag: "5fac118a-7ad"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
regio.brecht-caravan.de/wp-content/plugins/fusion-builder/assets/js/min/general/fusion-syntax-highlighter.js?ver=1
91.250.114.206200 OK 2.0 kB URL HTTP/2 regio.brecht-caravan.de/wp-content/plugins/fusion-builder/assets/js/min/general/fusion-syntax-highlighter.js?ver=1
IP 91.250.114.206:0
ASN #8972 Host Europe GmbH
File type ASCII text, with very long lines (1961), with no line terminators
Hash e3491db22fbc157eda0ba8cdd735cb1a
23b78e0b1513f5731566a1a64d7113f2d91ac19e
0600dd41021581a95572cf76dfe6754f431bf17d1ed5d8407cbbfd41b3c18445
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/fusion-builder/assets/js/min/general/fusion-syntax-highlighter.js?ver=1 HTTP/1.1
Host: regio.brecht-caravan.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://regio.brecht-caravan.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 14 Sep 2022 10:47:19 GMT
content-type: application/javascript
content-length: 1961
last-modified: Wed, 11 Nov 2020 16:30:02 GMT
etag: "5fac118a-7a9"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
regio.brecht-caravan.de/wp-content/themes/Getblue/includes/lib/assets/min/js/library/bootstrap.transition.js?ver=3.3.6
91.250.114.206200 OK 373 B URL HTTP/2 regio.brecht-caravan.de/wp-content/themes/Getblue/includes/lib/assets/min/js/library/bootstrap.transition.js?ver=3.3.6
IP 91.250.114.206:0
ASN #8972 Host Europe GmbH
File type ASCII text, with very long lines (741), with no line terminators
Hash 0287f860a8c842bd15caea306aeae882
78fd117d49d7ee7aa8f57809902a190b16fe6040
b59b5dbbb13c25fbd8177298e3960a218c5034c076d4f840958540947896ae22
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/Getblue/includes/lib/assets/min/js/library/bootstrap.transition.js?ver=3.3.6 HTTP/1.1
Host: regio.brecht-caravan.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://regio.brecht-caravan.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 14 Sep 2022 10:47:19 GMT
content-type: application/javascript
content-length: 373
x-accel-version: 0.01
last-modified: Tue, 10 Nov 2020 15:44:34 GMT
etag: "2e5-5b3c28e300b2b-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-powered-by: PleskLin
X-Firefox-Spdy: h2
regio.brecht-caravan.de/wp-content/themes/Getblue/includes/lib/assets/min/js/library/bootstrap.tab.js?ver=3.1.1
91.250.114.206200 OK 1.7 kB URL HTTP/2 regio.brecht-caravan.de/wp-content/themes/Getblue/includes/lib/assets/min/js/library/bootstrap.tab.js?ver=3.1.1
IP 91.250.114.206:0
ASN #8972 Host Europe GmbH
File type ASCII text, with very long lines (1685), with no line terminators
Hash d06c60c843b4aa96ec902f21676860d3
7158a0ca7ec65c884169e06418c4cbeee956dbf7
33729b857c5024754aa713d7af5443f8d3ea366203cbc2df719fea37bedd358b
GET /wp-content/themes/Getblue/includes/lib/assets/min/js/library/bootstrap.tab.js?ver=3.1.1 HTTP/1.1
Host: regio.brecht-caravan.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://regio.brecht-caravan.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 14 Sep 2022 10:47:19 GMT
content-type: application/javascript
content-length: 1685
last-modified: Tue, 10 Nov 2020 15:44:34 GMT
etag: "5faab562-695"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
regio.brecht-caravan.de/wp-content/plugins/fusion-builder/assets/js/min/general/fusion-tabs.js?ver=1
91.250.114.206200 OK 3.4 kB URL HTTP/2 regio.brecht-caravan.de/wp-content/plugins/fusion-builder/assets/js/min/general/fusion-tabs.js?ver=1
IP 91.250.114.206:0
ASN #8972 Host Europe GmbH
File type ASCII text, with very long lines (3378), with no line terminators
Hash 7bd5eb1dd1d5bad28b1657b6e96df1b8
1d8da13fae486eaa268b3d141b8c11cedfddf297
4c33182266f9d163202a45a03fd38eafc78298a35f156d19f6afe1839d25f74e
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/fusion-builder/assets/js/min/general/fusion-tabs.js?ver=1 HTTP/1.1
Host: regio.brecht-caravan.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://regio.brecht-caravan.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 14 Sep 2022 10:47:19 GMT
content-type: application/javascript
content-length: 3378
last-modified: Wed, 11 Nov 2020 16:30:02 GMT
etag: "5fac118a-d32"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
regio.brecht-caravan.de/wp-content/themes/Getblue/includes/lib/assets/min/js/library/jquery.cycle.js?ver=3.0.3
91.250.114.206200 OK 25 kB URL HTTP/2 regio.brecht-caravan.de/wp-content/themes/Getblue/includes/lib/assets/min/js/library/jquery.cycle.js?ver=3.0.3
IP 91.250.114.206:0
ASN #8972 Host Europe GmbH
File type ASCII text, with very long lines (25337), with no line terminators
Hash 2f5e7d6416fba59134d024dc5cd193d6
19a427fa80de258de240ba1c49a54eeadc9b0b1a
9a2417fe94980c710d606030d0b1ec1f1794522a1006bc9afbcf9aef00035b4d
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/Getblue/includes/lib/assets/min/js/library/jquery.cycle.js?ver=3.0.3 HTTP/1.1
Host: regio.brecht-caravan.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://regio.brecht-caravan.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 14 Sep 2022 10:47:19 GMT
content-type: application/javascript
content-length: 25337
last-modified: Tue, 10 Nov 2020 15:44:34 GMT
etag: "5faab562-62f9"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
regio.brecht-caravan.de/wp-content/plugins/fusion-builder/assets/js/min/general/fusion-testimonials.js?ver=1
91.250.114.206200 OK 1.6 kB URL HTTP/2 regio.brecht-caravan.de/wp-content/plugins/fusion-builder/assets/js/min/general/fusion-testimonials.js?ver=1
IP 91.250.114.206:0
ASN #8972 Host Europe GmbH
File type ASCII text, with very long lines (1634), with no line terminators
Hash d35ed4af8e38c5a859eb9eaa6237f054
6fc4190c6f6806cacaf4df163073f877086b95e2
0d8cacfa24c3c91c154f1bab2a482bc0102554a451308b974906cae6c403b1a2
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/fusion-builder/assets/js/min/general/fusion-testimonials.js?ver=1 HTTP/1.1
Host: regio.brecht-caravan.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://regio.brecht-caravan.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 14 Sep 2022 10:47:19 GMT
content-type: application/javascript
content-length: 1634
last-modified: Wed, 11 Nov 2020 16:30:02 GMT
etag: "5fac118a-662"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
regio.brecht-caravan.de/wp-content/plugins/fusion-builder/assets/js/min/library/jquery.textillate.js?ver=2.0
91.250.114.206200 OK 5.9 kB URL HTTP/2 regio.brecht-caravan.de/wp-content/plugins/fusion-builder/assets/js/min/library/jquery.textillate.js?ver=2.0
IP 91.250.114.206:0
ASN #8972 Host Europe GmbH
File type ASCII text, with very long lines (5943), with no line terminators
Hash f2a5bf4853fc2d24985bd1a3ec1a40d2
c92ed71bfe0476ba209a15d5ac57b333480fb927
cf5a694f89a767ceaa37156e4b714df2a03a4dfc79a86286e370079dfb821a78
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/fusion-builder/assets/js/min/library/jquery.textillate.js?ver=2.0 HTTP/1.1
Host: regio.brecht-caravan.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://regio.brecht-caravan.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 14 Sep 2022 10:47:19 GMT
content-type: application/javascript
content-length: 5943
last-modified: Wed, 11 Nov 2020 16:30:02 GMT
etag: "5fac118a-1737"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
regio.brecht-caravan.de/wp-content/plugins/fusion-builder/assets/js/min/general/fusion-title.js?ver=1
91.250.114.206200 OK 3.8 kB URL HTTP/2 regio.brecht-caravan.de/wp-content/plugins/fusion-builder/assets/js/min/general/fusion-title.js?ver=1
IP 91.250.114.206:0
ASN #8972 Host Europe GmbH
File type ASCII text, with very long lines (3822), with no line terminators
Hash 97bf161371a8a45737ccc673a74bc69f
ba1b797c59400d1de01400d0f9781386250fd876
43a591036536e303de34153ff30a5f573d2589e44639ecae77eb3cef23e5e911
GET /wp-content/plugins/fusion-builder/assets/js/min/general/fusion-title.js?ver=1 HTTP/1.1
Host: regio.brecht-caravan.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://regio.brecht-caravan.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 14 Sep 2022 10:47:19 GMT
content-type: application/javascript
content-length: 3822
last-modified: Wed, 11 Nov 2020 16:30:02 GMT
etag: "5fac118a-eee"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
regio.brecht-caravan.de/wp-content/themes/Getblue/includes/lib/assets/min/js/library/bootstrap.collapse.js?ver=3.1.1
91.250.114.206200 OK 3.5 kB URL HTTP/2 regio.brecht-caravan.de/wp-content/themes/Getblue/includes/lib/assets/min/js/library/bootstrap.collapse.js?ver=3.1.1
IP 91.250.114.206:0
ASN #8972 Host Europe GmbH
File type ASCII text, with very long lines (3487), with no line terminators
Hash d1821bc1ca3013109fe82963f105fa1f
1c834500d26ae1874cd3845e8bbc09f77a8cb2b1
7320f1b88beceab8c7640034d3db5012251f4823a593270f8abfdfce0b74d849
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/Getblue/includes/lib/assets/min/js/library/bootstrap.collapse.js?ver=3.1.1 HTTP/1.1
Host: regio.brecht-caravan.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://regio.brecht-caravan.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 14 Sep 2022 10:47:19 GMT
content-type: application/javascript
content-length: 3487
last-modified: Tue, 10 Nov 2020 15:44:34 GMT
etag: "5faab562-d9f"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
regio.brecht-caravan.de/wp-content/plugins/fusion-builder/assets/js/min/general/fusion-toggles.js?ver=1
91.250.114.206200 OK 1.8 kB URL HTTP/2 regio.brecht-caravan.de/wp-content/plugins/fusion-builder/assets/js/min/general/fusion-toggles.js?ver=1
IP 91.250.114.206:0
ASN #8972 Host Europe GmbH
File type ASCII text, with very long lines (1781), with no line terminators
Hash e426f3fff0af58bd43ee59d840af83ee
116dbd9e9b3655b0dcb9b6b36771a45a665df1a8
600decba2fea36660d26b29b3b8d6098bfa9cc4b4b8fa044b6104cfcd7ee6f2d
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/fusion-builder/assets/js/min/general/fusion-toggles.js?ver=1 HTTP/1.1
Host: regio.brecht-caravan.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://regio.brecht-caravan.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 14 Sep 2022 10:47:19 GMT
content-type: application/javascript
content-length: 1781
last-modified: Wed, 11 Nov 2020 16:30:02 GMT
etag: "5fac118a-6f5"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
regio.brecht-caravan.de/wp-content/themes/Getblue/includes/lib/assets/min/js/library/vimeoPlayer.js?ver=2.2.1
91.250.114.206200 OK 17 kB URL HTTP/2 regio.brecht-caravan.de/wp-content/themes/Getblue/includes/lib/assets/min/js/library/vimeoPlayer.js?ver=2.2.1
IP 91.250.114.206:0
ASN #8972 Host Europe GmbH
File type Unicode text, UTF-8 text, with very long lines (16292)
Hash add41bd998490cb0db82b59c60b4b433
c367b3166670d0b6a0ee78f0cb8d476f780201cd
501c8b7edd85aa5b93a52254d40cf04d754018292b113caf7f76441701d30a0a
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/Getblue/includes/lib/assets/min/js/library/vimeoPlayer.js?ver=2.2.1 HTTP/1.1
Host: regio.brecht-caravan.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://regio.brecht-caravan.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 14 Sep 2022 10:47:19 GMT
content-type: application/javascript
content-length: 16573
last-modified: Tue, 10 Nov 2020 15:44:34 GMT
etag: "5faab562-40bd"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
regio.brecht-caravan.de/wp-content/plugins/fusion-builder/assets/js/min/general/fusion-video.js?ver=1
91.250.114.206200 OK 2.0 kB URL HTTP/2 regio.brecht-caravan.de/wp-content/plugins/fusion-builder/assets/js/min/general/fusion-video.js?ver=1
IP 91.250.114.206:0
ASN #8972 Host Europe GmbH
File type ASCII text, with very long lines (2034), with no line terminators
Hash 34001789ebcbec3a918fd5283b3e303b
820a88763fb7fc318284da77ab7b61ea2022eea2
acf8c2c50d2953ef94da9e99ed22b880a3cc497041833f1fa95ca613c2ab3950
GET /wp-content/plugins/fusion-builder/assets/js/min/general/fusion-video.js?ver=1 HTTP/1.1
Host: regio.brecht-caravan.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://regio.brecht-caravan.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 14 Sep 2022 10:47:19 GMT
content-type: application/javascript
content-length: 2034
last-modified: Wed, 11 Nov 2020 16:30:02 GMT
etag: "5fac118a-7f2"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
regio.brecht-caravan.de/wp-content/themes/Getblue/includes/lib/assets/min/js/library/jquery.hoverintent.js?ver=1
91.250.114.206200 OK 1.1 kB URL HTTP/2 regio.brecht-caravan.de/wp-content/themes/Getblue/includes/lib/assets/min/js/library/jquery.hoverintent.js?ver=1
IP 91.250.114.206:0
ASN #8972 Host Europe GmbH
File type ASCII text, with very long lines (1098), with no line terminators
Hash 3430261b0500bb2d00a6c002c4ffcc30
839ae2f86ab55112649406d8884524c2d66cc297
34e014c7d41ab0ae2996907824eda3bde337242ebd9dc29aeccd9d67078246ab
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/Getblue/includes/lib/assets/min/js/library/jquery.hoverintent.js?ver=1 HTTP/1.1
Host: regio.brecht-caravan.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://regio.brecht-caravan.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 14 Sep 2022 10:47:19 GMT
content-type: application/javascript
content-length: 1098
last-modified: Tue, 10 Nov 2020 15:44:34 GMT
etag: "5faab562-44a"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
regio.brecht-caravan.de/wp-content/plugins/fusion-core/js/min/fusion-vertical-menu-widget.js?ver=1
91.250.114.206200 OK 1.9 kB URL HTTP/2 regio.brecht-caravan.de/wp-content/plugins/fusion-core/js/min/fusion-vertical-menu-widget.js?ver=1
IP 91.250.114.206:0
ASN #8972 Host Europe GmbH
File type ASCII text, with very long lines (1887), with no line terminators
Hash c1b9597f972aac942c0af8b6568c5c67
db863909e800cf647bad8f39f79f941ec8288f9c
29aaa0e6bbb1fe7cf6adf3c2503ff1a127aece767e950527694d06b5c04230d9
GET /wp-content/plugins/fusion-core/js/min/fusion-vertical-menu-widget.js?ver=1 HTTP/1.1
Host: regio.brecht-caravan.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://regio.brecht-caravan.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 14 Sep 2022 10:47:19 GMT
content-type: application/javascript
content-length: 1887
last-modified: Wed, 11 Nov 2020 16:29:31 GMT
etag: "5fac116b-75f"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
regio.brecht-caravan.de/wp-content/themes/Getblue/includes/lib/assets/min/js/library/lazysizes.js?ver=4.1.5
91.250.114.206200 OK 7.1 kB URL HTTP/2 regio.brecht-caravan.de/wp-content/themes/Getblue/includes/lib/assets/min/js/library/lazysizes.js?ver=4.1.5
IP 91.250.114.206:0
ASN #8972 Host Europe GmbH
File type ASCII text, with very long lines (7142), with no line terminators
Hash d006f3197c59c847385c19956611791f
5bce0a7a09237ca5c6a47255db195e94242e39bc
d45bf49661c66720a758ad7ce7bf639d1831bd3ece908705558552953e00eb15
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/Getblue/includes/lib/assets/min/js/library/lazysizes.js?ver=4.1.5 HTTP/1.1
Host: regio.brecht-caravan.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://regio.brecht-caravan.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 14 Sep 2022 10:47:19 GMT
content-type: application/javascript
content-length: 7142
last-modified: Tue, 10 Nov 2020 15:44:34 GMT
etag: "5faab562-1be6"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
regio.brecht-caravan.de/wp-content/themes/Getblue/includes/lib/assets/min/js/library/bootstrap.tooltip.js?ver=3.3.5
91.250.114.206200 OK 11 kB URL HTTP/2 regio.brecht-caravan.de/wp-content/themes/Getblue/includes/lib/assets/min/js/library/bootstrap.tooltip.js?ver=3.3.5
IP 91.250.114.206:0
ASN #8972 Host Europe GmbH
File type ASCII text, with very long lines (10837), with no line terminators
Hash b3997023d4e698fdd1db60710a26590d
3ae3d1f1e1ce48106a17c9d33c02472fbecb9628
174e244c283a29b83acfc789a88f269dd468ecf03c7768356e691b81a010e542
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/Getblue/includes/lib/assets/min/js/library/bootstrap.tooltip.js?ver=3.3.5 HTTP/1.1
Host: regio.brecht-caravan.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://regio.brecht-caravan.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 14 Sep 2022 10:47:19 GMT
content-type: application/javascript
content-length: 10837
last-modified: Tue, 10 Nov 2020 15:44:34 GMT
etag: "5faab562-2a55"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
regio.brecht-caravan.de/wp-content/themes/Getblue/includes/lib/assets/min/js/library/bootstrap.popover.js?ver=3.3.5
91.250.114.206200 OK 1.7 kB URL HTTP/2 regio.brecht-caravan.de/wp-content/themes/Getblue/includes/lib/assets/min/js/library/bootstrap.popover.js?ver=3.3.5
IP 91.250.114.206:0
ASN #8972 Host Europe GmbH
File type ASCII text, with very long lines (1748), with no line terminators
Hash d47888bd96f57359b7fa42561494c552
c36918bacdd79aed6718c3786756ae53153ff9eb
b5f949ee17347bdfa9456e7eedd3a0445eccc8809c33b1842551eb5c5daaabd0
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/Getblue/includes/lib/assets/min/js/library/bootstrap.popover.js?ver=3.3.5 HTTP/1.1
Host: regio.brecht-caravan.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://regio.brecht-caravan.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 14 Sep 2022 10:47:19 GMT
content-type: application/javascript
content-length: 1748
last-modified: Tue, 10 Nov 2020 15:44:34 GMT
etag: "5faab562-6d4"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
regio.brecht-caravan.de/wp-content/themes/Getblue/includes/lib/assets/min/js/library/jquery.carouFredSel.js?ver=6.2.1
91.250.114.206200 OK 54 kB URL HTTP/2 regio.brecht-caravan.de/wp-content/themes/Getblue/includes/lib/assets/min/js/library/jquery.carouFredSel.js?ver=6.2.1
IP 91.250.114.206:0
ASN #8972 Host Europe GmbH
File type ASCII text, with very long lines (54352), with no line terminators
Hash 59d0b868efeb787eb0cd331f52d25a0e
c6a171b68f26bac1da66883248eb9aa226ed587b
fb19b647849cd037331a7a017e6d5466dc90e3ba866a69ba3c3c5d512f276f13
GET /wp-content/themes/Getblue/includes/lib/assets/min/js/library/jquery.carouFredSel.js?ver=6.2.1 HTTP/1.1
Host: regio.brecht-caravan.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://regio.brecht-caravan.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 14 Sep 2022 10:47:19 GMT
content-type: application/javascript
content-length: 54352
last-modified: Tue, 10 Nov 2020 15:44:34 GMT
etag: "5faab562-d450"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
regio.brecht-caravan.de/wp-content/themes/Getblue/includes/lib/assets/min/js/library/jquery.easing.js?ver=1.3
91.250.114.206200 OK 3.3 kB URL HTTP/2 regio.brecht-caravan.de/wp-content/themes/Getblue/includes/lib/assets/min/js/library/jquery.easing.js?ver=1.3
IP 91.250.114.206:0
ASN #8972 Host Europe GmbH
File type ASCII text, with very long lines (3308), with no line terminators
Hash ef5cea90b052e9a22ea5e8c3447685c6
0229ff6bfd424e2b04904b698feea6f19997e1ce
79cae730bb235a3041521278e905209e2be9f0b817dd2b8742a05dad8b1dc5aa
GET /wp-content/themes/Getblue/includes/lib/assets/min/js/library/jquery.easing.js?ver=1.3 HTTP/1.1
Host: regio.brecht-caravan.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://regio.brecht-caravan.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 14 Sep 2022 10:47:19 GMT
content-type: application/javascript
content-length: 3308
last-modified: Tue, 10 Nov 2020 15:44:34 GMT
etag: "5faab562-cec"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
regio.brecht-caravan.de/wp-content/themes/Getblue/includes/lib/assets/min/js/library/jquery.hoverflow.js?ver=1
91.250.114.206200 OK 334 B URL HTTP/2 regio.brecht-caravan.de/wp-content/themes/Getblue/includes/lib/assets/min/js/library/jquery.hoverflow.js?ver=1
IP 91.250.114.206:0
ASN #8972 Host Europe GmbH
File type ASCII text, with very long lines (647), with no line terminators
Hash d149404863e3dff58424f3f020ae6ace
869cc5667a9c403ceca871820efb16bd194251d6
bbf79d290f98746420dc076d71132d409a2f9dc4132f7d06669b615097fcfb8f
GET /wp-content/themes/Getblue/includes/lib/assets/min/js/library/jquery.hoverflow.js?ver=1 HTTP/1.1
Host: regio.brecht-caravan.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://regio.brecht-caravan.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 14 Sep 2022 10:47:19 GMT
content-type: application/javascript
content-length: 334
x-accel-version: 0.01
last-modified: Tue, 10 Nov 2020 15:44:34 GMT
etag: "287-5b3c28e30035b-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-powered-by: PleskLin
X-Firefox-Spdy: h2
regio.brecht-caravan.de/wp-content/themes/Getblue/includes/lib/assets/min/js/library/jquery.flexslider.js?ver=2.2.2
91.250.114.206200 OK 23 kB URL HTTP/2 regio.brecht-caravan.de/wp-content/themes/Getblue/includes/lib/assets/min/js/library/jquery.flexslider.js?ver=2.2.2
IP 91.250.114.206:0
ASN #8972 Host Europe GmbH
File type ASCII text, with very long lines (23008), with no line terminators
Hash ca907333f29fb5447230aae02add6363
42e09f1cdecda5fdca3d43364730510305c6881d
c91b0ef0c9235c53d5ea9a74036c5ec2f6f916c02b80dc344c8975cfab558ab8
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/Getblue/includes/lib/assets/min/js/library/jquery.flexslider.js?ver=2.2.2 HTTP/1.1
Host: regio.brecht-caravan.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://regio.brecht-caravan.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 14 Sep 2022 10:47:19 GMT
content-type: application/javascript
content-length: 23008
last-modified: Tue, 10 Nov 2020 15:44:34 GMT
etag: "5faab562-59e0"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
regio.brecht-caravan.de/wp-content/themes/Getblue/includes/lib/assets/min/js/library/jquery.placeholder.js?ver=2.0.7
91.250.114.206200 OK 2.2 kB URL HTTP/2 regio.brecht-caravan.de/wp-content/themes/Getblue/includes/lib/assets/min/js/library/jquery.placeholder.js?ver=2.0.7
IP 91.250.114.206:0
ASN #8972 Host Europe GmbH
File type ASCII text, with very long lines (2176), with no line terminators
Hash e9256563e9658d30f484407ffb8baf3a
ef00b51debbc367d6039482ef311c115496d5d7d
fa34de993dea91eb0120c3745378192fa1177ba8ec5772e08632318d1d5e1267
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/Getblue/includes/lib/assets/min/js/library/jquery.placeholder.js?ver=2.0.7 HTTP/1.1
Host: regio.brecht-caravan.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://regio.brecht-caravan.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 14 Sep 2022 10:47:19 GMT
content-type: application/javascript
content-length: 2176
last-modified: Tue, 10 Nov 2020 15:44:34 GMT
etag: "5faab562-880"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
regio.brecht-caravan.de/wp-content/themes/Getblue/includes/lib/assets/min/js/library/jquery.touchSwipe.js?ver=1.6.6
91.250.114.206200 OK 9.4 kB URL HTTP/2 regio.brecht-caravan.de/wp-content/themes/Getblue/includes/lib/assets/min/js/library/jquery.touchSwipe.js?ver=1.6.6
IP 91.250.114.206:0
ASN #8972 Host Europe GmbH
File type ASCII text, with very long lines (9399), with no line terminators
Hash cf03f572b825e8710b00b5c86c07aad1
d831d7edd30fdd35842ec489cc61e03a36e7b02c
e21d3d8819243a6cd99c4ab2ed4e9518e3a239f76bf3e9481f318eb4153458e9
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/Getblue/includes/lib/assets/min/js/library/jquery.touchSwipe.js?ver=1.6.6 HTTP/1.1
Host: regio.brecht-caravan.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://regio.brecht-caravan.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 14 Sep 2022 10:47:19 GMT
content-type: application/javascript
content-length: 9399
last-modified: Tue, 10 Nov 2020 15:44:34 GMT
etag: "5faab562-24b7"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
regio.brecht-caravan.de/wp-content/themes/Getblue/includes/lib/assets/min/js/general/fusion-carousel.js?ver=1
91.250.114.206200 OK 4.4 kB URL HTTP/2 regio.brecht-caravan.de/wp-content/themes/Getblue/includes/lib/assets/min/js/general/fusion-carousel.js?ver=1
IP 91.250.114.206:0
ASN #8972 Host Europe GmbH
File type ASCII text, with very long lines (4419), with no line terminators
Hash 40b4ea0f94fc17d053680aa504b2d069
5df9ba5410e0ad10531514fd2c71e2f16df050b6
bbc6d2a766c68b4ec88d0ec8f9baf63124d71230632c2a022117c9b05b9c6d9c
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/Getblue/includes/lib/assets/min/js/general/fusion-carousel.js?ver=1 HTTP/1.1
Host: regio.brecht-caravan.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://regio.brecht-caravan.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 14 Sep 2022 10:47:19 GMT
content-type: application/javascript
content-length: 4419
last-modified: Tue, 10 Nov 2020 15:44:34 GMT
etag: "5faab562-1143"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
regio.brecht-caravan.de/wp-content/themes/Getblue/includes/lib/assets/min/js/general/fusion-alert.js?ver=1
91.250.114.206200 OK 195 B URL HTTP/2 regio.brecht-caravan.de/wp-content/themes/Getblue/includes/lib/assets/min/js/general/fusion-alert.js?ver=1
IP 91.250.114.206:0
ASN #8972 Host Europe GmbH
File type ASCII text, with no line terminators
Hash 035163682275e8f6a212787443a5bec6
030d18ea4df0e92fc24075a087a5d9348ac9ec05
a8c8562166bc6c2f9865bcd3ce89dd0e9d5e49cb6583bcb7d4579e173a882f60
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/Getblue/includes/lib/assets/min/js/general/fusion-alert.js?ver=1 HTTP/1.1
Host: regio.brecht-caravan.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://regio.brecht-caravan.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 14 Sep 2022 10:47:19 GMT
content-type: application/javascript
content-length: 195
x-accel-version: 0.01
last-modified: Tue, 10 Nov 2020 15:44:34 GMT
etag: "104-5b3c28e30788b-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-powered-by: PleskLin
X-Firefox-Spdy: h2
regio.brecht-caravan.de/wp-content/themes/Getblue/includes/lib/assets/min/js/general/fusion-flexslider.js?ver=1
91.250.114.206200 OK 5.9 kB URL HTTP/2 regio.brecht-caravan.de/wp-content/themes/Getblue/includes/lib/assets/min/js/general/fusion-flexslider.js?ver=1
IP 91.250.114.206:0
ASN #8972 Host Europe GmbH
File type ASCII text, with very long lines (5875), with no line terminators
Hash 7e77adda909e3d75aa2e6290ef2d5e3d
a7b83817d4cc9857c0b46aba19fdb5f14d7d17b7
b116399eeda8ccc6729f77f2c45e266195892a005399c8e0ef2079ecc5454371
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/Getblue/includes/lib/assets/min/js/general/fusion-flexslider.js?ver=1 HTTP/1.1
Host: regio.brecht-caravan.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://regio.brecht-caravan.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 14 Sep 2022 10:47:19 GMT
content-type: application/javascript
content-length: 5875
last-modified: Tue, 10 Nov 2020 15:44:34 GMT
etag: "5faab562-16f3"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
regio.brecht-caravan.de/wp-content/themes/Getblue/includes/lib/assets/min/js/general/fusion-popover.js?ver=1
91.250.114.206200 OK 305 B URL HTTP/2 regio.brecht-caravan.de/wp-content/themes/Getblue/includes/lib/assets/min/js/general/fusion-popover.js?ver=1
IP 91.250.114.206:0
ASN #8972 Host Europe GmbH
File type ASCII text, with very long lines (698), with no line terminators
Hash 8ee3b4e7eacb6fc3749ecc6ff5bd2223
06f0ea0e8e4a97683c8d96337a8008ba2a268c64
c8b00948f734aae808a6f0e0d303152a8acf4c64ba385c1a40b07f7c9ca9eabd
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/Getblue/includes/lib/assets/min/js/general/fusion-popover.js?ver=1 HTTP/1.1
Host: regio.brecht-caravan.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://regio.brecht-caravan.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 14 Sep 2022 10:47:19 GMT
content-type: application/javascript
content-length: 305
x-accel-version: 0.01
last-modified: Tue, 10 Nov 2020 15:44:34 GMT
etag: "2ba-5b3c28e30a383-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-powered-by: PleskLin
X-Firefox-Spdy: h2
regio.brecht-caravan.de/wp-content/themes/Getblue/includes/lib/assets/min/js/general/fusion-tooltip.js?ver=1
91.250.114.206200 OK 1.7 kB URL HTTP/2 regio.brecht-caravan.de/wp-content/themes/Getblue/includes/lib/assets/min/js/general/fusion-tooltip.js?ver=1
IP 91.250.114.206:0
ASN #8972 Host Europe GmbH
File type ASCII text, with very long lines (1707), with no line terminators
Hash 6d4fa80597ec147497f4168e255864bc
73e8dd9a63e71d3d00a0747f53caa43f6c4be09f
04ffc69e6bdae64435d6ec1e0ec347979cec8bb40fd0cfcc22c959988b08745e
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/Getblue/includes/lib/assets/min/js/general/fusion-tooltip.js?ver=1 HTTP/1.1
Host: regio.brecht-caravan.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://regio.brecht-caravan.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 14 Sep 2022 10:47:19 GMT
content-type: application/javascript
content-length: 1707
last-modified: Tue, 10 Nov 2020 15:44:34 GMT
etag: "5faab562-6ab"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
regio.brecht-caravan.de/wp-content/themes/Getblue/includes/lib/assets/min/js/general/fusion-sharing-box.js?ver=1
91.250.114.206200 OK 339 B URL HTTP/2 regio.brecht-caravan.de/wp-content/themes/Getblue/includes/lib/assets/min/js/general/fusion-sharing-box.js?ver=1
IP 91.250.114.206:0
ASN #8972 Host Europe GmbH
File type ASCII text, with very long lines (888), with no line terminators
Hash 046f411390a97a03d9218b2bd6c64dba
34f2a8696c779c841c3d021289753cd73d0dd8b2
04e39cb212ecc51faacac3d4ef2cebebd33398b4a83ff34eb69150ab5eeea16f
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/Getblue/includes/lib/assets/min/js/general/fusion-sharing-box.js?ver=1 HTTP/1.1
Host: regio.brecht-caravan.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://regio.brecht-caravan.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 14 Sep 2022 10:47:19 GMT
content-type: application/javascript
content-length: 339
x-accel-version: 0.01
last-modified: Tue, 10 Nov 2020 15:44:34 GMT
etag: "378-5b3c28e30882b-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-powered-by: PleskLin
X-Firefox-Spdy: h2
regio.brecht-caravan.de/wp-content/themes/Getblue/includes/lib/assets/min/js/general/fusion-blog.js?ver=1
91.250.114.206200 OK 7.5 kB URL HTTP/2 regio.brecht-caravan.de/wp-content/themes/Getblue/includes/lib/assets/min/js/general/fusion-blog.js?ver=1
IP 91.250.114.206:0
ASN #8972 Host Europe GmbH
File type ASCII text, with very long lines (7515), with no line terminators
Hash 885adc2fae9799bdcf39440616753784
f52a1ed07d13998b5a95ffca3911d1eeb87b2d2e
d563abdca069e907d71dac9119231745499c5d731a34582a65f44db7cd208212
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/Getblue/includes/lib/assets/min/js/general/fusion-blog.js?ver=1 HTTP/1.1
Host: regio.brecht-caravan.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://regio.brecht-caravan.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 14 Sep 2022 10:47:19 GMT
content-type: application/javascript
content-length: 7515
last-modified: Tue, 10 Nov 2020 15:44:34 GMT
etag: "5faab562-1d5b"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
regio.brecht-caravan.de/wp-content/themes/Getblue/includes/lib/assets/min/js/general/fusion-button.js?ver=1
91.250.114.206200 OK 174 B URL HTTP/2 regio.brecht-caravan.de/wp-content/themes/Getblue/includes/lib/assets/min/js/general/fusion-button.js?ver=1
IP 91.250.114.206:0
ASN #8972 Host Europe GmbH
File type ASCII text, with no line terminators
Hash 1484db10cddde999b798bd7c603eff96
26a39f2ff3b0e16aef731ef3b17f761959678e19
bf3d923f5f52fb47ebd84f4eac24b5800a2bc7a7e5f7403757fc514fe656e54a
GET /wp-content/themes/Getblue/includes/lib/assets/min/js/general/fusion-button.js?ver=1 HTTP/1.1
Host: regio.brecht-caravan.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://regio.brecht-caravan.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 14 Sep 2022 10:47:19 GMT
content-type: application/javascript
content-length: 174
x-accel-version: 0.01
last-modified: Tue, 10 Nov 2020 15:44:34 GMT
etag: "ec-5b3c28e30805b-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-powered-by: PleskLin
X-Firefox-Spdy: h2
regio.brecht-caravan.de/wp-content/themes/Getblue/includes/lib/assets/min/js/general/fusion-general-global.js?ver=1
91.250.114.206200 OK 245 B URL HTTP/2 regio.brecht-caravan.de/wp-content/themes/Getblue/includes/lib/assets/min/js/general/fusion-general-global.js?ver=1
IP 91.250.114.206:0
ASN #8972 Host Europe GmbH
File type ASCII text, with very long lines (483), with no line terminators
Hash 4001b77cd3b0c975837e565ac678502a
044aa2eddb3c3f51fb12a4d2a28e251c80878202
040c6f4cd99e486f79e06fffdc110d3a554dd72a8d76ac025cf9a6c7110518ca
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/Getblue/includes/lib/assets/min/js/general/fusion-general-global.js?ver=1 HTTP/1.1
Host: regio.brecht-caravan.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://regio.brecht-caravan.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 14 Sep 2022 10:47:19 GMT
content-type: application/javascript
content-length: 245
x-accel-version: 0.01
last-modified: Tue, 10 Nov 2020 15:44:34 GMT
etag: "1e3-5b3c28e308ffb-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-powered-by: PleskLin
X-Firefox-Spdy: h2
regio.brecht-caravan.de/wp-content/themes/Getblue/includes/lib/assets/min/js/general/fusion.js?ver=2.2.3
91.250.114.206200 OK 2.4 kB URL HTTP/2 regio.brecht-caravan.de/wp-content/themes/Getblue/includes/lib/assets/min/js/general/fusion.js?ver=2.2.3
IP 91.250.114.206:0
ASN #8972 Host Europe GmbH
File type ASCII text, with very long lines (2411), with no line terminators
Hash 6c880fed6961e380f90d15ef10d7e208
fb64d6449f2341cc0a124c927c02a59b5c3db146
5a139fca9be6cbe9de8bcd25f9c24ad12d64fc7ae47eac4f7696d8a4bf84e72d
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/Getblue/includes/lib/assets/min/js/general/fusion.js?ver=2.2.3 HTTP/1.1
Host: regio.brecht-caravan.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://regio.brecht-caravan.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 14 Sep 2022 10:47:19 GMT
content-type: application/javascript
content-length: 2411
last-modified: Tue, 10 Nov 2020 15:44:34 GMT
etag: "5faab562-96b"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
regio.brecht-caravan.de/wp-content/themes/Getblue/assets/min/js/general/avada-menu.js?ver=6.2.3
91.250.114.206200 OK 40 kB URL HTTP/2 regio.brecht-caravan.de/wp-content/themes/Getblue/assets/min/js/general/avada-menu.js?ver=6.2.3
IP 91.250.114.206:0
ASN #8972 Host Europe GmbH
File type ASCII text, with very long lines (31981)
Hash 46f40d3dc7258aee44b11f597fcc18d3
6070d21c89d4329ad3bc3e629d80c04ce115f8d3
73da70069b0764cb2e4f83330af9c33cee6b5e47679c2bc75e473e170c620d27
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/Getblue/assets/min/js/general/avada-menu.js?ver=6.2.3 HTTP/1.1
Host: regio.brecht-caravan.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://regio.brecht-caravan.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 14 Sep 2022 10:47:19 GMT
content-type: application/javascript
content-length: 39757
last-modified: Tue, 10 Nov 2020 15:44:34 GMT
etag: "5faab562-9b4d"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
regio.brecht-caravan.de/wp-content/themes/Getblue/assets/min/js/general/avada-header.js?ver=6.2.3
91.250.114.206200 OK 33 kB URL HTTP/2 regio.brecht-caravan.de/wp-content/themes/Getblue/assets/min/js/general/avada-header.js?ver=6.2.3
IP 91.250.114.206:0
ASN #8972 Host Europe GmbH
File type ASCII text, with very long lines (31862)
Hash e43647c00a92037d24d8556db0734f2a
23386f86d4be41cd563bc8bb74f48e36330b2653
85040fd29e1243dd78b89f74e0f43af13c340edb6a03ac9def41dc62db15d680
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/Getblue/assets/min/js/general/avada-header.js?ver=6.2.3 HTTP/1.1
Host: regio.brecht-caravan.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://regio.brecht-caravan.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 14 Sep 2022 10:47:19 GMT
content-type: application/javascript
content-length: 33165
last-modified: Tue, 10 Nov 2020 15:44:34 GMT
etag: "5faab562-818d"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
regio.brecht-caravan.de/wp-content/themes/Getblue/includes/lib/assets/min/js/general/fusion-scroll-to-anchor.js?ver=1
91.250.114.206200 OK 4.8 kB URL HTTP/2 regio.brecht-caravan.de/wp-content/themes/Getblue/includes/lib/assets/min/js/general/fusion-scroll-to-anchor.js?ver=1
IP 91.250.114.206:0
ASN #8972 Host Europe GmbH
File type ASCII text, with very long lines (4801), with no line terminators
Hash 78e5004b22330c578156510ba0ce33a9
ab0ea9b604487bbaeabae71a7c085c63dcd7c495
6db7d277489e4025471d77f99343c5befeba403d158d432b7b87460d563211b7
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/Getblue/includes/lib/assets/min/js/general/fusion-scroll-to-anchor.js?ver=1 HTTP/1.1
Host: regio.brecht-caravan.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://regio.brecht-caravan.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 14 Sep 2022 10:47:19 GMT
content-type: application/javascript
content-length: 4801
last-modified: Tue, 10 Nov 2020 15:44:34 GMT
etag: "5faab562-12c1"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
regio.brecht-caravan.de/wp-content/themes/Getblue/includes/lib/assets/min/js/general/fusion-responsive-typography.js?ver=1
91.250.114.206200 OK 3.5 kB URL HTTP/2 regio.brecht-caravan.de/wp-content/themes/Getblue/includes/lib/assets/min/js/general/fusion-responsive-typography.js?ver=1
IP 91.250.114.206:0
ASN #8972 Host Europe GmbH
File type ASCII text, with very long lines (3464), with no line terminators
Hash ccf72ec7f79a2fe8445ba8679722f290
e216fcaf5318f99bc091040c1a6a53b4744ff16b
17a3d543a99f75298b78071d9f8d2a26815bafc0952485c85d39bde521720141
GET /wp-content/themes/Getblue/includes/lib/assets/min/js/general/fusion-responsive-typography.js?ver=1 HTTP/1.1
Host: regio.brecht-caravan.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://regio.brecht-caravan.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 14 Sep 2022 10:47:19 GMT
content-type: application/javascript
content-length: 3464
last-modified: Tue, 10 Nov 2020 15:44:34 GMT
etag: "5faab562-d88"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
regio.brecht-caravan.de/wp-content/themes/Getblue/assets/min/js/library/bootstrap.scrollspy.js?ver=3.3.2
91.250.114.206200 OK 2.7 kB URL HTTP/2 regio.brecht-caravan.de/wp-content/themes/Getblue/assets/min/js/library/bootstrap.scrollspy.js?ver=3.3.2
IP 91.250.114.206:0
ASN #8972 Host Europe GmbH
File type ASCII text, with very long lines (2679), with no line terminators
Hash 277dfd20d4ad94570e0bd8d6cd8797fd
0676fdf2f2e47823d6ad40134510a84aacd478cb
b6ce2750a5429b968ac4c675acacfbd7da06ddf4638fb1e73ffb0a4553b346cb
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/Getblue/assets/min/js/library/bootstrap.scrollspy.js?ver=3.3.2 HTTP/1.1
Host: regio.brecht-caravan.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://regio.brecht-caravan.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 14 Sep 2022 10:47:19 GMT
content-type: application/javascript
content-length: 2679
last-modified: Tue, 10 Nov 2020 15:44:34 GMT
etag: "5faab562-a77"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
regio.brecht-caravan.de/wp-content/themes/Getblue/assets/min/js/general/avada-skip-link-focus-fix.js?ver=6.2.3
91.250.114.206200 OK 250 B URL HTTP/2 regio.brecht-caravan.de/wp-content/themes/Getblue/assets/min/js/general/avada-skip-link-focus-fix.js?ver=6.2.3
IP 91.250.114.206:0
ASN #8972 Host Europe GmbH
File type ASCII text, with very long lines (340), with no line terminators
Hash 1a3757e2b161b85ec97d872161c6ad9a
1a2e29a7ea018ff34428b0bb11a6b5ed9055018e
ef6019a85746f612113813610dab90644041878e0978138458c2c9c5a2fa2529
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/Getblue/assets/min/js/general/avada-skip-link-focus-fix.js?ver=6.2.3 HTTP/1.1
Host: regio.brecht-caravan.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://regio.brecht-caravan.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 14 Sep 2022 10:47:19 GMT
content-type: application/javascript
content-length: 250
x-accel-version: 0.01
last-modified: Tue, 10 Nov 2020 15:44:34 GMT
etag: "154-5b3c28e334b34-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-powered-by: PleskLin
X-Firefox-Spdy: h2
regio.brecht-caravan.de/wp-content/themes/Getblue/assets/min/js/general/avada-comments.js?ver=6.2.3
91.250.114.206200 OK 1.2 kB URL HTTP/2 regio.brecht-caravan.de/wp-content/themes/Getblue/assets/min/js/general/avada-comments.js?ver=6.2.3
IP 91.250.114.206:0
ASN #8972 Host Europe GmbH
File type ASCII text, with very long lines (1244), with no line terminators
Hash 70cee5c6ee29d41a2f95d7ed7997805b
d9105b6e6f90cf2448c24317ba28f723c4db8bcb
d3100ccc3e7ea357480b059670e51d53a8d55c629ef179d67a10f7c7e19e62d6
GET /wp-content/themes/Getblue/assets/min/js/general/avada-comments.js?ver=6.2.3 HTTP/1.1
Host: regio.brecht-caravan.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://regio.brecht-caravan.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 14 Sep 2022 10:47:19 GMT
content-type: application/javascript
content-length: 1244
last-modified: Tue, 10 Nov 2020 15:44:34 GMT
etag: "5faab562-4dc"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
regio.brecht-caravan.de/wp-content/themes/Getblue/assets/min/js/general/avada-general-footer.js?ver=6.2.3
91.250.114.206200 OK 364 B URL HTTP/2 regio.brecht-caravan.de/wp-content/themes/Getblue/assets/min/js/general/avada-general-footer.js?ver=6.2.3
IP 91.250.114.206:0
ASN #8972 Host Europe GmbH
File type ASCII text, with very long lines (992), with no line terminators
Hash 51255dd1d96326c875cd329e5d9ea0a3
7c4778d261658c141845b1727cea3ee376cabddf
74194539dfa912c50860b50494649c6d2ee97b3531092894d7d88d6b9d8bafc2
GET /wp-content/themes/Getblue/assets/min/js/general/avada-general-footer.js?ver=6.2.3 HTTP/1.1
Host: regio.brecht-caravan.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://regio.brecht-caravan.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 14 Sep 2022 10:47:19 GMT
content-type: application/javascript
content-length: 364
x-accel-version: 0.01
last-modified: Tue, 10 Nov 2020 15:44:34 GMT
etag: "3e0-5b3c28e334364-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-powered-by: PleskLin
X-Firefox-Spdy: h2
regio.brecht-caravan.de/wp-content/themes/Getblue/assets/min/js/general/avada-quantity.js?ver=6.2.3
91.250.114.206200 OK 1.8 kB URL HTTP/2 regio.brecht-caravan.de/wp-content/themes/Getblue/assets/min/js/general/avada-quantity.js?ver=6.2.3
IP 91.250.114.206:0
ASN #8972 Host Europe GmbH
File type ASCII text, with very long lines (1807), with no line terminators
Hash 69c35ac975c7cd3477eb1f07bda1808d
9ca2ff708c31c4efd3c81b8123a1a2aef9a6c535
53c9c63ddd7012082893f0d2fbf1b8af2369378bc3c4e12e581b9d98ad93a518
GET /wp-content/themes/Getblue/assets/min/js/general/avada-quantity.js?ver=6.2.3 HTTP/1.1
Host: regio.brecht-caravan.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://regio.brecht-caravan.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 14 Sep 2022 10:47:19 GMT
content-type: application/javascript
content-length: 1807
last-modified: Tue, 10 Nov 2020 15:44:34 GMT
etag: "5faab562-70f"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
regio.brecht-caravan.de/wp-content/themes/Getblue/assets/min/js/general/avada-scrollspy.js?ver=6.2.3
91.250.114.206200 OK 225 B URL HTTP/2 regio.brecht-caravan.de/wp-content/themes/Getblue/assets/min/js/general/avada-scrollspy.js?ver=6.2.3
IP 91.250.114.206:0
ASN #8972 Host Europe GmbH
File type ASCII text, with very long lines (486), with no line terminators
Hash e4a7a1811f1fa1da5582e15c030f072a
94b36a9087d705935c402d0d4d1b101494258c68
4ca94cea251c2fc1bc16b0ec9488770086ca388fb32256819cf5c7dd1b35d512
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/Getblue/assets/min/js/general/avada-scrollspy.js?ver=6.2.3 HTTP/1.1
Host: regio.brecht-caravan.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://regio.brecht-caravan.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 14 Sep 2022 10:47:19 GMT
content-type: application/javascript
content-length: 225
x-accel-version: 0.01
last-modified: Tue, 10 Nov 2020 15:44:34 GMT
etag: "1e6-5b3c28e3362a4-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-powered-by: PleskLin
X-Firefox-Spdy: h2
regio.brecht-caravan.de/wp-content/themes/Getblue/assets/min/js/general/avada-select.js?ver=6.2.3
91.250.114.206200 OK 293 B URL HTTP/2 regio.brecht-caravan.de/wp-content/themes/Getblue/assets/min/js/general/avada-select.js?ver=6.2.3
IP 91.250.114.206:0
ASN #8972 Host Europe GmbH
File type ASCII text, with very long lines (641), with no line terminators
Hash fe8fc369115b1369e40ce4b72a7d4e3c
47086cb82575afe45c3e336ac28484a48d65a0e0
7daa22f5045de9663443eefe773ccb0580c1d14a468c189a2877c4a41bee3905
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/Getblue/assets/min/js/general/avada-select.js?ver=6.2.3 HTTP/1.1
Host: regio.brecht-caravan.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://regio.brecht-caravan.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 14 Sep 2022 10:47:19 GMT
content-type: application/javascript
content-length: 293
x-accel-version: 0.01
last-modified: Tue, 10 Nov 2020 15:44:34 GMT
etag: "281-5b3c28e33474c-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-powered-by: PleskLin
X-Firefox-Spdy: h2
regio.brecht-caravan.de/wp-content/themes/Getblue/assets/min/js/general/avada-sidebars.js?ver=6.2.3
91.250.114.206200 OK 3.4 kB URL HTTP/2 regio.brecht-caravan.de/wp-content/themes/Getblue/assets/min/js/general/avada-sidebars.js?ver=6.2.3
IP 91.250.114.206:0
ASN #8972 Host Europe GmbH
File type ASCII text, with very long lines (3418), with no line terminators
Hash 897da891c321ca3859370a964acf8eb2
a076c3befb660c923710a40411e024b2f290e4aa
f4a702c61f8ad016e4d0817fd996f04ca0801b29d4980ee0ae46adf08eda7688
GET /wp-content/themes/Getblue/assets/min/js/general/avada-sidebars.js?ver=6.2.3 HTTP/1.1
Host: regio.brecht-caravan.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://regio.brecht-caravan.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 14 Sep 2022 10:47:19 GMT
content-type: application/javascript
content-length: 3418
last-modified: Tue, 10 Nov 2020 15:44:34 GMT
etag: "5faab562-d5a"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
regio.brecht-caravan.de/wp-content/themes/Getblue/assets/min/js/library/jquery.sticky-kit.js?ver=6.2.3
91.250.114.206200 OK 2.7 kB URL HTTP/2 regio.brecht-caravan.de/wp-content/themes/Getblue/assets/min/js/library/jquery.sticky-kit.js?ver=6.2.3
IP 91.250.114.206:0
ASN #8972 Host Europe GmbH
File type ASCII text, with very long lines (2746), with no line terminators
Hash a1d2543d9ee412148453f39cf05cfe0d
c72e8b242d36b69f66be6447264770b4c4ff069f
1b4944b5f8a439d1e7f531888ed6eb66781561f56f84336e75b218cb31bb9af9
GET /wp-content/themes/Getblue/assets/min/js/library/jquery.sticky-kit.js?ver=6.2.3 HTTP/1.1
Host: regio.brecht-caravan.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://regio.brecht-caravan.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 14 Sep 2022 10:47:19 GMT
content-type: application/javascript
content-length: 2746
last-modified: Tue, 10 Nov 2020 15:44:34 GMT
etag: "5faab562-aba"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
regio.brecht-caravan.de/wp-content/themes/Getblue/assets/min/js/general/avada-tabs-widget.js?ver=6.2.3
91.250.114.206200 OK 258 B URL HTTP/2 regio.brecht-caravan.de/wp-content/themes/Getblue/assets/min/js/general/avada-tabs-widget.js?ver=6.2.3
IP 91.250.114.206:0
ASN #8972 Host Europe GmbH
File type ASCII text, with very long lines (498), with no line terminators
Hash b236c130d4545b79b03102da6d99eb40
6a7fba26eb3a051040a13a495133dd2871c25a77
786baa95fa16fc05a8f246c86dd70a9beb6528920d482118e1b678a5e9f2b814
GET /wp-content/themes/Getblue/assets/min/js/general/avada-tabs-widget.js?ver=6.2.3 HTTP/1.1
Host: regio.brecht-caravan.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://regio.brecht-caravan.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 14 Sep 2022 10:47:19 GMT
content-type: application/javascript
content-length: 258
x-accel-version: 0.01
last-modified: Tue, 10 Nov 2020 15:44:34 GMT
etag: "1f2-5b3c28e336e5c-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-powered-by: PleskLin
X-Firefox-Spdy: h2
regio.brecht-caravan.de/
91.250.114.206200 OK 86 kB IP 91.250.114.206:0
ASN #8972 Host Europe GmbH
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (9257)
Hash 66a1804fb7badee698059da50911bda3
ea4880db694169a886f616c96961e1d3502dcd91
55b05e76b52eb771b5da3442f3c573a6350d746d9d3ea25270c729333fb4b1e2
Analyzer Verdict Alert fortinet Malware
GET / HTTP/1.1
Host: regio.brecht-caravan.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
server: nginx
date: Wed, 14 Sep 2022 10:47:19 GMT
content-type: text/html; charset=UTF-8
last-modified: Wed, 14 Sep 2022 06:13:36 GMT
x-powered-by: PHP/7.3.5, PleskLin
X-Firefox-Spdy: h2
regio.brecht-caravan.de/wp-content/uploads/2017/03/eriba-logo.gif
91.250.114.206200 OK 3.4 kB URL HTTP/2 regio.brecht-caravan.de/wp-content/uploads/2017/03/eriba-logo.gif
IP 91.250.114.206:0
ASN #8972 Host Europe GmbH
File type GIF image data, version 89a, 116 x 50\012- data
Hash 5f26dbd082c0493868350e0bc58b3b43
5aa49c0227b13fb804cc25051095f4112156845c
9c4bc4fa54c761bc26c021b37f1c8e3bc58b4904d80d8085b67a327278c6147a
GET /wp-content/uploads/2017/03/eriba-logo.gif HTTP/1.1
Host: regio.brecht-caravan.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://regio.brecht-caravan.de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 14 Sep 2022 10:47:19 GMT
content-type: image/gif
content-length: 3358
last-modified: Fri, 10 Mar 2017 13:19:26 GMT
etag: "58c2a7de-d1e"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
regio.brecht-caravan.de/wp-content/uploads/2017/03/fendt-caravan-logo.gif
91.250.114.206200 OK 3.5 kB URL HTTP/2 regio.brecht-caravan.de/wp-content/uploads/2017/03/fendt-caravan-logo.gif
IP 91.250.114.206:0
ASN #8972 Host Europe GmbH
File type GIF image data, version 89a, 118 x 50\012- data
Hash fcb64f546ce3e073e7feb425a78289fe
9364ae170f4a12a369cf7d870c555c8a90efd734
9faa4877beee6dbf64593cd69182358ada41e989a4db4d49ecc6eea56f108d76
GET /wp-content/uploads/2017/03/fendt-caravan-logo.gif HTTP/1.1
Host: regio.brecht-caravan.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://regio.brecht-caravan.de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 14 Sep 2022 10:47:19 GMT
content-type: image/gif
content-length: 3508
last-modified: Fri, 10 Mar 2017 13:19:26 GMT
etag: "58c2a7de-db4"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
regio.brecht-caravan.de/wp-content/uploads/2017/03/hymer-logo.gif
91.250.114.206200 OK 3.3 kB URL HTTP/2 regio.brecht-caravan.de/wp-content/uploads/2017/03/hymer-logo.gif
IP 91.250.114.206:0
ASN #8972 Host Europe GmbH
File type GIF image data, version 89a, 152 x 50\012- data
Hash cf878cdeff3571d3badbce06de9409ac
5105bae3f1e750f0b14d743f15d0069df26bc4e6
f793d45706bd2adcd34b57b986b246102679a18d13265c200fb69d3ba2644adc
GET /wp-content/uploads/2017/03/hymer-logo.gif HTTP/1.1
Host: regio.brecht-caravan.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://regio.brecht-caravan.de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 14 Sep 2022 10:47:19 GMT
content-type: image/gif
content-length: 3251
last-modified: Fri, 10 Mar 2017 13:19:27 GMT
etag: "58c2a7df-cb3"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
regio.brecht-caravan.de/wp-content/uploads/2017/03/hymercar-logo.gif
91.250.114.206200 OK 3.8 kB URL HTTP/2 regio.brecht-caravan.de/wp-content/uploads/2017/03/hymercar-logo.gif
IP 91.250.114.206:0
ASN #8972 Host Europe GmbH
File type GIF image data, version 89a, 154 x 50\012- data
Hash cf808ba5bca36bca16e33b7b77ac0810
eb5e369f7ade62f7c5cb8a939328802d362a3021
245df192907642f48903f0f2583e33d336c56785f58302aec0a7942e4e764e6f
GET /wp-content/uploads/2017/03/hymercar-logo.gif HTTP/1.1
Host: regio.brecht-caravan.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://regio.brecht-caravan.de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 14 Sep 2022 10:47:19 GMT
content-type: image/gif
content-length: 3795
last-modified: Fri, 10 Mar 2017 13:30:37 GMT
etag: "58c2aa7d-ed3"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
regio.brecht-caravan.de/wp-content/uploads/2017/03/hobby-logo.gif
91.250.114.206200 OK 3.0 kB URL HTTP/2 regio.brecht-caravan.de/wp-content/uploads/2017/03/hobby-logo.gif
IP 91.250.114.206:0
ASN #8972 Host Europe GmbH
File type GIF image data, version 89a, 98 x 50\012- data
Hash 21d7b62642b5029a3be435ffa81080b2
b8eb3cb7d48989ae70364e24334f21726820de05
886160eaff28f265e23ac6aec105f9a3c33b1f23b37366c94d6fefd77cbeacc0
GET /wp-content/uploads/2017/03/hobby-logo.gif HTTP/1.1
Host: regio.brecht-caravan.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://regio.brecht-caravan.de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 14 Sep 2022 10:47:19 GMT
content-type: image/gif
content-length: 3038
last-modified: Fri, 10 Mar 2017 13:19:26 GMT
etag: "58c2a7de-bde"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
regio.brecht-caravan.de/wp-content/uploads/2017/03/dethleffs-logo.gif
91.250.114.206200 OK 3.5 kB URL HTTP/2 regio.brecht-caravan.de/wp-content/uploads/2017/03/dethleffs-logo.gif
IP 91.250.114.206:0
ASN #8972 Host Europe GmbH
File type GIF image data, version 89a, 112 x 50\012- data
Hash 16d0cc9f34229dc12eb052a5cbe2c708
bfcab800a6263c79e956cd16998eb0ae7a6d1ba3
b60695a4d9656f8d1edb80fb76ab9649b4fd2653a05a85823d1e1e6d86fc0e05
GET /wp-content/uploads/2017/03/dethleffs-logo.gif HTTP/1.1
Host: regio.brecht-caravan.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://regio.brecht-caravan.de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 14 Sep 2022 10:47:19 GMT
content-type: image/gif
content-length: 3509
last-modified: Fri, 10 Mar 2017 13:19:26 GMT
etag: "58c2a7de-db5"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
regio.brecht-caravan.de/wp-content/uploads/2017/03/brecht-caravan-logo.jpg
91.250.114.206200 OK 12 kB URL HTTP/2 regio.brecht-caravan.de/wp-content/uploads/2017/03/brecht-caravan-logo.jpg
IP 91.250.114.206:0
ASN #8972 Host Europe GmbH
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], progressive, precision 8, 311x59, components 3\012- data
Hash 03a811a295a10d25ab355919b81535e5
915fc61b2669ee786449a77c0a86fa435c1b599c
3cb2f3db82c26d8c93cf07c11d3c3667c8839b021cfa40a2a905a1136501c1f3
GET /wp-content/uploads/2017/03/brecht-caravan-logo.jpg HTTP/1.1
Host: regio.brecht-caravan.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://regio.brecht-caravan.de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 14 Sep 2022 10:47:19 GMT
content-type: image/jpeg
content-length: 11509
last-modified: Fri, 10 Mar 2017 10:17:57 GMT
etag: "58c27d55-2cf5"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
regio.brecht-caravan.de/wp-content/uploads/2017/03/Wohnwagen-Ausstellung.jpg
91.250.114.206200 OK 33 kB URL HTTP/2 regio.brecht-caravan.de/wp-content/uploads/2017/03/Wohnwagen-Ausstellung.jpg
IP 91.250.114.206:0
ASN #8972 Host Europe GmbH
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 1050x130, components 3\012- data
Hash e24fd57e9ab72b59cb8d13fd02224254
0b3b64ce81ed80b86c5b67cb744370119b856041
0321a9d8b619703de3e8b7e8f22a56fb3b7cd163b7bf9810a6e02ba6762fafe8
GET /wp-content/uploads/2017/03/Wohnwagen-Ausstellung.jpg HTTP/1.1
Host: regio.brecht-caravan.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://regio.brecht-caravan.de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 14 Sep 2022 10:47:19 GMT
content-type: image/jpeg
content-length: 32706
last-modified: Wed, 15 Mar 2017 00:12:09 GMT
etag: "58c886d9-7fc2"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
regio.brecht-caravan.de/wp-content/uploads/2016/05/Wohnmobil-Adresse.jpg
91.250.114.206200 OK 35 kB URL HTTP/2 regio.brecht-caravan.de/wp-content/uploads/2016/05/Wohnmobil-Adresse.jpg
IP 91.250.114.206:0
ASN #8972 Host Europe GmbH
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 358x242, components 3\012- data
Hash dbae5e64b887247d7eb8b6ccb08573af
7175ba7303c6944b918a2f8caa1eb68f4483625b
c0c8888a480e5e3750e6d681f78a4d7ae8e70b2518b3d1587abcdad01a9268ce
GET /wp-content/uploads/2016/05/Wohnmobil-Adresse.jpg HTTP/1.1
Host: regio.brecht-caravan.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://regio.brecht-caravan.de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 14 Sep 2022 10:47:19 GMT
content-type: image/jpeg
content-length: 35406
last-modified: Tue, 14 Mar 2017 15:10:40 GMT
etag: "58c807f0-8a4e"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
regio.brecht-caravan.de/wp-content/uploads/2016/05/Caravan-Anschrift.jpg
91.250.114.206200 OK 34 kB URL HTTP/2 regio.brecht-caravan.de/wp-content/uploads/2016/05/Caravan-Anschrift.jpg
IP 91.250.114.206:0
ASN #8972 Host Europe GmbH
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 358x242, components 3\012- data
Hash 6971c1b6765bcc970abfcb660a40eb02
4c49182f576722d67362f227fd74391fd7e8b146
621727b5914fb003b9896020c8b8fca3c7a606e49d97b3f48794a5a99a4d26f5
GET /wp-content/uploads/2016/05/Caravan-Anschrift.jpg HTTP/1.1
Host: regio.brecht-caravan.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://regio.brecht-caravan.de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 14 Sep 2022 10:47:19 GMT
content-type: image/jpeg
content-length: 34105
last-modified: Tue, 14 Mar 2017 15:10:36 GMT
etag: "58c807ec-8539"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
regio.brecht-caravan.de/wp-content/uploads/2016/05/Wohnwagen-Video.jpg
91.250.114.206200 OK 43 kB URL HTTP/2 regio.brecht-caravan.de/wp-content/uploads/2016/05/Wohnwagen-Video.jpg
IP 91.250.114.206:0
ASN #8972 Host Europe GmbH
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 358x242, components 3\012- data
Hash f21387300600b3ccd72f3c69ea88271a
2908aca78c2a06209e6453b73c33101a837bc625
e866843622eaf4dddf4945c2e8dfb7dcd563e4b220c32f1cd35f128d6896d66d
GET /wp-content/uploads/2016/05/Wohnwagen-Video.jpg HTTP/1.1
Host: regio.brecht-caravan.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://regio.brecht-caravan.de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 14 Sep 2022 10:47:19 GMT
content-type: image/jpeg
content-length: 42885
last-modified: Tue, 14 Mar 2017 15:10:41 GMT
etag: "58c807f1-a785"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
regio.brecht-caravan.de/wp-content/uploads/2016/05/Wohnwagen-Vermietung.jpg
91.250.114.206200 OK 77 kB URL HTTP/2 regio.brecht-caravan.de/wp-content/uploads/2016/05/Wohnwagen-Vermietung.jpg
IP 91.250.114.206:0
ASN #8972 Host Europe GmbH
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 1170x380, components 3\012- data
Hash 64ca434b0cec1880c7da87e9f4a7e2ff
86c4e6f0ee1f3ed51ca5089b371f86843352e510
dd1402aeeed9b08af2af1f9c4bfbfceb97a200296b8a5016d063d09a3058f89b
GET /wp-content/uploads/2016/05/Wohnwagen-Vermietung.jpg HTTP/1.1
Host: regio.brecht-caravan.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://regio.brecht-caravan.de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 14 Sep 2022 10:47:19 GMT
content-type: image/jpeg
content-length: 77305
last-modified: Tue, 14 Mar 2017 15:10:41 GMT
etag: "58c807f1-12df9"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
regio.brecht-caravan.de/wp-content/uploads/2016/05/Fahrzeuge.jpg
91.250.114.206200 OK 112 kB URL HTTP/2 regio.brecht-caravan.de/wp-content/uploads/2016/05/Fahrzeuge.jpg
IP 91.250.114.206:0
ASN #8972 Host Europe GmbH
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 1172x606, components 3\012- data
Size 112 kB (112257 bytes)
Hash 8abe0d1271e301d9e0ad28764f5ecc74
ce2dabd14a5e9b2d096769cf6137fc1c0f17b8a8
9abab8cc9fc81490455f771171a6a95b9b57bc7445dfb6876d1e750217989bfd
GET /wp-content/uploads/2016/05/Fahrzeuge.jpg HTTP/1.1
Host: regio.brecht-caravan.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://regio.brecht-caravan.de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 14 Sep 2022 10:47:19 GMT
content-type: image/jpeg
content-length: 112257
last-modified: Tue, 14 Mar 2017 15:10:38 GMT
etag: "58c807ee-1b681"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
regio.brecht-caravan.de/wp-content/themes/Getblue/assets/min/js/general/avada-to-top.js?ver=6.2.3
91.250.114.206200 OK 321 B URL HTTP/2 regio.brecht-caravan.de/wp-content/themes/Getblue/assets/min/js/general/avada-to-top.js?ver=6.2.3
IP 91.250.114.206:0
ASN #8972 Host Europe GmbH
File type ASCII text, with very long lines (775), with no line terminators
Hash 8224d0060c542714af72d969fcbae73c
3cfb6572a3d8d8fe425973f4fc5cea2c7ece4bdd
306b876215afde6f7728443124749e3fd757f845727f48af2a6e07af8cec97a3
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/Getblue/assets/min/js/general/avada-to-top.js?ver=6.2.3 HTTP/1.1
Host: regio.brecht-caravan.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://regio.brecht-caravan.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 14 Sep 2022 10:47:19 GMT
content-type: application/javascript
content-length: 321
x-accel-version: 0.01
last-modified: Tue, 10 Nov 2020 15:44:34 GMT
etag: "307-5b3c28e335304-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-powered-by: PleskLin
X-Firefox-Spdy: h2
regio.brecht-caravan.de/wp-content/themes/Getblue/assets/min/js/general/avada-drop-down.js?ver=6.2.3
91.250.114.206200 OK 5.8 kB URL HTTP/2 regio.brecht-caravan.de/wp-content/themes/Getblue/assets/min/js/general/avada-drop-down.js?ver=6.2.3
IP 91.250.114.206:0
ASN #8972 Host Europe GmbH
File type ASCII text, with very long lines (5774), with no line terminators
Hash 1bf954f715ca3c4b0f1f42d8e71c9722
b5ba12ab427f4de34f72e5d157d7884dbb63c528
04e58ad249f8c91e0a74012c63ea50ff60e0ef66652fca395df1680c1c868b39
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/Getblue/assets/min/js/general/avada-drop-down.js?ver=6.2.3 HTTP/1.1
Host: regio.brecht-caravan.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://regio.brecht-caravan.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 14 Sep 2022 10:47:19 GMT
content-type: application/javascript
content-length: 5774
last-modified: Tue, 10 Nov 2020 15:44:34 GMT
etag: "5faab562-168e"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
regio.brecht-caravan.de/wp-content/themes/Getblue/assets/min/js/library/jquery.toTop.js?ver=1.2
91.250.114.206200 OK 1.2 kB URL HTTP/2 regio.brecht-caravan.de/wp-content/themes/Getblue/assets/min/js/library/jquery.toTop.js?ver=1.2
IP 91.250.114.206:0
ASN #8972 Host Europe GmbH
File type HTML document, ASCII text, with very long lines (1182), with no line terminators
Hash 6f3e1eada93feb0c0bacd9126ece614e
ab529b297fad01ba978a21aa1f05f877b8d36091
211c0a338801bcc09e6378ad85542a9d65402051fdcf1b05227df8c65351f3e2
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/Getblue/assets/min/js/library/jquery.toTop.js?ver=1.2 HTTP/1.1
Host: regio.brecht-caravan.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://regio.brecht-caravan.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 14 Sep 2022 10:47:19 GMT
content-type: application/javascript
content-length: 1182
last-modified: Tue, 10 Nov 2020 15:44:34 GMT
etag: "5faab562-49e"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
regio.brecht-caravan.de/wp-content/themes/Getblue/assets/min/js/library/jquery.elasticslider.js?ver=6.2.3
91.250.114.206200 OK 4.6 kB URL HTTP/2 regio.brecht-caravan.de/wp-content/themes/Getblue/assets/min/js/library/jquery.elasticslider.js?ver=6.2.3
IP 91.250.114.206:0
ASN #8972 Host Europe GmbH
File type ASCII text, with very long lines (4570), with no line terminators
Hash ec3277c4aa0cf6f7edb6055d3ff6eb84
c41e2e260a1bd104e10bdc4201252c7d6dad3f6f
efd7b1811cef4b7c13b8ae58028f93fd15f154177f1a65df59c0f2139649b9ee
GET /wp-content/themes/Getblue/assets/min/js/library/jquery.elasticslider.js?ver=6.2.3 HTTP/1.1
Host: regio.brecht-caravan.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://regio.brecht-caravan.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 14 Sep 2022 10:47:19 GMT
content-type: application/javascript
content-length: 4570
last-modified: Tue, 10 Nov 2020 15:44:34 GMT
etag: "5faab562-11da"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
regio.brecht-caravan.de/wp-content/themes/Getblue/assets/min/js/general/avada-elastic-slider.js?ver=6.2.3
91.250.114.206200 OK 233 B URL HTTP/2 regio.brecht-caravan.de/wp-content/themes/Getblue/assets/min/js/general/avada-elastic-slider.js?ver=6.2.3
IP 91.250.114.206:0
ASN #8972 Host Europe GmbH
File type ASCII text, with very long lines (565), with no line terminators
Hash f39dd41bde45ff29bd8ce208c94482ca
82c273265b6ed4d17be7f2cd63d105892cc6fd77
ede9659bfe70a2ce8c8e5a06b443c7e70c93d0b83f930c7b5e6010674a4be1f5
GET /wp-content/themes/Getblue/assets/min/js/general/avada-elastic-slider.js?ver=6.2.3 HTTP/1.1
Host: regio.brecht-caravan.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://regio.brecht-caravan.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 14 Sep 2022 10:47:19 GMT
content-type: application/javascript
content-length: 233
x-accel-version: 0.01
last-modified: Tue, 10 Nov 2020 15:44:34 GMT
etag: "235-5b3c28e33668c-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-powered-by: PleskLin
X-Firefox-Spdy: h2
regio.brecht-caravan.de/wp-content/themes/Getblue/assets/min/js/general/avada-live-search.js?ver=6.2.3
91.250.114.206200 OK 2.5 kB URL HTTP/2 regio.brecht-caravan.de/wp-content/themes/Getblue/assets/min/js/general/avada-live-search.js?ver=6.2.3
IP 91.250.114.206:0
ASN #8972 Host Europe GmbH
File type ASCII text, with very long lines (2548), with no line terminators
Hash 8e1980499943060812ab9368dd8fefd7
dd01faf05d8c7b8f06149e7036ccee0110f81ef4
a57daa6c05216724158d918ba274f490abd54ea721de900c1e19a6fefb000d6b
GET /wp-content/themes/Getblue/assets/min/js/general/avada-live-search.js?ver=6.2.3 HTTP/1.1
Host: regio.brecht-caravan.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://regio.brecht-caravan.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 14 Sep 2022 10:47:19 GMT
content-type: application/javascript
content-length: 2548
last-modified: Tue, 10 Nov 2020 15:44:34 GMT
etag: "5faab562-9f4"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
regio.brecht-caravan.de/wp-content/uploads/2016/05/Wohnwagen-Werkstatt.jpg
91.250.114.206200 OK 131 kB URL HTTP/2 regio.brecht-caravan.de/wp-content/uploads/2016/05/Wohnwagen-Werkstatt.jpg
IP 91.250.114.206:0
ASN #8972 Host Europe GmbH
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 1026x447, components 3\012- data
Size 131 kB (131230 bytes)
Hash a1b0f36a60bbfae082fe5e81ca3f8de5
5a76747422ed4dad4852435e5edc0ccd8eac676a
e4f4c94612c2f1cb367d4ac7c8e59f59505d60b3506d4494fa4a7448342e7877
GET /wp-content/uploads/2016/05/Wohnwagen-Werkstatt.jpg HTTP/1.1
Host: regio.brecht-caravan.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://regio.brecht-caravan.de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 14 Sep 2022 10:47:19 GMT
content-type: image/jpeg
content-length: 131230
last-modified: Tue, 14 Mar 2017 15:10:42 GMT
etag: "58c807f2-2009e"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
regio.brecht-caravan.de/wp-content/plugins/fusion-core/js/min/avada-fusion-slider.js?ver=1
91.250.114.206200 OK 28 kB URL HTTP/2 regio.brecht-caravan.de/wp-content/plugins/fusion-core/js/min/avada-fusion-slider.js?ver=1
IP 91.250.114.206:0
ASN #8972 Host Europe GmbH
File type ASCII text, with very long lines (28424), with no line terminators
Hash 61c290fe4d6ce7e1da112c3e7abc3e87
7be73a0e3c91998e00f8428375fd20ee892be913
12c23becef0243662da0212874885d667ad6f16e5da8f7c7e823a47abd898cf1
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/fusion-core/js/min/avada-fusion-slider.js?ver=1 HTTP/1.1
Host: regio.brecht-caravan.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://regio.brecht-caravan.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 14 Sep 2022 10:47:19 GMT
content-type: application/javascript
content-length: 28424
last-modified: Wed, 11 Nov 2020 16:29:31 GMT
etag: "5fac116b-6f08"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
regio.brecht-caravan.de/wp-content/plugins/posttabs/postTabs.js?ver=6.0.2
91.250.114.206200 OK 1.6 kB URL HTTP/2 regio.brecht-caravan.de/wp-content/plugins/posttabs/postTabs.js?ver=6.0.2
IP 91.250.114.206:0
ASN #8972 Host Europe GmbH
Hash a93538a00fc35e10412dbd3dcf03284a
75f1561e8b24126db53a88930bc8b7627feb56f8
17801493672b0ebde53d8ab0400fa63a101ea9e4cd216cabe80b2ff9155464e4
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/posttabs/postTabs.js?ver=6.0.2 HTTP/1.1
Host: regio.brecht-caravan.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://regio.brecht-caravan.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 14 Sep 2022 10:47:19 GMT
content-type: application/javascript
content-length: 1590
last-modified: Wed, 11 Nov 2020 16:31:09 GMT
etag: "5fac11cd-636"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
regio.brecht-caravan.de/wp-content/plugins/fusion-builder/assets/js/min/library/Chart.js?ver=2.7.1
91.250.114.206200 OK 157 kB URL HTTP/2 regio.brecht-caravan.de/wp-content/plugins/fusion-builder/assets/js/min/library/Chart.js?ver=2.7.1
IP 91.250.114.206:0
ASN #8972 Host Europe GmbH
File type ASCII text, with very long lines (65536), with no line terminators
Size 157 kB (156737 bytes)
Hash 2cd2684bfefcf503a795a0417d70af0a
a7a8172e415181c92d6b1d198eac56fe3882f0b0
f7de7bf922b74360bdb0e339b18367cc10633f5272b9ccbd1536e5de7b4868d0
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/fusion-builder/assets/js/min/library/Chart.js?ver=2.7.1 HTTP/1.1
Host: regio.brecht-caravan.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://regio.brecht-caravan.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 14 Sep 2022 10:47:19 GMT
content-type: application/javascript
content-length: 156737
last-modified: Wed, 11 Nov 2020 16:30:02 GMT
etag: "5fac118a-26441"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
regio.brecht-caravan.de/wp-content/uploads/2016/05/Caravan-Team.jpg
91.250.114.206200 OK 208 kB URL HTTP/2 regio.brecht-caravan.de/wp-content/uploads/2016/05/Caravan-Team.jpg
IP 91.250.114.206:0
ASN #8972 Host Europe GmbH
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 1050x474, components 3\012- data
Size 208 kB (208417 bytes)
Hash fd0982d3ac10f194d4c9a42cf5bc1a83
350a419fe27289ad35f5b9a8d6cfd40ff32fed2a
bbf20b063cdb53a582b162780c726e4f06b5108aa96155c90d90696cbedbfee2
GET /wp-content/uploads/2016/05/Caravan-Team.jpg HTTP/1.1
Host: regio.brecht-caravan.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://regio.brecht-caravan.de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 14 Sep 2022 10:47:19 GMT
content-type: image/jpeg
content-length: 208417
last-modified: Tue, 14 Mar 2017 15:10:36 GMT
etag: "58c807ec-32e21"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
regio.brecht-caravan.de/wp-content/uploads/fusion-styles/80fe627571c55f203df43d18717c7994.min.css?ver=2.2.3
91.250.114.206200 OK 842 kB URL HTTP/2 regio.brecht-caravan.de/wp-content/uploads/fusion-styles/80fe627571c55f203df43d18717c7994.min.css?ver=2.2.3
IP 91.250.114.206:0
ASN #8972 Host Europe GmbH
File type ASCII text, with very long lines (60917)
Size 842 kB (842539 bytes)
Hash 80fe627571c55f203df43d18717c7994
d21c3d9190fc010b2c860ea4bb6d85137428307b
58d669c17975933098db9253a6db9eb4bbe87d1fc1359fc93eecb17fcd703ab5
Analyzer Verdict Alert fortinet Malware
GET /wp-content/uploads/fusion-styles/80fe627571c55f203df43d18717c7994.min.css?ver=2.2.3 HTTP/1.1
Host: regio.brecht-caravan.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://regio.brecht-caravan.de/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 14 Sep 2022 10:47:19 GMT
content-type: text/css
content-length: 842539
last-modified: Tue, 16 Aug 2022 19:08:11 GMT
etag: "62fbeb1b-cdb2b"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
regio.brecht-caravan.de/wp-content/uploads/2017/09/brecht-caravan.jpg
91.250.114.206200 OK 751 kB URL HTTP/2 regio.brecht-caravan.de/wp-content/uploads/2017/09/brecht-caravan.jpg
IP 91.250.114.206:0
ASN #8972 Host Europe GmbH
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 1280x900, components 3\012- data
Size 751 kB (750594 bytes)
Hash c4661bf981833d519c3e446dfc65caac
258be6d18950047760e42cc218269d6fe31257b5
6a25dbfb491df8e2e076a837e74cd295795ecfe0b919368d92f55dc2003b6f11
GET /wp-content/uploads/2017/09/brecht-caravan.jpg HTTP/1.1
Host: regio.brecht-caravan.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://regio.brecht-caravan.de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 14 Sep 2022 10:47:19 GMT
content-type: image/jpeg
content-length: 750594
last-modified: Mon, 18 Sep 2017 11:17:01 GMT
etag: "59bfab2d-b7402"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
regio.brecht-caravan.de/wp-content/themes/Getblue/includes/lib/assets/fonts/icomoon/icomoon.woff
91.250.114.206200 OK 20 kB URL HTTP/2 regio.brecht-caravan.de/wp-content/themes/Getblue/includes/lib/assets/fonts/icomoon/icomoon.woff
IP 91.250.114.206:0
ASN #8972 Host Europe GmbH
File type Web Open Font Format, TrueType, length 19560, version 1.0\012- data
Hash 058faad55edf033eda55a2e719963f7b
131adbcab0318d115d8bc24baa7851ba3291bc49
be9cbd5f07dd141bdd7c3d8c09b52c6e283506072e37539d05dc4b9dcbb68e5b
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/Getblue/includes/lib/assets/fonts/icomoon/icomoon.woff HTTP/1.1
Host: regio.brecht-caravan.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://regio.brecht-caravan.de/wp-content/uploads/fusion-styles/80fe627571c55f203df43d18717c7994.min.css?ver=2.2.3
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 14 Sep 2022 10:47:20 GMT
content-type: application/x-font-woff
content-length: 19560
last-modified: Tue, 10 Nov 2020 15:44:34 GMT
etag: "5faab562-4c68"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 78f8bae58862d8be3437cfe9e927011d
fb01a9cfd346f2c9b7694276c72a76e213887b06
389d233aa4b3ea23315c9d6e8d72d96fb2f802e227d24199c788a5a89e96a19e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 14 Sep 2022 10:47:20 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash b7e665b6b70fa840ee6a1417da402132
658fa05afcf7752e8cb02979c28874efb0f4ddd8
9905cee109c441b937300b368ceccd186877a0923164bf3e1eb0971a2a224400
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 14 Sep 2022 10:47:20 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.com/maps/embed?pb=!1m0!3m2!1sde!2sus!4v1489536944384!6m8!1m7!1su-esTXZdKbMAAAQ7Lq51Ow!2m2!1d49.14020550192735!2d9.166364995038748!3f39.94528953742005!4f9.594534121714744!5f0.7742716351052916
142.250.74.164200 OK 667 B URL HTTP/2 www.google.com/maps/embed?pb=!1m0!3m2!1sde!2sus!4v1489536944384!6m8!1m7!1su-esTXZdKbMAAAQ7Lq51Ow!2m2!1d49.14020550192735!2d9.166364995038748!3f39.94528953742005!4f9.594534121714744!5f0.7742716351052916
IP 142.250.74.164:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (471)
Hash 21311b10f39a8939b018d952a297d4a1
2e71cec9e9bf8b94c2afc094ca97b34b3181f5ae
884ead005a44ffd1db2381e94d0a46e3476c6844f875889c9e672e2737d7f64a
GET /maps/embed?pb=!1m0!3m2!1sde!2sus!4v1489536944384!6m8!1m7!1su-esTXZdKbMAAAQ7Lq51Ow!2m2!1d49.14020550192735!2d9.166364995038748!3f39.94528953742005!4f9.594534121714744!5f0.7742716351052916 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://regio.brecht-caravan.de/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
date: Wed, 14 Sep 2022 10:47:20 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
vary: Accept-Language
content-security-policy: object-src 'none';base-uri 'self';script-src 'nonce-sHawN5YF0B3Pcz2zPIOPAQ' 'strict-dynamic' 'report-sample' 'unsafe-eval' 'unsafe-inline' https: http:;report-uri https://csp.withgoogle.com/csp/geo-maps-api/1
content-encoding: gzip
server: mafe
content-length: 667
x-xss-protection: 0
server-timing: gfet4t7; dur=2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/opensans/v29/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsjZ0B4gaVQUwaEQXjM.woff
142.250.74.163200 OK 15 kB URL HTTP/2 fonts.gstatic.com/s/opensans/v29/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsjZ0B4gaVQUwaEQXjM.woff
IP 142.250.74.163:0
File type Web Open Font Format, TrueType, length 15080, version 1.1\012- data
Hash b1a27e94e6d93c4ed0f662f2c9e07be3
4f94f17f0813910bddce57c6ec70e9a163a13df2
19e1c3b8651487af5772b7f9bfc18567cf317f3025c85161b36571e1e5280428
GET /s/opensans/v29/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsjZ0B4gaVQUwaEQXjM.woff HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://regio.brecht-caravan.de
Connection: keep-alive
Referer: https://regio.brecht-caravan.de/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15080
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 07 Sep 2022 20:56:19 GMT
expires: Thu, 07 Sep 2023 20:56:19 GMT
cache-control: public, max-age=31536000
age: 568261
last-modified: Wed, 11 May 2022 19:25:27 GMT
content-type: font/woff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash fe792a43fbfd72d158215bb5fa087c19
5b28cebdebfdd33871fa4982f39a89f5ce3cbf99
ec9ddd9d47e4cd14bd7471042ce3060c1d119038dac5d1f02a4040c617228b0d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EC9DDD9D47E4CD14BD7471042CE3060C1D119038DAC5D1F02A4040C617228B0D"
Last-Modified: Mon, 12 Sep 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5178
Expires: Wed, 14 Sep 2022 12:13:38 GMT
Date: Wed, 14 Sep 2022 10:47:20 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash fe792a43fbfd72d158215bb5fa087c19
5b28cebdebfdd33871fa4982f39a89f5ce3cbf99
ec9ddd9d47e4cd14bd7471042ce3060c1d119038dac5d1f02a4040c617228b0d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EC9DDD9D47E4CD14BD7471042CE3060C1D119038DAC5D1F02A4040C617228B0D"
Last-Modified: Mon, 12 Sep 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5178
Expires: Wed, 14 Sep 2022 12:13:38 GMT
Date: Wed, 14 Sep 2022 10:47:20 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash fe792a43fbfd72d158215bb5fa087c19
5b28cebdebfdd33871fa4982f39a89f5ce3cbf99
ec9ddd9d47e4cd14bd7471042ce3060c1d119038dac5d1f02a4040c617228b0d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EC9DDD9D47E4CD14BD7471042CE3060C1D119038DAC5D1F02A4040C617228B0D"
Last-Modified: Mon, 12 Sep 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5178
Expires: Wed, 14 Sep 2022 12:13:38 GMT
Date: Wed, 14 Sep 2022 10:47:20 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash fe792a43fbfd72d158215bb5fa087c19
5b28cebdebfdd33871fa4982f39a89f5ce3cbf99
ec9ddd9d47e4cd14bd7471042ce3060c1d119038dac5d1f02a4040c617228b0d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EC9DDD9D47E4CD14BD7471042CE3060C1D119038DAC5D1F02A4040C617228B0D"
Last-Modified: Mon, 12 Sep 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5178
Expires: Wed, 14 Sep 2022 12:13:38 GMT
Date: Wed, 14 Sep 2022 10:47:20 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash fe792a43fbfd72d158215bb5fa087c19
5b28cebdebfdd33871fa4982f39a89f5ce3cbf99
ec9ddd9d47e4cd14bd7471042ce3060c1d119038dac5d1f02a4040c617228b0d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EC9DDD9D47E4CD14BD7471042CE3060C1D119038DAC5D1F02A4040C617228B0D"
Last-Modified: Mon, 12 Sep 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5178
Expires: Wed, 14 Sep 2022 12:13:38 GMT
Date: Wed, 14 Sep 2022 10:47:20 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff7859b5f-1c86-429e-be16-f7b41657b096.jpeg
34.120.237.76200 OK 17 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff7859b5f-1c86-429e-be16-f7b41657b096.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d7be52d818b206e064541ef4f4b0786b
7674123112859fd79ee9214c5308ad6a5e4ed015
bb011cf1e3c97c42f22c0553b64c23f120fa52d4bc7b56b5bde5678226aff0ce
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff7859b5f-1c86-429e-be16-f7b41657b096.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 16980
x-amzn-requestid: 7c555cd5-4a33-452e-82d4-cac3282c0b0f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YYZfRHYOoAMFtIw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6320092e-0bbd43cc499db9ed24226439;Sampled=0
x-amzn-remapped-date: Tue, 13 Sep 2022 04:38:06 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: m4lRTnfzeQluGV3fqyeSS6yLeU8tcfijOqcqyVdZ2L2pENHfWdrUHg==
via: 1.1 446313511980eb02f28ff5a9a4147c0a.cloudfront.net (CloudFront), 1.1 28390a4d24ed4fdccd685d99cd06cf4e.cloudfront.net (CloudFront), 1.1 google
date: Wed, 14 Sep 2022 03:30:38 GMT
age: 26202
etag: "7674123112859fd79ee9214c5308ad6a5e4ed015"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F26eefe41-9675-409e-9a6b-8c39594eb7de.jpeg
34.120.237.76200 OK 7.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F26eefe41-9675-409e-9a6b-8c39594eb7de.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 967db8594cfbc60139ea4bccfe259742
be8239300d4abfb14466655eedb6b277543ad8b2
eb6585e04cd275e2bf02c2cf8d8693e43f0c0a3e7fec0092fc2ff18025b45dde
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F26eefe41-9675-409e-9a6b-8c39594eb7de.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7543
x-amzn-requestid: a8a09d68-971d-4d84-bf6b-ca78644927b4
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Yau8DHQ4IAMFzFQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6320f84c-54803f1d5f1777f334c7a4d5;Sampled=0
x-amzn-remapped-date: Tue, 13 Sep 2022 21:38:21 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: r4qPNiUXDiV_XGCo5FGPM_yuDeYj5n09eonvoNMdqymZnc5aDmhTVg==
via: 1.1 6ba2a21321beeef65404429d0a4b6380.cloudfront.net (CloudFront), 1.1 325ed3ba58a560748d886354beef39c0.cloudfront.net (CloudFront), 1.1 google
date: Tue, 13 Sep 2022 21:59:56 GMT
age: 46044
etag: "be8239300d4abfb14466655eedb6b277543ad8b2"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6b4d822c-5153-4c55-bcb3-aa6ee72e3b62.jpeg
34.120.237.76200 OK 6.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6b4d822c-5153-4c55-bcb3-aa6ee72e3b62.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash f2157f7cfbdeb607f28ae51eb090f2c3
33d0dcadaa42179b2eae914c8ad16c9c088afbc9
135cd89c2c82f0f5e53d2612d5eac868c175b28a567a07e63a2073942e36a066
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6b4d822c-5153-4c55-bcb3-aa6ee72e3b62.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6078
x-amzn-requestid: e09c099f-5a2d-49d7-b6ab-e16f09c28bd0
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YavJEEM5IAMFreQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6320f8a0-0fbb7b3d0cd6fbfa04f5a5d2;Sampled=0
x-amzn-remapped-date: Tue, 13 Sep 2022 21:39:44 GMT
x-amz-cf-pop: SEA73-P2, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: Ur-HTN2DS8b3ojSQldJOZi6YW2wtCwRfbGqxg49ZUJ_00hC_rFxYEw==
via: 1.1 9b21fd56256eda6d1379e32829c4c446.cloudfront.net (CloudFront), 1.1 5397b304713f6301c7c94ac084b6ed08.cloudfront.net (CloudFront), 1.1 google
date: Tue, 13 Sep 2022 22:05:07 GMT
age: 45733
etag: "33d0dcadaa42179b2eae914c8ad16c9c088afbc9"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff2b71bb0-fd92-43d0-8cd0-b426d0b88ee8.jpeg
34.120.237.76200 OK 16 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff2b71bb0-fd92-43d0-8cd0-b426d0b88ee8.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 56811a1a20a467464e1f3da171ef8b14
366b2090d409d694b72b4b4131df46dd65d69c5a
4c208fb88884166adf4ecc5882f75948b4a87d85c76ad6e7137e8edbd125c996
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff2b71bb0-fd92-43d0-8cd0-b426d0b88ee8.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 15547
x-amzn-requestid: a78f7d90-84c3-4198-88bf-1d722c37f09f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Yauv4EUDoAMF13A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6320f7ff-49535e5525606250306488ba;Sampled=0
x-amzn-remapped-date: Tue, 13 Sep 2022 21:37:03 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: CWzE6n2U7hSFcSIHX5z76DPIid9pvbOqM6ikOlegBxzbuRThMeLKZA==
via: 1.1 1b0911478686968732f973d6e5e31d10.cloudfront.net (CloudFront), 1.1 1481cc55c02c3a782ad420b6bac2cb32.cloudfront.net (CloudFront), 1.1 google
date: Tue, 13 Sep 2022 21:46:14 GMT
etag: "366b2090d409d694b72b4b4131df46dd65d69c5a"
content-type: image/jpeg
age: 46866
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F363e6209-41ce-41be-bd4b-698c502410aa.jpeg
34.120.237.76200 OK 8.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F363e6209-41ce-41be-bd4b-698c502410aa.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 69d287fa3fde0ea0ad5ac42fc708fb7d
e93a0bcbb4d394a087a6fd2a95e31cd371186433
5bb5a92d6498fee73ada8b2b8cf79ca4f6a7cd7ce35bab9b877870a847f212cc
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F363e6209-41ce-41be-bd4b-698c502410aa.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8523
x-amzn-requestid: facc0fcf-fc31-4c49-bf47-4992b0496f5b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Yav8AG1cIAMFmiQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6320f9e6-3a07501574e592610dcd9d83;Sampled=0
x-amzn-remapped-date: Tue, 13 Sep 2022 21:45:10 GMT
x-amz-cf-pop: SEA19-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: prZvx-ZAE5HYdtojrYvPoMswGvuaXjVPqY3oEmcwD5dUUXaaJHGpZA==
via: 1.1 7514e5e25722778fd4b1744d4ecc67e0.cloudfront.net (CloudFront), 1.1 caf6806821bc479b28a6f1ce3043b8a6.cloudfront.net (CloudFront), 1.1 google
date: Tue, 13 Sep 2022 21:59:12 GMT
age: 46088
etag: "e93a0bcbb4d394a087a6fd2a95e31cd371186433"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Faf118ca5-e4f8-4e97-a3c2-87e36a56e609.jpeg
34.120.237.76200 OK 9.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Faf118ca5-e4f8-4e97-a3c2-87e36a56e609.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b20499b3b8ef7b8ee73bd8b27e8c0c16
744a852e9357455d55e72809841411258fec44a9
457c8a9e4974a9529fa852b37f7ffc083e0eac987fe47aaebda808bf9f9f2941
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Faf118ca5-e4f8-4e97-a3c2-87e36a56e609.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9270
x-amzn-requestid: bba505a1-bbba-4d14-ad3a-1f72c028cc43
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YLj-YGaOIAMFeOw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631ae6c2-08d743cc73070f6653991180;Sampled=0
x-amzn-remapped-date: Fri, 09 Sep 2022 07:09:54 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: vGRrbI4hDMlyKh7qDB3mVRNKJW6vqpnJR94CU6lZVyTzNqjmI0hrpA==
via: 1.1 01c28b52813cd0e82f810c492808b142.cloudfront.net (CloudFront), 1.1 cd858042f70b416ca05e042acf3908a4.cloudfront.net (CloudFront), 1.1 google
date: Tue, 13 Sep 2022 23:11:58 GMT
age: 41722
etag: "744a852e9357455d55e72809841411258fec44a9"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash b743089bdff5635e2f7c38d20c1910f6
f1874493bc88c2d9ba4a95a43e810da1cb452abd
3a60895d54c86a3e46a3dbcacfc07f3fae4ba79add296b16d0938baacc8d462a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 14 Sep 2022 10:47:20 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash b7e665b6b70fa840ee6a1417da402132
658fa05afcf7752e8cb02979c28874efb0f4ddd8
9905cee109c441b937300b368ceccd186877a0923164bf3e1eb0971a2a224400
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 14 Sep 2022 10:47:20 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 4a68e0856575d52f7778bc821b5c881b
0956533f660fd0e7096540292f9b60451f60f148
0fde07586af73476634e76ed5badfce43d8b4ec078fd0f172d80c28ad98e3d27
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 14 Sep 2022 10:47:21 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
maps.googleapis.com/maps/api/js?client=google-maps-embed&paint_origin=&libraries=geometry,search&v=3.exp&language=en_US®ion=us&callback=onApiLoad
142.250.74.42200 OK 57 kB URL HTTP/2 maps.googleapis.com/maps/api/js?client=google-maps-embed&paint_origin=&libraries=geometry,search&v=3.exp&language=en_US®ion=us&callback=onApiLoad
IP 142.250.74.42:0
File type ASCII text, with very long lines (2501)
Hash bf2074634f2d49908cbcd9e6c4785121
718b8ba65eb00ec7d5cb32c7e1f74371a043ecbc
29546a3e7021d4c8636b0c3a42a8a8577abb257c3d398b5d36e49977ee6893c5
GET /maps/api/js?client=google-maps-embed&paint_origin=&libraries=geometry,search&v=3.exp&language=en_US®ion=us&callback=onApiLoad HTTP/1.1
Host: maps.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
content-encoding: gzip
server: mafe
content-length: 56827
x-xss-protection: 0
x-frame-options: SAMEORIGIN
server-timing: gfet4t7; dur=11
date: Wed, 14 Sep 2022 10:19:22 GMT
expires: Wed, 14 Sep 2022 10:49:22 GMT
cache-control: public, max-age=1800
content-type: text/javascript; charset=UTF-8
age: 1679
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 4a68e0856575d52f7778bc821b5c881b
0956533f660fd0e7096540292f9b60451f60f148
0fde07586af73476634e76ed5badfce43d8b4ec078fd0f172d80c28ad98e3d27
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 14 Sep 2022 10:47:21 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
regio.brecht-caravan.de/wp-content/uploads/2017/03/Slide-01.jpg
91.250.114.206200 OK 277 kB URL HTTP/2 regio.brecht-caravan.de/wp-content/uploads/2017/03/Slide-01.jpg
IP 91.250.114.206:0
ASN #8972 Host Europe GmbH
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 1920x400, components 3\012- data
Size 277 kB (276696 bytes)
Hash 1ee2b226aba0394aec183635beef7017
802cdaa9307fc3f25fd1a0f41443dc8e6face060
16b505bee2f794269287cf4e059cdca84b84577f850c085db6a31a23c2ad2913
GET /wp-content/uploads/2017/03/Slide-01.jpg HTTP/1.1
Host: regio.brecht-caravan.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://regio.brecht-caravan.de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 14 Sep 2022 10:47:21 GMT
content-type: image/jpeg
content-length: 276696
last-modified: Fri, 10 Mar 2017 12:34:28 GMT
etag: "58c29d54-438d8"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
regio.brecht-caravan.de/wp-content/uploads/2017/03/Slide-02.jpg
91.250.114.206200 OK 400 kB URL HTTP/2 regio.brecht-caravan.de/wp-content/uploads/2017/03/Slide-02.jpg
IP 91.250.114.206:0
ASN #8972 Host Europe GmbH
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 1920x400, components 3\012- data
Size 400 kB (400189 bytes)
Hash b1b404fe825f614633fae6b14adc998e
a69c275db6d7181946357ba2d3fb013257261cf6
733782211580a13768978ed216f8b2617b77d85cee4f509f3bf5c2a09a01e5df
GET /wp-content/uploads/2017/03/Slide-02.jpg HTTP/1.1
Host: regio.brecht-caravan.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://regio.brecht-caravan.de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 14 Sep 2022 10:47:21 GMT
content-type: image/jpeg
content-length: 400189
last-modified: Fri, 10 Mar 2017 12:34:29 GMT
etag: "58c29d55-61b3d"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
regio.brecht-caravan.de/wp-content/uploads/2017/03/Slide-06.jpg
91.250.114.206200 OK 192 kB URL HTTP/2 regio.brecht-caravan.de/wp-content/uploads/2017/03/Slide-06.jpg
IP 91.250.114.206:0
ASN #8972 Host Europe GmbH
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 1920x400, components 3\012- data
Size 192 kB (192478 bytes)
Hash 58eef202eccfcccc74387192b371356c
d45879fd1ce13ffc8bbbff886e6c7c73b2def8e6
3b0dd34459a1408e4676b14708d548ff844ed51be870df73b17b6d7e28adbbbb
GET /wp-content/uploads/2017/03/Slide-06.jpg HTTP/1.1
Host: regio.brecht-caravan.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://regio.brecht-caravan.de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 14 Sep 2022 10:47:21 GMT
content-type: image/jpeg
content-length: 192478
last-modified: Fri, 10 Mar 2017 12:34:33 GMT
etag: "58c29d59-2efde"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
regio.brecht-caravan.de/wp-content/uploads/2017/03/Slide-03.jpg
91.250.114.206200 OK 277 kB URL HTTP/2 regio.brecht-caravan.de/wp-content/uploads/2017/03/Slide-03.jpg
IP 91.250.114.206:0
ASN #8972 Host Europe GmbH
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 1920x400, components 3\012- data
Size 277 kB (276808 bytes)
Hash f43b3554303e7a194c9acdb8da384374
d3a2dfde977ea31ca92efc53537c570b83752509
20621614ba004b925a492f614eac7643aacfa8c70a32022206fa07f37bf73316
GET /wp-content/uploads/2017/03/Slide-03.jpg HTTP/1.1
Host: regio.brecht-caravan.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://regio.brecht-caravan.de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 14 Sep 2022 10:47:21 GMT
content-type: image/jpeg
content-length: 276808
last-modified: Fri, 10 Mar 2017 12:34:30 GMT
etag: "58c29d56-43948"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
regio.brecht-caravan.de/wp-content/uploads/2017/03/Slide-04.jpg
91.250.114.206200 OK 298 kB URL HTTP/2 regio.brecht-caravan.de/wp-content/uploads/2017/03/Slide-04.jpg
IP 91.250.114.206:0
ASN #8972 Host Europe GmbH
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 1920x400, components 3\012- data
Size 298 kB (298341 bytes)
Hash 0dfc8436ae996ca3dbce664bebb68d5c
ea27c34da1366f96a7bd8716034474437c8ccf9a
03e085e20aa87d4b9e6514a6edfb64eb4cb85c1c28b8ab18b8b472d645ec27e4
GET /wp-content/uploads/2017/03/Slide-04.jpg HTTP/1.1
Host: regio.brecht-caravan.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://regio.brecht-caravan.de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 14 Sep 2022 10:47:21 GMT
content-type: image/jpeg
content-length: 298341
last-modified: Fri, 10 Mar 2017 12:34:31 GMT
etag: "58c29d57-48d65"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
regio.brecht-caravan.de/wp-content/uploads/2017/03/Slide-05.jpg
91.250.114.206200 OK 276 kB URL HTTP/2 regio.brecht-caravan.de/wp-content/uploads/2017/03/Slide-05.jpg
IP 91.250.114.206:0
ASN #8972 Host Europe GmbH
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 1920x400, components 3\012- data
Size 276 kB (275638 bytes)
Hash 0b5d293ede2ebb9fd21a5f204647487f
e1bc5c5913a344fa7d2082c32b64132eda3fe86d
9e94da9f1b5c6a952677fc1ef69858310868a936bb0004ebfb3ec4e31f9d673b
GET /wp-content/uploads/2017/03/Slide-05.jpg HTTP/1.1
Host: regio.brecht-caravan.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://regio.brecht-caravan.de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 14 Sep 2022 10:47:21 GMT
content-type: image/jpeg
content-length: 275638
last-modified: Fri, 10 Mar 2017 12:34:32 GMT
etag: "58c29d58-434b6"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash abea4dc307fd4da34aac369f4316657c
ef7be7963fa8154c83b78d6ca8518b8448f079ff
1c50a6b2765a5108f31d7a31c98c62d293440c84e8bf63f9dac685be9e3d77d5
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 14 Sep 2022 10:47:21 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash abea4dc307fd4da34aac369f4316657c
ef7be7963fa8154c83b78d6ca8518b8448f079ff
1c50a6b2765a5108f31d7a31c98c62d293440c84e8bf63f9dac685be9e3d77d5
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 14 Sep 2022 10:47:21 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash abea4dc307fd4da34aac369f4316657c
ef7be7963fa8154c83b78d6ca8518b8448f079ff
1c50a6b2765a5108f31d7a31c98c62d293440c84e8bf63f9dac685be9e3d77d5
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 14 Sep 2022 10:47:21 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.googleapis.com/css?family=Roboto:300,400,500,700|Google+Sans:400,500,700|Google+Sans+Text:400&lang=en
142.250.74.10200 OK 3.0 kB URL HTTP/2 fonts.googleapis.com/css?family=Roboto:300,400,500,700|Google+Sans:400,500,700|Google+Sans+Text:400&lang=en
IP 142.250.74.10:0
File type ASCII text, with very long lines (43053)
Hash dd195de0cd337a016dd1e9d031f3746a
88076138e132051efdeeba580085bb62112707cd
6fd0c48486e969cf06e82728265391db3d6cfdc5e74c29bdca25a9c287b64ecd
GET /css?family=Roboto:300,400,500,700|Google+Sans:400,500,700|Google+Sans+Text:400&lang=en HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 14 Sep 2022 10:47:21 GMT
date: Wed, 14 Sep 2022 10:47:21 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Google+Sans+Text:400&text=%E2%86%90%E2%86%92%E2%86%91%E2%86%93&lang=en
142.250.74.10200 OK 373 B URL HTTP/2 fonts.googleapis.com/css?family=Google+Sans+Text:400&text=%E2%86%90%E2%86%92%E2%86%91%E2%86%93&lang=en
IP 142.250.74.10:0
Hash 56877529790e67a4a38a40c331676070
f3dd51331db2bef1e291a0afa3bf7f47fa8159b1
00c6e3515ad9a6184d946a0a8849f09c0a593c6bce3fd1f827df9cd76c7e935e
GET /css?family=Google+Sans+Text:400&text=%E2%86%90%E2%86%92%E2%86%91%E2%86%93&lang=en HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 14 Sep 2022 10:47:21 GMT
date: Wed, 14 Sep 2022 10:47:21 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 2e918f71937120f8a4dabf7703832ac1
db0ddd34ea0a5146f0a2d6655801ed14e3ad48ff
5a5ae8687ec7fd801d099af10962a0b1d81f36bd7f8a366fca03a9bcd6b08e93
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 14 Sep 2022 10:47:22 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
lh3.ggpht.com/p/AF1QipOcLjJokWrO9ACCUDSanJBaQtPNOKyq2qaiVlEe=x0-y0-z0
142.250.74.161200 OK 42 kB URL HTTP/2 lh3.ggpht.com/p/AF1QipOcLjJokWrO9ACCUDSanJBaQtPNOKyq2qaiVlEe=x0-y0-z0
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 512x512, components 3\012- data
Hash de0bc4b42eab117cabca5a0c467a2206
b7ad7008a0eb0ac082828a36ae6588d68e514f06
4b609b7071515199a10c77050ea61640a2529d017d97ca76c2d3ad3f50c9f73c
GET /p/AF1QipOcLjJokWrO9ACCUDSanJBaQtPNOKyq2qaiVlEe=x0-y0-z0 HTTP/1.1
Host: lh3.ggpht.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.google.com
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-expose-headers: Content-Length
content-disposition: inline;filename="2017-08-31.jpg"
vary: Origin
access-control-allow-credentials: true
access-control-allow-origin: https://www.google.com
timing-allow-origin: https://www.google.com
x-content-type-options: nosniff
server: fife
content-length: 42532
x-xss-protection: 0
date: Wed, 14 Sep 2022 08:47:24 GMT
expires: Wed, 14 Sep 2022 04:47:25 GMT
cache-control: public, max-age=86400, no-transform
age: 7198
etag: "v11a45"
content-type: image/jpeg
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 2e918f71937120f8a4dabf7703832ac1
db0ddd34ea0a5146f0a2d6655801ed14e3ad48ff
5a5ae8687ec7fd801d099af10962a0b1d81f36bd7f8a366fca03a9bcd6b08e93
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 14 Sep 2022 10:47:23 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
lh3.ggpht.com/p/AF1QipOcLjJokWrO9ACCUDSanJBaQtPNOKyq2qaiVlEe=x6-y1-z3
142.250.74.161200 OK 72 kB URL HTTP/2 lh3.ggpht.com/p/AF1QipOcLjJokWrO9ACCUDSanJBaQtPNOKyq2qaiVlEe=x6-y1-z3
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 512x512, components 3\012- data
Hash 39e5a59da69f201241ee8bbc9e50c8bc
b2a758033e49dcb61f1b0f42f8993f17c65ed9ca
e0d439584c62d2cb21f53f6d947b85e3e2393cab67ac42da1af428ca11f36a3d
GET /p/AF1QipOcLjJokWrO9ACCUDSanJBaQtPNOKyq2qaiVlEe=x6-y1-z3 HTTP/1.1
Host: lh3.ggpht.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.google.com
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-expose-headers: Content-Length
content-disposition: inline;filename="2017-08-31.jpg"
vary: Origin
access-control-allow-credentials: true
access-control-allow-origin: https://www.google.com
timing-allow-origin: https://www.google.com
x-content-type-options: nosniff
server: fife
content-length: 71901
x-xss-protection: 0
date: Wed, 14 Sep 2022 08:47:26 GMT
expires: Wed, 14 Sep 2022 04:47:26 GMT
cache-control: public, max-age=86400, no-transform
age: 7197
etag: "v11a45"
content-type: image/jpeg
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
lh3.ggpht.com/p/AF1QipOcLjJokWrO9ACCUDSanJBaQtPNOKyq2qaiVlEe=x0-y0-z2
142.250.74.161200 OK 63 kB URL HTTP/2 lh3.ggpht.com/p/AF1QipOcLjJokWrO9ACCUDSanJBaQtPNOKyq2qaiVlEe=x0-y0-z2
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 512x512, components 3\012- data
Hash 3c137c6bc0f2451ef4f9c5611cdc62a1
373456e9ad33ea55e3d0cd278a4a43ed62b90d24
a194f1bf3e0e4b1606e4ebf18e970a4a37bc2c8d0841dcf4c56dfa6946994d6f
GET /p/AF1QipOcLjJokWrO9ACCUDSanJBaQtPNOKyq2qaiVlEe=x0-y0-z2 HTTP/1.1
Host: lh3.ggpht.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.google.com
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-expose-headers: Content-Length
content-disposition: inline;filename="2017-08-31.jpg"
vary: Origin
access-control-allow-credentials: true
access-control-allow-origin: https://www.google.com
timing-allow-origin: https://www.google.com
x-content-type-options: nosniff
server: fife
content-length: 62876
x-xss-protection: 0
date: Wed, 14 Sep 2022 08:47:26 GMT
expires: Wed, 14 Sep 2022 04:47:26 GMT
cache-control: public, max-age=86400, no-transform
age: 7197
etag: "v11a45"
content-type: image/jpeg
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
lh3.ggpht.com/p/AF1QipOcLjJokWrO9ACCUDSanJBaQtPNOKyq2qaiVlEe=x0-y0-z3
142.250.74.161200 OK 23 kB URL HTTP/2 lh3.ggpht.com/p/AF1QipOcLjJokWrO9ACCUDSanJBaQtPNOKyq2qaiVlEe=x0-y0-z3
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 512x512, components 3\012- data
Hash d58c2dc06d09ce915e76c782c88d2673
98317bcbccababe1fc78944714d07ae94c31b6d7
5438c0a219e9360f57ec8e286c56d06965b82fbb48db58a7d07c2d91e147257d
GET /p/AF1QipOcLjJokWrO9ACCUDSanJBaQtPNOKyq2qaiVlEe=x0-y0-z3 HTTP/1.1
Host: lh3.ggpht.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.google.com
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-expose-headers: Content-Length
content-disposition: inline;filename="2017-08-31.jpg"
vary: Origin
access-control-allow-credentials: true
access-control-allow-origin: https://www.google.com
timing-allow-origin: https://www.google.com
x-content-type-options: nosniff
server: fife
content-length: 22586
x-xss-protection: 0
date: Wed, 14 Sep 2022 08:47:25 GMT
expires: Wed, 14 Sep 2022 04:47:26 GMT
cache-control: public, max-age=86400, no-transform
age: 7198
etag: "v11a45"
content-type: image/jpeg
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
lh3.ggpht.com/p/AF1QipOcLjJokWrO9ACCUDSanJBaQtPNOKyq2qaiVlEe=x2-y0-z2
142.250.74.161200 OK 53 kB URL HTTP/2 lh3.ggpht.com/p/AF1QipOcLjJokWrO9ACCUDSanJBaQtPNOKyq2qaiVlEe=x2-y0-z2
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 512x512, components 3\012- data
Hash bcd4f590b6314e7c6e57ccd5672e3b16
17957c7a02a7fd716758e3a4605a46c88a4fce7c
bead92f6819fe3e59318a0a04237636cd865c78f49407ace44714659f7e25844
GET /p/AF1QipOcLjJokWrO9ACCUDSanJBaQtPNOKyq2qaiVlEe=x2-y0-z2 HTTP/1.1
Host: lh3.ggpht.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.google.com
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-expose-headers: Content-Length
content-disposition: inline;filename="2017-08-31.jpg"
vary: Origin
access-control-allow-credentials: true
access-control-allow-origin: https://www.google.com
timing-allow-origin: https://www.google.com
x-content-type-options: nosniff
server: fife
content-length: 53342
x-xss-protection: 0
date: Wed, 14 Sep 2022 08:47:26 GMT
expires: Wed, 14 Sep 2022 04:47:26 GMT
cache-control: public, max-age=86400, no-transform
age: 7197
etag: "v11a45"
content-type: image/jpeg
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
lh3.ggpht.com/p/AF1QipOcLjJokWrO9ACCUDSanJBaQtPNOKyq2qaiVlEe=x1-y0-z2
142.250.74.161200 OK 45 kB URL HTTP/2 lh3.ggpht.com/p/AF1QipOcLjJokWrO9ACCUDSanJBaQtPNOKyq2qaiVlEe=x1-y0-z2
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 512x512, components 3\012- data
Hash 9ac307f2c7238391e80585f2e43fd562
a3961815854c29f7db9850f8399928038bcb41e9
b912764996b36339e5e7f56caea1a6cfe6987e60fcfe05489197a4d5a1d085d5
GET /p/AF1QipOcLjJokWrO9ACCUDSanJBaQtPNOKyq2qaiVlEe=x1-y0-z2 HTTP/1.1
Host: lh3.ggpht.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.google.com
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-expose-headers: Content-Length
content-disposition: inline;filename="2017-08-31.jpg"
vary: Origin
access-control-allow-credentials: true
access-control-allow-origin: https://www.google.com
timing-allow-origin: https://www.google.com
x-content-type-options: nosniff
server: fife
content-length: 44719
x-xss-protection: 0
date: Wed, 14 Sep 2022 08:47:25 GMT
expires: Wed, 14 Sep 2022 04:47:26 GMT
cache-control: public, max-age=86400, no-transform
age: 7198
etag: "v11a45"
content-type: image/jpeg
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
lh3.ggpht.com/p/AF1QipOcLjJokWrO9ACCUDSanJBaQtPNOKyq2qaiVlEe=x1-y0-z3
142.250.74.161200 OK 21 kB URL HTTP/2 lh3.ggpht.com/p/AF1QipOcLjJokWrO9ACCUDSanJBaQtPNOKyq2qaiVlEe=x1-y0-z3
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 512x512, components 3\012- data
Hash dcb1bf5624283b8170b91590f0952d1a
9a94128f9a262ccd345ae55c25b30cfd8f38d5b6
44bd83a699020cc935f6e8fbfc6a9145aa8ec9ff997a24cd4754f0ebfcdf54ed
GET /p/AF1QipOcLjJokWrO9ACCUDSanJBaQtPNOKyq2qaiVlEe=x1-y0-z3 HTTP/1.1
Host: lh3.ggpht.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.google.com
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-expose-headers: Content-Length
content-disposition: inline;filename="2017-08-31.jpg"
vary: Origin
access-control-allow-credentials: true
access-control-allow-origin: https://www.google.com
timing-allow-origin: https://www.google.com
x-content-type-options: nosniff
server: fife
content-length: 20765
x-xss-protection: 0
date: Wed, 14 Sep 2022 08:47:26 GMT
expires: Wed, 14 Sep 2022 04:47:26 GMT
cache-control: public, max-age=86400, no-transform
age: 7197
etag: "v11a45"
content-type: image/jpeg
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
lh3.ggpht.com/p/AF1QipOcLjJokWrO9ACCUDSanJBaQtPNOKyq2qaiVlEe=x6-y0-z3
142.250.74.161200 OK 20 kB URL HTTP/2 lh3.ggpht.com/p/AF1QipOcLjJokWrO9ACCUDSanJBaQtPNOKyq2qaiVlEe=x6-y0-z3
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 512x512, components 3\012- data
Hash 42e19e64ce00ebdf3ff0a8ecb8aeadf2
d8798dd2b2be7f0b02e0c277c63311e6335f555d
307c02b97883e60112ced6a5205ca12d263517b3ee039fdf0dbb793db2584a2f
GET /p/AF1QipOcLjJokWrO9ACCUDSanJBaQtPNOKyq2qaiVlEe=x6-y0-z3 HTTP/1.1
Host: lh3.ggpht.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.google.com
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-expose-headers: Content-Length
content-disposition: inline;filename="2017-08-31.jpg"
vary: Origin
access-control-allow-credentials: true
access-control-allow-origin: https://www.google.com
timing-allow-origin: https://www.google.com
x-content-type-options: nosniff
server: fife
content-length: 19607
x-xss-protection: 0
date: Wed, 14 Sep 2022 08:47:25 GMT
expires: Wed, 14 Sep 2022 04:47:26 GMT
cache-control: public, max-age=86400, no-transform
age: 7198
etag: "v11a45"
content-type: image/jpeg
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
lh3.ggpht.com/p/AF1QipOcLjJokWrO9ACCUDSanJBaQtPNOKyq2qaiVlEe=x1-y1-z2
142.250.74.161200 OK 68 kB URL HTTP/2 lh3.ggpht.com/p/AF1QipOcLjJokWrO9ACCUDSanJBaQtPNOKyq2qaiVlEe=x1-y1-z2
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 512x512, components 3\012- data
Hash 5d07c76f661b41ccac6d7d0ce6facd84
567e185e4ae07f8c5540003bf4ec2ee2388787e1
bb16a400ab37d6f449beb37c768f4f7b70e8afd6ba0a8b58e2a1eff100e7170c
GET /p/AF1QipOcLjJokWrO9ACCUDSanJBaQtPNOKyq2qaiVlEe=x1-y1-z2 HTTP/1.1
Host: lh3.ggpht.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.google.com
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-expose-headers: Content-Length
content-disposition: inline;filename="2017-08-31.jpg"
vary: Origin
access-control-allow-credentials: true
access-control-allow-origin: https://www.google.com
timing-allow-origin: https://www.google.com
x-content-type-options: nosniff
server: fife
content-length: 67569
x-xss-protection: 0
date: Wed, 14 Sep 2022 08:47:26 GMT
expires: Wed, 14 Sep 2022 04:47:26 GMT
cache-control: public, max-age=86400, no-transform
age: 7197
etag: "v11a45"
content-type: image/jpeg
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
lh3.ggpht.com/p/AF1QipOcLjJokWrO9ACCUDSanJBaQtPNOKyq2qaiVlEe=x0-y1-z2
142.250.74.161200 OK 73 kB URL HTTP/2 lh3.ggpht.com/p/AF1QipOcLjJokWrO9ACCUDSanJBaQtPNOKyq2qaiVlEe=x0-y1-z2
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 512x512, components 3\012- data
Hash 6da978f21a3edeb1c39d777d311fa2c7
aa010f76535d9aa524e726c40d0ef9578df53fdd
f9e7b54455ffdcb0d6acd76f7f5c818c23c5a1658230c1bb1e7df1d28e50ac01
GET /p/AF1QipOcLjJokWrO9ACCUDSanJBaQtPNOKyq2qaiVlEe=x0-y1-z2 HTTP/1.1
Host: lh3.ggpht.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.google.com
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-expose-headers: Content-Length
content-disposition: inline;filename="2017-08-31.jpg"
vary: Origin
access-control-allow-credentials: true
access-control-allow-origin: https://www.google.com
timing-allow-origin: https://www.google.com
x-content-type-options: nosniff
server: fife
content-length: 72751
x-xss-protection: 0
date: Wed, 14 Sep 2022 08:47:26 GMT
expires: Wed, 14 Sep 2022 04:47:26 GMT
cache-control: public, max-age=86400, no-transform
age: 7197
etag: "v11a45"
content-type: image/jpeg
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
lh3.ggpht.com/p/AF1QipOcLjJokWrO9ACCUDSanJBaQtPNOKyq2qaiVlEe=x3-y0-z2
142.250.74.161200 OK 63 kB URL HTTP/2 lh3.ggpht.com/p/AF1QipOcLjJokWrO9ACCUDSanJBaQtPNOKyq2qaiVlEe=x3-y0-z2
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 512x512, components 3\012- data
Hash 999444fcac25b1cbc7cc0569e642b83a
f4ce79f21f499093a64bf0149775a014f8dbea78
b4c27e04911f548ccc192ed058bcd8e1231fe227ea2601cd267fd6736d5a3912
GET /p/AF1QipOcLjJokWrO9ACCUDSanJBaQtPNOKyq2qaiVlEe=x3-y0-z2 HTTP/1.1
Host: lh3.ggpht.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.google.com
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-expose-headers: Content-Length
content-disposition: inline;filename="2017-08-31.jpg"
vary: Origin
access-control-allow-credentials: true
access-control-allow-origin: https://www.google.com
timing-allow-origin: https://www.google.com
x-content-type-options: nosniff
server: fife
content-length: 63157
x-xss-protection: 0
date: Wed, 14 Sep 2022 08:47:25 GMT
expires: Wed, 14 Sep 2022 04:47:26 GMT
cache-control: public, max-age=86400, no-transform
age: 7198
etag: "v11a45"
content-type: image/jpeg
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
lh3.ggpht.com/p/AF1QipOcLjJokWrO9ACCUDSanJBaQtPNOKyq2qaiVlEe=x3-y1-z2
142.250.74.161200 OK 74 kB URL HTTP/2 lh3.ggpht.com/p/AF1QipOcLjJokWrO9ACCUDSanJBaQtPNOKyq2qaiVlEe=x3-y1-z2
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 512x512, components 3\012- data
Hash a8a046771bbc2e43b789413558011fa3
4f899afcd8d31aaae6622512bb3e4030defef006
22c8d337e28b53be2c11a0175fb070ae12b136da2b84a2fc52f66e96280dda98
GET /p/AF1QipOcLjJokWrO9ACCUDSanJBaQtPNOKyq2qaiVlEe=x3-y1-z2 HTTP/1.1
Host: lh3.ggpht.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.google.com
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-expose-headers: Content-Length
content-disposition: inline;filename="2017-08-31.jpg"
vary: Origin
access-control-allow-credentials: true
access-control-allow-origin: https://www.google.com
timing-allow-origin: https://www.google.com
x-content-type-options: nosniff
server: fife
content-length: 73570
x-xss-protection: 0
date: Wed, 14 Sep 2022 08:47:26 GMT
expires: Wed, 14 Sep 2022 04:47:26 GMT
cache-control: public, max-age=86400, no-transform
age: 7197
etag: "v11a45"
content-type: image/jpeg
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
lh3.ggpht.com/p/AF1QipOcLjJokWrO9ACCUDSanJBaQtPNOKyq2qaiVlEe=x2-y1-z2
142.250.74.161200 OK 75 kB URL HTTP/2 lh3.ggpht.com/p/AF1QipOcLjJokWrO9ACCUDSanJBaQtPNOKyq2qaiVlEe=x2-y1-z2
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 512x512, components 3\012- data
Hash 6889efd58bc0e57aeb69609a93d5fcb6
2831d168f6cfae85247cec4df258a34502962223
0539bd50eb303c42f3e7a8953cbe4bc632b8554ec442134f79c9118a435c227f
GET /p/AF1QipOcLjJokWrO9ACCUDSanJBaQtPNOKyq2qaiVlEe=x2-y1-z2 HTTP/1.1
Host: lh3.ggpht.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.google.com
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-expose-headers: Content-Length
content-disposition: inline;filename="2017-08-31.jpg"
vary: Origin
access-control-allow-credentials: true
access-control-allow-origin: https://www.google.com
timing-allow-origin: https://www.google.com
x-content-type-options: nosniff
server: fife
content-length: 75039
x-xss-protection: 0
date: Wed, 14 Sep 2022 08:47:26 GMT
expires: Wed, 14 Sep 2022 04:47:26 GMT
cache-control: public, max-age=86400, no-transform
age: 7197
etag: "v11a45"
content-type: image/jpeg
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
lh3.ggpht.com/p/AF1QipOcLjJokWrO9ACCUDSanJBaQtPNOKyq2qaiVlEe=x0-y1-z3
142.250.74.161200 OK 78 kB URL HTTP/2 lh3.ggpht.com/p/AF1QipOcLjJokWrO9ACCUDSanJBaQtPNOKyq2qaiVlEe=x0-y1-z3
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 512x512, components 3\012- data
Hash a1f498ea59598b6cffebedc404d9981c
a0a4d12fc0754f9535703a059944a62b4a4ecb44
2e8e8bf864e0d7ec36fd0643a9e2ac5d9de02f854737cb8eb58fda8c42211c7c
GET /p/AF1QipOcLjJokWrO9ACCUDSanJBaQtPNOKyq2qaiVlEe=x0-y1-z3 HTTP/1.1
Host: lh3.ggpht.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.google.com
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-expose-headers: Content-Length
content-disposition: inline;filename="2017-08-31.jpg"
vary: Origin
access-control-allow-credentials: true
access-control-allow-origin: https://www.google.com
timing-allow-origin: https://www.google.com
x-content-type-options: nosniff
server: fife
content-length: 77456
x-xss-protection: 0
date: Wed, 14 Sep 2022 08:47:26 GMT
expires: Wed, 14 Sep 2022 04:47:26 GMT
cache-control: public, max-age=86400, no-transform
age: 7197
etag: "v11a45"
content-type: image/jpeg
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
lh3.ggpht.com/p/AF1QipOcLjJokWrO9ACCUDSanJBaQtPNOKyq2qaiVlEe=x1-y1-z3
142.250.74.161200 OK 77 kB URL HTTP/2 lh3.ggpht.com/p/AF1QipOcLjJokWrO9ACCUDSanJBaQtPNOKyq2qaiVlEe=x1-y1-z3
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 512x512, components 3\012- data
Hash e5948bd30f32519468828455c5222629
b78bea68d8fb1c329077dbaed94d893dd96cc35e
650398eb735f69c5cdd7dfe152917f71cea30af5dc68defdd89c157ef65d330d
GET /p/AF1QipOcLjJokWrO9ACCUDSanJBaQtPNOKyq2qaiVlEe=x1-y1-z3 HTTP/1.1
Host: lh3.ggpht.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.google.com
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-expose-headers: Content-Length
content-disposition: inline;filename="2017-08-31.jpg"
vary: Origin
access-control-allow-credentials: true
access-control-allow-origin: https://www.google.com
timing-allow-origin: https://www.google.com
x-content-type-options: nosniff
server: fife
content-length: 77088
x-xss-protection: 0
date: Wed, 14 Sep 2022 08:47:26 GMT
expires: Wed, 14 Sep 2022 04:47:26 GMT
cache-control: public, max-age=86400, no-transform
age: 7197
etag: "v11a45"
content-type: image/jpeg
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
lh3.ggpht.com/p/AF1QipOcLjJokWrO9ACCUDSanJBaQtPNOKyq2qaiVlEe=x0-y2-z3
142.250.74.161200 OK 111 kB URL HTTP/2 lh3.ggpht.com/p/AF1QipOcLjJokWrO9ACCUDSanJBaQtPNOKyq2qaiVlEe=x0-y2-z3
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 512x512, components 3\012- data
Size 111 kB (111047 bytes)
Hash 57af08397e1a044af73fa7d0532067d2
40f1a5881b111e8758010adc571012329ea60c11
0c178d571f8f3aed350e5623159f6fbeba98b43867948b51f3059b35b1c50cb2
GET /p/AF1QipOcLjJokWrO9ACCUDSanJBaQtPNOKyq2qaiVlEe=x0-y2-z3 HTTP/1.1
Host: lh3.ggpht.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.google.com
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-expose-headers: Content-Length
content-disposition: inline;filename="2017-08-31.jpg"
vary: Origin
access-control-allow-credentials: true
access-control-allow-origin: https://www.google.com
timing-allow-origin: https://www.google.com
x-content-type-options: nosniff
server: fife
content-length: 111047
x-xss-protection: 0
date: Wed, 14 Sep 2022 08:47:26 GMT
expires: Wed, 14 Sep 2022 04:47:26 GMT
cache-control: public, max-age=86400, no-transform
age: 7197
etag: "v11a45"
content-type: image/jpeg
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
lh3.ggpht.com/p/AF1QipOcLjJokWrO9ACCUDSanJBaQtPNOKyq2qaiVlEe=x1-y2-z3
142.250.74.161200 OK 131 kB URL HTTP/2 lh3.ggpht.com/p/AF1QipOcLjJokWrO9ACCUDSanJBaQtPNOKyq2qaiVlEe=x1-y2-z3
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 512x512, components 3\012- data
Size 131 kB (131327 bytes)
Hash 3fa961b45da41ffef29d41eaa01cd75a
2a9159b5ebe1d2aab1e38a90432952d2bbffa41a
4bca0aacd6000aea0f3c25f9a5bfa9980d2f91132a9da9114fba110592bb1dab
GET /p/AF1QipOcLjJokWrO9ACCUDSanJBaQtPNOKyq2qaiVlEe=x1-y2-z3 HTTP/1.1
Host: lh3.ggpht.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.google.com
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-expose-headers: Content-Length
content-disposition: inline;filename="2017-08-31.jpg"
vary: Origin
access-control-allow-credentials: true
access-control-allow-origin: https://www.google.com
timing-allow-origin: https://www.google.com
x-content-type-options: nosniff
server: fife
content-length: 131327
x-xss-protection: 0
date: Wed, 14 Sep 2022 08:47:26 GMT
expires: Wed, 14 Sep 2022 04:47:26 GMT
cache-control: public, max-age=86400, no-transform
age: 7197
etag: "v11a45"
content-type: image/jpeg
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
regio.brecht-caravan.de/wp-json/wp-statistics/v2/hit?_=1663136016&_wpnonce=a52b76b0e7&wp_statistics_hit_rest=yes&referred=https%3A%2F%2Fregio.brecht-caravan.de%2F&exclusion_match=yes&exclusion_reason=CrawlerDetect&track_all=1¤t_page_type=home¤t_page_id=2&search_query&page_uri=/
91.250.114.206404 Not Found 1.0 kB URL HTTP/2 regio.brecht-caravan.de/wp-json/wp-statistics/v2/hit?_=1663136016&_wpnonce=a52b76b0e7&wp_statistics_hit_rest=yes&referred=https%3A%2F%2Fregio.brecht-caravan.de%2F&exclusion_match=yes&exclusion_reason=CrawlerDetect&track_all=1¤t_page_type=home¤t_page_id=2&search_query&page_uri=/
IP 91.250.114.206:0
ASN #8972 Host Europe GmbH
File type HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash eb4931c82d2eebd8e39fabf292198830
246e60a36c27c156477699b4d67e14c28bde960f
9828fde077b7116b924327150c7ad9343b2b35b28b605237f912efb3521cbd82
GET /wp-json/wp-statistics/v2/hit?_=1663136016&_wpnonce=a52b76b0e7&wp_statistics_hit_rest=yes&referred=https%3A%2F%2Fregio.brecht-caravan.de%2F&exclusion_match=yes&exclusion_reason=CrawlerDetect&track_all=1¤t_page_type=home¤t_page_id=2&search_query&page_uri=/ HTTP/1.1
Host: regio.brecht-caravan.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json;charset=UTF-8
Connection: keep-alive
Referer: https://regio.brecht-caravan.de/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
server: nginx
date: Wed, 14 Sep 2022 10:47:27 GMT
content-type: text/html
content-length: 1027
last-modified: Fri, 03 Mar 2017 11:57:16 GMT
etag: "403-549d23f35bf00"
accept-ranges: bytes
X-Firefox-Spdy: h2
regio.brecht-caravan.de/wp-content/uploads/2016/05/Reparaturservice.jpg
91.250.114.206200 OK 0 B URL HTTP/2 regio.brecht-caravan.de/wp-content/uploads/2016/05/Reparaturservice.jpg
IP 91.250.114.206:0
ASN #8972 Host Europe GmbH
GET /wp-content/uploads/2016/05/Reparaturservice.jpg HTTP/1.1
Host: regio.brecht-caravan.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://regio.brecht-caravan.de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 14 Sep 2022 10:47:19 GMT
content-type: image/jpeg
content-length: 171310
last-modified: Tue, 14 Mar 2017 15:10:39 GMT
etag: "58c807ef-29d2e"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
regio.brecht-caravan.de/wp-content/uploads/2016/05/Ersatzteile-Zubehoer.jpg
91.250.114.206200 OK 0 B URL HTTP/2 regio.brecht-caravan.de/wp-content/uploads/2016/05/Ersatzteile-Zubehoer.jpg
IP 91.250.114.206:0
ASN #8972 Host Europe GmbH
GET /wp-content/uploads/2016/05/Ersatzteile-Zubehoer.jpg HTTP/1.1
Host: regio.brecht-caravan.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://regio.brecht-caravan.de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 14 Sep 2022 10:47:19 GMT
content-type: image/jpeg
content-length: 199321
last-modified: Tue, 14 Mar 2017 15:10:37 GMT
etag: "58c807ed-30a99"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
regio.brecht-caravan.de/wp-content/themes/Getblue/includes/lib/assets/min/js/library/jquery.ilightbox.js?ver=2.2.3
91.250.114.206200 OK 0 B URL HTTP/2 regio.brecht-caravan.de/wp-content/themes/Getblue/includes/lib/assets/min/js/library/jquery.ilightbox.js?ver=2.2.3
IP 91.250.114.206:0
ASN #8972 Host Europe GmbH
GET /wp-content/themes/Getblue/includes/lib/assets/min/js/library/jquery.ilightbox.js?ver=2.2.3 HTTP/1.1
Host: regio.brecht-caravan.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://regio.brecht-caravan.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 14 Sep 2022 10:47:19 GMT
content-type: application/javascript
content-length: 82124
last-modified: Tue, 10 Nov 2020 15:44:34 GMT
etag: "5faab562-140cc"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2