Report - cafe-brabant.nl/

Report Overview

Submitted URL
cafe-brabant.nl/
IP
199.34.228.72
ASN
#27647 WEEBLY
Submitted
2023-02-19 13:04:37
Access
Website Title
Final URL
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
32

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
ssl.google-analytics.com	275	2012-10-02T06:58:30Z	2023-03-13T08:41:35Z	369 B	18 kB	142.250.74.40
www.editmysite.com	43381	2017-01-29T19:23:39Z	2023-03-13T01:09:46Z	703 B	12 kB	74.115.50.67
r3.o.lencr.org	344	2020-12-02T09:52:13Z	2023-03-13T05:09:07Z	3.4 kB	8.9 kB	23.36.76.226
content-signature-2.cdn.mozilla.net	1152	2020-11-03T13:26:46Z	2023-03-13T05:09:35Z	413 B	5.9 kB	34.160.144.191
www.cafe-brabant.nl	unknown			9.4 kB	238 kB	199.34.228.72
cdn2.editmysite.com	11564	2012-10-02T20:27:39Z	2023-03-13T08:33:25Z	4.1 kB	413 kB	151.101.129.46
ocsp.digicert.com	86	2012-05-21T09:02:23Z	2023-03-13T06:00:13Z	682 B	1.5 kB	93.184.220.29
ocsp.pki.goog	175	2018-07-01T08:43:07Z	2023-03-13T05:09:47Z	2.1 kB	4.2 kB	216.58.211.3
ocsp.globalsign.com	2075	2012-07-20T19:46:16Z	2023-03-13T05:09:19Z	368 B	1.9 kB	104.18.20.226
maps.googleapis.com	33876	2019-10-17T17:56:16Z	2023-03-13T08:06:07Z	395 B	54 kB	142.250.74.74
maps.gstatic.com	unknown	2016-01-11T17:55:17Z	2023-03-13T08:06:07Z	400 B	873 B	142.250.74.3
cafe-brabant.nl	unknown			347 B	481 B	199.34.228.72
firefox.settings.services.mozilla.com	867	2020-06-04T22:08:41Z	2023-03-13T05:09:10Z	782 B	2.4 kB	35.241.9.150
www.weebly.com	21455	2012-05-21T14:40:56Z	2023-03-13T05:17:09Z	701 B	627 B	74.115.50.109
img-getpocket.cdn.mozilla.net	1631	2018-06-22T01:36:00Z	2023-03-13T05:09:16Z	3.2 kB	52 kB	34.120.237.76
ec.editmysite.com	12806	2017-01-29T22:50:35Z	2023-03-13T08:33:26Z	1.0 kB	747 B	54.188.178.80
fonts.gstatic.com	unknown	2014-09-09T02:40:21Z	2023-03-13T08:44:36Z	482 B	17 kB	216.58.207.227
contile.services.mozilla.com	1114	2021-05-27T20:32:35Z	2023-03-13T05:09:13Z	333 B	391 B	34.117.237.239
push.services.mozilla.com	2140	2014-10-24T10:27:06Z	2023-03-13T05:09:14Z	606 B	127 B	44.237.163.41
ocsp.r2m01.amazontrust.com	unknown	2022-10-12T22:43:53Z	2023-03-13T08:10:39Z	700 B	1.9 kB	54.230.80.227

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

Scan Date	Severity	Indicator	Alert
2023-02-19	medium	cafe-brabant.nl/	Malware
2023-02-19	medium	www.cafe-brabant.nl/	Malware
2023-02-19	medium	www.cafe-brabant.nl/	Malware
2023-02-19	medium	www.cafe-brabant.nl/files/main_style.css?1675237663	Malware
2023-02-19	medium	www.cafe-brabant.nl/files/theme/logo-wrap-bg.png?1675237663	Malware
2023-02-19	medium	www.cafe-brabant.nl/ajax/api/JsonRPC/CustomerAccounts/?CustomerAccounts[CustomerAccounts::getAccountDetails]	Malware
2023-02-19	medium	www.cafe-brabant.nl/files/theme/header-bg-red.jpg?1675237663	Malware
2023-02-19	medium	www.cafe-brabant.nl/files/theme/logo-wrap-bg-repeat.png?1675237663	Malware
2023-02-19	medium	www.cafe-brabant.nl/files/theme/container-shadow.png?1675237663	Malware
2023-02-19	medium	www.cafe-brabant.nl/files/theme/social-red.png?1675237663	Malware
2023-02-19	medium	www.cafe-brabant.nl/files/theme/no-header-bg-red.jpg?1675237663	Malware
2023-02-19	medium	www.cafe-brabant.nl/files/theme/tent-rope-right.png?1675237663	Malware
2023-02-19	medium	www.cafe-brabant.nl/files/theme/copyright-bg-red.jpg?1675237663	Malware
2023-02-19	medium	www.cafe-brabant.nl/files/theme/body-bg.png?1675237663	Malware
2023-02-19	medium	www.cafe-brabant.nl/files/theme/nav-bg-h-red.png?1675237663	Malware
2023-02-19	medium	www.cafe-brabant.nl/files/theme/footer-bg-red.jpg?1675237663	Malware

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (33)

	URL	Size	First Seen	Last Seen
	www.cafe-brabant.nl/	22 B	2023-03-07	2024-04-23
Pretty URL www.cafe-brabant.nl/ IP 199.34.228.72 ASN #27647 WEEBLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:45 Last Seen2024-04-23 17:56:26 Times Seen2262 Hash 9a33cbad7c996ea8903a3eb3332a125c 8efed109b301f8aa0f3768dcd824d669d0129741 5d3b8f4578ca89904a46d014a8433346ca2773e8691f6cc9d09b2b30f0802dbc Loading...

	cdn2.editmysite.com/js/site/footerSignup.js?buildTime=1676659918	3.6 kB	2023-03-07	2024-04-24
Pretty URL cdn2.editmysite.com/js/site/footerSignup.js?buildTime=1676659918 IP 151.101.129.46 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:45 Last Seen2024-04-24 06:59:18 Times Seen4320 Hash 40b81b2d52ba9d2e2c64c31ff6a24cd7 6b5689250661646ecbb841f2475f1556a113373c e06baca13f25df9c7d684fc1b1fdfbbbb95070a1d5a9cd648632da7bccc90b96 Loading...

	maps.googleapis.com/maps-api-v3/api/js/51/8/controls.js	90 kB	2023-03-13	2023-03-14
Pretty URL maps.googleapis.com/maps-api-v3/api/js/51/8/controls.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 14:22:51 Last Seen2023-03-14 13:31:02 Times Seen1 Hash 64ce3865d95ad71e2facb4f1a8bc13ca a6dd840712c477d84141a3dee7ee5f53e7a3ac9a d0f1e5601e335367ebb9e80e0c2cfa10df52be9c2a9413093853a2e97bc56e25 Loading...

	www.cafe-brabant.nl/	32 B	2023-03-07	2024-04-24
Pretty URL www.cafe-brabant.nl/ IP 199.34.228.72 ASN #27647 WEEBLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:45 Last Seen2024-04-24 06:59:18 Times Seen2938 Hash 1bca01edca83d94091a2bb38d7ef8183 d05117e4ab3b3461be3855e95813a5c607e3ca95 fcf1cbf5cfad6d605868f42d38a0a937f5e6eaa91b05dcfbbbc95e4c3e23e528 Loading...

	www.cafe-brabant.nl/	117 B	2023-03-07	2024-04-24
Pretty URL www.cafe-brabant.nl/ IP 199.34.228.72 ASN #27647 WEEBLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:44 Last Seen2024-04-24 06:59:18 Times Seen2915 Hash ef142665f07ac27f698aa34d471c4439 b9e0d81f97054a9a0a68f57096d992ba58f33184 fbfd3b11452dce82b76e405100aece37dcfe12df4c71fb8f2bc2fe2166e9f07f Loading...

	maps.googleapis.com/maps/api/js?v=3&client=gme-weeblyinc1	163 kB	2023-03-14	2023-03-14
Pretty URL maps.googleapis.com/maps/api/js?v=3&client=gme-weeblyinc1 IP 142.250.74.74 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-14 04:15:05 Last Seen2023-03-14 04:15:05 Times Seen1 Hash 2592e90ec1764a9b3cf0f4c3806b5781 c32de6b4b02ae5dca88ecf7f3adb2796a3b9f0af b6c61be32494e1cfde15122bb0caee795c5345d0fcd231f08d28e4dd79c904bd Loading...

	maps.googleapis.com/maps-api-v3/api/js/51/8/util.js	163 kB	2023-03-13	2023-03-14
Pretty URL maps.googleapis.com/maps-api-v3/api/js/51/8/util.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 14:22:51 Last Seen2023-03-14 13:31:02 Times Seen1 Hash f52e72535cb9b84fbf0ec5ff9455bc03 383b25e2066d88d52e03380256ed05c225867e9d 493ab4e7ca6837030e64d507c6ab90890cd9a63fc25bb7bf3bcd441dda6881b0 Loading...

	unknown	0 B	2023-03-07	2024-04-24
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:01:59 Last Seen2024-04-24 08:31:43 Times Seen37035132 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	www.cafe-brabant.nl/	1.2 kB	2023-03-07	2024-04-24
Pretty URL www.cafe-brabant.nl/ IP 199.34.228.72 ASN #27647 WEEBLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:44 Last Seen2024-04-24 06:59:18 Times Seen2889 Hash 24449345e209b8641a813eaef44a5244 21617897e4d35717e2e41b766501fbd883a8f16d 3e72636c6cf854c8657ccbf9e03f7af05bd4836066c329417a4f8251bb5d18c1 Loading...

	maps.googleapis.com/maps/api/js/AuthenticationService.Authenticate?1shttps%3A%2F%2Fwww.editmysite.com%2Fajax%2Fapps%2FgenerateMap.php&2sgme-weeblyinc1&7m1&1e0&8b0&callback=_xdc_._h6ghbb&client=gme-weeblyinc1&token=125631	62 B	2023-03-08	2023-07-08
Pretty URL maps.googleapis.com/maps/api/js/AuthenticationService.Authenticate?1shttps%3A%2F%2Fwww.editmysite.com%2Fajax%2Fapps%2FgenerateMap.php&2sgme-weeblyinc1&7m1&1e0&8b0&callback=_xdc_._h6ghbb&client=gme-weeblyinc1&token=125631 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 15:47:19 Last Seen2023-07-08 15:32:18 Times Seen36 Hash 8a3750d1acef4a2b131b8a5d2adce3aa 370022d7553095e78b4a7687739f60986e760c7d 653bf266dbd24d0185b345da81517ca8c13ad06e2bf54e2a12db3be531a78afe Loading...

	cdn2.editmysite.com/js/jquery-1.8.3.min.js	94 kB	2023-03-07	2024-04-24
Pretty URL cdn2.editmysite.com/js/jquery-1.8.3.min.js IP 151.101.129.46 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:53 Last Seen2024-04-24 08:23:17 Times Seen16234 Hash 3576a6e73c9dccdbbc4a2cf8ff544ad7 06e872300088b9ba8a08427d28ed0efcdf9c6ff5 61c6caebd23921741fb5ffe6603f16634fca9840c2bf56ac8201e9264d6daccf Loading...

	www.cafe-brabant.nl/	1.8 kB	2023-03-07	2024-04-24
Pretty URL www.cafe-brabant.nl/ IP 199.34.228.72 ASN #27647 WEEBLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:44 Last Seen2024-04-24 06:59:18 Times Seen2912 Hash 563cec0ace2baea4e867b491f66cd6b0 fc4451f8fa76c5d1e3714e9008510633cffaa4f7 e4538493fc4f43f93806d0239acac9b38b0453c8440dc5ba4fcb47eae6ab2556 Loading...

	www.cafe-brabant.nl/	35 B	2023-03-07	2024-04-24
Pretty URL www.cafe-brabant.nl/ IP 199.34.228.72 ASN #27647 WEEBLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:45 Last Seen2024-04-24 06:59:18 Times Seen2929 Hash 13385ea3f3e6184de3bfa80f08fe938b 6f859a2fd4b7e15ed74990516d97a52e7b4eeb20 5e87d85ec57af5d97b6c0d4c6e766afd2b53d077102827d19625a37d8cd11c2d Loading...

	www.cafe-brabant.nl/	2.0 kB	2023-03-14	2023-03-14
Pretty URL www.cafe-brabant.nl/ IP 199.34.228.72 ASN #27647 WEEBLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-14 04:15:05 Last Seen2023-03-14 04:15:05 Times Seen1 Hash e021c436e3eb0943db698aa57729a0f9 ccafcbbb821b72fa8012cd17aba56bafbcd49f4c 70333d22a8216282b3845d4ded1b42a1e39ad727ac6fed240a51c2da63330906 Loading...

	cdn2.editmysite.com/js/wsnbn/snowday262.js	75 kB	2023-03-07	2024-04-24
Pretty URL cdn2.editmysite.com/js/wsnbn/snowday262.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:13 Last Seen2024-04-24 08:21:51 Times Seen28353 Hash 99bbe560926e583b8e99036251deb783 8d81b73ae06f664f9d9e53dd5829a799bf434491 648e766bf519673f9a90cc336cbecede80dcbe3419b43d36ecbb25d88f5584a3 Loading...

	ssl.google-analytics.com/ga.js	46 kB	2023-03-07	2024-04-16
Pretty URL ssl.google-analytics.com/ga.js IP 142.250.74.40 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:00 Last Seen2024-04-16 23:24:27 Times Seen3495 Hash e9372f0ebbcf71f851e3d321ef2a8e5a 2c7d19d1af7d97085c977d1b69dcb8b84483d87c 1259ea99bd76596239bfd3102c679eb0a5052578dc526b0452f4d42f8bcdd45f Loading...

	maps.googleapis.com/maps/vt?pb=!1m4!1m3!1i15!2i16854!3i10788!1m4!1m3!1i15!2i16854!3i10789!1m4!1m3!1i15!2i16855!3i10788!1m4!1m3!1i15!2i16855!3i10789!1m4!1m3!1i15!2i16856!3i10788!1m4!1m3!1i15!2i16856!3i10789!2m3!1e0!2sm!3i634373335!3m17!2sen-US!3sUS!5e18!12m4!1e68!2m2!1sset!2sRoadmap!12m3!1e37!2m1!1ssmartmaps!12m4!1e26!2m2!1sstyles!2zcy50OjMzfHMuZTpsfHAudjpvZmY!4e3!12m1!5b1!23i1379903&callback=_xdc_._9f4lly&client=gme-weeblyinc1&token=27326	3.2 kB	2023-03-14	2023-03-14
Pretty URL maps.googleapis.com/maps/vt?pb=!1m4!1m3!1i15!2i16854!3i10788!1m4!1m3!1i15!2i16854!3i10789!1m4!1m3!1i15!2i16855!3i10788!1m4!1m3!1i15!2i16855!3i10789!1m4!1m3!1i15!2i16856!3i10788!1m4!1m3!1i15!2i16856!3i10789!2m3!1e0!2sm!3i634373335!3m17!2sen-US!3sUS!5e18!12m4!1e68!2m2!1sset!2sRoadmap!12m3!1e37!2m1!1ssmartmaps!12m4!1e26!2m2!1sstyles!2zcy50OjMzfHMuZTpsfHAudjpvZmY!4e3!12m1!5b1!23i1379903&callback=_xdc_._9f4lly&client=gme-weeblyinc1&token=27326 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-14 04:15:05 Last Seen2023-03-14 04:15:05 Times Seen1 Hash 02d9ce92a586781a6c3b216c7e2a8e48 87a6393e67e42e78901a0ffa06c48ce2477c3eb6 aa4ab768198d2b508c93ddb76ecc9b4cf579a02951ba6be4f2a01e1b8dcfa360 Loading...

	cdn2.editmysite.com/js/lang/nl/stl.js?buildTime=1675210024&	183 kB	2023-03-13	2023-03-14
Pretty URL cdn2.editmysite.com/js/lang/nl/stl.js?buildTime=1675210024& IP 151.101.129.46 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 09:35:32 Last Seen2023-03-14 04:24:59 Times Seen1 Hash 9416da7c41adcb855d50de8210919e36 7c3c4d22d53300c58a9324e9f0ce06537388b06a ed62b17c31f8a4397ae1833d28af178ccbb596f1b20dcc26316135e8aa7a9358 Loading...

	www.cafe-brabant.nl/	664 B	2023-03-07	2024-04-24
Pretty URL www.cafe-brabant.nl/ IP 199.34.228.72 ASN #27647 WEEBLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:44 Last Seen2024-04-24 06:59:18 Times Seen2883 Hash fdd0b895b9cf69a9a4f4817533aa51f5 afc67ab62c3c91df626260407845fc41bf5d895e a50f8a487c23d76460681440220a85a28cdb09912ef451d59aa2b4f47c32aea0 Loading...

	www.cafe-brabant.nl/	62 B	2023-03-07	2024-04-24
Pretty URL www.cafe-brabant.nl/ IP 199.34.228.72 ASN #27647 WEEBLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:44 Last Seen2024-04-24 06:59:18 Times Seen2688 Hash 1afa8234115c6f382672d91917a6fb26 e96957cb655865327588927ebc34d1ae376e9e64 45988af53e17c3bc8103bbe22bd47dd6d2d03d4a90c4116dc0621ab24ff87258 Loading...

	maps.googleapis.com/maps-api-v3/api/js/51/8/infowindow.js	8.5 kB	2023-03-13	2023-03-14
Pretty URL maps.googleapis.com/maps-api-v3/api/js/51/8/infowindow.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 14:32:42 Last Seen2023-03-14 13:31:01 Times Seen1 Hash 6bda97fb5881a41e94d00dac5e0ba254 45bbc92a1b70c7a7b177478412da18f727bd6776 a327b89b3f8cb02c911bf28f56aa7c427c7a49b5283a59661a50766bd7c77928 Loading...

	www.cafe-brabant.nl/	55 B	2023-03-14	2023-03-14
Pretty URL www.cafe-brabant.nl/ IP 199.34.228.72 ASN #27647 WEEBLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-14 04:15:05 Last Seen2023-03-14 04:15:05 Times Seen1 Hash f76b351f50ed75d9e8e8444b6cc71fe4 2d2f907c808dfee82a0f245ecebbd244125167f4 b17e1403f73298a25b2fc7e852c138f033870d117f041f4ef8261d3dd2a005d0 Loading...

	www.editmysite.com/ajax/apps/generateMap.php?map=google&elementid=481461660742684216&ineditor=0&control=3&width=auto&height=250px&overviewmap=0&scalecontrol=0&typecontrol=0&zoom=15&long=5.1775672&lat=52.232404&domain=www&point=1&align=1&reseller=false	10 kB	2023-03-14	2023-03-14
Pretty URL www.editmysite.com/ajax/apps/generateMap.php?map=google&elementid=481461660742684216&ineditor=0&control=3&width=auto&height=250px&overviewmap=0&scalecontrol=0&typecontrol=0&zoom=15&long=5.1775672&lat=52.232404&domain=www&point=1&align=1&reseller=false IP 74.115.50.67 ASN #27647 WEEBLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-14 04:15:05 Last Seen2023-03-14 04:15:05 Times Seen1 Hash c64e9760673d02d467893cf53794dabe c31c761929d16ee6864599a50c19bfc473953596 3ee92217b62360eced31ecb0ddd4764d431aaaa65e49bba165eec89a05990414 Loading...

	maps.googleapis.com/maps-api-v3/api/js/51/8/map.js	77 kB	2023-03-13	2023-03-14
Pretty URL maps.googleapis.com/maps-api-v3/api/js/51/8/map.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 14:22:51 Last Seen2023-03-14 13:31:02 Times Seen1 Hash d22c047d176f909bd91f0c4e8d5b484d 26943acaa78aa79e9bd0d321021fd93041daff8b 5c9960d4d786b64288ff14832e3329395c28d73accbbb25d715952059f009d1a Loading...

	maps.googleapis.com/maps-api-v3/api/js/51/8/marker.js	36 kB	2023-03-13	2023-03-14
Pretty URL maps.googleapis.com/maps-api-v3/api/js/51/8/marker.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 14:22:50 Last Seen2023-03-14 13:31:01 Times Seen1 Hash c085a572a3c2be23e785f31a7da6a7e0 dc5e917944ae840f90cf3f8f1c4b1faedb6b2d1d 2b4d4faf0fb313f7634132f3f042d9241e48faa64ff7b04216a99281505b7b7f Loading...

	maps.googleapis.com/maps/api/js/QuotaService.RecordEvent?1shttps%3A%2F%2Fwww.editmysite.com%2Fajax%2Fapps%2FgenerateMap.php&2sgme-weeblyinc1&7sbehqt7&10e1&11b0&callback=_xdc_._8i96vu&client=gme-weeblyinc1&token=111276	62 B	2023-03-14	2023-03-14
Pretty URL maps.googleapis.com/maps/api/js/QuotaService.RecordEvent?1shttps%3A%2F%2Fwww.editmysite.com%2Fajax%2Fapps%2FgenerateMap.php&2sgme-weeblyinc1&7sbehqt7&10e1&11b0&callback=_xdc_._8i96vu&client=gme-weeblyinc1&token=111276 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-14 04:15:05 Last Seen2023-03-14 04:15:05 Times Seen1 Hash cad123013fb7f4b7477fc21f3f801cdd 4dec8f4ca81965794c6fa7d55620308d01ae497a 154c9fbc4612363eeee64808d86a4b8d8ef2de7a238f759167c19217c7cc3c22 Loading...

	www.cafe-brabant.nl/	2.3 kB	2023-03-14	2023-03-14
Pretty URL www.cafe-brabant.nl/ IP 199.34.228.72 ASN #27647 WEEBLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-14 04:15:05 Last Seen2023-03-14 04:15:05 Times Seen1 Hash 75e3c10d27634b461c5ee71fb8a7430c a3d80706e553f8bd2dd20a7e1a6d6732e7e5edb6 68d9bcb3eb43de2387e378bf5e60fd45ef522abd7aded4df24b920a13f4be1d3 Loading...

	www.cafe-brabant.nl/	62 B	2023-03-07	2024-04-24
Pretty URL www.cafe-brabant.nl/ IP 199.34.228.72 ASN #27647 WEEBLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:44 Last Seen2024-04-24 06:59:18 Times Seen2924 Hash 461bd236ddeca3b8b6e3cca8599ccb43 73c74d3281452e483c11f944d798738afc7f5b89 aebd4ac1ead5b4987d8b975cafa889ca1a6831175bc206ca9552863e390bc0f1 Loading...

	maps.googleapis.com/maps/api/js/ViewportInfoService.GetViewportInfo?1m6&1m2&1d52.22223646252031&2d5.150994182118639&2m2&1d52.24260651222635&2d5.2042191507053985&2u15&4sen-US&5e0&6sm%40634000000&7b0&8e0&12e1&13shttps%3A%2F%2Fwww.editmysite.com%2Fajax%2Fapps%2FgenerateMap.php&14b1&callback=_xdc_._kxghsn&client=gme-weeblyinc1&token=19235	14 kB	2023-03-14	2023-03-14
Pretty URL maps.googleapis.com/maps/api/js/ViewportInfoService.GetViewportInfo?1m6&1m2&1d52.22223646252031&2d5.150994182118639&2m2&1d52.24260651222635&2d5.2042191507053985&2u15&4sen-US&5e0&6sm%40634000000&7b0&8e0&12e1&13shttps%3A%2F%2Fwww.editmysite.com%2Fajax%2Fapps%2FgenerateMap.php&14b1&callback=_xdc_._kxghsn&client=gme-weeblyinc1&token=19235 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-14 04:15:05 Last Seen2023-03-14 04:15:05 Times Seen1 Hash b35090d197b03fb0ff0dd8c78272ffe4 fa8c912b6674e0d6968627dbd653b8c30c2785f5 afebfdf14f84b456f47ca8fed6f4913f0bfbf3c514a5b47682ca22e9158f3a44 Loading...

	www.cafe-brabant.nl/	263 B	2023-03-14	2023-03-14
Pretty URL www.cafe-brabant.nl/ IP 199.34.228.72 ASN #27647 WEEBLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-14 02:46:18 Last Seen2023-03-14 07:09:28 Times Seen1 Hash dc63208cd5d12be4aae668f0d52ee1ff 50d2537fda230fba50b13610ae3347334c8baa28 67fef5e16f460da8ceaa33ae5f33e31788cad2f701782a085ff9a5344c0cd40f Loading...

	maps.googleapis.com/maps-api-v3/api/js/51/8/common.js	277 kB	2023-03-13	2023-03-14
Pretty URL maps.googleapis.com/maps-api-v3/api/js/51/8/common.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 14:22:57 Last Seen2023-03-14 13:31:01 Times Seen1 Hash 1453ba51a450fdb7acafceb66a2a99bd cd3598337b26f6f4116e6d0ebdb6ed5f0181e23e a63c8a81e2094da4cf6f608732bd29c7210be02457ff7166676a8de0813ad973 Loading...

	maps.googleapis.com/maps-api-v3/api/js/51/8/onion.js	27 kB	2023-03-13	2023-03-14
Pretty URL maps.googleapis.com/maps-api-v3/api/js/51/8/onion.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 14:22:51 Last Seen2023-03-14 13:31:02 Times Seen1 Hash ed335205771929839bfb27e5eb101db9 5e9a048bcd7ce7c83f90c8c8c5f3de028049ffa8 a450306c30c30862f568544abf1bd0f731d64252855b937fcf8fad9d830160ea Loading...

	www.cafe-brabant.nl/	265 B	2023-03-14	2023-03-14
Pretty URL www.cafe-brabant.nl/ IP 199.34.228.72 ASN #27647 WEEBLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-14 04:15:05 Last Seen2023-03-14 04:15:05 Times Seen1 Hash b5603994785bf13b4955f68060712bdc c1cfacd56643dcf393c7f1368efe7667671bfab1 abae2bfe93fffdb747d22ba4e28abfbddfbede0cc33ff81e575704b328e6fba4 Loading...

HTTP Transactions (70)

URL IP Response Size

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
ff01d28c7e4c50fb1a146b10670170a2
645b169d11cd047eec9bee5e63719104e3776540
715f77554399136f5c4da17a22be9112ca0ee75ceb8b0c5910a005f70e255e94

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "715F77554399136F5C4DA17A22BE9112CA0EE75CEB8B0C5910A005F70E255E94"
Last-Modified: Fri, 17 Feb 2023 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9468
Expires: Sun, 19 Feb 2023 15:42:13 GMT
Date: Sun, 19 Feb 2023 13:04:25 GMT
Connection: keep-alive

cafe-brabant.nl/

199.34.228.72

301 Moved Permanently

235 B

URL HTTP/1.1
cafe-brabant.nl/
IP
199.34.228.72:0
ASN
#27647 WEEBLY

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
235 B (235 bytes)
Hash
d53ef9af5bcdf95567ca1e5c67cdad8b
25c975e9028eeaa49cb65b05f51d5859e4d0d423
cb00c3a676ddf359daf87d3abba8cffa4d6b8c9f6f3532ca20b535aada12571e

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET / HTTP/1.1
Host: cafe-brabant.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 301 Moved Permanently
Date: Sun, 19 Feb 2023 13:04:25 GMT
Server: Apache
Location: http://www.cafe-brabant.nl/
Content-Length: 235
Keep-Alive: timeout=10, max=71
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
4229cfe19d214d22153fe5833a7b557a
2439958496306a257d266050b4313b9bac51c871
ddfa83afe45b77b508119ac50488a73c3c49a78fa7a64ad983bd4958e0c7a4f9

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DDFA83AFE45B77B508119AC50488A73C3C49A78FA7A64AD983BD4958E0C7A4F9"
Last-Modified: Fri, 17 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8335
Expires: Sun, 19 Feb 2023 15:23:20 GMT
Date: Sun, 19 Feb 2023 13:04:25 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
5539e12eac82ed8486057f67e18231d3
866778ccdac94dbeff9bc217d4a057079ee71b2a
d82a876ba46480f2caa20e2112941bfb461bdb03e882949b347abb9e8006705f

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D82A876BA46480F2CAA20E2112941BFB461BDB03E882949B347ABB9E8006705F"
Last-Modified: Fri, 17 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9354
Expires: Sun, 19 Feb 2023 15:40:19 GMT
Date: Sun, 19 Feb 2023 13:04:25 GMT
Connection: keep-alive

firefox.settings.services.mozilla.com/v1/

35.241.9.150

200 OK

939 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/
IP
35.241.9.150:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
b44c4b5daa307a355e7bab1c83c1ca82
dbd14cd873f1dd4502f277b3f51cb7bc8da0c080
fd4604461cfa002c8a261bb14eb8dda56817db231b9012b2eb38d6dbc2674df5

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Alert, Content-Length, Content-Type, Retry-After, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sun, 19 Feb 2023 12:37:55 GMT
content-type: application/json
age: 1590
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-03-20-18-44-46.chain

34.160.144.191

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-03-20-18-44-46.chain
IP
34.160.144.191:0
ASN
#15169 GOOGLE

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
e76071a28ee566dababb3834f46d68ed
aebb4e68c1ba2de0f90025283e8ed8470944fde0
78b6df2627172e5b35476bc31020f02898cdc412aaf4337af2c3b049a60912b6

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2023-03-20-18-44-46.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-amz-id-2: 7yLqsjJcEc0MFDUw6waoc7VoqjXmadmBD+0awLySdTDmLWDegGkOUp4rdh14GvL4O6iIcaavCuc=
x-amz-request-id: 7P6CTM7XQH5M5EXY
x-amz-server-side-encryption: AES256
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
via: 1.1 google
date: Sun, 19 Feb 2023 12:51:18 GMT
age: 787
last-modified: Sun, 29 Jan 2023 18:44:47 GMT
etag: "e76071a28ee566dababb3834f46d68ed"
content-type: binary/octet-stream
content-length: 5348
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Sun, 19 Feb 2023 13:04:25 GMT
content-type: application/json
content-length: 12
access-control-expose-headers: content-type
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

www.cafe-brabant.nl/

199.34.228.72

301 Moved Permanently

358 B

URL HTTP/1.1
www.cafe-brabant.nl/
IP
199.34.228.72:0
ASN
#27647 WEEBLY

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
358 B (358 bytes)
Hash
d28b124378b7605ede2c6767d5f7b7e7
f8ad26135d9817f9f47fe5185e41e9a613306d93
18541bb01e50614ab4bdb3c3b9db9d775d798a9698204c6f4f5c3ddb213d8e4a

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET / HTTP/1.1
Host: www.cafe-brabant.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 301 Moved Permanently
Date: Sun, 19 Feb 2023 13:04:26 GMT
Server: Apache
Set-Cookie: is_mobile=0; path=/; domain=www.cafe-brabant.nl
Vary: X-W-SSL,User-Agent
Location: https://www.cafe-brabant.nl/
X-Host: grn67.sf2p.intern.weebly.net
X-UA-Compatible: IE=edge,chrome=1
Content-Length: 358
Keep-Alive: timeout=10, max=74
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

35.241.9.150

200 OK

329 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
35.241.9.150:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Expires, Content-Type, Alert, Content-Length, Backoff, ETag, Cache-Control, Retry-After, Last-Modified, Pragma
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sun, 19 Feb 2023 12:51:25 GMT
age: 781
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
ffe8651a83ebc937a53bf14c980c348e
8fe2f9219fbe52ee890533f94dd617da679050a4
96149e604ad1e11ab2b100b60e4605b7213f215b0a788506185def01954cb70f

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "96149E604AD1E11AB2B100B60E4605B7213F215B0A788506185DEF01954CB70F"
Last-Modified: Fri, 17 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9140
Expires: Sun, 19 Feb 2023 15:36:46 GMT
Date: Sun, 19 Feb 2023 13:04:26 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
4fadc3be686c289bbbf51dbc2e27689b
c734a92588ae0b043de5299e70fa533d8c6a3e8b
f3408cec5fbbec7aff8b7bc04e719958863c71ead5a194396938a9c5f7689cd2

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F3408CEC5FBBEC7AFF8B7BC04E719958863C71EAD5A194396938A9C5F7689CD2"
Last-Modified: Sat, 18 Feb 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21557
Expires: Sun, 19 Feb 2023 19:03:43 GMT
Date: Sun, 19 Feb 2023 13:04:26 GMT
Connection: keep-alive

www.cafe-brabant.nl/

199.34.228.72

200 OK

5.9 kB

URL HTTP/1.1
www.cafe-brabant.nl/
IP
199.34.228.72:0
ASN
#27647 WEEBLY

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (1350), with CRLF, LF line terminators
Size
5.9 kB (5944 bytes)
Hash
7f0efa686a5e8bda34af42aebb68f7e6
9d7304ed0e1640a3efe209de4c70ec1361bc6e7f
cbec7bec9c984c2b81b0e7adc92903d2c23470a6d6e5cd790f065c45b4191e8b

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET / HTTP/1.1
Host: www.cafe-brabant.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

HTTP/1.1 200 OK
Date: Sun, 19 Feb 2023 13:04:26 GMT
Server: Apache
Vary: X-W-SSL,Accept-Encoding,User-Agent
Set-Cookie: is_mobile=0; path=/; domain=www.cafe-brabant.nl
language=en; expires=Sun, 05-Mar-2023 13:04:26 GMT; Max-Age=1209600; path=/
Cache-Control: private
ETag: W/"98c4503794560d0976a96002e98ce0cd-gzip"
Content-Encoding: gzip
X-Host: grn52.sf2p.intern.weebly.net
X-UA-Compatible: IE=edge,chrome=1
Content-Length: 5944
Keep-Alive: timeout=10, max=72
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8

push.services.mozilla.com/

44.237.163.41

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
44.237.163.41:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: IyQGagsnVUdgROageQ/5/Q==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: U7KWIosIdXtxY7Kz1hiFbagHJ+o=

cdn2.editmysite.com/css/old/fancybox.css?1675210024

151.101.129.46

200 OK

1.2 kB

URL HTTP/2
cdn2.editmysite.com/css/old/fancybox.css?1675210024
IP
151.101.129.46:0
ASN
#54113 FASTLY

File type
ASCII text, with very long lines (3910)
Size
1.2 kB (1218 bytes)
Hash
b644e92258f4c7c0b4270047652d1e60
93734d52ee9e86a768159e514076051813c39cd9
29199496fb817668f887938571046abcdfb49063d0207d571b361f221f467907

HTTP Headers

GET /css/old/fancybox.css?1675210024 HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.cafe-brabant.nl/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-type: text/css
last-modified: Tue, 14 Feb 2023 22:05:02 GMT
etag: "63ec058e-f47"
expires: Wed, 01 Mar 2023 00:09:55 GMT
cache-control: max-age=1209600
x-host: blu43.sf2p.intern.weebly.net
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sun, 19 Feb 2023 13:04:27 GMT
age: 392071
x-served-by: cache-sjc10027-SJC, cache-bma1637-BMA
x-cache: HIT, HIT
x-cache-hits: 96, 2
x-timer: S1676811867.139803,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 1218
X-Firefox-Spdy: h2

cdn2.editmysite.com/js/site/footerSignup.js?buildTime=1676659918

151.101.129.46

200 OK

1.4 kB

URL HTTP/2
cdn2.editmysite.com/js/site/footerSignup.js?buildTime=1676659918
IP
151.101.129.46:0
ASN
#54113 FASTLY

File type
ASCII text, with very long lines (3600), with no line terminators
Size
1.4 kB (1372 bytes)
Hash
121a5b9688d8e70ee7bb06cc79491f76
3a28220baa7d8879270c8311bed7dddefa7e43e9
181716c84474c9eb6685a809d69dda5d49ce44dfbf64c5dee89a3091e23def40

HTTP Headers

GET /js/site/footerSignup.js?buildTime=1676659918 HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.cafe-brabant.nl/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-type: application/javascript
last-modified: Fri, 17 Feb 2023 16:29:35 GMT
etag: "63efab6f-e10"
expires: Fri, 03 Mar 2023 18:54:58 GMT
cache-control: max-age=1209600
x-host: blu113.sf2p.intern.weebly.net
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sun, 19 Feb 2023 13:04:27 GMT
age: 151768
x-served-by: cache-sjc10052-SJC, cache-bma1637-BMA
x-cache: HIT, HIT
x-cache-hits: 32, 423
x-timer: S1676811867.141048,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 1372
X-Firefox-Spdy: h2

cdn2.editmysite.com/fonts/Lobster/font.css?2

151.101.129.46

200 OK

241 B

URL HTTP/2
cdn2.editmysite.com/fonts/Lobster/font.css?2
IP
151.101.129.46:0
ASN
#54113 FASTLY

File type
ASCII text
Size
241 B (241 bytes)
Hash
ad9c03eb4571a7ddd03a9b9721f380a1
ddd0218addf2b628dcd97ae3bd7144155271a95a
279e0320e2a1ab4322d5b45e21ce0e404ead20a141ec379c94175a3d9aa412bb

HTTP Headers

GET /fonts/Lobster/font.css?2 HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.cafe-brabant.nl/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-type: text/css
last-modified: Thu, 09 Feb 2023 16:09:58 GMT
etag: "63e51ad6-1ae"
expires: Fri, 24 Feb 2023 10:32:26 GMT
cache-control: max-age=1209600
x-host: blu31.sf2p.intern.weebly.net
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sun, 19 Feb 2023 13:04:27 GMT
age: 786720
x-served-by: cache-sjc10034-SJC, cache-bma1637-BMA
x-cache: HIT, HIT
x-cache-hits: 892, 1
x-timer: S1676811867.147326,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 241
X-Firefox-Spdy: h2

cdn2.editmysite.com/fonts/Handlee/font.css?2

151.101.129.46

200 OK

241 B

URL HTTP/2
cdn2.editmysite.com/fonts/Handlee/font.css?2
IP
151.101.129.46:0
ASN
#54113 FASTLY

File type
ASCII text
Size
241 B (241 bytes)
Hash
9ce682dc12eeacba45264948ba7d94f2
a78d5ffe8df28c731f18a0db16b0c0e06a9e21e0
569d8907b2a73f20ae3b4d29e36be2021fc09884f4c5e0881ca9227365001817

HTTP Headers

GET /fonts/Handlee/font.css?2 HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.cafe-brabant.nl/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-type: text/css
last-modified: Thu, 09 Feb 2023 16:09:57 GMT
etag: "63e51ad5-1ae"
expires: Fri, 24 Feb 2023 11:22:06 GMT
cache-control: max-age=1209600
x-host: blu33.sf2p.intern.weebly.net
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sun, 19 Feb 2023 13:04:27 GMT
age: 783740
x-served-by: cache-sjc10044-SJC, cache-bma1637-BMA
x-cache: HIT, HIT
x-cache-hits: 193, 1
x-timer: S1676811867.147956,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 241
X-Firefox-Spdy: h2

cdn2.editmysite.com/css/sites.css?buildTime=1675210024

151.101.129.46

200 OK

30 kB

URL HTTP/2
cdn2.editmysite.com/css/sites.css?buildTime=1675210024
IP
151.101.129.46:0
ASN
#54113 FASTLY

File type
ASCII text, with very long lines (65536), with no line terminators
Size
30 kB (29663 bytes)
Hash
29c20b995313a7d26dca333c33383d9f
46af545a03a3f9739a9e284e46420a8fae692c98
028e76db03ee4ec81d6f5cd961b0006251a51b088d3a7d03ebc87be3fc7303f8

HTTP Headers

GET /css/sites.css?buildTime=1675210024 HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.cafe-brabant.nl/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-type: text/css
last-modified: Tue, 14 Feb 2023 22:04:55 GMT
etag: W/"63ec0587-337f6"
expires: Wed, 01 Mar 2023 00:09:52 GMT
cache-control: max-age=1209600
x-host: grn42.sf2p.intern.weebly.net
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sun, 19 Feb 2023 13:04:27 GMT
age: 392075
x-served-by: cache-sjc10066-SJC, cache-bma1637-BMA
x-cache: HIT, HIT
x-cache-hits: 88, 2
x-timer: S1676811867.144441,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 29663
X-Firefox-Spdy: h2

cdn2.editmysite.com/js/site/main.js?buildTime=1675210024

151.101.129.46

200 OK

146 kB

URL HTTP/2
cdn2.editmysite.com/js/site/main.js?buildTime=1675210024
IP
151.101.129.46:0
ASN
#54113 FASTLY

File type
ASCII text, with very long lines (32147)
Size
146 kB (146400 bytes)
Hash
81b8673c5d3aa3ab8c0574f2a8f0e3b4
2e0661bc7907d9e2703b3347c3fec579f0aef5d6
0e981f4de6287406ce261fddea24aa05ded4b6a8c4c07283c363c1502071cf40

HTTP Headers

GET /js/site/main.js?buildTime=1675210024 HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.cafe-brabant.nl/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-type: application/javascript
last-modified: Tue, 07 Feb 2023 23:24:26 GMT
etag: "63e2ddaa-74804"
expires: Wed, 22 Feb 2023 08:36:47 GMT
cache-control: max-age=1209600
x-host: blu70.sf2p.intern.weebly.net
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sun, 19 Feb 2023 13:04:27 GMT
age: 966460
x-served-by: cache-sjc10059-SJC, cache-bma1637-BMA
x-cache: HIT, HIT
x-cache-hits: 12921, 1
x-timer: S1676811867.140863,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 146400
X-Firefox-Spdy: h2

cdn2.editmysite.com/js/jquery-1.8.3.min.js

151.101.129.46

200 OK

34 kB

URL HTTP/2
cdn2.editmysite.com/js/jquery-1.8.3.min.js
IP
151.101.129.46:0
ASN
#54113 FASTLY

File type
ASCII text, with very long lines (65483)
Size
34 kB (33467 bytes)
Hash
67a5a77f65f13559b3d723829f2e0108
5e861ec7c2993abffc3591d6132c47bc7cdc3e98
ac4ffabaed7382810a3829d812e1a45c77984a1dbfaf7d172c8bc19b3cf68ca6

HTTP Headers

GET /js/jquery-1.8.3.min.js HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.cafe-brabant.nl/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-type: application/javascript
last-modified: Tue, 07 Feb 2023 20:25:25 GMT
etag: "63e2b3b5-16dc4"
expires: Tue, 21 Feb 2023 23:08:14 GMT
cache-control: max-age=1209600
x-host: grn38.sf2p.intern.weebly.net
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sun, 19 Feb 2023 13:04:27 GMT
age: 1000573
x-served-by: cache-sjc10032-SJC, cache-bma1637-BMA
x-cache: HIT, HIT
x-cache-hits: 31, 3353
x-timer: S1676811867.149549,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 33467
X-Firefox-Spdy: h2

cdn2.editmysite.com/js/lang/nl/stl.js?buildTime=1675210024&

151.101.129.46

200 OK

34 kB

URL HTTP/2
cdn2.editmysite.com/js/lang/nl/stl.js?buildTime=1675210024&
IP
151.101.129.46:0
ASN
#54113 FASTLY

File type
Unicode text, UTF-8 text, with very long lines (64872)
Size
34 kB (34214 bytes)
Hash
6895a6caed09f3d5714ce8e7f21fd805
1bfa56966e060bff68fa24695507c9c7089ff9f6
22952f5cfe8528f1d7d9e8c9cb7e33c633590bc29d7462c122ea7e5de26ad60a

HTTP Headers

GET /js/lang/nl/stl.js?buildTime=1675210024& HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.cafe-brabant.nl/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-type: application/javascript
last-modified: Tue, 14 Feb 2023 22:04:38 GMT
etag: "63ec0576-2ca67"
expires: Wed, 01 Mar 2023 00:11:20 GMT
cache-control: max-age=1209600
x-host: blu68.sf2p.intern.weebly.net
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sun, 19 Feb 2023 13:04:27 GMT
age: 391986
x-served-by: cache-sjc10049-SJC, cache-bma1637-BMA
x-cache: HIT, HIT
x-cache-hits: 58, 1
x-timer: S1676811867.150698,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 34214
X-Firefox-Spdy: h2

cdn2.editmysite.com/js/site/main-customer-accounts-site.js?buildTime=1675210024

151.101.129.46

200 OK

159 kB

URL HTTP/2
cdn2.editmysite.com/js/site/main-customer-accounts-site.js?buildTime=1675210024
IP
151.101.129.46:0
ASN
#54113 FASTLY

File type
ASCII text, with very long lines (32007)
Size
159 kB (159077 bytes)
Hash
bdb4ed4336e9373908d34bf99f23e188
26fd52a2f5d9f75b1af7d0af60ace8e6cf529ed0
6ef000f3bc6276b4ab35e0980d2bb07ecb5dbf621eb86281dc581875e4b4d93f

HTTP Headers

GET /js/site/main-customer-accounts-site.js?buildTime=1675210024 HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.cafe-brabant.nl/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-type: application/javascript
last-modified: Tue, 14 Feb 2023 22:05:27 GMT
etag: "63ec05a7-825c4"
expires: Wed, 01 Mar 2023 00:09:51 GMT
cache-control: max-age=1209600
x-host: grn48.sf2p.intern.weebly.net
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sun, 19 Feb 2023 13:04:27 GMT
age: 392075
x-served-by: cache-sjc10058-SJC, cache-bma1637-BMA
x-cache: HIT, HIT
x-cache-hits: 79, 1
x-timer: S1676811867.141342,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 159077
X-Firefox-Spdy: h2

ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q3

104.18.20.226

200 OK

1.5 kB

URL HTTP/1.1
ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q3
IP
104.18.20.226:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
1.5 kB (1462 bytes)
Hash
f32284b4b2dca4668235d9720aed7981
d65f02017124d524771258a8d185d0dcebc6d891
ae003d74ade364e87a8d00bd1a1ae30bb8863ddccdbc74fc69c1cf81809a2447

HTTP Headers

POST /ca/gsatlasr3dvtlsca2022q3 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sun, 19 Feb 2023 13:04:27 GMT
Content-Type: application/ocsp-response
Transfer-Encoding: chunked
Connection: keep-alive
Etag: "8C6C0710E1F5C0E9BA4B0D8313517AE099CF6BB1"
Expires: Mon, 20 Feb 2023 00:00:00 GMT
Last-Modified: Sun, 19 Feb 2023 12:00:00 UTC
Cache-Control: s-maxage=3600, public, no-transform, must-revalidate
CF-Cache-Status: HIT
Age: 3508
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 79bf3559cbba0b69-OSL

www.cafe-brabant.nl/files/main_style.css?1675237663

199.34.228.72

200 OK

3.0 kB

URL HTTP/1.1
www.cafe-brabant.nl/files/main_style.css?1675237663
IP
199.34.228.72:0
ASN
#27647 WEEBLY

File type
ASCII text, with very long lines (340)
Size
3.0 kB (2991 bytes)
Hash
c266d707cc1b335c236ca6c2997b13df
2f8395730c2d5f764b82e8bff867a6333a1f08dd
8182e4176a6ba7e35810fd285baf8b6ee9b80027000af840616f76d3739ec6a3

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /files/main_style.css?1675237663 HTTP/1.1
Host: www.cafe-brabant.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.cafe-brabant.nl/
Cookie: is_mobile=0; language=en
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Sun, 19 Feb 2023 13:04:27 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Access-Control-Allow-Headers: Origin, Authorization, Content-Type
Access-Control-Allow-Methods: GET, POST, DELETE, OPTIONS
Access-Control-Allow-Origin: *
X-Host: blu122.sf2p.intern.weebly.net
Content-Encoding: gzip

www.cafe-brabant.nl/files/theme/footer-bg-bottom-red.jpg?1675237663

199.34.228.72

200 OK

1.6 kB

URL HTTP/1.1
www.cafe-brabant.nl/files/theme/footer-bg-bottom-red.jpg?1675237663
IP
199.34.228.72:0
ASN
#27647 WEEBLY

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 50x50, components 3\012- data
Size
1.6 kB (1623 bytes)
Hash
8f6c76e180864cffbaf511b225401534
0295a841dba39100967da84fcabf29620cbbd952
53480b075e353f1ac7c74a32ec8f0b7ead70f01648010c4cc16f78e3a59f95dc

HTTP Headers

GET /files/theme/footer-bg-bottom-red.jpg?1675237663 HTTP/1.1
Host: www.cafe-brabant.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.cafe-brabant.nl/files/main_style.css?1675237663
Cookie: is_mobile=0; language=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Sun, 19 Feb 2023 13:04:27 GMT
Content-Type: image/jpeg; charset=binary
Content-Length: 1623
Connection: keep-alive
Last-Modified: Tue, 28 Apr 2020 13:39:26 GMT
x-rgw-object-type: Normal
ETag: "8f6c76e180864cffbaf511b225401534"
x-amz-request-id: tx000000000000006fa40fb-006260ae7d-4d62951-las
X-Storage-Bucket: z5348
X-Storage-Object: 53480b075e353f1ac7c74a32ec8f0b7ead70f01648010c4cc16f78e3a59f95dc
X-Host: grn57.sf2p.intern.weebly.net
Accept-Ranges: bytes

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
dee7dce0885fbdc073d71bc701df315d
d990a1f213d2b1cacaa44a013517ac53ad6aa574
41b223a166d4eb51dab732561800bc49e6ec612a70ffb3f6689433dbd521844d

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6235
Cache-Control: max-age=90267
Content-Type: application/ocsp-response
Date: Sun, 19 Feb 2023 13:04:27 GMT
Etag: "63f0c39b-1d7"
Expires: Mon, 20 Feb 2023 14:08:54 GMT
Last-Modified: Sat, 18 Feb 2023 12:24:59 GMT
Server: ECS (ska/F705)
X-Cache: HIT
Content-Length: 471

www.cafe-brabant.nl/files/theme/logo-wrap-bg.png?1675237663

199.34.228.72

200 OK

14 kB

URL HTTP/1.1
www.cafe-brabant.nl/files/theme/logo-wrap-bg.png?1675237663
IP
199.34.228.72:0
ASN
#27647 WEEBLY

File type
PNG image data, 220 x 110, 8-bit colormap, non-interlaced\012- data
Size
14 kB (14259 bytes)
Hash
1d6800c315552c70fbff98737bf956ba
e69d516f4a5cf85616b240046e16d9c2274b7bd7
447b41cfb2249963f6e343134d67a447df703bb52adbbf3f60c7db7f6b3e0bf0

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /files/theme/logo-wrap-bg.png?1675237663 HTTP/1.1
Host: www.cafe-brabant.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.cafe-brabant.nl/files/main_style.css?1675237663
Cookie: is_mobile=0; language=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Sun, 19 Feb 2023 13:04:27 GMT
Content-Type: image/png; charset=binary
Content-Length: 14259
Connection: keep-alive
Last-Modified: Sun, 10 May 2020 14:11:06 GMT
x-rgw-object-type: Normal
ETag: "1d6800c315552c70fbff98737bf956ba"
x-amz-request-id: tx000000000000046affddb-00621bab70-a9f1b25-sfo1
X-Storage-Bucket: z447b
X-Storage-Object: 447b41cfb2249963f6e343134d67a447df703bb52adbbf3f60c7db7f6b3e0bf0
X-Host: grn63.sf2p.intern.weebly.net
Accept-Ranges: bytes

www.cafe-brabant.nl/ajax/api/JsonRPC/CustomerAccounts/?CustomerAccounts[CustomerAccounts::getAccountDetails]

199.34.228.72

200 OK

348 B

URL HTTP/1.1
www.cafe-brabant.nl/ajax/api/JsonRPC/CustomerAccounts/?CustomerAccounts[CustomerAccounts::getAccountDetails]
IP
199.34.228.72:0
ASN
#27647 WEEBLY

File type
JSON data\012- , ASCII text, with very long lines (348), with no line terminators
Size
348 B (348 bytes)
Hash
a944dd688c99d2901d6719be713271c0
4f5454d5d434829baf46671638610791758725d9
adb97e1bc686c58b4286f1208d2bd969687c6cf3e2fc468697dfd956d260de49

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

POST /ajax/api/JsonRPC/CustomerAccounts/?CustomerAccounts[CustomerAccounts::getAccountDetails] HTTP/1.1
Host: www.cafe-brabant.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 83
Origin: https://www.cafe-brabant.nl
Connection: keep-alive
Referer: https://www.cafe-brabant.nl/
Cookie: is_mobile=0; language=en; _snow_ses.bc97=*; _snow_id.bc97=a0808e4b-f62d-4ce5-8877-6aa286d0985e.1676811868.1.1676811868.1676811868.118d98d5-1201-44f5-aa64-55b714f1f2cd
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sun, 19 Feb 2023 13:04:27 GMT
Server: Apache
Vary: X-W-SSL,User-Agent
Set-Cookie: language=en; expires=Sun, 05-Mar-2023 13:04:27 GMT; Max-Age=1209600; path=/
X-Host: blu56.sf2p.intern.weebly.net
X-UA-Compatible: IE=edge,chrome=1
Content-Length: 348
Keep-Alive: timeout=10, max=71
Connection: Keep-Alive
Content-Type: application/json

www.weebly.com/weebly/apps/generateMap.php?map=google&elementid=481461660742684216&ineditor=0&control=3&width=auto&height=250px&overviewmap=0&scalecontrol=0&typecontrol=0&zoom=15&long=5.1775672&lat=52.232404&domain=www&point=1&align=1&reseller=false

74.115.50.109

302 Found

0 B

URL HTTP/1.1
www.weebly.com/weebly/apps/generateMap.php?map=google&elementid=481461660742684216&ineditor=0&control=3&width=auto&height=250px&overviewmap=0&scalecontrol=0&typecontrol=0&zoom=15&long=5.1775672&lat=52.232404&domain=www&point=1&align=1&reseller=false
IP
74.115.50.109:0
ASN
#27647 WEEBLY

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /weebly/apps/generateMap.php?map=google&elementid=481461660742684216&ineditor=0&control=3&width=auto&height=250px&overviewmap=0&scalecontrol=0&typecontrol=0&zoom=15&long=5.1775672&lat=52.232404&domain=www&point=1&align=1&reseller=false HTTP/1.1
Host: www.weebly.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.cafe-brabant.nl/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

HTTP/1.1 302 Found
Date: Sun, 19 Feb 2023 13:04:27 GMT
Server: Apache
Location: https://www.editmysite.com/ajax/apps/generateMap.php?map=google&elementid=481461660742684216&ineditor=0&control=3&width=auto&height=250px&overviewmap=0&scalecontrol=0&typecontrol=0&zoom=15&long=5.1775672&lat=52.232404&domain=www&point=1&align=1&reseller=false
X-Host: grn102.sf2p.intern.weebly.net
Vary: User-Agent
X-UA-Compatible: IE=edge,chrome=1
Content-Length: 0
Keep-Alive: timeout=10, max=73
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
X-W-DC: SFO
Set-Cookie: sto-id-editor=OLFDBMAK; Domain=weebly.com; Path=/

ocsp.r2m01.amazontrust.com/

54.230.80.227

200 OK

471 B

URL HTTP/1.1
ocsp.r2m01.amazontrust.com/
IP
54.230.80.227:0
ASN
#16509 AMAZON-02

File type
data
Size
471 B (471 bytes)
Hash
ee8deb1af3e0fe7d76f85b7af0913d07
25c677985079f1d9038ca72328de44fbf9a5bf12
24a0c55548ec7c627d752b2fb0b945d5fec4469fe319b016d258e8afbf76dfd0

HTTP Headers

POST / HTTP/1.1
Host: ocsp.r2m01.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Sun, 19 Feb 2023 13:04:27 GMT
Last-Modified: Sun, 19 Feb 2023 12:21:56 GMT
Server: ECS (nyb/1D10)
X-Cache: Miss from cloudfront
Via: 1.1 c26775cc34c23943f6f5cfc9a3da9b4a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: 8PIlDGN36U1mwx9655dHbqr6Ut3WjVo9pLMnCaqEFrbCJoE9J-Ekdg==
Age: 2551

ocsp.r2m01.amazontrust.com/

54.230.80.227

200 OK

471 B

URL HTTP/1.1
ocsp.r2m01.amazontrust.com/
IP
54.230.80.227:0
ASN
#16509 AMAZON-02

File type
data
Size
471 B (471 bytes)
Hash
ee8deb1af3e0fe7d76f85b7af0913d07
25c677985079f1d9038ca72328de44fbf9a5bf12
24a0c55548ec7c627d752b2fb0b945d5fec4469fe319b016d258e8afbf76dfd0

HTTP Headers

POST / HTTP/1.1
Host: ocsp.r2m01.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=154045
Date: Sun, 19 Feb 2023 13:04:27 GMT
Etag: "63f1bdf4-1d7"
Expires: Tue, 21 Feb 2023 07:51:52 GMT
Last-Modified: Sun, 19 Feb 2023 06:13:08 GMT
Server: ECS (nyb/1D1B)
X-Cache: Miss from cloudfront
Via: 1.1 ab09332bca1a3bd382d2e408f65b98d2.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: xMa9Rf0sJy1Woonh7pL37w0qttPvjvt-j-vHxz3veJPUA0I3DDtKxg==
Age: 5924

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
5b1775b8f4f9ebbac7a1572afa4e4f92
7c7c748730a9422b0f5f9bcdde36a91c9639c595
a1685273829a7672a3fa089525b959f1f95f11c0a5c0d09fbbf1f4667b3f7946

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A1685273829A7672A3FA089525B959F1F95F11C0A5C0D09FBBF1F4667B3F7946"
Last-Modified: Fri, 17 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12081
Expires: Sun, 19 Feb 2023 16:25:49 GMT
Date: Sun, 19 Feb 2023 13:04:28 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
5b1775b8f4f9ebbac7a1572afa4e4f92
7c7c748730a9422b0f5f9bcdde36a91c9639c595
a1685273829a7672a3fa089525b959f1f95f11c0a5c0d09fbbf1f4667b3f7946

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A1685273829A7672A3FA089525B959F1F95F11C0A5C0D09FBBF1F4667B3F7946"
Last-Modified: Fri, 17 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12081
Expires: Sun, 19 Feb 2023 16:25:49 GMT
Date: Sun, 19 Feb 2023 13:04:28 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
5b1775b8f4f9ebbac7a1572afa4e4f92
7c7c748730a9422b0f5f9bcdde36a91c9639c595
a1685273829a7672a3fa089525b959f1f95f11c0a5c0d09fbbf1f4667b3f7946

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A1685273829A7672A3FA089525B959F1F95F11C0A5C0D09FBBF1F4667B3F7946"
Last-Modified: Fri, 17 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12081
Expires: Sun, 19 Feb 2023 16:25:49 GMT
Date: Sun, 19 Feb 2023 13:04:28 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
5b1775b8f4f9ebbac7a1572afa4e4f92
7c7c748730a9422b0f5f9bcdde36a91c9639c595
a1685273829a7672a3fa089525b959f1f95f11c0a5c0d09fbbf1f4667b3f7946

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A1685273829A7672A3FA089525B959F1F95F11C0A5C0D09FBBF1F4667B3F7946"
Last-Modified: Fri, 17 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12081
Expires: Sun, 19 Feb 2023 16:25:49 GMT
Date: Sun, 19 Feb 2023 13:04:28 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
5b1775b8f4f9ebbac7a1572afa4e4f92
7c7c748730a9422b0f5f9bcdde36a91c9639c595
a1685273829a7672a3fa089525b959f1f95f11c0a5c0d09fbbf1f4667b3f7946

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A1685273829A7672A3FA089525B959F1F95F11C0A5C0D09FBBF1F4667B3F7946"
Last-Modified: Fri, 17 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12081
Expires: Sun, 19 Feb 2023 16:25:49 GMT
Date: Sun, 19 Feb 2023 13:04:28 GMT
Connection: keep-alive

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F934fc9eb-b4a6-4fbb-bd6e-d7b9db298c89.jpeg

34.120.237.76

200 OK

8.1 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F934fc9eb-b4a6-4fbb-bd6e-d7b9db298c89.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
8.1 kB (8118 bytes)
Hash
4b9d8b33f5612e1bf93f6736973766d8
220ce699083537964b1bb8859c4d94ee47f04213
a102991c1ecd60a483f083b72096dd4fccbdf68951f2c453fbf849954ebdc9d6

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F934fc9eb-b4a6-4fbb-bd6e-d7b9db298c89.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 8118
x-amzn-requestid: 7a6bad9e-f7de-48ff-a7b6-812f265fe8af
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: AjffAExyIAMF9DA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63f145f9-4efc5e4622fb1d482f0c4663;Sampled=0
x-amzn-remapped-date: Sat, 18 Feb 2023 21:41:13 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 579r7yXBoSk1W50bPxCF8A2r31obx025ohBk3ltpxb1i5eRYEEv-ug==
via: 1.1 6ba2a21321beeef65404429d0a4b6380.cloudfront.net (CloudFront), 1.1 a3bd0eb50c22e4d5fbda56a30b96002c.cloudfront.net (CloudFront), 1.1 google
date: Sat, 18 Feb 2023 21:54:28 GMT
etag: "220ce699083537964b1bb8859c4d94ee47f04213"
content-type: image/jpeg
age: 54600
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

www.cafe-brabant.nl/files/theme/header-bg-red.jpg?1675237663

199.34.228.72

200 OK

2.1 kB

URL HTTP/1.1
www.cafe-brabant.nl/files/theme/header-bg-red.jpg?1675237663
IP
199.34.228.72:0
ASN
#27647 WEEBLY

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 44x44, components 3\012- data
Size
2.1 kB (2075 bytes)
Hash
8f04122d007b82f8a7882df88dcfba0b
ac027641170f76980d6c70ddf2cb3466f1edae43
cd68447f1d741b2a60837f1c4ddb902320a0b77485cae189971bbb31fd36aef1

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /files/theme/header-bg-red.jpg?1675237663 HTTP/1.1
Host: www.cafe-brabant.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.cafe-brabant.nl/files/main_style.css?1675237663
Cookie: is_mobile=0; language=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Sun, 19 Feb 2023 13:04:28 GMT
Content-Type: image/jpeg; charset=binary
Content-Length: 2075
Connection: keep-alive
Last-Modified: Sun, 10 May 2020 14:11:02 GMT
ETag: "8f04122d007b82f8a7882df88dcfba0b"
x-amz-request-id: tx000000000000002842b80-006165eec2-1ff7178-las
X-Storage-Bucket: zcd68
X-Storage-Object: cd68447f1d741b2a60837f1c4ddb902320a0b77485cae189971bbb31fd36aef1
X-Host: grn46.sf2p.intern.weebly.net
Accept-Ranges: bytes

34.120.237.76

200 OK

11 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc871eb2d-7988-403d-be39-e2b0932eaede.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
11 kB (11384 bytes)
Hash
725d5875c48c8b014d7f55324a6e894f
ebac057ff8a8ad7c097369f0aa2f8cacd8cae06b
103f91934102ac9deb0448de1b2044acba3fc3c1599e460c0f54920958e66f0a

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc871eb2d-7988-403d-be39-e2b0932eaede.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 11384
x-amzn-requestid: a8e08458-da0d-47f6-a521-358b36fe922b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: AjfUjEt6IAMFsIQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63f145b6-49a56fa82e5aadfa03b6e022;Sampled=0
x-amzn-remapped-date: Sat, 18 Feb 2023 21:40:06 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: NVxW4OqlEZK-7zZkelPp_qT5RG0r2gBfoKtmk8b_jDrLeGcILaMvGA==
via: 1.1 0c96ded7ff282d2dbcf47c918b6bb500.cloudfront.net (CloudFront), 1.1 82ea95080f526df99896343fb7269b06.cloudfront.net (CloudFront), 1.1 google
date: Sat, 18 Feb 2023 22:11:34 GMT
age: 53574
etag: "ebac057ff8a8ad7c097369f0aa2f8cacd8cae06b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

3.8 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9bc26257-b3d2-491e-b1e1-178886f30fef.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
3.8 kB (3760 bytes)
Hash
29708d8e10e6bc039586f2a8a10f637c
85cd9f0cae9cfdb20e3bbe25fe681c949c7faa8a
2b7188f98c0f97b9727cc787e4a97252eb17688b752d70a53c221a0b75827ff5

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9bc26257-b3d2-491e-b1e1-178886f30fef.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 3760
x-amzn-requestid: 4223c443-c23b-4a5c-9cdd-2a3a70d149f5
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: AjfVxHpvoAMF5sw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63f145be-26c57127510e9aa344aa73f5;Sampled=0
x-amzn-remapped-date: Sat, 18 Feb 2023 21:40:14 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: BYQ23iqvClGRiBs7bNRxb0KWPjsVPB7JWMrJompsbTIZ7RxIZ6T-Bg==
via: 1.1 010c0731b9775a983eceaec0f5fa6a2e.cloudfront.net (CloudFront), 1.1 5565a51537c689d1d16f6b4d41f40082.cloudfront.net (CloudFront), 1.1 google
date: Sat, 18 Feb 2023 21:54:28 GMT
age: 54600
etag: "85cd9f0cae9cfdb20e3bbe25fe681c949c7faa8a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

7.7 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9ffb72b6-613b-40fd-bb5b-fc19350878a6.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
7.7 kB (7727 bytes)
Hash
a2fb5c797382364954ba2c843a9afbcc
6a10b383ffdd71cd4a870ef5e12368d5d0e7d4dd
8a04857636b850d671ae4c217af3ec1f68b76da33ccc10850cf16fa25bb17c5c

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9ffb72b6-613b-40fd-bb5b-fc19350878a6.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 7727
x-amzn-requestid: 91559a90-004c-4d39-b107-ad92870466ae
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: AbHgkGRWIAMFSYQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63edec69-63f5138a741d4a9f333bb7cc;Sampled=0
x-amzn-remapped-date: Thu, 16 Feb 2023 08:42:17 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: N7gIJq2POAzQM7aNaH_xkv8Rfmg0_zwPk5CLTPAMuR8gi082W-Ak7A==
via: 1.1 c34da255183aa208dd1c722ff211f9b2.cloudfront.net (CloudFront), 1.1 d6a002c70d55f415107618b0750d493c.cloudfront.net (CloudFront), 1.1 google
date: Sat, 18 Feb 2023 21:54:30 GMT
age: 54598
etag: "6a10b383ffdd71cd4a870ef5e12368d5d0e7d4dd"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

www.cafe-brabant.nl/files/theme/logo-wrap-bg-repeat.png?1675237663

199.34.228.72

200 OK

2.5 kB

URL HTTP/1.1
www.cafe-brabant.nl/files/theme/logo-wrap-bg-repeat.png?1675237663
IP
199.34.228.72:0
ASN
#27647 WEEBLY

File type
PNG image data, 200 x 20, 8-bit colormap, non-interlaced\012- data
Size
2.5 kB (2457 bytes)
Hash
eedc2b9c40fed745694f8567d1b3454e
4641fddd05147f712ec694296153f220046be0d9
53fee491faf785ed9724c3ededde3f900ae864ed5bf98a687871811647433ae3

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /files/theme/logo-wrap-bg-repeat.png?1675237663 HTTP/1.1
Host: www.cafe-brabant.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.cafe-brabant.nl/files/main_style.css?1675237663
Cookie: is_mobile=0; language=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Sun, 19 Feb 2023 13:04:28 GMT
Content-Type: image/png; charset=binary
Content-Length: 2457
Connection: keep-alive
Last-Modified: Sun, 10 May 2020 14:11:10 GMT
x-rgw-object-type: Normal
ETag: "eedc2b9c40fed745694f8567d1b3454e"
x-amz-request-id: tx000000000000024b23bda-0062fb97ca-bfe27ea-sfo1
X-Storage-Bucket: z53fe
X-Storage-Object: 53fee491faf785ed9724c3ededde3f900ae864ed5bf98a687871811647433ae3
X-Host: blu61.sf2p.intern.weebly.net
Accept-Ranges: bytes

34.120.237.76

200 OK

8.0 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Faef70c3e-4b67-4d2b-af6b-006893df8126.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
8.0 kB (8030 bytes)
Hash
766ccbe82a51d13658a0deb97b5c0ec0
435ab39e34a7359a9ed434c864d407fb33a3a6ef
4cab8d3bf8475812f4f7d499aed985bf8451a684a68a8e9407aeaa9a6696e931

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Faef70c3e-4b67-4d2b-af6b-006893df8126.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 8030
x-amzn-requestid: 9102300b-a9dc-4217-a6a1-e466fd6afa0b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: AjfeXE8kIAMFy2g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63f145f5-4f768c4e77de2cc060c4976d;Sampled=0
x-amzn-remapped-date: Sat, 18 Feb 2023 21:41:09 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: gASPf2OPdkLwHYYY1Hdbq2cn1JxFJyihEJPa0rXmzDU-h6EXI3KX3Q==
via: 1.1 5a1753718d8b33365e5f693dd338c510.cloudfront.net (CloudFront), 1.1 ee8246c5442dace7525c74f6a799bb46.cloudfront.net (CloudFront), 1.1 google
date: Sat, 18 Feb 2023 21:54:28 GMT
age: 54600
etag: "435ab39e34a7359a9ed434c864d407fb33a3a6ef"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

www.cafe-brabant.nl/files/theme/container-shadow.png?1675237663

199.34.228.72

200 OK

187 B

URL HTTP/1.1
www.cafe-brabant.nl/files/theme/container-shadow.png?1675237663
IP
199.34.228.72:0
ASN
#27647 WEEBLY

File type
PNG image data, 972 x 1, 8-bit/color RGBA, non-interlaced\012- data
Size
187 B (187 bytes)
Hash
e054ed124133c94e0304f7a3e7090eb7
99e51596d9c7a8850993965a4245a9bdc187a96d
18b55f3e1e633b397d684456ba062e2c5594455fda31d5266e0dac36be9701ff

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /files/theme/container-shadow.png?1675237663 HTTP/1.1
Host: www.cafe-brabant.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.cafe-brabant.nl/files/main_style.css?1675237663
Cookie: is_mobile=0; language=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Sun, 19 Feb 2023 13:04:28 GMT
Content-Type: image/png; charset=binary
Content-Length: 187
Connection: keep-alive
Last-Modified: Tue, 28 Apr 2020 13:39:26 GMT
ETag: "e054ed124133c94e0304f7a3e7090eb7"
x-amz-request-id: tx0000000000000015a4a36-0061650592-1ff9432-las
X-Storage-Bucket: z18b5
X-Storage-Object: 18b55f3e1e633b397d684456ba062e2c5594455fda31d5266e0dac36be9701ff
X-Host: grn46.sf2p.intern.weebly.net
Accept-Ranges: bytes

www.cafe-brabant.nl/files/theme/social-red.png?1675237663

199.34.228.72

200 OK

8.0 kB

URL HTTP/1.1
www.cafe-brabant.nl/files/theme/social-red.png?1675237663
IP
199.34.228.72:0
ASN
#27647 WEEBLY

File type
PNG image data, 220 x 60, 8-bit/color RGBA, non-interlaced\012- data
Size
8.0 kB (7997 bytes)
Hash
73ccd560138976db05bc6e7565137781
c9b0cee30873aee0dd699312acb8f42cca905f82
4f0f9350ca51539418994fd607e3c102460c2dbe10bba119eb39816bc9c5b6d8

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /files/theme/social-red.png?1675237663 HTTP/1.1
Host: www.cafe-brabant.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.cafe-brabant.nl/files/main_style.css?1675237663
Cookie: is_mobile=0; language=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Sun, 19 Feb 2023 13:04:28 GMT
Content-Type: image/png; charset=binary
Content-Length: 7997
Connection: keep-alive
Last-Modified: Sun, 10 May 2020 14:11:00 GMT
x-rgw-object-type: Normal
ETag: "73ccd560138976db05bc6e7565137781"
x-amz-request-id: tx000000000000040f64785-00638d0e62-c696eea-sfo1
X-Storage-Bucket: z4f0f
X-Storage-Object: 4f0f9350ca51539418994fd607e3c102460c2dbe10bba119eb39816bc9c5b6d8
X-Host: blu148.sf2p.intern.weebly.net
Accept-Ranges: bytes

34.120.237.76

200 OK

6.9 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F881c24a9-07ee-4126-b2c3-501b0461ee5e.webp
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
6.9 kB (6879 bytes)
Hash
9c5a0bab7d34e51ee6476be179b356ba
87917d3cf520d73b7b1029f44505e7700413d51d
136e727a99409218318247b645558fad485ed84bcd90bd43a5895492cb317d89

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F881c24a9-07ee-4126-b2c3-501b0461ee5e.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 6879
x-amzn-requestid: 18c46562-f8d9-4f7f-8ea0-1bb46e206f80
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ANnahEWgIAMFwYg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63e885dc-50a7cfe4693b4efb038ce1a7;Sampled=0
x-amzn-remapped-date: Sun, 12 Feb 2023 06:23:24 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: qwK1XWOYMXy8qna9sVCV7q__QKMko9KXa8towbYhIj1EolPbqEuIHQ==
via: 1.1 28a7186077f9b5270d98dd053f31303e.cloudfront.net (CloudFront), 1.1 98aedae6661e3904540676966998ed88.cloudfront.net (CloudFront), 1.1 google
date: Sun, 19 Feb 2023 11:24:35 GMT
age: 5993
etag: "87917d3cf520d73b7b1029f44505e7700413d51d"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

www.cafe-brabant.nl/files/theme/no-header-bg-red.jpg?1675237663

199.34.228.72

200 OK

1.6 kB

URL HTTP/1.1
www.cafe-brabant.nl/files/theme/no-header-bg-red.jpg?1675237663
IP
199.34.228.72:0
ASN
#27647 WEEBLY

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 126x127, components 3\012- data
Size
1.6 kB (1581 bytes)
Hash
5609084844fa456c90b1711365b6d6d4
6c22b7b69d61bd71e9404572ff73f3e55e64cad7
86bdab6488df466d1563846a6c23a114b3cd90e5965d3d48eb06b0d605f8d1d1

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /files/theme/no-header-bg-red.jpg?1675237663 HTTP/1.1
Host: www.cafe-brabant.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.cafe-brabant.nl/files/main_style.css?1675237663
Cookie: is_mobile=0; language=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Sun, 19 Feb 2023 13:04:28 GMT
Content-Type: image/jpeg; charset=binary
Content-Length: 1581
Connection: keep-alive
Last-Modified: Sun, 10 May 2020 14:11:07 GMT
x-rgw-object-type: Normal
ETag: "5609084844fa456c90b1711365b6d6d4"
x-amz-request-id: tx0000000000000383de801-00637d3c72-c695612-sfo1
X-Storage-Bucket: z86bd
X-Storage-Object: 86bdab6488df466d1563846a6c23a114b3cd90e5965d3d48eb06b0d605f8d1d1
X-Host: blu41.sf2p.intern.weebly.net
Accept-Ranges: bytes

www.cafe-brabant.nl/files/theme/tent-red.png?1675237663

199.34.228.72

200 OK

12 kB

URL HTTP/1.1
www.cafe-brabant.nl/files/theme/tent-red.png?1675237663
IP
199.34.228.72:0
ASN
#27647 WEEBLY

File type
PNG image data, 994 x 30, 8-bit/color RGBA, non-interlaced\012- data
Size
12 kB (12269 bytes)
Hash
9f75a3d6f7fce90d86ab4595057cd089
23808ad616d8103483f4aba2580b4454eb3059e1
1cf6523c039f3f1101aef78997bc6305fba22e53fb2ee265f3b9a47614246e7a

HTTP Headers

GET /files/theme/tent-red.png?1675237663 HTTP/1.1
Host: www.cafe-brabant.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.cafe-brabant.nl/files/main_style.css?1675237663
Cookie: is_mobile=0; language=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Sun, 19 Feb 2023 13:04:28 GMT
Content-Type: image/png; charset=binary
Content-Length: 12269
Connection: keep-alive
Last-Modified: Thu, 08 Apr 2021 17:09:55 GMT
x-rgw-object-type: Normal
ETag: "9f75a3d6f7fce90d86ab4595057cd089"
x-amz-request-id: tx00000000000001d37a9ea-006351dffa-c67eadd-sfo1
X-Storage-Bucket: z1cf6
X-Storage-Object: 1cf6523c039f3f1101aef78997bc6305fba22e53fb2ee265f3b9a47614246e7a
X-Host: grn137.sf2p.intern.weebly.net
Accept-Ranges: bytes

www.cafe-brabant.nl/files/theme/tent-rope-left.png?1675237663

199.34.228.72

200 OK

599 B

URL HTTP/1.1
www.cafe-brabant.nl/files/theme/tent-rope-left.png?1675237663
IP
199.34.228.72:0
ASN
#27647 WEEBLY

File type
PNG image data, 23 x 124, 8-bit/color RGBA, non-interlaced\012- data
Size
599 B (599 bytes)
Hash
6bd8ef65628372cbe7890763e1a441ad
3a0fb6521fb32bbed3f568cb041ebec3986b3526
5c589885a3d80c9ddc441cb2c4e3731bee295a39142cdca3718991998013963c

HTTP Headers

GET /files/theme/tent-rope-left.png?1675237663 HTTP/1.1
Host: www.cafe-brabant.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.cafe-brabant.nl/files/main_style.css?1675237663
Cookie: is_mobile=0; language=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Sun, 19 Feb 2023 13:04:28 GMT
Content-Type: image/png; charset=binary
Content-Length: 599
Connection: keep-alive
Last-Modified: Sun, 10 May 2020 14:11:09 GMT
ETag: "6bd8ef65628372cbe7890763e1a441ad"
x-amz-request-id: tx0000000000001e8d4ad75-0060fdf701-131dd7c-las
X-Storage-Bucket: z5c58
X-Storage-Object: 5c589885a3d80c9ddc441cb2c4e3731bee295a39142cdca3718991998013963c
X-Host: grn39.sf2p.intern.weebly.net
Accept-Ranges: bytes

ec.editmysite.com/com.snowplowanalytics.snowplow/tp2

54.188.178.80

200 OK

0 B

URL HTTP/2
ec.editmysite.com/com.snowplowanalytics.snowplow/tp2
IP
54.188.178.80:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

OPTIONS /com.snowplowanalytics.snowplow/tp2 HTTP/1.1
Host: ec.editmysite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://www.cafe-brabant.nl/
Origin: https://www.cafe-brabant.nl
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Sun, 19 Feb 2023 13:04:28 GMT
content-length: 0
server: nginx
access-control-allow-origin: https://www.cafe-brabant.nl
access-control-allow-credentials: true
access-control-allow-headers: Content-Type, SP-Anonymous
access-control-max-age: 600
X-Firefox-Spdy: h2

www.cafe-brabant.nl/files/theme/tent-rope-right.png?1675237663

199.34.228.72

200 OK

572 B

URL HTTP/1.1
www.cafe-brabant.nl/files/theme/tent-rope-right.png?1675237663
IP
199.34.228.72:0
ASN
#27647 WEEBLY

File type
PNG image data, 23 x 124, 8-bit/color RGBA, non-interlaced\012- data
Size
572 B (572 bytes)
Hash
974668caaefafcda0a9cde5b79cedf2b
fbc6506a0047bd7dba1b42adde8a6e73b29bc797
4c488643067244fe0fcb2cbb0854c0c089294f90ccc7f6a58c22d8ba2d9b602f

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /files/theme/tent-rope-right.png?1675237663 HTTP/1.1
Host: www.cafe-brabant.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.cafe-brabant.nl/files/main_style.css?1675237663
Cookie: is_mobile=0; language=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Sun, 19 Feb 2023 13:04:28 GMT
Content-Type: image/png; charset=binary
Content-Length: 572
Connection: keep-alive
Last-Modified: Sun, 10 May 2020 14:11:08 GMT
ETag: "974668caaefafcda0a9cde5b79cedf2b"
x-amz-request-id: tx0000000000001e8d9a694-0060fdfc1b-131dd7c-las
X-Storage-Bucket: z4c48
X-Storage-Object: 4c488643067244fe0fcb2cbb0854c0c089294f90ccc7f6a58c22d8ba2d9b602f
X-Host: grn39.sf2p.intern.weebly.net
Accept-Ranges: bytes

www.cafe-brabant.nl/files/theme/copyright-bg-red.jpg?1675237663

199.34.228.72

200 OK

1.3 kB

URL HTTP/1.1
www.cafe-brabant.nl/files/theme/copyright-bg-red.jpg?1675237663
IP
199.34.228.72:0
ASN
#27647 WEEBLY

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1x39, components 3\012- data
Size
1.3 kB (1287 bytes)
Hash
f20cdd54e5ae004f86eef9b24a26aeb6
269b861f943045b6493df38c9d8d15da1b99ecab
032bd43bf4fa3cdc0353f2045e9ce3e814fd89b06db8595b33dc822a15851d38

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /files/theme/copyright-bg-red.jpg?1675237663 HTTP/1.1
Host: www.cafe-brabant.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.cafe-brabant.nl/files/main_style.css?1675237663
Cookie: is_mobile=0; language=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Sun, 19 Feb 2023 13:04:28 GMT
Content-Type: image/jpeg; charset=binary
Content-Length: 1287
Connection: keep-alive
Last-Modified: Tue, 28 Apr 2020 13:39:26 GMT
x-rgw-object-type: Normal
ETag: "f20cdd54e5ae004f86eef9b24a26aeb6"
x-amz-request-id: tx000000000000047323218-00621d0f2f-a9f3e81-sfo1
X-Storage-Bucket: z032b
X-Storage-Object: 032bd43bf4fa3cdc0353f2045e9ce3e814fd89b06db8595b33dc822a15851d38
X-Host: grn63.sf2p.intern.weebly.net
Accept-Ranges: bytes

www.cafe-brabant.nl/files/theme/body-bg.png?1675237663

199.34.228.72

200 OK

24 kB

URL HTTP/1.1
www.cafe-brabant.nl/files/theme/body-bg.png?1675237663
IP
199.34.228.72:0
ASN
#27647 WEEBLY

File type
PNG image data, 220 x 221, 8-bit colormap, non-interlaced\012- data
Size
24 kB (24066 bytes)
Hash
3e08c96362e22f35a2e125995a6a7158
3589bc05c76f4fbfbe6285914abea7c02a579056
8234f69afb48a5cd6a62c90c8c60844dd4932ff796cc2ab5fae4e05202c81111

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /files/theme/body-bg.png?1675237663 HTTP/1.1
Host: www.cafe-brabant.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.cafe-brabant.nl/files/main_style.css?1675237663
Cookie: is_mobile=0; language=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Sun, 19 Feb 2023 13:04:28 GMT
Content-Type: image/png; charset=binary
Content-Length: 24066
Connection: keep-alive
Last-Modified: Tue, 28 Apr 2020 13:39:26 GMT
x-rgw-object-type: Normal
ETag: "3e08c96362e22f35a2e125995a6a7158"
x-amz-request-id: tx00000000000004402e742-00639175ec-c695612-sfo1
X-Storage-Bucket: z8234
X-Storage-Object: 8234f69afb48a5cd6a62c90c8c60844dd4932ff796cc2ab5fae4e05202c81111
X-Host: blu148.sf2p.intern.weebly.net
Accept-Ranges: bytes

ec.editmysite.com/com.snowplowanalytics.snowplow/tp2

54.188.178.80

200 OK

2 B

URL HTTP/2
ec.editmysite.com/com.snowplowanalytics.snowplow/tp2
IP
54.188.178.80:0
ASN
#16509 AMAZON-02

File type
ASCII text, with no line terminators
Size
2 B (2 bytes)
Hash
444bcb3a3fcf8389296c49467f27e1d6
7a85f4764bbd6daf1c3545efbbf0f279a6dc0beb
2689367b205c16ce32ed4200942b8b8b1e262dfc70d9bc9fbc77c49699a4f1df

HTTP Headers

POST /com.snowplowanalytics.snowplow/tp2 HTTP/1.1
Host: ec.editmysite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json; charset=UTF-8
Content-Length: 1788
Origin: https://www.cafe-brabant.nl
Connection: keep-alive
Referer: https://www.cafe-brabant.nl/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Sun, 19 Feb 2023 13:04:28 GMT
content-type: text/plain; charset=UTF-8
content-length: 2
server: nginx
set-cookie: sp=81ed6f50-4465-41e7-8e73-609258a948d2; Expires=Mon, 19 Feb 2024 13:04:28 GMT; Domain=; Path=/; Secure; SameSite=None
p3p: policyref="/w3c/p3p.xml", CP="NOI DSP COR NID PSA OUR IND COM NAV STA"
access-control-allow-origin: https://www.cafe-brabant.nl
access-control-allow-credentials: true
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
89ada653d874516e9816514333647155
08c6990ccc23034b3b1b1fb43efef5e3f6d87f13
da7056200146f28305782f1f647c66eeedfcac74785d90ff86b2386bba369ef9

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 19 Feb 2023 13:04:28 GMT
Etag: "63f12fc7-1d7"
Server: ECS (amb/6BAC)
Content-Length: 471

www.cafe-brabant.nl/files/theme/nav-bg-h-red.png?1675237663

199.34.228.72

200 OK

57 kB

URL HTTP/1.1
www.cafe-brabant.nl/files/theme/nav-bg-h-red.png?1675237663
IP
199.34.228.72:0
ASN
#27647 WEEBLY

File type
PNG image data, 943 x 81, 8-bit/color RGBA, non-interlaced\012- data
Size
57 kB (56807 bytes)
Hash
d725a2f61ab80580924f7b1ad04d3800
26dbc130ec4a59d98806778139db2f4fe174df96
8d6a2dbc62c2ef2921a6b8139439d562f3e9db7bd8565affd9556e6178e6ab9b

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /files/theme/nav-bg-h-red.png?1675237663 HTTP/1.1
Host: www.cafe-brabant.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.cafe-brabant.nl/files/main_style.css?1675237663
Cookie: is_mobile=0; language=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Sun, 19 Feb 2023 13:04:28 GMT
Content-Type: image/png; charset=binary
Content-Length: 56807
Connection: keep-alive
Last-Modified: Sun, 10 May 2020 14:11:06 GMT
x-rgw-object-type: Normal
ETag: "d725a2f61ab80580924f7b1ad04d3800"
x-amz-request-id: tx00000000000003588f6e0-00631527e1-c033918-sfo1
X-Storage-Bucket: z8d6a
X-Storage-Object: 8d6a2dbc62c2ef2921a6b8139439d562f3e9db7bd8565affd9556e6178e6ab9b
X-Host: grn46.sf2p.intern.weebly.net
Accept-Ranges: bytes

www.cafe-brabant.nl/files/theme/footer-bg-red.jpg?1675237663

199.34.228.72

200 OK

89 kB

URL HTTP/1.1
www.cafe-brabant.nl/files/theme/footer-bg-red.jpg?1675237663
IP
199.34.228.72:0
ASN
#27647 WEEBLY

File type
PNG image data, 256 x 334, 8-bit/color RGB, non-interlaced\012- data
Size
89 kB (89099 bytes)
Hash
3d37e5df95ffd0814afc37609bc14acd
7d593b4fca4ba1c99c914f19ab49063768f2a035
eac1173d8912e8c41f93ac97eae62959e9303760424e99e20dec63e35e260e4c

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /files/theme/footer-bg-red.jpg?1675237663 HTTP/1.1
Host: www.cafe-brabant.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.cafe-brabant.nl/files/main_style.css?1675237663
Cookie: is_mobile=0; language=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Sun, 19 Feb 2023 13:04:28 GMT
Content-Type: image/png; charset=binary
Content-Length: 89099
Connection: keep-alive
Last-Modified: Tue, 28 Apr 2020 13:39:26 GMT
x-rgw-object-type: Normal
ETag: "3d37e5df95ffd0814afc37609bc14acd"
x-amz-request-id: tx000000000000001d5271c-0061a7e827-a9f1ce7-sfo1
X-Storage-Bucket: zeac1
X-Storage-Object: eac1173d8912e8c41f93ac97eae62959e9303760424e99e20dec63e35e260e4c
X-Host: blu41.sf2p.intern.weebly.net
Accept-Ranges: bytes

ocsp.pki.goog/gts1c3

216.58.211.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
216.58.211.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
a6e5d93e6ff78ff0040d571937410c78
ec1b36fe7fb5f6cc3b41d50bcddc3199dbac8969
f14addd83ab95ac7ad8b7340db9c82f4bc03f5fa9781ec9923485f17dbb101ed

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 19 Feb 2023 13:04:28 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ssl.google-analytics.com/ga.js

142.250.74.40

200 OK

17 kB

URL HTTP/2
ssl.google-analytics.com/ga.js
IP
142.250.74.40:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (1305)
Size
17 kB (17168 bytes)
Hash
01d5892e6e243b52998310c2925b9f3a
58180151b6a6ee4af73583a214b68efb9e8844d4
7e90efb4620a78e8869796d256bcddbde90b853c8c15c5cc116cb11d3d17bc4d

HTTP Headers

GET /ga.js HTTP/1.1
Host: ssl.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.cafe-brabant.nl/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 17168
date: Sun, 19 Feb 2023 12:41:40 GMT
expires: Sun, 19 Feb 2023 14:41:40 GMT
cache-control: public, max-age=7200
age: 1368
last-modified: Tue, 10 Jan 2023 21:29:14 GMT
content-type: text/javascript
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.editmysite.com/ajax/apps/generateMap.php?map=google&elementid=481461660742684216&ineditor=0&control=3&width=auto&height=250px&overviewmap=0&scalecontrol=0&typecontrol=0&zoom=15&long=5.1775672&lat=52.232404&domain=www&point=1&align=1&reseller=false

74.115.50.67

200 OK

12 kB

URL HTTP/1.1
www.editmysite.com/ajax/apps/generateMap.php?map=google&elementid=481461660742684216&ineditor=0&control=3&width=auto&height=250px&overviewmap=0&scalecontrol=0&typecontrol=0&zoom=15&long=5.1775672&lat=52.232404&domain=www&point=1&align=1&reseller=false
IP
74.115.50.67:0
ASN
#27647 WEEBLY

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (827)
Size
12 kB (11554 bytes)
Hash
796aa26ff6724890540e62ad54fe2832
f0c639d98c93b4943c92dbff68fc567a6deb93b6
760f05ba66f7d96a5e3b21bdb4d843b9ba2d382e6078655ba1016137eb511ed8

HTTP Headers

GET /ajax/apps/generateMap.php?map=google&elementid=481461660742684216&ineditor=0&control=3&width=auto&height=250px&overviewmap=0&scalecontrol=0&typecontrol=0&zoom=15&long=5.1775672&lat=52.232404&domain=www&point=1&align=1&reseller=false HTTP/1.1
Host: www.editmysite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.cafe-brabant.nl/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Date: Sun, 19 Feb 2023 13:04:28 GMT
Server: Apache
X-Host: grn122.sf2p.intern.weebly.net
X-UA-Compatible: IE=edge,chrome=1
Content-Length: 11554
Keep-Alive: timeout=10, max=75
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
X-W-DC: SFO
Set-Cookie: sto-id-designer=MCFNBMAK; Domain=editmysite.com; Path=/

ocsp.pki.goog/gts1c3

216.58.211.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
216.58.211.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
a6e5d93e6ff78ff0040d571937410c78
ec1b36fe7fb5f6cc3b41d50bcddc3199dbac8969
f14addd83ab95ac7ad8b7340db9c82f4bc03f5fa9781ec9923485f17dbb101ed

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 19 Feb 2023 13:04:28 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

216.58.211.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
216.58.211.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
b53bc403e0ab0570909b47c9976c4bc3
ac75251663f22d11671b8089f0b1d8d868844764
bd84b9ecba7b9a74d49c6d7a56df5e8a5d813bbd8dac93714d5b68f2de2181af

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 19 Feb 2023 13:04:28 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.cafe-brabant.nl/favicon.ico

199.34.228.72

200 OK

4.3 kB

URL HTTP/1.1
www.cafe-brabant.nl/favicon.ico
IP
199.34.228.72:0
ASN
#27647 WEEBLY

File type
MS Windows icon resource - 1 icon, 32x32, 32 bits/pixel\012- data
Size
4.3 kB (4286 bytes)
Hash
4d27526198ac873ccec96935198e0fb9
b98d8b73ad6a0f7477c3397561b4aab37bf262aa
40a2146151863bcf46c786d596e81a308d1b0d26d74635be441e92656f29b1b4

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: www.cafe-brabant.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.cafe-brabant.nl/
Cookie: is_mobile=0; language=en; _snow_ses.bc97=*; _snow_id.bc97=a0808e4b-f62d-4ce5-8877-6aa286d0985e.1676811868.1.1676811868.1676811868.118d98d5-1201-44f5-aa64-55b714f1f2cd
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Sun, 19 Feb 2023 13:04:28 GMT
Content-Type: image/x-icon
Content-Length: 4286
Connection: keep-alive
Last-Modified: Fri, 24 Sep 2021 21:48:12 GMT
x-rgw-object-type: Normal
ETag: "4d27526198ac873ccec96935198e0fb9"
x-amz-request-id: tx000000000000001b53b91-00628478b7-b9fbc29-sfo1
X-Storage-Bucket: z40a2
X-Storage-Object: 40a2146151863bcf46c786d596e81a308d1b0d26d74635be441e92656f29b1b4
X-Host: grn24.sf2p.intern.weebly.net
Accept-Ranges: bytes

maps.googleapis.com/maps/api/js?v=3&client=gme-weeblyinc1

142.250.74.74

200 OK

53 kB

URL HTTP/2
maps.googleapis.com/maps/api/js?v=3&client=gme-weeblyinc1
IP
142.250.74.74:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (2462)
Size
53 kB (53197 bytes)
Hash
384cfd719e6907c09681359a46149c35
a15a063f9e0224d27c2190c38ec0f393c714291e
7f52f61869c5fecbdbada6ea6a32a3a184dfc87dd9daed79a14781ff7bc38c0a

HTTP Headers

GET /maps/api/js?v=3&client=gme-weeblyinc1 HTTP/1.1
Host: maps.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.editmysite.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/javascript; charset=UTF-8
date: Sun, 19 Feb 2023 13:04:28 GMT
expires: Sun, 19 Feb 2023 13:34:28 GMT
cache-control: public, max-age=1800
vary: Accept-Language
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
content-encoding: gzip
server: mafe
content-length: 53197
x-xss-protection: 0
x-frame-options: SAMEORIGIN
server-timing: gfet4t7; dur=22
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

216.58.211.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
216.58.211.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
b53bc403e0ab0570909b47c9976c4bc3
ac75251663f22d11671b8089f0b1d8d868844764
bd84b9ecba7b9a74d49c6d7a56df5e8a5d813bbd8dac93714d5b68f2de2181af

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 19 Feb 2023 13:04:28 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

216.58.211.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
216.58.211.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
9d05d51b48728fdcd100d5ad8ce645e7
da63db3fe51d74b7776cd6ce770c6937cbede853
3c77d0fc549913b4a1606ae27a05c67fecceb6ed0ce49be12a6c5a692d5a8e4d

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 19 Feb 2023 13:04:29 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

maps.gstatic.com/mapfiles/transparent.png

142.250.74.3

200 OK

68 B

URL HTTP/2
maps.gstatic.com/mapfiles/transparent.png
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
PNG image data, 1 x 1, 8-bit gray+alpha, non-interlaced\012- data
Size
68 B (68 bytes)
Hash
8327a6037ae00a5be9f75e63ee1b9fbe
a812c79b0d125e4946b33446eae0353f518627e2
fe67e12a6497f8518ef1673fd8cf5622871935ff85f204715e78b2009dd48588

HTTP Headers

GET /mapfiles/transparent.png HTTP/1.1
Host: maps.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.editmysite.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
content-type: image/png
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/geo-tactile
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="geo-tactile"
report-to: {"group":"geo-tactile","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/geo-tactile"}]}
content-length: 68
date: Sun, 19 Feb 2023 13:04:29 GMT
expires: Sun, 19 Feb 2023 13:04:29 GMT
cache-control: private, max-age=31536000
last-modified: Tue, 18 May 2021 19:15:00 GMT
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

216.58.211.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
216.58.211.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
9d05d51b48728fdcd100d5ad8ce645e7
da63db3fe51d74b7776cd6ce770c6937cbede853
3c77d0fc549913b4a1606ae27a05c67fecceb6ed0ce49be12a6c5a692d5a8e4d

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 19 Feb 2023 13:04:29 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2

216.58.207.227

200 OK

16 kB

URL HTTP/2
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP
216.58.207.227:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Size
16 kB (15744 bytes)
Hash
15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615

HTTP Headers

GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.editmysite.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 15 Feb 2023 13:15:37 GMT
expires: Thu, 15 Feb 2024 13:15:37 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
age: 344932
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

cdn2.editmysite.com/images/site/footer/footer-toast-published-image-1.png

151.101.129.46

200 OK

0 B

URL HTTP/2
cdn2.editmysite.com/images/site/footer/footer-toast-published-image-1.png
IP
151.101.129.46:0
ASN
#54113 FASTLY

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /images/site/footer/footer-toast-published-image-1.png HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.cafe-brabant.nl/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
x-guploader-uploadid: ADPycdujQNpHaXULXK5hWOudOsrFbrCOJBmkXkf6lNHnzHxB1q3PphW4yFVZQbxms7rfGEwEu0IdDaAyLbpAPqDN6NvCrqCgiKDD
cache-control: public, max-age=86400, s-maxage=259200
expires: Thu, 06 Oct 2022 22:59:09 GMT
last-modified: Tue, 12 Feb 2019 18:19:08 GMT
etag: "6e0f7ad31bf187e0d88fc5787573ba71"
x-goog-generation: 1549995548326466
x-goog-metageneration: 3
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 9677
content-type: image/png
x-goog-hash: crc32c=QhrKCw==, md5=bg960xvxh+DYj8V4dXO6cQ==
x-goog-storage-class: STANDARD
server: UploadServer
accept-ranges: bytes
date: Sun, 19 Feb 2023 13:04:27 GMT
via: 1.1 varnish
age: 50218
x-served-by: cache-bma1637-BMA
x-cache: HIT
x-cache-hits: 137
x-timer: S1676811867.142344,VS0,VE0
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 9677
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (33)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

URL