r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash ff01d28c7e4c50fb1a146b10670170a2
645b169d11cd047eec9bee5e63719104e3776540
715f77554399136f5c4da17a22be9112ca0ee75ceb8b0c5910a005f70e255e94
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "715F77554399136F5C4DA17A22BE9112CA0EE75CEB8B0C5910A005F70E255E94"
Last-Modified: Fri, 17 Feb 2023 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9468
Expires: Sun, 19 Feb 2023 15:42:13 GMT
Date: Sun, 19 Feb 2023 13:04:25 GMT
Connection: keep-alive
cafe-brabant.nl/
199.34.228.72301 Moved Permanently 235 B IP 199.34.228.72:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash d53ef9af5bcdf95567ca1e5c67cdad8b
25c975e9028eeaa49cb65b05f51d5859e4d0d423
cb00c3a676ddf359daf87d3abba8cffa4d6b8c9f6f3532ca20b535aada12571e
Analyzer Verdict Alert fortinet Malware
GET / HTTP/1.1
Host: cafe-brabant.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Sun, 19 Feb 2023 13:04:25 GMT
Server: Apache
Location: http://www.cafe-brabant.nl/
Content-Length: 235
Keep-Alive: timeout=10, max=71
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 4229cfe19d214d22153fe5833a7b557a
2439958496306a257d266050b4313b9bac51c871
ddfa83afe45b77b508119ac50488a73c3c49a78fa7a64ad983bd4958e0c7a4f9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DDFA83AFE45B77B508119AC50488A73C3C49A78FA7A64AD983BD4958E0C7A4F9"
Last-Modified: Fri, 17 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8335
Expires: Sun, 19 Feb 2023 15:23:20 GMT
Date: Sun, 19 Feb 2023 13:04:25 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 5539e12eac82ed8486057f67e18231d3
866778ccdac94dbeff9bc217d4a057079ee71b2a
d82a876ba46480f2caa20e2112941bfb461bdb03e882949b347abb9e8006705f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D82A876BA46480F2CAA20E2112941BFB461BDB03E882949B347ABB9E8006705F"
Last-Modified: Fri, 17 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9354
Expires: Sun, 19 Feb 2023 15:40:19 GMT
Date: Sun, 19 Feb 2023 13:04:25 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash b44c4b5daa307a355e7bab1c83c1ca82
dbd14cd873f1dd4502f277b3f51cb7bc8da0c080
fd4604461cfa002c8a261bb14eb8dda56817db231b9012b2eb38d6dbc2674df5
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Alert, Content-Length, Content-Type, Retry-After, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sun, 19 Feb 2023 12:37:55 GMT
content-type: application/json
age: 1590
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-03-20-18-44-46.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-03-20-18-44-46.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash e76071a28ee566dababb3834f46d68ed
aebb4e68c1ba2de0f90025283e8ed8470944fde0
78b6df2627172e5b35476bc31020f02898cdc412aaf4337af2c3b049a60912b6
GET /chains/remote-settings.content-signature.mozilla.org-2023-03-20-18-44-46.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: 7yLqsjJcEc0MFDUw6waoc7VoqjXmadmBD+0awLySdTDmLWDegGkOUp4rdh14GvL4O6iIcaavCuc=
x-amz-request-id: 7P6CTM7XQH5M5EXY
x-amz-server-side-encryption: AES256
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
via: 1.1 google
date: Sun, 19 Feb 2023 12:51:18 GMT
age: 787
last-modified: Sun, 29 Jan 2023 18:44:47 GMT
etag: "e76071a28ee566dababb3834f46d68ed"
content-type: binary/octet-stream
content-length: 5348
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 19 Feb 2023 13:04:25 GMT
content-type: application/json
content-length: 12
access-control-expose-headers: content-type
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
www.cafe-brabant.nl/
199.34.228.72301 Moved Permanently 358 B IP 199.34.228.72:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash d28b124378b7605ede2c6767d5f7b7e7
f8ad26135d9817f9f47fe5185e41e9a613306d93
18541bb01e50614ab4bdb3c3b9db9d775d798a9698204c6f4f5c3ddb213d8e4a
Analyzer Verdict Alert fortinet Malware
GET / HTTP/1.1
Host: www.cafe-brabant.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Sun, 19 Feb 2023 13:04:26 GMT
Server: Apache
Set-Cookie: is_mobile=0; path=/; domain=www.cafe-brabant.nl
Vary: X-W-SSL,User-Agent
Location: https://www.cafe-brabant.nl/
X-Host: grn67.sf2p.intern.weebly.net
X-UA-Compatible: IE=edge,chrome=1
Content-Length: 358
Keep-Alive: timeout=10, max=74
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Expires, Content-Type, Alert, Content-Length, Backoff, ETag, Cache-Control, Retry-After, Last-Modified, Pragma
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sun, 19 Feb 2023 12:51:25 GMT
age: 781
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash ffe8651a83ebc937a53bf14c980c348e
8fe2f9219fbe52ee890533f94dd617da679050a4
96149e604ad1e11ab2b100b60e4605b7213f215b0a788506185def01954cb70f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "96149E604AD1E11AB2B100B60E4605B7213F215B0A788506185DEF01954CB70F"
Last-Modified: Fri, 17 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9140
Expires: Sun, 19 Feb 2023 15:36:46 GMT
Date: Sun, 19 Feb 2023 13:04:26 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 4fadc3be686c289bbbf51dbc2e27689b
c734a92588ae0b043de5299e70fa533d8c6a3e8b
f3408cec5fbbec7aff8b7bc04e719958863c71ead5a194396938a9c5f7689cd2
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F3408CEC5FBBEC7AFF8B7BC04E719958863C71EAD5A194396938A9C5F7689CD2"
Last-Modified: Sat, 18 Feb 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21557
Expires: Sun, 19 Feb 2023 19:03:43 GMT
Date: Sun, 19 Feb 2023 13:04:26 GMT
Connection: keep-alive
www.cafe-brabant.nl/
199.34.228.72200 OK 5.9 kB IP 199.34.228.72:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (1350), with CRLF, LF line terminators
Hash 7f0efa686a5e8bda34af42aebb68f7e6
9d7304ed0e1640a3efe209de4c70ec1361bc6e7f
cbec7bec9c984c2b81b0e7adc92903d2c23470a6d6e5cd790f065c45b4191e8b
Analyzer Verdict Alert fortinet Malware
GET / HTTP/1.1
Host: www.cafe-brabant.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/1.1 200 OK
Date: Sun, 19 Feb 2023 13:04:26 GMT
Server: Apache
Vary: X-W-SSL,Accept-Encoding,User-Agent
Set-Cookie: is_mobile=0; path=/; domain=www.cafe-brabant.nl
language=en; expires=Sun, 05-Mar-2023 13:04:26 GMT; Max-Age=1209600; path=/
Cache-Control: private
ETag: W/"98c4503794560d0976a96002e98ce0cd-gzip"
Content-Encoding: gzip
X-Host: grn52.sf2p.intern.weebly.net
X-UA-Compatible: IE=edge,chrome=1
Content-Length: 5944
Keep-Alive: timeout=10, max=72
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
push.services.mozilla.com/
44.237.163.41101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 44.237.163.41:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: IyQGagsnVUdgROageQ/5/Q==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: U7KWIosIdXtxY7Kz1hiFbagHJ+o=
cdn2.editmysite.com/css/old/fancybox.css?1675210024
151.101.129.46200 OK 1.2 kB URL HTTP/2 cdn2.editmysite.com/css/old/fancybox.css?1675210024
IP 151.101.129.46:0
File type ASCII text, with very long lines (3910)
Hash b644e92258f4c7c0b4270047652d1e60
93734d52ee9e86a768159e514076051813c39cd9
29199496fb817668f887938571046abcdfb49063d0207d571b361f221f467907
GET /css/old/fancybox.css?1675210024 HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.cafe-brabant.nl/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-type: text/css
last-modified: Tue, 14 Feb 2023 22:05:02 GMT
etag: "63ec058e-f47"
expires: Wed, 01 Mar 2023 00:09:55 GMT
cache-control: max-age=1209600
x-host: blu43.sf2p.intern.weebly.net
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sun, 19 Feb 2023 13:04:27 GMT
age: 392071
x-served-by: cache-sjc10027-SJC, cache-bma1637-BMA
x-cache: HIT, HIT
x-cache-hits: 96, 2
x-timer: S1676811867.139803,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 1218
X-Firefox-Spdy: h2
cdn2.editmysite.com/js/site/footerSignup.js?buildTime=1676659918
151.101.129.46200 OK 1.4 kB URL HTTP/2 cdn2.editmysite.com/js/site/footerSignup.js?buildTime=1676659918
IP 151.101.129.46:0
File type ASCII text, with very long lines (3600), with no line terminators
Hash 121a5b9688d8e70ee7bb06cc79491f76
3a28220baa7d8879270c8311bed7dddefa7e43e9
181716c84474c9eb6685a809d69dda5d49ce44dfbf64c5dee89a3091e23def40
GET /js/site/footerSignup.js?buildTime=1676659918 HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.cafe-brabant.nl/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript
last-modified: Fri, 17 Feb 2023 16:29:35 GMT
etag: "63efab6f-e10"
expires: Fri, 03 Mar 2023 18:54:58 GMT
cache-control: max-age=1209600
x-host: blu113.sf2p.intern.weebly.net
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sun, 19 Feb 2023 13:04:27 GMT
age: 151768
x-served-by: cache-sjc10052-SJC, cache-bma1637-BMA
x-cache: HIT, HIT
x-cache-hits: 32, 423
x-timer: S1676811867.141048,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 1372
X-Firefox-Spdy: h2
cdn2.editmysite.com/fonts/Lobster/font.css?2
151.101.129.46200 OK 241 B URL HTTP/2 cdn2.editmysite.com/fonts/Lobster/font.css?2
IP 151.101.129.46:0
Hash ad9c03eb4571a7ddd03a9b9721f380a1
ddd0218addf2b628dcd97ae3bd7144155271a95a
279e0320e2a1ab4322d5b45e21ce0e404ead20a141ec379c94175a3d9aa412bb
GET /fonts/Lobster/font.css?2 HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.cafe-brabant.nl/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-type: text/css
last-modified: Thu, 09 Feb 2023 16:09:58 GMT
etag: "63e51ad6-1ae"
expires: Fri, 24 Feb 2023 10:32:26 GMT
cache-control: max-age=1209600
x-host: blu31.sf2p.intern.weebly.net
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sun, 19 Feb 2023 13:04:27 GMT
age: 786720
x-served-by: cache-sjc10034-SJC, cache-bma1637-BMA
x-cache: HIT, HIT
x-cache-hits: 892, 1
x-timer: S1676811867.147326,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 241
X-Firefox-Spdy: h2
cdn2.editmysite.com/fonts/Handlee/font.css?2
151.101.129.46200 OK 241 B URL HTTP/2 cdn2.editmysite.com/fonts/Handlee/font.css?2
IP 151.101.129.46:0
Hash 9ce682dc12eeacba45264948ba7d94f2
a78d5ffe8df28c731f18a0db16b0c0e06a9e21e0
569d8907b2a73f20ae3b4d29e36be2021fc09884f4c5e0881ca9227365001817
GET /fonts/Handlee/font.css?2 HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.cafe-brabant.nl/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-type: text/css
last-modified: Thu, 09 Feb 2023 16:09:57 GMT
etag: "63e51ad5-1ae"
expires: Fri, 24 Feb 2023 11:22:06 GMT
cache-control: max-age=1209600
x-host: blu33.sf2p.intern.weebly.net
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sun, 19 Feb 2023 13:04:27 GMT
age: 783740
x-served-by: cache-sjc10044-SJC, cache-bma1637-BMA
x-cache: HIT, HIT
x-cache-hits: 193, 1
x-timer: S1676811867.147956,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 241
X-Firefox-Spdy: h2
cdn2.editmysite.com/css/sites.css?buildTime=1675210024
151.101.129.46200 OK 30 kB URL HTTP/2 cdn2.editmysite.com/css/sites.css?buildTime=1675210024
IP 151.101.129.46:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 29c20b995313a7d26dca333c33383d9f
46af545a03a3f9739a9e284e46420a8fae692c98
028e76db03ee4ec81d6f5cd961b0006251a51b088d3a7d03ebc87be3fc7303f8
GET /css/sites.css?buildTime=1675210024 HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.cafe-brabant.nl/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-type: text/css
last-modified: Tue, 14 Feb 2023 22:04:55 GMT
etag: W/"63ec0587-337f6"
expires: Wed, 01 Mar 2023 00:09:52 GMT
cache-control: max-age=1209600
x-host: grn42.sf2p.intern.weebly.net
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sun, 19 Feb 2023 13:04:27 GMT
age: 392075
x-served-by: cache-sjc10066-SJC, cache-bma1637-BMA
x-cache: HIT, HIT
x-cache-hits: 88, 2
x-timer: S1676811867.144441,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 29663
X-Firefox-Spdy: h2
cdn2.editmysite.com/js/site/main.js?buildTime=1675210024
151.101.129.46200 OK 146 kB URL HTTP/2 cdn2.editmysite.com/js/site/main.js?buildTime=1675210024
IP 151.101.129.46:0
File type ASCII text, with very long lines (32147)
Size 146 kB (146400 bytes)
Hash 81b8673c5d3aa3ab8c0574f2a8f0e3b4
2e0661bc7907d9e2703b3347c3fec579f0aef5d6
0e981f4de6287406ce261fddea24aa05ded4b6a8c4c07283c363c1502071cf40
GET /js/site/main.js?buildTime=1675210024 HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.cafe-brabant.nl/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript
last-modified: Tue, 07 Feb 2023 23:24:26 GMT
etag: "63e2ddaa-74804"
expires: Wed, 22 Feb 2023 08:36:47 GMT
cache-control: max-age=1209600
x-host: blu70.sf2p.intern.weebly.net
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sun, 19 Feb 2023 13:04:27 GMT
age: 966460
x-served-by: cache-sjc10059-SJC, cache-bma1637-BMA
x-cache: HIT, HIT
x-cache-hits: 12921, 1
x-timer: S1676811867.140863,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 146400
X-Firefox-Spdy: h2
cdn2.editmysite.com/js/jquery-1.8.3.min.js
151.101.129.46200 OK 34 kB URL HTTP/2 cdn2.editmysite.com/js/jquery-1.8.3.min.js
IP 151.101.129.46:0
File type ASCII text, with very long lines (65483)
Hash 67a5a77f65f13559b3d723829f2e0108
5e861ec7c2993abffc3591d6132c47bc7cdc3e98
ac4ffabaed7382810a3829d812e1a45c77984a1dbfaf7d172c8bc19b3cf68ca6
GET /js/jquery-1.8.3.min.js HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.cafe-brabant.nl/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-type: application/javascript
last-modified: Tue, 07 Feb 2023 20:25:25 GMT
etag: "63e2b3b5-16dc4"
expires: Tue, 21 Feb 2023 23:08:14 GMT
cache-control: max-age=1209600
x-host: grn38.sf2p.intern.weebly.net
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sun, 19 Feb 2023 13:04:27 GMT
age: 1000573
x-served-by: cache-sjc10032-SJC, cache-bma1637-BMA
x-cache: HIT, HIT
x-cache-hits: 31, 3353
x-timer: S1676811867.149549,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 33467
X-Firefox-Spdy: h2
cdn2.editmysite.com/js/lang/nl/stl.js?buildTime=1675210024&
151.101.129.46200 OK 34 kB URL HTTP/2 cdn2.editmysite.com/js/lang/nl/stl.js?buildTime=1675210024&
IP 151.101.129.46:0
File type Unicode text, UTF-8 text, with very long lines (64872)
Hash 6895a6caed09f3d5714ce8e7f21fd805
1bfa56966e060bff68fa24695507c9c7089ff9f6
22952f5cfe8528f1d7d9e8c9cb7e33c633590bc29d7462c122ea7e5de26ad60a
GET /js/lang/nl/stl.js?buildTime=1675210024& HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.cafe-brabant.nl/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-type: application/javascript
last-modified: Tue, 14 Feb 2023 22:04:38 GMT
etag: "63ec0576-2ca67"
expires: Wed, 01 Mar 2023 00:11:20 GMT
cache-control: max-age=1209600
x-host: blu68.sf2p.intern.weebly.net
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sun, 19 Feb 2023 13:04:27 GMT
age: 391986
x-served-by: cache-sjc10049-SJC, cache-bma1637-BMA
x-cache: HIT, HIT
x-cache-hits: 58, 1
x-timer: S1676811867.150698,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 34214
X-Firefox-Spdy: h2
cdn2.editmysite.com/js/site/main-customer-accounts-site.js?buildTime=1675210024
151.101.129.46200 OK 159 kB URL HTTP/2 cdn2.editmysite.com/js/site/main-customer-accounts-site.js?buildTime=1675210024
IP 151.101.129.46:0
File type ASCII text, with very long lines (32007)
Size 159 kB (159077 bytes)
Hash bdb4ed4336e9373908d34bf99f23e188
26fd52a2f5d9f75b1af7d0af60ace8e6cf529ed0
6ef000f3bc6276b4ab35e0980d2bb07ecb5dbf621eb86281dc581875e4b4d93f
GET /js/site/main-customer-accounts-site.js?buildTime=1675210024 HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.cafe-brabant.nl/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript
last-modified: Tue, 14 Feb 2023 22:05:27 GMT
etag: "63ec05a7-825c4"
expires: Wed, 01 Mar 2023 00:09:51 GMT
cache-control: max-age=1209600
x-host: grn48.sf2p.intern.weebly.net
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sun, 19 Feb 2023 13:04:27 GMT
age: 392075
x-served-by: cache-sjc10058-SJC, cache-bma1637-BMA
x-cache: HIT, HIT
x-cache-hits: 79, 1
x-timer: S1676811867.141342,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 159077
X-Firefox-Spdy: h2
ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q3
104.18.20.226200 OK 1.5 kB URL HTTP/1.1 ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q3
IP 104.18.20.226:0
Hash f32284b4b2dca4668235d9720aed7981
d65f02017124d524771258a8d185d0dcebc6d891
ae003d74ade364e87a8d00bd1a1ae30bb8863ddccdbc74fc69c1cf81809a2447
POST /ca/gsatlasr3dvtlsca2022q3 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 19 Feb 2023 13:04:27 GMT
Content-Type: application/ocsp-response
Transfer-Encoding: chunked
Connection: keep-alive
Etag: "8C6C0710E1F5C0E9BA4B0D8313517AE099CF6BB1"
Expires: Mon, 20 Feb 2023 00:00:00 GMT
Last-Modified: Sun, 19 Feb 2023 12:00:00 UTC
Cache-Control: s-maxage=3600, public, no-transform, must-revalidate
CF-Cache-Status: HIT
Age: 3508
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 79bf3559cbba0b69-OSL
www.cafe-brabant.nl/files/main_style.css?1675237663
199.34.228.72200 OK 3.0 kB URL HTTP/1.1 www.cafe-brabant.nl/files/main_style.css?1675237663
IP 199.34.228.72:0
File type ASCII text, with very long lines (340)
Hash c266d707cc1b335c236ca6c2997b13df
2f8395730c2d5f764b82e8bff867a6333a1f08dd
8182e4176a6ba7e35810fd285baf8b6ee9b80027000af840616f76d3739ec6a3
Analyzer Verdict Alert fortinet Malware
GET /files/main_style.css?1675237663 HTTP/1.1
Host: www.cafe-brabant.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.cafe-brabant.nl/
Cookie: is_mobile=0; language=en
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 19 Feb 2023 13:04:27 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Access-Control-Allow-Headers: Origin, Authorization, Content-Type
Access-Control-Allow-Methods: GET, POST, DELETE, OPTIONS
Access-Control-Allow-Origin: *
X-Host: blu122.sf2p.intern.weebly.net
Content-Encoding: gzip
www.cafe-brabant.nl/files/theme/footer-bg-bottom-red.jpg?1675237663
199.34.228.72200 OK 1.6 kB URL HTTP/1.1 www.cafe-brabant.nl/files/theme/footer-bg-bottom-red.jpg?1675237663
IP 199.34.228.72:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 50x50, components 3\012- data
Hash 8f6c76e180864cffbaf511b225401534
0295a841dba39100967da84fcabf29620cbbd952
53480b075e353f1ac7c74a32ec8f0b7ead70f01648010c4cc16f78e3a59f95dc
GET /files/theme/footer-bg-bottom-red.jpg?1675237663 HTTP/1.1
Host: www.cafe-brabant.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.cafe-brabant.nl/files/main_style.css?1675237663
Cookie: is_mobile=0; language=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 19 Feb 2023 13:04:27 GMT
Content-Type: image/jpeg; charset=binary
Content-Length: 1623
Connection: keep-alive
Last-Modified: Tue, 28 Apr 2020 13:39:26 GMT
x-rgw-object-type: Normal
ETag: "8f6c76e180864cffbaf511b225401534"
x-amz-request-id: tx000000000000006fa40fb-006260ae7d-4d62951-las
X-Storage-Bucket: z5348
X-Storage-Object: 53480b075e353f1ac7c74a32ec8f0b7ead70f01648010c4cc16f78e3a59f95dc
X-Host: grn57.sf2p.intern.weebly.net
Accept-Ranges: bytes
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash dee7dce0885fbdc073d71bc701df315d
d990a1f213d2b1cacaa44a013517ac53ad6aa574
41b223a166d4eb51dab732561800bc49e6ec612a70ffb3f6689433dbd521844d
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6235
Cache-Control: max-age=90267
Content-Type: application/ocsp-response
Date: Sun, 19 Feb 2023 13:04:27 GMT
Etag: "63f0c39b-1d7"
Expires: Mon, 20 Feb 2023 14:08:54 GMT
Last-Modified: Sat, 18 Feb 2023 12:24:59 GMT
Server: ECS (ska/F705)
X-Cache: HIT
Content-Length: 471
www.cafe-brabant.nl/files/theme/logo-wrap-bg.png?1675237663
199.34.228.72200 OK 14 kB URL HTTP/1.1 www.cafe-brabant.nl/files/theme/logo-wrap-bg.png?1675237663
IP 199.34.228.72:0
File type PNG image data, 220 x 110, 8-bit colormap, non-interlaced\012- data
Hash 1d6800c315552c70fbff98737bf956ba
e69d516f4a5cf85616b240046e16d9c2274b7bd7
447b41cfb2249963f6e343134d67a447df703bb52adbbf3f60c7db7f6b3e0bf0
Analyzer Verdict Alert fortinet Malware
GET /files/theme/logo-wrap-bg.png?1675237663 HTTP/1.1
Host: www.cafe-brabant.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.cafe-brabant.nl/files/main_style.css?1675237663
Cookie: is_mobile=0; language=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 19 Feb 2023 13:04:27 GMT
Content-Type: image/png; charset=binary
Content-Length: 14259
Connection: keep-alive
Last-Modified: Sun, 10 May 2020 14:11:06 GMT
x-rgw-object-type: Normal
ETag: "1d6800c315552c70fbff98737bf956ba"
x-amz-request-id: tx000000000000046affddb-00621bab70-a9f1b25-sfo1
X-Storage-Bucket: z447b
X-Storage-Object: 447b41cfb2249963f6e343134d67a447df703bb52adbbf3f60c7db7f6b3e0bf0
X-Host: grn63.sf2p.intern.weebly.net
Accept-Ranges: bytes
www.cafe-brabant.nl/ajax/api/JsonRPC/CustomerAccounts/?CustomerAccounts[CustomerAccounts::getAccountDetails]
199.34.228.72200 OK 348 B URL HTTP/1.1 www.cafe-brabant.nl/ajax/api/JsonRPC/CustomerAccounts/?CustomerAccounts[CustomerAccounts::getAccountDetails]
IP 199.34.228.72:0
File type JSON data\012- , ASCII text, with very long lines (348), with no line terminators
Hash a944dd688c99d2901d6719be713271c0
4f5454d5d434829baf46671638610791758725d9
adb97e1bc686c58b4286f1208d2bd969687c6cf3e2fc468697dfd956d260de49
Analyzer Verdict Alert fortinet Malware
POST /ajax/api/JsonRPC/CustomerAccounts/?CustomerAccounts[CustomerAccounts::getAccountDetails] HTTP/1.1
Host: www.cafe-brabant.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 83
Origin: https://www.cafe-brabant.nl
Connection: keep-alive
Referer: https://www.cafe-brabant.nl/
Cookie: is_mobile=0; language=en; _snow_ses.bc97=*; _snow_id.bc97=a0808e4b-f62d-4ce5-8877-6aa286d0985e.1676811868.1.1676811868.1676811868.118d98d5-1201-44f5-aa64-55b714f1f2cd
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 19 Feb 2023 13:04:27 GMT
Server: Apache
Vary: X-W-SSL,User-Agent
Set-Cookie: language=en; expires=Sun, 05-Mar-2023 13:04:27 GMT; Max-Age=1209600; path=/
X-Host: blu56.sf2p.intern.weebly.net
X-UA-Compatible: IE=edge,chrome=1
Content-Length: 348
Keep-Alive: timeout=10, max=71
Connection: Keep-Alive
Content-Type: application/json
www.weebly.com/weebly/apps/generateMap.php?map=google&elementid=481461660742684216&ineditor=0&control=3&width=auto&height=250px&overviewmap=0&scalecontrol=0&typecontrol=0&zoom=15&long=5.1775672&lat=52.232404&domain=www&point=1&align=1&reseller=false
74.115.50.109302 Found 0 B URL HTTP/1.1 www.weebly.com/weebly/apps/generateMap.php?map=google&elementid=481461660742684216&ineditor=0&control=3&width=auto&height=250px&overviewmap=0&scalecontrol=0&typecontrol=0&zoom=15&long=5.1775672&lat=52.232404&domain=www&point=1&align=1&reseller=false
IP 74.115.50.109:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /weebly/apps/generateMap.php?map=google&elementid=481461660742684216&ineditor=0&control=3&width=auto&height=250px&overviewmap=0&scalecontrol=0&typecontrol=0&zoom=15&long=5.1775672&lat=52.232404&domain=www&point=1&align=1&reseller=false HTTP/1.1
Host: www.weebly.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.cafe-brabant.nl/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Date: Sun, 19 Feb 2023 13:04:27 GMT
Server: Apache
Location: https://www.editmysite.com/ajax/apps/generateMap.php?map=google&elementid=481461660742684216&ineditor=0&control=3&width=auto&height=250px&overviewmap=0&scalecontrol=0&typecontrol=0&zoom=15&long=5.1775672&lat=52.232404&domain=www&point=1&align=1&reseller=false
X-Host: grn102.sf2p.intern.weebly.net
Vary: User-Agent
X-UA-Compatible: IE=edge,chrome=1
Content-Length: 0
Keep-Alive: timeout=10, max=73
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
X-W-DC: SFO
Set-Cookie: sto-id-editor=OLFDBMAK; Domain=weebly.com; Path=/
ocsp.r2m01.amazontrust.com/
54.230.80.227200 OK 471 B URL HTTP/1.1 ocsp.r2m01.amazontrust.com/
IP 54.230.80.227:0
Hash ee8deb1af3e0fe7d76f85b7af0913d07
25c677985079f1d9038ca72328de44fbf9a5bf12
24a0c55548ec7c627d752b2fb0b945d5fec4469fe319b016d258e8afbf76dfd0
POST / HTTP/1.1
Host: ocsp.r2m01.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Sun, 19 Feb 2023 13:04:27 GMT
Last-Modified: Sun, 19 Feb 2023 12:21:56 GMT
Server: ECS (nyb/1D10)
X-Cache: Miss from cloudfront
Via: 1.1 c26775cc34c23943f6f5cfc9a3da9b4a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: 8PIlDGN36U1mwx9655dHbqr6Ut3WjVo9pLMnCaqEFrbCJoE9J-Ekdg==
Age: 2551
ocsp.r2m01.amazontrust.com/
54.230.80.227200 OK 471 B URL HTTP/1.1 ocsp.r2m01.amazontrust.com/
IP 54.230.80.227:0
Hash ee8deb1af3e0fe7d76f85b7af0913d07
25c677985079f1d9038ca72328de44fbf9a5bf12
24a0c55548ec7c627d752b2fb0b945d5fec4469fe319b016d258e8afbf76dfd0
POST / HTTP/1.1
Host: ocsp.r2m01.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=154045
Date: Sun, 19 Feb 2023 13:04:27 GMT
Etag: "63f1bdf4-1d7"
Expires: Tue, 21 Feb 2023 07:51:52 GMT
Last-Modified: Sun, 19 Feb 2023 06:13:08 GMT
Server: ECS (nyb/1D1B)
X-Cache: Miss from cloudfront
Via: 1.1 ab09332bca1a3bd382d2e408f65b98d2.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: xMa9Rf0sJy1Woonh7pL37w0qttPvjvt-j-vHxz3veJPUA0I3DDtKxg==
Age: 5924
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 5b1775b8f4f9ebbac7a1572afa4e4f92
7c7c748730a9422b0f5f9bcdde36a91c9639c595
a1685273829a7672a3fa089525b959f1f95f11c0a5c0d09fbbf1f4667b3f7946
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A1685273829A7672A3FA089525B959F1F95F11C0A5C0D09FBBF1F4667B3F7946"
Last-Modified: Fri, 17 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12081
Expires: Sun, 19 Feb 2023 16:25:49 GMT
Date: Sun, 19 Feb 2023 13:04:28 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 5b1775b8f4f9ebbac7a1572afa4e4f92
7c7c748730a9422b0f5f9bcdde36a91c9639c595
a1685273829a7672a3fa089525b959f1f95f11c0a5c0d09fbbf1f4667b3f7946
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A1685273829A7672A3FA089525B959F1F95F11C0A5C0D09FBBF1F4667B3F7946"
Last-Modified: Fri, 17 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12081
Expires: Sun, 19 Feb 2023 16:25:49 GMT
Date: Sun, 19 Feb 2023 13:04:28 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 5b1775b8f4f9ebbac7a1572afa4e4f92
7c7c748730a9422b0f5f9bcdde36a91c9639c595
a1685273829a7672a3fa089525b959f1f95f11c0a5c0d09fbbf1f4667b3f7946
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A1685273829A7672A3FA089525B959F1F95F11C0A5C0D09FBBF1F4667B3F7946"
Last-Modified: Fri, 17 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12081
Expires: Sun, 19 Feb 2023 16:25:49 GMT
Date: Sun, 19 Feb 2023 13:04:28 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 5b1775b8f4f9ebbac7a1572afa4e4f92
7c7c748730a9422b0f5f9bcdde36a91c9639c595
a1685273829a7672a3fa089525b959f1f95f11c0a5c0d09fbbf1f4667b3f7946
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A1685273829A7672A3FA089525B959F1F95F11C0A5C0D09FBBF1F4667B3F7946"
Last-Modified: Fri, 17 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12081
Expires: Sun, 19 Feb 2023 16:25:49 GMT
Date: Sun, 19 Feb 2023 13:04:28 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 5b1775b8f4f9ebbac7a1572afa4e4f92
7c7c748730a9422b0f5f9bcdde36a91c9639c595
a1685273829a7672a3fa089525b959f1f95f11c0a5c0d09fbbf1f4667b3f7946
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A1685273829A7672A3FA089525B959F1F95F11C0A5C0D09FBBF1F4667B3F7946"
Last-Modified: Fri, 17 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12081
Expires: Sun, 19 Feb 2023 16:25:49 GMT
Date: Sun, 19 Feb 2023 13:04:28 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F934fc9eb-b4a6-4fbb-bd6e-d7b9db298c89.jpeg
34.120.237.76200 OK 8.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F934fc9eb-b4a6-4fbb-bd6e-d7b9db298c89.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4b9d8b33f5612e1bf93f6736973766d8
220ce699083537964b1bb8859c4d94ee47f04213
a102991c1ecd60a483f083b72096dd4fccbdf68951f2c453fbf849954ebdc9d6
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F934fc9eb-b4a6-4fbb-bd6e-d7b9db298c89.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8118
x-amzn-requestid: 7a6bad9e-f7de-48ff-a7b6-812f265fe8af
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: AjffAExyIAMF9DA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63f145f9-4efc5e4622fb1d482f0c4663;Sampled=0
x-amzn-remapped-date: Sat, 18 Feb 2023 21:41:13 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 579r7yXBoSk1W50bPxCF8A2r31obx025ohBk3ltpxb1i5eRYEEv-ug==
via: 1.1 6ba2a21321beeef65404429d0a4b6380.cloudfront.net (CloudFront), 1.1 a3bd0eb50c22e4d5fbda56a30b96002c.cloudfront.net (CloudFront), 1.1 google
date: Sat, 18 Feb 2023 21:54:28 GMT
etag: "220ce699083537964b1bb8859c4d94ee47f04213"
content-type: image/jpeg
age: 54600
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
www.cafe-brabant.nl/files/theme/header-bg-red.jpg?1675237663
199.34.228.72200 OK 2.1 kB URL HTTP/1.1 www.cafe-brabant.nl/files/theme/header-bg-red.jpg?1675237663
IP 199.34.228.72:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 44x44, components 3\012- data
Hash 8f04122d007b82f8a7882df88dcfba0b
ac027641170f76980d6c70ddf2cb3466f1edae43
cd68447f1d741b2a60837f1c4ddb902320a0b77485cae189971bbb31fd36aef1
Analyzer Verdict Alert fortinet Malware
GET /files/theme/header-bg-red.jpg?1675237663 HTTP/1.1
Host: www.cafe-brabant.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.cafe-brabant.nl/files/main_style.css?1675237663
Cookie: is_mobile=0; language=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 19 Feb 2023 13:04:28 GMT
Content-Type: image/jpeg; charset=binary
Content-Length: 2075
Connection: keep-alive
Last-Modified: Sun, 10 May 2020 14:11:02 GMT
ETag: "8f04122d007b82f8a7882df88dcfba0b"
x-amz-request-id: tx000000000000002842b80-006165eec2-1ff7178-las
X-Storage-Bucket: zcd68
X-Storage-Object: cd68447f1d741b2a60837f1c4ddb902320a0b77485cae189971bbb31fd36aef1
X-Host: grn46.sf2p.intern.weebly.net
Accept-Ranges: bytes
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc871eb2d-7988-403d-be39-e2b0932eaede.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc871eb2d-7988-403d-be39-e2b0932eaede.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 725d5875c48c8b014d7f55324a6e894f
ebac057ff8a8ad7c097369f0aa2f8cacd8cae06b
103f91934102ac9deb0448de1b2044acba3fc3c1599e460c0f54920958e66f0a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc871eb2d-7988-403d-be39-e2b0932eaede.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11384
x-amzn-requestid: a8e08458-da0d-47f6-a521-358b36fe922b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: AjfUjEt6IAMFsIQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63f145b6-49a56fa82e5aadfa03b6e022;Sampled=0
x-amzn-remapped-date: Sat, 18 Feb 2023 21:40:06 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: NVxW4OqlEZK-7zZkelPp_qT5RG0r2gBfoKtmk8b_jDrLeGcILaMvGA==
via: 1.1 0c96ded7ff282d2dbcf47c918b6bb500.cloudfront.net (CloudFront), 1.1 82ea95080f526df99896343fb7269b06.cloudfront.net (CloudFront), 1.1 google
date: Sat, 18 Feb 2023 22:11:34 GMT
age: 53574
etag: "ebac057ff8a8ad7c097369f0aa2f8cacd8cae06b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9bc26257-b3d2-491e-b1e1-178886f30fef.jpeg
34.120.237.76200 OK 3.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9bc26257-b3d2-491e-b1e1-178886f30fef.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 29708d8e10e6bc039586f2a8a10f637c
85cd9f0cae9cfdb20e3bbe25fe681c949c7faa8a
2b7188f98c0f97b9727cc787e4a97252eb17688b752d70a53c221a0b75827ff5
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9bc26257-b3d2-491e-b1e1-178886f30fef.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 3760
x-amzn-requestid: 4223c443-c23b-4a5c-9cdd-2a3a70d149f5
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: AjfVxHpvoAMF5sw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63f145be-26c57127510e9aa344aa73f5;Sampled=0
x-amzn-remapped-date: Sat, 18 Feb 2023 21:40:14 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: BYQ23iqvClGRiBs7bNRxb0KWPjsVPB7JWMrJompsbTIZ7RxIZ6T-Bg==
via: 1.1 010c0731b9775a983eceaec0f5fa6a2e.cloudfront.net (CloudFront), 1.1 5565a51537c689d1d16f6b4d41f40082.cloudfront.net (CloudFront), 1.1 google
date: Sat, 18 Feb 2023 21:54:28 GMT
age: 54600
etag: "85cd9f0cae9cfdb20e3bbe25fe681c949c7faa8a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9ffb72b6-613b-40fd-bb5b-fc19350878a6.jpeg
34.120.237.76200 OK 7.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9ffb72b6-613b-40fd-bb5b-fc19350878a6.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash a2fb5c797382364954ba2c843a9afbcc
6a10b383ffdd71cd4a870ef5e12368d5d0e7d4dd
8a04857636b850d671ae4c217af3ec1f68b76da33ccc10850cf16fa25bb17c5c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9ffb72b6-613b-40fd-bb5b-fc19350878a6.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7727
x-amzn-requestid: 91559a90-004c-4d39-b107-ad92870466ae
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: AbHgkGRWIAMFSYQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63edec69-63f5138a741d4a9f333bb7cc;Sampled=0
x-amzn-remapped-date: Thu, 16 Feb 2023 08:42:17 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: N7gIJq2POAzQM7aNaH_xkv8Rfmg0_zwPk5CLTPAMuR8gi082W-Ak7A==
via: 1.1 c34da255183aa208dd1c722ff211f9b2.cloudfront.net (CloudFront), 1.1 d6a002c70d55f415107618b0750d493c.cloudfront.net (CloudFront), 1.1 google
date: Sat, 18 Feb 2023 21:54:30 GMT
age: 54598
etag: "6a10b383ffdd71cd4a870ef5e12368d5d0e7d4dd"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
www.cafe-brabant.nl/files/theme/logo-wrap-bg-repeat.png?1675237663
199.34.228.72200 OK 2.5 kB URL HTTP/1.1 www.cafe-brabant.nl/files/theme/logo-wrap-bg-repeat.png?1675237663
IP 199.34.228.72:0
File type PNG image data, 200 x 20, 8-bit colormap, non-interlaced\012- data
Hash eedc2b9c40fed745694f8567d1b3454e
4641fddd05147f712ec694296153f220046be0d9
53fee491faf785ed9724c3ededde3f900ae864ed5bf98a687871811647433ae3
Analyzer Verdict Alert fortinet Malware
GET /files/theme/logo-wrap-bg-repeat.png?1675237663 HTTP/1.1
Host: www.cafe-brabant.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.cafe-brabant.nl/files/main_style.css?1675237663
Cookie: is_mobile=0; language=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 19 Feb 2023 13:04:28 GMT
Content-Type: image/png; charset=binary
Content-Length: 2457
Connection: keep-alive
Last-Modified: Sun, 10 May 2020 14:11:10 GMT
x-rgw-object-type: Normal
ETag: "eedc2b9c40fed745694f8567d1b3454e"
x-amz-request-id: tx000000000000024b23bda-0062fb97ca-bfe27ea-sfo1
X-Storage-Bucket: z53fe
X-Storage-Object: 53fee491faf785ed9724c3ededde3f900ae864ed5bf98a687871811647433ae3
X-Host: blu61.sf2p.intern.weebly.net
Accept-Ranges: bytes
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Faef70c3e-4b67-4d2b-af6b-006893df8126.jpeg
34.120.237.76200 OK 8.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Faef70c3e-4b67-4d2b-af6b-006893df8126.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 766ccbe82a51d13658a0deb97b5c0ec0
435ab39e34a7359a9ed434c864d407fb33a3a6ef
4cab8d3bf8475812f4f7d499aed985bf8451a684a68a8e9407aeaa9a6696e931
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Faef70c3e-4b67-4d2b-af6b-006893df8126.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8030
x-amzn-requestid: 9102300b-a9dc-4217-a6a1-e466fd6afa0b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: AjfeXE8kIAMFy2g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63f145f5-4f768c4e77de2cc060c4976d;Sampled=0
x-amzn-remapped-date: Sat, 18 Feb 2023 21:41:09 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: gASPf2OPdkLwHYYY1Hdbq2cn1JxFJyihEJPa0rXmzDU-h6EXI3KX3Q==
via: 1.1 5a1753718d8b33365e5f693dd338c510.cloudfront.net (CloudFront), 1.1 ee8246c5442dace7525c74f6a799bb46.cloudfront.net (CloudFront), 1.1 google
date: Sat, 18 Feb 2023 21:54:28 GMT
age: 54600
etag: "435ab39e34a7359a9ed434c864d407fb33a3a6ef"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
www.cafe-brabant.nl/files/theme/container-shadow.png?1675237663
199.34.228.72200 OK 187 B URL HTTP/1.1 www.cafe-brabant.nl/files/theme/container-shadow.png?1675237663
IP 199.34.228.72:0
File type PNG image data, 972 x 1, 8-bit/color RGBA, non-interlaced\012- data
Hash e054ed124133c94e0304f7a3e7090eb7
99e51596d9c7a8850993965a4245a9bdc187a96d
18b55f3e1e633b397d684456ba062e2c5594455fda31d5266e0dac36be9701ff
Analyzer Verdict Alert fortinet Malware
GET /files/theme/container-shadow.png?1675237663 HTTP/1.1
Host: www.cafe-brabant.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.cafe-brabant.nl/files/main_style.css?1675237663
Cookie: is_mobile=0; language=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 19 Feb 2023 13:04:28 GMT
Content-Type: image/png; charset=binary
Content-Length: 187
Connection: keep-alive
Last-Modified: Tue, 28 Apr 2020 13:39:26 GMT
ETag: "e054ed124133c94e0304f7a3e7090eb7"
x-amz-request-id: tx0000000000000015a4a36-0061650592-1ff9432-las
X-Storage-Bucket: z18b5
X-Storage-Object: 18b55f3e1e633b397d684456ba062e2c5594455fda31d5266e0dac36be9701ff
X-Host: grn46.sf2p.intern.weebly.net
Accept-Ranges: bytes
www.cafe-brabant.nl/files/theme/social-red.png?1675237663
199.34.228.72200 OK 8.0 kB URL HTTP/1.1 www.cafe-brabant.nl/files/theme/social-red.png?1675237663
IP 199.34.228.72:0
File type PNG image data, 220 x 60, 8-bit/color RGBA, non-interlaced\012- data
Hash 73ccd560138976db05bc6e7565137781
c9b0cee30873aee0dd699312acb8f42cca905f82
4f0f9350ca51539418994fd607e3c102460c2dbe10bba119eb39816bc9c5b6d8
Analyzer Verdict Alert fortinet Malware
GET /files/theme/social-red.png?1675237663 HTTP/1.1
Host: www.cafe-brabant.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.cafe-brabant.nl/files/main_style.css?1675237663
Cookie: is_mobile=0; language=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 19 Feb 2023 13:04:28 GMT
Content-Type: image/png; charset=binary
Content-Length: 7997
Connection: keep-alive
Last-Modified: Sun, 10 May 2020 14:11:00 GMT
x-rgw-object-type: Normal
ETag: "73ccd560138976db05bc6e7565137781"
x-amz-request-id: tx000000000000040f64785-00638d0e62-c696eea-sfo1
X-Storage-Bucket: z4f0f
X-Storage-Object: 4f0f9350ca51539418994fd607e3c102460c2dbe10bba119eb39816bc9c5b6d8
X-Host: blu148.sf2p.intern.weebly.net
Accept-Ranges: bytes
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F881c24a9-07ee-4126-b2c3-501b0461ee5e.webp
34.120.237.76200 OK 6.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F881c24a9-07ee-4126-b2c3-501b0461ee5e.webp
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 9c5a0bab7d34e51ee6476be179b356ba
87917d3cf520d73b7b1029f44505e7700413d51d
136e727a99409218318247b645558fad485ed84bcd90bd43a5895492cb317d89
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F881c24a9-07ee-4126-b2c3-501b0461ee5e.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6879
x-amzn-requestid: 18c46562-f8d9-4f7f-8ea0-1bb46e206f80
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ANnahEWgIAMFwYg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63e885dc-50a7cfe4693b4efb038ce1a7;Sampled=0
x-amzn-remapped-date: Sun, 12 Feb 2023 06:23:24 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: qwK1XWOYMXy8qna9sVCV7q__QKMko9KXa8towbYhIj1EolPbqEuIHQ==
via: 1.1 28a7186077f9b5270d98dd053f31303e.cloudfront.net (CloudFront), 1.1 98aedae6661e3904540676966998ed88.cloudfront.net (CloudFront), 1.1 google
date: Sun, 19 Feb 2023 11:24:35 GMT
age: 5993
etag: "87917d3cf520d73b7b1029f44505e7700413d51d"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
www.cafe-brabant.nl/files/theme/no-header-bg-red.jpg?1675237663
199.34.228.72200 OK 1.6 kB URL HTTP/1.1 www.cafe-brabant.nl/files/theme/no-header-bg-red.jpg?1675237663
IP 199.34.228.72:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 126x127, components 3\012- data
Hash 5609084844fa456c90b1711365b6d6d4
6c22b7b69d61bd71e9404572ff73f3e55e64cad7
86bdab6488df466d1563846a6c23a114b3cd90e5965d3d48eb06b0d605f8d1d1
Analyzer Verdict Alert fortinet Malware
GET /files/theme/no-header-bg-red.jpg?1675237663 HTTP/1.1
Host: www.cafe-brabant.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.cafe-brabant.nl/files/main_style.css?1675237663
Cookie: is_mobile=0; language=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 19 Feb 2023 13:04:28 GMT
Content-Type: image/jpeg; charset=binary
Content-Length: 1581
Connection: keep-alive
Last-Modified: Sun, 10 May 2020 14:11:07 GMT
x-rgw-object-type: Normal
ETag: "5609084844fa456c90b1711365b6d6d4"
x-amz-request-id: tx0000000000000383de801-00637d3c72-c695612-sfo1
X-Storage-Bucket: z86bd
X-Storage-Object: 86bdab6488df466d1563846a6c23a114b3cd90e5965d3d48eb06b0d605f8d1d1
X-Host: blu41.sf2p.intern.weebly.net
Accept-Ranges: bytes
www.cafe-brabant.nl/files/theme/tent-red.png?1675237663
199.34.228.72200 OK 12 kB URL HTTP/1.1 www.cafe-brabant.nl/files/theme/tent-red.png?1675237663
IP 199.34.228.72:0
File type PNG image data, 994 x 30, 8-bit/color RGBA, non-interlaced\012- data
Hash 9f75a3d6f7fce90d86ab4595057cd089
23808ad616d8103483f4aba2580b4454eb3059e1
1cf6523c039f3f1101aef78997bc6305fba22e53fb2ee265f3b9a47614246e7a
GET /files/theme/tent-red.png?1675237663 HTTP/1.1
Host: www.cafe-brabant.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.cafe-brabant.nl/files/main_style.css?1675237663
Cookie: is_mobile=0; language=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 19 Feb 2023 13:04:28 GMT
Content-Type: image/png; charset=binary
Content-Length: 12269
Connection: keep-alive
Last-Modified: Thu, 08 Apr 2021 17:09:55 GMT
x-rgw-object-type: Normal
ETag: "9f75a3d6f7fce90d86ab4595057cd089"
x-amz-request-id: tx00000000000001d37a9ea-006351dffa-c67eadd-sfo1
X-Storage-Bucket: z1cf6
X-Storage-Object: 1cf6523c039f3f1101aef78997bc6305fba22e53fb2ee265f3b9a47614246e7a
X-Host: grn137.sf2p.intern.weebly.net
Accept-Ranges: bytes
www.cafe-brabant.nl/files/theme/tent-rope-left.png?1675237663
199.34.228.72200 OK 599 B URL HTTP/1.1 www.cafe-brabant.nl/files/theme/tent-rope-left.png?1675237663
IP 199.34.228.72:0
File type PNG image data, 23 x 124, 8-bit/color RGBA, non-interlaced\012- data
Hash 6bd8ef65628372cbe7890763e1a441ad
3a0fb6521fb32bbed3f568cb041ebec3986b3526
5c589885a3d80c9ddc441cb2c4e3731bee295a39142cdca3718991998013963c
GET /files/theme/tent-rope-left.png?1675237663 HTTP/1.1
Host: www.cafe-brabant.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.cafe-brabant.nl/files/main_style.css?1675237663
Cookie: is_mobile=0; language=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 19 Feb 2023 13:04:28 GMT
Content-Type: image/png; charset=binary
Content-Length: 599
Connection: keep-alive
Last-Modified: Sun, 10 May 2020 14:11:09 GMT
ETag: "6bd8ef65628372cbe7890763e1a441ad"
x-amz-request-id: tx0000000000001e8d4ad75-0060fdf701-131dd7c-las
X-Storage-Bucket: z5c58
X-Storage-Object: 5c589885a3d80c9ddc441cb2c4e3731bee295a39142cdca3718991998013963c
X-Host: grn39.sf2p.intern.weebly.net
Accept-Ranges: bytes
ec.editmysite.com/com.snowplowanalytics.snowplow/tp2
54.188.178.80200 OK 0 B URL HTTP/2 ec.editmysite.com/com.snowplowanalytics.snowplow/tp2
IP 54.188.178.80:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /com.snowplowanalytics.snowplow/tp2 HTTP/1.1
Host: ec.editmysite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://www.cafe-brabant.nl/
Origin: https://www.cafe-brabant.nl
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 19 Feb 2023 13:04:28 GMT
content-length: 0
server: nginx
access-control-allow-origin: https://www.cafe-brabant.nl
access-control-allow-credentials: true
access-control-allow-headers: Content-Type, SP-Anonymous
access-control-max-age: 600
X-Firefox-Spdy: h2
www.cafe-brabant.nl/files/theme/tent-rope-right.png?1675237663
199.34.228.72200 OK 572 B URL HTTP/1.1 www.cafe-brabant.nl/files/theme/tent-rope-right.png?1675237663
IP 199.34.228.72:0
File type PNG image data, 23 x 124, 8-bit/color RGBA, non-interlaced\012- data
Hash 974668caaefafcda0a9cde5b79cedf2b
fbc6506a0047bd7dba1b42adde8a6e73b29bc797
4c488643067244fe0fcb2cbb0854c0c089294f90ccc7f6a58c22d8ba2d9b602f
Analyzer Verdict Alert fortinet Malware
GET /files/theme/tent-rope-right.png?1675237663 HTTP/1.1
Host: www.cafe-brabant.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.cafe-brabant.nl/files/main_style.css?1675237663
Cookie: is_mobile=0; language=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 19 Feb 2023 13:04:28 GMT
Content-Type: image/png; charset=binary
Content-Length: 572
Connection: keep-alive
Last-Modified: Sun, 10 May 2020 14:11:08 GMT
ETag: "974668caaefafcda0a9cde5b79cedf2b"
x-amz-request-id: tx0000000000001e8d9a694-0060fdfc1b-131dd7c-las
X-Storage-Bucket: z4c48
X-Storage-Object: 4c488643067244fe0fcb2cbb0854c0c089294f90ccc7f6a58c22d8ba2d9b602f
X-Host: grn39.sf2p.intern.weebly.net
Accept-Ranges: bytes
www.cafe-brabant.nl/files/theme/copyright-bg-red.jpg?1675237663
199.34.228.72200 OK 1.3 kB URL HTTP/1.1 www.cafe-brabant.nl/files/theme/copyright-bg-red.jpg?1675237663
IP 199.34.228.72:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1x39, components 3\012- data
Hash f20cdd54e5ae004f86eef9b24a26aeb6
269b861f943045b6493df38c9d8d15da1b99ecab
032bd43bf4fa3cdc0353f2045e9ce3e814fd89b06db8595b33dc822a15851d38
Analyzer Verdict Alert fortinet Malware
GET /files/theme/copyright-bg-red.jpg?1675237663 HTTP/1.1
Host: www.cafe-brabant.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.cafe-brabant.nl/files/main_style.css?1675237663
Cookie: is_mobile=0; language=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 19 Feb 2023 13:04:28 GMT
Content-Type: image/jpeg; charset=binary
Content-Length: 1287
Connection: keep-alive
Last-Modified: Tue, 28 Apr 2020 13:39:26 GMT
x-rgw-object-type: Normal
ETag: "f20cdd54e5ae004f86eef9b24a26aeb6"
x-amz-request-id: tx000000000000047323218-00621d0f2f-a9f3e81-sfo1
X-Storage-Bucket: z032b
X-Storage-Object: 032bd43bf4fa3cdc0353f2045e9ce3e814fd89b06db8595b33dc822a15851d38
X-Host: grn63.sf2p.intern.weebly.net
Accept-Ranges: bytes
www.cafe-brabant.nl/files/theme/body-bg.png?1675237663
199.34.228.72200 OK 24 kB URL HTTP/1.1 www.cafe-brabant.nl/files/theme/body-bg.png?1675237663
IP 199.34.228.72:0
File type PNG image data, 220 x 221, 8-bit colormap, non-interlaced\012- data
Hash 3e08c96362e22f35a2e125995a6a7158
3589bc05c76f4fbfbe6285914abea7c02a579056
8234f69afb48a5cd6a62c90c8c60844dd4932ff796cc2ab5fae4e05202c81111
Analyzer Verdict Alert fortinet Malware
GET /files/theme/body-bg.png?1675237663 HTTP/1.1
Host: www.cafe-brabant.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.cafe-brabant.nl/files/main_style.css?1675237663
Cookie: is_mobile=0; language=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 19 Feb 2023 13:04:28 GMT
Content-Type: image/png; charset=binary
Content-Length: 24066
Connection: keep-alive
Last-Modified: Tue, 28 Apr 2020 13:39:26 GMT
x-rgw-object-type: Normal
ETag: "3e08c96362e22f35a2e125995a6a7158"
x-amz-request-id: tx00000000000004402e742-00639175ec-c695612-sfo1
X-Storage-Bucket: z8234
X-Storage-Object: 8234f69afb48a5cd6a62c90c8c60844dd4932ff796cc2ab5fae4e05202c81111
X-Host: blu148.sf2p.intern.weebly.net
Accept-Ranges: bytes
ec.editmysite.com/com.snowplowanalytics.snowplow/tp2
54.188.178.80200 OK 2 B URL HTTP/2 ec.editmysite.com/com.snowplowanalytics.snowplow/tp2
IP 54.188.178.80:0
File type ASCII text, with no line terminators
Hash 444bcb3a3fcf8389296c49467f27e1d6
7a85f4764bbd6daf1c3545efbbf0f279a6dc0beb
2689367b205c16ce32ed4200942b8b8b1e262dfc70d9bc9fbc77c49699a4f1df
POST /com.snowplowanalytics.snowplow/tp2 HTTP/1.1
Host: ec.editmysite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json; charset=UTF-8
Content-Length: 1788
Origin: https://www.cafe-brabant.nl
Connection: keep-alive
Referer: https://www.cafe-brabant.nl/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 19 Feb 2023 13:04:28 GMT
content-type: text/plain; charset=UTF-8
content-length: 2
server: nginx
set-cookie: sp=81ed6f50-4465-41e7-8e73-609258a948d2; Expires=Mon, 19 Feb 2024 13:04:28 GMT; Domain=; Path=/; Secure; SameSite=None
p3p: policyref="/w3c/p3p.xml", CP="NOI DSP COR NID PSA OUR IND COM NAV STA"
access-control-allow-origin: https://www.cafe-brabant.nl
access-control-allow-credentials: true
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 89ada653d874516e9816514333647155
08c6990ccc23034b3b1b1fb43efef5e3f6d87f13
da7056200146f28305782f1f647c66eeedfcac74785d90ff86b2386bba369ef9
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 19 Feb 2023 13:04:28 GMT
Etag: "63f12fc7-1d7"
Server: ECS (amb/6BAC)
Content-Length: 471
www.cafe-brabant.nl/files/theme/nav-bg-h-red.png?1675237663
199.34.228.72200 OK 57 kB URL HTTP/1.1 www.cafe-brabant.nl/files/theme/nav-bg-h-red.png?1675237663
IP 199.34.228.72:0
File type PNG image data, 943 x 81, 8-bit/color RGBA, non-interlaced\012- data
Hash d725a2f61ab80580924f7b1ad04d3800
26dbc130ec4a59d98806778139db2f4fe174df96
8d6a2dbc62c2ef2921a6b8139439d562f3e9db7bd8565affd9556e6178e6ab9b
Analyzer Verdict Alert fortinet Malware
GET /files/theme/nav-bg-h-red.png?1675237663 HTTP/1.1
Host: www.cafe-brabant.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.cafe-brabant.nl/files/main_style.css?1675237663
Cookie: is_mobile=0; language=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 19 Feb 2023 13:04:28 GMT
Content-Type: image/png; charset=binary
Content-Length: 56807
Connection: keep-alive
Last-Modified: Sun, 10 May 2020 14:11:06 GMT
x-rgw-object-type: Normal
ETag: "d725a2f61ab80580924f7b1ad04d3800"
x-amz-request-id: tx00000000000003588f6e0-00631527e1-c033918-sfo1
X-Storage-Bucket: z8d6a
X-Storage-Object: 8d6a2dbc62c2ef2921a6b8139439d562f3e9db7bd8565affd9556e6178e6ab9b
X-Host: grn46.sf2p.intern.weebly.net
Accept-Ranges: bytes
www.cafe-brabant.nl/files/theme/footer-bg-red.jpg?1675237663
199.34.228.72200 OK 89 kB URL HTTP/1.1 www.cafe-brabant.nl/files/theme/footer-bg-red.jpg?1675237663
IP 199.34.228.72:0
File type PNG image data, 256 x 334, 8-bit/color RGB, non-interlaced\012- data
Hash 3d37e5df95ffd0814afc37609bc14acd
7d593b4fca4ba1c99c914f19ab49063768f2a035
eac1173d8912e8c41f93ac97eae62959e9303760424e99e20dec63e35e260e4c
Analyzer Verdict Alert fortinet Malware
GET /files/theme/footer-bg-red.jpg?1675237663 HTTP/1.1
Host: www.cafe-brabant.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.cafe-brabant.nl/files/main_style.css?1675237663
Cookie: is_mobile=0; language=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 19 Feb 2023 13:04:28 GMT
Content-Type: image/png; charset=binary
Content-Length: 89099
Connection: keep-alive
Last-Modified: Tue, 28 Apr 2020 13:39:26 GMT
x-rgw-object-type: Normal
ETag: "3d37e5df95ffd0814afc37609bc14acd"
x-amz-request-id: tx000000000000001d5271c-0061a7e827-a9f1ce7-sfo1
X-Storage-Bucket: zeac1
X-Storage-Object: eac1173d8912e8c41f93ac97eae62959e9303760424e99e20dec63e35e260e4c
X-Host: blu41.sf2p.intern.weebly.net
Accept-Ranges: bytes
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash a6e5d93e6ff78ff0040d571937410c78
ec1b36fe7fb5f6cc3b41d50bcddc3199dbac8969
f14addd83ab95ac7ad8b7340db9c82f4bc03f5fa9781ec9923485f17dbb101ed
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 19 Feb 2023 13:04:28 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ssl.google-analytics.com/ga.js
142.250.74.40200 OK 17 kB URL HTTP/2 ssl.google-analytics.com/ga.js
IP 142.250.74.40:0
File type ASCII text, with very long lines (1305)
Hash 01d5892e6e243b52998310c2925b9f3a
58180151b6a6ee4af73583a214b68efb9e8844d4
7e90efb4620a78e8869796d256bcddbde90b853c8c15c5cc116cb11d3d17bc4d
GET /ga.js HTTP/1.1
Host: ssl.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.cafe-brabant.nl/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 17168
date: Sun, 19 Feb 2023 12:41:40 GMT
expires: Sun, 19 Feb 2023 14:41:40 GMT
cache-control: public, max-age=7200
age: 1368
last-modified: Tue, 10 Jan 2023 21:29:14 GMT
content-type: text/javascript
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.editmysite.com/ajax/apps/generateMap.php?map=google&elementid=481461660742684216&ineditor=0&control=3&width=auto&height=250px&overviewmap=0&scalecontrol=0&typecontrol=0&zoom=15&long=5.1775672&lat=52.232404&domain=www&point=1&align=1&reseller=false
74.115.50.67200 OK 12 kB URL HTTP/1.1 www.editmysite.com/ajax/apps/generateMap.php?map=google&elementid=481461660742684216&ineditor=0&control=3&width=auto&height=250px&overviewmap=0&scalecontrol=0&typecontrol=0&zoom=15&long=5.1775672&lat=52.232404&domain=www&point=1&align=1&reseller=false
IP 74.115.50.67:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (827)
Hash 796aa26ff6724890540e62ad54fe2832
f0c639d98c93b4943c92dbff68fc567a6deb93b6
760f05ba66f7d96a5e3b21bdb4d843b9ba2d382e6078655ba1016137eb511ed8
GET /ajax/apps/generateMap.php?map=google&elementid=481461660742684216&ineditor=0&control=3&width=auto&height=250px&overviewmap=0&scalecontrol=0&typecontrol=0&zoom=15&long=5.1775672&lat=52.232404&domain=www&point=1&align=1&reseller=false HTTP/1.1
Host: www.editmysite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.cafe-brabant.nl/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sun, 19 Feb 2023 13:04:28 GMT
Server: Apache
X-Host: grn122.sf2p.intern.weebly.net
X-UA-Compatible: IE=edge,chrome=1
Content-Length: 11554
Keep-Alive: timeout=10, max=75
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
X-W-DC: SFO
Set-Cookie: sto-id-designer=MCFNBMAK; Domain=editmysite.com; Path=/
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash a6e5d93e6ff78ff0040d571937410c78
ec1b36fe7fb5f6cc3b41d50bcddc3199dbac8969
f14addd83ab95ac7ad8b7340db9c82f4bc03f5fa9781ec9923485f17dbb101ed
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 19 Feb 2023 13:04:28 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash b53bc403e0ab0570909b47c9976c4bc3
ac75251663f22d11671b8089f0b1d8d868844764
bd84b9ecba7b9a74d49c6d7a56df5e8a5d813bbd8dac93714d5b68f2de2181af
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 19 Feb 2023 13:04:28 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.cafe-brabant.nl/favicon.ico
199.34.228.72200 OK 4.3 kB URL HTTP/1.1 www.cafe-brabant.nl/favicon.ico
IP 199.34.228.72:0
File type MS Windows icon resource - 1 icon, 32x32, 32 bits/pixel\012- data
Hash 4d27526198ac873ccec96935198e0fb9
b98d8b73ad6a0f7477c3397561b4aab37bf262aa
40a2146151863bcf46c786d596e81a308d1b0d26d74635be441e92656f29b1b4
GET /favicon.ico HTTP/1.1
Host: www.cafe-brabant.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.cafe-brabant.nl/
Cookie: is_mobile=0; language=en; _snow_ses.bc97=*; _snow_id.bc97=a0808e4b-f62d-4ce5-8877-6aa286d0985e.1676811868.1.1676811868.1676811868.118d98d5-1201-44f5-aa64-55b714f1f2cd
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 19 Feb 2023 13:04:28 GMT
Content-Type: image/x-icon
Content-Length: 4286
Connection: keep-alive
Last-Modified: Fri, 24 Sep 2021 21:48:12 GMT
x-rgw-object-type: Normal
ETag: "4d27526198ac873ccec96935198e0fb9"
x-amz-request-id: tx000000000000001b53b91-00628478b7-b9fbc29-sfo1
X-Storage-Bucket: z40a2
X-Storage-Object: 40a2146151863bcf46c786d596e81a308d1b0d26d74635be441e92656f29b1b4
X-Host: grn24.sf2p.intern.weebly.net
Accept-Ranges: bytes
maps.googleapis.com/maps/api/js?v=3&client=gme-weeblyinc1
142.250.74.74200 OK 53 kB URL HTTP/2 maps.googleapis.com/maps/api/js?v=3&client=gme-weeblyinc1
IP 142.250.74.74:0
File type ASCII text, with very long lines (2462)
Hash 384cfd719e6907c09681359a46149c35
a15a063f9e0224d27c2190c38ec0f393c714291e
7f52f61869c5fecbdbada6ea6a32a3a184dfc87dd9daed79a14781ff7bc38c0a
GET /maps/api/js?v=3&client=gme-weeblyinc1 HTTP/1.1
Host: maps.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.editmysite.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/javascript; charset=UTF-8
date: Sun, 19 Feb 2023 13:04:28 GMT
expires: Sun, 19 Feb 2023 13:34:28 GMT
cache-control: public, max-age=1800
vary: Accept-Language
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
content-encoding: gzip
server: mafe
content-length: 53197
x-xss-protection: 0
x-frame-options: SAMEORIGIN
server-timing: gfet4t7; dur=22
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash b53bc403e0ab0570909b47c9976c4bc3
ac75251663f22d11671b8089f0b1d8d868844764
bd84b9ecba7b9a74d49c6d7a56df5e8a5d813bbd8dac93714d5b68f2de2181af
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 19 Feb 2023 13:04:28 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 9d05d51b48728fdcd100d5ad8ce645e7
da63db3fe51d74b7776cd6ce770c6937cbede853
3c77d0fc549913b4a1606ae27a05c67fecceb6ed0ce49be12a6c5a692d5a8e4d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 19 Feb 2023 13:04:29 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
maps.gstatic.com/mapfiles/transparent.png
142.250.74.3200 OK 68 B URL HTTP/2 maps.gstatic.com/mapfiles/transparent.png
IP 142.250.74.3:0
File type PNG image data, 1 x 1, 8-bit gray+alpha, non-interlaced\012- data
Hash 8327a6037ae00a5be9f75e63ee1b9fbe
a812c79b0d125e4946b33446eae0353f518627e2
fe67e12a6497f8518ef1673fd8cf5622871935ff85f204715e78b2009dd48588
GET /mapfiles/transparent.png HTTP/1.1
Host: maps.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.editmysite.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
content-type: image/png
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/geo-tactile
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="geo-tactile"
report-to: {"group":"geo-tactile","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/geo-tactile"}]}
content-length: 68
date: Sun, 19 Feb 2023 13:04:29 GMT
expires: Sun, 19 Feb 2023 13:04:29 GMT
cache-control: private, max-age=31536000
last-modified: Tue, 18 May 2021 19:15:00 GMT
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 9d05d51b48728fdcd100d5ad8ce645e7
da63db3fe51d74b7776cd6ce770c6937cbede853
3c77d0fc549913b4a1606ae27a05c67fecceb6ed0ce49be12a6c5a692d5a8e4d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 19 Feb 2023 13:04:29 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
216.58.207.227200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Hash 15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.editmysite.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 15 Feb 2023 13:15:37 GMT
expires: Thu, 15 Feb 2024 13:15:37 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
age: 344932
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn2.editmysite.com/images/site/footer/footer-toast-published-image-1.png
151.101.129.46200 OK 0 B URL HTTP/2 cdn2.editmysite.com/images/site/footer/footer-toast-published-image-1.png
IP 151.101.129.46:0
GET /images/site/footer/footer-toast-published-image-1.png HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.cafe-brabant.nl/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycdujQNpHaXULXK5hWOudOsrFbrCOJBmkXkf6lNHnzHxB1q3PphW4yFVZQbxms7rfGEwEu0IdDaAyLbpAPqDN6NvCrqCgiKDD
cache-control: public, max-age=86400, s-maxage=259200
expires: Thu, 06 Oct 2022 22:59:09 GMT
last-modified: Tue, 12 Feb 2019 18:19:08 GMT
etag: "6e0f7ad31bf187e0d88fc5787573ba71"
x-goog-generation: 1549995548326466
x-goog-metageneration: 3
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 9677
content-type: image/png
x-goog-hash: crc32c=QhrKCw==, md5=bg960xvxh+DYj8V4dXO6cQ==
x-goog-storage-class: STANDARD
server: UploadServer
accept-ranges: bytes
date: Sun, 19 Feb 2023 13:04:27 GMT
via: 1.1 varnish
age: 50218
x-served-by: cache-bma1637-BMA
x-cache: HIT
x-cache-hits: 137
x-timer: S1676811867.142344,VS0,VE0
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 9677
X-Firefox-Spdy: h2