Report - www.pofolks.net/menu-dinner.aspx

Report Overview

Visited public
2025-04-30 23:53:38
Tags
URL
www.pofolks.net/menu-dinner.aspx
Finishing URL
www.pofolks.net/menu-lunch.aspx
IP / ASN
67.225.202.230
#32244 LIQUIDWEB
Title
Homestyle, Appetizers, Dessert, Dinner - Po Folks - Panama City, Callaway, Lynn Haven, Niceville, St. Petersburg, Marianna, Enterprise, Pensacola

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
www.pofolks.net	unknown	2014-10-03	2025-04-30	2025-04-30	9.4 kB	797 kB	67.225.202.230
islonline.org	unknown	2001-09-16	2013-11-22	2025-04-26	406 B	3.1 kB	23.23.49.179
wavob.top	unknown	2025-04-27	2025-04-28	2025-04-28	828 B	3.4 kB	193.111.208.48

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Timestamp	Severity	Source IP	Destination IP	Alert
2025-04-30 23:53:16	high	Client IP	23.23.49.179	ET EXPLOIT_KIT ZPHP Domain in TLS SNI (islonline .org)

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2025-04-30	medium	islonline.org	Sinkholed
2025-04-30	medium	wavob.top	Sinkholed
2025-04-30	medium	wavob.top	Sinkholed

ThreatFox

Scan Date	Severity	Indicator	Alert
2025-04-29	medium	wavob.top/ifh/min.js	FAKEUPDATES

JavaScript (15)

	URL	From	Size	First Seen	Last Seen
	www.pofolks.net/menu-dinner.aspx	ScriptElement	259 B	2025-04-30	2025-04-30
Pretty URL www.pofolks.net/menu-dinner.aspx IP 67.225.202.230 ASN #32244 LIQUIDWEB Introduced by scriptElement Embedded in HTML true Observations First Seen2025-04-30 23:53 Last Seen2025-04-30 23:53 Times Seen1 Hash ae90916c5ed8de2cb1c7865941c8a0fa 36009bc89ee3b388cc1aa29f3167b2c741ed113d 84ec3f7ed1c2b72bd6596bec5dc68e6d9eeec9a52cec721b9ba0039b2ca8b940 Loading...

	www.pofolks.net/menu-dinner.aspx	EventHandler	11 B	2025-04-30	2025-04-30
Pretty URL www.pofolks.net/menu-dinner.aspx IP 67.225.202.230 ASN #32244 LIQUIDWEB Introduced by eventHandler Embedded in HTML false Observations First Seen2025-04-30 23:53 Last Seen2025-04-30 23:53 Times Seen1 Hash 2473902f94338b1f78c6439f29f5b566 bfe4e4b77a4fe1c8d4cd79e67303480eb659201b b56e14433bd23e05413b27f53157530bf78f576bdff9381f11d19aa257a7d103 Loading...

	www.pofolks.net/menu-dinner.aspx	EventHandler	42 B	2025-04-30	2025-04-30
Pretty URL www.pofolks.net/menu-dinner.aspx IP 67.225.202.230 ASN #32244 LIQUIDWEB Introduced by eventHandler Embedded in HTML false Observations First Seen2025-04-30 23:53 Last Seen2025-04-30 23:53 Times Seen1 Hash fa39ae2a66a782832f6d0b98d5b726cc 32dc565943ae1d27066f6662f631a7a6d3cc9c92 6618a0fd1adb438384707dbb55268feed6defcf05ab9580e7850f7ecd019d0e6 Loading...

	www.pofolks.net/menu-dinner.aspx	ScriptElement	1.1 kB	2023-08-07	2025-04-30
Pretty URL www.pofolks.net/menu-dinner.aspx IP 67.225.202.230 ASN #32244 LIQUIDWEB Introduced by scriptElement Embedded in HTML true Observations First Seen2023-08-07 06:41 Last Seen2025-04-30 23:53 Times Seen4 Hash 94595341008aa5027f623fe380933425 57c8478c6d53b7cc081b63e3b1c2ba6001d60a25 8f947225ee98dae7da874ac619a52eebb73370757f4be1c3ae7cefbeeb3a5f4e Loading...

	www.pofolks.net/menu-dinner.aspx	EventHandler	12 B	2025-04-30	2025-04-30
Pretty URL www.pofolks.net/menu-dinner.aspx IP 67.225.202.230 ASN #32244 LIQUIDWEB Introduced by eventHandler Embedded in HTML false Observations First Seen2025-04-30 23:53 Last Seen2025-04-30 23:53 Times Seen1 Hash b4bcfbca51f7828488f543887f533826 cb1dfd7e46c52c7ff10644e537dd28cbef33a4a5 a7811a9bd490b71d0c1ca3e9fb2f9299f2ef17f4f30bca19843a49fd8dba936c Loading...

	www.pofolks.net/menu-dinner.aspx	EventHandler	11 B	2025-04-30	2025-04-30
Pretty URL www.pofolks.net/menu-dinner.aspx IP 67.225.202.230 ASN #32244 LIQUIDWEB Introduced by eventHandler Embedded in HTML false Observations First Seen2025-04-30 23:53 Last Seen2025-04-30 23:53 Times Seen1 Hash fb013fcb0987316bc57d815261dbdb60 87d047559be3b39257a4aae027810a4e624323d3 26e98b1d63f0438185cae8aff61e1f9c7a0996a6108ac480d3c70d636b68088e Loading...

	www.google-analytics.com/analytics.js	ScriptElement	4.7 kB	2023-04-11	2025-05-16
Pretty URL www.google-analytics.com/analytics.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-11 21:07 Last Seen2025-05-16 03:57 Times Seen342376 Hash f24128d0c9cba7be2916c693427a3483 1b6397d496ea896ebc2018b01b995cee4f166029 58173de4697da1a218f04c3a783a733bab4e769ceabc37cd42da9dc3e036a7e8 Loading...

	www.pofolks.net/menu-dinner.aspx	EventHandler	12 B	2025-04-30	2025-04-30
Pretty URL www.pofolks.net/menu-dinner.aspx IP 67.225.202.230 ASN #32244 LIQUIDWEB Introduced by eventHandler Embedded in HTML false Observations First Seen2025-04-30 23:53 Last Seen2025-04-30 23:53 Times Seen1 Hash 088d536f0bb64418001a8e2d820bf72a 4a860acd4b0b8dc91f79d0bdf46c6fcee02de408 6ab1806442141593f404fd76793b96d6aa54164ac75631f72e5a8e95920e8780 Loading...

	www.pofolks.net/menu-lunch.aspx	ScriptElement	258 B	2025-04-30	2025-04-30
Pretty URL www.pofolks.net/menu-lunch.aspx IP 67.225.202.230 ASN #32244 LIQUIDWEB Introduced by scriptElement Embedded in HTML true Observations First Seen2025-04-30 23:53 Last Seen2025-04-30 23:53 Times Seen1 Hash c5ed9a32600982d3ab7b65c74aec429e 8672683568bc00617cb3913fa308ca704f7fb6b7 b0608a9a9b00bb9b33f9318c4b709ad33ccce29586c9fdf5dd87077f13315a4c Loading...

	www.pofolks.net/sandbox%20eval%20code		147 B	2023-04-11	2025-05-16
Pretty URL www.pofolks.net/sandbox%20eval%20code IP 0.0.0.0 ASN #0 Introduced by Embedded in HTML false Observations First Seen2023-04-11 21:07 Last Seen2025-05-16 03:57 Times Seen343193 Hash 92b651082ce234f66bb544e678befda3 14c21c55ddce43b6f677caadf51d4ab98c6a3df8 25d57d1d97abeb84531d3d3e5754dd5cb19a2c115edfa7cfc7af8247084faded Loading...

	www.pofolks.net/menu-dinner.aspx	ScriptElement	391 B	2025-04-30	2025-04-30
Pretty URL www.pofolks.net/menu-dinner.aspx IP 67.225.202.230 ASN #32244 LIQUIDWEB Introduced by scriptElement Embedded in HTML true Observations First Seen2025-04-30 23:53 Last Seen2025-04-30 23:53 Times Seen1 Hash 05cf9bdfca900dcf69a50c243a37eb03 37945e20e4fb6f5930ea36610013e2a1553719c4 a17d8856da7806c7c8ad13d48672307efdbdbc82f17d4fd72e5c99372444a462 Loading...

	www.pofolks.net/menu-dinner.aspx	ScriptElement	775 B	2023-08-07	2025-04-30
Pretty URL www.pofolks.net/menu-dinner.aspx IP 67.225.202.230 ASN #32244 LIQUIDWEB Introduced by scriptElement Embedded in HTML true Observations First Seen2023-08-07 06:41 Last Seen2025-04-30 23:53 Times Seen2 Hash 1aa495d81b51616d3e4e6475d41630a5 509dbffaa705abd1ff3f2db6012fe19eb70199f7 178539a3f6ae0ad3e5af75ef6ba43057c7ce580d09f57c980c283435ca477b97 Loading...

	islonline.org/j.js	ScriptElement	2.8 kB	2025-04-30	2025-04-30
Pretty URL islonline.org/j.js IP 23.23.49.179 ASN #14618 AMAZON-AES Introduced by scriptElement Embedded in HTML false Observations First Seen2025-04-30 23:53 Last Seen2025-04-30 23:53 Times Seen1 Hash 85039863ce9fdd9684e82ac9e218cc28 c4bcf6d6d51a7cb53727f83db6c57fe9b70c5d5b a30a938fd038f1958f4cd66fc97d6178eb2432b8b835186be0a1a052ce192231 Loading...

	www.pofolks.net/menu-dinner.aspx	EventHandler	12 B	2025-04-30	2025-04-30
Pretty URL www.pofolks.net/menu-dinner.aspx IP 67.225.202.230 ASN #32244 LIQUIDWEB Introduced by eventHandler Embedded in HTML false Observations First Seen2025-04-30 23:53 Last Seen2025-04-30 23:53 Times Seen1 Hash c3ed07a22c0f5b67790ca2359d62c254 3ea9af4438075dab8b8379cf8c8f85531c629dcc e2a3076b98a9aba608b4c644734bde2b1248053ff762e5cf1ba0cc520a6c6c14 Loading...

	www.pofolks.net/menu-dinner.aspx	ScriptElement	153 B	2025-04-30	2025-04-30
Pretty URL www.pofolks.net/menu-dinner.aspx IP 67.225.202.230 ASN #32244 LIQUIDWEB Introduced by scriptElement Embedded in HTML true Observations First Seen2025-04-30 23:53 Last Seen2025-04-30 23:53 Times Seen1 Hash 3bc5ebd1cb7d1034441424951949098f 65473858c0b26c3a5b231f9a8fceaf1b87da48e2 e18207eace9a6035beb9a07e6d1d2bc7d8bbacfc2e83c0b32797eb8c7a99866e Loading...

HTTP Transactions (23)

URL IP Response Size

www.pofolks.net/menu-dinner.aspx

67.225.202.230

200 OK

62 kB

URL User Request GET
www.pofolks.net/menu-dinner.aspx
IP
67.225.202.230:443
ASN
#32244 LIQUIDWEB

Certificate
IssuerLet's Encrypt
Subjectpofolks.net
FingerprintBC:9B:64:C4:C6:07:74:1C:7E:2E:67:B3:C9:BD:EC:FF:5A:F5:D2:A9
ValiditySat, 08 Mar 2025 21:26:55 GMT - Fri, 06 Jun 2025 21:26:54 GMT

File type
HTML document, Unicode text, UTF-8 text, with very long lines (26336), with CRLF line terminators
Size
62 kB (62399 bytes)
Hash
524048e752b493d712d539e89fab3544
2e750352835f69581c5ea198cdc96e7d3178e805
a0be9c25809f3ba9e31c4d0b602f2b8e241e759da4e765e5c54cd7b1af7e0344

HTTP Headers

GET /menu-dinner.aspx HTTP/1.1
Host: www.pofolks.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
cache-control: private
content-type: text/html; charset=utf-8
content-encoding: br
vary: Accept-Encoding
server: Microsoft-IIS/10.0
x-aspnet-version: 4.0.30319
x-powered-by: ASP.NET
x-xss-protection: 1; mode=block
x-powered-by-plesk: PleskWin
date: Wed, 30 Apr 2025 23:53:15 GMT
content-length: 32687
X-Firefox-Spdy: h2

islonline.org/j.js

23.23.49.179

302 Found

2.8 kB

URL GET
islonline.org/j.js
IP
23.23.49.179:443
ASN
#14618 AMAZON-AES

Requested by
https://www.pofolks.net/menu-dinner.aspx
Certificate
IssuerLet's Encrypt
Subjectislonline.org
FingerprintA5:53:A7:45:0A:5A:00:E8:8E:E0:27:0A:2C:BB:6A:BE:C3:0A:82:AE
ValidityWed, 12 Mar 2025 00:38:41 GMT - Tue, 10 Jun 2025 00:38:40 GMT

File type

Size
2.8 kB (2789 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /j.js HTTP/1.1
Host: islonline.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.pofolks.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 302 Found
server: nginx
date: Wed, 30 Apr 2025 23:53:16 GMT
content-type: text/html; charset=UTF-8
location: https://wavob.top/ifh/min.js
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
x-redirect-by: WordPress
x-powered-by: PHP/7.0.33, PleskLin
X-Firefox-Spdy: h2

www.pofolks.net/Graphics/btn-more2.png

67.225.202.230

200 OK

572 B

URL GET
www.pofolks.net/Graphics/btn-more2.png
IP
67.225.202.230:443
ASN
#32244 LIQUIDWEB

Requested by
https://www.pofolks.net/menu-dinner.aspx
Certificate
IssuerLet's Encrypt
Subjectpofolks.net
FingerprintBC:9B:64:C4:C6:07:74:1C:7E:2E:67:B3:C9:BD:EC:FF:5A:F5:D2:A9
ValiditySat, 08 Mar 2025 21:26:55 GMT - Fri, 06 Jun 2025 21:26:54 GMT

File type
PNG image data, 126 x 37, 8-bit/color RGBA, non-interlaced
Size
572 B (572 bytes)
Hash
61ac9cf22c2dcffc5a50e7b126918c61
1234ef4374c2d27859edab3f22ad222e80957a53
7133cbd1fb50b98019f47a177fc920736a46ed205d6f6e58a24cbd4cb77ecfd4

HTTP Headers

GET /Graphics/btn-more2.png HTTP/1.1
Host: www.pofolks.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.pofolks.net/menu-dinner.aspx
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/png
last-modified: Tue, 02 Nov 2021 17:03:46 GMT
accept-ranges: bytes
etag: "9bc08999bd0d71:0"
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
x-xss-protection: 1; mode=block
x-powered-by-plesk: PleskWin
date: Wed, 30 Apr 2025 23:53:18 GMT
content-length: 572
X-Firefox-Spdy: h2

www.pofolks.net/uploads/Menu-02.jpg

67.225.202.230

200 OK

86 kB

URL GET
www.pofolks.net/uploads/Menu-02.jpg
IP
67.225.202.230:443
ASN
#32244 LIQUIDWEB

Requested by
https://www.pofolks.net/menu-dinner.aspx
Certificate
IssuerLet's Encrypt
Subjectpofolks.net
FingerprintBC:9B:64:C4:C6:07:74:1C:7E:2E:67:B3:C9:BD:EC:FF:5A:F5:D2:A9
ValiditySat, 08 Mar 2025 21:26:55 GMT - Fri, 06 Jun 2025 21:26:54 GMT

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 570x200, components 3
Size
86 kB (85957 bytes)
Hash
663572f4653c5eebdb7025918ef7b658
a03e1e7a72f636def166bb7c0207301114a247ba
b34b42b6a1e10cf8f66909ed9584c850e0b84f6d45ecd43becde6155baabf4a8

HTTP Headers

GET /uploads/Menu-02.jpg HTTP/1.1
Host: www.pofolks.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.pofolks.net/menu-dinner.aspx
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/jpeg
last-modified: Tue, 02 Nov 2021 17:03:48 GMT
accept-ranges: bytes
etag: "306f649abd0d71:0"
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
x-xss-protection: 1; mode=block
x-powered-by-plesk: PleskWin
date: Wed, 30 Apr 2025 23:53:15 GMT
content-length: 85957
X-Firefox-Spdy: h2

www.pofolks.net/Graphics/favicon2.ico

67.225.202.230

404 Not Found

13 kB

URL GET
www.pofolks.net/Graphics/favicon2.ico
IP
67.225.202.230:443
ASN
#32244 LIQUIDWEB

Requested by
https://www.pofolks.net/menu-dinner.aspx
Certificate
IssuerLet's Encrypt
Subjectpofolks.net
FingerprintBC:9B:64:C4:C6:07:74:1C:7E:2E:67:B3:C9:BD:EC:FF:5A:F5:D2:A9
ValiditySat, 08 Mar 2025 21:26:55 GMT - Fri, 06 Jun 2025 21:26:54 GMT

File type
HTML document, ASCII text, with very long lines (11800), with CRLF line terminators
Size
13 kB (12579 bytes)
Hash
65c24930559e15f03415300adbf7285c
4829992d93a203c4aa196e98fcb9fb0a7d4f9e83
3273fbc5b0b3f10fa0e78ac5de8c397606fae0068583b671c8c695f71f2446e4

HTTP Headers

GET /Graphics/favicon2.ico HTTP/1.1
Host: www.pofolks.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.pofolks.net/menu-dinner.aspx
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 404 Not Found
content-type: text/html
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
x-xss-protection: 1; mode=block
x-powered-by-plesk: PleskWin
date: Wed, 30 Apr 2025 23:53:17 GMT
content-length: 12579
X-Firefox-Spdy: h2

www.pofolks.net/Graphics/sub-05.jpg

67.225.202.230

200 OK

69 kB

URL GET
www.pofolks.net/Graphics/sub-05.jpg
IP
67.225.202.230:443
ASN
#32244 LIQUIDWEB

Requested by
https://www.pofolks.net/menu-lunch.aspx
Certificate
IssuerLet's Encrypt
Subjectpofolks.net
FingerprintBC:9B:64:C4:C6:07:74:1C:7E:2E:67:B3:C9:BD:EC:FF:5A:F5:D2:A9
ValiditySat, 08 Mar 2025 21:26:55 GMT - Fri, 06 Jun 2025 21:26:54 GMT

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 940x206, components 3
Size
69 kB (69288 bytes)
Hash
fcc1db4b7f3f57b88d6b02f6d277dd57
a2d6748020bf30f5c8946a3fc0f9946f94e1029b
a5da747dac317e7c01292729a58869a70d63d671088a361d2b922b73bf130791

HTTP Headers

GET /Graphics/sub-05.jpg HTTP/1.1
Host: www.pofolks.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.pofolks.net/menu-lunch.aspx
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/jpeg
last-modified: Tue, 02 Nov 2021 17:03:47 GMT
accept-ranges: bytes
etag: "66499399bd0d71:0"
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
x-xss-protection: 1; mode=block
x-powered-by-plesk: PleskWin
date: Wed, 30 Apr 2025 23:53:33 GMT
content-length: 69288
X-Firefox-Spdy: h2

www.pofolks.net/Graphics/logo-main.png

67.225.202.230

200 OK

12 kB

URL GET
www.pofolks.net/Graphics/logo-main.png
IP
67.225.202.230:443
ASN
#32244 LIQUIDWEB

Requested by
https://www.pofolks.net/menu-dinner.aspx
Certificate
IssuerLet's Encrypt
Subjectpofolks.net
FingerprintBC:9B:64:C4:C6:07:74:1C:7E:2E:67:B3:C9:BD:EC:FF:5A:F5:D2:A9
ValiditySat, 08 Mar 2025 21:26:55 GMT - Fri, 06 Jun 2025 21:26:54 GMT

File type
PNG image data, 254 x 101, 8-bit/color RGBA, non-interlaced
Size
12 kB (11651 bytes)
Hash
109ce76cac46e87bd01e33b1ad374326
bb37c84d475ab27ab4f463d76a94a34b689f9355
e5298ef86a57e3ab636b25a56a1fefc9c7158d400e177bad678a703187a0fcc0

HTTP Headers

GET /Graphics/logo-main.png HTTP/1.1
Host: www.pofolks.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.pofolks.net/menu-dinner.aspx
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/png
last-modified: Tue, 02 Nov 2021 17:03:46 GMT
accept-ranges: bytes
etag: "9bc08999bd0d71:0"
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
x-xss-protection: 1; mode=block
x-powered-by-plesk: PleskWin
date: Wed, 30 Apr 2025 23:53:15 GMT
content-length: 11651
X-Firefox-Spdy: h2

www.pofolks.net/uploads/Menu-04.jpg

67.225.202.230

200 OK

53 kB

URL GET
www.pofolks.net/uploads/Menu-04.jpg
IP
67.225.202.230:443
ASN
#32244 LIQUIDWEB

Requested by
https://www.pofolks.net/menu-dinner.aspx
Certificate
IssuerLet's Encrypt
Subjectpofolks.net
FingerprintBC:9B:64:C4:C6:07:74:1C:7E:2E:67:B3:C9:BD:EC:FF:5A:F5:D2:A9
ValiditySat, 08 Mar 2025 21:26:55 GMT - Fri, 06 Jun 2025 21:26:54 GMT

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 570x200, components 3
Size
53 kB (52624 bytes)
Hash
ef2ee4c0d112d00c00ab14d098ef819d
f49b0c8d09e4e3c53e291759a0ae257589a0bf8c
8b26c641111131b1bf3e6b7fd7e23b29e55ff669c8eb868723c4e89f6131fc8c

HTTP Headers

GET /uploads/Menu-04.jpg HTTP/1.1
Host: www.pofolks.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.pofolks.net/menu-dinner.aspx
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/jpeg
last-modified: Tue, 02 Nov 2021 17:03:48 GMT
accept-ranges: bytes
etag: "79d1669abd0d71:0"
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
x-xss-protection: 1; mode=block
x-powered-by-plesk: PleskWin
date: Wed, 30 Apr 2025 23:53:15 GMT
content-length: 52624
X-Firefox-Spdy: h2

www.pofolks.net/Graphics/drop-down.png

67.225.202.230

200 OK

2.2 kB

URL GET
www.pofolks.net/Graphics/drop-down.png
IP
67.225.202.230:443
ASN
#32244 LIQUIDWEB

Requested by
https://www.pofolks.net/menu-dinner.aspx
Certificate
IssuerLet's Encrypt
Subjectpofolks.net
FingerprintBC:9B:64:C4:C6:07:74:1C:7E:2E:67:B3:C9:BD:EC:FF:5A:F5:D2:A9
ValiditySat, 08 Mar 2025 21:26:55 GMT - Fri, 06 Jun 2025 21:26:54 GMT

File type
PNG image data, 150 x 600, 8-bit/color RGBA, non-interlaced
Size
2.2 kB (2162 bytes)
Hash
78d725b231a9e584e4c12f7520174a20
9bd7308f0e8625f1755534f67e4b37354913b7b8
2edf57bb8cabe00805ec90a3d7b61bb5ccb193f901778e2c55174cc90ac8d67a

HTTP Headers

GET /Graphics/drop-down.png HTTP/1.1
Host: www.pofolks.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.pofolks.net/CSS/Text_Styles.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/png
last-modified: Wed, 29 Jun 2022 18:37:59 GMT
accept-ranges: bytes
etag: "dca78e5be78bd81:0"
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
x-xss-protection: 1; mode=block
x-powered-by-plesk: PleskWin
date: Wed, 30 Apr 2025 23:53:15 GMT
content-length: 2162
X-Firefox-Spdy: h2

www.pofolks.net/uploads/Menu-03.jpg

67.225.202.230

200 OK

68 kB

URL GET
www.pofolks.net/uploads/Menu-03.jpg
IP
67.225.202.230:443
ASN
#32244 LIQUIDWEB

Requested by
https://www.pofolks.net/menu-dinner.aspx
Certificate
IssuerLet's Encrypt
Subjectpofolks.net
FingerprintBC:9B:64:C4:C6:07:74:1C:7E:2E:67:B3:C9:BD:EC:FF:5A:F5:D2:A9
ValiditySat, 08 Mar 2025 21:26:55 GMT - Fri, 06 Jun 2025 21:26:54 GMT

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 570x200, components 3
Size
68 kB (67871 bytes)
Hash
9ca93e0be21cacc01c50e652c61ed2ea
09ae4f4e6eab2815d6ed8a2ee7ca5144ee3770a5
90b1e5b1664f0e6758543f4a4cdf15079cfec96487fa2f44cf2ffa1b0629a4b9

HTTP Headers

GET /uploads/Menu-03.jpg HTTP/1.1
Host: www.pofolks.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.pofolks.net/menu-dinner.aspx
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/jpeg
last-modified: Tue, 02 Nov 2021 17:03:48 GMT
accept-ranges: bytes
etag: "79d1669abd0d71:0"
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
x-xss-protection: 1; mode=block
x-powered-by-plesk: PleskWin
date: Wed, 30 Apr 2025 23:53:15 GMT
content-length: 67871
X-Firefox-Spdy: h2

www.pofolks.net/uploads/Menu-06.jpg

67.225.202.230

200 OK

41 kB

URL GET
www.pofolks.net/uploads/Menu-06.jpg
IP
67.225.202.230:443
ASN
#32244 LIQUIDWEB

Requested by
https://www.pofolks.net/menu-dinner.aspx
Certificate
IssuerLet's Encrypt
Subjectpofolks.net
FingerprintBC:9B:64:C4:C6:07:74:1C:7E:2E:67:B3:C9:BD:EC:FF:5A:F5:D2:A9
ValiditySat, 08 Mar 2025 21:26:55 GMT - Fri, 06 Jun 2025 21:26:54 GMT

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 570x200, components 3
Size
41 kB (41335 bytes)
Hash
f98a4bd887de5348b76fbc42687c0aee
4948fe2861e0492a85fb7e857b540f58c0c0d64c
4876643b5ea61e8ec445abdb18f4b5dce2755d608e2c9df425708ca0404fbda0

HTTP Headers

GET /uploads/Menu-06.jpg HTTP/1.1
Host: www.pofolks.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.pofolks.net/menu-dinner.aspx
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/jpeg
last-modified: Tue, 02 Nov 2021 17:03:48 GMT
accept-ranges: bytes
etag: "79d1669abd0d71:0"
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
x-xss-protection: 1; mode=block
x-powered-by-plesk: PleskWin
date: Wed, 30 Apr 2025 23:53:15 GMT
content-length: 41335
X-Firefox-Spdy: h2

www.pofolks.net/Graphics/background-1.jpg

67.225.202.230

200 OK

138 kB

URL GET
www.pofolks.net/Graphics/background-1.jpg
IP
67.225.202.230:443
ASN
#32244 LIQUIDWEB

Requested by
https://www.pofolks.net/menu-dinner.aspx
Certificate
IssuerLet's Encrypt
Subjectpofolks.net
FingerprintBC:9B:64:C4:C6:07:74:1C:7E:2E:67:B3:C9:BD:EC:FF:5A:F5:D2:A9
ValiditySat, 08 Mar 2025 21:26:55 GMT - Fri, 06 Jun 2025 21:26:54 GMT

File type
JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 1920x627, components 3
Size
138 kB (138041 bytes)
Hash
7e92e53c2e310d14c9c3e3e80593d9fd
5bd34b80ca3c8b8370a944b0ead195f0ffef27ff
1ea6e267506e7f7a768af640bb4cdf6d59dcb7bb4fcaf0632aaac69a3508bba3

HTTP Headers

GET /Graphics/background-1.jpg HTTP/1.1
Host: www.pofolks.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.pofolks.net/menu-dinner.aspx
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/jpeg
last-modified: Tue, 02 Nov 2021 17:03:46 GMT
accept-ranges: bytes
etag: "695e8799bd0d71:0"
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
x-xss-protection: 1; mode=block
x-powered-by-plesk: PleskWin
date: Wed, 30 Apr 2025 23:53:15 GMT
content-length: 138041
X-Firefox-Spdy: h2

wavob.top/ifh/min.js

193.111.208.48

200 OK

2.8 kB

URL GET
wavob.top/ifh/min.js
IP
193.111.208.48:443
ASN
#200525 Hosting Ukraine LTD

Requested by
https://www.pofolks.net/menu-dinner.aspx
Certificate
IssuerLet's Encrypt
Subjectwavob.top
Fingerprint5B:8C:EF:CA:86:A2:51:30:77:69:4B:97:68:FB:8A:F6:51:85:BC:99
ValiditySun, 27 Apr 2025 17:38:57 GMT - Sat, 26 Jul 2025 17:38:56 GMT

File type
JavaScript source, ASCII text, with very long lines (2789), with no line terminators
Size
2.8 kB (2789 bytes)
Hash
85039863ce9fdd9684e82ac9e218cc28
c4bcf6d6d51a7cb53727f83db6c57fe9b70c5d5b
a30a938fd038f1958f4cd66fc97d6178eb2432b8b835186be0a1a052ce192231

Detections

Analyzer	Verdict	Alert
ThreatFox	malicious	FAKEUPDATES
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /ifh/min.js HTTP/1.1
Host: wavob.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.pofolks.net/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 30 Apr 2025 23:53:17 GMT
Server: Apache/2.4.52 (Ubuntu)
Last-Modified: Mon, 28 Apr 2025 09:46:57 GMT
ETag: "ae5-633d390a287ac-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1234
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/javascript

www.pofolks.net/Graphics/sn-fb.png

67.225.202.230

200 OK

713 B

URL GET
www.pofolks.net/Graphics/sn-fb.png
IP
67.225.202.230:443
ASN
#32244 LIQUIDWEB

Requested by
https://www.pofolks.net/menu-lunch.aspx
Certificate
IssuerLet's Encrypt
Subjectpofolks.net
FingerprintBC:9B:64:C4:C6:07:74:1C:7E:2E:67:B3:C9:BD:EC:FF:5A:F5:D2:A9
ValiditySat, 08 Mar 2025 21:26:55 GMT - Fri, 06 Jun 2025 21:26:54 GMT

File type
PNG image data, 23 x 22, 8-bit/color RGBA, non-interlaced
Size
713 B (713 bytes)
Hash
eb7d1736a737fbcad2daa8ab20b80084
48ab2f82bc48a80a331f52285157d9e8f9669193
47c30bd781b1618f2ca32f353fb4bf2d6d8e2733ca8b9b3fd25d093af18cd033

HTTP Headers

GET /Graphics/sn-fb.png HTTP/1.1
Host: www.pofolks.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.pofolks.net/menu-lunch.aspx
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/png
last-modified: Tue, 02 Nov 2021 17:03:47 GMT
accept-ranges: bytes
etag: "2de79099bd0d71:0"
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
x-xss-protection: 1; mode=block
x-powered-by-plesk: PleskWin
date: Wed, 30 Apr 2025 23:53:33 GMT
content-length: 713
X-Firefox-Spdy: h2

www.pofolks.net/Graphics/footer-triple4.png

67.225.202.230

200 OK

6.3 kB

URL GET
www.pofolks.net/Graphics/footer-triple4.png
IP
67.225.202.230:443
ASN
#32244 LIQUIDWEB

Requested by
https://www.pofolks.net/menu-lunch.aspx
Certificate
IssuerLet's Encrypt
Subjectpofolks.net
FingerprintBC:9B:64:C4:C6:07:74:1C:7E:2E:67:B3:C9:BD:EC:FF:5A:F5:D2:A9
ValiditySat, 08 Mar 2025 21:26:55 GMT - Fri, 06 Jun 2025 21:26:54 GMT

File type
PNG image data, 228 x 44, 8-bit/color RGBA, non-interlaced
Size
6.3 kB (6309 bytes)
Hash
ae0d5f62a3aaede387a940bcaa60efd3
04cbc6ae379e0f748fbcc73059690c7fcb560b08
5191d6b80289fc1768c2a3c87ec8cf4218b8eaa457b3791c8c403b2a0826f344

HTTP Headers

GET /Graphics/footer-triple4.png HTTP/1.1
Host: www.pofolks.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.pofolks.net/menu-lunch.aspx
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/png
last-modified: Tue, 02 Nov 2021 17:03:46 GMT
accept-ranges: bytes
etag: "9bc08999bd0d71:0"
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
x-xss-protection: 1; mode=block
x-powered-by-plesk: PleskWin
date: Wed, 30 Apr 2025 23:53:33 GMT
content-length: 6309
X-Firefox-Spdy: h2

wavob.top/ifh/index.php?4NFhP8GR

193.111.208.48

504 Internal Server Error

0 B

URL GET
wavob.top/ifh/index.php?4NFhP8GR
IP
193.111.208.48:443
ASN
#200525 Hosting Ukraine LTD

Requested by
https://www.pofolks.net/menu-dinner.aspx
Certificate
IssuerLet's Encrypt
Subjectwavob.top
Fingerprint5B:8C:EF:CA:86:A2:51:30:77:69:4B:97:68:FB:8A:F6:51:85:BC:99
ValiditySun, 27 Apr 2025 17:38:57 GMT - Sat, 26 Jul 2025 17:38:56 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /ifh/index.php?4NFhP8GR HTTP/1.1
Host: wavob.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.pofolks.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 504 Internal Server Error
Date: Wed, 30 Apr 2025 23:53:17 GMT
Server: Apache/2.4.52 (Ubuntu)
Content-Length: 0
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8

www.pofolks.net/menu-lunch.aspx

67.225.202.230

200 OK

46 kB

URL User Request GET
www.pofolks.net/menu-lunch.aspx
IP
67.225.202.230:443
ASN
#32244 LIQUIDWEB

Certificate
IssuerLet's Encrypt
Subjectpofolks.net
FingerprintBC:9B:64:C4:C6:07:74:1C:7E:2E:67:B3:C9:BD:EC:FF:5A:F5:D2:A9
ValiditySat, 08 Mar 2025 21:26:55 GMT - Fri, 06 Jun 2025 21:26:54 GMT

File type
HTML document, Unicode text, UTF-8 text, with very long lines (17076), with CRLF line terminators
Size
46 kB (46197 bytes)
Hash
312a8ca0de5351ae55245e6a509e1334
d39f6173b30d7302e6e4b5b55b1f7bae22a19abc
05c3b0a144b66de2e43f89e1aa7240827f09ed0c69f7a4cf6ff61279bae81f2e

HTTP Headers

GET /menu-lunch.aspx HTTP/1.1
Host: www.pofolks.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.pofolks.net/menu-dinner.aspx
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
Sec-Fetch-User: ?1
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
cache-control: private
content-type: text/html; charset=utf-8
content-encoding: br
vary: Accept-Encoding
server: Microsoft-IIS/10.0
x-aspnet-version: 4.0.30319
x-powered-by: ASP.NET
x-xss-protection: 1; mode=block
x-powered-by-plesk: PleskWin
date: Wed, 30 Apr 2025 23:53:33 GMT
content-length: 23272
X-Firefox-Spdy: h2

www.pofolks.net/Graphics/logo-aaron.png

67.225.202.230

200 OK

1.6 kB

URL GET
www.pofolks.net/Graphics/logo-aaron.png
IP
67.225.202.230:443
ASN
#32244 LIQUIDWEB

Requested by
https://www.pofolks.net/menu-lunch.aspx
Certificate
IssuerLet's Encrypt
Subjectpofolks.net
FingerprintBC:9B:64:C4:C6:07:74:1C:7E:2E:67:B3:C9:BD:EC:FF:5A:F5:D2:A9
ValiditySat, 08 Mar 2025 21:26:55 GMT - Fri, 06 Jun 2025 21:26:54 GMT

File type
PNG image data, 202 x 22, 8-bit/color RGBA, non-interlaced
Size
1.6 kB (1647 bytes)
Hash
288d0f18a7d402fb450473ecbeaee900
2639d238d8e7905dcb8cfa3a3bb91beb71090ac6
a6fc43cbfb5b089681b6b5974d0c0fa3a1864c0d905fac496c3f6177aba03bc9

HTTP Headers

GET /Graphics/logo-aaron.png HTTP/1.1
Host: www.pofolks.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.pofolks.net/menu-lunch.aspx
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/png
last-modified: Tue, 02 Nov 2021 17:03:46 GMT
accept-ranges: bytes
etag: "9bc08999bd0d71:0"
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
x-xss-protection: 1; mode=block
x-powered-by-plesk: PleskWin
date: Wed, 30 Apr 2025 23:53:33 GMT
content-length: 1647
X-Firefox-Spdy: h2

www.pofolks.net/Graphics/sub-04.jpg

67.225.202.230

200 OK

102 kB

URL GET
www.pofolks.net/Graphics/sub-04.jpg
IP
67.225.202.230:443
ASN
#32244 LIQUIDWEB

Requested by
https://www.pofolks.net/menu-dinner.aspx
Certificate
IssuerLet's Encrypt
Subjectpofolks.net
FingerprintBC:9B:64:C4:C6:07:74:1C:7E:2E:67:B3:C9:BD:EC:FF:5A:F5:D2:A9
ValiditySat, 08 Mar 2025 21:26:55 GMT - Fri, 06 Jun 2025 21:26:54 GMT

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 940x206, components 3
Size
102 kB (102021 bytes)
Hash
13ede5b86d3b26d7dd9074c692163b39
4f158981f954d4017a72e5222b1e4e156d968899
bd04cbd84061a61c80df1d6d3546c8bd1c6b7e1b805a7c0b0b6fcb3b81847ec2

HTTP Headers

GET /Graphics/sub-04.jpg HTTP/1.1
Host: www.pofolks.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.pofolks.net/menu-dinner.aspx
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/jpeg
last-modified: Tue, 02 Nov 2021 17:03:47 GMT
accept-ranges: bytes
etag: "66499399bd0d71:0"
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
x-xss-protection: 1; mode=block
x-powered-by-plesk: PleskWin
date: Wed, 30 Apr 2025 23:53:15 GMT
content-length: 102021
X-Firefox-Spdy: h2

www.pofolks.net/CSS/Text_Styles.css

67.225.202.230

200 OK

11 kB

URL GET
www.pofolks.net/CSS/Text_Styles.css
IP
67.225.202.230:443
ASN
#32244 LIQUIDWEB

Requested by
https://www.pofolks.net/menu-lunch.aspx
Certificate
IssuerLet's Encrypt
Subjectpofolks.net
FingerprintBC:9B:64:C4:C6:07:74:1C:7E:2E:67:B3:C9:BD:EC:FF:5A:F5:D2:A9
ValiditySat, 08 Mar 2025 21:26:55 GMT - Fri, 06 Jun 2025 21:26:54 GMT

File type
ASCII text, with CRLF line terminators
Size
11 kB (11424 bytes)
Hash
7eb17e65e0fcdf70f50fb5a3f93b0853
191ea7d4742b5660eebf0d31a83203e33c2b5b79
86dedc18ac1ccdf1a4e0ad7656b950eaea0ff86daa0539440962f7ed5eec691e

HTTP Headers

GET /CSS/Text_Styles.css HTTP/1.1
Host: www.pofolks.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.pofolks.net/menu-lunch.aspx
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css
content-encoding: br
last-modified: Wed, 29 Jun 2022 17:31:46 GMT
accept-ranges: bytes
etag: "5f811e1bde8bd81:0"
vary: Accept-Encoding
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
x-xss-protection: 1; mode=block
x-powered-by-plesk: PleskWin
date: Wed, 30 Apr 2025 23:53:33 GMT
content-length: 3358
X-Firefox-Spdy: h2

www.pofolks.net/CSS/Text_Styles.css

67.225.202.230

200 OK

11 kB

URL GET
www.pofolks.net/CSS/Text_Styles.css
IP
67.225.202.230:443
ASN
#32244 LIQUIDWEB

Requested by
https://www.pofolks.net/menu-dinner.aspx
Certificate
IssuerLet's Encrypt
Subjectpofolks.net
FingerprintBC:9B:64:C4:C6:07:74:1C:7E:2E:67:B3:C9:BD:EC:FF:5A:F5:D2:A9
ValiditySat, 08 Mar 2025 21:26:55 GMT - Fri, 06 Jun 2025 21:26:54 GMT

File type
ASCII text, with CRLF line terminators
Size
11 kB (11424 bytes)
Hash
7eb17e65e0fcdf70f50fb5a3f93b0853
191ea7d4742b5660eebf0d31a83203e33c2b5b79
86dedc18ac1ccdf1a4e0ad7656b950eaea0ff86daa0539440962f7ed5eec691e

HTTP Headers

GET /CSS/Text_Styles.css HTTP/1.1
Host: www.pofolks.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.pofolks.net/menu-dinner.aspx
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css
content-encoding: br
last-modified: Wed, 29 Jun 2022 17:31:46 GMT
accept-ranges: bytes
etag: "5f811e1bde8bd81:0"
vary: Accept-Encoding
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
x-xss-protection: 1; mode=block
x-powered-by-plesk: PleskWin
date: Wed, 30 Apr 2025 23:53:15 GMT
content-length: 3358
X-Firefox-Spdy: h2

www.pofolks.net/uploads/Menu-05.jpg

67.225.202.230

200 OK

65 kB

URL GET
www.pofolks.net/uploads/Menu-05.jpg
IP
67.225.202.230:443
ASN
#32244 LIQUIDWEB

Requested by
https://www.pofolks.net/menu-dinner.aspx
Certificate
IssuerLet's Encrypt
Subjectpofolks.net
FingerprintBC:9B:64:C4:C6:07:74:1C:7E:2E:67:B3:C9:BD:EC:FF:5A:F5:D2:A9
ValiditySat, 08 Mar 2025 21:26:55 GMT - Fri, 06 Jun 2025 21:26:54 GMT

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 570x200, components 3
Size
65 kB (65362 bytes)
Hash
a207fa08b27d4f42aca9ebb580e8d564
ce493e6f33557137c4db6ba3aeccd745beb0f378
bcfb8742820646881e667c1de845593b757ae65437601d382e44c82c3b31bd25

HTTP Headers

GET /uploads/Menu-05.jpg HTTP/1.1
Host: www.pofolks.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.pofolks.net/menu-dinner.aspx
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/jpeg
last-modified: Tue, 02 Nov 2021 17:03:48 GMT
accept-ranges: bytes
etag: "79d1669abd0d71:0"
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
x-xss-protection: 1; mode=block
x-powered-by-plesk: PleskWin
date: Wed, 30 Apr 2025 23:53:15 GMT
content-length: 65362
X-Firefox-Spdy: h2

www.pofolks.net/Graphics/background-2.png

67.225.202.230

200 OK

416 B

URL GET
www.pofolks.net/Graphics/background-2.png
IP
67.225.202.230:443
ASN
#32244 LIQUIDWEB

Requested by
https://www.pofolks.net/menu-dinner.aspx
Certificate
IssuerLet's Encrypt
Subjectpofolks.net
FingerprintBC:9B:64:C4:C6:07:74:1C:7E:2E:67:B3:C9:BD:EC:FF:5A:F5:D2:A9
ValiditySat, 08 Mar 2025 21:26:55 GMT - Fri, 06 Jun 2025 21:26:54 GMT

File type
PNG image data, 24 x 324, 8-bit/color RGBA, non-interlaced
Size
416 B (416 bytes)
Hash
a079a1290ce7f53afe32f6673d6d152d
08b314d219ba75401c133fafb926f9dfb205197a
15d514adb0a0b7826c9164bfead110ec014e505b227fcc98a967cdad0d4d3962

HTTP Headers

GET /Graphics/background-2.png HTTP/1.1
Host: www.pofolks.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.pofolks.net/menu-dinner.aspx
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/png
last-modified: Tue, 02 Nov 2021 17:03:46 GMT
accept-ranges: bytes
etag: "695e8799bd0d71:0"
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
x-xss-protection: 1; mode=block
x-powered-by-plesk: PleskWin
date: Wed, 30 Apr 2025 23:53:15 GMT
content-length: 416
X-Firefox-Spdy: h2

Report Overview

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

Quad9 DNS

ThreatFox

JavaScript (15)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML