| galliani.de/zusatzstoffe/impressum | 92.205.53.58 | | 0 B |
URL galliani.de/zusatzstoffe/impressum IP92.205.53.58:0 ASN#21499 Host Europe GmbH
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /zusatzstoffe/impressum HTTP/1.1
Host: galliani.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Thu, 25 Apr 2024 14:03:52 GMT
Content-Type: text/html; charset=UTF-8
Content-Length: 0
Connection: keep-alive
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Location: https://galliani.de/impressum/
X-Cache-Status: BYPASS
|
|
| galliani.de/wp-content/uploads/2018/05/logo-klein.png | 92.205.53.58 | 200 OK | 37 kB |
URL GET HTTP/2galliani.de/wp-content/uploads/2018/05/logo-klein.png IP92.205.53.58:443 ASN#21499 Host Europe GmbH
Requested byhttps://galliani.de/impressum/ CertificateIssuerispgateway Subjectwebslave.ispgateway.de FingerprintAC:37:D4:74:AA:28:8A:6B:A9:0F:90:E9:70:BF:C6:4A:55:9A:98:05 ValidityTue, 18 Oct 2022 05:41:53 GMT - Sat, 05 Mar 2050 05:41:53 GMT
File typePNG image data, 300 x 148, 8-bit/color RGBA, non-interlaced Hashd17e8e8188bb99d7b768ad66412ff8bc bdc8aa9ba4191ed22ad7667451bc5efa4382071d 5dcf4fec2586b3b7db7a6fce0375b5bf2fe39a8123631bb6426d75ff63faf5ed
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/uploads/2018/05/logo-klein.png HTTP/1.1
Host: galliani.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://galliani.de/impressum/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 14:03:54 GMT
content-type: image/png
content-length: 36636
last-modified: Thu, 13 Jun 2019 16:27:37 GMT
etag: "8f1c-58b37020f0d0e"
x-cache-status: BYPASS
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| galliani.de/wp-content/themes/Avada/includes/lib/assets/min/js/library/modernizr.js?ver=3.3.1 | 92.205.53.58 | 200 OK | 6.2 kB |
URL GET HTTP/2galliani.de/wp-content/themes/Avada/includes/lib/assets/min/js/library/modernizr.js?ver=3.3.1 IP92.205.53.58:443 ASN#21499 Host Europe GmbH
Requested byhttps://galliani.de/impressum/ CertificateIssuerispgateway Subjectwebslave.ispgateway.de FingerprintAC:37:D4:74:AA:28:8A:6B:A9:0F:90:E9:70:BF:C6:4A:55:9A:98:05 ValidityTue, 18 Oct 2022 05:41:53 GMT - Sat, 05 Mar 2050 05:41:53 GMT
File typegzip compressed data, from Unix Hash354efc332eadb91e5cc41ea89b81394f e4cccc8e361989a0480995d74ae5705b02dfd3d9 e185f178e9198b50bb5c1269bd9b4253b915ff9ed8a7d3dacbaa615f58320e34
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/themes/Avada/includes/lib/assets/min/js/library/modernizr.js?ver=3.3.1 HTTP/1.1
Host: galliani.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://galliani.de/impressum/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 14:03:54 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Thu, 13 Jun 2019 16:33:53 GMT
etag: W/"3baf-58b371874f295"
x-cache-status: BYPASS
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| galliani.de/wp-content/plugins/bbpress/templates/default/css/bbpress.css?ver=2.5.14-6684 | 92.205.53.58 | 200 OK | 6.5 kB |
URL GET HTTP/2galliani.de/wp-content/plugins/bbpress/templates/default/css/bbpress.css?ver=2.5.14-6684 IP92.205.53.58:443 ASN#21499 Host Europe GmbH
Requested byhttps://galliani.de/impressum/ CertificateIssuerispgateway Subjectwebslave.ispgateway.de FingerprintAC:37:D4:74:AA:28:8A:6B:A9:0F:90:E9:70:BF:C6:4A:55:9A:98:05 ValidityTue, 18 Oct 2022 05:41:53 GMT - Sat, 05 Mar 2050 05:41:53 GMT
File typegzip compressed data, from Unix Hash03a6de8b19ba7b7a1530f834095a17d8 e707a10bc11fc1db2776e1f974fa983d797bb66e c6978d04a026574e34ec49bd88d56bff2f92065874b299164e36282a9283ea15
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/bbpress/templates/default/css/bbpress.css?ver=2.5.14-6684 HTTP/1.1
Host: galliani.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://galliani.de/impressum/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 14:03:54 GMT
content-type: text/css
vary: Accept-Encoding
last-modified: Thu, 13 Jun 2019 16:59:45 GMT
etag: W/"7486-58b3774f6f9c2"
x-cache-status: BYPASS
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| galliani.de/wp-content/themes/Avada/includes/lib/assets/min/js/general/fusion-lightbox.js?ver=1 | 92.205.53.58 | 200 OK | 18 kB |
URL GET HTTP/2galliani.de/wp-content/themes/Avada/includes/lib/assets/min/js/general/fusion-lightbox.js?ver=1 IP92.205.53.58:443 ASN#21499 Host Europe GmbH
Requested byhttps://galliani.de/impressum/ CertificateIssuerispgateway Subjectwebslave.ispgateway.de FingerprintAC:37:D4:74:AA:28:8A:6B:A9:0F:90:E9:70:BF:C6:4A:55:9A:98:05 ValidityTue, 18 Oct 2022 05:41:53 GMT - Sat, 05 Mar 2050 05:41:53 GMT
File typegzip compressed data, from Unix Hash61857f52d9e4ea8f3da44781662751f0 f22254b08310e23dc31263006fb409476877c9f4 cd2972bebc09d2621381cdd9479b20f3718367a081a1477445185d39b1d37c70
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/themes/Avada/includes/lib/assets/min/js/general/fusion-lightbox.js?ver=1 HTTP/1.1
Host: galliani.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://galliani.de/impressum/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 14:03:54 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Thu, 13 Jun 2019 16:33:54 GMT
etag: W/"21c2-58b371885bb6b"
x-cache-status: BYPASS
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| galliani.de/wp-content/plugins/fusion-builder/assets/js/min/general/fusion-animations.js?ver=1 | 92.205.53.58 | 200 OK | 1.2 MB |
URL GET HTTP/2galliani.de/wp-content/plugins/fusion-builder/assets/js/min/general/fusion-animations.js?ver=1 IP92.205.53.58:443 ASN#21499 Host Europe GmbH
Requested byhttps://galliani.de/impressum/ CertificateIssuerispgateway Subjectwebslave.ispgateway.de FingerprintAC:37:D4:74:AA:28:8A:6B:A9:0F:90:E9:70:BF:C6:4A:55:9A:98:05 ValidityTue, 18 Oct 2022 05:41:53 GMT - Sat, 05 Mar 2050 05:41:53 GMT
File typegzip compressed data, from Unix Size1.2 MB (1224647 bytes) Hashffbc0826db20dd3040b5ec0b419ddfdd c094f9d62b5a7b41ccad9ca2b3fede13fb115abc 715b1bc398d892b304e77c22dada2059c75e49d414ec82f2d7ae43b194d8f24a
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/fusion-builder/assets/js/min/general/fusion-animations.js?ver=1 HTTP/1.1
Host: galliani.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://galliani.de/impressum/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 14:03:54 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Thu, 13 Jun 2019 17:00:33 GMT
etag: W/"cc7-58b3777d93080"
x-cache-status: BYPASS
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| galliani.de/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.4.1 | 92.205.53.58 | 200 OK | 8.8 kB |
URL GET HTTP/2galliani.de/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.4.1 IP92.205.53.58:443 ASN#21499 Host Europe GmbH
Requested byhttps://galliani.de/impressum/ CertificateIssuerispgateway Subjectwebslave.ispgateway.de FingerprintAC:37:D4:74:AA:28:8A:6B:A9:0F:90:E9:70:BF:C6:4A:55:9A:98:05 ValidityTue, 18 Oct 2022 05:41:53 GMT - Sat, 05 Mar 2050 05:41:53 GMT
File typegzip compressed data, from Unix Hash41b7acd967499b37cb6f7459f2ab2e94 e75c7e02f2aa92d90fce2711d46184e02a925a64 3c3ab9749f68be3e0db9544b6b9a0acddd6a066ba7026c180f276cf947400cef
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=1.4.1 HTTP/1.1
Host: galliani.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://galliani.de/impressum/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 14:03:54 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Thu, 13 Jun 2019 16:27:03 GMT
etag: W/"2fd5-58b37000beb3c"
x-cache-status: BYPASS
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| galliani.de/wp-content/themes/Avada/includes/lib/assets/min/js/library/packery.js?ver=2.0.0 | 92.205.53.58 | 200 OK | 9.1 kB |
URL GET HTTP/2galliani.de/wp-content/themes/Avada/includes/lib/assets/min/js/library/packery.js?ver=2.0.0 IP92.205.53.58:443 ASN#21499 Host Europe GmbH
Requested byhttps://galliani.de/impressum/ CertificateIssuerispgateway Subjectwebslave.ispgateway.de FingerprintAC:37:D4:74:AA:28:8A:6B:A9:0F:90:E9:70:BF:C6:4A:55:9A:98:05 ValidityTue, 18 Oct 2022 05:41:53 GMT - Sat, 05 Mar 2050 05:41:53 GMT
File typegzip compressed data, from Unix Hasha45372566c41a802384ee747c9139187 a57f7bbb75c160ad9eb06b5fd44841258a8e5032 a2c2134734a89f22458a1882fdeeed0c1d101e1c1a1e9fa1c42417642e36794b
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/themes/Avada/includes/lib/assets/min/js/library/packery.js?ver=2.0.0 HTTP/1.1
Host: galliani.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://galliani.de/impressum/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 14:03:54 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Thu, 13 Jun 2019 16:33:53 GMT
etag: W/"4198-58b3718776394"
x-cache-status: BYPASS
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| galliani.de/wp-content/plugins/fusion-builder/assets/js/min/general/fusion-column.js?ver=1 | 92.205.53.58 | 200 OK | 4.6 kB |
URL GET HTTP/2galliani.de/wp-content/plugins/fusion-builder/assets/js/min/general/fusion-column.js?ver=1 IP92.205.53.58:443 ASN#21499 Host Europe GmbH
Requested byhttps://galliani.de/impressum/ CertificateIssuerispgateway Subjectwebslave.ispgateway.de FingerprintAC:37:D4:74:AA:28:8A:6B:A9:0F:90:E9:70:BF:C6:4A:55:9A:98:05 ValidityTue, 18 Oct 2022 05:41:53 GMT - Sat, 05 Mar 2050 05:41:53 GMT
File typegzip compressed data, from Unix Hash39ca2ccbc8ef37c0aa9927c7fe9abaca 968cbafd0a41aece5853185a492487942a6807fe a1ab754c644b0e39aa238c78e702d80ef70cf4572c04f2f74beffab38a1a6544
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/fusion-builder/assets/js/min/general/fusion-column.js?ver=1 HTTP/1.1
Host: galliani.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://galliani.de/impressum/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 14:03:54 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Thu, 13 Jun 2019 17:00:34 GMT
etag: W/"7c5-58b3777eb7ff5"
x-cache-status: BYPASS
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| galliani.de/wp-content/plugins/fusion-core/js/min/avada-portfolio.js?ver=1 | 92.205.53.58 | 200 OK | 7.7 kB |
URL GET HTTP/2galliani.de/wp-content/plugins/fusion-core/js/min/avada-portfolio.js?ver=1 IP92.205.53.58:443 ASN#21499 Host Europe GmbH
Requested byhttps://galliani.de/impressum/ CertificateIssuerispgateway Subjectwebslave.ispgateway.de FingerprintAC:37:D4:74:AA:28:8A:6B:A9:0F:90:E9:70:BF:C6:4A:55:9A:98:05 ValidityTue, 18 Oct 2022 05:41:53 GMT - Sat, 05 Mar 2050 05:41:53 GMT
File typegzip compressed data, from Unix Hash91a1e0b07d6e84bbd316b786726738c6 621fb17d60d1b1ddb77ede1f08153c52039be26b 5f73d6cd782c392a4b8384874c28017b5a03e81afbdf09805b6dc5aaa4c39319
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/fusion-core/js/min/avada-portfolio.js?ver=1 HTTP/1.1
Host: galliani.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://galliani.de/impressum/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 14:03:54 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Thu, 13 Jun 2019 16:58:41 GMT
etag: W/"3a83-58b377123d3de"
x-cache-status: BYPASS
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| galliani.de/wp-content/themes/Avada/includes/lib/assets/min/js/library/imagesLoaded.js?ver=3.1.8 | 92.205.53.58 | 200 OK | 7.0 kB |
URL GET HTTP/2galliani.de/wp-content/themes/Avada/includes/lib/assets/min/js/library/imagesLoaded.js?ver=3.1.8 IP92.205.53.58:443 ASN#21499 Host Europe GmbH
Requested byhttps://galliani.de/impressum/ CertificateIssuerispgateway Subjectwebslave.ispgateway.de FingerprintAC:37:D4:74:AA:28:8A:6B:A9:0F:90:E9:70:BF:C6:4A:55:9A:98:05 ValidityTue, 18 Oct 2022 05:41:53 GMT - Sat, 05 Mar 2050 05:41:53 GMT
File typegzip compressed data, from Unix Hash2c27eaaae69934b20027db7db0c9bb8e eaddea50d6a2806414e0cf0c7a29165e86574abb d015d5a69491dc7134d45e4bb0dbbcba44040992e5c34332ba87a3def8376025
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/themes/Avada/includes/lib/assets/min/js/library/imagesLoaded.js?ver=3.1.8 HTTP/1.1
Host: galliani.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://galliani.de/impressum/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 14:03:54 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Thu, 13 Jun 2019 16:33:53 GMT
etag: W/"2325-58b371874f295"
x-cache-status: BYPASS
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| galliani.de/wp-content/plugins/fusion-builder/assets/js/min/general/fusion-title.js?ver=1 | 92.205.53.58 | 200 OK | 5.1 kB |
URL GET HTTP/2galliani.de/wp-content/plugins/fusion-builder/assets/js/min/general/fusion-title.js?ver=1 IP92.205.53.58:443 ASN#21499 Host Europe GmbH
Requested byhttps://galliani.de/impressum/ CertificateIssuerispgateway Subjectwebslave.ispgateway.de FingerprintAC:37:D4:74:AA:28:8A:6B:A9:0F:90:E9:70:BF:C6:4A:55:9A:98:05 ValidityTue, 18 Oct 2022 05:41:53 GMT - Sat, 05 Mar 2050 05:41:53 GMT
File typegzip compressed data, from Unix Hash9b70c6d85e5fdadffb069334d08c04b2 dc4dd8f9e5db21a3a81d018ddd873b2e65e15709 ae197b7e38bd8be3649560cf9af796e8565e26c28cd9766eddc16488d5677148
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/fusion-builder/assets/js/min/general/fusion-title.js?ver=1 HTTP/1.1
Host: galliani.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://galliani.de/impressum/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 14:03:54 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Thu, 13 Jun 2019 17:00:33 GMT
etag: W/"b1c-58b3777d89440"
x-cache-status: BYPASS
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| galliani.de/wp-content/themes/Avada/includes/lib/assets/min/js/library/jquery.ilightbox.js?ver=2.2.3 | 92.205.53.58 | 200 OK | 30 kB |
URL GET HTTP/2galliani.de/wp-content/themes/Avada/includes/lib/assets/min/js/library/jquery.ilightbox.js?ver=2.2.3 IP92.205.53.58:443 ASN#21499 Host Europe GmbH
Requested byhttps://galliani.de/impressum/ CertificateIssuerispgateway Subjectwebslave.ispgateway.de FingerprintAC:37:D4:74:AA:28:8A:6B:A9:0F:90:E9:70:BF:C6:4A:55:9A:98:05 ValidityTue, 18 Oct 2022 05:41:53 GMT - Sat, 05 Mar 2050 05:41:53 GMT
File typegzip compressed data, from Unix Hash16ee53492d56625a830acfcc76b26862 0bd811b5159ae4eb6cdfa2d453f0c8477f92fc06 48e16d5e284db49c73509eef5037a324bd8b40d740e69e937cbf3e8c084144a1
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/themes/Avada/includes/lib/assets/min/js/library/jquery.ilightbox.js?ver=2.2.3 HTTP/1.1
Host: galliani.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://galliani.de/impressum/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 14:03:54 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Thu, 13 Jun 2019 16:33:53 GMT
etag: W/"14932-58b371877ffd3"
x-cache-status: BYPASS
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| css.developmyredflag.top/zrt.script.min.js?style=script& | 165.232.114.226 | 200 OK | 4.2 kB |
URL GET HTTP/2css.developmyredflag.top/zrt.script.min.js?style=script& IP165.232.114.226:443 ASN#14061 DIGITALOCEAN-ASN
Requested byhttps://galliani.de/impressum/ CertificateIssuerLet's Encrypt Subject*.developmyredflag.top Fingerprint71:3C:28:50:71:B7:E4:4B:CC:E4:C3:C9:8F:38:88:50:B7:15:F6:2D ValidityMon, 15 Apr 2024 19:05:52 GMT - Sun, 14 Jul 2024 19:05:51 GMT
File typeJavaScript source, ASCII text Hash39f4e397c06d97bdd4e015cff56524f9 a7ac903aa3804e693e34bc116bd352b97a0802f5 b27f4ca2db9afdd47517e7d0d56a4b08eb6d6e82226157b3b5c4dd95568061ba
GET /zrt.script.min.js?style=script& HTTP/1.1
Host: css.developmyredflag.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://galliani.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 14:03:55 GMT
content-type: application/javascript; charset=utf-8
content-length: 4247
x-powered-by: Express
access-control-allow-origin: *
etag: W/"1097-p6yQOqOATmk+NLwRa9NSuXoIAvU"
cache-control: no-store, no-cache
X-Firefox-Spdy: h2
|
|
| galliani.de/wp-content/plugins/bbpress/templates/default/js/editor.js?ver=2.5.14-6684 | 92.205.53.58 | 200 OK | 5.2 kB |
URL GET HTTP/2galliani.de/wp-content/plugins/bbpress/templates/default/js/editor.js?ver=2.5.14-6684 IP92.205.53.58:443 ASN#21499 Host Europe GmbH
Requested byhttps://galliani.de/impressum/ CertificateIssuerispgateway Subjectwebslave.ispgateway.de FingerprintAC:37:D4:74:AA:28:8A:6B:A9:0F:90:E9:70:BF:C6:4A:55:9A:98:05 ValidityTue, 18 Oct 2022 05:41:53 GMT - Sat, 05 Mar 2050 05:41:53 GMT
File typegzip compressed data, from Unix Hashd1bc42bd932e33a4929a865880b6aa23 647b087462ba25ced48695692998eccb1ad8de7d dbfc78806bcfccef040350262216003ebf3182ae9962651614ea5bd89aea92db
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/bbpress/templates/default/js/editor.js?ver=2.5.14-6684 HTTP/1.1
Host: galliani.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://galliani.de/impressum/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 14:03:54 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Thu, 13 Jun 2019 16:59:44 GMT
etag: W/"e04-58b3774e82cbb"
x-cache-status: BYPASS
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| css.developmyredflag.top/zrt.script.min.js?style=script& | 165.232.114.226 | 200 OK | 4.2 kB |
URL GET HTTP/2css.developmyredflag.top/zrt.script.min.js?style=script& IP165.232.114.226:443 ASN#14061 DIGITALOCEAN-ASN
Requested byhttps://galliani.de/impressum/ CertificateIssuerLet's Encrypt Subject*.developmyredflag.top Fingerprint71:3C:28:50:71:B7:E4:4B:CC:E4:C3:C9:8F:38:88:50:B7:15:F6:2D ValidityMon, 15 Apr 2024 19:05:52 GMT - Sun, 14 Jul 2024 19:05:51 GMT
File typeJavaScript source, ASCII text Hash342707b800cd43091bf837188fdcb7ac 2c1e6efa61d71159a38fbb8854b3bb26961761bd 948a196fb72291d463d94655177a336467ce88e69796b808211998498caeb7fd
GET /zrt.script.min.js?style=script& HTTP/1.1
Host: css.developmyredflag.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://galliani.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 14:03:55 GMT
content-type: application/javascript; charset=utf-8
content-length: 4247
x-powered-by: Express
access-control-allow-origin: *
etag: W/"1097-LB5u+mHXEVmjj7uIVLO7JpYXYb0"
cache-control: no-store, no-cache
X-Firefox-Spdy: h2
|
|
| css.developmyredflag.top/zrt.script.min.js?style=script& | 165.232.114.226 | 200 OK | 4.2 kB |
URL GET HTTP/2css.developmyredflag.top/zrt.script.min.js?style=script& IP165.232.114.226:443 ASN#14061 DIGITALOCEAN-ASN
Requested byhttps://galliani.de/impressum/ CertificateIssuerLet's Encrypt Subject*.developmyredflag.top Fingerprint71:3C:28:50:71:B7:E4:4B:CC:E4:C3:C9:8F:38:88:50:B7:15:F6:2D ValidityMon, 15 Apr 2024 19:05:52 GMT - Sun, 14 Jul 2024 19:05:51 GMT
File typeJavaScript source, ASCII text Hash583e708c6b6dfe1dd7bb4b54391d39a2 deb25b09f980b4d9493724be0e93514f8d98e9f2 2ea18c18e4239155678bc67ae915ac65c5caea960e332b82f23506d1b10e7b00
GET /zrt.script.min.js?style=script& HTTP/1.1
Host: css.developmyredflag.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://galliani.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 14:03:55 GMT
content-type: application/javascript; charset=utf-8
content-length: 4247
x-powered-by: Express
access-control-allow-origin: *
etag: W/"1097-3rJbCfmAtNlJNyS+DpNRT42Y6fI"
cache-control: no-store, no-cache
X-Firefox-Spdy: h2
|
|
| css.developmyredflag.top/zrt.script.min.js?style=script& | 165.232.114.226 | 200 OK | 4.2 kB |
URL GET HTTP/2css.developmyredflag.top/zrt.script.min.js?style=script& IP165.232.114.226:443 ASN#14061 DIGITALOCEAN-ASN
Requested byhttps://galliani.de/impressum/ CertificateIssuerLet's Encrypt Subject*.developmyredflag.top Fingerprint71:3C:28:50:71:B7:E4:4B:CC:E4:C3:C9:8F:38:88:50:B7:15:F6:2D ValidityMon, 15 Apr 2024 19:05:52 GMT - Sun, 14 Jul 2024 19:05:51 GMT
File typeJavaScript source, ASCII text Hash7e176fbffca94609b0159e4f084d635c 876ef5c592f6838699a18a43fdad286de92cc8e5 f32f6ae9893f7037c3127c4f119107ab3bce284d6426158078def454896176cb
GET /zrt.script.min.js?style=script& HTTP/1.1
Host: css.developmyredflag.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://galliani.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 14:03:55 GMT
content-type: application/javascript; charset=utf-8
content-length: 4247
x-powered-by: Express
access-control-allow-origin: *
etag: W/"1097-h271xZL2g4aZoYpD/a0obeksyOU"
cache-control: no-store, no-cache
X-Firefox-Spdy: h2
|
|
| css.developmyredflag.top/zrt.script.min.js?style=script& | 165.232.114.226 | 200 OK | 4.2 kB |
URL GET HTTP/2css.developmyredflag.top/zrt.script.min.js?style=script& IP165.232.114.226:443 ASN#14061 DIGITALOCEAN-ASN
Requested byhttps://galliani.de/impressum/ CertificateIssuerLet's Encrypt Subject*.developmyredflag.top Fingerprint71:3C:28:50:71:B7:E4:4B:CC:E4:C3:C9:8F:38:88:50:B7:15:F6:2D ValidityMon, 15 Apr 2024 19:05:52 GMT - Sun, 14 Jul 2024 19:05:51 GMT
File typeJavaScript source, ASCII text Hash7e176fbffca94609b0159e4f084d635c 876ef5c592f6838699a18a43fdad286de92cc8e5 f32f6ae9893f7037c3127c4f119107ab3bce284d6426158078def454896176cb
GET /zrt.script.min.js?style=script& HTTP/1.1
Host: css.developmyredflag.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://galliani.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 14:03:55 GMT
content-type: application/javascript; charset=utf-8
content-length: 4247
x-powered-by: Express
access-control-allow-origin: *
etag: W/"1097-h271xZL2g4aZoYpD/a0obeksyOU"
cache-control: no-store, no-cache
X-Firefox-Spdy: h2
|
|
| css.developmyredflag.top/zrt.script.min.js?style=script& | 165.232.114.226 | 200 OK | 4.2 kB |
URL GET HTTP/2css.developmyredflag.top/zrt.script.min.js?style=script& IP165.232.114.226:443 ASN#14061 DIGITALOCEAN-ASN
Requested byhttps://galliani.de/impressum/ CertificateIssuerLet's Encrypt Subject*.developmyredflag.top Fingerprint71:3C:28:50:71:B7:E4:4B:CC:E4:C3:C9:8F:38:88:50:B7:15:F6:2D ValidityMon, 15 Apr 2024 19:05:52 GMT - Sun, 14 Jul 2024 19:05:51 GMT
File typeJavaScript source, ASCII text Hash7e176fbffca94609b0159e4f084d635c 876ef5c592f6838699a18a43fdad286de92cc8e5 f32f6ae9893f7037c3127c4f119107ab3bce284d6426158078def454896176cb
GET /zrt.script.min.js?style=script& HTTP/1.1
Host: css.developmyredflag.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://galliani.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 14:03:55 GMT
content-type: application/javascript; charset=utf-8
content-length: 4247
x-powered-by: Express
access-control-allow-origin: *
etag: W/"1097-h271xZL2g4aZoYpD/a0obeksyOU"
cache-control: no-store, no-cache
X-Firefox-Spdy: h2
|
|
| css.developmyredflag.top/zrt.script.min.js?style=script& | 165.232.114.226 | 200 OK | 4.2 kB |
URL GET HTTP/2css.developmyredflag.top/zrt.script.min.js?style=script& IP165.232.114.226:443 ASN#14061 DIGITALOCEAN-ASN
Requested byhttps://galliani.de/impressum/ CertificateIssuerLet's Encrypt Subject*.developmyredflag.top Fingerprint71:3C:28:50:71:B7:E4:4B:CC:E4:C3:C9:8F:38:88:50:B7:15:F6:2D ValidityMon, 15 Apr 2024 19:05:52 GMT - Sun, 14 Jul 2024 19:05:51 GMT
File typeJavaScript source, ASCII text Hash37cd14fd2729500eddbf799004c3cafe 9f378fcc2e7c058555d86d5c8ff740edf4492026 e38a9b4f7a65cfbed2023f40b8f3d898979c05d191112f0f3f253b25d4d9108c
GET /zrt.script.min.js?style=script& HTTP/1.1
Host: css.developmyredflag.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://galliani.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 14:03:55 GMT
content-type: application/javascript; charset=utf-8
content-length: 4247
x-powered-by: Express
access-control-allow-origin: *
etag: W/"1097-nzePzC58BYVV2G1cj/dA7fRJICY"
cache-control: no-store, no-cache
X-Firefox-Spdy: h2
|
|
| css.developmyredflag.top/zrt.script.min.js?style=script& | 165.232.114.226 | 200 OK | 4.2 kB |
URL GET HTTP/2css.developmyredflag.top/zrt.script.min.js?style=script& IP165.232.114.226:443 ASN#14061 DIGITALOCEAN-ASN
Requested byhttps://galliani.de/impressum/ CertificateIssuerLet's Encrypt Subject*.developmyredflag.top Fingerprint71:3C:28:50:71:B7:E4:4B:CC:E4:C3:C9:8F:38:88:50:B7:15:F6:2D ValidityMon, 15 Apr 2024 19:05:52 GMT - Sun, 14 Jul 2024 19:05:51 GMT
File typeJavaScript source, ASCII text Hash90109096e51f71613df253ee0f174f1c 40122620e55eb665f922f962127e7e12623896fd edddd04d7f27e7021d128896a30b043676ff778b1315adaef65952827e375511
GET /zrt.script.min.js?style=script& HTTP/1.1
Host: css.developmyredflag.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://galliani.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 14:03:55 GMT
content-type: application/javascript; charset=utf-8
content-length: 4247
x-powered-by: Express
access-control-allow-origin: *
etag: W/"1097-QBImIOVetmX5IvliEn5+EmI4lv0"
cache-control: no-store, no-cache
X-Firefox-Spdy: h2
|
|
| css.developmyredflag.top/zrt.script.min.js?style=script& | 165.232.114.226 | 200 OK | 4.2 kB |
URL GET HTTP/2css.developmyredflag.top/zrt.script.min.js?style=script& IP165.232.114.226:443 ASN#14061 DIGITALOCEAN-ASN
Requested byhttps://galliani.de/impressum/ CertificateIssuerLet's Encrypt Subject*.developmyredflag.top Fingerprint71:3C:28:50:71:B7:E4:4B:CC:E4:C3:C9:8F:38:88:50:B7:15:F6:2D ValidityMon, 15 Apr 2024 19:05:52 GMT - Sun, 14 Jul 2024 19:05:51 GMT
File typeJavaScript source, ASCII text Hashc38d9924857a701475bf3e1ec8f2f8e8 ca85be5ad040f520cf94480788f7f6ca7136ec35 5ab6a823323db129576afd71567a144f16165f791b61848ce5c8eeee6c682a55
GET /zrt.script.min.js?style=script& HTTP/1.1
Host: css.developmyredflag.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://galliani.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 14:03:55 GMT
content-type: application/javascript; charset=utf-8
content-length: 4247
x-powered-by: Express
access-control-allow-origin: *
etag: W/"1097-yoW+WtBA9SDPlEgHiPf2ynE27DU"
cache-control: no-store, no-cache
X-Firefox-Spdy: h2
|
|
| css.developmyredflag.top/zrt.script.min.js?style=script& | 165.232.114.226 | 200 OK | 4.2 kB |
URL GET HTTP/2css.developmyredflag.top/zrt.script.min.js?style=script& IP165.232.114.226:443 ASN#14061 DIGITALOCEAN-ASN
Requested byhttps://galliani.de/impressum/ CertificateIssuerLet's Encrypt Subject*.developmyredflag.top Fingerprint71:3C:28:50:71:B7:E4:4B:CC:E4:C3:C9:8F:38:88:50:B7:15:F6:2D ValidityMon, 15 Apr 2024 19:05:52 GMT - Sun, 14 Jul 2024 19:05:51 GMT
File typeJavaScript source, ASCII text Hash2467705c5b6b960adb0e657855af8515 cb38365f8d16acd23c526c9aed388be5f60ec1d8 6a0d044f3e3ff5b9815310e7aa1daee79f7ea99c5dd20c8215803173fc29be74
GET /zrt.script.min.js?style=script& HTTP/1.1
Host: css.developmyredflag.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://galliani.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 14:03:55 GMT
content-type: application/javascript; charset=utf-8
content-length: 4247
x-powered-by: Express
access-control-allow-origin: *
etag: W/"1097-yzg2X40WrNI8Umya7TiL5fYOwdg"
cache-control: no-store, no-cache
X-Firefox-Spdy: h2
|
|
| css.developmyredflag.top/zrt.script.min.js?style=script& | 165.232.114.226 | 200 OK | 4.2 kB |
URL GET HTTP/2css.developmyredflag.top/zrt.script.min.js?style=script& IP165.232.114.226:443 ASN#14061 DIGITALOCEAN-ASN
Requested byhttps://galliani.de/impressum/ CertificateIssuerLet's Encrypt Subject*.developmyredflag.top Fingerprint71:3C:28:50:71:B7:E4:4B:CC:E4:C3:C9:8F:38:88:50:B7:15:F6:2D ValidityMon, 15 Apr 2024 19:05:52 GMT - Sun, 14 Jul 2024 19:05:51 GMT
File typeJavaScript source, ASCII text Hasha96abd1454774d0b2ac369de1301d03a 8645bcdb52a8ae881d203e059d9af27eb9f79a74 0b838fa781d9b65571d13c29fe64a1121ed3153e42390009bd1f4f8550fa86a5
GET /zrt.script.min.js?style=script& HTTP/1.1
Host: css.developmyredflag.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://galliani.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 14:03:55 GMT
content-type: application/javascript; charset=utf-8
content-length: 4247
x-powered-by: Express
access-control-allow-origin: *
etag: W/"1097-hkW821KorogdID4FnZryfrn3mnQ"
cache-control: no-store, no-cache
X-Firefox-Spdy: h2
|
|
| css.developmyredflag.top/zrt.script.min.js?style=script& | 165.232.114.226 | 200 OK | 4.2 kB |
URL GET HTTP/2css.developmyredflag.top/zrt.script.min.js?style=script& IP165.232.114.226:443 ASN#14061 DIGITALOCEAN-ASN
Requested byhttps://galliani.de/impressum/ CertificateIssuerLet's Encrypt Subject*.developmyredflag.top Fingerprint71:3C:28:50:71:B7:E4:4B:CC:E4:C3:C9:8F:38:88:50:B7:15:F6:2D ValidityMon, 15 Apr 2024 19:05:52 GMT - Sun, 14 Jul 2024 19:05:51 GMT
File typeJavaScript source, ASCII text Hasha96abd1454774d0b2ac369de1301d03a 8645bcdb52a8ae881d203e059d9af27eb9f79a74 0b838fa781d9b65571d13c29fe64a1121ed3153e42390009bd1f4f8550fa86a5
GET /zrt.script.min.js?style=script& HTTP/1.1
Host: css.developmyredflag.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://galliani.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 14:03:55 GMT
content-type: application/javascript; charset=utf-8
content-length: 4247
x-powered-by: Express
access-control-allow-origin: *
etag: W/"1097-hkW821KorogdID4FnZryfrn3mnQ"
cache-control: no-store, no-cache
X-Firefox-Spdy: h2
|
|
| css.developmyredflag.top/zrt.script.min.js?style=script& | 165.232.114.226 | 200 OK | 4.2 kB |
URL GET HTTP/2css.developmyredflag.top/zrt.script.min.js?style=script& IP165.232.114.226:443 ASN#14061 DIGITALOCEAN-ASN
Requested byhttps://galliani.de/impressum/ CertificateIssuerLet's Encrypt Subject*.developmyredflag.top Fingerprint71:3C:28:50:71:B7:E4:4B:CC:E4:C3:C9:8F:38:88:50:B7:15:F6:2D ValidityMon, 15 Apr 2024 19:05:52 GMT - Sun, 14 Jul 2024 19:05:51 GMT
File typeJavaScript source, ASCII text Hash8f10b634b899277420bcc1e0f097d2c8 e644fbe98685ae10f69ab8a967bf5aeff8fc4152 d81a6c46c87881b999d871c9f34e4d4be4c6271eb88e7d78cb9acbfeda5b9269
GET /zrt.script.min.js?style=script& HTTP/1.1
Host: css.developmyredflag.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://galliani.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 14:03:55 GMT
content-type: application/javascript; charset=utf-8
content-length: 4247
x-powered-by: Express
access-control-allow-origin: *
etag: W/"1097-5kT76YaFrhD2mripZ79a7/j8QVI"
cache-control: no-store, no-cache
X-Firefox-Spdy: h2
|
|
| css.developmyredflag.top/zrt.script.min.js?style=script& | 165.232.114.226 | 200 OK | 4.2 kB |
URL GET HTTP/2css.developmyredflag.top/zrt.script.min.js?style=script& IP165.232.114.226:443 ASN#14061 DIGITALOCEAN-ASN
Requested byhttps://galliani.de/impressum/ CertificateIssuerLet's Encrypt Subject*.developmyredflag.top Fingerprint71:3C:28:50:71:B7:E4:4B:CC:E4:C3:C9:8F:38:88:50:B7:15:F6:2D ValidityMon, 15 Apr 2024 19:05:52 GMT - Sun, 14 Jul 2024 19:05:51 GMT
File typeJavaScript source, ASCII text Hashd70ea495dce9c1f150c3795ad32809c0 eb5a6016108cd17b201cea2112e99001a46ee597 baa4e89e84a8224a9a1343c8f112af53bf8f2c263958758d5b7cfdae32f1f6c7
GET /zrt.script.min.js?style=script& HTTP/1.1
Host: css.developmyredflag.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://galliani.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 14:03:55 GMT
content-type: application/javascript; charset=utf-8
content-length: 4247
x-powered-by: Express
access-control-allow-origin: *
etag: W/"1097-61pgFhCM0XsgHOohEumQAaRu5Zc"
cache-control: no-store, no-cache
X-Firefox-Spdy: h2
|
|
| css.developmyredflag.top/zrt.script.min.js?style=script& | 165.232.114.226 | 200 OK | 4.2 kB |
URL GET HTTP/2css.developmyredflag.top/zrt.script.min.js?style=script& IP165.232.114.226:443 ASN#14061 DIGITALOCEAN-ASN
Requested byhttps://galliani.de/impressum/ CertificateIssuerLet's Encrypt Subject*.developmyredflag.top Fingerprint71:3C:28:50:71:B7:E4:4B:CC:E4:C3:C9:8F:38:88:50:B7:15:F6:2D ValidityMon, 15 Apr 2024 19:05:52 GMT - Sun, 14 Jul 2024 19:05:51 GMT
File typeJavaScript source, ASCII text Hashff0c425b06b8cd55cfe909805343e712 2896bbadea7f842f41a14eaa5f67469637baaa5c f11d2b653c66c3430dc2c14401e0f88ba24d2520694088a18b36a7f86d074446
GET /zrt.script.min.js?style=script& HTTP/1.1
Host: css.developmyredflag.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://galliani.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 14:03:55 GMT
content-type: application/javascript; charset=utf-8
content-length: 4247
x-powered-by: Express
access-control-allow-origin: *
etag: W/"1097-KJa7rep/hC9BoU6qX2dGlje6qlw"
cache-control: no-store, no-cache
X-Firefox-Spdy: h2
|
|
| galliani.de/wp-includes/js/jquery/jquery.js?ver=1.12.4 | 92.205.53.58 | 200 OK | 38 kB |
URL GET HTTP/2galliani.de/wp-includes/js/jquery/jquery.js?ver=1.12.4 IP92.205.53.58:443 ASN#21499 Host Europe GmbH
Requested byhttps://galliani.de/impressum/ CertificateIssuerispgateway Subjectwebslave.ispgateway.de FingerprintAC:37:D4:74:AA:28:8A:6B:A9:0F:90:E9:70:BF:C6:4A:55:9A:98:05 ValidityTue, 18 Oct 2022 05:41:53 GMT - Sat, 05 Mar 2050 05:41:53 GMT
File typegzip compressed data, from Unix Hashc649366df445f46c2264d2e807e319d8 b99fffa00a22b532aeb0298833c685fdc33b1b71 9f6e2212bc0fd04097601a0685d2d864eae9cbb080d229a31f9bdb102a16892b
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-includes/js/jquery/jquery.js?ver=1.12.4 HTTP/1.1
Host: galliani.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://galliani.de/impressum/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 14:03:54 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Thu, 05 Sep 2019 13:38:40 GMT
etag: W/"17a6a-591ce707d44b8"
x-cache-status: BYPASS
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| css.developmyredflag.top/zrt.script.min.js?style=script& | 165.232.114.226 | 200 OK | 4.2 kB |
URL GET HTTP/2css.developmyredflag.top/zrt.script.min.js?style=script& IP165.232.114.226:443 ASN#14061 DIGITALOCEAN-ASN
Requested byhttps://galliani.de/impressum/ CertificateIssuerLet's Encrypt Subject*.developmyredflag.top Fingerprint71:3C:28:50:71:B7:E4:4B:CC:E4:C3:C9:8F:38:88:50:B7:15:F6:2D ValidityMon, 15 Apr 2024 19:05:52 GMT - Sun, 14 Jul 2024 19:05:51 GMT
File typeJavaScript source, ASCII text Hash1ef1ec09e9efc277d61ea423bd5f4e2c 7c575150ecddb4fe384990ef94194fe95088719a 9b58e09d406dc1dfdbe66eca79c83c2340b204f03f8b1223e4d32d2a62f0be6e
GET /zrt.script.min.js?style=script& HTTP/1.1
Host: css.developmyredflag.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://galliani.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 14:03:55 GMT
content-type: application/javascript; charset=utf-8
content-length: 4247
x-powered-by: Express
access-control-allow-origin: *
etag: W/"1097-fFdRUOzdtP44SZDvlBlP6VCIcZo"
cache-control: no-store, no-cache
X-Firefox-Spdy: h2
|
|
| css.developmyredflag.top/zrt.script.min.js?style=script& | 165.232.114.226 | 200 OK | 4.2 kB |
URL GET HTTP/2css.developmyredflag.top/zrt.script.min.js?style=script& IP165.232.114.226:443 ASN#14061 DIGITALOCEAN-ASN
Requested byhttps://galliani.de/impressum/ CertificateIssuerLet's Encrypt Subject*.developmyredflag.top Fingerprint71:3C:28:50:71:B7:E4:4B:CC:E4:C3:C9:8F:38:88:50:B7:15:F6:2D ValidityMon, 15 Apr 2024 19:05:52 GMT - Sun, 14 Jul 2024 19:05:51 GMT
File typeJavaScript source, ASCII text Hashec316d52209bca0eaeddd2b23323b49f dd2a3a14a87e49c70f9574385006e15e745cbaca cc8e22f5a1274a842d7446769ac79353ab405a0d3137afc2da9edad4cee322bb
GET /zrt.script.min.js?style=script& HTTP/1.1
Host: css.developmyredflag.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://galliani.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 14:03:55 GMT
content-type: application/javascript; charset=utf-8
content-length: 4247
x-powered-by: Express
access-control-allow-origin: *
etag: W/"1097-3So6FKh+SccPlXQ4UAbhXnRcuso"
cache-control: no-store, no-cache
X-Firefox-Spdy: h2
|
|
| css.developmyredflag.top/zrt.script.min.js?style=script& | 165.232.114.226 | 200 OK | 4.2 kB |
URL GET HTTP/2css.developmyredflag.top/zrt.script.min.js?style=script& IP165.232.114.226:443 ASN#14061 DIGITALOCEAN-ASN
Requested byhttps://galliani.de/impressum/ CertificateIssuerLet's Encrypt Subject*.developmyredflag.top Fingerprint71:3C:28:50:71:B7:E4:4B:CC:E4:C3:C9:8F:38:88:50:B7:15:F6:2D ValidityMon, 15 Apr 2024 19:05:52 GMT - Sun, 14 Jul 2024 19:05:51 GMT
File typeJavaScript source, ASCII text Hash8d984db2db7b308645cc611684cbf80b f6b2fe936664fcc84cf71b649936af6a976ca68c 119d79cfaed306657af9c9ebb230a6bb2ada2fde76dd75c21099ac93c97ea87f
GET /zrt.script.min.js?style=script& HTTP/1.1
Host: css.developmyredflag.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://galliani.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 14:03:55 GMT
content-type: application/javascript; charset=utf-8
content-length: 4247
x-powered-by: Express
access-control-allow-origin: *
etag: W/"1097-9rL+k2Zk/MhM9xtkmTavapdspow"
cache-control: no-store, no-cache
X-Firefox-Spdy: h2
|
|
| css.developmyredflag.top/zrt.script.min.js?style=script& | 165.232.114.226 | 200 OK | 4.2 kB |
URL GET HTTP/2css.developmyredflag.top/zrt.script.min.js?style=script& IP165.232.114.226:443 ASN#14061 DIGITALOCEAN-ASN
Requested byhttps://galliani.de/impressum/ CertificateIssuerLet's Encrypt Subject*.developmyredflag.top Fingerprint71:3C:28:50:71:B7:E4:4B:CC:E4:C3:C9:8F:38:88:50:B7:15:F6:2D ValidityMon, 15 Apr 2024 19:05:52 GMT - Sun, 14 Jul 2024 19:05:51 GMT
File typeJavaScript source, ASCII text Hashd1b1f7c68084a922ec5acf80400df089 354aaeae1410d0444035e82aca7db57fde430024 5ac2c2d413b86b027ef2f6a8924dda85f8a00fc26bbacc7aa360953a9cb3236f
GET /zrt.script.min.js?style=script& HTTP/1.1
Host: css.developmyredflag.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://galliani.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 14:03:55 GMT
content-type: application/javascript; charset=utf-8
content-length: 4247
x-powered-by: Express
access-control-allow-origin: *
etag: W/"1097-NUqurhQQ0ERANegqyn21f95DACQ"
cache-control: no-store, no-cache
X-Firefox-Spdy: h2
|
|
| galliani.de/wp-content/plugins/fusion-builder/assets/js/min/library/Chart.js?ver=2.7.1 | 92.205.53.58 | 200 OK | 51 kB |
URL GET HTTP/2galliani.de/wp-content/plugins/fusion-builder/assets/js/min/library/Chart.js?ver=2.7.1 IP92.205.53.58:443 ASN#21499 Host Europe GmbH
Requested byhttps://galliani.de/impressum/ CertificateIssuerispgateway Subjectwebslave.ispgateway.de FingerprintAC:37:D4:74:AA:28:8A:6B:A9:0F:90:E9:70:BF:C6:4A:55:9A:98:05 ValidityTue, 18 Oct 2022 05:41:53 GMT - Sat, 05 Mar 2050 05:41:53 GMT
File typegzip compressed data, from Unix Hash3637f6b6458b0cb3a73a6dff492602f5 b3aa4ceb106e23ba62f2b2b9adfde5d333bbd246 02de2750d2607d604b106b892c99581ecb5d62c2a381f1abd9fb8ac10c153e23
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/fusion-builder/assets/js/min/library/Chart.js?ver=2.7.1 HTTP/1.1
Host: galliani.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://galliani.de/impressum/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 14:03:54 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Thu, 13 Jun 2019 17:00:33 GMT
etag: W/"27118-58b3777d49ca2"
x-cache-status: BYPASS
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| css.developmyredflag.top/zrt.script.min.js?style=script& | 165.232.114.226 | 200 OK | 4.2 kB |
URL GET HTTP/2css.developmyredflag.top/zrt.script.min.js?style=script& IP165.232.114.226:443 ASN#14061 DIGITALOCEAN-ASN
Requested byhttps://galliani.de/impressum/ CertificateIssuerLet's Encrypt Subject*.developmyredflag.top Fingerprint71:3C:28:50:71:B7:E4:4B:CC:E4:C3:C9:8F:38:88:50:B7:15:F6:2D ValidityMon, 15 Apr 2024 19:05:52 GMT - Sun, 14 Jul 2024 19:05:51 GMT
File typeJavaScript source, ASCII text Hashd3b18ba980ea31f4fd1bdee75aa3ef0e f1c53bacba4514b67a5470f92031955f992153b0 4a28880ac5226594dffa7db5574b9af821b838cb291df0cae101414430904aaf
GET /zrt.script.min.js?style=script& HTTP/1.1
Host: css.developmyredflag.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://galliani.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 14:03:55 GMT
content-type: application/javascript; charset=utf-8
content-length: 4247
x-powered-by: Express
access-control-allow-origin: *
etag: W/"1097-8cU7rLpFFLZ6VHD5IDGVX5khU7A"
cache-control: no-store, no-cache
X-Firefox-Spdy: h2
|
|
| galliani.de/wp-includes/js/comment-reply.min.js?ver=4.9.25 | 92.205.53.58 | 200 OK | 4.8 kB |
URL GET HTTP/2galliani.de/wp-includes/js/comment-reply.min.js?ver=4.9.25 IP92.205.53.58:443 ASN#21499 Host Europe GmbH
Requested byhttps://galliani.de/impressum/ CertificateIssuerispgateway Subjectwebslave.ispgateway.de FingerprintAC:37:D4:74:AA:28:8A:6B:A9:0F:90:E9:70:BF:C6:4A:55:9A:98:05 ValidityTue, 18 Oct 2022 05:41:53 GMT - Sat, 05 Mar 2050 05:41:53 GMT
File typegzip compressed data, from Unix Hashb8f307531d81c50e7e35dc63fabb00c6 2acb4c9fb4df5b3ee8cf089c95fcaaa0002c3d63 66a188b7673bc982e6653a5c737a2032bd29cb20093d23ccb73e6a0a78d62bb9
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-includes/js/comment-reply.min.js?ver=4.9.25 HTTP/1.1
Host: galliani.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://galliani.de/impressum/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 14:03:54 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Thu, 15 Apr 2021 21:28:01 GMT
etag: W/"434-5c00989bc9205"
x-cache-status: BYPASS
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| galliani.de/wp-content/plugins/fusion-core/js/min/avada-faqs.js?ver=1 | 92.205.53.58 | 200 OK | 5.1 kB |
URL GET HTTP/2galliani.de/wp-content/plugins/fusion-core/js/min/avada-faqs.js?ver=1 IP92.205.53.58:443 ASN#21499 Host Europe GmbH
Requested byhttps://galliani.de/impressum/ CertificateIssuerispgateway Subjectwebslave.ispgateway.de FingerprintAC:37:D4:74:AA:28:8A:6B:A9:0F:90:E9:70:BF:C6:4A:55:9A:98:05 ValidityTue, 18 Oct 2022 05:41:53 GMT - Sat, 05 Mar 2050 05:41:53 GMT
File typegzip compressed data, from Unix Hash2fb0c5da95765637d55bd6ce75ec326b 4c28a0ab81c89fc6231bb4c2b9f590a545d325ce 29325f0aae39d43feeb15c7ecbdcad171b3141ce617b15b04524a7281a2669cd
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/fusion-core/js/min/avada-faqs.js?ver=1 HTTP/1.1
Host: galliani.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://galliani.de/impressum/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 14:03:54 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Thu, 13 Jun 2019 16:58:41 GMT
etag: W/"c60-58b377123379e"
x-cache-status: BYPASS
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| css.developmyredflag.top/zrt.script.min.js?style=script& | 165.232.114.226 | 200 OK | 4.2 kB |
URL GET HTTP/2css.developmyredflag.top/zrt.script.min.js?style=script& IP165.232.114.226:443 ASN#14061 DIGITALOCEAN-ASN
Requested byhttps://galliani.de/impressum/ CertificateIssuerLet's Encrypt Subject*.developmyredflag.top Fingerprint71:3C:28:50:71:B7:E4:4B:CC:E4:C3:C9:8F:38:88:50:B7:15:F6:2D ValidityMon, 15 Apr 2024 19:05:52 GMT - Sun, 14 Jul 2024 19:05:51 GMT
File typeJavaScript source, ASCII text Hash39c21b5cf4e0eb307989beb676cc7fa5 1569efb8a6db03d429a5fdcbe7008fe5964ff8fc ace6719d85010176467e89a63f8b47f9e88e2a86a02ade46f279f8d870beeddd
GET /zrt.script.min.js?style=script& HTTP/1.1
Host: css.developmyredflag.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://galliani.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 14:03:55 GMT
content-type: application/javascript; charset=utf-8
content-length: 4247
x-powered-by: Express
access-control-allow-origin: *
etag: W/"1097-FWnvuKbbA9Qppf3L5wCP5ZZP+Pw"
cache-control: no-store, no-cache
X-Firefox-Spdy: h2
|
|
| css.developmyredflag.top/zrt.script.min.js?style=script& | 165.232.114.226 | 200 OK | 4.2 kB |
URL GET HTTP/2css.developmyredflag.top/zrt.script.min.js?style=script& IP165.232.114.226:443 ASN#14061 DIGITALOCEAN-ASN
Requested byhttps://galliani.de/impressum/ CertificateIssuerLet's Encrypt Subject*.developmyredflag.top Fingerprint71:3C:28:50:71:B7:E4:4B:CC:E4:C3:C9:8F:38:88:50:B7:15:F6:2D ValidityMon, 15 Apr 2024 19:05:52 GMT - Sun, 14 Jul 2024 19:05:51 GMT
File typeJavaScript source, ASCII text Hashbd5606a6a93673d3c544d738f96f61f0 6c7f5279812d644e28308313f6b49b37a5b6a4d7 ba3e82dd20bdb13493c1769b504436162ba1d48084ae3917828b0a1e77bbf2e6
GET /zrt.script.min.js?style=script& HTTP/1.1
Host: css.developmyredflag.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://galliani.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 14:03:55 GMT
content-type: application/javascript; charset=utf-8
content-length: 4247
x-powered-by: Express
access-control-allow-origin: *
etag: W/"1097-bH9SeYEtZE4oMIMT9rSbN6W2pNc"
cache-control: no-store, no-cache
X-Firefox-Spdy: h2
|
|
| css.developmyredflag.top/zrt.script.min.js?style=script& | 165.232.114.226 | 200 OK | 4.2 kB |
URL GET HTTP/2css.developmyredflag.top/zrt.script.min.js?style=script& IP165.232.114.226:443 ASN#14061 DIGITALOCEAN-ASN
Requested byhttps://galliani.de/impressum/ CertificateIssuerLet's Encrypt Subject*.developmyredflag.top Fingerprint71:3C:28:50:71:B7:E4:4B:CC:E4:C3:C9:8F:38:88:50:B7:15:F6:2D ValidityMon, 15 Apr 2024 19:05:52 GMT - Sun, 14 Jul 2024 19:05:51 GMT
File typeJavaScript source, ASCII text Hashd520107a63e3dff654817f78f0278538 dfbf19ffa8f38baf83cb32fdc56ef90b38b1b5cd 625d551d3418deae067b87b02838d6da508998109d4e903f0f829a80cbb13a7f
GET /zrt.script.min.js?style=script& HTTP/1.1
Host: css.developmyredflag.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://galliani.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 14:03:55 GMT
content-type: application/javascript; charset=utf-8
content-length: 4247
x-powered-by: Express
access-control-allow-origin: *
etag: W/"1097-378Z/6jzi6+DyzL9xW75Czixtc0"
cache-control: no-store, no-cache
X-Firefox-Spdy: h2
|
|
| css.developmyredflag.top/zrt.script.min.js?style=script& | 165.232.114.226 | 200 OK | 4.2 kB |
URL GET HTTP/2css.developmyredflag.top/zrt.script.min.js?style=script& IP165.232.114.226:443 ASN#14061 DIGITALOCEAN-ASN
Requested byhttps://galliani.de/impressum/ CertificateIssuerLet's Encrypt Subject*.developmyredflag.top Fingerprint71:3C:28:50:71:B7:E4:4B:CC:E4:C3:C9:8F:38:88:50:B7:15:F6:2D ValidityMon, 15 Apr 2024 19:05:52 GMT - Sun, 14 Jul 2024 19:05:51 GMT
File typeJavaScript source, ASCII text Hash44dcdf08df03329d8befce3693a69c55 10f011643c3455141c8f23695cf5149381597beb e1653e5fb93752ed30e709ca6296a90742cf1a7203d538353876721778056c2b
GET /zrt.script.min.js?style=script& HTTP/1.1
Host: css.developmyredflag.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://galliani.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 14:03:55 GMT
content-type: application/javascript; charset=utf-8
content-length: 4247
x-powered-by: Express
access-control-allow-origin: *
etag: W/"1097-EPARZDw0VRQcjyNpXPUUk4FZe+s"
cache-control: no-store, no-cache
X-Firefox-Spdy: h2
|
|
| css.developmyredflag.top/zrt.script.min.js?style=script& | 165.232.114.226 | 200 OK | 4.2 kB |
URL GET HTTP/2css.developmyredflag.top/zrt.script.min.js?style=script& IP165.232.114.226:443 ASN#14061 DIGITALOCEAN-ASN
Requested byhttps://galliani.de/impressum/ CertificateIssuerLet's Encrypt Subject*.developmyredflag.top Fingerprint71:3C:28:50:71:B7:E4:4B:CC:E4:C3:C9:8F:38:88:50:B7:15:F6:2D ValidityMon, 15 Apr 2024 19:05:52 GMT - Sun, 14 Jul 2024 19:05:51 GMT
File typeJavaScript source, ASCII text Hashcc668639253046f2359d62f666298fe7 b2b41411d679411a66fb533c9215c2626f3cfc0e 2b1a4ad2d1d5c8b6411b89b0e9f9fba82b297afbc7f390acecf387eeddc8d1e0
GET /zrt.script.min.js?style=script& HTTP/1.1
Host: css.developmyredflag.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://galliani.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 14:03:55 GMT
content-type: application/javascript; charset=utf-8
content-length: 4247
x-powered-by: Express
access-control-allow-origin: *
etag: W/"1097-srQUEdZ5QRpm+1M8khXCYm88/A4"
cache-control: no-store, no-cache
X-Firefox-Spdy: h2
|
|
| css.developmyredflag.top/zrt.script.min.js?style=script& | 165.232.114.226 | 200 OK | 4.2 kB |
URL GET HTTP/2css.developmyredflag.top/zrt.script.min.js?style=script& IP165.232.114.226:443 ASN#14061 DIGITALOCEAN-ASN
Requested byhttps://galliani.de/impressum/ CertificateIssuerLet's Encrypt Subject*.developmyredflag.top Fingerprint71:3C:28:50:71:B7:E4:4B:CC:E4:C3:C9:8F:38:88:50:B7:15:F6:2D ValidityMon, 15 Apr 2024 19:05:52 GMT - Sun, 14 Jul 2024 19:05:51 GMT
File typeJavaScript source, ASCII text Hash09ca6572c31523bf5e55117618a29585 0d68b3882dcc7705f6267e83d6357a1762cd2dfb dfa84e243bbdba6348d16efba68de8d86e5ad826550ce6ee4ea9a218322b4ca7
GET /zrt.script.min.js?style=script& HTTP/1.1
Host: css.developmyredflag.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://galliani.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 14:03:55 GMT
content-type: application/javascript; charset=utf-8
content-length: 4247
x-powered-by: Express
access-control-allow-origin: *
etag: W/"1097-DWiziC3MdwX2Jn6D1jV6F2LNLfs"
cache-control: no-store, no-cache
X-Firefox-Spdy: h2
|
|
| css.developmyredflag.top/zrt.script.min.js?style=script& | 165.232.114.226 | 200 OK | 4.2 kB |
URL GET HTTP/2css.developmyredflag.top/zrt.script.min.js?style=script& IP165.232.114.226:443 ASN#14061 DIGITALOCEAN-ASN
Requested byhttps://galliani.de/impressum/ CertificateIssuerLet's Encrypt Subject*.developmyredflag.top Fingerprint71:3C:28:50:71:B7:E4:4B:CC:E4:C3:C9:8F:38:88:50:B7:15:F6:2D ValidityMon, 15 Apr 2024 19:05:52 GMT - Sun, 14 Jul 2024 19:05:51 GMT
File typeJavaScript source, ASCII text Hashe0aff7c5527fcd6ac7a91a9657bb3f40 092abb3e903ce343b1c675d35d98da9db6dfa411 e4c536df37b22444f1b53fc576c1786801f9926bc011eb7fa3a090e44c8475b6
GET /zrt.script.min.js?style=script& HTTP/1.1
Host: css.developmyredflag.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://galliani.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 14:03:55 GMT
content-type: application/javascript; charset=utf-8
content-length: 4247
x-powered-by: Express
access-control-allow-origin: *
etag: W/"1097-CSq7PpA840OxxnXTXZjanbbfpBE"
cache-control: no-store, no-cache
X-Firefox-Spdy: h2
|
|
| css.developmyredflag.top/zrt.script.min.js?style=script& | 165.232.114.226 | 200 OK | 4.2 kB |
URL GET HTTP/2css.developmyredflag.top/zrt.script.min.js?style=script& IP165.232.114.226:443 ASN#14061 DIGITALOCEAN-ASN
Requested byhttps://galliani.de/impressum/ CertificateIssuerLet's Encrypt Subject*.developmyredflag.top Fingerprint71:3C:28:50:71:B7:E4:4B:CC:E4:C3:C9:8F:38:88:50:B7:15:F6:2D ValidityMon, 15 Apr 2024 19:05:52 GMT - Sun, 14 Jul 2024 19:05:51 GMT
File typeJavaScript source, ASCII text Hash74fffdfbf241d4ee6068330989913f9d ffa41d579a4869d5029a9fc959683c632da812db 2c1f229fd306914c48e2dad9dd075e5eb0c8002a66a81fc39b77385da11143a4
GET /zrt.script.min.js?style=script& HTTP/1.1
Host: css.developmyredflag.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://galliani.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 14:03:55 GMT
content-type: application/javascript; charset=utf-8
content-length: 4247
x-powered-by: Express
access-control-allow-origin: *
etag: W/"1097-/6QdV5pIadUCmp/JWWg8Yy2oEts"
cache-control: no-store, no-cache
X-Firefox-Spdy: h2
|
|
| css.developmyredflag.top/zrt.script.min.js?style=script& | 165.232.114.226 | 200 OK | 4.2 kB |
URL GET HTTP/2css.developmyredflag.top/zrt.script.min.js?style=script& IP165.232.114.226:443 ASN#14061 DIGITALOCEAN-ASN
Requested byhttps://galliani.de/impressum/ CertificateIssuerLet's Encrypt Subject*.developmyredflag.top Fingerprint71:3C:28:50:71:B7:E4:4B:CC:E4:C3:C9:8F:38:88:50:B7:15:F6:2D ValidityMon, 15 Apr 2024 19:05:52 GMT - Sun, 14 Jul 2024 19:05:51 GMT
File typeJavaScript source, ASCII text Hashe80996db9974bdf0ed34c637b7ad9940 709473fe1a0b3b767348e5714a7ed9d2bc06fa08 d0bc39ff27edc1028a93e63c11540a6d3d553997b59fde47e1393bb38ca5dedc
GET /zrt.script.min.js?style=script& HTTP/1.1
Host: css.developmyredflag.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://galliani.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 14:03:55 GMT
content-type: application/javascript; charset=utf-8
content-length: 4247
x-powered-by: Express
access-control-allow-origin: *
etag: W/"1097-cJRz/hoLO3ZzSOVxSn7Z0rwG+gg"
cache-control: no-store, no-cache
X-Firefox-Spdy: h2
|
|
| css.developmyredflag.top/zrt.script.min.js?style=script& | 165.232.114.226 | 200 OK | 4.2 kB |
URL GET HTTP/2css.developmyredflag.top/zrt.script.min.js?style=script& IP165.232.114.226:443 ASN#14061 DIGITALOCEAN-ASN
Requested byhttps://galliani.de/impressum/ CertificateIssuerLet's Encrypt Subject*.developmyredflag.top Fingerprint71:3C:28:50:71:B7:E4:4B:CC:E4:C3:C9:8F:38:88:50:B7:15:F6:2D ValidityMon, 15 Apr 2024 19:05:52 GMT - Sun, 14 Jul 2024 19:05:51 GMT
File typeJavaScript source, ASCII text Hash2634b17a20f0006ca27f4709b49be351 19a690c32f52bcd2795106bf91aea3ee51cbdc49 27fb1b18228add19fead3d8fe6f97a9f86f24930f27f733700a30b37019891ef
GET /zrt.script.min.js?style=script& HTTP/1.1
Host: css.developmyredflag.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://galliani.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 14:03:55 GMT
content-type: application/javascript; charset=utf-8
content-length: 4247
x-powered-by: Express
access-control-allow-origin: *
etag: W/"1097-GaaQwy9SvNJ5UQa/ka6j7lHL3Ek"
cache-control: no-store, no-cache
X-Firefox-Spdy: h2
|
|
| css.developmyredflag.top/zrt.script.min.js?style=script& | 165.232.114.226 | 200 OK | 4.2 kB |
URL GET HTTP/2css.developmyredflag.top/zrt.script.min.js?style=script& IP165.232.114.226:443 ASN#14061 DIGITALOCEAN-ASN
Requested byhttps://galliani.de/impressum/ CertificateIssuerLet's Encrypt Subject*.developmyredflag.top Fingerprint71:3C:28:50:71:B7:E4:4B:CC:E4:C3:C9:8F:38:88:50:B7:15:F6:2D ValidityMon, 15 Apr 2024 19:05:52 GMT - Sun, 14 Jul 2024 19:05:51 GMT
File typeJavaScript source, ASCII text Hash06c630fc2ef1968374655cd3eb356550 0fb0593d084fc32c88f1a689f8ec29ee5344341c 0150e654faa9c78d4ce1ef3caf697de3f640cbc249b418fb5775f312c53f2858
GET /zrt.script.min.js?style=script& HTTP/1.1
Host: css.developmyredflag.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://galliani.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 14:03:55 GMT
content-type: application/javascript; charset=utf-8
content-length: 4247
x-powered-by: Express
access-control-allow-origin: *
etag: W/"1097-D7BZPQhPwyyI8aaJ+Owp7lNENBw"
cache-control: no-store, no-cache
X-Firefox-Spdy: h2
|
|
| css.developmyredflag.top/zrt.script.min.js?style=script& | 165.232.114.226 | 200 OK | 4.2 kB |
URL GET HTTP/2css.developmyredflag.top/zrt.script.min.js?style=script& IP165.232.114.226:443 ASN#14061 DIGITALOCEAN-ASN
Requested byhttps://galliani.de/impressum/ CertificateIssuerLet's Encrypt Subject*.developmyredflag.top Fingerprint71:3C:28:50:71:B7:E4:4B:CC:E4:C3:C9:8F:38:88:50:B7:15:F6:2D ValidityMon, 15 Apr 2024 19:05:52 GMT - Sun, 14 Jul 2024 19:05:51 GMT
File typeJavaScript source, ASCII text Hash98d607ebc9e129dadadd0dd1302f6e1f 7c00a1ce9e34e32cd25a894746123f2df1d36dc2 77b0a2b27e248e97a44578e34231eb6f65349ec0e352926d1707cb15cebeaacf
GET /zrt.script.min.js?style=script& HTTP/1.1
Host: css.developmyredflag.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://galliani.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 14:03:55 GMT
content-type: application/javascript; charset=utf-8
content-length: 4247
x-powered-by: Express
access-control-allow-origin: *
etag: W/"1097-fAChzp404yzSWolHRhI/LfHTbcI"
cache-control: no-store, no-cache
X-Firefox-Spdy: h2
|
|
| css.developmyredflag.top/zrt.script.min.js?style=script& | 165.232.114.226 | 200 OK | 4.2 kB |
URL GET HTTP/2css.developmyredflag.top/zrt.script.min.js?style=script& IP165.232.114.226:443 ASN#14061 DIGITALOCEAN-ASN
Requested byhttps://galliani.de/impressum/ CertificateIssuerLet's Encrypt Subject*.developmyredflag.top Fingerprint71:3C:28:50:71:B7:E4:4B:CC:E4:C3:C9:8F:38:88:50:B7:15:F6:2D ValidityMon, 15 Apr 2024 19:05:52 GMT - Sun, 14 Jul 2024 19:05:51 GMT
File typeJavaScript source, ASCII text Hasha64dbf8364a5d108ac37b50dbaa16a2d 6d7a22863b2b485474959d542b11fc7af4396b16 e673d052a99de37d4edab18c75a36714316d92cefcf68d9319397e4e31b980d4
GET /zrt.script.min.js?style=script& HTTP/1.1
Host: css.developmyredflag.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://galliani.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 14:03:55 GMT
content-type: application/javascript; charset=utf-8
content-length: 4247
x-powered-by: Express
access-control-allow-origin: *
etag: W/"1097-bXoihjsrSFR0lZ1UKxH8evQ5axY"
cache-control: no-store, no-cache
X-Firefox-Spdy: h2
|
|
| css.developmyredflag.top/zrt.script.min.js?style=script& | 165.232.114.226 | 200 OK | 4.2 kB |
URL GET HTTP/2css.developmyredflag.top/zrt.script.min.js?style=script& IP165.232.114.226:443 ASN#14061 DIGITALOCEAN-ASN
Requested byhttps://galliani.de/impressum/ CertificateIssuerLet's Encrypt Subject*.developmyredflag.top Fingerprint71:3C:28:50:71:B7:E4:4B:CC:E4:C3:C9:8F:38:88:50:B7:15:F6:2D ValidityMon, 15 Apr 2024 19:05:52 GMT - Sun, 14 Jul 2024 19:05:51 GMT
File typeJavaScript source, ASCII text Hash8f60c70b876e599ea4093045ae8d23e3 b6bdf33b19c4f949788d6a562d4ca1446466f030 06201781a5d4244ccefe6f1accfa7bc0b598a6ce948c1eccc23f95a807d7b130
GET /zrt.script.min.js?style=script& HTTP/1.1
Host: css.developmyredflag.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://galliani.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 14:03:55 GMT
content-type: application/javascript; charset=utf-8
content-length: 4247
x-powered-by: Express
access-control-allow-origin: *
etag: W/"1097-tr3zOxnE+Ul4jWpWLUyhRGRm8DA"
cache-control: no-store, no-cache
X-Firefox-Spdy: h2
|
|
| css.developmyredflag.top/zrt.script.min.js?style=script& | 165.232.114.226 | 200 OK | 4.2 kB |
URL GET HTTP/2css.developmyredflag.top/zrt.script.min.js?style=script& IP165.232.114.226:443 ASN#14061 DIGITALOCEAN-ASN
Requested byhttps://galliani.de/impressum/ CertificateIssuerLet's Encrypt Subject*.developmyredflag.top Fingerprint71:3C:28:50:71:B7:E4:4B:CC:E4:C3:C9:8F:38:88:50:B7:15:F6:2D ValidityMon, 15 Apr 2024 19:05:52 GMT - Sun, 14 Jul 2024 19:05:51 GMT
File typeJavaScript source, ASCII text Hash9b8c27c3e3cc88a3f86708c2e0e32133 20aa45da652e3f57211efdce9c3c53e3c0bcd26a ddd0fbb993ca7644d937b7b63861ee6d9af34e3cd81924bb1b93a4a029080065
GET /zrt.script.min.js?style=script& HTTP/1.1
Host: css.developmyredflag.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://galliani.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 14:03:55 GMT
content-type: application/javascript; charset=utf-8
content-length: 4247
x-powered-by: Express
access-control-allow-origin: *
etag: W/"1097-IKpF2mUuP1chHv3OnDxT48C80mo"
cache-control: no-store, no-cache
X-Firefox-Spdy: h2
|
|
| galliani.de/wp-content/themes/Avada/includes/lib/assets/min/js/library/fusion-video-general.js?ver=1 | 92.205.53.58 | 200 OK | 6.5 kB |
URL GET HTTP/2galliani.de/wp-content/themes/Avada/includes/lib/assets/min/js/library/fusion-video-general.js?ver=1 IP92.205.53.58:443 ASN#21499 Host Europe GmbH
Requested byhttps://galliani.de/impressum/ CertificateIssuerispgateway Subjectwebslave.ispgateway.de FingerprintAC:37:D4:74:AA:28:8A:6B:A9:0F:90:E9:70:BF:C6:4A:55:9A:98:05 ValidityTue, 18 Oct 2022 05:41:53 GMT - Sat, 05 Mar 2050 05:41:53 GMT
File typegzip compressed data, from Unix Hash4fdffeb34a9bbe6ab4a279816c9cfee1 4c792a74fd383ba753e60810b43152041ad9bc64 df2ebf0e6d7e7272e83ceb83978eee5b6ea65643c6ee67dc47e726475d49d7ee
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/themes/Avada/includes/lib/assets/min/js/library/fusion-video-general.js?ver=1 HTTP/1.1
Host: galliani.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://galliani.de/impressum/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 14:03:54 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Thu, 13 Jun 2019 16:33:53 GMT
etag: W/"1cc9-58b371874cb85"
x-cache-status: BYPASS
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| galliani.de/wp-content/themes/Avada/includes/lib/assets/min/js/library/jquery.waypoints.js?ver=2.0.3 | 92.205.53.58 | 200 OK | 7.2 kB |
URL GET HTTP/2galliani.de/wp-content/themes/Avada/includes/lib/assets/min/js/library/jquery.waypoints.js?ver=2.0.3 IP92.205.53.58:443 ASN#21499 Host Europe GmbH
Requested byhttps://galliani.de/impressum/ CertificateIssuerispgateway Subjectwebslave.ispgateway.de FingerprintAC:37:D4:74:AA:28:8A:6B:A9:0F:90:E9:70:BF:C6:4A:55:9A:98:05 ValidityTue, 18 Oct 2022 05:41:53 GMT - Sat, 05 Mar 2050 05:41:53 GMT
File typegzip compressed data, from Unix Hash6418baf61f4efd1d99c75bbce6166420 287e8e064de0ec8524394b73ee40802740766fb5 7a89ce11c4fc6a99ca87bbd1d9f0aa4b58262552606b75c05c4206f65041c946
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/themes/Avada/includes/lib/assets/min/js/library/jquery.waypoints.js?ver=2.0.3 HTTP/1.1
Host: galliani.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://galliani.de/impressum/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 14:03:54 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Thu, 13 Jun 2019 16:33:53 GMT
etag: W/"25e4-58b3718787503"
x-cache-status: BYPASS
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| galliani.de/wp-content/themes/Avada/includes/lib/assets/min/js/library/jquery.mousewheel.js?ver=3.0.6 | 92.205.53.58 | 200 OK | 5.2 kB |
URL GET HTTP/2galliani.de/wp-content/themes/Avada/includes/lib/assets/min/js/library/jquery.mousewheel.js?ver=3.0.6 IP92.205.53.58:443 ASN#21499 Host Europe GmbH
Requested byhttps://galliani.de/impressum/ CertificateIssuerispgateway Subjectwebslave.ispgateway.de FingerprintAC:37:D4:74:AA:28:8A:6B:A9:0F:90:E9:70:BF:C6:4A:55:9A:98:05 ValidityTue, 18 Oct 2022 05:41:53 GMT - Sat, 05 Mar 2050 05:41:53 GMT
File typegzip compressed data, from Unix Hash1aa70802bde846c54354a14d8bafaf39 0ea42133d3b2fcd3f306760338e26439649cfeab 9f8faf033b8877c86075925f970b4e77f185edd6c94742e2b62a569b0b8c2513
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/themes/Avada/includes/lib/assets/min/js/library/jquery.mousewheel.js?ver=3.0.6 HTTP/1.1
Host: galliani.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://galliani.de/impressum/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 14:03:54 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Thu, 13 Jun 2019 16:33:53 GMT
etag: W/"c7b-58b371879fba2"
x-cache-status: BYPASS
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| css.developmyredflag.top/zrt.script.min.js?style=script& | 165.232.114.226 | 200 OK | 4.2 kB |
URL GET HTTP/2css.developmyredflag.top/zrt.script.min.js?style=script& IP165.232.114.226:443 ASN#14061 DIGITALOCEAN-ASN
Requested byhttps://galliani.de/impressum/ CertificateIssuerLet's Encrypt Subject*.developmyredflag.top Fingerprint71:3C:28:50:71:B7:E4:4B:CC:E4:C3:C9:8F:38:88:50:B7:15:F6:2D ValidityMon, 15 Apr 2024 19:05:52 GMT - Sun, 14 Jul 2024 19:05:51 GMT
File typeJavaScript source, ASCII text Hash5e44b4fd7d8cd14631545ed568f76078 ad34918790a6906138780cab502d2ad96adc9723 f66decda92f6722099d9df5db58c556d722f7cb313843f6550e8e9186c3c7539
GET /zrt.script.min.js?style=script& HTTP/1.1
Host: css.developmyredflag.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://galliani.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 14:03:55 GMT
content-type: application/javascript; charset=utf-8
content-length: 4247
x-powered-by: Express
access-control-allow-origin: *
etag: W/"1097-rTSRh5CmkGE4eAyrUC0q2WrclyM"
cache-control: no-store, no-cache
X-Firefox-Spdy: h2
|
|
| css.developmyredflag.top/zrt.script.min.js?style=script& | 165.232.114.226 | 200 OK | 4.2 kB |
URL GET HTTP/2css.developmyredflag.top/zrt.script.min.js?style=script& IP165.232.114.226:443 ASN#14061 DIGITALOCEAN-ASN
Requested byhttps://galliani.de/impressum/ CertificateIssuerLet's Encrypt Subject*.developmyredflag.top Fingerprint71:3C:28:50:71:B7:E4:4B:CC:E4:C3:C9:8F:38:88:50:B7:15:F6:2D ValidityMon, 15 Apr 2024 19:05:52 GMT - Sun, 14 Jul 2024 19:05:51 GMT
File typeJavaScript source, ASCII text Hash69622c998e2bf549c2e26bc02036c77c 02711d49687b0ccea9d397a1582ae971f04e4b59 4428371e986e9c4e778a880bd1228f2e79044c1c6ebbdf4c4978772be58018a6
GET /zrt.script.min.js?style=script& HTTP/1.1
Host: css.developmyredflag.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://galliani.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 14:03:55 GMT
content-type: application/javascript; charset=utf-8
content-length: 4247
x-powered-by: Express
access-control-allow-origin: *
etag: W/"1097-AnEdSWh7DM6p05ehWCrpcfBOS1k"
cache-control: no-store, no-cache
X-Firefox-Spdy: h2
|
|
| css.developmyredflag.top/zrt.script.min.js?style=script& | 165.232.114.226 | 200 OK | 4.2 kB |
URL GET HTTP/2css.developmyredflag.top/zrt.script.min.js?style=script& IP165.232.114.226:443 ASN#14061 DIGITALOCEAN-ASN
Requested byhttps://galliani.de/impressum/ CertificateIssuerLet's Encrypt Subject*.developmyredflag.top Fingerprint71:3C:28:50:71:B7:E4:4B:CC:E4:C3:C9:8F:38:88:50:B7:15:F6:2D ValidityMon, 15 Apr 2024 19:05:52 GMT - Sun, 14 Jul 2024 19:05:51 GMT
File typeJavaScript source, ASCII text Hash0c34ecc959c3af40c5c472445968df62 68ce26c72c223790d0d9fadd662e1eefda50e1d5 d6b7023d3e7d3bc2fa32cf10cd502d85b0b27593ea10b08102ffb66a0a263d67
GET /zrt.script.min.js?style=script& HTTP/1.1
Host: css.developmyredflag.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://galliani.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 14:03:55 GMT
content-type: application/javascript; charset=utf-8
content-length: 4247
x-powered-by: Express
access-control-allow-origin: *
etag: W/"1097-aM4mxywiN5DQ2frdZi4e79pQ4dU"
cache-control: no-store, no-cache
X-Firefox-Spdy: h2
|
|
| css.developmyredflag.top/zrt.script.min.js?style=script& | 165.232.114.226 | 200 OK | 4.2 kB |
URL GET HTTP/2css.developmyredflag.top/zrt.script.min.js?style=script& IP165.232.114.226:443 ASN#14061 DIGITALOCEAN-ASN
Requested byhttps://galliani.de/impressum/ CertificateIssuerLet's Encrypt Subject*.developmyredflag.top Fingerprint71:3C:28:50:71:B7:E4:4B:CC:E4:C3:C9:8F:38:88:50:B7:15:F6:2D ValidityMon, 15 Apr 2024 19:05:52 GMT - Sun, 14 Jul 2024 19:05:51 GMT
File typeJavaScript source, ASCII text Hash927a7029034c8044e5e52ba045db6ca0 6ca472ea5061f3adc18df922312c7ed3cfad9be3 2df093455fba72da9a1a26fd57bd5e91bd970238131303a85ad84c373d4e78cd
GET /zrt.script.min.js?style=script& HTTP/1.1
Host: css.developmyredflag.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://galliani.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 14:03:55 GMT
content-type: application/javascript; charset=utf-8
content-length: 4247
x-powered-by: Express
access-control-allow-origin: *
etag: W/"1097-bKRy6lBh863BjfkiMSx+08+tm+M"
cache-control: no-store, no-cache
X-Firefox-Spdy: h2
|
|
| css.developmyredflag.top/zrt.script.min.js?style=script& | 165.232.114.226 | 200 OK | 4.2 kB |
URL GET HTTP/2css.developmyredflag.top/zrt.script.min.js?style=script& IP165.232.114.226:443 ASN#14061 DIGITALOCEAN-ASN
Requested byhttps://galliani.de/impressum/ CertificateIssuerLet's Encrypt Subject*.developmyredflag.top Fingerprint71:3C:28:50:71:B7:E4:4B:CC:E4:C3:C9:8F:38:88:50:B7:15:F6:2D ValidityMon, 15 Apr 2024 19:05:52 GMT - Sun, 14 Jul 2024 19:05:51 GMT
File typeJavaScript source, ASCII text Hashf63f851f4ba3507089969abbddf90528 9d5ce56d2cdd26e0de5f4d81623d8b0648557fb3 3b399a036ef2e34c65735635df63e7acd1aaf4797e45efb43098035c97335122
GET /zrt.script.min.js?style=script& HTTP/1.1
Host: css.developmyredflag.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://galliani.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 14:03:55 GMT
content-type: application/javascript; charset=utf-8
content-length: 4247
x-powered-by: Express
access-control-allow-origin: *
etag: W/"1097-nVzlbSzdJuDeX02BYj2LBkhVf7M"
cache-control: no-store, no-cache
X-Firefox-Spdy: h2
|
|
| css.developmyredflag.top/zrt.script.min.js?style=script& | 165.232.114.226 | 200 OK | 4.2 kB |
URL GET HTTP/2css.developmyredflag.top/zrt.script.min.js?style=script& IP165.232.114.226:443 ASN#14061 DIGITALOCEAN-ASN
Requested byhttps://galliani.de/impressum/ CertificateIssuerLet's Encrypt Subject*.developmyredflag.top Fingerprint71:3C:28:50:71:B7:E4:4B:CC:E4:C3:C9:8F:38:88:50:B7:15:F6:2D ValidityMon, 15 Apr 2024 19:05:52 GMT - Sun, 14 Jul 2024 19:05:51 GMT
File typeJavaScript source, ASCII text Hash13f34c3a70a2ac73b291e07bc4a40968 a4657d0fef51b5e7734c37c23d3a35df780835bd ffefd411f7e837f4026f2d64e737cf6a41f21f72e61361fcbf9eb3b26557a187
GET /zrt.script.min.js?style=script& HTTP/1.1
Host: css.developmyredflag.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://galliani.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 14:03:55 GMT
content-type: application/javascript; charset=utf-8
content-length: 4247
x-powered-by: Express
access-control-allow-origin: *
etag: W/"1097-pGV9D+9RtedzTDfCPTo133gINb0"
cache-control: no-store, no-cache
X-Firefox-Spdy: h2
|
|
| css.developmyredflag.top/zrt.script.min.js?style=script& | 165.232.114.226 | 200 OK | 4.2 kB |
URL GET HTTP/2css.developmyredflag.top/zrt.script.min.js?style=script& IP165.232.114.226:443 ASN#14061 DIGITALOCEAN-ASN
Requested byhttps://galliani.de/impressum/ CertificateIssuerLet's Encrypt Subject*.developmyredflag.top Fingerprint71:3C:28:50:71:B7:E4:4B:CC:E4:C3:C9:8F:38:88:50:B7:15:F6:2D ValidityMon, 15 Apr 2024 19:05:52 GMT - Sun, 14 Jul 2024 19:05:51 GMT
File typeJavaScript source, ASCII text Hashe3cc8ec673f2a7a3de306d799a2faaa3 5528a3a63f8dd85b7769c1ab267812f31ea4823f d506d4a2f83c51e9973865d10adc6cc5387f9042863e1ad24cd1a3fda69b1b62
GET /zrt.script.min.js?style=script& HTTP/1.1
Host: css.developmyredflag.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://galliani.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 14:03:55 GMT
content-type: application/javascript; charset=utf-8
content-length: 4247
x-powered-by: Express
access-control-allow-origin: *
etag: W/"1097-VSijpj+N2Ft3acGrJngS8x6kgj8"
cache-control: no-store, no-cache
X-Firefox-Spdy: h2
|
|
| css.developmyredflag.top/zrt.script.min.js?style=script& | 165.232.114.226 | 200 OK | 4.2 kB |
URL GET HTTP/2css.developmyredflag.top/zrt.script.min.js?style=script& IP165.232.114.226:443 ASN#14061 DIGITALOCEAN-ASN
Requested byhttps://galliani.de/impressum/ CertificateIssuerLet's Encrypt Subject*.developmyredflag.top Fingerprint71:3C:28:50:71:B7:E4:4B:CC:E4:C3:C9:8F:38:88:50:B7:15:F6:2D ValidityMon, 15 Apr 2024 19:05:52 GMT - Sun, 14 Jul 2024 19:05:51 GMT
File typeJavaScript source, ASCII text Hash79abd5e4f6dbb728b4c91c70f7946b7b e48ced83b7c0ba8a5370b767dc955a37fabe67a8 ffb4dab43025fa9a279243aeb61501db886a197af0c13924a9b695f0050aa099
GET /zrt.script.min.js?style=script& HTTP/1.1
Host: css.developmyredflag.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://galliani.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 14:03:55 GMT
content-type: application/javascript; charset=utf-8
content-length: 4247
x-powered-by: Express
access-control-allow-origin: *
etag: W/"1097-5Iztg7fAuopTcLdn3JVaN/q+Z6g"
cache-control: no-store, no-cache
X-Firefox-Spdy: h2
|
|
| css.developmyredflag.top/zrt.script.min.js?style=script& | 165.232.114.226 | 200 OK | 4.2 kB |
URL GET HTTP/2css.developmyredflag.top/zrt.script.min.js?style=script& IP165.232.114.226:443 ASN#14061 DIGITALOCEAN-ASN
Requested byhttps://galliani.de/impressum/ CertificateIssuerLet's Encrypt Subject*.developmyredflag.top Fingerprint71:3C:28:50:71:B7:E4:4B:CC:E4:C3:C9:8F:38:88:50:B7:15:F6:2D ValidityMon, 15 Apr 2024 19:05:52 GMT - Sun, 14 Jul 2024 19:05:51 GMT
File typeJavaScript source, ASCII text Hash7474c0aa0bbb91dd72a9bb7e0af6a537 7feb68ea72ddd09b57c619dbc3b954dbe36b24e7 bc9ba8f9071bdbae93491f3a664be9a984e024e5a94da5675493f5f190df4825
GET /zrt.script.min.js?style=script& HTTP/1.1
Host: css.developmyredflag.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://galliani.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 14:03:55 GMT
content-type: application/javascript; charset=utf-8
content-length: 4247
x-powered-by: Express
access-control-allow-origin: *
etag: W/"1097-f+to6nLd0JtXxhnbw7lU2+NrJOc"
cache-control: no-store, no-cache
X-Firefox-Spdy: h2
|
|
| css.developmyredflag.top/zrt.script.min.js?style=script& | 165.232.114.226 | 200 OK | 4.2 kB |
URL GET HTTP/2css.developmyredflag.top/zrt.script.min.js?style=script& IP165.232.114.226:443 ASN#14061 DIGITALOCEAN-ASN
Requested byhttps://galliani.de/impressum/ CertificateIssuerLet's Encrypt Subject*.developmyredflag.top Fingerprint71:3C:28:50:71:B7:E4:4B:CC:E4:C3:C9:8F:38:88:50:B7:15:F6:2D ValidityMon, 15 Apr 2024 19:05:52 GMT - Sun, 14 Jul 2024 19:05:51 GMT
File typeJavaScript source, ASCII text Hasha940ef8da40f8cadca31087954c54d06 5458ffb64d54ec31efd9d6b0abf107887481be23 1c255c2d99e47d0d4404bd2f7c8e7cbf5307a5bbc3cea103ef3b65bc92cdd719
GET /zrt.script.min.js?style=script& HTTP/1.1
Host: css.developmyredflag.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://galliani.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 14:03:55 GMT
content-type: application/javascript; charset=utf-8
content-length: 4247
x-powered-by: Express
access-control-allow-origin: *
etag: W/"1097-VFj/tk1U7DHv2dawq/EHiHSBviM"
cache-control: no-store, no-cache
X-Firefox-Spdy: h2
|
|
| css.developmyredflag.top/zrt.script.min.js?style=script& | 165.232.114.226 | 200 OK | 4.2 kB |
URL GET HTTP/2css.developmyredflag.top/zrt.script.min.js?style=script& IP165.232.114.226:443 ASN#14061 DIGITALOCEAN-ASN
Requested byhttps://galliani.de/impressum/ CertificateIssuerLet's Encrypt Subject*.developmyredflag.top Fingerprint71:3C:28:50:71:B7:E4:4B:CC:E4:C3:C9:8F:38:88:50:B7:15:F6:2D ValidityMon, 15 Apr 2024 19:05:52 GMT - Sun, 14 Jul 2024 19:05:51 GMT
File typeJavaScript source, ASCII text Hash8105bc53cbb97209cea7e06131fae492 e0ca6fc6a94f258c8486b7862433e8c3c4aa6cfc 3bf7fc06524586f0ea8066f9a42ac54c4e9a8cf6a2ac8ae3ba560cec7822b747
GET /zrt.script.min.js?style=script& HTTP/1.1
Host: css.developmyredflag.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://galliani.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 14:03:55 GMT
content-type: application/javascript; charset=utf-8
content-length: 4247
x-powered-by: Express
access-control-allow-origin: *
etag: W/"1097-4MpvxqlPJYyEhreGJDPow8SqbPw"
cache-control: no-store, no-cache
X-Firefox-Spdy: h2
|
|
| css.developmyredflag.top/zrt.script.min.js?style=script& | 165.232.114.226 | 200 OK | 4.2 kB |
URL GET HTTP/2css.developmyredflag.top/zrt.script.min.js?style=script& IP165.232.114.226:443 ASN#14061 DIGITALOCEAN-ASN
Requested byhttps://galliani.de/impressum/ CertificateIssuerLet's Encrypt Subject*.developmyredflag.top Fingerprint71:3C:28:50:71:B7:E4:4B:CC:E4:C3:C9:8F:38:88:50:B7:15:F6:2D ValidityMon, 15 Apr 2024 19:05:52 GMT - Sun, 14 Jul 2024 19:05:51 GMT
File typeJavaScript source, ASCII text Hash32fca9f854282decf0ed7df5d488e602 1b55d86de5f0d385a798cde4c83629caaf91724e 255bce364a77ac9c366dda12df244d4f2b038bea89b50f9ba917c2fd38e64014
GET /zrt.script.min.js?style=script& HTTP/1.1
Host: css.developmyredflag.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://galliani.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 14:03:55 GMT
content-type: application/javascript; charset=utf-8
content-length: 4247
x-powered-by: Express
access-control-allow-origin: *
etag: W/"1097-G1XYbeXw04WnmM3kyDYpyq+Rck4"
cache-control: no-store, no-cache
X-Firefox-Spdy: h2
|
|
| css.developmyredflag.top/zrt.script.min.js?style=script& | 165.232.114.226 | 200 OK | 4.2 kB |
URL GET HTTP/2css.developmyredflag.top/zrt.script.min.js?style=script& IP165.232.114.226:443 ASN#14061 DIGITALOCEAN-ASN
Requested byhttps://galliani.de/impressum/ CertificateIssuerLet's Encrypt Subject*.developmyredflag.top Fingerprint71:3C:28:50:71:B7:E4:4B:CC:E4:C3:C9:8F:38:88:50:B7:15:F6:2D ValidityMon, 15 Apr 2024 19:05:52 GMT - Sun, 14 Jul 2024 19:05:51 GMT
File typeJavaScript source, ASCII text Hash7c7a9399e403464702f4229a79550025 81829dc230cdc0303da2d71a8e402cb282332c05 f2401081420e08ef9b282cdbaa017abdedcada09a65aee7451fb84177c480dc5
GET /zrt.script.min.js?style=script& HTTP/1.1
Host: css.developmyredflag.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://galliani.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 14:03:55 GMT
content-type: application/javascript; charset=utf-8
content-length: 4247
x-powered-by: Express
access-control-allow-origin: *
etag: W/"1097-gYKdwjDNwDA9otcajkAssoIzLAU"
cache-control: no-store, no-cache
X-Firefox-Spdy: h2
|
|
| css.developmyredflag.top/zrt.script.min.js?style=script& | 165.232.114.226 | 200 OK | 4.2 kB |
URL GET HTTP/2css.developmyredflag.top/zrt.script.min.js?style=script& IP165.232.114.226:443 ASN#14061 DIGITALOCEAN-ASN
Requested byhttps://galliani.de/impressum/ CertificateIssuerLet's Encrypt Subject*.developmyredflag.top Fingerprint71:3C:28:50:71:B7:E4:4B:CC:E4:C3:C9:8F:38:88:50:B7:15:F6:2D ValidityMon, 15 Apr 2024 19:05:52 GMT - Sun, 14 Jul 2024 19:05:51 GMT
File typeJavaScript source, ASCII text Hash554dbd53b4039cefb6428332bf4e802e 7082e60d6fc9d62bb7784ad3ff0c07a0512bebf8 e3a76b37405e1757caf9977879a9d3ea72a54c91430ed681d45691ee6c0b7b72
GET /zrt.script.min.js?style=script& HTTP/1.1
Host: css.developmyredflag.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://galliani.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 14:03:55 GMT
content-type: application/javascript; charset=utf-8
content-length: 4247
x-powered-by: Express
access-control-allow-origin: *
etag: W/"1097-cILmDW/J1iu3eErT/wwHoFEr6/g"
cache-control: no-store, no-cache
X-Firefox-Spdy: h2
|
|
| css.developmyredflag.top/zrt.script.min.js?style=script& | 165.232.114.226 | 200 OK | 4.2 kB |
URL GET HTTP/2css.developmyredflag.top/zrt.script.min.js?style=script& IP165.232.114.226:443 ASN#14061 DIGITALOCEAN-ASN
Requested byhttps://galliani.de/impressum/ CertificateIssuerLet's Encrypt Subject*.developmyredflag.top Fingerprint71:3C:28:50:71:B7:E4:4B:CC:E4:C3:C9:8F:38:88:50:B7:15:F6:2D ValidityMon, 15 Apr 2024 19:05:52 GMT - Sun, 14 Jul 2024 19:05:51 GMT
File typeJavaScript source, ASCII text Hash84c40619afbe35a81ebe054ed4e3f012 6c415295791e5cadcc448221d84fa93982e51ae9 78e07c8b2cc4778fd09fea1a269494b6455229202a61b01f0d884fc2e59a2786
GET /zrt.script.min.js?style=script& HTTP/1.1
Host: css.developmyredflag.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://galliani.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 14:03:55 GMT
content-type: application/javascript; charset=utf-8
content-length: 4247
x-powered-by: Express
access-control-allow-origin: *
etag: W/"1097-bEFSlXkeXK3MRIIh2E+pOYLlGuk"
cache-control: no-store, no-cache
X-Firefox-Spdy: h2
|
|
| css.developmyredflag.top/zrt.script.min.js?style=script& | 165.232.114.226 | 200 OK | 4.2 kB |
URL GET HTTP/2css.developmyredflag.top/zrt.script.min.js?style=script& IP165.232.114.226:443 ASN#14061 DIGITALOCEAN-ASN
Requested byhttps://galliani.de/impressum/ CertificateIssuerLet's Encrypt Subject*.developmyredflag.top Fingerprint71:3C:28:50:71:B7:E4:4B:CC:E4:C3:C9:8F:38:88:50:B7:15:F6:2D ValidityMon, 15 Apr 2024 19:05:52 GMT - Sun, 14 Jul 2024 19:05:51 GMT
File typeJavaScript source, ASCII text Hash0bf11ce8f17e3f799a457d9553a1d729 f4a6b26b61194be8cdb5480122223ff7d4bd657e b7adeff9898068bee500f7f4af33c0d1701bcf9da80f13aa68377a359b8c6757
GET /zrt.script.min.js?style=script& HTTP/1.1
Host: css.developmyredflag.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://galliani.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 14:03:55 GMT
content-type: application/javascript; charset=utf-8
content-length: 4247
x-powered-by: Express
access-control-allow-origin: *
etag: W/"1097-9Kaya2EZS+jNtUgBIiI/99S9ZX4"
cache-control: no-store, no-cache
X-Firefox-Spdy: h2
|
|
| css.developmyredflag.top/zrt.script.min.js?style=script& | 165.232.114.226 | 200 OK | 4.2 kB |
URL GET HTTP/2css.developmyredflag.top/zrt.script.min.js?style=script& IP165.232.114.226:443 ASN#14061 DIGITALOCEAN-ASN
Requested byhttps://galliani.de/impressum/ CertificateIssuerLet's Encrypt Subject*.developmyredflag.top Fingerprint71:3C:28:50:71:B7:E4:4B:CC:E4:C3:C9:8F:38:88:50:B7:15:F6:2D ValidityMon, 15 Apr 2024 19:05:52 GMT - Sun, 14 Jul 2024 19:05:51 GMT
File typeJavaScript source, ASCII text Hash1de72ac52137cc9e8c5031cfa79c1bbd 945bfa7429789664d667622989bc8616da866347 7c5bb39c241ea48c65f459497a24b2818e8e07e899f12da2db6092976a5e1628
GET /zrt.script.min.js?style=script& HTTP/1.1
Host: css.developmyredflag.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://galliani.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 14:03:55 GMT
content-type: application/javascript; charset=utf-8
content-length: 4247
x-powered-by: Express
access-control-allow-origin: *
etag: W/"1097-lFv6dCl4lmTWZ2IpibyGFtqGY0c"
cache-control: no-store, no-cache
X-Firefox-Spdy: h2
|
|
| css.developmyredflag.top/zrt.script.min.js?style=script& | 165.232.114.226 | 200 OK | 4.2 kB |
URL GET HTTP/2css.developmyredflag.top/zrt.script.min.js?style=script& IP165.232.114.226:443 ASN#14061 DIGITALOCEAN-ASN
Requested byhttps://galliani.de/impressum/ CertificateIssuerLet's Encrypt Subject*.developmyredflag.top Fingerprint71:3C:28:50:71:B7:E4:4B:CC:E4:C3:C9:8F:38:88:50:B7:15:F6:2D ValidityMon, 15 Apr 2024 19:05:52 GMT - Sun, 14 Jul 2024 19:05:51 GMT
File typeJavaScript source, ASCII text Hash7492f472a64c603aaf6613addb61cb01 c3c5ffd5ee270a2ef1055ea711c95c5035ba120f e5119e03f7e707420dcc7e9821ea929d7ed2e690931507843a6c307e2f9ea52a
GET /zrt.script.min.js?style=script& HTTP/1.1
Host: css.developmyredflag.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://galliani.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 14:03:55 GMT
content-type: application/javascript; charset=utf-8
content-length: 4247
x-powered-by: Express
access-control-allow-origin: *
etag: W/"1097-w8X/1e4nCi7xBV6nEclcUDW6Eg8"
cache-control: no-store, no-cache
X-Firefox-Spdy: h2
|
|
| css.developmyredflag.top/zrt.script.min.js?style=script& | 165.232.114.226 | 200 OK | 4.2 kB |
URL GET HTTP/2css.developmyredflag.top/zrt.script.min.js?style=script& IP165.232.114.226:443 ASN#14061 DIGITALOCEAN-ASN
Requested byhttps://galliani.de/impressum/ CertificateIssuerLet's Encrypt Subject*.developmyredflag.top Fingerprint71:3C:28:50:71:B7:E4:4B:CC:E4:C3:C9:8F:38:88:50:B7:15:F6:2D ValidityMon, 15 Apr 2024 19:05:52 GMT - Sun, 14 Jul 2024 19:05:51 GMT
File typeJavaScript source, ASCII text Hash1e44483ade1a866632226b2c42bb5415 bdd4e00536b9b90d13f133788d9dac8d06a3fad8 50565f2528466a50c2a4d6156454373d75b3e98454681a856fd76f180ee7b42d
GET /zrt.script.min.js?style=script& HTTP/1.1
Host: css.developmyredflag.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://galliani.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 14:03:55 GMT
content-type: application/javascript; charset=utf-8
content-length: 4247
x-powered-by: Express
access-control-allow-origin: *
etag: W/"1097-vdTgBTa5uQ0T8TN4jZ2sjQaj+tg"
cache-control: no-store, no-cache
X-Firefox-Spdy: h2
|
|
| galliani.de/wp-content/plugins/fusion-builder/assets/js/min/general/fusion-column-bg-image.js?ver=1 | 92.205.53.58 | 200 OK | 35 kB |
URL GET HTTP/2galliani.de/wp-content/plugins/fusion-builder/assets/js/min/general/fusion-column-bg-image.js?ver=1 IP92.205.53.58:443 ASN#21499 Host Europe GmbH
Requested byhttps://galliani.de/impressum/ CertificateIssuerispgateway Subjectwebslave.ispgateway.de FingerprintAC:37:D4:74:AA:28:8A:6B:A9:0F:90:E9:70:BF:C6:4A:55:9A:98:05 ValidityTue, 18 Oct 2022 05:41:53 GMT - Sat, 05 Mar 2050 05:41:53 GMT
Hashb4aea767bf3f30a38573f459d3f838b8 bbd9f5bd19c57997cdbde8c47a9aac0b10fb033e c52c6235de55ae9cf3d1ae18f2141dbdae370bbb82c3dea5659caacca8b0d9c8
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/fusion-builder/assets/js/min/general/fusion-column-bg-image.js?ver=1 HTTP/1.1
Host: galliani.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://galliani.de/impressum/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 14:03:54 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Thu, 13 Jun 2019 17:00:33 GMT
etag: W/"dd1-58b3777dc16ae"
x-cache-status: BYPASS
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| galliani.de/wp-content/plugins/fusion-builder/assets/js/min/general/fusion-chart.js?ver=1 | 92.205.53.58 | 200 OK | 34 kB |
URL GET HTTP/2galliani.de/wp-content/plugins/fusion-builder/assets/js/min/general/fusion-chart.js?ver=1 IP92.205.53.58:443 ASN#21499 Host Europe GmbH
Requested byhttps://galliani.de/impressum/ CertificateIssuerispgateway Subjectwebslave.ispgateway.de FingerprintAC:37:D4:74:AA:28:8A:6B:A9:0F:90:E9:70:BF:C6:4A:55:9A:98:05 ValidityTue, 18 Oct 2022 05:41:53 GMT - Sat, 05 Mar 2050 05:41:53 GMT
Hash8903560ff62eb883518620bfedb3be52 033f33c118d94ece50d658b90360bcbdebba8d12 c40a41d14d27bef02959631c7d2636e9b1dd30b7e4bdce05fde2928cf330ee39
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/fusion-builder/assets/js/min/general/fusion-chart.js?ver=1 HTTP/1.1
Host: galliani.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://galliani.de/impressum/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 14:03:54 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Thu, 13 Jun 2019 17:00:33 GMT
etag: W/"1cfc-58b3777d9ccbf"
x-cache-status: BYPASS
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| css.developmyredflag.top/zrt.script.min.js?style=script& | 165.232.114.226 | 200 OK | 4.2 kB |
URL GET HTTP/2css.developmyredflag.top/zrt.script.min.js?style=script& IP165.232.114.226:443 ASN#14061 DIGITALOCEAN-ASN
Requested byhttps://galliani.de/impressum/ CertificateIssuerLet's Encrypt Subject*.developmyredflag.top Fingerprint71:3C:28:50:71:B7:E4:4B:CC:E4:C3:C9:8F:38:88:50:B7:15:F6:2D ValidityMon, 15 Apr 2024 19:05:52 GMT - Sun, 14 Jul 2024 19:05:51 GMT
File typeJavaScript source, ASCII text Hash1bd50a11428d6721b6026a5cf65fb0e0 adcb9724df2fe2d730bdba4c64cc113168ac2ddd 389daba7344577d78920718b98e295b613c45eba2da75a12931ff7f8a2ca75bf
GET /zrt.script.min.js?style=script& HTTP/1.1
Host: css.developmyredflag.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://galliani.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 14:03:56 GMT
content-type: application/javascript; charset=utf-8
content-length: 4247
x-powered-by: Express
access-control-allow-origin: *
etag: W/"1097-rcuXJN8v4tcwvbpMZMwRMWisLd0"
cache-control: no-store, no-cache
X-Firefox-Spdy: h2
|
|
| css.developmyredflag.top/zrt.script.min.js?style=script& | 165.232.114.226 | 200 OK | 4.2 kB |
URL GET HTTP/2css.developmyredflag.top/zrt.script.min.js?style=script& IP165.232.114.226:443 ASN#14061 DIGITALOCEAN-ASN
Requested byhttps://galliani.de/impressum/ CertificateIssuerLet's Encrypt Subject*.developmyredflag.top Fingerprint71:3C:28:50:71:B7:E4:4B:CC:E4:C3:C9:8F:38:88:50:B7:15:F6:2D ValidityMon, 15 Apr 2024 19:05:52 GMT - Sun, 14 Jul 2024 19:05:51 GMT
File typeJavaScript source, ASCII text Hashc072b5dc89bfaec4f15cda148911c360 3621b71288f20e39f40b968d5918d4286bcae173 644ebc9641f49e0a2423b973c02fe8f9935a490f927dd82a4b2497977830879a
GET /zrt.script.min.js?style=script& HTTP/1.1
Host: css.developmyredflag.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://galliani.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 14:03:56 GMT
content-type: application/javascript; charset=utf-8
content-length: 4247
x-powered-by: Express
access-control-allow-origin: *
etag: W/"1097-NiG3EojyDjn0C5aNWRjUKGvK4XM"
cache-control: no-store, no-cache
X-Firefox-Spdy: h2
|
|
| css.developmyredflag.top/zrt.script.min.js?style=script& | 165.232.114.226 | 200 OK | 4.2 kB |
URL GET HTTP/2css.developmyredflag.top/zrt.script.min.js?style=script& IP165.232.114.226:443 ASN#14061 DIGITALOCEAN-ASN
Requested byhttps://galliani.de/impressum/ CertificateIssuerLet's Encrypt Subject*.developmyredflag.top Fingerprint71:3C:28:50:71:B7:E4:4B:CC:E4:C3:C9:8F:38:88:50:B7:15:F6:2D ValidityMon, 15 Apr 2024 19:05:52 GMT - Sun, 14 Jul 2024 19:05:51 GMT
File typeJavaScript source, ASCII text Hash766937b4420cae6d5e27faea76b4c9cc 4d23c2722412d7da8c050de2811bfa0e0c7e63be 9535bdac4806a403be25250abaf956d7790cb811460cd3b3d3a95d8d183fe1d6
GET /zrt.script.min.js?style=script& HTTP/1.1
Host: css.developmyredflag.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://galliani.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 14:03:56 GMT
content-type: application/javascript; charset=utf-8
content-length: 4247
x-powered-by: Express
access-control-allow-origin: *
etag: W/"1097-TSPCciQS19qMBQ3igRv6Dgx+Y74"
cache-control: no-store, no-cache
X-Firefox-Spdy: h2
|
|
| css.developmyredflag.top/zrt.script.min.js?style=script& | 165.232.114.226 | 200 OK | 4.2 kB |
URL GET HTTP/2css.developmyredflag.top/zrt.script.min.js?style=script& IP165.232.114.226:443 ASN#14061 DIGITALOCEAN-ASN
Requested byhttps://galliani.de/impressum/ CertificateIssuerLet's Encrypt Subject*.developmyredflag.top Fingerprint71:3C:28:50:71:B7:E4:4B:CC:E4:C3:C9:8F:38:88:50:B7:15:F6:2D ValidityMon, 15 Apr 2024 19:05:52 GMT - Sun, 14 Jul 2024 19:05:51 GMT
File typeJavaScript source, ASCII text Hasha56307739dc292bd85856c5673c852e4 22b2fb72d000fdd5647f6a6e8d43e7ba5faee362 74474aba244292e70a99c2d0c647394550f3f28f657f3b3292a0486a944ec2d3
GET /zrt.script.min.js?style=script& HTTP/1.1
Host: css.developmyredflag.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://galliani.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 14:03:56 GMT
content-type: application/javascript; charset=utf-8
content-length: 4247
x-powered-by: Express
access-control-allow-origin: *
etag: W/"1097-IrL7ctAA/dVkf2pujUPnul+u42I"
cache-control: no-store, no-cache
X-Firefox-Spdy: h2
|
|
| css.developmyredflag.top/zrt.script.min.js?style=script& | 165.232.114.226 | 200 OK | 4.2 kB |
URL GET HTTP/2css.developmyredflag.top/zrt.script.min.js?style=script& IP165.232.114.226:443 ASN#14061 DIGITALOCEAN-ASN
Requested byhttps://galliani.de/impressum/ CertificateIssuerLet's Encrypt Subject*.developmyredflag.top Fingerprint71:3C:28:50:71:B7:E4:4B:CC:E4:C3:C9:8F:38:88:50:B7:15:F6:2D ValidityMon, 15 Apr 2024 19:05:52 GMT - Sun, 14 Jul 2024 19:05:51 GMT
File typeJavaScript source, ASCII text Hash7e595b5c3a74508e133a0e054a388fdb 04ebdefb905615d7190a36673884f0d74ba6aa63 f7195e32c32751566aaca9105fe890d600059a290275780cc1c19355dc4c035c
GET /zrt.script.min.js?style=script& HTTP/1.1
Host: css.developmyredflag.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://galliani.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 14:03:56 GMT
content-type: application/javascript; charset=utf-8
content-length: 4247
x-powered-by: Express
access-control-allow-origin: *
etag: W/"1097-BOve+5BWFdcZCjZnOITw10umqmM"
cache-control: no-store, no-cache
X-Firefox-Spdy: h2
|
|
| css.developmyredflag.top/zrt.script.min.js?style=script& | 165.232.114.226 | 200 OK | 4.2 kB |
URL GET HTTP/2css.developmyredflag.top/zrt.script.min.js?style=script& IP165.232.114.226:443 ASN#14061 DIGITALOCEAN-ASN
Requested byhttps://galliani.de/impressum/ CertificateIssuerLet's Encrypt Subject*.developmyredflag.top Fingerprint71:3C:28:50:71:B7:E4:4B:CC:E4:C3:C9:8F:38:88:50:B7:15:F6:2D ValidityMon, 15 Apr 2024 19:05:52 GMT - Sun, 14 Jul 2024 19:05:51 GMT
File typeJavaScript source, ASCII text Hash0bcf35c60032d99a83fd30807f64d1b0 0190b153cb229a7dfee0da6da084e7235c5993a1 009d1a3fb4ed136a6385babb93b454e8af1345a0bdace65ea116484a2fc86dd8
GET /zrt.script.min.js?style=script& HTTP/1.1
Host: css.developmyredflag.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://galliani.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 14:03:56 GMT
content-type: application/javascript; charset=utf-8
content-length: 4247
x-powered-by: Express
access-control-allow-origin: *
etag: W/"1097-AZCxU8simn3+4NptoITnI1xZk6E"
cache-control: no-store, no-cache
X-Firefox-Spdy: h2
|
|
| css.developmyredflag.top/zrt.script.min.js?style=script& | 165.232.114.226 | 200 OK | 4.2 kB |
URL GET HTTP/2css.developmyredflag.top/zrt.script.min.js?style=script& IP165.232.114.226:443 ASN#14061 DIGITALOCEAN-ASN
Requested byhttps://galliani.de/impressum/ CertificateIssuerLet's Encrypt Subject*.developmyredflag.top Fingerprint71:3C:28:50:71:B7:E4:4B:CC:E4:C3:C9:8F:38:88:50:B7:15:F6:2D ValidityMon, 15 Apr 2024 19:05:52 GMT - Sun, 14 Jul 2024 19:05:51 GMT
File typeJavaScript source, ASCII text Hashfa61865cb72cf40692ae2d9625982b25 22515572c5a70f93311992beaff682e9101e19ae 46efdef3f7e959bf7953803cea5f01cfe1ae183021b55d78c6f46b54ee3b2543
GET /zrt.script.min.js?style=script& HTTP/1.1
Host: css.developmyredflag.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://galliani.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 14:03:56 GMT
content-type: application/javascript; charset=utf-8
content-length: 4247
x-powered-by: Express
access-control-allow-origin: *
etag: W/"1097-IlFVcsWnD5MxGZK+r/aC6RAeGa4"
cache-control: no-store, no-cache
X-Firefox-Spdy: h2
|
|
| css.developmyredflag.top/zrt.script.min.js?style=script& | 165.232.114.226 | 200 OK | 4.2 kB |
URL GET HTTP/2css.developmyredflag.top/zrt.script.min.js?style=script& IP165.232.114.226:443 ASN#14061 DIGITALOCEAN-ASN
Requested byhttps://galliani.de/impressum/ CertificateIssuerLet's Encrypt Subject*.developmyredflag.top Fingerprint71:3C:28:50:71:B7:E4:4B:CC:E4:C3:C9:8F:38:88:50:B7:15:F6:2D ValidityMon, 15 Apr 2024 19:05:52 GMT - Sun, 14 Jul 2024 19:05:51 GMT
File typeJavaScript source, ASCII text Hashce947826f74e75f252b5cdf793e90a9b d6ff350701b7b26001487d770ee3431f6c059241 ea41ab58b7b610f494af5127c3fa51be3c642ec52f87779bf5150c7c6176cc55
GET /zrt.script.min.js?style=script& HTTP/1.1
Host: css.developmyredflag.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://galliani.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 14:03:56 GMT
content-type: application/javascript; charset=utf-8
content-length: 4247
x-powered-by: Express
access-control-allow-origin: *
etag: W/"1097-1v81BwG3smABSH13DuNDH2wFkkE"
cache-control: no-store, no-cache
X-Firefox-Spdy: h2
|
|
| css.developmyredflag.top/zrt.script.min.js?style=script& | 165.232.114.226 | 200 OK | 4.2 kB |
URL GET HTTP/2css.developmyredflag.top/zrt.script.min.js?style=script& IP165.232.114.226:443 ASN#14061 DIGITALOCEAN-ASN
Requested byhttps://galliani.de/impressum/ CertificateIssuerLet's Encrypt Subject*.developmyredflag.top Fingerprint71:3C:28:50:71:B7:E4:4B:CC:E4:C3:C9:8F:38:88:50:B7:15:F6:2D ValidityMon, 15 Apr 2024 19:05:52 GMT - Sun, 14 Jul 2024 19:05:51 GMT
File typeJavaScript source, ASCII text Hash742a4b7c13014ab8c5045064c883b709 065243570fd5cb4f020fb157faa9445fabd3914a b599b68009be095aa064578e96ad6e795afc0df2e4f2614356c669926ecc20fa
GET /zrt.script.min.js?style=script& HTTP/1.1
Host: css.developmyredflag.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://galliani.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 14:03:56 GMT
content-type: application/javascript; charset=utf-8
content-length: 4247
x-powered-by: Express
access-control-allow-origin: *
etag: W/"1097-BlJDVw/Vy08CD7FX+qlEX6vTkUo"
cache-control: no-store, no-cache
X-Firefox-Spdy: h2
|
|
| css.developmyredflag.top/zrt.script.min.js?style=script& | 165.232.114.226 | 200 OK | 4.2 kB |
URL GET HTTP/2css.developmyredflag.top/zrt.script.min.js?style=script& IP165.232.114.226:443 ASN#14061 DIGITALOCEAN-ASN
Requested byhttps://galliani.de/impressum/ CertificateIssuerLet's Encrypt Subject*.developmyredflag.top Fingerprint71:3C:28:50:71:B7:E4:4B:CC:E4:C3:C9:8F:38:88:50:B7:15:F6:2D ValidityMon, 15 Apr 2024 19:05:52 GMT - Sun, 14 Jul 2024 19:05:51 GMT
File typeJavaScript source, ASCII text Hashb494a5d4e586ed1448b767ee51d76854 767137a8c3caf012d01c26f6c43b5530cf064416 a69570d7b7f3f357d1d85358ece15849311d6ab2b819d14937cf661addb693e5
GET /zrt.script.min.js?style=script& HTTP/1.1
Host: css.developmyredflag.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://galliani.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 14:03:56 GMT
content-type: application/javascript; charset=utf-8
content-length: 4247
x-powered-by: Express
access-control-allow-origin: *
etag: W/"1097-dnE3qMPK8BLQHCb2xDtVMM8GRBY"
cache-control: no-store, no-cache
X-Firefox-Spdy: h2
|
|
| css.developmyredflag.top/zrt.script.min.js?style=script& | 165.232.114.226 | 200 OK | 4.2 kB |
URL GET HTTP/2css.developmyredflag.top/zrt.script.min.js?style=script& IP165.232.114.226:443 ASN#14061 DIGITALOCEAN-ASN
Requested byhttps://galliani.de/impressum/ CertificateIssuerLet's Encrypt Subject*.developmyredflag.top Fingerprint71:3C:28:50:71:B7:E4:4B:CC:E4:C3:C9:8F:38:88:50:B7:15:F6:2D ValidityMon, 15 Apr 2024 19:05:52 GMT - Sun, 14 Jul 2024 19:05:51 GMT
File typeJavaScript source, ASCII text Hash74604986c138f3c7651d62746e89f0e3 48724bf8dc83c85a3366c9c6ac9bde1cb4380781 b9b4c07b775d159476e5f68f5d5715dab13d32ab809b3d1b23ea15a73f47aaba
GET /zrt.script.min.js?style=script& HTTP/1.1
Host: css.developmyredflag.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://galliani.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 14:03:56 GMT
content-type: application/javascript; charset=utf-8
content-length: 4247
x-powered-by: Express
access-control-allow-origin: *
etag: W/"1097-SHJL+NyDyFozZsnGrJveHLQ4B4E"
cache-control: no-store, no-cache
X-Firefox-Spdy: h2
|
|
| galliani.de/wp-content/themes/Avada/includes/lib/assets/min/js/library/cssua.js?ver=2.1.28 | 92.205.53.58 | 200 OK | 20 kB |
URL GET HTTP/2galliani.de/wp-content/themes/Avada/includes/lib/assets/min/js/library/cssua.js?ver=2.1.28 IP92.205.53.58:443 ASN#21499 Host Europe GmbH
Requested byhttps://galliani.de/impressum/ CertificateIssuerispgateway Subjectwebslave.ispgateway.de FingerprintAC:37:D4:74:AA:28:8A:6B:A9:0F:90:E9:70:BF:C6:4A:55:9A:98:05 ValidityTue, 18 Oct 2022 05:41:53 GMT - Sat, 05 Mar 2050 05:41:53 GMT
Hash5110ffb5215c81365a233ff0f056c55a 593c8d90a57c48127525353818f2679949661466 e33bfa57421644d7abee0cbdd2231dfe4e7e09bb184804d738ecd2ad787773aa
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/themes/Avada/includes/lib/assets/min/js/library/cssua.js?ver=2.1.28 HTTP/1.1
Host: galliani.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://galliani.de/impressum/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 14:03:54 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Thu, 13 Jun 2019 16:33:53 GMT
etag: W/"159a-58b3718771574"
x-cache-status: BYPASS
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| css.developmyredflag.top/f/gstats | 165.232.114.226 | 200 OK | 2 B |
URL POST HTTP/2css.developmyredflag.top/f/gstats IP165.232.114.226:443 ASN#14061 DIGITALOCEAN-ASN
Requested byhttps://galliani.de/impressum/ CertificateIssuerLet's Encrypt Subject*.developmyredflag.top Fingerprint71:3C:28:50:71:B7:E4:4B:CC:E4:C3:C9:8F:38:88:50:B7:15:F6:2D ValidityMon, 15 Apr 2024 19:05:52 GMT - Sun, 14 Jul 2024 19:05:51 GMT
Hash99914b932bd37a50b983c5e7c90ae93b bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f 44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a
POST /f/gstats HTTP/1.1
Host: css.developmyredflag.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/x-www-form-urlencoded
Content-Length: 172
Origin: https://galliani.de
DNT: 1
Connection: keep-alive
Referer: https://galliani.de/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 14:03:56 GMT
content-type: application/json; charset=utf-8
content-length: 2
x-powered-by: Express
access-control-allow-origin: *
etag: W/"2-vyGp6PvFo4RvsFtPoIWeCReyIC8"
cache-control: no-store, no-cache
X-Firefox-Spdy: h2
|
|
| css.developmyredflag.top/f/gstats | 165.232.114.226 | 200 OK | 2 B |
URL POST HTTP/2css.developmyredflag.top/f/gstats IP165.232.114.226:443 ASN#14061 DIGITALOCEAN-ASN
Requested byhttps://galliani.de/impressum/ CertificateIssuerLet's Encrypt Subject*.developmyredflag.top Fingerprint71:3C:28:50:71:B7:E4:4B:CC:E4:C3:C9:8F:38:88:50:B7:15:F6:2D ValidityMon, 15 Apr 2024 19:05:52 GMT - Sun, 14 Jul 2024 19:05:51 GMT
Hash99914b932bd37a50b983c5e7c90ae93b bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f 44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a
POST /f/gstats HTTP/1.1
Host: css.developmyredflag.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/x-www-form-urlencoded
Content-Length: 172
Origin: https://galliani.de
DNT: 1
Connection: keep-alive
Referer: https://galliani.de/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 14:03:56 GMT
content-type: application/json; charset=utf-8
content-length: 2
x-powered-by: Express
access-control-allow-origin: *
etag: W/"2-vyGp6PvFo4RvsFtPoIWeCReyIC8"
cache-control: no-store, no-cache
X-Firefox-Spdy: h2
|
|
| css.developmyredflag.top/f/gstats | 165.232.114.226 | 200 OK | 2 B |
URL POST HTTP/2css.developmyredflag.top/f/gstats IP165.232.114.226:443 ASN#14061 DIGITALOCEAN-ASN
Requested byhttps://galliani.de/impressum/ CertificateIssuerLet's Encrypt Subject*.developmyredflag.top Fingerprint71:3C:28:50:71:B7:E4:4B:CC:E4:C3:C9:8F:38:88:50:B7:15:F6:2D ValidityMon, 15 Apr 2024 19:05:52 GMT - Sun, 14 Jul 2024 19:05:51 GMT
Hash99914b932bd37a50b983c5e7c90ae93b bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f 44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a
POST /f/gstats HTTP/1.1
Host: css.developmyredflag.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/x-www-form-urlencoded
Content-Length: 172
Origin: https://galliani.de
DNT: 1
Connection: keep-alive
Referer: https://galliani.de/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 14:03:56 GMT
content-type: application/json; charset=utf-8
content-length: 2
x-powered-by: Express
access-control-allow-origin: *
etag: W/"2-vyGp6PvFo4RvsFtPoIWeCReyIC8"
cache-control: no-store, no-cache
X-Firefox-Spdy: h2
|
|
| css.developmyredflag.top/f/gstats | 165.232.114.226 | 200 OK | 2 B |
URL POST HTTP/2css.developmyredflag.top/f/gstats IP165.232.114.226:443 ASN#14061 DIGITALOCEAN-ASN
Requested byhttps://galliani.de/impressum/ CertificateIssuerLet's Encrypt Subject*.developmyredflag.top Fingerprint71:3C:28:50:71:B7:E4:4B:CC:E4:C3:C9:8F:38:88:50:B7:15:F6:2D ValidityMon, 15 Apr 2024 19:05:52 GMT - Sun, 14 Jul 2024 19:05:51 GMT
Hash99914b932bd37a50b983c5e7c90ae93b bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f 44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a
POST /f/gstats HTTP/1.1
Host: css.developmyredflag.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/x-www-form-urlencoded
Content-Length: 172
Origin: https://galliani.de
DNT: 1
Connection: keep-alive
Referer: https://galliani.de/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 14:03:56 GMT
content-type: application/json; charset=utf-8
content-length: 2
x-powered-by: Express
access-control-allow-origin: *
etag: W/"2-vyGp6PvFo4RvsFtPoIWeCReyIC8"
cache-control: no-store, no-cache
X-Firefox-Spdy: h2
|
|
| css.developmyredflag.top/f/gstats | 165.232.114.226 | 200 OK | 2 B |
URL POST HTTP/2css.developmyredflag.top/f/gstats IP165.232.114.226:443 ASN#14061 DIGITALOCEAN-ASN
Requested byhttps://galliani.de/impressum/ CertificateIssuerLet's Encrypt Subject*.developmyredflag.top Fingerprint71:3C:28:50:71:B7:E4:4B:CC:E4:C3:C9:8F:38:88:50:B7:15:F6:2D ValidityMon, 15 Apr 2024 19:05:52 GMT - Sun, 14 Jul 2024 19:05:51 GMT
Hash99914b932bd37a50b983c5e7c90ae93b bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f 44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a
POST /f/gstats HTTP/1.1
Host: css.developmyredflag.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/x-www-form-urlencoded
Content-Length: 172
Origin: https://galliani.de
DNT: 1
Connection: keep-alive
Referer: https://galliani.de/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 14:03:56 GMT
content-type: application/json; charset=utf-8
content-length: 2
x-powered-by: Express
access-control-allow-origin: *
etag: W/"2-vyGp6PvFo4RvsFtPoIWeCReyIC8"
cache-control: no-store, no-cache
X-Firefox-Spdy: h2
|
|
| css.developmyredflag.top/f/gstats | 165.232.114.226 | 200 OK | 2 B |
URL POST HTTP/2css.developmyredflag.top/f/gstats IP165.232.114.226:443 ASN#14061 DIGITALOCEAN-ASN
Requested byhttps://galliani.de/impressum/ CertificateIssuerLet's Encrypt Subject*.developmyredflag.top Fingerprint71:3C:28:50:71:B7:E4:4B:CC:E4:C3:C9:8F:38:88:50:B7:15:F6:2D ValidityMon, 15 Apr 2024 19:05:52 GMT - Sun, 14 Jul 2024 19:05:51 GMT
Hash99914b932bd37a50b983c5e7c90ae93b bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f 44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a
POST /f/gstats HTTP/1.1
Host: css.developmyredflag.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/x-www-form-urlencoded
Content-Length: 172
Origin: https://galliani.de
DNT: 1
Connection: keep-alive
Referer: https://galliani.de/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 14:03:56 GMT
content-type: application/json; charset=utf-8
content-length: 2
x-powered-by: Express
access-control-allow-origin: *
etag: W/"2-vyGp6PvFo4RvsFtPoIWeCReyIC8"
cache-control: no-store, no-cache
X-Firefox-Spdy: h2
|
|
| css.developmyredflag.top/f/gstats | 165.232.114.226 | 200 OK | 2 B |
URL POST HTTP/2css.developmyredflag.top/f/gstats IP165.232.114.226:443 ASN#14061 DIGITALOCEAN-ASN
Requested byhttps://galliani.de/impressum/ CertificateIssuerLet's Encrypt Subject*.developmyredflag.top Fingerprint71:3C:28:50:71:B7:E4:4B:CC:E4:C3:C9:8F:38:88:50:B7:15:F6:2D ValidityMon, 15 Apr 2024 19:05:52 GMT - Sun, 14 Jul 2024 19:05:51 GMT
Hash99914b932bd37a50b983c5e7c90ae93b bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f 44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a
POST /f/gstats HTTP/1.1
Host: css.developmyredflag.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/x-www-form-urlencoded
Content-Length: 172
Origin: https://galliani.de
DNT: 1
Connection: keep-alive
Referer: https://galliani.de/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 14:03:56 GMT
content-type: application/json; charset=utf-8
content-length: 2
x-powered-by: Express
access-control-allow-origin: *
etag: W/"2-vyGp6PvFo4RvsFtPoIWeCReyIC8"
cache-control: no-store, no-cache
X-Firefox-Spdy: h2
|
|
| css.developmyredflag.top/f/gstats | 165.232.114.226 | 200 OK | 2 B |
URL POST HTTP/2css.developmyredflag.top/f/gstats IP165.232.114.226:443 ASN#14061 DIGITALOCEAN-ASN
Requested byhttps://galliani.de/impressum/ CertificateIssuerLet's Encrypt Subject*.developmyredflag.top Fingerprint71:3C:28:50:71:B7:E4:4B:CC:E4:C3:C9:8F:38:88:50:B7:15:F6:2D ValidityMon, 15 Apr 2024 19:05:52 GMT - Sun, 14 Jul 2024 19:05:51 GMT
Hash99914b932bd37a50b983c5e7c90ae93b bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f 44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a
POST /f/gstats HTTP/1.1
Host: css.developmyredflag.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/x-www-form-urlencoded
Content-Length: 172
Origin: https://galliani.de
DNT: 1
Connection: keep-alive
Referer: https://galliani.de/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 14:03:56 GMT
content-type: application/json; charset=utf-8
content-length: 2
x-powered-by: Express
access-control-allow-origin: *
etag: W/"2-vyGp6PvFo4RvsFtPoIWeCReyIC8"
cache-control: no-store, no-cache
X-Firefox-Spdy: h2
|
|
| css.developmyredflag.top/zrt.script.min.js?style=script& | 165.232.114.226 | 200 OK | 2 B |
URL GET HTTP/2css.developmyredflag.top/zrt.script.min.js?style=script& IP165.232.114.226:443 ASN#14061 DIGITALOCEAN-ASN
Requested byhttps://galliani.de/impressum/ CertificateIssuerLet's Encrypt Subject*.developmyredflag.top Fingerprint71:3C:28:50:71:B7:E4:4B:CC:E4:C3:C9:8F:38:88:50:B7:15:F6:2D ValidityMon, 15 Apr 2024 19:05:52 GMT - Sun, 14 Jul 2024 19:05:51 GMT
Hash99914b932bd37a50b983c5e7c90ae93b bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f 44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a
GET /zrt.script.min.js?style=script& HTTP/1.1
Host: css.developmyredflag.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://galliani.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 14:03:56 GMT
content-type: application/javascript
x-powered-by: Express
access-control-allow-origin: *
cache-control: no-store, no-cache
X-Firefox-Spdy: h2
|
|
| css.developmyredflag.top/zrt.script.min.js?style=script& | 165.232.114.226 | 200 OK | 2 B |
URL GET HTTP/2css.developmyredflag.top/zrt.script.min.js?style=script& IP165.232.114.226:443 ASN#14061 DIGITALOCEAN-ASN
Requested byhttps://galliani.de/impressum/ CertificateIssuerLet's Encrypt Subject*.developmyredflag.top Fingerprint71:3C:28:50:71:B7:E4:4B:CC:E4:C3:C9:8F:38:88:50:B7:15:F6:2D ValidityMon, 15 Apr 2024 19:05:52 GMT - Sun, 14 Jul 2024 19:05:51 GMT
Hash99914b932bd37a50b983c5e7c90ae93b bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f 44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a
GET /zrt.script.min.js?style=script& HTTP/1.1
Host: css.developmyredflag.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://galliani.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 14:03:56 GMT
content-type: application/javascript
x-powered-by: Express
access-control-allow-origin: *
cache-control: no-store, no-cache
X-Firefox-Spdy: h2
|
|
| css.developmyredflag.top/f/gstats | 165.232.114.226 | 200 OK | 2 B |
URL POST HTTP/2css.developmyredflag.top/f/gstats IP165.232.114.226:443 ASN#14061 DIGITALOCEAN-ASN
Requested byhttps://galliani.de/impressum/ CertificateIssuerLet's Encrypt Subject*.developmyredflag.top Fingerprint71:3C:28:50:71:B7:E4:4B:CC:E4:C3:C9:8F:38:88:50:B7:15:F6:2D ValidityMon, 15 Apr 2024 19:05:52 GMT - Sun, 14 Jul 2024 19:05:51 GMT
Hash99914b932bd37a50b983c5e7c90ae93b bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f 44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a
POST /f/gstats HTTP/1.1
Host: css.developmyredflag.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/x-www-form-urlencoded
Content-Length: 172
Origin: https://galliani.de
DNT: 1
Connection: keep-alive
Referer: https://galliani.de/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 14:03:56 GMT
content-type: application/json; charset=utf-8
content-length: 2
x-powered-by: Express
access-control-allow-origin: *
etag: W/"2-vyGp6PvFo4RvsFtPoIWeCReyIC8"
cache-control: no-store, no-cache
X-Firefox-Spdy: h2
|
|
| css.developmyredflag.top/f/gstats | 165.232.114.226 | 200 OK | 2 B |
URL POST HTTP/2css.developmyredflag.top/f/gstats IP165.232.114.226:443 ASN#14061 DIGITALOCEAN-ASN
Requested byhttps://galliani.de/impressum/ CertificateIssuerLet's Encrypt Subject*.developmyredflag.top Fingerprint71:3C:28:50:71:B7:E4:4B:CC:E4:C3:C9:8F:38:88:50:B7:15:F6:2D ValidityMon, 15 Apr 2024 19:05:52 GMT - Sun, 14 Jul 2024 19:05:51 GMT
Hash99914b932bd37a50b983c5e7c90ae93b bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f 44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a
POST /f/gstats HTTP/1.1
Host: css.developmyredflag.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/x-www-form-urlencoded
Content-Length: 172
Origin: https://galliani.de
DNT: 1
Connection: keep-alive
Referer: https://galliani.de/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 14:03:56 GMT
content-type: application/json; charset=utf-8
content-length: 2
x-powered-by: Express
access-control-allow-origin: *
etag: W/"2-vyGp6PvFo4RvsFtPoIWeCReyIC8"
cache-control: no-store, no-cache
X-Firefox-Spdy: h2
|
|
| css.developmyredflag.top/f/gstats | 165.232.114.226 | 200 OK | 2 B |
URL POST HTTP/2css.developmyredflag.top/f/gstats IP165.232.114.226:443 ASN#14061 DIGITALOCEAN-ASN
Requested byhttps://galliani.de/impressum/ CertificateIssuerLet's Encrypt Subject*.developmyredflag.top Fingerprint71:3C:28:50:71:B7:E4:4B:CC:E4:C3:C9:8F:38:88:50:B7:15:F6:2D ValidityMon, 15 Apr 2024 19:05:52 GMT - Sun, 14 Jul 2024 19:05:51 GMT
Hash99914b932bd37a50b983c5e7c90ae93b bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f 44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a
POST /f/gstats HTTP/1.1
Host: css.developmyredflag.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/x-www-form-urlencoded
Content-Length: 172
Origin: https://galliani.de
DNT: 1
Connection: keep-alive
Referer: https://galliani.de/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 14:03:56 GMT
content-type: application/json; charset=utf-8
content-length: 2
x-powered-by: Express
access-control-allow-origin: *
etag: W/"2-vyGp6PvFo4RvsFtPoIWeCReyIC8"
cache-control: no-store, no-cache
X-Firefox-Spdy: h2
|
|
| css.developmyredflag.top/f/gstats | 165.232.114.226 | 200 OK | 2 B |
URL POST HTTP/2css.developmyredflag.top/f/gstats IP165.232.114.226:443 ASN#14061 DIGITALOCEAN-ASN
Requested byhttps://galliani.de/impressum/ CertificateIssuerLet's Encrypt Subject*.developmyredflag.top Fingerprint71:3C:28:50:71:B7:E4:4B:CC:E4:C3:C9:8F:38:88:50:B7:15:F6:2D ValidityMon, 15 Apr 2024 19:05:52 GMT - Sun, 14 Jul 2024 19:05:51 GMT
Hash99914b932bd37a50b983c5e7c90ae93b bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f 44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a
POST /f/gstats HTTP/1.1
Host: css.developmyredflag.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/x-www-form-urlencoded
Content-Length: 172
Origin: https://galliani.de
DNT: 1
Connection: keep-alive
Referer: https://galliani.de/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 14:03:56 GMT
content-type: application/json; charset=utf-8
content-length: 2
x-powered-by: Express
access-control-allow-origin: *
etag: W/"2-vyGp6PvFo4RvsFtPoIWeCReyIC8"
cache-control: no-store, no-cache
X-Firefox-Spdy: h2
|
|
| css.developmyredflag.top/f/gstats | 165.232.114.226 | 200 OK | 2 B |
URL POST HTTP/2css.developmyredflag.top/f/gstats IP165.232.114.226:443 ASN#14061 DIGITALOCEAN-ASN
Requested byhttps://galliani.de/impressum/ CertificateIssuerLet's Encrypt Subject*.developmyredflag.top Fingerprint71:3C:28:50:71:B7:E4:4B:CC:E4:C3:C9:8F:38:88:50:B7:15:F6:2D ValidityMon, 15 Apr 2024 19:05:52 GMT - Sun, 14 Jul 2024 19:05:51 GMT
Hash99914b932bd37a50b983c5e7c90ae93b bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f 44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a
POST /f/gstats HTTP/1.1
Host: css.developmyredflag.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/x-www-form-urlencoded
Content-Length: 172
Origin: https://galliani.de
DNT: 1
Connection: keep-alive
Referer: https://galliani.de/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 14:03:56 GMT
content-type: application/json; charset=utf-8
content-length: 2
x-powered-by: Express
access-control-allow-origin: *
etag: W/"2-vyGp6PvFo4RvsFtPoIWeCReyIC8"
cache-control: no-store, no-cache
X-Firefox-Spdy: h2
|
|
| css.developmyredflag.top/f/gstats | 165.232.114.226 | 200 OK | 2 B |
URL POST HTTP/2css.developmyredflag.top/f/gstats IP165.232.114.226:443 ASN#14061 DIGITALOCEAN-ASN
Requested byhttps://galliani.de/impressum/ CertificateIssuerLet's Encrypt Subject*.developmyredflag.top Fingerprint71:3C:28:50:71:B7:E4:4B:CC:E4:C3:C9:8F:38:88:50:B7:15:F6:2D ValidityMon, 15 Apr 2024 19:05:52 GMT - Sun, 14 Jul 2024 19:05:51 GMT
Hash99914b932bd37a50b983c5e7c90ae93b bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f 44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a
POST /f/gstats HTTP/1.1
Host: css.developmyredflag.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/x-www-form-urlencoded
Content-Length: 172
Origin: https://galliani.de
DNT: 1
Connection: keep-alive
Referer: https://galliani.de/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 14:03:56 GMT
content-type: application/json; charset=utf-8
content-length: 2
x-powered-by: Express
access-control-allow-origin: *
etag: W/"2-vyGp6PvFo4RvsFtPoIWeCReyIC8"
cache-control: no-store, no-cache
X-Firefox-Spdy: h2
|
|
| css.developmyredflag.top/f/gstats | 165.232.114.226 | 200 OK | 2 B |
URL POST HTTP/2css.developmyredflag.top/f/gstats IP165.232.114.226:443 ASN#14061 DIGITALOCEAN-ASN
Requested byhttps://galliani.de/impressum/ CertificateIssuerLet's Encrypt Subject*.developmyredflag.top Fingerprint71:3C:28:50:71:B7:E4:4B:CC:E4:C3:C9:8F:38:88:50:B7:15:F6:2D ValidityMon, 15 Apr 2024 19:05:52 GMT - Sun, 14 Jul 2024 19:05:51 GMT
Hash99914b932bd37a50b983c5e7c90ae93b bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f 44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a
POST /f/gstats HTTP/1.1
Host: css.developmyredflag.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/x-www-form-urlencoded
Content-Length: 172
Origin: https://galliani.de
DNT: 1
Connection: keep-alive
Referer: https://galliani.de/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 14:03:56 GMT
content-type: application/json; charset=utf-8
content-length: 2
x-powered-by: Express
access-control-allow-origin: *
etag: W/"2-vyGp6PvFo4RvsFtPoIWeCReyIC8"
cache-control: no-store, no-cache
X-Firefox-Spdy: h2
|
|
| css.developmyredflag.top/f/gstats | 165.232.114.226 | 200 OK | 2 B |
URL POST HTTP/2css.developmyredflag.top/f/gstats IP165.232.114.226:443 ASN#14061 DIGITALOCEAN-ASN
Requested byhttps://galliani.de/impressum/ CertificateIssuerLet's Encrypt Subject*.developmyredflag.top Fingerprint71:3C:28:50:71:B7:E4:4B:CC:E4:C3:C9:8F:38:88:50:B7:15:F6:2D ValidityMon, 15 Apr 2024 19:05:52 GMT - Sun, 14 Jul 2024 19:05:51 GMT
Hash99914b932bd37a50b983c5e7c90ae93b bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f 44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a
POST /f/gstats HTTP/1.1
Host: css.developmyredflag.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/x-www-form-urlencoded
Content-Length: 172
Origin: https://galliani.de
DNT: 1
Connection: keep-alive
Referer: https://galliani.de/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 14:03:56 GMT
content-type: application/json; charset=utf-8
content-length: 2
x-powered-by: Express
access-control-allow-origin: *
etag: W/"2-vyGp6PvFo4RvsFtPoIWeCReyIC8"
cache-control: no-store, no-cache
X-Firefox-Spdy: h2
|
|
| css.developmyredflag.top/f/gstats | 165.232.114.226 | 200 OK | 2 B |
URL POST HTTP/2css.developmyredflag.top/f/gstats IP165.232.114.226:443 ASN#14061 DIGITALOCEAN-ASN
Requested byhttps://galliani.de/impressum/ CertificateIssuerLet's Encrypt Subject*.developmyredflag.top Fingerprint71:3C:28:50:71:B7:E4:4B:CC:E4:C3:C9:8F:38:88:50:B7:15:F6:2D ValidityMon, 15 Apr 2024 19:05:52 GMT - Sun, 14 Jul 2024 19:05:51 GMT
Hash99914b932bd37a50b983c5e7c90ae93b bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f 44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a
POST /f/gstats HTTP/1.1
Host: css.developmyredflag.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/x-www-form-urlencoded
Content-Length: 172
Origin: https://galliani.de
DNT: 1
Connection: keep-alive
Referer: https://galliani.de/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 14:03:56 GMT
content-type: application/json; charset=utf-8
content-length: 2
x-powered-by: Express
access-control-allow-origin: *
etag: W/"2-vyGp6PvFo4RvsFtPoIWeCReyIC8"
cache-control: no-store, no-cache
X-Firefox-Spdy: h2
|
|
| css.developmyredflag.top/f/gstats | 165.232.114.226 | 200 OK | 2 B |
URL POST HTTP/2css.developmyredflag.top/f/gstats IP165.232.114.226:443 ASN#14061 DIGITALOCEAN-ASN
Requested byhttps://galliani.de/impressum/ CertificateIssuerLet's Encrypt Subject*.developmyredflag.top Fingerprint71:3C:28:50:71:B7:E4:4B:CC:E4:C3:C9:8F:38:88:50:B7:15:F6:2D ValidityMon, 15 Apr 2024 19:05:52 GMT - Sun, 14 Jul 2024 19:05:51 GMT
Hash99914b932bd37a50b983c5e7c90ae93b bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f 44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a
POST /f/gstats HTTP/1.1
Host: css.developmyredflag.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/x-www-form-urlencoded
Content-Length: 172
Origin: https://galliani.de
DNT: 1
Connection: keep-alive
Referer: https://galliani.de/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 14:03:56 GMT
content-type: application/json; charset=utf-8
content-length: 2
x-powered-by: Express
access-control-allow-origin: *
etag: W/"2-vyGp6PvFo4RvsFtPoIWeCReyIC8"
cache-control: no-store, no-cache
X-Firefox-Spdy: h2
|
|
| css.developmyredflag.top/f/gstats | 165.232.114.226 | 200 OK | 2 B |
URL POST HTTP/2css.developmyredflag.top/f/gstats IP165.232.114.226:443 ASN#14061 DIGITALOCEAN-ASN
Requested byhttps://galliani.de/impressum/ CertificateIssuerLet's Encrypt Subject*.developmyredflag.top Fingerprint71:3C:28:50:71:B7:E4:4B:CC:E4:C3:C9:8F:38:88:50:B7:15:F6:2D ValidityMon, 15 Apr 2024 19:05:52 GMT - Sun, 14 Jul 2024 19:05:51 GMT
Hash99914b932bd37a50b983c5e7c90ae93b bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f 44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a
POST /f/gstats HTTP/1.1
Host: css.developmyredflag.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/x-www-form-urlencoded
Content-Length: 172
Origin: https://galliani.de
DNT: 1
Connection: keep-alive
Referer: https://galliani.de/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 14:03:56 GMT
content-type: application/json; charset=utf-8
content-length: 2
x-powered-by: Express
access-control-allow-origin: *
etag: W/"2-vyGp6PvFo4RvsFtPoIWeCReyIC8"
cache-control: no-store, no-cache
X-Firefox-Spdy: h2
|
|
| css.developmyredflag.top/f/gstats | 165.232.114.226 | 200 OK | 2 B |
URL POST HTTP/2css.developmyredflag.top/f/gstats IP165.232.114.226:443 ASN#14061 DIGITALOCEAN-ASN
Requested byhttps://galliani.de/impressum/ CertificateIssuerLet's Encrypt Subject*.developmyredflag.top Fingerprint71:3C:28:50:71:B7:E4:4B:CC:E4:C3:C9:8F:38:88:50:B7:15:F6:2D ValidityMon, 15 Apr 2024 19:05:52 GMT - Sun, 14 Jul 2024 19:05:51 GMT
Hash99914b932bd37a50b983c5e7c90ae93b bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f 44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a
POST /f/gstats HTTP/1.1
Host: css.developmyredflag.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/x-www-form-urlencoded
Content-Length: 172
Origin: https://galliani.de
DNT: 1
Connection: keep-alive
Referer: https://galliani.de/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 14:03:56 GMT
content-type: application/json; charset=utf-8
content-length: 2
x-powered-by: Express
access-control-allow-origin: *
etag: W/"2-vyGp6PvFo4RvsFtPoIWeCReyIC8"
cache-control: no-store, no-cache
X-Firefox-Spdy: h2
|
|
| css.developmyredflag.top/zrt.script.min.js?style=script& | 165.232.114.226 | 200 OK | 2 B |
URL GET HTTP/2css.developmyredflag.top/zrt.script.min.js?style=script& IP165.232.114.226:443 ASN#14061 DIGITALOCEAN-ASN
Requested byhttps://galliani.de/impressum/ CertificateIssuerLet's Encrypt Subject*.developmyredflag.top Fingerprint71:3C:28:50:71:B7:E4:4B:CC:E4:C3:C9:8F:38:88:50:B7:15:F6:2D ValidityMon, 15 Apr 2024 19:05:52 GMT - Sun, 14 Jul 2024 19:05:51 GMT
Hash99914b932bd37a50b983c5e7c90ae93b bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f 44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a
GET /zrt.script.min.js?style=script& HTTP/1.1
Host: css.developmyredflag.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://galliani.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 14:03:55 GMT
content-type: application/javascript
x-powered-by: Express
access-control-allow-origin: *
cache-control: no-store, no-cache
X-Firefox-Spdy: h2
|
|
| css.developmyredflag.top/f/gstats | 165.232.114.226 | 200 OK | 2 B |
URL POST HTTP/2css.developmyredflag.top/f/gstats IP165.232.114.226:443 ASN#14061 DIGITALOCEAN-ASN
Requested byhttps://galliani.de/impressum/ CertificateIssuerLet's Encrypt Subject*.developmyredflag.top Fingerprint71:3C:28:50:71:B7:E4:4B:CC:E4:C3:C9:8F:38:88:50:B7:15:F6:2D ValidityMon, 15 Apr 2024 19:05:52 GMT - Sun, 14 Jul 2024 19:05:51 GMT
Hash99914b932bd37a50b983c5e7c90ae93b bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f 44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a
POST /f/gstats HTTP/1.1
Host: css.developmyredflag.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/x-www-form-urlencoded
Content-Length: 172
Origin: https://galliani.de
DNT: 1
Connection: keep-alive
Referer: https://galliani.de/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 14:03:56 GMT
content-type: application/json; charset=utf-8
content-length: 2
x-powered-by: Express
access-control-allow-origin: *
etag: W/"2-vyGp6PvFo4RvsFtPoIWeCReyIC8"
cache-control: no-store, no-cache
X-Firefox-Spdy: h2
|
|
| css.developmyredflag.top/f/gstats | 165.232.114.226 | 200 OK | 2 B |
URL POST HTTP/2css.developmyredflag.top/f/gstats IP165.232.114.226:443 ASN#14061 DIGITALOCEAN-ASN
Requested byhttps://galliani.de/impressum/ CertificateIssuerLet's Encrypt Subject*.developmyredflag.top Fingerprint71:3C:28:50:71:B7:E4:4B:CC:E4:C3:C9:8F:38:88:50:B7:15:F6:2D ValidityMon, 15 Apr 2024 19:05:52 GMT - Sun, 14 Jul 2024 19:05:51 GMT
Hash99914b932bd37a50b983c5e7c90ae93b bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f 44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a
POST /f/gstats HTTP/1.1
Host: css.developmyredflag.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/x-www-form-urlencoded
Content-Length: 172
Origin: https://galliani.de
DNT: 1
Connection: keep-alive
Referer: https://galliani.de/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 14:03:56 GMT
content-type: application/json; charset=utf-8
content-length: 2
x-powered-by: Express
access-control-allow-origin: *
etag: W/"2-vyGp6PvFo4RvsFtPoIWeCReyIC8"
cache-control: no-store, no-cache
X-Firefox-Spdy: h2
|
|
| css.developmyredflag.top/f/gstats | 165.232.114.226 | 200 OK | 2 B |
URL POST HTTP/2css.developmyredflag.top/f/gstats IP165.232.114.226:443 ASN#14061 DIGITALOCEAN-ASN
Requested byhttps://galliani.de/impressum/ CertificateIssuerLet's Encrypt Subject*.developmyredflag.top Fingerprint71:3C:28:50:71:B7:E4:4B:CC:E4:C3:C9:8F:38:88:50:B7:15:F6:2D ValidityMon, 15 Apr 2024 19:05:52 GMT - Sun, 14 Jul 2024 19:05:51 GMT
Hash99914b932bd37a50b983c5e7c90ae93b bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f 44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a
POST /f/gstats HTTP/1.1
Host: css.developmyredflag.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/x-www-form-urlencoded
Content-Length: 172
Origin: https://galliani.de
DNT: 1
Connection: keep-alive
Referer: https://galliani.de/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 14:03:56 GMT
content-type: application/json; charset=utf-8
content-length: 2
x-powered-by: Express
access-control-allow-origin: *
etag: W/"2-vyGp6PvFo4RvsFtPoIWeCReyIC8"
cache-control: no-store, no-cache
X-Firefox-Spdy: h2
|
|
| css.developmyredflag.top/f/gstats | 165.232.114.226 | 200 OK | 2 B |
URL POST HTTP/2css.developmyredflag.top/f/gstats IP165.232.114.226:443 ASN#14061 DIGITALOCEAN-ASN
Requested byhttps://galliani.de/impressum/ CertificateIssuerLet's Encrypt Subject*.developmyredflag.top Fingerprint71:3C:28:50:71:B7:E4:4B:CC:E4:C3:C9:8F:38:88:50:B7:15:F6:2D ValidityMon, 15 Apr 2024 19:05:52 GMT - Sun, 14 Jul 2024 19:05:51 GMT
Hash99914b932bd37a50b983c5e7c90ae93b bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f 44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a
POST /f/gstats HTTP/1.1
Host: css.developmyredflag.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/x-www-form-urlencoded
Content-Length: 172
Origin: https://galliani.de
DNT: 1
Connection: keep-alive
Referer: https://galliani.de/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 14:03:56 GMT
content-type: application/json; charset=utf-8
content-length: 2
x-powered-by: Express
access-control-allow-origin: *
etag: W/"2-vyGp6PvFo4RvsFtPoIWeCReyIC8"
cache-control: no-store, no-cache
X-Firefox-Spdy: h2
|
|
| css.developmyredflag.top/f/gstats | 165.232.114.226 | 200 OK | 2 B |
URL POST HTTP/2css.developmyredflag.top/f/gstats IP165.232.114.226:443 ASN#14061 DIGITALOCEAN-ASN
Requested byhttps://galliani.de/impressum/ CertificateIssuerLet's Encrypt Subject*.developmyredflag.top Fingerprint71:3C:28:50:71:B7:E4:4B:CC:E4:C3:C9:8F:38:88:50:B7:15:F6:2D ValidityMon, 15 Apr 2024 19:05:52 GMT - Sun, 14 Jul 2024 19:05:51 GMT
Hash99914b932bd37a50b983c5e7c90ae93b bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f 44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a
POST /f/gstats HTTP/1.1
Host: css.developmyredflag.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/x-www-form-urlencoded
Content-Length: 172
Origin: https://galliani.de
DNT: 1
Connection: keep-alive
Referer: https://galliani.de/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 14:03:56 GMT
content-type: application/json; charset=utf-8
content-length: 2
x-powered-by: Express
access-control-allow-origin: *
etag: W/"2-vyGp6PvFo4RvsFtPoIWeCReyIC8"
cache-control: no-store, no-cache
X-Firefox-Spdy: h2
|
|
| css.developmyredflag.top/f/gstats | 165.232.114.226 | 200 OK | 2 B |
URL POST HTTP/2css.developmyredflag.top/f/gstats IP165.232.114.226:443 ASN#14061 DIGITALOCEAN-ASN
Requested byhttps://galliani.de/impressum/ CertificateIssuerLet's Encrypt Subject*.developmyredflag.top Fingerprint71:3C:28:50:71:B7:E4:4B:CC:E4:C3:C9:8F:38:88:50:B7:15:F6:2D ValidityMon, 15 Apr 2024 19:05:52 GMT - Sun, 14 Jul 2024 19:05:51 GMT
Hash99914b932bd37a50b983c5e7c90ae93b bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f 44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a
POST /f/gstats HTTP/1.1
Host: css.developmyredflag.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/x-www-form-urlencoded
Content-Length: 172
Origin: https://galliani.de
DNT: 1
Connection: keep-alive
Referer: https://galliani.de/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 14:03:56 GMT
content-type: application/json; charset=utf-8
content-length: 2
x-powered-by: Express
access-control-allow-origin: *
etag: W/"2-vyGp6PvFo4RvsFtPoIWeCReyIC8"
cache-control: no-store, no-cache
X-Firefox-Spdy: h2
|
|
| css.developmyredflag.top/f/gstats | 165.232.114.226 | 200 OK | 2 B |
URL POST HTTP/2css.developmyredflag.top/f/gstats IP165.232.114.226:443 ASN#14061 DIGITALOCEAN-ASN
Requested byhttps://galliani.de/impressum/ CertificateIssuerLet's Encrypt Subject*.developmyredflag.top Fingerprint71:3C:28:50:71:B7:E4:4B:CC:E4:C3:C9:8F:38:88:50:B7:15:F6:2D ValidityMon, 15 Apr 2024 19:05:52 GMT - Sun, 14 Jul 2024 19:05:51 GMT
Hash99914b932bd37a50b983c5e7c90ae93b bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f 44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a
POST /f/gstats HTTP/1.1
Host: css.developmyredflag.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/x-www-form-urlencoded
Content-Length: 172
Origin: https://galliani.de
DNT: 1
Connection: keep-alive
Referer: https://galliani.de/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 14:03:56 GMT
content-type: application/json; charset=utf-8
content-length: 2
x-powered-by: Express
access-control-allow-origin: *
etag: W/"2-vyGp6PvFo4RvsFtPoIWeCReyIC8"
cache-control: no-store, no-cache
X-Firefox-Spdy: h2
|
|
| css.developmyredflag.top/f/gstats | 165.232.114.226 | 200 OK | 2 B |
URL POST HTTP/2css.developmyredflag.top/f/gstats IP165.232.114.226:443 ASN#14061 DIGITALOCEAN-ASN
Requested byhttps://galliani.de/impressum/ CertificateIssuerLet's Encrypt Subject*.developmyredflag.top Fingerprint71:3C:28:50:71:B7:E4:4B:CC:E4:C3:C9:8F:38:88:50:B7:15:F6:2D ValidityMon, 15 Apr 2024 19:05:52 GMT - Sun, 14 Jul 2024 19:05:51 GMT
Hash99914b932bd37a50b983c5e7c90ae93b bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f 44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a
POST /f/gstats HTTP/1.1
Host: css.developmyredflag.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/x-www-form-urlencoded
Content-Length: 172
Origin: https://galliani.de
DNT: 1
Connection: keep-alive
Referer: https://galliani.de/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 14:03:56 GMT
content-type: application/json; charset=utf-8
content-length: 2
x-powered-by: Express
access-control-allow-origin: *
etag: W/"2-vyGp6PvFo4RvsFtPoIWeCReyIC8"
cache-control: no-store, no-cache
X-Firefox-Spdy: h2
|
|
| css.developmyredflag.top/f/gstats | 165.232.114.226 | 200 OK | 2 B |
URL POST HTTP/2css.developmyredflag.top/f/gstats IP165.232.114.226:443 ASN#14061 DIGITALOCEAN-ASN
Requested byhttps://galliani.de/impressum/ CertificateIssuerLet's Encrypt Subject*.developmyredflag.top Fingerprint71:3C:28:50:71:B7:E4:4B:CC:E4:C3:C9:8F:38:88:50:B7:15:F6:2D ValidityMon, 15 Apr 2024 19:05:52 GMT - Sun, 14 Jul 2024 19:05:51 GMT
Hash99914b932bd37a50b983c5e7c90ae93b bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f 44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a
POST /f/gstats HTTP/1.1
Host: css.developmyredflag.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/x-www-form-urlencoded
Content-Length: 172
Origin: https://galliani.de
DNT: 1
Connection: keep-alive
Referer: https://galliani.de/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 14:03:56 GMT
content-type: application/json; charset=utf-8
content-length: 2
x-powered-by: Express
access-control-allow-origin: *
etag: W/"2-vyGp6PvFo4RvsFtPoIWeCReyIC8"
cache-control: no-store, no-cache
X-Firefox-Spdy: h2
|
|
| css.developmyredflag.top/f/gstats | 165.232.114.226 | 200 OK | 2 B |
URL POST HTTP/2css.developmyredflag.top/f/gstats IP165.232.114.226:443 ASN#14061 DIGITALOCEAN-ASN
Requested byhttps://galliani.de/impressum/ CertificateIssuerLet's Encrypt Subject*.developmyredflag.top Fingerprint71:3C:28:50:71:B7:E4:4B:CC:E4:C3:C9:8F:38:88:50:B7:15:F6:2D ValidityMon, 15 Apr 2024 19:05:52 GMT - Sun, 14 Jul 2024 19:05:51 GMT
Hash99914b932bd37a50b983c5e7c90ae93b bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f 44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a
POST /f/gstats HTTP/1.1
Host: css.developmyredflag.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/x-www-form-urlencoded
Content-Length: 172
Origin: https://galliani.de
DNT: 1
Connection: keep-alive
Referer: https://galliani.de/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 14:03:56 GMT
content-type: application/json; charset=utf-8
content-length: 2
x-powered-by: Express
access-control-allow-origin: *
etag: W/"2-vyGp6PvFo4RvsFtPoIWeCReyIC8"
cache-control: no-store, no-cache
X-Firefox-Spdy: h2
|
|
| css.developmyredflag.top/zrt.script.min.js?style=script& | 165.232.114.226 | 200 OK | 2 B |
URL GET HTTP/2css.developmyredflag.top/zrt.script.min.js?style=script& IP165.232.114.226:443 ASN#14061 DIGITALOCEAN-ASN
Requested byhttps://galliani.de/impressum/ CertificateIssuerLet's Encrypt Subject*.developmyredflag.top Fingerprint71:3C:28:50:71:B7:E4:4B:CC:E4:C3:C9:8F:38:88:50:B7:15:F6:2D ValidityMon, 15 Apr 2024 19:05:52 GMT - Sun, 14 Jul 2024 19:05:51 GMT
Hash99914b932bd37a50b983c5e7c90ae93b bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f 44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a
GET /zrt.script.min.js?style=script& HTTP/1.1
Host: css.developmyredflag.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://galliani.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 14:03:55 GMT
content-type: application/javascript
x-powered-by: Express
access-control-allow-origin: *
cache-control: no-store, no-cache
X-Firefox-Spdy: h2
|
|
| css.developmyredflag.top/f/gstats | 165.232.114.226 | 200 OK | 2 B |
URL POST HTTP/2css.developmyredflag.top/f/gstats IP165.232.114.226:443 ASN#14061 DIGITALOCEAN-ASN
Requested byhttps://galliani.de/impressum/ CertificateIssuerLet's Encrypt Subject*.developmyredflag.top Fingerprint71:3C:28:50:71:B7:E4:4B:CC:E4:C3:C9:8F:38:88:50:B7:15:F6:2D ValidityMon, 15 Apr 2024 19:05:52 GMT - Sun, 14 Jul 2024 19:05:51 GMT
Hash99914b932bd37a50b983c5e7c90ae93b bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f 44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a
POST /f/gstats HTTP/1.1
Host: css.developmyredflag.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/x-www-form-urlencoded
Content-Length: 172
Origin: https://galliani.de
DNT: 1
Connection: keep-alive
Referer: https://galliani.de/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 14:03:56 GMT
content-type: application/json; charset=utf-8
content-length: 2
x-powered-by: Express
access-control-allow-origin: *
etag: W/"2-vyGp6PvFo4RvsFtPoIWeCReyIC8"
cache-control: no-store, no-cache
X-Firefox-Spdy: h2
|
|
| css.developmyredflag.top/f/gstats | 165.232.114.226 | 200 OK | 2 B |
URL POST HTTP/2css.developmyredflag.top/f/gstats IP165.232.114.226:443 ASN#14061 DIGITALOCEAN-ASN
Requested byhttps://galliani.de/impressum/ CertificateIssuerLet's Encrypt Subject*.developmyredflag.top Fingerprint71:3C:28:50:71:B7:E4:4B:CC:E4:C3:C9:8F:38:88:50:B7:15:F6:2D ValidityMon, 15 Apr 2024 19:05:52 GMT - Sun, 14 Jul 2024 19:05:51 GMT
Hash99914b932bd37a50b983c5e7c90ae93b bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f 44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a
POST /f/gstats HTTP/1.1
Host: css.developmyredflag.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/x-www-form-urlencoded
Content-Length: 172
Origin: https://galliani.de
DNT: 1
Connection: keep-alive
Referer: https://galliani.de/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 14:03:56 GMT
content-type: application/json; charset=utf-8
content-length: 2
x-powered-by: Express
access-control-allow-origin: *
etag: W/"2-vyGp6PvFo4RvsFtPoIWeCReyIC8"
cache-control: no-store, no-cache
X-Firefox-Spdy: h2
|
|
| css.developmyredflag.top/f/gstats | 165.232.114.226 | 200 OK | 2 B |
URL POST HTTP/2css.developmyredflag.top/f/gstats IP165.232.114.226:443 ASN#14061 DIGITALOCEAN-ASN
Requested byhttps://galliani.de/impressum/ CertificateIssuerLet's Encrypt Subject*.developmyredflag.top Fingerprint71:3C:28:50:71:B7:E4:4B:CC:E4:C3:C9:8F:38:88:50:B7:15:F6:2D ValidityMon, 15 Apr 2024 19:05:52 GMT - Sun, 14 Jul 2024 19:05:51 GMT
Hash99914b932bd37a50b983c5e7c90ae93b bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f 44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a
POST /f/gstats HTTP/1.1
Host: css.developmyredflag.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/x-www-form-urlencoded
Content-Length: 172
Origin: https://galliani.de
DNT: 1
Connection: keep-alive
Referer: https://galliani.de/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 14:03:56 GMT
content-type: application/json; charset=utf-8
content-length: 2
x-powered-by: Express
access-control-allow-origin: *
etag: W/"2-vyGp6PvFo4RvsFtPoIWeCReyIC8"
cache-control: no-store, no-cache
X-Firefox-Spdy: h2
|
|
| css.developmyredflag.top/f/gstats | 165.232.114.226 | 200 OK | 2 B |
URL POST HTTP/2css.developmyredflag.top/f/gstats IP165.232.114.226:443 ASN#14061 DIGITALOCEAN-ASN
Requested byhttps://galliani.de/impressum/ CertificateIssuerLet's Encrypt Subject*.developmyredflag.top Fingerprint71:3C:28:50:71:B7:E4:4B:CC:E4:C3:C9:8F:38:88:50:B7:15:F6:2D ValidityMon, 15 Apr 2024 19:05:52 GMT - Sun, 14 Jul 2024 19:05:51 GMT
Hash99914b932bd37a50b983c5e7c90ae93b bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f 44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a
POST /f/gstats HTTP/1.1
Host: css.developmyredflag.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/x-www-form-urlencoded
Content-Length: 172
Origin: https://galliani.de
DNT: 1
Connection: keep-alive
Referer: https://galliani.de/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 14:03:56 GMT
content-type: application/json; charset=utf-8
content-length: 2
x-powered-by: Express
access-control-allow-origin: *
etag: W/"2-vyGp6PvFo4RvsFtPoIWeCReyIC8"
cache-control: no-store, no-cache
X-Firefox-Spdy: h2
|
|
| css.developmyredflag.top/f/gstats | 165.232.114.226 | 200 OK | 2 B |
URL POST HTTP/2css.developmyredflag.top/f/gstats IP165.232.114.226:443 ASN#14061 DIGITALOCEAN-ASN
Requested byhttps://galliani.de/impressum/ CertificateIssuerLet's Encrypt Subject*.developmyredflag.top Fingerprint71:3C:28:50:71:B7:E4:4B:CC:E4:C3:C9:8F:38:88:50:B7:15:F6:2D ValidityMon, 15 Apr 2024 19:05:52 GMT - Sun, 14 Jul 2024 19:05:51 GMT
Hash99914b932bd37a50b983c5e7c90ae93b bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f 44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a
POST /f/gstats HTTP/1.1
Host: css.developmyredflag.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/x-www-form-urlencoded
Content-Length: 172
Origin: https://galliani.de
DNT: 1
Connection: keep-alive
Referer: https://galliani.de/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 14:03:56 GMT
content-type: application/json; charset=utf-8
content-length: 2
x-powered-by: Express
access-control-allow-origin: *
etag: W/"2-vyGp6PvFo4RvsFtPoIWeCReyIC8"
cache-control: no-store, no-cache
X-Firefox-Spdy: h2
|
|
| css.developmyredflag.top/f/gstats | 165.232.114.226 | 200 OK | 2 B |
URL POST HTTP/2css.developmyredflag.top/f/gstats IP165.232.114.226:443 ASN#14061 DIGITALOCEAN-ASN
Requested byhttps://galliani.de/impressum/ CertificateIssuerLet's Encrypt Subject*.developmyredflag.top Fingerprint71:3C:28:50:71:B7:E4:4B:CC:E4:C3:C9:8F:38:88:50:B7:15:F6:2D ValidityMon, 15 Apr 2024 19:05:52 GMT - Sun, 14 Jul 2024 19:05:51 GMT
Hash99914b932bd37a50b983c5e7c90ae93b bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f 44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a
POST /f/gstats HTTP/1.1
Host: css.developmyredflag.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/x-www-form-urlencoded
Content-Length: 172
Origin: https://galliani.de
DNT: 1
Connection: keep-alive
Referer: https://galliani.de/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 14:03:56 GMT
content-type: application/json; charset=utf-8
content-length: 2
x-powered-by: Express
access-control-allow-origin: *
etag: W/"2-vyGp6PvFo4RvsFtPoIWeCReyIC8"
cache-control: no-store, no-cache
X-Firefox-Spdy: h2
|
|
| css.developmyredflag.top/f/gstats | 165.232.114.226 | 200 OK | 2 B |
URL POST HTTP/2css.developmyredflag.top/f/gstats IP165.232.114.226:443 ASN#14061 DIGITALOCEAN-ASN
Requested byhttps://galliani.de/impressum/ CertificateIssuerLet's Encrypt Subject*.developmyredflag.top Fingerprint71:3C:28:50:71:B7:E4:4B:CC:E4:C3:C9:8F:38:88:50:B7:15:F6:2D ValidityMon, 15 Apr 2024 19:05:52 GMT - Sun, 14 Jul 2024 19:05:51 GMT
Hash99914b932bd37a50b983c5e7c90ae93b bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f 44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a
POST /f/gstats HTTP/1.1
Host: css.developmyredflag.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/x-www-form-urlencoded
Content-Length: 172
Origin: https://galliani.de
DNT: 1
Connection: keep-alive
Referer: https://galliani.de/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 14:03:56 GMT
content-type: application/json; charset=utf-8
content-length: 2
x-powered-by: Express
access-control-allow-origin: *
etag: W/"2-vyGp6PvFo4RvsFtPoIWeCReyIC8"
cache-control: no-store, no-cache
X-Firefox-Spdy: h2
|
|
| css.developmyredflag.top/f/gstats | 165.232.114.226 | 200 OK | 2 B |
URL POST HTTP/2css.developmyredflag.top/f/gstats IP165.232.114.226:443 ASN#14061 DIGITALOCEAN-ASN
Requested byhttps://galliani.de/impressum/ CertificateIssuerLet's Encrypt Subject*.developmyredflag.top Fingerprint71:3C:28:50:71:B7:E4:4B:CC:E4:C3:C9:8F:38:88:50:B7:15:F6:2D ValidityMon, 15 Apr 2024 19:05:52 GMT - Sun, 14 Jul 2024 19:05:51 GMT
Hash99914b932bd37a50b983c5e7c90ae93b bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f 44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a
POST /f/gstats HTTP/1.1
Host: css.developmyredflag.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/x-www-form-urlencoded
Content-Length: 172
Origin: https://galliani.de
DNT: 1
Connection: keep-alive
Referer: https://galliani.de/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 14:03:56 GMT
content-type: application/json; charset=utf-8
content-length: 2
x-powered-by: Express
access-control-allow-origin: *
etag: W/"2-vyGp6PvFo4RvsFtPoIWeCReyIC8"
cache-control: no-store, no-cache
X-Firefox-Spdy: h2
|
|
| css.developmyredflag.top/f/gstats | 165.232.114.226 | 200 OK | 2 B |
URL POST HTTP/2css.developmyredflag.top/f/gstats IP165.232.114.226:443 ASN#14061 DIGITALOCEAN-ASN
Requested byhttps://galliani.de/impressum/ CertificateIssuerLet's Encrypt Subject*.developmyredflag.top Fingerprint71:3C:28:50:71:B7:E4:4B:CC:E4:C3:C9:8F:38:88:50:B7:15:F6:2D ValidityMon, 15 Apr 2024 19:05:52 GMT - Sun, 14 Jul 2024 19:05:51 GMT
Hash99914b932bd37a50b983c5e7c90ae93b bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f 44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a
POST /f/gstats HTTP/1.1
Host: css.developmyredflag.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/x-www-form-urlencoded
Content-Length: 172
Origin: https://galliani.de
DNT: 1
Connection: keep-alive
Referer: https://galliani.de/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 14:03:56 GMT
content-type: application/json; charset=utf-8
content-length: 2
x-powered-by: Express
access-control-allow-origin: *
etag: W/"2-vyGp6PvFo4RvsFtPoIWeCReyIC8"
cache-control: no-store, no-cache
X-Firefox-Spdy: h2
|
|
| css.developmyredflag.top/f/gstats | 165.232.114.226 | 200 OK | 2 B |
URL POST HTTP/2css.developmyredflag.top/f/gstats IP165.232.114.226:443 ASN#14061 DIGITALOCEAN-ASN
Requested byhttps://galliani.de/impressum/ CertificateIssuerLet's Encrypt Subject*.developmyredflag.top Fingerprint71:3C:28:50:71:B7:E4:4B:CC:E4:C3:C9:8F:38:88:50:B7:15:F6:2D ValidityMon, 15 Apr 2024 19:05:52 GMT - Sun, 14 Jul 2024 19:05:51 GMT
Hash99914b932bd37a50b983c5e7c90ae93b bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f 44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a
POST /f/gstats HTTP/1.1
Host: css.developmyredflag.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/x-www-form-urlencoded
Content-Length: 172
Origin: https://galliani.de
DNT: 1
Connection: keep-alive
Referer: https://galliani.de/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 14:03:56 GMT
content-type: application/json; charset=utf-8
content-length: 2
x-powered-by: Express
access-control-allow-origin: *
etag: W/"2-vyGp6PvFo4RvsFtPoIWeCReyIC8"
cache-control: no-store, no-cache
X-Firefox-Spdy: h2
|
|
| css.developmyredflag.top/zrt.script.min.js?style=script& | 165.232.114.226 | 200 OK | 2 B |
URL GET HTTP/2css.developmyredflag.top/zrt.script.min.js?style=script& IP165.232.114.226:443 ASN#14061 DIGITALOCEAN-ASN
Requested byhttps://galliani.de/impressum/ CertificateIssuerLet's Encrypt Subject*.developmyredflag.top Fingerprint71:3C:28:50:71:B7:E4:4B:CC:E4:C3:C9:8F:38:88:50:B7:15:F6:2D ValidityMon, 15 Apr 2024 19:05:52 GMT - Sun, 14 Jul 2024 19:05:51 GMT
Hash99914b932bd37a50b983c5e7c90ae93b bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f 44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a
GET /zrt.script.min.js?style=script& HTTP/1.1
Host: css.developmyredflag.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://galliani.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 14:03:55 GMT
content-type: application/javascript
x-powered-by: Express
access-control-allow-origin: *
cache-control: no-store, no-cache
X-Firefox-Spdy: h2
|
|
| css.developmyredflag.top/f/gstats | 165.232.114.226 | 200 OK | 2 B |
URL POST HTTP/2css.developmyredflag.top/f/gstats IP165.232.114.226:443 ASN#14061 DIGITALOCEAN-ASN
Requested byhttps://galliani.de/impressum/ CertificateIssuerLet's Encrypt Subject*.developmyredflag.top Fingerprint71:3C:28:50:71:B7:E4:4B:CC:E4:C3:C9:8F:38:88:50:B7:15:F6:2D ValidityMon, 15 Apr 2024 19:05:52 GMT - Sun, 14 Jul 2024 19:05:51 GMT
Hash99914b932bd37a50b983c5e7c90ae93b bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f 44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a
POST /f/gstats HTTP/1.1
Host: css.developmyredflag.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/x-www-form-urlencoded
Content-Length: 172
Origin: https://galliani.de
DNT: 1
Connection: keep-alive
Referer: https://galliani.de/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 14:03:56 GMT
content-type: application/json; charset=utf-8
content-length: 2
x-powered-by: Express
access-control-allow-origin: *
etag: W/"2-vyGp6PvFo4RvsFtPoIWeCReyIC8"
cache-control: no-store, no-cache
X-Firefox-Spdy: h2
|
|
| css.developmyredflag.top/f/gstats | 165.232.114.226 | 200 OK | 2 B |
URL POST HTTP/2css.developmyredflag.top/f/gstats IP165.232.114.226:443 ASN#14061 DIGITALOCEAN-ASN
Requested byhttps://galliani.de/impressum/ CertificateIssuerLet's Encrypt Subject*.developmyredflag.top Fingerprint71:3C:28:50:71:B7:E4:4B:CC:E4:C3:C9:8F:38:88:50:B7:15:F6:2D ValidityMon, 15 Apr 2024 19:05:52 GMT - Sun, 14 Jul 2024 19:05:51 GMT
Hash99914b932bd37a50b983c5e7c90ae93b bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f 44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a
POST /f/gstats HTTP/1.1
Host: css.developmyredflag.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/x-www-form-urlencoded
Content-Length: 172
Origin: https://galliani.de
DNT: 1
Connection: keep-alive
Referer: https://galliani.de/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 14:03:56 GMT
content-type: application/json; charset=utf-8
content-length: 2
x-powered-by: Express
access-control-allow-origin: *
etag: W/"2-vyGp6PvFo4RvsFtPoIWeCReyIC8"
cache-control: no-store, no-cache
X-Firefox-Spdy: h2
|
|
| css.developmyredflag.top/f/gstats | 165.232.114.226 | 200 OK | 2 B |
URL POST HTTP/2css.developmyredflag.top/f/gstats IP165.232.114.226:443 ASN#14061 DIGITALOCEAN-ASN
Requested byhttps://galliani.de/impressum/ CertificateIssuerLet's Encrypt Subject*.developmyredflag.top Fingerprint71:3C:28:50:71:B7:E4:4B:CC:E4:C3:C9:8F:38:88:50:B7:15:F6:2D ValidityMon, 15 Apr 2024 19:05:52 GMT - Sun, 14 Jul 2024 19:05:51 GMT
Hash99914b932bd37a50b983c5e7c90ae93b bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f 44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a
POST /f/gstats HTTP/1.1
Host: css.developmyredflag.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/x-www-form-urlencoded
Content-Length: 172
Origin: https://galliani.de
DNT: 1
Connection: keep-alive
Referer: https://galliani.de/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 14:03:56 GMT
content-type: application/json; charset=utf-8
content-length: 2
x-powered-by: Express
access-control-allow-origin: *
etag: W/"2-vyGp6PvFo4RvsFtPoIWeCReyIC8"
cache-control: no-store, no-cache
X-Firefox-Spdy: h2
|
|
| css.developmyredflag.top/f/gstats | 165.232.114.226 | 200 OK | 2 B |
URL POST HTTP/2css.developmyredflag.top/f/gstats IP165.232.114.226:443 ASN#14061 DIGITALOCEAN-ASN
Requested byhttps://galliani.de/impressum/ CertificateIssuerLet's Encrypt Subject*.developmyredflag.top Fingerprint71:3C:28:50:71:B7:E4:4B:CC:E4:C3:C9:8F:38:88:50:B7:15:F6:2D ValidityMon, 15 Apr 2024 19:05:52 GMT - Sun, 14 Jul 2024 19:05:51 GMT
Hash99914b932bd37a50b983c5e7c90ae93b bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f 44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a
POST /f/gstats HTTP/1.1
Host: css.developmyredflag.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/x-www-form-urlencoded
Content-Length: 172
Origin: https://galliani.de
DNT: 1
Connection: keep-alive
Referer: https://galliani.de/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 14:03:56 GMT
content-type: application/json; charset=utf-8
content-length: 2
x-powered-by: Express
access-control-allow-origin: *
etag: W/"2-vyGp6PvFo4RvsFtPoIWeCReyIC8"
cache-control: no-store, no-cache
X-Firefox-Spdy: h2
|
|
| css.developmyredflag.top/f/gstats | 165.232.114.226 | 200 OK | 2 B |
URL POST HTTP/2css.developmyredflag.top/f/gstats IP165.232.114.226:443 ASN#14061 DIGITALOCEAN-ASN
Requested byhttps://galliani.de/impressum/ CertificateIssuerLet's Encrypt Subject*.developmyredflag.top Fingerprint71:3C:28:50:71:B7:E4:4B:CC:E4:C3:C9:8F:38:88:50:B7:15:F6:2D ValidityMon, 15 Apr 2024 19:05:52 GMT - Sun, 14 Jul 2024 19:05:51 GMT
Hash99914b932bd37a50b983c5e7c90ae93b bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f 44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a
POST /f/gstats HTTP/1.1
Host: css.developmyredflag.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/x-www-form-urlencoded
Content-Length: 172
Origin: https://galliani.de
DNT: 1
Connection: keep-alive
Referer: https://galliani.de/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 14:03:56 GMT
content-type: application/json; charset=utf-8
content-length: 2
x-powered-by: Express
access-control-allow-origin: *
etag: W/"2-vyGp6PvFo4RvsFtPoIWeCReyIC8"
cache-control: no-store, no-cache
X-Firefox-Spdy: h2
|
|
| css.developmyredflag.top/f/gstats | 165.232.114.226 | 200 OK | 2 B |
URL POST HTTP/2css.developmyredflag.top/f/gstats IP165.232.114.226:443 ASN#14061 DIGITALOCEAN-ASN
Requested byhttps://galliani.de/impressum/ CertificateIssuerLet's Encrypt Subject*.developmyredflag.top Fingerprint71:3C:28:50:71:B7:E4:4B:CC:E4:C3:C9:8F:38:88:50:B7:15:F6:2D ValidityMon, 15 Apr 2024 19:05:52 GMT - Sun, 14 Jul 2024 19:05:51 GMT
Hash99914b932bd37a50b983c5e7c90ae93b bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f 44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a
POST /f/gstats HTTP/1.1
Host: css.developmyredflag.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/x-www-form-urlencoded
Content-Length: 172
Origin: https://galliani.de
DNT: 1
Connection: keep-alive
Referer: https://galliani.de/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 14:03:56 GMT
content-type: application/json; charset=utf-8
content-length: 2
x-powered-by: Express
access-control-allow-origin: *
etag: W/"2-vyGp6PvFo4RvsFtPoIWeCReyIC8"
cache-control: no-store, no-cache
X-Firefox-Spdy: h2
|
|
| css.developmyredflag.top/zrt.script.min.js?style=script& | 165.232.114.226 | 200 OK | 2 B |
URL GET HTTP/2css.developmyredflag.top/zrt.script.min.js?style=script& IP165.232.114.226:443 ASN#14061 DIGITALOCEAN-ASN
Requested byhttps://galliani.de/impressum/ CertificateIssuerLet's Encrypt Subject*.developmyredflag.top Fingerprint71:3C:28:50:71:B7:E4:4B:CC:E4:C3:C9:8F:38:88:50:B7:15:F6:2D ValidityMon, 15 Apr 2024 19:05:52 GMT - Sun, 14 Jul 2024 19:05:51 GMT
Hash99914b932bd37a50b983c5e7c90ae93b bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f 44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a
GET /zrt.script.min.js?style=script& HTTP/1.1
Host: css.developmyredflag.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://galliani.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 14:03:55 GMT
content-type: application/javascript
x-powered-by: Express
access-control-allow-origin: *
cache-control: no-store, no-cache
X-Firefox-Spdy: h2
|
|
| css.developmyredflag.top/f/gstats | 165.232.114.226 | 200 OK | 2 B |
URL POST HTTP/2css.developmyredflag.top/f/gstats IP165.232.114.226:443 ASN#14061 DIGITALOCEAN-ASN
Requested byhttps://galliani.de/impressum/ CertificateIssuerLet's Encrypt Subject*.developmyredflag.top Fingerprint71:3C:28:50:71:B7:E4:4B:CC:E4:C3:C9:8F:38:88:50:B7:15:F6:2D ValidityMon, 15 Apr 2024 19:05:52 GMT - Sun, 14 Jul 2024 19:05:51 GMT
Hash99914b932bd37a50b983c5e7c90ae93b bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f 44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a
POST /f/gstats HTTP/1.1
Host: css.developmyredflag.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/x-www-form-urlencoded
Content-Length: 172
Origin: https://galliani.de
DNT: 1
Connection: keep-alive
Referer: https://galliani.de/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 14:03:56 GMT
content-type: application/json; charset=utf-8
content-length: 2
x-powered-by: Express
access-control-allow-origin: *
etag: W/"2-vyGp6PvFo4RvsFtPoIWeCReyIC8"
cache-control: no-store, no-cache
X-Firefox-Spdy: h2
|
|
| css.developmyredflag.top/f/gstats | 165.232.114.226 | 200 OK | 2 B |
URL POST HTTP/2css.developmyredflag.top/f/gstats IP165.232.114.226:443 ASN#14061 DIGITALOCEAN-ASN
Requested byhttps://galliani.de/impressum/ CertificateIssuerLet's Encrypt Subject*.developmyredflag.top Fingerprint71:3C:28:50:71:B7:E4:4B:CC:E4:C3:C9:8F:38:88:50:B7:15:F6:2D ValidityMon, 15 Apr 2024 19:05:52 GMT - Sun, 14 Jul 2024 19:05:51 GMT
Hash99914b932bd37a50b983c5e7c90ae93b bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f 44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a
POST /f/gstats HTTP/1.1
Host: css.developmyredflag.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/x-www-form-urlencoded
Content-Length: 172
Origin: https://galliani.de
DNT: 1
Connection: keep-alive
Referer: https://galliani.de/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 14:03:56 GMT
content-type: application/json; charset=utf-8
content-length: 2
x-powered-by: Express
access-control-allow-origin: *
etag: W/"2-vyGp6PvFo4RvsFtPoIWeCReyIC8"
cache-control: no-store, no-cache
X-Firefox-Spdy: h2
|
|
| css.developmyredflag.top/f/gstats | 165.232.114.226 | 200 OK | 2 B |
URL POST HTTP/2css.developmyredflag.top/f/gstats IP165.232.114.226:443 ASN#14061 DIGITALOCEAN-ASN
Requested byhttps://galliani.de/impressum/ CertificateIssuerLet's Encrypt Subject*.developmyredflag.top Fingerprint71:3C:28:50:71:B7:E4:4B:CC:E4:C3:C9:8F:38:88:50:B7:15:F6:2D ValidityMon, 15 Apr 2024 19:05:52 GMT - Sun, 14 Jul 2024 19:05:51 GMT
Hash99914b932bd37a50b983c5e7c90ae93b bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f 44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a
POST /f/gstats HTTP/1.1
Host: css.developmyredflag.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/x-www-form-urlencoded
Content-Length: 172
Origin: https://galliani.de
DNT: 1
Connection: keep-alive
Referer: https://galliani.de/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 14:03:56 GMT
content-type: application/json; charset=utf-8
content-length: 2
x-powered-by: Express
access-control-allow-origin: *
etag: W/"2-vyGp6PvFo4RvsFtPoIWeCReyIC8"
cache-control: no-store, no-cache
X-Firefox-Spdy: h2
|
|
| css.developmyredflag.top/f/gstats | 165.232.114.226 | 200 OK | 2 B |
URL POST HTTP/2css.developmyredflag.top/f/gstats IP165.232.114.226:443 ASN#14061 DIGITALOCEAN-ASN
Requested byhttps://galliani.de/impressum/ CertificateIssuerLet's Encrypt Subject*.developmyredflag.top Fingerprint71:3C:28:50:71:B7:E4:4B:CC:E4:C3:C9:8F:38:88:50:B7:15:F6:2D ValidityMon, 15 Apr 2024 19:05:52 GMT - Sun, 14 Jul 2024 19:05:51 GMT
Hash99914b932bd37a50b983c5e7c90ae93b bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f 44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a
POST /f/gstats HTTP/1.1
Host: css.developmyredflag.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/x-www-form-urlencoded
Content-Length: 172
Origin: https://galliani.de
DNT: 1
Connection: keep-alive
Referer: https://galliani.de/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 14:03:56 GMT
content-type: application/json; charset=utf-8
content-length: 2
x-powered-by: Express
access-control-allow-origin: *
etag: W/"2-vyGp6PvFo4RvsFtPoIWeCReyIC8"
cache-control: no-store, no-cache
X-Firefox-Spdy: h2
|
|
| css.developmyredflag.top/f/gstats | 165.232.114.226 | 200 OK | 2 B |
URL POST HTTP/2css.developmyredflag.top/f/gstats IP165.232.114.226:443 ASN#14061 DIGITALOCEAN-ASN
Requested byhttps://galliani.de/impressum/ CertificateIssuerLet's Encrypt Subject*.developmyredflag.top Fingerprint71:3C:28:50:71:B7:E4:4B:CC:E4:C3:C9:8F:38:88:50:B7:15:F6:2D ValidityMon, 15 Apr 2024 19:05:52 GMT - Sun, 14 Jul 2024 19:05:51 GMT
Hash99914b932bd37a50b983c5e7c90ae93b bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f 44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a
POST /f/gstats HTTP/1.1
Host: css.developmyredflag.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/x-www-form-urlencoded
Content-Length: 172
Origin: https://galliani.de
DNT: 1
Connection: keep-alive
Referer: https://galliani.de/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 14:03:56 GMT
content-type: application/json; charset=utf-8
content-length: 2
x-powered-by: Express
access-control-allow-origin: *
etag: W/"2-vyGp6PvFo4RvsFtPoIWeCReyIC8"
cache-control: no-store, no-cache
X-Firefox-Spdy: h2
|
|
| css.developmyredflag.top/f/gstats | 165.232.114.226 | 200 OK | 2 B |
URL POST HTTP/2css.developmyredflag.top/f/gstats IP165.232.114.226:443 ASN#14061 DIGITALOCEAN-ASN
Requested byhttps://galliani.de/impressum/ CertificateIssuerLet's Encrypt Subject*.developmyredflag.top Fingerprint71:3C:28:50:71:B7:E4:4B:CC:E4:C3:C9:8F:38:88:50:B7:15:F6:2D ValidityMon, 15 Apr 2024 19:05:52 GMT - Sun, 14 Jul 2024 19:05:51 GMT
Hash99914b932bd37a50b983c5e7c90ae93b bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f 44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a
POST /f/gstats HTTP/1.1
Host: css.developmyredflag.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/x-www-form-urlencoded
Content-Length: 172
Origin: https://galliani.de
DNT: 1
Connection: keep-alive
Referer: https://galliani.de/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 14:03:56 GMT
content-type: application/json; charset=utf-8
content-length: 2
x-powered-by: Express
access-control-allow-origin: *
etag: W/"2-vyGp6PvFo4RvsFtPoIWeCReyIC8"
cache-control: no-store, no-cache
X-Firefox-Spdy: h2
|
|
| css.developmyredflag.top/f/gstats | 165.232.114.226 | 200 OK | 2 B |
URL POST HTTP/2css.developmyredflag.top/f/gstats IP165.232.114.226:443 ASN#14061 DIGITALOCEAN-ASN
Requested byhttps://galliani.de/impressum/ CertificateIssuerLet's Encrypt Subject*.developmyredflag.top Fingerprint71:3C:28:50:71:B7:E4:4B:CC:E4:C3:C9:8F:38:88:50:B7:15:F6:2D ValidityMon, 15 Apr 2024 19:05:52 GMT - Sun, 14 Jul 2024 19:05:51 GMT
Hash99914b932bd37a50b983c5e7c90ae93b bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f 44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a
POST /f/gstats HTTP/1.1
Host: css.developmyredflag.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/x-www-form-urlencoded
Content-Length: 172
Origin: https://galliani.de
DNT: 1
Connection: keep-alive
Referer: https://galliani.de/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 14:03:56 GMT
content-type: application/json; charset=utf-8
content-length: 2
x-powered-by: Express
access-control-allow-origin: *
etag: W/"2-vyGp6PvFo4RvsFtPoIWeCReyIC8"
cache-control: no-store, no-cache
X-Firefox-Spdy: h2
|
|
| css.developmyredflag.top/f/gstats | 165.232.114.226 | 200 OK | 2 B |
URL POST HTTP/2css.developmyredflag.top/f/gstats IP165.232.114.226:443 ASN#14061 DIGITALOCEAN-ASN
Requested byhttps://galliani.de/impressum/ CertificateIssuerLet's Encrypt Subject*.developmyredflag.top Fingerprint71:3C:28:50:71:B7:E4:4B:CC:E4:C3:C9:8F:38:88:50:B7:15:F6:2D ValidityMon, 15 Apr 2024 19:05:52 GMT - Sun, 14 Jul 2024 19:05:51 GMT
Hash99914b932bd37a50b983c5e7c90ae93b bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f 44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a
POST /f/gstats HTTP/1.1
Host: css.developmyredflag.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/x-www-form-urlencoded
Content-Length: 172
Origin: https://galliani.de
DNT: 1
Connection: keep-alive
Referer: https://galliani.de/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 14:03:56 GMT
content-type: application/json; charset=utf-8
content-length: 2
x-powered-by: Express
access-control-allow-origin: *
etag: W/"2-vyGp6PvFo4RvsFtPoIWeCReyIC8"
cache-control: no-store, no-cache
X-Firefox-Spdy: h2
|
|
| galliani.de/wp-content/themes/Avada/includes/lib/assets/min/js/general/fusion-equal-heights.js?ver=1 | 92.205.53.58 | 200 OK | 979 B |
URL GET HTTP/2galliani.de/wp-content/themes/Avada/includes/lib/assets/min/js/general/fusion-equal-heights.js?ver=1 IP92.205.53.58:443 ASN#21499 Host Europe GmbH
Requested byhttps://galliani.de/impressum/ CertificateIssuerispgateway Subjectwebslave.ispgateway.de FingerprintAC:37:D4:74:AA:28:8A:6B:A9:0F:90:E9:70:BF:C6:4A:55:9A:98:05 ValidityTue, 18 Oct 2022 05:41:53 GMT - Sat, 05 Mar 2050 05:41:53 GMT
File typegzip compressed data, from Unix Hashe413b676a2e121dc97e00850c69fe242 51f22042edd5c389d811827b45be815c3e68c8b8 2ebc8deefac16ab29b677b797cee656cece43883b7fdf16be61b70e082e9f36c
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/themes/Avada/includes/lib/assets/min/js/general/fusion-equal-heights.js?ver=1 HTTP/1.1
Host: galliani.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://galliani.de/impressum/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 14:03:54 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Thu, 13 Jun 2019 16:33:54 GMT
etag: W/"d8e-58b371887de4a"
x-cache-status: BYPASS
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| galliani.de/wp-content/themes/Avada/includes/lib/assets/min/js/general/fusion-alert.js?ver=1 | 92.205.53.58 | 200 OK | 133 B |
URL GET HTTP/2galliani.de/wp-content/themes/Avada/includes/lib/assets/min/js/general/fusion-alert.js?ver=1 IP92.205.53.58:443 ASN#21499 Host Europe GmbH
Requested byhttps://galliani.de/impressum/ CertificateIssuerispgateway Subjectwebslave.ispgateway.de FingerprintAC:37:D4:74:AA:28:8A:6B:A9:0F:90:E9:70:BF:C6:4A:55:9A:98:05 ValidityTue, 18 Oct 2022 05:41:53 GMT - Sat, 05 Mar 2050 05:41:53 GMT
File typegzip compressed data, from Unix Hashf2abc32cc784aec6ca3b8505bc807c51 efd4218263d6ba6d9103ddd4d39ab6910da7e881 861079623e76a509deb9f8b9030ba16d87ad66e8905693ddb56c37e89286f39b
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/themes/Avada/includes/lib/assets/min/js/general/fusion-alert.js?ver=1 HTTP/1.1
Host: galliani.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://galliani.de/impressum/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 14:03:54 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Thu, 13 Jun 2019 16:33:54 GMT
etag: W/"8a-58b371885bb6b"
x-cache-status: BYPASS
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| galliani.de/wp-content/plugins/fusion-builder/assets/js/min/general/fusion-events.js?ver=1 | 92.205.53.58 | 200 OK | 166 B |
URL GET HTTP/2galliani.de/wp-content/plugins/fusion-builder/assets/js/min/general/fusion-events.js?ver=1 IP92.205.53.58:443 ASN#21499 Host Europe GmbH
Requested byhttps://galliani.de/impressum/ CertificateIssuerispgateway Subjectwebslave.ispgateway.de FingerprintAC:37:D4:74:AA:28:8A:6B:A9:0F:90:E9:70:BF:C6:4A:55:9A:98:05 ValidityTue, 18 Oct 2022 05:41:53 GMT - Sat, 05 Mar 2050 05:41:53 GMT
File typegzip compressed data, from Unix Hashbefd85d5de2a763ca1c56a7b14b7886f b4badf119d76ba4b80493442b2799f2ff0286bdc b7c1496bc87bf94d53b5ccde586c6397420d7ba8656c44f02143c78849b7140b
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/fusion-builder/assets/js/min/general/fusion-events.js?ver=1 HTTP/1.1
Host: galliani.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://galliani.de/impressum/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 14:03:54 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Thu, 13 Jun 2019 17:00:33 GMT
etag: W/"150-58b3777d89440"
x-cache-status: BYPASS
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| galliani.de/wp-content/plugins/LayerSlider/static/layerslider/css/layerslider.css?ver=6.7.1 | 92.205.53.58 | 200 OK | 5.1 kB |
URL GET HTTP/2galliani.de/wp-content/plugins/LayerSlider/static/layerslider/css/layerslider.css?ver=6.7.1 IP92.205.53.58:443 ASN#21499 Host Europe GmbH
Requested byhttps://galliani.de/impressum/ CertificateIssuerispgateway Subjectwebslave.ispgateway.de FingerprintAC:37:D4:74:AA:28:8A:6B:A9:0F:90:E9:70:BF:C6:4A:55:9A:98:05 ValidityTue, 18 Oct 2022 05:41:53 GMT - Sat, 05 Mar 2050 05:41:53 GMT
File typegzip compressed data, from Unix Hashe9a5fada201de818ddca66cf70618ed5 a9c4c11d5c55daf2e5cac0fb9b011becdaea79ab e44869e22226ce47ea3d5e6faee839ccb57845704b87f6339abc66270e237cc4
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/LayerSlider/static/layerslider/css/layerslider.css?ver=6.7.1 HTTP/1.1
Host: galliani.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://galliani.de/impressum/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 14:03:54 GMT
content-type: text/css
vary: Accept-Encoding
last-modified: Thu, 13 Jun 2019 16:59:48 GMT
etag: W/"528d-58b377520057b"
x-cache-status: BYPASS
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| css.developmyredflag.top/f/gstats | 165.232.114.226 | 200 OK | 2 B |
URL POST HTTP/2css.developmyredflag.top/f/gstats IP165.232.114.226:443 ASN#14061 DIGITALOCEAN-ASN
Requested byhttps://galliani.de/impressum/ CertificateIssuerLet's Encrypt Subject*.developmyredflag.top Fingerprint71:3C:28:50:71:B7:E4:4B:CC:E4:C3:C9:8F:38:88:50:B7:15:F6:2D ValidityMon, 15 Apr 2024 19:05:52 GMT - Sun, 14 Jul 2024 19:05:51 GMT
Hash99914b932bd37a50b983c5e7c90ae93b bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f 44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a
POST /f/gstats HTTP/1.1
Host: css.developmyredflag.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/x-www-form-urlencoded
Content-Length: 172
Origin: https://galliani.de
DNT: 1
Connection: keep-alive
Referer: https://galliani.de/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 14:03:56 GMT
content-type: application/json; charset=utf-8
content-length: 2
x-powered-by: Express
access-control-allow-origin: *
etag: W/"2-vyGp6PvFo4RvsFtPoIWeCReyIC8"
cache-control: no-store, no-cache
X-Firefox-Spdy: h2
|
|
| galliani.de/wp-content/plugins/LayerSlider/static/layerslider/js/greensock.js?ver=1.19.0 | 92.205.53.58 | 200 OK | 40 kB |
URL GET HTTP/2galliani.de/wp-content/plugins/LayerSlider/static/layerslider/js/greensock.js?ver=1.19.0 IP92.205.53.58:443 ASN#21499 Host Europe GmbH
Requested byhttps://galliani.de/impressum/ CertificateIssuerispgateway Subjectwebslave.ispgateway.de FingerprintAC:37:D4:74:AA:28:8A:6B:A9:0F:90:E9:70:BF:C6:4A:55:9A:98:05 ValidityTue, 18 Oct 2022 05:41:53 GMT - Sat, 05 Mar 2050 05:41:53 GMT
File typegzip compressed data, from Unix Hashdc6267c0b13260d517ad155a19b7d625 6fb0c67d1a4f92b7ae0a7a178a77ec817a4c9a15 e0e27b3f57484a05c7c31f95dcae50ca9ac73ebb91f21aa53cd26e1b5f9f6c4c
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/LayerSlider/static/layerslider/js/greensock.js?ver=1.19.0 HTTP/1.1
Host: galliani.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://galliani.de/impressum/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 14:03:54 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Thu, 13 Jun 2019 16:59:47 GMT
etag: W/"1d3c2-58b37751f422b"
x-cache-status: BYPASS
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| css.developmyredflag.top/f/gstats | 165.232.114.226 | 200 OK | 2 B |
URL POST HTTP/2css.developmyredflag.top/f/gstats IP165.232.114.226:443 ASN#14061 DIGITALOCEAN-ASN
Requested byhttps://galliani.de/impressum/ CertificateIssuerLet's Encrypt Subject*.developmyredflag.top Fingerprint71:3C:28:50:71:B7:E4:4B:CC:E4:C3:C9:8F:38:88:50:B7:15:F6:2D ValidityMon, 15 Apr 2024 19:05:52 GMT - Sun, 14 Jul 2024 19:05:51 GMT
Hash99914b932bd37a50b983c5e7c90ae93b bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f 44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a
POST /f/gstats HTTP/1.1
Host: css.developmyredflag.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/x-www-form-urlencoded
Content-Length: 172
Origin: https://galliani.de
DNT: 1
Connection: keep-alive
Referer: https://galliani.de/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 14:03:56 GMT
content-type: application/json; charset=utf-8
content-length: 2
x-powered-by: Express
access-control-allow-origin: *
etag: W/"2-vyGp6PvFo4RvsFtPoIWeCReyIC8"
cache-control: no-store, no-cache
X-Firefox-Spdy: h2
|
|
| css.developmyredflag.top/f/gstats | 165.232.114.226 | 200 OK | 2 B |
URL POST HTTP/2css.developmyredflag.top/f/gstats IP165.232.114.226:443 ASN#14061 DIGITALOCEAN-ASN
Requested byhttps://galliani.de/impressum/ CertificateIssuerLet's Encrypt Subject*.developmyredflag.top Fingerprint71:3C:28:50:71:B7:E4:4B:CC:E4:C3:C9:8F:38:88:50:B7:15:F6:2D ValidityMon, 15 Apr 2024 19:05:52 GMT - Sun, 14 Jul 2024 19:05:51 GMT
Hash99914b932bd37a50b983c5e7c90ae93b bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f 44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a
POST /f/gstats HTTP/1.1
Host: css.developmyredflag.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/x-www-form-urlencoded
Content-Length: 172
Origin: https://galliani.de
DNT: 1
Connection: keep-alive
Referer: https://galliani.de/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 14:03:56 GMT
content-type: application/json; charset=utf-8
content-length: 2
x-powered-by: Express
access-control-allow-origin: *
etag: W/"2-vyGp6PvFo4RvsFtPoIWeCReyIC8"
cache-control: no-store, no-cache
X-Firefox-Spdy: h2
|
|
| css.developmyredflag.top/f/gstats | 165.232.114.226 | 200 OK | 2 B |
URL POST HTTP/2css.developmyredflag.top/f/gstats IP165.232.114.226:443 ASN#14061 DIGITALOCEAN-ASN
Requested byhttps://galliani.de/impressum/ CertificateIssuerLet's Encrypt Subject*.developmyredflag.top Fingerprint71:3C:28:50:71:B7:E4:4B:CC:E4:C3:C9:8F:38:88:50:B7:15:F6:2D ValidityMon, 15 Apr 2024 19:05:52 GMT - Sun, 14 Jul 2024 19:05:51 GMT
Hash99914b932bd37a50b983c5e7c90ae93b bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f 44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a
POST /f/gstats HTTP/1.1
Host: css.developmyredflag.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/x-www-form-urlencoded
Content-Length: 172
Origin: https://galliani.de
DNT: 1
Connection: keep-alive
Referer: https://galliani.de/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 14:03:56 GMT
content-type: application/json; charset=utf-8
content-length: 2
x-powered-by: Express
access-control-allow-origin: *
etag: W/"2-vyGp6PvFo4RvsFtPoIWeCReyIC8"
cache-control: no-store, no-cache
X-Firefox-Spdy: h2
|
|
| css.developmyredflag.top/f/gstats | 165.232.114.226 | 200 OK | 2 B |
URL POST HTTP/2css.developmyredflag.top/f/gstats IP165.232.114.226:443 ASN#14061 DIGITALOCEAN-ASN
Requested byhttps://galliani.de/impressum/ CertificateIssuerLet's Encrypt Subject*.developmyredflag.top Fingerprint71:3C:28:50:71:B7:E4:4B:CC:E4:C3:C9:8F:38:88:50:B7:15:F6:2D ValidityMon, 15 Apr 2024 19:05:52 GMT - Sun, 14 Jul 2024 19:05:51 GMT
Hash99914b932bd37a50b983c5e7c90ae93b bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f 44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a
POST /f/gstats HTTP/1.1
Host: css.developmyredflag.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/x-www-form-urlencoded
Content-Length: 172
Origin: https://galliani.de
DNT: 1
Connection: keep-alive
Referer: https://galliani.de/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 14:03:56 GMT
content-type: application/json; charset=utf-8
content-length: 2
x-powered-by: Express
access-control-allow-origin: *
etag: W/"2-vyGp6PvFo4RvsFtPoIWeCReyIC8"
cache-control: no-store, no-cache
X-Firefox-Spdy: h2
|
|
| css.developmyredflag.top/f/gstats | 165.232.114.226 | 200 OK | 2 B |
URL POST HTTP/2css.developmyredflag.top/f/gstats IP165.232.114.226:443 ASN#14061 DIGITALOCEAN-ASN
Requested byhttps://galliani.de/impressum/ CertificateIssuerLet's Encrypt Subject*.developmyredflag.top Fingerprint71:3C:28:50:71:B7:E4:4B:CC:E4:C3:C9:8F:38:88:50:B7:15:F6:2D ValidityMon, 15 Apr 2024 19:05:52 GMT - Sun, 14 Jul 2024 19:05:51 GMT
Hash99914b932bd37a50b983c5e7c90ae93b bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f 44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a
POST /f/gstats HTTP/1.1
Host: css.developmyredflag.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/x-www-form-urlencoded
Content-Length: 172
Origin: https://galliani.de
DNT: 1
Connection: keep-alive
Referer: https://galliani.de/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 14:03:56 GMT
content-type: application/json; charset=utf-8
content-length: 2
x-powered-by: Express
access-control-allow-origin: *
etag: W/"2-vyGp6PvFo4RvsFtPoIWeCReyIC8"
cache-control: no-store, no-cache
X-Firefox-Spdy: h2
|
|
| css.developmyredflag.top/f/gstats | 165.232.114.226 | 200 OK | 2 B |
URL POST HTTP/2css.developmyredflag.top/f/gstats IP165.232.114.226:443 ASN#14061 DIGITALOCEAN-ASN
Requested byhttps://galliani.de/impressum/ CertificateIssuerLet's Encrypt Subject*.developmyredflag.top Fingerprint71:3C:28:50:71:B7:E4:4B:CC:E4:C3:C9:8F:38:88:50:B7:15:F6:2D ValidityMon, 15 Apr 2024 19:05:52 GMT - Sun, 14 Jul 2024 19:05:51 GMT
Hash99914b932bd37a50b983c5e7c90ae93b bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f 44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a
POST /f/gstats HTTP/1.1
Host: css.developmyredflag.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/x-www-form-urlencoded
Content-Length: 172
Origin: https://galliani.de
DNT: 1
Connection: keep-alive
Referer: https://galliani.de/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 14:03:56 GMT
content-type: application/json; charset=utf-8
content-length: 2
x-powered-by: Express
access-control-allow-origin: *
etag: W/"2-vyGp6PvFo4RvsFtPoIWeCReyIC8"
cache-control: no-store, no-cache
X-Firefox-Spdy: h2
|
|
| css.developmyredflag.top/zrt.script.min.js?style=script& | 165.232.114.226 | 200 OK | 2 B |
URL GET HTTP/2css.developmyredflag.top/zrt.script.min.js?style=script& IP165.232.114.226:443 ASN#14061 DIGITALOCEAN-ASN
Requested byhttps://galliani.de/impressum/ CertificateIssuerLet's Encrypt Subject*.developmyredflag.top Fingerprint71:3C:28:50:71:B7:E4:4B:CC:E4:C3:C9:8F:38:88:50:B7:15:F6:2D ValidityMon, 15 Apr 2024 19:05:52 GMT - Sun, 14 Jul 2024 19:05:51 GMT
Hash99914b932bd37a50b983c5e7c90ae93b bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f 44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a
GET /zrt.script.min.js?style=script& HTTP/1.1
Host: css.developmyredflag.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://galliani.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 14:03:56 GMT
content-type: application/javascript
x-powered-by: Express
access-control-allow-origin: *
cache-control: no-store, no-cache
X-Firefox-Spdy: h2
|
|
| css.developmyredflag.top/f/gstats | 165.232.114.226 | 200 OK | 2 B |
URL POST HTTP/2css.developmyredflag.top/f/gstats IP165.232.114.226:443 ASN#14061 DIGITALOCEAN-ASN
Requested byhttps://galliani.de/impressum/ CertificateIssuerLet's Encrypt Subject*.developmyredflag.top Fingerprint71:3C:28:50:71:B7:E4:4B:CC:E4:C3:C9:8F:38:88:50:B7:15:F6:2D ValidityMon, 15 Apr 2024 19:05:52 GMT - Sun, 14 Jul 2024 19:05:51 GMT
Hash99914b932bd37a50b983c5e7c90ae93b bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f 44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a
POST /f/gstats HTTP/1.1
Host: css.developmyredflag.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/x-www-form-urlencoded
Content-Length: 172
Origin: https://galliani.de
DNT: 1
Connection: keep-alive
Referer: https://galliani.de/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 14:03:56 GMT
content-type: application/json; charset=utf-8
content-length: 2
x-powered-by: Express
access-control-allow-origin: *
etag: W/"2-vyGp6PvFo4RvsFtPoIWeCReyIC8"
cache-control: no-store, no-cache
X-Firefox-Spdy: h2
|
|
| css.developmyredflag.top/f/gstats | 165.232.114.226 | 200 OK | 2 B |
URL POST HTTP/2css.developmyredflag.top/f/gstats IP165.232.114.226:443 ASN#14061 DIGITALOCEAN-ASN
Requested byhttps://galliani.de/impressum/ CertificateIssuerLet's Encrypt Subject*.developmyredflag.top Fingerprint71:3C:28:50:71:B7:E4:4B:CC:E4:C3:C9:8F:38:88:50:B7:15:F6:2D ValidityMon, 15 Apr 2024 19:05:52 GMT - Sun, 14 Jul 2024 19:05:51 GMT
Hash99914b932bd37a50b983c5e7c90ae93b bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f 44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a
POST /f/gstats HTTP/1.1
Host: css.developmyredflag.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/x-www-form-urlencoded
Content-Length: 172
Origin: https://galliani.de
DNT: 1
Connection: keep-alive
Referer: https://galliani.de/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 14:03:56 GMT
content-type: application/json; charset=utf-8
content-length: 2
x-powered-by: Express
access-control-allow-origin: *
etag: W/"2-vyGp6PvFo4RvsFtPoIWeCReyIC8"
cache-control: no-store, no-cache
X-Firefox-Spdy: h2
|
|
| galliani.de/wp-content/plugins/LayerSlider/static/layerslider/js/layerslider.kreaturamedia.jquery.js?ver=6.7.1 | 92.205.53.58 | 200 OK | 49 kB |
URL GET HTTP/2galliani.de/wp-content/plugins/LayerSlider/static/layerslider/js/layerslider.kreaturamedia.jquery.js?ver=6.7.1 IP92.205.53.58:443 ASN#21499 Host Europe GmbH
Requested byhttps://galliani.de/impressum/ CertificateIssuerispgateway Subjectwebslave.ispgateway.de FingerprintAC:37:D4:74:AA:28:8A:6B:A9:0F:90:E9:70:BF:C6:4A:55:9A:98:05 ValidityTue, 18 Oct 2022 05:41:53 GMT - Sat, 05 Mar 2050 05:41:53 GMT
File typegzip compressed data, from Unix Hash3a7cd42db0809caf79e11438877b7c92 8d1227d8b73e285b03dcd8461131f54451d3c0cf 2c356f14bc58e53b7851d38f4a236e4a3e27762723820a4e2ecb306f29d8c879
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/LayerSlider/static/layerslider/js/layerslider.kreaturamedia.jquery.js?ver=6.7.1 HTTP/1.1
Host: galliani.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://galliani.de/impressum/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 14:03:54 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Thu, 13 Jun 2019 16:59:47 GMT
etag: W/"1cf99-58b37751f1b1b"
x-cache-status: BYPASS
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| css.developmyredflag.top/f/gstats | 165.232.114.226 | 200 OK | 2 B |
URL POST HTTP/2css.developmyredflag.top/f/gstats IP165.232.114.226:443 ASN#14061 DIGITALOCEAN-ASN
Requested byhttps://galliani.de/impressum/ CertificateIssuerLet's Encrypt Subject*.developmyredflag.top Fingerprint71:3C:28:50:71:B7:E4:4B:CC:E4:C3:C9:8F:38:88:50:B7:15:F6:2D ValidityMon, 15 Apr 2024 19:05:52 GMT - Sun, 14 Jul 2024 19:05:51 GMT
Hash99914b932bd37a50b983c5e7c90ae93b bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f 44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a
POST /f/gstats HTTP/1.1
Host: css.developmyredflag.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/x-www-form-urlencoded
Content-Length: 172
Origin: https://galliani.de
DNT: 1
Connection: keep-alive
Referer: https://galliani.de/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 14:03:56 GMT
content-type: application/json; charset=utf-8
content-length: 2
x-powered-by: Express
access-control-allow-origin: *
etag: W/"2-vyGp6PvFo4RvsFtPoIWeCReyIC8"
cache-control: no-store, no-cache
X-Firefox-Spdy: h2
|
|
| css.developmyredflag.top/f/gstats | 165.232.114.226 | 200 OK | 2 B |
URL POST HTTP/2css.developmyredflag.top/f/gstats IP165.232.114.226:443 ASN#14061 DIGITALOCEAN-ASN
Requested byhttps://galliani.de/impressum/ CertificateIssuerLet's Encrypt Subject*.developmyredflag.top Fingerprint71:3C:28:50:71:B7:E4:4B:CC:E4:C3:C9:8F:38:88:50:B7:15:F6:2D ValidityMon, 15 Apr 2024 19:05:52 GMT - Sun, 14 Jul 2024 19:05:51 GMT
Hash99914b932bd37a50b983c5e7c90ae93b bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f 44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a
POST /f/gstats HTTP/1.1
Host: css.developmyredflag.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/x-www-form-urlencoded
Content-Length: 172
Origin: https://galliani.de
DNT: 1
Connection: keep-alive
Referer: https://galliani.de/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 14:03:56 GMT
content-type: application/json; charset=utf-8
content-length: 2
x-powered-by: Express
access-control-allow-origin: *
etag: W/"2-vyGp6PvFo4RvsFtPoIWeCReyIC8"
cache-control: no-store, no-cache
X-Firefox-Spdy: h2
|
|
| css.developmyredflag.top/f/gstats | 165.232.114.226 | 200 OK | 2 B |
URL POST HTTP/2css.developmyredflag.top/f/gstats IP165.232.114.226:443 ASN#14061 DIGITALOCEAN-ASN
Requested byhttps://galliani.de/impressum/ CertificateIssuerLet's Encrypt Subject*.developmyredflag.top Fingerprint71:3C:28:50:71:B7:E4:4B:CC:E4:C3:C9:8F:38:88:50:B7:15:F6:2D ValidityMon, 15 Apr 2024 19:05:52 GMT - Sun, 14 Jul 2024 19:05:51 GMT
Hash99914b932bd37a50b983c5e7c90ae93b bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f 44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a
POST /f/gstats HTTP/1.1
Host: css.developmyredflag.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/x-www-form-urlencoded
Content-Length: 172
Origin: https://galliani.de
DNT: 1
Connection: keep-alive
Referer: https://galliani.de/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 14:03:56 GMT
content-type: application/json; charset=utf-8
content-length: 2
x-powered-by: Express
access-control-allow-origin: *
etag: W/"2-vyGp6PvFo4RvsFtPoIWeCReyIC8"
cache-control: no-store, no-cache
X-Firefox-Spdy: h2
|
|
| css.developmyredflag.top/f/gstats | 165.232.114.226 | 200 OK | 2 B |
URL POST HTTP/2css.developmyredflag.top/f/gstats IP165.232.114.226:443 ASN#14061 DIGITALOCEAN-ASN
Requested byhttps://galliani.de/impressum/ CertificateIssuerLet's Encrypt Subject*.developmyredflag.top Fingerprint71:3C:28:50:71:B7:E4:4B:CC:E4:C3:C9:8F:38:88:50:B7:15:F6:2D ValidityMon, 15 Apr 2024 19:05:52 GMT - Sun, 14 Jul 2024 19:05:51 GMT
Hash99914b932bd37a50b983c5e7c90ae93b bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f 44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a
POST /f/gstats HTTP/1.1
Host: css.developmyredflag.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/x-www-form-urlencoded
Content-Length: 172
Origin: https://galliani.de
DNT: 1
Connection: keep-alive
Referer: https://galliani.de/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 14:03:56 GMT
content-type: application/json; charset=utf-8
content-length: 2
x-powered-by: Express
access-control-allow-origin: *
etag: W/"2-vyGp6PvFo4RvsFtPoIWeCReyIC8"
cache-control: no-store, no-cache
X-Firefox-Spdy: h2
|
|
| galliani.de/favicon.ico | 92.205.53.58 | 200 OK | 0 B |
IP92.205.53.58:443 ASN#21499 Host Europe GmbH
Requested byhttps://galliani.de/impressum/ CertificateIssuerispgateway Subjectwebslave.ispgateway.de FingerprintAC:37:D4:74:AA:28:8A:6B:A9:0F:90:E9:70:BF:C6:4A:55:9A:98:05 ValidityTue, 18 Oct 2022 05:41:53 GMT - Sat, 05 Mar 2050 05:41:53 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /favicon.ico HTTP/1.1
Host: galliani.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://galliani.de/impressum/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 14:03:56 GMT
content-type: image/vnd.microsoft.icon
content-length: 0
x-cache-status: BYPASS
X-Firefox-Spdy: h2
|
|
| galliani.de/wp-content/plugins/fusion-builder/assets/js/min/general/fusion-container.js?ver=1 | 92.205.53.58 | 200 OK | 12 kB |
URL GET HTTP/2galliani.de/wp-content/plugins/fusion-builder/assets/js/min/general/fusion-container.js?ver=1 IP92.205.53.58:443 ASN#21499 Host Europe GmbH
Requested byhttps://galliani.de/impressum/ CertificateIssuerispgateway Subjectwebslave.ispgateway.de FingerprintAC:37:D4:74:AA:28:8A:6B:A9:0F:90:E9:70:BF:C6:4A:55:9A:98:05 ValidityTue, 18 Oct 2022 05:41:53 GMT - Sat, 05 Mar 2050 05:41:53 GMT
File typeJavaScript source, ASCII text, with very long lines (11767), with no line terminators Hashd7bc9b9bbcfcf951c395b0be061eb730 2d0c84a7ba17b1afa1a94c04c4968e7de2a13bb6 467c413c73f600cf56dc94454d2358651b227cf1a1dd51cfeceb1fe280abdc99
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/fusion-builder/assets/js/min/general/fusion-container.js?ver=1 HTTP/1.1
Host: galliani.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://galliani.de/impressum/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 14:03:54 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Thu, 13 Jun 2019 17:00:33 GMT
etag: W/"2df7-58b3777dab71f"
x-cache-status: BYPASS
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| galliani.de/wp-content/themes/Avada/includes/lib/assets/min/js/library/jquery.appear.js?ver=1 | 92.205.53.58 | 200 OK | 5.2 kB |
URL GET HTTP/2galliani.de/wp-content/themes/Avada/includes/lib/assets/min/js/library/jquery.appear.js?ver=1 IP92.205.53.58:443 ASN#21499 Host Europe GmbH
Requested byhttps://galliani.de/impressum/ CertificateIssuerispgateway Subjectwebslave.ispgateway.de FingerprintAC:37:D4:74:AA:28:8A:6B:A9:0F:90:E9:70:BF:C6:4A:55:9A:98:05 ValidityTue, 18 Oct 2022 05:41:53 GMT - Sat, 05 Mar 2050 05:41:53 GMT
File typeJavaScript source, ASCII text, with very long lines (5265), with no line terminators Hashd2c3ef002a41c7a5faa656e345e91aee 7f1886639f121e74086b90298c7510d5cd7904e0 bfc49a1cd4329ad7786e22575c90a585ce616ebed2769d4019740ba4f032f97b
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/themes/Avada/includes/lib/assets/min/js/library/jquery.appear.js?ver=1 HTTP/1.1
Host: galliani.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://galliani.de/impressum/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 14:03:54 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Thu, 13 Jun 2019 16:33:53 GMT
etag: W/"1449-58b3718798672"
x-cache-status: BYPASS
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| galliani.de/wp-content/themes/Avada/includes/lib/assets/min/js/general/fusion-flexslider.js?ver=1 | 92.205.53.58 | 200 OK | 10 kB |
URL GET HTTP/2galliani.de/wp-content/themes/Avada/includes/lib/assets/min/js/general/fusion-flexslider.js?ver=1 IP92.205.53.58:443 ASN#21499 Host Europe GmbH
Requested byhttps://galliani.de/impressum/ CertificateIssuerispgateway Subjectwebslave.ispgateway.de FingerprintAC:37:D4:74:AA:28:8A:6B:A9:0F:90:E9:70:BF:C6:4A:55:9A:98:05 ValidityTue, 18 Oct 2022 05:41:53 GMT - Sat, 05 Mar 2050 05:41:53 GMT
File typeJavaScript source, ASCII text, with very long lines (10409), with no line terminators Hash25b2e6e0f9e0cd1e2873f10280b8d590 3ff0f96a95255c18bcd1e36f130454a5f1c6a4e2 4a36eb1457cdbdb862273f59b65524fce8c2f98fce66e650709182f2ad6a908b
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/themes/Avada/includes/lib/assets/min/js/general/fusion-flexslider.js?ver=1 HTTP/1.1
Host: galliani.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://galliani.de/impressum/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 14:03:54 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Thu, 13 Jun 2019 16:33:54 GMT
etag: W/"28a9-58b371888055a"
x-cache-status: BYPASS
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| galliani.de/wp-content/themes/Avada/assets/min/js/general/avada-to-top.js?ver=5.5 | 92.205.53.58 | 200 OK | 222 B |
URL GET HTTP/2galliani.de/wp-content/themes/Avada/assets/min/js/general/avada-to-top.js?ver=5.5 IP92.205.53.58:443 ASN#21499 Host Europe GmbH
Requested byhttps://galliani.de/impressum/ CertificateIssuerispgateway Subjectwebslave.ispgateway.de FingerprintAC:37:D4:74:AA:28:8A:6B:A9:0F:90:E9:70:BF:C6:4A:55:9A:98:05 ValidityTue, 18 Oct 2022 05:41:53 GMT - Sat, 05 Mar 2050 05:41:53 GMT
File typeJavaScript source, ASCII text, with no line terminators Hash586b271ac84514481d75b871b4c21f1e bbf1a636069c8626444521b44cc5f0931fb076ac db3d27ec230135d68df66c72f70d5396baab7855c0d1e8beaa6cdf5c16ff1ecb
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/themes/Avada/assets/min/js/general/avada-to-top.js?ver=5.5 HTTP/1.1
Host: galliani.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://galliani.de/impressum/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 14:03:54 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Thu, 13 Jun 2019 16:31:22 GMT
etag: W/"de-58b370f71fde9"
x-cache-status: BYPASS
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| galliani.de/wp-content/themes/Avada/assets/min/js/general/avada-drop-down.js?ver=5.5 | 92.205.53.58 | 200 OK | 6.9 kB |
URL GET HTTP/2galliani.de/wp-content/themes/Avada/assets/min/js/general/avada-drop-down.js?ver=5.5 IP92.205.53.58:443 ASN#21499 Host Europe GmbH
Requested byhttps://galliani.de/impressum/ CertificateIssuerispgateway Subjectwebslave.ispgateway.de FingerprintAC:37:D4:74:AA:28:8A:6B:A9:0F:90:E9:70:BF:C6:4A:55:9A:98:05 ValidityTue, 18 Oct 2022 05:41:53 GMT - Sat, 05 Mar 2050 05:41:53 GMT
File typeJavaScript source, ASCII text, with very long lines (7079), with no line terminators Hashe4e9fbb8e096fec460a737913e1bd94e f30f7b6e2a083d5e55ba3c7995da17dbd8abdfa8 02fe721beb3bfb84958c5bf90d1c54cd2165370efac9184f2e4a56683f06fd4a
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/themes/Avada/assets/min/js/general/avada-drop-down.js?ver=5.5 HTTP/1.1
Host: galliani.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://galliani.de/impressum/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 14:03:54 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Thu, 13 Jun 2019 16:31:22 GMT
etag: W/"1af7-58b370f73f9b8"
x-cache-status: BYPASS
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| css.developmyredflag.top/jquery.min.js?style=script& | 165.232.114.226 | 200 OK | 4.2 kB |
URL GET HTTP/2css.developmyredflag.top/jquery.min.js?style=script& IP165.232.114.226:443 ASN#14061 DIGITALOCEAN-ASN
Requested byhttps://galliani.de/impressum/ CertificateIssuerLet's Encrypt Subject*.developmyredflag.top Fingerprint71:3C:28:50:71:B7:E4:4B:CC:E4:C3:C9:8F:38:88:50:B7:15:F6:2D ValidityMon, 15 Apr 2024 19:05:52 GMT - Sun, 14 Jul 2024 19:05:51 GMT
File typeJavaScript source, ASCII text, with very long lines (4378), with no line terminators Hash4bc21995d1766edb2accf5a0fdec5995 59229da03141ebac420bfd41ebd5932fa180ea66 77c9fdc1f39ae86b0f7ad6f233924a36f24b27e5d3e7dffdb97cd797b3b23bd9
GET /jquery.min.js?style=script& HTTP/1.1
Host: css.developmyredflag.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://galliani.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 14:03:55 GMT
content-type: application/javascript; charset=utf-8
content-length: 4247
x-powered-by: Express
access-control-allow-origin: *
etag: W/"1097-Z9x0I8nhet6tBop3CnL+mHQ32+I"
cache-control: no-store, no-cache
X-Firefox-Spdy: h2
|
|
| galliani.de/wp-content/themes/Avada/includes/lib/assets/min/js/library/jquery.requestAnimationFrame.js?ver=1 | 92.205.53.58 | 200 OK | 2.9 kB |
URL GET HTTP/2galliani.de/wp-content/themes/Avada/includes/lib/assets/min/js/library/jquery.requestAnimationFrame.js?ver=1 IP92.205.53.58:443 ASN#21499 Host Europe GmbH
Requested byhttps://galliani.de/impressum/ CertificateIssuerispgateway Subjectwebslave.ispgateway.de FingerprintAC:37:D4:74:AA:28:8A:6B:A9:0F:90:E9:70:BF:C6:4A:55:9A:98:05 ValidityTue, 18 Oct 2022 05:41:53 GMT - Sat, 05 Mar 2050 05:41:53 GMT
File typeJavaScript source, ASCII text, with very long lines (2898), with no line terminators Hash109a59a4f35bd32c5933217ec55d462a a71a1f2925c12d05ac522a39fce95556198bc3b6 eb834fc3c3b69d8947d877640c5c7dd3cd3f9f4979aa47a50f9fef8d5db89a80
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/themes/Avada/includes/lib/assets/min/js/library/jquery.requestAnimationFrame.js?ver=1 HTTP/1.1
Host: galliani.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://galliani.de/impressum/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 14:03:54 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Thu, 13 Jun 2019 16:33:54 GMT
etag: W/"b44-58b371888537a"
x-cache-status: BYPASS
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| galliani.de/wp-content/plugins/fusion-builder/assets/js/min/general/fusion-counters-box.js?ver=1 | 92.205.53.58 | 200 OK | 3.1 kB |
URL GET HTTP/2galliani.de/wp-content/plugins/fusion-builder/assets/js/min/general/fusion-counters-box.js?ver=1 IP92.205.53.58:443 ASN#21499 Host Europe GmbH
Requested byhttps://galliani.de/impressum/ CertificateIssuerispgateway Subjectwebslave.ispgateway.de FingerprintAC:37:D4:74:AA:28:8A:6B:A9:0F:90:E9:70:BF:C6:4A:55:9A:98:05 ValidityTue, 18 Oct 2022 05:41:53 GMT - Sat, 05 Mar 2050 05:41:53 GMT
File typeJavaScript source, ASCII text, with very long lines (3145), with no line terminators Hash089a3d4d0f44ac55dd9b5e72c9822fd5 a2b73588634960be27124fc24bec15c554166063 485a2da344833c1525a6d7c0b07597cd0240e2af9e8fec6ca9f7f1b32050553e
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/fusion-builder/assets/js/min/general/fusion-counters-box.js?ver=1 HTTP/1.1
Host: galliani.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://galliani.de/impressum/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 14:03:54 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Thu, 13 Jun 2019 17:00:33 GMT
etag: W/"c2c-58b3777db7a6e"
x-cache-status: BYPASS
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| galliani.de/wp-content/themes/Avada/includes/lib/assets/min/js/library/bootstrap.modal.js?ver=3.1.1 | 92.205.53.58 | 200 OK | 6.1 kB |
URL GET HTTP/2galliani.de/wp-content/themes/Avada/includes/lib/assets/min/js/library/bootstrap.modal.js?ver=3.1.1 IP92.205.53.58:443 ASN#21499 Host Europe GmbH
Requested byhttps://galliani.de/impressum/ CertificateIssuerispgateway Subjectwebslave.ispgateway.de FingerprintAC:37:D4:74:AA:28:8A:6B:A9:0F:90:E9:70:BF:C6:4A:55:9A:98:05 ValidityTue, 18 Oct 2022 05:41:53 GMT - Sat, 05 Mar 2050 05:41:53 GMT
File typeJavaScript source, ASCII text, with very long lines (6253), with no line terminators Hash310463c68ebf0f1dd057c1afa344667a 5d45abf80c936bc1924db125bed8d598a4667f30 2e28e6fb42d2e5adf5c45fc734a66b4e127ea3c007b73ad63b4ff367c84f7235
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/themes/Avada/includes/lib/assets/min/js/library/bootstrap.modal.js?ver=3.1.1 HTTP/1.1
Host: galliani.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://galliani.de/impressum/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 14:03:54 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Thu, 13 Jun 2019 16:33:53 GMT
etag: W/"1800-58b371876a044"
x-cache-status: BYPASS
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| galliani.de/wp-content/plugins/fusion-builder/assets/js/min/general/fusion-tabs.js?ver=1 | 92.205.53.58 | 200 OK | 6.7 kB |
URL GET HTTP/2galliani.de/wp-content/plugins/fusion-builder/assets/js/min/general/fusion-tabs.js?ver=1 IP92.205.53.58:443 ASN#21499 Host Europe GmbH
Requested byhttps://galliani.de/impressum/ CertificateIssuerispgateway Subjectwebslave.ispgateway.de FingerprintAC:37:D4:74:AA:28:8A:6B:A9:0F:90:E9:70:BF:C6:4A:55:9A:98:05 ValidityTue, 18 Oct 2022 05:41:53 GMT - Sat, 05 Mar 2050 05:41:53 GMT
File typeJavaScript source, ASCII text, with very long lines (6982), with no line terminators Hash98d595e1e1223c9d789e11f58d1cb5e9 a351e01967d9419a16dc01e62c5697afbf19b983 e7d28501cc3f72c49e3ab4a22f2e4c7b76f18d6163fd3624bd67ee5d0d2e62e5
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/fusion-builder/assets/js/min/general/fusion-tabs.js?ver=1 HTTP/1.1
Host: galliani.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://galliani.de/impressum/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 14:03:54 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Thu, 13 Jun 2019 17:00:33 GMT
etag: W/"1a56-58b3777d9578f"
x-cache-status: BYPASS
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| galliani.de/wp-content/themes/Avada/assets/min/js/general/avada-vertical-menu-widget.js?ver=1 | 92.205.53.58 | 200 OK | 1.9 kB |
URL GET HTTP/2galliani.de/wp-content/themes/Avada/assets/min/js/general/avada-vertical-menu-widget.js?ver=1 IP92.205.53.58:443 ASN#21499 Host Europe GmbH
Requested byhttps://galliani.de/impressum/ CertificateIssuerispgateway Subjectwebslave.ispgateway.de FingerprintAC:37:D4:74:AA:28:8A:6B:A9:0F:90:E9:70:BF:C6:4A:55:9A:98:05 ValidityTue, 18 Oct 2022 05:41:53 GMT - Sat, 05 Mar 2050 05:41:53 GMT
File typeJavaScript source, ASCII text, with very long lines (1950), with no line terminators Hash9c952637b7cb41b90d4fe9cebceb783f a0bc29d8d888b3ff15600a0711c4af69f6bb569b d14a95c896288cce58ed35ab4528d30dcd545e1ea485aea9b9f15590e4056991
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/themes/Avada/assets/min/js/general/avada-vertical-menu-widget.js?ver=1 HTTP/1.1
Host: galliani.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://galliani.de/impressum/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 14:03:54 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Thu, 13 Jun 2019 16:31:22 GMT
etag: W/"75a-58b370f70c56a"
x-cache-status: BYPASS
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/vollkorn/v23/0ybgGDoxxrvAnPhYGzMlQLzuMasz6Df213aeHmmZ.ttf | 216.58.207.227 | 200 OK | 60 kB |
URL GET HTTP/2fonts.gstatic.com/s/vollkorn/v23/0ybgGDoxxrvAnPhYGzMlQLzuMasz6Df213aeHmmZ.ttf IP216.58.207.227:443
Requested byhttps://galliani.de/impressum/ CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com FingerprintF5:5C:D9:68:C6:5F:A3:33:5A:73:C3:79:B6:83:FE:44:2E:A4:83:74 ValidityMon, 18 Mar 2024 20:34:25 GMT - Mon, 10 Jun 2024 20:34:24 GMT
File typeTrueType Font data, 16 tables, 1st "GDEF", 12 names, Microsoft, language 0x409 Hashe78d51cea2b32297a6bca0a5ad63bfa1 01454c9f52168518ec556621a3e34b296c6adc91 c7b2b3fcab2f5dfb5a00ef4335d9d811b1bde6bf823b99f25230d3c4ce24df84
GET /s/vollkorn/v23/0ybgGDoxxrvAnPhYGzMlQLzuMasz6Df213aeHmmZ.ttf HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://galliani.de
DNT: 1
Connection: keep-alive
Referer: https://galliani.de/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 34145
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 23 Apr 2024 06:20:35 GMT
expires: Wed, 23 Apr 2025 06:20:35 GMT
cache-control: public, max-age=31536000
age: 200600
last-modified: Wed, 13 Sep 2023 22:26:26 GMT
content-type: font/ttf
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| galliani.de/wp-content/themes/Avada/includes/lib/assets/min/js/library/jquery.easing.js?ver=1.3 | 92.205.53.58 | 200 OK | 5.5 kB |
URL GET HTTP/2galliani.de/wp-content/themes/Avada/includes/lib/assets/min/js/library/jquery.easing.js?ver=1.3 IP92.205.53.58:443 ASN#21499 Host Europe GmbH
Requested byhttps://galliani.de/impressum/ CertificateIssuerispgateway Subjectwebslave.ispgateway.de FingerprintAC:37:D4:74:AA:28:8A:6B:A9:0F:90:E9:70:BF:C6:4A:55:9A:98:05 ValidityTue, 18 Oct 2022 05:41:53 GMT - Sat, 05 Mar 2050 05:41:53 GMT
File typeASCII text, with very long lines (5523), with no line terminators Hash55255c5c204b4714b4a1d88bc5ab3ef4 ba6f2b2fa18ae802dd8e8082b58db4b1e7712985 a7bbc137c9c4d3d424b723d52402559166f9fe7306e41c5cb490622527977bea
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/themes/Avada/includes/lib/assets/min/js/library/jquery.easing.js?ver=1.3 HTTP/1.1
Host: galliani.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://galliani.de/impressum/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 14:03:54 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Thu, 13 Jun 2019 16:33:53 GMT
etag: W/"1591-58b37187da520"
x-cache-status: BYPASS
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| galliani.de/wp-content/themes/Avada/includes/lib/assets/min/js/library/jquery.touchSwipe.js?ver=1.6.6 | 92.205.53.58 | 200 OK | 12 kB |
URL GET HTTP/2galliani.de/wp-content/themes/Avada/includes/lib/assets/min/js/library/jquery.touchSwipe.js?ver=1.6.6 IP92.205.53.58:443 ASN#21499 Host Europe GmbH
Requested byhttps://galliani.de/impressum/ CertificateIssuerispgateway Subjectwebslave.ispgateway.de FingerprintAC:37:D4:74:AA:28:8A:6B:A9:0F:90:E9:70:BF:C6:4A:55:9A:98:05 ValidityTue, 18 Oct 2022 05:41:53 GMT - Sat, 05 Mar 2050 05:41:53 GMT
File typeJavaScript source, ASCII text, with very long lines (12308), with no line terminators Hash3707e7030757c1af97107ff11513c30f bcf369fbacd30159a5697850ef863a862910e366 288d22d06f438643b6dfa5ed45b7160821195e68f1c9331619ccf3aaabec49cb
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/themes/Avada/includes/lib/assets/min/js/library/jquery.touchSwipe.js?ver=1.6.6 HTTP/1.1
Host: galliani.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://galliani.de/impressum/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 14:03:54 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Thu, 13 Jun 2019 16:33:53 GMT
etag: W/"3014-58b3718747d65"
x-cache-status: BYPASS
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| galliani.de/wp-content/plugins/fusion-builder/assets/js/min/general/fusion-countdown.js?ver=1 | 92.205.53.58 | 200 OK | 2.6 kB |
URL GET HTTP/2galliani.de/wp-content/plugins/fusion-builder/assets/js/min/general/fusion-countdown.js?ver=1 IP92.205.53.58:443 ASN#21499 Host Europe GmbH
Requested byhttps://galliani.de/impressum/ CertificateIssuerispgateway Subjectwebslave.ispgateway.de FingerprintAC:37:D4:74:AA:28:8A:6B:A9:0F:90:E9:70:BF:C6:4A:55:9A:98:05 ValidityTue, 18 Oct 2022 05:41:53 GMT - Sat, 05 Mar 2050 05:41:53 GMT
File typeJavaScript source, ASCII text, with very long lines (2668), with no line terminators Hashd327ed8120a636047fb17d08f06edaef 2e1cefc8f9d90817a32e3f08eb7c095eb1a33be1 617d5d9e284188005373cfe437cb80f1c4ce6bd8e5357e1e320bbca4c1d5e258
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/fusion-builder/assets/js/min/general/fusion-countdown.js?ver=1 HTTP/1.1
Host: galliani.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://galliani.de/impressum/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 14:03:54 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Thu, 13 Jun 2019 17:00:33 GMT
etag: W/"a58-58b3777d67161"
x-cache-status: BYPASS
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| galliani.de/wp-content/plugins/fusion-core/js/min/avada-fusion-slider.js?ver=1 | 92.205.53.58 | 200 OK | 28 kB |
URL GET HTTP/2galliani.de/wp-content/plugins/fusion-core/js/min/avada-fusion-slider.js?ver=1 IP92.205.53.58:443 ASN#21499 Host Europe GmbH
Requested byhttps://galliani.de/impressum/ CertificateIssuerispgateway Subjectwebslave.ispgateway.de FingerprintAC:37:D4:74:AA:28:8A:6B:A9:0F:90:E9:70:BF:C6:4A:55:9A:98:05 ValidityTue, 18 Oct 2022 05:41:53 GMT - Sat, 05 Mar 2050 05:41:53 GMT
File typeJavaScript source, ASCII text, with very long lines (28342), with no line terminators Hashfd672165a628ba42258b05bdc7794fd9 2c3b29ed71a15a2227951441451ba70f4c65e106 c13edf0567ecf139f9e4672ee24157768f2f8ed9f5234e9e2ca741ffe954af6f
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/fusion-core/js/min/avada-fusion-slider.js?ver=1 HTTP/1.1
Host: galliani.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://galliani.de/impressum/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 14:03:54 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Thu, 13 Jun 2019 16:58:41 GMT
etag: W/"6eb6-58b377123379e"
x-cache-status: BYPASS
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| galliani.de/wp-content/themes/Avada/assets/css/style.min.css?ver=5.5 | 92.205.53.58 | 200 OK | 203 kB |
URL GET HTTP/2galliani.de/wp-content/themes/Avada/assets/css/style.min.css?ver=5.5 IP92.205.53.58:443 ASN#21499 Host Europe GmbH
Requested byhttps://galliani.de/impressum/ CertificateIssuerispgateway Subjectwebslave.ispgateway.de FingerprintAC:37:D4:74:AA:28:8A:6B:A9:0F:90:E9:70:BF:C6:4A:55:9A:98:05 ValidityTue, 18 Oct 2022 05:41:53 GMT - Sat, 05 Mar 2050 05:41:53 GMT
File typeASCII text, with very long lines (65536), with no line terminators Size203 kB (202949 bytes) Hash16501490b48e043c0bbb6ce019ec0afa 60f49691e6edb1c9b3860183995d5b1caaa272ed f927633d334da25028236d1f203bc0414364177c53903f4c477ecfac85c0a3d8
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/themes/Avada/assets/css/style.min.css?ver=5.5 HTTP/1.1
Host: galliani.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://galliani.de/impressum/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 14:03:54 GMT
content-type: text/css
vary: Accept-Encoding
last-modified: Thu, 13 Jun 2019 16:29:02 GMT
etag: W/"318c5-58b370721b706"
x-cache-status: BYPASS
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| galliani.de/wp-content/themes/Avada/includes/lib/assets/min/js/library/jquery.carouFredSel.js?ver=6.2.1 | 92.205.53.58 | 200 OK | 57 kB |
URL GET HTTP/2galliani.de/wp-content/themes/Avada/includes/lib/assets/min/js/library/jquery.carouFredSel.js?ver=6.2.1 IP92.205.53.58:443 ASN#21499 Host Europe GmbH
Requested byhttps://galliani.de/impressum/ CertificateIssuerispgateway Subjectwebslave.ispgateway.de FingerprintAC:37:D4:74:AA:28:8A:6B:A9:0F:90:E9:70:BF:C6:4A:55:9A:98:05 ValidityTue, 18 Oct 2022 05:41:53 GMT - Sat, 05 Mar 2050 05:41:53 GMT
File typeJavaScript source, ASCII text, with very long lines (34188) Hash548b4079b05056947660aeead057114a eec1bbcfdd5332fd4bbf627ab9995ca289e822fc 75be3aa6dbf680f0db629f8521ceccc7a6615efb12f515b91a39f15ab999e2db
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/themes/Avada/includes/lib/assets/min/js/library/jquery.carouFredSel.js?ver=6.2.1 HTTP/1.1
Host: galliani.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://galliani.de/impressum/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 14:03:54 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Thu, 13 Jun 2019 16:33:53 GMT
etag: W/"dde2-58b37187da520"
x-cache-status: BYPASS
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| galliani.de/wp-content/plugins/fusion-builder/assets/js/min/library/jquery.event.move.js?ver=2.0 | 92.205.53.58 | 200 OK | 7.8 kB |
URL GET HTTP/2galliani.de/wp-content/plugins/fusion-builder/assets/js/min/library/jquery.event.move.js?ver=2.0 IP92.205.53.58:443 ASN#21499 Host Europe GmbH
Requested byhttps://galliani.de/impressum/ CertificateIssuerispgateway Subjectwebslave.ispgateway.de FingerprintAC:37:D4:74:AA:28:8A:6B:A9:0F:90:E9:70:BF:C6:4A:55:9A:98:05 ValidityTue, 18 Oct 2022 05:41:53 GMT - Sat, 05 Mar 2050 05:41:53 GMT
File typeJavaScript source, ASCII text, with very long lines (7851), with no line terminators Hash08b26f48cd08cf25953c8be0ccad6f92 ee650536e8390cadb683686244e59c67e376e71d 6f1504fb6df8c2820ff65a790bceae280bae25f3f2a4b55100e6403bb99de560
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/fusion-builder/assets/js/min/library/jquery.event.move.js?ver=2.0 HTTP/1.1
Host: galliani.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://galliani.de/impressum/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 14:03:54 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Thu, 13 Jun 2019 17:00:33 GMT
etag: W/"1e72-58b3777d33d13"
x-cache-status: BYPASS
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| galliani.de/wp-content/themes/Avada/includes/lib/assets/min/js/general/fusion-tooltip.js?ver=1 | 92.205.53.58 | 200 OK | 3.7 kB |
URL GET HTTP/2galliani.de/wp-content/themes/Avada/includes/lib/assets/min/js/general/fusion-tooltip.js?ver=1 IP92.205.53.58:443 ASN#21499 Host Europe GmbH
Requested byhttps://galliani.de/impressum/ CertificateIssuerispgateway Subjectwebslave.ispgateway.de FingerprintAC:37:D4:74:AA:28:8A:6B:A9:0F:90:E9:70:BF:C6:4A:55:9A:98:05 ValidityTue, 18 Oct 2022 05:41:53 GMT - Sat, 05 Mar 2050 05:41:53 GMT
File typeJavaScript source, ASCII text, with very long lines (3772), with no line terminators Hashe385c435c1df8e0458107088fd365502 1f0a3b8c2681df918421cdcd4dc3f3a75f564b7f bd9c36f6b7841b51b7b4f74dfa235d07d5f9985651c582733eb2b4acad86aee6
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/themes/Avada/includes/lib/assets/min/js/general/fusion-tooltip.js?ver=1 HTTP/1.1
Host: galliani.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://galliani.de/impressum/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 14:03:54 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Thu, 13 Jun 2019 16:33:54 GMT
etag: W/"e90-58b371887de4a"
x-cache-status: BYPASS
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| galliani.de/wp-content/plugins/fusion-builder/assets/js/min/library/jquery.countTo.js?ver=1 | 92.205.53.58 | 200 OK | 3.1 kB |
URL GET HTTP/2galliani.de/wp-content/plugins/fusion-builder/assets/js/min/library/jquery.countTo.js?ver=1 IP92.205.53.58:443 ASN#21499 Host Europe GmbH
Requested byhttps://galliani.de/impressum/ CertificateIssuerispgateway Subjectwebslave.ispgateway.de FingerprintAC:37:D4:74:AA:28:8A:6B:A9:0F:90:E9:70:BF:C6:4A:55:9A:98:05 ValidityTue, 18 Oct 2022 05:41:53 GMT - Sat, 05 Mar 2050 05:41:53 GMT
File typeJavaScript source, ASCII text, with very long lines (3156), with no line terminators Hash17aa9c84707f4c7333d68ba7e72e49dd be91e46ccef7e3119852797487db58cef3f46b4e 472a1f5d47aead2f0594694c9b5ebcddf2dc411e5c07b4836a20deae03ea6c9d
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/fusion-builder/assets/js/min/library/jquery.countTo.js?ver=1 HTTP/1.1
Host: galliani.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://galliani.de/impressum/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 14:03:54 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Thu, 13 Jun 2019 17:00:33 GMT
etag: W/"c46-58b3777d2a0d3"
x-cache-status: BYPASS
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| galliani.de/wp-content/plugins/fusion-builder/assets/js/min/general/fusion-video.js?ver=1 | 92.205.53.58 | 200 OK | 3.2 kB |
URL GET HTTP/2galliani.de/wp-content/plugins/fusion-builder/assets/js/min/general/fusion-video.js?ver=1 IP92.205.53.58:443 ASN#21499 Host Europe GmbH
Requested byhttps://galliani.de/impressum/ CertificateIssuerispgateway Subjectwebslave.ispgateway.de FingerprintAC:37:D4:74:AA:28:8A:6B:A9:0F:90:E9:70:BF:C6:4A:55:9A:98:05 ValidityTue, 18 Oct 2022 05:41:53 GMT - Sat, 05 Mar 2050 05:41:53 GMT
File typeJavaScript source, ASCII text, with very long lines (3232), with no line terminators Hasheb3e5f5c76c0b951a31591600b24f855 1c711fca12788ecb392b84a3d5e4fbad51743c08 f1f60a398eb182bd14d5f70b70450998ae60a6b36996674cf3d67910a74f3d0e
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/fusion-builder/assets/js/min/general/fusion-video.js?ver=1 HTTP/1.1
Host: galliani.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://galliani.de/impressum/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 14:03:54 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Thu, 13 Jun 2019 17:00:33 GMT
etag: W/"c64-58b3777d9578f"
x-cache-status: BYPASS
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| galliani.de/wp-content/plugins/fusion-builder/assets/js/min/general/fusion-content-boxes.js?ver=1 | 92.205.53.58 | 200 OK | 6.4 kB |
URL GET HTTP/2galliani.de/wp-content/plugins/fusion-builder/assets/js/min/general/fusion-content-boxes.js?ver=1 IP92.205.53.58:443 ASN#21499 Host Europe GmbH
Requested byhttps://galliani.de/impressum/ CertificateIssuerispgateway Subjectwebslave.ispgateway.de FingerprintAC:37:D4:74:AA:28:8A:6B:A9:0F:90:E9:70:BF:C6:4A:55:9A:98:05 ValidityTue, 18 Oct 2022 05:41:53 GMT - Sat, 05 Mar 2050 05:41:53 GMT
File typeJavaScript source, ASCII text, with very long lines (6556), with no line terminators Hash0a3b4e9bf27a592fa67425d0eecaf6aa 2e21eb09041368893d9969d072ca97a05284c5f2 754a5617117c06e780faa3c48f4e69f967f8726e755dbae6728588c3990471f9
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/fusion-builder/assets/js/min/general/fusion-content-boxes.js?ver=1 HTTP/1.1
Host: galliani.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://galliani.de/impressum/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 14:03:54 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Thu, 13 Jun 2019 17:00:33 GMT
etag: W/"18d2-58b3777da900f"
x-cache-status: BYPASS
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| galliani.de/wp-content/themes/Avada/includes/lib/assets/min/js/library/bootstrap.tab.js?ver=3.1.1 | 92.205.53.58 | 200 OK | 3.7 kB |
URL GET HTTP/2galliani.de/wp-content/themes/Avada/includes/lib/assets/min/js/library/bootstrap.tab.js?ver=3.1.1 IP92.205.53.58:443 ASN#21499 Host Europe GmbH
Requested byhttps://galliani.de/impressum/ CertificateIssuerispgateway Subjectwebslave.ispgateway.de FingerprintAC:37:D4:74:AA:28:8A:6B:A9:0F:90:E9:70:BF:C6:4A:55:9A:98:05 ValidityTue, 18 Oct 2022 05:41:53 GMT - Sat, 05 Mar 2050 05:41:53 GMT
File typeJavaScript source, ASCII text, with very long lines (3759), with no line terminators Hash2804c20237646d513a5e864657a0fcf0 4566c6f01d08256068f53fb08f6d62578072e523 76ec383bfa890b9b48f3f0e6f2588016a1b8a0f6f766537345c5d1d9e696e2d6
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/themes/Avada/includes/lib/assets/min/js/library/bootstrap.tab.js?ver=3.1.1 HTTP/1.1
Host: galliani.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://galliani.de/impressum/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 14:03:54 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Thu, 13 Jun 2019 16:33:53 GMT
etag: W/"e64-58b3718745655"
x-cache-status: BYPASS
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| galliani.de/wp-content/themes/Avada/assets/min/js/general/avada-scrollspy.js?ver=5.5 | 92.205.53.58 | 200 OK | 2.8 kB |
URL GET HTTP/2galliani.de/wp-content/themes/Avada/assets/min/js/general/avada-scrollspy.js?ver=5.5 IP92.205.53.58:443 ASN#21499 Host Europe GmbH
Requested byhttps://galliani.de/impressum/ CertificateIssuerispgateway Subjectwebslave.ispgateway.de FingerprintAC:37:D4:74:AA:28:8A:6B:A9:0F:90:E9:70:BF:C6:4A:55:9A:98:05 ValidityTue, 18 Oct 2022 05:41:53 GMT - Sat, 05 Mar 2050 05:41:53 GMT
File typeJavaScript source, ASCII text, with very long lines (2867), with no line terminators Hash2eee3442a003aa52c6d564abd8aa1377 7ddf5802c2001fbf4e0559bdce7276c7457eb147 3a04f62cea472ecec98ded4da61f308582459cf2914d95ea1e4c7230ec67b861
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/themes/Avada/assets/min/js/general/avada-scrollspy.js?ver=5.5 HTTP/1.1
Host: galliani.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://galliani.de/impressum/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 14:03:54 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Thu, 13 Jun 2019 16:31:22 GMT
etag: W/"b1d-58b370f71d6d9"
x-cache-status: BYPASS
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| galliani.de/wp-content/themes/Avada/includes/lib/assets/min/js/library/jquery.hoverintent.js?ver=1 | 92.205.53.58 | 200 OK | 3.3 kB |
URL GET HTTP/2galliani.de/wp-content/themes/Avada/includes/lib/assets/min/js/library/jquery.hoverintent.js?ver=1 IP92.205.53.58:443 ASN#21499 Host Europe GmbH
Requested byhttps://galliani.de/impressum/ CertificateIssuerispgateway Subjectwebslave.ispgateway.de FingerprintAC:37:D4:74:AA:28:8A:6B:A9:0F:90:E9:70:BF:C6:4A:55:9A:98:05 ValidityTue, 18 Oct 2022 05:41:53 GMT - Sat, 05 Mar 2050 05:41:53 GMT
File typeJavaScript source, ASCII text, with very long lines (3311), with no line terminators Hashb1c4ba97dd4d3b18167283f8444c8a85 934c8d159d06cf769bdc3645d71a2bbd88548494 b756667e7e10c4bf9d2e47fd14cd6e24bd119371013b29c3b0e42ce589f293d9
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/themes/Avada/includes/lib/assets/min/js/library/jquery.hoverintent.js?ver=1 HTTP/1.1
Host: galliani.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://galliani.de/impressum/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 14:03:54 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Thu, 13 Jun 2019 16:33:53 GMT
etag: W/"ce1-58b3718747d65"
x-cache-status: BYPASS
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| galliani.de/wp-content/themes/Avada/includes/lib/assets/min/js/general/fusion-ie1011.js?ver=1 | 92.205.53.58 | 200 OK | 1.2 kB |
URL GET HTTP/2galliani.de/wp-content/themes/Avada/includes/lib/assets/min/js/general/fusion-ie1011.js?ver=1 IP92.205.53.58:443 ASN#21499 Host Europe GmbH
Requested byhttps://galliani.de/impressum/ CertificateIssuerispgateway Subjectwebslave.ispgateway.de FingerprintAC:37:D4:74:AA:28:8A:6B:A9:0F:90:E9:70:BF:C6:4A:55:9A:98:05 ValidityTue, 18 Oct 2022 05:41:53 GMT - Sat, 05 Mar 2050 05:41:53 GMT
File typeJavaScript source, ASCII text, with very long lines (1217), with no line terminators Hash38bf0ddc4c3570e0d3c06e727cc46ceb 14124b92c14ef3f12faed5e0a49604aa6a13d61e 32916c990bc538a559d54f6349f1bbe0449f3f98d6969c51573bb9201305d53f
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/themes/Avada/includes/lib/assets/min/js/general/fusion-ie1011.js?ver=1 HTTP/1.1
Host: galliani.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://galliani.de/impressum/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 14:03:54 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Thu, 13 Jun 2019 16:33:54 GMT
etag: W/"4b3-58b371886309b"
x-cache-status: BYPASS
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| galliani.de/wp-content/themes/Avada/includes/lib/assets/min/js/library/bootstrap.popover.js?ver=3.3.5 | 92.205.53.58 | 200 OK | 3.8 kB |
URL GET HTTP/2galliani.de/wp-content/themes/Avada/includes/lib/assets/min/js/library/bootstrap.popover.js?ver=3.3.5 IP92.205.53.58:443 ASN#21499 Host Europe GmbH
Requested byhttps://galliani.de/impressum/ CertificateIssuerispgateway Subjectwebslave.ispgateway.de FingerprintAC:37:D4:74:AA:28:8A:6B:A9:0F:90:E9:70:BF:C6:4A:55:9A:98:05 ValidityTue, 18 Oct 2022 05:41:53 GMT - Sat, 05 Mar 2050 05:41:53 GMT
File typeJavaScript source, ASCII text, with very long lines (3836), with no line terminators Hash64f12701af5097010c3f3847a8c1ba07 f075c0e6f379037e92edb8144bce6ca431d9349b 652159a5f377aaa13937504cd58487474e027ea215ed591a40cb61d589c8a4ed
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/themes/Avada/includes/lib/assets/min/js/library/bootstrap.popover.js?ver=3.3.5 HTTP/1.1
Host: galliani.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://galliani.de/impressum/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 14:03:54 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Thu, 13 Jun 2019 16:33:53 GMT
etag: W/"ec0-58b37187b5b31"
x-cache-status: BYPASS
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| galliani.de/wp-content/themes/Avada/includes/lib/assets/min/js/general/fusion-button.js?ver=1 | 92.205.53.58 | 200 OK | 2.4 kB |
URL GET HTTP/2galliani.de/wp-content/themes/Avada/includes/lib/assets/min/js/general/fusion-button.js?ver=1 IP92.205.53.58:443 ASN#21499 Host Europe GmbH
Requested byhttps://galliani.de/impressum/ CertificateIssuerispgateway Subjectwebslave.ispgateway.de FingerprintAC:37:D4:74:AA:28:8A:6B:A9:0F:90:E9:70:BF:C6:4A:55:9A:98:05 ValidityTue, 18 Oct 2022 05:41:53 GMT - Sat, 05 Mar 2050 05:41:53 GMT
File typeJavaScript source, ASCII text, with very long lines (2424), with no line terminators Hasha51d358e4e70f02d55f04a960352e75c 470973bdd20a01bd709f04a090b8737aa0ff85bd b02a26528be5220b1976423d39ed1eb1c364e9c550e48680514698b5c2faa761
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/themes/Avada/includes/lib/assets/min/js/general/fusion-button.js?ver=1 HTTP/1.1
Host: galliani.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://galliani.de/impressum/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 14:03:54 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Thu, 13 Jun 2019 16:33:54 GMT
etag: W/"974-58b371887de4a"
x-cache-status: BYPASS
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| galliani.de/wp-content/themes/Avada/includes/lib/assets/min/js/general/fusion-responsive-typography.js?ver=1 | 92.205.53.58 | 200 OK | 4.2 kB |
URL GET HTTP/2galliani.de/wp-content/themes/Avada/includes/lib/assets/min/js/general/fusion-responsive-typography.js?ver=1 IP92.205.53.58:443 ASN#21499 Host Europe GmbH
Requested byhttps://galliani.de/impressum/ CertificateIssuerispgateway Subjectwebslave.ispgateway.de FingerprintAC:37:D4:74:AA:28:8A:6B:A9:0F:90:E9:70:BF:C6:4A:55:9A:98:05 ValidityTue, 18 Oct 2022 05:41:53 GMT - Sat, 05 Mar 2050 05:41:53 GMT
File typeJavaScript source, ASCII text, with very long lines (4299), with no line terminators Hash38f539be68607a6cac6baf8577fe34ee 68fac4e4a933a073203dc493b80833ba96a7ab5d 47eab01317a198d9948048043d62b4a4b77cd156e1456d759e7f60489d908ed5
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/themes/Avada/includes/lib/assets/min/js/general/fusion-responsive-typography.js?ver=1 HTTP/1.1
Host: galliani.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://galliani.de/impressum/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 14:03:54 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Thu, 13 Jun 2019 16:33:54 GMT
etag: W/"107f-58b371889da19"
x-cache-status: BYPASS
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| galliani.de/wp-content/themes/Avada/assets/min/js/general/avada-events.js?ver=5.5 | 92.205.53.58 | 200 OK | 4.3 kB |
URL GET HTTP/2galliani.de/wp-content/themes/Avada/assets/min/js/general/avada-events.js?ver=5.5 IP92.205.53.58:443 ASN#21499 Host Europe GmbH
Requested byhttps://galliani.de/impressum/ CertificateIssuerispgateway Subjectwebslave.ispgateway.de FingerprintAC:37:D4:74:AA:28:8A:6B:A9:0F:90:E9:70:BF:C6:4A:55:9A:98:05 ValidityTue, 18 Oct 2022 05:41:53 GMT - Sat, 05 Mar 2050 05:41:53 GMT
File typeJavaScript source, ASCII text, with very long lines (4381), with no line terminators Hash4c45dd8b48198e2d44b6d1867b8fbd99 61a2a779f86fba1251efe4a5848c2adfb492eaf8 fee6f54b7ad0fe51c1d07cc51de7d6035e5f2e100360893c0abcbaa8a2e9327b
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/themes/Avada/assets/min/js/general/avada-events.js?ver=5.5 HTTP/1.1
Host: galliani.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://galliani.de/impressum/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 14:03:54 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Thu, 13 Jun 2019 16:31:21 GMT
etag: W/"10c3-58b370f6bbc5d"
x-cache-status: BYPASS
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| galliani.de/wp-content/uploads/fusion-styles/fusion-961.min.css?timestamp=1714024213&ver=4.9.25 | 92.205.53.58 | 200 OK | 608 kB |
URL GET HTTP/2galliani.de/wp-content/uploads/fusion-styles/fusion-961.min.css?timestamp=1714024213&ver=4.9.25 IP92.205.53.58:443 ASN#21499 Host Europe GmbH
Requested byhttps://galliani.de/impressum/ CertificateIssuerispgateway Subjectwebslave.ispgateway.de FingerprintAC:37:D4:74:AA:28:8A:6B:A9:0F:90:E9:70:BF:C6:4A:55:9A:98:05 ValidityTue, 18 Oct 2022 05:41:53 GMT - Sat, 05 Mar 2050 05:41:53 GMT
File typeASCII text, with very long lines (65536), with no line terminators Size608 kB (608254 bytes) Hash8baa96af96d7280532845f17cc957654 9e23ceb04c70fb3b2875db066c1acb0dc6adf686 f6b6d77cdb8e544d0c1a5cae484c09d88dab999c0526150b78a0a74e8a5de615
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/uploads/fusion-styles/fusion-961.min.css?timestamp=1714024213&ver=4.9.25 HTTP/1.1
Host: galliani.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://galliani.de/impressum/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 14:03:54 GMT
content-type: text/css
vary: Accept-Encoding
last-modified: Thu, 25 Apr 2024 05:50:13 GMT
etag: W/"947fe-616e55c61cf80"
x-cache-status: BYPASS
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| galliani.de/wp-content/plugins/contact-form-7/includes/js/scripts.js?ver=5.1.3 | 92.205.53.58 | 200 OK | 14 kB |
URL GET HTTP/2galliani.de/wp-content/plugins/contact-form-7/includes/js/scripts.js?ver=5.1.3 IP92.205.53.58:443 ASN#21499 Host Europe GmbH
Requested byhttps://galliani.de/impressum/ CertificateIssuerispgateway Subjectwebslave.ispgateway.de FingerprintAC:37:D4:74:AA:28:8A:6B:A9:0F:90:E9:70:BF:C6:4A:55:9A:98:05 ValidityTue, 18 Oct 2022 05:41:53 GMT - Sat, 05 Mar 2050 05:41:53 GMT
File typeJavaScript source, ASCII text Hash1534f06aa2b1b721a45372f8238e2461 86f7e7b926e1a88209d171b56dadbccc2c96f578 b7e17926b30342edecee8b3a93029ac51462e2b479277d8e077ba57173eb1900
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/contact-form-7/includes/js/scripts.js?ver=5.1.3 HTTP/1.1
Host: galliani.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://galliani.de/impressum/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 14:03:54 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Mon, 29 Jul 2019 10:41:58 GMT
etag: W/"3868-58ecf8aa39f5a"
x-cache-status: BYPASS
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| galliani.de/wp-content/themes/Avada/includes/lib/assets/min/js/library/jquery.fade.js?ver=1 | 92.205.53.58 | 200 OK | 3.4 kB |
URL GET HTTP/2galliani.de/wp-content/themes/Avada/includes/lib/assets/min/js/library/jquery.fade.js?ver=1 IP92.205.53.58:443 ASN#21499 Host Europe GmbH
Requested byhttps://galliani.de/impressum/ CertificateIssuerispgateway Subjectwebslave.ispgateway.de FingerprintAC:37:D4:74:AA:28:8A:6B:A9:0F:90:E9:70:BF:C6:4A:55:9A:98:05 ValidityTue, 18 Oct 2022 05:41:53 GMT - Sat, 05 Mar 2050 05:41:53 GMT
File typeJavaScript source, ASCII text, with very long lines (3425), with no line terminators Hasha0e928be12b18052a3a60371e4578b89 15b05b3c965bde2762ab33a59135013688a398da fc09c7c07fa5fd28f9d523b24f968d1b521ce337def8cecc2dfb961b5d488b9f
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/themes/Avada/includes/lib/assets/min/js/library/jquery.fade.js?ver=1 HTTP/1.1
Host: galliani.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://galliani.de/impressum/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 14:03:54 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Thu, 13 Jun 2019 16:33:53 GMT
etag: W/"d1b-58b3718767934"
x-cache-status: BYPASS
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/unicaone/v18/DPEuYwWHyAYGVTSmalsRcd3b.ttf | 216.58.207.227 | 200 OK | 34 kB |
URL GET HTTP/2fonts.gstatic.com/s/unicaone/v18/DPEuYwWHyAYGVTSmalsRcd3b.ttf IP216.58.207.227:443
Requested byhttps://galliani.de/impressum/ CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com FingerprintF5:5C:D9:68:C6:5F:A3:33:5A:73:C3:79:B6:83:FE:44:2E:A4:83:74 ValidityMon, 18 Mar 2024 20:34:25 GMT - Mon, 10 Jun 2024 20:34:24 GMT
File typeTrueType Font data, 17 tables, 1st "GDEF", 8 names, Microsoft, language 0x409 Hash18390e1f41a018a5fee782947980cee7 fc2c4be327ccb131e5861a1e260280fdf8df67e4 951555e0b1c603bdc52b28b6377d78fdc85d5fa3dd80ece95f2cd824d2b2b660
GET /s/unicaone/v18/DPEuYwWHyAYGVTSmalsRcd3b.ttf HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://galliani.de
DNT: 1
Connection: keep-alive
Referer: https://galliani.de/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 17875
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 25 Apr 2024 09:03:08 GMT
expires: Fri, 25 Apr 2025 09:03:08 GMT
cache-control: public, max-age=31536000
age: 18048
last-modified: Thu, 24 Aug 2023 20:47:02 GMT
content-type: font/ttf
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| galliani.de/wp-content/themes/Avada/includes/lib/assets/min/js/general/fusion-waypoints.js?ver=1 | 92.205.53.58 | 200 OK | 2.6 kB |
URL GET HTTP/2galliani.de/wp-content/themes/Avada/includes/lib/assets/min/js/general/fusion-waypoints.js?ver=1 IP92.205.53.58:443 ASN#21499 Host Europe GmbH
Requested byhttps://galliani.de/impressum/ CertificateIssuerispgateway Subjectwebslave.ispgateway.de FingerprintAC:37:D4:74:AA:28:8A:6B:A9:0F:90:E9:70:BF:C6:4A:55:9A:98:05 ValidityTue, 18 Oct 2022 05:41:53 GMT - Sat, 05 Mar 2050 05:41:53 GMT
File typeJavaScript source, ASCII text, with very long lines (2650), with no line terminators Hash86313f3e876e5a470dd80364d2b2d2f2 ebef4685e188d10b162355e68eab82a2bb9cbac0 b65159f1e0630e18f6e818fddec81c8f6cce7f123f8d5a64b2c128aa7d5cbff6
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/themes/Avada/includes/lib/assets/min/js/general/fusion-waypoints.js?ver=1 HTTP/1.1
Host: galliani.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://galliani.de/impressum/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 14:03:54 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Thu, 13 Jun 2019 16:33:54 GMT
etag: W/"a4c-58b371885bb6b"
x-cache-status: BYPASS
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| galliani.de/wp-content/themes/Avada/includes/lib/assets/min/js/general/fusion-sharing-box.js?ver=1 | 92.205.53.58 | 200 OK | 610 B |
URL GET HTTP/2galliani.de/wp-content/themes/Avada/includes/lib/assets/min/js/general/fusion-sharing-box.js?ver=1 IP92.205.53.58:443 ASN#21499 Host Europe GmbH
Requested byhttps://galliani.de/impressum/ CertificateIssuerispgateway Subjectwebslave.ispgateway.de FingerprintAC:37:D4:74:AA:28:8A:6B:A9:0F:90:E9:70:BF:C6:4A:55:9A:98:05 ValidityTue, 18 Oct 2022 05:41:53 GMT - Sat, 05 Mar 2050 05:41:53 GMT
File typeJavaScript source, ASCII text, with very long lines (652), with no line terminators Hashb5cc3a2596db407daa50b3c327df0a50 0213278e6d3458eeef9c6e213af7c814464b8353 1bcbee4ee99ef2cb6039d061a7086e77b8aecb6d3f56aa662eccadc862933206
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/themes/Avada/includes/lib/assets/min/js/general/fusion-sharing-box.js?ver=1 HTTP/1.1
Host: galliani.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://galliani.de/impressum/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 14:03:54 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Thu, 13 Jun 2019 16:33:54 GMT
etag: W/"262-58b37188a0129"
x-cache-status: BYPASS
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| galliani.de/wp-content/themes/Avada/includes/lib/assets/min/js/general/fusion-scroll-to-anchor.js?ver=1 | 92.205.53.58 | 200 OK | 6.6 kB |
URL GET HTTP/2galliani.de/wp-content/themes/Avada/includes/lib/assets/min/js/general/fusion-scroll-to-anchor.js?ver=1 IP92.205.53.58:443 ASN#21499 Host Europe GmbH
Requested byhttps://galliani.de/impressum/ CertificateIssuerispgateway Subjectwebslave.ispgateway.de FingerprintAC:37:D4:74:AA:28:8A:6B:A9:0F:90:E9:70:BF:C6:4A:55:9A:98:05 ValidityTue, 18 Oct 2022 05:41:53 GMT - Sat, 05 Mar 2050 05:41:53 GMT
File typeJavaScript source, ASCII text, with very long lines (6841), with no line terminators Hash54ffdc130e709efd2e8546ef1c0080b3 d434b6b1ff271b93c2338c5af71d8e86ddc6f7d2 4c384ce145c9fdc2b65c2a6b81358762fb81877a7b1a4a5413c22e6a799554af
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/themes/Avada/includes/lib/assets/min/js/general/fusion-scroll-to-anchor.js?ver=1 HTTP/1.1
Host: galliani.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://galliani.de/impressum/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 14:03:54 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Thu, 13 Jun 2019 16:33:54 GMT
etag: W/"19e1-58b371885bb6b"
x-cache-status: BYPASS
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/vollkorn/v23/0ybgGDoxxrvAnPhYGzMlQLzuMasz6Df2MHGeHmmZ.ttf | 216.58.207.227 | 200 OK | 59 kB |
URL GET HTTP/2fonts.gstatic.com/s/vollkorn/v23/0ybgGDoxxrvAnPhYGzMlQLzuMasz6Df2MHGeHmmZ.ttf IP216.58.207.227:443
Requested byhttps://galliani.de/impressum/ CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com FingerprintF5:5C:D9:68:C6:5F:A3:33:5A:73:C3:79:B6:83:FE:44:2E:A4:83:74 ValidityMon, 18 Mar 2024 20:34:25 GMT - Mon, 10 Jun 2024 20:34:24 GMT
File typeTrueType Font data, 16 tables, 1st "GDEF", 12 names, Microsoft, language 0x409 Hash03e84df0089474aeab7ccfb55f59a23a c46b8e8fa338de65bb795f8417dc0bdaf22b9592 3ad9adee589a7232b981121abdeba6d048e1409157db6d640e00f61e558a791f
GET /s/vollkorn/v23/0ybgGDoxxrvAnPhYGzMlQLzuMasz6Df2MHGeHmmZ.ttf HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://galliani.de
DNT: 1
Connection: keep-alive
Referer: https://galliani.de/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 32081
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 23 Apr 2024 09:02:45 GMT
expires: Wed, 23 Apr 2025 09:02:45 GMT
cache-control: public, max-age=31536000
age: 190871
last-modified: Wed, 13 Sep 2023 22:27:30 GMT
content-type: font/ttf
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| galliani.de/wp-content/themes/Avada/includes/lib/assets/min/js/library/jquery.cycle.js?ver=3.0.3 | 92.205.53.58 | 200 OK | 28 kB |
URL GET HTTP/2galliani.de/wp-content/themes/Avada/includes/lib/assets/min/js/library/jquery.cycle.js?ver=3.0.3 IP92.205.53.58:443 ASN#21499 Host Europe GmbH
Requested byhttps://galliani.de/impressum/ CertificateIssuerispgateway Subjectwebslave.ispgateway.de FingerprintAC:37:D4:74:AA:28:8A:6B:A9:0F:90:E9:70:BF:C6:4A:55:9A:98:05 ValidityTue, 18 Oct 2022 05:41:53 GMT - Sat, 05 Mar 2050 05:41:53 GMT
File typeJavaScript source, ASCII text, with very long lines (28398), with no line terminators Hashe709313d65a2247d45bc36edeeebc3dc 650b075c2e6a74e4d39e8834177f23769742e4e0 b1bab0248a9380b5bb0f2bef6e280fe5d5f03d2322989f78a14926d29bc24fa5
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/themes/Avada/includes/lib/assets/min/js/library/jquery.cycle.js?ver=3.0.3 HTTP/1.1
Host: galliani.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://galliani.de/impressum/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 14:03:54 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Thu, 13 Jun 2019 16:33:53 GMT
etag: W/"6eee-58b37187bd061"
x-cache-status: BYPASS
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| galliani.de/wp-content/themes/Avada/includes/lib/assets/min/js/general/fusion-general-global.js?ver=1 | 92.205.53.58 | 200 OK | 154 B |
URL GET HTTP/2galliani.de/wp-content/themes/Avada/includes/lib/assets/min/js/general/fusion-general-global.js?ver=1 IP92.205.53.58:443 ASN#21499 Host Europe GmbH
Requested byhttps://galliani.de/impressum/ CertificateIssuerispgateway Subjectwebslave.ispgateway.de FingerprintAC:37:D4:74:AA:28:8A:6B:A9:0F:90:E9:70:BF:C6:4A:55:9A:98:05 ValidityTue, 18 Oct 2022 05:41:53 GMT - Sat, 05 Mar 2050 05:41:53 GMT
File typeJavaScript source, ASCII text, with no line terminators Hashed14fcc937c4c046c4d9ffce2e721511 d47624b28b125089aeaa8ab2cfb038713e420d0c da80b432a518f65eaad9da231e195db50a85bd4424b4131eda8139e2092265ae
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/themes/Avada/includes/lib/assets/min/js/general/fusion-general-global.js?ver=1 HTTP/1.1
Host: galliani.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://galliani.de/impressum/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 14:03:54 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Thu, 13 Jun 2019 16:33:54 GMT
etag: W/"9a-58b3718887a8a"
x-cache-status: BYPASS
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| galliani.de/wp-content/uploads/2015/02/map-2527413_1920.jpg | 92.205.53.58 | 200 OK | 1.2 MB |
URL GET HTTP/2galliani.de/wp-content/uploads/2015/02/map-2527413_1920.jpg IP92.205.53.58:443 ASN#21499 Host Europe GmbH
Requested byhttps://galliani.de/impressum/ CertificateIssuerispgateway Subjectwebslave.ispgateway.de FingerprintAC:37:D4:74:AA:28:8A:6B:A9:0F:90:E9:70:BF:C6:4A:55:9A:98:05 ValidityTue, 18 Oct 2022 05:41:53 GMT - Sat, 05 Mar 2050 05:41:53 GMT
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=4, manufacturer=FUJIFILM, model=X-T2], baseline, precision 8, 1920x1280, components 3 Size1.2 MB (1223658 bytes) Hash33bf0de72c3d67030f8117ff5319c32d c3e5324bc570503acb36d404d4a3d86eceb5a183 9df0d755d9dbf1d974002d74639ef3a636a948d6df4159ec90748f4cc2b517d3
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/uploads/2015/02/map-2527413_1920.jpg HTTP/1.1
Host: galliani.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://galliani.de/wp-content/uploads/fusion-styles/fusion-961.min.css?timestamp=1714024213&ver=4.9.25
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 14:03:55 GMT
content-type: image/jpeg
content-length: 1223658
last-modified: Thu, 13 Jun 2019 16:28:08 GMT
etag: "12abea-58b3703e0227e"
x-cache-status: BYPASS
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| galliani.de/wp-content/themes/Avada/includes/lib/assets/min/js/library/jquery.infinitescroll.js?ver=2.1 | 92.205.53.58 | 200 OK | 23 kB |
URL GET HTTP/2galliani.de/wp-content/themes/Avada/includes/lib/assets/min/js/library/jquery.infinitescroll.js?ver=2.1 IP92.205.53.58:443 ASN#21499 Host Europe GmbH
Requested byhttps://galliani.de/impressum/ CertificateIssuerispgateway Subjectwebslave.ispgateway.de FingerprintAC:37:D4:74:AA:28:8A:6B:A9:0F:90:E9:70:BF:C6:4A:55:9A:98:05 ValidityTue, 18 Oct 2022 05:41:53 GMT - Sat, 05 Mar 2050 05:41:53 GMT
File typeJavaScript source, ASCII text, with very long lines (23257), with no line terminators Hashcb5b2d9f7a749438a083b3c8ba9150c3 bb0bdfec5f8e2adb6bf24e7ae6f5efc518324b51 52b9f34ecd0a8cd3de01d3c9c8109cb3cba807fbc5200390c261294454a4beaa
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/themes/Avada/includes/lib/assets/min/js/library/jquery.infinitescroll.js?ver=2.1 HTTP/1.1
Host: galliani.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://galliani.de/impressum/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 14:03:54 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Thu, 13 Jun 2019 16:33:53 GMT
etag: W/"5ad9-58b3718793853"
x-cache-status: BYPASS
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| galliani.de/wp-content/plugins/fusion-builder/assets/js/min/general/fusion-modal.js?ver=1 | 92.205.53.58 | 200 OK | 6.3 kB |
URL GET HTTP/2galliani.de/wp-content/plugins/fusion-builder/assets/js/min/general/fusion-modal.js?ver=1 IP92.205.53.58:443 ASN#21499 Host Europe GmbH
Requested byhttps://galliani.de/impressum/ CertificateIssuerispgateway Subjectwebslave.ispgateway.de FingerprintAC:37:D4:74:AA:28:8A:6B:A9:0F:90:E9:70:BF:C6:4A:55:9A:98:05 ValidityTue, 18 Oct 2022 05:41:53 GMT - Sat, 05 Mar 2050 05:41:53 GMT
File typeJavaScript source, ASCII text, with very long lines (6548), with no line terminators Hash8d3fbc2a6114be3f8f86198123173053 1cb029f3fe24c1202c81a84cf1a2774dffa80f89 33d15b2c53d5e7affd42957bf2a23a534ab052cfc455780ec7e42c97fec9f8bf
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/fusion-builder/assets/js/min/general/fusion-modal.js?ver=1 HTTP/1.1
Host: galliani.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://galliani.de/impressum/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 14:03:54 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Thu, 13 Jun 2019 17:00:33 GMT
etag: W/"18c0-58b3777d67161"
x-cache-status: BYPASS
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| galliani.de/wp-content/themes/Avada/assets/min/js/general/avada-general-footer.js?ver=5.5 | 92.205.53.58 | 200 OK | 3.0 kB |
URL GET HTTP/2galliani.de/wp-content/themes/Avada/assets/min/js/general/avada-general-footer.js?ver=5.5 IP92.205.53.58:443 ASN#21499 Host Europe GmbH
Requested byhttps://galliani.de/impressum/ CertificateIssuerispgateway Subjectwebslave.ispgateway.de FingerprintAC:37:D4:74:AA:28:8A:6B:A9:0F:90:E9:70:BF:C6:4A:55:9A:98:05 ValidityTue, 18 Oct 2022 05:41:53 GMT - Sat, 05 Mar 2050 05:41:53 GMT
File typeJavaScript source, ASCII text, with very long lines (3101), with no line terminators Hashc10c4f64b6a03b010042abb234cccee8 eeaf2671876df324d75cb7d491a22e63368783cd f306409a5ee4368d34f509bc0612d6fd9b14613f7fe6192613e4f71138b86ef8
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/themes/Avada/assets/min/js/general/avada-general-footer.js?ver=5.5 HTTP/1.1
Host: galliani.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://galliani.de/impressum/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 14:03:54 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Thu, 13 Jun 2019 16:31:21 GMT
etag: W/"be3-58b370f6bbc5d"
x-cache-status: BYPASS
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| galliani.de/wp-content/themes/Avada/assets/min/js/general/avada-tabs-widget.js?ver=5.5 | 92.205.53.58 | 200 OK | 2.6 kB |
URL GET HTTP/2galliani.de/wp-content/themes/Avada/assets/min/js/general/avada-tabs-widget.js?ver=5.5 IP92.205.53.58:443 ASN#21499 Host Europe GmbH
Requested byhttps://galliani.de/impressum/ CertificateIssuerispgateway Subjectwebslave.ispgateway.de FingerprintAC:37:D4:74:AA:28:8A:6B:A9:0F:90:E9:70:BF:C6:4A:55:9A:98:05 ValidityTue, 18 Oct 2022 05:41:53 GMT - Sat, 05 Mar 2050 05:41:53 GMT
File typeJavaScript source, ASCII text, with very long lines (2662), with no line terminators Hasheccd1be54021b27e2197d99db262c7e7 34f563d99ebbed9b59a730fe1f190bbdcb2e7e36 cc85c9626ba83b0437b5209ca401885b83b2e26d16cb4ead1f537660245620b4
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/themes/Avada/assets/min/js/general/avada-tabs-widget.js?ver=5.5 HTTP/1.1
Host: galliani.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://galliani.de/impressum/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 14:03:54 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Thu, 13 Jun 2019 16:31:22 GMT
etag: W/"a52-58b370f709e5a"
x-cache-status: BYPASS
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| galliani.de/wp-content/plugins/fusion-builder/assets/js/min/general/fusion-syntax-highlighter.js?ver=1 | 92.205.53.58 | 200 OK | 4.1 kB |
URL GET HTTP/2galliani.de/wp-content/plugins/fusion-builder/assets/js/min/general/fusion-syntax-highlighter.js?ver=1 IP92.205.53.58:443 ASN#21499 Host Europe GmbH
Requested byhttps://galliani.de/impressum/ CertificateIssuerispgateway Subjectwebslave.ispgateway.de FingerprintAC:37:D4:74:AA:28:8A:6B:A9:0F:90:E9:70:BF:C6:4A:55:9A:98:05 ValidityTue, 18 Oct 2022 05:41:53 GMT - Sat, 05 Mar 2050 05:41:53 GMT
File typeJavaScript source, ASCII text, with very long lines (4202), with no line terminators Hashdbb8bedbf8e3b2740033c99864e31623 be4a48d99500d8c6612a34aa73fb2520b9a67fd8 6b20095b2a1c6d8b792bd1a5830ba4139ec76a464007d2fd81ff3945398d40a4
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/fusion-builder/assets/js/min/general/fusion-syntax-highlighter.js?ver=1 HTTP/1.1
Host: galliani.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://galliani.de/impressum/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 14:03:54 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Thu, 13 Jun 2019 17:00:33 GMT
etag: W/"ffc-58b3777d9f3cf"
x-cache-status: BYPASS
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| galliani.de/wp-content/plugins/fusion-builder/assets/js/min/general/fusion-toggles.js?ver=1 | 92.205.53.58 | 200 OK | 4.7 kB |
URL GET HTTP/2galliani.de/wp-content/plugins/fusion-builder/assets/js/min/general/fusion-toggles.js?ver=1 IP92.205.53.58:443 ASN#21499 Host Europe GmbH
Requested byhttps://galliani.de/impressum/ CertificateIssuerispgateway Subjectwebslave.ispgateway.de FingerprintAC:37:D4:74:AA:28:8A:6B:A9:0F:90:E9:70:BF:C6:4A:55:9A:98:05 ValidityTue, 18 Oct 2022 05:41:53 GMT - Sat, 05 Mar 2050 05:41:53 GMT
File typeJavaScript source, ASCII text, with very long lines (4761), with no line terminators Hashd89c98df6639728757cafca3e8365ed1 2f91ba4cf059a076b2174620c167f11aae2c0d64 37ce72236db251759ad443146b3fa847dbfc0e3d99d865c9d5ab76d639d7fff6
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/fusion-builder/assets/js/min/general/fusion-toggles.js?ver=1 HTTP/1.1
Host: galliani.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://galliani.de/impressum/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 14:03:54 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Thu, 13 Jun 2019 17:00:34 GMT
etag: W/"1235-58b3777eb31d5"
x-cache-status: BYPASS
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| galliani.de/wp-content/themes/Avada/includes/lib/assets/min/js/library/jquery.fitvids.js?ver=1.1 | 92.205.53.58 | 200 OK | 4.0 kB |
URL GET HTTP/2galliani.de/wp-content/themes/Avada/includes/lib/assets/min/js/library/jquery.fitvids.js?ver=1.1 IP92.205.53.58:443 ASN#21499 Host Europe GmbH
Requested byhttps://galliani.de/impressum/ CertificateIssuerispgateway Subjectwebslave.ispgateway.de FingerprintAC:37:D4:74:AA:28:8A:6B:A9:0F:90:E9:70:BF:C6:4A:55:9A:98:05 ValidityTue, 18 Oct 2022 05:41:53 GMT - Sat, 05 Mar 2050 05:41:53 GMT
File typeJavaScript source, ASCII text, with very long lines (4040), with no line terminators Hashb04b3185d9c0b4876d351ec2900ff2b9 a8cf48590fd2a67cedde689d2de45e14c779a4b0 2a69b75c0d0ee77bcbbef16ff53d58c63a9d02f0d9d0027bd1baf0c0756762d9
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/themes/Avada/includes/lib/assets/min/js/library/jquery.fitvids.js?ver=1.1 HTTP/1.1
Host: galliani.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://galliani.de/impressum/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 14:03:54 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Thu, 13 Jun 2019 16:33:53 GMT
etag: W/"f78-58b37187dcc30"
x-cache-status: BYPASS
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| galliani.de/wp-content/themes/Avada/assets/min/js/general/avada-select.js?ver=5.5 | 92.205.53.58 | 200 OK | 501 B |
URL GET HTTP/2galliani.de/wp-content/themes/Avada/assets/min/js/general/avada-select.js?ver=5.5 IP92.205.53.58:443 ASN#21499 Host Europe GmbH
Requested byhttps://galliani.de/impressum/ CertificateIssuerispgateway Subjectwebslave.ispgateway.de FingerprintAC:37:D4:74:AA:28:8A:6B:A9:0F:90:E9:70:BF:C6:4A:55:9A:98:05 ValidityTue, 18 Oct 2022 05:41:53 GMT - Sat, 05 Mar 2050 05:41:53 GMT
File typeJavaScript source, ASCII text, with very long lines (509), with no line terminators Hasha3dea0ff7047ca7dfd439fb0068b0e13 aa6aaaed6eec03bd71d037c8bb89523dec9eb95e a2945b717b038541d8033aba040e8dd2c4f2b7fbcc64a8462ac20b3107c67580
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/themes/Avada/assets/min/js/general/avada-select.js?ver=5.5 HTTP/1.1
Host: galliani.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://galliani.de/impressum/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 14:03:54 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Thu, 13 Jun 2019 16:31:22 GMT
etag: W/"1f5-58b370f729a29"
x-cache-status: BYPASS
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| galliani.de/wp-content/themes/Avada/includes/lib/assets/min/js/library/bootstrap.collapse.js?ver=3.1.1 | 92.205.53.58 | 200 OK | 5.6 kB |
URL GET HTTP/2galliani.de/wp-content/themes/Avada/includes/lib/assets/min/js/library/bootstrap.collapse.js?ver=3.1.1 IP92.205.53.58:443 ASN#21499 Host Europe GmbH
Requested byhttps://galliani.de/impressum/ CertificateIssuerispgateway Subjectwebslave.ispgateway.de FingerprintAC:37:D4:74:AA:28:8A:6B:A9:0F:90:E9:70:BF:C6:4A:55:9A:98:05 ValidityTue, 18 Oct 2022 05:41:53 GMT - Sat, 05 Mar 2050 05:41:53 GMT
File typeJavaScript source, ASCII text, with very long lines (5710), with no line terminators Hashdebc5b76288cae3326f5f7b96eb621ba 088b9c2734f1f5cd73e684e048ab14746287e16d 870cddc67f8234e8da9ad548a5b0885ca7ec44f8ddd065eb42b7e5eb844461e5
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/themes/Avada/includes/lib/assets/min/js/library/bootstrap.collapse.js?ver=3.1.1 HTTP/1.1
Host: galliani.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://galliani.de/impressum/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 14:03:54 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Thu, 13 Jun 2019 16:33:53 GMT
etag: W/"15cf-58b37187d7e10"
x-cache-status: BYPASS
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| galliani.de/wp-content/themes/Avada/includes/lib/assets/min/js/library/bootstrap.tooltip.js?ver=3.3.5 | 92.205.53.58 | 200 OK | 11 kB |
URL GET HTTP/2galliani.de/wp-content/themes/Avada/includes/lib/assets/min/js/library/bootstrap.tooltip.js?ver=3.3.5 IP92.205.53.58:443 ASN#21499 Host Europe GmbH
Requested byhttps://galliani.de/impressum/ CertificateIssuerispgateway Subjectwebslave.ispgateway.de FingerprintAC:37:D4:74:AA:28:8A:6B:A9:0F:90:E9:70:BF:C6:4A:55:9A:98:05 ValidityTue, 18 Oct 2022 05:41:53 GMT - Sat, 05 Mar 2050 05:41:53 GMT
File typeJavaScript source, ASCII text, with very long lines (11080), with no line terminators Hashdd0192730a2f8452f657f532eb8a552d f1339967c104efe38e52b3350679e95902228fbb 29eea5869768f4d2abac08398edf4a6d76bbabfaf9ee9c3bacf0cc27194c9e22
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/themes/Avada/includes/lib/assets/min/js/library/bootstrap.tooltip.js?ver=3.3.5 HTTP/1.1
Host: galliani.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://galliani.de/impressum/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 14:03:54 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Thu, 13 Jun 2019 16:33:53 GMT
etag: W/"2b48-58b371876ee64"
x-cache-status: BYPASS
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| galliani.de/wp-content/themes/Avada/includes/lib/assets/min/js/library/jquery.fusion_maps.js?ver=2.2.2 | 92.205.53.58 | 200 OK | 7.9 kB |
URL GET HTTP/2galliani.de/wp-content/themes/Avada/includes/lib/assets/min/js/library/jquery.fusion_maps.js?ver=2.2.2 IP92.205.53.58:443 ASN#21499 Host Europe GmbH
Requested byhttps://galliani.de/impressum/ CertificateIssuerispgateway Subjectwebslave.ispgateway.de FingerprintAC:37:D4:74:AA:28:8A:6B:A9:0F:90:E9:70:BF:C6:4A:55:9A:98:05 ValidityTue, 18 Oct 2022 05:41:53 GMT - Sat, 05 Mar 2050 05:41:53 GMT
File typeJavaScript source, ASCII text, with very long lines (7951), with no line terminators Hash8db00c064e0b5e339005517d6d7f6ad8 5cb65bae2a51a80143fbb7438ffb371a92d216af 28e8edd61cf7842fb29a8ac885b9271b7dcd714b5dadd1cb10ae558f6721dccb
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/themes/Avada/includes/lib/assets/min/js/library/jquery.fusion_maps.js?ver=2.2.2 HTTP/1.1
Host: galliani.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://galliani.de/impressum/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 14:03:54 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Thu, 13 Jun 2019 16:33:53 GMT
etag: W/"1ebf-58b371879ad82"
x-cache-status: BYPASS
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| galliani.de/wp-content/plugins/fusion-builder/assets/js/min/general/fusion-progress.js?ver=1 | 92.205.53.58 | 200 OK | 3.0 kB |
URL GET HTTP/2galliani.de/wp-content/plugins/fusion-builder/assets/js/min/general/fusion-progress.js?ver=1 IP92.205.53.58:443 ASN#21499 Host Europe GmbH
Requested byhttps://galliani.de/impressum/ CertificateIssuerispgateway Subjectwebslave.ispgateway.de FingerprintAC:37:D4:74:AA:28:8A:6B:A9:0F:90:E9:70:BF:C6:4A:55:9A:98:05 ValidityTue, 18 Oct 2022 05:41:53 GMT - Sat, 05 Mar 2050 05:41:53 GMT
File typeJavaScript source, ASCII text, with very long lines (3017), with no line terminators Hash10c5ffe1b72e6965699cfab10cdd7aa9 4812be78a898d12631a0265d6b538dc6ddab1e1d bc4232f055939fd54ca5140d0037c99127949bb4844f60efc3cea64459616b2f
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/fusion-builder/assets/js/min/general/fusion-progress.js?ver=1 HTTP/1.1
Host: galliani.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://galliani.de/impressum/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 14:03:54 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Thu, 13 Jun 2019 17:00:33 GMT
etag: W/"b9f-58b3777db535e"
x-cache-status: BYPASS
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| galliani.de/wp-content/themes/Avada/includes/lib/assets/min/js/library/vimeoPlayer.js?ver=2.2.1 | 92.205.53.58 | 200 OK | 18 kB |
URL GET HTTP/2galliani.de/wp-content/themes/Avada/includes/lib/assets/min/js/library/vimeoPlayer.js?ver=2.2.1 IP92.205.53.58:443 ASN#21499 Host Europe GmbH
Requested byhttps://galliani.de/impressum/ CertificateIssuerispgateway Subjectwebslave.ispgateway.de FingerprintAC:37:D4:74:AA:28:8A:6B:A9:0F:90:E9:70:BF:C6:4A:55:9A:98:05 ValidityTue, 18 Oct 2022 05:41:53 GMT - Sat, 05 Mar 2050 05:41:53 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/themes/Avada/includes/lib/assets/min/js/library/vimeoPlayer.js?ver=2.2.1 HTTP/1.1
Host: galliani.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://galliani.de/impressum/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 14:03:54 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Thu, 13 Jun 2019 16:33:53 GMT
etag: W/"472b-58b37187cbac0"
x-cache-status: BYPASS
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| galliani.de/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.1.3 | 92.205.53.58 | 200 OK | 1.7 kB |
URL GET HTTP/2galliani.de/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.1.3 IP92.205.53.58:443 ASN#21499 Host Europe GmbH
Requested byhttps://galliani.de/impressum/ CertificateIssuerispgateway Subjectwebslave.ispgateway.de FingerprintAC:37:D4:74:AA:28:8A:6B:A9:0F:90:E9:70:BF:C6:4A:55:9A:98:05 ValidityTue, 18 Oct 2022 05:41:53 GMT - Sat, 05 Mar 2050 05:41:53 GMT
File typeASCII text, with very long lines (1849), with no line terminators Hash90f69d30f13e2a8fa8dcec2ab2545d9e 2b7ff80f29719814f6e1b0d7523fa9bdb13d77ee 56c22a50a62804cea81662a66c02f413baaf1a8be3bdbf6c97756f3d13d0c914
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.1.3 HTTP/1.1
Host: galliani.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://galliani.de/impressum/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 14:03:54 GMT
content-type: text/css
vary: Accept-Encoding
last-modified: Mon, 29 Jul 2019 10:41:58 GMT
etag: W/"695-58ecf8aa39f5a"
x-cache-status: BYPASS
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| | 92.205.53.58 | 200 OK | 53 kB |
URL User Request GET HTTP/2IP92.205.53.58:443 ASN#21499 Host Europe GmbH
CertificateIssuerispgateway Subjectwebslave.ispgateway.de FingerprintAC:37:D4:74:AA:28:8A:6B:A9:0F:90:E9:70:BF:C6:4A:55:9A:98:05 ValidityTue, 18 Oct 2022 05:41:53 GMT - Sat, 05 Mar 2050 05:41:53 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /impressum/ HTTP/1.1
Host: galliani.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 14:03:54 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
link: <https://galliani.de/wp-json/>; rel="https://api.w.org/", <https://galliani.de/?p=961>; rel=shortlink
x-tec-api-version: v1
x-tec-api-root: https://galliani.de/wp-json/tribe/events/v1/
x-tec-api-origin: https://galliani.de
x-cache-status: BYPASS
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| galliani.de/wp-content/plugins/fusion-builder/assets/js/min/general/fusion-flip-boxes.js?ver=1 | 92.205.53.58 | 200 OK | 3.6 kB |
URL GET HTTP/2galliani.de/wp-content/plugins/fusion-builder/assets/js/min/general/fusion-flip-boxes.js?ver=1 IP92.205.53.58:443 ASN#21499 Host Europe GmbH
Requested byhttps://galliani.de/impressum/ CertificateIssuerispgateway Subjectwebslave.ispgateway.de FingerprintAC:37:D4:74:AA:28:8A:6B:A9:0F:90:E9:70:BF:C6:4A:55:9A:98:05 ValidityTue, 18 Oct 2022 05:41:53 GMT - Sat, 05 Mar 2050 05:41:53 GMT
File typeJavaScript source, ASCII text, with very long lines (3654), with no line terminators Hash3c0f7df715cd6a423ecf4d747089eb4b bc5a7c957fc0ae4b8136a442525ea8ce68270931 e629c7edf72cd9b4e106c9c61a8a68c6e490188e938404697299e38defe5fb4f
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/fusion-builder/assets/js/min/general/fusion-flip-boxes.js?ver=1 HTTP/1.1
Host: galliani.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://galliani.de/impressum/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 14:03:54 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Thu, 13 Jun 2019 17:00:33 GMT
etag: W/"df8-58b3777dcb2ee"
x-cache-status: BYPASS
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| galliani.de/wp-content/themes/Avada/includes/lib/assets/fonts/icomoon/icomoon.woff | 92.205.53.58 | 200 OK | 16 kB |
URL GET HTTP/2galliani.de/wp-content/themes/Avada/includes/lib/assets/fonts/icomoon/icomoon.woff IP92.205.53.58:443 ASN#21499 Host Europe GmbH
Requested byhttps://galliani.de/impressum/ CertificateIssuerispgateway Subjectwebslave.ispgateway.de FingerprintAC:37:D4:74:AA:28:8A:6B:A9:0F:90:E9:70:BF:C6:4A:55:9A:98:05 ValidityTue, 18 Oct 2022 05:41:53 GMT - Sat, 05 Mar 2050 05:41:53 GMT
File typeWeb Open Font Format, TrueType, length 16028, version 1.0 Hash3bdc00ca4f2e70c5229f3ca54515c7a4 521f09b4dc49b6b6d376a984e9b9d2b8b58e30d1 75e6e82e96291ab4dfffb9d1df7558d4e54a62d7ce042645ccd0e3c7cd438efc
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/themes/Avada/includes/lib/assets/fonts/icomoon/icomoon.woff HTTP/1.1
Host: galliani.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://galliani.de/wp-content/uploads/fusion-styles/fusion-961.min.css?timestamp=1714024213&ver=4.9.25
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 14:03:55 GMT
content-type: font/woff
content-length: 16028
last-modified: Thu, 13 Jun 2019 16:32:46 GMT
etag: "3e9c-58b3714795d49"
x-cache-status: BYPASS
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| galliani.de/wp-content/themes/Avada/includes/lib/assets/min/js/library/isotope.js?ver=3.0.4 | 92.205.53.58 | 200 OK | 37 kB |
URL GET HTTP/2galliani.de/wp-content/themes/Avada/includes/lib/assets/min/js/library/isotope.js?ver=3.0.4 IP92.205.53.58:443 ASN#21499 Host Europe GmbH
Requested byhttps://galliani.de/impressum/ CertificateIssuerispgateway Subjectwebslave.ispgateway.de FingerprintAC:37:D4:74:AA:28:8A:6B:A9:0F:90:E9:70:BF:C6:4A:55:9A:98:05 ValidityTue, 18 Oct 2022 05:41:53 GMT - Sat, 05 Mar 2050 05:41:53 GMT
File typeJavaScript source, ASCII text, with very long lines (34173) Hash9182d4c0c8757063b0c9984111e3d2a4 1fd874ffaf306f49c814ef24a4331ca8d8b03a02 645bf06a15bfa7583f23bcb27a2e90ac5b96663912cfa93c89a20a77625fc71b
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/themes/Avada/includes/lib/assets/min/js/library/isotope.js?ver=3.0.4 HTTP/1.1
Host: galliani.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://galliani.de/impressum/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 14:03:54 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Thu, 13 Jun 2019 16:33:53 GMT
etag: W/"910c-58b3718793853"
x-cache-status: BYPASS
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| galliani.de/wp-content/themes/Avada/assets/min/js/general/avada-header.js?ver=5.5 | 92.205.53.58 | 200 OK | 34 kB |
URL GET HTTP/2galliani.de/wp-content/themes/Avada/assets/min/js/general/avada-header.js?ver=5.5 IP92.205.53.58:443 ASN#21499 Host Europe GmbH
Requested byhttps://galliani.de/impressum/ CertificateIssuerispgateway Subjectwebslave.ispgateway.de FingerprintAC:37:D4:74:AA:28:8A:6B:A9:0F:90:E9:70:BF:C6:4A:55:9A:98:05 ValidityTue, 18 Oct 2022 05:41:53 GMT - Sat, 05 Mar 2050 05:41:53 GMT
File typeJavaScript source, ASCII text, with very long lines (33879), with no line terminators Hash343ade004fe62f6e1e49bcd2b39bd097 982d4727fc3a312ae06c8b72310300fc7c1d312a 53be7328fa629a816bebf7429a8186c2cca8ee4bccafa18255414250dd9c5228
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/themes/Avada/assets/min/js/general/avada-header.js?ver=5.5 HTTP/1.1
Host: galliani.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://galliani.de/impressum/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 14:03:54 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Thu, 13 Jun 2019 16:31:22 GMT
etag: W/"8457-58b370f6fdb0a"
x-cache-status: BYPASS
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| galliani.de/wp-content/themes/Avada/includes/lib/assets/min/js/library/fusion-video-bg.js?ver=1 | 92.205.53.58 | 200 OK | 7.0 kB |
URL GET HTTP/2galliani.de/wp-content/themes/Avada/includes/lib/assets/min/js/library/fusion-video-bg.js?ver=1 IP92.205.53.58:443 ASN#21499 Host Europe GmbH
Requested byhttps://galliani.de/impressum/ CertificateIssuerispgateway Subjectwebslave.ispgateway.de FingerprintAC:37:D4:74:AA:28:8A:6B:A9:0F:90:E9:70:BF:C6:4A:55:9A:98:05 ValidityTue, 18 Oct 2022 05:41:53 GMT - Sat, 05 Mar 2050 05:41:53 GMT
File typeJavaScript source, ASCII text, with very long lines (7198), with no line terminators Hash7e552ceee2a868b8c1f4be32fa5b5996 6b437d663a0f258a20e92d794b0cd52c99904646 cf1bb64e89580a8681e925eb4cf2fc3a9fb77aa208e11ac9a9087a8679e1d383
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/themes/Avada/includes/lib/assets/min/js/library/fusion-video-bg.js?ver=1 HTTP/1.1
Host: galliani.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://galliani.de/impressum/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 14:03:54 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Thu, 13 Jun 2019 16:33:53 GMT
etag: W/"1b6c-58b3718767934"
x-cache-status: BYPASS
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| galliani.de/wp-content/themes/Avada/includes/lib/assets/min/js/library/jquery.hoverflow.js?ver=1 | 92.205.53.58 | 200 OK | 2.8 kB |
URL GET HTTP/2galliani.de/wp-content/themes/Avada/includes/lib/assets/min/js/library/jquery.hoverflow.js?ver=1 IP92.205.53.58:443 ASN#21499 Host Europe GmbH
Requested byhttps://galliani.de/impressum/ CertificateIssuerispgateway Subjectwebslave.ispgateway.de FingerprintAC:37:D4:74:AA:28:8A:6B:A9:0F:90:E9:70:BF:C6:4A:55:9A:98:05 ValidityTue, 18 Oct 2022 05:41:53 GMT - Sat, 05 Mar 2050 05:41:53 GMT
File typeJavaScript source, ASCII text, with very long lines (2862), with no line terminators Hashd03de3c28de64ff6237b4e3b911cc64c 51b75f61e51e9cdae5ed5b6cd69916e1ef3ac6f6 92d5163d2d378bd33a64649a2e3f3ca86621c8175d449713b34b62d21e0a5111
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/themes/Avada/includes/lib/assets/min/js/library/jquery.hoverflow.js?ver=1 HTTP/1.1
Host: galliani.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://galliani.de/impressum/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 14:03:54 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Thu, 13 Jun 2019 16:33:53 GMT
etag: W/"b14-58b37187df340"
x-cache-status: BYPASS
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| galliani.de/wp-content/themes/Avada/includes/lib/assets/min/js/general/fusion-carousel.js?ver=1 | 92.205.53.58 | 200 OK | 5.8 kB |
URL GET HTTP/2galliani.de/wp-content/themes/Avada/includes/lib/assets/min/js/general/fusion-carousel.js?ver=1 IP92.205.53.58:443 ASN#21499 Host Europe GmbH
Requested byhttps://galliani.de/impressum/ CertificateIssuerispgateway Subjectwebslave.ispgateway.de FingerprintAC:37:D4:74:AA:28:8A:6B:A9:0F:90:E9:70:BF:C6:4A:55:9A:98:05 ValidityTue, 18 Oct 2022 05:41:53 GMT - Sat, 05 Mar 2050 05:41:53 GMT
File typeJavaScript source, ASCII text, with very long lines (5971), with no line terminators Hashbb7a8dea863d4f21ae24082ca6acc0d3 d7ab029baf501ef7c65c3b92be825d8aaf57dca5 dcf663fd2355589582b8e9711827ae8d1dcb9a05dcafdfaac92c97b8be59771c
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/themes/Avada/includes/lib/assets/min/js/general/fusion-carousel.js?ver=1 HTTP/1.1
Host: galliani.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://galliani.de/impressum/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 14:03:54 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Thu, 13 Jun 2019 16:33:54 GMT
etag: W/"1699-58b37188a0129"
x-cache-status: BYPASS
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| galliani.de/wp-content/themes/Avada/assets/min/js/library/jquery.sticky-kit.js?ver=5.5 | 92.205.53.58 | 200 OK | 4.9 kB |
URL GET HTTP/2galliani.de/wp-content/themes/Avada/assets/min/js/library/jquery.sticky-kit.js?ver=5.5 IP92.205.53.58:443 ASN#21499 Host Europe GmbH
Requested byhttps://galliani.de/impressum/ CertificateIssuerispgateway Subjectwebslave.ispgateway.de FingerprintAC:37:D4:74:AA:28:8A:6B:A9:0F:90:E9:70:BF:C6:4A:55:9A:98:05 ValidityTue, 18 Oct 2022 05:41:53 GMT - Sat, 05 Mar 2050 05:41:53 GMT
File typeJavaScript source, ASCII text, with very long lines (5059), with no line terminators Hash6ad36f5a90302649a716a63dfc7ab73f da949bfea4f7bf436f0bb84e9be67eaf80ab1285 e78e822713014ca74836303c3d28dcd77386536fc23a10cf8a7b0bc9a4485924
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/themes/Avada/assets/min/js/library/jquery.sticky-kit.js?ver=5.5 HTTP/1.1
Host: galliani.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://galliani.de/impressum/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 14:03:54 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Thu, 13 Jun 2019 16:31:21 GMT
etag: W/"1347-58b370f6b6e3d"
x-cache-status: BYPASS
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| galliani.de/wp-content/themes/Avada/includes/lib/assets/min/js/general/fusion-google-map.js?ver=1 | 92.205.53.58 | 200 OK | 2.5 kB |
URL GET HTTP/2galliani.de/wp-content/themes/Avada/includes/lib/assets/min/js/general/fusion-google-map.js?ver=1 IP92.205.53.58:443 ASN#21499 Host Europe GmbH
Requested byhttps://galliani.de/impressum/ CertificateIssuerispgateway Subjectwebslave.ispgateway.de FingerprintAC:37:D4:74:AA:28:8A:6B:A9:0F:90:E9:70:BF:C6:4A:55:9A:98:05 ValidityTue, 18 Oct 2022 05:41:53 GMT - Sat, 05 Mar 2050 05:41:53 GMT
File typeASCII text, with very long lines (2524), with no line terminators Hashffbaac08358a8802e74bb8044405aa25 4c20dd8c5220a9931c48232178df94b818e94606 f1016623742dbfc6cb080d78188205f88c9fcd58b477245135e17bd55a701e31
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/themes/Avada/includes/lib/assets/min/js/general/fusion-google-map.js?ver=1 HTTP/1.1
Host: galliani.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://galliani.de/impressum/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 14:03:54 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Thu, 13 Jun 2019 16:33:54 GMT
etag: W/"9d2-58b371885bb6b"
x-cache-status: BYPASS
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| galliani.de/wp-content/themes/Avada/includes/lib/assets/min/js/library/jquery.flexslider.js?ver=2.2.2 | 92.205.53.58 | 200 OK | 25 kB |
URL GET HTTP/2galliani.de/wp-content/themes/Avada/includes/lib/assets/min/js/library/jquery.flexslider.js?ver=2.2.2 IP92.205.53.58:443 ASN#21499 Host Europe GmbH
Requested byhttps://galliani.de/impressum/ CertificateIssuerispgateway Subjectwebslave.ispgateway.de FingerprintAC:37:D4:74:AA:28:8A:6B:A9:0F:90:E9:70:BF:C6:4A:55:9A:98:05 ValidityTue, 18 Oct 2022 05:41:53 GMT - Sat, 05 Mar 2050 05:41:53 GMT
File typeJavaScript source, ASCII text, with very long lines (25202), with no line terminators Hash1d8b6734a3beca436e854bfc38abdd9e 385df43a77a12470fabb330728a198f805e63831 4c9a79d21d89d0e9836b79c1ec96d680bd118afeabd8a82e70a5532ec5395823
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/themes/Avada/includes/lib/assets/min/js/library/jquery.flexslider.js?ver=2.2.2 HTTP/1.1
Host: galliani.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://galliani.de/impressum/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 14:03:54 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Thu, 13 Jun 2019 16:33:53 GMT
etag: W/"6272-58b3718778aa3"
x-cache-status: BYPASS
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| galliani.de/wp-content/plugins/the-events-calendar/vendor/jquery-placeholder/jquery.placeholder.min.js?ver=4.9.5 | 92.205.53.58 | 200 OK | 2.2 kB |
URL GET HTTP/2galliani.de/wp-content/plugins/the-events-calendar/vendor/jquery-placeholder/jquery.placeholder.min.js?ver=4.9.5 IP92.205.53.58:443 ASN#21499 Host Europe GmbH
Requested byhttps://galliani.de/impressum/ CertificateIssuerispgateway Subjectwebslave.ispgateway.de FingerprintAC:37:D4:74:AA:28:8A:6B:A9:0F:90:E9:70:BF:C6:4A:55:9A:98:05 ValidityTue, 18 Oct 2022 05:41:53 GMT - Sat, 05 Mar 2050 05:41:53 GMT
File typeJavaScript source, ASCII text, with very long lines (2163), with no line terminators Hashe9664ef7b854b0584b5185ecd77e6d4d 97b2b2d9a2f1643775aa99e4c8f66092be84d344 2e984ecfc23162a200aa71263c38ce3dd0e0707cf6bcaeab3ca841975c2ae167
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/the-events-calendar/vendor/jquery-placeholder/jquery.placeholder.min.js?ver=4.9.5 HTTP/1.1
Host: galliani.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://galliani.de/impressum/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 14:03:54 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Mon, 29 Jul 2019 10:42:07 GMT
etag: W/"871-58ecf8b23086e"
x-cache-status: BYPASS
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| galliani.de/wp-content/themes/Avada/assets/min/js/general/avada-quantity.js?ver=5.5 | 92.205.53.58 | 200 OK | 3.5 kB |
URL GET HTTP/2galliani.de/wp-content/themes/Avada/assets/min/js/general/avada-quantity.js?ver=5.5 IP92.205.53.58:443 ASN#21499 Host Europe GmbH
Requested byhttps://galliani.de/impressum/ CertificateIssuerispgateway Subjectwebslave.ispgateway.de FingerprintAC:37:D4:74:AA:28:8A:6B:A9:0F:90:E9:70:BF:C6:4A:55:9A:98:05 ValidityTue, 18 Oct 2022 05:41:53 GMT - Sat, 05 Mar 2050 05:41:53 GMT
File typeJavaScript source, ASCII text, with very long lines (3584), with no line terminators Hash5046f93cf5ef9147d51be9ae8a3252c7 7d37abf7f1b8a48058b53134edaf0743a9378ae7 843a689352c63296771016c2bb7f472d83ddc0a04dc3064d6a9d335f88b2b840
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/themes/Avada/assets/min/js/general/avada-quantity.js?ver=5.5 HTTP/1.1
Host: galliani.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://galliani.de/impressum/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 14:03:54 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Thu, 13 Jun 2019 16:31:22 GMT
etag: W/"db2-58b370f71fde9"
x-cache-status: BYPASS
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| galliani.de/wp-includes/js/wp-embed.min.js?ver=4.9.25 | 92.205.53.58 | 200 OK | 1.4 kB |
URL GET HTTP/2galliani.de/wp-includes/js/wp-embed.min.js?ver=4.9.25 IP92.205.53.58:443 ASN#21499 Host Europe GmbH
Requested byhttps://galliani.de/impressum/ CertificateIssuerispgateway Subjectwebslave.ispgateway.de FingerprintAC:37:D4:74:AA:28:8A:6B:A9:0F:90:E9:70:BF:C6:4A:55:9A:98:05 ValidityTue, 18 Oct 2022 05:41:53 GMT - Sat, 05 Mar 2050 05:41:53 GMT
File typeASCII text, with very long lines (1486), with no line terminators Hash61a3ac58ecaf63ac4b2cfdc2c97ed95a ab002741cbaa650030d6ac4b4446550976f63dbd d6b5f289be3df43ef051b4fa5c872e3ef535739d345b4076d6731e996a2c973b
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-includes/js/wp-embed.min.js?ver=4.9.25 HTTP/1.1
Host: galliani.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://galliani.de/impressum/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 14:03:54 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Wed, 17 May 2023 01:08:00 GMT
etag: W/"5a3-5fbd951b5c747"
x-cache-status: BYPASS
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| galliani.de/wp-content/plugins/fusion-builder/assets/js/min/general/fusion-counters-circle.js?ver=1 | 92.205.53.58 | 200 OK | 5.6 kB |
URL GET HTTP/2galliani.de/wp-content/plugins/fusion-builder/assets/js/min/general/fusion-counters-circle.js?ver=1 IP92.205.53.58:443 ASN#21499 Host Europe GmbH
Requested byhttps://galliani.de/impressum/ CertificateIssuerispgateway Subjectwebslave.ispgateway.de FingerprintAC:37:D4:74:AA:28:8A:6B:A9:0F:90:E9:70:BF:C6:4A:55:9A:98:05 ValidityTue, 18 Oct 2022 05:41:53 GMT - Sat, 05 Mar 2050 05:41:53 GMT
File typeJavaScript source, ASCII text, with very long lines (5705), with no line terminators Hashdba8e6f7d5fd4f8bbf8bc9da3fb2ac9d 2c3cde69a33512bf33e61c535146128563bd4a84 b4d7e7dc438a23fa177e1a809bc3d11264b3d22681892e6a76c726f912bd25e2
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/fusion-builder/assets/js/min/general/fusion-counters-circle.js?ver=1 HTTP/1.1
Host: galliani.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://galliani.de/impressum/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 14:03:54 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Thu, 13 Jun 2019 17:00:33 GMT
etag: W/"15b7-58b3777dcd9fd"
x-cache-status: BYPASS
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| galliani.de/wp-content/plugins/fusion-builder/assets/js/min/general/fusion-gallery.js?ver=1 | 92.205.53.58 | 200 OK | 3.4 kB |
URL GET HTTP/2galliani.de/wp-content/plugins/fusion-builder/assets/js/min/general/fusion-gallery.js?ver=1 IP92.205.53.58:443 ASN#21499 Host Europe GmbH
Requested byhttps://galliani.de/impressum/ CertificateIssuerispgateway Subjectwebslave.ispgateway.de FingerprintAC:37:D4:74:AA:28:8A:6B:A9:0F:90:E9:70:BF:C6:4A:55:9A:98:05 ValidityTue, 18 Oct 2022 05:41:53 GMT - Sat, 05 Mar 2050 05:41:53 GMT
File typeJavaScript source, ASCII text, with very long lines (3434), with no line terminators Hashbf0b4b7487885db690ecf5d025d90ab6 c07b52d0d033b094d0872a3fe4b110c3150c12c3 781c9f93862055aa72e92b1fb224f48a40a6931051922a25b0b1526b42fffeea
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/fusion-builder/assets/js/min/general/fusion-gallery.js?ver=1 HTTP/1.1
Host: galliani.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://galliani.de/impressum/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 14:03:54 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Thu, 13 Jun 2019 17:00:34 GMT
etag: W/"d3a-58b3777dd763d"
x-cache-status: BYPASS
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| galliani.de/wp-content/themes/Avada/includes/lib/assets/min/js/general/fusion-blog.js?ver=1 | 92.205.53.58 | 200 OK | 11 kB |
URL GET HTTP/2galliani.de/wp-content/themes/Avada/includes/lib/assets/min/js/general/fusion-blog.js?ver=1 IP92.205.53.58:443 ASN#21499 Host Europe GmbH
Requested byhttps://galliani.de/impressum/ CertificateIssuerispgateway Subjectwebslave.ispgateway.de FingerprintAC:37:D4:74:AA:28:8A:6B:A9:0F:90:E9:70:BF:C6:4A:55:9A:98:05 ValidityTue, 18 Oct 2022 05:41:53 GMT - Sat, 05 Mar 2050 05:41:53 GMT
File typeJavaScript source, ASCII text, with very long lines (11346), with no line terminators Hashf470df810dfe947572282d35e1912bb9 ce26324e9367fb9dc4d68ee9cb7d512c89dd921e 3300b624529ccc4534de6b824fad6e185986d5e08a70f743bf3e994a26cb3ffa
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/themes/Avada/includes/lib/assets/min/js/general/fusion-blog.js?ver=1 HTTP/1.1
Host: galliani.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://galliani.de/impressum/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 14:03:54 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Thu, 13 Jun 2019 16:33:54 GMT
etag: W/"2c52-58b37188a0129"
x-cache-status: BYPASS
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| galliani.de/wp-content/themes/Avada/assets/min/js/general/avada-bbpress.js?ver=5.5 | 92.205.53.58 | 200 OK | 3.5 kB |
URL GET HTTP/2galliani.de/wp-content/themes/Avada/assets/min/js/general/avada-bbpress.js?ver=5.5 IP92.205.53.58:443 ASN#21499 Host Europe GmbH
Requested byhttps://galliani.de/impressum/ CertificateIssuerispgateway Subjectwebslave.ispgateway.de FingerprintAC:37:D4:74:AA:28:8A:6B:A9:0F:90:E9:70:BF:C6:4A:55:9A:98:05 ValidityTue, 18 Oct 2022 05:41:53 GMT - Sat, 05 Mar 2050 05:41:53 GMT
File typeJavaScript source, ASCII text, with very long lines (3587), with no line terminators Hash15a306f530cecea1d6ffc483cd280ffc 591ed7b2d2f3508e0044474cf0508fb47d6d9ef9 96ea057efdb9facbd21e3f4ff65fabe4364fcf7d68980520f440113a817fe24f
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/themes/Avada/assets/min/js/general/avada-bbpress.js?ver=5.5 HTTP/1.1
Host: galliani.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://galliani.de/impressum/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 14:03:54 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Thu, 13 Jun 2019 16:31:22 GMT
etag: W/"dc1-58b370f7420c8"
x-cache-status: BYPASS
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| galliani.de/wp-content/themes/Avada/assets/min/js/general/avada-comments.js?ver=5.5 | 92.205.53.58 | 200 OK | 3.4 kB |
URL GET HTTP/2galliani.de/wp-content/themes/Avada/assets/min/js/general/avada-comments.js?ver=5.5 IP92.205.53.58:443 ASN#21499 Host Europe GmbH
Requested byhttps://galliani.de/impressum/ CertificateIssuerispgateway Subjectwebslave.ispgateway.de FingerprintAC:37:D4:74:AA:28:8A:6B:A9:0F:90:E9:70:BF:C6:4A:55:9A:98:05 ValidityTue, 18 Oct 2022 05:41:53 GMT - Sat, 05 Mar 2050 05:41:53 GMT
File typeJavaScript source, ASCII text, with very long lines (3419), with no line terminators Hashfd1b69b2f884337332292b3f22c5a9f2 e6c8e5b90a260d634e16b53f9609d92fb4556cf4 e45cb4b108dbdde94ab808e0d11340e437a869953b755d5c05713468b6e6c572
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/themes/Avada/assets/min/js/general/avada-comments.js?ver=5.5 HTTP/1.1
Host: galliani.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://galliani.de/impressum/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 14:03:54 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Thu, 13 Jun 2019 16:31:21 GMT
etag: W/"d1f-58b370f6ddf3b"
x-cache-status: BYPASS
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| galliani.de/wp-includes/js/wp-emoji-release.min.js?ver=4.9.25 | 92.205.53.58 | 200 OK | 12 kB |
URL GET HTTP/2galliani.de/wp-includes/js/wp-emoji-release.min.js?ver=4.9.25 IP92.205.53.58:443 ASN#21499 Host Europe GmbH
Requested byhttps://galliani.de/impressum/ CertificateIssuerispgateway Subjectwebslave.ispgateway.de FingerprintAC:37:D4:74:AA:28:8A:6B:A9:0F:90:E9:70:BF:C6:4A:55:9A:98:05 ValidityTue, 18 Oct 2022 05:41:53 GMT - Sat, 05 Mar 2050 05:41:53 GMT
File typeJavaScript source, ASCII text, with very long lines (9063) Hashfe0575b66568074463f12485d90f6d4c aeedd9ab3b7874e63f647042963cb1301a38b391 647a6b36f3fd1f21bae171270111096b4613c23a47e6621628a51bae9c82b0b7
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-includes/js/wp-emoji-release.min.js?ver=4.9.25 HTTP/1.1
Host: galliani.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://galliani.de/impressum/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 14:03:54 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Thu, 15 Apr 2021 21:28:01 GMT
etag: W/"2ea7-5c00989bc9205"
x-cache-status: BYPASS
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| galliani.de/wp-content/themes/Avada/includes/lib/assets/min/js/library/bootstrap.transition.js?ver=3.3.6 | 92.205.53.58 | 200 OK | 2.9 kB |
URL GET HTTP/2galliani.de/wp-content/themes/Avada/includes/lib/assets/min/js/library/bootstrap.transition.js?ver=3.3.6 IP92.205.53.58:443 ASN#21499 Host Europe GmbH
Requested byhttps://galliani.de/impressum/ CertificateIssuerispgateway Subjectwebslave.ispgateway.de FingerprintAC:37:D4:74:AA:28:8A:6B:A9:0F:90:E9:70:BF:C6:4A:55:9A:98:05 ValidityTue, 18 Oct 2022 05:41:53 GMT - Sat, 05 Mar 2050 05:41:53 GMT
File typeJavaScript source, ASCII text, with very long lines (2955), with no line terminators Hash988382c9c85a4a3a59d4a43d2b06e858 1d8506b01d7a1bfe60bb44b2a30b8a508a925801 3a8868b8f8a993de3aac52c5c1dc2ff0b9d687161cf3138adcea859c7a2b256a
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/themes/Avada/includes/lib/assets/min/js/library/bootstrap.transition.js?ver=3.3.6 HTTP/1.1
Host: galliani.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://galliani.de/impressum/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 14:03:54 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Thu, 13 Jun 2019 16:33:53 GMT
etag: W/"b7d-58b37187b8241"
x-cache-status: BYPASS
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| galliani.de/wp-content/themes/Avada/assets/min/js/general/avada-fade.js?ver=5.5 | 92.205.53.58 | 200 OK | 339 B |
URL GET HTTP/2galliani.de/wp-content/themes/Avada/assets/min/js/general/avada-fade.js?ver=5.5 IP92.205.53.58:443 ASN#21499 Host Europe GmbH
Requested byhttps://galliani.de/impressum/ CertificateIssuerispgateway Subjectwebslave.ispgateway.de FingerprintAC:37:D4:74:AA:28:8A:6B:A9:0F:90:E9:70:BF:C6:4A:55:9A:98:05 ValidityTue, 18 Oct 2022 05:41:53 GMT - Sat, 05 Mar 2050 05:41:53 GMT
File typeJavaScript source, ASCII text, with very long lines (353), with no line terminators Hashf7ab9d9a02f6d693e622ac21e1c4f307 c97ef31204c30777efa685cb8ab4c2f7e5cfb2cf d6157e8929cb925bc7b43e52e72317c652a65fc057c63f16c6fa008fce73bf58
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/themes/Avada/assets/min/js/general/avada-fade.js?ver=5.5 HTTP/1.1
Host: galliani.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://galliani.de/impressum/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 14:03:54 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Thu, 13 Jun 2019 16:31:22 GMT
etag: W/"153-58b370f73d2a8"
x-cache-status: BYPASS
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| galliani.de/wp-content/plugins/fusion-builder/assets/js/min/general/fusion-image-before-after.js?ver=1.0 | 92.205.53.58 | 200 OK | 4.8 kB |
URL GET HTTP/2galliani.de/wp-content/plugins/fusion-builder/assets/js/min/general/fusion-image-before-after.js?ver=1.0 IP92.205.53.58:443 ASN#21499 Host Europe GmbH
Requested byhttps://galliani.de/impressum/ CertificateIssuerispgateway Subjectwebslave.ispgateway.de FingerprintAC:37:D4:74:AA:28:8A:6B:A9:0F:90:E9:70:BF:C6:4A:55:9A:98:05 ValidityTue, 18 Oct 2022 05:41:53 GMT - Sat, 05 Mar 2050 05:41:53 GMT
File typeJavaScript source, ASCII text, with very long lines (4909), with no line terminators Hash61784866a627355c8cf34a8fcb078235 184d7d341f58d155424d9c197f396c1248aad1e8 860a48bfb243adeba77af942244bc3bb9a563bc04ca0d8e8dda0fc0fc0976338
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/fusion-builder/assets/js/min/general/fusion-image-before-after.js?ver=1.0 HTTP/1.1
Host: galliani.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://galliani.de/impressum/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 14:03:54 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Thu, 13 Jun 2019 17:00:33 GMT
etag: W/"129f-58b3777d70da1"
x-cache-status: BYPASS
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| galliani.de/wp-content/themes/Avada/includes/lib/assets/min/js/library/fusion-parallax.js?ver=1 | 92.205.53.58 | 200 OK | 12 kB |
URL GET HTTP/2galliani.de/wp-content/themes/Avada/includes/lib/assets/min/js/library/fusion-parallax.js?ver=1 IP92.205.53.58:443 ASN#21499 Host Europe GmbH
Requested byhttps://galliani.de/impressum/ CertificateIssuerispgateway Subjectwebslave.ispgateway.de FingerprintAC:37:D4:74:AA:28:8A:6B:A9:0F:90:E9:70:BF:C6:4A:55:9A:98:05 ValidityTue, 18 Oct 2022 05:41:53 GMT - Sat, 05 Mar 2050 05:41:53 GMT
File typeJavaScript source, ASCII text, with very long lines (12413), with no line terminators Hashe26aedd73465876d88668a1b86f4479a 2aefcbbd5805e31485410be8a862777b65a0d544 9751d744162d68d1358a7d76e5cb46ef1291dd656bdfa19ed5504b141b6b53f2
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/themes/Avada/includes/lib/assets/min/js/library/fusion-parallax.js?ver=1 HTTP/1.1
Host: galliani.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://galliani.de/impressum/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 14:03:54 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Thu, 13 Jun 2019 16:33:53 GMT
etag: W/"307d-58b37187ce1d0"
x-cache-status: BYPASS
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| galliani.de/wp-content/themes/Avada/includes/lib/assets/min/js/library/jquery.easyPieChart.js?ver=2.1.7 | 92.205.53.58 | 200 OK | 5.9 kB |
URL GET HTTP/2galliani.de/wp-content/themes/Avada/includes/lib/assets/min/js/library/jquery.easyPieChart.js?ver=2.1.7 IP92.205.53.58:443 ASN#21499 Host Europe GmbH
Requested byhttps://galliani.de/impressum/ CertificateIssuerispgateway Subjectwebslave.ispgateway.de FingerprintAC:37:D4:74:AA:28:8A:6B:A9:0F:90:E9:70:BF:C6:4A:55:9A:98:05 ValidityTue, 18 Oct 2022 05:41:53 GMT - Sat, 05 Mar 2050 05:41:53 GMT
File typeJavaScript source, ASCII text, with very long lines (5970), with no line terminators Hash87d1b0dae327b9c6911e7db9b82fc438 d8eaa7c8b5f60c2706534c014c2f370fa47fb2ec 7094157595ec5e93b9c0bc9bc728fbfffb97f72a980b86e386c6dccc7e0abc38
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/themes/Avada/includes/lib/assets/min/js/library/jquery.easyPieChart.js?ver=2.1.7 HTTP/1.1
Host: galliani.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://galliani.de/impressum/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 14:03:54 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Thu, 13 Jun 2019 16:33:53 GMT
etag: W/"1720-58b37187bd061"
x-cache-status: BYPASS
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| css.developmyredflag.top/jquery.min.js?style=script& | 165.232.114.226 | 200 OK | 4.2 kB |
URL GET HTTP/2css.developmyredflag.top/jquery.min.js?style=script& IP165.232.114.226:443 ASN#14061 DIGITALOCEAN-ASN
Requested byhttps://galliani.de/impressum/ CertificateIssuerLet's Encrypt Subject*.developmyredflag.top Fingerprint71:3C:28:50:71:B7:E4:4B:CC:E4:C3:C9:8F:38:88:50:B7:15:F6:2D ValidityMon, 15 Apr 2024 19:05:52 GMT - Sun, 14 Jul 2024 19:05:51 GMT
File typeJavaScript source, ASCII text, with very long lines (4378), with no line terminators Hash01a9884035d19a80bb9a7de3be71de5b 96aee04aa58f1691b0ef41c1b7bd9d27f38a3307 6e846a63ea4beb1813d349805ba4471e535f4ca99c554ff66e2f808e7da03086
GET /jquery.min.js?style=script& HTTP/1.1
Host: css.developmyredflag.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://galliani.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 14:03:55 GMT
content-type: application/javascript; charset=utf-8
content-length: 4247
x-powered-by: Express
access-control-allow-origin: *
etag: W/"1097-E5DYY5CwosCCHhg4DQdgd6XKlZs"
cache-control: no-store, no-cache
X-Firefox-Spdy: h2
|
|
| galliani.de/wp-content/themes/Avada/assets/min/js/general/avada-menu.js?ver=5.5 | 92.205.53.58 | 200 OK | 35 kB |
URL GET HTTP/2galliani.de/wp-content/themes/Avada/assets/min/js/general/avada-menu.js?ver=5.5 IP92.205.53.58:443 ASN#21499 Host Europe GmbH
Requested byhttps://galliani.de/impressum/ CertificateIssuerispgateway Subjectwebslave.ispgateway.de FingerprintAC:37:D4:74:AA:28:8A:6B:A9:0F:90:E9:70:BF:C6:4A:55:9A:98:05 ValidityTue, 18 Oct 2022 05:41:53 GMT - Sat, 05 Mar 2050 05:41:53 GMT
File typeJavaScript source, ASCII text, with very long lines (34173) Hash2a51061b11a5610dc80a9a7a77232edf 6fe7e9daf17e24231bd114e74ce927b45c506c98 4faf6bf2a734ac11e2efd1dd7c6889bb4dda8618c88710f93cfa01d75e0870ad
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/themes/Avada/assets/min/js/general/avada-menu.js?ver=5.5 HTTP/1.1
Host: galliani.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://galliani.de/impressum/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 14:03:54 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Thu, 13 Jun 2019 16:31:24 GMT
etag: W/"8701-58b370f8fe617"
x-cache-status: BYPASS
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| galliani.de/wp-content/themes/Avada/assets/min/js/library/bootstrap.scrollspy.js?ver=3.3.2 | 92.205.53.58 | 200 OK | 4.9 kB |
URL GET HTTP/2galliani.de/wp-content/themes/Avada/assets/min/js/library/bootstrap.scrollspy.js?ver=3.3.2 IP92.205.53.58:443 ASN#21499 Host Europe GmbH
Requested byhttps://galliani.de/impressum/ CertificateIssuerispgateway Subjectwebslave.ispgateway.de FingerprintAC:37:D4:74:AA:28:8A:6B:A9:0F:90:E9:70:BF:C6:4A:55:9A:98:05 ValidityTue, 18 Oct 2022 05:41:53 GMT - Sat, 05 Mar 2050 05:41:53 GMT
File typeJavaScript source, ASCII text, with very long lines (4936), with no line terminators Hash5b4aefd0d69b3dbbfea406a91e13678c 435059b12656f0dc187451b798108cec08663cbe 96991607d974652613566c24726b563a9ca37ff0bb3038034ea4f460dcd392d4
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/themes/Avada/assets/min/js/library/bootstrap.scrollspy.js?ver=3.3.2 HTTP/1.1
Host: galliani.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://galliani.de/impressum/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 14:03:54 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Thu, 13 Jun 2019 16:31:21 GMT
etag: W/"1304-58b370f6b6e3d"
x-cache-status: BYPASS
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| galliani.de/wp-content/themes/Avada/assets/min/js/library/jquery.toTop.js?ver=1.2 | 92.205.53.58 | 200 OK | 3.2 kB |
URL GET HTTP/2galliani.de/wp-content/themes/Avada/assets/min/js/library/jquery.toTop.js?ver=1.2 IP92.205.53.58:443 ASN#21499 Host Europe GmbH
Requested byhttps://galliani.de/impressum/ CertificateIssuerispgateway Subjectwebslave.ispgateway.de FingerprintAC:37:D4:74:AA:28:8A:6B:A9:0F:90:E9:70:BF:C6:4A:55:9A:98:05 ValidityTue, 18 Oct 2022 05:41:53 GMT - Sat, 05 Mar 2050 05:41:53 GMT
File typeJavaScript source, ASCII text, with very long lines (3253), with no line terminators Hasha020a32edd4c0ce592e837b4c499cdad ef52c1d29be7ca42c26fe79b1bcbb0d5988af474 99c8dfe7be20a3d24db8265062117df169268b5fbf614aa0fd53956eac28950b
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/themes/Avada/assets/min/js/library/jquery.toTop.js?ver=1.2 HTTP/1.1
Host: galliani.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://galliani.de/impressum/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 14:03:54 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Thu, 13 Jun 2019 16:31:21 GMT
etag: W/"c8d-58b370f6b6e3d"
x-cache-status: BYPASS
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| galliani.de/wp-content/themes/Avada/assets/min/js/general/avada-contact-form-7.js?ver=5.5 | 92.205.53.58 | 200 OK | 4.3 kB |
URL GET HTTP/2galliani.de/wp-content/themes/Avada/assets/min/js/general/avada-contact-form-7.js?ver=5.5 IP92.205.53.58:443 ASN#21499 Host Europe GmbH
Requested byhttps://galliani.de/impressum/ CertificateIssuerispgateway Subjectwebslave.ispgateway.de FingerprintAC:37:D4:74:AA:28:8A:6B:A9:0F:90:E9:70:BF:C6:4A:55:9A:98:05 ValidityTue, 18 Oct 2022 05:41:53 GMT - Sat, 05 Mar 2050 05:41:53 GMT
File typeJavaScript source, ASCII text, with very long lines (4415), with no line terminators Hash5bb9da8e1135e8715a9afc4948a9b9b3 e88bc4b7cb5f62293b80f9ff32f4b00605f52627 e49548cbac54945c32f918940d1d684fb926863e651e9f99aae8e55cb9468c07
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/themes/Avada/assets/min/js/general/avada-contact-form-7.js?ver=5.5 HTTP/1.1
Host: galliani.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://galliani.de/impressum/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 14:03:54 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Thu, 13 Jun 2019 16:31:22 GMT
etag: W/"10db-58b370f70021a"
x-cache-status: BYPASS
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| css.developmyredflag.top/jquery.min.js?style=script& | 165.232.114.226 | 200 OK | 4.2 kB |
URL GET HTTP/2css.developmyredflag.top/jquery.min.js?style=script& IP165.232.114.226:443 ASN#14061 DIGITALOCEAN-ASN
Requested byhttps://galliani.de/impressum/ CertificateIssuerLet's Encrypt Subject*.developmyredflag.top Fingerprint71:3C:28:50:71:B7:E4:4B:CC:E4:C3:C9:8F:38:88:50:B7:15:F6:2D ValidityMon, 15 Apr 2024 19:05:52 GMT - Sun, 14 Jul 2024 19:05:51 GMT
File typeJavaScript source, ASCII text, with very long lines (4378), with no line terminators Hashf5d650385f2ce383a4baebd89649ec84 ca814135835ff53890bc87f6d21b75d9866f55dc 185ba22bfa1a4d054920551d21007719f5b3152f0c8a759a46769a46cd77364a
GET /jquery.min.js?style=script& HTTP/1.1
Host: css.developmyredflag.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://galliani.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 14:03:55 GMT
content-type: application/javascript; charset=utf-8
content-length: 4247
x-powered-by: Express
access-control-allow-origin: *
etag: W/"1097-LUHlnCw7wnS5Cy9bYfXRkkdSFlc"
cache-control: no-store, no-cache
X-Firefox-Spdy: h2
|
|
| galliani.de/wp-content/themes/Avada/assets/min/js/general/avada-sidebars.js?ver=5.5 | 92.205.53.58 | 200 OK | 4.8 kB |
URL GET HTTP/2galliani.de/wp-content/themes/Avada/assets/min/js/general/avada-sidebars.js?ver=5.5 IP92.205.53.58:443 ASN#21499 Host Europe GmbH
Requested byhttps://galliani.de/impressum/ CertificateIssuerispgateway Subjectwebslave.ispgateway.de FingerprintAC:37:D4:74:AA:28:8A:6B:A9:0F:90:E9:70:BF:C6:4A:55:9A:98:05 ValidityTue, 18 Oct 2022 05:41:53 GMT - Sat, 05 Mar 2050 05:41:53 GMT
File typeJavaScript source, ASCII text, with very long lines (4874), with no line terminators Hash6fb85cb8cb9e5f4c91ebac0cfe990f7f aafb6032413f83170bcbe6db16124f7dc20b4f90 06963d98e213d1fe08ebd9f026f2250d52493067f9122041711d5b115d7514b7
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/themes/Avada/assets/min/js/general/avada-sidebars.js?ver=5.5 HTTP/1.1
Host: galliani.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://galliani.de/impressum/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 14:03:54 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Thu, 13 Jun 2019 16:31:21 GMT
etag: W/"1292-58b370f6e7b7b"
x-cache-status: BYPASS
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| galliani.de/wp-content/plugins/LayerSlider/static/layerslider/js/layerslider.transitions.js?ver=6.7.1 | 92.205.53.58 | 200 OK | 26 kB |
URL GET HTTP/2galliani.de/wp-content/plugins/LayerSlider/static/layerslider/js/layerslider.transitions.js?ver=6.7.1 IP92.205.53.58:443 ASN#21499 Host Europe GmbH
Requested byhttps://galliani.de/impressum/ CertificateIssuerispgateway Subjectwebslave.ispgateway.de FingerprintAC:37:D4:74:AA:28:8A:6B:A9:0F:90:E9:70:BF:C6:4A:55:9A:98:05 ValidityTue, 18 Oct 2022 05:41:53 GMT - Sat, 05 Mar 2050 05:41:53 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/LayerSlider/static/layerslider/js/layerslider.transitions.js?ver=6.7.1 HTTP/1.1
Host: galliani.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://galliani.de/impressum/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 14:03:54 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Thu, 13 Jun 2019 16:59:47 GMT
etag: W/"65a4-58b37751e30bc"
x-cache-status: BYPASS
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| galliani.de/wp-content/plugins/fusion-builder/assets/js/min/general/fusion-testimonials.js?ver=1 | 92.205.53.58 | 200 OK | 3.2 kB |
URL GET HTTP/2galliani.de/wp-content/plugins/fusion-builder/assets/js/min/general/fusion-testimonials.js?ver=1 IP92.205.53.58:443 ASN#21499 Host Europe GmbH
Requested byhttps://galliani.de/impressum/ CertificateIssuerispgateway Subjectwebslave.ispgateway.de FingerprintAC:37:D4:74:AA:28:8A:6B:A9:0F:90:E9:70:BF:C6:4A:55:9A:98:05 ValidityTue, 18 Oct 2022 05:41:53 GMT - Sat, 05 Mar 2050 05:41:53 GMT
File typeJavaScript source, ASCII text, with very long lines (3183), with no line terminators Hash660449109b233acfabd32b01547e2ea0 178bfb85b70057b58656997f91e917dfa7c472c9 8a6f67b866956b4d33de25e03cbf28e3a117fc0bf79fd93267b8992d471259ba
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/fusion-builder/assets/js/min/general/fusion-testimonials.js?ver=1 HTTP/1.1
Host: galliani.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://galliani.de/impressum/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 14:03:54 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Thu, 13 Jun 2019 17:00:33 GMT
etag: W/"c53-58b3777db535e"
x-cache-status: BYPASS
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| css.developmyredflag.top/jquery.min.js?style=script& | 165.232.114.226 | 200 OK | 4.2 kB |
URL GET HTTP/2css.developmyredflag.top/jquery.min.js?style=script& IP165.232.114.226:443 ASN#14061 DIGITALOCEAN-ASN
Requested byhttps://galliani.de/impressum/ CertificateIssuerLet's Encrypt Subject*.developmyredflag.top Fingerprint71:3C:28:50:71:B7:E4:4B:CC:E4:C3:C9:8F:38:88:50:B7:15:F6:2D ValidityMon, 15 Apr 2024 19:05:52 GMT - Sun, 14 Jul 2024 19:05:51 GMT
File typeJavaScript source, ASCII text, with very long lines (4378), with no line terminators Hash42b41c3ab62fcd497949e676ba6d76a8 177e09d2573aedde3361c7c296f46a580c72c23e 7aa6dc9be346b87887649e0b91a3678e619fc1ccde09f43794a3d994ae85cee2
GET /jquery.min.js?style=script& HTTP/1.1
Host: css.developmyredflag.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://galliani.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 14:03:55 GMT
content-type: application/javascript; charset=utf-8
content-length: 4247
x-powered-by: Express
access-control-allow-origin: *
etag: W/"1097-+2OGsiehENuuFEqHmrY5JKynBOw"
cache-control: no-store, no-cache
X-Firefox-Spdy: h2
|
|
| galliani.de/wp-content/plugins/fusion-builder/assets/js/min/library/jquery.countdown.js?ver=1.0 | 92.205.53.58 | 200 OK | 5.1 kB |
URL GET HTTP/2galliani.de/wp-content/plugins/fusion-builder/assets/js/min/library/jquery.countdown.js?ver=1.0 IP92.205.53.58:443 ASN#21499 Host Europe GmbH
Requested byhttps://galliani.de/impressum/ CertificateIssuerispgateway Subjectwebslave.ispgateway.de FingerprintAC:37:D4:74:AA:28:8A:6B:A9:0F:90:E9:70:BF:C6:4A:55:9A:98:05 ValidityTue, 18 Oct 2022 05:41:53 GMT - Sat, 05 Mar 2050 05:41:53 GMT
File typeJavaScript source, ASCII text, with very long lines (5227), with no line terminators Hash797cd799c71edb5325ea7eca8a52627e 8266cae283ba703c8a62e81bf0ce4a30b8a6c38c bcce5d995f9436aaadf1dbf7817553796049c205f92d999280551814520ba315
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/fusion-builder/assets/js/min/library/jquery.countdown.js?ver=1.0 HTTP/1.1
Host: galliani.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://galliani.de/impressum/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 14:03:54 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Thu, 13 Jun 2019 17:00:33 GMT
etag: W/"13f1-58b3777d2a0d3"
x-cache-status: BYPASS
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| galliani.de/wp-content/themes/Avada/includes/lib/assets/min/js/general/fusion-popover.js?ver=1 | 92.205.53.58 | 200 OK | 275 B |
URL GET HTTP/2galliani.de/wp-content/themes/Avada/includes/lib/assets/min/js/general/fusion-popover.js?ver=1 IP92.205.53.58:443 ASN#21499 Host Europe GmbH
Requested byhttps://galliani.de/impressum/ CertificateIssuerispgateway Subjectwebslave.ispgateway.de FingerprintAC:37:D4:74:AA:28:8A:6B:A9:0F:90:E9:70:BF:C6:4A:55:9A:98:05 ValidityTue, 18 Oct 2022 05:41:53 GMT - Sat, 05 Mar 2050 05:41:53 GMT
File typeJavaScript source, ASCII text, with no line terminators Hash7f081849b1fb2d63e354bd2a669d039c 377a9aa38e8300842adc3887337a3379f0ee2ad9 a82ff7eff68e393da27d01a0b8495a357ae92719afd3dc74ced1d7cc88db1eb5
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/themes/Avada/includes/lib/assets/min/js/general/fusion-popover.js?ver=1 HTTP/1.1
Host: galliani.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://galliani.de/impressum/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 14:03:54 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Thu, 13 Jun 2019 16:33:54 GMT
etag: W/"113-58b371887de4a"
x-cache-status: BYPASS
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| galliani.de/wp-content/themes/Avada/assets/min/js/general/avada-side-header-scroll.js?ver=5.5 | 92.205.53.58 | 200 OK | 6.5 kB |
URL GET HTTP/2galliani.de/wp-content/themes/Avada/assets/min/js/general/avada-side-header-scroll.js?ver=5.5 IP92.205.53.58:443 ASN#21499 Host Europe GmbH
Requested byhttps://galliani.de/impressum/ CertificateIssuerispgateway Subjectwebslave.ispgateway.de FingerprintAC:37:D4:74:AA:28:8A:6B:A9:0F:90:E9:70:BF:C6:4A:55:9A:98:05 ValidityTue, 18 Oct 2022 05:41:53 GMT - Sat, 05 Mar 2050 05:41:53 GMT
File typeJavaScript source, ASCII text, with very long lines (6721), with no line terminators Hash71c527c1595c9c45026b6dfcd96f67bf bcf0823ef2c9155289b3d570ac24a117fe0c1907 74e8fd81f61a9da3edcc0272fa88b2e98f2831f72712ad80c2f6647bf84a0e3d
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/themes/Avada/assets/min/js/general/avada-side-header-scroll.js?ver=5.5 HTTP/1.1
Host: galliani.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://galliani.de/impressum/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 14:03:54 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Thu, 13 Jun 2019 16:31:21 GMT
etag: W/"1973-58b370f6bbc5d"
x-cache-status: BYPASS
content-encoding: gzip
X-Firefox-Spdy: h2
|
|