| www.baschung.swiss/.cloud/password-lock/?redirect=https://www.baschung.swiss/ges9/?llJ8r4I=Qv8m+wkKi0Knuh8oZxM5x1wnlgZIbsGhygDkoEAPgAbeBFRzLabwzitJtsxjySK/sLbz2OAc&oN68mv=DBZpZ4A8ujYDi&subdomain=baschung | 162.159.138.9 | 200 OK | 0 B |
URL User Request GET HTTP/3www.baschung.swiss/.cloud/password-lock/?redirect=https://www.baschung.swiss/ges9/?llJ8r4I=Qv8m+wkKi0Knuh8oZxM5x1wnlgZIbsGhygDkoEAPgAbeBFRzLabwzitJtsxjySK/sLbz2OAc&oN68mv=DBZpZ4A8ujYDi&subdomain=baschung IP162.159.138.9:443
CertificateIssuerCloudflare, Inc. Subjectwww.baschung.swiss Fingerprint8E:10:08:70:4F:21:2B:87:36:6F:1E:2B:15:DC:22:49:65:E4:50:D9 ValidityThu, 06 Oct 2022 00:00:00 GMT - Thu, 05 Oct 2023 23:59:59 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /.cloud/password-lock/?redirect=https://www.baschung.swiss/ges9/?llJ8r4I=Qv8m+wkKi0Knuh8oZxM5x1wnlgZIbsGhygDkoEAPgAbeBFRzLabwzitJtsxjySK/sLbz2OAc&oN68mv=DBZpZ4A8ujYDi&subdomain=baschung HTTP/1.1
Host: www.baschung.swiss
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 301 Moved Permanently
Date: Mon, 22 May 2023 12:21:03 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=3600
Expires: Mon, 22 May 2023 13:21:03 GMT
Location: https://www.baschung.swiss/.cloud/password-lock/?redirect=https://www.baschung.swiss/ges9/?llJ8r4I=Qv8m+wkKi0Knuh8oZxM5x1wnlgZIbsGhygDkoEAPgAbeBFRzLabwzitJtsxjySK/sLbz2OAc&oN68mv=DBZpZ4A8ujYDi&subdomain=baschung
Vary: Accept-Encoding
x-powered-by: Elementor Cloud
Server: cloudflare
CF-RAY: 7cb50446fd39b4f3-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
|
|
| www.baschung.swiss/.cloud/password-lock/static/media/DMSans-md.9d658f2d.woff2 | 162.159.138.9 | 200 OK | 30 kB |
URL GET HTTP/3www.baschung.swiss/.cloud/password-lock/static/media/DMSans-md.9d658f2d.woff2 IP162.159.138.9:443
Requested byhttps://www.baschung.swiss/.cloud/password-lock/?redirect=https://www.baschung.swiss/ges9/?llJ8r4I=Qv8m+wkKi0Knuh8oZxM5x1wnlgZIbsGhygDkoEAPgAbeBFRzLabwzitJtsxjySK/sLbz2OAc&oN68mv=DBZpZ4A8ujYDi&subdomain=baschung CertificateIssuerCloudflare, Inc. Subjectwww.baschung.swiss Fingerprint8E:10:08:70:4F:21:2B:87:36:6F:1E:2B:15:DC:22:49:65:E4:50:D9 ValidityThu, 06 Oct 2022 00:00:00 GMT - Thu, 05 Oct 2023 23:59:59 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 29896, version 1.0\012- data Hash935dd4c230fc4105c9c5bca40e99f815 8beb7e52a31ffa2725b2b218442d62d0ceb4c842 da319dcae9d21873bf2ad8b146767e023772a8f0a4fd7446156b3d61b9c83098
Analyzer | Verdict | Alert | fortinet | Malware | |
GET /.cloud/password-lock/static/media/DMSans-md.9d658f2d.woff2 HTTP/1.1
Host: www.baschung.swiss
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://www.baschung.swiss/.cloud/password-lock/static/css/main.87a22216.chunk.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Mon, 22 May 2023 12:21:04 GMT
content-type: font/woff2
content-length: 29896
cf-ray: 7cb5044be919b505-OSL
accept-ranges: bytes
etag: "64648cce-74c8"
last-modified: Wed, 17 May 2023 08:14:06 GMT
vary: Accept-Encoding
cf-cache-status: MISS
ec-cdn-status: dynamic
ec-cdn-status-reason: static resource
ec-source: static
x-powered-by: Elementor Cloud
server: cloudflare
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
|
|
| www.baschung.swiss/.cloud/password-lock/static/media/DMSans-rg.451a3489.woff2 | 162.159.138.9 | 200 OK | 30 kB |
URL GET HTTP/3www.baschung.swiss/.cloud/password-lock/static/media/DMSans-rg.451a3489.woff2 IP162.159.138.9:443
Requested byhttps://www.baschung.swiss/.cloud/password-lock/?redirect=https://www.baschung.swiss/ges9/?llJ8r4I=Qv8m+wkKi0Knuh8oZxM5x1wnlgZIbsGhygDkoEAPgAbeBFRzLabwzitJtsxjySK/sLbz2OAc&oN68mv=DBZpZ4A8ujYDi&subdomain=baschung CertificateIssuerCloudflare, Inc. Subjectwww.baschung.swiss Fingerprint8E:10:08:70:4F:21:2B:87:36:6F:1E:2B:15:DC:22:49:65:E4:50:D9 ValidityThu, 06 Oct 2022 00:00:00 GMT - Thu, 05 Oct 2023 23:59:59 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 29920, version 1.0\012- data Hashb9d5e5cad821648da76e2fedb6c6a680 f99e9d4c60c524dfb2e5015dfc754ae325773ff9 40aefc09f33205666c2c42f20d54285147ae9434ef5f8018481950fd67ddcb68
Analyzer | Verdict | Alert | fortinet | Malware | |
GET /.cloud/password-lock/static/media/DMSans-rg.451a3489.woff2 HTTP/1.1
Host: www.baschung.swiss
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://www.baschung.swiss/.cloud/password-lock/static/css/main.87a22216.chunk.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Mon, 22 May 2023 12:21:04 GMT
content-type: font/woff2
content-length: 29920
cf-ray: 7cb5044bd915b505-OSL
accept-ranges: bytes
etag: "64648cce-74e0"
last-modified: Wed, 17 May 2023 08:14:06 GMT
vary: Accept-Encoding
cf-cache-status: MISS
ec-cdn-status: dynamic
ec-cdn-status-reason: static resource
ec-source: static
x-powered-by: Elementor Cloud
server: cloudflare
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
|
|
| www.baschung.swiss/.cloud/password-lock/static/js/main.7dbc62a2.chunk.js | 162.159.138.9 | 200 OK | 89 kB |
URL GET HTTP/3www.baschung.swiss/.cloud/password-lock/static/js/main.7dbc62a2.chunk.js IP162.159.138.9:443
Requested byhttps://www.baschung.swiss/.cloud/password-lock/?redirect=https://www.baschung.swiss/ges9/?llJ8r4I=Qv8m+wkKi0Knuh8oZxM5x1wnlgZIbsGhygDkoEAPgAbeBFRzLabwzitJtsxjySK/sLbz2OAc&oN68mv=DBZpZ4A8ujYDi&subdomain=baschung CertificateIssuerCloudflare, Inc. Subjectwww.baschung.swiss Fingerprint8E:10:08:70:4F:21:2B:87:36:6F:1E:2B:15:DC:22:49:65:E4:50:D9 ValidityThu, 06 Oct 2022 00:00:00 GMT - Thu, 05 Oct 2023 23:59:59 GMT
File typeASCII text, with very long lines (65536), with no line terminators Hash13129a74b01cef68feba916035576526 4daed0d9020f78363ccc627012aa8ea630abb382 a5a544a977e3c12b39ea6c342d2391359fcbb31af4e80f2ccc22bd4a42ec8fd2
Analyzer | Verdict | Alert | fortinet | Malware | |
GET /.cloud/password-lock/static/js/main.7dbc62a2.chunk.js HTTP/1.1
Host: www.baschung.swiss
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.baschung.swiss/.cloud/password-lock/?redirect=https://www.baschung.swiss/ges9/?llJ8r4I=Qv8m+wkKi0Knuh8oZxM5x1wnlgZIbsGhygDkoEAPgAbeBFRzLabwzitJtsxjySK/sLbz2OAc&oN68mv=DBZpZ4A8ujYDi&subdomain=baschung
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Mon, 22 May 2023 12:21:03 GMT
content-type: application/javascript
cf-ray: 7cb50449ee0bb505-OSL
etag: W/"64648cce-13de9"
last-modified: Wed, 17 May 2023 08:14:06 GMT
vary: Accept-Encoding
cf-cache-status: MISS
ec-cdn-status: dynamic
ec-cdn-status-reason: static resource
ec-source: static
x-powered-by: Elementor Cloud
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
|
|
| www.baschung.swiss/cdn-cgi/rum? | 162.159.138.9 | 204 No Content | 0 B |
URL POST HTTP/3www.baschung.swiss/cdn-cgi/rum? IP162.159.138.9:443
Requested byhttps://www.baschung.swiss/.cloud/password-lock/?redirect=https://www.baschung.swiss/ges9/?llJ8r4I=Qv8m+wkKi0Knuh8oZxM5x1wnlgZIbsGhygDkoEAPgAbeBFRzLabwzitJtsxjySK/sLbz2OAc&oN68mv=DBZpZ4A8ujYDi&subdomain=baschung CertificateIssuerCloudflare, Inc. Subjectwww.baschung.swiss Fingerprint8E:10:08:70:4F:21:2B:87:36:6F:1E:2B:15:DC:22:49:65:E4:50:D9 ValidityThu, 06 Oct 2022 00:00:00 GMT - Thu, 05 Oct 2023 23:59:59 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | fortinet | Malware | |
POST /cdn-cgi/rum? HTTP/1.1
Host: www.baschung.swiss
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
content-type: application/json
Content-Length: 3340
Origin: https://www.baschung.swiss
DNT: 1
Connection: keep-alive
Referer: https://www.baschung.swiss/.cloud/password-lock/?redirect=https://www.baschung.swiss/ges9/?llJ8r4I=Qv8m+wkKi0Knuh8oZxM5x1wnlgZIbsGhygDkoEAPgAbeBFRzLabwzitJtsxjySK/sLbz2OAc&oN68mv=DBZpZ4A8ujYDi&subdomain=baschung
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 204 No Content
date: Mon, 22 May 2023 12:21:04 GMT
access-control-allow-origin: https://www.baschung.swiss
access-control-allow-methods: POST,OPTIONS
access-control-max-age: 86400
vary: Origin
access-control-allow-credentials: true
server: cloudflare
cf-ray: 7cb5044cfa83b505-OSL
x-frame-options: DENY
x-content-type-options: nosniff
|
|
| www.baschung.swiss/.cloud/password-lock/elementor-favicon-32x32.png | 162.159.138.9 | 200 OK | 1.4 kB |
URL GET HTTP/3www.baschung.swiss/.cloud/password-lock/elementor-favicon-32x32.png IP162.159.138.9:443
Requested byhttps://www.baschung.swiss/.cloud/password-lock/?redirect=https://www.baschung.swiss/ges9/?llJ8r4I=Qv8m+wkKi0Knuh8oZxM5x1wnlgZIbsGhygDkoEAPgAbeBFRzLabwzitJtsxjySK/sLbz2OAc&oN68mv=DBZpZ4A8ujYDi&subdomain=baschung CertificateIssuerCloudflare, Inc. Subjectwww.baschung.swiss Fingerprint8E:10:08:70:4F:21:2B:87:36:6F:1E:2B:15:DC:22:49:65:E4:50:D9 ValidityThu, 06 Oct 2022 00:00:00 GMT - Thu, 05 Oct 2023 23:59:59 GMT
File typePNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced\012- data Hashfe33b37d9a7eb3fd6738c1dc3b966ab4 a82061e1b7364ff7140a8a6881d73f8e566a8b48 0236dcb9bf0755964513646194c8c95c1deec7e53135f6052f0e49431ffbe683
GET /.cloud/password-lock/elementor-favicon-32x32.png HTTP/1.1
Host: www.baschung.swiss
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.baschung.swiss/.cloud/password-lock/?redirect=https://www.baschung.swiss/ges9/?llJ8r4I=Qv8m+wkKi0Knuh8oZxM5x1wnlgZIbsGhygDkoEAPgAbeBFRzLabwzitJtsxjySK/sLbz2OAc&oN68mv=DBZpZ4A8ujYDi&subdomain=baschung
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Mon, 22 May 2023 12:21:04 GMT
content-type: image/png
content-length: 1416
cf-ray: 7cb5044cda60b505-OSL
accept-ranges: bytes
etag: "64648cb8-588"
last-modified: Wed, 17 May 2023 08:13:44 GMT
vary: Accept-Encoding
cf-cache-status: MISS
ec-cdn-status: dynamic
ec-cdn-status-reason: static resource
ec-source: static
x-powered-by: Elementor Cloud
server: cloudflare
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
|
|
| www.baschung.swiss/.cloud/password-lock/elementor-favicon.png | 162.159.138.9 | 200 OK | 19 kB |
URL GET HTTP/3www.baschung.swiss/.cloud/password-lock/elementor-favicon.png IP162.159.138.9:443
Requested byhttps://www.baschung.swiss/.cloud/password-lock/?redirect=https://www.baschung.swiss/ges9/?llJ8r4I=Qv8m+wkKi0Knuh8oZxM5x1wnlgZIbsGhygDkoEAPgAbeBFRzLabwzitJtsxjySK/sLbz2OAc&oN68mv=DBZpZ4A8ujYDi&subdomain=baschung CertificateIssuerCloudflare, Inc. Subjectwww.baschung.swiss Fingerprint8E:10:08:70:4F:21:2B:87:36:6F:1E:2B:15:DC:22:49:65:E4:50:D9 ValidityThu, 06 Oct 2022 00:00:00 GMT - Thu, 05 Oct 2023 23:59:59 GMT
File typePNG image data, 192 x 192, 8-bit/color RGBA, non-interlaced\012- data Hash3ebb97ae6971e7c8bac691da8afb962d 0c942258adc4378ade1080042560d8ad80231c5b 66bd782be1e44757c2a24ad9719e12e7f696bd29bb0e201544ea205af87d314c
GET /.cloud/password-lock/elementor-favicon.png HTTP/1.1
Host: www.baschung.swiss
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.baschung.swiss/.cloud/password-lock/?redirect=https://www.baschung.swiss/ges9/?llJ8r4I=Qv8m+wkKi0Knuh8oZxM5x1wnlgZIbsGhygDkoEAPgAbeBFRzLabwzitJtsxjySK/sLbz2OAc&oN68mv=DBZpZ4A8ujYDi&subdomain=baschung
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Mon, 22 May 2023 12:21:04 GMT
content-type: image/png
content-length: 18981
cf-ray: 7cb5044cda5db505-OSL
accept-ranges: bytes
etag: "64648cb8-4a25"
last-modified: Wed, 17 May 2023 08:13:44 GMT
vary: Accept-Encoding
cf-cache-status: MISS
ec-cdn-status: dynamic
ec-cdn-status-reason: static resource
ec-source: static
x-powered-by: Elementor Cloud
server: cloudflare
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
|
|
| www.baschung.swiss/cdn-cgi/rum? | 162.159.138.9 | 204 No Content | 0 B |
URL POST HTTP/3www.baschung.swiss/cdn-cgi/rum? IP162.159.138.9:443
Requested byhttps://www.baschung.swiss/.cloud/password-lock/?redirect=https://www.baschung.swiss/ges9/?llJ8r4I=Qv8m+wkKi0Knuh8oZxM5x1wnlgZIbsGhygDkoEAPgAbeBFRzLabwzitJtsxjySK/sLbz2OAc&oN68mv=DBZpZ4A8ujYDi&subdomain=baschung CertificateIssuerCloudflare, Inc. Subjectwww.baschung.swiss Fingerprint8E:10:08:70:4F:21:2B:87:36:6F:1E:2B:15:DC:22:49:65:E4:50:D9 ValidityThu, 06 Oct 2022 00:00:00 GMT - Thu, 05 Oct 2023 23:59:59 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | fortinet | Malware | |
POST /cdn-cgi/rum? HTTP/1.1
Host: www.baschung.swiss
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 536
Origin: https://www.baschung.swiss
DNT: 1
Connection: keep-alive
Referer: https://www.baschung.swiss/.cloud/password-lock/?redirect=https://www.baschung.swiss/ges9/?llJ8r4I=Qv8m+wkKi0Knuh8oZxM5x1wnlgZIbsGhygDkoEAPgAbeBFRzLabwzitJtsxjySK/sLbz2OAc&oN68mv=DBZpZ4A8ujYDi&subdomain=baschung
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/3 204 No Content
date: Mon, 22 May 2023 12:21:18 GMT
access-control-allow-origin: https://www.baschung.swiss
access-control-allow-methods: POST,OPTIONS
access-control-max-age: 86400
vary: Origin
access-control-allow-credentials: true
server: cloudflare
cf-ray: 7cb504a86ecab505-OSL
x-frame-options: DENY
x-content-type-options: nosniff
|
|
| www.baschung.swiss/.cloud/password-lock/static/js/2.f852f523.chunk.js | 162.159.138.9 | 200 OK | 422 kB |
URL GET HTTP/3www.baschung.swiss/.cloud/password-lock/static/js/2.f852f523.chunk.js IP162.159.138.9:443
Requested byhttps://www.baschung.swiss/.cloud/password-lock/?redirect=https://www.baschung.swiss/ges9/?llJ8r4I=Qv8m+wkKi0Knuh8oZxM5x1wnlgZIbsGhygDkoEAPgAbeBFRzLabwzitJtsxjySK/sLbz2OAc&oN68mv=DBZpZ4A8ujYDi&subdomain=baschung CertificateIssuerCloudflare, Inc. Subjectwww.baschung.swiss Fingerprint8E:10:08:70:4F:21:2B:87:36:6F:1E:2B:15:DC:22:49:65:E4:50:D9 ValidityThu, 06 Oct 2022 00:00:00 GMT - Thu, 05 Oct 2023 23:59:59 GMT
File typeASCII text, with very long lines (65462) Size422 kB (421982 bytes) Hash93e89a7090bd38c4ebca68dcc913dea9 68e7cd8941ea608042da3925ce4da101c5d9dc49 ef61ff80a8b9a82363034fafc1be193ffd7e082263fead603111d104d818dada
Analyzer | Verdict | Alert | fortinet | Malware | |
GET /.cloud/password-lock/static/js/2.f852f523.chunk.js HTTP/1.1
Host: www.baschung.swiss
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.baschung.swiss/.cloud/password-lock/?redirect=https://www.baschung.swiss/ges9/?llJ8r4I=Qv8m+wkKi0Knuh8oZxM5x1wnlgZIbsGhygDkoEAPgAbeBFRzLabwzitJtsxjySK/sLbz2OAc&oN68mv=DBZpZ4A8ujYDi&subdomain=baschung
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Mon, 22 May 2023 12:21:03 GMT
content-type: application/javascript
cf-ray: 7cb50449cdd3b505-OSL
etag: W/"64648cce-6705e"
last-modified: Wed, 17 May 2023 08:14:06 GMT
vary: Accept-Encoding
cf-cache-status: MISS
ec-cdn-status: dynamic
ec-cdn-status-reason: static resource
ec-source: static
x-powered-by: Elementor Cloud
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
|
|
| www.baschung.swiss/.cloud/password-lock/?redirect=https://www.baschung.swiss/ges9/?llJ8r4I=Qv8m+wkKi0Knuh8oZxM5x1wnlgZIbsGhygDkoEAPgAbeBFRzLabwzitJtsxjySK/sLbz2OAc&oN68mv=DBZpZ4A8ujYDi&subdomain=baschung | 162.159.138.9 | 301 Moved Permanently | 2.7 kB |
URL User Request GET HTTP/1.1www.baschung.swiss/.cloud/password-lock/?redirect=https://www.baschung.swiss/ges9/?llJ8r4I=Qv8m+wkKi0Knuh8oZxM5x1wnlgZIbsGhygDkoEAPgAbeBFRzLabwzitJtsxjySK/sLbz2OAc&oN68mv=DBZpZ4A8ujYDi&subdomain=baschung IP162.159.138.9:80
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /.cloud/password-lock/?redirect=https://www.baschung.swiss/ges9/?llJ8r4I=Qv8m+wkKi0Knuh8oZxM5x1wnlgZIbsGhygDkoEAPgAbeBFRzLabwzitJtsxjySK/sLbz2OAc&oN68mv=DBZpZ4A8ujYDi&subdomain=baschung HTTP/1.1
Host: www.baschung.swiss
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 301 Moved Permanently
Date: Mon, 22 May 2023 12:21:03 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=3600
Expires: Mon, 22 May 2023 13:21:03 GMT
Location: https://www.baschung.swiss/.cloud/password-lock/?redirect=https://www.baschung.swiss/ges9/?llJ8r4I=Qv8m+wkKi0Knuh8oZxM5x1wnlgZIbsGhygDkoEAPgAbeBFRzLabwzitJtsxjySK/sLbz2OAc&oN68mv=DBZpZ4A8ujYDi&subdomain=baschung
Vary: Accept-Encoding
x-powered-by: Elementor Cloud
Server: cloudflare
CF-RAY: 7cb50446fd39b4f3-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
|
|
| www.baschung.swiss/.cloud/password-lock/static/css/main.87a22216.chunk.css | 162.159.138.9 | 200 OK | 286 kB |
URL GET HTTP/3www.baschung.swiss/.cloud/password-lock/static/css/main.87a22216.chunk.css IP162.159.138.9:443
Requested byhttps://www.baschung.swiss/.cloud/password-lock/?redirect=https://www.baschung.swiss/ges9/?llJ8r4I=Qv8m+wkKi0Knuh8oZxM5x1wnlgZIbsGhygDkoEAPgAbeBFRzLabwzitJtsxjySK/sLbz2OAc&oN68mv=DBZpZ4A8ujYDi&subdomain=baschung CertificateIssuerCloudflare, Inc. Subjectwww.baschung.swiss Fingerprint8E:10:08:70:4F:21:2B:87:36:6F:1E:2B:15:DC:22:49:65:E4:50:D9 ValidityThu, 06 Oct 2022 00:00:00 GMT - Thu, 05 Oct 2023 23:59:59 GMT
File typeASCII text, with very long lines (65536), with no line terminators Size286 kB (285900 bytes) Hash9099ec2bc1c95dbb0a90e146b9cec13e 3890e1b9b054d0ce732a506daa584cac8b5d91fa ac52ab23392c412c632ca33afd45b3c3691e50e354ece18c81529a212e743b94
GET /.cloud/password-lock/static/css/main.87a22216.chunk.css HTTP/1.1
Host: www.baschung.swiss
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.baschung.swiss/.cloud/password-lock/?redirect=https://www.baschung.swiss/ges9/?llJ8r4I=Qv8m+wkKi0Knuh8oZxM5x1wnlgZIbsGhygDkoEAPgAbeBFRzLabwzitJtsxjySK/sLbz2OAc&oN68mv=DBZpZ4A8ujYDi&subdomain=baschung
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Mon, 22 May 2023 12:21:03 GMT
content-type: text/css
cf-ray: 7cb50449cdd1b505-OSL
etag: W/"64648cce-45ccc"
last-modified: Wed, 17 May 2023 08:14:06 GMT
vary: Accept-Encoding
cf-cache-status: MISS
ec-cdn-status: dynamic
ec-cdn-status-reason: static resource
ec-source: static
x-powered-by: Elementor Cloud
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
|
|
| www.baschung.swiss/.cloud/password-lock?redirect=https://www.baschung.swiss/ges9/?llJ8r4I=Qv8m+wkKi0Knuh8oZxM5x1wnlgZIbsGhygDkoEAPgAbeBFRzLabwzitJtsxjySK/sLbz2OAc&oN68mv=DBZpZ4A8ujYDi&subdomain=baschung | 162.159.138.9 | 301 Moved Permanently | 2.7 kB |
URL User Request GET HTTP/2www.baschung.swiss/.cloud/password-lock?redirect=https://www.baschung.swiss/ges9/?llJ8r4I=Qv8m+wkKi0Knuh8oZxM5x1wnlgZIbsGhygDkoEAPgAbeBFRzLabwzitJtsxjySK/sLbz2OAc&oN68mv=DBZpZ4A8ujYDi&subdomain=baschung IP162.159.138.9:443
CertificateIssuerCloudflare, Inc. Subjectwww.baschung.swiss Fingerprint8E:10:08:70:4F:21:2B:87:36:6F:1E:2B:15:DC:22:49:65:E4:50:D9 ValidityThu, 06 Oct 2022 00:00:00 GMT - Thu, 05 Oct 2023 23:59:59 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /.cloud/password-lock?redirect=https://www.baschung.swiss/ges9/?llJ8r4I=Qv8m+wkKi0Knuh8oZxM5x1wnlgZIbsGhygDkoEAPgAbeBFRzLabwzitJtsxjySK/sLbz2OAc&oN68mv=DBZpZ4A8ujYDi&subdomain=baschung HTTP/1.1
Host: www.baschung.swiss
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 301 Moved Permanently
date: Mon, 22 May 2023 12:21:03 GMT
content-type: text/html
location: http://www.baschung.swiss/.cloud/password-lock/?redirect=https://www.baschung.swiss/ges9/?llJ8r4I=Qv8m+wkKi0Knuh8oZxM5x1wnlgZIbsGhygDkoEAPgAbeBFRzLabwzitJtsxjySK/sLbz2OAc&oN68mv=DBZpZ4A8ujYDi&subdomain=baschung
cf-ray: 7cb504460d54b50f-OSL
cf-cache-status: DYNAMIC
ec-cdn-status: dynamic
ec-cdn-status-reason: not supported
ec-source: static
vary: Accept-Encoding
x-powered-by: Elementor Cloud
server: cloudflare
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| www.baschung.swiss/.cloud/password-lock/static/media/logo.762de122.svg | 162.159.138.9 | 200 OK | 3.6 kB |
URL GET HTTP/3www.baschung.swiss/.cloud/password-lock/static/media/logo.762de122.svg IP162.159.138.9:443
Requested byhttps://www.baschung.swiss/.cloud/password-lock/?redirect=https://www.baschung.swiss/ges9/?llJ8r4I=Qv8m+wkKi0Knuh8oZxM5x1wnlgZIbsGhygDkoEAPgAbeBFRzLabwzitJtsxjySK/sLbz2OAc&oN68mv=DBZpZ4A8ujYDi&subdomain=baschung CertificateIssuerCloudflare, Inc. Subjectwww.baschung.swiss Fingerprint8E:10:08:70:4F:21:2B:87:36:6F:1E:2B:15:DC:22:49:65:E4:50:D9 ValidityThu, 06 Oct 2022 00:00:00 GMT - Thu, 05 Oct 2023 23:59:59 GMT
File typeSVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (3611), with no line terminators Hashf5a3ab55a4b84ae605f1337db6432dbb b14fdb7d9e5dce84a26c082d19ac698455d008ba ab7f7b968144effd880b2617f376668e45d694dab81e5aed950c410f7b5144ba
Analyzer | Verdict | Alert | fortinet | Malware | |
GET /.cloud/password-lock/static/media/logo.762de122.svg HTTP/1.1
Host: www.baschung.swiss
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.baschung.swiss/.cloud/password-lock/?redirect=https://www.baschung.swiss/ges9/?llJ8r4I=Qv8m+wkKi0Knuh8oZxM5x1wnlgZIbsGhygDkoEAPgAbeBFRzLabwzitJtsxjySK/sLbz2OAc&oN68mv=DBZpZ4A8ujYDi&subdomain=baschung
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Mon, 22 May 2023 12:21:04 GMT
content-type: image/svg+xml
cf-ray: 7cb5044bc8e7b505-OSL
etag: W/"64648cce-e07"
last-modified: Wed, 17 May 2023 08:14:06 GMT
vary: Accept-Encoding
cf-cache-status: MISS
ec-cdn-status: dynamic
ec-cdn-status-reason: static resource
ec-source: static
x-powered-by: Elementor Cloud
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
|
|
| www.baschung.swiss/.cloud/password-lock/static/media/ivar-bd.6a44be0f.woff2 | 162.159.138.9 | 200 OK | 32 kB |
URL GET HTTP/3www.baschung.swiss/.cloud/password-lock/static/media/ivar-bd.6a44be0f.woff2 IP162.159.138.9:443
Requested byhttps://www.baschung.swiss/.cloud/password-lock/?redirect=https://www.baschung.swiss/ges9/?llJ8r4I=Qv8m+wkKi0Knuh8oZxM5x1wnlgZIbsGhygDkoEAPgAbeBFRzLabwzitJtsxjySK/sLbz2OAc&oN68mv=DBZpZ4A8ujYDi&subdomain=baschung CertificateIssuerCloudflare, Inc. Subjectwww.baschung.swiss Fingerprint8E:10:08:70:4F:21:2B:87:36:6F:1E:2B:15:DC:22:49:65:E4:50:D9 ValidityThu, 06 Oct 2022 00:00:00 GMT - Thu, 05 Oct 2023 23:59:59 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 31468, version 1.0\012- data Hash32321e55a38fff4d8f7f22f521149a92 101ef303e6332fb56558c3e21886a589ba662190 809aee5e0e59891af7a0b762afddec22735349af822c6d7fb2f58ab033d92797
Analyzer | Verdict | Alert | fortinet | Malware | |
GET /.cloud/password-lock/static/media/ivar-bd.6a44be0f.woff2 HTTP/1.1
Host: www.baschung.swiss
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://www.baschung.swiss/.cloud/password-lock/static/css/main.87a22216.chunk.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Mon, 22 May 2023 12:21:04 GMT
content-type: font/woff2
content-length: 31468
cf-ray: 7cb5044bd906b505-OSL
accept-ranges: bytes
etag: "64648cce-7aec"
last-modified: Wed, 17 May 2023 08:14:06 GMT
vary: Accept-Encoding
cf-cache-status: MISS
ec-cdn-status: dynamic
ec-cdn-status-reason: static resource
ec-source: static
x-powered-by: Elementor Cloud
server: cloudflare
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
|
|
| static.cloudflareinsights.com/beacon.min.js/v52afc6f149f6479b8c77fa569edb01181681764108816 | 104.16.57.101 | 200 OK | 20 kB |
URL GET HTTP/2static.cloudflareinsights.com/beacon.min.js/v52afc6f149f6479b8c77fa569edb01181681764108816 IP104.16.57.101:443
Requested byhttps://www.baschung.swiss/.cloud/password-lock/?redirect=https://www.baschung.swiss/ges9/?llJ8r4I=Qv8m+wkKi0Knuh8oZxM5x1wnlgZIbsGhygDkoEAPgAbeBFRzLabwzitJtsxjySK/sLbz2OAc&oN68mv=DBZpZ4A8ujYDi&subdomain=baschung CertificateIssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint89:79:35:ED:04:A2:CA:50:F7:9A:B8:FE:DF:A5:0C:B1:F2:E6:DD:E8 ValidityMon, 10 Apr 2023 00:00:00 GMT - Tue, 09 Apr 2024 23:59:59 GMT
File typeASCII text, with very long lines (19927), with no line terminators Hashd294b48fb7400508953205265f95d2e1 fd545d38241c9c56e81f61e45cd239976ecd0b46 13a548e040a1ec08f77911fed1d559b95e5daae0ee227e632140e003c7268e7b
GET /beacon.min.js/v52afc6f149f6479b8c77fa569edb01181681764108816 HTTP/1.1
Host: static.cloudflareinsights.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.baschung.swiss
DNT: 1
Connection: keep-alive
Referer: https://www.baschung.swiss/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Mon, 22 May 2023 12:21:03 GMT
content-type: text/javascript;charset=UTF-8
access-control-allow-origin: *
cache-control: public, max-age=86400
etag: W/2023.4.2
last-modified: Mon, 17 Apr 2023 20:41:48 GMT
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
server: cloudflare
cf-ray: 7cb5044a1eab0b31-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
|
|