r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash a2104f935c638b4767ca5ae0d738ef23
85c6af15af749be0ceeae6de17c36925b750f166
5d4789a3696bd7faa9916768cb627bbc89bf70a756d80e53860cbac13c2bc8b1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5D4789A3696BD7FAA9916768CB627BBC89BF70A756D80E53860CBAC13C2BC8B1"
Last-Modified: Fri, 27 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2474
Expires: Mon, 30 Jan 2023 03:25:02 GMT
Date: Mon, 30 Jan 2023 02:43:48 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 81dd5c5cc5b3278876cb44dcb520a60f
c0511a59e9eccdcdda98717b87c89c5d59974808
41736c303afdb3d31e48724b107dcb22883cae02f3562308eb52d9164001a2de
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "41736C303AFDB3D31E48724B107DCB22883CAE02F3562308EB52D9164001A2DE"
Last-Modified: Fri, 27 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17396
Expires: Mon, 30 Jan 2023 07:33:44 GMT
Date: Mon, 30 Jan 2023 02:43:48 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash dcd75ca6daca51c5e39d431468511793
07f76d3bf23d65c9110d810fa71a994e39e085d3
73672a816da4450fe2c938b08d7ae002d9ca29fdcbd3e29cc97084d826f8b459
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Backoff, Content-Length, Alert, Retry-After
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Mon, 30 Jan 2023 02:43:11 GMT
content-type: application/json
age: 38
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 302c7548412192add063ad6c8b99cf3b
e5d178931a27db036ce8daae302594d3ff7050b8
fc2bd9091006189e67e8074093805ee5492ce16e1dbfba32e083abeeae34969d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "FC2BD9091006189E67E8074093805EE5492CE16E1DBFBA32E083ABEEAE34969D"
Last-Modified: Sat, 28 Jan 2023 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9371
Expires: Mon, 30 Jan 2023 05:20:00 GMT
Date: Mon, 30 Jan 2023 02:43:49 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP
File type PEM certificate\012- , ASCII text
Hash 7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: gYZUGAMxU9pKL+RL3tGS7cfH6QCZMQdRdlhxRESsQycPv0aUavb+54SGh1Mg2kmoREfmE7usfXE=
x-amz-request-id: 04ETNJ1Q4RQ87JPY
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Mon, 30 Jan 2023 01:50:33 GMT
age: 3196
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Mon, 30 Jan 2023 02:43:49 GMT
content-type: application/json
content-length: 12
access-control-expose-headers: content-type
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
finanzberatung-herrmann.de/
301 Moved Permanently 0 B URL HTTP/1.1 finanzberatung-herrmann.de/
IP
ASN #20773 Host Europe GmbH
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: finanzberatung-herrmann.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Mon, 30 Jan 2023 02:43:48 GMT
Server: Apache
X-UA-Compatible: IE=edge
X-Redirect-By: WordPress
Location: https://finanzberatung-herrmann.de/
X-Powered-By: PHP/8.0.3, PleskLin
Content-Length: 0
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Pragma, Last-Modified, ETag, Content-Length, Expires, Cache-Control, Retry-After, Content-Type, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Mon, 30 Jan 2023 02:41:41 GMT
age: 128
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash d33e89bd3c9e698dc16c85dfe2bddc18
c6033f331e701cc4a8a16e9a9e067ce9fc246553
2b229070ea651b760688830dcb373be70c976b84b6a5461c9d26a5de8b59bec9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "2B229070EA651B760688830DCB373BE70C976B84B6A5461C9D26A5DE8B59BEC9"
Last-Modified: Sat, 28 Jan 2023 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21545
Expires: Mon, 30 Jan 2023 08:42:54 GMT
Date: Mon, 30 Jan 2023 02:43:49 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 22b9916fc1fafc9bdc9bb37f9eac8a9a
86f640e134a741a0f906a8e3a0f5c6659dd0e394
a29ee843c8a39551a1507cc6ad949ad509e33aaae8b72c58ac4884bad8b0b38e
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A29EE843C8A39551A1507CC6AD949AD509E33AAAE8B72C58AC4884BAD8B0B38E"
Last-Modified: Sun, 29 Jan 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2279
Expires: Mon, 30 Jan 2023 03:21:48 GMT
Date: Mon, 30 Jan 2023 02:43:49 GMT
Connection: keep-alive
push.services.mozilla.com/
101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: fPDXWolMYaBCoaR9WxIvRg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: cPbx15WX/M7rJdgbURxKmimlISY=
finanzberatung-herrmann.de/
200 OK 17 kB URL HTTP/1.1 finanzberatung-herrmann.de/
IP
ASN #20773 Host Europe GmbH
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (9698), with CRLF, LF line terminators
Hash 5d683b26b007b971db6b4b27c6ba041e
091fc6d30a3ab768d1d2a49a0dc08628000ce230
11b56d5f884ce7a830ad0cd9fd3aaf7087c665bff55c7d14cfd0d9a59ae1a16a
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: finanzberatung-herrmann.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 02:43:49 GMT
Server: Apache
X-UA-Compatible: IE=edge
Link: <https://finanzberatung-herrmann.de/wp-json/>; rel="https://api.w.org/", <https://finanzberatung-herrmann.de/wp-json/wp/v2/pages/13>; rel="alternate"; type="application/json", <https://finanzberatung-herrmann.de/>; rel=shortlink
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PHP/8.0.3, PleskLin
Content-Length: 17401
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
finanzberatung-herrmann.de/wp-content/uploads/premium-addons-elementor/pa-frontend-7372d19de.min.css?ver=1675046630
200 OK 2.4 kB URL HTTP/1.1 finanzberatung-herrmann.de/wp-content/uploads/premium-addons-elementor/pa-frontend-7372d19de.min.css?ver=1675046630
IP
ASN #20773 Host Europe GmbH
File type ASCII text, with very long lines (17671), with no line terminators
Hash dc0ccc7088052537cb38e9427f01d305
c1e61af6ed7f46dabf897db872ce8efb11fff6b6
1f15845b05499a8eba59d8ed2adc1f5a54773891951754316fcd330b9e19cba0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/premium-addons-elementor/pa-frontend-7372d19de.min.css?ver=1675046630 HTTP/1.1
Host: finanzberatung-herrmann.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://finanzberatung-herrmann.de/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 02:43:50 GMT
Server: Apache
Last-Modified: Thu, 10 Mar 2022 06:22:08 GMT
ETag: "4507-5d9d73bcd15ab-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PleskLin
Content-Length: 2441
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
finanzberatung-herrmann.de/wp-includes/css/classic-themes.min.css?ver=1
200 OK 189 B URL HTTP/1.1 finanzberatung-herrmann.de/wp-includes/css/classic-themes.min.css?ver=1
IP
ASN #20773 Host Europe GmbH
Hash 5a18e16eb01cbaa862eb32e6b77bedb2
3abf9b913cc9f558f02cba7c9b822f8d1812cb96
d2b5af913332941d5ae7786d1fa70e0d009315c4ede6ad5b80d0f663bb54521f
GET /wp-includes/css/classic-themes.min.css?ver=1 HTTP/1.1
Host: finanzberatung-herrmann.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://finanzberatung-herrmann.de/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 02:43:50 GMT
Server: Apache
Last-Modified: Wed, 02 Nov 2022 05:12:24 GMT
ETag: "d9-5ec75e2d88e61-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PleskLin
Content-Length: 189
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css
cdnjs.cloudflare.com/ajax/libs/gsap/2.1.3/TweenMax.min.js
200 OK 35 kB URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/gsap/2.1.3/TweenMax.min.js
IP
File type ASCII text, with very long lines (32037)
Hash 8ec306b76e7dc20e47d5f986b68d5932
6bc2204b8061f8d54f416b0d1df1343c2f42521a
9b623920be3228e50eabb5af38e599acdbdc4fce6b2f1d7eb884cf3bb0245d7c
GET /ajax/libs/gsap/2.1.3/TweenMax.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://finanzberatung-herrmann.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 30 Jan 2023 02:43:50 GMT
content-type: application/javascript; charset=utf-8
content-length: 34868
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03e71-1c604"
last-modified: Mon, 04 May 2020 16:10:25 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 357852
expires: Sat, 20 Jan 2024 02:43:50 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=7HSZ2lANfeiQAGWhKjXHyprwkudfVXQ6OAQFklno%2BU%2Bh6zXWq0MqJyN1h4b2RiJYVl%2BvW0HvlDXBIwwhKMQTlTZpFNLzf9O%2BS9uMgFbYm54X%2FDCRngPdNGrJDG4BtOl7qXRZjlW%2F"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 7916dcc30ffd0b39-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
finanzberatung-herrmann.de/wp-content/plugins/complianz-gdpr/assets/css/cookieblocker.min.css?ver=6.4.0
200 OK 728 B URL HTTP/1.1 finanzberatung-herrmann.de/wp-content/plugins/complianz-gdpr/assets/css/cookieblocker.min.css?ver=6.4.0
IP
ASN #20773 Host Europe GmbH
File type ASCII text, with very long lines (2853), with no line terminators
Hash 8ee09fcb4be306ac9dc87dfffcd09e1e
c2edd2eac4aa01295f3d637997b8506f7b30668a
c1b9e7566eea1b8299fff3c2f324cadb929f8905e6e92ab95394a3c1a9fc4ba4
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/complianz-gdpr/assets/css/cookieblocker.min.css?ver=6.4.0 HTTP/1.1
Host: finanzberatung-herrmann.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://finanzberatung-herrmann.de/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 02:43:50 GMT
Server: Apache
Last-Modified: Wed, 18 Jan 2023 17:13:31 GMT
ETag: "b25-5f28cef81a4f0-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PleskLin
Content-Length: 728
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: text/css
finanzberatung-herrmann.de/wp-content/plugins/elementor/assets/lib/font-awesome/css/v4-shims.min.css?ver=1.0
200 OK 4.2 kB URL HTTP/1.1 finanzberatung-herrmann.de/wp-content/plugins/elementor/assets/lib/font-awesome/css/v4-shims.min.css?ver=1.0
IP
ASN #20773 Host Europe GmbH
File type ASCII text, with very long lines (26516)
Hash d74abcef3df71d56667a44693f75c454
be993a7b5c88a550ef0dc19c4841f240e41967f8
8c8fb98c0a68a93f2bcf224fcc1bdaa1095fc1b3f5418f2e2c5fddcfa3dee410
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/v4-shims.min.css?ver=1.0 HTTP/1.1
Host: finanzberatung-herrmann.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://finanzberatung-herrmann.de/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 02:43:50 GMT
Server: Apache
Last-Modified: Sun, 29 Jan 2023 17:13:40 GMT
ETag: "684e-5f36a38544290-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PleskLin
Content-Length: 4229
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
finanzberatung-herrmann.de/wp-content/plugins/addon-elements-for-elementor-page-builder/assets/lib/vegas/vegas.min.css?ver=2.4.0
200 OK 1.2 kB URL HTTP/1.1 finanzberatung-herrmann.de/wp-content/plugins/addon-elements-for-elementor-page-builder/assets/lib/vegas/vegas.min.css?ver=2.4.0
IP
ASN #20773 Host Europe GmbH
File type ASCII text, with very long lines (9460)
Hash c3db6dba0ace574c826f0904bc01560d
f0235abd28174318b88fc6c782e3d0f8b9bc15e9
3daa064c7cc97dc73d9b4b5cdc56db9ee4d9942bc8e4b70ca372432e8859f122
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/addon-elements-for-elementor-page-builder/assets/lib/vegas/vegas.min.css?ver=2.4.0 HTTP/1.1
Host: finanzberatung-herrmann.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://finanzberatung-herrmann.de/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 02:43:50 GMT
Server: Apache
Last-Modified: Wed, 18 Jan 2023 17:13:35 GMT
ETag: "251f-5f28cefc7c666-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PleskLin
Content-Length: 1239
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
finanzberatung-herrmann.de/wp-includes/css/dist/block-library/style.min.css?ver=6.1.1
200 OK 12 kB URL HTTP/1.1 finanzberatung-herrmann.de/wp-includes/css/dist/block-library/style.min.css?ver=6.1.1
IP
ASN #20773 Host Europe GmbH
File type ASCII text, with very long lines (47826)
Hash 8fa87dd23394a22621248ec378d2af59
9305bc637a89b1700d7f56a19a80bd32b0feb2f7
c162f7de24fa2d4e93e0da254ef287ff72f4a3e03f42443265097968351388dc
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/css/dist/block-library/style.min.css?ver=6.1.1 HTTP/1.1
Host: finanzberatung-herrmann.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://finanzberatung-herrmann.de/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 02:43:50 GMT
Server: Apache
Last-Modified: Wed, 16 Nov 2022 05:07:27 GMT
ETag: "172a9-5ed8f72e6f723-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PleskLin
Content-Length: 12518
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
finanzberatung-herrmann.de/wp-content/themes/generatepress/assets/css/all.min.css?ver=3.2.4
200 OK 6.8 kB URL HTTP/1.1 finanzberatung-herrmann.de/wp-content/themes/generatepress/assets/css/all.min.css?ver=3.2.4
IP
ASN #20773 Host Europe GmbH
File type ASCII text, with very long lines (31339), with no line terminators
Hash 3afcd07bb11e82883abb6d7964b802f6
294b780429a85f9c85529b5d100fd9e8e4945332
897bb6efc89f95cbaec2ad454622d379897eed665f35ec82d0597e911ed7ee82
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/generatepress/assets/css/all.min.css?ver=3.2.4 HTTP/1.1
Host: finanzberatung-herrmann.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://finanzberatung-herrmann.de/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 02:43:50 GMT
Server: Apache
Last-Modified: Wed, 23 Nov 2022 05:14:08 GMT
ETag: "7a6b-5ee1c5bb54f9b-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PleskLin
Content-Length: 6803
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: text/css
finanzberatung-herrmann.de/wp-content/plugins/addon-elements-for-elementor-page-builder/assets/css/eae.min.css?ver=1.12
200 OK 18 kB URL HTTP/1.1 finanzberatung-herrmann.de/wp-content/plugins/addon-elements-for-elementor-page-builder/assets/css/eae.min.css?ver=1.12
IP
ASN #20773 Host Europe GmbH
File type ASCII text, with very long lines (65536), with no line terminators
Hash 2a5c5ae0ab98e21cfea35c9387637384
8e6e7523b3670565d017e198177aea6236880ce1
aba6c8cae4b7bcc360826bd92189a7d696065f8efcaf7fef10d0c5ab77dbbc11
GET /wp-content/plugins/addon-elements-for-elementor-page-builder/assets/css/eae.min.css?ver=1.12 HTTP/1.1
Host: finanzberatung-herrmann.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://finanzberatung-herrmann.de/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 02:43:50 GMT
Server: Apache
Last-Modified: Wed, 18 Jan 2023 17:13:35 GMT
ETag: "1d707-5f28cefc7ab0e-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PleskLin
Content-Length: 17583
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
finanzberatung-herrmann.de/wp-content/plugins/elementor/assets/lib/font-awesome/css/all.min.css?ver=4.9.47
200 OK 13 kB URL HTTP/1.1 finanzberatung-herrmann.de/wp-content/plugins/elementor/assets/lib/font-awesome/css/all.min.css?ver=4.9.47
IP
ASN #20773 Host Europe GmbH
File type ASCII text, with very long lines (59158)
Hash d7913fc87c4606f82b4ee77a8d47fc2f
62a54acf7535ae53425b44dadfe5fdabf3d8300a
bb05c88bb0b82e2f14f1efb94b4c3511292f74c3bb7cb0b104d300a42a49492f
GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/all.min.css?ver=4.9.47 HTTP/1.1
Host: finanzberatung-herrmann.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://finanzberatung-herrmann.de/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 02:43:50 GMT
Server: Apache
Last-Modified: Sun, 29 Jan 2023 17:13:40 GMT
ETag: "e7d0-5f36a38543ac0-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PleskLin
Content-Length: 12869
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
finanzberatung-herrmann.de/wp-content/themes/generatepress/assets/css/components/font-icons.min.css?ver=3.2.4
200 OK 766 B URL HTTP/1.1 finanzberatung-herrmann.de/wp-content/themes/generatepress/assets/css/components/font-icons.min.css?ver=3.2.4
IP
ASN #20773 Host Europe GmbH
File type ASCII text, with very long lines (2964), with no line terminators
Hash 73dd3ddc0534e21ea406b91fc5737c39
93473b6c1de84ab6dd4e5f4e3d133bef5c081d0f
19b8928653faa0066a056c0a56167d75161d374777cc3a1a4f9a71278a0032f7
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/generatepress/assets/css/components/font-icons.min.css?ver=3.2.4 HTTP/1.1
Host: finanzberatung-herrmann.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://finanzberatung-herrmann.de/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 02:43:50 GMT
Server: Apache
Last-Modified: Wed, 23 Nov 2022 05:14:08 GMT
ETag: "b94-5ee1c5bb54f9b-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PleskLin
Content-Length: 766
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
finanzberatung-herrmann.de/wp-content/plugins/elementor/assets/css/frontend-legacy.min.css?ver=3.10.2
200 OK 708 B URL HTTP/1.1 finanzberatung-herrmann.de/wp-content/plugins/elementor/assets/css/frontend-legacy.min.css?ver=3.10.2
IP
ASN #20773 Host Europe GmbH
File type ASCII text, with very long lines (9895)
Hash 2992bfb653bd01eb2e35c81bb220dbbe
e4ea0f3425957730999709384760dd1ec4d342d7
cf1345cbd91e0d76467b567f1eb80507c4d20e0f58e1f196c703735d81f9ae0e
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/css/frontend-legacy.min.css?ver=3.10.2 HTTP/1.1
Host: finanzberatung-herrmann.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://finanzberatung-herrmann.de/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 02:43:50 GMT
Server: Apache
Last-Modified: Sun, 29 Jan 2023 17:13:40 GMT
ETag: "26cf-5f36a3852b036-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PleskLin
Content-Length: 708
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
finanzberatung-herrmann.de/wp-content/plugins/essential-addons-for-elementor-lite/assets/front-end/css/view/general.min.css?ver=5.5.3
200 OK 842 B URL HTTP/1.1 finanzberatung-herrmann.de/wp-content/plugins/essential-addons-for-elementor-lite/assets/front-end/css/view/general.min.css?ver=5.5.3
IP
ASN #20773 Host Europe GmbH
File type ASCII text, with very long lines (3508)
Hash 73a98ce478c4e78da80007fab39aa008
e2b080bb95494eaf6b97f99be08c5afd78a069aa
8ca6ebcc7bebe27208d74a9867d61e2f8db556993d1b65c85ca6f6204ce31237
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/essential-addons-for-elementor-lite/assets/front-end/css/view/general.min.css?ver=5.5.3 HTTP/1.1
Host: finanzberatung-herrmann.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://finanzberatung-herrmann.de/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 02:43:50 GMT
Server: Apache
Last-Modified: Wed, 25 Jan 2023 17:18:31 GMT
ETag: "db5-5f319d246de5b-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PleskLin
Content-Length: 842
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: text/css
finanzberatung-herrmann.de/wp-content/uploads/essential-addons-elementor/eael-13.css?ver=1569944987
200 OK 842 B URL HTTP/1.1 finanzberatung-herrmann.de/wp-content/uploads/essential-addons-elementor/eael-13.css?ver=1569944987
IP
ASN #20773 Host Europe GmbH
File type ASCII text, with very long lines (3508)
Hash 73a98ce478c4e78da80007fab39aa008
e2b080bb95494eaf6b97f99be08c5afd78a069aa
8ca6ebcc7bebe27208d74a9867d61e2f8db556993d1b65c85ca6f6204ce31237
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/essential-addons-elementor/eael-13.css?ver=1569944987 HTTP/1.1
Host: finanzberatung-herrmann.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://finanzberatung-herrmann.de/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 02:43:50 GMT
Server: Apache
Last-Modified: Wed, 25 Jan 2023 17:27:11 GMT
ETag: "db5-5f319f146c2fd-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PleskLin
Content-Length: 842
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
finanzberatung-herrmann.de/wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.17.0
200 OK 4.0 kB URL HTTP/1.1 finanzberatung-herrmann.de/wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.17.0
IP
ASN #20773 Host Europe GmbH
File type ASCII text, with very long lines (19277)
Hash 230e09f67bfa4d1aafa3dd4c11b31208
4b99187a987550cd81afbf04ac0006c7846e2bf7
7d25e10ce9e0857411a8d53463ea6a30af967cd2832a39c34a5f3cacc0a5c38d
GET /wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.17.0 HTTP/1.1
Host: finanzberatung-herrmann.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://finanzberatung-herrmann.de/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 02:43:50 GMT
Server: Apache
Last-Modified: Sun, 29 Jan 2023 17:13:40 GMT
ETag: "4b7b-5f36a385469a0-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PleskLin
Content-Length: 3969
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
finanzberatung-herrmann.de/wp-content/uploads/elementor/css/post-187.css?ver=1648472085
200 OK 410 B URL HTTP/1.1 finanzberatung-herrmann.de/wp-content/uploads/elementor/css/post-187.css?ver=1648472085
IP
ASN #20773 Host Europe GmbH
File type ASCII text, with very long lines (1249), with no line terminators
Hash 27543e99d74cd5e39fb5c993ed01a746
1a9a14e2806d99690136a26c223bc71f37ed7de6
558830fe7d023c6482ebc0e9c6cf6e6582e0cbdc739ced8d60b8a2080f5f6983
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/elementor/css/post-187.css?ver=1648472085 HTTP/1.1
Host: finanzberatung-herrmann.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://finanzberatung-herrmann.de/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 02:43:50 GMT
Server: Apache
Last-Modified: Mon, 28 Mar 2022 12:54:45 GMT
ETag: "4e1-5db46d10ecaa8-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PleskLin
Content-Length: 410
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css
finanzberatung-herrmann.de/wp-content/plugins/elementor/assets/css/frontend.min.css?ver=3.10.2
200 OK 20 kB URL HTTP/1.1 finanzberatung-herrmann.de/wp-content/plugins/elementor/assets/css/frontend.min.css?ver=3.10.2
IP
ASN #20773 Host Europe GmbH
File type ASCII text, with very long lines (65496)
Hash 393a24f203c0baba1149ec8c98c71c5a
d421380261d797f6feca1a04509ec62719bd71cd
a6152bd83ca83bb84d4de414f6678d4215ec3baa09e89fb625937018bd9304f5
GET /wp-content/plugins/elementor/assets/css/frontend.min.css?ver=3.10.2 HTTP/1.1
Host: finanzberatung-herrmann.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://finanzberatung-herrmann.de/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 02:43:50 GMT
Server: Apache
Last-Modified: Sun, 29 Jan 2023 17:13:40 GMT
ETag: "23dbd-5f36a3852a096-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PleskLin
Content-Length: 19457
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
finanzberatung-herrmann.de/wp-content/plugins/elementor-extras/assets/lib/nicons/css/nicons.css?ver=2.2.51
200 OK 1.3 kB URL HTTP/1.1 finanzberatung-herrmann.de/wp-content/plugins/elementor-extras/assets/lib/nicons/css/nicons.css?ver=2.2.51
IP
ASN #20773 Host Europe GmbH
Hash a63b8d085e6f0b551b44deb75f5b57c8
26aeacf3d5799da7ff92698de64e658f09e830a2
9e205d074c92f86e85d995a1982ce9c98b8ec9d8446f4fd647960c2ab4c2474e
GET /wp-content/plugins/elementor-extras/assets/lib/nicons/css/nicons.css?ver=2.2.51 HTTP/1.1
Host: finanzberatung-herrmann.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://finanzberatung-herrmann.de/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 02:43:50 GMT
Server: Apache
Last-Modified: Thu, 07 Oct 2021 17:54:47 GMT
ETag: "175f-5cdc6f56059cf-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PleskLin
Content-Length: 1278
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css
finanzberatung-herrmann.de/wp-content/uploads/elementor/css/post-13.css?ver=1648472085
200 OK 955 B URL HTTP/1.1 finanzberatung-herrmann.de/wp-content/uploads/elementor/css/post-13.css?ver=1648472085
IP
ASN #20773 Host Europe GmbH
File type ASCII text, with very long lines (6669), with no line terminators
Hash 55d06297e97a6fb8a36fdf6fdeef7a9b
e57654df5bb2192f8d735d5295c0413d5946763e
918265bd1c60b3ecc412a86922fa54c68f854e0bca0c2c9cce986e6bd1594a00
GET /wp-content/uploads/elementor/css/post-13.css?ver=1648472085 HTTP/1.1
Host: finanzberatung-herrmann.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://finanzberatung-herrmann.de/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 02:43:50 GMT
Server: Apache
Last-Modified: Mon, 28 Mar 2022 12:54:45 GMT
ETag: "1a0d-5db46d115c7ba-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PleskLin
Content-Length: 955
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: text/css
finanzberatung-herrmann.de/wp-content/plugins/elementor-pro/assets/css/frontend.min.css?ver=3.0.5
200 OK 23 kB URL HTTP/1.1 finanzberatung-herrmann.de/wp-content/plugins/elementor-pro/assets/css/frontend.min.css?ver=3.0.5
IP
ASN #20773 Host Europe GmbH
File type ASCII text, with very long lines (65493)
Hash 23572c8d817328c245b1fd310cb76199
5c1833774e61845948618ad3c23717a88f631971
986ff71bfde47f936331ba9830cac020e064d5b491893d9661453a1a19724671
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor-pro/assets/css/frontend.min.css?ver=3.0.5 HTTP/1.1
Host: finanzberatung-herrmann.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://finanzberatung-herrmann.de/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 02:43:50 GMT
Server: Apache
Last-Modified: Wed, 21 Oct 2020 07:25:15 GMT
ETag: "33f4d-5b2293fa9f48a-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PleskLin
Content-Length: 23083
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css
finanzberatung-herrmann.de/wp-content/uploads/elementor/css/post-77.css?ver=1648472085
200 OK 1.2 kB URL HTTP/1.1 finanzberatung-herrmann.de/wp-content/uploads/elementor/css/post-77.css?ver=1648472085
IP
ASN #20773 Host Europe GmbH
File type ASCII text, with very long lines (4749)
Hash bb037fd42f651ae3330dfc4ca4ca6b20
646ec55d54bee3e670c182624a219a74acb1a4a5
de514be827826c83b7bb657ef3e9754d03a97a17335e0a12dd1c912ce351426e
GET /wp-content/uploads/elementor/css/post-77.css?ver=1648472085 HTTP/1.1
Host: finanzberatung-herrmann.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://finanzberatung-herrmann.de/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 02:43:51 GMT
Server: Apache
Last-Modified: Mon, 28 Mar 2022 12:54:45 GMT
ETag: "24bb-5db46d116e4e2-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PleskLin
Content-Length: 1161
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css
finanzberatung-herrmann.de/wp-content/uploads/elementor/css/post-54.css?ver=1648472085
200 OK 1.0 kB URL HTTP/1.1 finanzberatung-herrmann.de/wp-content/uploads/elementor/css/post-54.css?ver=1648472085
IP
ASN #20773 Host Europe GmbH
File type ASCII text, with very long lines (8128), with no line terminators
Hash b308b6a5a0e1e8f8887da759e3a7b9d3
e0972c86474a81df0a4d5501abd09bfb0fb7c2ff
ecc5e10b82bac6aba5a1ae7e9930df932cbbab49c313c2ccbc43d289786d913b
GET /wp-content/uploads/elementor/css/post-54.css?ver=1648472085 HTTP/1.1
Host: finanzberatung-herrmann.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://finanzberatung-herrmann.de/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 02:43:51 GMT
Server: Apache
Last-Modified: Mon, 28 Mar 2022 12:54:45 GMT
ETag: "1fc0-5db46d118967a-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PleskLin
Content-Length: 1035
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: text/css
finanzberatung-herrmann.de/wp-content/uploads/omgf/google-fonts-1/google-fonts-1.css?ver=1659958472
200 OK 713 B URL HTTP/1.1 finanzberatung-herrmann.de/wp-content/uploads/omgf/google-fonts-1/google-fonts-1.css?ver=1659958472
IP
ASN #20773 Host Europe GmbH
Hash e1ce26ce153bfa85e9805cb232b691be
2991578715dd179ccd78cc81fb9c9d3234ff2c16
31d3fa0e4f8348c56d66ad1cb8ad45336ffe270f926f378c9027dc9bd8425ecb
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/omgf/google-fonts-1/google-fonts-1.css?ver=1659958472 HTTP/1.1
Host: finanzberatung-herrmann.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://finanzberatung-herrmann.de/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 02:43:51 GMT
Server: Apache
Last-Modified: Mon, 08 Aug 2022 11:41:57 GMT
ETag: "42e6-5e5b94d9b4a4a-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PleskLin
Content-Length: 713
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: text/css
finanzberatung-herrmann.de/wp-content/plugins/elementor-extras/assets/css/frontend.min.css?ver=2.2.51
200 OK 25 kB URL HTTP/1.1 finanzberatung-herrmann.de/wp-content/plugins/elementor-extras/assets/css/frontend.min.css?ver=2.2.51
IP
ASN #20773 Host Europe GmbH
File type ASCII text, with very long lines (65536), with no line terminators
Hash 5b4af266d88a77e8b32c96b0111b3e43
17ed7865c6fd383c94e25f24e0f0d593124434d9
f1d555a3c0b35ee370353457235dcd504759c91c72cf30de46076e02b6f55f44
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor-extras/assets/css/frontend.min.css?ver=2.2.51 HTTP/1.1
Host: finanzberatung-herrmann.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://finanzberatung-herrmann.de/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 02:43:50 GMT
Server: Apache
Last-Modified: Thu, 07 Oct 2021 17:54:47 GMT
ETag: "322e9-5cdc6f55f291e-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PleskLin
Content-Length: 24813
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css
finanzberatung-herrmann.de/wp-content/plugins/elementor/assets/lib/font-awesome/css/solid.min.css?ver=5.15.3
200 OK 309 B URL HTTP/1.1 finanzberatung-herrmann.de/wp-content/plugins/elementor/assets/lib/font-awesome/css/solid.min.css?ver=5.15.3
IP
ASN #20773 Host Europe GmbH
File type ASCII text, with very long lines (483)
Hash 0ea43e394ddaae5fdb710dbbc8869e58
3b0c93adc80720236096201db5cc2751e703996d
85225fffa21a94bfd954393d7471069ab227b98fd8b51cb5ab4af5488168a34e
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/solid.min.css?ver=5.15.3 HTTP/1.1
Host: finanzberatung-herrmann.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://finanzberatung-herrmann.de/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 02:43:51 GMT
Server: Apache
Last-Modified: Sun, 29 Jan 2023 17:13:40 GMT
ETag: "29d-5f36a38544e48-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PleskLin
Content-Length: 309
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: text/css
finanzberatung-herrmann.de/wp-content/plugins/elementor/assets/lib/font-awesome/css/regular.min.css?ver=5.15.3
200 OK 308 B URL HTTP/1.1 finanzberatung-herrmann.de/wp-content/plugins/elementor/assets/lib/font-awesome/css/regular.min.css?ver=5.15.3
IP
ASN #20773 Host Europe GmbH
File type ASCII text, with very long lines (491)
Hash 851fd514d412b7e854365f20a4227c8a
08bf47072f70af1816450cc85a5efb3b8f9114d2
a9449e3cc7c003e5ed6b93bae7b0bba3e4f1713c52214f41d3591692a759b9d7
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/regular.min.css?ver=5.15.3 HTTP/1.1
Host: finanzberatung-herrmann.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://finanzberatung-herrmann.de/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 02:43:51 GMT
Server: Apache
Last-Modified: Sun, 29 Jan 2023 17:13:40 GMT
ETag: "2a5-5f36a38544a60-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PleskLin
Content-Length: 308
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: text/css
finanzberatung-herrmann.de/wp-content/plugins/elementor/assets/lib/font-awesome/css/brands.min.css?ver=5.15.3
200 OK 308 B URL HTTP/1.1 finanzberatung-herrmann.de/wp-content/plugins/elementor/assets/lib/font-awesome/css/brands.min.css?ver=5.15.3
IP
ASN #20773 Host Europe GmbH
File type ASCII text, with very long lines (489)
Hash 0a08469d24387f830bbaaa00b3c228ae
01f5dfeb8f93a32c9a8f66fe5940758109771fcd
3c7c29e5fc1193ff7ce24f72f77b2dc129e1a9434a97ef7b625f6f715531803c
GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/brands.min.css?ver=5.15.3 HTTP/1.1
Host: finanzberatung-herrmann.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://finanzberatung-herrmann.de/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 02:43:51 GMT
Server: Apache
Last-Modified: Sun, 29 Jan 2023 17:13:40 GMT
ETag: "2a3-5f36a38544678-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PleskLin
Content-Length: 308
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: text/css
finanzberatung-herrmann.de/wp-content/plugins/elementor/assets/lib/font-awesome/css/fontawesome.min.css?ver=5.15.3
200 OK 13 kB URL HTTP/1.1 finanzberatung-herrmann.de/wp-content/plugins/elementor/assets/lib/font-awesome/css/fontawesome.min.css?ver=5.15.3
IP
ASN #20773 Host Europe GmbH
File type ASCII text, with very long lines (57726)
Hash 991d00cd7cb62d50a29295522d554f1f
e128a5238f141e9c4da1979716108d858340fe03
b8fcb61816168fc6a7ee01bb09fa4378398838dc6e4f49dc411872876355d113
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/fontawesome.min.css?ver=5.15.3 HTTP/1.1
Host: finanzberatung-herrmann.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://finanzberatung-herrmann.de/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 02:43:51 GMT
Server: Apache
Last-Modified: Sun, 29 Jan 2023 17:13:40 GMT
ETag: "e238-5f36a38543ac0-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PleskLin
Content-Length: 12582
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: text/css
finanzberatung-herrmann.de/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
200 OK 4.2 kB URL HTTP/1.1 finanzberatung-herrmann.de/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP
ASN #20773 Host Europe GmbH
File type ASCII text, with very long lines (11126)
Hash 5629711d7fdd5b28441bac39b851299f
4e0bf2b7383097f7c352023a1b1b1b48a50356b6
44c444309c7a6c05ff4a9bc198bed9e9596bedb5658637c85689c9a471dcdd16
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: finanzberatung-herrmann.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://finanzberatung-herrmann.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 02:43:51 GMT
Server: Apache
Last-Modified: Wed, 09 Dec 2020 04:19:18 GMT
ETag: "2bd8-5b6005ceae1b2-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PleskLin
Content-Length: 4169
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript
finanzberatung-herrmann.de/wp-includes/js/wp-emoji-release.min.js?ver=6.1.1
200 OK 5.0 kB URL HTTP/1.1 finanzberatung-herrmann.de/wp-includes/js/wp-emoji-release.min.js?ver=6.1.1
IP
ASN #20773 Host Europe GmbH
File type ASCII text, with very long lines (15660)
Hash e6624e0b978e6ddba476be41aaaa82df
822e920d8233072110ed7c8a7f379e5b13209b18
dac86a9ce08e4d8cded47b4fa900a664b0c997d8910c2a1be54a423678925a41
GET /wp-includes/js/wp-emoji-release.min.js?ver=6.1.1 HTTP/1.1
Host: finanzberatung-herrmann.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://finanzberatung-herrmann.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 02:43:51 GMT
Server: Apache
Last-Modified: Wed, 25 May 2022 05:42:08 GMT
ETag: "48b9-5dfcf88b6afd3-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PleskLin
Content-Length: 5009
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: application/javascript
finanzberatung-herrmann.de/wp-content/plugins/elementor/assets/lib/animations/animations.min.css?ver=3.10.2
200 OK 2.6 kB URL HTTP/1.1 finanzberatung-herrmann.de/wp-content/plugins/elementor/assets/lib/animations/animations.min.css?ver=3.10.2
IP
ASN #20773 Host Europe GmbH
File type ASCII text, with very long lines (10019)
Hash 0ea81c35141c6a4692506e4fe8d36edb
392c5f96995e66d74c27ed5a42f93169c2f32d18
b7488fd21ad73e483cdcaf42097ea7787ffe0616477e29a537f53f6064e321ab
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/lib/animations/animations.min.css?ver=3.10.2 HTTP/1.1
Host: finanzberatung-herrmann.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://finanzberatung-herrmann.de/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 02:43:51 GMT
Server: Apache
Last-Modified: Sun, 29 Jan 2023 17:13:40 GMT
ETag: "4824-5f36a3854ded1-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PleskLin
Content-Length: 2592
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: text/css
finanzberatung-herrmann.de/wp-content/uploads/premium-addons-elementor/pa-frontend-7372d19de.min.js?ver=1675046630
200 OK 276 B URL HTTP/1.1 finanzberatung-herrmann.de/wp-content/uploads/premium-addons-elementor/pa-frontend-7372d19de.min.js?ver=1675046630
IP
ASN #20773 Host Europe GmbH
File type ASCII text, with very long lines (423), with no line terminators
Hash 9a66bb542f0cb894fcb32c433526cfdb
19da353759622fd681591ed31cbc30ae9386362d
33807bd4fd17022f8d9c783550f413c7e042a39ce8ee4aefecfa67eaacaf59dd
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/premium-addons-elementor/pa-frontend-7372d19de.min.js?ver=1675046630 HTTP/1.1
Host: finanzberatung-herrmann.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://finanzberatung-herrmann.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 02:43:51 GMT
Server: Apache
Last-Modified: Thu, 10 Mar 2022 06:22:08 GMT
ETag: "1a7-5d9d73bccb7eb-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PleskLin
Content-Length: 276
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript
finanzberatung-herrmann.de/wp-content/plugins/addon-elements-for-elementor-page-builder/assets/js/eae.min.js?ver=1.12
200 OK 10 kB URL HTTP/1.1 finanzberatung-herrmann.de/wp-content/plugins/addon-elements-for-elementor-page-builder/assets/js/eae.min.js?ver=1.12
IP
ASN #20773 Host Europe GmbH
File type ASCII text, with very long lines (51943), with no line terminators
Hash d8176b08b3757b578702180697688958
606266baec45feee8cc8047ed6e26dea443d4398
d0e6d61f275372d44859d5f841268fa1b9eff4d43a05460b0f8694ba0289af8a
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/addon-elements-for-elementor-page-builder/assets/js/eae.min.js?ver=1.12 HTTP/1.1
Host: finanzberatung-herrmann.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://finanzberatung-herrmann.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 02:43:51 GMT
Server: Apache
Last-Modified: Wed, 18 Jan 2023 17:13:35 GMT
ETag: "cae7-5f28cefc787e6-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PleskLin
Content-Length: 10441
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: application/javascript
finanzberatung-herrmann.de/wp-content/plugins/elementor/assets/lib/font-awesome/js/v4-shims.min.js?ver=1.0
200 OK 4.2 kB URL HTTP/1.1 finanzberatung-herrmann.de/wp-content/plugins/elementor/assets/lib/font-awesome/js/v4-shims.min.js?ver=1.0
IP
ASN #20773 Host Europe GmbH
File type ASCII text, with very long lines (14869)
Hash 1fcdd9935a66511c3b8069495af248e3
b0e375ac95b547b3bb6ce74cd1bcc505ffc2281d
4a741209fc122872cb5ae018a5870d70848a616fa98eb4289ad78cec986ec282
GET /wp-content/plugins/elementor/assets/lib/font-awesome/js/v4-shims.min.js?ver=1.0 HTTP/1.1
Host: finanzberatung-herrmann.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://finanzberatung-herrmann.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 02:43:51 GMT
Server: Apache
Last-Modified: Sun, 29 Jan 2023 17:13:40 GMT
ETag: "3acf-5f36a3853d917-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PleskLin
Content-Length: 4205
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: application/javascript
finanzberatung-herrmann.de/wp-content/plugins/ultimate-elementor/assets/min-css/uael-frontend.min.css?ver=1.36.14
200 OK 68 kB URL HTTP/1.1 finanzberatung-herrmann.de/wp-content/plugins/ultimate-elementor/assets/min-css/uael-frontend.min.css?ver=1.36.14
IP
ASN #20773 Host Europe GmbH
File type ASCII text, with very long lines (65536), with no line terminators
Hash 79241222f5995d2c272224d963650541
f520e84d266ca1eb7ad3a6b5c9dc8d7a0c290d0b
4e7a290585f88f715080505b88c110987dcd4dfd259e192fe054b7eb284f8692
GET /wp-content/plugins/ultimate-elementor/assets/min-css/uael-frontend.min.css?ver=1.36.14 HTTP/1.1
Host: finanzberatung-herrmann.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://finanzberatung-herrmann.de/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 02:43:50 GMT
Server: Apache
Last-Modified: Wed, 04 Jan 2023 05:15:03 GMT
ETag: "99b9a-5f1694456b96a-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PleskLin
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/css
finanzberatung-herrmann.de/wp-content/plugins/addon-elements-for-elementor-page-builder/assets/lib/magnific.min.js?ver=1.1.0
200 OK 7.2 kB URL HTTP/1.1 finanzberatung-herrmann.de/wp-content/plugins/addon-elements-for-elementor-page-builder/assets/lib/magnific.min.js?ver=1.1.0
IP
ASN #20773 Host Europe GmbH
File type ASCII text, with very long lines (19887), with no line terminators
Hash b57c91f68a98438f6dd9e4f129af6f6c
4819bc29c43c891cc55bce5567a02b44a92ad135
caa1af81f905b637b6406f19a3095f8ccbfac32b5d1b8c4ae5135b76188607df
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/addon-elements-for-elementor-page-builder/assets/lib/magnific.min.js?ver=1.1.0 HTTP/1.1
Host: finanzberatung-herrmann.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://finanzberatung-herrmann.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 02:43:51 GMT
Server: Apache
Last-Modified: Wed, 18 Jan 2023 17:13:35 GMT
ETag: "4daf-5f28cefc7baae-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PleskLin
Content-Length: 7212
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: application/javascript
finanzberatung-herrmann.de/wp-content/plugins/addon-elements-for-elementor-page-builder/assets/lib/vegas/vegas.min.js?ver=2.4.0
200 OK 3.1 kB URL HTTP/1.1 finanzberatung-herrmann.de/wp-content/plugins/addon-elements-for-elementor-page-builder/assets/lib/vegas/vegas.min.js?ver=2.4.0
IP
ASN #20773 Host Europe GmbH
File type ASCII text, with very long lines (9875)
Hash e293569b1c68cb9c6df61328f66e4f49
2411958f91fb918cc1b63bd1f549e00b066f1810
0a62f45c3df8559c64dfa9ea1e6b4cbaf323875942e65fab152d47abac7d200d
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/addon-elements-for-elementor-page-builder/assets/lib/vegas/vegas.min.js?ver=2.4.0 HTTP/1.1
Host: finanzberatung-herrmann.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://finanzberatung-herrmann.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 02:43:51 GMT
Server: Apache
Last-Modified: Wed, 18 Jan 2023 17:13:35 GMT
ETag: "26ba-5f28cefc7c666-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PleskLin
Content-Length: 3117
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: application/javascript
finanzberatung-herrmann.de/wp-content/plugins/addon-elements-for-elementor-page-builder/assets/js/animated-main.min.js?ver=1.0
200 OK 721 B URL HTTP/1.1 finanzberatung-herrmann.de/wp-content/plugins/addon-elements-for-elementor-page-builder/assets/js/animated-main.min.js?ver=1.0
IP
ASN #20773 Host Europe GmbH
File type ASCII text, with very long lines (2267), with no line terminators
Hash f2b9a7760e7fc9049dd1bcbc736c1c13
673c57ffcfcf01e3858768fc18c9d858e3ec5940
02443a88158daa5cce079e6c3489326660efb83882c7a538e320ac2ff709a5a9
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/addon-elements-for-elementor-page-builder/assets/js/animated-main.min.js?ver=1.0 HTTP/1.1
Host: finanzberatung-herrmann.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://finanzberatung-herrmann.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 02:43:51 GMT
Server: Apache
Last-Modified: Wed, 18 Jan 2023 17:13:35 GMT
ETag: "8db-5f28cefc787e6-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PleskLin
Content-Length: 721
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: application/javascript
finanzberatung-herrmann.de/wp-includes/js/jquery/jquery.min.js?ver=3.6.1
200 OK 31 kB URL HTTP/1.1 finanzberatung-herrmann.de/wp-includes/js/jquery/jquery.min.js?ver=3.6.1
IP
ASN #20773 Host Europe GmbH
File type ASCII text, with very long lines (65447)
Hash 1b5264c989379b828aff60f65a518a24
98641237f14ccb33ac114f54329a33bd0aa17eb7
6c8e7b78c6dbc13426810c905572db7589cf3e00264e30ce797fddb0b1092237
GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.1 HTTP/1.1
Host: finanzberatung-herrmann.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://finanzberatung-herrmann.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 02:43:51 GMT
Server: Apache
Last-Modified: Wed, 02 Nov 2022 05:12:24 GMT
ETag: "15e54-5ec75e2d59c74-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PleskLin
Content-Length: 30995
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript
finanzberatung-herrmann.de/wp-content/plugins/addon-elements-for-elementor-page-builder/assets/js/particles.min.js?ver=2.0.0
200 OK 5.7 kB URL HTTP/1.1 finanzberatung-herrmann.de/wp-content/plugins/addon-elements-for-elementor-page-builder/assets/js/particles.min.js?ver=2.0.0
IP
ASN #20773 Host Europe GmbH
File type ASCII text, with very long lines (22712), with no line terminators
Hash b09ab2c3d1a8d9c1f248710fb981d63d
9479c3833c215c4979c83083e792ea6c1bf5f3e1
63cb427919e3d2291e9ba2e280eecff78f93e228d29448a598e7eeb75b91baf1
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/addon-elements-for-elementor-page-builder/assets/js/particles.min.js?ver=2.0.0 HTTP/1.1
Host: finanzberatung-herrmann.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://finanzberatung-herrmann.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 02:43:51 GMT
Server: Apache
Last-Modified: Wed, 18 Jan 2023 17:13:35 GMT
ETag: "58b8-5f28cefc7939e-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PleskLin
Content-Length: 5726
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: application/javascript
finanzberatung-herrmann.de/wp-content/uploads/essential-addons-elementor/eael-13.js?ver=1569944987
200 OK 0 B URL HTTP/1.1 finanzberatung-herrmann.de/wp-content/uploads/essential-addons-elementor/eael-13.js?ver=1569944987
IP
ASN #20773 Host Europe GmbH
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /wp-content/uploads/essential-addons-elementor/eael-13.js?ver=1569944987 HTTP/1.1
Host: finanzberatung-herrmann.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://finanzberatung-herrmann.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 02:43:51 GMT
Server: Apache
Last-Modified: Wed, 25 Jan 2023 17:27:11 GMT
ETag: "0-5f319f146c6e6"
Accept-Ranges: bytes
Content-Length: 0
X-Powered-By: PleskLin
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: application/javascript
finanzberatung-herrmann.de/wp-content/plugins/complianz-gdpr/cookiebanner/js/complianz.min.js?ver=6.4.0
200 OK 10 kB URL HTTP/1.1 finanzberatung-herrmann.de/wp-content/plugins/complianz-gdpr/cookiebanner/js/complianz.min.js?ver=6.4.0
IP
ASN #20773 Host Europe GmbH
File type ASCII text, with very long lines (38801), with no line terminators
Hash 5a1e4c19b17c87c100406a16247a9547
ee599ae636e3b6b6c41acac5ac687885eb3f2fd5
5cbfaa3fdd42c449dd8e79daafabefbacfd65550f53a744ae352809699adcfc4
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/complianz-gdpr/cookiebanner/js/complianz.min.js?ver=6.4.0 HTTP/1.1
Host: finanzberatung-herrmann.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://finanzberatung-herrmann.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 02:43:51 GMT
Server: Apache
Last-Modified: Wed, 18 Jan 2023 17:13:31 GMT
ETag: "9791-5f28cef8c4b8e-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PleskLin
Content-Length: 10219
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: application/javascript
finanzberatung-herrmann.de/wp-content/plugins/elementor-pro/assets/lib/smartmenus/jquery.smartmenus.min.js?ver=1.0.1
200 OK 7.2 kB URL HTTP/1.1 finanzberatung-herrmann.de/wp-content/plugins/elementor-pro/assets/lib/smartmenus/jquery.smartmenus.min.js?ver=1.0.1
IP
ASN #20773 Host Europe GmbH
File type ASCII text, with very long lines (25115)
Hash de752486ae6f3549ee513c4f7bd89b1c
7e415888c930d6952efce6ae601c37427ac2345e
d74a2945742950cd22705aa87f266a7eccc3a7949861da7e04cab475765206d1
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor-pro/assets/lib/smartmenus/jquery.smartmenus.min.js?ver=1.0.1 HTTP/1.1
Host: finanzberatung-herrmann.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://finanzberatung-herrmann.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 02:43:51 GMT
Server: Apache
Last-Modified: Wed, 21 Oct 2020 07:25:15 GMT
ETag: "6272-5b2293faab00a-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PleskLin
Content-Length: 7157
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: application/javascript
finanzberatung-herrmann.de/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2
200 OK 3.0 kB URL HTTP/1.1 finanzberatung-herrmann.de/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2
IP
ASN #20773 Host Europe GmbH
File type ASCII text, with very long lines (12198), with no line terminators
Hash cfea3c51880820f2962a7773fbc864f9
45aa7ddc9b0c4201097d0df36791ab346470b734
12296ac9ef200103f8eea198a2bcd92692119dacece39538499758a0349035fb
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2 HTTP/1.1
Host: finanzberatung-herrmann.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://finanzberatung-herrmann.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 02:43:51 GMT
Server: Apache
Last-Modified: Sun, 29 Jan 2023 17:13:40 GMT
ETag: "2fa6-5f36a3854f259-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PleskLin
Content-Length: 2993
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript
finanzberatung-herrmann.de/wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.10.2
200 OK 2.2 kB URL HTTP/1.1 finanzberatung-herrmann.de/wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.10.2
IP
ASN #20773 Host Europe GmbH
File type ASCII text, with very long lines (4974)
Hash 5ce1819586bbd80a2c3300f270ae464a
961eb4d86708259a61699a3087d32086dbe6b8ce
4af994b1e661a51fca59e359f33a3754f98ffc69c07ca09e4333cfa20ee37dc8
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.10.2 HTTP/1.1
Host: finanzberatung-herrmann.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://finanzberatung-herrmann.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 02:43:51 GMT
Server: Apache
Last-Modified: Sun, 29 Jan 2023 17:13:40 GMT
ETag: "1396-5f36a3851c9bd-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PleskLin
Content-Length: 2225
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: application/javascript
finanzberatung-herrmann.de/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.10.2
200 OK 11 kB URL HTTP/1.1 finanzberatung-herrmann.de/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.10.2
IP
ASN #20773 Host Europe GmbH
File type Unicode text, UTF-8 text, with very long lines (35829)
Hash 774e863ff9414749b2a825dcc9ac92a9
e6bd6b873098e767ed01cc3c446154e2b792d459
ba1e351de36a286c54f1ee1c202be3498a8a90079f0c5cc5954dc36fa9f8535d
GET /wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.10.2 HTTP/1.1
Host: finanzberatung-herrmann.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://finanzberatung-herrmann.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 02:43:51 GMT
Server: Apache
Last-Modified: Sun, 29 Jan 2023 17:13:40 GMT
ETag: "8c1e-5f36a3851a695-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PleskLin
Content-Length: 11399
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: application/javascript
finanzberatung-herrmann.de/wp-content/plugins/elementor-pro/assets/lib/sticky/jquery.sticky.min.js?ver=3.0.5
200 OK 1.9 kB URL HTTP/1.1 finanzberatung-herrmann.de/wp-content/plugins/elementor-pro/assets/lib/sticky/jquery.sticky.min.js?ver=3.0.5
IP
ASN #20773 Host Europe GmbH
File type ASCII text, with very long lines (6595), with no line terminators
Hash c8ebb5b680f4fa05c2502a56875e03f7
96542e309834bb6dfddaf3d1efce6d75ceff5e18
76a0021ccb778baeadd50f182e2c4055a36527e1fc70341f82136a2e60eeb442
GET /wp-content/plugins/elementor-pro/assets/lib/sticky/jquery.sticky.min.js?ver=3.0.5 HTTP/1.1
Host: finanzberatung-herrmann.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://finanzberatung-herrmann.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 02:43:51 GMT
Server: Apache
Last-Modified: Wed, 21 Oct 2020 07:25:15 GMT
ETag: "19c3-5b2293faabfaa-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PleskLin
Content-Length: 1895
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: application/javascript
finanzberatung-herrmann.de/wp-includes/js/jquery/ui/core.min.js?ver=1.13.2
200 OK 7.1 kB URL HTTP/1.1 finanzberatung-herrmann.de/wp-includes/js/jquery/ui/core.min.js?ver=1.13.2
IP
ASN #20773 Host Europe GmbH
File type Unicode text, UTF-8 text, with very long lines (8189)
Hash fc922a895f5f92269c928556b67564f6
8759e1f16a826dd6dd73f4161a65a79a049c4d6f
d7445c88608e9da487d81ef5167866c42ff1099b5f48efda4b5f5ac41aa7d9b8
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/ui/core.min.js?ver=1.13.2 HTTP/1.1
Host: finanzberatung-herrmann.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://finanzberatung-herrmann.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 02:43:51 GMT
Server: Apache
Last-Modified: Wed, 02 Nov 2022 05:12:24 GMT
ETag: "53c0-5ec75e2d58cd4-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PleskLin
Content-Length: 7097
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: application/javascript
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash f2a0c2c0f25bdd19baf87cbb3a87dcdb
bc78ca6206ee8cc1cc05ab7778df71c7e6d1182a
c57f26c0c2e439dc2f69181e1b2f6ae371bff9d299af739e0047eabc8bfb5a69
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C57F26C0C2E439DC2F69181E1B2F6AE371BFF9D299AF739E0047EABC8BFB5A69"
Last-Modified: Fri, 27 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11543
Expires: Mon, 30 Jan 2023 05:56:14 GMT
Date: Mon, 30 Jan 2023 02:43:51 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F57d55e9c-b793-48b6-9641-536d9d4b8a49.jpeg
200 OK 9.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F57d55e9c-b793-48b6-9641-536d9d4b8a49.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 7ce4f845d4cdd467b4c82d8fbeb9ae0b
68257cdadb6e13a8f7f5e2354aca225286107a79
243b58df1616fd8b78c11302dbf90c97ecb6a3b289abe5f3439252cdbf304892
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F57d55e9c-b793-48b6-9641-536d9d4b8a49.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 9150
x-amzn-requestid: 2b8949c8-5c97-49f5-8784-85daa42adff1
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fhj4NF1moAMFQ9A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d6e69a-2ab06022306835b013c1e46f;Sampled=0
x-amzn-remapped-date: Sun, 29 Jan 2023 21:35:22 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: rhWnoHh5bILzb5MAI88JvXr6MGkRKHOT5L10I8VJkjjfN-Iuupva2Q==
via: 1.1 0aebf3fe433ff96e68d785fad4ea4c0e.cloudfront.net (CloudFront), 1.1 1a53057db389e96b4ef1bfbc925dde1c.cloudfront.net (CloudFront), 1.1 google
date: Sun, 29 Jan 2023 22:19:22 GMT
age: 15869
etag: "68257cdadb6e13a8f7f5e2354aca225286107a79"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3bb7921c-8aaf-40cd-bf87-43903c3f1a74.jpeg
200 OK 7.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3bb7921c-8aaf-40cd-bf87-43903c3f1a74.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 3e04b9eaf7449828136ad59e4c9d69f1
b820be4ed885dcf288eb6460c57e1fa7b1c7c476
df75cf7183d401a19655aab025d08ad2c498573c88b32e9b258d951d2993b936
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3bb7921c-8aaf-40cd-bf87-43903c3f1a74.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 7679
x-amzn-requestid: 0c7983d5-6040-44e9-b394-21c3784702a2
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fhkEtEfHoAMFaNA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d6e6ea-54c55dbd09ca642048af8916;Sampled=0
x-amzn-remapped-date: Sun, 29 Jan 2023 21:36:42 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: VHh2SQ21xoDoBnGvM2kRiposhXuCE-DdWW1bM35kEykjbHYmhsldVA==
via: 1.1 26ca01ec7377e425b59b6a08cb1ec342.cloudfront.net (CloudFront), 1.1 82ea95080f526df99896343fb7269b06.cloudfront.net (CloudFront), 1.1 google
date: Sun, 29 Jan 2023 21:51:22 GMT
age: 17549
etag: "b820be4ed885dcf288eb6460c57e1fa7b1c7c476"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffbe179e9-ed5b-474f-b131-5b5a63a84dfb.jpeg
200 OK 8.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffbe179e9-ed5b-474f-b131-5b5a63a84dfb.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 2ffefd279ef73e586048a7907c0425b8
53d3da3cdf647e619abe96c6af42f2374112f334
75d7034fd709cb69e15234a4de94cdd9b42de1e26e3a0b2cb107be3228575af2
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffbe179e9-ed5b-474f-b131-5b5a63a84dfb.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 8414
x-amzn-requestid: 3ca84a59-6dce-45f8-919e-bd551d553a99
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fhj5EGvAIAMFtPA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d6e6a0-446d1dff705f17853e7d0a77;Sampled=0
x-amzn-remapped-date: Sun, 29 Jan 2023 21:35:28 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: hUnafsPNiSpfZcu0hzwVC3VOHbVjqwIHo2vuJuZUKT1Lj93l9NkVrQ==
via: 1.1 eece508272520f70691e4eebdc5a6dea.cloudfront.net (CloudFront), 1.1 3cd7af07832481c336aa1c93c9b4a6fe.cloudfront.net (CloudFront), 1.1 google
date: Sun, 29 Jan 2023 21:51:22 GMT
age: 17549
etag: "53d3da3cdf647e619abe96c6af42f2374112f334"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd9a423a9-16ee-4e3f-b9b4-34f6a469aba9.jpeg
200 OK 9.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd9a423a9-16ee-4e3f-b9b4-34f6a469aba9.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 3be81f83687ddb6c93d3ff3c09a9dba2
50a48e737310d3f31840db4301b25927fbcc12c5
e78c909e2381898e7f546183784a05dff47c31734c95358aaada8c2777ad47be
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd9a423a9-16ee-4e3f-b9b4-34f6a469aba9.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 9167
x-amzn-requestid: e6e0789c-a4a9-4ffa-a0ae-691770d1035b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fPF9YEBmIAMF0kQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63cf8388-01d2093432d3959903671a69;Sampled=0
x-amzn-remapped-date: Tue, 24 Jan 2023 07:06:48 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: awfNeaKbFw2bjiTGwUrwUTxU-qbVS2eTjn948H8kn1hy7pi_DwLMlQ==
via: 1.1 01c28b52813cd0e82f810c492808b142.cloudfront.net (CloudFront), 1.1 b2f9564ebf9c745cc2ceae96d434977e.cloudfront.net (CloudFront), 1.1 google
date: Sun, 29 Jan 2023 17:35:56 GMT
age: 32875
etag: "50a48e737310d3f31840db4301b25927fbcc12c5"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
finanzberatung-herrmann.de/wp-content/plugins/elementor/assets/lib/dialog/dialog.min.js?ver=4.9.0
200 OK 3.4 kB URL HTTP/1.1 finanzberatung-herrmann.de/wp-content/plugins/elementor/assets/lib/dialog/dialog.min.js?ver=4.9.0
IP
ASN #20773 Host Europe GmbH
File type ASCII text, with very long lines (10544)
Hash 88f71137b2a89a53df46cdb4deeb4e3d
426e12f0e8712db20afd2c54e77e1384074f3181
591a8b7a859de8af878c56e1ec72384596285f768387e9958f0a0afe53d89428
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/lib/dialog/dialog.min.js?ver=4.9.0 HTTP/1.1
Host: finanzberatung-herrmann.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://finanzberatung-herrmann.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 02:43:51 GMT
Server: Apache
Last-Modified: Sun, 29 Jan 2023 17:13:40 GMT
ETag: "29ba-5f36a3854c378-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PleskLin
Content-Length: 3446
Keep-Alive: timeout=5, max=90
Connection: Keep-Alive
Content-Type: application/javascript
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F80079413-a219-4943-96b4-3e14e10bb5ba.jpeg
200 OK 7.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F80079413-a219-4943-96b4-3e14e10bb5ba.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 36ff8d0c9899da25e80edbb858b164de
3e2491c5465f3c427a11c32bdfee27767559bb3f
b060501c6d82e97bd4826a62b790d58cd9d7ece8e1590267bc9b48033f3ce9b1
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F80079413-a219-4943-96b4-3e14e10bb5ba.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 7223
x-amzn-requestid: b05a1db9-29e2-42d0-9eca-9a0f462c87c3
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fhj3IHtpIAMFUkw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d6e693-7e13d93143b5e666313a4b8f;Sampled=0
x-amzn-remapped-date: Sun, 29 Jan 2023 21:35:15 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: plMEbbqV1vxLnOthRyrgLOOwdxH-aFHCP98axvP0RORnE4gtbEkZyg==
via: 1.1 efe54e8b68e074d39b2ecd249f85100a.cloudfront.net (CloudFront), 1.1 6a9b42e38e76b7d4a4044ebe0e0eca08.cloudfront.net (CloudFront), 1.1 google
date: Sun, 29 Jan 2023 22:11:52 GMT
age: 16319
etag: "3e2491c5465f3c427a11c32bdfee27767559bb3f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
finanzberatung-herrmann.de/wp-content/plugins/elementor/assets/lib/share-link/share-link.min.js?ver=3.10.2
200 OK 1.1 kB URL HTTP/1.1 finanzberatung-herrmann.de/wp-content/plugins/elementor/assets/lib/share-link/share-link.min.js?ver=3.10.2
IP
ASN #20773 Host Europe GmbH
File type ASCII text, with very long lines (2620), with no line terminators
Hash 366a9c35bbef9fea7021f6b1b56cf8d0
18feab78c61c6e8261db364d6681a9633041e837
b1108a264198109bc4e692e30e2dc7c148625fa9a3dce15477fc7618669c7a6f
GET /wp-content/plugins/elementor/assets/lib/share-link/share-link.min.js?ver=3.10.2 HTTP/1.1
Host: finanzberatung-herrmann.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://finanzberatung-herrmann.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 02:43:51 GMT
Server: Apache
Last-Modified: Sun, 29 Jan 2023 17:13:40 GMT
ETag: "a3c-5f36a3854e2b9-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PleskLin
Content-Length: 1139
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: application/javascript
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6df754eb-70f9-4576-ac48-68a6ae719511.jpeg
200 OK 9.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6df754eb-70f9-4576-ac48-68a6ae719511.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 51aa950d5eed7b90cab6632107092edc
e4388ced02e5576867e77547496dec1ac2338ef7
588830e5f725e8e56270565e40f817f2658b0ee7c0425d138e5f65a17ff40483
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6df754eb-70f9-4576-ac48-68a6ae719511.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 9457
x-amzn-requestid: 7c48e5ca-2128-43da-ba83-fd91568af1ef
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fhkBOGHVoAMFQtw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d6e6d4-1b850ffd543f51f92dec3894;Sampled=0
x-amzn-remapped-date: Sun, 29 Jan 2023 21:36:20 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 3EXFa0gb46AbdZ9ZznGiPTemGZ7zWh9WLs5Yr1zmfyh_jyKA6o7xoA==
via: 1.1 0c96ded7ff282d2dbcf47c918b6bb500.cloudfront.net (CloudFront), 1.1 7022a5bbf9872d4a09d63e6cdb457dfe.cloudfront.net (CloudFront), 1.1 google
date: Sun, 29 Jan 2023 22:19:57 GMT
age: 15834
etag: "e4388ced02e5576867e77547496dec1ac2338ef7"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
finanzberatung-herrmann.de/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.10.2
200 OK 12 kB URL HTTP/1.1 finanzberatung-herrmann.de/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.10.2
IP
ASN #20773 Host Europe GmbH
File type ASCII text, with very long lines (40802)
Hash 5032828afd9cd331c5275625ae7303c8
e9a4ead8a19a01900a4d7cc46c09c4dde23d9393
9efc76859fef14545b8e7f4048784097c53e01877a65c82b9e770b24b1b81d56
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.10.2 HTTP/1.1
Host: finanzberatung-herrmann.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://finanzberatung-herrmann.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 02:43:51 GMT
Server: Apache
Last-Modified: Sun, 29 Jan 2023 17:13:40 GMT
ETag: "9f8a-5f36a3851cda5-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PleskLin
Content-Length: 12124
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: application/javascript
finanzberatung-herrmann.de/wp-content/plugins/elementor-pro/assets/js/frontend.min.js?ver=3.0.5
200 OK 42 kB URL HTTP/1.1 finanzberatung-herrmann.de/wp-content/plugins/elementor-pro/assets/js/frontend.min.js?ver=3.0.5
IP
ASN #20773 Host Europe GmbH
File type Unicode text, UTF-8 text, with very long lines (39674), with LF, NEL line terminators
Hash e3b2de77fc1d70f8455af1ba6b9b05cf
028add19566627b0e7ea644c6b921c5519562e00
0ce37a146378e4b7677250bacfdc3367e5eadb1538238d839200f0e26af42548
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor-pro/assets/js/frontend.min.js?ver=3.0.5 HTTP/1.1
Host: finanzberatung-herrmann.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://finanzberatung-herrmann.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 02:43:51 GMT
Server: Apache
Last-Modified: Wed, 21 Oct 2020 07:25:15 GMT
ETag: "2a0c2-5b2293fa996ca-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PleskLin
Content-Length: 41648
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: application/javascript
finanzberatung-herrmann.de/wp-content/plugins/premium-addons-for-elementor/assets/frontend/min-js/lottie.min.js?ver=4.9.47
200 OK 72 kB URL HTTP/1.1 finanzberatung-herrmann.de/wp-content/plugins/premium-addons-for-elementor/assets/frontend/min-js/lottie.min.js?ver=4.9.47
IP
ASN #20773 Host Europe GmbH
File type ASCII text, with very long lines (65536), with no line terminators
Hash bb67886cd18b7f4a6cc8794f9b18f1f1
e769c3f8661ac8bc4c458d64b053fa62e4ffd323
be1b90c3ec329683e7dc5d219f5b80d08744756e4389bb7785f3fd84cd7bd4a9
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/premium-addons-for-elementor/assets/frontend/min-js/lottie.min.js?ver=4.9.47 HTTP/1.1
Host: finanzberatung-herrmann.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://finanzberatung-herrmann.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 02:43:51 GMT
Server: Apache
Last-Modified: Tue, 24 Jan 2023 17:10:25 GMT
ETag: "45c12-5f305977e80bc-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PleskLin
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: application/javascript
finanzberatung-herrmann.de/wp-content/plugins/elementor-extras/assets/lib/parallax-gallery/parallax-gallery.min.js?ver=1.0.0
200 OK 891 B URL HTTP/1.1 finanzberatung-herrmann.de/wp-content/plugins/elementor-extras/assets/lib/parallax-gallery/parallax-gallery.min.js?ver=1.0.0
IP
ASN #20773 Host Europe GmbH
File type ASCII text, with very long lines (2696), with no line terminators
Hash 9bb0cb292f07393b12f070a88ced0cac
4a5f984164de3b2efcea4de7bb0d28ddd976b37e
faabd24e7a87aef5dc3413b696b66426067f7f67758a48e133341321cdadb138
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor-extras/assets/lib/parallax-gallery/parallax-gallery.min.js?ver=1.0.0 HTTP/1.1
Host: finanzberatung-herrmann.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://finanzberatung-herrmann.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 02:43:51 GMT
Server: Apache
Last-Modified: Thu, 07 Oct 2021 17:54:47 GMT
ETag: "a88-5cdc6f56128d7-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PleskLin
Content-Length: 891
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: application/javascript
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash f2a0c2c0f25bdd19baf87cbb3a87dcdb
bc78ca6206ee8cc1cc05ab7778df71c7e6d1182a
c57f26c0c2e439dc2f69181e1b2f6ae371bff9d299af739e0047eabc8bfb5a69
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C57F26C0C2E439DC2F69181E1B2F6AE371BFF9D299AF739E0047EABC8BFB5A69"
Last-Modified: Fri, 27 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11543
Expires: Mon, 30 Jan 2023 05:56:14 GMT
Date: Mon, 30 Jan 2023 02:43:51 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash f2a0c2c0f25bdd19baf87cbb3a87dcdb
bc78ca6206ee8cc1cc05ab7778df71c7e6d1182a
c57f26c0c2e439dc2f69181e1b2f6ae371bff9d299af739e0047eabc8bfb5a69
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C57F26C0C2E439DC2F69181E1B2F6AE371BFF9D299AF739E0047EABC8BFB5A69"
Last-Modified: Fri, 27 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11543
Expires: Mon, 30 Jan 2023 05:56:14 GMT
Date: Mon, 30 Jan 2023 02:43:51 GMT
Connection: keep-alive
finanzberatung-herrmann.de/wp-content/plugins/elementor/assets/lib/swiper/swiper.min.js?ver=5.3.6
200 OK 36 kB URL HTTP/1.1 finanzberatung-herrmann.de/wp-content/plugins/elementor/assets/lib/swiper/swiper.min.js?ver=5.3.6
IP
ASN #20773 Host Europe GmbH
File type ASCII text, with very long lines (65280)
Hash f2f239cb6e82311cd197aa5888632811
e2376a981fa3bf8e7e36e86b979f3a3ea6443d29
c4ceac2088d1b38f5263c50bdfb2e54ed643186248b3a81c5850214b55336e4d
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/lib/swiper/swiper.min.js?ver=5.3.6 HTTP/1.1
Host: finanzberatung-herrmann.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://finanzberatung-herrmann.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 02:43:51 GMT
Server: Apache
Last-Modified: Sun, 29 Jan 2023 17:13:40 GMT
ETag: "21f91-5f36a38546d88-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PleskLin
Content-Length: 35491
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: application/javascript
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash f2a0c2c0f25bdd19baf87cbb3a87dcdb
bc78ca6206ee8cc1cc05ab7778df71c7e6d1182a
c57f26c0c2e439dc2f69181e1b2f6ae371bff9d299af739e0047eabc8bfb5a69
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C57F26C0C2E439DC2F69181E1B2F6AE371BFF9D299AF739E0047EABC8BFB5A69"
Last-Modified: Fri, 27 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11543
Expires: Mon, 30 Jan 2023 05:56:14 GMT
Date: Mon, 30 Jan 2023 02:43:51 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash f2a0c2c0f25bdd19baf87cbb3a87dcdb
bc78ca6206ee8cc1cc05ab7778df71c7e6d1182a
c57f26c0c2e439dc2f69181e1b2f6ae371bff9d299af739e0047eabc8bfb5a69
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C57F26C0C2E439DC2F69181E1B2F6AE371BFF9D299AF739E0047EABC8BFB5A69"
Last-Modified: Fri, 27 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11543
Expires: Mon, 30 Jan 2023 05:56:14 GMT
Date: Mon, 30 Jan 2023 02:43:51 GMT
Connection: keep-alive
finanzberatung-herrmann.de/wp-content/plugins/elementor/assets/js/preloaded-modules.min.js?ver=3.10.2
200 OK 13 kB URL HTTP/1.1 finanzberatung-herrmann.de/wp-content/plugins/elementor/assets/js/preloaded-modules.min.js?ver=3.10.2
IP
ASN #20773 Host Europe GmbH
File type ASCII text, with very long lines (43869)
Hash 36d6ad5f6a5f36b44fe8f42c6d209cd6
30201c4685463cb074a74dc3b134859b1256419c
74b7a89914013d4fb102ea7778b2baa78c5594aa7bdc8a6980bba0fd355e5e2e
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/js/preloaded-modules.min.js?ver=3.10.2 HTTP/1.1
Host: finanzberatung-herrmann.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://finanzberatung-herrmann.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 02:43:51 GMT
Server: Apache
Last-Modified: Sun, 29 Jan 2023 17:13:40 GMT
ETag: "ab85-5f36a38519add-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PleskLin
Content-Length: 13384
Keep-Alive: timeout=5, max=89
Connection: Keep-Alive
Content-Type: application/javascript
finanzberatung-herrmann.de/wp-content/plugins/elementor-extras/assets/lib/hotips/hotips.min.js?ver=1.1.0
200 OK 2.2 kB URL HTTP/1.1 finanzberatung-herrmann.de/wp-content/plugins/elementor-extras/assets/lib/hotips/hotips.min.js?ver=1.1.0
IP
ASN #20773 Host Europe GmbH
File type ASCII text, with very long lines (8108), with no line terminators
Hash 3661568b226450df0eaba057db689cb6
efcdcf6b1d5a7c467954b2d85d10420fb2015c19
afa5e02948cf30a33ef1a7d593498b80d83fc7e3f4bf8d5818441cc3884f6a7d
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor-extras/assets/lib/hotips/hotips.min.js?ver=1.1.0 HTTP/1.1
Host: finanzberatung-herrmann.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://finanzberatung-herrmann.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 02:43:51 GMT
Server: Apache
Last-Modified: Thu, 07 Oct 2021 17:54:47 GMT
ETag: "1fac-5cdc6f5616b3f-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PleskLin
Content-Length: 2227
Keep-Alive: timeout=5, max=90
Connection: Keep-Alive
Content-Type: application/javascript
finanzberatung-herrmann.de/wp-content/plugins/elementor-extras/assets/js/frontend.min.js?ver=2.2.51
200 OK 18 kB URL HTTP/1.1 finanzberatung-herrmann.de/wp-content/plugins/elementor-extras/assets/js/frontend.min.js?ver=2.2.51
IP
ASN #20773 Host Europe GmbH
File type ASCII text, with very long lines (31998)
Hash 12b0a76903b6a69a137fff11a2e2eb9c
27d532edacdc03008f0fceda5cbb2ba4d350f42a
2e291c576a0f9bcd0efcd9df06ae8e1fee8ed8db2fac1612be25ac60dc495435
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor-extras/assets/js/frontend.min.js?ver=2.2.51 HTTP/1.1
Host: finanzberatung-herrmann.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://finanzberatung-herrmann.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 02:43:51 GMT
Server: Apache
Last-Modified: Thu, 07 Oct 2021 17:54:47 GMT
ETag: "12ca3-5cdc6f55efa3e-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PleskLin
Content-Length: 17977
Keep-Alive: timeout=5, max=90
Connection: Keep-Alive
Content-Type: application/javascript
finanzberatung-herrmann.de/wp-content/uploads/2019/10/71724114_1380553222130964_661035792302342144_n-300x210.jpg
200 OK 6.4 kB URL HTTP/1.1 finanzberatung-herrmann.de/wp-content/uploads/2019/10/71724114_1380553222130964_661035792302342144_n-300x210.jpg
IP
ASN #20773 Host Europe GmbH
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 300x210, components 3\012- data
Hash 830e3124b0ea9bb37a0ddd9d6ff157e9
f9a5537be20b469d0e7393cdfbccfbdfec9af940
2c70cf030bbd3fa155cac63b55dcd847860190c8ea99b7695e1d7e7ae7f7374d
GET /wp-content/uploads/2019/10/71724114_1380553222130964_661035792302342144_n-300x210.jpg HTTP/1.1
Host: finanzberatung-herrmann.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://finanzberatung-herrmann.de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 02:43:51 GMT
Server: Apache
Last-Modified: Tue, 26 May 2020 06:16:06 GMT
ETag: "1903-5a68707de7d1c"
Accept-Ranges: bytes
Content-Length: 6403
X-Powered-By: PleskLin
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: image/jpeg
finanzberatung-herrmann.de/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-regular-400.woff2
200 OK 13 kB URL HTTP/1.1 finanzberatung-herrmann.de/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-regular-400.woff2
IP
ASN #20773 Host Europe GmbH
File type Web Open Font Format (Version 2), TrueType, length 13276, version 331.-31261\012- data
Hash f0f8230116992e521526097a28f54066
0447c6b10bbf73f97b23dcfd6e6a48510822cb6e
8afc6e5e842baab16010c2ce6fcf48ec4ded8e1579a37c1f1bc027e120d04951
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-regular-400.woff2 HTTP/1.1
Host: finanzberatung-herrmann.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://finanzberatung-herrmann.de/wp-content/plugins/elementor/assets/lib/font-awesome/css/regular.min.css?ver=5.15.3
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 02:43:51 GMT
Server: Apache
Last-Modified: Sun, 29 Jan 2023 17:13:40 GMT
ETag: "33dc-5f36a3854040f"
Accept-Ranges: bytes
Content-Length: 13276
X-Powered-By: PleskLin
Keep-Alive: timeout=5, max=89
Connection: Keep-Alive
finanzberatung-herrmann.de/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-brands-400.woff2
200 OK 77 kB URL HTTP/1.1 finanzberatung-herrmann.de/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-brands-400.woff2
IP
ASN #20773 Host Europe GmbH
File type Web Open Font Format (Version 2), TrueType, length 76764, version 331.-31261\012- data
Hash f7307680c7fe85959f3ecf122493ea7d
fce0da592a3e536d6d5df5b50cb513398d8c5161
43c072c16c9ee6d67acdfa6c6d6685ff1e74eb4237b7cc3c1348ab1c108b26af
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-brands-400.woff2 HTTP/1.1
Host: finanzberatung-herrmann.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://finanzberatung-herrmann.de/wp-content/plugins/elementor/assets/lib/font-awesome/css/brands.min.css?ver=5.15.3
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 02:43:51 GMT
Server: Apache
Last-Modified: Sun, 29 Jan 2023 17:13:40 GMT
ETag: "12bdc-5f36a3853fc3f"
Accept-Ranges: bytes
Content-Length: 76764
X-Powered-By: PleskLin
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
finanzberatung-herrmann.de/wp-content/uploads/complianz/css/banner-1-optin.css?v=10
200 OK 2.9 kB URL HTTP/1.1 finanzberatung-herrmann.de/wp-content/uploads/complianz/css/banner-1-optin.css?v=10
IP
ASN #20773 Host Europe GmbH
File type ASCII text, with very long lines (15883), with no line terminators
Hash 192bb2657048df667dfac5cfc8afcad4
88832995920b263c802aef8e1ee901178fcf91b0
56ce08ba1eeb03a165b47526134472151b0b3d21f5e852685651759c62c74b79
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/complianz/css/banner-1-optin.css?v=10 HTTP/1.1
Host: finanzberatung-herrmann.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://finanzberatung-herrmann.de/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 02:43:51 GMT
Server: Apache
Last-Modified: Wed, 07 Sep 2022 17:39:10 GMT
ETag: "3e0b-5e819ca57a7ac-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PleskLin
Content-Length: 2936
Keep-Alive: timeout=5, max=89
Connection: Keep-Alive
Content-Type: text/css
finanzberatung-herrmann.de/wp-content/uploads/2019/09/favicon-256x256-150x150.png
200 OK 28 kB URL HTTP/1.1 finanzberatung-herrmann.de/wp-content/uploads/2019/09/favicon-256x256-150x150.png
IP
ASN #20773 Host Europe GmbH
File type PNG image data, 150 x 150, 8-bit/color RGBA, non-interlaced\012- data
Hash 100f83dc3d0df1610c053bcda0550d8c
b0b0b02643349ea571bffa8a2b30c249889e88cd
cb6549f38e7e4af9d91504847dd9b415b0f65cb119d4575bf701a3614e0426d5
GET /wp-content/uploads/2019/09/favicon-256x256-150x150.png HTTP/1.1
Host: finanzberatung-herrmann.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://finanzberatung-herrmann.de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 02:43:51 GMT
Server: Apache
Last-Modified: Tue, 26 May 2020 06:16:06 GMT
ETag: "6c6c-5a68707dd9a8c"
Accept-Ranges: bytes
Content-Length: 27756
X-Powered-By: PleskLin
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: image/png
finanzberatung-herrmann.de/wp-content/uploads/2019/09/favicon-256x256.png
200 OK 79 kB URL HTTP/1.1 finanzberatung-herrmann.de/wp-content/uploads/2019/09/favicon-256x256.png
IP
ASN #20773 Host Europe GmbH
File type PNG image data, 256 x 256, 8-bit/color RGB, non-interlaced\012- data
Hash 4b8a9766782d69bdd6f69ee15da6dbb7
da83959e6a618b923f296bd051e30e49843fd776
d168aa6fe95bdf5dc8f6f16cd20807a9f6eacb72ff20b8c5788844279274784f
GET /wp-content/uploads/2019/09/favicon-256x256.png HTTP/1.1
Host: finanzberatung-herrmann.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://finanzberatung-herrmann.de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 02:43:51 GMT
Server: Apache
Last-Modified: Tue, 26 May 2020 06:16:06 GMT
ETag: "132dd-5a68707dd9e74"
Accept-Ranges: bytes
Content-Length: 78557
X-Powered-By: PleskLin
Keep-Alive: timeout=5, max=88
Connection: Keep-Alive
Content-Type: image/png
finanzberatung-herrmann.de/wp-content/uploads/2019/09/Slider1.jpg
200 OK 86 kB URL HTTP/1.1 finanzberatung-herrmann.de/wp-content/uploads/2019/09/Slider1.jpg
IP
ASN #20773 Host Europe GmbH
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=10, description=Businessman signing contract, document or report in a binder while standing at his office desk., manufacturer=NIKON CORPORATION, model=NIKON D610, orientation=upper-left, xresolution=151, yresolution=159, resolutionunit=2, software=Ver.1.00, datetime=2018:09:26 19:22:49], baseline, precision 8, 1920x640, components 3\012- data
Hash 2b535e19cec4e93f7a250aa0b8ab6782
d5d4a30ed16cca49f0c8a4325f4a58cabe4ce7c7
6802c47e958b40dc58f43f780f1d802f793d245f942ee2ed8c3b30dd813a1b16
GET /wp-content/uploads/2019/09/Slider1.jpg HTTP/1.1
Host: finanzberatung-herrmann.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://finanzberatung-herrmann.de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 02:43:51 GMT
Server: Apache
Last-Modified: Tue, 26 May 2020 06:16:06 GMT
ETag: "14f6f-5a68707dd7b4c"
Accept-Ranges: bytes
Content-Length: 85871
X-Powered-By: PleskLin
Keep-Alive: timeout=5, max=87
Connection: Keep-Alive
Content-Type: image/jpeg
finanzberatung-herrmann.de/wp-content/uploads/2019/09/Slider2.jpg
200 OK 98 kB URL HTTP/1.1 finanzberatung-herrmann.de/wp-content/uploads/2019/09/Slider2.jpg
IP
ASN #20773 Host Europe GmbH
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 240x240, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS6 (Windows), datetime=2013:05:24 16:10:31], baseline, precision 8, 1920x1272, components 3\012- data
Hash 31d2aedb8d1eac4ca23f4cee4972a6a5
ee034a650638a451af690188539b09db0bb86891
ce371f5e4fdacf052abe04acb8746d9d8162eb908804ecc896bb9865e9805b53
GET /wp-content/uploads/2019/09/Slider2.jpg HTTP/1.1
Host: finanzberatung-herrmann.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://finanzberatung-herrmann.de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 02:43:51 GMT
Server: Apache
Last-Modified: Tue, 26 May 2020 06:16:06 GMT
ETag: "17e7c-5a68707dd7f34"
Accept-Ranges: bytes
Content-Length: 97916
X-Powered-By: PleskLin
Keep-Alive: timeout=5, max=90
Connection: Keep-Alive
Content-Type: image/jpeg
finanzberatung-herrmann.de/wp-content/uploads/2019/09/Slider3.jpg
200 OK 188 kB URL HTTP/1.1 finanzberatung-herrmann.de/wp-content/uploads/2019/09/Slider3.jpg
IP
ASN #20773 Host Europe GmbH
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=15, height=2448, bps=0, PhotometricIntepretation=RGB, manufacturer=BlackBerry, model=BlackBerry Classic, orientation=upper-left, width=2448], baseline, precision 8, 1920x1416, components 3\012- data
Size 188 kB (188224 bytes)
Hash 6a5a433e7cdd29c440fe2f4b8e94e389
7b0a05861e0ec2b1f7324638a7e6b89609c19a4f
81e56ba99e05c7eed135594d2f78425dc03c21edcaabce1d588397e11a3b1a0b
GET /wp-content/uploads/2019/09/Slider3.jpg HTTP/1.1
Host: finanzberatung-herrmann.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://finanzberatung-herrmann.de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 02:43:51 GMT
Server: Apache
Last-Modified: Tue, 26 May 2020 06:16:06 GMT
ETag: "2df40-5a68707dd8ed4"
Accept-Ranges: bytes
Content-Length: 188224
X-Powered-By: PleskLin
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: image/jpeg
finanzberatung-herrmann.de/wp-content/uploads/2019/09/Slider4.jpg
200 OK 200 kB URL HTTP/1.1 finanzberatung-herrmann.de/wp-content/uploads/2019/09/Slider4.jpg
IP
ASN #20773 Host Europe GmbH
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=15, height=3254, bps=194, PhotometricIntepretation=RGB, description=Business team are analyzing a graphs data with laptops and calculators., manufacturer=FUJIFILM, model=X-T10, orientation=upper-left, width=4881], baseline, precision 8, 1920x1280, components 3\012- data
Size 200 kB (200381 bytes)
Hash 419d2036e8733e73a37eb0a507e951e3
7d55b0993d07e2f638c5cbd3f9b4734eac1c0af6
0309be4885e6773a96736cfd4e5c493f02e567ae86f1461c7d4d396cd11512ac
GET /wp-content/uploads/2019/09/Slider4.jpg HTTP/1.1
Host: finanzberatung-herrmann.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://finanzberatung-herrmann.de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 02:43:51 GMT
Server: Apache
Last-Modified: Tue, 26 May 2020 06:16:06 GMT
ETag: "30ebd-5a68707dd9a8c"
Accept-Ranges: bytes
Content-Length: 200381
X-Powered-By: PleskLin
Keep-Alive: timeout=5, max=88
Connection: Keep-Alive
Content-Type: image/jpeg
83.169.41.94
52.89.222.161
104.17.24.14
23.36.76.226