Report - 45c923ba-e739-49e1-8d29-4ea4e8b3e188.id.repl.co/

Report Overview

Submitted URL
45c923ba-e739-49e1-8d29-4ea4e8b3e188.id.repl.co/
IP
34.149.204.188
ASN
#15169 GOOGLE
Submitted
2023-06-01 20:09:30
Access
public
Website Title
Final URL
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
12

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
fonts.gstatic.com	unknown	2008-02-11	2014-09-09	2023-06-01	566 B	20 kB	142.250.74.35
45c923ba-e739-49e1-8d29-4ea4e8b3e188.id.repl.co	unknown	unknown	2023-02-06	2023-03-08	1.1 kB	21 kB	34.149.204.188
ocsp.pki.goog	175	2016-06-13	2018-07-01	2023-05-31	999 B	2.1 kB	142.250.74.131
fonts.googleapis.com	8877	2005-01-25	2013-06-10	2023-05-31	466 B	1.7 kB	142.250.74.106

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

Scan Date	Severity	Indicator
2023-02-21	medium	45c923ba-e739-49e1-8d29-4ea4e8b3e188.id.repl.co/
2023-02-21	medium	45c923ba-e739-49e1-8d29-4ea4e8b3e188.id.repl.co/
2023-02-21	medium	45c923ba-e739-49e1-8d29-4ea4e8b3e188.id.repl.co/favicon.ico

Fortinet's Web Filter

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator
2023-06-01	medium	45c923ba-e739-49e1-8d29-4ea4e8b3e188.id.repl.co
2023-06-01	medium	45c923ba-e739-49e1-8d29-4ea4e8b3e188.id.repl.co
2023-06-01	medium	45c923ba-e739-49e1-8d29-4ea4e8b3e188.id.repl.co

ThreatFox

No alerts detected

JavaScript (1)

	URL	Size	First Seen	Last Seen
	45c923ba-e739-49e1-8d29-4ea4e8b3e188.id.repl.co/	0 B	2023-03-07	2024-05-04
Pretty URL 45c923ba-e739-49e1-8d29-4ea4e8b3e188.id.repl.co/ IP 34.149.204.188 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:01:59 Last Seen2024-05-04 15:19:44 Times Seen37337615 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

HTTP Transactions (8)

URL IP Response Size

45c923ba-e739-49e1-8d29-4ea4e8b3e188.id.repl.co/

34.149.204.188

6.8 kB

URL User Request GET
45c923ba-e739-49e1-8d29-4ea4e8b3e188.id.repl.co/
IP
34.149.204.188:0
ASN
#15169 GOOGLE

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (869)
Size
6.8 kB (6771 bytes)
Hash
99b2c6d38306b5e5e986fc1243e477e4
b7e54f6e6f28c2a3cec854463ad9fd6a7c1706c2
f2d7708f98a8ea2376614f405f536a965820f2c696f73c913a0a413290a5cd4b

Detections

Analyzer	Verdict	Alert
phishtank	Other
quad9	Sinkholed

HTTP Headers

GET / HTTP/1.1
Host: 45c923ba-e739-49e1-8d29-4ea4e8b3e188.id.repl.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 404 Not Found
Replit-Cluster: global
Date: Thu, 01 Jun 2023 20:09:15 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Via: 1.1 google

45c923ba-e739-49e1-8d29-4ea4e8b3e188.id.repl.co/

34.149.204.188

6.8 kB

URL User Request GET
45c923ba-e739-49e1-8d29-4ea4e8b3e188.id.repl.co/
IP
34.149.204.188:0
ASN
#15169 GOOGLE

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (869)
Size
6.8 kB (6771 bytes)
Hash
99b2c6d38306b5e5e986fc1243e477e4
b7e54f6e6f28c2a3cec854463ad9fd6a7c1706c2
f2d7708f98a8ea2376614f405f536a965820f2c696f73c913a0a413290a5cd4b

Detections

Analyzer	Verdict	Alert
phishtank	Other
quad9	Sinkholed

HTTP Headers

GET / HTTP/1.1
Host: 45c923ba-e739-49e1-8d29-4ea4e8b3e188.id.repl.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 404 Not Found
Replit-Cluster: global
Date: Thu, 01 Jun 2023 20:09:17 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Via: 1.1 google

ocsp.pki.goog/gts1c3

142.250.74.131

472 B

URL
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
02593b51cd737e1085e5837a9a47c755
aab410449655b9fddf070f3e25a1a8e5aee59530
0ea607d017e63bf06a742560b582d99802dc477bba715d9890e1d51663e50d99

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 01 Jun 2023 20:09:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

fonts.googleapis.com/css?family=IBM+Plex+Sans

142.250.74.106

200 OK

1.0 kB

URL GET HTTP/2
fonts.googleapis.com/css?family=IBM+Plex+Sans
IP
142.250.74.106:443
ASN
#15169 GOOGLE

Requested by
http://45c923ba-e739-49e1-8d29-4ea4e8b3e188.id.repl.co/
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint5F:AC:74:E6:97:66:CD:D0:F1:EA:0D:01:37:89:65:2E:98:22:84:6C
ValidityMon, 08 May 2023 08:24:50 GMT - Mon, 31 Jul 2023 08:24:49 GMT

File type
gzip compressed data, max compression\012- data
Size
1.0 kB (1024 bytes)
Hash
b51fe8c115d9c9c29e5721f762b3ba26
fd9cb494ff6a7b84965e702dc282109bf1fa8b68
60a97446739f3ab843f8b525df3724e1a364140e476ba2ee9c194fd6c7197875

HTTP Headers

GET /css?family=IBM+Plex+Sans HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://45c923ba-e739-49e1-8d29-4ea4e8b3e188.id.repl.co/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 01 Jun 2023 20:09:17 GMT
date: Thu, 01 Jun 2023 20:09:17 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

472 B

URL
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
fd0c5fcd552e140b1496b4697b18a3a4
264e38a9d130f40f54539a52cba317d16aea03ef
a7ed4a9f0a8b37cf7bcf3a12317f70c607fa56aac6a980a6fda121b2c30d5151

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 01 Jun 2023 20:09:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

fonts.gstatic.com/s/ibmplexsans/v19/zYXgKVElMYYaJe8bpLHnCwDKhdHeFQ.woff2

142.250.74.35

200 OK

19 kB

URL GET HTTP/2
fonts.gstatic.com/s/ibmplexsans/v19/zYXgKVElMYYaJe8bpLHnCwDKhdHeFQ.woff2
IP
142.250.74.35:443
ASN
#15169 GOOGLE

Requested by
http://45c923ba-e739-49e1-8d29-4ea4e8b3e188.id.repl.co/
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintA3:09:CB:6C:64:76:4B:58:32:D1:21:3E:F4:65:1F:DE:58:22:8F:D6
ValidityMon, 08 May 2023 08:24:48 GMT - Mon, 31 Jul 2023 08:24:47 GMT

File type
Web Open Font Format (Version 2), TrueType, length 19156, version 1.0\012- data
Size
19 kB (19156 bytes)
Hash
0ceb759015a6df090ad355231fdb39f1
b947749baab5bfa0bee35d31e5a5050d4beefe9b
db71f8a28ad8501544fb4e7668e3c6d0b731760b6f20de3525ebaeba597f1922

HTTP Headers

GET /s/ibmplexsans/v19/zYXgKVElMYYaJe8bpLHnCwDKhdHeFQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://45c923ba-e739-49e1-8d29-4ea4e8b3e188.id.repl.co
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 19156
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 31 May 2023 01:49:59 GMT
expires: Thu, 30 May 2024 01:49:59 GMT
cache-control: public, max-age=31536000
age: 152358
last-modified: Tue, 02 May 2023 16:04:22 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

472 B

URL
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
fd0c5fcd552e140b1496b4697b18a3a4
264e38a9d130f40f54539a52cba317d16aea03ef
a7ed4a9f0a8b37cf7bcf3a12317f70c607fa56aac6a980a6fda121b2c30d5151

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 01 Jun 2023 20:09:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

45c923ba-e739-49e1-8d29-4ea4e8b3e188.id.repl.co/favicon.ico

34.149.204.188

404 Not Found

6.8 kB

URL GET HTTP/1.1
45c923ba-e739-49e1-8d29-4ea4e8b3e188.id.repl.co/favicon.ico
IP
34.149.204.188:80
ASN
#15169 GOOGLE

Requested by
http://45c923ba-e739-49e1-8d29-4ea4e8b3e188.id.repl.co/

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (869)
Size
6.8 kB (6771 bytes)
Hash
99b2c6d38306b5e5e986fc1243e477e4
b7e54f6e6f28c2a3cec854463ad9fd6a7c1706c2
f2d7708f98a8ea2376614f405f536a965820f2c696f73c913a0a413290a5cd4b

Detections

Analyzer	Verdict	Alert
phishtank	Other
quad9	Sinkholed

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: 45c923ba-e739-49e1-8d29-4ea4e8b3e188.id.repl.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://45c923ba-e739-49e1-8d29-4ea4e8b3e188.id.repl.co/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 404 Not Found
Replit-Cluster: global
Date: Thu, 01 Jun 2023 20:09:17 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Via: 1.1 google

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (1)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

HTTP Transactions (8)

URL User Request GET

IP

ASN

File type

Size

Hash

Detections

HTTP Headers

URL User Request GET

IP

ASN

File type

Size

Hash

Detections

HTTP Headers

URL

IP

ASN

File type

Size

Hash

HTTP Headers

URL GET HTTP/2

IP

ASN

Requested by

Certificate

File type

Size

Hash

HTTP Headers

URL

IP

ASN

File type

Size

Hash

HTTP Headers

URL GET HTTP/2

IP

ASN

Requested by

Certificate

File type

Size