| targo-webupdate.app/ | 193.106.174.178 | | 2.1 kB |
IP193.106.174.178:0
File typeJavaScript source, Unicode text, UTF-8 text, with CRLF line terminators Hashafa95ff966e1fe780579e84579b532a6 ca4ee63875217c5b63526dee2681eb10d9e4509b 892ddca897cdf20965ea47d3a7d0e4fdc9aa14e26ae4af85636c67b826e5e02e
Analyzer | Verdict | Alert | OpenPhish | phishing | Sparkasse Bank |
GET / HTTP/1.1
Host: targo-webupdate.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Thu, 18 Apr 2024 05:36:35 GMT
content-type: text/html; charset=UTF-8
content-length: 2051
vary: Accept-Encoding
content-encoding: gzip
x-powered-by: PHP/8.0.30, PleskLin
X-Firefox-Spdy: h2
|
|
| code.jquery.com/jquery-3.6.1.min.js | 151.101.66.137 | 200 OK | 31 kB |
URL GET HTTP/2code.jquery.com/jquery-3.6.1.min.js IP151.101.66.137:443
Requested byhttps://targo-webupdate.app/ CertificateIssuerSectigo Limited Subject*.jquery.com FingerprintD2:19:0A:AD:CE:BB:9C:61:17:5D:29:4B:A2:54:E8:C6:91:B8:F9:8D ValidityTue, 11 Jul 2023 00:00:00 GMT - Sun, 14 Jul 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (65447) Hash00727d1d5d9c90f7de826f1a4a9cc632 ea61688671d0c3044f2c5b2f2c4af0a6620ac6c2 a3cf00c109d907e543bc4f6dbc85eb31068f94515251347e9e57509b52ee3d74
GET /jquery-3.6.1.min.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://targo-webupdate.app
DNT: 1
Connection: keep-alive
Referer: https://targo-webupdate.app/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Fri, 18 Oct 1991 12:00:00 GMT
etag: W/"28feccc0-15e40"
cache-control: public, max-age=31536000, stale-while-revalidate=604800
access-control-allow-origin: *
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 18 Apr 2024 05:24:51 GMT
age: 14034377
x-served-by: cache-lga13629-LGA, cache-hel1410029-HEL
x-cache: HIT, HIT
x-cache-hits: 11, 170337
x-timer: S1713417891.413762,VS0,VE0
vary: Accept-Encoding
content-length: 30957
X-Firefox-Spdy: h2
|
|
| targo-webupdate.app/css/perf-meter.css | 193.106.174.178 | | 231 B |
URL targo-webupdate.app/css/perf-meter.css IP193.106.174.178:0
Hashfa82ee4a1e809ce2d8b9896046ba3474 9b7546816bdd1b87a63e3c9d953211a3a200a7ac f008c09173b9230f184fdbcf0fcbf3c4fc8daf1bea6c41b3614f5a3a11e9d376
Analyzer | Verdict | Alert | OpenPhish | phishing | Sparkasse Bank |
GET /css/perf-meter.css HTTP/1.1
Host: targo-webupdate.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://targo-webupdate.app/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 18 Apr 2024 05:36:35 GMT
content-type: text/css
content-length: 231
x-accel-version: 0.01
last-modified: Sat, 15 Oct 2022 10:17:20 GMT
etag: "18e-5eb100c2f8c00-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-powered-by: PleskLin
X-Firefox-Spdy: h2
|
|
| anal-lytics.site/pixel/pwd0D3kdCdvFDpqD | 188.114.96.1 | 200 OK | 0 B |
URL GET HTTP/2anal-lytics.site/pixel/pwd0D3kdCdvFDpqD IP188.114.96.1:443
Requested byhttps://targo-webupdate.app/ CertificateIssuerGoogle Trust Services LLC Subjectanal-lytics.site Fingerprint7A:71:B1:1F:5E:58:12:32:DE:E5:6E:F9:9C:0A:11:F5:1F:06:A6:4C ValiditySun, 31 Mar 2024 09:25:57 GMT - Sat, 29 Jun 2024 09:25:56 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pixel/pwd0D3kdCdvFDpqD HTTP/1.1
Host: anal-lytics.site
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://targo-webupdate.app/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 18 Apr 2024 05:24:51 GMT
content-type: application/javascript
content-length: 0
x-powered-by: PHP/7.4.33, PleskLin
expires: Thu, 18 Apr 2024 05:41:35 GMT
pragma: cache
cache-control: max-age=300
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=q8TzW0bG33QPHI9lQVcqYulZ%2FhRz8pmOUyxZqYB49VsIGPMqpvAeHGZ0%2FowJ8FDGqwsudrbIMljwvXi51nwJCPg%2B%2FBQnZMBzuG%2F%2Fx6YJPf%2FmkiLS%2BS1kfBWpPhcq6Sh2c2eI"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87623b1d39ebb4fa-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| targo-webupdate.app/css/ospm_custom.css | 193.106.174.178 | | 3.6 kB |
URL targo-webupdate.app/css/ospm_custom.css IP193.106.174.178:0
Hashfc271019a11f1b46f78214754b26fb5c cd8b7b09bfa8236a97b14b797d9b99c2aa8f5dd0 d8ad9ac7b82f1b3feb913e78d5177210c73131d217d6db6e7a18c6fb91e582e9
Analyzer | Verdict | Alert | OpenPhish | phishing | Sparkasse Bank |
GET /css/ospm_custom.css HTTP/1.1
Host: targo-webupdate.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://targo-webupdate.app/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 18 Apr 2024 05:36:35 GMT
content-type: text/css
last-modified: Sat, 15 Oct 2022 10:17:20 GMT
etag: W/"634a88b0-474a"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| targo-webupdate.app/fonts/Sparkasse_web_Rg.woff | 193.106.174.178 | 404 Not Found | 808 B |
URL GET HTTP/2targo-webupdate.app/fonts/Sparkasse_web_Rg.woff IP193.106.174.178:443
Requested byhttps://targo-webupdate.app/ CertificateIssuerLet's Encrypt Subjecttargo-webupdate.app Fingerprint18:44:04:C0:A0:AF:0F:E6:3C:2C:E6:C5:34:39:67:05:E1:0A:27:53 ValidityWed, 17 Apr 2024 08:27:52 GMT - Tue, 16 Jul 2024 08:27:51 GMT
File typeHTML document, ASCII text Hasha943672a32297727bab01c3e76977550 3a667c4b7a457ef6c586cc581d533c128737bf53 b9347f234dc3c8d56e015e86d88a1400415db8f7a5ad91f02b6a2323c10a4187
Analyzer | Verdict | Alert | OpenPhish | phishing | Sparkasse Bank |
GET /fonts/Sparkasse_web_Rg.woff HTTP/1.1
Host: targo-webupdate.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://targo-webupdate.app/css/app.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 404 Not Found
server: nginx
date: Thu, 18 Apr 2024 05:36:35 GMT
content-type: text/html
content-length: 808
last-modified: Wed, 17 Apr 2024 09:31:11 GMT
etag: "328-6164783e2aefb"
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| targo-webupdate.app/js/jquery-3.6.0.js | 193.106.174.178 | | 1.2 kB |
URL targo-webupdate.app/js/jquery-3.6.0.js IP193.106.174.178:0
File typeHTML document, ASCII text Hasha943672a32297727bab01c3e76977550 3a667c4b7a457ef6c586cc581d533c128737bf53 b9347f234dc3c8d56e015e86d88a1400415db8f7a5ad91f02b6a2323c10a4187
Analyzer | Verdict | Alert | OpenPhish | phishing | Sparkasse Bank |
GET /js/jquery-3.6.0.js HTTP/1.1
Host: targo-webupdate.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://targo-webupdate.app/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 404 Not Found
server: nginx
date: Thu, 18 Apr 2024 05:36:35 GMT
content-type: text/html
last-modified: Wed, 17 Apr 2024 09:31:11 GMT
etag: W/"328-6164783e2aefb"
content-encoding: br
X-Firefox-Spdy: h2
|
|
| www.gstatic.com/recaptcha/releases/rz4DvU-cY2JYCwHSTck0_qm-/recaptcha__en.js | 142.250.74.131 | | 203 kB |
URL www.gstatic.com/recaptcha/releases/rz4DvU-cY2JYCwHSTck0_qm-/recaptcha__en.js IP142.250.74.131:0
File typeJavaScript source, ASCII text, with very long lines (554) Size203 kB (203369 bytes) Hashe9ccb3dbde79ba5ffdf9cad4b32d59fd 3a8cd67adc7c885bdf683f1e7f491e6a4a50679f 8f2c6777c7ccc01ab67290fa8acd5a4c4866be64129f39dfaeb9197dfa15e137
GET /recaptcha/releases/rz4DvU-cY2JYCwHSTck0_qm-/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://targo-webupdate.app
DNT: 1
Connection: keep-alive
Referer: https://targo-webupdate.app/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 203369
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 12 Apr 2024 15:10:08 GMT
expires: Sat, 12 Apr 2025 15:10:08 GMT
cache-control: public, max-age=31536000
last-modified: Fri, 29 Mar 2024 04:30:36 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 483283
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| www.gstatic.com/recaptcha/releases/rz4DvU-cY2JYCwHSTck0_qm-/styles__ltr.css | 142.250.74.131 | 200 OK | 25 kB |
URL GET HTTP/3www.gstatic.com/recaptcha/releases/rz4DvU-cY2JYCwHSTck0_qm-/styles__ltr.css IP142.250.74.131:443
Requested byhttps://www.google.com/recaptcha/api2/bframe?hl=en&v=rz4DvU-cY2JYCwHSTck0_qm-&k=6Lc85r0pAAAAAHrIU2kLfuk7_wguvP1MT7Nf6sKG CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint8F:81:43:71:C4:F3:8C:FA:6D:EC:B4:5E:1F:58:71:AA:48:42:0E:E9 ValidityMon, 04 Mar 2024 07:16:39 GMT - Mon, 27 May 2024 07:16:38 GMT
File typeASCII text, with very long lines (56398), with no line terminators Hasheb4bc511f79f7a1573b45f5775b3a99b d910fb51ad7316aa54f055079374574698e74b35 7859a62e04b0acb06516eb12454de6673883ecfaeaed6c254659bca7cd59c050
GET /recaptcha/releases/rz4DvU-cY2JYCwHSTck0_qm-/styles__ltr.css HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 24606
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 12 Apr 2024 11:39:42 GMT
expires: Sat, 12 Apr 2025 11:39:42 GMT
cache-control: public, max-age=31536000
last-modified: Fri, 29 Mar 2024 04:30:36 GMT
content-type: text/css
vary: Accept-Encoding
age: 495910
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| www.gstatic.com/recaptcha/releases/rz4DvU-cY2JYCwHSTck0_qm-/recaptcha__en.js | 142.250.74.131 | | 203 kB |
URL www.gstatic.com/recaptcha/releases/rz4DvU-cY2JYCwHSTck0_qm-/recaptcha__en.js IP142.250.74.131:0
File typeJavaScript source, ASCII text, with very long lines (554) Size203 kB (203369 bytes) Hashe9ccb3dbde79ba5ffdf9cad4b32d59fd 3a8cd67adc7c885bdf683f1e7f491e6a4a50679f 8f2c6777c7ccc01ab67290fa8acd5a4c4866be64129f39dfaeb9197dfa15e137
GET /recaptcha/releases/rz4DvU-cY2JYCwHSTck0_qm-/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 203369
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 12 Apr 2024 15:10:08 GMT
expires: Sat, 12 Apr 2025 15:10:08 GMT
cache-control: public, max-age=31536000
last-modified: Fri, 29 Mar 2024 04:30:36 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 483284
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| www.gstatic.com/recaptcha/releases/rz4DvU-cY2JYCwHSTck0_qm-/recaptcha__en.js | 142.250.74.131 | | 203 kB |
URL www.gstatic.com/recaptcha/releases/rz4DvU-cY2JYCwHSTck0_qm-/recaptcha__en.js IP142.250.74.131:0
File typeJavaScript source, ASCII text, with very long lines (554) Size203 kB (203369 bytes) Hashe9ccb3dbde79ba5ffdf9cad4b32d59fd 3a8cd67adc7c885bdf683f1e7f491e6a4a50679f 8f2c6777c7ccc01ab67290fa8acd5a4c4866be64129f39dfaeb9197dfa15e137
GET /recaptcha/releases/rz4DvU-cY2JYCwHSTck0_qm-/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 203369
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 12 Apr 2024 15:10:08 GMT
expires: Sat, 12 Apr 2025 15:10:08 GMT
cache-control: public, max-age=31536000
last-modified: Fri, 29 Mar 2024 04:30:36 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 483284
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 | 216.58.207.227 | | 15 kB |
URL fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 IP216.58.207.227:0
File typeWeb Open Font Format (Version 2), TrueType, length 15344, version 1.0 Hash5d4aeb4e5f5ef754e307d7ffaef688bd 06db651cdf354c64a7383ea9c77024ef4fb4cef8 3e253b66056519aa065b00a453bac37ac5ed8f3e6fe7b542e93a9dcdcc11d0bc
GET /s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15344
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 18 Apr 2024 02:43:03 GMT
expires: Fri, 18 Apr 2025 02:43:03 GMT
cache-control: public, max-age=31536000
age: 9709
last-modified: Mon, 16 Oct 2017 17:32:55 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| www.gstatic.com/recaptcha/api2/logo_48.png | 142.250.74.131 | 200 OK | 2.2 kB |
URL GET HTTP/3www.gstatic.com/recaptcha/api2/logo_48.png IP142.250.74.131:443
Requested byhttps://www.google.com/recaptcha/api2/anchor?ar=1&k=6Lc85r0pAAAAAHrIU2kLfuk7_wguvP1MT7Nf6sKG&co=aHR0cHM6Ly90YXJnby13ZWJ1cGRhdGUuYXBwOjQ0Mw..&hl=en&v=rz4DvU-cY2JYCwHSTck0_qm-&size=normal&cb=t8l0k16fht5m CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint8F:81:43:71:C4:F3:8C:FA:6D:EC:B4:5E:1F:58:71:AA:48:42:0E:E9 ValidityMon, 04 Mar 2024 07:16:39 GMT - Mon, 27 May 2024 07:16:38 GMT
File typePNG image data, 48 x 48, 8-bit/color RGBA, non-interlaced Hashef9941290c50cd3866e2ba6b793f010d 4736508c795667dcea21f8d864233031223b7832 1b9efb22c938500971aac2b2130a475fa23684dd69e43103894968df83145b8a
GET /recaptcha/api2/logo_48.png HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.gstatic.com/recaptcha/releases/rz4DvU-cY2JYCwHSTck0_qm-/styles__ltr.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 2228
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 11 Apr 2024 17:35:26 GMT
expires: Thu, 18 Apr 2024 17:35:26 GMT
cache-control: public, max-age=604800
age: 560966
last-modified: Tue, 03 Mar 2020 20:15:00 GMT
content-type: image/png
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| www.google.com/js/bg/RWTT3oxVpjnMak3qs5vv7tg5xSkq7YqXMGNs3aBXMhQ.js | 142.250.74.164 | | 7.5 kB |
URL www.google.com/js/bg/RWTT3oxVpjnMak3qs5vv7tg5xSkq7YqXMGNs3aBXMhQ.js IP142.250.74.164:0
File typeJavaScript source, ASCII text, with very long lines (17614) Hasha0b566c1ba416a3899181051b4e22648 6e24d55d8094a8e96bbcdb2c8b2baec42ad59128 4564d3de8c55a639cc6a4deab39befeed839c5292aed8a9730636cdda0573214
GET /js/bg/RWTT3oxVpjnMak3qs5vv7tg5xSkq7YqXMGNs3aBXMhQ.js HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/recaptcha/api2/anchor?ar=1&k=6Lc85r0pAAAAAHrIU2kLfuk7_wguvP1MT7Nf6sKG&co=aHR0cHM6Ly90YXJnby13ZWJ1cGRhdGUuYXBwOjQ0Mw..&hl=en&v=rz4DvU-cY2JYCwHSTck0_qm-&size=normal&cb=t8l0k16fht5m
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: br
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/botguard-scs
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="botguard-scs"
report-to: {"group":"botguard-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/botguard-scs"}]}
content-length: 7470
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 17 Apr 2024 05:03:42 GMT
expires: Thu, 17 Apr 2025 05:03:42 GMT
cache-control: public, max-age=31536000
age: 87670
last-modified: Thu, 04 Apr 2024 18:30:00 GMT
content-type: text/javascript
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| www.gstatic.com/recaptcha/releases/rz4DvU-cY2JYCwHSTck0_qm-/styles__ltr.css | 142.250.74.131 | 200 OK | 25 kB |
URL GET HTTP/3www.gstatic.com/recaptcha/releases/rz4DvU-cY2JYCwHSTck0_qm-/styles__ltr.css IP142.250.74.131:443
Requested byhttps://www.google.com/recaptcha/api2/bframe?hl=en&v=rz4DvU-cY2JYCwHSTck0_qm-&k=6Lc85r0pAAAAAHrIU2kLfuk7_wguvP1MT7Nf6sKG CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint8F:81:43:71:C4:F3:8C:FA:6D:EC:B4:5E:1F:58:71:AA:48:42:0E:E9 ValidityMon, 04 Mar 2024 07:16:39 GMT - Mon, 27 May 2024 07:16:38 GMT
File typeASCII text, with very long lines (56398), with no line terminators Hasheb4bc511f79f7a1573b45f5775b3a99b d910fb51ad7316aa54f055079374574698e74b35 7859a62e04b0acb06516eb12454de6673883ecfaeaed6c254659bca7cd59c050
GET /recaptcha/releases/rz4DvU-cY2JYCwHSTck0_qm-/styles__ltr.css HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 24606
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 12 Apr 2024 11:39:42 GMT
expires: Sat, 12 Apr 2025 11:39:42 GMT
cache-control: public, max-age=31536000
last-modified: Fri, 29 Mar 2024 04:30:36 GMT
content-type: text/css
vary: Accept-Encoding
age: 495911
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| www.gstatic.com/recaptcha/releases/rz4DvU-cY2JYCwHSTck0_qm-/recaptcha__en.js | 142.250.74.131 | | 203 kB |
URL www.gstatic.com/recaptcha/releases/rz4DvU-cY2JYCwHSTck0_qm-/recaptcha__en.js IP142.250.74.131:0
File typeJavaScript source, ASCII text, with very long lines (554) Size203 kB (203369 bytes) Hashe9ccb3dbde79ba5ffdf9cad4b32d59fd 3a8cd67adc7c885bdf683f1e7f491e6a4a50679f 8f2c6777c7ccc01ab67290fa8acd5a4c4866be64129f39dfaeb9197dfa15e137
GET /recaptcha/releases/rz4DvU-cY2JYCwHSTck0_qm-/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 203369
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 12 Apr 2024 15:10:08 GMT
expires: Sat, 12 Apr 2025 15:10:08 GMT
cache-control: public, max-age=31536000
last-modified: Fri, 29 Mar 2024 04:30:36 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 483285
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| targo-webupdate.app/css/app.css | 193.106.174.178 | | 163 kB |
URL targo-webupdate.app/css/app.css IP193.106.174.178:0
Size163 kB (163206 bytes) Hash694054083bbd84b5328632b00b180ffa cd9f8dc1e6b10597fcb84bda11ddaf9882bd2229 ee3a3ead6613706b3ed572ffc5dfda04d0dbd23ee3ca531b0667bce2fc13cf66
Analyzer | Verdict | Alert | OpenPhish | phishing | Sparkasse Bank |
GET /css/app.css HTTP/1.1
Host: targo-webupdate.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://targo-webupdate.app/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 18 Apr 2024 05:36:35 GMT
content-type: text/css
last-modified: Sat, 15 Oct 2022 10:17:22 GMT
etag: W/"634a88b2-1aa935"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| targo-webupdate.app/css/opttan.css | 193.106.174.178 | 200 OK | 11 kB |
URL GET HTTP/2targo-webupdate.app/css/opttan.css IP193.106.174.178:443
Requested byhttps://targo-webupdate.app/ CertificateIssuerLet's Encrypt Subjecttargo-webupdate.app Fingerprint18:44:04:C0:A0:AF:0F:E6:3C:2C:E6:C5:34:39:67:05:E1:0A:27:53 ValidityWed, 17 Apr 2024 08:27:52 GMT - Tue, 16 Jul 2024 08:27:51 GMT
Hashf008e34e4de686babae41fe209153ca4 a6d78939c0910a0d54bfd37ccf7812a243f2d17f c6ce7c8d3cdd2175bfb851d5fb45fe42b004ce4832f2b950db31b8fe5cf9cf6a
Analyzer | Verdict | Alert | OpenPhish | phishing | Sparkasse Bank |
GET /css/opttan.css HTTP/1.1
Host: targo-webupdate.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://targo-webupdate.app/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 18 Apr 2024 05:36:35 GMT
content-type: text/css
last-modified: Sat, 15 Oct 2022 10:17:20 GMT
etag: W/"634a88b0-11f8"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| targo-webupdate.app/css/opsm.css | 193.106.174.178 | 200 OK | 68 kB |
URL GET HTTP/2targo-webupdate.app/css/opsm.css IP193.106.174.178:443
Requested byhttps://targo-webupdate.app/ CertificateIssuerLet's Encrypt Subjecttargo-webupdate.app Fingerprint18:44:04:C0:A0:AF:0F:E6:3C:2C:E6:C5:34:39:67:05:E1:0A:27:53 ValidityWed, 17 Apr 2024 08:27:52 GMT - Tue, 16 Jul 2024 08:27:51 GMT
File typeASCII text, with CRLF line terminators Hash3983823624cbd23a7a55d31f7f967633 c76f170a75a81e56fb0f57dfcf8af27af0511836 63e72211b14fd60bbd0297df351621ff058717b129732429ce12c0db6d19144b
Analyzer | Verdict | Alert | OpenPhish | phishing | Sparkasse Bank |
GET /css/opsm.css HTTP/1.1
Host: targo-webupdate.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://targo-webupdate.app/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 18 Apr 2024 05:36:35 GMT
content-type: text/css
last-modified: Sat, 15 Oct 2022 10:17:22 GMT
etag: W/"634a88b2-821ce"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| targo-webupdate.app/fonts/Sparkasse_web_Rg.ttf | 193.106.174.178 | | 8.6 kB |
URL targo-webupdate.app/fonts/Sparkasse_web_Rg.ttf IP193.106.174.178:0
File typeHTML document, ASCII text Hasha943672a32297727bab01c3e76977550 3a667c4b7a457ef6c586cc581d533c128737bf53 b9347f234dc3c8d56e015e86d88a1400415db8f7a5ad91f02b6a2323c10a4187
Analyzer | Verdict | Alert | OpenPhish | phishing | Sparkasse Bank |
GET /fonts/Sparkasse_web_Rg.ttf HTTP/1.1
Host: targo-webupdate.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://targo-webupdate.app/css/app.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 404 Not Found
server: nginx
date: Thu, 18 Apr 2024 05:36:35 GMT
content-type: text/html
last-modified: Wed, 17 Apr 2024 09:31:11 GMT
etag: W/"328-6164783e2aefb"
content-encoding: br
X-Firefox-Spdy: h2
|
|
| targo-webupdate.app/js/select2.min.js | 193.106.174.178 | 404 Not Found | 808 B |
URL GET HTTP/2targo-webupdate.app/js/select2.min.js IP193.106.174.178:443
Requested byhttps://targo-webupdate.app/ CertificateIssuerLet's Encrypt Subjecttargo-webupdate.app Fingerprint18:44:04:C0:A0:AF:0F:E6:3C:2C:E6:C5:34:39:67:05:E1:0A:27:53 ValidityWed, 17 Apr 2024 08:27:52 GMT - Tue, 16 Jul 2024 08:27:51 GMT
File typeHTML document, ASCII text, with very long lines (866), with no line terminators Hashb45bdabc5c2538b0c4e5f352bcdfb585 5a97ce87ce8d3d86a043c1a5e68e968e20a1e146 c96189c857253fcdbe13dfcbc7f919050fae21ccb7116c3078ee3c8d8d0f12c7
Analyzer | Verdict | Alert | OpenPhish | phishing | Sparkasse Bank |
GET /js/select2.min.js HTTP/1.1
Host: targo-webupdate.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://targo-webupdate.app/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 404 Not Found
server: nginx
date: Thu, 18 Apr 2024 05:36:35 GMT
content-type: text/html
last-modified: Wed, 17 Apr 2024 09:31:11 GMT
etag: W/"328-6164783e2aefb"
content-encoding: br
X-Firefox-Spdy: h2
|
|
| targo-webupdate.app/images/apple-icon-72x72.png | 193.106.174.178 | 200 OK | 933 B |
URL GET HTTP/2targo-webupdate.app/images/apple-icon-72x72.png IP193.106.174.178:443
Requested byhttps://targo-webupdate.app/ CertificateIssuerLet's Encrypt Subjecttargo-webupdate.app Fingerprint18:44:04:C0:A0:AF:0F:E6:3C:2C:E6:C5:34:39:67:05:E1:0A:27:53 ValidityWed, 17 Apr 2024 08:27:52 GMT - Tue, 16 Jul 2024 08:27:51 GMT
File typePNG image data, 72 x 72, 8-bit colormap, non-interlaced Hash786672c15975de08dd0abf368397a8fa 455d867dc00c8940c6f460aa240ec1fd318eb97c 33c844bc8b0556367db3f9d9ca10367b10bc95575bcf952fb3f6ebe6ac3907a0
Analyzer | Verdict | Alert | OpenPhish | phishing | Sparkasse Bank |
GET /images/apple-icon-72x72.png HTTP/1.1
Host: targo-webupdate.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://targo-webupdate.app/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Thu, 18 Apr 2024 05:36:35 GMT
content-type: image/png
content-length: 933
x-accel-version: 0.01
last-modified: Sat, 15 Oct 2022 10:17:22 GMT
etag: "3a5-5eb100c4e1080"
accept-ranges: bytes
x-powered-by: PleskLin
X-Firefox-Spdy: h2
|
|
| targo-webupdate.app/favicon.ico | 193.106.174.178 | 404 Not Found | 808 B |
URL GET HTTP/2targo-webupdate.app/favicon.ico IP193.106.174.178:443
Requested byhttps://targo-webupdate.app/ CertificateIssuerLet's Encrypt Subjecttargo-webupdate.app Fingerprint18:44:04:C0:A0:AF:0F:E6:3C:2C:E6:C5:34:39:67:05:E1:0A:27:53 ValidityWed, 17 Apr 2024 08:27:52 GMT - Tue, 16 Jul 2024 08:27:51 GMT
File typeHTML document, ASCII text, with very long lines (866), with no line terminators Hashb45bdabc5c2538b0c4e5f352bcdfb585 5a97ce87ce8d3d86a043c1a5e68e968e20a1e146 c96189c857253fcdbe13dfcbc7f919050fae21ccb7116c3078ee3c8d8d0f12c7
Analyzer | Verdict | Alert | OpenPhish | phishing | Sparkasse Bank |
GET /favicon.ico HTTP/1.1
Host: targo-webupdate.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://targo-webupdate.app/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 404 Not Found
server: nginx
date: Thu, 18 Apr 2024 05:36:35 GMT
content-type: text/html
last-modified: Wed, 17 Apr 2024 09:31:11 GMT
etag: W/"328-6164783e2aefb"
content-encoding: br
X-Firefox-Spdy: h2
|
|