Report - aktualisieren.info/

Report Overview

Submitted URL
aktualisieren.info/
IP
109.68.33.25
ASN
#20738 Host Europe GmbH
Submitted
2023-06-07 18:42:21
Access
public
Website Title
Final URL
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
20

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
fonts.gstatic.com	unknown	2008-02-11	2014-09-09	2023-06-07	513 B	16 kB	142.250.74.35
ocsp.godaddy.com	698	1999-03-02	2012-05-20	2023-06-07	330 B	2.3 kB	192.124.249.23
aktualisieren.info	unknown	unknown	2018-07-16	2023-01-17	4.5 kB	119 kB	109.68.33.25
ocsp.pki.goog	175	2016-06-13	2018-07-01	2023-06-07	1.3 kB	2.8 kB	142.250.74.131
www.google.com	7	1997-09-15	2015-05-10	2023-06-06	2.4 kB	33 kB	142.250.74.164
www.gstatic.com	unknown	2008-02-11	2016-07-26	2023-06-07	3.4 kB	722 kB	216.58.211.3

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator
2023-06-07	medium	aktualisieren.info
2023-06-07	medium	aktualisieren.info
2023-06-07	medium	aktualisieren.info
2023-06-07	medium	aktualisieren.info
2023-06-07	medium	aktualisieren.info
2023-06-07	medium	aktualisieren.info
2023-06-07	medium	aktualisieren.info
2023-06-07	medium	aktualisieren.info
2023-06-07	medium	aktualisieren.info
2023-06-07	medium	aktualisieren.info

ThreatFox

No alerts detected

JavaScript (10)

	URL	Size	First Seen	Last Seen
	www.google.com/recaptcha/api.js	850 B	2023-06-03	2023-06-09
Pretty URL www.google.com/recaptcha/api.js IP 142.250.74.164 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-06-03 06:46:56 Last Seen2023-06-09 06:41:42 Times Seen1039 Hash fbd5eeb900897249ff19788c9934795f a70760a26cbef3e5cfb627a7d76c9c135382a80f 8d407cd28e2db7a40917117ec99a996194878d452f589860cb45083e6d7208f1 Loading...

	www.google.com/recaptcha/api2/bframe?hl=en&v=sNQO7xVld1CuA2hfFHvkpVL-&k=6LfHj08UAAAAAJIY8NpEqT33c8BmJsQ6cfF2gRvT	0 B	2023-03-07	2024-04-19
Pretty URL www.google.com/recaptcha/api2/bframe?hl=en&v=sNQO7xVld1CuA2hfFHvkpVL-&k=6LfHj08UAAAAAJIY8NpEqT33c8BmJsQ6cfF2gRvT IP 142.250.74.164 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:01:59 Last Seen2024-04-19 20:01:32 Times Seen36966699 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	www.gstatic.com/recaptcha/releases/sNQO7xVld1CuA2hfFHvkpVL-/recaptcha__en.js	417 kB	2023-06-01	2023-06-15
Pretty URL www.gstatic.com/recaptcha/releases/sNQO7xVld1CuA2hfFHvkpVL-/recaptcha__en.js IP 216.58.211.3 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-06-01 21:02:24 Last Seen2023-06-15 18:56:33 Times Seen6805 Hash ee07ba65373413be83ec0d45887c2a44 13646acedb5d781fed2599c46634b4e58b8217db d946e8f3fb4fe90a5ae3027b91a76703106e2c5c1d762fc3fc230895db7b6048 Loading...

	www.google.com/recaptcha/api2/anchor?ar=1&k=6LfHj08UAAAAAJIY8NpEqT33c8BmJsQ6cfF2gRvT&co=aHR0cDovL2FrdHVhbGlzaWVyZW4uaW5mbzo4MA..&hl=en&v=sNQO7xVld1CuA2hfFHvkpVL-&size=normal&cb=sw8342gw0uuf	69 B	2023-03-07	2024-04-19
Pretty URL www.google.com/recaptcha/api2/anchor?ar=1&k=6LfHj08UAAAAAJIY8NpEqT33c8BmJsQ6cfF2gRvT&co=aHR0cDovL2FrdHVhbGlzaWVyZW4uaW5mbzo4MA..&hl=en&v=sNQO7xVld1CuA2hfFHvkpVL-&size=normal&cb=sw8342gw0uuf IP 142.250.74.164 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:02:05 Last Seen2024-04-19 19:49:33 Times Seen99083 Hash 45ecf7458f42da80ac248ad42d610372 a5b3edf8328769bc754e6e616a957ceed4fdadd7 75867e75b209895995014b43c3d711476e3437481e5fbec91a4da674302558bf Loading...

	www.google.com/recaptcha/api2/anchor?ar=1&k=6LfHj08UAAAAAJIY8NpEqT33c8BmJsQ6cfF2gRvT&co=aHR0cDovL2FrdHVhbGlzaWVyZW4uaW5mbzo4MA..&hl=en&v=sNQO7xVld1CuA2hfFHvkpVL-&size=normal&cb=sw8342gw0uuf	44 kB	2023-06-07	2023-06-07
Pretty URL www.google.com/recaptcha/api2/anchor?ar=1&k=6LfHj08UAAAAAJIY8NpEqT33c8BmJsQ6cfF2gRvT&co=aHR0cDovL2FrdHVhbGlzaWVyZW4uaW5mbzo4MA..&hl=en&v=sNQO7xVld1CuA2hfFHvkpVL-&size=normal&cb=sw8342gw0uuf IP 142.250.74.164 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML true Observations First Seen2023-06-07 20:42:24 Last Seen2023-06-07 20:42:24 Times Seen1 Hash f92db8d797e42d7a1eb6f5072bfc487e ef2d7949a08e0816ed3162503bcb43dd0c01248f 46f654c02ceea0d8a21a878fa30c6602fe758b042aecdd71ad5e26a7f39eeb6b Loading...

		Size	First Seen	Last Seen
	#1 Eval - 68cdc2101fe718360dc9f1b37205a488	22 B	2023-06-05	2023-06-08
Pretty Observations First Seen2023-06-05 09:11:12 Last Seen2023-06-08 08:44:05 Times Seen339 Hash 68cdc2101fe718360dc9f1b37205a488 c134729ea93e062a5faa98597dd7bd76e0faee3d 394a74bc1b527a243b523f72bfd2f5d5679ce30d1c2d59e1d5ea57888351bd99 Loading...

	#2 Eval - 2285237cf82e87804bcf2b5d39ab91f1	16 kB	2023-06-05	2023-06-08
Pretty Observations First Seen2023-06-05 09:11:12 Last Seen2023-06-08 08:44:05 Times Seen337 Hash 2285237cf82e87804bcf2b5d39ab91f1 1c726e88ceff1274b2d3d75d8dadfa5208cbb17d 56ad0b59edbb6fc346f3bc0f64e6107918d77382b5c9c7aabce9be27e5238b39 Loading...

	#3 Eval - a475c2792c440be501484aacf129f728	22 B	2023-06-05	2023-06-08
Pretty Observations First Seen2023-06-05 09:11:12 Last Seen2023-06-08 08:44:05 Times Seen337 Hash a475c2792c440be501484aacf129f728 657bad197ef9d8a31b02faa6360554facc9b7af1 422a1239f858968c74ef366025fce37cb5f43d84382d0d42c46fd48b586fc247 Loading...

	#4 Eval - 0c2fb8bc9af07d14c20067c29a5aa87a	64 B	2023-06-05	2023-06-08
Pretty Observations First Seen2023-06-05 09:11:12 Last Seen2023-06-08 08:44:05 Times Seen339 Hash 0c2fb8bc9af07d14c20067c29a5aa87a 06c440b4c5baf220570b273057e9eb0af70cb1d7 1cd1e04588ad21cf04578892f5b6e5c52c198436ceb95fdc8c500e05778a3584 Loading...

	#5 Eval - 1b60e801c2eba7723aa966709f1832af	16 kB	2023-06-07	2023-06-07
Pretty Observations First Seen2023-06-07 20:42:24 Last Seen2023-06-07 20:42:24 Times Seen1 Hash 1b60e801c2eba7723aa966709f1832af cced457ac6446dbaa919d585393c8b6cb6bb56ae 1014172091c6e1f26f5a24d44ea826e03b412637bee99795cc75ca68af7afcdc Loading...

HTTP Transactions (27)

URL IP Response Size

ocsp.godaddy.com/

192.124.249.23

1.8 kB

URL
ocsp.godaddy.com/
IP
192.124.249.23:0
ASN
#30148 SUCURI-SEC

File type
data
Size
1.8 kB (1778 bytes)
Hash
55ca2dd6712ce79d6d1aa6255398ba84
f9678041f039c2d876c8a4165f6bb7d3388b7063
d5e2a8c08d6b077bcf0183e53f969e5f4fe8e67d5e81be7fbef7d9fca57a32e0

HTTP Headers

POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 76
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Wed, 07 Jun 2023 18:42:03 GMT
Content-Type: application/ocsp-response
Content-Length: 1778
Connection: keep-alive
X-Sucuri-ID: 19023
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Wed, 07 Jun 2023 18:01:27 GMT
Expires: Thu, 08 Jun 2023 18:01:27 GMT
ETag: "f9678041f039c2d876c8a4165f6bb7d3388b7063"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"

aktualisieren.info/

109.68.33.25

10 kB

URL User Request GET
aktualisieren.info/
IP
109.68.33.25:0
ASN
#20738 Host Europe GmbH

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (4652), with CRLF, LF line terminators
Size
10 kB (10476 bytes)
Hash
dc16e23d84e416c562d6032c01460df1
3183de6d9a9bc65f48ef55e8d2c9d4e45632ed68
22496c01cf18637c7819a1ff116a8db4d66b8b26628c71a407140e6eb999fad1

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET / HTTP/1.1
Host: aktualisieren.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
cache-control: private
content-type: text/html; charset=utf-8
server: Microsoft-IIS/8.5
set-cookie: ASP.NET_SessionId=L1PWDBXWEB02N02.meshdigital.net~qupywjn324cgw2puj3ppqy3x; path=/; HttpOnly; SameSite=Lax
x-aspnet-version: 4.0.30319
x-powered-by: ASP.NET
date: Wed, 07 Jun 2023 18:42:02 GMT
content-length: 10476

aktualisieren.info/styles/am-custom-styles.css

109.68.33.25

200 OK

2.0 kB

URL GET HTTP/1.1
aktualisieren.info/styles/am-custom-styles.css
IP
109.68.33.25:80
ASN
#20738 Host Europe GmbH

Requested by
http://aktualisieren.info/

File type
Unicode text, UTF-8 (with BOM) text, with CRLF line terminators
Size
2.0 kB (2048 bytes)
Hash
1c511c644600b1c442d28c1175778916
d41f507c3d80e99e5e35133486c1a7f95b90fe5a
bdef64eea50a351d3a171f3a4ec46d4d9ca9bebd48cbd7b3fdda65d40d992ff4

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /styles/am-custom-styles.css HTTP/1.1
Host: aktualisieren.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://aktualisieren.info/
Cookie: ASP.NET_SessionId=L1PWDBXWEB02N02.meshdigital.net~qupywjn324cgw2puj3ppqy3x
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
content-type: text/css
last-modified: Wed, 15 Jan 2014 14:31:54 GMT
accept-ranges: bytes
etag: "12c9ab89fe11cf1:0"
server: Microsoft-IIS/8.5
x-powered-by: ASP.NET
date: Wed, 07 Jun 2023 18:42:03 GMT
content-length: 2048

ocsp.pki.goog/gts1c3

142.250.74.131

471 B

URL
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
b01d4e21c731153dda355584e22ac8bc
e9413a5fb5566bb42223bd93255222c240ceffd5
3d8ba602054811310a70e4026e5bd99b28b9e94482ff0a120fb6d4428622bf75

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Jun 2023 18:42:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

aktualisieren.info/styles/am-default-styles-1.0.css

109.68.33.25

200 OK

1.1 kB

URL GET HTTP/1.1
aktualisieren.info/styles/am-default-styles-1.0.css
IP
109.68.33.25:80
ASN
#20738 Host Europe GmbH

Requested by
http://aktualisieren.info/

File type
Unicode text, UTF-8 (with BOM) text, with CRLF line terminators
Size
1.1 kB (1128 bytes)
Hash
0504f81bf837c2186333128fb81349e8
021b93631e803576f30a71aa46db7fedadae1a18
3be4314e61c1919494da6ec86f994b9b6295c967cbd9df09b3083edb7c148290

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /styles/am-default-styles-1.0.css HTTP/1.1
Host: aktualisieren.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://aktualisieren.info/
Cookie: ASP.NET_SessionId=L1PWDBXWEB02N02.meshdigital.net~qupywjn324cgw2puj3ppqy3x
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
content-type: text/css
content-encoding: gzip
last-modified: Wed, 15 Jan 2014 14:40:49 GMT
accept-ranges: bytes
etag: "80ae30c8ff11cf1:0"
vary: Accept-Encoding
server: Microsoft-IIS/8.5
x-powered-by: ASP.NET
date: Wed, 07 Jun 2023 18:42:03 GMT
content-length: 1128

aktualisieren.info/skins/123reg/custom-styles.css

109.68.33.25

200 OK

868 B

URL GET HTTP/1.1
aktualisieren.info/skins/123reg/custom-styles.css
IP
109.68.33.25:80
ASN
#20738 Host Europe GmbH

Requested by
http://aktualisieren.info/

File type
Unicode text, UTF-8 (with BOM) text, with CRLF line terminators
Size
868 B (868 bytes)
Hash
5e53fb06937f8e2592a989f761355047
5e04fc73e7e7db05e0b8a1e0b3bf2dc54fddbd06
584f094b2b09b02b4989e29df9a169e20180645c3918f00d754106be014b52d8

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /skins/123reg/custom-styles.css HTTP/1.1
Host: aktualisieren.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://aktualisieren.info/
Cookie: ASP.NET_SessionId=L1PWDBXWEB02N02.meshdigital.net~qupywjn324cgw2puj3ppqy3x
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
content-type: text/css
content-encoding: gzip
last-modified: Thu, 31 Mar 2016 09:02:31 GMT
accept-ranges: bytes
etag: "802d96e2c8bd11:0"
vary: Accept-Encoding
server: Microsoft-IIS/8.5
x-powered-by: ASP.NET
date: Wed, 07 Jun 2023 18:42:03 GMT
content-length: 868

www.google.com/recaptcha/api.js

142.250.74.164

200 OK

555 B

URL GET HTTP/2
www.google.com/recaptcha/api.js
IP
142.250.74.164:443
ASN
#15169 GOOGLE

Requested by
http://aktualisieren.info/
Certificate
IssuerGoogle Trust Services LLC
Subjectwww.google.com
FingerprintA8:95:C3:CB:D6:3F:BC:0A:7D:FF:36:72:5E:2F:56:26:9F:EB:77:0E
ValidityFri, 19 May 2023 12:58:13 GMT - Fri, 11 Aug 2023 12:58:12 GMT

File type
ASCII text, with very long lines (850), with no line terminators
Size
555 B (555 bytes)
Hash
fbd5eeb900897249ff19788c9934795f
a70760a26cbef3e5cfb627a7d76c9c135382a80f
8d407cd28e2db7a40917117ec99a996194878d452f589860cb45083e6d7208f1

HTTP Headers

GET /recaptcha/api.js HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://aktualisieren.info/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
expires: Wed, 07 Jun 2023 18:42:04 GMT
date: Wed, 07 Jun 2023 18:42:04 GMT
cache-control: private, max-age=300
content-type: text/javascript; charset=UTF-8
cross-origin-resource-policy: cross-origin
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 555
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

471 B

URL
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
fa8e79fb0e18e81028cfa427d87bb2ae
8a9161e346469dad848953f5bfa5a642b2260aa4
52018dada7692144689b5345f695af35e0dc01a5584d95f6bea9c96c33fc8a59

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Jun 2023 18:42:04 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

aktualisieren.info/favicon.ico

109.68.33.25

404 Not Found

1.2 kB

URL GET HTTP/1.1
aktualisieren.info/favicon.ico
IP
109.68.33.25:80
ASN
#20738 Host Europe GmbH

Requested by
http://aktualisieren.info/

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Size
1.2 kB (1245 bytes)
Hash
5343c1a8b203c162a3bf3870d9f50fd4
04b5b886c20d88b57eea6d8ff882624a4ac1e51d
dc1d54dab6ec8c00f70137927504e4f222c8395f10760b6beecfcfa94e08249f

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: aktualisieren.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://aktualisieren.info/
Cookie: ASP.NET_SessionId=L1PWDBXWEB02N02.meshdigital.net~qupywjn324cgw2puj3ppqy3x
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 404 Not Found
content-type: text/html
server: Microsoft-IIS/8.5
x-powered-by: ASP.NET
date: Wed, 07 Jun 2023 18:42:03 GMT
content-length: 1245

aktualisieren.info/images/55px-alert.png

109.68.33.25

200 OK

1.6 kB

URL GET HTTP/1.1
aktualisieren.info/images/55px-alert.png
IP
109.68.33.25:80
ASN
#20738 Host Europe GmbH

Requested by
http://aktualisieren.info/

File type
PNG image data, 55 x 55, 8-bit/color RGBA, non-interlaced\012- data
Size
1.6 kB (1596 bytes)
Hash
e5308e548d2fc0575b1cd8c4d3931447
b74a5179291608708638026043b5b369742fb20c
40c263b1d92642429ac0c0b6debb86a9ae50687bdb046ccb179eaacd38a90480

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /images/55px-alert.png HTTP/1.1
Host: aktualisieren.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://aktualisieren.info/styles/am-custom-styles.css
Cookie: ASP.NET_SessionId=L1PWDBXWEB02N02.meshdigital.net~qupywjn324cgw2puj3ppqy3x
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
content-type: image/png
last-modified: Tue, 14 Jan 2014 15:04:29 GMT
accept-ranges: bytes
etag: "ee922fec3911cf1:0"
server: Microsoft-IIS/8.5
x-powered-by: ASP.NET
date: Wed, 07 Jun 2023 18:42:03 GMT
content-length: 1596

ocsp.pki.goog/gts1c3

142.250.74.131

471 B

URL
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
b2ec6c1f0c77c6e9a2796d3ac3294d0e
9fd82891ead5aec13abee83cf6b7a59375b2c3c5
63cb3c8767a9e5925cf61dce28b4d578aad09e7ba9358039648f05c9d98b4484

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Jun 2023 18:42:04 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

aktualisieren.info/images/32px-question.png

109.68.33.25

200 OK

705 B

URL GET HTTP/1.1
aktualisieren.info/images/32px-question.png
IP
109.68.33.25:80
ASN
#20738 Host Europe GmbH

Requested by
http://aktualisieren.info/

File type
PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced\012- data
Size
705 B (705 bytes)
Hash
60d41b5aa7397d96b4e1d4ec49dffe53
10e9f5ce8047b70eb31f7b1f4df46b4cc4dbe4e5
6f4e630f1a884f05fe2a6b8f0e284516e00fc772673a2b27806d56d8e28b4f4e

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /images/32px-question.png HTTP/1.1
Host: aktualisieren.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://aktualisieren.info/styles/am-custom-styles.css
Cookie: ASP.NET_SessionId=L1PWDBXWEB02N02.meshdigital.net~qupywjn324cgw2puj3ppqy3x
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
content-type: image/png
last-modified: Tue, 14 Jan 2014 15:04:29 GMT
accept-ranges: bytes
etag: "8a302dec3911cf1:0"
server: Microsoft-IIS/8.5
x-powered-by: ASP.NET
date: Wed, 07 Jun 2023 18:42:03 GMT
content-length: 705

aktualisieren.info/images/32px-alert.png

109.68.33.25

200 OK

643 B

URL GET HTTP/1.1
aktualisieren.info/images/32px-alert.png
IP
109.68.33.25:80
ASN
#20738 Host Europe GmbH

Requested by
http://aktualisieren.info/

File type
PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced\012- data
Size
643 B (643 bytes)
Hash
cf6ccfc82e54c7529787c5aa3e25edca
4d755e97ad549a497d0d01be506ef17369ad3424
3e7fd24af65f4416d98816f2ae4470bd505164818aabea772e46370d033107d8

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /images/32px-alert.png HTTP/1.1
Host: aktualisieren.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://aktualisieren.info/styles/am-custom-styles.css
Cookie: ASP.NET_SessionId=L1PWDBXWEB02N02.meshdigital.net~qupywjn324cgw2puj3ppqy3x
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
content-type: image/png
last-modified: Tue, 14 Jan 2014 15:04:28 GMT
accept-ranges: bytes
etag: "c26b28ec3911cf1:0"
server: Microsoft-IIS/8.5
x-powered-by: ASP.NET
date: Wed, 07 Jun 2023 18:42:03 GMT
content-length: 643

aktualisieren.info/skins/123reg/123-logo-100px.png

109.68.33.25

200 OK

75 kB

URL GET HTTP/1.1
aktualisieren.info/skins/123reg/123-logo-100px.png
IP
109.68.33.25:80
ASN
#20738 Host Europe GmbH

Requested by
http://aktualisieren.info/

File type
PNG image data, 253 x 45, 8-bit/color RGBA, non-interlaced\012- data
Size
75 kB (75332 bytes)
Hash
c52773b682194ea44869c50d1eb3ad5f
4c0f753e08d33e8d27e01231150e54f564653f83
86adbc93fc339496c8836f1ea5b4046b0035e7b2c36a9cb3c64f93e487b36679

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /skins/123reg/123-logo-100px.png HTTP/1.1
Host: aktualisieren.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://aktualisieren.info/skins/123reg/custom-styles.css
Cookie: ASP.NET_SessionId=L1PWDBXWEB02N02.meshdigital.net~qupywjn324cgw2puj3ppqy3x
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
content-type: image/png
last-modified: Thu, 31 Mar 2016 08:51:41 GMT
accept-ranges: bytes
etag: "879348b2a8bd11:0"
server: Microsoft-IIS/8.5
x-powered-by: ASP.NET
date: Wed, 07 Jun 2023 18:42:03 GMT
content-length: 75332

www.gstatic.com/recaptcha/releases/sNQO7xVld1CuA2hfFHvkpVL-/recaptcha__en.js

216.58.211.3

200 OK

166 kB

URL GET HTTP/3
www.gstatic.com/recaptcha/releases/sNQO7xVld1CuA2hfFHvkpVL-/recaptcha__en.js
IP
216.58.211.3:443
ASN
#15169 GOOGLE

Requested by
https://www.google.com/recaptcha/api2/bframe?hl=en&v=sNQO7xVld1CuA2hfFHvkpVL-&k=6LfHj08UAAAAAJIY8NpEqT33c8BmJsQ6cfF2gRvT
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintC8:5A:9A:D9:6A:F5:00:15:5B:5D:99:FE:FE:CA:1D:7C:19:4D:F8:D5
ValidityFri, 19 May 2023 12:57:42 GMT - Fri, 11 Aug 2023 12:57:41 GMT

File type
ASCII text, with very long lines (749)
Size
166 kB (166186 bytes)
Hash
ee07ba65373413be83ec0d45887c2a44
13646acedb5d781fed2599c46634b4e58b8217db
d946e8f3fb4fe90a5ae3027b91a76703106e2c5c1d762fc3fc230895db7b6048

HTTP Headers

GET /recaptcha/releases/sNQO7xVld1CuA2hfFHvkpVL-/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://aktualisieren.info
DNT: 1
Connection: keep-alive
Referer: http://aktualisieren.info/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 166186
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 06 Jun 2023 17:46:58 GMT
expires: Wed, 05 Jun 2024 17:46:58 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 30 May 2023 00:01:16 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 89706
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

aktualisieren.info/skins/123reg/header_footer.png

109.68.33.25

200 OK

23 kB

URL GET HTTP/1.1
aktualisieren.info/skins/123reg/header_footer.png
IP
109.68.33.25:80
ASN
#20738 Host Europe GmbH

Requested by
http://aktualisieren.info/

File type
PNG image data, 255 x 256, 8-bit/color RGBA, non-interlaced\012- data
Size
23 kB (22714 bytes)
Hash
72e2f27f725463a9073c7f4fee90711d
aa0ccd44c8b5e66a619bef5216c6c868f37ccdc5
f289e993e23bfcc5d948c0b744642dcf61c4fd3f18a0eff3d7473796463b8747

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /skins/123reg/header_footer.png HTTP/1.1
Host: aktualisieren.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://aktualisieren.info/skins/123reg/custom-styles.css
Cookie: ASP.NET_SessionId=L1PWDBXWEB02N02.meshdigital.net~qupywjn324cgw2puj3ppqy3x
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
content-type: image/png
last-modified: Tue, 24 Feb 2015 15:14:19 GMT
accept-ranges: bytes
etag: "4f78b08f4450d01:0"
server: Microsoft-IIS/8.5
x-powered-by: ASP.NET
date: Wed, 07 Jun 2023 18:42:03 GMT
content-length: 22714

ocsp.pki.goog/gts1c3

142.250.74.131

471 B

URL
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
b2ec6c1f0c77c6e9a2796d3ac3294d0e
9fd82891ead5aec13abee83cf6b7a59375b2c3c5
63cb3c8767a9e5925cf61dce28b4d578aad09e7ba9358039648f05c9d98b4484

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Jun 2023 18:42:04 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.google.com/recaptcha/api2/anchor?ar=1&k=6LfHj08UAAAAAJIY8NpEqT33c8BmJsQ6cfF2gRvT&co=aHR0cDovL2FrdHVhbGlzaWVyZW4uaW5mbzo4MA..&hl=en&v=sNQO7xVld1CuA2hfFHvkpVL-&size=normal&cb=sw8342gw0uuf

142.250.74.164

200 OK

29 kB

URL GET HTTP/3
www.google.com/recaptcha/api2/anchor?ar=1&k=6LfHj08UAAAAAJIY8NpEqT33c8BmJsQ6cfF2gRvT&co=aHR0cDovL2FrdHVhbGlzaWVyZW4uaW5mbzo4MA..&hl=en&v=sNQO7xVld1CuA2hfFHvkpVL-&size=normal&cb=sw8342gw0uuf
IP
142.250.74.164:443
ASN
#15169 GOOGLE

Requested by
http://aktualisieren.info/
Certificate
IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint55:5E:E6:33:AF:71:86:C2:88:4A:36:5F:68:1D:97:9D:9B:9D:2A:1D
ValidityFri, 19 May 2023 12:53:06 GMT - Fri, 11 Aug 2023 12:53:05 GMT

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (43780)
Size
29 kB (28564 bytes)
Hash
802ab425b83b67ce1800aaf6a25814c0
349634cf82abbb308527de009b039a2a2361c583
7b78138ab545a7aa9ff54f9638887adc0dbf07d1a36ee3549b3b8e9914479993

HTTP Headers

GET /recaptcha/api2/anchor?ar=1&k=6LfHj08UAAAAAJIY8NpEqT33c8BmJsQ6cfF2gRvT&co=aHR0cDovL2FrdHVhbGlzaWVyZW4uaW5mbzo4MA..&hl=en&v=sNQO7xVld1CuA2hfFHvkpVL-&size=normal&cb=sw8342gw0uuf HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://aktualisieren.info/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-type: text/html; charset=utf-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Wed, 07 Jun 2023 18:42:04 GMT
content-security-policy: script-src 'nonce-85WeaJ9T2uDi4__3nPwJww' 'unsafe-inline' 'strict-dynamic' https: http: 'unsafe-eval';object-src 'none';base-uri 'self';report-uri https://csp.withgoogle.com/csp/recaptcha/1
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 28564
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

www.gstatic.com/recaptcha/releases/sNQO7xVld1CuA2hfFHvkpVL-/styles__ltr.css

216.58.211.3

200 OK

25 kB

URL GET HTTP/3
www.gstatic.com/recaptcha/releases/sNQO7xVld1CuA2hfFHvkpVL-/styles__ltr.css
IP
216.58.211.3:443
ASN
#15169 GOOGLE

Requested by
https://www.google.com/recaptcha/api2/bframe?hl=en&v=sNQO7xVld1CuA2hfFHvkpVL-&k=6LfHj08UAAAAAJIY8NpEqT33c8BmJsQ6cfF2gRvT
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintC8:5A:9A:D9:6A:F5:00:15:5B:5D:99:FE:FE:CA:1D:7C:19:4D:F8:D5
ValidityFri, 19 May 2023 12:57:42 GMT - Fri, 11 Aug 2023 12:57:41 GMT

File type
ASCII text, with very long lines (56403), with no line terminators
Size
25 kB (24605 bytes)
Hash
83f90c5a4c20afb44429fa346fbadc10
7c278ec721d3880fbafaadeba9ee80bdf294b014
952833e41ba7a4b64c31a2d7b07dde81bf5bbacf5cbb967821cfe459d0c4a0d8

HTTP Headers

GET /recaptcha/releases/sNQO7xVld1CuA2hfFHvkpVL-/styles__ltr.css HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 24605
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 07 Jun 2023 02:47:23 GMT
expires: Thu, 06 Jun 2024 02:47:23 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 30 May 2023 00:01:16 GMT
content-type: text/css
vary: Accept-Encoding
age: 57281
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

www.gstatic.com/recaptcha/releases/sNQO7xVld1CuA2hfFHvkpVL-/recaptcha__en.js

216.58.211.3

200 OK

166 kB

URL GET HTTP/3
www.gstatic.com/recaptcha/releases/sNQO7xVld1CuA2hfFHvkpVL-/recaptcha__en.js
IP
216.58.211.3:443
ASN
#15169 GOOGLE

Requested by
https://www.google.com/recaptcha/api2/bframe?hl=en&v=sNQO7xVld1CuA2hfFHvkpVL-&k=6LfHj08UAAAAAJIY8NpEqT33c8BmJsQ6cfF2gRvT
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintC8:5A:9A:D9:6A:F5:00:15:5B:5D:99:FE:FE:CA:1D:7C:19:4D:F8:D5
ValidityFri, 19 May 2023 12:57:42 GMT - Fri, 11 Aug 2023 12:57:41 GMT

File type
ASCII text, with very long lines (749)
Size
166 kB (166186 bytes)
Hash
ee07ba65373413be83ec0d45887c2a44
13646acedb5d781fed2599c46634b4e58b8217db
d946e8f3fb4fe90a5ae3027b91a76703106e2c5c1d762fc3fc230895db7b6048

HTTP Headers

GET /recaptcha/releases/sNQO7xVld1CuA2hfFHvkpVL-/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 166186
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 06 Jun 2023 17:46:58 GMT
expires: Wed, 05 Jun 2024 17:46:58 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 30 May 2023 00:01:16 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 89706
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

www.google.com/recaptcha/api2/webworker.js?hl=en&v=sNQO7xVld1CuA2hfFHvkpVL-

142.250.74.164

200 OK

112 B

URL GET HTTP/3
www.google.com/recaptcha/api2/webworker.js?hl=en&v=sNQO7xVld1CuA2hfFHvkpVL-
IP
142.250.74.164:443
ASN
#15169 GOOGLE

Requested by
https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LfHj08UAAAAAJIY8NpEqT33c8BmJsQ6cfF2gRvT&co=aHR0cDovL2FrdHVhbGlzaWVyZW4uaW5mbzo4MA..&hl=en&v=sNQO7xVld1CuA2hfFHvkpVL-&size=normal&cb=sw8342gw0uuf
Certificate
IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint55:5E:E6:33:AF:71:86:C2:88:4A:36:5F:68:1D:97:9D:9B:9D:2A:1D
ValidityFri, 19 May 2023 12:53:06 GMT - Fri, 11 Aug 2023 12:53:05 GMT

File type
ASCII text, with no line terminators
Size
112 B (112 bytes)
Hash
28c612c7ed1d28591eb7ed8d95816a94
bc402ec3d9eccbb9ce2b682bb43fa23ab92afb80
dc304d634887ea89a42e74d959fdc8dc4517e33e0df44764aad5bc63870ccb29

HTTP Headers

GET /recaptcha/api2/webworker.js?hl=en&v=sNQO7xVld1CuA2hfFHvkpVL- HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LfHj08UAAAAAJIY8NpEqT33c8BmJsQ6cfF2gRvT&co=aHR0cDovL2FrdHVhbGlzaWVyZW4uaW5mbzo4MA..&hl=en&v=sNQO7xVld1CuA2hfFHvkpVL-&size=normal&cb=sw8342gw0uuf
Sec-Fetch-Dest: worker
Sec-Fetch-Mode: same-origin
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
expires: Wed, 07 Jun 2023 18:42:05 GMT
date: Wed, 07 Jun 2023 18:42:05 GMT
cache-control: private, max-age=300
cross-origin-embedder-policy: require-corp
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-type: text/javascript; charset=UTF-8
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 112
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2

142.250.74.35

200 OK

15 kB

URL GET HTTP/2
fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
IP
142.250.74.35:443
ASN
#15169 GOOGLE

Requested by
https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LfHj08UAAAAAJIY8NpEqT33c8BmJsQ6cfF2gRvT&co=aHR0cDovL2FrdHVhbGlzaWVyZW4uaW5mbzo4MA..&hl=en&v=sNQO7xVld1CuA2hfFHvkpVL-&size=normal&cb=sw8342gw0uuf
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintC8:5A:9A:D9:6A:F5:00:15:5B:5D:99:FE:FE:CA:1D:7C:19:4D:F8:D5
ValidityFri, 19 May 2023 12:57:42 GMT - Fri, 11 Aug 2023 12:57:41 GMT

File type
Web Open Font Format (Version 2), TrueType, length 15344, version 1.0\012- data
Size
15 kB (15344 bytes)
Hash
5d4aeb4e5f5ef754e307d7ffaef688bd
06db651cdf354c64a7383ea9c77024ef4fb4cef8
3e253b66056519aa065b00a453bac37ac5ed8f3e6fe7b542e93a9dcdcc11d0bc

HTTP Headers

GET /s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15344
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 06 Jun 2023 17:31:32 GMT
expires: Wed, 05 Jun 2024 17:31:32 GMT
cache-control: public, max-age=31536000
age: 90633
last-modified: Mon, 16 Oct 2017 17:32:55 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.gstatic.com/recaptcha/releases/sNQO7xVld1CuA2hfFHvkpVL-/recaptcha__en.js

216.58.211.3

200 OK

166 kB

URL GET HTTP/3
www.gstatic.com/recaptcha/releases/sNQO7xVld1CuA2hfFHvkpVL-/recaptcha__en.js
IP
216.58.211.3:443
ASN
#15169 GOOGLE

Requested by
https://www.google.com/recaptcha/api2/bframe?hl=en&v=sNQO7xVld1CuA2hfFHvkpVL-&k=6LfHj08UAAAAAJIY8NpEqT33c8BmJsQ6cfF2gRvT
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintC8:5A:9A:D9:6A:F5:00:15:5B:5D:99:FE:FE:CA:1D:7C:19:4D:F8:D5
ValidityFri, 19 May 2023 12:57:42 GMT - Fri, 11 Aug 2023 12:57:41 GMT

File type
ASCII text, with very long lines (749)
Size
166 kB (166186 bytes)
Hash
ee07ba65373413be83ec0d45887c2a44
13646acedb5d781fed2599c46634b4e58b8217db
d946e8f3fb4fe90a5ae3027b91a76703106e2c5c1d762fc3fc230895db7b6048

HTTP Headers

GET /recaptcha/releases/sNQO7xVld1CuA2hfFHvkpVL-/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 166186
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 06 Jun 2023 17:46:58 GMT
expires: Wed, 05 Jun 2024 17:46:58 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 30 May 2023 00:01:16 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 89707
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

www.gstatic.com/recaptcha/api2/logo_48.png

216.58.211.3

200 OK

2.2 kB

URL GET HTTP/3
www.gstatic.com/recaptcha/api2/logo_48.png
IP
216.58.211.3:443
ASN
#15169 GOOGLE

Requested by
https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LfHj08UAAAAAJIY8NpEqT33c8BmJsQ6cfF2gRvT&co=aHR0cDovL2FrdHVhbGlzaWVyZW4uaW5mbzo4MA..&hl=en&v=sNQO7xVld1CuA2hfFHvkpVL-&size=normal&cb=sw8342gw0uuf
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintC8:5A:9A:D9:6A:F5:00:15:5B:5D:99:FE:FE:CA:1D:7C:19:4D:F8:D5
ValidityFri, 19 May 2023 12:57:42 GMT - Fri, 11 Aug 2023 12:57:41 GMT

File type
PNG image data, 48 x 48, 8-bit/color RGBA, non-interlaced\012- data
Size
2.2 kB (2228 bytes)
Hash
ef9941290c50cd3866e2ba6b793f010d
4736508c795667dcea21f8d864233031223b7832
1b9efb22c938500971aac2b2130a475fa23684dd69e43103894968df83145b8a

HTTP Headers

GET /recaptcha/api2/logo_48.png HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.gstatic.com/recaptcha/releases/sNQO7xVld1CuA2hfFHvkpVL-/styles__ltr.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 2228
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 05 Jun 2023 21:48:58 GMT
expires: Mon, 12 Jun 2023 21:48:58 GMT
cache-control: public, max-age=604800
age: 161587
last-modified: Tue, 03 Mar 2020 20:15:00 GMT
content-type: image/png
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

www.google.com/recaptcha/api2/bframe?hl=en&v=sNQO7xVld1CuA2hfFHvkpVL-&k=6LfHj08UAAAAAJIY8NpEqT33c8BmJsQ6cfF2gRvT

142.250.74.164

200 OK

1.2 kB

URL GET HTTP/3
www.google.com/recaptcha/api2/bframe?hl=en&v=sNQO7xVld1CuA2hfFHvkpVL-&k=6LfHj08UAAAAAJIY8NpEqT33c8BmJsQ6cfF2gRvT
IP
142.250.74.164:443
ASN
#15169 GOOGLE

Requested by
http://aktualisieren.info/
Certificate
IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint55:5E:E6:33:AF:71:86:C2:88:4A:36:5F:68:1D:97:9D:9B:9D:2A:1D
ValidityFri, 19 May 2023 12:53:06 GMT - Fri, 11 Aug 2023 12:53:05 GMT

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
1.2 kB (1155 bytes)
Hash
b0b6189fb6e81d962ebd4284e6605d3b
2675557a8d3591aa9ee0be50505ec135c5dbe833
0bdb32d092e88130f1c559a4efe2f6972fd700b05e030f3064b6284a8f958638

HTTP Headers

GET /recaptcha/api2/bframe?hl=en&v=sNQO7xVld1CuA2hfFHvkpVL-&k=6LfHj08UAAAAAJIY8NpEqT33c8BmJsQ6cfF2gRvT HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://aktualisieren.info/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-type: text/html; charset=utf-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Wed, 07 Jun 2023 18:42:05 GMT
content-security-policy: script-src 'nonce-FxWxsd_yqF9irxwMuWD7jA' 'unsafe-inline' 'strict-dynamic' https: http: 'unsafe-eval';object-src 'none';base-uri 'self';report-uri https://csp.withgoogle.com/csp/recaptcha/1
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 1155
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

www.gstatic.com/recaptcha/releases/sNQO7xVld1CuA2hfFHvkpVL-/styles__ltr.css

216.58.211.3

200 OK

25 kB

URL GET HTTP/3
www.gstatic.com/recaptcha/releases/sNQO7xVld1CuA2hfFHvkpVL-/styles__ltr.css
IP
216.58.211.3:443
ASN
#15169 GOOGLE

Requested by
https://www.google.com/recaptcha/api2/bframe?hl=en&v=sNQO7xVld1CuA2hfFHvkpVL-&k=6LfHj08UAAAAAJIY8NpEqT33c8BmJsQ6cfF2gRvT
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintC8:5A:9A:D9:6A:F5:00:15:5B:5D:99:FE:FE:CA:1D:7C:19:4D:F8:D5
ValidityFri, 19 May 2023 12:57:42 GMT - Fri, 11 Aug 2023 12:57:41 GMT

File type
ASCII text, with very long lines (56403), with no line terminators
Size
25 kB (24605 bytes)
Hash
83f90c5a4c20afb44429fa346fbadc10
7c278ec721d3880fbafaadeba9ee80bdf294b014
952833e41ba7a4b64c31a2d7b07dde81bf5bbacf5cbb967821cfe459d0c4a0d8

HTTP Headers

GET /recaptcha/releases/sNQO7xVld1CuA2hfFHvkpVL-/styles__ltr.css HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 24605
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 07 Jun 2023 02:47:23 GMT
expires: Thu, 06 Jun 2024 02:47:23 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 30 May 2023 00:01:16 GMT
content-type: text/css
vary: Accept-Encoding
age: 57282
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

www.gstatic.com/recaptcha/releases/sNQO7xVld1CuA2hfFHvkpVL-/recaptcha__en.js

216.58.211.3

200 OK

166 kB

URL GET HTTP/3
www.gstatic.com/recaptcha/releases/sNQO7xVld1CuA2hfFHvkpVL-/recaptcha__en.js
IP
216.58.211.3:443
ASN
#15169 GOOGLE

Requested by
https://www.google.com/recaptcha/api2/bframe?hl=en&v=sNQO7xVld1CuA2hfFHvkpVL-&k=6LfHj08UAAAAAJIY8NpEqT33c8BmJsQ6cfF2gRvT
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintC8:5A:9A:D9:6A:F5:00:15:5B:5D:99:FE:FE:CA:1D:7C:19:4D:F8:D5
ValidityFri, 19 May 2023 12:57:42 GMT - Fri, 11 Aug 2023 12:57:41 GMT

File type
ASCII text, with very long lines (749)
Size
166 kB (166186 bytes)
Hash
ee07ba65373413be83ec0d45887c2a44
13646acedb5d781fed2599c46634b4e58b8217db
d946e8f3fb4fe90a5ae3027b91a76703106e2c5c1d762fc3fc230895db7b6048

HTTP Headers

GET /recaptcha/releases/sNQO7xVld1CuA2hfFHvkpVL-/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 166186
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 06 Jun 2023 17:46:58 GMT
expires: Wed, 05 Jun 2024 17:46:58 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 30 May 2023 00:01:16 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 89707
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (10)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

Observations

Hash

Observations

Hash

Observations

Hash

Observations

Hash

Observations

Hash

HTTP Transactions (27)

URL

IP

ASN

File type

Size

Hash

HTTP Headers

URL User Request GET