| | 178.250.159.32 | 200 OK | 18 kB |
URL User Request GET HTTP/1.1IP178.250.159.32:443
CertificateIssuerLet's Encrypt Subjectvisametric-com.ru Fingerprint89:E0:5C:84:F0:26:19:8C:35:89:DB:BD:CB:0D:EA:A8:94:44:D3:B8 ValidityThu, 11 Apr 2024 23:48:24 GMT - Wed, 10 Jul 2024 23:48:23 GMT
File typeHTML document, Unicode text, UTF-8 text, with very long lines (9462) Hash7c14e43e687f99f1d6593aec48ae60fe 7350ebd2b73856c8daae0867a06a84ad84ecbe03 5e3019ffac689acf6b2a05c2ae92f8395cba08791e9c3097b0097650e1fb2890
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET / HTTP/1.1
Host: visametrik.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0
Date: Sun, 28 Apr 2024 09:48:39 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Hyper-Cache: stop - no cache header
Set-Cookie: PHPSESSID=1ib42s2bi13q6mv0gg3t71igcq; path=/
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
X-Pingback: https://visametrik.de/xmlrpc.php
Link: <https://visametrik.de/wp-json/>; rel="https://api.w.org/", <https://visametrik.de/wp-json/wp/v2/pages/2>; rel="alternate"; type="application/json", <https://visametrik.de/>; rel=shortlink
Strict-Transport-Security: max-age=31536000;
Content-Encoding: gzip
|
|
| visametrik.de/wp-includes/css/dist/block-library/style.min.css?ver=6.5.2 | 178.250.159.32 | 200 OK | 15 kB |
URL GET HTTP/1.1visametrik.de/wp-includes/css/dist/block-library/style.min.css?ver=6.5.2 IP178.250.159.32:443
CertificateIssuerLet's Encrypt Subjectvisametric-com.ru Fingerprint89:E0:5C:84:F0:26:19:8C:35:89:DB:BD:CB:0D:EA:A8:94:44:D3:B8 ValidityThu, 11 Apr 2024 23:48:24 GMT - Wed, 10 Jul 2024 23:48:23 GMT
File typeASCII text, with very long lines (59701) Hash51a8390b47aa0582cf2d9c96c5addee2 b16a640874025d085c38119a1a02a3460f83f2de 98cecf88a23542fa047ce46eedb650b5c5128761ed4386c0977b847094ddfa20
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-includes/css/dist/block-library/style.min.css?ver=6.5.2 HTTP/1.1
Host: visametrik.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://visametrik.de/
Cookie: PHPSESSID=1ib42s2bi13q6mv0gg3t71igcq
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0
Date: Sun, 28 Apr 2024 09:48:39 GMT
Content-Type: text/css
Last-Modified: Mon, 15 Apr 2024 09:35:29 GMT
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"661cf4e1-1bae5"
Expires: Mon, 29 Apr 2024 09:48:39 GMT
Cache-Control: max-age=86400
Strict-Transport-Security: max-age=31536000;
Content-Encoding: gzip
|
|
| visametrik.de/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.4.2 | 178.250.159.32 | 200 OK | 933 B |
URL GET HTTP/1.1visametrik.de/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.4.2 IP178.250.159.32:443
CertificateIssuerLet's Encrypt Subjectvisametric-com.ru Fingerprint89:E0:5C:84:F0:26:19:8C:35:89:DB:BD:CB:0D:EA:A8:94:44:D3:B8 ValidityThu, 11 Apr 2024 23:48:24 GMT - Wed, 10 Jul 2024 23:48:23 GMT
Hash76e12144b6be9bc0a17dd880c5566156 c57db768b452aea923a2b083162e9e6ffb98d2f8 070edfef42e0980783d0acf8fa9ca6a9833b994eca13ffaa94e9a2deb47c92cf
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.4.2 HTTP/1.1
Host: visametrik.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://visametrik.de/
Cookie: PHPSESSID=1ib42s2bi13q6mv0gg3t71igcq
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0
Date: Sun, 28 Apr 2024 09:48:39 GMT
Content-Type: text/css
Last-Modified: Sun, 18 Jul 2021 11:08:46 GMT
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"60f40bbe-a50"
Expires: Mon, 29 Apr 2024 09:48:39 GMT
Cache-Control: max-age=86400
Strict-Transport-Security: max-age=31536000;
Content-Encoding: gzip
|
|
| visametrik.de/wp-content/uploads/maxmegamenu/style.css?ver=504394 | 178.250.159.32 | 200 OK | 5.7 kB |
URL GET HTTP/1.1visametrik.de/wp-content/uploads/maxmegamenu/style.css?ver=504394 IP178.250.159.32:443
CertificateIssuerLet's Encrypt Subjectvisametric-com.ru Fingerprint89:E0:5C:84:F0:26:19:8C:35:89:DB:BD:CB:0D:EA:A8:94:44:D3:B8 ValidityThu, 11 Apr 2024 23:48:24 GMT - Wed, 10 Jul 2024 23:48:23 GMT
File typeASCII text, with very long lines (1055) Hash326df1b2e74c58ad158fcf2f2b1960b2 a25292f1d03f928b119cfa76c222c2aeb0057a40 b7732fbd4e32a5d3753ef58c1c86020be8369af4d5c1539452c7cbf7320875c9
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/uploads/maxmegamenu/style.css?ver=504394 HTTP/1.1
Host: visametrik.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://visametrik.de/
Cookie: PHPSESSID=1ib42s2bi13q6mv0gg3t71igcq
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0
Date: Sun, 28 Apr 2024 09:48:39 GMT
Content-Type: text/css
Last-Modified: Tue, 08 Dec 2020 00:06:07 GMT
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"5fcec36f-1039e"
Expires: Mon, 29 Apr 2024 09:48:39 GMT
Cache-Control: max-age=86400
Strict-Transport-Security: max-age=31536000;
Content-Encoding: gzip
|
|
| visametrik.de/wp-content/themes/vfs/style.css | 178.250.159.32 | 200 OK | 8.4 kB |
URL GET HTTP/1.1visametrik.de/wp-content/themes/vfs/style.css IP178.250.159.32:443
CertificateIssuerLet's Encrypt Subjectvisametric-com.ru Fingerprint89:E0:5C:84:F0:26:19:8C:35:89:DB:BD:CB:0D:EA:A8:94:44:D3:B8 ValidityThu, 11 Apr 2024 23:48:24 GMT - Wed, 10 Jul 2024 23:48:23 GMT
Hash38ce1d38528826894846a4cce805839c 1d1167a6e81a7f76d86d5b365693a34391ad2f15 dece945262436052b6e2fb9d3abaca34ed95a4a143b81c902ef90be76f215d11
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/themes/vfs/style.css HTTP/1.1
Host: visametrik.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://visametrik.de/
Cookie: PHPSESSID=1ib42s2bi13q6mv0gg3t71igcq
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0
Date: Sun, 28 Apr 2024 09:48:39 GMT
Content-Type: text/css
Last-Modified: Fri, 06 Aug 2021 14:33:28 GMT
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"610d4838-985f"
Expires: Mon, 29 Apr 2024 09:48:39 GMT
Cache-Control: max-age=86400
Strict-Transport-Security: max-age=31536000;
Content-Encoding: gzip
|
|
| visametrik.de/wp-includes/css/dashicons.min.css?ver=6.5.2 | 178.250.159.32 | 200 OK | 36 kB |
URL GET HTTP/1.1visametrik.de/wp-includes/css/dashicons.min.css?ver=6.5.2 IP178.250.159.32:443
CertificateIssuerLet's Encrypt Subjectvisametric-com.ru Fingerprint89:E0:5C:84:F0:26:19:8C:35:89:DB:BD:CB:0D:EA:A8:94:44:D3:B8 ValidityThu, 11 Apr 2024 23:48:24 GMT - Wed, 10 Jul 2024 23:48:23 GMT
File typeASCII text, with very long lines (58981) Hashd68d6bf519169d86e155bad0bed833f8 27ba9c67d0e775fc4e6dd62011daf4c3902698fc c21e5a2b32c47bc5f9d9efc97bc0e29fd081946d1d3ebffc5621cfafb1d3960e
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-includes/css/dashicons.min.css?ver=6.5.2 HTTP/1.1
Host: visametrik.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://visametrik.de/
Cookie: PHPSESSID=1ib42s2bi13q6mv0gg3t71igcq
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0
Date: Sun, 28 Apr 2024 09:48:39 GMT
Content-Type: text/css
Last-Modified: Thu, 15 Apr 2021 08:44:02 GMT
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"6077fcd2-e688"
Expires: Mon, 29 Apr 2024 09:48:39 GMT
Cache-Control: max-age=86400
Strict-Transport-Security: max-age=31536000;
Content-Encoding: gzip
|
|
| visametrik.de/wp-content/plugins/date-time-picker-field/assets/js/vendor/datetimepicker/jquery.datetimepicker.min.css?ver=6.5.2 | 178.250.159.32 | 200 OK | 4.5 kB |
URL GET HTTP/1.1visametrik.de/wp-content/plugins/date-time-picker-field/assets/js/vendor/datetimepicker/jquery.datetimepicker.min.css?ver=6.5.2 IP178.250.159.32:443
CertificateIssuerLet's Encrypt Subjectvisametric-com.ru Fingerprint89:E0:5C:84:F0:26:19:8C:35:89:DB:BD:CB:0D:EA:A8:94:44:D3:B8 ValidityThu, 11 Apr 2024 23:48:24 GMT - Wed, 10 Jul 2024 23:48:23 GMT
File typeASCII text, with very long lines (16502) Hash868fad89fd813e6b1735ea15a6e8433e bb6c9caa734240f38da28a310ab1658be68f96ba 0ce4bd5ba351f8d15ed5f521104d0f18a63f7ee6db5029ce7d38ded89303c376
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/date-time-picker-field/assets/js/vendor/datetimepicker/jquery.datetimepicker.min.css?ver=6.5.2 HTTP/1.1
Host: visametrik.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://visametrik.de/
Cookie: PHPSESSID=1ib42s2bi13q6mv0gg3t71igcq
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0
Date: Sun, 28 Apr 2024 09:48:39 GMT
Content-Type: text/css
Last-Modified: Sun, 18 Jul 2021 11:08:57 GMT
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"60f40bc9-4077"
Expires: Mon, 29 Apr 2024 09:48:39 GMT
Cache-Control: max-age=86400
Strict-Transport-Security: max-age=31536000;
Content-Encoding: gzip
|
|
| visametrik.de/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.4.1 | 178.250.159.32 | 200 OK | 4.9 kB |
URL GET HTTP/1.1visametrik.de/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.4.1 IP178.250.159.32:443
CertificateIssuerLet's Encrypt Subjectvisametric-com.ru Fingerprint89:E0:5C:84:F0:26:19:8C:35:89:DB:BD:CB:0D:EA:A8:94:44:D3:B8 ValidityThu, 11 Apr 2024 23:48:24 GMT - Wed, 10 Jul 2024 23:48:23 GMT
File typeJavaScript source, ASCII text, with very long lines (13479) Hash9ffeb32e2d9efbf8f70caabded242267 3ad0c10e501ac2a9bfa18f9cd7e700219b378738 5274f11e6fb32ae0cf2dfb9f8043272865c397a7c4223b4cfa7d50ea52fbde89
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.4.1 HTTP/1.1
Host: visametrik.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://visametrik.de/
Cookie: PHPSESSID=1ib42s2bi13q6mv0gg3t71igcq
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0
Date: Sun, 28 Apr 2024 09:48:39 GMT
Content-Type: application/javascript; charset=UTF-8
Last-Modified: Wed, 13 Dec 2023 16:52:46 GMT
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"6579e15e-3509"
Expires: Mon, 29 Apr 2024 09:48:39 GMT
Cache-Control: max-age=86400
Strict-Transport-Security: max-age=31536000;
Content-Encoding: gzip
|
|
| visametrik.de/wp-includes/js/jquery/jquery.min.js?ver=3.7.1 | 178.250.159.32 | 200 OK | 31 kB |
URL GET HTTP/1.1visametrik.de/wp-includes/js/jquery/jquery.min.js?ver=3.7.1 IP178.250.159.32:443
CertificateIssuerLet's Encrypt Subjectvisametric-com.ru Fingerprint89:E0:5C:84:F0:26:19:8C:35:89:DB:BD:CB:0D:EA:A8:94:44:D3:B8 ValidityThu, 11 Apr 2024 23:48:24 GMT - Wed, 10 Jul 2024 23:48:23 GMT
File typeJavaScript source, ASCII text, with very long lines (65447) Hash826eb77e86b02ab7724fe3d0141ff87c 79cd3587d565afe290076a8d36c31c305a573d18 cb6f2d32c49d1c2b25e9ffc9aaafa3f83075346c01bcd4ae6eb187392a4292cf
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-includes/js/jquery/jquery.min.js?ver=3.7.1 HTTP/1.1
Host: visametrik.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://visametrik.de/
Cookie: PHPSESSID=1ib42s2bi13q6mv0gg3t71igcq
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0
Date: Sun, 28 Apr 2024 09:48:39 GMT
Content-Type: application/javascript; charset=UTF-8
Last-Modified: Wed, 13 Dec 2023 16:52:46 GMT
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"6579e15e-15601"
Expires: Mon, 29 Apr 2024 09:48:39 GMT
Cache-Control: max-age=86400
Strict-Transport-Security: max-age=31536000;
Content-Encoding: gzip
|
|
| visametrik.de/wp-content/themes/vfs/js/jquery.js?v=25 | 178.250.159.32 | 200 OK | 31 kB |
URL GET HTTP/1.1visametrik.de/wp-content/themes/vfs/js/jquery.js?v=25 IP178.250.159.32:443
CertificateIssuerLet's Encrypt Subjectvisametric-com.ru Fingerprint89:E0:5C:84:F0:26:19:8C:35:89:DB:BD:CB:0D:EA:A8:94:44:D3:B8 ValidityThu, 11 Apr 2024 23:48:24 GMT - Wed, 10 Jul 2024 23:48:23 GMT
File typeJavaScript source, ASCII text, with very long lines (32065) Hashc889f2d6b1f6f33bc97cdebc48d779fb 12d35e00bbd1b55ae603c76313827e2b00346c39 5c838f0c617f2d711a1b2999bdca52f93ba1405c7455cbba57cb7eaaa7afc559
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/themes/vfs/js/jquery.js?v=25 HTTP/1.1
Host: visametrik.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://visametrik.de/
Cookie: PHPSESSID=1ib42s2bi13q6mv0gg3t71igcq
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0
Date: Sun, 28 Apr 2024 09:48:39 GMT
Content-Type: application/javascript; charset=UTF-8
Last-Modified: Mon, 07 Dec 2020 19:28:17 GMT
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"5fce8251-1539d"
Expires: Mon, 29 Apr 2024 09:48:39 GMT
Cache-Control: max-age=86400
Strict-Transport-Security: max-age=31536000;
Content-Encoding: gzip
|
|
| visametrik.de/wp-content/themes/vfs/js/jqueryui.js?v=25 | 178.250.159.32 | 200 OK | 28 kB |
URL GET HTTP/1.1visametrik.de/wp-content/themes/vfs/js/jqueryui.js?v=25 IP178.250.159.32:443
CertificateIssuerLet's Encrypt Subjectvisametric-com.ru Fingerprint89:E0:5C:84:F0:26:19:8C:35:89:DB:BD:CB:0D:EA:A8:94:44:D3:B8 ValidityThu, 11 Apr 2024 23:48:24 GMT - Wed, 10 Jul 2024 23:48:23 GMT
File typeJavaScript source, ASCII text, with very long lines (18446) Hash9539c2bc3b10f5cb060a21a490d318ce a4e7f67acb0f95110147b828f13c033c2d74d051 20b3d85dd0a8c599e6d0688a05222ec2b2b537f8676a63bb93bc67925e61f875
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/themes/vfs/js/jqueryui.js?v=25 HTTP/1.1
Host: visametrik.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://visametrik.de/
Cookie: PHPSESSID=1ib42s2bi13q6mv0gg3t71igcq
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0
Date: Sun, 28 Apr 2024 09:48:39 GMT
Content-Type: application/javascript; charset=UTF-8
Last-Modified: Mon, 07 Dec 2020 19:28:18 GMT
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"5fce8252-17d18"
Expires: Mon, 29 Apr 2024 09:48:39 GMT
Cache-Control: max-age=86400
Strict-Transport-Security: max-age=31536000;
Content-Encoding: gzip
|
|
| visametrik.de/wp-content/themes/vfs/js/dle_js.js?v=25 | 178.250.159.32 | 200 OK | 7.9 kB |
URL GET HTTP/1.1visametrik.de/wp-content/themes/vfs/js/dle_js.js?v=25 IP178.250.159.32:443
CertificateIssuerLet's Encrypt Subjectvisametric-com.ru Fingerprint89:E0:5C:84:F0:26:19:8C:35:89:DB:BD:CB:0D:EA:A8:94:44:D3:B8 ValidityThu, 11 Apr 2024 23:48:24 GMT - Wed, 10 Jul 2024 23:48:23 GMT
File typeJavaScript source, ASCII text, with very long lines (2637) Hashded22cb5111f387eba12e801c5233a19 3dc48f4a1a9a5b15231f1b744dfe49b59d55dda5 13e28c1a1c1b804be95a427e5fc5dcc7868d45c8346862ce786fc0a9e582ad1b
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/themes/vfs/js/dle_js.js?v=25 HTTP/1.1
Host: visametrik.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://visametrik.de/
Cookie: PHPSESSID=1ib42s2bi13q6mv0gg3t71igcq
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0
Date: Sun, 28 Apr 2024 09:48:39 GMT
Content-Type: application/javascript; charset=UTF-8
Last-Modified: Mon, 07 Dec 2020 19:28:17 GMT
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"5fce8251-8730"
Expires: Mon, 29 Apr 2024 09:48:39 GMT
Cache-Control: max-age=86400
Strict-Transport-Security: max-age=31536000;
Content-Encoding: gzip
|
|
| visametrik.de/wp-content/themes/vfs/js/libs.js | 178.250.159.32 | 200 OK | 2.1 kB |
URL GET HTTP/1.1visametrik.de/wp-content/themes/vfs/js/libs.js IP178.250.159.32:443
CertificateIssuerLet's Encrypt Subjectvisametric-com.ru Fingerprint89:E0:5C:84:F0:26:19:8C:35:89:DB:BD:CB:0D:EA:A8:94:44:D3:B8 ValidityThu, 11 Apr 2024 23:48:24 GMT - Wed, 10 Jul 2024 23:48:23 GMT
File typeJavaScript source, ASCII text Hasha76e6bad1b087429456a3d1b9bd47a48 083162d04c2ea7266e2eb89098f73aceccd2507a d52a162b9b4245fd5e40c2bf51758ffc317b64885fcf66f8e8b7e9a236a5360c
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/themes/vfs/js/libs.js HTTP/1.1
Host: visametrik.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://visametrik.de/
Cookie: PHPSESSID=1ib42s2bi13q6mv0gg3t71igcq
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0
Date: Sun, 28 Apr 2024 09:48:39 GMT
Content-Type: application/javascript; charset=UTF-8
Last-Modified: Sat, 12 Dec 2020 19:06:06 GMT
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"5fd5149e-1bb0"
Expires: Mon, 29 Apr 2024 09:48:39 GMT
Cache-Control: max-age=86400
Strict-Transport-Security: max-age=31536000;
Content-Encoding: gzip
|
|
| stackpath.bootstrapcdn.com/font-awesome/4.7.0/fonts/fontawesome-webfont.woff2?v=4.7.0 | 104.18.10.207 | 200 OK | 77 kB |
URL GET HTTP/2stackpath.bootstrapcdn.com/font-awesome/4.7.0/fonts/fontawesome-webfont.woff2?v=4.7.0 IP104.18.10.207:443
CertificateIssuerGoogle Trust Services LLC Subjectbootstrapcdn.com Fingerprint57:B4:25:B9:9C:88:A1:A3:3D:F7:31:74:02:E4:D1:E0:0A:F5:11:63 ValidityWed, 27 Mar 2024 00:22:09 GMT - Tue, 25 Jun 2024 00:22:08 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 77160, version 4.459 Hashaf7ae505a9eed503f8b8e6982036873e d6f48cba7d076fb6f2fd6ba993a75b9dc1ecbf0c 2adefcbc041e7d18fcf2d417879dc5a09997aa64d675b7a3c4b6ce33da13f3fe
GET /font-awesome/4.7.0/fonts/fontawesome-webfont.woff2?v=4.7.0 HTTP/1.1
Host: stackpath.bootstrapcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://visametrik.de
DNT: 1
Connection: keep-alive
Referer: https://stackpath.bootstrapcdn.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 28 Apr 2024 09:48:39 GMT
content-type: font/woff2
content-length: 77160
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
access-control-allow-origin: *
cache-control: public, max-age=31919000
etag: "af7ae505a9eed503f8b8e6982036873e"
last-modified: Mon, 25 Jan 2021 22:04:55 GMT
cdn-cachedat: 10/31/2023 19:08:24
cdn-proxyver: 1.04
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 752
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-status: 200
cdn-requestid: e3a84ae106f650890e45476d38d55b5b
cdn-cache: HIT
cf-cache-status: HIT
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 87b6234c3dceb511-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| visametrik.de/wp-includes/js/dist/vendor/wp-polyfill-inert.min.js?ver=3.1.2 | 178.250.159.32 | 200 OK | 2.5 kB |
URL GET HTTP/1.1visametrik.de/wp-includes/js/dist/vendor/wp-polyfill-inert.min.js?ver=3.1.2 IP178.250.159.32:443
CertificateIssuerLet's Encrypt Subjectvisametric-com.ru Fingerprint89:E0:5C:84:F0:26:19:8C:35:89:DB:BD:CB:0D:EA:A8:94:44:D3:B8 ValidityThu, 11 Apr 2024 23:48:24 GMT - Wed, 10 Jul 2024 23:48:23 GMT
File typeJavaScript source, ASCII text, with very long lines (8171), with no line terminators Hashdda652db133fddb9b80a05c6d1b5c540 60c8514c57a5db2980c4b046b0dd479bd427357b c1a9a3e223bad631dff12d33b5499eb145cb08d8621c20d9d73870e78d97afe4
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-includes/js/dist/vendor/wp-polyfill-inert.min.js?ver=3.1.2 HTTP/1.1
Host: visametrik.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://visametrik.de/
Cookie: PHPSESSID=1ib42s2bi13q6mv0gg3t71igcq
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0
Date: Sun, 28 Apr 2024 09:48:39 GMT
Content-Type: application/javascript; charset=UTF-8
Last-Modified: Thu, 30 Mar 2023 12:13:43 GMT
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"64257cf7-1feb"
Expires: Mon, 29 Apr 2024 09:48:39 GMT
Cache-Control: max-age=86400
Strict-Transport-Security: max-age=31536000;
Content-Encoding: gzip
|
|
| visametrik.de/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.14.0 | 178.250.159.32 | 200 OK | 2.5 kB |
URL GET HTTP/1.1visametrik.de/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.14.0 IP178.250.159.32:443
CertificateIssuerLet's Encrypt Subjectvisametric-com.ru Fingerprint89:E0:5C:84:F0:26:19:8C:35:89:DB:BD:CB:0D:EA:A8:94:44:D3:B8 ValidityThu, 11 Apr 2024 23:48:24 GMT - Wed, 10 Jul 2024 23:48:23 GMT
File typeJavaScript source, ASCII text, with very long lines (6625), with no line terminators Hashfd7ef2e4737acd74fd0dcdc3b515e304 0d792b33f12a48ee8aaaf2560a63a5682470645b 1d52e1ac7d3bc25a8b0ffc257153f9dd50249f96fe9a4df5e0d771241a69062c
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.14.0 HTTP/1.1
Host: visametrik.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://visametrik.de/
Cookie: PHPSESSID=1ib42s2bi13q6mv0gg3t71igcq
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0
Date: Sun, 28 Apr 2024 09:48:39 GMT
Content-Type: application/javascript; charset=UTF-8
Last-Modified: Wed, 13 Dec 2023 16:52:46 GMT
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"6579e15e-19e1"
Expires: Mon, 29 Apr 2024 09:48:39 GMT
Cache-Control: max-age=86400
Strict-Transport-Security: max-age=31536000;
Content-Encoding: gzip
|
|
| visametrik.de/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0 | 178.250.159.32 | 200 OK | 14 kB |
URL GET HTTP/1.1visametrik.de/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0 IP178.250.159.32:443
CertificateIssuerLet's Encrypt Subjectvisametric-com.ru Fingerprint89:E0:5C:84:F0:26:19:8C:35:89:DB:BD:CB:0D:EA:A8:94:44:D3:B8 ValidityThu, 11 Apr 2024 23:48:24 GMT - Wed, 10 Jul 2024 23:48:23 GMT
File typeJavaScript source, Unicode text, UTF-8 text, with very long lines (38582), with no line terminators Hash92f8c01350c630f414f5d0b015ad6864 eab40ab4e77f92f2fb17684aaf44b579a51b8034 17b79ece7ef9d1454a90156690d33d64387b67a7a7548fc826012512e287a937
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0 HTTP/1.1
Host: visametrik.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://visametrik.de/
Cookie: PHPSESSID=1ib42s2bi13q6mv0gg3t71igcq
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0
Date: Sun, 28 Apr 2024 09:48:39 GMT
Content-Type: application/javascript; charset=UTF-8
Last-Modified: Mon, 15 Apr 2024 09:35:29 GMT
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"661cf4e1-96be"
Expires: Mon, 29 Apr 2024 09:48:39 GMT
Cache-Control: max-age=86400
Strict-Transport-Security: max-age=31536000;
Content-Encoding: gzip
|
|
| visametrik.de/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.4.2 | 178.250.159.32 | 200 OK | 4.1 kB |
URL GET HTTP/1.1visametrik.de/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.4.2 IP178.250.159.32:443
CertificateIssuerLet's Encrypt Subjectvisametric-com.ru Fingerprint89:E0:5C:84:F0:26:19:8C:35:89:DB:BD:CB:0D:EA:A8:94:44:D3:B8 ValidityThu, 11 Apr 2024 23:48:24 GMT - Wed, 10 Jul 2024 23:48:23 GMT
File typeJavaScript source, ASCII text, with very long lines (12987), with no line terminators Hash6ad9165b167d54947b37f4b9de75ab39 4c02f66fd8c26141450e310d6786f50f99913dd4 eea0b9621509f98be77c5af1e9b5c952a675bda2b27c419876364017069e0c19
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.4.2 HTTP/1.1
Host: visametrik.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://visametrik.de/
Cookie: PHPSESSID=1ib42s2bi13q6mv0gg3t71igcq
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0
Date: Sun, 28 Apr 2024 09:48:39 GMT
Content-Type: application/javascript; charset=UTF-8
Last-Modified: Sun, 18 Jul 2021 11:08:46 GMT
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"60f40bbe-32bb"
Expires: Mon, 29 Apr 2024 09:48:39 GMT
Cache-Control: max-age=86400
Strict-Transport-Security: max-age=31536000;
Content-Encoding: gzip
|
|
| visametrik.de/wp-content/plugins/date-time-picker-field/assets/js/vendor/moment/moment.js?ver=6.5.2 | 178.250.159.32 | 200 OK | 33 kB |
URL GET HTTP/1.1visametrik.de/wp-content/plugins/date-time-picker-field/assets/js/vendor/moment/moment.js?ver=6.5.2 IP178.250.159.32:443
CertificateIssuerLet's Encrypt Subjectvisametric-com.ru Fingerprint89:E0:5C:84:F0:26:19:8C:35:89:DB:BD:CB:0D:EA:A8:94:44:D3:B8 ValidityThu, 11 Apr 2024 23:48:24 GMT - Wed, 10 Jul 2024 23:48:23 GMT
File typeJavaScript source, ASCII text Hash6722aa945b6577eda74330383105557f 856573ec2068ed8ce9f47df79522be45e44f1763 e7d219e5d6cbc81c99812b111376744e30ee5fb7b5022a96e5b67c060e7476c5
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/date-time-picker-field/assets/js/vendor/moment/moment.js?ver=6.5.2 HTTP/1.1
Host: visametrik.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://visametrik.de/
Cookie: PHPSESSID=1ib42s2bi13q6mv0gg3t71igcq
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0
Date: Sun, 28 Apr 2024 09:48:39 GMT
Content-Type: application/javascript; charset=UTF-8
Last-Modified: Sun, 18 Jul 2021 11:08:57 GMT
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"60f40bc9-23dac"
Expires: Mon, 29 Apr 2024 09:48:39 GMT
Cache-Control: max-age=86400
Strict-Transport-Security: max-age=31536000;
Content-Encoding: gzip
|
|
| visametrik.de/wp-content/plugins/date-time-picker-field/assets/js/vendor/datetimepicker/jquery.datetimepicker.full.min.js?ver=6.5.2 | 178.250.159.32 | 200 OK | 17 kB |
URL GET HTTP/1.1visametrik.de/wp-content/plugins/date-time-picker-field/assets/js/vendor/datetimepicker/jquery.datetimepicker.full.min.js?ver=6.5.2 IP178.250.159.32:443
CertificateIssuerLet's Encrypt Subjectvisametric-com.ru Fingerprint89:E0:5C:84:F0:26:19:8C:35:89:DB:BD:CB:0D:EA:A8:94:44:D3:B8 ValidityThu, 11 Apr 2024 23:48:24 GMT - Wed, 10 Jul 2024 23:48:23 GMT
File typeJavaScript source, Unicode text, UTF-8 text, with very long lines (50898) Hash6f74b6fbc9a684e1c781247bea662728 5b998d6923d358643cdcb1731b1dc9325a735f5e d97c5e0e2f56aa9a35c4c58a7a1ee86622beec78c4bac6e00531a7075374dee9
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/date-time-picker-field/assets/js/vendor/datetimepicker/jquery.datetimepicker.full.min.js?ver=6.5.2 HTTP/1.1
Host: visametrik.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://visametrik.de/
Cookie: PHPSESSID=1ib42s2bi13q6mv0gg3t71igcq
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0
Date: Sun, 28 Apr 2024 09:48:39 GMT
Content-Type: application/javascript; charset=UTF-8
Last-Modified: Sun, 18 Jul 2021 11:08:57 GMT
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"60f40bc9-d469"
Expires: Mon, 29 Apr 2024 09:48:39 GMT
Cache-Control: max-age=86400
Strict-Transport-Security: max-age=31536000;
Content-Encoding: gzip
|
|
| visametrik.de/wp-content/plugins/date-time-picker-field/assets/js/dtpicker.js?ver=6.5.2 | 178.250.159.32 | 200 OK | 1.5 kB |
URL GET HTTP/1.1visametrik.de/wp-content/plugins/date-time-picker-field/assets/js/dtpicker.js?ver=6.5.2 IP178.250.159.32:443
CertificateIssuerLet's Encrypt Subjectvisametric-com.ru Fingerprint89:E0:5C:84:F0:26:19:8C:35:89:DB:BD:CB:0D:EA:A8:94:44:D3:B8 ValidityThu, 11 Apr 2024 23:48:24 GMT - Wed, 10 Jul 2024 23:48:23 GMT
File typeJavaScript source, ASCII text Hash026a0f7cc131890e7351f047c99b393b d6853364e0c7d3664831589710ea4d19248ae573 1ddb57fd80c98be9c68b59f8e3e434ed02d19d116f42a83c4baea8fdc8c9fdcd
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/date-time-picker-field/assets/js/dtpicker.js?ver=6.5.2 HTTP/1.1
Host: visametrik.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://visametrik.de/
Cookie: PHPSESSID=1ib42s2bi13q6mv0gg3t71igcq
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0
Date: Sun, 28 Apr 2024 09:48:40 GMT
Content-Type: application/javascript; charset=UTF-8
Last-Modified: Sun, 18 Jul 2021 11:08:57 GMT
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"60f40bc9-1a3d"
Expires: Mon, 29 Apr 2024 09:48:40 GMT
Cache-Control: max-age=86400
Strict-Transport-Security: max-age=31536000;
Content-Encoding: gzip
|
|
| visametrik.de/wp-content/plugins/contact-form-7/modules/recaptcha/index.js?ver=5.4.2 | 178.250.159.32 | 200 OK | 847 B |
URL GET HTTP/1.1visametrik.de/wp-content/plugins/contact-form-7/modules/recaptcha/index.js?ver=5.4.2 IP178.250.159.32:443
CertificateIssuerLet's Encrypt Subjectvisametric-com.ru Fingerprint89:E0:5C:84:F0:26:19:8C:35:89:DB:BD:CB:0D:EA:A8:94:44:D3:B8 ValidityThu, 11 Apr 2024 23:48:24 GMT - Wed, 10 Jul 2024 23:48:23 GMT
File typeJavaScript source, ASCII text, with very long lines (1849), with no line terminators Hashbdca36ab07e77f468ef12716f7b78b9c 8c80cbe19b54685ac8a392ada33ffb6554d26326 ccdcf774bd0fc2383fb9d2b780148d17b2ceb3dbc355db13cc17edfdc1f511f3
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/contact-form-7/modules/recaptcha/index.js?ver=5.4.2 HTTP/1.1
Host: visametrik.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://visametrik.de/
Cookie: PHPSESSID=1ib42s2bi13q6mv0gg3t71igcq
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0
Date: Sun, 28 Apr 2024 09:48:40 GMT
Content-Type: application/javascript; charset=UTF-8
Last-Modified: Sun, 18 Jul 2021 11:08:46 GMT
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"60f40bbe-739"
Expires: Mon, 29 Apr 2024 09:48:40 GMT
Cache-Control: max-age=86400
Strict-Transport-Security: max-age=31536000;
Content-Encoding: gzip
|
|
| visametrik.de/wp-includes/js/hoverIntent.min.js?ver=1.10.2 | 178.250.159.32 | 200 OK | 706 B |
URL GET HTTP/1.1visametrik.de/wp-includes/js/hoverIntent.min.js?ver=1.10.2 IP178.250.159.32:443
CertificateIssuerLet's Encrypt Subjectvisametric-com.ru Fingerprint89:E0:5C:84:F0:26:19:8C:35:89:DB:BD:CB:0D:EA:A8:94:44:D3:B8 ValidityThu, 11 Apr 2024 23:48:24 GMT - Wed, 10 Jul 2024 23:48:23 GMT
File typeJavaScript source, ASCII text, with very long lines (1464) Hash8c0498e2f1f7a684a8d2a3feb934b64b 76099689ccaee466d4608da621c403b368dcae03 ed5b5df9ceacfe76857ac51964972b0b417a215b2f50e837fd6b64bad7339c40
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-includes/js/hoverIntent.min.js?ver=1.10.2 HTTP/1.1
Host: visametrik.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://visametrik.de/
Cookie: PHPSESSID=1ib42s2bi13q6mv0gg3t71igcq
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0
Date: Sun, 28 Apr 2024 09:48:40 GMT
Content-Type: application/javascript; charset=UTF-8
Last-Modified: Tue, 13 Sep 2022 09:44:25 GMT
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"632050f9-5db"
Expires: Mon, 29 Apr 2024 09:48:40 GMT
Cache-Control: max-age=86400
Strict-Transport-Security: max-age=31536000;
Content-Encoding: gzip
|
|
| visametrik.de/wp-content/plugins/megamenu/js/maxmegamenu.js?ver=2.9.4 | 178.250.159.32 | 200 OK | 5.0 kB |
URL GET HTTP/1.1visametrik.de/wp-content/plugins/megamenu/js/maxmegamenu.js?ver=2.9.4 IP178.250.159.32:443
CertificateIssuerLet's Encrypt Subjectvisametric-com.ru Fingerprint89:E0:5C:84:F0:26:19:8C:35:89:DB:BD:CB:0D:EA:A8:94:44:D3:B8 ValidityThu, 11 Apr 2024 23:48:24 GMT - Wed, 10 Jul 2024 23:48:23 GMT
File typeJavaScript source, ASCII text, with very long lines (315) Hashe1d6533906ba8cce9da6157ec25c0dd5 050b3341c7d1497494334ab17a78c04ddc61dc1f 9aafa38d431075d0f6c738a2633785fd32fada0e14408bd662d95e608ddb4daf
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/megamenu/js/maxmegamenu.js?ver=2.9.4 HTTP/1.1
Host: visametrik.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://visametrik.de/
Cookie: PHPSESSID=1ib42s2bi13q6mv0gg3t71igcq
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0
Date: Sun, 28 Apr 2024 09:48:40 GMT
Content-Type: application/javascript; charset=UTF-8
Last-Modified: Sun, 18 Jul 2021 11:09:02 GMT
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"60f40bce-7741"
Expires: Mon, 29 Apr 2024 09:48:40 GMT
Cache-Control: max-age=86400
Strict-Transport-Security: max-age=31536000;
Content-Encoding: gzip
|
|
| fonts.googleapis.com/css?family=PT+Sans:400,400i,700,700i&subset=cyrillic,cyrillic-ext | 142.250.74.106 | 200 OK | 12 kB |
URL GET HTTP/2fonts.googleapis.com/css?family=PT+Sans:400,400i,700,700i&subset=cyrillic,cyrillic-ext IP142.250.74.106:443
CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint5F:6D:48:87:16:89:1E:A5:57:29:92:8B:34:BD:F2:92:0C:7F:F2:50 ValidityMon, 08 Apr 2024 07:32:03 GMT - Mon, 01 Jul 2024 07:32:02 GMT
File typegzip compressed data, max compression Hash781a69792387c81ab7abd0038529e682 3ad874518fb76e5ff832f78a04401ca811d5b86d 8e996d87fdb60663b432f29e658b5ef6e6a0d159bdb4bffac8ae21a50bedeff8
GET /css?family=PT+Sans:400,400i,700,700i&subset=cyrillic,cyrillic-ext HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://visametrik.de/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sun, 28 Apr 2024 09:48:39 GMT
date: Sun, 28 Apr 2024 09:48:39 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| visametrik.de/wp-content/themes/vfs/fonts/Montserrat-Regular.ttf | 178.250.159.32 | 200 OK | 246 kB |
URL GET HTTP/1.1visametrik.de/wp-content/themes/vfs/fonts/Montserrat-Regular.ttf IP178.250.159.32:443
CertificateIssuerLet's Encrypt Subjectvisametric-com.ru Fingerprint89:E0:5C:84:F0:26:19:8C:35:89:DB:BD:CB:0D:EA:A8:94:44:D3:B8 ValidityThu, 11 Apr 2024 23:48:24 GMT - Wed, 10 Jul 2024 23:48:23 GMT
File typeTrueType Font data, 17 tables, 1st "GDEF", 13 names, Microsoft, language 0x409, Copyright 2011 The Montserrat Project Authors (https://github.com/JulietaUla/Montserrat)Montserr Size246 kB (245708 bytes) Hashee6539921d713482b8ccd4d0d23961bb d25b35242deb1c6ff888b8162ca2aacc356d3899 077cdab15161232a9ba7124d2ddd7a9425145750788e9a966c156cc66274f525
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/themes/vfs/fonts/Montserrat-Regular.ttf HTTP/1.1
Host: visametrik.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://visametrik.de/wp-content/themes/vfs/style.css
Cookie: PHPSESSID=1ib42s2bi13q6mv0gg3t71igcq
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0
Date: Sun, 28 Apr 2024 09:48:40 GMT
Content-Type: application/octet-stream
Content-Length: 245708
Last-Modified: Mon, 07 Dec 2020 19:28:14 GMT
Connection: keep-alive
ETag: "5fce824e-3bfcc"
Strict-Transport-Security: max-age=31536000;
Accept-Ranges: bytes
|
|
| visametrik.de/wp-content/themes/vfs/images/logo.png | 178.250.159.32 | 200 OK | 14 kB |
URL GET HTTP/1.1visametrik.de/wp-content/themes/vfs/images/logo.png IP178.250.159.32:443
CertificateIssuerLet's Encrypt Subjectvisametric-com.ru Fingerprint89:E0:5C:84:F0:26:19:8C:35:89:DB:BD:CB:0D:EA:A8:94:44:D3:B8 ValidityThu, 11 Apr 2024 23:48:24 GMT - Wed, 10 Jul 2024 23:48:23 GMT
File typePNG image data, 548 x 122, 8-bit/color RGBA, non-interlaced Hashe2ebb3e1541b490ce9403b84b299d29b cd77be2cd0d1b95b54b5fe55f48f274e66d6a808 d76f550d3cebc73be7b0335b5dc963ab3e40b80ff55289707e34ee8f0510970f
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/themes/vfs/images/logo.png HTTP/1.1
Host: visametrik.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://visametrik.de/
Cookie: PHPSESSID=1ib42s2bi13q6mv0gg3t71igcq
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0
Date: Sun, 28 Apr 2024 09:48:40 GMT
Content-Type: image/png
Content-Length: 13814
Last-Modified: Tue, 03 Aug 2021 14:39:43 GMT
Connection: keep-alive
ETag: "6109552f-35f6"
Expires: Mon, 29 Apr 2024 09:48:40 GMT
Cache-Control: max-age=86400
Strict-Transport-Security: max-age=31536000;
Accept-Ranges: bytes
|
|
| visametrik.de/wp-content/themes/vfs/fonts/Montserrat-Bold.ttf | 178.250.159.32 | 200 OK | 244 kB |
URL GET HTTP/1.1visametrik.de/wp-content/themes/vfs/fonts/Montserrat-Bold.ttf IP178.250.159.32:443
CertificateIssuerLet's Encrypt Subjectvisametric-com.ru Fingerprint89:E0:5C:84:F0:26:19:8C:35:89:DB:BD:CB:0D:EA:A8:94:44:D3:B8 ValidityThu, 11 Apr 2024 23:48:24 GMT - Wed, 10 Jul 2024 23:48:23 GMT
File typeTrueType Font data, 17 tables, 1st "GDEF", 13 names, Microsoft, language 0x409, Copyright 2011 The Montserrat Project Authors (https://github.com/JulietaUla/Montserrat)Montserr Size244 kB (244468 bytes) Hashade91f473255991f410f61857696434b 3a54407a2b26ff4718708a4726b10cb070d16534 c8289a870d238aa042bdfd09364fe6dea524bcd1ea485341878d8c75a32ab444
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/themes/vfs/fonts/Montserrat-Bold.ttf HTTP/1.1
Host: visametrik.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://visametrik.de/wp-content/themes/vfs/style.css
Cookie: PHPSESSID=1ib42s2bi13q6mv0gg3t71igcq
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0
Date: Sun, 28 Apr 2024 09:48:40 GMT
Content-Type: application/octet-stream
Content-Length: 244468
Last-Modified: Mon, 07 Dec 2020 19:28:06 GMT
Connection: keep-alive
ETag: "5fce8246-3baf4"
Strict-Transport-Security: max-age=31536000;
Accept-Ranges: bytes
|
|
| visametrik.de/wp-content/themes/vfs/images/crop/slide-e1607464193405-118x118.jpg | 178.250.159.32 | 200 OK | 6.7 kB |
URL GET HTTP/1.1visametrik.de/wp-content/themes/vfs/images/crop/slide-e1607464193405-118x118.jpg IP178.250.159.32:443
CertificateIssuerLet's Encrypt Subjectvisametric-com.ru Fingerprint89:E0:5C:84:F0:26:19:8C:35:89:DB:BD:CB:0D:EA:A8:94:44:D3:B8 ValidityThu, 11 Apr 2024 23:48:24 GMT - Wed, 10 Jul 2024 23:48:23 GMT
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 118x118, components 3 Hasha34020d9fb6abb2c4599fbaa3eaeb19f 5fa8c832cc57ba4f4784918e8dc8dade03e32f93 90b506dc4dcf6b49842f3216854abf3869c378a04124e9a39c694e0de6be4541
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/themes/vfs/images/crop/slide-e1607464193405-118x118.jpg HTTP/1.1
Host: visametrik.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://visametrik.de/
Cookie: PHPSESSID=1ib42s2bi13q6mv0gg3t71igcq
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0
Date: Sun, 28 Apr 2024 09:48:40 GMT
Content-Type: image/jpeg
Content-Length: 6741
Last-Modified: Sun, 28 Apr 2024 09:48:39 GMT
Connection: keep-alive
ETag: "662e1b77-1a55"
Expires: Mon, 29 Apr 2024 09:48:40 GMT
Cache-Control: max-age=86400
Strict-Transport-Security: max-age=31536000;
Accept-Ranges: bytes
|
|
| www.google.com/recaptcha/api.js?render=6Ld-XrkbAAAAADQkpmwblcVfXeye3FsuM9DleGwK&ver=3.0 | 142.250.74.164 | 200 OK | 244 kB |
URL GET HTTP/2www.google.com/recaptcha/api.js?render=6Ld-XrkbAAAAADQkpmwblcVfXeye3FsuM9DleGwK&ver=3.0 IP142.250.74.164:443
CertificateIssuerGoogle Trust Services LLC Subjectwww.google.com FingerprintF3:75:C9:48:E6:A5:11:C7:87:C8:8D:9A:C4:16:F8:09:4E:88:7C:5A ValidityMon, 08 Apr 2024 07:33:48 GMT - Mon, 01 Jul 2024 07:33:47 GMT
Size244 kB (244400 bytes) Hash5480aa15bff129e8d86648d4b020166a 76f81957eb49ba4e6c3b181706845815c3243512 8e9bee51213f7bece7aee251fc94fe62e7c774756e63aff70b68a3e5ec16f067
GET /recaptcha/api.js?render=6Ld-XrkbAAAAADQkpmwblcVfXeye3FsuM9DleGwK&ver=3.0 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://visametrik.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
expires: Sun, 28 Apr 2024 09:48:39 GMT
date: Sun, 28 Apr 2024 09:48:39 GMT
cache-control: private, max-age=300
cross-origin-resource-policy: cross-origin
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| visametrik.de/wp-includes/js/wp-emoji-release.min.js?ver=6.5.2 | 178.250.159.32 | 200 OK | 5.1 kB |
URL GET HTTP/1.1visametrik.de/wp-includes/js/wp-emoji-release.min.js?ver=6.5.2 IP178.250.159.32:443
CertificateIssuerLet's Encrypt Subjectvisametric-com.ru Fingerprint89:E0:5C:84:F0:26:19:8C:35:89:DB:BD:CB:0D:EA:A8:94:44:D3:B8 ValidityThu, 11 Apr 2024 23:48:24 GMT - Wed, 10 Jul 2024 23:48:23 GMT
File typeJavaScript source, ASCII text, with very long lines (15752) Hashb976b651932bfd25b9ddb5b7693d88a7 7fcb7cb5c11227f9213b1e08a07d0212209e1432 4e6ce5444c7f396cef0eb1fa3611034151e485dd06fbe5573a5583e1eebc98c3
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-includes/js/wp-emoji-release.min.js?ver=6.5.2 HTTP/1.1
Host: visametrik.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://visametrik.de/
Cookie: PHPSESSID=1ib42s2bi13q6mv0gg3t71igcq
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0
Date: Sun, 28 Apr 2024 09:48:40 GMT
Content-Type: application/javascript; charset=UTF-8
Last-Modified: Mon, 15 Apr 2024 09:35:29 GMT
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"661cf4e1-4926"
Expires: Mon, 29 Apr 2024 09:48:40 GMT
Cache-Control: max-age=86400
Strict-Transport-Security: max-age=31536000;
Content-Encoding: gzip
|
|
| visametrik.de/wp-content/themes/vfs/images/law.jpg | 178.250.159.32 | 200 OK | 81 kB |
URL GET HTTP/1.1visametrik.de/wp-content/themes/vfs/images/law.jpg IP178.250.159.32:443
CertificateIssuerLet's Encrypt Subjectvisametric-com.ru Fingerprint89:E0:5C:84:F0:26:19:8C:35:89:DB:BD:CB:0D:EA:A8:94:44:D3:B8 ValidityThu, 11 Apr 2024 23:48:24 GMT - Wed, 10 Jul 2024 23:48:23 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1200x800, components 3 Hash7d5cf143517482f475ce49e3879a190f bbe90c84e609e3a5fcfc302a47ab83ab58b77043 4a9b0efc2d9fdd008fe3b0a4c5d12d1991527c61f22a6708c9e83e119ac5beda
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/themes/vfs/images/law.jpg HTTP/1.1
Host: visametrik.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://visametrik.de/
Cookie: PHPSESSID=1ib42s2bi13q6mv0gg3t71igcq
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0
Date: Sun, 28 Apr 2024 09:48:40 GMT
Content-Type: image/jpeg
Content-Length: 81276
Last-Modified: Thu, 04 Feb 2021 15:58:49 GMT
Connection: keep-alive
ETag: "601c19b9-13d7c"
Expires: Mon, 29 Apr 2024 09:48:40 GMT
Cache-Control: max-age=86400
Strict-Transport-Security: max-age=31536000;
Accept-Ranges: bytes
|
|
| visametrik.de/wp-content/uploads/2020/12/slide-e1607464193405.jpg | 178.250.159.32 | 200 OK | 65 kB |
URL GET HTTP/1.1visametrik.de/wp-content/uploads/2020/12/slide-e1607464193405.jpg IP178.250.159.32:443
CertificateIssuerLet's Encrypt Subjectvisametric-com.ru Fingerprint89:E0:5C:84:F0:26:19:8C:35:89:DB:BD:CB:0D:EA:A8:94:44:D3:B8 ValidityThu, 11 Apr 2024 23:48:24 GMT - Wed, 10 Jul 2024 23:48:23 GMT
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 1142x364, components 3 Hash5b12c08aacabb7a4c39055e3fb7f335d f420bde8922d55d46fc01b1f4b31ef40e796b18a 09f1fc6b8fad429a08e069c09addf82cc40e042b690780ebec28ba4f4b2e2a1c
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/uploads/2020/12/slide-e1607464193405.jpg HTTP/1.1
Host: visametrik.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://visametrik.de/
Cookie: PHPSESSID=1ib42s2bi13q6mv0gg3t71igcq
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0
Date: Sun, 28 Apr 2024 09:48:40 GMT
Content-Type: image/jpeg
Content-Length: 64608
Last-Modified: Tue, 08 Dec 2020 21:49:53 GMT
Connection: keep-alive
ETag: "5fcff501-fc60"
Expires: Mon, 29 Apr 2024 09:48:40 GMT
Cache-Control: max-age=86400
Strict-Transport-Security: max-age=31536000;
Accept-Ranges: bytes
|
|
| visametrik.de/wp-content/themes/vfs/images/favicon.png | 178.250.159.32 | 200 OK | 7.8 kB |
URL GET HTTP/1.1visametrik.de/wp-content/themes/vfs/images/favicon.png IP178.250.159.32:443
CertificateIssuerLet's Encrypt Subjectvisametric-com.ru Fingerprint89:E0:5C:84:F0:26:19:8C:35:89:DB:BD:CB:0D:EA:A8:94:44:D3:B8 ValidityThu, 11 Apr 2024 23:48:24 GMT - Wed, 10 Jul 2024 23:48:23 GMT
File typePNG image data, 118 x 103, 8-bit/color RGBA, non-interlaced Hash123d414300e07e6a8ffbcdbbdd7bcc0c 3a413fddd734ffc4cf74934ba12552559c0e0793 0aba5f687dff15cf8b4f77b6077cab3e803dfa5a39f2c6fbe1290041109cac28
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/themes/vfs/images/favicon.png HTTP/1.1
Host: visametrik.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://visametrik.de/
Cookie: PHPSESSID=1ib42s2bi13q6mv0gg3t71igcq
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0
Date: Sun, 28 Apr 2024 09:48:40 GMT
Content-Type: image/png
Content-Length: 7834
Last-Modified: Mon, 07 Dec 2020 19:31:01 GMT
Connection: keep-alive
ETag: "5fce82f5-1e9a"
Expires: Mon, 29 Apr 2024 09:48:40 GMT
Cache-Control: max-age=86400
Strict-Transport-Security: max-age=31536000;
Accept-Ranges: bytes
|
|
| www.gstatic.com/recaptcha/releases/V6_85qpc2Xf2sbe3xTnRte7m/recaptcha__en.js | 142.250.74.131 | 200 OK | 206 kB |
URL GET HTTP/3www.gstatic.com/recaptcha/releases/V6_85qpc2Xf2sbe3xTnRte7m/recaptcha__en.js IP142.250.74.131:443
Requested byhttps://www.google.com/recaptcha/api2/anchor?ar=1&k=6Ld-XrkbAAAAADQkpmwblcVfXeye3FsuM9DleGwK&co=aHR0cHM6Ly92aXNhbWV0cmlrLmRlOjQ0Mw..&hl=en&v=V6_85qpc2Xf2sbe3xTnRte7m&size=invisible&cb=17rfn9j9jgny CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint93:EC:35:60:8A:5B:23:EA:C0:36:D7:AE:03:0C:C3:77:17:5A:20:33 ValidityMon, 08 Apr 2024 07:31:57 GMT - Mon, 01 Jul 2024 07:31:56 GMT
File typeJavaScript source, ASCII text, with very long lines (631) Size206 kB (205803 bytes) Hashe2e79d6b927169d9e0e57e3baecc0993 1299473950b2999ba0b7f39bd5e4a60eafd1819d 231336ed913a5ebd4445b85486e053caf2b81cab91318241375f3f7a245b6c6b
GET /recaptcha/releases/V6_85qpc2Xf2sbe3xTnRte7m/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://visametrik.de
DNT: 1
Connection: keep-alive
Referer: https://visametrik.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 205803
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 26 Apr 2024 06:07:40 GMT
expires: Sat, 26 Apr 2025 06:07:40 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 22 Apr 2024 21:03:35 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 186060
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| www.gstatic.com/recaptcha/releases/V6_85qpc2Xf2sbe3xTnRte7m/styles__ltr.css | 142.250.74.131 | 200 OK | 25 kB |
URL GET HTTP/3www.gstatic.com/recaptcha/releases/V6_85qpc2Xf2sbe3xTnRte7m/styles__ltr.css IP142.250.74.131:443
Requested byhttps://www.google.com/recaptcha/api2/anchor?ar=1&k=6Ld-XrkbAAAAADQkpmwblcVfXeye3FsuM9DleGwK&co=aHR0cHM6Ly92aXNhbWV0cmlrLmRlOjQ0Mw..&hl=en&v=V6_85qpc2Xf2sbe3xTnRte7m&size=invisible&cb=17rfn9j9jgny CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint93:EC:35:60:8A:5B:23:EA:C0:36:D7:AE:03:0C:C3:77:17:5A:20:33 ValidityMon, 08 Apr 2024 07:31:57 GMT - Mon, 01 Jul 2024 07:31:56 GMT
File typeASCII text, with very long lines (56412), with no line terminators Hash2c00b9f417b688224937053cd0c284a5 17b4c18ebc129055dd25f214c3f11e03e9df2d82 1e754b107428162c65a26d399b66db3daaea09616bf8620d9de4bc689ce48eed
GET /recaptcha/releases/V6_85qpc2Xf2sbe3xTnRte7m/styles__ltr.css HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 24617
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 26 Apr 2024 06:04:29 GMT
expires: Sat, 26 Apr 2025 06:04:29 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 22 Apr 2024 21:03:35 GMT
content-type: text/css
vary: Accept-Encoding
age: 186251
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| www.gstatic.com/recaptcha/releases/V6_85qpc2Xf2sbe3xTnRte7m/recaptcha__en.js | 142.250.74.131 | 200 OK | 206 kB |
URL GET HTTP/3www.gstatic.com/recaptcha/releases/V6_85qpc2Xf2sbe3xTnRte7m/recaptcha__en.js IP142.250.74.131:443
Requested byhttps://www.google.com/recaptcha/api2/anchor?ar=1&k=6Ld-XrkbAAAAADQkpmwblcVfXeye3FsuM9DleGwK&co=aHR0cHM6Ly92aXNhbWV0cmlrLmRlOjQ0Mw..&hl=en&v=V6_85qpc2Xf2sbe3xTnRte7m&size=invisible&cb=17rfn9j9jgny CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint93:EC:35:60:8A:5B:23:EA:C0:36:D7:AE:03:0C:C3:77:17:5A:20:33 ValidityMon, 08 Apr 2024 07:31:57 GMT - Mon, 01 Jul 2024 07:31:56 GMT
File typeJavaScript source, ASCII text, with very long lines (631) Size206 kB (205803 bytes) Hashe2e79d6b927169d9e0e57e3baecc0993 1299473950b2999ba0b7f39bd5e4a60eafd1819d 231336ed913a5ebd4445b85486e053caf2b81cab91318241375f3f7a245b6c6b
GET /recaptcha/releases/V6_85qpc2Xf2sbe3xTnRte7m/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 205803
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 26 Apr 2024 06:07:40 GMT
expires: Sat, 26 Apr 2025 06:07:40 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 22 Apr 2024 21:03:35 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 186060
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 | 216.58.207.227 | 200 OK | 15 kB |
URL GET HTTP/2fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 IP216.58.207.227:443
Requested byhttps://www.google.com/recaptcha/api2/anchor?ar=1&k=6Ld-XrkbAAAAADQkpmwblcVfXeye3FsuM9DleGwK&co=aHR0cHM6Ly92aXNhbWV0cmlrLmRlOjQ0Mw..&hl=en&v=V6_85qpc2Xf2sbe3xTnRte7m&size=invisible&cb=17rfn9j9jgny CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint93:EC:35:60:8A:5B:23:EA:C0:36:D7:AE:03:0C:C3:77:17:5A:20:33 ValidityMon, 08 Apr 2024 07:31:57 GMT - Mon, 01 Jul 2024 07:31:56 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 15344, version 1.0 Hash5d4aeb4e5f5ef754e307d7ffaef688bd 06db651cdf354c64a7383ea9c77024ef4fb4cef8 3e253b66056519aa065b00a453bac37ac5ed8f3e6fe7b542e93a9dcdcc11d0bc
GET /s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15344
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 26 Apr 2024 06:01:56 GMT
expires: Sat, 26 Apr 2025 06:01:56 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 16 Oct 2017 17:32:55 GMT
content-type: font/woff2
age: 186405
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 | 216.58.207.227 | 200 OK | 16 kB |
URL GET HTTP/2fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 IP216.58.207.227:443
Requested byhttps://www.google.com/recaptcha/api2/anchor?ar=1&k=6Ld-XrkbAAAAADQkpmwblcVfXeye3FsuM9DleGwK&co=aHR0cHM6Ly92aXNhbWV0cmlrLmRlOjQ0Mw..&hl=en&v=V6_85qpc2Xf2sbe3xTnRte7m&size=invisible&cb=17rfn9j9jgny CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint93:EC:35:60:8A:5B:23:EA:C0:36:D7:AE:03:0C:C3:77:17:5A:20:33 ValidityMon, 08 Apr 2024 07:31:57 GMT - Mon, 01 Jul 2024 07:31:56 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 15552, version 1.0 Hash285467176f7fe6bb6a9c6873b3dad2cc ea04e4ff5142ddd69307c183def721a160e0a64e 5a8c1e7681318caa29e9f44e8a6e271f6a4067a2703e9916dfd4fe9099241db7
GET /s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15552
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 25 Apr 2024 17:25:07 GMT
expires: Fri, 25 Apr 2025 17:25:07 GMT
cache-control: public, max-age=31536000
age: 231814
last-modified: Mon, 16 Oct 2017 17:33:02 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| www.gstatic.com/recaptcha/releases/V6_85qpc2Xf2sbe3xTnRte7m/recaptcha__en.js | 142.250.74.131 | 200 OK | 206 kB |
URL GET HTTP/3www.gstatic.com/recaptcha/releases/V6_85qpc2Xf2sbe3xTnRte7m/recaptcha__en.js IP142.250.74.131:443
Requested byhttps://www.google.com/recaptcha/api2/anchor?ar=1&k=6Ld-XrkbAAAAADQkpmwblcVfXeye3FsuM9DleGwK&co=aHR0cHM6Ly92aXNhbWV0cmlrLmRlOjQ0Mw..&hl=en&v=V6_85qpc2Xf2sbe3xTnRte7m&size=invisible&cb=17rfn9j9jgny CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint93:EC:35:60:8A:5B:23:EA:C0:36:D7:AE:03:0C:C3:77:17:5A:20:33 ValidityMon, 08 Apr 2024 07:31:57 GMT - Mon, 01 Jul 2024 07:31:56 GMT
File typeJavaScript source, ASCII text, with very long lines (631) Size206 kB (205803 bytes) Hashe2e79d6b927169d9e0e57e3baecc0993 1299473950b2999ba0b7f39bd5e4a60eafd1819d 231336ed913a5ebd4445b85486e053caf2b81cab91318241375f3f7a245b6c6b
GET /recaptcha/releases/V6_85qpc2Xf2sbe3xTnRte7m/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 205803
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 26 Apr 2024 06:07:40 GMT
expires: Sat, 26 Apr 2025 06:07:40 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 22 Apr 2024 21:03:35 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 186061
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| www.google.com/js/bg/jxnhk5jmHgJtz4Dlh1rT_zslgZiPJPGjuH1uymS8TXw.js | 142.250.74.164 | 200 OK | 7.5 kB |
URL GET HTTP/3www.google.com/js/bg/jxnhk5jmHgJtz4Dlh1rT_zslgZiPJPGjuH1uymS8TXw.js IP142.250.74.164:443
Requested byhttps://www.google.com/recaptcha/api2/anchor?ar=1&k=6Ld-XrkbAAAAADQkpmwblcVfXeye3FsuM9DleGwK&co=aHR0cHM6Ly92aXNhbWV0cmlrLmRlOjQ0Mw..&hl=en&v=V6_85qpc2Xf2sbe3xTnRte7m&size=invisible&cb=17rfn9j9jgny CertificateIssuerGoogle Trust Services LLC Subject*.google.com Fingerprint01:16:A3:AE:CA:C9:AC:ED:3A:C9:AA:75:BE:C2:51:EF:65:CE:23:E1 ValidityMon, 08 Apr 2024 06:34:56 GMT - Mon, 01 Jul 2024 06:34:55 GMT
File typeJavaScript source, ASCII text, with very long lines (17661) Hash96dda94f567100c20e439dfefadb0776 1a7d2dc18f5c6ebcce4fcc8797648711d25cf548 8f19e19398e61e026dcf80e5875ad3ff3b2581988f24f1a3b87d6eca64bc4d7c
GET /js/bg/jxnhk5jmHgJtz4Dlh1rT_zslgZiPJPGjuH1uymS8TXw.js HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/recaptcha/api2/anchor?ar=1&k=6Ld-XrkbAAAAADQkpmwblcVfXeye3FsuM9DleGwK&co=aHR0cHM6Ly92aXNhbWV0cmlrLmRlOjQ0Mw..&hl=en&v=V6_85qpc2Xf2sbe3xTnRte7m&size=invisible&cb=17rfn9j9jgny
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: br
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/botguard-scs
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="botguard-scs"
report-to: {"group":"botguard-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/botguard-scs"}]}
content-length: 7465
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 26 Apr 2024 06:04:57 GMT
expires: Sat, 26 Apr 2025 06:04:57 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 16 Apr 2024 13:30:00 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 186224
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| www.gstatic.com/recaptcha/api2/logo_48.png | 142.250.74.131 | 200 OK | 2.2 kB |
URL GET HTTP/3www.gstatic.com/recaptcha/api2/logo_48.png IP142.250.74.131:443
Requested byhttps://www.google.com/recaptcha/api2/anchor?ar=1&k=6Ld-XrkbAAAAADQkpmwblcVfXeye3FsuM9DleGwK&co=aHR0cHM6Ly92aXNhbWV0cmlrLmRlOjQ0Mw..&hl=en&v=V6_85qpc2Xf2sbe3xTnRte7m&size=invisible&cb=17rfn9j9jgny CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint93:EC:35:60:8A:5B:23:EA:C0:36:D7:AE:03:0C:C3:77:17:5A:20:33 ValidityMon, 08 Apr 2024 07:31:57 GMT - Mon, 01 Jul 2024 07:31:56 GMT
File typePNG image data, 48 x 48, 8-bit/color RGBA, non-interlaced Hashef9941290c50cd3866e2ba6b793f010d 4736508c795667dcea21f8d864233031223b7832 1b9efb22c938500971aac2b2130a475fa23684dd69e43103894968df83145b8a
GET /recaptcha/api2/logo_48.png HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.gstatic.com/recaptcha/releases/V6_85qpc2Xf2sbe3xTnRte7m/styles__ltr.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 2228
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 25 Apr 2024 17:35:26 GMT
expires: Thu, 02 May 2024 17:35:26 GMT
cache-control: public, max-age=604800
age: 231195
last-modified: Tue, 03 Mar 2020 20:15:00 GMT
content-type: image/png
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| www.google.com/recaptcha/api2/reload?k=6Ld-XrkbAAAAADQkpmwblcVfXeye3FsuM9DleGwK | 142.250.74.164 | 200 OK | 8.6 kB |
URL POST HTTP/3www.google.com/recaptcha/api2/reload?k=6Ld-XrkbAAAAADQkpmwblcVfXeye3FsuM9DleGwK IP142.250.74.164:443
Requested byhttps://www.google.com/recaptcha/api2/anchor?ar=1&k=6Ld-XrkbAAAAADQkpmwblcVfXeye3FsuM9DleGwK&co=aHR0cHM6Ly92aXNhbWV0cmlrLmRlOjQ0Mw..&hl=en&v=V6_85qpc2Xf2sbe3xTnRte7m&size=invisible&cb=17rfn9j9jgny CertificateIssuerGoogle Trust Services LLC Subject*.google.com Fingerprint01:16:A3:AE:CA:C9:AC:ED:3A:C9:AA:75:BE:C2:51:EF:65:CE:23:E1 ValidityMon, 08 Apr 2024 06:34:56 GMT - Mon, 01 Jul 2024 06:34:55 GMT
File typeASCII text, with very long lines (11812) Hash4b7f74b04c2b72c95fd7f6dce47fd6d5 4720a9a1ad2c40a4f1e0150a66fa63a91e4bb869 6c3c905328a9414d071eb356909a20488ab0e1e3c230b2d197b4283ab7f938ff
POST /recaptcha/api2/reload?k=6Ld-XrkbAAAAADQkpmwblcVfXeye3FsuM9DleGwK HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-protobuffer
Content-Length: 6349
Origin: https://www.google.com
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/recaptcha/api2/anchor?ar=1&k=6Ld-XrkbAAAAADQkpmwblcVfXeye3FsuM9DleGwK&co=aHR0cHM6Ly92aXNhbWV0cmlrLmRlOjQ0Mw..&hl=en&v=V6_85qpc2Xf2sbe3xTnRte7m&size=invisible&cb=17rfn9j9jgny
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: application/json; charset=utf-8
content-encoding: gzip
date: Sun, 28 Apr 2024 09:48:42 GMT
expires: Sun, 28 Apr 2024 09:48:42 GMT
cache-control: private, max-age=0
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
server: GSE
set-cookie: _GRECAPTCHA=09AN_JpP9m34yFRQESr8ZzuugCN4W9RoUHg024j8VCKLqnMHWota0MFmGAcGoQerV8yamXzjSnUiuVIt9j2WV7Nds;Path=/recaptcha;Expires=Fri, 25-Oct-2024 09:48:42 GMT;Secure;HttpOnly;Priority=HIGH;SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| visametrik.de/wp-content/themes/vfs/fonts/Montserrat-SemiBold.ttf | 178.250.159.32 | 200 OK | 244 kB |
URL GET HTTP/1.1visametrik.de/wp-content/themes/vfs/fonts/Montserrat-SemiBold.ttf IP178.250.159.32:443
CertificateIssuerLet's Encrypt Subjectvisametric-com.ru Fingerprint89:E0:5C:84:F0:26:19:8C:35:89:DB:BD:CB:0D:EA:A8:94:44:D3:B8 ValidityThu, 11 Apr 2024 23:48:24 GMT - Wed, 10 Jul 2024 23:48:23 GMT
File typeTrueType Font data, 17 tables, 1st "GDEF", 15 names, Microsoft, language 0x409, Copyright 2011 The Montserrat Project Authors (https://github.com/JulietaUla/Montserrat)Montserr Size244 kB (243816 bytes) Hashc641dbee1d75892e4d88bdc31560c91b f829de4c176fb2ccf5e33360920f48de6794434e f227901ef48ac4d1fe4cc6ed0dbce99e6b38969babe5e05da2dfb33521b02944
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/themes/vfs/fonts/Montserrat-SemiBold.ttf HTTP/1.1
Host: visametrik.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://visametrik.de/wp-content/themes/vfs/style.css
Cookie: PHPSESSID=1ib42s2bi13q6mv0gg3t71igcq
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0
Date: Sun, 28 Apr 2024 09:48:40 GMT
Content-Type: application/octet-stream
Content-Length: 243816
Last-Modified: Mon, 07 Dec 2020 19:28:15 GMT
Connection: keep-alive
ETag: "5fce824f-3b868"
Strict-Transport-Security: max-age=31536000;
Accept-Ranges: bytes
|
|
| www.google.com/recaptcha/api2/anchor?ar=1&k=6Ld-XrkbAAAAADQkpmwblcVfXeye3FsuM9DleGwK&co=aHR0cHM6Ly92aXNhbWV0cmlrLmRlOjQ0Mw..&hl=en&v=V6_85qpc2Xf2sbe3xTnRte7m&size=invisible&cb=17rfn9j9jgny | 142.250.74.164 | 200 OK | 46 kB |
URL GET HTTP/3www.google.com/recaptcha/api2/anchor?ar=1&k=6Ld-XrkbAAAAADQkpmwblcVfXeye3FsuM9DleGwK&co=aHR0cHM6Ly92aXNhbWV0cmlrLmRlOjQ0Mw..&hl=en&v=V6_85qpc2Xf2sbe3xTnRte7m&size=invisible&cb=17rfn9j9jgny IP142.250.74.164:443
CertificateIssuerGoogle Trust Services LLC Subject*.google.com Fingerprint01:16:A3:AE:CA:C9:AC:ED:3A:C9:AA:75:BE:C2:51:EF:65:CE:23:E1 ValidityMon, 08 Apr 2024 06:34:56 GMT - Mon, 01 Jul 2024 06:34:55 GMT
File typeHTML document, ASCII text, with very long lines (37567) Hash74b93b7fe9137703d63330059d1b7eaf be46db569a20587ac25c023052a073fb3ff8764e a317c5954fd07bd426ddba467bf746386945c492fe7dbace8ac001313cb6223b
GET /recaptcha/api2/anchor?ar=1&k=6Ld-XrkbAAAAADQkpmwblcVfXeye3FsuM9DleGwK&co=aHR0cHM6Ly92aXNhbWV0cmlrLmRlOjQ0Mw..&hl=en&v=V6_85qpc2Xf2sbe3xTnRte7m&size=invisible&cb=17rfn9j9jgny HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://visametrik.de/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
content-type: text/html; charset=utf-8
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Sun, 28 Apr 2024 09:48:40 GMT
content-security-policy: script-src 'nonce-rFLyQcKhe9wrY2ocVZQs2g' 'unsafe-inline' 'strict-dynamic' https: http: 'unsafe-eval';object-src 'none';base-uri 'self';report-uri https://csp.withgoogle.com/csp/recaptcha/1
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| stackpath.bootstrapcdn.com/font-awesome/4.7.0/css/font-awesome.min.css | 104.18.10.207 | 200 OK | 31 kB |
URL GET HTTP/2stackpath.bootstrapcdn.com/font-awesome/4.7.0/css/font-awesome.min.css IP104.18.10.207:443
CertificateIssuerGoogle Trust Services LLC Subjectbootstrapcdn.com Fingerprint57:B4:25:B9:9C:88:A1:A3:3D:F7:31:74:02:E4:D1:E0:0A:F5:11:63 ValidityWed, 27 Mar 2024 00:22:09 GMT - Tue, 25 Jun 2024 00:22:08 GMT
File typeASCII text, with very long lines (30837) Hash269550530cc127b6aa5a35925a7de6ce 512c7d79033e3028a9be61b540cf1a6870c896f8 799aeb25cc0373fdee0e1b1db7ad6c2f6a0e058dfadaa3379689f583213190bd
GET /font-awesome/4.7.0/css/font-awesome.min.css HTTP/1.1
Host: stackpath.bootstrapcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://visametrik.de/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 28 Apr 2024 09:48:39 GMT
content-type: text/css; charset=utf-8
vary: Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
access-control-allow-origin: *
cache-control: public, max-age=31919000
etag: W/"269550530cc127b6aa5a35925a7de6ce"
last-modified: Mon, 25 Jan 2021 22:04:55 GMT
cdn-cachedat: 10/31/2023 18:48:06
cdn-proxyver: 1.04
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 722
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-status: 200
cdn-requestid: dd809c84048d5afa8e77adc8acacd559
cdn-cache: HIT
cf-cache-status: HIT
age: 13671894
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 87b62349a99456ca-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| fonts.googleapis.com/css2?family=Montserrat&display=swap | 142.250.74.106 | 200 OK | 1.9 kB |
URL GET HTTP/2fonts.googleapis.com/css2?family=Montserrat&display=swap IP142.250.74.106:443
CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint5F:6D:48:87:16:89:1E:A5:57:29:92:8B:34:BD:F2:92:0C:7F:F2:50 ValidityMon, 08 Apr 2024 07:32:03 GMT - Mon, 01 Jul 2024 07:32:02 GMT
File typeASCII text, with very long lines (1964), with no line terminators Hash239a618ffafef4ef52b8420e3a840889 eb3c9591cf15cfbc0708770f3680d7ecf7a2029b 1a65d1c5600a83400ac4e08ed56f140e81590a6761a6cdc03187da69555196aa
GET /css2?family=Montserrat&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://visametrik.de/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sun, 28 Apr 2024 09:48:39 GMT
date: Sun, 28 Apr 2024 09:48:39 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| www.google.com/recaptcha/api2/webworker.js?hl=en&v=V6_85qpc2Xf2sbe3xTnRte7m | 142.250.74.164 | 200 OK | 102 B |
URL GET HTTP/3www.google.com/recaptcha/api2/webworker.js?hl=en&v=V6_85qpc2Xf2sbe3xTnRte7m IP142.250.74.164:443
Requested byhttps://www.google.com/recaptcha/api2/anchor?ar=1&k=6Ld-XrkbAAAAADQkpmwblcVfXeye3FsuM9DleGwK&co=aHR0cHM6Ly92aXNhbWV0cmlrLmRlOjQ0Mw..&hl=en&v=V6_85qpc2Xf2sbe3xTnRte7m&size=invisible&cb=17rfn9j9jgny CertificateIssuerGoogle Trust Services LLC Subject*.google.com Fingerprint01:16:A3:AE:CA:C9:AC:ED:3A:C9:AA:75:BE:C2:51:EF:65:CE:23:E1 ValidityMon, 08 Apr 2024 06:34:56 GMT - Mon, 01 Jul 2024 06:34:55 GMT
File typeASCII text, with no line terminators Hash284b36421a1cf446f32cb8f7987b1091 eb14d6298c9da3fb26d75b54c087ea2df9f3f05f 94ab2be973685680d0be9c08d4e1a7465f3c09053cf631126bd33f49cc2f939b
GET /recaptcha/api2/webworker.js?hl=en&v=V6_85qpc2Xf2sbe3xTnRte7m HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/recaptcha/api2/anchor?ar=1&k=6Ld-XrkbAAAAADQkpmwblcVfXeye3FsuM9DleGwK&co=aHR0cHM6Ly92aXNhbWV0cmlrLmRlOjQ0Mw..&hl=en&v=V6_85qpc2Xf2sbe3xTnRte7m&size=invisible&cb=17rfn9j9jgny
Sec-Fetch-Dest: worker
Sec-Fetch-Mode: same-origin
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
content-type: text/javascript; charset=utf-8
cross-origin-embedder-policy: require-corp
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
expires: Sun, 28 Apr 2024 09:48:41 GMT
date: Sun, 28 Apr 2024 09:48:41 GMT
cache-control: private, max-age=300
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| stackpath.bootstrapcdn.com/bootstrap/4.4.1/css/bootstrap.min.css | 104.18.10.207 | 200 OK | 160 kB |
URL GET HTTP/2stackpath.bootstrapcdn.com/bootstrap/4.4.1/css/bootstrap.min.css IP104.18.10.207:443
CertificateIssuerGoogle Trust Services LLC Subjectbootstrapcdn.com Fingerprint57:B4:25:B9:9C:88:A1:A3:3D:F7:31:74:02:E4:D1:E0:0A:F5:11:63 ValidityWed, 27 Mar 2024 00:22:09 GMT - Tue, 25 Jun 2024 00:22:08 GMT
File typeASCII text, with very long lines (65324) Size160 kB (159515 bytes) Hash7cc40c199d128af6b01e74a28c5900b0 d305110fb79113a961394b433d851a3410342b8c 2ff5b959fa9f6b4b1d04d20a37d706e90039176ab1e2a202994d9580baeebfd6
GET /bootstrap/4.4.1/css/bootstrap.min.css HTTP/1.1
Host: stackpath.bootstrapcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://visametrik.de
DNT: 1
Connection: keep-alive
Referer: https://visametrik.de/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 28 Apr 2024 09:48:39 GMT
content-type: text/css; charset=utf-8
vary: Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
access-control-allow-origin: *
cache-control: public, max-age=31919000
etag: W/"7cc40c199d128af6b01e74a28c5900b0"
last-modified: Mon, 25 Jan 2021 22:04:09 GMT
cdn-cachedat: 10/31/2023 19:00:00
cdn-proxyver: 1.04
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 1078
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-status: 200
cdn-requestid: 2a5ccf3076edee9c2cb9fa723174fc0c
cdn-cache: HIT
cf-cache-status: HIT
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 87b623499b5eb511-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| www.google.com/recaptcha/api2/clr?k=6Ld-XrkbAAAAADQkpmwblcVfXeye3FsuM9DleGwK | 142.250.74.164 | 200 OK | 0 B |
URL POST HTTP/3www.google.com/recaptcha/api2/clr?k=6Ld-XrkbAAAAADQkpmwblcVfXeye3FsuM9DleGwK IP142.250.74.164:443
Requested byhttps://www.google.com/recaptcha/api2/anchor?ar=1&k=6Ld-XrkbAAAAADQkpmwblcVfXeye3FsuM9DleGwK&co=aHR0cHM6Ly92aXNhbWV0cmlrLmRlOjQ0Mw..&hl=en&v=V6_85qpc2Xf2sbe3xTnRte7m&size=invisible&cb=17rfn9j9jgny CertificateIssuerGoogle Trust Services LLC Subject*.google.com Fingerprint01:16:A3:AE:CA:C9:AC:ED:3A:C9:AA:75:BE:C2:51:EF:65:CE:23:E1 ValidityMon, 08 Apr 2024 06:34:56 GMT - Mon, 01 Jul 2024 06:34:55 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /recaptcha/api2/clr?k=6Ld-XrkbAAAAADQkpmwblcVfXeye3FsuM9DleGwK HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-protobuf
Content-Length: 1458
Origin: https://www.google.com
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/recaptcha/api2/anchor?ar=1&k=6Ld-XrkbAAAAADQkpmwblcVfXeye3FsuM9DleGwK&co=aHR0cHM6Ly92aXNhbWV0cmlrLmRlOjQ0Mw..&hl=en&v=V6_85qpc2Xf2sbe3xTnRte7m&size=invisible&cb=17rfn9j9jgny
Cookie: _GRECAPTCHA=09AN_JpP9m34yFRQESr8ZzuugCN4W9RoUHg024j8VCKLqnMHWota0MFmGAcGoQerV8yamXzjSnUiuVIt9j2WV7Nds
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
content-type: application/binary
date: Sun, 28 Apr 2024 09:48:42 GMT
expires: Sun, 28 Apr 2024 09:48:42 GMT
cache-control: private, max-age=0
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 0
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| stackpath.bootstrapcdn.com/bootstrap/4.4.1/js/bootstrap.min.js | 104.18.10.207 | 200 OK | 60 kB |
URL GET HTTP/2stackpath.bootstrapcdn.com/bootstrap/4.4.1/js/bootstrap.min.js IP104.18.10.207:443
CertificateIssuerGoogle Trust Services LLC Subjectbootstrapcdn.com Fingerprint57:B4:25:B9:9C:88:A1:A3:3D:F7:31:74:02:E4:D1:E0:0A:F5:11:63 ValidityWed, 27 Mar 2024 00:22:09 GMT - Tue, 25 Jun 2024 00:22:08 GMT
File typeJavaScript source, ASCII text, with very long lines (59729) Hash61f338f870fcd0ff46362ef109d28533 b3c116c65e6f053aaab45e5619a78ec00271a50f 5aa53525abc5c5200c70b3f6588388f86076cd699284c23cda64e92c372a1548
GET /bootstrap/4.4.1/js/bootstrap.min.js HTTP/1.1
Host: stackpath.bootstrapcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://visametrik.de
DNT: 1
Connection: keep-alive
Referer: https://visametrik.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 28 Apr 2024 09:48:39 GMT
content-type: application/javascript; charset=utf-8
vary: Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
access-control-allow-origin: *
cache-control: public, max-age=31919000
etag: W/"61f338f870fcd0ff46362ef109d28533"
last-modified: Mon, 25 Jan 2021 22:04:09 GMT
cdn-cachedat: 01/04/2023 07:40:19
cdn-proxyver: 1.03
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 1075
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-status: 200
cdn-requestid: 46239c134bd28392b5b8006095c079ee
cdn-cache: HIT
cf-cache-status: HIT
age: 952
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 87b623499b62b511-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|