firefox.settings.services.mozilla.com/v1/
54.230.111.118200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 54.230.111.118:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 2d12f67fe57a87e7366b662d153a5582
d7b02d81cc74f24a251d9363e0f4b0a149264ec1
73c273c0b5a2de3cb970b8e8c187999d3b55e760dc7766dab4bb76428d19b551
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Length, Backoff, Content-Type, Retry-After, Alert
Cache-Control: max-age=259200
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Wed, 05 Oct 2022 15:47:18 GMT
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 a2c3c8b833b34851dca4f7753ecaae58.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: cEX5s-8QUDN9Y8Dclg8uFgYHrnNthTMoTz-22xi8xqXRlY4-3UT_6w==
Age: 83097
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 282f6e1328452c1cb41f6a6272fff757
20b9ff1b5f4f81b645769bd4b4cf7bf7dfc16262
6a8070ebe51259cb11db68cca2c81f3c7408fad481d8c14cc1c38912442c63f4
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6A8070EBE51259CB11DB68CCA2C81F3C7408FAD481D8C14CC1C38912442C63F4"
Last-Modified: Wed, 05 Oct 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5662
Expires: Thu, 06 Oct 2022 16:26:37 GMT
Date: Thu, 06 Oct 2022 14:52:15 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
54.230.111.14200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
IP 54.230.111.14:0
File type PEM certificate\012- , ASCII text
Hash 67d5a988edcda47bc3b3b3f65d32b4b6
d4f0e0da8b3690cc7da925026d3414b68c7d954f
55e4848e3ec682e808ce7ee70950f86179c43af4f81926d826a95edfda395a78
GET /chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Fri, 30 Sep 2022 18:50:55 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Thu, 06 Oct 2022 04:02:33 GMT
etag: "67d5a988edcda47bc3b3b3f65d32b4b6"
x-cache: Hit from cloudfront
via: 1.1 9037b7743a833da13439f0d4e2619b52.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: GXm9oT0BLZt-CwSSplJJzMOLFnFXktP-GyEMgIOPxpM4HtGUcPMzaQ==
age: 38983
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 06 Oct 2022 14:52:15 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
54.230.111.118200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 54.230.111.118:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Pragma, Content-Length, Backoff, Last-Modified, Cache-Control, Content-Type, Retry-After, ETag, Expires, Alert
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600, max-age=3600
Date: Thu, 06 Oct 2022 14:29:41 GMT
Expires: Thu, 06 Oct 2022 15:02:47 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 ab09332bca1a3bd382d2e408f65b98d2.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: wzyf1So4J5v74SfpUIYCcYZ72u-PB0AZ-GX23W7KzTQ2DWjsavxDPQ==
Age: 1354
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 8be5570b9a5ca76c580da007a824b029
38840f2ac6476bdd5608121c5653e338c7ad9715
0b94e05080ef85432b1815eb3c6c7594c9613cfde1b51eeabee46d0d9fde64b2
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4138
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 06 Oct 2022 14:52:15 GMT
Last-Modified: Thu, 06 Oct 2022 13:43:17 GMT
Server: ECS (ska/F71D)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
52.35.167.249101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.35.167.249:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: +QunExEAkYqdmbGBTwV8NA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: bazDV+wNOTd0Ne2pFAsssS1InYM=
grupoinden.com/
5.56.56.34302 Found 0 B IP 5.56.56.34:0
ASN #57286 Gigas Hosting S.A.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET / HTTP/1.1
Host: grupoinden.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 302 Found
Server: nginx
Date: Thu, 06 Oct 2022 14:52:16 GMT
Content-Type: text/html; charset=UTF-8
Content-Length: 0
Connection: keep-alive
Vary: Accept-Language
X-Redirect-By: Polylang
Set-Cookie: pll_language=en; expires=Fri, 06-Oct-2023 14:52:16 GMT; Max-Age=31536000; path=/; SameSite=Lax
Location: http://grupoinden.com/en/start/
X-Powered-By: PHP/7.3.5, PleskLin
grupoinden.com/en/start/
5.56.56.34301 Moved Permanently 0 B IP 5.56.56.34:0
ASN #57286 Gigas Hosting S.A.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /en/start/ HTTP/1.1
Host: grupoinden.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Cookie: pll_language=en
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Thu, 06 Oct 2022 14:52:17 GMT
Content-Type: text/html; charset=UTF-8
Content-Length: 0
Connection: keep-alive
X-Redirect-By: WordPress
Location: https://grupoinden.com/en/start/
X-Powered-By: PHP/7.3.5, PleskLin
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash e825fc3ba1ec6c169fbc10ffef8dffb0
6bf9cffa8468b37068aebed5a43dbc911086fc84
b0c59e715d8c38c061cfa06ec64c69f442f9417d6bc9c76e393c1fa00b11af86
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B0C59E715D8C38C061CFA06EC64C69F442F9417D6BC9C76E393C1FA00B11AF86"
Last-Modified: Wed, 05 Oct 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8149
Expires: Thu, 06 Oct 2022 17:08:06 GMT
Date: Thu, 06 Oct 2022 14:52:17 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F913c841b-40a5-4fa4-bc55-0e9d1369640e.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F913c841b-40a5-4fa4-bc55-0e9d1369640e.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash a508ac9cd743bec987b2a24454418265
8c7ecefe6908387e2128dc849a6ba857991ba0ab
afb2c2b51f2ce445ada599068901551beee594b15c152ed7551ab7a8835dde6d
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F913c841b-40a5-4fa4-bc55-0e9d1369640e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10809
x-amzn-requestid: db4d1d2a-05b8-403e-a7ca-8b8a6a0a4087
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZjQb-HrTIAMFtNg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633dfab2-74f184406a48e42c0ecc4ec9;Sampled=0
x-amzn-remapped-date: Wed, 05 Oct 2022 21:44:18 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P2
x-cache: Miss from cloudfront
x-amz-cf-id: tv80OXQUu13gDuuFESnEnXMuFdNBmGc1y592euL7QnfZW5PwJym9-g==
via: 1.1 c34da255183aa208dd1c722ff211f9b2.cloudfront.net (CloudFront), 1.1 de8fc80b494d3d381f7e006918dcc588.cloudfront.net (CloudFront), 1.1 google
date: Wed, 05 Oct 2022 21:53:39 GMT
etag: "8c7ecefe6908387e2128dc849a6ba857991ba0ab"
content-type: image/jpeg
age: 61118
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd38ec9d6-fb69-4c6e-aae2-136fd254ae50.jpeg
34.120.237.76200 OK 7.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd38ec9d6-fb69-4c6e-aae2-136fd254ae50.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash e238ccaa3b9fa88476a8514855e8232f
447cbf348ef10d0136a1811e843c46937defbba1
43dce3c1eb388dfaddca4176acb6eb32f76fc4c03fca18e7a315c9ddb43d2b02
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd38ec9d6-fb69-4c6e-aae2-136fd254ae50.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7270
x-amzn-requestid: e5d0bb7a-b9d5-49b1-b51c-8db019da641f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZjQOGEQloAMFjgw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633dfa5a-519d91fb0b83920960da479d;Sampled=0
x-amzn-remapped-date: Wed, 05 Oct 2022 21:42:50 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P2
x-cache: Miss from cloudfront
x-amz-cf-id: l1HGT5ycH36vVojsOPFptRSU1YJFvLbBsgiWJqzRlRIGgm2o5vf6jg==
via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 34c44cb7892e57a3b6c51812bcf68ee4.cloudfront.net (CloudFront), 1.1 google
date: Wed, 05 Oct 2022 21:58:56 GMT
etag: "447cbf348ef10d0136a1811e843c46937defbba1"
content-type: image/jpeg
age: 60801
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7fac259b-7a22-4aa2-ba3f-682cb749091c.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7fac259b-7a22-4aa2-ba3f-682cb749091c.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 2277f8f2d93b4bc3b05d348343177892
531d9e4ec9078cd2d7376a19fcb287084af36c82
62907648de4a2ed390232a71ab7dce49f1e9c3363cde6a2f30ecae10ab67f93a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7fac259b-7a22-4aa2-ba3f-682cb749091c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11080
x-amzn-requestid: 8fa4d19d-87a5-46c5-96c5-4aec793daad9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZjO7xE5eoAMFQLw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633df84b-5c422c7a168c014f57559037;Sampled=0
x-amzn-remapped-date: Wed, 05 Oct 2022 21:34:03 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P2
x-cache: Hit from cloudfront
x-amz-cf-id: LySueW1si-yWLwecUILV1s57IEV2FdcQ9_pH1Aoe4AYISi7QXXfd3A==
via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 34c44cb7892e57a3b6c51812bcf68ee4.cloudfront.net (CloudFront), 1.1 google
date: Wed, 05 Oct 2022 21:39:28 GMT
age: 61969
etag: "531d9e4ec9078cd2d7376a19fcb287084af36c82"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff5b87135-538c-4c9f-b146-1da5b13ce157.jpeg
34.120.237.76200 OK 8.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff5b87135-538c-4c9f-b146-1da5b13ce157.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash a7bcc50ecfeeca47de68cb437e966f29
e98c870fd29b56fa4c3847008bedc0f01f222744
47a82bb40ead4346323b68c886cb88528cb2162666e9549b2ab215b86a499985
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff5b87135-538c-4c9f-b146-1da5b13ce157.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8360
x-amzn-requestid: c1f21bfa-3ceb-4661-97b8-0d7475f0e911
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZKLlLG0joAMFQqg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6333f2ed-43993b1377e9fbaf4e9443d2;Sampled=0
x-amzn-remapped-date: Wed, 28 Sep 2022 07:08:29 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: kyp8p-Jm92bA3VDbsKDiD_JnS2eekJFUkMjYXquZ1D15WthqXoSlsA==
via: 1.1 da5952aa802df39905ceb16592e9698a.cloudfront.net (CloudFront), 1.1 e80693c02cfdfd081110512210d57840.cloudfront.net (CloudFront), 1.1 google
date: Wed, 05 Oct 2022 21:57:01 GMT
age: 60916
etag: "e98c870fd29b56fa4c3847008bedc0f01f222744"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fccecc8c9-b6da-4470-b2be-fa8d46df1cc2.webp
34.120.237.76200 OK 9.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fccecc8c9-b6da-4470-b2be-fa8d46df1cc2.webp
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 70ea26af79226e9ff06d6198e2c019dc
ae2c476667f63c7f642f0d9f4d0bc0d846b0ef57
f9393e7b8cbaedc8e1ef87fd89c617cf102f58813d84d866ff68e3124f94d44c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fccecc8c9-b6da-4470-b2be-fa8d46df1cc2.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9044
x-amzn-requestid: 127bce04-9f75-4bb1-bbe7-33bf1694d96c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZdZPmHG5oAMFehw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633ba263-3896085b3b73ff5403237206;Sampled=0
x-amzn-remapped-date: Tue, 04 Oct 2022 03:02:59 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: E4yZTPRLFdK717YfwjOIFOJDi0wYpyA736dQELeM5iPLvGDXBosEWg==
via: 1.1 86b676273517904f44af31586adb06ae.cloudfront.net (CloudFront), 1.1 5fe5f2a3903f1378941d92eceaf3fa16.cloudfront.net (CloudFront), 1.1 google
date: Thu, 06 Oct 2022 05:04:17 GMT
age: 35280
etag: "ae2c476667f63c7f642f0d9f4d0bc0d846b0ef57"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa6646df0-31a7-4c5a-8148-5fe9e20f3baf.jpeg
34.120.237.76200 OK 9.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa6646df0-31a7-4c5a-8148-5fe9e20f3baf.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b5958f828ccc16a41b22d9ae812bccfc
f350f295dd70152712162d4be5b3b5f0d12cde57
230d7d8e570e433d18ec53b6ca114e2a206e8c265c0c66d73388c49db5c91c64
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa6646df0-31a7-4c5a-8148-5fe9e20f3baf.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9338
x-amzn-requestid: 4ca2eb3c-eba4-43a4-b79a-89546da3d660
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZjQBfG7soAMF9cw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633dfa09-1b5bd53052718f620b920a00;Sampled=0
x-amzn-remapped-date: Wed, 05 Oct 2022 21:41:29 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P2
x-cache: Hit from cloudfront
x-amz-cf-id: 6pHftE0vUMqrH2NR_7DzrWlnD0yal7BkAfee7UeVG7DKZNEAYRa9HQ==
via: 1.1 00f0a41f749793b9dd653153037c957e.cloudfront.net (CloudFront), 1.1 d1d67b07408bba8c682597d8303642e2.cloudfront.net (CloudFront), 1.1 google
date: Wed, 05 Oct 2022 22:03:23 GMT
age: 60534
etag: "f350f295dd70152712162d4be5b3b5f0d12cde57"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash f9c9cbda3447b2d29ad0946e34448e82
2fb3fafb3467918a7766c7f9ae5960c7df6b90a6
20f1f9ad59dcf7c48e72006c772e2be572f8f3fd0b1f47d1a1ecac19be817477
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "20F1F9AD59DCF7C48E72006C772E2BE572F8F3FD0B1F47D1A1ECAC19BE817477"
Last-Modified: Thu, 06 Oct 2022 14:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Thu, 06 Oct 2022 20:52:17 GMT
Date: Thu, 06 Oct 2022 14:52:17 GMT
Connection: keep-alive
grupoinden.com/en/start/
5.56.56.34200 OK 26 kB IP 5.56.56.34:0
ASN #57286 Gigas Hosting S.A.
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (24588), with CRLF, LF line terminators
Hash 8faa5ba4ad99a649d5c1c23eab345272
ffe6dfbae0c09acfce6c0d1d3e55b6694c50d56a
6c1a2e913a98f2842fe161518de70581c93c837c4e87fbf714079dea46e8396a
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /en/start/ HTTP/1.1
Host: grupoinden.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 06 Oct 2022 14:52:18 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Link: <https://grupoinden.com/wp-json/>; rel="https://api.w.org/", <https://grupoinden.com/wp-json/wp/v2/pages/7997>; rel="alternate"; type="application/json", <https://grupoinden.com/>; rel=shortlink
Set-Cookie: pll_language=en; expires=Fri, 06-Oct-2023 14:52:17 GMT; Max-Age=31536000; path=/; secure; SameSite=Lax
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PHP/7.3.5, PleskLin
grupoinden.com/wp-content/themes/TheFox_child_theme/functions/rd_shortcodes/rd_recent_blog_posts.php
5.56.56.34403 Forbidden 1.0 kB URL HTTP/1.1 grupoinden.com/wp-content/themes/TheFox_child_theme/functions/rd_shortcodes/rd_recent_blog_posts.php
IP 5.56.56.34:0
ASN #57286 Gigas Hosting S.A.
File type HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash adead835c9466d8517374a5f235fe771
1968e1acd0cb376b84f638e9f24fbbedb4a5862d
76e5d2a14a6baf2216724ff3c105084b7df3a50637d42f8de775dad4dea45447
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/themes/TheFox_child_theme/functions/rd_shortcodes/rd_recent_blog_posts.php HTTP/1.1
Host: grupoinden.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://grupoinden.com/en/start/
Cookie: pll_language=en
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 403 Forbidden
Server: nginx
Date: Thu, 06 Oct 2022 14:52:18 GMT
Content-Type: text/html
Content-Length: 1023
Connection: keep-alive
Last-Modified: Thu, 10 Dec 2015 17:27:42 GMT
ETag: "3ff-5268e862f1f80"
Accept-Ranges: bytes
grupoinden.com/wp-content/plugins/contact-form-7/includes/css/styles.css
5.56.56.34200 OK 2.6 kB URL HTTP/1.1 grupoinden.com/wp-content/plugins/contact-form-7/includes/css/styles.css
IP 5.56.56.34:0
ASN #57286 Gigas Hosting S.A.
Hash 4bc19d35d9e5befbc0d4ac845aab7f5b
8a55406e44f4137b21cc518c90a7c2497ea8c5e0
f918adfae4672ad3160e57cc94881753f1c4ee02c9f7e3f569c17b4c8109594a
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/plugins/contact-form-7/includes/css/styles.css HTTP/1.1
Host: grupoinden.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://grupoinden.com/en/start/
Cookie: pll_language=en
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 06 Oct 2022 14:52:18 GMT
Content-Type: text/css
Content-Length: 2630
Last-Modified: Tue, 16 Mar 2021 17:53:58 GMT
Connection: keep-alive
ETag: "6050f0b6-a46"
X-Powered-By: PleskLin
Accept-Ranges: bytes
grupoinden.com/wp-content/themes/TheFox_child_theme/functions/ajax-handlers.php
5.56.56.34403 Forbidden 1.0 kB URL HTTP/1.1 grupoinden.com/wp-content/themes/TheFox_child_theme/functions/ajax-handlers.php
IP 5.56.56.34:0
ASN #57286 Gigas Hosting S.A.
File type HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash adead835c9466d8517374a5f235fe771
1968e1acd0cb376b84f638e9f24fbbedb4a5862d
76e5d2a14a6baf2216724ff3c105084b7df3a50637d42f8de775dad4dea45447
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/themes/TheFox_child_theme/functions/ajax-handlers.php HTTP/1.1
Host: grupoinden.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://grupoinden.com/en/start/
Cookie: pll_language=en
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 403 Forbidden
Server: nginx
Date: Thu, 06 Oct 2022 14:52:18 GMT
Content-Type: text/html
Content-Length: 1023
Connection: keep-alive
Last-Modified: Thu, 10 Dec 2015 17:27:42 GMT
ETag: "3ff-5268e862f1f80"
Accept-Ranges: bytes
grupoinden.com/wp-content/plugins/addons-for-visual-composer/assets/css/icomoon.css
5.56.56.34200 OK 7.7 kB URL HTTP/1.1 grupoinden.com/wp-content/plugins/addons-for-visual-composer/assets/css/icomoon.css
IP 5.56.56.34:0
ASN #57286 Gigas Hosting S.A.
File type ASCII text, with very long lines (5153)
Hash 23f9da38fc228ed0f25e928fb25f0287
0a426e4db7f5f4678e2a285c924d2c0c19227b14
8fdcd7476bba0ce5dbaa72d62ee38ca202efc8006977294b981cacaa9ce3006b
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/plugins/addons-for-visual-composer/assets/css/icomoon.css HTTP/1.1
Host: grupoinden.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://grupoinden.com/en/start/
Cookie: pll_language=en
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 06 Oct 2022 14:52:18 GMT
Content-Type: text/css
Content-Length: 7745
Last-Modified: Tue, 16 Mar 2021 19:28:30 GMT
Connection: keep-alive
ETag: "605106de-1e41"
X-Powered-By: PleskLin
Accept-Ranges: bytes
grupoinden.com/wp-content/plugins/cookie-law-info/public/css/cookie-law-info-public.css
5.56.56.34200 OK 3.1 kB URL HTTP/1.1 grupoinden.com/wp-content/plugins/cookie-law-info/public/css/cookie-law-info-public.css
IP 5.56.56.34:0
ASN #57286 Gigas Hosting S.A.
Hash 68ed2b23e23600933cbfd9020680f085
0edaca182d80c29ed337f032c8271bfe4b35be00
b8fa20af264fcdd99621fc4e3a770927452b0fe382599e0d890a3bfa31152f80
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/plugins/cookie-law-info/public/css/cookie-law-info-public.css HTTP/1.1
Host: grupoinden.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://grupoinden.com/en/start/
Cookie: pll_language=en
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 06 Oct 2022 14:52:18 GMT
Content-Type: text/css
Content-Length: 3109
Last-Modified: Tue, 16 Mar 2021 19:52:16 GMT
Connection: keep-alive
ETag: "60510c70-c25"
X-Powered-By: PleskLin
Accept-Ranges: bytes
grupoinden.com/wp-content/plugins/addons-for-visual-composer/assets/css/lvca-frontend.css
5.56.56.34200 OK 26 kB URL HTTP/1.1 grupoinden.com/wp-content/plugins/addons-for-visual-composer/assets/css/lvca-frontend.css
IP 5.56.56.34:0
ASN #57286 Gigas Hosting S.A.
File type ASCII text, with very long lines (1884)
Hash df8a9eb6b9ab7836cb13f24855fc9296
2053e35e23c4d4685ae99124f185312ac2938047
2dc32f8f8995d4d4d5bd50a3ef082a2bff1a5335d1e20ad555cd9a95fddccb49
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/plugins/addons-for-visual-composer/assets/css/lvca-frontend.css HTTP/1.1
Host: grupoinden.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://grupoinden.com/en/start/
Cookie: pll_language=en
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 06 Oct 2022 14:52:18 GMT
Content-Type: text/css
Content-Length: 26532
Last-Modified: Tue, 16 Mar 2021 19:28:30 GMT
Connection: keep-alive
ETag: "605106de-67a4"
X-Powered-By: PleskLin
Accept-Ranges: bytes
grupoinden.com/wp-content/plugins/addons-for-visual-composer/includes/addons/accordion/css/style.css
5.56.56.34200 OK 8.7 kB URL HTTP/1.1 grupoinden.com/wp-content/plugins/addons-for-visual-composer/includes/addons/accordion/css/style.css
IP 5.56.56.34:0
ASN #57286 Gigas Hosting S.A.
File type ASCII text, with very long lines (472)
Hash b6862225f31ce6adbf0741b4be9b5590
42327b05ca7a6f61f3c78e3fe3ae8348c9bd36bc
3fa92a015ab26ca71c0e760c1101f0880833afe9b1956af50f8f704a7d311436
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/plugins/addons-for-visual-composer/includes/addons/accordion/css/style.css HTTP/1.1
Host: grupoinden.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://grupoinden.com/en/start/
Cookie: pll_language=en
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 06 Oct 2022 14:52:18 GMT
Content-Type: text/css
Content-Length: 8724
Last-Modified: Tue, 16 Mar 2021 19:28:30 GMT
Connection: keep-alive
ETag: "605106de-2214"
X-Powered-By: PleskLin
Accept-Ranges: bytes
grupoinden.com/wp-content/plugins/cookie-law-info/public/css/cookie-law-info-gdpr.css
5.56.56.34200 OK 28 kB URL HTTP/1.1 grupoinden.com/wp-content/plugins/cookie-law-info/public/css/cookie-law-info-gdpr.css
IP 5.56.56.34:0
ASN #57286 Gigas Hosting S.A.
Hash 6567f7c68271691dd5049be3651ad6f5
e385ecaee088e6cf9fa8089165b95a57298b80c7
a82fb0df229ab511ba5e585874443b97a62bfbd76c369a6944ed9e0750ebf698
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/plugins/cookie-law-info/public/css/cookie-law-info-gdpr.css HTTP/1.1
Host: grupoinden.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://grupoinden.com/en/start/
Cookie: pll_language=en
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 06 Oct 2022 14:52:18 GMT
Content-Type: text/css
Content-Length: 28367
Last-Modified: Tue, 16 Mar 2021 19:52:16 GMT
Connection: keep-alive
ETag: "60510c70-6ecf"
X-Powered-By: PleskLin
Accept-Ranges: bytes
grupoinden.com/wp-includes/css/dist/block-library/style.min.css
5.56.56.34200 OK 58 kB URL HTTP/1.1 grupoinden.com/wp-includes/css/dist/block-library/style.min.css
IP 5.56.56.34:0
ASN #57286 Gigas Hosting S.A.
File type Unicode text, UTF-8 text, with very long lines (29677)
Hash b5d1e2c87b60ce71c3fd90ca27073250
b65e3890ef1565f98971b344b4c85866a5f33860
2cd9de3dd26246204749cff259bc34e8e6a47ae5d6e4528b9b28c75d68d50cde
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-includes/css/dist/block-library/style.min.css HTTP/1.1
Host: grupoinden.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://grupoinden.com/en/start/
Cookie: pll_language=en
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 06 Oct 2022 14:52:18 GMT
Content-Type: text/css
Content-Length: 58171
Last-Modified: Thu, 15 Apr 2021 04:58:50 GMT
Connection: keep-alive
ETag: "6077c80a-e33b"
X-Powered-By: PleskLin
Accept-Ranges: bytes
grupoinden.com/wp-content/plugins/addons-for-visual-composer/assets/css/slick.css
5.56.56.34200 OK 5.3 kB URL HTTP/1.1 grupoinden.com/wp-content/plugins/addons-for-visual-composer/assets/css/slick.css
IP 5.56.56.34:0
ASN #57286 Gigas Hosting S.A.
File type ASCII text, with very long lines (3705)
Hash 76e828ea92d024460106696717dde6d2
a67a4d1ec710a196181d504cb1d0352c16e68ccc
3b3943bdfda55a005cd1fe433b8a11cb1832b5b7bce5c11e104c0ea0f15258e4
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/plugins/addons-for-visual-composer/assets/css/slick.css HTTP/1.1
Host: grupoinden.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://grupoinden.com/en/start/
Cookie: pll_language=en
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 06 Oct 2022 14:52:18 GMT
Content-Type: text/css
Content-Length: 5343
Last-Modified: Tue, 16 Mar 2021 19:28:30 GMT
Connection: keep-alive
ETag: "605106de-14df"
X-Powered-By: PleskLin
Accept-Ranges: bytes
grupoinden.com/wp-content/plugins/addons-for-visual-composer/includes/addons/carousel/css/style.css
5.56.56.34200 OK 414 B URL HTTP/1.1 grupoinden.com/wp-content/plugins/addons-for-visual-composer/includes/addons/carousel/css/style.css
IP 5.56.56.34:0
ASN #57286 Gigas Hosting S.A.
File type ASCII text, with very long lines (425)
Hash 0d8ec94e6a3cd12dafe9c1ed7e920cac
a84becff11524661e10077ee549984ce44a3c196
b0372fccab38a11a2dd2288a70b2ca1ce46bc1bb4bf61b60fd6a747ce6e2820e
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/plugins/addons-for-visual-composer/includes/addons/carousel/css/style.css HTTP/1.1
Host: grupoinden.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://grupoinden.com/en/start/
Cookie: pll_language=en
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 06 Oct 2022 14:52:18 GMT
Content-Type: text/css
Content-Length: 414
Connection: keep-alive
X-Accel-Version: 0.01
Last-Modified: Tue, 16 Mar 2021 19:28:30 GMT
ETag: "227-5bdac5f08f380-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PleskLin
grupoinden.com/wp-content/plugins/addons-for-visual-composer/includes/addons/clients/css/style.css
5.56.56.34200 OK 5.8 kB URL HTTP/1.1 grupoinden.com/wp-content/plugins/addons-for-visual-composer/includes/addons/clients/css/style.css
IP 5.56.56.34:0
ASN #57286 Gigas Hosting S.A.
Hash f694297da68cc98c5f7bc278036ee925
19d3f3a0a6c9d5748c70e3dccca5019f43f58fbe
24869e210e16d95c03ed20ba2b18a87a1806cd21aa0f6743f8d55c162473b99b
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/plugins/addons-for-visual-composer/includes/addons/clients/css/style.css HTTP/1.1
Host: grupoinden.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://grupoinden.com/en/start/
Cookie: pll_language=en
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 06 Oct 2022 14:52:18 GMT
Content-Type: text/css
Content-Length: 5786
Last-Modified: Tue, 16 Mar 2021 19:28:30 GMT
Connection: keep-alive
ETag: "605106de-169a"
X-Powered-By: PleskLin
Accept-Ranges: bytes
grupoinden.com/wp-content/plugins/addons-for-visual-composer/includes/addons/odometers/css/style.css
5.56.56.34200 OK 5.4 kB URL HTTP/1.1 grupoinden.com/wp-content/plugins/addons-for-visual-composer/includes/addons/odometers/css/style.css
IP 5.56.56.34:0
ASN #57286 Gigas Hosting S.A.
Hash 77539f725f76fe74ce3723ebbda5f848
03498bc429450b958f16b78ccb6c5f5d14651138
2e50c9f49c096dafdd99f5584b142ecf5b46fd8f28c353265aef2a67d4312ba3
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/plugins/addons-for-visual-composer/includes/addons/odometers/css/style.css HTTP/1.1
Host: grupoinden.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://grupoinden.com/en/start/
Cookie: pll_language=en
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 06 Oct 2022 14:52:18 GMT
Content-Type: text/css
Content-Length: 5404
Last-Modified: Tue, 16 Mar 2021 19:28:30 GMT
Connection: keep-alive
ETag: "605106de-151c"
X-Powered-By: PleskLin
Accept-Ranges: bytes
grupoinden.com/wp-content/plugins/addons-for-visual-composer/includes/addons/heading/css/style.css
5.56.56.34200 OK 3.0 kB URL HTTP/1.1 grupoinden.com/wp-content/plugins/addons-for-visual-composer/includes/addons/heading/css/style.css
IP 5.56.56.34:0
ASN #57286 Gigas Hosting S.A.
Hash 352077b4f1ce886083bc95fbdd1bb536
182fac2d14440bc57b9efa938c9b2d448256eb47
eacd94e08972bdc6379afc2cea073cf9e4fd7bea80f415540faedad69a458188
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/plugins/addons-for-visual-composer/includes/addons/heading/css/style.css HTTP/1.1
Host: grupoinden.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://grupoinden.com/en/start/
Cookie: pll_language=en
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 06 Oct 2022 14:52:18 GMT
Content-Type: text/css
Content-Length: 3020
Last-Modified: Tue, 16 Mar 2021 19:28:30 GMT
Connection: keep-alive
ETag: "605106de-bcc"
X-Powered-By: PleskLin
Accept-Ranges: bytes
grupoinden.com/wp-content/plugins/revslider/public/assets/css/rs6.css
5.56.56.34200 OK 61 kB URL HTTP/1.1 grupoinden.com/wp-content/plugins/revslider/public/assets/css/rs6.css
IP 5.56.56.34:0
ASN #57286 Gigas Hosting S.A.
File type Unicode text, UTF-8 text, with very long lines (12602), with CRLF line terminators
Hash 74179b8bedf852b2fe74728e6628f101
ba2eaa1b6b10e3eb56b88c802718b19b8a2fb3e1
3e552d7bc9bfca204cf359cf30bc26b49a0f9a66dc22240a5f816fee0e069fbd
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/plugins/revslider/public/assets/css/rs6.css HTTP/1.1
Host: grupoinden.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://grupoinden.com/en/start/
Cookie: pll_language=en
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 06 Oct 2022 14:52:18 GMT
Content-Type: text/css
Content-Length: 61044
Last-Modified: Wed, 17 Mar 2021 09:08:25 GMT
Connection: keep-alive
ETag: "6051c709-ee74"
X-Powered-By: PleskLin
Accept-Ranges: bytes
grupoinden.com/wp-content/plugins/addons-for-visual-composer/includes/addons/piecharts/css/style.css
5.56.56.34200 OK 1.3 kB URL HTTP/1.1 grupoinden.com/wp-content/plugins/addons-for-visual-composer/includes/addons/piecharts/css/style.css
IP 5.56.56.34:0
ASN #57286 Gigas Hosting S.A.
Hash b6d7323fa29171466c0ba5b5b2eea5c6
e5eb1ede117f11b78fb9dbdc3017b30a4d986bb2
6a45c8a4a98f3c3825365744358e783e38804d11685cd52acd839c7b69f2c543
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/plugins/addons-for-visual-composer/includes/addons/piecharts/css/style.css HTTP/1.1
Host: grupoinden.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://grupoinden.com/en/start/
Cookie: pll_language=en
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 06 Oct 2022 14:52:18 GMT
Content-Type: text/css
Content-Length: 1278
Last-Modified: Tue, 16 Mar 2021 19:28:30 GMT
Connection: keep-alive
ETag: "605106de-4fe"
X-Powered-By: PleskLin
Accept-Ranges: bytes
grupoinden.com/wp-content/plugins/addons-for-visual-composer/assets/css/animate.css
5.56.56.34200 OK 207 kB URL HTTP/1.1 grupoinden.com/wp-content/plugins/addons-for-visual-composer/assets/css/animate.css
IP 5.56.56.34:0
ASN #57286 Gigas Hosting S.A.
Size 207 kB (207156 bytes)
Hash 4096d64309404e336dec8d565b0e2a65
610bca57cd6d644e2d20df38cb558170512845cf
5921a3ec0ccd5ba7bf47ebb34ade5df71bec24ec1f29aa95a6a2883b01d4ec87
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/plugins/addons-for-visual-composer/assets/css/animate.css HTTP/1.1
Host: grupoinden.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://grupoinden.com/en/start/
Cookie: pll_language=en
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 06 Oct 2022 14:52:18 GMT
Content-Type: text/css
Content-Length: 207156
Last-Modified: Tue, 16 Mar 2021 19:28:30 GMT
Connection: keep-alive
ETag: "605106de-32934"
X-Powered-By: PleskLin
Accept-Ranges: bytes
grupoinden.com/wp-content/plugins/addons-for-visual-composer/includes/addons/services/css/style.css
5.56.56.34200 OK 6.6 kB URL HTTP/1.1 grupoinden.com/wp-content/plugins/addons-for-visual-composer/includes/addons/services/css/style.css
IP 5.56.56.34:0
ASN #57286 Gigas Hosting S.A.
Hash 703b3fb03d4f2ac1f6c01e77d18b488f
9f053188cfda0f2687a3b43d84fa5b568c0c795f
9416c533085a5d57deaa9f07f222b7cdcb500b79b24a2e925054f82e6e00ad14
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/plugins/addons-for-visual-composer/includes/addons/services/css/style.css HTTP/1.1
Host: grupoinden.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://grupoinden.com/en/start/
Cookie: pll_language=en
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 06 Oct 2022 14:52:18 GMT
Content-Type: text/css
Content-Length: 6649
Last-Modified: Tue, 16 Mar 2021 19:28:30 GMT
Connection: keep-alive
ETag: "605106de-19f9"
X-Powered-By: PleskLin
Accept-Ranges: bytes
grupoinden.com/wp-content/plugins/addons-for-visual-composer/includes/addons/posts-carousel/css/style.css
5.56.56.34200 OK 8.4 kB URL HTTP/1.1 grupoinden.com/wp-content/plugins/addons-for-visual-composer/includes/addons/posts-carousel/css/style.css
IP 5.56.56.34:0
ASN #57286 Gigas Hosting S.A.
Hash bdb522f23a3fe192b4215fa5d10f7681
53b5918204f691ac55eba8c0453bbd62a23564fb
608a6c84fa003c4969ca8bef6201ec456214153a775f776de329c35b02b2e278
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/plugins/addons-for-visual-composer/includes/addons/posts-carousel/css/style.css HTTP/1.1
Host: grupoinden.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://grupoinden.com/en/start/
Cookie: pll_language=en
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 06 Oct 2022 14:52:18 GMT
Content-Type: text/css
Content-Length: 8426
Last-Modified: Tue, 16 Mar 2021 19:28:30 GMT
Connection: keep-alive
ETag: "605106de-20ea"
X-Powered-By: PleskLin
Accept-Ranges: bytes
grupoinden.com/wp-content/plugins/addons-for-visual-composer/includes/addons/pricing-table/css/style.css
5.56.56.34200 OK 4.8 kB URL HTTP/1.1 grupoinden.com/wp-content/plugins/addons-for-visual-composer/includes/addons/pricing-table/css/style.css
IP 5.56.56.34:0
ASN #57286 Gigas Hosting S.A.
Hash 9fc0401b882c2f7662cc74b7e703e68e
95cc984e47f6278920c5fea8a20cdb60d470d5ee
df594e044d5fb82e40f0c790e0df48d8dd5ed4eaf69a4cac1ff16eb893be814d
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/plugins/addons-for-visual-composer/includes/addons/pricing-table/css/style.css HTTP/1.1
Host: grupoinden.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://grupoinden.com/en/start/
Cookie: pll_language=en
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 06 Oct 2022 14:52:18 GMT
Content-Type: text/css
Content-Length: 4785
Last-Modified: Tue, 16 Mar 2021 19:28:30 GMT
Connection: keep-alive
ETag: "605106de-12b1"
X-Powered-By: PleskLin
Accept-Ranges: bytes
grupoinden.com/wp-content/plugins/addons-for-visual-composer/includes/addons/stats-bar/css/style.css
5.56.56.34200 OK 1.2 kB URL HTTP/1.1 grupoinden.com/wp-content/plugins/addons-for-visual-composer/includes/addons/stats-bar/css/style.css
IP 5.56.56.34:0
ASN #57286 Gigas Hosting S.A.
Hash 1f226e5970bb026ea0a6299624c68593
eadadec01b58057cd397ad81a8f2b31d03df1233
a0b601cf19866b7ad18824abacd26efebfa53b5cbfcb192364a648ad63904dba
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/plugins/addons-for-visual-composer/includes/addons/stats-bar/css/style.css HTTP/1.1
Host: grupoinden.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://grupoinden.com/en/start/
Cookie: pll_language=en
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 06 Oct 2022 14:52:18 GMT
Content-Type: text/css
Content-Length: 1171
Last-Modified: Tue, 16 Mar 2021 19:28:30 GMT
Connection: keep-alive
ETag: "605106de-493"
X-Powered-By: PleskLin
Accept-Ranges: bytes
grupoinden.com/wp-content/plugins/addons-for-visual-composer/includes/addons/team/css/style.css
5.56.56.34200 OK 7.0 kB URL HTTP/1.1 grupoinden.com/wp-content/plugins/addons-for-visual-composer/includes/addons/team/css/style.css
IP 5.56.56.34:0
ASN #57286 Gigas Hosting S.A.
File type ASCII text, with very long lines (473)
Hash 572b41558d322b8cef084a374bbac047
d1f9efc2f27c309fef2f70cc4200a384fa944ca6
73aa09e0dd125310cab339c0585c05fb408f8e006de81f788ee9950d341b56d8
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/plugins/addons-for-visual-composer/includes/addons/team/css/style.css HTTP/1.1
Host: grupoinden.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://grupoinden.com/en/start/
Cookie: pll_language=en
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 06 Oct 2022 14:52:18 GMT
Content-Type: text/css
Content-Length: 7021
Last-Modified: Tue, 16 Mar 2021 19:28:30 GMT
Connection: keep-alive
ETag: "605106de-1b6d"
X-Powered-By: PleskLin
Accept-Ranges: bytes
grupoinden.com/wp-content/plugins/addons-for-visual-composer/includes/addons/tabs/css/style.css
5.56.56.34200 OK 28 kB URL HTTP/1.1 grupoinden.com/wp-content/plugins/addons-for-visual-composer/includes/addons/tabs/css/style.css
IP 5.56.56.34:0
ASN #57286 Gigas Hosting S.A.
File type ASCII text, with very long lines (674)
Hash 20e83f5043cfdddcf9af31864bc48c9f
52083911575e3aa0cf2da8ef2312308f5023c57a
be91b2c45166948c87ee5e2bc8b385f9c3ced701f8063c93f10e01c708325020
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/plugins/addons-for-visual-composer/includes/addons/tabs/css/style.css HTTP/1.1
Host: grupoinden.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://grupoinden.com/en/start/
Cookie: pll_language=en
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 06 Oct 2022 14:52:18 GMT
Content-Type: text/css
Content-Length: 27993
Last-Modified: Tue, 16 Mar 2021 19:28:30 GMT
Connection: keep-alive
ETag: "605106de-6d59"
X-Powered-By: PleskLin
Accept-Ranges: bytes
grupoinden.com/wp-content/plugins/addons-for-visual-composer/includes/addons/testimonials-slider/css/style.css
5.56.56.34200 OK 1.9 kB URL HTTP/1.1 grupoinden.com/wp-content/plugins/addons-for-visual-composer/includes/addons/testimonials-slider/css/style.css
IP 5.56.56.34:0
ASN #57286 Gigas Hosting S.A.
Hash e7d896fa8e689c7d14a0cdb784e1e082
cf437ae41f6b9712590cadd0a35d563b4707472b
5c2d8ab3bf59bb7fa8af999c2fc20352a8f67b158947d1d0c24f01b84138e06f
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/plugins/addons-for-visual-composer/includes/addons/testimonials-slider/css/style.css HTTP/1.1
Host: grupoinden.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://grupoinden.com/en/start/
Cookie: pll_language=en
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 06 Oct 2022 14:52:18 GMT
Content-Type: text/css
Content-Length: 1939
Last-Modified: Tue, 16 Mar 2021 19:28:30 GMT
Connection: keep-alive
ETag: "605106de-793"
X-Powered-By: PleskLin
Accept-Ranges: bytes
grupoinden.com/wp-content/plugins/addons-for-visual-composer/assets/css/flexslider.css
5.56.56.34200 OK 16 kB URL HTTP/1.1 grupoinden.com/wp-content/plugins/addons-for-visual-composer/assets/css/flexslider.css
IP 5.56.56.34:0
ASN #57286 Gigas Hosting S.A.
File type ASCII text, with very long lines (10641)
Hash 52fddbd04c3a7ff1bab84e9a6d6cb951
e52e5d4724cf9d7d02275318b1a341e7dbd20c77
a97b293c9a64eaf10d24bf86094f6f040419ab3e7817280778f706476000ec1f
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/plugins/addons-for-visual-composer/assets/css/flexslider.css HTTP/1.1
Host: grupoinden.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://grupoinden.com/en/start/
Cookie: pll_language=en
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 06 Oct 2022 14:52:18 GMT
Content-Type: text/css
Content-Length: 15963
Last-Modified: Tue, 16 Mar 2021 19:28:30 GMT
Connection: keep-alive
ETag: "605106de-3e5b"
X-Powered-By: PleskLin
Accept-Ranges: bytes
grupoinden.com/wp-content/plugins/addons-for-visual-composer/includes/addons/testimonials/css/style.css
5.56.56.34200 OK 2.1 kB URL HTTP/1.1 grupoinden.com/wp-content/plugins/addons-for-visual-composer/includes/addons/testimonials/css/style.css
IP 5.56.56.34:0
ASN #57286 Gigas Hosting S.A.
Hash c53a42cec10d8d3dc878f19e0bdfa398
a1560a2eb0d5e628ac937de000599e52719d1787
35a9966ec46721ba779895a9ef1c19b986bad3b9c6f3c3deeeacb672c5408663
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/plugins/addons-for-visual-composer/includes/addons/testimonials/css/style.css HTTP/1.1
Host: grupoinden.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://grupoinden.com/en/start/
Cookie: pll_language=en
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 06 Oct 2022 14:52:18 GMT
Content-Type: text/css
Content-Length: 2090
Last-Modified: Tue, 16 Mar 2021 19:28:30 GMT
Connection: keep-alive
ETag: "605106de-82a"
X-Powered-By: PleskLin
Accept-Ranges: bytes
grupoinden.com/wp-content/plugins/addons-for-visual-composer/includes/addons/portfolio/css/style.css
5.56.56.34200 OK 11 kB URL HTTP/1.1 grupoinden.com/wp-content/plugins/addons-for-visual-composer/includes/addons/portfolio/css/style.css
IP 5.56.56.34:0
ASN #57286 Gigas Hosting S.A.
Hash 8cfc3b61dad09ff35311cf85329660bf
7db95569d826848291aa1f71022a5f6e3766c435
cdf8299abbf852dae186ae80bb55a8b935d45ea1ff7bd2cc5f530ead2f1ccd74
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/plugins/addons-for-visual-composer/includes/addons/portfolio/css/style.css HTTP/1.1
Host: grupoinden.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://grupoinden.com/en/start/
Cookie: pll_language=en
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 06 Oct 2022 14:52:18 GMT
Content-Type: text/css
Content-Length: 10788
Last-Modified: Tue, 16 Mar 2021 19:28:30 GMT
Connection: keep-alive
ETag: "605106de-2a24"
X-Powered-By: PleskLin
Accept-Ranges: bytes
grupoinden.com/wp-content/themes/TheFox_child_theme/style.css
5.56.56.34200 OK 17 kB URL HTTP/1.1 grupoinden.com/wp-content/themes/TheFox_child_theme/style.css
IP 5.56.56.34:0
ASN #57286 Gigas Hosting S.A.
File type HTML document, Unicode text, UTF-8 text, with very long lines (432), with CRLF line terminators
Hash 3ef24aa0bd26494fb2ab9dd4ebc5bf4e
26e4326b44f22b508411a0709ec50f71eabd06de
3d1ed81db503598d64b62c3dd195d3bd0e9b73c636b50115930febc38e12ceac
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/themes/TheFox_child_theme/style.css HTTP/1.1
Host: grupoinden.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://grupoinden.com/en/start/
Cookie: pll_language=en
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 06 Oct 2022 14:52:18 GMT
Content-Type: text/css
Content-Length: 17110
Last-Modified: Thu, 02 Mar 2017 15:14:27 GMT
Connection: keep-alive
ETag: "58b836d3-42d6"
X-Powered-By: PleskLin
Accept-Ranges: bytes
grupoinden.com/wp-content/themes/TheFox/css/rgs.css
5.56.56.34200 OK 2.3 kB URL HTTP/1.1 grupoinden.com/wp-content/themes/TheFox/css/rgs.css
IP 5.56.56.34:0
ASN #57286 Gigas Hosting S.A.
File type ASCII text, with CRLF line terminators
Hash ffd6ed080895bf2d8078dd3b60d8c912
3242ca22f5f813a0f13367124c7b92aeca620ffb
fd971c2e0346da7add7b67030d944fdcaf53070e080ef3251469200041a0d733
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/themes/TheFox/css/rgs.css HTTP/1.1
Host: grupoinden.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://grupoinden.com/en/start/
Cookie: pll_language=en
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 06 Oct 2022 14:52:18 GMT
Content-Type: text/css
Content-Length: 2277
Last-Modified: Sat, 08 Aug 2015 06:15:56 GMT
Connection: keep-alive
ETag: "55c59e9c-8e5"
X-Powered-By: PleskLin
Accept-Ranges: bytes
grupoinden.com/wp-content/themes/TheFox/media-queries_wide.css
5.56.56.34200 OK 55 kB URL HTTP/1.1 grupoinden.com/wp-content/themes/TheFox/media-queries_wide.css
IP 5.56.56.34:0
ASN #57286 Gigas Hosting S.A.
File type Unicode text, UTF-8 text, with very long lines (375), with CRLF line terminators
Hash 3bde4aa87af0a370a1389f5bf415d125
44c89037b5712ea5dcc8db34c747687f2ad13e10
9dd3ac251c2b5ed165233e828540125af3ada476e50b8caf9ad181056b34b559
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/themes/TheFox/media-queries_wide.css HTTP/1.1
Host: grupoinden.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://grupoinden.com/en/start/
Cookie: pll_language=en
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 06 Oct 2022 14:52:18 GMT
Content-Type: text/css
Content-Length: 54938
Last-Modified: Sat, 04 Aug 2018 10:40:58 GMT
Connection: keep-alive
ETag: "5b6582ba-d69a"
X-Powered-By: PleskLin
Accept-Ranges: bytes
grupoinden.com/wp-content/themes/TheFox/includes/Flexslider/flexslider.css
5.56.56.34200 OK 6.1 kB URL HTTP/1.1 grupoinden.com/wp-content/themes/TheFox/includes/Flexslider/flexslider.css
IP 5.56.56.34:0
ASN #57286 Gigas Hosting S.A.
File type ASCII text, with CRLF line terminators
Hash 42f6c374c9c8a43a6b2b911c30a83095
07ecf917881f7e803d6f216896909e7ae07a90af
7a24eee18303d71d4016000429248f063c5c38f62df69a843cbdbc3f247c6a40
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/themes/TheFox/includes/Flexslider/flexslider.css HTTP/1.1
Host: grupoinden.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://grupoinden.com/en/start/
Cookie: pll_language=en
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 06 Oct 2022 14:52:19 GMT
Content-Type: text/css
Content-Length: 6103
Last-Modified: Sat, 14 Mar 2015 03:49:00 GMT
Connection: keep-alive
ETag: "5503afac-17d7"
X-Powered-By: PleskLin
Accept-Ranges: bytes
grupoinden.com/wp-content/themes/TheFox/css/animations.css
5.56.56.34200 OK 89 kB URL HTTP/1.1 grupoinden.com/wp-content/themes/TheFox/css/animations.css
IP 5.56.56.34:0
ASN #57286 Gigas Hosting S.A.
File type ASCII text, with very long lines (446), with CRLF line terminators
Hash 6fd95ad89f1724c5a07962c4cee11872
0647bd7286db0cdad69dfed52794b80014b29406
e07a2e7215037785a1c8f2b068a8c49b57f538ffc4612a8a5b0d1ad6397b76fe
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/themes/TheFox/css/animations.css HTTP/1.1
Host: grupoinden.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://grupoinden.com/en/start/
Cookie: pll_language=en
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 06 Oct 2022 14:52:18 GMT
Content-Type: text/css
Content-Length: 89228
Last-Modified: Sat, 14 Mar 2015 03:38:00 GMT
Connection: keep-alive
ETag: "5503ad18-15c8c"
X-Powered-By: PleskLin
Accept-Ranges: bytes
grupoinden.com/wp-content/themes/TheFox/css/font-awesome.css
5.56.56.34200 OK 29 kB URL HTTP/1.1 grupoinden.com/wp-content/themes/TheFox/css/font-awesome.css
IP 5.56.56.34:0
ASN #57286 Gigas Hosting S.A.
File type troff or preprocessor input, ASCII text, with very long lines (337), with CRLF line terminators
Hash d61d289a120b0135524e5d10215621ac
45264b82ead015922dbb1800679c765fed627f0c
f68e3f46803e5b64291359e3bfe5d53e1327023b6396267054af4648fab3c3ad
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/themes/TheFox/css/font-awesome.css HTTP/1.1
Host: grupoinden.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://grupoinden.com/en/start/
Cookie: pll_language=en
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 06 Oct 2022 14:52:19 GMT
Content-Type: text/css
Content-Length: 28589
Last-Modified: Sat, 14 Mar 2015 03:38:00 GMT
Connection: keep-alive
ETag: "5503ad18-6fad"
X-Powered-By: PleskLin
Accept-Ranges: bytes
grupoinden.com/wp-content/themes/TheFox/style.css
5.56.56.34200 OK 282 kB URL HTTP/1.1 grupoinden.com/wp-content/themes/TheFox/style.css
IP 5.56.56.34:0
ASN #57286 Gigas Hosting S.A.
File type HTML document text\012- assembler source, Unicode text, UTF-8 text, with very long lines (492), with CRLF line terminators
Size 282 kB (281590 bytes)
Hash 36abd3cb067273347207dcca4bcd74a0
23cd5c0959666fe1f7d7c057753f98783e130c11
d8e4b37cf0c4e6185f71d4eb7753451854232005112d5ab7abf8f62c3c7bd93e
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/themes/TheFox/style.css HTTP/1.1
Host: grupoinden.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://grupoinden.com/en/start/
Cookie: pll_language=en
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 06 Oct 2022 14:52:18 GMT
Content-Type: text/css
Content-Length: 281590
Last-Modified: Sun, 14 Mar 2021 22:36:04 GMT
Connection: keep-alive
ETag: "604e8fd4-44bf6"
X-Powered-By: PleskLin
Accept-Ranges: bytes
grupoinden.com/wp-content/themes/TheFox/style_end.css
5.56.56.34200 OK 292 kB URL HTTP/1.1 grupoinden.com/wp-content/themes/TheFox/style_end.css
IP 5.56.56.34:0
ASN #57286 Gigas Hosting S.A.
File type assembler source, ASCII text, with CRLF line terminators
Size 292 kB (291556 bytes)
Hash a52348aa54e1d0f0a4a0f6cefa0f4577
3f5621cd08d131e4bd1be9d8cf02b0bbe15e0299
d10cb3624b38110c5070005e23d7346701d262357b1718ee690309db26e0da81
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/themes/TheFox/style_end.css HTTP/1.1
Host: grupoinden.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://grupoinden.com/en/start/
Cookie: pll_language=en
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 06 Oct 2022 14:52:18 GMT
Content-Type: text/css
Content-Length: 291556
Last-Modified: Tue, 10 Apr 2018 07:31:18 GMT
Connection: keep-alive
ETag: "5acc6846-472e4"
X-Powered-By: PleskLin
Accept-Ranges: bytes
grupoinden.com/wp-content/themes/TheFox/includes/prettyPhoto/css/prettyPhoto.css
5.56.56.34200 OK 30 kB URL HTTP/1.1 grupoinden.com/wp-content/themes/TheFox/includes/prettyPhoto/css/prettyPhoto.css
IP 5.56.56.34:0
ASN #57286 Gigas Hosting S.A.
File type ASCII text, with CRLF line terminators
Hash 618c031fc6bdeec695fd5856dade462c
543c25988cd2e99effb33297fda39dcdc50080d7
6e84b2abff6379ec8e00848b95e2f0612ac8ea6d494dae2d813f9c386d09669b
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/themes/TheFox/includes/prettyPhoto/css/prettyPhoto.css HTTP/1.1
Host: grupoinden.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://grupoinden.com/en/start/
Cookie: pll_language=en
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 06 Oct 2022 14:52:19 GMT
Content-Type: text/css
Content-Length: 30129
Last-Modified: Tue, 25 Oct 2016 03:35:54 GMT
Connection: keep-alive
ETag: "580ed31a-75b1"
X-Powered-By: PleskLin
Accept-Ranges: bytes
grupoinden.com/wp-content/themes/TheFox/css/moon.css
5.56.56.34200 OK 81 kB URL HTTP/1.1 grupoinden.com/wp-content/themes/TheFox/css/moon.css
IP 5.56.56.34:0
ASN #57286 Gigas Hosting S.A.
File type ASCII text, with very long lines (19725), with CRLF line terminators
Hash 32fa3dd79f5023103a6643e72b1066ba
b58b6b0b2401446c874c4748b3f29981c5f43d6f
def1932651a15fe61e78bccae37f2606634116d2af107bf0edf643097204cfc3
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/themes/TheFox/css/moon.css HTTP/1.1
Host: grupoinden.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://grupoinden.com/en/start/
Cookie: pll_language=en
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 06 Oct 2022 14:52:19 GMT
Content-Type: text/css
Content-Length: 81099
Last-Modified: Wed, 18 Mar 2015 12:01:18 GMT
Connection: keep-alive
ETag: "5509690e-13ccb"
X-Powered-By: PleskLin
Accept-Ranges: bytes
grupoinden.com/wp-content/themes/TheFox/css/elegant.css
5.56.56.34200 OK 29 kB URL HTTP/1.1 grupoinden.com/wp-content/themes/TheFox/css/elegant.css
IP 5.56.56.34:0
ASN #57286 Gigas Hosting S.A.
File type ASCII text, with very long lines (8050), with CRLF line terminators
Hash 89bb176db039679204e9b43414f3080f
63c001086548c708bbd54c696c5803dc061d5e50
66f842c5565489d97a2207c5458f3aa8824bc6e029bac4e385918485a4fc62c1
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/themes/TheFox/css/elegant.css HTTP/1.1
Host: grupoinden.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://grupoinden.com/en/start/
Cookie: pll_language=en
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 06 Oct 2022 14:52:19 GMT
Content-Type: text/css
Content-Length: 29328
Last-Modified: Wed, 18 Mar 2015 11:57:00 GMT
Connection: keep-alive
ETag: "5509680c-7290"
X-Powered-By: PleskLin
Accept-Ranges: bytes
grupoinden.com/wp-content/themes/TheFox/includes/zilla-likes/styles/zilla-likes.css
5.56.56.34200 OK 173 B URL HTTP/1.1 grupoinden.com/wp-content/themes/TheFox/includes/zilla-likes/styles/zilla-likes.css
IP 5.56.56.34:0
ASN #57286 Gigas Hosting S.A.
File type ASCII text, with CRLF line terminators
Hash 39b2741e31c5a052c44d2eaa22981fe7
ae72a066e3d23e636e7edfdbba4c74836ed2d431
54cb55ff0e24b12a2631b4152cf810a15e48a34bffbc7b52b25521cc6c828041
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/themes/TheFox/includes/zilla-likes/styles/zilla-likes.css HTTP/1.1
Host: grupoinden.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://grupoinden.com/en/start/
Cookie: pll_language=en
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 06 Oct 2022 14:52:19 GMT
Content-Type: text/css
Content-Length: 173
Connection: keep-alive
X-Accel-Version: 0.01
Last-Modified: Sat, 14 Mar 2015 03:55:00 GMT
ETag: "126-5113794bf6d00-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PleskLin
grupoinden.com/wp-includes/js/jquery/jquery-migrate.min.js
5.56.56.34200 OK 11 kB URL HTTP/1.1 grupoinden.com/wp-includes/js/jquery/jquery-migrate.min.js
IP 5.56.56.34:0
ASN #57286 Gigas Hosting S.A.
File type ASCII text, with very long lines (11126)
Hash 79b4956b7ec478ec10244b5e2d33ac7d
a46025b9d05e3df30d610a8aef14f392c7058dc9
029e0a2e809fd6b5dbe76abe8b7a74936be306c9a8c27c814c4d44aa54623300
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-includes/js/jquery/jquery-migrate.min.js HTTP/1.1
Host: grupoinden.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://grupoinden.com/en/start/
Cookie: pll_language=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 06 Oct 2022 14:52:19 GMT
Content-Type: application/javascript
Content-Length: 11224
Last-Modified: Tue, 16 Mar 2021 17:38:05 GMT
Connection: keep-alive
ETag: "6050ecfd-2bd8"
X-Powered-By: PleskLin
Accept-Ranges: bytes
grupoinden.com/wp-content/themes/TheFox/css/thefox_js_composer.css
5.56.56.34200 OK 189 kB URL HTTP/1.1 grupoinden.com/wp-content/themes/TheFox/css/thefox_js_composer.css
IP 5.56.56.34:0
ASN #57286 Gigas Hosting S.A.
File type ASCII text, with very long lines (387), with CRLF line terminators
Size 189 kB (188992 bytes)
Hash 41a4b3b1d281a1c3c7a3a5a2508f6e2e
c564f9b4c8c82c8b6462e4602687092c2f684430
2226a97fe5167686e9aa8a712cbd42eea5e104dab5ae63fb157803cccf70433b
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/themes/TheFox/css/thefox_js_composer.css HTTP/1.1
Host: grupoinden.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://grupoinden.com/en/start/
Cookie: pll_language=en
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 06 Oct 2022 14:52:19 GMT
Content-Type: text/css
Content-Length: 188992
Last-Modified: Sat, 27 Jul 2019 09:11:20 GMT
Connection: keep-alive
ETag: "5d3c1538-2e240"
X-Powered-By: PleskLin
Accept-Ranges: bytes
grupoinden.com/wp-content/plugins/addons-for-visual-composer/assets/js/jquery.waypoints.min.js
5.56.56.34200 OK 9.0 kB URL HTTP/1.1 grupoinden.com/wp-content/plugins/addons-for-visual-composer/assets/js/jquery.waypoints.min.js
IP 5.56.56.34:0
ASN #57286 Gigas Hosting S.A.
File type Unicode text, UTF-8 text, with very long lines (8879)
Hash 67aa7d5ed834525fa31f6fb1a279d722
cc4961bbe43174b1f97c7398d9996613ca8aab54
5f4c8e76510fcde1fcc1c76ed8894b0afbb06718c75591dbb11d3b733252b5b3
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/plugins/addons-for-visual-composer/assets/js/jquery.waypoints.min.js HTTP/1.1
Host: grupoinden.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://grupoinden.com/en/start/
Cookie: pll_language=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 06 Oct 2022 14:52:19 GMT
Content-Type: application/javascript
Content-Length: 9044
Last-Modified: Tue, 16 Mar 2021 19:28:30 GMT
Connection: keep-alive
ETag: "605106de-2354"
X-Powered-By: PleskLin
Accept-Ranges: bytes
grupoinden.com/wp-content/plugins/addons-for-visual-composer/assets/js/lvca-frontend.min.js
5.56.56.34200 OK 2.9 kB URL HTTP/1.1 grupoinden.com/wp-content/plugins/addons-for-visual-composer/assets/js/lvca-frontend.min.js
IP 5.56.56.34:0
ASN #57286 Gigas Hosting S.A.
File type HTML document, ASCII text, with very long lines (2888), with no line terminators
Hash b5e284ba75a294d882911906c1d501af
ba802aad862e2e6e47085c42b944bfb739ef46ab
4c616779f9814a86558b97b5187b420323a35d1443435c8fe4d64b6bf4a33f26
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/plugins/addons-for-visual-composer/assets/js/lvca-frontend.min.js HTTP/1.1
Host: grupoinden.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://grupoinden.com/en/start/
Cookie: pll_language=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 06 Oct 2022 14:52:19 GMT
Content-Type: application/javascript
Content-Length: 2888
Last-Modified: Tue, 16 Mar 2021 19:28:30 GMT
Connection: keep-alive
ETag: "605106de-b48"
X-Powered-By: PleskLin
Accept-Ranges: bytes
grupoinden.com/wp-content/plugins/cookie-law-info/public/js/cookie-law-info-public.js
5.56.56.34200 OK 36 kB URL HTTP/1.1 grupoinden.com/wp-content/plugins/cookie-law-info/public/js/cookie-law-info-public.js
IP 5.56.56.34:0
ASN #57286 Gigas Hosting S.A.
Hash b400f6e5c15ed72b7e9f85850d9b4308
324b78ce40276b00ef08c4dce6c7caf271d3840f
8c8c2e3e0af8248c66e02fd3901558e969a7b0f35cf1fe0da4872e01f77e2ebd
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/plugins/cookie-law-info/public/js/cookie-law-info-public.js HTTP/1.1
Host: grupoinden.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://grupoinden.com/en/start/
Cookie: pll_language=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 06 Oct 2022 14:52:19 GMT
Content-Type: application/javascript
Content-Length: 35807
Last-Modified: Tue, 16 Mar 2021 19:52:16 GMT
Connection: keep-alive
ETag: "60510c70-8bdf"
X-Powered-By: PleskLin
Accept-Ranges: bytes
grupoinden.com/wp-content/plugins/addons-for-visual-composer/includes/addons/accordion/js/accordion.min.js
5.56.56.34200 OK 1.6 kB URL HTTP/1.1 grupoinden.com/wp-content/plugins/addons-for-visual-composer/includes/addons/accordion/js/accordion.min.js
IP 5.56.56.34:0
ASN #57286 Gigas Hosting S.A.
File type ASCII text, with very long lines (1586), with no line terminators
Hash e08a07f8b41c6ce4cd9cc2eb281b0204
2f6447727653ad07021f7766312b11502916d30d
54cd1d300d5a9cb51db1dea41f39964c4e75ef02f9d55d584f7c79113c51a5b3
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/plugins/addons-for-visual-composer/includes/addons/accordion/js/accordion.min.js HTTP/1.1
Host: grupoinden.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://grupoinden.com/en/start/
Cookie: pll_language=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 06 Oct 2022 14:52:19 GMT
Content-Type: application/javascript
Content-Length: 1586
Last-Modified: Tue, 16 Mar 2021 19:28:30 GMT
Connection: keep-alive
ETag: "605106de-632"
X-Powered-By: PleskLin
Accept-Ranges: bytes
grupoinden.com/wp-content/plugins/addons-for-visual-composer/includes/addons/odometers/js/odometer.min.js
5.56.56.34200 OK 238 B URL HTTP/1.1 grupoinden.com/wp-content/plugins/addons-for-visual-composer/includes/addons/odometers/js/odometer.min.js
IP 5.56.56.34:0
ASN #57286 Gigas Hosting S.A.
File type ASCII text, with very long lines (359), with no line terminators
Hash 106d147252d317a06c854edaa7ee2993
5f6a6ffad0b1933d9bd5fa3d6e5c82571bdf9219
680ec6522882509c96834368abc06667fbbc0e1c4b416283ef1136ac0c3232da
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/plugins/addons-for-visual-composer/includes/addons/odometers/js/odometer.min.js HTTP/1.1
Host: grupoinden.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://grupoinden.com/en/start/
Cookie: pll_language=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 06 Oct 2022 14:52:19 GMT
Content-Type: application/javascript
Content-Length: 238
Connection: keep-alive
X-Accel-Version: 0.01
Last-Modified: Tue, 16 Mar 2021 19:28:30 GMT
ETag: "167-5bdac5f08f380-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PleskLin
grupoinden.com/wp-content/plugins/addons-for-visual-composer/assets/js/jquery.stats.min.js
5.56.56.34200 OK 21 kB URL HTTP/1.1 grupoinden.com/wp-content/plugins/addons-for-visual-composer/assets/js/jquery.stats.min.js
IP 5.56.56.34:0
ASN #57286 Gigas Hosting S.A.
File type ASCII text, with very long lines (10235)
Hash 3e3b69e7460f3eaa3b2f42286af94d8b
39108aa67d2151ff97cff66f6960843222a62ef3
fd30942f867f9881ee50ae6d39265bdd4684528661250676fed213887c7bddc6
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/plugins/addons-for-visual-composer/assets/js/jquery.stats.min.js HTTP/1.1
Host: grupoinden.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://grupoinden.com/en/start/
Cookie: pll_language=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 06 Oct 2022 14:52:19 GMT
Content-Type: application/javascript
Content-Length: 20626
Last-Modified: Tue, 16 Mar 2021 19:28:30 GMT
Connection: keep-alive
ETag: "605106de-5092"
X-Powered-By: PleskLin
Accept-Ranges: bytes
grupoinden.com/wp-content/plugins/addons-for-visual-composer/assets/js/slick.min.js
5.56.56.34200 OK 48 kB URL HTTP/1.1 grupoinden.com/wp-content/plugins/addons-for-visual-composer/assets/js/slick.min.js
IP 5.56.56.34:0
ASN #57286 Gigas Hosting S.A.
File type ASCII text, with very long lines (31903)
Hash aaf597f5a5d566d093e70e52fbbd6f64
fb3c1b4ffb83be0ea5bc16bac99ef52976ec99fb
c009ee7b0ff395016980733d1c7f8277b4425fe5b1cad0d780379e3c0023abea
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/plugins/addons-for-visual-composer/assets/js/slick.min.js HTTP/1.1
Host: grupoinden.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://grupoinden.com/en/start/
Cookie: pll_language=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 06 Oct 2022 14:52:19 GMT
Content-Type: application/javascript
Content-Length: 48495
Last-Modified: Tue, 16 Mar 2021 19:28:30 GMT
Connection: keep-alive
ETag: "605106de-bd6f"
X-Powered-By: PleskLin
Accept-Ranges: bytes
grupoinden.com/wp-content/plugins/revslider/public/assets/js/rbtools.min.js
5.56.56.34200 OK 124 kB URL HTTP/1.1 grupoinden.com/wp-content/plugins/revslider/public/assets/js/rbtools.min.js
IP 5.56.56.34:0
ASN #57286 Gigas Hosting S.A.
File type ASCII text, with very long lines (42889)
Size 124 kB (123959 bytes)
Hash 04f0a5790668162c9241bfd598d6400c
dd55a501364bbd8a0b43eca3cd681748cd89a03e
463f24ed151c0bc8775c09e92c3885fd96dc17f1e91ca64d70f3ba9600e0eb86
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/plugins/revslider/public/assets/js/rbtools.min.js HTTP/1.1
Host: grupoinden.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://grupoinden.com/en/start/
Cookie: pll_language=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 06 Oct 2022 14:52:19 GMT
Content-Type: application/javascript
Content-Length: 123959
Last-Modified: Wed, 17 Mar 2021 09:08:24 GMT
Connection: keep-alive
ETag: "6051c708-1e437"
X-Powered-By: PleskLin
Accept-Ranges: bytes
grupoinden.com/wp-content/plugins/addons-for-visual-composer/includes/addons/piecharts/js/piechart.min.js
5.56.56.34200 OK 294 B URL HTTP/1.1 grupoinden.com/wp-content/plugins/addons-for-visual-composer/includes/addons/piecharts/js/piechart.min.js
IP 5.56.56.34:0
ASN #57286 Gigas Hosting S.A.
File type ASCII text, with very long lines (462), with no line terminators
Hash 327cb9b38db01c3a3b1d3e259ee72daa
53214924951bdacef3659da8da68a84bb37b5847
741aeb6fd1dbfc01125ec05124b9251f05bb310b47f6b71d350e9c03a8dc7840
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/plugins/addons-for-visual-composer/includes/addons/piecharts/js/piechart.min.js HTTP/1.1
Host: grupoinden.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://grupoinden.com/en/start/
Cookie: pll_language=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 06 Oct 2022 14:52:19 GMT
Content-Type: application/javascript
Content-Length: 294
Connection: keep-alive
X-Accel-Version: 0.01
Last-Modified: Tue, 16 Mar 2021 19:28:30 GMT
ETag: "1ce-5bdac5f08f380-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PleskLin
grupoinden.com/wp-content/plugins/revslider/public/assets/js/rs6.min.js
5.56.56.34200 OK 356 kB URL HTTP/1.1 grupoinden.com/wp-content/plugins/revslider/public/assets/js/rs6.min.js
IP 5.56.56.34:0
ASN #57286 Gigas Hosting S.A.
File type ASCII text, with very long lines (64270)
Size 356 kB (355655 bytes)
Hash 9dc5e5005da02d10be1957d17bb1ce4c
e7bae18f3cbc4494e1f63e0242a842802e377473
c6664feae90423891e1d41c5dac7a730d47067927a2bdee17dcdf03e8354c666
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/plugins/revslider/public/assets/js/rs6.min.js HTTP/1.1
Host: grupoinden.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://grupoinden.com/en/start/
Cookie: pll_language=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 06 Oct 2022 14:52:19 GMT
Content-Type: application/javascript
Content-Length: 355655
Last-Modified: Wed, 17 Mar 2021 09:08:24 GMT
Connection: keep-alive
ETag: "6051c708-56d47"
X-Powered-By: PleskLin
Accept-Ranges: bytes
grupoinden.com/wp-content/plugins/addons-for-visual-composer/includes/addons/spacer/js/spacer.min.js
5.56.56.34200 OK 369 B URL HTTP/1.1 grupoinden.com/wp-content/plugins/addons-for-visual-composer/includes/addons/spacer/js/spacer.min.js
IP 5.56.56.34:0
ASN #57286 Gigas Hosting S.A.
File type HTML document, ASCII text, with very long lines (1008), with no line terminators
Hash e72b76d72fc859d68ee5d7885b014ae2
7a67b7574b51b2e8f845bf899822b633ac53da43
60ce5b862367dc71c8a29d6feb1833aa6ba8c6262d7ce33bce8693c39d360694
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/plugins/addons-for-visual-composer/includes/addons/spacer/js/spacer.min.js HTTP/1.1
Host: grupoinden.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://grupoinden.com/en/start/
Cookie: pll_language=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 06 Oct 2022 14:52:19 GMT
Content-Type: application/javascript
Content-Length: 369
Connection: keep-alive
X-Accel-Version: 0.01
Last-Modified: Tue, 16 Mar 2021 19:28:30 GMT
ETag: "3f0-5bdac5f08f380-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PleskLin
grupoinden.com/wp-content/plugins/addons-for-visual-composer/includes/addons/posts-carousel/js/posts-carousel.min.js
5.56.56.34200 OK 368 B URL HTTP/1.1 grupoinden.com/wp-content/plugins/addons-for-visual-composer/includes/addons/posts-carousel/js/posts-carousel.min.js
IP 5.56.56.34:0
ASN #57286 Gigas Hosting S.A.
File type HTML document, ASCII text, with very long lines (986), with no line terminators
Hash fdb4b08b4d6c65d9b0f3d912938c7d7f
ce45b5317bc9d61c06e83566add1bb997a289c21
eaad1050d3471c120e1c228a151f99a305753d828c3d67010747ebe9e3bfc352
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/plugins/addons-for-visual-composer/includes/addons/posts-carousel/js/posts-carousel.min.js HTTP/1.1
Host: grupoinden.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://grupoinden.com/en/start/
Cookie: pll_language=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 06 Oct 2022 14:52:19 GMT
Content-Type: application/javascript
Content-Length: 368
Connection: keep-alive
X-Accel-Version: 0.01
Last-Modified: Tue, 16 Mar 2021 19:28:30 GMT
ETag: "3da-5bdac5f08f380-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PleskLin
grupoinden.com/wp-content/plugins/addons-for-visual-composer/includes/addons/tabs/js/tabs.min.js
5.56.56.34200 OK 1.5 kB URL HTTP/1.1 grupoinden.com/wp-content/plugins/addons-for-visual-composer/includes/addons/tabs/js/tabs.min.js
IP 5.56.56.34:0
ASN #57286 Gigas Hosting S.A.
File type ASCII text, with very long lines (1484), with no line terminators
Hash 0378ce2c2f2aed4cad7eaa38d6306b42
7250c44c9b185c730849499e474dea6a85f4060c
e11a5ac72bea720c89def194185cc6dd5a671c11bf786e4942b581118b29cdc2
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/plugins/addons-for-visual-composer/includes/addons/tabs/js/tabs.min.js HTTP/1.1
Host: grupoinden.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://grupoinden.com/en/start/
Cookie: pll_language=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 06 Oct 2022 14:52:19 GMT
Content-Type: application/javascript
Content-Length: 1484
Last-Modified: Tue, 16 Mar 2021 19:28:30 GMT
Connection: keep-alive
ETag: "605106de-5cc"
X-Powered-By: PleskLin
Accept-Ranges: bytes
grupoinden.com/wp-content/plugins/addons-for-visual-composer/includes/addons/stats-bar/js/stats-bar.min.js
5.56.56.34200 OK 234 B URL HTTP/1.1 grupoinden.com/wp-content/plugins/addons-for-visual-composer/includes/addons/stats-bar/js/stats-bar.min.js
IP 5.56.56.34:0
ASN #57286 Gigas Hosting S.A.
File type ASCII text, with very long lines (327), with no line terminators
Hash 5564c7cb033d47f75f5e428c2b699974
1515f4d52653ea2a92d9307433d6c58523174042
64018f8c792964d0fd8f8544b9fb00272e8cba712d60cdb3e6447666bf73537b
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/plugins/addons-for-visual-composer/includes/addons/stats-bar/js/stats-bar.min.js HTTP/1.1
Host: grupoinden.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://grupoinden.com/en/start/
Cookie: pll_language=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 06 Oct 2022 14:52:19 GMT
Content-Type: application/javascript
Content-Length: 234
Connection: keep-alive
X-Accel-Version: 0.01
Last-Modified: Tue, 16 Mar 2021 19:28:30 GMT
ETag: "147-5bdac5f08f380-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PleskLin
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash b0e8a79f3e381ab34a44278947ac7c7e
70d01e6fdc8565c661b6ae8c5a043ddf2da16530
885a8c234fca85e6f6bb3e8fcab6672b9a9742b5d3f74681b17a330fa295d549
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 06 Oct 2022 14:52:19 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
grupoinden.com/wp-content/plugins/addons-for-visual-composer/includes/addons/testimonials-slider/js/testimonials.min.js
5.56.56.34200 OK 1.1 kB URL HTTP/1.1 grupoinden.com/wp-content/plugins/addons-for-visual-composer/includes/addons/testimonials-slider/js/testimonials.min.js
IP 5.56.56.34:0
ASN #57286 Gigas Hosting S.A.
File type ASCII text, with very long lines (1051), with no line terminators
Hash 3135b0952fbb65ebcf8e721c0f3e5a61
fc9b6f13c30b53d6afcdef1a709b165b386a7b96
c7f60558c3dabc921766aad1a2a676c9ae7e1fbb6cc7cdf73e6fe6ec322aa250
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/plugins/addons-for-visual-composer/includes/addons/testimonials-slider/js/testimonials.min.js HTTP/1.1
Host: grupoinden.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://grupoinden.com/en/start/
Cookie: pll_language=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 06 Oct 2022 14:52:19 GMT
Content-Type: application/javascript
Content-Length: 1051
Last-Modified: Tue, 16 Mar 2021 19:28:30 GMT
Connection: keep-alive
ETag: "605106de-41b"
X-Powered-By: PleskLin
Accept-Ranges: bytes
grupoinden.com/wp-content/plugins/addons-for-visual-composer/assets/js/jquery.flexslider.min.js
5.56.56.34200 OK 31 kB URL HTTP/1.1 grupoinden.com/wp-content/plugins/addons-for-visual-composer/assets/js/jquery.flexslider.min.js
IP 5.56.56.34:0
ASN #57286 Gigas Hosting S.A.
File type ASCII text, with very long lines (30831), with no line terminators
Hash 62d9f3a221646074ee7cb074ecd38b51
c40c5f85ee43817b5c29e4dc29962e1221c10097
a5005b6d981acbae1e0f3637d76927718785fcf90989c45b9e329b6568b880be
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/plugins/addons-for-visual-composer/assets/js/jquery.flexslider.min.js HTTP/1.1
Host: grupoinden.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://grupoinden.com/en/start/
Cookie: pll_language=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 06 Oct 2022 14:52:19 GMT
Content-Type: application/javascript
Content-Length: 30831
Last-Modified: Tue, 16 Mar 2021 19:28:30 GMT
Connection: keep-alive
ETag: "605106de-786f"
X-Powered-By: PleskLin
Accept-Ranges: bytes
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash b0e8a79f3e381ab34a44278947ac7c7e
70d01e6fdc8565c661b6ae8c5a043ddf2da16530
885a8c234fca85e6f6bb3e8fcab6672b9a9742b5d3f74681b17a330fa295d549
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 06 Oct 2022 14:52:19 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
grupoinden.com/wp-content/plugins/addons-for-visual-composer/assets/js/isotope.pkgd.min.js
5.56.56.34200 OK 49 kB URL HTTP/1.1 grupoinden.com/wp-content/plugins/addons-for-visual-composer/assets/js/isotope.pkgd.min.js
IP 5.56.56.34:0
ASN #57286 Gigas Hosting S.A.
File type ASCII text, with very long lines (31879)
Hash 4958fee165c7c89bbe674689f2a2aa30
9e2462fc2b030de6f5a2a6b4284a65875f731b1f
ac1f323852a36632f8dfe30353a701c696c19790d925f66a030a9ddd275eb7c1
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/plugins/addons-for-visual-composer/assets/js/isotope.pkgd.min.js HTTP/1.1
Host: grupoinden.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://grupoinden.com/en/start/
Cookie: pll_language=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 06 Oct 2022 14:52:19 GMT
Content-Type: application/javascript
Content-Length: 48852
Last-Modified: Tue, 16 Mar 2021 19:28:30 GMT
Connection: keep-alive
ETag: "605106de-bed4"
X-Powered-By: PleskLin
Accept-Ranges: bytes
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash b0e8a79f3e381ab34a44278947ac7c7e
70d01e6fdc8565c661b6ae8c5a043ddf2da16530
885a8c234fca85e6f6bb3e8fcab6672b9a9742b5d3f74681b17a330fa295d549
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 06 Oct 2022 14:52:19 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
grupoinden.com/wp-content/plugins/addons-for-visual-composer/assets/js/imagesloaded.pkgd.min.js
5.56.56.34200 OK 7.3 kB URL HTTP/1.1 grupoinden.com/wp-content/plugins/addons-for-visual-composer/assets/js/imagesloaded.pkgd.min.js
IP 5.56.56.34:0
ASN #57286 Gigas Hosting S.A.
File type ASCII text, with very long lines (7346), with no line terminators
Hash d1bb70432a5390a29f7087a5fc254de2
02acbba1ed26ec7107d90c3c8d11024fec8b0616
27fc765db7aa744154046374d0de6f76f19cba5203ef8f29ddfd8ca3d5d2b4aa
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/plugins/addons-for-visual-composer/assets/js/imagesloaded.pkgd.min.js HTTP/1.1
Host: grupoinden.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://grupoinden.com/en/start/
Cookie: pll_language=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 06 Oct 2022 14:52:19 GMT
Content-Type: application/javascript
Content-Length: 7346
Last-Modified: Tue, 16 Mar 2021 19:28:30 GMT
Connection: keep-alive
ETag: "605106de-1cb2"
X-Powered-By: PleskLin
Accept-Ranges: bytes
grupoinden.com/wp-content/plugins/addons-for-visual-composer/includes/addons/portfolio/js/portfolio.min.js
5.56.56.34200 OK 2.2 kB URL HTTP/1.1 grupoinden.com/wp-content/plugins/addons-for-visual-composer/includes/addons/portfolio/js/portfolio.min.js
IP 5.56.56.34:0
ASN #57286 Gigas Hosting S.A.
File type HTML document, ASCII text, with very long lines (2180), with no line terminators
Hash b6a0b512caac3c42e5182832752d8cf7
3a0dd47027c488ecead9d68925c04252ccf952b3
c919fdf1d93278991898c7128dfcbb3cdb60b3b21be2be64a8184876a54dccf1
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/plugins/addons-for-visual-composer/includes/addons/portfolio/js/portfolio.min.js HTTP/1.1
Host: grupoinden.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://grupoinden.com/en/start/
Cookie: pll_language=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 06 Oct 2022 14:52:19 GMT
Content-Type: application/javascript
Content-Length: 2180
Last-Modified: Tue, 16 Mar 2021 19:28:30 GMT
Connection: keep-alive
ETag: "605106de-884"
X-Powered-By: PleskLin
Accept-Ranges: bytes
grupoinden.com/wp-content/uploads/redux/custom-fonts/fonts.css
5.56.56.34200 OK 0 B URL HTTP/1.1 grupoinden.com/wp-content/uploads/redux/custom-fonts/fonts.css
IP 5.56.56.34:0
ASN #57286 Gigas Hosting S.A.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/redux/custom-fonts/fonts.css HTTP/1.1
Host: grupoinden.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://grupoinden.com/en/start/
Cookie: pll_language=en
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 06 Oct 2022 14:52:19 GMT
Content-Type: text/css
Content-Length: 0
Connection: keep-alive
X-Accel-Version: 0.01
Last-Modified: Mon, 26 Sep 2022 09:00:08 GMT
ETag: "0-5e990c11cb600"
Accept-Ranges: bytes
X-Powered-By: PleskLin
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash b0e8a79f3e381ab34a44278947ac7c7e
70d01e6fdc8565c661b6ae8c5a043ddf2da16530
885a8c234fca85e6f6bb3e8fcab6672b9a9742b5d3f74681b17a330fa295d549
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 06 Oct 2022 14:52:19 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
grupoinden.com/wp-content/plugins/map-multi-marker/asset/css/front.css
5.56.56.34200 OK 4.0 kB URL HTTP/1.1 grupoinden.com/wp-content/plugins/map-multi-marker/asset/css/front.css
IP 5.56.56.34:0
ASN #57286 Gigas Hosting S.A.
Hash 1a1d1da3fda56deb5af512a7ca4d5bf2
10173c9173c6d2236265f1bccd3a330b3d42c2ba
8cc7a5e4b07ec2ceb70344b0aa72ee29ca7b9c0e473f88cb0c0de4b67bf97184
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/plugins/map-multi-marker/asset/css/front.css HTTP/1.1
Host: grupoinden.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://grupoinden.com/en/start/
Cookie: pll_language=en
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 06 Oct 2022 14:52:19 GMT
Content-Type: text/css
Content-Length: 4014
Last-Modified: Tue, 16 Mar 2021 17:54:40 GMT
Connection: keep-alive
ETag: "6050f0e0-fae"
X-Powered-By: PleskLin
Accept-Ranges: bytes
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 18e0e019cd697bb16806d8f00408a319
60ceb13c31595e6cf9bb6800657e4593a1fbd670
7cb0778c80be637b67a5d198ca180a76bbfa4c32e502a0fa472a4c6946ffb56e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 06 Oct 2022 14:52:19 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
grupoinden.com/wp-content/plugins/map-multi-marker/asset/css/font-awesome.min.css
5.56.56.34200 OK 29 kB URL HTTP/1.1 grupoinden.com/wp-content/plugins/map-multi-marker/asset/css/font-awesome.min.css
IP 5.56.56.34:0
ASN #57286 Gigas Hosting S.A.
File type ASCII text, with very long lines (28768)
Hash 502135c092c9582a9ff5ea4c43fa622b
03bf1ac337dfe6f50fb25fd3e254a2bbfab26cc6
b5675b0d1ee88db374b1e60e301fda9f0c1d3585f47173468827115fc4e529c2
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/plugins/map-multi-marker/asset/css/font-awesome.min.css HTTP/1.1
Host: grupoinden.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://grupoinden.com/en/start/
Cookie: pll_language=en
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 06 Oct 2022 14:52:19 GMT
Content-Type: text/css
Content-Length: 28931
Last-Modified: Tue, 16 Mar 2021 17:54:40 GMT
Connection: keep-alive
ETag: "6050f0e0-7103"
X-Powered-By: PleskLin
Accept-Ranges: bytes
grupoinden.com/wp-content/themes/TheFox/js/custom_woo_js.js
5.56.56.34200 OK 2.2 kB URL HTTP/1.1 grupoinden.com/wp-content/themes/TheFox/js/custom_woo_js.js
IP 5.56.56.34:0
ASN #57286 Gigas Hosting S.A.
File type ASCII text, with CRLF line terminators
Hash 8eb607a508fe11a12eed7894bef3fe45
ab2ae560e0105201987c80dd496e2725eb291325
e0a2b189009134f30359f3783524e21e9f5b49a485a9ee86fb95feadaad3a949
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/themes/TheFox/js/custom_woo_js.js HTTP/1.1
Host: grupoinden.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://grupoinden.com/en/start/
Cookie: pll_language=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 06 Oct 2022 14:52:19 GMT
Content-Type: application/javascript
Content-Length: 2215
Last-Modified: Sun, 28 May 2017 10:29:52 GMT
Connection: keep-alive
ETag: "592aa6a0-8a7"
X-Powered-By: PleskLin
Accept-Ranges: bytes
grupoinden.com/wp-content/themes/TheFox/js/smoothscroll.js
5.56.56.34200 OK 4.6 kB URL HTTP/1.1 grupoinden.com/wp-content/themes/TheFox/js/smoothscroll.js
IP 5.56.56.34:0
ASN #57286 Gigas Hosting S.A.
File type ASCII text, with very long lines (4440), with CRLF line terminators
Hash e1ad4e9259e115b2524bfff7416eb752
b6019b4bd80f3d065d532b0f114fa2afd69aaf90
92ed086f624d0b49a8d0122ca6e92ce676d9afc309ef03795492878e574d7b72
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/themes/TheFox/js/smoothscroll.js HTTP/1.1
Host: grupoinden.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://grupoinden.com/en/start/
Cookie: pll_language=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 06 Oct 2022 14:52:19 GMT
Content-Type: application/javascript
Content-Length: 4646
Last-Modified: Thu, 04 Jun 2015 12:55:26 GMT
Connection: keep-alive
ETag: "55704abe-1226"
X-Powered-By: PleskLin
Accept-Ranges: bytes
maps.googleapis.com/maps/api/js?key=AIzaSyBTNzrRsbfXkxK4jnkx-PapDPtFoYr1S6s&language=es&ver=3.2.1
142.250.74.10200 OK 54 kB URL HTTP/2 maps.googleapis.com/maps/api/js?key=AIzaSyBTNzrRsbfXkxK4jnkx-PapDPtFoYr1S6s&language=es&ver=3.2.1
IP 142.250.74.10:0
File type ASCII text, with very long lines (2431)
Hash 350842e0b87b31f6d04270b77c874524
02d1cfe07b9e2e4622ccf39391d99bc497fb792f
de076ca9cc9c6aceaa286fafef23cbb9127eb0be5651ac419a2431cdf51915a0
GET /maps/api/js?key=AIzaSyBTNzrRsbfXkxK4jnkx-PapDPtFoYr1S6s&language=es&ver=3.2.1 HTTP/1.1
Host: maps.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://grupoinden.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/javascript; charset=UTF-8
date: Thu, 06 Oct 2022 14:52:19 GMT
expires: Thu, 06 Oct 2022 15:22:19 GMT
cache-control: public, max-age=1800
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
content-encoding: gzip
server: mafe
content-length: 53859
x-xss-protection: 0
x-frame-options: SAMEORIGIN
server-timing: gfet4t7; dur=23
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
grupoinden.com/wp-includes/js/dist/hooks.min.js
5.56.56.34200 OK 7.0 kB URL HTTP/1.1 grupoinden.com/wp-includes/js/dist/hooks.min.js
IP 5.56.56.34:0
ASN #57286 Gigas Hosting S.A.
File type ASCII text, with very long lines (6944)
Hash fff58f50d2d6243f7705185a16cba7ea
144566a0887f77bf9126bd1bb46ccad9f29a5971
fcc650dabdeef66e791d2159bddf7e6ec415841c265e2e121bfdf8da9f898837
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-includes/js/dist/hooks.min.js HTTP/1.1
Host: grupoinden.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://grupoinden.com/en/start/
Cookie: pll_language=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 06 Oct 2022 14:52:19 GMT
Content-Type: application/javascript
Content-Length: 6979
Last-Modified: Thu, 09 Sep 2021 04:58:40 GMT
Connection: keep-alive
ETag: "61399480-1b43"
X-Powered-By: PleskLin
Accept-Ranges: bytes
grupoinden.com/wp-content/themes/TheFox/js/scrollmagic.js
5.56.56.34200 OK 140 kB URL HTTP/1.1 grupoinden.com/wp-content/themes/TheFox/js/scrollmagic.js
IP 5.56.56.34:0
ASN #57286 Gigas Hosting S.A.
File type ASCII text, with very long lines (32028), with CRLF line terminators
Size 140 kB (139960 bytes)
Hash 85b73ffc582de2ff225a86834a939074
c39e1afbab97347078c606e91d733f725b105686
e0cbf996fd0f0e2f25bd50ec8b5a756edf87d1d738a179fbdbbc72828539aa24
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/themes/TheFox/js/scrollmagic.js HTTP/1.1
Host: grupoinden.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://grupoinden.com/en/start/
Cookie: pll_language=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 06 Oct 2022 14:52:19 GMT
Content-Type: application/javascript
Content-Length: 139960
Last-Modified: Mon, 18 Sep 2017 06:51:58 GMT
Connection: keep-alive
ETag: "59bf6d0e-222b8"
X-Powered-By: PleskLin
Accept-Ranges: bytes
grupoinden.com/wp-includes/js/dist/i18n.min.js
5.56.56.34200 OK 10 kB URL HTTP/1.1 grupoinden.com/wp-includes/js/dist/i18n.min.js
IP 5.56.56.34:0
ASN #57286 Gigas Hosting S.A.
Hash b5dac75108e27b15e3a0505fdf39d4a6
711d8657e84b694373886a7ecec565854b31a496
584d623ec3125bfc106a88a57bfccb15faf6ec72547191f81b894612ad910cc1
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-includes/js/dist/i18n.min.js HTTP/1.1
Host: grupoinden.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://grupoinden.com/en/start/
Cookie: pll_language=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 06 Oct 2022 14:52:19 GMT
Content-Type: application/javascript
Content-Length: 10198
Last-Modified: Thu, 09 Sep 2021 04:58:40 GMT
Connection: keep-alive
ETag: "61399480-27d6"
X-Powered-By: PleskLin
Accept-Ranges: bytes
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash aea480478c3be7392d09e8a92826542f
b660fb42c8122efb07b3d1de1a8907ad1f6e1a60
ee691969e4d61ba3145fe90b28c5051367c223f31c0e0ee001d8481035090760
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 06 Oct 2022 14:52:19 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
grupoinden.com/wp-content/themes/TheFox/js/customjs.js
5.56.56.34200 OK 288 kB URL HTTP/1.1 grupoinden.com/wp-content/themes/TheFox/js/customjs.js
IP 5.56.56.34:0
ASN #57286 Gigas Hosting S.A.
File type HTML document, ASCII text, with CRLF line terminators
Size 288 kB (288388 bytes)
Hash b4afc58aee8247dae9be418894149a50
834ed76e8f994582cd5a920cc51f986650ab78ae
0d7038fa815e720c14c8f59b51f94fc364b27ad04378f01dc713466f48354bad
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/themes/TheFox/js/customjs.js HTTP/1.1
Host: grupoinden.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://grupoinden.com/en/start/
Cookie: pll_language=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 06 Oct 2022 14:52:19 GMT
Content-Type: application/javascript
Content-Length: 288388
Last-Modified: Mon, 24 Aug 2020 10:54:10 GMT
Connection: keep-alive
ETag: "5f439c52-46684"
X-Powered-By: PleskLin
Accept-Ranges: bytes
grupoinden.com/wp-includes/js/dist/vendor/lodash.min.js
5.56.56.34200 OK 73 kB URL HTTP/1.1 grupoinden.com/wp-includes/js/dist/vendor/lodash.min.js
IP 5.56.56.34:0
ASN #57286 Gigas Hosting S.A.
File type ASCII text, with very long lines (4472)
Hash 913a2917447f6e4243fc9ffe398ad00e
345aa73fd11098fd6c1c59dc6e7214870bc8a9a9
26f87df80e0735b6d6b169750f0ee403336c537cbc7a51888cb9d449434cb4b8
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-includes/js/dist/vendor/lodash.min.js HTTP/1.1
Host: grupoinden.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://grupoinden.com/en/start/
Cookie: pll_language=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 06 Oct 2022 14:52:19 GMT
Content-Type: application/javascript
Content-Length: 72805
Last-Modified: Tue, 16 Mar 2021 17:38:04 GMT
Connection: keep-alive
ETag: "6050ecfc-11c65"
X-Powered-By: PleskLin
Accept-Ranges: bytes
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash ff5f22aafa6751c60631736c305a4c7c
278b89e5c1a978e070be4b66bb780862894b8504
b501664d7591e6dfe95c8641e0020e04b76f16f5cb80a7fc0ee0b36af60a6382
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 06 Oct 2022 14:52:19 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/lato/v23/S6uyw4BMUTPHjx4wXg.woff2
216.58.207.195200 OK 24 kB URL HTTP/2 fonts.gstatic.com/s/lato/v23/S6uyw4BMUTPHjx4wXg.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 23580, version 1.0\012- data
Hash e1b3b5908c9cf23dfb2b9c52b9a023ab
fcd4136085f2a03481d9958cc6793a5ed98e714c
918b7dc3e2e2d015c16ce08b57bcb64d2253bafc1707658f361e72865498e537
GET /s/lato/v23/S6uyw4BMUTPHjx4wXg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://grupoinden.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 23580
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 04 Oct 2022 17:10:21 GMT
expires: Wed, 04 Oct 2023 17:10:21 GMT
cache-control: public, max-age=31536000
age: 164518
last-modified: Tue, 26 Apr 2022 15:48:56 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
grupoinden.com/wp-includes/js/dist/api-fetch.min.js
5.56.56.34200 OK 12 kB URL HTTP/1.1 grupoinden.com/wp-includes/js/dist/api-fetch.min.js
IP 5.56.56.34:0
ASN #57286 Gigas Hosting S.A.
File type ASCII text, with very long lines (12330)
Hash 60337e4ccb1181befb5bef281629abfc
9e48aae080f9e325bfb8cbb1dda0c96f18a1fa9a
601be129c09bdbb9d98f8f14521bd693a0569aaa88a1b3e2b526f47210240c63
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-includes/js/dist/api-fetch.min.js HTTP/1.1
Host: grupoinden.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://grupoinden.com/en/start/
Cookie: pll_language=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 06 Oct 2022 14:52:19 GMT
Content-Type: application/javascript
Content-Length: 12365
Last-Modified: Thu, 09 Sep 2021 04:58:40 GMT
Connection: keep-alive
ETag: "61399480-304d"
X-Powered-By: PleskLin
Accept-Ranges: bytes
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash f9371f81e2eeeead7fe351a49f3b1c40
ae23d6c6c57dd7cf568c3a74594c377b7bb7df43
03c4ba0faa3199d061d1bb37df5d48ba6d81f77a83e243922075efc4d4acf456
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 06 Oct 2022 14:52:19 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash f9371f81e2eeeead7fe351a49f3b1c40
ae23d6c6c57dd7cf568c3a74594c377b7bb7df43
03c4ba0faa3199d061d1bb37df5d48ba6d81f77a83e243922075efc4d4acf456
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 06 Oct 2022 14:52:19 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/bitter/v28/raxhHiqOu8IVPmnRc6SY1KXhnF_Y8RHYOLjOXQ.woff2
216.58.207.195200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/bitter/v28/raxhHiqOu8IVPmnRc6SY1KXhnF_Y8RHYOLjOXQ.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 16236, version 1.0\012- data
Hash ed0b62487d3430b7a224aa2c5a2265da
f24489dbe5599863bd13b545bff13fb3dd919527
aefa21cc18c2ad241ef585676a38e9fa68d3f4fbc3a2242bf76ef3a2f37b4141
GET /s/bitter/v28/raxhHiqOu8IVPmnRc6SY1KXhnF_Y8RHYOLjOXQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://grupoinden.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 16236
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 01 Oct 2022 00:29:29 GMT
expires: Sun, 01 Oct 2023 00:29:29 GMT
cache-control: public, max-age=31536000
age: 483770
last-modified: Fri, 24 Jun 2022 18:45:50 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
grupoinden.com/wp-includes/js/wp-embed.min.js
5.56.56.34200 OK 1.4 kB URL HTTP/1.1 grupoinden.com/wp-includes/js/wp-embed.min.js
IP 5.56.56.34:0
ASN #57286 Gigas Hosting S.A.
File type ASCII text, with very long lines (1391)
Hash 905225d5711b559d3092387d5ffbedbd
6f6c39075263bafb9e8c10f1b34a1a0f7ee03c9d
5be614bce53f767993a5f5f14a6badd6aae6bf3af7cbdbf4d31520de49e27991
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-includes/js/wp-embed.min.js HTTP/1.1
Host: grupoinden.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://grupoinden.com/en/start/
Cookie: pll_language=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 06 Oct 2022 14:52:19 GMT
Content-Type: application/javascript
Content-Length: 1426
Last-Modified: Tue, 16 Mar 2021 17:38:04 GMT
Connection: keep-alive
ETag: "6050ecfc-592"
X-Powered-By: PleskLin
Accept-Ranges: bytes
fonts.gstatic.com/s/lato/v23/S6u9w4BMUTPHh7USSwiPGQ.woff2
216.58.207.195200 OK 23 kB URL HTTP/2 fonts.gstatic.com/s/lato/v23/S6u9w4BMUTPHh7USSwiPGQ.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 23236, version 1.0\012- data
Hash 716309aab2bca045f9627f63ad79d0bf
38804233a29aaf975d557fe14e762c627bef76e0
115f6a626ca115d4ad5581b59275327e0e860b30330a52b0f785561332dd2429
GET /s/lato/v23/S6u9w4BMUTPHh7USSwiPGQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://grupoinden.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 23236
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 04 Oct 2022 17:17:26 GMT
expires: Wed, 04 Oct 2023 17:17:26 GMT
cache-control: public, max-age=31536000
age: 164093
last-modified: Tue, 26 Apr 2022 16:04:12 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/bitter/v28/raxjHiqOu8IVPmn7epZnDMyKBvHf5D6c4Pz-X3By.woff2
216.58.207.195200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/bitter/v28/raxjHiqOu8IVPmn7epZnDMyKBvHf5D6c4Pz-X3By.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 16316, version 1.0\012- data
Hash cb067a4ed801d28f00cf1c750838a0a6
0ed662f16909b26e85009ff443abcb8520ce3add
5fab899ca1e6aaa0693d61d2f5793cc641b6e1cac34b5731f13a96420c6acbb8
GET /s/bitter/v28/raxjHiqOu8IVPmn7epZnDMyKBvHf5D6c4Pz-X3By.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://grupoinden.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 16316
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 05 Oct 2022 21:49:05 GMT
expires: Thu, 05 Oct 2023 21:49:05 GMT
cache-control: public, max-age=31536000
last-modified: Fri, 24 Jun 2022 18:46:04 GMT
content-type: font/woff2
age: 61394
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/lato/v23/S6u9w4BMUTPHh6UVSwiPGQ.woff2
216.58.207.195200 OK 23 kB URL HTTP/2 fonts.gstatic.com/s/lato/v23/S6u9w4BMUTPHh6UVSwiPGQ.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 23040, version 1.0\012- data
Hash de69cf9e514df447d1b0bb16f49d2457
2ac78601179c3a63ba3f3f3081556b12ddcaf655
c447dd7677b419db7b21dbdfc6277c7816a913ffda76fd2e52702df538de0e49
GET /s/lato/v23/S6u9w4BMUTPHh6UVSwiPGQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://grupoinden.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 23040
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 04 Oct 2022 17:10:21 GMT
expires: Wed, 04 Oct 2023 17:10:21 GMT
cache-control: public, max-age=31536000
age: 164518
last-modified: Tue, 26 Apr 2022 15:56:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/quicksand/v30/6xK-dSZaM9iE8KbpRA_LJ3z8mH9BOJvgkBgv58a-wg.woff2
216.58.207.195200 OK 13 kB URL HTTP/2 fonts.gstatic.com/s/quicksand/v30/6xK-dSZaM9iE8KbpRA_LJ3z8mH9BOJvgkBgv58a-wg.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 13332, version 1.0\012- data
Hash c7846019d48526987e4c9295c876c89e
0f44244a3beb8fa39be0940c666f33f501f57e9a
3bc49e2ecbfb96f9f55fdbd2c9631d6e67fefffeb1e667bab4bb2b98673b828c
GET /s/quicksand/v30/6xK-dSZaM9iE8KbpRA_LJ3z8mH9BOJvgkBgv58a-wg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://grupoinden.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 13332
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 03 Oct 2022 21:56:30 GMT
expires: Tue, 03 Oct 2023 21:56:30 GMT
cache-control: public, max-age=31536000
age: 233749
last-modified: Mon, 18 Jul 2022 19:12:07 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
grupoinden.com/wp-content/plugins/js_composer/assets/js/dist/js_composer_front.min.js
5.56.56.34200 OK 21 kB URL HTTP/1.1 grupoinden.com/wp-content/plugins/js_composer/assets/js/dist/js_composer_front.min.js
IP 5.56.56.34:0
ASN #57286 Gigas Hosting S.A.
File type ASCII text, with very long lines (20418)
Hash b00a0fd5e283160549de2c7b36243b7b
f2401243950cd9624002921265e46a518851f12b
314ce6baaa3218eb171fa2c278d7fdf1b9872305dfa667e9cbf2df77c83a9a88
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/plugins/js_composer/assets/js/dist/js_composer_front.min.js HTTP/1.1
Host: grupoinden.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://grupoinden.com/en/start/
Cookie: pll_language=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 06 Oct 2022 14:52:19 GMT
Content-Type: application/javascript
Content-Length: 20637
Last-Modified: Thu, 25 Mar 2021 08:34:29 GMT
Connection: keep-alive
ETag: "605c4b15-509d"
X-Powered-By: PleskLin
Accept-Ranges: bytes
grupoinden.com/wp-content/themes/TheFox/js/sorting_bp.js
5.56.56.34200 OK 255 B URL HTTP/1.1 grupoinden.com/wp-content/themes/TheFox/js/sorting_bp.js
IP 5.56.56.34:0
ASN #57286 Gigas Hosting S.A.
File type ASCII text, with CRLF line terminators
Hash de56e1b27ea2218d1b7b54ee3e48ee40
764bf17d259c87de389fb506cb2d2b328aee17ad
1ec7a50776f2b36bed355e6c3571537b655e170747bbd7b9f6419b27383d2683
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/themes/TheFox/js/sorting_bp.js HTTP/1.1
Host: grupoinden.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://grupoinden.com/en/start/
Cookie: pll_language=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 06 Oct 2022 14:52:19 GMT
Content-Type: application/javascript
Content-Length: 255
Connection: keep-alive
X-Accel-Version: 0.01
Last-Modified: Thu, 05 May 2016 01:40:04 GMT
ETag: "1ac-5320e6bdb0500-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PleskLin
grupoinden.com/wp-content/themes/TheFox/js/jquery.isotope.min.js
5.56.56.34200 OK 48 kB URL HTTP/1.1 grupoinden.com/wp-content/themes/TheFox/js/jquery.isotope.min.js
IP 5.56.56.34:0
ASN #57286 Gigas Hosting S.A.
File type ASCII text, with very long lines (32033), with CRLF line terminators
Hash 5d68b55c28a8362dfe518d42888a420d
5430fa1c3bcd0d49b29d4c50b92aa431a03f6669
ca7e3eb8feaf3bdacb0ba435b7980d71f484c5d9ad99afa5b026d1d7a7bbeae6
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/themes/TheFox/js/jquery.isotope.min.js HTTP/1.1
Host: grupoinden.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://grupoinden.com/en/start/
Cookie: pll_language=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 06 Oct 2022 14:52:19 GMT
Content-Type: application/javascript
Content-Length: 48112
Last-Modified: Sat, 14 Mar 2015 03:55:00 GMT
Connection: keep-alive
ETag: "5503b114-bbf0"
X-Powered-By: PleskLin
Accept-Ranges: bytes
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash ff5f22aafa6751c60631736c305a4c7c
278b89e5c1a978e070be4b66bb780862894b8504
b501664d7591e6dfe95c8641e0020e04b76f16f5cb80a7fc0ee0b36af60a6382
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 06 Oct 2022 14:52:19 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
grupoinden.com/wp-content/plugins/map-multi-marker/asset/js/front.js
5.56.56.34200 OK 2.1 kB URL HTTP/1.1 grupoinden.com/wp-content/plugins/map-multi-marker/asset/js/front.js
IP 5.56.56.34:0
ASN #57286 Gigas Hosting S.A.
Hash 1c8a103f87b5023d2e5d57ecb28bbb82
81b2b4611f86b2e6b33c23d612f8162210293ce5
f4e9423442191f52485d9bcc4c5f333df4276870fca4a12474cf46390b61f82b
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/plugins/map-multi-marker/asset/js/front.js HTTP/1.1
Host: grupoinden.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://grupoinden.com/en/start/
Cookie: pll_language=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 06 Oct 2022 14:52:19 GMT
Content-Type: application/javascript
Content-Length: 2132
Last-Modified: Tue, 16 Mar 2021 17:54:40 GMT
Connection: keep-alive
ETag: "6050f0e0-854"
X-Powered-By: PleskLin
Accept-Ranges: bytes
grupoinden.com/wp-content/themes/TheFox/js/refresh_bp.js
5.56.56.34200 OK 215 B URL HTTP/1.1 grupoinden.com/wp-content/themes/TheFox/js/refresh_bp.js
IP 5.56.56.34:0
ASN #57286 Gigas Hosting S.A.
File type ASCII text, with CRLF line terminators
Hash 533e3a4db5b88e04fa0d51caa884313a
6a9fa5677b7f2babe849c4bab9518bdabc423f0e
ff0f1ef58872450176b6ad8b40fbec60407f9d05269c4d8c8afd8b693cca4f84
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/themes/TheFox/js/refresh_bp.js HTTP/1.1
Host: grupoinden.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://grupoinden.com/en/start/
Cookie: pll_language=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 06 Oct 2022 14:52:19 GMT
Content-Type: application/javascript
Content-Length: 215
Connection: keep-alive
X-Accel-Version: 0.01
Last-Modified: Thu, 05 May 2016 01:38:16 GMT
ETag: "10c-5320e656b1200-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PleskLin
grupoinden.com/wp-includes/js/wp-emoji-release.min.js
5.56.56.34200 OK 14 kB URL HTTP/1.1 grupoinden.com/wp-includes/js/wp-emoji-release.min.js
IP 5.56.56.34:0
ASN #57286 Gigas Hosting S.A.
File type ASCII text, with very long lines (11272)
Hash eaa8641bcda2371f4024a71fbb67de3b
0e46c39d3821683c856605a82254115f9a6a7792
0c5f584d1ea2c3313dc8c55824c2a572d3cf2eae87c5ca62a58e598aec9ddb5c
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-includes/js/wp-emoji-release.min.js HTTP/1.1
Host: grupoinden.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://grupoinden.com/en/start/
Cookie: pll_language=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 06 Oct 2022 14:52:19 GMT
Content-Type: application/javascript
Content-Length: 14229
Last-Modified: Tue, 16 Mar 2021 17:38:04 GMT
Connection: keep-alive
ETag: "6050ecfc-3795"
X-Powered-By: PleskLin
Accept-Ranges: bytes
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
216.58.207.195200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Hash 15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://grupoinden.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 05 Oct 2022 19:34:08 GMT
expires: Thu, 05 Oct 2023 19:34:08 GMT
cache-control: public, max-age=31536000
age: 69491
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
grupoinden.com/wp-content/uploads/2017/01/GrupoInden_icono-map-marker.png
5.56.56.34200 OK 5.8 kB URL HTTP/1.1 grupoinden.com/wp-content/uploads/2017/01/GrupoInden_icono-map-marker.png
IP 5.56.56.34:0
ASN #57286 Gigas Hosting S.A.
File type PNG image data, 64 x 64, 8-bit/color RGBA, interlaced\012- data
Hash 5f893bafb1a70536afec0545ff6999ed
39143ba8073020883895ef8606dbe9146a67177a
ab307fcce9bf0699fcb7887471cce36d3412615f4d3495c3b990cdbee2150330
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/2017/01/GrupoInden_icono-map-marker.png HTTP/1.1
Host: grupoinden.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 06 Oct 2022 14:52:19 GMT
Content-Type: image/png
Content-Length: 5816
Last-Modified: Wed, 18 Jan 2017 13:31:12 GMT
Connection: keep-alive
ETag: "587f6e20-16b8"
X-Powered-By: PleskLin
Accept-Ranges: bytes
grupoinden.com/wp-content/uploads/2017/01/GrupoInden-salient-title_blue2.png
5.56.56.34200 OK 2.2 kB URL HTTP/1.1 grupoinden.com/wp-content/uploads/2017/01/GrupoInden-salient-title_blue2.png
IP 5.56.56.34:0
ASN #57286 Gigas Hosting S.A.
File type PNG image data, 900 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash ef2f2d18ac8e83d2ca8fc9fd38334600
2f50624798802a450b1ad5e7f5ef0d6d95f5c2c3
6712ff5a7cad02d2b7050b5416e0c21cacb04b6509401a81cac1a7eeaef18897
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/2017/01/GrupoInden-salient-title_blue2.png HTTP/1.1
Host: grupoinden.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://grupoinden.com/wp-content/themes/TheFox_child_theme/style.css
Cookie: pll_language=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 06 Oct 2022 14:52:19 GMT
Content-Type: image/png
Content-Length: 2200
Last-Modified: Wed, 25 Jan 2017 11:56:00 GMT
Connection: keep-alive
ETag: "58889250-898"
X-Powered-By: PleskLin
Accept-Ranges: bytes
grupoinden.com/wp-content/uploads/2017/01/GrupoInden_logo-color_header_01.png
5.56.56.34200 OK 4.5 kB URL HTTP/1.1 grupoinden.com/wp-content/uploads/2017/01/GrupoInden_logo-color_header_01.png
IP 5.56.56.34:0
ASN #57286 Gigas Hosting S.A.
File type PNG image data, 512 x 213, 8-bit/color RGBA, non-interlaced\012- data
Hash f9830c93b6b7023a56036f9a7d8dbbb9
2f3d4713215b9d69ac5250b645af391b8206db66
264e50570bd4e52dc6736857fcd9d8b6d831bb4883be7bcc1d96a188b9fd2eae
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/2017/01/GrupoInden_logo-color_header_01.png HTTP/1.1
Host: grupoinden.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://grupoinden.com/en/start/
Cookie: pll_language=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 06 Oct 2022 14:52:19 GMT
Content-Type: image/png
Content-Length: 4546
Last-Modified: Thu, 19 Jan 2017 09:54:21 GMT
Connection: keep-alive
ETag: "58808ccd-11c2"
X-Powered-By: PleskLin
Accept-Ranges: bytes
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash f9371f81e2eeeead7fe351a49f3b1c40
ae23d6c6c57dd7cf568c3a74594c377b7bb7df43
03c4ba0faa3199d061d1bb37df5d48ba6d81f77a83e243922075efc4d4acf456
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 06 Oct 2022 14:52:19 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
grupoinden.com/wp-content/themes/TheFox/includes/font/fontawesome-webfont.woff?v=4.1.0
5.56.56.34200 OK 98 kB URL HTTP/1.1 grupoinden.com/wp-content/themes/TheFox/includes/font/fontawesome-webfont.woff?v=4.1.0
IP 5.56.56.34:0
ASN #57286 Gigas Hosting S.A.
File type Web Open Font Format, TrueType, length 98024, version 4.7\012- data
Hash fee66e712a8a08eef5805a46892932ad
28b782240b3e76db824e12c02754a9731a167527
ba0c59deb5450f5cb41b3f93609ee2d0d995415877ddfa223e8a8a7533474f07
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/themes/TheFox/includes/font/fontawesome-webfont.woff?v=4.1.0 HTTP/1.1
Host: grupoinden.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://grupoinden.com/wp-content/themes/TheFox/css/font-awesome.css
Cookie: pll_language=en
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 06 Oct 2022 14:52:19 GMT
Content-Type: application/x-font-woff
Content-Length: 98024
Last-Modified: Tue, 25 Oct 2016 04:50:46 GMT
Connection: keep-alive
ETag: "580ee4a6-17ee8"
X-Powered-By: PleskLin
Accept-Ranges: bytes
grupoinden.com/wp-content/plugins/map-multi-marker/asset/fonts/fontawesome-webfont.woff2?v=4.6.2
5.56.56.34200 OK 72 kB URL HTTP/1.1 grupoinden.com/wp-content/plugins/map-multi-marker/asset/fonts/fontawesome-webfont.woff2?v=4.6.2
IP 5.56.56.34:0
ASN #57286 Gigas Hosting S.A.
File type Web Open Font Format (Version 2), TrueType, length 71760, version 4.393\012- data
Hash a1a450ea331a3fc89e867ecad963b6b2
ee59197f63a2c4c7b7f2ae135a745202235de8d4
2932abf996373e87fbf2e950876b1962f1b57db954a1643ea68831d9fbb74da4
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/plugins/map-multi-marker/asset/fonts/fontawesome-webfont.woff2?v=4.6.2 HTTP/1.1
Host: grupoinden.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://grupoinden.com/wp-content/plugins/map-multi-marker/asset/css/font-awesome.min.css
Cookie: pll_language=en
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 06 Oct 2022 14:52:19 GMT
Content-Type: application/octet-stream
Content-Length: 71760
Last-Modified: Tue, 16 Mar 2021 17:54:40 GMT
Connection: keep-alive
ETag: "6050f0e0-11850"
X-Powered-By: PleskLin
Accept-Ranges: bytes
grupoinden.com/wp-includes/js/dist/vendor/wp-polyfill.min.js
5.56.56.34200 OK 26 kB URL HTTP/1.1 grupoinden.com/wp-includes/js/dist/vendor/wp-polyfill.min.js
IP 5.56.56.34:0
ASN #57286 Gigas Hosting S.A.
File type gzip compressed data, max compression\012- data
Hash 963c6eb42672d40847a0654921313d5c
e84caa7f3b17cdd9a7ed444eb077eed1c60e12ea
81464d49be488fb166e15e04ed1712d8191d17e256ed8c095c8af6afe95ce7de
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-includes/js/dist/vendor/wp-polyfill.min.js HTTP/1.1
Host: grupoinden.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://grupoinden.com/en/start/
Cookie: pll_language=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 06 Oct 2022 14:52:19 GMT
Content-Type: application/javascript
Content-Length: 99310
Last-Modified: Tue, 16 Mar 2021 17:38:04 GMT
Connection: keep-alive
ETag: "6050ecfc-183ee"
X-Powered-By: PleskLin
Accept-Ranges: bytes
grupoinden.com/wp-content/uploads/2017/01/grupo-inden_el-grupo_04.jpg
5.56.56.34200 OK 219 kB URL HTTP/1.1 grupoinden.com/wp-content/uploads/2017/01/grupo-inden_el-grupo_04.jpg
IP 5.56.56.34:0
ASN #57286 Gigas Hosting S.A.
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], progressive, precision 8, 1200x730, components 3\012- data
Size 219 kB (219112 bytes)
Hash 5fba6a1cd2fdfc8f795fd75dfc157bdb
3fe909f3eaacaaae8c3d8255569d6ab3ea416e90
ebcb8421cb55e8ccbe759ee5bc612d7006fb11249dfcb25f51b11fe1519599d1
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/2017/01/grupo-inden_el-grupo_04.jpg HTTP/1.1
Host: grupoinden.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://grupoinden.com/en/start/
Cookie: pll_language=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 06 Oct 2022 14:52:19 GMT
Content-Type: image/jpeg
Content-Length: 219112
Last-Modified: Tue, 17 Jan 2017 23:53:36 GMT
Connection: keep-alive
ETag: "587eae80-357e8"
X-Powered-By: PleskLin
Accept-Ranges: bytes
grupoinden.com/wp-content/uploads/2017/01/grupo-inden_home_slider_01.jpg
5.56.56.34200 OK 211 kB URL HTTP/1.1 grupoinden.com/wp-content/uploads/2017/01/grupo-inden_home_slider_01.jpg
IP 5.56.56.34:0
ASN #57286 Gigas Hosting S.A.
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1920x1400, components 3\012- data
Size 211 kB (211213 bytes)
Hash 14c9c6d5df6e3b7a0189e3695db5c0d3
4d5a96dd2ddd6b7f42f844fb8d9256609cde8a53
5c159f9b5e627757484d591af3a029ee21f315a944bef641bd42bb6ad7903b1d
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/2017/01/grupo-inden_home_slider_01.jpg HTTP/1.1
Host: grupoinden.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://grupoinden.com/en/start/
Cookie: pll_language=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 06 Oct 2022 14:52:19 GMT
Content-Type: image/jpeg
Content-Length: 211213
Last-Modified: Tue, 17 Jan 2017 15:17:45 GMT
Connection: keep-alive
ETag: "587e3599-3390d"
X-Powered-By: PleskLin
Accept-Ranges: bytes
grupoinden.com/wp-content/uploads/2017/01/grupo-inden_home_slider_02.jpg
5.56.56.34200 OK 230 kB URL HTTP/1.1 grupoinden.com/wp-content/uploads/2017/01/grupo-inden_home_slider_02.jpg
IP 5.56.56.34:0
ASN #57286 Gigas Hosting S.A.
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1920x1400, components 3\012- data
Size 230 kB (230375 bytes)
Hash 57b4b60c2c34b0240b0135f5c7cef3cc
7737a22e2199ca5400a892cf4ba935df5c258b41
f2ceaa6ffc1ddf88c09c60ef2ac9e13dc93c0762a57ea5a20491044dbbef773f
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/2017/01/grupo-inden_home_slider_02.jpg HTTP/1.1
Host: grupoinden.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://grupoinden.com/en/start/
Cookie: pll_language=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 06 Oct 2022 14:52:19 GMT
Content-Type: image/jpeg
Content-Length: 230375
Last-Modified: Tue, 17 Jan 2017 15:17:48 GMT
Connection: keep-alive
ETag: "587e359c-383e7"
X-Powered-By: PleskLin
Accept-Ranges: bytes
grupoinden.com/wp-content/uploads/2017/01/GrupoInden_icon-grey_75x75.png
5.56.56.34200 OK 1.3 kB URL HTTP/1.1 grupoinden.com/wp-content/uploads/2017/01/GrupoInden_icon-grey_75x75.png
IP 5.56.56.34:0
ASN #57286 Gigas Hosting S.A.
File type PNG image data, 75 x 75, 8-bit/color RGBA, non-interlaced\012- data
Hash 8d87757510853ae6785b184a596870a1
a629a2c7c82b0978703c646d80959da7cd9c559e
ecc1d06d422bbc98ef3cca71bb3a565a27185919692411cff2ee8a9f8c8b6550
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/2017/01/GrupoInden_icon-grey_75x75.png HTTP/1.1
Host: grupoinden.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://grupoinden.com/en/start/
Cookie: pll_language=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 06 Oct 2022 14:52:20 GMT
Content-Type: image/png
Content-Length: 1260
Last-Modified: Wed, 25 Jan 2017 09:43:43 GMT
Connection: keep-alive
ETag: "5888734f-4ec"
X-Powered-By: PleskLin
Accept-Ranges: bytes
www.youtube.com/embed/TUWC0jN0I1c?feature=oembed
142.250.74.142200 OK 36 kB URL HTTP/2 www.youtube.com/embed/TUWC0jN0I1c?feature=oembed
IP 142.250.74.142:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (55592)
Hash 7c910ecfe56d2df3fec619b970abdce6
9c004d4de4a4385d4160a1a2a5c3cecd318ea068
321ded922d82d5e74971739ddb52af4b70919d5fdb1381327dc575b57ddc5ec5
GET /embed/TUWC0jN0I1c?feature=oembed HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://grupoinden.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html; charset=utf-8
x-content-type-options: nosniff
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Thu, 06 Oct 2022 14:52:19 GMT
strict-transport-security: max-age=31536000
cross-origin-opener-policy-report-only: same-origin; report-to="youtube_main"
report-to: {"group":"youtube_main","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube_main"}]}
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-platform=*, ch-ua-platform-version=*
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657?hl=en for more info."
content-encoding: br
server: ESF
x-xss-protection: 0
set-cookie: YSC=t5nz27Z5Qxc; Domain=.youtube.com; Path=/; Secure; HttpOnly; SameSite=none
VISITOR_INFO1_LIVE=sT7wiax8PJI; Domain=.youtube.com; Expires=Tue, 04-Apr-2023 14:52:19 GMT; Path=/; Secure; HttpOnly; SameSite=none
CONSENT=PENDING+224; expires=Sat, 05-Oct-2024 14:52:19 GMT; path=/; domain=.youtube.com; Secure
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
grupoinden.com/wp-content/uploads/2017/01/GrupoInden_video-corporativo2.png?id=7517
5.56.56.34200 OK 442 kB URL HTTP/1.1 grupoinden.com/wp-content/uploads/2017/01/GrupoInden_video-corporativo2.png?id=7517
IP 5.56.56.34:0
ASN #57286 Gigas Hosting S.A.
File type PNG image data, 849 x 473, 8-bit/color RGBA, non-interlaced\012- data
Size 442 kB (442240 bytes)
Hash 6f622b6864b2e2e8583c71d46eb688f7
470dc2f09486a51c1257ecbf7cde4de0292b0b8a
05512b1f86a1875ce800f1a19e502fe0c801255c032b125891beb895a37014c9
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/uploads/2017/01/GrupoInden_video-corporativo2.png?id=7517 HTTP/1.1
Host: grupoinden.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://grupoinden.com/en/start/
Cookie: pll_language=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 06 Oct 2022 14:52:19 GMT
Content-Type: image/png
Content-Length: 442240
Last-Modified: Tue, 17 Jan 2017 15:46:17 GMT
Connection: keep-alive
ETag: "587e3c49-6bf80"
X-Powered-By: PleskLin
Accept-Ranges: bytes
grupoinden.com/wp-content/uploads/2017/01/feder.png
5.56.56.34200 OK 11 kB URL HTTP/1.1 grupoinden.com/wp-content/uploads/2017/01/feder.png
IP 5.56.56.34:0
ASN #57286 Gigas Hosting S.A.
File type PNG image data, 170 x 90, 8-bit/color RGBA, non-interlaced\012- data
Hash 20a5ee3d75c97c198e6c49a7a94bbac4
31fe6cb8427f079c67018f152b44617f833cac96
6e11ff656712e99a020ce72166eb44c76a4309c0315c2af47c48d12feedc6e88
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/2017/01/feder.png HTTP/1.1
Host: grupoinden.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://grupoinden.com/en/start/
Cookie: pll_language=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 06 Oct 2022 14:52:20 GMT
Content-Type: image/png
Content-Length: 11236
Last-Modified: Wed, 25 Jan 2017 11:11:08 GMT
Connection: keep-alive
ETag: "588887cc-2be4"
X-Powered-By: PleskLin
Accept-Ranges: bytes
fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
216.58.207.195200 OK 15 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 15344, version 1.0\012- data
Hash 5d4aeb4e5f5ef754e307d7ffaef688bd
06db651cdf354c64a7383ea9c77024ef4fb4cef8
3e253b66056519aa065b00a453bac37ac5ed8f3e6fe7b542e93a9dcdcc11d0bc
GET /s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15344
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 01 Oct 2022 12:31:58 GMT
expires: Sun, 01 Oct 2023 12:31:58 GMT
cache-control: public, max-age=31536000
age: 440422
last-modified: Mon, 16 Oct 2017 17:32:55 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
216.58.207.195200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 15552, version 1.0\012- data
Hash 285467176f7fe6bb6a9c6873b3dad2cc
ea04e4ff5142ddd69307c183def721a160e0a64e
5a8c1e7681318caa29e9f44e8a6e271f6a4067a2703e9916dfd4fe9099241db7
GET /s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15552
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 30 Sep 2022 00:48:31 GMT
expires: Sat, 30 Sep 2023 00:48:31 GMT
cache-control: public, max-age=31536000
age: 569029
last-modified: Mon, 16 Oct 2017 17:33:02 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
grupoinden.com/wp-content/uploads/2017/01/SGS_ISO-9001_A.png
5.56.56.34200 OK 7.2 kB URL HTTP/1.1 grupoinden.com/wp-content/uploads/2017/01/SGS_ISO-9001_A.png
IP 5.56.56.34:0
ASN #57286 Gigas Hosting S.A.
File type PNG image data, 85 x 90, 8-bit/color RGBA, non-interlaced\012- data
Hash 3720ffc2bad99a5480aed3033ceefbf7
ae0cc3a3d1cad01473e4fdaa1062f5d37869917c
faec7b4f0f8aa6e3d1fd5409e72a23cd942a67f081c4e0790468841211fbca74
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/2017/01/SGS_ISO-9001_A.png HTTP/1.1
Host: grupoinden.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://grupoinden.com/en/start/
Cookie: pll_language=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 06 Oct 2022 14:52:20 GMT
Content-Type: image/png
Content-Length: 7165
Last-Modified: Wed, 25 Jan 2017 11:43:24 GMT
Connection: keep-alive
ETag: "58888f5c-1bfd"
X-Powered-By: PleskLin
Accept-Ranges: bytes
grupoinden.com/wp-content/uploads/2017/01/icex.png
5.56.56.34200 OK 5.1 kB URL HTTP/1.1 grupoinden.com/wp-content/uploads/2017/01/icex.png
IP 5.56.56.34:0
ASN #57286 Gigas Hosting S.A.
File type PNG image data, 210 x 90, 8-bit/color RGBA, non-interlaced\012- data
Hash 2abe995b70d2c931aabe5eb33e68ae18
6d6aad4bbaad50f64abb97edeb8df6ae43fead4d
25a4e4896b976f31638a48c17ece3711ff98a4bb62b787d1ad50904991ed4936
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/2017/01/icex.png HTTP/1.1
Host: grupoinden.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://grupoinden.com/en/start/
Cookie: pll_language=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 06 Oct 2022 14:52:20 GMT
Content-Type: image/png
Content-Length: 5128
Last-Modified: Wed, 25 Jan 2017 11:11:10 GMT
Connection: keep-alive
ETag: "588887ce-1408"
X-Powered-By: PleskLin
Accept-Ranges: bytes
grupoinden.com/wp-content/uploads/2017/01/GrupoInden_video-corporativo1.png?id=7516
5.56.56.34200 OK 601 kB URL HTTP/1.1 grupoinden.com/wp-content/uploads/2017/01/GrupoInden_video-corporativo1.png?id=7516
IP 5.56.56.34:0
ASN #57286 Gigas Hosting S.A.
File type PNG image data, 849 x 476, 8-bit/color RGBA, non-interlaced\012- data
Size 601 kB (600918 bytes)
Hash b9b096c758137da5d4ccfe061513ef9a
c8847d63a2c8f3f52f03c20df52347c03ea05ca0
ba6e69c05668836bc1cc0dc134e575590097856479dd70afe9057eeda5ad4eec
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/uploads/2017/01/GrupoInden_video-corporativo1.png?id=7516 HTTP/1.1
Host: grupoinden.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://grupoinden.com/en/start/
Cookie: pll_language=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 06 Oct 2022 14:52:19 GMT
Content-Type: image/png
Content-Length: 600918
Last-Modified: Tue, 17 Jan 2017 15:45:49 GMT
Connection: keep-alive
ETag: "587e3c2d-92b56"
X-Powered-By: PleskLin
Accept-Ranges: bytes
grupoinden.com/wp-content/uploads/2017/01/SGS_ISO-9001_B.png
5.56.56.34200 OK 7.2 kB URL HTTP/1.1 grupoinden.com/wp-content/uploads/2017/01/SGS_ISO-9001_B.png
IP 5.56.56.34:0
ASN #57286 Gigas Hosting S.A.
File type PNG image data, 85 x 90, 8-bit/color RGBA, non-interlaced\012- data
Hash 3720ffc2bad99a5480aed3033ceefbf7
ae0cc3a3d1cad01473e4fdaa1062f5d37869917c
faec7b4f0f8aa6e3d1fd5409e72a23cd942a67f081c4e0790468841211fbca74
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/2017/01/SGS_ISO-9001_B.png HTTP/1.1
Host: grupoinden.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://grupoinden.com/en/start/
Cookie: pll_language=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 06 Oct 2022 14:52:20 GMT
Content-Type: image/png
Content-Length: 7165
Last-Modified: Wed, 25 Jan 2017 11:43:27 GMT
Connection: keep-alive
ETag: "58888f5f-1bfd"
X-Powered-By: PleskLin
Accept-Ranges: bytes
grupoinden.com/wp-content/uploads/2017/01/grupo-inden_home_slider_04.jpg
5.56.56.34200 OK 335 kB URL HTTP/1.1 grupoinden.com/wp-content/uploads/2017/01/grupo-inden_home_slider_04.jpg
IP 5.56.56.34:0
ASN #57286 Gigas Hosting S.A.
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1920x1400, components 3\012- data
Size 335 kB (334632 bytes)
Hash 77e007ced555fe32df48c346357490fd
d65b3421dceff63a9d67d8e2c1cd4aaeb2041909
9c527e7e2610e87ae1930294202dca9fb987c64446a0454b8bb472cc0b5c3fa0
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/2017/01/grupo-inden_home_slider_04.jpg HTTP/1.1
Host: grupoinden.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://grupoinden.com/en/start/
Cookie: pll_language=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 06 Oct 2022 14:52:20 GMT
Content-Type: image/jpeg
Content-Length: 334632
Last-Modified: Tue, 17 Jan 2017 15:17:54 GMT
Connection: keep-alive
ETag: "587e35a2-51b28"
X-Powered-By: PleskLin
Accept-Ranges: bytes
grupoinden.com/wp-content/uploads/2017/01/grupo-inden_home_slider_03.jpg
5.56.56.34200 OK 336 kB URL HTTP/1.1 grupoinden.com/wp-content/uploads/2017/01/grupo-inden_home_slider_03.jpg
IP 5.56.56.34:0
ASN #57286 Gigas Hosting S.A.
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1920x1400, components 3\012- data
Size 336 kB (335767 bytes)
Hash 08c0ed89ff0b2988b1359ad76c14c9f8
1e0c0e3b94aa4bc68a784ed67a7dd488e787b1f4
e97efdc0783a6d84c566b953c6be972a6280a6bacdef611cafb24c35d54bcf3f
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/2017/01/grupo-inden_home_slider_03.jpg HTTP/1.1
Host: grupoinden.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://grupoinden.com/en/start/
Cookie: pll_language=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 06 Oct 2022 14:52:19 GMT
Content-Type: image/jpeg
Content-Length: 335767
Last-Modified: Tue, 17 Jan 2017 15:17:51 GMT
Connection: keep-alive
ETag: "587e359f-51f97"
X-Powered-By: PleskLin
Accept-Ranges: bytes
grupoinden.com/wp-content/uploads/2017/01/aefa.png
5.56.56.34200 OK 5.0 kB URL HTTP/1.1 grupoinden.com/wp-content/uploads/2017/01/aefa.png
IP 5.56.56.34:0
ASN #57286 Gigas Hosting S.A.
File type PNG image data, 170 x 90, 8-bit/color RGBA, non-interlaced\012- data
Hash db5a5590ff52f97f82c72c599f658c69
a1bce5fc7a3cf66e576d0a2af77d6e809d31d980
9241621f874c439a563431fcdbc8aea4c3d58b6719996695f2d53c6dc2fc28d0
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/2017/01/aefa.png HTTP/1.1
Host: grupoinden.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://grupoinden.com/en/start/
Cookie: pll_language=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 06 Oct 2022 14:52:20 GMT
Content-Type: image/png
Content-Length: 5003
Last-Modified: Wed, 25 Jan 2017 10:11:42 GMT
Connection: keep-alive
ETag: "588879de-138b"
X-Powered-By: PleskLin
Accept-Ranges: bytes
grupoinden.com/wp-content/uploads/2017/01/aiju.png
5.56.56.34200 OK 4.7 kB URL HTTP/1.1 grupoinden.com/wp-content/uploads/2017/01/aiju.png
IP 5.56.56.34:0
ASN #57286 Gigas Hosting S.A.
File type PNG image data, 170 x 90, 8-bit/color RGBA, non-interlaced\012- data
Hash 8f18c922a67cde956ce1d6db4792d3c1
69fdb52373e9a30e4960ec4f33e5d35b88c3ea16
e2e9702429bc68afdfe1303b1234daf29fa41f2fa64a4891901b42eeee6fe687
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/2017/01/aiju.png HTTP/1.1
Host: grupoinden.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://grupoinden.com/en/start/
Cookie: pll_language=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 06 Oct 2022 14:52:20 GMT
Content-Type: image/png
Content-Length: 4664
Last-Modified: Wed, 25 Jan 2017 10:11:45 GMT
Connection: keep-alive
ETag: "588879e1-1238"
X-Powered-By: PleskLin
Accept-Ranges: bytes
grupoinden.com/wp-content/uploads/2017/01/aimplas.png
5.56.56.34200 OK 8.9 kB URL HTTP/1.1 grupoinden.com/wp-content/uploads/2017/01/aimplas.png
IP 5.56.56.34:0
ASN #57286 Gigas Hosting S.A.
File type PNG image data, 170 x 90, 8-bit/color RGBA, non-interlaced\012- data
Hash 4a41e1c3774cf6fda29f093606697b57
e1209c907609cc66f4fcc93bacc72f44ac915809
dc4937cdbc5328a8b89b5f8783c1fd83a9e3e939001f22bc17386d88e9ea72c1
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/2017/01/aimplas.png HTTP/1.1
Host: grupoinden.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://grupoinden.com/en/start/
Cookie: pll_language=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 06 Oct 2022 14:52:20 GMT
Content-Type: image/png
Content-Length: 8930
Last-Modified: Wed, 25 Jan 2017 10:11:47 GMT
Connection: keep-alive
ETag: "588879e3-22e2"
X-Powered-By: PleskLin
Accept-Ranges: bytes
grupoinden.com/wp-content/uploads/2017/01/ibiae.png
5.56.56.34200 OK 6.6 kB URL HTTP/1.1 grupoinden.com/wp-content/uploads/2017/01/ibiae.png
IP 5.56.56.34:0
ASN #57286 Gigas Hosting S.A.
File type PNG image data, 170 x 90, 8-bit/color RGBA, non-interlaced\012- data
Hash 0bb4f79ab7cce6f30c61e1485dc1abe1
8811bc2aeac2e67301d109755088f9d225b830e6
aaf5cb2ac0891d6e118bafa4223257e0b826559402660f15d54bb515a57e2056
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/2017/01/ibiae.png HTTP/1.1
Host: grupoinden.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://grupoinden.com/en/start/
Cookie: pll_language=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 06 Oct 2022 14:52:20 GMT
Content-Type: image/png
Content-Length: 6638
Last-Modified: Wed, 25 Jan 2017 10:11:52 GMT
Connection: keep-alive
ETag: "588879e8-19ee"
X-Powered-By: PleskLin
Accept-Ranges: bytes
grupoinden.com/wp-content/uploads/2017/01/empresas-solidarias.png
5.56.56.34200 OK 7.9 kB URL HTTP/1.1 grupoinden.com/wp-content/uploads/2017/01/empresas-solidarias.png
IP 5.56.56.34:0
ASN #57286 Gigas Hosting S.A.
File type PNG image data, 170 x 90, 8-bit/color RGBA, non-interlaced\012- data
Hash f82b67e970105f2e0030f9ce8cad8c9e
c316151fdf71d771070a6f261cb9fd3c0d6c2a65
82b7afe11e2c95e203e899173a8993339c9daaf24097773d2b8610a34f41b381
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/2017/01/empresas-solidarias.png HTTP/1.1
Host: grupoinden.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://grupoinden.com/en/start/
Cookie: pll_language=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 06 Oct 2022 14:52:20 GMT
Content-Type: image/png
Content-Length: 7890
Last-Modified: Wed, 25 Jan 2017 10:11:49 GMT
Connection: keep-alive
ETag: "588879e5-1ed2"
X-Powered-By: PleskLin
Accept-Ranges: bytes
maps.gstatic.com/mapfiles/openhand_8_8.cur
142.250.74.163200 OK 326 B URL HTTP/2 maps.gstatic.com/mapfiles/openhand_8_8.cur
IP 142.250.74.163:0
File type MS Windows cursor resource - 1 icon, 32x32, 2 colors, hotspot @8x8\012- data
Hash feff9159f56cb2069041d660b484eb07
0d0a08cf25a258511957f357b89d3908f3c5e6e3
7342f390b12f636d14e25f698fc5e38cf6240994dc0c07fefbbb4e78ec4d03c7
GET /mapfiles/openhand_8_8.cur HTTP/1.1
Host: maps.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://grupoinden.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
content-type: image/bmp
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/geo-tactile
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="geo-tactile"
report-to: {"group":"geo-tactile","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/geo-tactile"}]}
content-length: 326
date: Thu, 06 Oct 2022 14:52:20 GMT
expires: Thu, 06 Oct 2022 14:52:20 GMT
cache-control: private, max-age=31536000
last-modified: Tue, 18 May 2021 19:15:00 GMT
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
grupoinden.com/wp-content/uploads/2017/01/GrupoInden_IndenPharma.png
5.56.56.34200 OK 4.6 kB URL HTTP/1.1 grupoinden.com/wp-content/uploads/2017/01/GrupoInden_IndenPharma.png
IP 5.56.56.34:0
ASN #57286 Gigas Hosting S.A.
File type PNG image data, 512 x 213, 8-bit/color RGBA, non-interlaced\012- data
Hash f44a403f8a4cb6a3396f13d722e3db33
16b3e73c272335750c046ae3c84e6cfdc0b2675f
efa891f654cdf226c776bc6c2e664642a7727197f321e08bdb7681a47d122053
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/2017/01/GrupoInden_IndenPharma.png HTTP/1.1
Host: grupoinden.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://grupoinden.com/en/start/
Cookie: pll_language=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 06 Oct 2022 14:52:20 GMT
Content-Type: image/png
Content-Length: 4597
Last-Modified: Tue, 17 Jan 2017 16:10:23 GMT
Connection: keep-alive
ETag: "587e41ef-11f5"
X-Powered-By: PleskLin
Accept-Ranges: bytes
grupoinden.com/wp-content/uploads/2017/01/GrupoInden_IndenPlasticos.png
5.56.56.34200 OK 17 kB URL HTTP/1.1 grupoinden.com/wp-content/uploads/2017/01/GrupoInden_IndenPlasticos.png
IP 5.56.56.34:0
ASN #57286 Gigas Hosting S.A.
File type PNG image data, 512 x 213, 8-bit/color RGBA, non-interlaced\012- data
Hash ad29501706af65e3f78728ac7034c2a5
e45c8e50e6424765fb3856f5ec03244c62c6abd1
50ed89b777ae5554ca21dd9fd4518e2686679ad0b277fec0718536dc4603541f
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/2017/01/GrupoInden_IndenPlasticos.png HTTP/1.1
Host: grupoinden.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://grupoinden.com/en/start/
Cookie: pll_language=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 06 Oct 2022 14:52:20 GMT
Content-Type: image/png
Content-Length: 16685
Last-Modified: Tue, 17 Jan 2017 16:10:25 GMT
Connection: keep-alive
ETag: "587e41f1-412d"
X-Powered-By: PleskLin
Accept-Ranges: bytes
grupoinden.com/wp-content/uploads/2017/02/inden-pharma-asiste-a-la-feria-pharmapack-europe-2-570x730.jpg
5.56.56.34200 OK 42 kB URL HTTP/1.1 grupoinden.com/wp-content/uploads/2017/02/inden-pharma-asiste-a-la-feria-pharmapack-europe-2-570x730.jpg
IP 5.56.56.34:0
ASN #57286 Gigas Hosting S.A.
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 82", baseline, precision 8, 570x730, components 3\012- data
Hash d4161f1cc3316ddc45478e2c7568e499
d7f7c78d9bd58f7515dcc9ac786fb64e5a4d42f4
d216862f82207bc6229ad0b0ee835970a93327bd7124047f8ef684fee893b25e
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/2017/02/inden-pharma-asiste-a-la-feria-pharmapack-europe-2-570x730.jpg HTTP/1.1
Host: grupoinden.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://grupoinden.com/en/start/
Cookie: pll_language=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 06 Oct 2022 14:52:20 GMT
Content-Type: image/jpeg
Content-Length: 42112
Last-Modified: Mon, 06 Feb 2017 10:40:17 GMT
Connection: keep-alive
ETag: "58985291-a480"
X-Powered-By: PleskLin
Accept-Ranges: bytes
grupoinden.com/wp-content/uploads/2017/02/denna-ga%CC%88ller_pharma-outsourcing-2016-570x350.png
5.56.56.34200 OK 83 kB URL HTTP/1.1 grupoinden.com/wp-content/uploads/2017/02/denna-ga%CC%88ller_pharma-outsourcing-2016-570x350.png
IP 5.56.56.34:0
ASN #57286 Gigas Hosting S.A.
File type PNG image data, 570 x 350, 8-bit/color RGBA, non-interlaced\012- data
Hash 1fe4ef29a70870b71bbe7b7344960e85
2cb05662d8d570970cb4d20282f34b25e883bc7a
ed248c71334254a466ae2f3338ef180050a97a7fdd2b982749008535c4482ed2
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/2017/02/denna-ga%CC%88ller_pharma-outsourcing-2016-570x350.png HTTP/1.1
Host: grupoinden.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://grupoinden.com/en/start/
Cookie: pll_language=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 06 Oct 2022 14:52:20 GMT
Content-Type: image/png
Content-Length: 83312
Last-Modified: Mon, 06 Feb 2017 10:40:17 GMT
Connection: keep-alive
ETag: "58985291-14570"
X-Powered-By: PleskLin
Accept-Ranges: bytes
grupoinden.com/wp-content/uploads/2017/02/imagen_pharmtech-2-570x350.png
5.56.56.34200 OK 235 kB URL HTTP/1.1 grupoinden.com/wp-content/uploads/2017/02/imagen_pharmtech-2-570x350.png
IP 5.56.56.34:0
ASN #57286 Gigas Hosting S.A.
File type PNG image data, 570 x 350, 8-bit/color RGBA, non-interlaced\012- data
Size 235 kB (235158 bytes)
Hash 3400776d4dc5cdf0b14535c68c615b94
e53b0aebce94a6760d1f2d921659d484aee51264
f4c1773d474360ffb35d69ec2b7b8da1b5ab972b0846f3610518255ddfef2ad8
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/2017/02/imagen_pharmtech-2-570x350.png HTTP/1.1
Host: grupoinden.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://grupoinden.com/en/start/
Cookie: pll_language=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 06 Oct 2022 14:52:20 GMT
Content-Type: image/png
Content-Length: 235158
Last-Modified: Mon, 06 Feb 2017 10:40:17 GMT
Connection: keep-alive
ETag: "58985291-39696"
X-Powered-By: PleskLin
Accept-Ranges: bytes
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash f24f49dce99bf22d6f1834c2f702f1f4
5c683d0f6be8cd1a60d95a0cb892007f4363005a
3b3e804ba36f52b1aaad872cd62a8b1f67d59a41c62a68c96d13605103329ff1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 06 Oct 2022 14:52:21 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash eac86f868b3967f1946c7f5fc712b25f
e2ae8eb09715a0af0791c085eb35bf66e0548e30
bceb14e7a478c0e34a0f1d8286eb954566c62051e996bc36189de922a76a6e06
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 06 Oct 2022 14:52:21 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
static.doubleclick.net/instream/ad_status.js
142.250.74.166200 OK 29 B URL HTTP/2 static.doubleclick.net/instream/ad_status.js
IP 142.250.74.166:0
Hash 1fa71744db23d0f8df9cce6719defcb7
e4be9b7136697942a036f97cf26ebaf703ad2067
eed0dc1fdb5d97ed188ae16fd5e1024a5bb744af47340346be2146300a6c54b9
GET /instream/ad_status.js HTTP/1.1
Host: static.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="ads-doubleclick-media"
report-to: {"group":"ads-doubleclick-media","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-doubleclick-media"}]}
timing-allow-origin: *
content-length: 29
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 06 Oct 2022 14:42:37 GMT
expires: Thu, 06 Oct 2022 14:57:37 GMT
cache-control: public, max-age=900
age: 584
last-modified: Thu, 12 Dec 2013 23:40:16 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash eac86f868b3967f1946c7f5fc712b25f
e2ae8eb09715a0af0791c085eb35bf66e0548e30
bceb14e7a478c0e34a0f1d8286eb954566c62051e996bc36189de922a76a6e06
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 06 Oct 2022 14:52:21 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 96423370618a4e8cef79532d1bebee5b
4c0a07466a54f9355819062fb899f86f21716876
1c6ca25ca73d54ab1186a44ef9b3d3ac75d936a4acc11e4d3dbb103a8cb150e2
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 06 Oct 2022 14:52:21 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
googleads.g.doubleclick.net/pagead/id
142.250.74.34302 Found 0 B URL HTTP/2 googleads.g.doubleclick.net/pagead/id
IP 142.250.74.34:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pagead/id HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
location: https://googleads.g.doubleclick.net/pagead/id?slf_rd=1
access-control-allow-credentials: true
access-control-allow-origin: https://www.youtube.com
date: Thu, 06 Oct 2022 14:52:21 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
server: cafe
content-length: 0
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
googleads.g.doubleclick.net/pagead/id
142.250.74.34302 Found 0 B URL HTTP/2 googleads.g.doubleclick.net/pagead/id
IP 142.250.74.34:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pagead/id HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
location: https://googleads.g.doubleclick.net/pagead/id?slf_rd=1
access-control-allow-credentials: true
access-control-allow-origin: https://www.youtube.com
date: Thu, 06 Oct 2022 14:52:21 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
server: cafe
content-length: 0
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
142.250.74.138200 OK 0 B URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
IP 142.250.74.138:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /$rpc/google.internal.waa.v1.Waa/Create HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-goog-api-key,x-user-agent
Referer: https://www.youtube.com/
Origin: https://www.youtube.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://www.youtube.com
vary: origin, referer, x-origin
access-control-allow-credentials: true
access-control-allow-methods: DELETE,GET,HEAD,OPTIONS,PATCH,POST,PUT
access-control-allow-headers: content-type,x-goog-api-key,x-user-agent
access-control-max-age: 3600
date: Thu, 06 Oct 2022 14:52:21 GMT
content-type: text/html
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 96423370618a4e8cef79532d1bebee5b
4c0a07466a54f9355819062fb899f86f21716876
1c6ca25ca73d54ab1186a44ef9b3d3ac75d936a4acc11e4d3dbb103a8cb150e2
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 06 Oct 2022 14:52:21 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash eac86f868b3967f1946c7f5fc712b25f
e2ae8eb09715a0af0791c085eb35bf66e0548e30
bceb14e7a478c0e34a0f1d8286eb954566c62051e996bc36189de922a76a6e06
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 06 Oct 2022 14:52:21 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
142.250.74.138200 OK 31 kB URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
IP 142.250.74.138:0
File type JSON data\012- , ASCII text, with very long lines (65536), with no line terminators
Hash d8532aec4a5640c43cd0b3dbc922e58c
83105793410e688419f4f325badf8bdde7813d43
1e662afaff5450702d6c90fe7bc6cd13c5b9586a8d6cd9b388f53b40a189530b
POST /$rpc/google.internal.waa.v1.Waa/Create HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Api-Key: AIzaSyDyT5W0Jh49F30Pqqtyfdf7pDLFKLJoAnw
Content-Type: application/json+protobuf
X-User-Agent: grpc-web-javascript/0.1
Content-Length: 24
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json+protobuf; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Thu, 06 Oct 2022 14:52:21 GMT
server: ESF
cache-control: private
content-length: 30862
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.youtube.com
access-control-allow-credentials: true
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
142.250.74.138200 OK 31 kB URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
IP 142.250.74.138:0
File type JSON data\012- , ASCII text, with very long lines (65536), with no line terminators
Hash 5397d2371979b7f39348829be5d21557
fdad0c3c716229788e919cff38aad683ea5fbff2
37db130218f81202b374bc5a69e5bc3edb5cb7e336aa0970bda11cc73634075d
POST /$rpc/google.internal.waa.v1.Waa/Create HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Api-Key: AIzaSyDyT5W0Jh49F30Pqqtyfdf7pDLFKLJoAnw
Content-Type: application/json+protobuf
X-User-Agent: grpc-web-javascript/0.1
Content-Length: 24
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json+protobuf; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Thu, 06 Oct 2022 14:52:21 GMT
server: ESF
cache-control: private
content-length: 30808
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.youtube.com
access-control-allow-credentials: true
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 130ee302a2d581b152c8beccdc64866e
41fba8278d61fd6638376868fbe50c752f858b44
5345486b353cd67707512700d28f5937d9ad53f23b590e82cb624f1e509c1943
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 06 Oct 2022 14:52:21 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 40a4de06678d96242b71d5318f2fd4ef
546a7d1d92df81916f14155943427b5453ae3924
aed9af25ae57c181702a137d48cb00f5b30297180161451de3b628359dc9ec6f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 06 Oct 2022 14:52:21 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.com/js/th/qs_eGd-h9f3_frMeplByuCjrJjGTr5iyl3j-JE2Mo0s.js
142.250.74.164200 OK 14 kB URL HTTP/2 www.google.com/js/th/qs_eGd-h9f3_frMeplByuCjrJjGTr5iyl3j-JE2Mo0s.js
IP 142.250.74.164:0
File type ASCII text, with very long lines (36351)
Hash fca4c84446cae474dbf63fcf44f061ca
399275019a515b324eb48ac6f2042f30dd15cd18
86a4021c55d56c050bc7e8de79f895d7555279bccbc8777f975f0945a5a2a4f2
GET /js/th/qs_eGd-h9f3_frMeplByuCjrJjGTr5iyl3j-JE2Mo0s.js HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/botguard-scs
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="botguard-scs"
report-to: {"group":"botguard-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/botguard-scs"}]}
content-length: 14350
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 05 Oct 2022 16:28:36 GMT
expires: Thu, 05 Oct 2023 16:28:36 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 27 Sep 2022 17:00:00 GMT
content-type: text/javascript
age: 80625
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 58ac1b886710ef98c8b70a37dcc2b855
ed76f180385d65285525c3426857e1880e2817c8
7fd9a97b66875a6c87413705781a8800ab15e8faaeb821364914ca2d0dd9c890
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 06 Oct 2022 14:52:21 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
i.ytimg.com/vi_webp/b7VL-2O5FIw/sddefault.webp
142.250.74.118200 OK 30 kB URL HTTP/2 i.ytimg.com/vi_webp/b7VL-2O5FIw/sddefault.webp
IP 142.250.74.118:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash 1767195a2f525e640dce5976d8a83818
b07fc110253f6b4076822a42430d41262ea8408b
bcc94822292f90c261b9f738b1a66bae57f31ee2262d9e27d2d2ebc57dbc3045
GET /vi_webp/b7VL-2O5FIw/sddefault.webp HTTP/1.1
Host: i.ytimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
content-type: image/webp
vary: Origin
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 30472
date: Thu, 06 Oct 2022 14:52:21 GMT
expires: Thu, 06 Oct 2022 16:52:21 GMT
cache-control: public, max-age=7200
etag: "1458034868"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 130ee302a2d581b152c8beccdc64866e
41fba8278d61fd6638376868fbe50c752f858b44
5345486b353cd67707512700d28f5937d9ad53f23b590e82cb624f1e509c1943
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 06 Oct 2022 14:52:21 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
yt3.ggpht.com/ytc/AMLnZu91uXcPRLrYr5oT9s0K3pq7I6pN6UufnUhk8jA7UA=s68-c-k-c0x00ffffff-no-rj
142.250.74.161200 OK 468 B URL HTTP/2 yt3.ggpht.com/ytc/AMLnZu91uXcPRLrYr5oT9s0K3pq7I6pN6UufnUhk8jA7UA=s68-c-k-c0x00ffffff-no-rj
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=2, software=Google], baseline, precision 8, 68x68, components 3\012- data
Hash a082bd0b2be143247d4d9d0d85d5c4a7
b8402764447b88c320f6b4dca76084dded19c88d
023f7b67612b8ef720244f9bbbc10ce0e803d1bb92274db56ede17f67c23b835
GET /ytc/AMLnZu91uXcPRLrYr5oT9s0K3pq7I6pN6UufnUhk8jA7UA=s68-c-k-c0x00ffffff-no-rj HTTP/1.1
Host: yt3.ggpht.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "v9a"
expires: Fri, 07 Oct 2022 14:52:21 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="unnamed.jpg"
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Thu, 06 Oct 2022 14:52:21 GMT
server: fife
content-length: 468
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
grupoinden.com/wp-content/plugins/revslider/public/assets/assets/loader.gif
5.56.56.34200 OK 2.5 kB URL HTTP/1.1 grupoinden.com/wp-content/plugins/revslider/public/assets/assets/loader.gif
IP 5.56.56.34:0
ASN #57286 Gigas Hosting S.A.
File type GIF image data, version 89a, 24 x 24\012- data
Hash 4b3afb84b2b71ef56df09997a350bd04
accdac8a7abeab0e21c49539aad0a973addb28ef
9034d5d34015e4b05d2c1d1a8dc9f6ec9d59bd96d305eb9e24e24e65c591a645
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/plugins/revslider/public/assets/assets/loader.gif HTTP/1.1
Host: grupoinden.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://grupoinden.com/wp-content/plugins/revslider/public/assets/css/rs6.css
Cookie: pll_language=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 06 Oct 2022 14:52:21 GMT
Content-Type: image/gif
Content-Length: 2545
Last-Modified: Wed, 17 Mar 2021 09:08:24 GMT
Connection: keep-alive
ETag: "6051c708-9f1"
X-Powered-By: PleskLin
Accept-Ranges: bytes
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 58ac1b886710ef98c8b70a37dcc2b855
ed76f180385d65285525c3426857e1880e2817c8
7fd9a97b66875a6c87413705781a8800ab15e8faaeb821364914ca2d0dd9c890
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 06 Oct 2022 14:52:21 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
grupoinden.com/wp-content/uploads/2017/02/PlasticosInden_icon-map-marker_4.png
5.56.56.34200 OK 3.0 kB URL HTTP/1.1 grupoinden.com/wp-content/uploads/2017/02/PlasticosInden_icon-map-marker_4.png
IP 5.56.56.34:0
ASN #57286 Gigas Hosting S.A.
File type PNG image data, 75 x 75, 8-bit/color RGBA, non-interlaced\012- data
Hash 4a726bb9165bbda46aa2500679b3a0ba
0d45a118e9a4b00133933ca3a9d707dcafbe3261
d11afdf063e2cbc595d0adaef62462f1468e61a37b65aaba42158dc2c2c0ef68
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/2017/02/PlasticosInden_icon-map-marker_4.png HTTP/1.1
Host: grupoinden.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://grupoinden.com/en/start/
Cookie: pll_language=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 06 Oct 2022 14:52:21 GMT
Content-Type: image/png
Content-Length: 3021
Last-Modified: Fri, 03 Feb 2017 11:45:57 GMT
Connection: keep-alive
ETag: "58946d75-bcd"
X-Powered-By: PleskLin
Accept-Ranges: bytes
grupoinden.com/wp-content/uploads/2017/02/IndenPharma_map-marker_4.png
5.56.56.34200 OK 1.1 kB URL HTTP/1.1 grupoinden.com/wp-content/uploads/2017/02/IndenPharma_map-marker_4.png
IP 5.56.56.34:0
ASN #57286 Gigas Hosting S.A.
File type PNG image data, 75 x 75, 8-bit/color RGBA, non-interlaced\012- data
Hash cccad855eb74537ad4314bf2f22af935
221e89a71e028fe357e2718857515a8bebd55df3
763ad1e7b994a257591147530a287fd28d6afbdbaec14ab0bf00a53f9a5e6b5b
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/2017/02/IndenPharma_map-marker_4.png HTTP/1.1
Host: grupoinden.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://grupoinden.com/en/start/
Cookie: pll_language=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 06 Oct 2022 14:52:21 GMT
Content-Type: image/png
Content-Length: 1145
Last-Modified: Fri, 03 Feb 2017 11:45:56 GMT
Connection: keep-alive
ETag: "58946d74-479"
X-Powered-By: PleskLin
Accept-Ranges: bytes
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6476b35e-8b14-44b0-a85a-4793280f25c1.jpeg
34.120.237.76200 OK 3.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6476b35e-8b14-44b0-a85a-4793280f25c1.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 1a1a279f8386262762dcf70621e06ed5
0e1d6cefe5ffe1994f26322962df8b0a13743339
a4146e8a0561009b63c55d0c13673958546b96f684a9c5a43a1f3200782798e9
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6476b35e-8b14-44b0-a85a-4793280f25c1.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 3777
x-amzn-requestid: 093c576f-e1f7-4d45-9f8c-7ca3e7539313
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZjPtDEpSIAMF_Nw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633df986-3cbcc83c1db24bbf193c3047;Sampled=0
x-amzn-remapped-date: Wed, 05 Oct 2022 21:39:18 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P2
x-cache: Miss from cloudfront
x-amz-cf-id: GXneoYCI_hqJxLyI-RAxkJJf08pBsc6usoQlztb3HHPQSd1PDh7kgQ==
via: 1.1 86b676273517904f44af31586adb06ae.cloudfront.net (CloudFront), 1.1 c21a0d27ceec21e266c9f962d0349438.cloudfront.net (CloudFront), 1.1 google
date: Wed, 05 Oct 2022 21:52:47 GMT
age: 61177
etag: "0e1d6cefe5ffe1994f26322962df8b0a13743339"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Lato%3A100%2C300%2C400%2C600%2C700%2C900%7COpen+Sans%3A700%2C300%2C600%2C400%7CRaleway%3A900%7CPlayfair+Display%7C&ver=5.7.7
142.250.74.10200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Lato%3A100%2C300%2C400%2C600%2C700%2C900%7COpen+Sans%3A700%2C300%2C600%2C400%7CRaleway%3A900%7CPlayfair+Display%7C&ver=5.7.7
IP 142.250.74.10:0
GET /css?family=Lato%3A100%2C300%2C400%2C600%2C700%2C900%7COpen+Sans%3A700%2C300%2C600%2C400%7CRaleway%3A900%7CPlayfair+Display%7C&ver=5.7.7 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://grupoinden.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 06 Oct 2022 14:52:19 GMT
date: Thu, 06 Oct 2022 14:52:19 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Lato%3A700%7CQuicksand%3A700%7CBitter%3A700%2C400italic&subset=latin-ext%2Clatin&ver=1615986874
142.250.74.10200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Lato%3A700%7CQuicksand%3A700%7CBitter%3A700%2C400italic&subset=latin-ext%2Clatin&ver=1615986874
IP 142.250.74.10:0
GET /css?family=Lato%3A700%7CQuicksand%3A700%7CBitter%3A700%2C400italic&subset=latin-ext%2Clatin&ver=1615986874 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://grupoinden.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 06 Oct 2022 14:52:19 GMT
date: Thu, 06 Oct 2022 14:52:19 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
grupoinden.com/wp-content/uploads/2017/01/grupo-inden_home_slider_05.jpg
5.56.56.34200 OK 0 B URL HTTP/1.1 grupoinden.com/wp-content/uploads/2017/01/grupo-inden_home_slider_05.jpg
IP 5.56.56.34:0
ASN #57286 Gigas Hosting S.A.
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/2017/01/grupo-inden_home_slider_05.jpg HTTP/1.1
Host: grupoinden.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://grupoinden.com/en/start/
Cookie: pll_language=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 06 Oct 2022 14:52:20 GMT
Content-Type: image/jpeg
Content-Length: 282467
Last-Modified: Tue, 17 Jan 2017 15:17:57 GMT
Connection: keep-alive
ETag: "587e35a5-44f63"
X-Powered-By: PleskLin
Accept-Ranges: bytes
grupoinden.com/wp-includes/js/jquery/jquery.min.js
5.56.56.34200 OK 0 B URL HTTP/1.1 grupoinden.com/wp-includes/js/jquery/jquery.min.js
IP 5.56.56.34:0
ASN #57286 Gigas Hosting S.A.
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-includes/js/jquery/jquery.min.js HTTP/1.1
Host: grupoinden.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://grupoinden.com/en/start/
Cookie: pll_language=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 06 Oct 2022 14:52:19 GMT
Content-Type: application/javascript
Content-Length: 89496
Last-Modified: Tue, 16 Mar 2021 17:38:04 GMT
Connection: keep-alive
ETag: "6050ecfc-15d98"
X-Powered-By: PleskLin
Accept-Ranges: bytes
fonts.googleapis.com/css?family=Roboto:400%7CQuicksand:700
142.250.74.10200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Roboto:400%7CQuicksand:700
IP 142.250.74.10:0
GET /css?family=Roboto:400%7CQuicksand:700 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://grupoinden.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 06 Oct 2022 14:52:19 GMT
date: Thu, 06 Oct 2022 14:52:19 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.youtube.com/embed/b7VL-2O5FIw?feature=oembed
142.250.74.142200 OK 0 B URL HTTP/2 www.youtube.com/embed/b7VL-2O5FIw?feature=oembed
IP 142.250.74.142:0
GET /embed/b7VL-2O5FIw?feature=oembed HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://grupoinden.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html; charset=utf-8
x-content-type-options: nosniff
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Thu, 06 Oct 2022 14:52:19 GMT
strict-transport-security: max-age=31536000
report-to: {"group":"youtube_main","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube_main"}]}
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-platform=*, ch-ua-platform-version=*
cross-origin-opener-policy-report-only: same-origin; report-to="youtube_main"
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657?hl=en for more info."
content-encoding: br
server: ESF
x-xss-protection: 0
set-cookie: YSC=yLj9MBHK7VA; Domain=.youtube.com; Path=/; Secure; HttpOnly; SameSite=none
VISITOR_INFO1_LIVE=IB-u-KF9FsY; Domain=.youtube.com; Expires=Tue, 04-Apr-2023 14:52:19 GMT; Path=/; Secure; HttpOnly; SameSite=none
CONSENT=PENDING+213; expires=Sat, 05-Oct-2024 14:52:19 GMT; path=/; domain=.youtube.com; Secure
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2