Overview

URLandrespena.com.mx/
IP 198.54.115.22 (United States)
ASN#22612 NAMECHEAP-NET
UserAgentMozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Referer
Report completed2022-11-24 10:02:55 UTC
StatusLoading report..
IDS alerts0
Blocklist alert131
urlquery alerts No alerts detected
Tags None

Domain Summary (12)

Fully Qualifying Domain Name Rank First Seen Last Seen IP Comment
ocsp.digicert.com (2) 86 2012-05-21 07:02:23 UTC 2020-05-02 20:58:10 UTC 93.184.220.29
firefox.settings.services.mozilla.com (2) 867 2020-06-04 20:08:41 UTC 2022-11-23 05:36:31 UTC 34.102.187.140
content-signature-2.cdn.mozilla.net (1) 1152 No data No data 34.160.144.191
andrespena.com.mx (53) 0 2021-08-10 20:45:59 UTC 2022-11-18 20:36:00 UTC 198.54.115.22 Unknown ranking
ocsp.sectigo.com (1) 487 2019-11-29 11:50:24 UTC 2021-09-17 20:05:40 UTC 172.64.155.188
fonts.gstatic.com (6) 0 2014-09-09 00:40:21 UTC 2022-11-23 10:12:01 UTC 216.58.207.195 Domain (gstatic.com) ranked at: 540
r3.o.lencr.org (6) 344 No data No data 23.36.76.226
contile.services.mozilla.com (1) 1114 2021-05-27 18:32:35 UTC 2022-11-23 05:36:46 UTC 34.117.237.239
push.services.mozilla.com (1) 2140 2014-10-24 08:27:06 UTC 2020-05-03 10:09:39 UTC 52.13.173.34
ocsp.pki.goog (8) 175 2018-07-01 06:43:07 UTC 2020-05-02 20:58:16 UTC 142.250.74.3
img-getpocket.cdn.mozilla.net (6) 1631 2018-06-21 23:36:00 UTC 2020-02-19 04:43:25 UTC 34.120.237.76
fonts.googleapis.com (1) 8877 2013-06-10 20:14:26 UTC 2022-11-23 10:22:58 UTC 142.250.74.10

Network Intrusion Detection Systemsinfo

Suricata /w Emerging Threats Pro
 No alerts detected

Blocklists

OpenPhish
 No alerts detected

PhishTank
 No alerts detected

Fortinet's Web Filter
Scan Date Severity Indicator Comment
2022-11-24 2 andrespena.com.mx/ Malware
2022-11-24 2 andrespena.com.mx/ Malware
2022-11-24 2 andrespena.com.mx/wp-includes/css/dist/block-library/style.min.css?ver=6.1.1 Malware
2022-11-24 2 andrespena.com.mx/wp-content/uploads/elementor/css/post-5.css?ver=1628629786 Malware
2022-11-24 2 andrespena.com.mx/wp-content/plugins/elementor-pro/assets/css/frontend.min. (...) Malware
2022-11-24 2 andrespena.com.mx/wp-content/uploads/elementor/css/global.css?ver=1628629786 Malware
2022-11-24 2 andrespena.com.mx/wp-content/themes/andrespena/js/navigation.js?ver=1.0.0 Malware
2022-11-24 2 andrespena.com.mx/wp-content/plugins/elementor/assets/lib/font-awesome/css/ (...) Malware
2022-11-24 2 andrespena.com.mx/wp-content/plugins/elementor/assets/lib/font-awesome/css/ (...) Malware
2022-11-24 2 andrespena.com.mx/wp-content/plugins/elementor/assets/lib/font-awesome/css/ (...) Malware
2022-11-24 2 andrespena.com.mx/wp-content/plugins/elementor/assets/lib/animations/animat (...) Malware
2022-11-24 2 andrespena.com.mx/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 Malware
2022-11-24 2 andrespena.com.mx/wp-content/plugins/elementor-pro/assets/lib/smartmenus/jq (...) Malware
2022-11-24 2 andrespena.com.mx/wp-content/plugins/elementor-pro/assets/js/webpack-pro.ru (...) Malware
2022-11-24 2 andrespena.com.mx/wp-content/plugins/elementor/assets/js/webpack.runtime.mi (...) Malware
2022-11-24 2 andrespena.com.mx/wp-content/plugins/elementor-pro/assets/js/frontend.min.j (...) Malware
2022-11-24 2 andrespena.com.mx/wp-includes/js/jquery/ui/core.min.js?ver=1.13.2 Malware
2022-11-24 2 andrespena.com.mx/wp-content/plugins/elementor/assets/lib/waypoints/waypoin (...) Malware
2022-11-24 2 andrespena.com.mx/wp-content/plugins/elementor/assets/js/preloaded-modules. (...) Malware
2022-11-24 2 andrespena.com.mx/wp-content/plugins/elementor/assets/lib/dialog/dialog.min (...) Malware
2022-11-24 2 andrespena.com.mx/wp-content/plugins/elementor/assets/js/frontend.min.js?ve (...) Malware
2022-11-24 2 andrespena.com.mx/wp-content/plugins/elementor/assets/lib/swiper/swiper.min (...) Malware
2022-11-24 2 andrespena.com.mx/wp-content/plugins/elementor/assets/lib/font-awesome/webf (...) Malware
2022-11-24 2 andrespena.com.mx/wp-content/plugins/elementor/assets/lib/font-awesome/webf (...) Malware
2022-11-24 2 andrespena.com.mx/wp-content/plugins/elementor/assets/lib/font-awesome/webf (...) Malware

mnemonic secure dns
Scan Date Severity Indicator Comment
2022-11-24 2 andrespena.com.mx Sinkholed
2022-11-24 2 andrespena.com.mx Sinkholed
2022-11-24 2 andrespena.com.mx Sinkholed
2022-11-24 2 andrespena.com.mx Sinkholed
2022-11-24 2 andrespena.com.mx Sinkholed
2022-11-24 2 andrespena.com.mx Sinkholed
2022-11-24 2 andrespena.com.mx Sinkholed
2022-11-24 2 andrespena.com.mx Sinkholed
2022-11-24 2 andrespena.com.mx Sinkholed
2022-11-24 2 andrespena.com.mx Sinkholed
2022-11-24 2 andrespena.com.mx Sinkholed
2022-11-24 2 andrespena.com.mx Sinkholed
2022-11-24 2 andrespena.com.mx Sinkholed
2022-11-24 2 andrespena.com.mx Sinkholed
2022-11-24 2 andrespena.com.mx Sinkholed
2022-11-24 2 andrespena.com.mx Sinkholed
2022-11-24 2 andrespena.com.mx Sinkholed
2022-11-24 2 andrespena.com.mx Sinkholed
2022-11-24 2 andrespena.com.mx Sinkholed
2022-11-24 2 andrespena.com.mx Sinkholed
2022-11-24 2 andrespena.com.mx Sinkholed
2022-11-24 2 andrespena.com.mx Sinkholed
2022-11-24 2 andrespena.com.mx Sinkholed
2022-11-24 2 andrespena.com.mx Sinkholed
2022-11-24 2 andrespena.com.mx Sinkholed
2022-11-24 2 andrespena.com.mx Sinkholed
2022-11-24 2 andrespena.com.mx Sinkholed
2022-11-24 2 andrespena.com.mx Sinkholed
2022-11-24 2 andrespena.com.mx Sinkholed
2022-11-24 2 andrespena.com.mx Sinkholed
2022-11-24 2 andrespena.com.mx Sinkholed
2022-11-24 2 andrespena.com.mx Sinkholed
2022-11-24 2 andrespena.com.mx Sinkholed
2022-11-24 2 andrespena.com.mx Sinkholed
2022-11-24 2 andrespena.com.mx Sinkholed
2022-11-24 2 andrespena.com.mx Sinkholed
2022-11-24 2 andrespena.com.mx Sinkholed
2022-11-24 2 andrespena.com.mx Sinkholed
2022-11-24 2 andrespena.com.mx Sinkholed
2022-11-24 2 andrespena.com.mx Sinkholed
2022-11-24 2 andrespena.com.mx Sinkholed
2022-11-24 2 andrespena.com.mx Sinkholed
2022-11-24 2 andrespena.com.mx Sinkholed
2022-11-24 2 andrespena.com.mx Sinkholed
2022-11-24 2 andrespena.com.mx Sinkholed
2022-11-24 2 andrespena.com.mx Sinkholed
2022-11-24 2 andrespena.com.mx Sinkholed
2022-11-24 2 andrespena.com.mx Sinkholed
2022-11-24 2 andrespena.com.mx Sinkholed
2022-11-24 2 andrespena.com.mx Sinkholed
2022-11-24 2 andrespena.com.mx Sinkholed
2022-11-24 2 andrespena.com.mx Sinkholed
2022-11-24 2 andrespena.com.mx Sinkholed

Quad9 DNS
Scan Date Severity Indicator Comment
2022-11-24 2 andrespena.com.mx Sinkholed
2022-11-24 2 andrespena.com.mx Sinkholed
2022-11-24 2 andrespena.com.mx Sinkholed
2022-11-24 2 andrespena.com.mx Sinkholed
2022-11-24 2 andrespena.com.mx Sinkholed
2022-11-24 2 andrespena.com.mx Sinkholed
2022-11-24 2 andrespena.com.mx Sinkholed
2022-11-24 2 andrespena.com.mx Sinkholed
2022-11-24 2 andrespena.com.mx Sinkholed
2022-11-24 2 andrespena.com.mx Sinkholed
2022-11-24 2 andrespena.com.mx Sinkholed
2022-11-24 2 andrespena.com.mx Sinkholed
2022-11-24 2 andrespena.com.mx Sinkholed
2022-11-24 2 andrespena.com.mx Sinkholed
2022-11-24 2 andrespena.com.mx Sinkholed
2022-11-24 2 andrespena.com.mx Sinkholed
2022-11-24 2 andrespena.com.mx Sinkholed
2022-11-24 2 andrespena.com.mx Sinkholed
2022-11-24 2 andrespena.com.mx Sinkholed
2022-11-24 2 andrespena.com.mx Sinkholed
2022-11-24 2 andrespena.com.mx Sinkholed
2022-11-24 2 andrespena.com.mx Sinkholed
2022-11-24 2 andrespena.com.mx Sinkholed
2022-11-24 2 andrespena.com.mx Sinkholed
2022-11-24 2 andrespena.com.mx Sinkholed
2022-11-24 2 andrespena.com.mx Sinkholed
2022-11-24 2 andrespena.com.mx Sinkholed
2022-11-24 2 andrespena.com.mx Sinkholed
2022-11-24 2 andrespena.com.mx Sinkholed
2022-11-24 2 andrespena.com.mx Sinkholed
2022-11-24 2 andrespena.com.mx Sinkholed
2022-11-24 2 andrespena.com.mx Sinkholed
2022-11-24 2 andrespena.com.mx Sinkholed
2022-11-24 2 andrespena.com.mx Sinkholed
2022-11-24 2 andrespena.com.mx Sinkholed
2022-11-24 2 andrespena.com.mx Sinkholed
2022-11-24 2 andrespena.com.mx Sinkholed
2022-11-24 2 andrespena.com.mx Sinkholed
2022-11-24 2 andrespena.com.mx Sinkholed
2022-11-24 2 andrespena.com.mx Sinkholed
2022-11-24 2 andrespena.com.mx Sinkholed
2022-11-24 2 andrespena.com.mx Sinkholed
2022-11-24 2 andrespena.com.mx Sinkholed
2022-11-24 2 andrespena.com.mx Sinkholed
2022-11-24 2 andrespena.com.mx Sinkholed
2022-11-24 2 andrespena.com.mx Sinkholed
2022-11-24 2 andrespena.com.mx Sinkholed
2022-11-24 2 andrespena.com.mx Sinkholed
2022-11-24 2 andrespena.com.mx Sinkholed
2022-11-24 2 andrespena.com.mx Sinkholed
2022-11-24 2 andrespena.com.mx Sinkholed
2022-11-24 2 andrespena.com.mx Sinkholed
2022-11-24 2 andrespena.com.mx Sinkholed


Files

No files detected

Recent reports on same IP/ASN/Domain/Screenshot

Last 5 reports on IP: 198.54.115.22
Date UQ / IDS / BL URL IP
2022-11-24 10:02:55 +0000 0 - 0 - 131 andrespena.com.mx/ 198.54.115.22
2022-11-22 15:52:10 +0000 0 - 0 - 6 garcscorporation.com/tctu/index.php?euliqsimi-a=2 198.54.115.22
2022-11-19 01:27:18 +0000 0 - 0 - 2 jeanpiaget-leon.edu.mx/in/index.php?qbot.zip 198.54.115.22
2022-11-19 01:25:31 +0000 0 - 0 - 5 jazcobosnutriologa.com/ilos/index.php?qbot.zip 198.54.115.22
2022-11-19 01:11:17 +0000 0 - 0 - 4 vicvalsoftware.com/iif/index.php?qbot.zip 198.54.115.22


Last 5 reports on ASN: NAMECHEAP-NET
Date UQ / IDS / BL URL IP
2023-01-29 21:23:12 +0000 0 - 1 - 0 ferooman.com/ 192.64.119.45
2023-01-29 21:23:01 +0000 0 - 1 - 0 joshcrossportfolio.com/ 192.64.119.106
2023-01-29 20:33:59 +0000 0 - 0 - 2 autodiscover.fishing/ 192.64.119.245
2023-01-29 20:17:05 +0000 0 - 0 - 5 janiking.xyz/loader/uploads/Vpeswawqko_Gvaqkd (...) 198.54.116.205
2023-01-29 20:03:09 +0000 0 - 1 - 0 dlabs.army/ 192.64.119.43


Last 2 reports on domain: andrespena.com.mx
Date UQ / IDS / BL URL IP
2022-11-24 10:02:55 +0000 0 - 0 - 131 andrespena.com.mx/ 198.54.115.22
2022-11-15 17:04:09 +0000 0 - 0 - 8 andrespena.com.mx/ars/index.php?qbot.zip 198.54.115.22


Last 1 reports with similar screenshot
Date UQ / IDS / BL URL IP
2022-12-12 21:44:59 +0000 0 - 0 - 2 knowyourcustomer.store/ 195.201.179.80

JavaScript

Executed Scripts (21)

Executed Evals (0)

Executed Writes (0)


HTTP Transactions (88)


Request Response
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "B7F7A4D355ED3B847A5E28F16030D5CBC715D47326AEA20F292CD76DCAF59794"
Last-Modified: Mon, 21 Nov 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6601
Expires: Thu, 24 Nov 2022 11:52:45 GMT
Date: Thu, 24 Nov 2022 10:02:44 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 5874
Cache-Control: max-age=93986
Date: Thu, 24 Nov 2022 10:02:44 GMT
Etag: "637df674-1d7"
Expires: Fri, 25 Nov 2022 12:09:10 GMT
Last-Modified: Wed, 23 Nov 2022 10:31:16 GMT
Server: ECS (ska/F70F)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET /v1/ HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.102.187.140
HTTP/2 200 OK
content-type: application/json
                                        
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Content-Length, Alert, Backoff, Retry-After
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Thu, 24 Nov 2022 09:18:58 GMT
cache-control: public,max-age=3600
age: 2626
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size:   939
Md5:    4d7e4eed097b9c4e5d509419f1cfc85a
Sha1:   290bb3d428a7c6330e2e3d73a952b16f820896c8
Sha256: 0dc9ca0f57af15adcd416035e92794711434e3d53a1feff21d8481d6d500986c
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "FCDCEF8306AE31F20C366489E1F88AA40B08F154D25D45F4055C4F8CDEF47634"
Last-Modified: Mon, 21 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8990
Expires: Thu, 24 Nov 2022 12:32:34 GMT
Date: Thu, 24 Nov 2022 10:02:44 GMT
Connection: keep-alive

                                        
                                            GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1 
Host: content-signature-2.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         34.160.144.191
HTTP/2 200 OK
content-type: binary/octet-stream
                                        
x-amz-id-2: ANTCDtmyD3PCACAv+0t4xeu7peGv1Ss4jHW35FDcq/yJPzoVYGFKF4+uPwfi7dFdqEBJBH6PKUM=
x-amz-request-id: S7JFBJCP5W9E9JT9
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Thu, 24 Nov 2022 09:43:21 GMT
age: 1163
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PEM certificate\012- , ASCII text
Size:   5348
Md5:    9ebddc2b260d081ebbefee47c037cb28
Sha1:   492bad62a7ca6a74738921ef5ae6f0be5edebf39
Sha256: 74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5
                                        
                                            GET / HTTP/1.1 
Host: andrespena.com.mx
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

search
                                         198.54.115.22
HTTP/1.1 301 Moved Permanently
content-type: text/html
                                        
keep-alive: timeout=5, max=100
content-length: 707
date: Thu, 24 Nov 2022 10:02:44 GMT
server: LiteSpeed
location: https://andrespena.com.mx/
x-turbo-charged-by: LiteSpeed


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF, LF line terminators
Size:   707
Md5:    1304294c0823ca486542ba408ed761e3
Sha1:   b2a70fb2d810ca13985882e6981f33998823e83e
Sha256: 3bbe72f3baa8ec61de17a1d767fca58704769684b7abe9161d0c4eaf4c8f0982

Alerts:
  Blocklists:
    - fortinet: Malware
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /v1/tiles HTTP/1.1 
Host: contile.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.117.237.239
HTTP/2 200 OK
content-type: application/json
                                        
server: nginx
date: Thu, 24 Nov 2022 10:02:44 GMT
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   12
Md5:    23e88fb7b99543fb33315b29b1fad9d6
Sha1:   a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
Sha256: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
                                        
                                            GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.102.187.140
HTTP/2 200 OK
content-type: application/json
                                        
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Retry-After, Content-Length, Alert, Cache-Control, ETag, Pragma, Expires, Backoff, Last-Modified
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Thu, 24 Nov 2022 09:11:11 GMT
cache-control: public,max-age=3600
age: 3094
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size:   329
Md5:    0333b0655111aa68de771adfcc4db243
Sha1:   63f295a144ac87a7c8e23417626724eeca68a7eb
Sha256: 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
                                        
                                            POST / HTTP/1.1 
Host: ocsp.sectigo.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         172.64.155.188
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 24 Nov 2022 10:02:45 GMT
Content-Length: 471
Connection: keep-alive
Last-Modified: Wed, 23 Nov 2022 22:06:28 GMT
Expires: Wed, 30 Nov 2022 22:06:27 GMT
Etag: "6a776695035a703db2873eae9df3f33467193675"
Cache-Control: max-age=561221,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 76f14f912da3b4f1-OSL

                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 6482
Cache-Control: 'max-age=158059'
Date: Thu, 24 Nov 2022 10:02:45 GMT
Last-Modified: Thu, 24 Nov 2022 08:14:43 GMT
Server: ECS (ska/F70F)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET / HTTP/1.1 
Host: push.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: YcafU3l2+FxHTSURVCbRjQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

search
                                         52.13.173.34
HTTP/1.1 101 Switching Protocols
                                        
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: Lin1DIn9usQwJuJittvDs5uEA8w=

                                        
                                            GET / HTTP/1.1 
Host: andrespena.com.mx
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

search
                                         198.54.115.22
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
                                        
link: <https://andrespena.com.mx/wp-json/>; rel="https://api.w.org/", <https://andrespena.com.mx/wp-json/wp/v2/pages/76>; rel="alternate"; type="application/json", <https://andrespena.com.mx/>; rel=shortlink
last-modified: Thu, 24 Nov 2022 10:02:37 GMT
etag: "119d9e51fc32d18012c2685ff027fcdf"
vary: Accept-Encoding
content-length: 13352
content-encoding: gzip
date: Thu, 24 Nov 2022 10:02:45 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (8047)
Size:   13352
Md5:    119d9e51fc32d18012c2685ff027fcdf
Sha1:   3c75a1ed8367e606838573463fd5f567d017dfcc
Sha256: 2c5ea9cac52b3fc56d48aa9b9cae6459213ab3cd1daefedd2569c3464013894a

Alerts:
  Blocklists:
    - fortinet: Malware
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 24 Nov 2022 10:02:46 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 24 Nov 2022 10:02:46 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /wp-content/themes/andrespena/style.css?ver=1.0.0 HTTP/1.1 
Host: andrespena.com.mx
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://andrespena.com.mx/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         198.54.115.22
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=31536000
expires: Fri, 24 Nov 2023 10:02:46 GMT
last-modified: Tue, 10 Aug 2021 21:09:20 GMT
etag: "415a-6112eb00-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 4279
date: Thu, 24 Nov 2022 10:02:46 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 text
Size:   4279
Md5:    802db3c53ab8c6774f2305c59399593c
Sha1:   3024ff0ab9b8eebdc1551d7e99f81158bc8b49b1
Sha256: ddcaf388c3a2f6c410a2443809d87e587d86feaec7bca3c3487be4481b498faa

Alerts:
  Blocklists:
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-includes/css/classic-themes.min.css?ver=1 HTTP/1.1 
Host: andrespena.com.mx
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://andrespena.com.mx/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         198.54.115.22
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=31536000
expires: Fri, 24 Nov 2023 10:02:46 GMT
last-modified: Wed, 02 Nov 2022 09:37:41 GMT
etag: "d9-63623a65-0;;;"
accept-ranges: bytes
content-length: 217
date: Thu, 24 Nov 2022 10:02:46 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text
Size:   217
Md5:    95e891f28e44a9b314c09545d86be2b7
Sha1:   f9b13a8bd47273b086a0a07df15f314e0af0bc3e
Sha256: 5a5f39391fbf5b06db84b8f9716d53de575ee97a627d2c5f12f79a991a671eb5

Alerts:
  Blocklists:
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "A8E7585E49B01A64520051F8D38F499C8CB82645E3D146E6CA34378EAC684E69"
Last-Modified: Wed, 23 Nov 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12426
Expires: Thu, 24 Nov 2022 13:29:52 GMT
Date: Thu, 24 Nov 2022 10:02:46 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "A8E7585E49B01A64520051F8D38F499C8CB82645E3D146E6CA34378EAC684E69"
Last-Modified: Wed, 23 Nov 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12426
Expires: Thu, 24 Nov 2022 13:29:52 GMT
Date: Thu, 24 Nov 2022 10:02:46 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "A8E7585E49B01A64520051F8D38F499C8CB82645E3D146E6CA34378EAC684E69"
Last-Modified: Wed, 23 Nov 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12426
Expires: Thu, 24 Nov 2022 13:29:52 GMT
Date: Thu, 24 Nov 2022 10:02:46 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "A8E7585E49B01A64520051F8D38F499C8CB82645E3D146E6CA34378EAC684E69"
Last-Modified: Wed, 23 Nov 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12426
Expires: Thu, 24 Nov 2022 13:29:52 GMT
Date: Thu, 24 Nov 2022 10:02:46 GMT
Connection: keep-alive

                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1dd98515-d0af-440a-8f3d-4c9986928081.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 4309
x-amzn-requestid: a22b4d7e-e208-4bda-81c2-d13e6463380e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: blE0hGNioAMF_Tg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6371e81c-1b13846866f56a0e47675e56;Sampled=0
x-amzn-remapped-date: Mon, 14 Nov 2022 07:02:52 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 0sYKpJWi2Tv9Atz3PYXm5j7kmncAOxjcLcK4hgAkJ5b4pNMDmjdB6g==
via: 1.1 ddd913fbbe7367d44af4ac06097e7a2a.cloudfront.net (CloudFront), 1.1 28390a4d24ed4fdccd685d99cd06cf4e.cloudfront.net (CloudFront), 1.1 google
date: Thu, 24 Nov 2022 07:14:07 GMT
age: 10120
etag: "126771b86638108050cf57c0d12faa27f80f0edb"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   4309
Md5:    841a4b110022a99ddea6f7bf66df0fa1
Sha1:   126771b86638108050cf57c0d12faa27f80f0edb
Sha256: 240fbffc1f9104433297d3ff7afba2d0b58d7f1b13d9a9260a1bad25216665db
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb3bafc39-a86e-44d4-9bf3-97302a57c669.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 8306
x-amzn-requestid: 9506f26d-36cc-47a1-b6ac-b3f720e35981
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: b_c81GrAoAMF-4A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637c751e-68e3f822732b60db1875d538;Sampled=0
x-amzn-remapped-date: Tue, 22 Nov 2022 07:07:10 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: mlPd4834QnARhwlWKaja4Gx5-F5fm7PFu3y5g0Gg42x4xREP2xFR2w==
via: 1.1 2afae0d44e2540f472c0635ab62c232a.cloudfront.net (CloudFront), 1.1 57a21088b36c69a83578b5a5579df58e.cloudfront.net (CloudFront), 1.1 google
date: Thu, 24 Nov 2022 07:28:35 GMT
age: 9252
etag: "ffd4d9f932aacc8ab123d1ab46c983a3f581d171"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   8306
Md5:    b83dcf4ccde90ad94bb32da4fd35e524
Sha1:   ffd4d9f932aacc8ab123d1ab46c983a3f581d171
Sha256: cf217cf355e7bea4410efd22e89f5a4de4d154153f587f7cad53533a3fcfe1c4
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd52586ca-ed31-419d-866f-7a7d8c034cc2.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 6404
x-amzn-requestid: 5a69edc8-b240-4c21-ba0d-dc175b8ff3b5
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cCvY6HfnoAMFQag=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637dc5d2-4fd0613627b92d636337cbad;Sampled=0
x-amzn-remapped-date: Wed, 23 Nov 2022 07:03:46 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: IFITexwzwryUZMMwXj0ovSkRo4m3jhyjf4SqJWhXFv95wMfHqDDEGQ==
via: 1.1 446313511980eb02f28ff5a9a4147c0a.cloudfront.net (CloudFront), 1.1 f9d716a351f14a0ac1fac2449734849a.cloudfront.net (CloudFront), 1.1 google
date: Thu, 24 Nov 2022 07:11:58 GMT
age: 10249
etag: "e62b4e08c2813f67fa0f466b4f66d5d4c609526f"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   6404
Md5:    dcdebbc7d6d2f262afe69e6f2d97d58b
Sha1:   e62b4e08c2813f67fa0f466b4f66d5d4c609526f
Sha256: decdfd76f2b382026f13ba2cd07fceae8a8964b4157c0f4dcef6bcd061817b61
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5bda37a1-533d-48a6-bc76-7ecc9fe2dfc8.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 6426
x-amzn-requestid: 6f27f360-dd76-4aee-a9bc-cbd52cd80def
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cEvx8GtpIAMFvQA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637e933f-69fa8ba571cc62036406e6bf;Sampled=0
x-amzn-remapped-date: Wed, 23 Nov 2022 21:40:15 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: ow9srZWasko5f0TMk632PH2_NgfxBEwGPCXoRTp7gVxfDrP9st2opw==
via: 1.1 e5af640ced3aa8764b82c4bc3f7af38e.cloudfront.net (CloudFront), 1.1 ee8246c5442dace7525c74f6a799bb46.cloudfront.net (CloudFront), 1.1 google
date: Wed, 23 Nov 2022 22:03:45 GMT
age: 43142
etag: "c2430d901f2b4e4a463e90c540294f334553a246"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   6426
Md5:    eeac5ead5ce62f0d9e2d4bcefa946208
Sha1:   c2430d901f2b4e4a463e90c540294f334553a246
Sha256: 850a89160f840d7509806c5becd6b074a92613920474195f63d7e7a9cf18d908
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb020826f-fdb4-41cc-b94d-7a66bca91753.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 8441
x-amzn-requestid: c050c897-c6d4-44ef-93c2-cfbf32cd8bff
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cEvClG-AoAMFwxQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637e9210-039834877c2b792b5feb6819;Sampled=0
x-amzn-remapped-date: Wed, 23 Nov 2022 21:35:12 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: H31vJjvBF3eWF37DqfsaL-KxOnEHJS1JSmehtTYPhzjZjj-PIhm9pQ==
via: 1.1 8dbfaf7df256a75768461d934659b6b2.cloudfront.net (CloudFront), 1.1 591683988172c7980c4ebb318cbf18a8.cloudfront.net (CloudFront), 1.1 google
date: Wed, 23 Nov 2022 21:43:25 GMT
age: 44362
etag: "a4373037b8b379939b1b099c3ef63f8792e67579"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   8441
Md5:    dd3f1be747f6b2f1c35afb01db67b792
Sha1:   a4373037b8b379939b1b099c3ef63f8792e67579
Sha256: fdbd778a505e1928e9b5296b6150763c2dca9876ec0ef8f772e73ca386ab74d5
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fca5cb469-21a0-420a-875c-a81635b33f53.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 7993
x-amzn-requestid: 9f0ff853-4819-47cd-959d-658401ea5748
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cEvCsG5mIAMFqAQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637e9211-1c48b9223684f2942f8dd42d;Sampled=0
x-amzn-remapped-date: Wed, 23 Nov 2022 21:35:13 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 7YSXUV-LZpsI7vciFhuqt1EVr6YRkhxcOgMg8z8bxLcOE01_baf6Gg==
via: 1.1 d1151317ba32afe0e6370fd69fed222e.cloudfront.net (CloudFront), 1.1 1b74ccf4cb51eacf97a0e6d60ae46a3e.cloudfront.net (CloudFront), 1.1 google
date: Wed, 23 Nov 2022 21:47:06 GMT
etag: "43d1dec7fc06879988c9c3cadd800cc8145df988"
age: 44141
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   7993
Md5:    92c78302bcce1568eb6a5563100b932c
Sha1:   43d1dec7fc06879988c9c3cadd800cc8145df988
Sha256: 0dda9914306c8e3a7ea75eade8e762652d93907dd6c5a8cc81707d6d8098b60a
                                        
                                            GET /wp-includes/css/dist/block-library/style.min.css?ver=6.1.1 HTTP/1.1 
Host: andrespena.com.mx
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://andrespena.com.mx/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         198.54.115.22
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=31536000
expires: Fri, 24 Nov 2023 10:02:46 GMT
last-modified: Tue, 15 Nov 2022 20:50:26 GMT
etag: "172a9-6373fb92-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 11616
date: Thu, 24 Nov 2022 10:02:46 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (47826)
Size:   11616
Md5:    c4d7cc056b49b00e05cc29cc59aa3d5a
Sha1:   48c426bec60099d2a8628df430ed682c72aab42a
Sha256: 8009c12f2674a8d38401f4b5faad1fef2cfcd18a8c927ed2561ae9d7de9b57b5

Alerts:
  Blocklists:
    - fortinet: Malware
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.12.0 HTTP/1.1 
Host: andrespena.com.mx
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://andrespena.com.mx/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         198.54.115.22
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=31536000
expires: Fri, 24 Nov 2023 10:02:46 GMT
last-modified: Wed, 21 Jul 2021 08:51:28 GMT
etag: "450f-60f7e010-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3386
date: Thu, 24 Nov 2022 10:02:46 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (17633)
Size:   3386
Md5:    80f0e0e19feab011140c8ba9b08fc4ed
Sha1:   16aff641c49d27e541036cf59f7f58735e7ec992
Sha256: 97c3ccfcb1af7ff7f86d92d893b619054863f322b5687187f1366c6356bfc9d8

Alerts:
  Blocklists:
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-content/plugins/elementor/assets/css/frontend.min.css?ver=3.3.1 HTTP/1.1 
Host: andrespena.com.mx
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://andrespena.com.mx/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         198.54.115.22
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=31536000
expires: Fri, 24 Nov 2023 10:02:46 GMT
last-modified: Wed, 21 Jul 2021 08:51:28 GMT
etag: "1df43-60f7e010-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 15755
date: Thu, 24 Nov 2022 10:02:46 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (65497)
Size:   15755
Md5:    bd1e467b64919f0d21c9e622bbfec14b
Sha1:   06c4ea6c07dc04450dfaa9484c799e6ca67b9691
Sha256: c8ffcc287432ab9e09bdf9721f83f183eac57a6b6461ff8235d936547912d2a4

Alerts:
  Blocklists:
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-content/uploads/elementor/css/post-5.css?ver=1628629786 HTTP/1.1 
Host: andrespena.com.mx
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://andrespena.com.mx/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         198.54.115.22
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=31536000
expires: Fri, 24 Nov 2023 10:02:46 GMT
last-modified: Tue, 10 Aug 2021 21:09:46 GMT
etag: "cfa-6112eb1a-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 705
date: Thu, 24 Nov 2022 10:02:46 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (3322), with no line terminators
Size:   705
Md5:    96273466265753086105e6d9af68418c
Sha1:   e57461a23e9998aa2fca5d6dc7b0c87da585ec06
Sha256: 20c960b4c4bc66bee2297fba038775884e18f7585150e0afbbdd3a5d64214c0c

Alerts:
  Blocklists:
    - fortinet: Malware
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-content/uploads/elementor/css/post-76.css?ver=1662756239 HTTP/1.1 
Host: andrespena.com.mx
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://andrespena.com.mx/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         198.54.115.22
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=31536000
expires: Fri, 24 Nov 2023 10:02:46 GMT
last-modified: Fri, 09 Sep 2022 20:43:59 GMT
etag: "5535-631ba58f-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2163
date: Thu, 24 Nov 2022 10:02:46 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (19922)
Size:   2163
Md5:    5ef01ef34b877eb8fcb499b4eb528435
Sha1:   f47e68f44c5111ac4d12ac0fa5b843e3e6fe5042
Sha256: ee1cd49cfb113e37d465320bd051b02d835acf170c31b88b5790623cad1f65e5

Alerts:
  Blocklists:
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-content/plugins/elementor-pro/assets/css/frontend.min.css?ver=3.3.5 HTTP/1.1 
Host: andrespena.com.mx
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://andrespena.com.mx/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         198.54.115.22
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=31536000
expires: Fri, 24 Nov 2023 10:02:46 GMT
last-modified: Mon, 02 Aug 2021 16:37:56 GMT
etag: "399cb-61081f64-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 24766
date: Thu, 24 Nov 2022 10:02:46 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (65493)
Size:   24766
Md5:    fcdf6fd792bafd4160f0476be4b5b37f
Sha1:   8c20425d68ed365df97870560b84a758c448c140
Sha256: 5448d63caf8c59aac815e91b504a14b50246af7adf47073df77e90621df4879e

Alerts:
  Blocklists:
    - fortinet: Malware
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-content/uploads/elementor/css/global.css?ver=1628629786 HTTP/1.1 
Host: andrespena.com.mx
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://andrespena.com.mx/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         198.54.115.22
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=31536000
expires: Fri, 24 Nov 2023 10:02:46 GMT
last-modified: Tue, 10 Aug 2021 21:09:46 GMT
etag: "90d0-6112eb1a-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2488
date: Thu, 24 Nov 2022 10:02:46 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (13415)
Size:   2488
Md5:    8fc0e23b3ae122809abd27d9f295627a
Sha1:   d7c845f55f13e1852f2e44ba0cdf2a49e0e00956
Sha256: 8e2748fb2a44a7ec18b49f752d655d9543289bff0bf4b544bf7bbe615fbb9655

Alerts:
  Blocklists:
    - fortinet: Malware
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-content/uploads/elementor/css/post-73.css?ver=1655758184 HTTP/1.1 
Host: andrespena.com.mx
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://andrespena.com.mx/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         198.54.115.22
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=31536000
expires: Fri, 24 Nov 2023 10:02:46 GMT
last-modified: Mon, 20 Jun 2022 20:49:44 GMT
etag: "1911-62b0dd68-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 924
date: Thu, 24 Nov 2022 10:02:46 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (2898)
Size:   924
Md5:    b7da54618bb9413dc5a91e4fe4dce471
Sha1:   dc92936bf06e647ba5098e0c81d973e550a35c38
Sha256: aa5a59102fa1626656bc34e2b5af2aa4e155051c244dc9f6cb2b2e808c922209

Alerts:
  Blocklists:
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-content/themes/andrespena/js/navigation.js?ver=1.0.0 HTTP/1.1 
Host: andrespena.com.mx
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://andrespena.com.mx/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         198.54.115.22
HTTP/2 200 OK
content-type: application/x-javascript
                                        
cache-control: public, max-age=31536000
expires: Fri, 24 Nov 2023 10:02:46 GMT
last-modified: Tue, 10 Aug 2021 21:09:20 GMT
etag: "ba0-6112eb00-0;gz"
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 1121
date: Thu, 24 Nov 2022 10:02:46 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text
Size:   1121
Md5:    c2b33a404f13ef6af1b7df0d710e470f
Sha1:   40b50de945c6256f1b1e933e1c39e61a192491c3
Sha256: e55c7ebbf9542db852e06dabb157b3fa2f3186fa6202a0be5769a6678a5bfac8

Alerts:
  Blocklists:
    - fortinet: Malware
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-content/uploads/elementor/css/post-71.css?ver=1655758184 HTTP/1.1 
Host: andrespena.com.mx
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://andrespena.com.mx/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         198.54.115.22
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=31536000
expires: Fri, 24 Nov 2023 10:02:46 GMT
last-modified: Mon, 20 Jun 2022 20:49:44 GMT
etag: "1769-62b0dd68-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 984
date: Thu, 24 Nov 2022 10:02:46 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (3792)
Size:   984
Md5:    d9c71a483a21120fb7785d86cee71755
Sha1:   047937ae7408491457c44a721bf62beedad2ee92
Sha256: 852965a5652786c617474bb6898e3549f218bcbf915013130eb0a87df494167d

Alerts:
  Blocklists:
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/solid.min.css?ver=5.15.3 HTTP/1.1 
Host: andrespena.com.mx
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://andrespena.com.mx/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         198.54.115.22
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=31536000
expires: Fri, 24 Nov 2023 10:02:46 GMT
last-modified: Wed, 21 Jul 2021 08:51:28 GMT
etag: "29d-60f7e010-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 286
date: Thu, 24 Nov 2022 10:02:46 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (483)
Size:   286
Md5:    8828fa3c5bdcfa66615714a2b8c9d807
Sha1:   4f556d0b005ac7754af607418df445f8cf98e8b1
Sha256: 16950dcce60bc3ee2613b60439c99e7ed74d10245f59fe6f68346b7e72dd95e7

Alerts:
  Blocklists:
    - fortinet: Malware
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/regular.min.css?ver=5.15.3 HTTP/1.1 
Host: andrespena.com.mx
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://andrespena.com.mx/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         198.54.115.22
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=31536000
expires: Fri, 24 Nov 2023 10:02:46 GMT
last-modified: Wed, 21 Jul 2021 08:51:28 GMT
etag: "2a5-60f7e010-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 283
date: Thu, 24 Nov 2022 10:02:46 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (491)
Size:   283
Md5:    453a93dc816be89f942ebb253ff199fb
Sha1:   01563d6019803e3ff2a94c5397e7e771ee6f440d
Sha256: 36beebcd3778e04c8973faa581d07c7e7dc0bac2a77f637379e7d110383ab5d7

Alerts:
  Blocklists:
    - fortinet: Malware
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/fontawesome.min.css?ver=5.15.3 HTTP/1.1 
Host: andrespena.com.mx
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://andrespena.com.mx/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         198.54.115.22
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=31536000
expires: Fri, 24 Nov 2023 10:02:46 GMT
last-modified: Wed, 21 Jul 2021 08:51:28 GMT
etag: "e238-60f7e010-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 12133
date: Thu, 24 Nov 2022 10:02:46 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (57726)
Size:   12133
Md5:    f463afd8661ddc733305df1f0cbdaff2
Sha1:   77262f0209e75e340eb7014aba9cd8d69966032f
Sha256: c4b6541be58a0ca61549cd4562850315077880c459c019f01e835cf2d7b764de

Alerts:
  Blocklists:
    - fortinet: Malware
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/brands.min.css?ver=5.15.3 HTTP/1.1 
Host: andrespena.com.mx
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://andrespena.com.mx/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         198.54.115.22
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=31536000
expires: Fri, 24 Nov 2023 10:02:46 GMT
last-modified: Wed, 21 Jul 2021 08:51:28 GMT
etag: "2a3-60f7e010-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 284
date: Thu, 24 Nov 2022 10:02:46 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (489)
Size:   284
Md5:    dc279c928e2924b07a4a7575f8070ee8
Sha1:   0196756cacdb61ef40483af7ea982b699b0933de
Sha256: 80b6d9e3f0304f4199350c6015fd96084646c2a0121332bcb5a46d3956b7df5c

Alerts:
  Blocklists:
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-content/plugins/elementor/assets/lib/animations/animations.min.css?ver=3.3.1 HTTP/1.1 
Host: andrespena.com.mx
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://andrespena.com.mx/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         198.54.115.22
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=31536000
expires: Fri, 24 Nov 2023 10:02:46 GMT
last-modified: Wed, 21 Jul 2021 08:51:28 GMT
etag: "4824-60f7e010-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2442
date: Thu, 24 Nov 2022 10:02:46 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (10019)
Size:   2442
Md5:    d2db71c82a8f672aea59a3e050cd8cd7
Sha1:   af626566f94b3164e4310288cfb142431e8349a6
Sha256: bcd2c9c2ba22a48a8fabf9fbe5e947deb6404367e4be24f48326e302aead1180

Alerts:
  Blocklists:
    - fortinet: Malware
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1 
Host: andrespena.com.mx
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://andrespena.com.mx/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         198.54.115.22
HTTP/2 200 OK
content-type: application/x-javascript
                                        
cache-control: public, max-age=31536000
expires: Fri, 24 Nov 2023 10:02:46 GMT
last-modified: Wed, 18 Nov 2020 19:36:06 GMT
etag: "2bd8-5fb577a6-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3995
date: Thu, 24 Nov 2022 10:02:46 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (11126)
Size:   3995
Md5:    7e058b51f939eacfa31cdface14dded5
Sha1:   9d732e5afdeb42edef9e1b9631b7e95e054787cc
Sha256: 4ece5b00423755d8f4121ce382c8ea4dc44c241f28f150abe19caa85d0b0acc1

Alerts:
  Blocklists:
    - fortinet: Malware
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 24 Nov 2022 10:02:49 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://andrespena.com.mx
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         216.58.207.195
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 23 Nov 2022 18:53:49 GMT
expires: Thu, 23 Nov 2023 18:53:49 GMT
cache-control: public, max-age=31536000
age: 54540
last-modified: Wed, 11 May 2022 19:24:42 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 15860, version 1.0\012- data
Size:   15860
Md5:    e9f5aaf547f165386cd313b995dddd8e
Sha1:   acdef5603c2387b0e5bffd744b679a24a8bc1968
Sha256: f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 24 Nov 2022 10:02:49 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 24 Nov 2022 10:02:49 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 24 Nov 2022 10:02:49 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 24 Nov 2022 10:02:49 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /s/caladea/v7/kJE2BugZ7AAjhybUtaNY790SqQ.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://andrespena.com.mx
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         216.58.207.195
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 20568
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 23 Nov 2022 19:08:57 GMT
expires: Thu, 23 Nov 2023 19:08:57 GMT
cache-control: public, max-age=31536000
age: 53632
last-modified: Thu, 21 Apr 2022 16:46:59 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 20568, version 1.0\012- data
Size:   20568
Md5:    8163d6e51016221d7179af3b785213a0
Sha1:   a5d098d70064c3143cb383114be6685a055163db
Sha256: 04f388bfcafeea6847930d0f67c5da67decc6cb5a2188792a7d54cae57739b9d
                                        
                                            GET /s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://andrespena.com.mx
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         216.58.207.195
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 30928
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 17 Nov 2022 16:40:18 GMT
expires: Fri, 17 Nov 2023 16:40:18 GMT
cache-control: public, max-age=31536000
age: 580951
last-modified: Mon, 11 Jul 2022 18:57:39 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 30928, version 1.0\012- data
Size:   30928
Md5:    ac0d2859ea5f8fd6bcb3c305c08ec184
Sha1:   7f6c17e3e592cd8bd346b9cc261d8dd961b8aef7
Sha256: ae919a7c9f25f0fd97fc18e398ae8e453fcaae487e4a4cb4f896e7fecde4a780
                                        
                                            GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://andrespena.com.mx
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         216.58.207.195
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 23 Nov 2022 19:34:08 GMT
expires: Thu, 23 Nov 2023 19:34:08 GMT
cache-control: public, max-age=31536000
age: 52121
last-modified: Wed, 11 May 2022 19:24:48 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Size:   15744
Md5:    15d9f621c3bd1599f0169dcf0bd5e63e
Sha1:   7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
Sha256: f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
                                        
                                            GET /s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://andrespena.com.mx
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         216.58.207.195
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15920
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 23 Nov 2022 14:07:32 GMT
expires: Thu, 23 Nov 2023 14:07:32 GMT
cache-control: public, max-age=31536000
age: 71717
last-modified: Wed, 11 May 2022 19:24:45 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 15920, version 1.0\012- data
Size:   15920
Md5:    3a44e06eb954b96aa043227f3534189d
Sha1:   23cef6993ddb2b2979e8e7647fc3763694e2ba7d
Sha256: b019538234514166ec7665359d097403358f8a4c991901983922fb4d56989f1e
                                        
                                            GET /s/caladea/v7/kJEzBugZ7AAjhybUvRh9-g.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://andrespena.com.mx
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         216.58.207.195
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 20584
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 18 Nov 2022 23:41:44 GMT
expires: Sat, 18 Nov 2023 23:41:44 GMT
cache-control: public, max-age=31536000
age: 469265
last-modified: Thu, 21 Apr 2022 16:46:45 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 20584, version 1.0\012- data
Size:   20584
Md5:    56fa8592096c96d403fd84dda3266dfb
Sha1:   10dc7f453ee08253036c39d4b3f45ba0be42c6bd
Sha256: c8b687b97eee21e426bd2e2b66d93f848436b8bf885912ddf5f71149fbe62ce3
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 24 Nov 2022 10:02:49 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /wp-content/plugins/elementor-pro/assets/lib/smartmenus/jquery.smartmenus.min.js?ver=1.0.1 HTTP/1.1 
Host: andrespena.com.mx
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://andrespena.com.mx/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         198.54.115.22
HTTP/2 200 OK
content-type: application/x-javascript
                                        
cache-control: public, max-age=31536000
expires: Fri, 24 Nov 2023 10:02:46 GMT
last-modified: Mon, 02 Aug 2021 16:37:56 GMT
etag: "6272-61081f64-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 6935
date: Thu, 24 Nov 2022 10:02:46 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (25115)
Size:   6935
Md5:    e8d8c6e4997a420abc51e5fa8c1caa8b
Sha1:   39ae930f057de725cff8549eed82f31f8d0816c1
Sha256: 730b8265b47a7f9bf014b64fb5c27f9f1cff1051dbf53e60ceb3cc16def732cc

Alerts:
  Blocklists:
    - fortinet: Malware
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-content/plugins/elementor-pro/assets/js/webpack-pro.runtime.min.js?ver=3.3.5 HTTP/1.1 
Host: andrespena.com.mx
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://andrespena.com.mx/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         198.54.115.22
HTTP/2 200 OK
content-type: application/x-javascript
                                        
cache-control: public, max-age=31536000
expires: Fri, 24 Nov 2023 10:02:46 GMT
last-modified: Mon, 02 Aug 2021 16:37:56 GMT
etag: "1556-61081f64-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2255
date: Thu, 24 Nov 2022 10:02:46 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (5419)
Size:   2255
Md5:    9db6e4f60b7f3437958f94d4ee89299b
Sha1:   2fc9c1ea7bc5e92c8ab4e39d5ed702d3994c240b
Sha256: 2176d60a4e76254f561513c25d3427e4e46b8af3348be321e855ba88fbd711b5

Alerts:
  Blocklists:
    - fortinet: Malware
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.3.1 HTTP/1.1 
Host: andrespena.com.mx
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://andrespena.com.mx/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         198.54.115.22
HTTP/2 200 OK
content-type: application/x-javascript
                                        
cache-control: public, max-age=31536000
expires: Fri, 24 Nov 2023 10:02:46 GMT
last-modified: Wed, 21 Jul 2021 08:51:28 GMT
etag: "12a1-60f7e010-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1942
date: Thu, 24 Nov 2022 10:02:46 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (4730)
Size:   1942
Md5:    7955e5e906cef88fd0669a2d232c5303
Sha1:   de638fd3d6271cb2ae398e6b210458f741015b6f
Sha256: f8dfa844a6f7911876cd3a761a39f5d32225196fa72217a90e1664287880f649

Alerts:
  Blocklists:
    - fortinet: Malware
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.3.1 HTTP/1.1 
Host: andrespena.com.mx
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://andrespena.com.mx/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         198.54.115.22
HTTP/2 200 OK
content-type: application/x-javascript
                                        
cache-control: public, max-age=31536000
expires: Fri, 24 Nov 2023 10:02:46 GMT
last-modified: Wed, 21 Jul 2021 08:51:28 GMT
etag: "fd92-60f7e010-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 18831
date: Thu, 24 Nov 2022 10:02:46 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (43289), with LF, NEL line terminators
Size:   18831
Md5:    e9752626decbcc517cc17c55e5d6eed0
Sha1:   7b20d502b821859d7c135ef664f13030a72902ad
Sha256: 96119cfcf8fb28c5add6bcbde2eb032613b6017abca232a4cc9bde560789b7d2

Alerts:
  Blocklists:
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-content/plugins/elementor-pro/assets/js/frontend.min.js?ver=3.3.5 HTTP/1.1 
Host: andrespena.com.mx
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://andrespena.com.mx/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         198.54.115.22
HTTP/2 200 OK
content-type: application/x-javascript
                                        
cache-control: public, max-age=31536000
expires: Fri, 24 Nov 2023 10:02:46 GMT
last-modified: Mon, 02 Aug 2021 16:37:56 GMT
etag: "e60d-61081f64-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 15728
date: Thu, 24 Nov 2022 10:02:46 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (58848)
Size:   15728
Md5:    cc4b70b6183642d491270d0028f89256
Sha1:   795b54d0c10a711cd6916382e532a7100ce18596
Sha256: 7b3d3bdb289525d90ade8603c9b3437b28112f51f86d843efe47ef896d8cd3e7

Alerts:
  Blocklists:
    - fortinet: Malware
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-includes/js/jquery/ui/core.min.js?ver=1.13.2 HTTP/1.1 
Host: andrespena.com.mx
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://andrespena.com.mx/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         198.54.115.22
HTTP/2 200 OK
content-type: application/x-javascript
                                        
cache-control: public, max-age=31536000
expires: Fri, 24 Nov 2023 10:02:46 GMT
last-modified: Wed, 02 Nov 2022 09:37:41 GMT
etag: "53c0-63623a65-0;gz"
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 7933
date: Thu, 24 Nov 2022 10:02:46 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (8189)
Size:   7933
Md5:    36466ab85b8acbda978998a870271e69
Sha1:   b42db7d6dd114b7f5ae2e1459754460aae404c7c
Sha256: 6c19cdcb49d31830b795b83c351e579c24c56478cc6d968e3b8c6bf56ec4d9a2

Alerts:
  Blocklists:
    - fortinet: Malware
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2 HTTP/1.1 
Host: andrespena.com.mx
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://andrespena.com.mx/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         198.54.115.22
HTTP/2 200 OK
content-type: application/x-javascript
                                        
cache-control: public, max-age=31536000
expires: Fri, 24 Nov 2023 10:02:46 GMT
last-modified: Wed, 21 Jul 2021 08:51:28 GMT
etag: "2fa6-60f7e010-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2867
date: Thu, 24 Nov 2022 10:02:46 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (12198), with no line terminators
Size:   2867
Md5:    869caa171b68cbec9fee5abbfb944ee8
Sha1:   f237e485e41f88b77384cfdb880f9d5a8f46eac8
Sha256: 25c2896e2790fb0e52f6b6ba1ce97bd87eb40463b4bb65ba16ad434c1d7a36dc

Alerts:
  Blocklists:
    - fortinet: Malware
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-content/plugins/elementor/assets/lib/share-link/share-link.min.js?ver=3.3.1 HTTP/1.1 
Host: andrespena.com.mx
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://andrespena.com.mx/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         198.54.115.22
HTTP/2 200 OK
content-type: application/x-javascript
                                        
cache-control: public, max-age=31536000
expires: Fri, 24 Nov 2023 10:02:46 GMT
last-modified: Wed, 21 Jul 2021 08:51:28 GMT
etag: "a12-60f7e010-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1023
date: Thu, 24 Nov 2022 10:02:46 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (2577)
Size:   1023
Md5:    f5c8273175207966436fe071db580974
Sha1:   643680fc9a1703cb3bc469bfbb3dbcbf6425e38a
Sha256: 8b0897055f6baa5de94adb95e824af4afd1dced496711c905c8b7c09738aa4de

Alerts:
  Blocklists:
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-content/plugins/elementor/assets/js/preloaded-modules.min.js?ver=3.3.1 HTTP/1.1 
Host: andrespena.com.mx
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://andrespena.com.mx/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         198.54.115.22
HTTP/2 200 OK
content-type: application/x-javascript
                                        
cache-control: public, max-age=31536000
expires: Fri, 24 Nov 2023 10:02:46 GMT
last-modified: Wed, 21 Jul 2021 08:51:28 GMT
etag: "e2e0-60f7e010-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 16401
date: Thu, 24 Nov 2022 10:02:46 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (58041)
Size:   16401
Md5:    7b8f775a361ec1d1ea8130acf562bcba
Sha1:   3049bf7fb1f747197cabbbc519299da9c64772e3
Sha256: 6e7d570f6bdf8735666e698673646c16cacf529edcb62f9919189e579d64c0da

Alerts:
  Blocklists:
    - fortinet: Malware
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-content/plugins/elementor/assets/lib/dialog/dialog.min.js?ver=4.8.1 HTTP/1.1 
Host: andrespena.com.mx
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://andrespena.com.mx/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         198.54.115.22
HTTP/2 200 OK
content-type: application/x-javascript
                                        
cache-control: public, max-age=31536000
expires: Fri, 24 Nov 2023 10:02:46 GMT
last-modified: Wed, 21 Jul 2021 08:51:28 GMT
etag: "2a6f-60f7e010-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3331
date: Thu, 24 Nov 2022 10:02:46 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (10725)
Size:   3331
Md5:    8c5a95ea30259ea6dc50f9f1357dc31a
Sha1:   be1fd6dc96f6ba018bbfa49a058390700ead5bf0
Sha256: 914c938c132cd311967ed71676397704bf8d95abf2c51c79937f43be35030a70

Alerts:
  Blocklists:
    - fortinet: Malware
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-includes/js/wp-emoji-release.min.js?ver=6.1.1 HTTP/1.1 
Host: andrespena.com.mx
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://andrespena.com.mx/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         198.54.115.22
HTTP/2 200 OK
content-type: application/x-javascript
                                        
cache-control: public, max-age=31536000
expires: Fri, 24 Nov 2023 10:02:46 GMT
last-modified: Tue, 24 May 2022 22:42:00 GMT
etag: "48b9-628d5f38-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 4619
date: Thu, 24 Nov 2022 10:02:46 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (15660)
Size:   4619
Md5:    0232689bd203f330529b36a437f41a68
Sha1:   9046583f7469ad38297969f10a9513eb895d5316
Sha256: feea9f30a6e454579bbeabf236b7abdb0c7de84dd2852422555ad67348c5e886

Alerts:
  Blocklists:
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-content/plugins/elementor-pro/assets/lib/sticky/jquery.sticky.min.js?ver=3.3.5 HTTP/1.1 
Host: andrespena.com.mx
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://andrespena.com.mx/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         198.54.115.22
HTTP/2 200 OK
content-type: application/x-javascript
                                        
cache-control: public, max-age=31536000
expires: Fri, 24 Nov 2023 10:02:46 GMT
last-modified: Mon, 02 Aug 2021 16:37:56 GMT
etag: "19c3-61081f64-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1767
date: Thu, 24 Nov 2022 10:02:46 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (6595), with no line terminators
Size:   1767
Md5:    bc7ad49bba8c6fece75cf20e318bde6d
Sha1:   329866570ac3995fb33f1f6b55e6ea3d3c85d25b
Sha256: 479c4099528678e6689805bc618a02c300d62a0f5b41800672c57fb1a458a50e

Alerts:
  Blocklists:
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.1 HTTP/1.1 
Host: andrespena.com.mx
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://andrespena.com.mx/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         198.54.115.22
HTTP/2 200 OK
content-type: application/x-javascript
                                        
cache-control: public, max-age=31536000
expires: Fri, 24 Nov 2023 10:02:46 GMT
last-modified: Wed, 02 Nov 2022 09:37:41 GMT
etag: "15e54-63623a65-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 30324
date: Thu, 24 Nov 2022 10:02:46 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (65447)
Size:   30324
Md5:    3a1740685bd5c0bbd5f2b812e1eb7fb4
Sha1:   488e07695da787fed18361c50292aef35abb5e81
Sha256: 4a07aed2d8cf88afdec0b56b365b951c76d387db3459166b5a0d25e2e6cc95ef

Alerts:
  Blocklists:
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.3.1 HTTP/1.1 
Host: andrespena.com.mx
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://andrespena.com.mx/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         198.54.115.22
HTTP/2 200 OK
content-type: application/x-javascript
                                        
cache-control: public, max-age=31536000
expires: Fri, 24 Nov 2023 10:02:46 GMT
last-modified: Wed, 21 Jul 2021 08:51:28 GMT
etag: "10a51-60f7e010-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 19057
date: Thu, 24 Nov 2022 10:02:46 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (65497)
Size:   19057
Md5:    a9d7e0fee46e0844f03b93943c5aa3d9
Sha1:   eea7a74fed5aef21628d0a735e0ac3fd742b4f7a
Sha256: 7cfb2d670762a908b05ca78e00e3e9d06e72d62edafba972a24cdd42aec8a001

Alerts:
  Blocklists:
    - fortinet: Malware
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-content/plugins/elementor-pro/assets/js/preloaded-elements-handlers.min.js?ver=3.3.5 HTTP/1.1 
Host: andrespena.com.mx
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://andrespena.com.mx/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         198.54.115.22
HTTP/2 200 OK
content-type: application/x-javascript
                                        
cache-control: public, max-age=31536000
expires: Fri, 24 Nov 2023 10:02:46 GMT
last-modified: Mon, 02 Aug 2021 16:37:56 GMT
etag: "2811e-61081f64-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 37240
date: Thu, 24 Nov 2022 10:02:46 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (65493)
Size:   37240
Md5:    05aba2c8ad2a8aa6b1da4d0b249c4b90
Sha1:   42f46b5fb2a049c5b3008bedaff83bf683f17e82
Sha256: 3a0f2de8352e1e3544b828abe5fdd3b10958d22d33492d4849f98909c0de8e6d

Alerts:
  Blocklists:
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-content/plugins/elementor/assets/lib/swiper/swiper.min.js?ver=5.3.6 HTTP/1.1 
Host: andrespena.com.mx
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://andrespena.com.mx/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         198.54.115.22
HTTP/2 200 OK
content-type: application/x-javascript
                                        
cache-control: public, max-age=31536000
expires: Fri, 24 Nov 2023 10:02:46 GMT
last-modified: Wed, 21 Jul 2021 08:51:28 GMT
etag: "21f91-60f7e010-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 34004
date: Thu, 24 Nov 2022 10:02:46 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (65280)
Size:   34004
Md5:    83a90323ac82b98062b4b2c8ac8c5051
Sha1:   d7d376677e3546b756b4fec6219be72b85c4f8f5
Sha256: 7fd68e9ea0ebd35958da46d7373113d1a3646a671217cf2cf471c65c3d710613

Alerts:
  Blocklists:
    - fortinet: Malware
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-content/uploads/elementor/thumbs/sectionobligadosacambiar-1-pc1r7lwxbnol5xqfkgbvf4py8vyji2seqtdf9jvp8o.png HTTP/1.1 
Host: andrespena.com.mx
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://andrespena.com.mx/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         198.54.115.22
HTTP/2 200 OK
content-type: image/png
                                        
cache-control: public, max-age=31536000
expires: Fri, 24 Nov 2023 10:02:46 GMT
last-modified: Mon, 23 Aug 2021 17:27:30 GMT
etag: "1697e-6123da82-0;;;"
accept-ranges: bytes
content-length: 92542
date: Thu, 24 Nov 2022 10:02:46 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 500 x 500, 8-bit/color RGBA, non-interlaced\012- data
Size:   92542
Md5:    c75306dca0e1ad1532009bcd2e2f7672
Sha1:   ceff2783305ea162dbd636c5041411b8daec0487
Sha256: 28b80a58f2eab6c5f69fe02df876616cd47ba9416693000c271aae9d76ee15ad

Alerts:
  Blocklists:
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-content/uploads/2021/08/bg-header-2.png HTTP/1.1 
Host: andrespena.com.mx
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://andrespena.com.mx/wp-content/uploads/elementor/css/post-76.css?ver=1662756239
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         198.54.115.22
HTTP/2 200 OK
content-type: image/png
                                        
cache-control: public, max-age=31536000
expires: Fri, 24 Nov 2023 10:02:49 GMT
last-modified: Sat, 21 Aug 2021 14:50:05 GMT
etag: "9b1-6121129d-0;;;"
accept-ranges: bytes
content-length: 2481
date: Thu, 24 Nov 2022 10:02:49 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 435 x 800, 8-bit/color RGBA, non-interlaced\012- data
Size:   2481
Md5:    155aa7be5ebbbfc7213369ce26ad02af
Sha1:   04fbcacbcacd8e5dc0e0691c9cb002b47696f4a9
Sha256: 9634cd90189c439471484275178c5f09fc90bf0ee303da4a0d2a86a360a51009

Alerts:
  Blocklists:
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-content/uploads/2021/08/awards-bg.png HTTP/1.1 
Host: andrespena.com.mx
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://andrespena.com.mx/wp-content/uploads/elementor/css/post-76.css?ver=1662756239
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         198.54.115.22
HTTP/2 200 OK
content-type: image/png
                                        
cache-control: public, max-age=31536000
expires: Fri, 24 Nov 2023 10:02:49 GMT
last-modified: Tue, 10 Aug 2021 21:06:16 GMT
etag: "cdd-6112ea48-0;;;"
accept-ranges: bytes
content-length: 3293
date: Thu, 24 Nov 2022 10:02:49 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 370 x 337, 8-bit/color RGBA, non-interlaced\012- data
Size:   3293
Md5:    88d723dda010db38046817de125fdb4c
Sha1:   49c6d68d8dd3c5656d271943bf9081ec40a3a7b7
Sha256: 182208e9c58620f688559a5c730315c3bc87c23007bcbaaacb5e70f78cee4188

Alerts:
  Blocklists:
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-content/uploads/2021/08/awards-bg-1.png HTTP/1.1 
Host: andrespena.com.mx
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://andrespena.com.mx/wp-content/uploads/elementor/css/post-76.css?ver=1662756239
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         198.54.115.22
HTTP/2 200 OK
content-type: image/png
                                        
cache-control: public, max-age=31536000
expires: Fri, 24 Nov 2023 10:02:49 GMT
last-modified: Tue, 10 Aug 2021 21:06:20 GMT
etag: "cdd-6112ea4c-0;;;"
accept-ranges: bytes
content-length: 3293
date: Thu, 24 Nov 2022 10:02:49 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 370 x 337, 8-bit/color RGBA, non-interlaced\012- data
Size:   3293
Md5:    88d723dda010db38046817de125fdb4c
Sha1:   49c6d68d8dd3c5656d271943bf9081ec40a3a7b7
Sha256: 182208e9c58620f688559a5c730315c3bc87c23007bcbaaacb5e70f78cee4188

Alerts:
  Blocklists:
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-regular-400.woff2 HTTP/1.1 
Host: andrespena.com.mx
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://andrespena.com.mx/wp-content/plugins/elementor/assets/lib/font-awesome/css/regular.min.css?ver=5.15.3
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         198.54.115.22
HTTP/2 200 OK
content-type: application/font-woff2
                                        
cache-control: public, max-age=31536000
expires: Fri, 24 Nov 2023 10:02:49 GMT
etag: "33dc-60f7e010-0;;;"
accept-ranges: bytes
content-length: 13276
date: Thu, 24 Nov 2022 10:02:49 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 13276, version 331.-31261\012- data
Size:   13276
Md5:    f0f8230116992e521526097a28f54066
Sha1:   0447c6b10bbf73f97b23dcfd6e6a48510822cb6e
Sha256: 8afc6e5e842baab16010c2ce6fcf48ec4ded8e1579a37c1f1bc027e120d04951

Alerts:
  Blocklists:
    - fortinet: Malware
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-content/uploads/2021/08/bg2.jpg HTTP/1.1 
Host: andrespena.com.mx
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://andrespena.com.mx/wp-content/uploads/elementor/css/post-76.css?ver=1662756239
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         198.54.115.22
HTTP/2 200 OK
content-type: image/jpeg
                                        
cache-control: public, max-age=31536000
expires: Fri, 24 Nov 2023 10:02:49 GMT
last-modified: Sat, 21 Aug 2021 16:50:48 GMT
etag: "13b27-61212ee8-0;;;"
accept-ranges: bytes
content-length: 80679
date: Thu, 24 Nov 2022 10:02:49 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, progressive, precision 8, 1440x2064, components 3\012- data
Size:   80679
Md5:    f9629ebd26cea3d529f5bbe64e61d2c6
Sha1:   c8ddc2432e8f97b1b3275a301e1205d39dd5bd71
Sha256: baafffd49e885ac4025e3b15c7611f67c0d3d0e738a8584773871d8ef06b9ba5

Alerts:
  Blocklists:
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-content/uploads/2021/08/iconAndresBlancoresize.png HTTP/1.1 
Host: andrespena.com.mx
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://andrespena.com.mx/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         198.54.115.22
HTTP/2 200 OK
content-type: image/png
                                        
cache-control: public, max-age=31536000
expires: Fri, 24 Nov 2023 10:02:50 GMT
last-modified: Sat, 21 Aug 2021 15:09:19 GMT
etag: "88c-6121171f-0;;;"
accept-ranges: bytes
content-length: 2188
date: Thu, 24 Nov 2022 10:02:50 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 76 x 96, 8-bit/color RGBA, non-interlaced\012- data
Size:   2188
Md5:    e7402ec1eb7a158649e40db732d7a122
Sha1:   a7690fb81564b7b4e770001d8df224e4767b4802
Sha256: 4aadb616d3ddc289bdfaf58a8fd30e56801b7a4fc177159e273cf39574bf5414

Alerts:
  Blocklists:
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-brands-400.woff2 HTTP/1.1 
Host: andrespena.com.mx
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://andrespena.com.mx/wp-content/plugins/elementor/assets/lib/font-awesome/css/brands.min.css?ver=5.15.3
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         198.54.115.22
HTTP/2 200 OK
content-type: application/font-woff2
                                        
cache-control: public, max-age=31536000
expires: Fri, 24 Nov 2023 10:02:49 GMT
etag: "12bdc-60f7e010-0;;;"
accept-ranges: bytes
content-length: 76764
date: Thu, 24 Nov 2022 10:02:49 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 76764, version 331.-31261\012- data
Size:   76764
Md5:    f7307680c7fe85959f3ecf122493ea7d
Sha1:   fce0da592a3e536d6d5df5b50cb513398d8c5161
Sha256: 43c072c16c9ee6d67acdfa6c6d6685ff1e74eb4237b7cc3c1348ab1c108b26af

Alerts:
  Blocklists:
    - fortinet: Malware
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-content/uploads/2021/08/LogoAndres.png HTTP/1.1 
Host: andrespena.com.mx
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://andrespena.com.mx/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         198.54.115.22
HTTP/2 200 OK
content-type: image/png
                                        
cache-control: public, max-age=31536000
expires: Fri, 24 Nov 2023 10:02:50 GMT
last-modified: Fri, 20 Aug 2021 16:42:00 GMT
etag: "448b2-611fdb58-0;;;"
accept-ranges: bytes
content-length: 280754
date: Thu, 24 Nov 2022 10:02:50 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---

Alerts:
  Blocklists:
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-solid-900.woff2 HTTP/1.1 
Host: andrespena.com.mx
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://andrespena.com.mx/wp-content/plugins/elementor/assets/lib/font-awesome/css/solid.min.css?ver=5.15.3
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         198.54.115.22
HTTP/2 200 OK
content-type: application/font-woff2
                                        
cache-control: public, max-age=31536000
expires: Fri, 24 Nov 2023 10:02:50 GMT
etag: "13174-60f7e010-0;;;"
accept-ranges: bytes
content-length: 78196
date: Thu, 24 Nov 2022 10:02:50 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---

Alerts:
  Blocklists:
    - fortinet: Malware
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-content/uploads/2021/08/4-3.jpg HTTP/1.1 
Host: andrespena.com.mx
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://andrespena.com.mx/wp-content/uploads/elementor/css/post-76.css?ver=1662756239
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         198.54.115.22
HTTP/2 200 OK
content-type: image/jpeg
                                        
cache-control: public, max-age=31536000
expires: Fri, 24 Nov 2023 10:02:49 GMT
last-modified: Sat, 21 Aug 2021 16:23:16 GMT
etag: "3adbc-61212874-0;;;"
accept-ranges: bytes
content-length: 241084
date: Thu, 24 Nov 2022 10:02:49 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---

Alerts:
  Blocklists:
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-content/uploads/2021/08/3-1.jpg HTTP/1.1 
Host: andrespena.com.mx
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://andrespena.com.mx/wp-content/uploads/elementor/css/post-76.css?ver=1662756239
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         198.54.115.22
HTTP/2 200 OK
content-type: image/jpeg
                                        
cache-control: public, max-age=31536000
expires: Fri, 24 Nov 2023 10:02:49 GMT
last-modified: Sat, 21 Aug 2021 16:18:09 GMT
etag: "46e64-61212741-0;;;"
accept-ranges: bytes
content-length: 290404
date: Thu, 24 Nov 2022 10:02:49 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---

Alerts:
  Blocklists:
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-content/uploads/2021/08/2.png HTTP/1.1 
Host: andrespena.com.mx
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://andrespena.com.mx/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         198.54.115.22
HTTP/2 200 OK
content-type: image/png
                                        
cache-control: public, max-age=31536000
expires: Fri, 24 Nov 2023 10:02:50 GMT
last-modified: Sat, 21 Aug 2021 15:30:56 GMT
etag: "38225-61211c30-0;;;"
accept-ranges: bytes
content-length: 229925
date: Thu, 24 Nov 2022 10:02:50 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---

Alerts:
  Blocklists:
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-content/uploads/2021/08/1.png HTTP/1.1 
Host: andrespena.com.mx
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://andrespena.com.mx/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         198.54.115.22
HTTP/2 200 OK
content-type: image/png
                                        
cache-control: public, max-age=31536000
expires: Fri, 24 Nov 2023 10:02:50 GMT
last-modified: Sat, 21 Aug 2021 15:34:44 GMT
etag: "48f60-61211d14-0;;;"
accept-ranges: bytes
content-length: 298848
date: Thu, 24 Nov 2022 10:02:50 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---

Alerts:
  Blocklists:
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-content/uploads/2021/08/3.png HTTP/1.1 
Host: andrespena.com.mx
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://andrespena.com.mx/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         198.54.115.22
HTTP/2 200 OK
content-type: image/png
                                        
cache-control: public, max-age=31536000
expires: Fri, 24 Nov 2023 10:02:50 GMT
last-modified: Sat, 21 Aug 2021 15:35:09 GMT
etag: "5e148-61211d2d-0;;;"
accept-ranges: bytes
content-length: 385352
date: Thu, 24 Nov 2022 10:02:50 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---

Alerts:
  Blocklists:
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /css?family=Roboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto+Slab%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CCaladea%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CPoppins%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CMontserrat%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto&ver=6.1.1 HTTP/1.1 
Host: fonts.googleapis.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://andrespena.com.mx/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         142.250.74.10
HTTP/2 200 OK
content-type: text/css; charset=utf-8
                                        
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 24 Nov 2022 10:02:46 GMT
date: Thu, 24 Nov 2022 10:02:46 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /wp-content/uploads/2021/08/2-1.jpg HTTP/1.1 
Host: andrespena.com.mx
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://andrespena.com.mx/wp-content/uploads/elementor/css/post-76.css?ver=1662756239
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         198.54.115.22
HTTP/2 200 OK
content-type: image/jpeg
                                        
cache-control: public, max-age=31536000
expires: Fri, 24 Nov 2023 10:02:49 GMT
last-modified: Sat, 21 Aug 2021 16:20:06 GMT
etag: "24a61-612127b6-0;;;"
accept-ranges: bytes
content-length: 150113
date: Thu, 24 Nov 2022 10:02:49 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---

Alerts:
  Blocklists:
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-content/uploads/2021/08/1-1.jpg HTTP/1.1 
Host: andrespena.com.mx
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://andrespena.com.mx/wp-content/uploads/elementor/css/post-76.css?ver=1662756239
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         198.54.115.22
HTTP/2 200 OK
content-type: image/jpeg
                                        
cache-control: public, max-age=31536000
expires: Fri, 24 Nov 2023 10:02:49 GMT
last-modified: Sat, 21 Aug 2021 16:17:28 GMT
etag: "6ca8a-61212718-0;;;"
accept-ranges: bytes
content-length: 445066
date: Thu, 24 Nov 2022 10:02:49 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---

Alerts:
  Blocklists:
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed