libreriaguillermo.com/wp-content/uploads/2022/07/ostriv_alpha_1_patch_3_money_hack.pdf
51.38.189.36301 Moved Permanently 302 B URL HTTP/1.1 libreriaguillermo.com/wp-content/uploads/2022/07/ostriv_alpha_1_patch_3_money_hack.pdf
IP 51.38.189.36:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 75bf126b518b94c6254126bb0cc57820
3a6e7eb6d3b7b7c7a1c8a329c22b35e0c9da5ab2
6fe57011ace0050a30d867906dd293d763993267ff656e2e20d87d7325e0ce10
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/2022/07/ostriv_alpha_1_patch_3_money_hack.pdf HTTP/1.1
Host: libreriaguillermo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Sat, 24 Sep 2022 15:54:10 GMT
Server: Apache/2.4.37 (centos) OpenSSL/1.1.1g
Location: https://libreriaguillermo.com/wp-content/uploads/2022/07/ostriv_alpha_1_patch_3_money_hack.pdf
Content-Length: 302
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 09a973de929ab7452edc342c780d3668
3f14f6e0a36f76863c0aea6fb561c266404a7ea3
e82ca5f310e37267fbf792427747e65c2bb35e684d3f629c0aa302f688bc4f80
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E82CA5F310E37267FBF792427747E65C2BB35E684D3F629C0AA302F688BC4F80"
Last-Modified: Fri, 23 Sep 2022 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2422
Expires: Sat, 24 Sep 2022 16:34:32 GMT
Date: Sat, 24 Sep 2022 15:54:10 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash b3e81b5bd7bd8e12288a8159e44ceb3f
977945964ffcbf49ac78f840db9da822c50c82f0
4721814da286852318f7ebf9857bd4bf01f0beea2c9eb7ddb9f290e3fa472232
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4721814DA286852318F7EBF9857BD4BF01F0BEEA2C9EB7DDB9F290E3FA472232"
Last-Modified: Fri, 23 Sep 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11031
Expires: Sat, 24 Sep 2022 18:58:01 GMT
Date: Sat, 24 Sep 2022 15:54:10 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 6113f8408c59aebe188d6af273b90743
7398873bf00f99944eaa77ad3ebc0d43c23dba6b
b6e0cc9ad68306208a160f3835fb8da76acc5a82d8fde1da5a98e1de1c11a770
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: C/IZMZ228jEaAfshkpOkwmrUK/ZUkR2kHrPWEWUzUwxjFrCFuSJQJkESvFc0mwAXsqjylKFfuaQ=
x-amz-request-id: KFKMZVYRAA9MDH04
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sat, 24 Sep 2022 15:45:11 GMT
age: 539
last-modified: Sat, 10 Sep 2022 18:47:45 GMT
etag: "6113f8408c59aebe188d6af273b90743"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/
65.9.86.94200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 65.9.86.94:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 2d12f67fe57a87e7366b662d153a5582
d7b02d81cc74f24a251d9363e0f4b0a149264ec1
73c273c0b5a2de3cb970b8e8c187999d3b55e760dc7766dab4bb76428d19b551
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Length, Backoff, Content-Type, Retry-After, Alert
Cache-Control: max-age=3600
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Sat, 24 Sep 2022 15:14:31 GMT
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 10c6c3dafd71d2880db1f56a9baf3a70.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: AMS1-C1
X-Amz-Cf-Id: 8UJ7eNH-W7h9ABiFdLVhZZVjbYOCjCOKbBvLh5nHbpYXO_25lQthkg==
Age: 2379
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 10be2f3cadad9f4082c3f43bbdda7f7e
70a732968ae7c24378db24caf8827c32d91b471e
72637dc89029ba48eb22016c367a2c79f36ae4e1e960f5d7a3be98dbf4152c9d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "72637DC89029BA48EB22016C367A2C79F36AE4E1E960F5D7A3BE98DBF4152C9D"
Last-Modified: Thu, 22 Sep 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=644
Expires: Sat, 24 Sep 2022 16:04:54 GMT
Date: Sat, 24 Sep 2022 15:54:10 GMT
Connection: keep-alive
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 24 Sep 2022 15:54:10 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
65.9.86.94200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 65.9.86.94:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600, max-age=3600
Date: Sat, 24 Sep 2022 15:04:17 GMT
Expires: Sat, 24 Sep 2022 15:47:58 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 8dfd7af0583283ff28c8cd8eea759112.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: AMS1-C1
X-Amz-Cf-Id: kcyvkp4BY3VxhEWUAyYQnYkIBXrg9p1S4R_6XtKPROuaTjwERomU0g==
Age: 2993
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash a7809de115ea73f8b61f3d20a9978493
01fc65a2b694d7aadd5204d21801e87b2b55b73e
72692486033feeb149424c59576c6c75b17228dfc89b4c369d2e17cc4bff3d52
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4571
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 24 Sep 2022 15:54:10 GMT
Last-Modified: Sat, 24 Sep 2022 14:37:59 GMT
Server: ECS (ska/F716)
X-Cache: HIT
Content-Length: 471
libreriaguillermo.com/wp-content/uploads/2022/07/ostriv_alpha_1_patch_3_money_hack.pdf
51.38.189.36404 Not Found 115 kB URL HTTP/1.1 libreriaguillermo.com/wp-content/uploads/2022/07/ostriv_alpha_1_patch_3_money_hack.pdf
IP 51.38.189.36:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (22025)
Size 115 kB (115141 bytes)
Hash 22a4542069fba292aaae154fa2718cb9
525f7f80d0e42444d0e0b31c27e4dbdff153e8e6
bc31e39f3c2defa3e30b935b9cd7a0cfa310f849a38dcfdc1baaa6d394bf952e
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/2022/07/ostriv_alpha_1_patch_3_money_hack.pdf HTTP/1.1
Host: libreriaguillermo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/1.1 404 Not Found
Date: Sat, 24 Sep 2022 15:54:10 GMT
Server: Apache/2.4.37 (centos) OpenSSL/1.1.1g
X-Powered-By: PHP/7.4.21
Vary: Accept-Encoding,Cookie
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Link: <https://libreriaguillermo.com/wp-json/>; rel="https://api.w.org/"
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: upgrade-insecure-requests
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Expect-CT: max-age=7776000, enforce
Referrer-Policy: no-referrer-when-downgrade
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
libreriaguillermo.com/wp-includes/css/dist/block-library/style.min.css?ver=c6143cb609822277f7931505c01a7a7a
51.38.189.36200 OK 89 kB URL HTTP/1.1 libreriaguillermo.com/wp-includes/css/dist/block-library/style.min.css?ver=c6143cb609822277f7931505c01a7a7a
IP 51.38.189.36:0
File type ASCII text, with very long lines (43771)
Hash b7915926fe42d76e9c802353ab01dae4
3a8192a4312f25f53de25b100d62829c0f14d67c
d7705700d24d5919255576642ad2c28bfc790390b7183a369038ff5c1e814d51
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/css/dist/block-library/style.min.css?ver=c6143cb609822277f7931505c01a7a7a HTTP/1.1
Host: libreriaguillermo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://libreriaguillermo.com/wp-content/uploads/2022/07/ostriv_alpha_1_patch_3_money_hack.pdf
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 24 Sep 2022 15:54:11 GMT
Server: Apache/2.4.37 (centos) OpenSSL/1.1.1g
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: upgrade-insecure-requests
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Expect-CT: max-age=7776000, enforce
Referrer-Policy: no-referrer-when-downgrade
Last-Modified: Wed, 13 Jul 2022 02:24:51 GMT
ETag: "15b64-5e3a67d617928"
Accept-Ranges: bytes
Content-Length: 88932
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
libreriaguillermo.com/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-vendors-style.css?ver=8.0.0
51.38.189.36200 OK 4.9 kB URL HTTP/1.1 libreriaguillermo.com/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-vendors-style.css?ver=8.0.0
IP 51.38.189.36:0
File type ASCII text, with very long lines (4933), with no line terminators
Hash e372df47bd19e1563b557d7bdb817188
4efdf4050a78bdbd88aa255955b7423105895dd0
4b7693154069c53a16468d09d89c9eba5da6c0dfc69cf4d7eb675e32ba663361
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-vendors-style.css?ver=8.0.0 HTTP/1.1
Host: libreriaguillermo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://libreriaguillermo.com/wp-content/uploads/2022/07/ostriv_alpha_1_patch_3_money_hack.pdf
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 24 Sep 2022 15:54:11 GMT
Server: Apache/2.4.37 (centos) OpenSSL/1.1.1g
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: upgrade-insecure-requests
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Expect-CT: max-age=7776000, enforce
Referrer-Policy: no-referrer-when-downgrade
Last-Modified: Fri, 09 Sep 2022 07:16:49 GMT
ETag: "1345-5e8395454aa7e"
Accept-Ranges: bytes
Content-Length: 4933
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
libreriaguillermo.com/wp-content/plugins/yith-woocommerce-wishlist/assets/css/jquery.selectBox.css?ver=1.2.0
51.38.189.36200 OK 2.6 kB URL HTTP/1.1 libreriaguillermo.com/wp-content/plugins/yith-woocommerce-wishlist/assets/css/jquery.selectBox.css?ver=1.2.0
IP 51.38.189.36:0
File type ASCII text, with very long lines (2630), with no line terminators
Hash eade318fbed91c096467dffa56406638
69d306a2097e792f99c80a5e0bb8863260399cad
d589803f3ab380582ab137b22493c2bacaa92424fa88cee212e80288cac11fbb
GET /wp-content/plugins/yith-woocommerce-wishlist/assets/css/jquery.selectBox.css?ver=1.2.0 HTTP/1.1
Host: libreriaguillermo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://libreriaguillermo.com/wp-content/uploads/2022/07/ostriv_alpha_1_patch_3_money_hack.pdf
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 24 Sep 2022 15:54:11 GMT
Server: Apache/2.4.37 (centos) OpenSSL/1.1.1g
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: upgrade-insecure-requests
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Expect-CT: max-age=7776000, enforce
Referrer-Policy: no-referrer-when-downgrade
Last-Modified: Tue, 09 Aug 2022 11:47:06 GMT
ETag: "a46-5e5cd7ddb5193"
Accept-Ranges: bytes
Content-Length: 2630
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
platform.twitter.com/widgets.js?ver=c6143cb609822277f7931505c01a7a7a
192.229.233.25200 OK 29 kB URL HTTP/1.1 platform.twitter.com/widgets.js?ver=c6143cb609822277f7931505c01a7a7a
IP 192.229.233.25:0
File type Unicode text, UTF-8 text, with very long lines (33915)
Hash 0ccf02d52b75b85c65aa5460aa24aebf
50d1a19cb9ebbd6d42173ce2d963ea4df29e8e5a
d13778acf057777bad23fd020088463d65d2b7baff042cd4529d27faa46daf38
GET /widgets.js?ver=c6143cb609822277f7931505c01a7a7a HTTP/1.1
Host: platform.twitter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://libreriaguillermo.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Encoding: gzip
Access-Control-Allow-Methods: GET
Access-Control-Allow-Origin: *
Access-Control-Max-Age: 3000
Age: 548
Cache-Control: public, max-age=1800
Content-Type: application/javascript; charset=utf-8
Date: Sat, 24 Sep 2022 15:54:11 GMT
Etag: "f116c7e6b28e2aebeb60ade5bdc8e2b4+gzip"
Last-Modified: Wed, 31 Aug 2022 20:41:50 GMT
P3P: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
Server: ECS (ska/F71C)
Server-Timing: x-cache;desc= HIT,x-tw-cdn;desc=VZ,edge;dur=1
Vary: Accept-Encoding
x-amzn-internal-status: 304
X-Cache: HIT
x-tw-cdn: VZ
Content-Length: 29220
libreriaguillermo.com/wp-content/plugins/woocommerce/assets/css/prettyPhoto.css?ver=3.1.6
51.38.189.36200 OK 9.3 kB URL HTTP/1.1 libreriaguillermo.com/wp-content/plugins/woocommerce/assets/css/prettyPhoto.css?ver=3.1.6
IP 51.38.189.36:0
File type ASCII text, with very long lines (9281), with no line terminators
Hash 57a347480fbe0b3d235993f4f1ec3b2c
ec01673e887c236765156496c7d00111238554d8
9097a2c579616889e829be95554ebf90ec5900045f4d2282cce31d5a999acc03
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/woocommerce/assets/css/prettyPhoto.css?ver=3.1.6 HTTP/1.1
Host: libreriaguillermo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://libreriaguillermo.com/wp-content/uploads/2022/07/ostriv_alpha_1_patch_3_money_hack.pdf
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 24 Sep 2022 15:54:11 GMT
Server: Apache/2.4.37 (centos) OpenSSL/1.1.1g
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: upgrade-insecure-requests
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Expect-CT: max-age=7776000, enforce
Referrer-Policy: no-referrer-when-downgrade
Last-Modified: Fri, 09 Sep 2022 07:16:48 GMT
ETag: "2441-5e839545006fa"
Accept-Ranges: bytes
Content-Length: 9281
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css
libreriaguillermo.com/wp-content/plugins/yith-woocommerce-wishlist/assets/css/font-awesome.css?ver=4.7.0
51.38.189.36200 OK 31 kB URL HTTP/1.1 libreriaguillermo.com/wp-content/plugins/yith-woocommerce-wishlist/assets/css/font-awesome.css?ver=4.7.0
IP 51.38.189.36:0
File type ASCII text, with very long lines (30441)
Hash d3ec229e04c8634c88cc4cb3f2934c11
785cb4beecaad98329fff0a54f9a5536cda200ab
73835f9dd494931cd0562ab2d4db8aaf3d54dca375abade1794ad1a12ae0d97c
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/yith-woocommerce-wishlist/assets/css/font-awesome.css?ver=4.7.0 HTTP/1.1
Host: libreriaguillermo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://libreriaguillermo.com/wp-content/uploads/2022/07/ostriv_alpha_1_patch_3_money_hack.pdf
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 24 Sep 2022 15:54:11 GMT
Server: Apache/2.4.37 (centos) OpenSSL/1.1.1g
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: upgrade-insecure-requests
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Expect-CT: max-age=7776000, enforce
Referrer-Policy: no-referrer-when-downgrade
Last-Modified: Tue, 09 Aug 2022 11:47:06 GMT
ETag: "778b-5e5cd7ddb5193"
Accept-Ranges: bytes
Content-Length: 30603
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
libreriaguillermo.com/wp-content/plugins/ays-popup-box/public/css/animate.css?ver=3.0.9
51.38.189.36200 OK 58 kB URL HTTP/1.1 libreriaguillermo.com/wp-content/plugins/ays-popup-box/public/css/animate.css?ver=3.0.9
IP 51.38.189.36:0
File type ASCII text, with very long lines (57833)
Hash 37e40fb2401e9d466c5588da228b2394
49641a74b404ae91e24d8a1c97fb3666b5d6e3af
1e0311c1f09f8970cfee705d565137363e612ffdfbe8d02398fa4d473ba25a92
GET /wp-content/plugins/ays-popup-box/public/css/animate.css?ver=3.0.9 HTTP/1.1
Host: libreriaguillermo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://libreriaguillermo.com/wp-content/uploads/2022/07/ostriv_alpha_1_patch_3_money_hack.pdf
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 24 Sep 2022 15:54:11 GMT
Server: Apache/2.4.37 (centos) OpenSSL/1.1.1g
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: upgrade-insecure-requests
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Expect-CT: max-age=7776000, enforce
Referrer-Policy: no-referrer-when-downgrade
Last-Modified: Fri, 09 Sep 2022 07:16:42 GMT
ETag: "e2a7-5e83953e9077a"
Accept-Ranges: bytes
Content-Length: 58023
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: text/css
libreriaguillermo.com/wp-content/plugins/yith-woocommerce-wishlist/assets/css/style.css?ver=3.12.0
51.38.189.36200 OK 29 kB URL HTTP/1.1 libreriaguillermo.com/wp-content/plugins/yith-woocommerce-wishlist/assets/css/style.css?ver=3.12.0
IP 51.38.189.36:0
File type ASCII text, with very long lines (29337), with no line terminators
Hash 4de6dfc6ff180e33262861a679d40546
8de11c7f99e413282baa349d11657ccd2c468d4f
3e61990964ebd31443be4e6598163ebd71b73b139c42d52547b8a290f7d059ca
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/yith-woocommerce-wishlist/assets/css/style.css?ver=3.12.0 HTTP/1.1
Host: libreriaguillermo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://libreriaguillermo.com/wp-content/uploads/2022/07/ostriv_alpha_1_patch_3_money_hack.pdf
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 24 Sep 2022 15:54:11 GMT
Server: Apache/2.4.37 (centos) OpenSSL/1.1.1g
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: upgrade-insecure-requests
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Expect-CT: max-age=7776000, enforce
Referrer-Policy: no-referrer-when-downgrade
Last-Modified: Tue, 09 Aug 2022 11:47:06 GMT
ETag: "7299-5e5cd7ddb557b"
Accept-Ranges: bytes
Content-Length: 29337
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
libreriaguillermo.com/wp-includes/js/wp-emoji-release.min.js?ver=c6143cb609822277f7931505c01a7a7a
51.38.189.36200 OK 19 kB URL HTTP/1.1 libreriaguillermo.com/wp-includes/js/wp-emoji-release.min.js?ver=c6143cb609822277f7931505c01a7a7a
IP 51.38.189.36:0
File type ASCII text, with very long lines (15660)
Hash 32beb68a374e3aeac00abdf9e12b84ea
b5d18aa625e8696dd9d07cd0869337717b211ae0
5aad5fbd4238981a9ff5e2772ff1353dfe1a801fb49542fe157418c1438f7782
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/wp-emoji-release.min.js?ver=c6143cb609822277f7931505c01a7a7a HTTP/1.1
Host: libreriaguillermo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://libreriaguillermo.com/wp-content/uploads/2022/07/ostriv_alpha_1_patch_3_money_hack.pdf
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 24 Sep 2022 15:54:11 GMT
Server: Apache/2.4.37 (centos) OpenSSL/1.1.1g
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: upgrade-insecure-requests
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Expect-CT: max-age=7776000, enforce
Referrer-Policy: no-referrer-when-downgrade
Last-Modified: Wed, 25 May 2022 02:24:44 GMT
ETag: "48b9-5dfccc6c31a3f"
Accept-Ranges: bytes
Content-Length: 18617
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/javascript
push.services.mozilla.com/
34.214.17.205101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 34.214.17.205:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 8IFQEQa5MLb/RYkBBYWtLQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: i5WDPI3Ogb1fTfwrxHHk+h1HqtM=
libreriaguillermo.com/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.6.3
51.38.189.36200 OK 2.7 kB URL HTTP/1.1 libreriaguillermo.com/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.6.3
IP 51.38.189.36:0
Hash e6fae855021a88a0067fcc58121c594f
6299ac3987b5e81725781799dad361d19ac3b99d
e50f9ccd2d6582a58ba1879fa578e60d25fea4c5eedc07deafd14482b2403181
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.6.3 HTTP/1.1
Host: libreriaguillermo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://libreriaguillermo.com/wp-content/uploads/2022/07/ostriv_alpha_1_patch_3_money_hack.pdf
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 24 Sep 2022 15:54:11 GMT
Server: Apache/2.4.37 (centos) OpenSSL/1.1.1g
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: upgrade-insecure-requests
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Expect-CT: max-age=7776000, enforce
Referrer-Policy: no-referrer-when-downgrade
Last-Modified: Fri, 09 Sep 2022 07:16:36 GMT
ETag: "aab-5e839538e3533"
Accept-Ranges: bytes
Content-Length: 2731
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
libreriaguillermo.com/wp-content/plugins/mega_main_menu/src/css/cache.skin.css?ver=1619442834
51.38.189.36200 OK 131 kB URL HTTP/1.1 libreriaguillermo.com/wp-content/plugins/mega_main_menu/src/css/cache.skin.css?ver=1619442834
IP 51.38.189.36:0
File type ASCII text, with very long lines (65536), with no line terminators
Size 131 kB (130639 bytes)
Hash 6be0e54e76cb87c02ffe7be0fd9b9980
6fd66433386b63e2daed290b47d28ffd2575a623
e6d5e69f5c44da7cbfba6d45a7ac6e0baa862fdb92c6a5a32a72aff36b9d8d1e
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/mega_main_menu/src/css/cache.skin.css?ver=1619442834 HTTP/1.1
Host: libreriaguillermo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://libreriaguillermo.com/wp-content/uploads/2022/07/ostriv_alpha_1_patch_3_money_hack.pdf
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 24 Sep 2022 15:54:11 GMT
Server: Apache/2.4.37 (centos) OpenSSL/1.1.1g
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: upgrade-insecure-requests
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Expect-CT: max-age=7776000, enforce
Referrer-Policy: no-referrer-when-downgrade
Last-Modified: Mon, 26 Apr 2021 13:13:55 GMT
ETag: "1fe4f-5c0dfeaea0ac0"
Accept-Ranges: bytes
Content-Length: 130639
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
libreriaguillermo.com/wp-content/plugins/woocommerce/assets/css/woocommerce-layout.css?ver=6.8.2
51.38.189.36200 OK 18 kB URL HTTP/1.1 libreriaguillermo.com/wp-content/plugins/woocommerce/assets/css/woocommerce-layout.css?ver=6.8.2
IP 51.38.189.36:0
File type ASCII text, with very long lines (17809), with no line terminators
Hash 1ddf23fcfd1b2941c456ce01da8180a6
156ef5cc77061010e3f4123a47fa415c6391e5ff
dd18a408a35aa5d393458657eb24fb56ab754ece3f88bd78a038e5793d3f6991
GET /wp-content/plugins/woocommerce/assets/css/woocommerce-layout.css?ver=6.8.2 HTTP/1.1
Host: libreriaguillermo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://libreriaguillermo.com/wp-content/uploads/2022/07/ostriv_alpha_1_patch_3_money_hack.pdf
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 24 Sep 2022 15:54:11 GMT
Server: Apache/2.4.37 (centos) OpenSSL/1.1.1g
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: upgrade-insecure-requests
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Expect-CT: max-age=7776000, enforce
Referrer-Policy: no-referrer-when-downgrade
Last-Modified: Fri, 09 Sep 2022 07:16:48 GMT
ETag: "4591-5e83954500ecb"
Accept-Ranges: bytes
Content-Length: 17809
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: text/css
libreriaguillermo.com/wp-content/plugins/wp-opening-hours/dist/styles/main.css?ver=c6143cb609822277f7931505c01a7a7a
51.38.189.36200 OK 8.0 kB URL HTTP/1.1 libreriaguillermo.com/wp-content/plugins/wp-opening-hours/dist/styles/main.css?ver=c6143cb609822277f7931505c01a7a7a
IP 51.38.189.36:0
File type ASCII text, with very long lines (7948)
Hash be5c904dec1bc5b934ec74375f5975b1
878e3d628fc0097be077a3672b1c44dfe5d3f415
f0ea37f1de70599f2bf8e6f8073c330871ae692c961ef7c0282fa3448b777bfd
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/wp-opening-hours/dist/styles/main.css?ver=c6143cb609822277f7931505c01a7a7a HTTP/1.1
Host: libreriaguillermo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://libreriaguillermo.com/wp-content/uploads/2022/07/ostriv_alpha_1_patch_3_money_hack.pdf
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 24 Sep 2022 15:54:11 GMT
Server: Apache/2.4.37 (centos) OpenSSL/1.1.1g
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: upgrade-insecure-requests
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Expect-CT: max-age=7776000, enforce
Referrer-Policy: no-referrer-when-downgrade
Last-Modified: Mon, 24 May 2021 14:15:11 GMT
ETag: "1f32-5c31409a2f0ff"
Accept-Ranges: bytes
Content-Length: 7986
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css
libreriaguillermo.com/wp-content/plugins/woocommerce-point-of-sale/assets/dist/css/fonts.min.css?ver=5.2.10
51.38.189.36200 OK 403 B URL HTTP/1.1 libreriaguillermo.com/wp-content/plugins/woocommerce-point-of-sale/assets/dist/css/fonts.min.css?ver=5.2.10
IP 51.38.189.36:0
File type ASCII text, with very long lines (403), with no line terminators
Hash 4f3f072132a2554253acf8775bb1cb5c
22147bd95e94d08061c3d3eb71c37809e49c1c5f
d2b1e116ccc71d78f410061dacd23927d126ef98325199d1f60c041f3edf9363
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/woocommerce-point-of-sale/assets/dist/css/fonts.min.css?ver=5.2.10 HTTP/1.1
Host: libreriaguillermo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://libreriaguillermo.com/wp-content/uploads/2022/07/ostriv_alpha_1_patch_3_money_hack.pdf
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 24 Sep 2022 15:54:11 GMT
Server: Apache/2.4.37 (centos) OpenSSL/1.1.1g
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: upgrade-insecure-requests
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Expect-CT: max-age=7776000, enforce
Referrer-Policy: no-referrer-when-downgrade
Last-Modified: Tue, 16 Mar 2021 11:29:00 GMT
ETag: "193-5bda5ac41c201"
Accept-Ranges: bytes
Content-Length: 403
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css
libreriaguillermo.com/wp-content/plugins/woocommerce-point-of-sale/assets/dist/css/frontend.min.css?ver=5.2.10
51.38.189.36200 OK 150 B URL HTTP/1.1 libreriaguillermo.com/wp-content/plugins/woocommerce-point-of-sale/assets/dist/css/frontend.min.css?ver=5.2.10
IP 51.38.189.36:0
File type ASCII text, with no line terminators
Hash 95c90c9cf0336590fcf9922b7a48c531
f94d269f817d1e94c7f2ff47a8d8fa1effb8e8cb
0327fdb91d439b066fb4630893688aaf1e75c15d541c2dc95bf0d7ee86c6af9a
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/woocommerce-point-of-sale/assets/dist/css/frontend.min.css?ver=5.2.10 HTTP/1.1
Host: libreriaguillermo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://libreriaguillermo.com/wp-content/uploads/2022/07/ostriv_alpha_1_patch_3_money_hack.pdf
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 24 Sep 2022 15:54:11 GMT
Server: Apache/2.4.37 (centos) OpenSSL/1.1.1g
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: upgrade-insecure-requests
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Expect-CT: max-age=7776000, enforce
Referrer-Policy: no-referrer-when-downgrade
Last-Modified: Tue, 16 Mar 2021 11:29:00 GMT
ETag: "96-5bda5ac41c5e9"
Accept-Ranges: bytes
Content-Length: 150
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
libreriaguillermo.com/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-style.css?ver=8.0.0
51.38.189.36200 OK 210 kB URL HTTP/1.1 libreriaguillermo.com/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-style.css?ver=8.0.0
IP 51.38.189.36:0
File type Unicode text, UTF-8 text, with very long lines (65527), with no line terminators
Size 210 kB (209867 bytes)
Hash b14e0a53861ed03f5d857154b373311c
7f6e0d751442277366d15425c64ee4c31752037c
f3ddaf2e45a19650e8f47a163e4955e467e74803f6d20c3dbde53ce96dbdd476
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-style.css?ver=8.0.0 HTTP/1.1
Host: libreriaguillermo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://libreriaguillermo.com/wp-content/uploads/2022/07/ostriv_alpha_1_patch_3_money_hack.pdf
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 24 Sep 2022 15:54:11 GMT
Server: Apache/2.4.37 (centos) OpenSSL/1.1.1g
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: upgrade-insecure-requests
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Expect-CT: max-age=7776000, enforce
Referrer-Policy: no-referrer-when-downgrade
Last-Modified: Fri, 09 Sep 2022 07:16:49 GMT
ETag: "333cb-5e8395454a696"
Accept-Ranges: bytes
Content-Length: 209867
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
libreriaguillermo.com/wp-content/plugins/wpc-product-quantity/assets/css/frontend.css?ver=2.4.8
51.38.189.36200 OK 1.6 kB URL HTTP/1.1 libreriaguillermo.com/wp-content/plugins/wpc-product-quantity/assets/css/frontend.css?ver=2.4.8
IP 51.38.189.36:0
File type ASCII text, with CRLF line terminators
Hash eb1d54a7a2a6ba9891571bbe867ae624
9cf2c60cb2f9554a091627a14ac81be0a453a74a
98629847a78d3e76a08bce28dc1504701089662bdcfe2817b1b6871cf6629b41
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/wpc-product-quantity/assets/css/frontend.css?ver=2.4.8 HTTP/1.1
Host: libreriaguillermo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://libreriaguillermo.com/wp-content/uploads/2022/07/ostriv_alpha_1_patch_3_money_hack.pdf
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 24 Sep 2022 15:54:11 GMT
Server: Apache/2.4.37 (centos) OpenSSL/1.1.1g
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: upgrade-insecure-requests
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Expect-CT: max-age=7776000, enforce
Referrer-Policy: no-referrer-when-downgrade
Last-Modified: Fri, 09 Sep 2022 07:16:53 GMT
ETag: "649-5e839549b5875"
Accept-Ranges: bytes
Content-Length: 1609
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: text/css
libreriaguillermo.com/wp-content/plugins/woocommerce/assets/css/woocommerce.css?ver=6.8.2
51.38.189.36200 OK 63 kB URL HTTP/1.1 libreriaguillermo.com/wp-content/plugins/woocommerce/assets/css/woocommerce.css?ver=6.8.2
IP 51.38.189.36:0
File type Unicode text, UTF-8 text, with very long lines (62753), with no line terminators
Hash 979b8b56e801469d95453055366ef54c
cb8a0bb5f00fee130a289ea4dfafc00fa53e1c04
d3322ccb3912f7a9485eb1d75971fd5e1eb49c6575ff5ad985fb5496333e8c8b
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/woocommerce/assets/css/woocommerce.css?ver=6.8.2 HTTP/1.1
Host: libreriaguillermo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://libreriaguillermo.com/wp-content/uploads/2022/07/ostriv_alpha_1_patch_3_money_hack.pdf
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 24 Sep 2022 15:54:11 GMT
Server: Apache/2.4.37 (centos) OpenSSL/1.1.1g
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: upgrade-insecure-requests
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Expect-CT: max-age=7776000, enforce
Referrer-Policy: no-referrer-when-downgrade
Last-Modified: Fri, 09 Sep 2022 07:16:48 GMT
ETag: "f523-5e83954500ecb"
Accept-Ranges: bytes
Content-Length: 62755
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css
libreriaguillermo.com/wp-content/themes/wendy/style.css?ver=c6143cb609822277f7931505c01a7a7a
51.38.189.36200 OK 3.3 kB URL HTTP/1.1 libreriaguillermo.com/wp-content/themes/wendy/style.css?ver=c6143cb609822277f7931505c01a7a7a
IP 51.38.189.36:0
File type ASCII text, with very long lines (493)
Hash 95c9d9869d5ac4019468e22c7accf33a
4aa816874151c51dfa904778e273a1c2a669f3a3
53c2b3e1aabe3f1d71a56e35d5301518f20e8bc0391594d0d401a3e767c326fb
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/wendy/style.css?ver=c6143cb609822277f7931505c01a7a7a HTTP/1.1
Host: libreriaguillermo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://libreriaguillermo.com/wp-content/uploads/2022/07/ostriv_alpha_1_patch_3_money_hack.pdf
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 24 Sep 2022 15:54:11 GMT
Server: Apache/2.4.37 (centos) OpenSSL/1.1.1g
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: upgrade-insecure-requests
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Expect-CT: max-age=7776000, enforce
Referrer-Policy: no-referrer-when-downgrade
Last-Modified: Tue, 16 Mar 2021 11:29:02 GMT
ETag: "cf5-5bda5ac55a7d4"
Accept-Ranges: bytes
Content-Length: 3317
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: text/css
libreriaguillermo.com/wp-content/themes/wendy-child/style.css?ver=1.0.0
51.38.189.36200 OK 532 B URL HTTP/1.1 libreriaguillermo.com/wp-content/themes/wendy-child/style.css?ver=1.0.0
IP 51.38.189.36:0
Hash eb6e30faf2fd0ec7c982f9d5506ba5f9
b039c1fa77d78fe63b4bc54de893a8e57e3e4ca4
652903fc9d25dcbf426649368e000f68fae82631ee7501a551e32541c6654927
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/wendy-child/style.css?ver=1.0.0 HTTP/1.1
Host: libreriaguillermo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://libreriaguillermo.com/wp-content/uploads/2022/07/ostriv_alpha_1_patch_3_money_hack.pdf
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 24 Sep 2022 15:54:11 GMT
Server: Apache/2.4.37 (centos) OpenSSL/1.1.1g
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: upgrade-insecure-requests
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Expect-CT: max-age=7776000, enforce
Referrer-Policy: no-referrer-when-downgrade
Last-Modified: Tue, 16 Mar 2021 11:29:02 GMT
ETag: "214-5bda5ac559c1c"
Accept-Ranges: bytes
Content-Length: 532
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: text/css
libreriaguillermo.com/wp-content/themes/wendy/js/slick/slick.css?ver=1.3.15
51.38.189.36200 OK 4.1 kB URL HTTP/1.1 libreriaguillermo.com/wp-content/themes/wendy/js/slick/slick.css?ver=1.3.15
IP 51.38.189.36:0
File type Unicode text, UTF-8 text, with very long lines (342)
Hash 06ea0c154bbac8869d3fcd7f3ddef1ba
6f6b5384748bb7c8ea84568298896d619ece334d
fd89504555386dbe7e057f3d3af60247531673ec8a533d31069a49f3143e48a1
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/wendy/js/slick/slick.css?ver=1.3.15 HTTP/1.1
Host: libreriaguillermo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://libreriaguillermo.com/wp-content/uploads/2022/07/ostriv_alpha_1_patch_3_money_hack.pdf
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 24 Sep 2022 15:54:11 GMT
Server: Apache/2.4.37 (centos) OpenSSL/1.1.1g
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: upgrade-insecure-requests
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Expect-CT: max-age=7776000, enforce
Referrer-Policy: no-referrer-when-downgrade
Last-Modified: Tue, 16 Mar 2021 11:29:02 GMT
ETag: "1026-5bda5ac55de84"
Accept-Ranges: bytes
Content-Length: 4134
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css
libreriaguillermo.com/wp-content/themes/wendy/js/chosen/chosen.min.css?ver=1.3.0
51.38.189.36200 OK 11 kB URL HTTP/1.1 libreriaguillermo.com/wp-content/themes/wendy/js/chosen/chosen.min.css?ver=1.3.0
IP 51.38.189.36:0
File type ASCII text, with very long lines (10608)
Hash 3ec0caaf02bd5384967ca6bfadc71f5d
10f4ab6d6d0851c96924d77d9c9bf020d9ad9fd6
9e026f7a9ce98d3ed4978f31ccde8d2310cf79626f468a0bae080dc2f9ea792a
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/wendy/js/chosen/chosen.min.css?ver=1.3.0 HTTP/1.1
Host: libreriaguillermo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://libreriaguillermo.com/wp-content/uploads/2022/07/ostriv_alpha_1_patch_3_money_hack.pdf
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 24 Sep 2022 15:54:11 GMT
Server: Apache/2.4.37 (centos) OpenSSL/1.1.1g
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: upgrade-insecure-requests
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Expect-CT: max-age=7776000, enforce
Referrer-Policy: no-referrer-when-downgrade
Last-Modified: Tue, 16 Mar 2021 11:29:02 GMT
ETag: "29ea-5bda5ac55e26c"
Accept-Ranges: bytes
Content-Length: 10730
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
libreriaguillermo.com/wp-content/themes/wendy/js/fancybox/jquery.fancybox.css?ver=2.1.5
51.38.189.36200 OK 4.9 kB URL HTTP/1.1 libreriaguillermo.com/wp-content/themes/wendy/js/fancybox/jquery.fancybox.css?ver=2.1.5
IP 51.38.189.36:0
Hash 6c55951ce1e3115711f63f99b7501f3a
5f163444617b6cf267342f06ac166a237bb62df9
968a8e56e4adaf8c135199ebd7f6cc065424ca45974d4dfbeb5607e69fe72fcd
GET /wp-content/themes/wendy/js/fancybox/jquery.fancybox.css?ver=2.1.5 HTTP/1.1
Host: libreriaguillermo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://libreriaguillermo.com/wp-content/uploads/2022/07/ostriv_alpha_1_patch_3_money_hack.pdf
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 24 Sep 2022 15:54:11 GMT
Server: Apache/2.4.37 (centos) OpenSSL/1.1.1g
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: upgrade-insecure-requests
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Expect-CT: max-age=7776000, enforce
Referrer-Policy: no-referrer-when-downgrade
Last-Modified: Tue, 16 Mar 2021 11:29:02 GMT
ETag: "131f-5bda5ac55da9c"
Accept-Ranges: bytes
Content-Length: 4895
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: text/css
libreriaguillermo.com/wp-content/themes/wendy/js/fancybox/helpers/jquery.fancybox-buttons.css?ver=1.0.5
51.38.189.36200 OK 2.4 kB URL HTTP/1.1 libreriaguillermo.com/wp-content/themes/wendy/js/fancybox/helpers/jquery.fancybox-buttons.css?ver=1.0.5
IP 51.38.189.36:0
Hash cac75538c2e3ddfadef839feaca8e356
1a9d8e5c22b371fcc69d4dbbb823d9c39f04c0c8
ae270bcb50f2d50d85d66e5fa909ad765d6a899b387bb6508d3d3e94bad43ec1
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/wendy/js/fancybox/helpers/jquery.fancybox-buttons.css?ver=1.0.5 HTTP/1.1
Host: libreriaguillermo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://libreriaguillermo.com/wp-content/uploads/2022/07/ostriv_alpha_1_patch_3_money_hack.pdf
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 24 Sep 2022 15:54:11 GMT
Server: Apache/2.4.37 (centos) OpenSSL/1.1.1g
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: upgrade-insecure-requests
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Expect-CT: max-age=7776000, enforce
Referrer-Policy: no-referrer-when-downgrade
Last-Modified: Tue, 16 Mar 2021 11:29:02 GMT
ETag: "98f-5bda5ac55da9c"
Accept-Ranges: bytes
Content-Length: 2447
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: text/css
libreriaguillermo.com/wp-content/themes/wendy/js/fancybox/helpers/jquery.fancybox-thumbs.css?ver=1.0.7
51.38.189.36200 OK 735 B URL HTTP/1.1 libreriaguillermo.com/wp-content/themes/wendy/js/fancybox/helpers/jquery.fancybox-thumbs.css?ver=1.0.7
IP 51.38.189.36:0
Hash 52ddd84a9f42c1d4cd86d518a7f7e8bc
4ac329c16a5277592fc12a37cca3d72ca4ec292f
d836d81acb5d5e712c55c4f7911d93513fe1d7d0336353085aa5bd0f36b6998c
GET /wp-content/themes/wendy/js/fancybox/helpers/jquery.fancybox-thumbs.css?ver=1.0.7 HTTP/1.1
Host: libreriaguillermo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://libreriaguillermo.com/wp-content/uploads/2022/07/ostriv_alpha_1_patch_3_money_hack.pdf
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 24 Sep 2022 15:54:11 GMT
Server: Apache/2.4.37 (centos) OpenSSL/1.1.1g
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: upgrade-insecure-requests
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Expect-CT: max-age=7776000, enforce
Referrer-Policy: no-referrer-when-downgrade
Last-Modified: Tue, 16 Mar 2021 11:29:02 GMT
ETag: "2df-5bda5ac55da9c"
Accept-Ranges: bytes
Content-Length: 735
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: text/css
libreriaguillermo.com/wp-content/themes/wendy-child/style.css?ver=c6143cb609822277f7931505c01a7a7a
51.38.189.36200 OK 532 B URL HTTP/1.1 libreriaguillermo.com/wp-content/themes/wendy-child/style.css?ver=c6143cb609822277f7931505c01a7a7a
IP 51.38.189.36:0
Hash eb6e30faf2fd0ec7c982f9d5506ba5f9
b039c1fa77d78fe63b4bc54de893a8e57e3e4ca4
652903fc9d25dcbf426649368e000f68fae82631ee7501a551e32541c6654927
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/wendy-child/style.css?ver=c6143cb609822277f7931505c01a7a7a HTTP/1.1
Host: libreriaguillermo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://libreriaguillermo.com/wp-content/uploads/2022/07/ostriv_alpha_1_patch_3_money_hack.pdf
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 24 Sep 2022 15:54:11 GMT
Server: Apache/2.4.37 (centos) OpenSSL/1.1.1g
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: upgrade-insecure-requests
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Expect-CT: max-age=7776000, enforce
Referrer-Policy: no-referrer-when-downgrade
Last-Modified: Tue, 16 Mar 2021 11:29:02 GMT
ETag: "214-5bda5ac559c1c"
Accept-Ranges: bytes
Content-Length: 532
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: text/css
libreriaguillermo.com/wp-content/themes/wendy/css/megamenu_style.css?ver=2.0.4
51.38.189.36200 OK 92 kB URL HTTP/1.1 libreriaguillermo.com/wp-content/themes/wendy/css/megamenu_style.css?ver=2.0.4
IP 51.38.189.36:0
File type ASCII text, with very long lines (483)
Hash 3709f413b8efa8b53fd07d31ccc6f418
d817a2f1a1c1ae72f92b9f2e0abdd60091c169c1
b5356bfff680c094b9c953fdd408e8d5c4be0fef27d84b55dfce9f7c7397da50
GET /wp-content/themes/wendy/css/megamenu_style.css?ver=2.0.4 HTTP/1.1
Host: libreriaguillermo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://libreriaguillermo.com/wp-content/uploads/2022/07/ostriv_alpha_1_patch_3_money_hack.pdf
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 24 Sep 2022 15:54:11 GMT
Server: Apache/2.4.37 (centos) OpenSSL/1.1.1g
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: upgrade-insecure-requests
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Expect-CT: max-age=7776000, enforce
Referrer-Policy: no-referrer-when-downgrade
Last-Modified: Tue, 16 Mar 2021 11:29:02 GMT
ETag: "166ee-5bda5ac55afa4"
Accept-Ranges: bytes
Content-Length: 91886
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: text/css
libreriaguillermo.com/wp-content/themes/wendy/css/font-awesome.min.css?ver=4.2.0
51.38.189.36200 OK 24 kB URL HTTP/1.1 libreriaguillermo.com/wp-content/themes/wendy/css/font-awesome.min.css?ver=4.2.0
IP 51.38.189.36:0
File type ASCII text, with very long lines (23577)
Hash 04425bbdc6243fc6e54bf8984fe50330
8c15c6bd82c71e9ef1bb11cf24e502fe07518ac5
541ac58217a8ade1a5e292a65a0661dc9db7a49ae13654943817a4fbc6761afd
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/wendy/css/font-awesome.min.css?ver=4.2.0 HTTP/1.1
Host: libreriaguillermo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://libreriaguillermo.com/wp-content/uploads/2022/07/ostriv_alpha_1_patch_3_money_hack.pdf
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 24 Sep 2022 15:54:11 GMT
Server: Apache/2.4.37 (centos) OpenSSL/1.1.1g
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: upgrade-insecure-requests
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Expect-CT: max-age=7776000, enforce
Referrer-Policy: no-referrer-when-downgrade
Last-Modified: Tue, 16 Mar 2021 11:29:02 GMT
ETag: "5cbb-5bda5ac55abbc"
Accept-Ranges: bytes
Content-Length: 23739
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css
libreriaguillermo.com/wp-content/plugins/mega_main_menu/src/css/external/font-awesome.css?ver=2.0.2
51.38.189.36200 OK 24 kB URL HTTP/1.1 libreriaguillermo.com/wp-content/plugins/mega_main_menu/src/css/external/font-awesome.css?ver=2.0.2
IP 51.38.189.36:0
Hash 5936d33888796ade3f4cc6ed08bb278c
a4330603883a7231ef2915660ea4e6edfa069a18
790aa782ac15abea4a7f0b0d54c89ca88d7fffbaa3226d98e603ad86f3fa2b6a
GET /wp-content/plugins/mega_main_menu/src/css/external/font-awesome.css?ver=2.0.2 HTTP/1.1
Host: libreriaguillermo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://libreriaguillermo.com/wp-content/uploads/2022/07/ostriv_alpha_1_patch_3_money_hack.pdf
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 24 Sep 2022 15:54:11 GMT
Server: Apache/2.4.37 (centos) OpenSSL/1.1.1g
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: upgrade-insecure-requests
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Expect-CT: max-age=7776000, enforce
Referrer-Policy: no-referrer-when-downgrade
Last-Modified: Tue, 16 Mar 2021 11:29:01 GMT
ETag: "5d11-5bda5ac50315f"
Accept-Ranges: bytes
Content-Length: 23825
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: text/css
libreriaguillermo.com/wp-content/plugins/wc-dynamic-pricing-and-discounts/extensions/promotion-countdown-timer/assets/styles.css?ver=2.4.4
51.38.189.36200 OK 1.2 kB URL HTTP/1.1 libreriaguillermo.com/wp-content/plugins/wc-dynamic-pricing-and-discounts/extensions/promotion-countdown-timer/assets/styles.css?ver=2.4.4
IP 51.38.189.36:0
Hash c95e92c9e702c57c7a749aae077f703e
1b4718fb397497beff25f7f624461368d056d91d
c532c9dc56c132d50f7e7b20abdb695c8ea4b7195bdb5b88dddbe111639fe403
GET /wp-content/plugins/wc-dynamic-pricing-and-discounts/extensions/promotion-countdown-timer/assets/styles.css?ver=2.4.4 HTTP/1.1
Host: libreriaguillermo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://libreriaguillermo.com/wp-content/uploads/2022/07/ostriv_alpha_1_patch_3_money_hack.pdf
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 24 Sep 2022 15:54:11 GMT
Server: Apache/2.4.37 (centos) OpenSSL/1.1.1g
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: upgrade-insecure-requests
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Expect-CT: max-age=7776000, enforce
Referrer-Policy: no-referrer-when-downgrade
Last-Modified: Fri, 19 Aug 2022 10:25:22 GMT
ETag: "4d4-5e69583f8f991"
Accept-Ranges: bytes
Content-Length: 1236
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: text/css
libreriaguillermo.com/wp-content/plugins/easy-fancybox/css/jquery.fancybox.min.css?ver=1.3.24
51.38.189.36200 OK 4.1 kB URL HTTP/1.1 libreriaguillermo.com/wp-content/plugins/easy-fancybox/css/jquery.fancybox.min.css?ver=1.3.24
IP 51.38.189.36:0
File type ASCII text, with very long lines (4058), with no line terminators
Hash bc588054d45f910494ceba6455ac77f2
59c47f34f56e8a5ff2434ff6e339a5b4e0badebd
f34bb7d9c8f2db0e78e5d7b226bc169182f8c22e7cd1a3e7b5767519b709c1bc
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/easy-fancybox/css/jquery.fancybox.min.css?ver=1.3.24 HTTP/1.1
Host: libreriaguillermo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://libreriaguillermo.com/wp-content/uploads/2022/07/ostriv_alpha_1_patch_3_money_hack.pdf
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 24 Sep 2022 15:54:11 GMT
Server: Apache/2.4.37 (centos) OpenSSL/1.1.1g
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: upgrade-insecure-requests
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Expect-CT: max-age=7776000, enforce
Referrer-Policy: no-referrer-when-downgrade
Last-Modified: Fri, 09 Sep 2022 07:16:37 GMT
ETag: "fda-5e83953a274db"
Accept-Ranges: bytes
Content-Length: 4058
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: text/css
libreriaguillermo.com/wp-content/themes/wendy/css/bootstrap.min.css?ver=3.2.0
51.38.189.36200 OK 110 kB URL HTTP/1.1 libreriaguillermo.com/wp-content/themes/wendy/css/bootstrap.min.css?ver=3.2.0
IP 51.38.189.36:0
File type ASCII text, with very long lines (65371)
Size 110 kB (109518 bytes)
Hash ec457ef8e52f92d9905f9449dcc89149
ed352c7bec8043c0fb6d7f606495bbd2f83682ff
4b3e69cd12a96afd489ec75a72879eada9a432f7afdcca9d33dbf3d0802cd47f
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/wendy/css/bootstrap.min.css?ver=3.2.0 HTTP/1.1
Host: libreriaguillermo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://libreriaguillermo.com/wp-content/uploads/2022/07/ostriv_alpha_1_patch_3_money_hack.pdf
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 24 Sep 2022 15:54:11 GMT
Server: Apache/2.4.37 (centos) OpenSSL/1.1.1g
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: upgrade-insecure-requests
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Expect-CT: max-age=7776000, enforce
Referrer-Policy: no-referrer-when-downgrade
Last-Modified: Tue, 16 Mar 2021 11:29:02 GMT
ETag: "1abce-5bda5ac55abbc"
Accept-Ranges: bytes
Content-Length: 109518
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: text/css
libreriaguillermo.com/wp-content/plugins/mega_main_menu/src/css/external/icomoon.css?ver=2.0.2
51.38.189.36200 OK 65 kB URL HTTP/1.1 libreriaguillermo.com/wp-content/plugins/mega_main_menu/src/css/external/icomoon.css?ver=2.0.2
IP 51.38.189.36:0
Hash b2d3a36b39145e0474f3000b96cc238b
5c68fbfa01c895520d37bc1d77aa632f187773b6
9cea70c9910042fc73c62c87a2280582e83bd53248313a34bcd97f19e48cf582
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/mega_main_menu/src/css/external/icomoon.css?ver=2.0.2 HTTP/1.1
Host: libreriaguillermo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://libreriaguillermo.com/wp-content/uploads/2022/07/ostriv_alpha_1_patch_3_money_hack.pdf
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 24 Sep 2022 15:54:11 GMT
Server: Apache/2.4.37 (centos) OpenSSL/1.1.1g
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: upgrade-insecure-requests
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Expect-CT: max-age=7776000, enforce
Referrer-Policy: no-referrer-when-downgrade
Last-Modified: Tue, 16 Mar 2021 11:29:01 GMT
ETag: "fca6-5bda5ac50315f"
Accept-Ranges: bytes
Content-Length: 64678
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: text/css
libreriaguillermo.com/wp-content/plugins/yith-woocommerce-ajax-search/assets/css/yith_wcas_ajax_search.css?ver=1.23.0
51.38.189.36200 OK 822 B URL HTTP/1.1 libreriaguillermo.com/wp-content/plugins/yith-woocommerce-ajax-search/assets/css/yith_wcas_ajax_search.css?ver=1.23.0
IP 51.38.189.36:0
File type ASCII text, with CRLF line terminators
Hash efa0e8ddbc4ee8b7d01e3ec1fdba5214
e440e088393b5e83d7605df59cc81b706d8c0db9
16c8a3aee20d1b0046149b163664a95e91700ba539bfebb89ce13b58f03a4ca6
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/yith-woocommerce-ajax-search/assets/css/yith_wcas_ajax_search.css?ver=1.23.0 HTTP/1.1
Host: libreriaguillermo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://libreriaguillermo.com/wp-content/uploads/2022/07/ostriv_alpha_1_patch_3_money_hack.pdf
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 24 Sep 2022 15:54:11 GMT
Server: Apache/2.4.37 (centos) OpenSSL/1.1.1g
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: upgrade-insecure-requests
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Expect-CT: max-age=7776000, enforce
Referrer-Policy: no-referrer-when-downgrade
Last-Modified: Fri, 09 Sep 2022 07:16:56 GMT
ETag: "336-5e83954bcf608"
Accept-Ranges: bytes
Content-Length: 822
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: text/css
libreriaguillermo.com/wp-content/plugins/alert-notice-boxes/css/anb.css?ver=210408-192158
51.38.189.36200 OK 4.4 kB URL HTTP/1.1 libreriaguillermo.com/wp-content/plugins/alert-notice-boxes/css/anb.css?ver=210408-192158
IP 51.38.189.36:0
Hash fd53ba1a87f3ac3b947b9ed8dfcf5c7c
114ae40bb755d6b9c5d8939ea0ac1ed66cdad6f0
6e9b572ccec8f9d64ecb8552648b1d09ecc8965c7fb60f7de9d4adbe24ff2e0a
GET /wp-content/plugins/alert-notice-boxes/css/anb.css?ver=210408-192158 HTTP/1.1
Host: libreriaguillermo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://libreriaguillermo.com/wp-content/uploads/2022/07/ostriv_alpha_1_patch_3_money_hack.pdf
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 24 Sep 2022 15:54:11 GMT
Server: Apache/2.4.37 (centos) OpenSSL/1.1.1g
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: upgrade-insecure-requests
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Expect-CT: max-age=7776000, enforce
Referrer-Policy: no-referrer-when-downgrade
Last-Modified: Thu, 08 Apr 2021 19:21:58 GMT
ETag: "1154-5bf7af610c03c"
Accept-Ranges: bytes
Content-Length: 4436
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: text/css
libreriaguillermo.com/wp-content/plugins/alert-notice-boxes/css/anb-dynamic.css?ver=210408-192203
51.38.189.36200 OK 12 B URL HTTP/1.1 libreriaguillermo.com/wp-content/plugins/alert-notice-boxes/css/anb-dynamic.css?ver=210408-192203
IP 51.38.189.36:0
Hash 36c6f0b2061da514c400c0bc2749b5cf
6a48b1275cd442524903dc85f7801407f4140172
fbfa5ad7d9aa0afe439ec4ff3883acc4cb92b62cb67c40d674320c9aa1d4642d
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/alert-notice-boxes/css/anb-dynamic.css?ver=210408-192203 HTTP/1.1
Host: libreriaguillermo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://libreriaguillermo.com/wp-content/uploads/2022/07/ostriv_alpha_1_patch_3_money_hack.pdf
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 24 Sep 2022 15:54:11 GMT
Server: Apache/2.4.37 (centos) OpenSSL/1.1.1g
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: upgrade-insecure-requests
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Expect-CT: max-age=7776000, enforce
Referrer-Policy: no-referrer-when-downgrade
Last-Modified: Thu, 08 Apr 2021 19:22:03 GMT
ETag: "c-5bf7af6530d12"
Accept-Ranges: bytes
Content-Length: 12
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: text/css
libreriaguillermo.com/wp-content/plugins/jquery-manager/assets/js/jquery-2.2.4.min.js
51.38.189.36200 OK 86 kB URL HTTP/1.1 libreriaguillermo.com/wp-content/plugins/jquery-manager/assets/js/jquery-2.2.4.min.js
IP 51.38.189.36:0
File type ASCII text, with very long lines (32082), with CRLF line terminators
Hash 1e5198c8ad647a2ae6445e0f897b80f5
140ecc30456ec414dcc99a71ac4726b01aed23b3
07c6daefe5fa93fe9f7ab75369e712c1c37c498369e4a937b0302bfee184ced5
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/jquery-manager/assets/js/jquery-2.2.4.min.js HTTP/1.1
Host: libreriaguillermo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://libreriaguillermo.com/wp-content/uploads/2022/07/ostriv_alpha_1_patch_3_money_hack.pdf
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 24 Sep 2022 15:54:11 GMT
Server: Apache/2.4.37 (centos) OpenSSL/1.1.1g
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: upgrade-insecure-requests
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Expect-CT: max-age=7776000, enforce
Referrer-Policy: no-referrer-when-downgrade
Last-Modified: Tue, 16 Mar 2021 11:29:01 GMT
ETag: "14e5f-5bda5ac4b0cf2"
Accept-Ranges: bytes
Content-Length: 85599
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: application/javascript
libreriaguillermo.com/wp-content/plugins/eu-cookie-law/css/style.css?ver=c6143cb609822277f7931505c01a7a7a
51.38.189.36200 OK 3.7 kB URL HTTP/1.1 libreriaguillermo.com/wp-content/plugins/eu-cookie-law/css/style.css?ver=c6143cb609822277f7931505c01a7a7a
IP 51.38.189.36:0
File type ASCII text, with CRLF line terminators
Hash ee50d75624117dc06c3de63b2fa5f447
0ff587a670e78b7dc8a50b15859d0aaf41a22687
e4d95c8c18f88a5e9fb28ebabb034f88f48a439bf512d0bdff78161efd302811
GET /wp-content/plugins/eu-cookie-law/css/style.css?ver=c6143cb609822277f7931505c01a7a7a HTTP/1.1
Host: libreriaguillermo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://libreriaguillermo.com/wp-content/uploads/2022/07/ostriv_alpha_1_patch_3_money_hack.pdf
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 24 Sep 2022 15:54:11 GMT
Server: Apache/2.4.37 (centos) OpenSSL/1.1.1g
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: upgrade-insecure-requests
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Expect-CT: max-age=7776000, enforce
Referrer-Policy: no-referrer-when-downgrade
Last-Modified: Tue, 16 Mar 2021 11:33:23 GMT
ETag: "e73-5bda5bbeac28f"
Accept-Ranges: bytes
Content-Length: 3699
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: text/css
libreriaguillermo.com/wp-content/plugins/ays-popup-box/public/css/ays-pb-public.css?ver=3.0.9
51.38.189.36200 OK 40 kB URL HTTP/1.1 libreriaguillermo.com/wp-content/plugins/ays-popup-box/public/css/ays-pb-public.css?ver=3.0.9
IP 51.38.189.36:0
Hash e35e031cf08d56f8c7bd2cf11cf18fa4
e8b913748242f8d501c7afdb945ffe3cb794613c
99aa0e5c261944d31257af0cff3eebaf924193c614faf1e262fab51f329ec5e7
GET /wp-content/plugins/ays-popup-box/public/css/ays-pb-public.css?ver=3.0.9 HTTP/1.1
Host: libreriaguillermo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://libreriaguillermo.com/wp-content/uploads/2022/07/ostriv_alpha_1_patch_3_money_hack.pdf
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 24 Sep 2022 15:54:11 GMT
Server: Apache/2.4.37 (centos) OpenSSL/1.1.1g
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: upgrade-insecure-requests
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Expect-CT: max-age=7776000, enforce
Referrer-Policy: no-referrer-when-downgrade
Last-Modified: Fri, 09 Sep 2022 07:16:42 GMT
ETag: "9db3-5e83953e9077a"
Accept-Ranges: bytes
Content-Length: 40371
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: text/css
libreriaguillermo.com/wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.5.25
51.38.189.36200 OK 60 kB URL HTTP/1.1 libreriaguillermo.com/wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.5.25
IP 51.38.189.36:0
File type Unicode text, UTF-8 text, with very long lines (12602), with CRLF line terminators
Hash 0168820b8b6b21496be0b4c82ed52f7e
6b3f9232b6af6c71a70bb5650e2a7321227929d2
f4c9c99a613a78e9163b640fd879ebdd5bb748329175474084ab266970c82938
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.5.25 HTTP/1.1
Host: libreriaguillermo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://libreriaguillermo.com/wp-content/uploads/2022/07/ostriv_alpha_1_patch_3_money_hack.pdf
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 24 Sep 2022 15:54:11 GMT
Server: Apache/2.4.37 (centos) OpenSSL/1.1.1g
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: upgrade-insecure-requests
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Expect-CT: max-age=7776000, enforce
Referrer-Policy: no-referrer-when-downgrade
Last-Modified: Mon, 25 Jul 2022 22:18:35 GMT
ETag: "e87c-5e4a890a40557"
Accept-Ranges: bytes
Content-Length: 59516
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: text/css
libreriaguillermo.com/wp-content/themes/wendy/css/theme1.css?ver=1.0.0
51.38.189.36200 OK 273 kB URL HTTP/1.1 libreriaguillermo.com/wp-content/themes/wendy/css/theme1.css?ver=1.0.0
IP 51.38.189.36:0
Size 273 kB (272929 bytes)
Hash aff5f9e3c70bd1a34f61781b66b616f3
ebcb3e23715d9b1b59b30da332442bf6d147ca71
4c4ba7ee04af19b882c4e6960914631ec01e0cbc49d90f5d9a5d310a64c2756d
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/wendy/css/theme1.css?ver=1.0.0 HTTP/1.1
Host: libreriaguillermo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://libreriaguillermo.com/wp-content/uploads/2022/07/ostriv_alpha_1_patch_3_money_hack.pdf
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 24 Sep 2022 15:54:11 GMT
Server: Apache/2.4.37 (centos) OpenSSL/1.1.1g
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: upgrade-insecure-requests
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Expect-CT: max-age=7776000, enforce
Referrer-Policy: no-referrer-when-downgrade
Last-Modified: Tue, 16 Mar 2021 11:29:02 GMT
ETag: "42a21-5bda5ac55afa4"
Accept-Ranges: bytes
Content-Length: 272929
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: text/css
libreriaguillermo.com/wp-content/plugins/jquery-manager/assets/js/jquery-migrate-1.4.1.min.js
51.38.189.36200 OK 10 kB URL HTTP/1.1 libreriaguillermo.com/wp-content/plugins/jquery-manager/assets/js/jquery-migrate-1.4.1.min.js
IP 51.38.189.36:0
File type ASCII text, with very long lines (9959), with CRLF line terminators
Hash b644343c88a30cb4b610a852b78c4ae1
77e3e9916241582b6ca0b73128daee0aec4d006c
ef0968035e387c8b468f4a943a9b5998d159c9e2f1a4994c70aa86bf53a9316d
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/jquery-manager/assets/js/jquery-migrate-1.4.1.min.js HTTP/1.1
Host: libreriaguillermo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://libreriaguillermo.com/wp-content/uploads/2022/07/ostriv_alpha_1_patch_3_money_hack.pdf
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 24 Sep 2022 15:54:11 GMT
Server: Apache/2.4.37 (centos) OpenSSL/1.1.1g
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: upgrade-insecure-requests
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Expect-CT: max-age=7776000, enforce
Referrer-Policy: no-referrer-when-downgrade
Last-Modified: Tue, 16 Mar 2021 11:29:01 GMT
ETag: "2749-5bda5ac4b0cf2"
Accept-Ranges: bytes
Content-Length: 10057
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: application/javascript
libreriaguillermo.com/wp-content/plugins/yith-woocommerce-wishlist/assets/js/jquery.selectBox.min.js?ver=1.2.0
51.38.189.36200 OK 15 kB URL HTTP/1.1 libreriaguillermo.com/wp-content/plugins/yith-woocommerce-wishlist/assets/js/jquery.selectBox.min.js?ver=1.2.0
IP 51.38.189.36:0
File type Unicode text, UTF-8 text, with very long lines (14924), with no line terminators
Hash 157f18464a93eab7fb62a7f3e618ac2c
f47727e80d529d6e4941fea32f2e8a8ee5008b8a
9ed8f2a0e573467348e64fb1945eeac1698f32af9e9c723153eb7142d6a43306
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/yith-woocommerce-wishlist/assets/js/jquery.selectBox.min.js?ver=1.2.0 HTTP/1.1
Host: libreriaguillermo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://libreriaguillermo.com/wp-content/uploads/2022/07/ostriv_alpha_1_patch_3_money_hack.pdf
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 24 Sep 2022 15:54:11 GMT
Server: Apache/2.4.37 (centos) OpenSSL/1.1.1g
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: upgrade-insecure-requests
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Expect-CT: max-age=7776000, enforce
Referrer-Policy: no-referrer-when-downgrade
Last-Modified: Tue, 09 Aug 2022 11:47:06 GMT
ETag: "3a4f-5e5cd7ddb70d4"
Accept-Ranges: bytes
Content-Length: 14927
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: application/javascript
libreriaguillermo.com/wp-content/plugins/woocommerce/assets/js/prettyPhoto/jquery.prettyPhoto.min.js?ver=3.1.6
51.38.189.36200 OK 21 kB URL HTTP/1.1 libreriaguillermo.com/wp-content/plugins/woocommerce/assets/js/prettyPhoto/jquery.prettyPhoto.min.js?ver=3.1.6
IP 51.38.189.36:0
File type HTML document, ASCII text, with very long lines (21310), with no line terminators
Hash f3d7b1578081c9cf982cfbc29f514836
fdb6b04b917b9a1c72e3cf2da686c2584d3fd50f
c0f874276d38c6d9e43767d76a15de39506461b268a3cbf19fc8218f3ec8631a
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/woocommerce/assets/js/prettyPhoto/jquery.prettyPhoto.min.js?ver=3.1.6 HTTP/1.1
Host: libreriaguillermo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://libreriaguillermo.com/wp-content/uploads/2022/07/ostriv_alpha_1_patch_3_money_hack.pdf
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 24 Sep 2022 15:54:11 GMT
Server: Apache/2.4.37 (centos) OpenSSL/1.1.1g
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: upgrade-insecure-requests
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Expect-CT: max-age=7776000, enforce
Referrer-Policy: no-referrer-when-downgrade
Last-Modified: Fri, 09 Sep 2022 07:16:48 GMT
ETag: "533e-5e83954507073"
Accept-Ranges: bytes
Content-Length: 21310
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: application/javascript
libreriaguillermo.com/wp-content/plugins/yith-woocommerce-wishlist/assets/js/jquery.yith-wcwl.min.js?ver=3.12.0
51.38.189.36200 OK 25 kB URL HTTP/1.1 libreriaguillermo.com/wp-content/plugins/yith-woocommerce-wishlist/assets/js/jquery.yith-wcwl.min.js?ver=3.12.0
IP 51.38.189.36:0
File type HTML document, ASCII text, with very long lines (24951), with no line terminators
Hash 540be7a8259fbeaf4a732a344b267a7d
ac51cc9bb5df51bd9568de8707b9b176f7d60254
a692f16cca3d27ae6772b85e05c46d117ca45678783d5ee010df7d67e8f12485
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/yith-woocommerce-wishlist/assets/js/jquery.yith-wcwl.min.js?ver=3.12.0 HTTP/1.1
Host: libreriaguillermo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://libreriaguillermo.com/wp-content/uploads/2022/07/ostriv_alpha_1_patch_3_money_hack.pdf
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 24 Sep 2022 15:54:11 GMT
Server: Apache/2.4.37 (centos) OpenSSL/1.1.1g
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: upgrade-insecure-requests
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Expect-CT: max-age=7776000, enforce
Referrer-Policy: no-referrer-when-downgrade
Last-Modified: Tue, 09 Aug 2022 11:47:06 GMT
ETag: "6177-5e5cd7ddb70d4"
Accept-Ranges: bytes
Content-Length: 24951
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: application/javascript
libreriaguillermo.com/wp-content/plugins/ays-popup-box/public/js/ays-pb-public.js?ver=3.0.9
51.38.189.36200 OK 2.3 kB URL HTTP/1.1 libreriaguillermo.com/wp-content/plugins/ays-popup-box/public/js/ays-pb-public.js?ver=3.0.9
IP 51.38.189.36:0
Hash aeff3aba675d1fda3f10e7993f69eaed
132d84aab69072a8658e469b7738f20c2c45322c
443a8478481689d04f09a11f4bef88bb5f74fe964eca978080dcfc2f56967d7d
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/ays-popup-box/public/js/ays-pb-public.js?ver=3.0.9 HTTP/1.1
Host: libreriaguillermo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://libreriaguillermo.com/wp-content/uploads/2022/07/ostriv_alpha_1_patch_3_money_hack.pdf
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 24 Sep 2022 15:54:11 GMT
Server: Apache/2.4.37 (centos) OpenSSL/1.1.1g
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: upgrade-insecure-requests
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Expect-CT: max-age=7776000, enforce
Referrer-Policy: no-referrer-when-downgrade
Last-Modified: Fri, 09 Sep 2022 07:16:42 GMT
ETag: "8fa-5e83953e90b62"
Accept-Ranges: bytes
Content-Length: 2298
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: application/javascript
libreriaguillermo.com/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.3
51.38.189.36200 OK 9.7 kB URL HTTP/1.1 libreriaguillermo.com/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.3
IP 51.38.189.36:0
File type ASCII text, with very long lines (9680), with no line terminators
Hash 490c29d6776fc430c23403fd845b34b0
817129906b7fef1011895a76f047c7693a852e21
29e8de26576208c07ba0845f604e65c9273b93f9f4d1d66214eb4c586f9938c4
GET /wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.3 HTTP/1.1
Host: libreriaguillermo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://libreriaguillermo.com/wp-content/uploads/2022/07/ostriv_alpha_1_patch_3_money_hack.pdf
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 24 Sep 2022 15:54:11 GMT
Server: Apache/2.4.37 (centos) OpenSSL/1.1.1g
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: upgrade-insecure-requests
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Expect-CT: max-age=7776000, enforce
Referrer-Policy: no-referrer-when-downgrade
Last-Modified: Fri, 09 Sep 2022 07:16:36 GMT
ETag: "25d0-5e839538e3d03"
Accept-Ranges: bytes
Content-Length: 9680
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: application/javascript
libreriaguillermo.com/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.3
51.38.189.36200 OK 12 kB URL HTTP/1.1 libreriaguillermo.com/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.3
IP 51.38.189.36:0
File type HTML document, ASCII text, with very long lines (12211), with no line terminators
Hash 3f3fc23f477a3849aa5677c585b2a2b4
ccf0865ebd37f76c450c7a377a86ff2448288db3
985fdd42398281348ca133a44750a56fe4909a806b9c075c9443a5d0bd6d2e51
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.3 HTTP/1.1
Host: libreriaguillermo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://libreriaguillermo.com/wp-content/uploads/2022/07/ostriv_alpha_1_patch_3_money_hack.pdf
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 24 Sep 2022 15:54:11 GMT
Server: Apache/2.4.37 (centos) OpenSSL/1.1.1g
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: upgrade-insecure-requests
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Expect-CT: max-age=7776000, enforce
Referrer-Policy: no-referrer-when-downgrade
Last-Modified: Fri, 09 Sep 2022 07:16:36 GMT
ETag: "2fb3-5e839538e3d03"
Accept-Ranges: bytes
Content-Length: 12211
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: application/javascript
libreriaguillermo.com/wp-content/plugins/the-preloader/js/preloader-script.js
51.38.189.36200 OK 261 B URL HTTP/1.1 libreriaguillermo.com/wp-content/plugins/the-preloader/js/preloader-script.js
IP 51.38.189.36:0
File type ASCII text, with CRLF line terminators
Hash 9c22d21b82bb2eb3927cd6200c2382ee
65f1ffa0c0e3a81cab3963b9a6b3455eaab22368
ba05bd9ef6362c4251c5a8c2ec5aa43f89caaf67a904d08c46cbe05760ee5e24
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/the-preloader/js/preloader-script.js HTTP/1.1
Host: libreriaguillermo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://libreriaguillermo.com/wp-content/uploads/2022/07/ostriv_alpha_1_patch_3_money_hack.pdf
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 24 Sep 2022 15:54:11 GMT
Server: Apache/2.4.37 (centos) OpenSSL/1.1.1g
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: upgrade-insecure-requests
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Expect-CT: max-age=7776000, enforce
Referrer-Policy: no-referrer-when-downgrade
Last-Modified: Tue, 16 Mar 2021 11:29:01 GMT
ETag: "105-5bda5ac500e37"
Accept-Ranges: bytes
Content-Length: 261
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: application/javascript
libreriaguillermo.com/wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.7.0-wc.6.8.2
51.38.189.36200 OK 9.5 kB URL HTTP/1.1 libreriaguillermo.com/wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.7.0-wc.6.8.2
IP 51.38.189.36:0
File type ASCII text, with very long lines (9115)
Hash a5451283952efd5df49466bbeace6911
dce405842471c303c3d8fd6fa3c084aa56a71029
f4e38e5ef16efe51836cf7142412b8e1aa8b73ce89afed23be0cf77dfd8e095d
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.7.0-wc.6.8.2 HTTP/1.1
Host: libreriaguillermo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://libreriaguillermo.com/wp-content/uploads/2022/07/ostriv_alpha_1_patch_3_money_hack.pdf
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 24 Sep 2022 15:54:11 GMT
Server: Apache/2.4.37 (centos) OpenSSL/1.1.1g
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: upgrade-insecure-requests
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Expect-CT: max-age=7776000, enforce
Referrer-Policy: no-referrer-when-downgrade
Last-Modified: Fri, 09 Sep 2022 07:16:48 GMT
ETag: "2525-5e839545060d3"
Accept-Ranges: bytes
Content-Length: 9509
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: application/javascript
libreriaguillermo.com/wp-content/plugins/revslider/public/assets/js/rbtools.min.js?ver=6.5.18
51.38.189.36200 OK 129 kB URL HTTP/1.1 libreriaguillermo.com/wp-content/plugins/revslider/public/assets/js/rbtools.min.js?ver=6.5.18
IP 51.38.189.36:0
File type ASCII text, with very long lines (45108), with CRLF line terminators
Size 129 kB (128805 bytes)
Hash 0ce245fda586eafae053aa341ccdd2c7
3f0e5d08540860f4e1c4ba0db2bd3decf481ea44
5c9203860ae657336596c738730f9d362e00bb9948a0f581fb074270c328e26b
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/revslider/public/assets/js/rbtools.min.js?ver=6.5.18 HTTP/1.1
Host: libreriaguillermo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://libreriaguillermo.com/wp-content/uploads/2022/07/ostriv_alpha_1_patch_3_money_hack.pdf
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 24 Sep 2022 15:54:11 GMT
Server: Apache/2.4.37 (centos) OpenSSL/1.1.1g
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: upgrade-insecure-requests
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Expect-CT: max-age=7776000, enforce
Referrer-Policy: no-referrer-when-downgrade
Last-Modified: Mon, 25 Jul 2022 22:18:36 GMT
ETag: "1f725-5e4a890afd8b8"
Accept-Ranges: bytes
Content-Length: 128805
Keep-Alive: timeout=5, max=90
Connection: Keep-Alive
Content-Type: application/javascript
libreriaguillermo.com/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=6.8.2
51.38.189.36200 OK 3.0 kB URL HTTP/1.1 libreriaguillermo.com/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=6.8.2
IP 51.38.189.36:0
File type HTML document, ASCII text, with very long lines (3037), with no line terminators
Hash 4e544022235ced14996464116a9ed9b2
31ee19d95973124b812a22c5ff5944d5b5bf8147
4ef2d5b0ef62523af87f3e13d8061449b2ddbfce07064f26b1305084abbf18f1
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=6.8.2 HTTP/1.1
Host: libreriaguillermo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://libreriaguillermo.com/wp-content/uploads/2022/07/ostriv_alpha_1_patch_3_money_hack.pdf
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 24 Sep 2022 15:54:11 GMT
Server: Apache/2.4.37 (centos) OpenSSL/1.1.1g
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: upgrade-insecure-requests
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Expect-CT: max-age=7776000, enforce
Referrer-Policy: no-referrer-when-downgrade
Last-Modified: Fri, 09 Sep 2022 07:16:48 GMT
ETag: "bdd-5e83954505903"
Accept-Ranges: bytes
Content-Length: 3037
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: application/javascript
libreriaguillermo.com/wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4-wc.6.8.2
51.38.189.36200 OK 1.8 kB URL HTTP/1.1 libreriaguillermo.com/wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4-wc.6.8.2
IP 51.38.189.36:0
File type ASCII text, with very long lines (1668)
Hash d0a6d8547c66b0d7b0172466558d1208
ff93916519c7b9483251f609e4d29f38c30a66e3
3b1384ff918d4b7f95f9ee5c8fc388203dedff7344d3d96598c9562162788612
GET /wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4-wc.6.8.2 HTTP/1.1
Host: libreriaguillermo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://libreriaguillermo.com/wp-content/uploads/2022/07/ostriv_alpha_1_patch_3_money_hack.pdf
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 24 Sep 2022 15:54:11 GMT
Server: Apache/2.4.37 (centos) OpenSSL/1.1.1g
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: upgrade-insecure-requests
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Expect-CT: max-age=7776000, enforce
Referrer-Policy: no-referrer-when-downgrade
Last-Modified: Fri, 09 Sep 2022 07:16:48 GMT
ETag: "72a-5e83954506c8b"
Accept-Ranges: bytes
Content-Length: 1834
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: application/javascript
libreriaguillermo.com/wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=6.8.2
51.38.189.36200 OK 2.1 kB URL HTTP/1.1 libreriaguillermo.com/wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=6.8.2
IP 51.38.189.36:0
File type ASCII text, with very long lines (2139), with no line terminators
Hash b72c1cbb1530a011a27bd9800f26765a
27b825c5d8255f33b8427a059d4545ebd65e1746
a256fccecac3b32ab73c91d79a18747519a1a18023be05465c933b03523a82e8
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=6.8.2 HTTP/1.1
Host: libreriaguillermo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://libreriaguillermo.com/wp-content/uploads/2022/07/ostriv_alpha_1_patch_3_money_hack.pdf
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 24 Sep 2022 15:54:11 GMT
Server: Apache/2.4.37 (centos) OpenSSL/1.1.1g
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: upgrade-insecure-requests
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Expect-CT: max-age=7776000, enforce
Referrer-Policy: no-referrer-when-downgrade
Last-Modified: Fri, 09 Sep 2022 07:16:48 GMT
ETag: "85b-5e839545060d3"
Accept-Ranges: bytes
Content-Length: 2139
Keep-Alive: timeout=5, max=90
Connection: Keep-Alive
Content-Type: application/javascript
libreriaguillermo.com/wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js?ver=6.8.2
51.38.189.36200 OK 2.9 kB URL HTTP/1.1 libreriaguillermo.com/wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js?ver=6.8.2
IP 51.38.189.36:0
File type ASCII text, with very long lines (2938), with no line terminators
Hash 0fd625c3991a4015814cffdc88e2fc82
d7c2f53e058210ff3ea773297641008bab71a5f3
2d022db650d194d935faea46a40e5512235b43bc3f8b181e32ce6d3dd745f4e1
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js?ver=6.8.2 HTTP/1.1
Host: libreriaguillermo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://libreriaguillermo.com/wp-content/uploads/2022/07/ostriv_alpha_1_patch_3_money_hack.pdf
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 24 Sep 2022 15:54:11 GMT
Server: Apache/2.4.37 (centos) OpenSSL/1.1.1g
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: upgrade-insecure-requests
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Expect-CT: max-age=7776000, enforce
Referrer-Policy: no-referrer-when-downgrade
Last-Modified: Fri, 09 Sep 2022 07:16:48 GMT
ETag: "b7a-5e83954505ceb"
Accept-Ranges: bytes
Content-Length: 2938
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: application/javascript
libreriaguillermo.com/wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.5.25
51.38.189.36200 OK 392 kB URL HTTP/1.1 libreriaguillermo.com/wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.5.25
IP 51.38.189.36:0
File type ASCII text, with very long lines (64288)
Size 392 kB (391496 bytes)
Hash acaa3848fdbbde110cc76c503e156937
b5aa976b0e67dbccc22fc4729fa60d61243d0d31
9cf5048c63f35ca8ae2a6b7a3a1a67d3daba46bd1b00ec5760dd99723d87765d
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.5.25 HTTP/1.1
Host: libreriaguillermo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://libreriaguillermo.com/wp-content/uploads/2022/07/ostriv_alpha_1_patch_3_money_hack.pdf
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 24 Sep 2022 15:54:11 GMT
Server: Apache/2.4.37 (centos) OpenSSL/1.1.1g
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: upgrade-insecure-requests
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Expect-CT: max-age=7776000, enforce
Referrer-Policy: no-referrer-when-downgrade
Last-Modified: Mon, 25 Jul 2022 22:18:36 GMT
ETag: "5f948-5e4a890b1d48a"
Accept-Ranges: bytes
Content-Length: 391496
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: application/javascript
libreriaguillermo.com/wp-content/plugins/js_composer/assets/js/vendors/woocommerce-add-to-cart.js?ver=6.9.0
51.38.189.36200 OK 992 B URL HTTP/1.1 libreriaguillermo.com/wp-content/plugins/js_composer/assets/js/vendors/woocommerce-add-to-cart.js?ver=6.9.0
IP 51.38.189.36:0
Hash 787fe4f547a6cb7f4ce4934641085910
c2dee88d5bdfef214ce9c56f71a1df51cda0f328
654aaebdea944313257827be97eb196a8218a2cdfc9ba399db23e2cd4c02bd79
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/js_composer/assets/js/vendors/woocommerce-add-to-cart.js?ver=6.9.0 HTTP/1.1
Host: libreriaguillermo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://libreriaguillermo.com/wp-content/uploads/2022/07/ostriv_alpha_1_patch_3_money_hack.pdf
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 24 Sep 2022 15:54:11 GMT
Server: Apache/2.4.37 (centos) OpenSSL/1.1.1g
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: upgrade-insecure-requests
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Expect-CT: max-age=7776000, enforce
Referrer-Policy: no-referrer-when-downgrade
Last-Modified: Mon, 25 Jul 2022 22:14:58 GMT
ETag: "3e0-5e4a883abed6b"
Accept-Ranges: bytes
Content-Length: 992
Keep-Alive: timeout=5, max=89
Connection: Keep-Alive
Content-Type: application/javascript
libreriaguillermo.com/wp-content/plugins/wpc-product-quantity/assets/js/frontend.js?ver=2.4.8
51.38.189.36200 OK 7.1 kB URL HTTP/1.1 libreriaguillermo.com/wp-content/plugins/wpc-product-quantity/assets/js/frontend.js?ver=2.4.8
IP 51.38.189.36:0
Hash 2b5c516ac9e7a6bd464851f7359123a3
7d6a0abc1ec0041e189c898a066de4a41bfd02ee
ed0151a4f306114cb8f59fce5e446ff1799add4e22a4851435781581c75e2c05
GET /wp-content/plugins/wpc-product-quantity/assets/js/frontend.js?ver=2.4.8 HTTP/1.1
Host: libreriaguillermo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://libreriaguillermo.com/wp-content/uploads/2022/07/ostriv_alpha_1_patch_3_money_hack.pdf
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 24 Sep 2022 15:54:11 GMT
Server: Apache/2.4.37 (centos) OpenSSL/1.1.1g
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: upgrade-insecure-requests
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Expect-CT: max-age=7776000, enforce
Referrer-Policy: no-referrer-when-downgrade
Last-Modified: Fri, 09 Sep 2022 07:16:53 GMT
ETag: "1bcd-5e839549b5c5d"
Accept-Ranges: bytes
Content-Length: 7117
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: application/javascript
libreriaguillermo.com/wp-content/themes/wendy/js/bootstrap.min.js?ver=3.2.0
51.38.189.36200 OK 32 kB URL HTTP/1.1 libreriaguillermo.com/wp-content/themes/wendy/js/bootstrap.min.js?ver=3.2.0
IP 51.38.189.36:0
File type ASCII text, with very long lines (31650)
Hash abda843684d022f3bc22bc83927fe05f
26908395e7a9a4eab607d80aa50a81d65f3017cb
24cc29533598f962823c4229bc280487646a27a42a95257c31de1b9b18f3710f
GET /wp-content/themes/wendy/js/bootstrap.min.js?ver=3.2.0 HTTP/1.1
Host: libreriaguillermo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://libreriaguillermo.com/wp-content/uploads/2022/07/ostriv_alpha_1_patch_3_money_hack.pdf
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 24 Sep 2022 15:54:11 GMT
Server: Apache/2.4.37 (centos) OpenSSL/1.1.1g
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: upgrade-insecure-requests
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Expect-CT: max-age=7776000, enforce
Referrer-Policy: no-referrer-when-downgrade
Last-Modified: Tue, 16 Mar 2021 11:29:02 GMT
ETag: "7c4b-5bda5ac55da9c"
Accept-Ranges: bytes
Content-Length: 31819
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: application/javascript
libreriaguillermo.com/wp-content/themes/wendy/js/slick/slick.min.js?ver=1.3.15
51.38.189.36200 OK 32 kB URL HTTP/1.1 libreriaguillermo.com/wp-content/themes/wendy/js/slick/slick.min.js?ver=1.3.15
IP 51.38.189.36:0
File type ASCII text, with very long lines (31658)
Hash 9ab828daa22009d6bf0994c5d75c5e9f
04f5de381fb4ad0ff338908cdf22b53a164241c6
b9f5e26e6801b6a835e3b22bddaa410b96768b33e226622e315d2b219b64c29f
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/wendy/js/slick/slick.min.js?ver=1.3.15 HTTP/1.1
Host: libreriaguillermo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://libreriaguillermo.com/wp-content/uploads/2022/07/ostriv_alpha_1_patch_3_money_hack.pdf
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 24 Sep 2022 15:54:11 GMT
Server: Apache/2.4.37 (centos) OpenSSL/1.1.1g
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: upgrade-insecure-requests
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Expect-CT: max-age=7776000, enforce
Referrer-Policy: no-referrer-when-downgrade
Last-Modified: Tue, 16 Mar 2021 11:29:02 GMT
ETag: "7d31-5bda5ac55de84"
Accept-Ranges: bytes
Content-Length: 32049
Keep-Alive: timeout=5, max=89
Connection: Keep-Alive
Content-Type: application/javascript
libreriaguillermo.com/wp-content/themes/wendy/js/chosen/chosen.jquery.min.js?ver=1.3.0
51.38.189.36200 OK 28 kB URL HTTP/1.1 libreriaguillermo.com/wp-content/themes/wendy/js/chosen/chosen.jquery.min.js?ver=1.3.0
IP 51.38.189.36:0
File type ASCII text, with very long lines (27363)
Hash 8786a9ac3b0cc1f8e6621ea6c7f5eba5
04000831b83c6b8863875137fe3a9a3ed1bd2e8a
44a3c1ee61dfeeb01f9aa4539c3dd1d81da1c6b042666f31b1a9ef9c822002af
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/wendy/js/chosen/chosen.jquery.min.js?ver=1.3.0 HTTP/1.1
Host: libreriaguillermo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://libreriaguillermo.com/wp-content/uploads/2022/07/ostriv_alpha_1_patch_3_money_hack.pdf
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 24 Sep 2022 15:54:11 GMT
Server: Apache/2.4.37 (centos) OpenSSL/1.1.1g
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: upgrade-insecure-requests
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Expect-CT: max-age=7776000, enforce
Referrer-Policy: no-referrer-when-downgrade
Last-Modified: Tue, 16 Mar 2021 11:29:02 GMT
ETag: "6b5c-5bda5ac55e26c"
Accept-Ranges: bytes
Content-Length: 27484
Keep-Alive: timeout=5, max=90
Connection: Keep-Alive
Content-Type: application/javascript
libreriaguillermo.com/wp-content/themes/wendy/js/chosen/chosen.proto.min.js?ver=1.3.0
51.38.189.36200 OK 28 kB URL HTTP/1.1 libreriaguillermo.com/wp-content/themes/wendy/js/chosen/chosen.proto.min.js?ver=1.3.0
IP 51.38.189.36:0
File type ASCII text, with very long lines (27728)
Hash 93d1133ded89a8d03997a20dc220c2ae
5ae1665200c20aeeb2909c5f67ce6a7cdf2b8d41
dd1daaf98b481403b5a48b09b0ff6670ece1e8e77fdc2fab1cbc13174002a553
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/wendy/js/chosen/chosen.proto.min.js?ver=1.3.0 HTTP/1.1
Host: libreriaguillermo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://libreriaguillermo.com/wp-content/uploads/2022/07/ostriv_alpha_1_patch_3_money_hack.pdf
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 24 Sep 2022 15:54:11 GMT
Server: Apache/2.4.37 (centos) OpenSSL/1.1.1g
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: upgrade-insecure-requests
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Expect-CT: max-age=7776000, enforce
Referrer-Policy: no-referrer-when-downgrade
Last-Modified: Tue, 16 Mar 2021 11:29:02 GMT
ETag: "6cc9-5bda5ac55e26c"
Accept-Ranges: bytes
Content-Length: 27849
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: application/javascript
libreriaguillermo.com/wp-content/themes/wendy/js/fancybox/jquery.fancybox.pack.js?ver=2.1.5
51.38.189.36200 OK 23 kB URL HTTP/1.1 libreriaguillermo.com/wp-content/themes/wendy/js/fancybox/jquery.fancybox.pack.js?ver=2.1.5
IP 51.38.189.36:0
File type ASCII text, with very long lines (645)
Hash cc9e759f24ba773aeef8a131889d3728
53360764b429c212f424399384417ccc233bb3be
bc50bf49cbe79ee49b4ee8b56f26ff4877bc4945c16f260b1481ba2355c96347
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/wendy/js/fancybox/jquery.fancybox.pack.js?ver=2.1.5 HTTP/1.1
Host: libreriaguillermo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://libreriaguillermo.com/wp-content/uploads/2022/07/ostriv_alpha_1_patch_3_money_hack.pdf
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 24 Sep 2022 15:54:11 GMT
Server: Apache/2.4.37 (centos) OpenSSL/1.1.1g
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: upgrade-insecure-requests
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Expect-CT: max-age=7776000, enforce
Referrer-Policy: no-referrer-when-downgrade
Last-Modified: Tue, 16 Mar 2021 11:29:02 GMT
ETag: "5a5f-5bda5ac55da9c"
Accept-Ranges: bytes
Content-Length: 23135
Keep-Alive: timeout=5, max=88
Connection: Keep-Alive
Content-Type: application/javascript
libreriaguillermo.com/wp-content/themes/wendy/js/fancybox/helpers/jquery.fancybox-buttons.js?ver=1.0.5
51.38.189.36200 OK 3.0 kB URL HTTP/1.1 libreriaguillermo.com/wp-content/themes/wendy/js/fancybox/helpers/jquery.fancybox-buttons.js?ver=1.0.5
IP 51.38.189.36:0
File type ASCII text, with very long lines (411)
Hash f53c246661fb995a3f12e67fa38e0fa0
91e41741c2e93f732c82aaacec4cfc6e3f3ec876
2d63b8ad7966c80ce51051da38da14f52b99cfb019aec650b2437fc74fac1560
GET /wp-content/themes/wendy/js/fancybox/helpers/jquery.fancybox-buttons.js?ver=1.0.5 HTTP/1.1
Host: libreriaguillermo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://libreriaguillermo.com/wp-content/uploads/2022/07/ostriv_alpha_1_patch_3_money_hack.pdf
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 24 Sep 2022 15:54:11 GMT
Server: Apache/2.4.37 (centos) OpenSSL/1.1.1g
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: upgrade-insecure-requests
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Expect-CT: max-age=7776000, enforce
Referrer-Policy: no-referrer-when-downgrade
Last-Modified: Tue, 16 Mar 2021 11:29:02 GMT
ETag: "be1-5bda5ac55da9c"
Accept-Ranges: bytes
Content-Length: 3041
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: application/javascript
libreriaguillermo.com/wp-content/themes/wendy/js/fancybox/helpers/jquery.fancybox-media.js?ver=1.0.6
51.38.189.36200 OK 5.3 kB URL HTTP/1.1 libreriaguillermo.com/wp-content/themes/wendy/js/fancybox/helpers/jquery.fancybox-media.js?ver=1.0.6
IP 51.38.189.36:0
Hash c017067f48d97ec4a077ccdf056e6a2e
3bdf69ed2469e4fb57f5a95f17300eef891ff90d
e53e650a83dbce1ab8d93c365299f2e8f5070c414c9ea302f2422ca65f5fdab4
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/wendy/js/fancybox/helpers/jquery.fancybox-media.js?ver=1.0.6 HTTP/1.1
Host: libreriaguillermo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://libreriaguillermo.com/wp-content/uploads/2022/07/ostriv_alpha_1_patch_3_money_hack.pdf
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 24 Sep 2022 15:54:11 GMT
Server: Apache/2.4.37 (centos) OpenSSL/1.1.1g
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: upgrade-insecure-requests
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Expect-CT: max-age=7776000, enforce
Referrer-Policy: no-referrer-when-downgrade
Last-Modified: Tue, 16 Mar 2021 11:29:02 GMT
ETag: "14b9-5bda5ac55da9c"
Accept-Ranges: bytes
Content-Length: 5305
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: application/javascript
libreriaguillermo.com/wp-content/themes/wendy/js/fancybox/helpers/jquery.fancybox-thumbs.js?ver=1.0.7
51.38.189.36200 OK 3.8 kB URL HTTP/1.1 libreriaguillermo.com/wp-content/themes/wendy/js/fancybox/helpers/jquery.fancybox-thumbs.js?ver=1.0.7
IP 51.38.189.36:0
Hash cf1fc1df534eede4cb460c5cbd71aba6
53e194f4a72e649c04fb586dd57762b8c022800b
0ba02b924fc5beeb370ed64d478401e94a513e970cac2c46266c708348135cf2
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/wendy/js/fancybox/helpers/jquery.fancybox-thumbs.js?ver=1.0.7 HTTP/1.1
Host: libreriaguillermo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://libreriaguillermo.com/wp-content/uploads/2022/07/ostriv_alpha_1_patch_3_money_hack.pdf
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 24 Sep 2022 15:54:11 GMT
Server: Apache/2.4.37 (centos) OpenSSL/1.1.1g
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: upgrade-insecure-requests
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Expect-CT: max-age=7776000, enforce
Referrer-Policy: no-referrer-when-downgrade
Last-Modified: Tue, 16 Mar 2021 11:29:02 GMT
ETag: "efc-5bda5ac55da9c"
Accept-Ranges: bytes
Content-Length: 3836
Keep-Alive: timeout=5, max=88
Connection: Keep-Alive
Content-Type: application/javascript
libreriaguillermo.com/wp-content/themes/wendy/js/superfish/superfish.min.js?ver=1.3.15
51.38.189.36200 OK 4.3 kB URL HTTP/1.1 libreriaguillermo.com/wp-content/themes/wendy/js/superfish/superfish.min.js?ver=1.3.15
IP 51.38.189.36:0
File type ASCII text, with very long lines (4065)
Hash 2b93a3aca5d8ef8b8acfc24fd5d75b8e
728614d29875fe0d322ed1c8aeba6253f1eba811
c6fd16c8647ea8f1409657c80ab96b603a45f6a4d83c657c4eda10591a7903b8
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/wendy/js/superfish/superfish.min.js?ver=1.3.15 HTTP/1.1
Host: libreriaguillermo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://libreriaguillermo.com/wp-content/uploads/2022/07/ostriv_alpha_1_patch_3_money_hack.pdf
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 24 Sep 2022 15:54:11 GMT
Server: Apache/2.4.37 (centos) OpenSSL/1.1.1g
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: upgrade-insecure-requests
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Expect-CT: max-age=7776000, enforce
Referrer-Policy: no-referrer-when-downgrade
Last-Modified: Tue, 16 Mar 2021 11:29:02 GMT
ETag: "10c5-5bda5ac55de84"
Accept-Ranges: bytes
Content-Length: 4293
Keep-Alive: timeout=5, max=89
Connection: Keep-Alive
Content-Type: application/javascript
libreriaguillermo.com/wp-content/themes/wendy/js/modernizr.custom.min.js?ver=2.6.2
51.38.189.36200 OK 3.1 kB URL HTTP/1.1 libreriaguillermo.com/wp-content/themes/wendy/js/modernizr.custom.min.js?ver=2.6.2
IP 51.38.189.36:0
File type HTML document, ASCII text, with very long lines (2861)
Hash 6ab50f7923c5f783c336d1bf3a579c1b
fc75cd09d3084021048a41da9c47f2fe42ad96eb
6a1fe0907100410728ab4d870e8b1cca4b9ce788b9c87e83444dd0cd5818ca3e
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/wendy/js/modernizr.custom.min.js?ver=2.6.2 HTTP/1.1
Host: libreriaguillermo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://libreriaguillermo.com/wp-content/uploads/2022/07/ostriv_alpha_1_patch_3_money_hack.pdf
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 24 Sep 2022 15:54:11 GMT
Server: Apache/2.4.37 (centos) OpenSSL/1.1.1g
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: upgrade-insecure-requests
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Expect-CT: max-age=7776000, enforce
Referrer-Policy: no-referrer-when-downgrade
Last-Modified: Tue, 16 Mar 2021 11:29:02 GMT
ETag: "c02-5bda5ac55de84"
Accept-Ranges: bytes
Content-Length: 3074
Keep-Alive: timeout=5, max=90
Connection: Keep-Alive
Content-Type: application/javascript
libreriaguillermo.com/wp-content/themes/wendy/js/jquery.shuffle.min.js?ver=3.0.0
51.38.189.36200 OK 13 kB URL HTTP/1.1 libreriaguillermo.com/wp-content/themes/wendy/js/jquery.shuffle.min.js?ver=3.0.0
IP 51.38.189.36:0
File type ASCII text, with very long lines (12821)
Hash 54fcfddd4e512c1b92cd0b5486e6ca8f
ffb953e2d036ff0d72aeaac3d8b8587358fc4b3f
6592712c1dfa4fcf94be74b77fa551283c7678cb939b11553e06e69f41dcb024
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/wendy/js/jquery.shuffle.min.js?ver=3.0.0 HTTP/1.1
Host: libreriaguillermo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://libreriaguillermo.com/wp-content/uploads/2022/07/ostriv_alpha_1_patch_3_money_hack.pdf
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 24 Sep 2022 15:54:11 GMT
Server: Apache/2.4.37 (centos) OpenSSL/1.1.1g
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: upgrade-insecure-requests
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Expect-CT: max-age=7776000, enforce
Referrer-Policy: no-referrer-when-downgrade
Last-Modified: Tue, 16 Mar 2021 11:29:02 GMT
ETag: "32cd-5bda5ac55da9c"
Accept-Ranges: bytes
Content-Length: 13005
Keep-Alive: timeout=5, max=87
Connection: Keep-Alive
Content-Type: application/javascript
libreriaguillermo.com/wp-content/themes/wendy/js/jquery.mousewheel.min.js?ver=3.1.12
51.38.189.36200 OK 2.8 kB URL HTTP/1.1 libreriaguillermo.com/wp-content/themes/wendy/js/jquery.mousewheel.min.js?ver=3.1.12
IP 51.38.189.36:0
File type ASCII text, with very long lines (2609)
Hash 639d1c35a685d111aa4a509a2dbf660c
d0991ef04e2dd8fd1b0cb0c8bb0f1026649d9b25
1fdbb2180496fca532f43deaffec879f8ca6990258b38a469aed4120d6c0d2fe
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/wendy/js/jquery.mousewheel.min.js?ver=3.1.12 HTTP/1.1
Host: libreriaguillermo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://libreriaguillermo.com/wp-content/uploads/2022/07/ostriv_alpha_1_patch_3_money_hack.pdf
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 24 Sep 2022 15:54:11 GMT
Server: Apache/2.4.37 (centos) OpenSSL/1.1.1g
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: upgrade-insecure-requests
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Expect-CT: max-age=7776000, enforce
Referrer-Policy: no-referrer-when-downgrade
Last-Modified: Tue, 16 Mar 2021 11:29:02 GMT
ETag: "ad9-5bda5ac55de84"
Accept-Ranges: bytes
Content-Length: 2777
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: application/javascript
libreriaguillermo.com/wp-content/themes/wendy/js/jquery.countdown.min.js?ver=2.0.4
51.38.189.36200 OK 4.6 kB URL HTTP/1.1 libreriaguillermo.com/wp-content/themes/wendy/js/jquery.countdown.min.js?ver=2.0.4
IP 51.38.189.36:0
File type ASCII text, with very long lines (3349)
Hash f67da8ef1bb72583a9be2d03590e071d
08eb3f24f36d538f11bd6fa97ab72767f369c44d
96cfb196db175fd802227935d2e58a6c25b6783ac42adb85782bc986fe3fde82
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/wendy/js/jquery.countdown.min.js?ver=2.0.4 HTTP/1.1
Host: libreriaguillermo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://libreriaguillermo.com/wp-content/uploads/2022/07/ostriv_alpha_1_patch_3_money_hack.pdf
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 24 Sep 2022 15:54:11 GMT
Server: Apache/2.4.37 (centos) OpenSSL/1.1.1g
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: upgrade-insecure-requests
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Expect-CT: max-age=7776000, enforce
Referrer-Policy: no-referrer-when-downgrade
Last-Modified: Tue, 16 Mar 2021 11:29:02 GMT
ETag: "11c8-5bda5ac55e26c"
Accept-Ranges: bytes
Content-Length: 4552
Keep-Alive: timeout=5, max=90
Connection: Keep-Alive
Content-Type: application/javascript
libreriaguillermo.com/wp-content/themes/wendy/js/theme.js?ver=20140826
51.38.189.36200 OK 45 kB URL HTTP/1.1 libreriaguillermo.com/wp-content/themes/wendy/js/theme.js?ver=20140826
IP 51.38.189.36:0
File type HTML document, Unicode text, UTF-8 text, with very long lines (349)
Hash d8fd02a7dc8b711d25eb722adec54ec8
0251de7a40aa964053780c1610471f43da7b97a9
fe2dc65a179dea796e22be890959f53bcabbba37db4b5e4c017e39a6a089e309
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/wendy/js/theme.js?ver=20140826 HTTP/1.1
Host: libreriaguillermo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://libreriaguillermo.com/wp-content/uploads/2022/07/ostriv_alpha_1_patch_3_money_hack.pdf
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 24 Sep 2022 15:54:11 GMT
Server: Apache/2.4.37 (centos) OpenSSL/1.1.1g
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: upgrade-insecure-requests
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Expect-CT: max-age=7776000, enforce
Referrer-Policy: no-referrer-when-downgrade
Last-Modified: Mon, 20 Sep 2021 22:16:47 GMT
ETag: "b03d-5cc74a309e73a"
Accept-Ranges: bytes
Content-Length: 45117
Keep-Alive: timeout=5, max=87
Connection: Keep-Alive
Content-Type: application/javascript
libreriaguillermo.com/wp-content/plugins/mega_main_menu/src/js/frontend/menu_functions.js?ver=c6143cb609822277f7931505c01a7a7a
51.38.189.36200 OK 4.7 kB URL HTTP/1.1 libreriaguillermo.com/wp-content/plugins/mega_main_menu/src/js/frontend/menu_functions.js?ver=c6143cb609822277f7931505c01a7a7a
IP 51.38.189.36:0
Hash d175653520f673e0a231571d7863dbbd
36a693cf78158927d9c19125b9ef2145ea17b8b5
551d6f9c39522bd030b1ab09718d911a2d17b5f272590a8cedf904a1492e744f
GET /wp-content/plugins/mega_main_menu/src/js/frontend/menu_functions.js?ver=c6143cb609822277f7931505c01a7a7a HTTP/1.1
Host: libreriaguillermo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://libreriaguillermo.com/wp-content/uploads/2022/07/ostriv_alpha_1_patch_3_money_hack.pdf
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 24 Sep 2022 15:54:11 GMT
Server: Apache/2.4.37 (centos) OpenSSL/1.1.1g
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: upgrade-insecure-requests
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Expect-CT: max-age=7776000, enforce
Referrer-Policy: no-referrer-when-downgrade
Last-Modified: Tue, 16 Mar 2021 11:29:01 GMT
ETag: "1289-5bda5ac503547"
Accept-Ranges: bytes
Content-Length: 4745
Keep-Alive: timeout=5, max=88
Connection: Keep-Alive
Content-Type: application/javascript
libreriaguillermo.com/wp-content/plugins/wc-dynamic-pricing-and-discounts/rightpress/jquery-plugins/rightpress-helper/rightpress-helper.js?ver=1026
51.38.189.36200 OK 8.5 kB URL HTTP/1.1 libreriaguillermo.com/wp-content/plugins/wc-dynamic-pricing-and-discounts/rightpress/jquery-plugins/rightpress-helper/rightpress-helper.js?ver=1026
IP 51.38.189.36:0
Hash ccf8f91c058eb841a78809b230554de8
6874d2aba55d5dc436ffb9b122e502986b2465e1
570c34e6a94f0e0399fd755d36514b485b37c455e8da181e157c091438364bce
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/wc-dynamic-pricing-and-discounts/rightpress/jquery-plugins/rightpress-helper/rightpress-helper.js?ver=1026 HTTP/1.1
Host: libreriaguillermo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://libreriaguillermo.com/wp-content/uploads/2022/07/ostriv_alpha_1_patch_3_money_hack.pdf
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 24 Sep 2022 15:54:11 GMT
Server: Apache/2.4.37 (centos) OpenSSL/1.1.1g
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: upgrade-insecure-requests
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Expect-CT: max-age=7776000, enforce
Referrer-Policy: no-referrer-when-downgrade
Last-Modified: Fri, 19 Aug 2022 10:25:22 GMT
ETag: "2153-5e69583f9a959"
Accept-Ranges: bytes
Content-Length: 8531
Keep-Alive: timeout=5, max=89
Connection: Keep-Alive
Content-Type: application/javascript
libreriaguillermo.com/wp-content/plugins/wc-dynamic-pricing-and-discounts/rightpress/jquery-plugins/rightpress-live-product-update/rightpress-live-product-update.js?ver=1026
51.38.189.36200 OK 3.0 kB URL HTTP/1.1 libreriaguillermo.com/wp-content/plugins/wc-dynamic-pricing-and-discounts/rightpress/jquery-plugins/rightpress-live-product-update/rightpress-live-product-update.js?ver=1026
IP 51.38.189.36:0
Hash 42a4963ca983f031db2e415e90678cd3
c2a2f4561f2d8d105487cb759f72348167549ab9
a181244005adc5280eb42b5543c70cd2bec4501e0fd4fe98a6320cd6f1225b5d
GET /wp-content/plugins/wc-dynamic-pricing-and-discounts/rightpress/jquery-plugins/rightpress-live-product-update/rightpress-live-product-update.js?ver=1026 HTTP/1.1
Host: libreriaguillermo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://libreriaguillermo.com/wp-content/uploads/2022/07/ostriv_alpha_1_patch_3_money_hack.pdf
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 24 Sep 2022 15:54:11 GMT
Server: Apache/2.4.37 (centos) OpenSSL/1.1.1g
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: upgrade-insecure-requests
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Expect-CT: max-age=7776000, enforce
Referrer-Policy: no-referrer-when-downgrade
Last-Modified: Fri, 19 Aug 2022 10:25:22 GMT
ETag: "bb1-5e69583f9a959"
Accept-Ranges: bytes
Content-Length: 2993
Keep-Alive: timeout=5, max=86
Connection: Keep-Alive
Content-Type: application/javascript
libreriaguillermo.com/wp-content/plugins/wc-dynamic-pricing-and-discounts/extensions/promotion-countdown-timer/assets/scripts.js?ver=2.4.4
51.38.189.36200 OK 4.1 kB URL HTTP/1.1 libreriaguillermo.com/wp-content/plugins/wc-dynamic-pricing-and-discounts/extensions/promotion-countdown-timer/assets/scripts.js?ver=2.4.4
IP 51.38.189.36:0
Hash 54440da83291551bfb908841c1c54822
cbb3f9d081f1bc4b872b49ef770faf5e371cd6af
895c319f283442ba5d0a69d15a9a187f46736d678b8dbf87eb126559ad36c4ff
GET /wp-content/plugins/wc-dynamic-pricing-and-discounts/extensions/promotion-countdown-timer/assets/scripts.js?ver=2.4.4 HTTP/1.1
Host: libreriaguillermo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://libreriaguillermo.com/wp-content/uploads/2022/07/ostriv_alpha_1_patch_3_money_hack.pdf
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 24 Sep 2022 15:54:11 GMT
Server: Apache/2.4.37 (centos) OpenSSL/1.1.1g
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: upgrade-insecure-requests
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Expect-CT: max-age=7776000, enforce
Referrer-Policy: no-referrer-when-downgrade
Last-Modified: Fri, 19 Aug 2022 10:25:22 GMT
ETag: "fd8-5e69583f8f991"
Accept-Ranges: bytes
Content-Length: 4056
Keep-Alive: timeout=5, max=90
Connection: Keep-Alive
Content-Type: application/javascript
libreriaguillermo.com/wp-content/plugins/easy-fancybox/js/jquery.mousewheel.min.js?ver=3.1.13
51.38.189.36200 OK 2.6 kB URL HTTP/1.1 libreriaguillermo.com/wp-content/plugins/easy-fancybox/js/jquery.mousewheel.min.js?ver=3.1.13
IP 51.38.189.36:0
File type ASCII text, with very long lines (2608)
Hash 963b3f6599b02889ea79808c5c8189d0
c2b5156772ddbaf09d18f00c31cddfb86bc1f1f1
dd9bfe5f04d4e393463f42b4f503763c36693306dffef16d481e0c071b61ae64
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/easy-fancybox/js/jquery.mousewheel.min.js?ver=3.1.13 HTTP/1.1
Host: libreriaguillermo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://libreriaguillermo.com/wp-content/uploads/2022/07/ostriv_alpha_1_patch_3_money_hack.pdf
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 24 Sep 2022 15:54:11 GMT
Server: Apache/2.4.37 (centos) OpenSSL/1.1.1g
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: upgrade-insecure-requests
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Expect-CT: max-age=7776000, enforce
Referrer-Policy: no-referrer-when-downgrade
Last-Modified: Fri, 09 Sep 2022 07:16:37 GMT
ETag: "a31-5e83953a2847b"
Accept-Ranges: bytes
Content-Length: 2609
Keep-Alive: timeout=5, max=87
Connection: Keep-Alive
Content-Type: application/javascript
libreriaguillermo.com/wp-content/plugins/easy-fancybox/js/jquery.fancybox.min.js?ver=1.3.24
51.38.189.36200 OK 20 kB URL HTTP/1.1 libreriaguillermo.com/wp-content/plugins/easy-fancybox/js/jquery.fancybox.min.js?ver=1.3.24
IP 51.38.189.36:0
File type HTML document, ASCII text, with very long lines (19791), with no line terminators
Hash 31022b7ea75250e0e9fb3117253fcb2f
f721d770eecb3a8fa48eeeed9f52faf4512d5493
948f0c154ad97428bc1d1dee456f2e20ec4e0e302b0d3189e08a4573cb63cdb3
GET /wp-content/plugins/easy-fancybox/js/jquery.fancybox.min.js?ver=1.3.24 HTTP/1.1
Host: libreriaguillermo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://libreriaguillermo.com/wp-content/uploads/2022/07/ostriv_alpha_1_patch_3_money_hack.pdf
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 24 Sep 2022 15:54:11 GMT
Server: Apache/2.4.37 (centos) OpenSSL/1.1.1g
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: upgrade-insecure-requests
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Expect-CT: max-age=7776000, enforce
Referrer-Policy: no-referrer-when-downgrade
Last-Modified: Fri, 09 Sep 2022 07:16:37 GMT
ETag: "4d4f-5e83953a2847b"
Accept-Ranges: bytes
Content-Length: 19791
Keep-Alive: timeout=5, max=89
Connection: Keep-Alive
Content-Type: application/javascript
libreriaguillermo.com/wp-content/plugins/easy-fancybox/js/jquery.easing.min.js?ver=1.4.1
51.38.189.36200 OK 2.3 kB URL HTTP/1.1 libreriaguillermo.com/wp-content/plugins/easy-fancybox/js/jquery.easing.min.js?ver=1.4.1
IP 51.38.189.36:0
File type ASCII text, with very long lines (2301)
Hash adf739cca147aff5e39fd65e6e64f420
ce3bb19811c619220dd2329165eb8a8166094fec
0ec98adf593ebcc01bec60b1f494dacd47522abfef9038a714101d83f45e165d
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/easy-fancybox/js/jquery.easing.min.js?ver=1.4.1 HTTP/1.1
Host: libreriaguillermo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://libreriaguillermo.com/wp-content/uploads/2022/07/ostriv_alpha_1_patch_3_money_hack.pdf
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 24 Sep 2022 15:54:11 GMT
Server: Apache/2.4.37 (centos) OpenSSL/1.1.1g
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: upgrade-insecure-requests
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Expect-CT: max-age=7776000, enforce
Referrer-Policy: no-referrer-when-downgrade
Last-Modified: Fri, 09 Sep 2022 07:16:37 GMT
ETag: "8fe-5e83953a2847b"
Accept-Ranges: bytes
Content-Length: 2302
Keep-Alive: timeout=5, max=86
Connection: Keep-Alive
Content-Type: application/javascript
libreriaguillermo.com/wp-content/plugins/yith-woocommerce-ajax-search/assets/js/yith-autocomplete.min.js?ver=1.23.0
51.38.189.36200 OK 11 kB URL HTTP/1.1 libreriaguillermo.com/wp-content/plugins/yith-woocommerce-ajax-search/assets/js/yith-autocomplete.min.js?ver=1.23.0
IP 51.38.189.36:0
File type ASCII text, with very long lines (10774), with no line terminators
Hash 36561b9c43c33e3cc5bb36b05de4e56e
d3cc7a82c6dc71a22d3ecec072aa118de2e1f0e0
c407868f4c8a3e43335f60b17ac95461956564c9c8e21db7cd366582fe5e582f
GET /wp-content/plugins/yith-woocommerce-ajax-search/assets/js/yith-autocomplete.min.js?ver=1.23.0 HTTP/1.1
Host: libreriaguillermo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://libreriaguillermo.com/wp-content/uploads/2022/07/ostriv_alpha_1_patch_3_money_hack.pdf
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 24 Sep 2022 15:54:11 GMT
Server: Apache/2.4.37 (centos) OpenSSL/1.1.1g
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: upgrade-insecure-requests
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Expect-CT: max-age=7776000, enforce
Referrer-Policy: no-referrer-when-downgrade
Last-Modified: Fri, 09 Sep 2022 07:16:56 GMT
ETag: "2a16-5e83954bd01c0"
Accept-Ranges: bytes
Content-Length: 10774
Keep-Alive: timeout=5, max=88
Connection: Keep-Alive
Content-Type: application/javascript
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 4fb51016b82f43bc6ee9f5ace001690c
5390a86aa0a7b82f5d09605b10812567b309d27a
73283fa4b416ee80d2ac87c30d2183afa1ae487a8650563b79adc1f001030f73
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 24 Sep 2022 15:54:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 4fb51016b82f43bc6ee9f5ace001690c
5390a86aa0a7b82f5d09605b10812567b309d27a
73283fa4b416ee80d2ac87c30d2183afa1ae487a8650563b79adc1f001030f73
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 24 Sep 2022 15:54:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
libreriaguillermo.com/wp-content/plugins/alert-notice-boxes/js/anb.js?ver=210408-192158
51.38.189.36200 OK 3.8 kB URL HTTP/1.1 libreriaguillermo.com/wp-content/plugins/alert-notice-boxes/js/anb.js?ver=210408-192158
IP 51.38.189.36:0
File type ASCII text, with CRLF, LF line terminators
Hash 74555961ceaa50b2bed31c811eeb4c35
6779c0de0489e053e59a57ef3d1f6e2030da4429
89af56c9885c670f43aec73a7c63f2bbe043f78a7849d9174518e119bc255717
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/alert-notice-boxes/js/anb.js?ver=210408-192158 HTTP/1.1
Host: libreriaguillermo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://libreriaguillermo.com/wp-content/uploads/2022/07/ostriv_alpha_1_patch_3_money_hack.pdf
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 24 Sep 2022 15:54:11 GMT
Server: Apache/2.4.37 (centos) OpenSSL/1.1.1g
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: upgrade-insecure-requests
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Expect-CT: max-age=7776000, enforce
Referrer-Policy: no-referrer-when-downgrade
Last-Modified: Thu, 08 Apr 2021 19:21:58 GMT
ETag: "ef3-5bf7af610c424"
Accept-Ranges: bytes
Content-Length: 3827
Keep-Alive: timeout=5, max=85
Connection: Keep-Alive
Content-Type: application/javascript
libreriaguillermo.com/wp-includes/js/underscore.min.js?ver=1.13.3
51.38.189.36200 OK 19 kB URL HTTP/1.1 libreriaguillermo.com/wp-includes/js/underscore.min.js?ver=1.13.3
IP 51.38.189.36:0
File type ASCII text, with very long lines (18876)
Hash 42aa17e1f850a414638ee4a32a3aa807
2e42d03a5e042701191650c041eae1cfb2d6c7b9
0da4791b446818516f710c51707081aec7b23a7c5212fc0b2629c973210136a4
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/underscore.min.js?ver=1.13.3 HTTP/1.1
Host: libreriaguillermo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://libreriaguillermo.com/wp-content/uploads/2022/07/ostriv_alpha_1_patch_3_money_hack.pdf
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 24 Sep 2022 15:54:11 GMT
Server: Apache/2.4.37 (centos) OpenSSL/1.1.1g
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: upgrade-insecure-requests
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Expect-CT: max-age=7776000, enforce
Referrer-Policy: no-referrer-when-downgrade
Last-Modified: Wed, 25 May 2022 02:24:44 GMT
ETag: "49df-5dfccc6c2ef47"
Accept-Ranges: bytes
Content-Length: 18911
Keep-Alive: timeout=5, max=89
Connection: Keep-Alive
Content-Type: application/javascript
libreriaguillermo.com/wp-includes/js/wp-util.min.js?ver=c6143cb609822277f7931505c01a7a7a
51.38.189.36200 OK 1.3 kB URL HTTP/1.1 libreriaguillermo.com/wp-includes/js/wp-util.min.js?ver=c6143cb609822277f7931505c01a7a7a
IP 51.38.189.36:0
File type ASCII text, with very long lines (1305)
Hash 8637362089372427b52fa10a43d8109c
6009bed674718329dce6055ab09fa95181162d81
b8e78b48acc08ce31457aff168d6fb2c814d51a8739a97693cdba585d60f5b35
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/wp-util.min.js?ver=c6143cb609822277f7931505c01a7a7a HTTP/1.1
Host: libreriaguillermo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://libreriaguillermo.com/wp-content/uploads/2022/07/ostriv_alpha_1_patch_3_money_hack.pdf
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 24 Sep 2022 15:54:11 GMT
Server: Apache/2.4.37 (centos) OpenSSL/1.1.1g
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: upgrade-insecure-requests
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Expect-CT: max-age=7776000, enforce
Referrer-Policy: no-referrer-when-downgrade
Last-Modified: Wed, 21 Jul 2021 21:28:48 GMT
ETag: "53c-5c7a8db1f0d45"
Accept-Ranges: bytes
Content-Length: 1340
Keep-Alive: timeout=5, max=86
Connection: Keep-Alive
Content-Type: application/javascript
libreriaguillermo.com/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart-variation.min.js?ver=6.8.2
51.38.189.36200 OK 14 kB URL HTTP/1.1 libreriaguillermo.com/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart-variation.min.js?ver=6.8.2
IP 51.38.189.36:0
File type ASCII text, with very long lines (13887), with no line terminators
Hash 86a395a95e5aef3b24c6cb6367893e79
61070479632011366e97cda53743872a6356744d
ddc53011e8c0788465983fa491db2d1f5bac6c8cffc49e344b717a3c8364e0fd
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart-variation.min.js?ver=6.8.2 HTTP/1.1
Host: libreriaguillermo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://libreriaguillermo.com/wp-content/uploads/2022/07/ostriv_alpha_1_patch_3_money_hack.pdf
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 24 Sep 2022 15:54:11 GMT
Server: Apache/2.4.37 (centos) OpenSSL/1.1.1g
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: upgrade-insecure-requests
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Expect-CT: max-age=7776000, enforce
Referrer-Policy: no-referrer-when-downgrade
Last-Modified: Fri, 09 Sep 2022 07:16:48 GMT
ETag: "363f-5e83954505903"
Accept-Ranges: bytes
Content-Length: 13887
Keep-Alive: timeout=5, max=88
Connection: Keep-Alive
Content-Type: application/javascript
libreriaguillermo.com/wp-content/plugins/eu-cookie-law/js/scripts.js?ver=3.1.6
51.38.189.36200 OK 3.0 kB URL HTTP/1.1 libreriaguillermo.com/wp-content/plugins/eu-cookie-law/js/scripts.js?ver=3.1.6
IP 51.38.189.36:0
File type ASCII text, with CRLF line terminators
Hash a0bc4eea01f3428c10fc2663b588b6db
c4125719ab59795ea51c552a6c3e73b570940066
b2777b2136591370735374104618934a186d85121cf3fc7dd8cabeaa9d19ecd8
GET /wp-content/plugins/eu-cookie-law/js/scripts.js?ver=3.1.6 HTTP/1.1
Host: libreriaguillermo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://libreriaguillermo.com/wp-content/uploads/2022/07/ostriv_alpha_1_patch_3_money_hack.pdf
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 24 Sep 2022 15:54:11 GMT
Server: Apache/2.4.37 (centos) OpenSSL/1.1.1g
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: upgrade-insecure-requests
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Expect-CT: max-age=7776000, enforce
Referrer-Policy: no-referrer-when-downgrade
Last-Modified: Tue, 16 Mar 2021 11:33:23 GMT
ETag: "b90-5bda5bbeac677"
Accept-Ranges: bytes
Content-Length: 2960
Keep-Alive: timeout=5, max=85
Connection: Keep-Alive
Content-Type: application/javascript
libreriaguillermo.com/wp-content/uploads/2015/07/logo_definitivo-01x3001.png
51.38.189.36200 OK 18 kB URL HTTP/1.1 libreriaguillermo.com/wp-content/uploads/2015/07/logo_definitivo-01x3001.png
IP 51.38.189.36:0
File type PNG image data, 300 x 115, 8-bit/color RGBA, non-interlaced\012- data
Hash bedc87f8e1ac894d5b8403d0242e3622
bcec2cab4d87f90421adad745420aab5278fb772
e178e7a48791728e89f467bf5f40d5db7d173f0cf2bbbac58ca0f6e7d31750a0
GET /wp-content/uploads/2015/07/logo_definitivo-01x3001.png HTTP/1.1
Host: libreriaguillermo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://libreriaguillermo.com/wp-content/uploads/2022/07/ostriv_alpha_1_patch_3_money_hack.pdf
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 24 Sep 2022 15:54:11 GMT
Server: Apache/2.4.37 (centos) OpenSSL/1.1.1g
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: upgrade-insecure-requests
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Expect-CT: max-age=7776000, enforce
Referrer-Policy: no-referrer-when-downgrade
Last-Modified: Tue, 23 Mar 2021 15:13:07 GMT
ETag: "4874-5be359e9ab2c8"
Accept-Ranges: bytes
Content-Length: 18548
Keep-Alive: timeout=5, max=87
Connection: Keep-Alive
Content-Type: image/png
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash cfbe772bfdcc656e94ceed53256863ca
34055ed3761ab4b69af25a2cb70ca7a337a9f79b
7464464772c70e6a9f1b516b9fc3b60f4e567c10f968c573d5a187f5f22d0722
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 24 Sep 2022 15:54:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
libreriaguillermo.com/wp-content/plugins/woocommerce/assets/css/woocommerce-smallscreen.css?ver=6.8.2
51.38.189.36200 OK 7.0 kB URL HTTP/1.1 libreriaguillermo.com/wp-content/plugins/woocommerce/assets/css/woocommerce-smallscreen.css?ver=6.8.2
IP 51.38.189.36:0
File type ASCII text, with very long lines (7043), with no line terminators
Hash 456663a286a204386735fd775542a59e
0a61620b88f4ae0fa7d71e2c7a014ea2c3ab5749
a7a83e60e7e3b8cadeed69327ba498b4cd68605db6e408729fa1b946758e7501
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/woocommerce/assets/css/woocommerce-smallscreen.css?ver=6.8.2 HTTP/1.1
Host: libreriaguillermo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://libreriaguillermo.com/wp-content/uploads/2022/07/ostriv_alpha_1_patch_3_money_hack.pdf
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 24 Sep 2022 15:54:11 GMT
Server: Apache/2.4.37 (centos) OpenSSL/1.1.1g
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: upgrade-insecure-requests
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Expect-CT: max-age=7776000, enforce
Referrer-Policy: no-referrer-when-downgrade
Last-Modified: Fri, 09 Sep 2022 07:16:48 GMT
ETag: "1b83-5e839545012b3"
Accept-Ranges: bytes
Content-Length: 7043
Keep-Alive: timeout=5, max=88
Connection: Keep-Alive
Content-Type: text/css
libreriaguillermo.com/wp-content/plugins/mega_main_menu/src/fonts/fontawesome-webfont.woff
51.38.189.36200 OK 44 kB URL HTTP/1.1 libreriaguillermo.com/wp-content/plugins/mega_main_menu/src/fonts/fontawesome-webfont.woff
IP 51.38.189.36:0
File type Web Open Font Format, TrueType, length 44432, version 1.0\012- data
Hash 3293616ec0c605c7c2db25829a0a509e
04c3bf56d87a0828935bd6b4aee859995f321693
0fd28fece9ebd606b8b071460ebd3fc2ed7bc7a66ef91c8834f11dfacab4a849
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/mega_main_menu/src/fonts/fontawesome-webfont.woff HTTP/1.1
Host: libreriaguillermo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://libreriaguillermo.com/wp-content/plugins/mega_main_menu/src/css/external/font-awesome.css?ver=2.0.2
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 24 Sep 2022 15:54:11 GMT
Server: Apache/2.4.37 (centos) OpenSSL/1.1.1g
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: upgrade-insecure-requests
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Expect-CT: max-age=7776000, enforce
Referrer-Policy: no-referrer-when-downgrade
Last-Modified: Tue, 16 Mar 2021 11:29:01 GMT
ETag: "ad90-5bda5ac503547"
Accept-Ranges: bytes
Content-Length: 44432
Keep-Alive: timeout=5, max=87
Connection: Keep-Alive
Content-Type: font/woff
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash fa5a7fd1c3d5eed2a8816ac62ad73e51
6536f3880457c6ced9534d5cf10615b6daf42aea
3c3a74be5d72d9e2b5ecdaeafbbf3d0029cd5848d2483cfa10da14859deff436
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 24 Sep 2022 15:54:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash fa5a7fd1c3d5eed2a8816ac62ad73e51
6536f3880457c6ced9534d5cf10615b6daf42aea
3c3a74be5d72d9e2b5ecdaeafbbf3d0029cd5848d2483cfa10da14859deff436
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 24 Sep 2022 15:54:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
142.250.74.163200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Hash 15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://libreriaguillermo.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 21 Sep 2022 19:34:08 GMT
expires: Thu, 21 Sep 2023 19:34:08 GMT
cache-control: public, max-age=31536000
age: 246003
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
libreriaguillermo.com/wp-content/themes/wendy/images/page404bg.jpg
51.38.189.36200 OK 1.3 MB URL HTTP/1.1 libreriaguillermo.com/wp-content/themes/wendy/images/page404bg.jpg
IP 51.38.189.36:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 1920x1200, components 3\012- data
Size 1.3 MB (1274235 bytes)
Hash b3954fd0d502bf7551b0ef610b3d42da
c6e54e523c11f048b6a445f614684c9f52a63312
6ce6a427f1640c430d40e35578b10a72a62dc743194dfed22bdd4732cf6433c6
GET /wp-content/themes/wendy/images/page404bg.jpg HTTP/1.1
Host: libreriaguillermo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://libreriaguillermo.com/wp-content/themes/wendy/css/theme1.css?ver=1.0.0
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 24 Sep 2022 15:54:11 GMT
Server: Apache/2.4.37 (centos) OpenSSL/1.1.1g
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: upgrade-insecure-requests
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Expect-CT: max-age=7776000, enforce
Referrer-Policy: no-referrer-when-downgrade
Last-Modified: Tue, 16 Mar 2021 11:29:02 GMT
ETag: "13717b-5bda5ac55cafc"
Accept-Ranges: bytes
Content-Length: 1274235
Keep-Alive: timeout=5, max=86
Connection: Keep-Alive
Content-Type: image/jpeg
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
142.250.74.163200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 15860, version 1.0\012- data
Hash e9f5aaf547f165386cd313b995dddd8e
acdef5603c2387b0e5bffd744b679a24a8bc1968
f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860
GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://libreriaguillermo.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 21 Sep 2022 19:34:08 GMT
expires: Thu, 21 Sep 2023 19:34:08 GMT
cache-control: public, max-age=31536000
age: 246003
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
platform.twitter.com/widgets/widget_iframe.c4bdc17e77719578b594d5555bee90db.html?origin=https%3A%2F%2Flibreriaguillermo.com
192.229.233.25200 OK 105 kB URL HTTP/1.1 platform.twitter.com/widgets/widget_iframe.c4bdc17e77719578b594d5555bee90db.html?origin=https%3A%2F%2Flibreriaguillermo.com
IP 192.229.233.25:0
File type HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (56168)
Size 105 kB (105445 bytes)
Hash aa228863765c3263e12f1d7c71015518
619739a12e0f16eab26a43a913b35779edea57a6
cf9a241903646ee9b88b76da2bb3e11d16f36246f7bbc53bbe2c98466e5ea12a
GET /widgets/widget_iframe.c4bdc17e77719578b594d5555bee90db.html?origin=https%3A%2F%2Flibreriaguillermo.com HTTP/1.1
Host: platform.twitter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://libreriaguillermo.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Encoding: gzip
Access-Control-Allow-Methods: GET
Access-Control-Allow-Origin: *
Age: 2056261
Cache-Control: public, max-age=315360000
Content-Type: text/html; charset=utf-8
Date: Sat, 24 Sep 2022 15:54:12 GMT
Etag: "50d73c0b4a4c7e4697b9c6ac6f1ecd75+gzip"
Last-Modified: Wed, 31 Aug 2022 20:40:57 GMT
P3P: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
Server: ECS (ska/F706)
Server-Timing: x-cache;desc= HIT,x-tw-cdn;desc=,edge;dur=1
Vary: Accept-Encoding
X-Cache: HIT
x-tw-cdn: VZ
Content-Length: 105445
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash fa5a7fd1c3d5eed2a8816ac62ad73e51
6536f3880457c6ced9534d5cf10615b6daf42aea
3c3a74be5d72d9e2b5ecdaeafbbf3d0029cd5848d2483cfa10da14859deff436
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 24 Sep 2022 15:54:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
libreriaguillermo.com/wp-content/uploads/2015/07/logo_definitivo-02.png
51.38.189.36200 OK 171 kB URL HTTP/1.1 libreriaguillermo.com/wp-content/uploads/2015/07/logo_definitivo-02.png
IP 51.38.189.36:0
File type PNG image data, 992 x 1108, 8-bit/color RGBA, non-interlaced\012- data
Size 171 kB (171290 bytes)
Hash 1dc42f35dee656dc30605ac49eaf43a2
beb2834e3f38151bafeb6ceb132d5f27c0c679bb
90624c511cfe1badba9d4123a155794636c68f8e181ae95d71958c0158c5523a
GET /wp-content/uploads/2015/07/logo_definitivo-02.png HTTP/1.1
Host: libreriaguillermo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://libreriaguillermo.com/wp-content/uploads/2022/07/ostriv_alpha_1_patch_3_money_hack.pdf
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 24 Sep 2022 15:54:12 GMT
Server: Apache/2.4.37 (centos) OpenSSL/1.1.1g
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: upgrade-insecure-requests
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Expect-CT: max-age=7776000, enforce
Referrer-Policy: no-referrer-when-downgrade
Last-Modified: Tue, 23 Mar 2021 15:13:06 GMT
ETag: "29d1a-5be359e997e2f"
Accept-Ranges: bytes
Content-Length: 171290
Keep-Alive: timeout=5, max=85
Connection: Keep-Alive
Content-Type: image/png
ocsp.digicert.com/
93.184.220.29200 OK 312 B IP 93.184.220.29:0
Hash 1bb424e2b668fe8e6378c99664947646
2c12703249a83fca67cdb31c9d41f3552105f5b1
292c2412194b587fd5807b529d240a60e0a3cf5e2485bc405d4e6999a0312bd0
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5524
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 24 Sep 2022 15:54:12 GMT
Last-Modified: Sat, 24 Sep 2022 14:22:08 GMT
Server: ECS (ska/F716)
X-Cache: HIT
Content-Length: 312
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 7038cca95198779d8bb479045eb56652
e9dcf9451e849f4d55b0909b33a51bd0b1a35296
0fc47dba3f2789b7c509a4916b1fe3c7b6b30c6778e5354742256125730310f3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0FC47DBA3F2789B7C509A4916B1FE3C7B6B30C6778E5354742256125730310F3"
Last-Modified: Fri, 23 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5538
Expires: Sat, 24 Sep 2022 17:26:30 GMT
Date: Sat, 24 Sep 2022 15:54:12 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 7038cca95198779d8bb479045eb56652
e9dcf9451e849f4d55b0909b33a51bd0b1a35296
0fc47dba3f2789b7c509a4916b1fe3c7b6b30c6778e5354742256125730310f3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0FC47DBA3F2789B7C509A4916B1FE3C7B6B30C6778E5354742256125730310F3"
Last-Modified: Fri, 23 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5538
Expires: Sat, 24 Sep 2022 17:26:30 GMT
Date: Sat, 24 Sep 2022 15:54:12 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 7038cca95198779d8bb479045eb56652
e9dcf9451e849f4d55b0909b33a51bd0b1a35296
0fc47dba3f2789b7c509a4916b1fe3c7b6b30c6778e5354742256125730310f3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0FC47DBA3F2789B7C509A4916B1FE3C7B6B30C6778E5354742256125730310F3"
Last-Modified: Fri, 23 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5538
Expires: Sat, 24 Sep 2022 17:26:30 GMT
Date: Sat, 24 Sep 2022 15:54:12 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 7038cca95198779d8bb479045eb56652
e9dcf9451e849f4d55b0909b33a51bd0b1a35296
0fc47dba3f2789b7c509a4916b1fe3c7b6b30c6778e5354742256125730310f3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0FC47DBA3F2789B7C509A4916B1FE3C7B6B30C6778E5354742256125730310F3"
Last-Modified: Fri, 23 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5538
Expires: Sat, 24 Sep 2022 17:26:30 GMT
Date: Sat, 24 Sep 2022 15:54:12 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 7038cca95198779d8bb479045eb56652
e9dcf9451e849f4d55b0909b33a51bd0b1a35296
0fc47dba3f2789b7c509a4916b1fe3c7b6b30c6778e5354742256125730310f3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0FC47DBA3F2789B7C509A4916B1FE3C7B6B30C6778E5354742256125730310F3"
Last-Modified: Fri, 23 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5538
Expires: Sat, 24 Sep 2022 17:26:30 GMT
Date: Sat, 24 Sep 2022 15:54:12 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb77ad616-c829-40b4-8b70-2be46252d64c.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb77ad616-c829-40b4-8b70-2be46252d64c.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 8ea5f06ad31f0cedd2cb5c6df82f35f4
60a83a1618ffae06e49ca3002bac1db9980dcfe8
5f6a4cb92c016ef0f229b11d727e9680a15b10782b5bfe9e66ad9d100b458d8d
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb77ad616-c829-40b4-8b70-2be46252d64c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10279
x-amzn-requestid: 0f361c26-1f12-421a-9752-7d4fcdf839ac
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y4V65GTXIAMF9-Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632cd045-25677a637307879044de8242;Sampled=0
x-amzn-remapped-date: Thu, 22 Sep 2022 21:14:45 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: HfslSWhSAKRjZr-qqajVm6bKf9jGt2pXq8N8GlXgyTwRxWqw0y-CgA==
via: 1.1 0aebf3fe433ff96e68d785fad4ea4c0e.cloudfront.net (CloudFront), 1.1 989017835f43d594873bde5a7ee7fe5e.cloudfront.net (CloudFront), 1.1 google
date: Sat, 24 Sep 2022 05:14:28 GMT
age: 38384
etag: "60a83a1618ffae06e49ca3002bac1db9980dcfe8"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F96ebb238-493f-4ccc-a8d9-7a7c6f8ab469.jpeg
34.120.237.76200 OK 8.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F96ebb238-493f-4ccc-a8d9-7a7c6f8ab469.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 5a4b36e1bf29c9c82f069cdd3c50874c
d2180d40ceb16924a87a41aad90dedb0bb912085
aab96d28ea8e21e6d37449eba400cac45acced1825ebdb27853d17ae4f993b00
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F96ebb238-493f-4ccc-a8d9-7a7c6f8ab469.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7963
x-amzn-requestid: cadfa4ff-473d-4927-bdf6-3aad64cddf18
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y7sQbHTCIAMFfZg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632e2735-41d711e5210099aa6273dd86;Sampled=0
x-amzn-remapped-date: Fri, 23 Sep 2022 21:37:57 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: g0NS7XamCzSMKmm1-mLnWLwUuBoJczvwSmTb0c_7klsY78wbrg4bRw==
via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 6172bb1a5d00a3b06ae3700570ebe116.cloudfront.net (CloudFront), 1.1 google
date: Fri, 23 Sep 2022 21:57:25 GMT
age: 64607
etag: "d2180d40ceb16924a87a41aad90dedb0bb912085"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F85d1d130-04e1-43f4-81d7-b15e9286f813.jpeg
34.120.237.76200 OK 8.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F85d1d130-04e1-43f4-81d7-b15e9286f813.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash e1087dcce202bbbc8c84196bd2050662
670d89082f8da643e1196b11fb64bf71707f0e8d
f6a7b6e07177431d7845e2f2b7b1b3b76088671db32aeef580a72e9bd3ddae00
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F85d1d130-04e1-43f4-81d7-b15e9286f813.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8354
x-amzn-requestid: 3ec3470c-2268-4102-af88-27dcfed76bfc
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y7sPCGOcoAMF2xQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632e272c-481aa98b413690636fc3a2f0;Sampled=0
x-amzn-remapped-date: Fri, 23 Sep 2022 21:37:48 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: pVtBCTCGh0DCF_1Vf9qMWttoDUQO_xSCkpdis9Gu3o4_cVEqaHngVg==
via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 1481cc55c02c3a782ad420b6bac2cb32.cloudfront.net (CloudFront), 1.1 google
date: Fri, 23 Sep 2022 21:48:30 GMT
age: 65142
etag: "670d89082f8da643e1196b11fb64bf71707f0e8d"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F76fa20bb-9883-4867-b55e-fc56c8f8fc57.jpeg
34.120.237.76200 OK 6.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F76fa20bb-9883-4867-b55e-fc56c8f8fc57.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d8d9af95acfc8b9b431eb1e020157f6d
f6f926be6e265a597aaede424f05fcd7c76fcc20
0b61d6cb0e0908cb8d303b9e951e2854166bd232e0291b5d698a6b757c064e88
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F76fa20bb-9883-4867-b55e-fc56c8f8fc57.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6386
x-amzn-requestid: 4380489e-d0ba-4f67-ac4f-67619ba34422
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y7shGHryIAMF6zg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632e27a0-005f9c783c7722f16c178026;Sampled=0
x-amzn-remapped-date: Fri, 23 Sep 2022 21:39:44 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: RuUOjTDRTkcaGFf_hTWrHZ89edOajgGUdl5PjbaUV7CUppat6IYsRg==
via: 1.1 49b94a8674d6e86a841d6523f7dbaf14.cloudfront.net (CloudFront), 1.1 e80693c02cfdfd081110512210d57840.cloudfront.net (CloudFront), 1.1 google
date: Fri, 23 Sep 2022 21:48:27 GMT
age: 65145
etag: "f6f926be6e265a597aaede424f05fcd7c76fcc20"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd719f7db-20e1-4834-9525-3117f1824f36.webp
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd719f7db-20e1-4834-9525-3117f1824f36.webp
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash aa150280eb113504d61a25935c0f0127
ed04f74fbb4c77b21e2babc51a82857f5e23d169
07df17fffb391aa82efb09e30d97e88fa4dbe6df00e37bb90304f69179f4848e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd719f7db-20e1-4834-9525-3117f1824f36.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10032
x-amzn-requestid: 521c4012-9834-4100-a7ed-30093502f1a9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y7sPBHGYoAMFh-Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632e272c-77b03c321240d76a572d603a;Sampled=0
x-amzn-remapped-date: Fri, 23 Sep 2022 21:37:48 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: N7TwxCLUL8qnvm3YuZ6CGyJquVerc266VvZ1g8j5RxGpQXoUJwhULg==
via: 1.1 470e3fe246a660ba6ace67a79f78d246.cloudfront.net (CloudFront), 1.1 0d4ebcaa87ba94709def0eaac9371e5a.cloudfront.net (CloudFront), 1.1 google
date: Fri, 23 Sep 2022 21:51:16 GMT
age: 64976
etag: "ed04f74fbb4c77b21e2babc51a82857f5e23d169"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd5039669-74cb-4d54-9208-94257c765b35.jpeg
34.120.237.76200 OK 9.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd5039669-74cb-4d54-9208-94257c765b35.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 55d224ac83a417772c98bc5080fb6689
a30f9044330824e70dde0dcc785890d981e6fdf5
b2ea4dea200109019a65834b98e31e8fac718a199513810a2819858be2b4470a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd5039669-74cb-4d54-9208-94257c765b35.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9935
x-amzn-requestid: 9eb8463d-172a-40a2-8eed-3c97b1260afe
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y7sQ5FARoAMFXQQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632e2738-3709a2f22ecc033532223b26;Sampled=0
x-amzn-remapped-date: Fri, 23 Sep 2022 21:38:00 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: e5eETCL5yFnoG4HPx0Qv8hjGnlXx5vOL4syMx9uato8nuIHkSvMezg==
via: 1.1 8f22423015641505b8c857a37450d6c0.cloudfront.net (CloudFront), 1.1 35575576af8067e30cfb17c6b9fde8e2.cloudfront.net (CloudFront), 1.1 google
date: Fri, 23 Sep 2022 21:58:23 GMT
age: 64549
etag: "a30f9044330824e70dde0dcc785890d981e6fdf5"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
syndication.twitter.com/settings?session_id=53de7b0f4e8f9cc0696cbd696dc49ee9fd914fec
104.244.42.200200 OK 327 B URL HTTP/2 syndication.twitter.com/settings?session_id=53de7b0f4e8f9cc0696cbd696dc49ee9fd914fec
IP 104.244.42.200:0
File type JSON data\012- , ASCII text, with very long lines (771), with no line terminators
Hash 21b37ea7072f5ae3a8fefdf555c10764
a509a3feca059bd0dc935c1ac59d600db3a68cb1
4d533bada6157ca9a0def76cc78590afd015569b76f1e3444d95be7c5fbd3b5b
GET /settings?session_id=53de7b0f4e8f9cc0696cbd696dc49ee9fd914fec HTTP/1.1
Host: syndication.twitter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://platform.twitter.com/
Origin: https://platform.twitter.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
date: Sat, 24 Sep 2022 15:54:11 GMT
perf: 7626143928
vary: Origin
server: tsa_o
content-type: application/json; charset=utf-8
cache-control: must-revalidate, max-age=600
last-modified: Sat, 24 Sep 2022 15:54:12 GMT
content-length: 327
content-encoding: gzip
x-transaction-id: 164b5c794ec7e200
strict-transport-security: max-age=631138519
access-control-allow-origin: https://platform.twitter.com
access-control-allow-credentials: true
x-response-time: 114
x-connection-hash: 76b3a0aa3e112d9083f1a1dbe17553b60e35016cb943749340482bee00cc7a48
X-Firefox-Spdy: h2
libreriaguillermo.com/?wc-ajax=get_refreshed_fragments
51.38.189.36200 OK 583 B URL HTTP/1.1 libreriaguillermo.com/?wc-ajax=get_refreshed_fragments
IP 51.38.189.36:0
File type JSON data\012- HTML document, ASCII text, with very long lines (583), with no line terminators
Hash 414ac79b5f251001c5a7f91601fe9616
dae8b41dad54d9391143b48721f1ef06c84dca01
66509364d0b3e64211e41224977cc94c41a7a999fbded44ea709286808397e28
Analyzer Verdict Alert fortinet Phishing
POST /?wc-ajax=get_refreshed_fragments HTTP/1.1
Host: libreriaguillermo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://libreriaguillermo.com/wp-content/uploads/2022/07/ostriv_alpha_1_patch_3_money_hack.pdf
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 18
Origin: https://libreriaguillermo.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 24 Sep 2022 15:54:12 GMT
Server: Apache/2.4.37 (centos) OpenSSL/1.1.1g
X-Powered-By: PHP/7.4.21
Vary: Accept-Encoding,Cookie
Access-Control-Allow-Origin: https://libreriaguillermo.com
Access-Control-Allow-Credentials: true
X-Content-Type-Options: nosniff
X-Robots-Tag: noindex
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: upgrade-insecure-requests
X-XSS-Protection: 1; mode=block
Expect-CT: max-age=7776000, enforce
Referrer-Policy: no-referrer-when-downgrade
Keep-Alive: timeout=5, max=87
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: application/json; charset=UTF-8
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffccf6ade-04f7-4d15-943c-bde343725d94.jpeg
34.120.237.76200 OK 8.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffccf6ade-04f7-4d15-943c-bde343725d94.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 02a682b4703bb9d6381c762726c05531
1d7f7b4cfdd7425213a21afdd1d5a5d8d11d0e54
fb672de67420a239fe5d7e2588f640150ed29883fe2a46ded160385e3265004c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffccf6ade-04f7-4d15-943c-bde343725d94.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 8029
x-amzn-requestid: 2fc5c63d-5cef-42f4-a6d2-b55f51c57af6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y4Y0tHjGoAMFcFw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632cd4ea-73f2f78a2d1ca8fc666d2571;Sampled=0
x-amzn-remapped-date: Thu, 22 Sep 2022 21:34:34 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: 7DX67a-HmEh76IorINvRU61AKtSiimdPnHFnYeR2OJezZJ1_mJq0MA==
via: 1.1 0aebf3fe433ff96e68d785fad4ea4c0e.cloudfront.net (CloudFront), 1.1 35575576af8067e30cfb17c6b9fde8e2.cloudfront.net (CloudFront), 1.1 google
date: Fri, 23 Sep 2022 21:48:26 GMT
age: 65153
etag: "1d7f7b4cfdd7425213a21afdd1d5a5d8d11d0e54"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Roboto:100,300,400,500,700,900,100italic,300italic,400italic,500italic,700italic,900italic&display=swap&ver=1632177871
142.250.74.10200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Roboto:100,300,400,500,700,900,100italic,300italic,400italic,500italic,700italic,900italic&display=swap&ver=1632177871
IP 142.250.74.10:0
GET /css?family=Roboto:100,300,400,500,700,900,100italic,300italic,400italic,500italic,700italic,900italic&display=swap&ver=1632177871 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://libreriaguillermo.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sat, 24 Sep 2022 15:54:11 GMT
date: Sat, 24 Sep 2022 15:54:11 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Open+Sans:400italic,700italic,400,700&subset=latin,latin-ext
142.250.74.10200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Open+Sans:400italic,700italic,400,700&subset=latin,latin-ext
IP 142.250.74.10:0
GET /css?family=Open+Sans:400italic,700italic,400,700&subset=latin,latin-ext HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://libreriaguillermo.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sat, 24 Sep 2022 15:54:11 GMT
date: Sat, 24 Sep 2022 15:54:11 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2