Report - somosguaches.com/

Report Overview

Visited public
2023-12-01 17:55:24
Tags
URL
somosguaches.com/
Finishing URL
somosguaches.com/
IP / ASN
146.190.199.189
#0
Title
Somos Guaches

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
somosguaches.com	unknown	2023-06-17	2022-10-17 15:25:19	2023-10-14 04:26:27	5.4 kB	1.7 MB	146.190.199.189
cdnjs.cloudflare.com	235	2009-02-17	2015-04-17 22:46:33	2023-12-01 05:09:17	893 B	17 kB	104.17.25.14
code.jquery.com	634	2005-12-10	2012-05-21 19:28:02	2023-12-01 08:06:52	451 B	31 kB	151.101.66.137
cdn.jsdelivr.net	439	2012-05-16	2012-09-30 02:15:09	2023-12-01 05:10:14	861 B	112 kB	151.101.129.229
unpkg.com	11693	2016-01-06	2016-01-08 00:26:01	2023-12-01 05:56:55	872 B	18 kB	104.16.126.175
stackpath.bootstrapcdn.com	2467	2012-05-25	2018-06-15 22:36:43	2023-12-01 06:54:36	496 B	157 kB	104.18.11.207
cdn.socket.io	62068	2010-04-18	2015-03-23 23:14:03	2023-11-30 17:31:29	420 B	185 kB	143.204.55.115

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2023-12-01	medium	somosguaches.com	Sinkholed
2023-12-01	medium	somosguaches.com	Sinkholed
2023-12-01	medium	somosguaches.com	Sinkholed
2023-12-01	medium	somosguaches.com	Sinkholed
2023-12-01	medium	somosguaches.com	Sinkholed
2023-12-01	medium	somosguaches.com	Sinkholed
2023-12-01	medium	somosguaches.com	Sinkholed
2023-12-01	medium	somosguaches.com	Sinkholed
2023-12-01	medium	somosguaches.com	Sinkholed
2023-12-01	medium	somosguaches.com	Sinkholed
2023-12-01	medium	somosguaches.com	Sinkholed
2023-12-01	medium	somosguaches.com	Sinkholed
2023-12-01	medium	somosguaches.com	Sinkholed
2023-12-01	medium	somosguaches.com	Sinkholed
2023-12-01	medium	somosguaches.com	Sinkholed

ThreatFox

No alerts detected

JavaScript (19)

	URL	From	Size	First Seen	Last Seen
	unknown	Function	1.7 kB	2023-10-24	2024-08-21
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-10-24 09:00 Last Seen2024-08-21 03:38 Times Seen2 Hash 535295eefb2af2b81175e35dfc433e25 01dc7349df435052cd4e78a56962f2270c753563 d7527cd38f44f2ff3be12aab1da9c14390ccff9da679f0652a89560e9fbc5a40 Loading...

	somosguaches.com/	ScriptElement	92 B	2023-07-23	2024-10-14
Pretty URL somosguaches.com/ IP 146.190.199.189 ASN #0 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-07-23 10:42 Last Seen2024-10-14 19:50 Times Seen3 Hash 0fb90c520cf52f09e963b10d83fcc26f 62af544a3184c82d382f048e2799307bc2cb0bcb 6073843100f922293196ff925248f3cbe5f73d70e71c9218a29722675d2b7e6a Loading...

	unknown	Function	38 B	2023-07-21	2025-02-12
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-07-21 19:33 Last Seen2025-02-12 18:44 Times Seen14 Hash 04f70897fea5e1c334c7017027db8432 b39e2fa966bbebc493c5152fe9117111157ce963 13672f91f2ab4af9e8b4fa0487dec7e0cbee4e623fb7973c3a91e576e64e3c6d Loading...

	somosguaches.com/js/ip.js	ScriptElement	46 B	2023-10-24	2023-12-01
Pretty URL somosguaches.com/js/ip.js IP 146.190.199.189 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-10-24 09:00 Last Seen2023-12-01 18:55 Times Seen2 Hash daae44ed8872f4cee8dedda86e40539d 4b52a120c6bfb0b3c33a95fa7526b2d107a0231c ec360fa90a6f71f8972e8876d58cb679da6375a7b39fd59876d0191afb1debc6 Loading...

	unknown	Function	34 B	2023-04-12	2025-05-09
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-12 05:34 Last Seen2025-05-09 00:52 Times Seen5673 Hash 7d61a91bc78674ba0a29f25feff50ab1 e4181c82811756b0c116df2b1614cc7bc865e629 a79b3caa6ae4239ff4cbbdda62156395e3c84b52042f55646b752b184b654c32 Loading...

	somosguaches.com/js/all.js	ScriptElement	1.2 MB	2023-03-08	2025-03-30
Pretty URL somosguaches.com/js/all.js IP 146.190.199.189 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 15:40 Last Seen2025-03-30 08:58 Times Seen49 Hash 18592082cdb7ca610dfacc5b183051bd a3f7341878abc1e5350d5d3047667a2dc4228e36 d89473371309892d1a1ce2631be962aac10eb816fafbef5c6387523b28a28d7e Loading...

	www.google-analytics.com/analytics.js	ScriptElement	4.7 kB	2023-04-11	2025-05-09
Pretty URL www.google-analytics.com/analytics.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-11 21:07 Last Seen2025-05-09 08:48 Times Seen340603 Hash f24128d0c9cba7be2916c693427a3483 1b6397d496ea896ebc2018b01b995cee4f166029 58173de4697da1a218f04c3a783a733bab4e769ceabc37cd42da9dc3e036a7e8 Loading...

	cdnjs.cloudflare.com/ajax/libs/vue-resource/1.5.1/vue-resource.min.js	ScriptElement	15 kB	2023-03-07	2025-05-07
Pretty URL cdnjs.cloudflare.com/ajax/libs/vue-resource/1.5.1/vue-resource.min.js IP 104.17.25.14 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:01 Last Seen2025-05-07 07:27 Times Seen121 Hash f35ad4319486c43cdad9819cf80c6f6a b2f67352fac822a1d8910175f67418808cf1c365 7bd5b12d1e0338fe5728c4f899f957568bd94b89957623240054831c5fbaabcd Loading...

	somosguaches.com/js/vendor/modernizr-3.7.1.min.js	ScriptElement	8.6 kB	2023-03-07	2025-05-06
Pretty URL somosguaches.com/js/vendor/modernizr-3.7.1.min.js IP 146.190.199.189 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:01 Last Seen2025-05-06 12:56 Times Seen307 Hash ee25e20d7e9ab3a9176a13b399811ba3 27d42ee7c95b013be8f627046fdf390436282797 3202dcecca9f2ece9708dfd74cee1dfd4bc07e97779e8760510dd770f80bc83b Loading...

	code.jquery.com/jquery-3.4.1.min.js	ScriptElement	88 kB	2023-03-07	2025-05-09
Pretty URL code.jquery.com/jquery-3.4.1.min.js IP 151.101.66.137 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02 Last Seen2025-05-09 09:23 Times Seen68101 Hash 220afd743d9e9643852e31a135a9f3ae 88523924351bac0b5d560fe0c5781e2556e7693d 0925e8ad7bd971391a8b1e98be8e87a6971919eb5b60c196485941c3c1df089a Loading...

	cdn.jsdelivr.net/npm/js-cookie@2/src/js.cookie.min.js	ScriptElement	2.0 kB	2023-03-07	2025-05-05
Pretty URL cdn.jsdelivr.net/npm/js-cookie@2/src/js.cookie.min.js IP 151.101.129.229 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:17 Last Seen2025-05-05 14:52 Times Seen1535 Hash 45f12de4d7b95a193ecdc5cfde664bb9 ee9541cf1a95d2a885f8b143a105caaa08ca9c9d 39b8fe6364621725ff90431a34af0f87976d95c00cbfd1d0f3711a3f1fa1a07b Loading...

	somosguaches.com/	ScriptElement	0 B	0001-01-01	2025-05-09
Pretty URL somosguaches.com/ IP 146.190.199.189 ASN #0 Introduced by scriptElement Embedded in HTML true Observations First Seen0001-01-01 00:00 Last Seen2025-05-09 09:26 Times Seen4635111 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	cdn.socket.io/socket.io-1.4.5.js	ScriptElement	185 kB	2023-04-05	2025-04-02
Pretty URL cdn.socket.io/socket.io-1.4.5.js IP 143.204.55.115 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-05 01:58 Last Seen2025-04-02 07:24 Times Seen8 Hash ba49ddced99e4b676f6ef22779aa27eb 3fe595ed1be86c0ecbecd7d3815e562ac3159957 d55c53253dafdb2ef27506cc7db9aa5e77bd90baa53cb5daf74f337d6980044f Loading...

	somosguaches.com/sandbox%20eval%20code		147 B	2023-04-11	2025-05-09
Pretty URL somosguaches.com/sandbox%20eval%20code IP 0.0.0.0 ASN #0 Introduced by Embedded in HTML false Observations First Seen2023-04-11 21:07 Last Seen2025-05-09 08:48 Times Seen341404 Hash 92b651082ce234f66bb544e678befda3 14c21c55ddce43b6f677caadf51d4ab98c6a3df8 25d57d1d97abeb84531d3d3e5754dd5cb19a2c115edfa7cfc7af8247084faded Loading...

	cdnjs.cloudflare.com/ajax/libs/axios/0.19.2/axios.js	ScriptElement	46 kB	2023-03-07	2025-04-27
Pretty URL cdnjs.cloudflare.com/ajax/libs/axios/0.19.2/axios.js IP 104.17.25.14 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:11 Last Seen2025-04-27 01:34 Times Seen223 Hash 73fcc4182a225c2dcb1d8dde1538535f 9e4b16aede9e9e593cd4d8f7e15a17bec8fac22f 6ddf1720acebb722753b94a1dd7a771a2b8c233582e3665e92facc303e06c518 Loading...

	somosguaches.com/js/plugins.js	ScriptElement	706 B	2023-03-07	2025-04-09
Pretty URL somosguaches.com/js/plugins.js IP 146.190.199.189 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:07 Last Seen2025-04-09 15:24 Times Seen79 Hash 9baec86da49af9bae5ba6b3b5b6f5eca 594a87f64eabd1c0ed40f4354ffea72b4bcf3154 ba48d440c79456c03c9bd51bc75d3367d8b4b12c8c5dd889b11c33c651561d11 Loading...

	somosguaches.com/js/main.js	ScriptElement	1.3 kB	2023-10-24	2023-12-01
Pretty URL somosguaches.com/js/main.js IP 146.190.199.189 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-10-24 09:00 Last Seen2023-12-01 18:55 Times Seen2 Hash 6502b2f85bd1fb8f8a38291b10e20570 16783cb57d7df93e0d9d7eda8a6a04902d58a961 08ea91d5cd8ccefc0943bc40bbb976d181acd9fae3e74afacc3037b4c75a48d6 Loading...

	unknown	Function	586 B	2023-10-24	2024-08-21
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-10-24 09:00 Last Seen2024-08-21 03:38 Times Seen2 Hash 0ae4a000ac0f4e40e448c0de1e96ca23 3a99ae3e6108fe73b7567c4c42bdd6c5c8a3c4c5 019062fdba1dd677b6220404223065a5dde1e3d0751e25b4b2d511c445680c45 Loading...

	cdn.jsdelivr.net/npm/vue/dist/vue.js	ScriptElement	434 kB	2023-10-24	2024-08-21
Pretty URL cdn.jsdelivr.net/npm/vue/dist/vue.js IP 151.101.129.229 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-10-24 08:52 Last Seen2024-08-21 03:38 Times Seen104 Hash 4bc3b2e9a48d45baf37d7a9f25613866 0b91500553414f2a5193033624a2eeed8f3e7ffb 7839e05340b0af281eca6dd53d7a7ac0cd3205b9d2f12b180ee45b89567ebef4 Loading...

HTTP Transactions (24)

URL IP Response Size

somosguaches.com/

146.190.199.189

200 OK

2.0 kB

URL User Request GET HTTP/1.1
somosguaches.com/
IP
146.190.199.189:80
ASN
#0

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text
Size
2.0 kB (1963 bytes)
Hash
5a6cccb423bce685ee39438fbc8f8499
847d881c08c45e957ece991d5aae577c0447e5bf
d55e72ce066dd068e2ff556a8a8c503e6a6ffe78ed207600c87cb5cfc6a585a7

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET / HTTP/1.1
Host: somosguaches.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Fri, 01 Dec 2023 17:55:08 GMT
Content-Type: text/html
Last-Modified: Sun, 09 Jul 2023 18:40:07 GMT
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"64aaff07-1442"
Content-Encoding: gzip

somosguaches.com/

146.190.199.189

200 OK

2.0 kB

URL User Request GET HTTP/1.1
somosguaches.com/
IP
146.190.199.189:80
ASN
#0

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text
Size
2.0 kB (1963 bytes)
Hash
5a6cccb423bce685ee39438fbc8f8499
847d881c08c45e957ece991d5aae577c0447e5bf
d55e72ce066dd068e2ff556a8a8c503e6a6ffe78ed207600c87cb5cfc6a585a7

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET / HTTP/1.1
Host: somosguaches.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Fri, 01 Dec 2023 17:55:08 GMT
Content-Type: text/html
Last-Modified: Sun, 09 Jul 2023 18:40:07 GMT
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"64aaff07-1442"
Content-Encoding: gzip

cdnjs.cloudflare.com/ajax/libs/vue-resource/1.5.1/vue-resource.min.js

104.17.25.14

200 OK

4.9 kB

URL GET HTTP/2
cdnjs.cloudflare.com/ajax/libs/vue-resource/1.5.1/vue-resource.min.js
IP
104.17.25.14:443
ASN
#13335 CLOUDFLARENET

Requested by
http://somosguaches.com/
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D
ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT

File type
ASCII text, with very long lines (14966)
Size
4.9 kB (4890 bytes)
Hash
f35ad4319486c43cdad9819cf80c6f6a
b2f67352fac822a1d8910175f67418808cf1c365
7bd5b12d1e0338fe5728c4f899f957568bd94b89957623240054831c5fbaabcd

HTTP Headers

GET /ajax/libs/vue-resource/1.5.1/vue-resource.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://somosguaches.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 01 Dec 2023 17:55:08 GMT
content-type: application/javascript; charset=utf-8
content-length: 4890
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb0402b-3ae4"
last-modified: Mon, 04 May 2020 16:17:47 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 651557
expires: Wed, 20 Nov 2024 17:55:08 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=b81jTCxmqXg3GuhrVtzzg4t1wAl3ACh8u8QkvTLzdcvyP8EkbWLVZe5D8Y7nzTInD0ZcQsHlN4aXz7bR8sbs4aR5qTcse3X6DhTr8J1x94aqE7XULchqjQAYKjnpXi9RU2%2FAXUhj"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 82ed330d1e12b517-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

cdnjs.cloudflare.com/ajax/libs/axios/0.19.2/axios.js

104.17.25.14

200 OK

9.8 kB

URL GET HTTP/2
cdnjs.cloudflare.com/ajax/libs/axios/0.19.2/axios.js
IP
104.17.25.14:443
ASN
#13335 CLOUDFLARENET

Requested by
http://somosguaches.com/
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D
ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT

File type
ASCII text
Size
9.8 kB (9765 bytes)
Hash
73fcc4182a225c2dcb1d8dde1538535f
9e4b16aede9e9e593cd4d8f7e15a17bec8fac22f
6ddf1720acebb722753b94a1dd7a771a2b8c233582e3665e92facc303e06c518

HTTP Headers

GET /ajax/libs/axios/0.19.2/axios.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://somosguaches.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 01 Dec 2023 17:55:09 GMT
content-type: application/javascript; charset=utf-8
content-length: 9765
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03d6a-b47d"
last-modified: Mon, 04 May 2020 16:06:02 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 651741
expires: Wed, 20 Nov 2024 17:55:09 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=8e359%2FF0n4ic7ShZV8jyNKPG5%2BkSQNxudc6N%2Fkd4LyfMyGDW9iArva%2BvXRL%2BFc8A9TW54aLDY043Vkq3ypJIPDeeBrEstF4ZAEzZtEEbJVN2et6Jrl19SrBVJG2wsN7C1Vlsu9xm"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 82ed330d3e7ab517-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

code.jquery.com/jquery-3.4.1.min.js

151.101.66.137

200 OK

31 kB

URL GET HTTP/2
code.jquery.com/jquery-3.4.1.min.js
IP
151.101.66.137:443
ASN
#54113 FASTLY

Requested by
http://somosguaches.com/
Certificate
IssuerSectigo Limited
Subject*.jquery.com
FingerprintD2:19:0A:AD:CE:BB:9C:61:17:5D:29:4B:A2:54:E8:C6:91:B8:F9:8D
ValidityTue, 11 Jul 2023 00:00:00 GMT - Sun, 14 Jul 2024 23:59:59 GMT

File type
ASCII text, with very long lines (65451)
Size
31 kB (30638 bytes)
Hash
220afd743d9e9643852e31a135a9f3ae
88523924351bac0b5d560fe0c5781e2556e7693d
0925e8ad7bd971391a8b1e98be8e87a6971919eb5b60c196485941c3c1df089a

HTTP Headers

GET /jquery-3.4.1.min.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://somosguaches.com
DNT: 1
Connection: keep-alive
Referer: http://somosguaches.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Fri, 18 Oct 1991 12:00:00 GMT
etag: W/"28feccc0-15851"
cache-control: public, max-age=31536000, stale-while-revalidate=604800
access-control-allow-origin: *
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Fri, 01 Dec 2023 17:55:09 GMT
age: 6651109
x-served-by: cache-lga21965-LGA, cache-bma1681-BMA
x-cache: HIT, HIT
x-cache-hits: 9, 601152
x-timer: S1701453309.016306,VS0,VE0
vary: Accept-Encoding
content-length: 30638
X-Firefox-Spdy: h2

cdn.jsdelivr.net/npm/vue/dist/vue.js

151.101.129.229

200 OK

109 kB

URL GET HTTP/2
cdn.jsdelivr.net/npm/vue/dist/vue.js
IP
151.101.129.229:443
ASN
#54113 FASTLY

Requested by
http://somosguaches.com/
Certificate
IssuerGlobalSign nv-sa
Subjectjsdelivr.net
Fingerprint05:87:2C:BA:73:14:21:54:82:00:8B:AD:85:8F:E9:C6:4D:C7:66:09
ValidityWed, 27 Sep 2023 18:13:13 GMT - Mon, 28 Oct 2024 18:13:12 GMT

File type
ASCII text, with CRLF, LF line terminators
Size
109 kB (108859 bytes)
Hash
4bc3b2e9a48d45baf37d7a9f25613866
0b91500553414f2a5193033624a2eeed8f3e7ffb
7839e05340b0af281eca6dd53d7a7ac0cd3205b9d2f12b180ee45b89567ebef4

HTTP Headers

GET /npm/vue/dist/vue.js HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://somosguaches.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=604800, s-maxage=43200
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: application/javascript; charset=utf-8
x-jsd-version: 2.7.15
x-jsd-version-type: version
etag: W/"69f9b-C5FQBVNBTypRkwM2JKLu7Y8+f/s"
content-encoding: br
accept-ranges: bytes
date: Fri, 01 Dec 2023 17:55:09 GMT
age: 16534
x-served-by: cache-fra-eddf8230119-FRA, cache-bma1649-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 108859
X-Firefox-Spdy: h2

cdn.jsdelivr.net/npm/js-cookie@2/src/js.cookie.min.js

151.101.129.229

200 OK

1.1 kB

URL GET HTTP/2
cdn.jsdelivr.net/npm/js-cookie@2/src/js.cookie.min.js
IP
151.101.129.229:443
ASN
#54113 FASTLY

Requested by
http://somosguaches.com/
Certificate
IssuerGlobalSign nv-sa
Subjectjsdelivr.net
Fingerprint05:87:2C:BA:73:14:21:54:82:00:8B:AD:85:8F:E9:C6:4D:C7:66:09
ValidityWed, 27 Sep 2023 18:13:13 GMT - Mon, 28 Oct 2024 18:13:12 GMT

File type
ASCII text, with very long lines (1619)
Size
1.1 kB (1078 bytes)
Hash
45f12de4d7b95a193ecdc5cfde664bb9
ee9541cf1a95d2a885f8b143a105caaa08ca9c9d
39b8fe6364621725ff90431a34af0f87976d95c00cbfd1d0f3711a3f1fa1a07b

HTTP Headers

GET /npm/js-cookie@2/src/js.cookie.min.js HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://somosguaches.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=604800, s-maxage=43200
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: application/javascript; charset=utf-8
x-jsd-version: 2.2.1
x-jsd-version-type: version
etag: W/"79f-7pVBzxqV0qiF+LFDoQXKqgjKnJ0"
content-encoding: br
accept-ranges: bytes
date: Fri, 01 Dec 2023 17:55:09 GMT
age: 35812
x-served-by: cache-fra-eddf8230099-FRA, cache-bma1649-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 1078
X-Firefox-Spdy: h2

somosguaches.com/css/main.css

146.190.199.189

200 OK

10 kB

URL GET HTTP/1.1
somosguaches.com/css/main.css
IP
146.190.199.189:80
ASN
#0

Requested by
http://somosguaches.com/

File type
ASCII text
Size
10 kB (10213 bytes)
Hash
0c6eb444214ab77581976ac290a33ac9
1c0bbff06ec6787c99df05191eff0c7da94b4627
ff5457139ddf0991d6d2296358fa90b4624a02d8bd280542a3451e60e617441e

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /css/main.css HTTP/1.1
Host: somosguaches.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://somosguaches.com/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Fri, 01 Dec 2023 17:55:09 GMT
Content-Type: text/css
Content-Length: 10213
Last-Modified: Sun, 09 Jul 2023 18:40:07 GMT
Connection: keep-alive
ETag: "64aaff07-27e5"
Accept-Ranges: bytes

somosguaches.com/css/normalize.css

146.190.199.189

200 OK

6.1 kB

URL GET HTTP/1.1
somosguaches.com/css/normalize.css
IP
146.190.199.189:80
ASN
#0

Requested by
http://somosguaches.com/

File type
ASCII text
Size
6.1 kB (6138 bytes)
Hash
112272e51c80ffe5bd01becd2ce7d656
7ffde343bdf10add1f052f3c4308a15180eb4404
580818700724d42d7fcc4979b0197971fca1c6d2e0286769237a0ac897df5512

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /css/normalize.css HTTP/1.1
Host: somosguaches.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://somosguaches.com/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Fri, 01 Dec 2023 17:55:09 GMT
Content-Type: text/css
Content-Length: 6138
Last-Modified: Sun, 09 Jul 2023 18:40:07 GMT
Connection: keep-alive
ETag: "64aaff07-17fa"
Accept-Ranges: bytes

somosguaches.com/js/ip.js

146.190.199.189

200 OK

46 B

URL GET HTTP/1.1
somosguaches.com/js/ip.js
IP
146.190.199.189:80
ASN
#0

Requested by
http://somosguaches.com/

File type
ASCII text
Size
46 B (46 bytes)
Hash
daae44ed8872f4cee8dedda86e40539d
4b52a120c6bfb0b3c33a95fa7526b2d107a0231c
ec360fa90a6f71f8972e8876d58cb679da6375a7b39fd59876d0191afb1debc6

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /js/ip.js HTTP/1.1
Host: somosguaches.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://somosguaches.com/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Fri, 01 Dec 2023 17:55:09 GMT
Content-Type: application/javascript
Content-Length: 46
Last-Modified: Sun, 09 Jul 2023 18:40:07 GMT
Connection: keep-alive
ETag: "64aaff07-2e"
Accept-Ranges: bytes

somosguaches.com/js/vendor/modernizr-3.7.1.min.js

146.190.199.189

200 OK

8.6 kB

URL GET HTTP/1.1
somosguaches.com/js/vendor/modernizr-3.7.1.min.js
IP
146.190.199.189:80
ASN
#0

Requested by
http://somosguaches.com/

File type
ASCII text, with very long lines (8283)
Size
8.6 kB (8599 bytes)
Hash
ee25e20d7e9ab3a9176a13b399811ba3
27d42ee7c95b013be8f627046fdf390436282797
3202dcecca9f2ece9708dfd74cee1dfd4bc07e97779e8760510dd770f80bc83b

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /js/vendor/modernizr-3.7.1.min.js HTTP/1.1
Host: somosguaches.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://somosguaches.com/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Fri, 01 Dec 2023 17:55:09 GMT
Content-Type: application/javascript
Content-Length: 8599
Last-Modified: Sun, 09 Jul 2023 18:40:07 GMT
Connection: keep-alive
ETag: "64aaff07-2197"
Accept-Ranges: bytes

somosguaches.com/js/plugins.js

146.190.199.189

200 OK

706 B

URL GET HTTP/1.1
somosguaches.com/js/plugins.js
IP
146.190.199.189:80
ASN
#0

Requested by
http://somosguaches.com/

File type
ASCII text
Size
706 B (706 bytes)
Hash
9baec86da49af9bae5ba6b3b5b6f5eca
594a87f64eabd1c0ed40f4354ffea72b4bcf3154
ba48d440c79456c03c9bd51bc75d3367d8b4b12c8c5dd889b11c33c651561d11

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /js/plugins.js HTTP/1.1
Host: somosguaches.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://somosguaches.com/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Fri, 01 Dec 2023 17:55:09 GMT
Content-Type: application/javascript
Content-Length: 706
Last-Modified: Sun, 09 Jul 2023 18:40:07 GMT
Connection: keep-alive
ETag: "64aaff07-2c2"
Accept-Ranges: bytes

somosguaches.com/css/all.css

146.190.199.189

200 OK

70 kB

URL GET HTTP/1.1
somosguaches.com/css/all.css
IP
146.190.199.189:80
ASN
#0

Requested by
http://somosguaches.com/

File type
ASCII text
Size
70 kB (70523 bytes)
Hash
42b8897772b8f90a5a1b7190deda7b3c
929188d80b457f4b7e61d958608b20f7befdb683
e3aab29c60242d216955b101a20e3782f3617eb3a3f819b05ddc458152bf2af7

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /css/all.css HTTP/1.1
Host: somosguaches.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://somosguaches.com/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Fri, 01 Dec 2023 17:55:08 GMT
Content-Type: text/css
Content-Length: 70523
Last-Modified: Sun, 09 Jul 2023 18:40:07 GMT
Connection: keep-alive
ETag: "64aaff07-1137b"
Accept-Ranges: bytes

somosguaches.com/js/main.js

146.190.199.189

200 OK

1.3 kB

URL GET HTTP/1.1
somosguaches.com/js/main.js
IP
146.190.199.189:80
ASN
#0

Requested by
http://somosguaches.com/

File type
Unicode text, UTF-8 text
Size
1.3 kB (1300 bytes)
Hash
6502b2f85bd1fb8f8a38291b10e20570
16783cb57d7df93e0d9d7eda8a6a04902d58a961
08ea91d5cd8ccefc0943bc40bbb976d181acd9fae3e74afacc3037b4c75a48d6

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /js/main.js HTTP/1.1
Host: somosguaches.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://somosguaches.com/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Fri, 01 Dec 2023 17:55:09 GMT
Content-Type: application/javascript
Content-Length: 1300
Last-Modified: Sun, 09 Jul 2023 18:40:07 GMT
Connection: keep-alive
ETag: "64aaff07-514"
Accept-Ranges: bytes

somosguaches.com/img/logoSG.png

146.190.199.189

200 OK

54 kB

URL GET HTTP/1.1
somosguaches.com/img/logoSG.png
IP
146.190.199.189:80
ASN
#0

Requested by
http://somosguaches.com/

File type
PNG image data, 700 x 210, 8-bit/color RGBA, non-interlaced\012- data
Size
54 kB (53570 bytes)
Hash
ae12da7f3bc5a08f24f035270ece721e
1dfc1afa30443efc88557e67be301727f77e6793
9db308c2ab9a52f53abf614b25d445d22ed1fd80e6d5df1895843c0225d091e3

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /img/logoSG.png HTTP/1.1
Host: somosguaches.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://somosguaches.com/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Fri, 01 Dec 2023 17:55:09 GMT
Content-Type: image/png
Content-Length: 53570
Last-Modified: Sun, 09 Jul 2023 18:40:07 GMT
Connection: keep-alive
ETag: "64aaff07-d142"
Accept-Ranges: bytes

somosguaches.com/webfonts/fa-brands-400.woff2

146.190.199.189

200 OK

75 kB

URL GET HTTP/1.1
somosguaches.com/webfonts/fa-brands-400.woff2
IP
146.190.199.189:80
ASN
#0

Requested by
http://somosguaches.com/

File type
Web Open Font Format (Version 2), TrueType, length 75336, version 330.32636\012- data
Size
75 kB (75336 bytes)
Hash
cccc9d29470e879e40eb70249d9a2705
5fe986cda635681b4b6bbd6111df2f26d7fca286
d3caf12591d194712facd10bca14f0a924edb59c24447a3fd994a48286db8843

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /webfonts/fa-brands-400.woff2 HTTP/1.1
Host: somosguaches.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: http://somosguaches.com/css/all.css
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Fri, 01 Dec 2023 17:55:09 GMT
Content-Type: application/octet-stream
Content-Length: 75336
Last-Modified: Sun, 09 Jul 2023 18:40:07 GMT
Connection: keep-alive
ETag: "64aaff07-12648"
Accept-Ranges: bytes

somosguaches.com/img/hero.jpg

146.190.199.189

200 OK

257 kB

URL GET HTTP/1.1
somosguaches.com/img/hero.jpg
IP
146.190.199.189:80
ASN
#0

Requested by
http://somosguaches.com/

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1600x900, components 3\012- data
Size
257 kB (257062 bytes)
Hash
31a4cd813e2413025eb6df711f41892d
f3ae738f14f3e1479f96c3c28acf9d9ba6185a40
0c28c3accbde06cd5a306bda94292ebe66ff3b53373281d195f701d2e943f28b

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /img/hero.jpg HTTP/1.1
Host: somosguaches.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://somosguaches.com/css/main.css
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Fri, 01 Dec 2023 17:55:09 GMT
Content-Type: image/jpeg
Content-Length: 257062
Last-Modified: Sun, 09 Jul 2023 18:40:07 GMT
Connection: keep-alive
ETag: "64aaff07-3ec26"
Accept-Ranges: bytes

somosguaches.com/js/all.js

146.190.199.189

200 OK

1.2 MB

URL GET HTTP/1.1
somosguaches.com/js/all.js
IP
146.190.199.189:80
ASN
#0

Requested by
http://somosguaches.com/

File type
ASCII text, with very long lines (3431)
Size
1.2 MB (1202063 bytes)
Hash
18592082cdb7ca610dfacc5b183051bd
a3f7341878abc1e5350d5d3047667a2dc4228e36
d89473371309892d1a1ce2631be962aac10eb816fafbef5c6387523b28a28d7e

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /js/all.js HTTP/1.1
Host: somosguaches.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://somosguaches.com/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Fri, 01 Dec 2023 17:55:09 GMT
Content-Type: application/javascript
Content-Length: 1202063
Last-Modified: Sun, 09 Jul 2023 18:40:07 GMT
Connection: keep-alive
ETag: "64aaff07-12578f"
Accept-Ranges: bytes

unpkg.com/vue-router@4.2.5/dist/vue-router.js

104.16.126.175

404 Not Found

16 kB

URL GET HTTP/2
unpkg.com/vue-router@4.2.5/dist/vue-router.js
IP
104.16.126.175:443
ASN
#13335 CLOUDFLARENET

Requested by
http://somosguaches.com/
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintF7:B6:41:CA:15:FD:D1:0C:27:39:55:5D:C5:CE:3F:1C:A6:BB:9D:6F
ValidityTue, 02 May 2023 00:00:00 GMT - Wed, 01 May 2024 23:59:59 GMT

File type
ASCII text, with no line terminators
Size
16 kB (16470 bytes)
Hash
f541dbaa439f8ab95f4dda582cf894fe
c8ee5011a176afad5455e11f3ab752a4426e7d9b
d45c82117d1425dcfc3c460d5f830d94b610a2e61644a21cc2671ba2f8bb98f2

HTTP Headers

GET /vue-router@4.2.5/dist/vue-router.js HTTP/1.1
Host: unpkg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://somosguaches.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 404 Not Found
date: Fri, 01 Dec 2023 17:55:09 GMT
content-type: text/plain; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=31536000
etag: W/"35-yO5QEaF2r61UVeEfOrdSpEJufZs"
via: 1.1 fly.io
fly-request-id: 01HG7XMGV8WDDYFM73X5E3VDEX-arn
cf-cache-status: HIT
age: 380296
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 82ed33100c1c7127-OSL
content-encoding: br
X-Firefox-Spdy: h2

somosguaches.com/img/favicon/favicon-16x16.png

146.190.199.189

200 OK

1.6 kB

URL GET HTTP/1.1
somosguaches.com/img/favicon/favicon-16x16.png
IP
146.190.199.189:80
ASN
#0

Requested by
http://somosguaches.com/

File type
PNG image data, 16 x 16, 8-bit colormap, non-interlaced\012- data
Size
1.6 kB (1588 bytes)
Hash
2cc2cfd695f2a8f5a75b185a748404be
8dc672b6bd6fe71247b8d7d60d297344e3ad5e0d
a2225ca5a27cc31092f773feed98135bd3a6fa95304cb63d53ad418d86b554ad

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /img/favicon/favicon-16x16.png HTTP/1.1
Host: somosguaches.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://somosguaches.com/
Cookie: prueba=valor
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Fri, 01 Dec 2023 17:55:09 GMT
Content-Type: image/png
Content-Length: 1588
Last-Modified: Sun, 09 Jul 2023 18:40:07 GMT
Connection: keep-alive
ETag: "64aaff07-634"
Accept-Ranges: bytes

somosguaches.com/img/favicon/android-icon-192x192.png

146.190.199.189

200 OK

16 kB

URL GET HTTP/1.1
somosguaches.com/img/favicon/android-icon-192x192.png
IP
146.190.199.189:80
ASN
#0

Requested by
http://somosguaches.com/

File type
PNG image data, 192 x 192, 8-bit/color RGBA, non-interlaced\012- data
Size
16 kB (16420 bytes)
Hash
e4a374c26106d1173c4fce835f35099d
0b2019fcc4a78ae0b99eedb383480c28678ca31b
54f2677c7b9d97ad0e0d6c35ed22397c0532de7aecc564d816f37195f8d56c68

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /img/favicon/android-icon-192x192.png HTTP/1.1
Host: somosguaches.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://somosguaches.com/
Cookie: prueba=valor
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Fri, 01 Dec 2023 17:55:09 GMT
Content-Type: image/png
Content-Length: 16420
Last-Modified: Sun, 09 Jul 2023 18:40:07 GMT
Connection: keep-alive
ETag: "64aaff07-4024"
Accept-Ranges: bytes

unpkg.com/vue-router/dist/vue-router.js

104.16.126.175

302 Found

0 B

URL GET HTTP/2
unpkg.com/vue-router/dist/vue-router.js
IP
104.16.126.175:443
ASN
#13335 CLOUDFLARENET

Requested by
http://somosguaches.com/
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintF7:B6:41:CA:15:FD:D1:0C:27:39:55:5D:C5:CE:3F:1C:A6:BB:9D:6F
ValidityTue, 02 May 2023 00:00:00 GMT - Wed, 01 May 2024 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /vue-router/dist/vue-router.js HTTP/1.1
Host: unpkg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://somosguaches.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 302 Found
date: Fri, 01 Dec 2023 17:55:09 GMT
content-type: text/plain; charset=utf-8
access-control-allow-origin: *
cache-control: public, s-maxage=600, max-age=60
location: /vue-router@4.2.5/dist/vue-router.js
vary: Accept, Accept-Encoding
via: 1.1 fly.io
fly-request-id: 01HGK8A91Y7839487BRKYZR46W-arn
cf-cache-status: EXPIRED
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 82ed330d0e227127-OSL
X-Firefox-Spdy: h2

stackpath.bootstrapcdn.com/bootstrap/4.3.1/css/bootstrap.min.css

104.18.11.207

200 OK

156 kB

URL GET HTTP/2
stackpath.bootstrapcdn.com/bootstrap/4.3.1/css/bootstrap.min.css
IP
104.18.11.207:443
ASN
#13335 CLOUDFLARENET

Requested by
http://somosguaches.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectbootstrapcdn.com
Fingerprint34:BC:91:5F:B9:EC:32:2C:D9:73:C7:88:C3:6C:FB:77:E7:70:8D:04
ValidityThu, 30 Nov 2023 00:15:17 GMT - Wed, 28 Feb 2024 00:15:16 GMT

File type
ASCII text, with very long lines (65324)
Size
156 kB (155758 bytes)
Hash
a15c2ac3234aa8f6064ef9c1f7383c37
6e10354828454898fda80f55f3decb347fd9ed21
60b19e5da6a9234ff9220668a5ec1125c157a268513256188ee80f2d2c8d8d36

HTTP Headers

GET /bootstrap/4.3.1/css/bootstrap.min.css HTTP/1.1
Host: stackpath.bootstrapcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://somosguaches.com
DNT: 1
Connection: keep-alive
Referer: http://somosguaches.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 01 Dec 2023 17:55:08 GMT
content-type: text/css; charset=utf-8
vary: Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
access-control-allow-origin: *
cache-control: public, max-age=31919000
etag: W/"a15c2ac3234aa8f6064ef9c1f7383c37"
last-modified: Mon, 25 Jan 2021 22:04:08 GMT
cdn-cachedat: 10/31/2023 18:59:49
cdn-proxyver: 1.04
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 1078
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-status: 200
cdn-requestid: 994d83f3d8f82979fb1f4e01ce119e92
cdn-cache: HIT
cf-cache-status: MISS
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 82ed330cedb8b4f3-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

cdn.socket.io/socket.io-1.4.5.js

143.204.55.115

200 OK

185 kB

URL GET HTTP/2
cdn.socket.io/socket.io-1.4.5.js
IP
143.204.55.115:443
ASN
#16509 AMAZON-02

Requested by
http://somosguaches.com/
Certificate
IssuerAmazon
Subjectcdn.socket.io
FingerprintBB:7D:4E:26:70:F6:06:2A:12:E9:92:A8:F1:9F:CD:82:0B:BF:48:ED
ValiditySun, 22 Oct 2023 00:00:00 GMT - Sun, 17 Nov 2024 23:59:59 GMT

File type

Size
185 kB (184656 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /socket.io-1.4.5.js HTTP/1.1
Host: cdn.socket.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://somosguaches.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=31536000, immutable
content-disposition: inline; filename="socket.io-1.4.5.js"
content-encoding: gzip
date: Tue, 24 Oct 2023 04:12:16 GMT
etag: W/"ba49ddced99e4b676f6ef22779aa27eb"
server: Vercel
strict-transport-security: max-age=63072000
x-vercel-cache: HIT
x-vercel-id: fra1::28p5x-1698120736163-4cf7b91d2810
x-cache: Hit from cloudfront
via: 1.1 71c98156ae29b36a903974f9dd2568f8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 83hPtWyQh0dcVGalldIOdpNl-5GjJlwcWBdc4JoRmVD159-5c2A_RQ==
age: 10290374
X-Firefox-Spdy: h2

Report Overview

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (19)

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations