r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 111c8a4d6ad583c6126cfa9c4648851f
7bb69828eadedd57e2eb57f0612e0208bde3fcc7
44c24f6c3c0470e5b2112f9089eef8029a4f80dc966eacee001841b08e59cb79
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "44C24F6C3C0470E5B2112F9089EEF8029A4F80DC966EACEE001841B08E59CB79"
Last-Modified: Mon, 13 Feb 2023 19:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7689
Expires: Tue, 14 Feb 2023 07:22:22 GMT
Date: Tue, 14 Feb 2023 05:14:13 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 9b39c3955aa73765d5c9cbe0d4c52f83
b13bf774f0189207d90d846b86b68fcf2f64f868
f6fea261b800d26e329ced17006c9f5d10b6c490dac3b2276cc7b0e2aa38316c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F6FEA261B800D26E329CED17006C9F5D10B6C490DAC3B2276CC7B0E2AA38316C"
Last-Modified: Mon, 13 Feb 2023 19:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2582
Expires: Tue, 14 Feb 2023 05:57:16 GMT
Date: Tue, 14 Feb 2023 05:14:14 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash ff250d3ef3fa45322bf05039a0122a9f
b3e7a2c383bce1bab807dbe1a03c375258b51f1d
d07f109a96e0ae6ec7b1d46ce8761b3f06fe845769ce65d69e053dd40aa561ba
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Alert, Backoff, Content-Type, Retry-After
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Tue, 14 Feb 2023 04:37:19 GMT
content-type: application/json
age: 2215
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 3534c46dafa4e959cb5f4aba0b1d8cd7
f4aa8774355b04bf1f074aeb73c56c52b32568ab
68b7b6679046611b607c073416e818c6d0391e2953ecc8781b02e57a9b5af306
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "68B7B6679046611B607C073416E818C6D0391E2953ECC8781B02E57A9B5AF306"
Last-Modified: Mon, 13 Feb 2023 19:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4270
Expires: Tue, 14 Feb 2023 06:25:24 GMT
Date: Tue, 14 Feb 2023 05:14:14 GMT
Connection: keep-alive
delamargm.cl/DOC/Rechnung-scan
201.148.105.73301 Moved Permanently 246 B URL HTTP/1.1 delamargm.cl/DOC/Rechnung-scan
IP 201.148.105.73:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 9162db92a8ea45ae4aabadeaad31c8d2
334b937df61634202fbe30debea6a3b1b5aab735
29a529e03f313f6db56bada5b6e067c13f0fe7bca728f291275eb4044e4e2bde
Analyzer Verdict Alert fortinet Malware
GET /DOC/Rechnung-scan HTTP/1.1
Host: delamargm.cl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Tue, 14 Feb 2023 05:14:13 GMT
Server: Apache
Location: https://delamargm.cl/DOC/Rechnung-scan
Content-Length: 246
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-03-20-18-44-46.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-03-20-18-44-46.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash e76071a28ee566dababb3834f46d68ed
aebb4e68c1ba2de0f90025283e8ed8470944fde0
78b6df2627172e5b35476bc31020f02898cdc412aaf4337af2c3b049a60912b6
GET /chains/remote-settings.content-signature.mozilla.org-2023-03-20-18-44-46.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: /04wyjUYpjym/u9reRd1yfwd6GWWTJqZlGBRUzYDNcavhwbVey5DZmUF2ac8PiO/HNR+4pLVWBw=
x-amz-request-id: B8MQ5CEDF39TQS0R
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Tue, 14 Feb 2023 04:46:48 GMT
age: 1646
last-modified: Sun, 29 Jan 2023 18:44:47 GMT
etag: "e76071a28ee566dababb3834f46d68ed"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 14 Feb 2023 05:14:14 GMT
content-type: application/json
content-length: 12
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-expose-headers: content-type
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Expires, Retry-After, Content-Length, Content-Type, ETag, Cache-Control, Alert, Pragma, Backoff, Last-Modified
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Tue, 14 Feb 2023 04:14:53 GMT
age: 3561
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 188e06be43a4f1b02aa98f1762147970
5e6b7e3a172fb7327331fd8c7f74559d079bd4fb
89bd97cff26b8d656f26db21b59b02fbc3f671ac903e1e44735c7472ebd05090
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "89BD97CFF26B8D656F26DB21B59B02FBC3F671AC903E1E44735C7472EBD05090"
Last-Modified: Mon, 13 Feb 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2593
Expires: Tue, 14 Feb 2023 05:57:27 GMT
Date: Tue, 14 Feb 2023 05:14:14 GMT
Connection: keep-alive
push.services.mozilla.com/
52.88.143.102101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.88.143.102:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 4T5stJbZeAQ/340LNjcVGg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 5nyo+rtJS1hn+xzlzgm7uGZphtM=
delamargm.cl/DOC/Rechnung-scan
201.148.105.73404 Not Found 9.2 kB URL HTTP/2 delamargm.cl/DOC/Rechnung-scan
IP 201.148.105.73:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (8047), with CRLF, LF line terminators
Hash 17828d74d9f233506c126c22d71b33f6
32b4a1481e504056d4143143dbbcd78afe9feedb
b6ff6dc2e3f2b92ae40a781ed7bc4816ea3c6b01d1b493097811b4a76280ce9e
Analyzer Verdict Alert fortinet Malware
GET /DOC/Rechnung-scan HTTP/1.1
Host: delamargm.cl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 404 Not Found
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
x-frame-options: SAMEORIGIN
link: <https://www.pescadores.cl/wp-json/>; rel="https://api.w.org/"
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 9183
content-type: text/html; charset=UTF-8
date: Tue, 14 Feb 2023 05:14:15 GMT
server: Apache
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash a4c52624ced1d0cd7f733a09232cd07b
fee2a6f4ba6ea7efb77d544fc90054c9c6e1e740
e790bce4501a807d30f73eab877f1c84fbe14281e1858757a8b6b6b6fffe3888
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E790BCE4501A807D30F73EAB877F1C84FBE14281E1858757A8B6B6B6FFFE3888"
Last-Modified: Mon, 13 Feb 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8298
Expires: Tue, 14 Feb 2023 07:32:34 GMT
Date: Tue, 14 Feb 2023 05:14:16 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash a4c52624ced1d0cd7f733a09232cd07b
fee2a6f4ba6ea7efb77d544fc90054c9c6e1e740
e790bce4501a807d30f73eab877f1c84fbe14281e1858757a8b6b6b6fffe3888
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E790BCE4501A807D30F73EAB877F1C84FBE14281E1858757A8B6B6B6FFFE3888"
Last-Modified: Mon, 13 Feb 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8298
Expires: Tue, 14 Feb 2023 07:32:34 GMT
Date: Tue, 14 Feb 2023 05:14:16 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash a4c52624ced1d0cd7f733a09232cd07b
fee2a6f4ba6ea7efb77d544fc90054c9c6e1e740
e790bce4501a807d30f73eab877f1c84fbe14281e1858757a8b6b6b6fffe3888
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E790BCE4501A807D30F73EAB877F1C84FBE14281E1858757A8B6B6B6FFFE3888"
Last-Modified: Mon, 13 Feb 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8298
Expires: Tue, 14 Feb 2023 07:32:34 GMT
Date: Tue, 14 Feb 2023 05:14:16 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash a4c52624ced1d0cd7f733a09232cd07b
fee2a6f4ba6ea7efb77d544fc90054c9c6e1e740
e790bce4501a807d30f73eab877f1c84fbe14281e1858757a8b6b6b6fffe3888
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E790BCE4501A807D30F73EAB877F1C84FBE14281E1858757A8B6B6B6FFFE3888"
Last-Modified: Mon, 13 Feb 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8298
Expires: Tue, 14 Feb 2023 07:32:34 GMT
Date: Tue, 14 Feb 2023 05:14:16 GMT
Connection: keep-alive
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 472 B IP 142.250.74.163:0
Hash f5067af0270e15c7a9474f4164857326
32b475f2e62e41425bed727d9879ebcbbb60aa3a
60d910b309744465e215e9a977ad16146387dcc6c1160ae1192d5c26e71c02b5
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 14 Feb 2023 05:14:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6809b4a1-e882-4032-a262-ee3ceb939a04.jpeg
34.120.237.76200 OK 9.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6809b4a1-e882-4032-a262-ee3ceb939a04.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash f6c10083401a159012ce2a433377090c
b604fe9d95be6fc7708819bdef34fa6b760fe745
9b75d1124c23f491e33e884eaed846b1e51328b4ee25c1cd7182f589f3269e48
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6809b4a1-e882-4032-a262-ee3ceb939a04.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9192
x-amzn-requestid: 895986d8-1db5-44f0-a1b6-bb2055bf7576
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: AS_zaG8cIAMFtyQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63eaace2-41299d3654b9046938c6cbb0;Sampled=0
x-amzn-remapped-date: Mon, 13 Feb 2023 21:34:26 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: BxIwLcj-190cWmUXBG-uG6yHibhueXAqUTkF7_hxbMmCnV-mTXyFdA==
via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 e66162aafd55b64ba1478ff7105150fa.cloudfront.net (CloudFront), 1.1 google
date: Mon, 13 Feb 2023 22:19:37 GMT
age: 24879
etag: "b604fe9d95be6fc7708819bdef34fa6b760fe745"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F74073173-a5a0-46f8-b23e-201ea802ab67.jpeg
34.120.237.76200 OK 8.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F74073173-a5a0-46f8-b23e-201ea802ab67.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash dfbb7efa6627641ed50ee7738b2e2561
a759d26d6c811f964125ccba6e11498bca6b64c8
d1b2ea74eb288c5530c761830023830e43a6e8441594252736d6aa130dfd6520
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F74073173-a5a0-46f8-b23e-201ea802ab67.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8419
x-amzn-requestid: d19bc4f6-4174-4563-a1ef-c27ba0a9e3ed
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: AS_zuHdGIAMFQlA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63eaace4-5e914df75bfda625564e1142;Sampled=0
x-amzn-remapped-date: Mon, 13 Feb 2023 21:34:28 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: e0GAkTbo83Kf6PvNKGWEeTfnGeFsgaNYwkTj6wLZcvSY_Ax4cW8jjA==
via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 1b74ccf4cb51eacf97a0e6d60ae46a3e.cloudfront.net (CloudFront), 1.1 google
date: Mon, 13 Feb 2023 22:18:48 GMT
age: 24928
etag: "a759d26d6c811f964125ccba6e11498bca6b64c8"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9fe38f96-4b04-43d2-9644-5b2f7cd0c0c9.jpeg
34.120.237.76200 OK 14 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9fe38f96-4b04-43d2-9644-5b2f7cd0c0c9.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 504b69ec2b6350345c36777959b0765a
c302824325b8f0839c7de54af9c5bd02541e4269
6e3a5b1cd7d17a9f448b8189d5683567269b3b3d461838770482283898008f39
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9fe38f96-4b04-43d2-9644-5b2f7cd0c0c9.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 14477
x-amzn-requestid: 2544b5cc-3fb0-4536-88ec-8cb9044fb612
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ANtsXFBYoAMF6tA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63e88fe8-452901f67af9f5d95ccc61c3;Sampled=0
x-amzn-remapped-date: Sun, 12 Feb 2023 07:06:16 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: hy4pKD0EX3RY8ayeOzmZvNG-K7qwaVP4VPjPOxcpUGmk2x09fKFFRg==
via: 1.1 d1151317ba32afe0e6370fd69fed222e.cloudfront.net (CloudFront), 1.1 4f3feb5c4393987d42d1971d404d7cea.cloudfront.net (CloudFront), 1.1 google
date: Mon, 13 Feb 2023 07:24:02 GMT
age: 78614
etag: "c302824325b8f0839c7de54af9c5bd02541e4269"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F31b064cd-e914-46c4-9261-f5cf1e300786.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F31b064cd-e914-46c4-9261-f5cf1e300786.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash e24473b3e335f2046f72ea198a1a9ac8
346f3744c1fd32467ac8c1783f7c28c0ffd3cc4b
87fb8a02fb286ccd1d04abe4052fb08617fc68692515aa6daed2895e83827ccd
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F31b064cd-e914-46c4-9261-f5cf1e300786.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10677
x-amzn-requestid: 7fbf05af-939a-443c-9add-f856b5ab4b1c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: AS_zFH3hoAMFUkg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63eaace0-0676c24e496661ff545249f0;Sampled=0
x-amzn-remapped-date: Mon, 13 Feb 2023 21:34:24 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: ASk3lL6xNgUz-lLwE7lpLLh_PK_Iq-PSAz3VSOZrEweutYlfUggXTg==
via: 1.1 1b0911478686968732f973d6e5e31d10.cloudfront.net (CloudFront), 1.1 be082a2326b7d49643607b097f1e7180.cloudfront.net (CloudFront), 1.1 google
date: Mon, 13 Feb 2023 22:28:32 GMT
age: 24344
etag: "346f3744c1fd32467ac8c1783f7c28c0ffd3cc4b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3711add0-4cca-4150-977d-cdccd88e0409.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3711add0-4cca-4150-977d-cdccd88e0409.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 43a4f167fe1284382fe7128db499cf66
35b23e525c0868c0739c4b877a1014abe34babfb
2a9363e54b227559df8f054d1c74346708969ba41aaed9d7b18e92f05c84214d
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3711add0-4cca-4150-977d-cdccd88e0409.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11158
x-amzn-requestid: fd308044-35de-49b7-85c5-c550c8eac906
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ATA5VGJ0IAMFlwA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63eaaea1-1dbba8881b4c34e3171fa425;Sampled=0
x-amzn-remapped-date: Mon, 13 Feb 2023 21:41:53 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: xWMwnJhlCRvcI2BO6Z2JRrliQGuo0k5BklA-pyYwe-XtWsW_MQ1rtg==
via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 98aedae6661e3904540676966998ed88.cloudfront.net (CloudFront), 1.1 google
date: Mon, 13 Feb 2023 22:18:48 GMT
age: 24928
etag: "35b23e525c0868c0739c4b877a1014abe34babfb"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F44207860-46a2-4eab-849a-6a8cffa06716.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F44207860-46a2-4eab-849a-6a8cffa06716.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash c81108232fe94f14f8e098503491d901
b8f61f53aeeda6dde7990f3eba946da1fdc9bb4d
d0349b59754321aaeb86bd3f52f060bac1415d36ba8414803adf91fe964973e3
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F44207860-46a2-4eab-849a-6a8cffa06716.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11082
x-amzn-requestid: 1a0d2ea8-98fd-4933-8fdf-3adc871fa305
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: AS_x5FGyoAMFgZA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63eaacd8-401be350379275d369805f56;Sampled=0
x-amzn-remapped-date: Mon, 13 Feb 2023 21:34:16 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: TpY7YVxFyPyHz-7qVihYrx9KC925nj-ggT_rM7YAG0CrB38PyIdq9Q==
via: 1.1 112c6b3f9aea37a6cb00b7d933e5af6e.cloudfront.net (CloudFront), 1.1 112d82578d402a38d8d02e8b857617e0.cloudfront.net (CloudFront), 1.1 google
date: Mon, 13 Feb 2023 22:19:50 GMT
etag: "b8f61f53aeeda6dde7990f3eba946da1fdc9bb4d"
content-type: image/jpeg
age: 24866
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 472 B IP 142.250.74.163:0
Hash f5067af0270e15c7a9474f4164857326
32b475f2e62e41425bed727d9879ebcbbb60aa3a
60d910b309744465e215e9a977ad16146387dcc6c1160ae1192d5c26e71c02b5
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 14 Feb 2023 05:14:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.pescadores.cl/wp-content/plugins/responsive-lightbox-lite/assets/nivo-lightbox/themes/default/default.css?ver=6.1.1
201.148.105.73200 OK 825 B URL HTTP/2 www.pescadores.cl/wp-content/plugins/responsive-lightbox-lite/assets/nivo-lightbox/themes/default/default.css?ver=6.1.1
IP 201.148.105.73:0
Hash f37343ec23039f3418ca7ec95dc8a2b8
4a715c2e1a583138434f38963065cc07523dcd0d
b843d6df33fca5d3817dbbb441bf3c12fba39e2fc0b1ec7e6451a15dd0dd30c5
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/responsive-lightbox-lite/assets/nivo-lightbox/themes/default/default.css?ver=6.1.1 HTTP/1.1
Host: www.pescadores.cl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://delamargm.cl/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 04 Jan 2021 18:24:57 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 825
content-type: text/css
date: Tue, 14 Feb 2023 05:14:17 GMT
server: Apache
X-Firefox-Spdy: h2
www.pescadores.cl/wp-includes/css/classic-themes.min.css?ver=1
201.148.105.73200 OK 189 B URL HTTP/2 www.pescadores.cl/wp-includes/css/classic-themes.min.css?ver=1
IP 201.148.105.73:0
Hash 5a18e16eb01cbaa862eb32e6b77bedb2
3abf9b913cc9f558f02cba7c9b822f8d1812cb96
d2b5af913332941d5ae7786d1fa70e0d009315c4ede6ad5b80d0f663bb54521f
GET /wp-includes/css/classic-themes.min.css?ver=1 HTTP/1.1
Host: www.pescadores.cl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://delamargm.cl/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 25 Oct 2022 22:15:16 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 189
content-type: text/css
date: Tue, 14 Feb 2023 05:14:17 GMT
server: Apache
X-Firefox-Spdy: h2
www.pescadores.cl/wp-content/plugins/responsive-lightbox-lite/assets/nivo-lightbox/nivo-lightbox.css?ver=6.1.1
201.148.105.73200 OK 1.1 kB URL HTTP/2 www.pescadores.cl/wp-content/plugins/responsive-lightbox-lite/assets/nivo-lightbox/nivo-lightbox.css?ver=6.1.1
IP 201.148.105.73:0
Hash 83a30810377d6a9e5bab5d54bd43887d
60bd8357cb941fb062b42d9613536748672d29c6
7412095b2c2a5487a02afe98b9d34daf7319e1fd88b1b6a34471fb502729d80a
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/responsive-lightbox-lite/assets/nivo-lightbox/nivo-lightbox.css?ver=6.1.1 HTTP/1.1
Host: www.pescadores.cl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://delamargm.cl/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 04 Jan 2021 18:24:57 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 1118
content-type: text/css
date: Tue, 14 Feb 2023 05:14:17 GMT
server: Apache
X-Firefox-Spdy: h2
www.pescadores.cl/wp-content/plugins/layerslider/assets/static/layerslider/css/layerslider.css?ver=6.11.1
201.148.105.73200 OK 4.0 kB URL HTTP/2 www.pescadores.cl/wp-content/plugins/layerslider/assets/static/layerslider/css/layerslider.css?ver=6.11.1
IP 201.148.105.73:0
Hash 1f1b98afe3b250f3f41c2ad82a285887
6d99305f10923c2e2d726bf21f38e21d1e44d2f4
4ead643f65cbafc7f3f2ed4c4e94dac776013906a7353b67f8f117af1387872d
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/layerslider/assets/static/layerslider/css/layerslider.css?ver=6.11.1 HTTP/1.1
Host: www.pescadores.cl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://delamargm.cl/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 25 Aug 2020 20:23:04 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 3999
content-type: text/css
date: Tue, 14 Feb 2023 05:14:17 GMT
server: Apache
X-Firefox-Spdy: h2
www.pescadores.cl/wp-content/plugins/sitepress-multilingual-cms/templates/language-switchers/legacy-list-horizontal/style.css?ver=1
201.148.105.73200 OK 313 B URL HTTP/2 www.pescadores.cl/wp-content/plugins/sitepress-multilingual-cms/templates/language-switchers/legacy-list-horizontal/style.css?ver=1
IP 201.148.105.73:0
File type ASCII text, with very long lines (850)
Hash 1dd1129795df6e900fecbe2d73ac3068
9adafd827ba7c5a59f41d466862547c45508a0a8
9dfdac78c0115c8877fbe917d83f5ade1e64af7c50c3167ecae8e139efe1edd3
GET /wp-content/plugins/sitepress-multilingual-cms/templates/language-switchers/legacy-list-horizontal/style.css?ver=1 HTTP/1.1
Host: www.pescadores.cl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://delamargm.cl/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 25 Aug 2020 20:03:37 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 313
content-type: text/css
date: Tue, 14 Feb 2023 05:14:17 GMT
server: Apache
X-Firefox-Spdy: h2
www.pescadores.cl/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
201.148.105.73200 OK 4.2 kB URL HTTP/2 www.pescadores.cl/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP 201.148.105.73:0
File type ASCII text, with very long lines (11126)
Hash 5629711d7fdd5b28441bac39b851299f
4e0bf2b7383097f7c352023a1b1b1b48a50356b6
44c444309c7a6c05ff4a9bc198bed9e9596bedb5658637c85689c9a471dcdd16
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: www.pescadores.cl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://delamargm.cl/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 18 Nov 2020 17:36:06 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 4169
content-type: application/javascript
date: Tue, 14 Feb 2023 05:14:17 GMT
server: Apache
X-Firefox-Spdy: h2
www.pescadores.cl/wp-includes/css/dist/block-library/style.min.css?ver=6.1.1
201.148.105.73200 OK 12 kB URL HTTP/2 www.pescadores.cl/wp-includes/css/dist/block-library/style.min.css?ver=6.1.1
IP 201.148.105.73:0
File type ASCII text, with very long lines (47826)
Hash 8fa87dd23394a22621248ec378d2af59
9305bc637a89b1700d7f56a19a80bd32b0feb2f7
c162f7de24fa2d4e93e0da254ef287ff72f4a3e03f42443265097968351388dc
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/css/dist/block-library/style.min.css?ver=6.1.1 HTTP/1.1
Host: www.pescadores.cl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://delamargm.cl/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 16 Nov 2022 05:33:10 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 12518
content-type: text/css
date: Tue, 14 Feb 2023 05:14:17 GMT
server: Apache
X-Firefox-Spdy: h2
www.pescadores.cl/wp-content/themes/nrlizondo/style.css?ver=6.1.1
201.148.105.73200 OK 11 kB URL HTTP/2 www.pescadores.cl/wp-content/themes/nrlizondo/style.css?ver=6.1.1
IP 201.148.105.73:0
File type ASCII text, with very long lines (492), with CRLF line terminators
Hash 092c7627250f4bcb6f2e411c31b02f36
f9f240e3c85e7dc7da2cb2389647556bd81ff36a
f237a6f696417fbfaaa9d41afc8fa1b3a79a25ed441d3c37a1d368545eb04934
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/nrlizondo/style.css?ver=6.1.1 HTTP/1.1
Host: www.pescadores.cl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://delamargm.cl/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 25 Jul 2019 12:27:20 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 10949
content-type: text/css
date: Tue, 14 Feb 2023 05:14:17 GMT
server: Apache
X-Firefox-Spdy: h2
www.pescadores.cl/wp-includes/js/jquery/jquery.min.js?ver=3.6.1
201.148.105.73200 OK 31 kB URL HTTP/2 www.pescadores.cl/wp-includes/js/jquery/jquery.min.js?ver=3.6.1
IP 201.148.105.73:0
File type ASCII text, with very long lines (65447)
Hash 1b5264c989379b828aff60f65a518a24
98641237f14ccb33ac114f54329a33bd0aa17eb7
6c8e7b78c6dbc13426810c905572db7589cf3e00264e30ce797fddb0b1092237
GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.1 HTTP/1.1
Host: www.pescadores.cl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://delamargm.cl/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 19 Sep 2022 22:46:24 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 30995
content-type: application/javascript
date: Tue, 14 Feb 2023 05:14:17 GMT
server: Apache
X-Firefox-Spdy: h2
www.pescadores.cl/wp-content/plugins/layerslider/assets/static/layerslider/js/layerslider.utils.js?ver=6.11.1
201.148.105.73200 OK 42 kB URL HTTP/2 www.pescadores.cl/wp-content/plugins/layerslider/assets/static/layerslider/js/layerslider.utils.js?ver=6.11.1
IP 201.148.105.73:0
File type ASCII text, with very long lines (65315)
Hash 37785123f7b52fcef8d74be4c2fd05b3
03de8cdad5a939ecb6a578f261a1820ca1093a08
cea70c98b3d81cac62fac209c5dc13b8819aa4e7850334b0c1a1eac73ba4c00f
GET /wp-content/plugins/layerslider/assets/static/layerslider/js/layerslider.utils.js?ver=6.11.1 HTTP/1.1
Host: www.pescadores.cl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://delamargm.cl/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 25 Aug 2020 20:23:04 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 41976
content-type: application/javascript
date: Tue, 14 Feb 2023 05:14:17 GMT
server: Apache
X-Firefox-Spdy: h2
www.pescadores.cl/wp-content/plugins/responsive-lightbox-lite/assets/inc/script.js?ver=6.1.1
201.148.105.73200 OK 306 B URL HTTP/2 www.pescadores.cl/wp-content/plugins/responsive-lightbox-lite/assets/inc/script.js?ver=6.1.1
IP 201.148.105.73:0
Hash 635a29ab685a14e7c546bfeaa6802bc0
eccf011589328f2ce38bd28ba845436d3e2df1f2
66aa97aba56ef310c3e353b3e6276c22ab83d3d87a46b60585aa834993725b76
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/responsive-lightbox-lite/assets/inc/script.js?ver=6.1.1 HTTP/1.1
Host: www.pescadores.cl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://delamargm.cl/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 04 Jan 2021 18:24:57 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 306
content-type: application/javascript
date: Tue, 14 Feb 2023 05:14:17 GMT
server: Apache
X-Firefox-Spdy: h2
www.pescadores.cl/wp-content/themes/nrlizondo/js/navigation.js?ver=1.0
201.148.105.73200 OK 402 B URL HTTP/2 www.pescadores.cl/wp-content/themes/nrlizondo/js/navigation.js?ver=1.0
IP 201.148.105.73:0
File type ASCII text, with CRLF line terminators
Hash aa68add31a7bd3416c76d271c4a5dccf
1120b93797dfa92c5499c3e92b47de01f6bbb052
3933308053334b2fe16e965c30e6d8b204ff6733a2a1de98b7d8a2e844672e60
GET /wp-content/themes/nrlizondo/js/navigation.js?ver=1.0 HTTP/1.1
Host: www.pescadores.cl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://delamargm.cl/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 25 Jul 2019 12:27:20 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 402
content-type: application/javascript
date: Tue, 14 Feb 2023 05:14:17 GMT
server: Apache
X-Firefox-Spdy: h2
www.pescadores.cl/wp-content/plugins/click-to-chat-for-whatsapp/new/inc/assets/js/app.js?ver=3.21
201.148.105.73200 OK 2.2 kB URL HTTP/2 www.pescadores.cl/wp-content/plugins/click-to-chat-for-whatsapp/new/inc/assets/js/app.js?ver=3.21
IP 201.148.105.73:0
File type ASCII text, with very long lines (6525), with no line terminators
Hash 91d547ca73212b842bd6b36f6d413827
bbc155124ea26ae7f47869fdedb290bfc03532e8
4fc73c508251abb3e74343676d9606503b40df2caf474dcc4e4783ff7cf22afc
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/click-to-chat-for-whatsapp/new/inc/assets/js/app.js?ver=3.21 HTTP/1.1
Host: www.pescadores.cl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://delamargm.cl/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 08 Feb 2023 18:32:49 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 2163
content-type: application/javascript
date: Tue, 14 Feb 2023 05:14:17 GMT
server: Apache
X-Firefox-Spdy: h2
www.pescadores.cl/wp-content/plugins/responsive-lightbox-lite/assets/nivo-lightbox/nivo-lightbox.min.js?ver=6.1.1
201.148.105.73200 OK 2.2 kB URL HTTP/2 www.pescadores.cl/wp-content/plugins/responsive-lightbox-lite/assets/nivo-lightbox/nivo-lightbox.min.js?ver=6.1.1
IP 201.148.105.73:0
File type ASCII text, with very long lines (7410)
Hash 9275f5278cb2556c5a37140f2f4dbddc
40f01220639041e8c2509458670f2db0ea142824
fcbc2be4b75d271f3d20b4b777d84f274c8a5817b03a3178d36abd9dcfdbe2f7
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/responsive-lightbox-lite/assets/nivo-lightbox/nivo-lightbox.min.js?ver=6.1.1 HTTP/1.1
Host: www.pescadores.cl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://delamargm.cl/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 04 Jan 2021 18:24:57 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 2205
content-type: application/javascript
date: Tue, 14 Feb 2023 05:14:17 GMT
server: Apache
X-Firefox-Spdy: h2
www.pescadores.cl/wp-content/plugins/layerslider/assets/static/layerslider/js/layerslider.transitions.js?ver=6.11.1
201.148.105.73200 OK 3.4 kB URL HTTP/2 www.pescadores.cl/wp-content/plugins/layerslider/assets/static/layerslider/js/layerslider.transitions.js?ver=6.11.1
IP 201.148.105.73:0
File type Unicode text, UTF-8 text, with very long lines (21440)
Hash 6cc185714c6c96032e28eec6a00ab132
012aa8b49e9a04689498630e0a57f6f3b12ccc6c
41dd6065ca4d7e967f5eab1f3ee18232f9519ae6a947c5029b9ee1e3ffd30808
GET /wp-content/plugins/layerslider/assets/static/layerslider/js/layerslider.transitions.js?ver=6.11.1 HTTP/1.1
Host: www.pescadores.cl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://delamargm.cl/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 25 Aug 2020 20:23:04 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 3377
content-type: application/javascript
date: Tue, 14 Feb 2023 05:14:17 GMT
server: Apache
X-Firefox-Spdy: h2
www.pescadores.cl/wp-content/plugins/layerslider/assets/static/layerslider/js/layerslider.kreaturamedia.jquery.js?ver=6.11.1
201.148.105.73200 OK 47 kB URL HTTP/2 www.pescadores.cl/wp-content/plugins/layerslider/assets/static/layerslider/js/layerslider.kreaturamedia.jquery.js?ver=6.11.1
IP 201.148.105.73:0
File type ASCII text, with very long lines (65322)
Hash 98ef1ad263e64f11717e2d40f3d920b9
93106092071e4550c714e178a710c31d23e09e37
6eb8668862dde5d75bd26dc485a021d31b39f27daa0a9a9611b6430fc1acfa2d
GET /wp-content/plugins/layerslider/assets/static/layerslider/js/layerslider.kreaturamedia.jquery.js?ver=6.11.1 HTTP/1.1
Host: www.pescadores.cl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://delamargm.cl/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 25 Aug 2020 20:23:04 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 47240
content-type: application/javascript
date: Tue, 14 Feb 2023 05:14:17 GMT
server: Apache
X-Firefox-Spdy: h2
www.pescadores.cl/wp-content/themes/nrlizondo/fonts/maven_pro_medium-webfont.woff
201.148.105.73200 OK 33 kB URL HTTP/2 www.pescadores.cl/wp-content/themes/nrlizondo/fonts/maven_pro_medium-webfont.woff
IP 201.148.105.73:0
File type Web Open Font Format, TrueType, length 32968, version 1.0\012- data
Hash c9d1a1d0c66e03cd27bcc0a90301b127
b9e1fa3bb563981ab1e1242171fe7f1713678800
85fb14a5b4b04bacd0219b257e6cfe155334570d4a7c8a0434e85b0942db3e0a
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/nrlizondo/fonts/maven_pro_medium-webfont.woff HTTP/1.1
Host: www.pescadores.cl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://delamargm.cl
Connection: keep-alive
Referer: https://www.pescadores.cl/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 25 Jul 2019 12:27:20 GMT
accept-ranges: bytes
content-length: 32968
vary: Accept-Encoding,User-Agent
content-type: font/woff
date: Tue, 14 Feb 2023 05:14:18 GMT
server: Apache
X-Firefox-Spdy: h2
www.pescadores.cl/wp-content/themes/nrlizondo/fonts/maven_pro_medium-webfont.ttf
201.148.105.73200 OK 33 kB URL HTTP/2 www.pescadores.cl/wp-content/themes/nrlizondo/fonts/maven_pro_medium-webfont.ttf
IP 201.148.105.73:0
File type TrueType Font data, 19 tables, 1st "FFTM", 18 names, Microsoft, language 0x409, Copyright (c) 2011 by Vissol Ltd. All rights reserved.Maven ProMedium1.003;MavenProMediumMaven P\012- data
Hash 0556395c92b2d1d81352261ba2ced543
889926122eed30292172b11b1b91ade196e254a9
1d447bc43ef27082a8f9efddebce6f23a2df6613a336439d2a60d589ab978a6a
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/nrlizondo/fonts/maven_pro_medium-webfont.ttf HTTP/1.1
Host: www.pescadores.cl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://delamargm.cl
Connection: keep-alive
Referer: https://www.pescadores.cl/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 25 Jul 2019 12:27:20 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 33444
content-type: font/ttf
date: Tue, 14 Feb 2023 05:14:18 GMT
server: Apache
X-Firefox-Spdy: h2
www.pescadores.cl/wp-content/plugins/sitepress-multilingual-cms/res/flags/en.png
201.148.105.73404 Not Found 9.2 kB URL HTTP/2 www.pescadores.cl/wp-content/plugins/sitepress-multilingual-cms/res/flags/en.png
IP 201.148.105.73:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (8047), with CRLF, LF line terminators
Hash 41fbe1fc9c817d5c1b190f6b0f4c4123
abe1d98766419186bb03df83a2c8a0c22e6773bb
f2f412d67cb8c6d45571fda156d91ea0ff17d0921bcd3e2fc037fd3cadeeb6e1
GET /wp-content/plugins/sitepress-multilingual-cms/res/flags/en.png HTTP/1.1
Host: www.pescadores.cl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://delamargm.cl/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 404 Not Found
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
x-frame-options: SAMEORIGIN
link: <https://www.pescadores.cl/wp-json/>; rel="https://api.w.org/"
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 9191
content-type: text/html; charset=UTF-8
date: Tue, 14 Feb 2023 05:14:17 GMT
server: Apache
X-Firefox-Spdy: h2
www.pescadores.cl/wp-content/plugins/sitepress-multilingual-cms/res/flags/es.png
201.148.105.73404 Not Found 9.2 kB URL HTTP/2 www.pescadores.cl/wp-content/plugins/sitepress-multilingual-cms/res/flags/es.png
IP 201.148.105.73:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (8047), with CRLF, LF line terminators
Hash 986a954605464409c9dbaca706c8602e
0055e34e4070cac11a3cf5c23ebbc08a507b9ef6
593189bbbeaa57c694ea73487a6be74d169b4efe59e1d497c7d3d21e8ad41470
GET /wp-content/plugins/sitepress-multilingual-cms/res/flags/es.png HTTP/1.1
Host: www.pescadores.cl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://delamargm.cl/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 404 Not Found
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
x-frame-options: SAMEORIGIN
link: <https://www.pescadores.cl/wp-json/>; rel="https://api.w.org/"
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 9188
content-type: text/html; charset=UTF-8
date: Tue, 14 Feb 2023 05:14:17 GMT
server: Apache
X-Firefox-Spdy: h2
www.pescadores.cl/wp-content/uploads/2014/08/pescadoresgroup_logo.png
201.148.105.73404 Not Found 9.2 kB URL HTTP/2 www.pescadores.cl/wp-content/uploads/2014/08/pescadoresgroup_logo.png
IP 201.148.105.73:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (8047), with CRLF, LF line terminators
Hash ea048a806247e3b2d2f4e0c85f3e54a3
67b9a255c458b46d664abc3bc0c8a76bf1a3f399
9cd48ecf14749f0f667940fc85c9de7c3443a8f73e92ecd32f9458b36346a5be
GET /wp-content/uploads/2014/08/pescadoresgroup_logo.png HTTP/1.1
Host: www.pescadores.cl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://delamargm.cl/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 404 Not Found
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
x-frame-options: SAMEORIGIN
link: <https://www.pescadores.cl/wp-json/>; rel="https://api.w.org/"
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 9190
content-type: text/html; charset=UTF-8
date: Tue, 14 Feb 2023 05:14:17 GMT
server: Apache
X-Firefox-Spdy: h2
www.pescadores.cl/wp-content/uploads/2014/08/pescadoresgroup_textura_fondo.jpg
201.148.105.73404 Not Found 9.2 kB URL HTTP/2 www.pescadores.cl/wp-content/uploads/2014/08/pescadoresgroup_textura_fondo.jpg
IP 201.148.105.73:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (8047), with CRLF, LF line terminators
Hash edd5324a3151b8b6461634eeb060cdf0
d029881548ccbcce61788925bb521b3cf072d37d
c1ff7bf0322315bf0a629ebf84ad03a6970849ca1aa5ae0321312d4373e602c4
GET /wp-content/uploads/2014/08/pescadoresgroup_textura_fondo.jpg HTTP/1.1
Host: www.pescadores.cl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://delamargm.cl/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 404 Not Found
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
x-frame-options: SAMEORIGIN
link: <https://www.pescadores.cl/wp-json/>; rel="https://api.w.org/"
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 9188
content-type: text/html; charset=UTF-8
date: Tue, 14 Feb 2023 05:14:18 GMT
server: Apache
X-Firefox-Spdy: h2
www.pescadores.cl/wp-content/uploads/2018/10/cropped-pescadoresgroup_logo-192x192.png
201.148.105.73404 Not Found 9.2 kB URL HTTP/2 www.pescadores.cl/wp-content/uploads/2018/10/cropped-pescadoresgroup_logo-192x192.png
IP 201.148.105.73:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (8047), with CRLF, LF line terminators
Hash 16ba3b1984058d24c7dcd8ce34e4497d
dea5703b9426d33efca688155fc00c1015c8387c
64d7cde1162fd29da85220528c3c570fd6871001fda47b74a1f4457827856c14
GET /wp-content/uploads/2018/10/cropped-pescadoresgroup_logo-192x192.png HTTP/1.1
Host: www.pescadores.cl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://delamargm.cl/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 404 Not Found
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
x-frame-options: SAMEORIGIN
link: <https://www.pescadores.cl/wp-json/>; rel="https://api.w.org/"
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 9197
content-type: text/html; charset=UTF-8
date: Tue, 14 Feb 2023 05:14:19 GMT
server: Apache
X-Firefox-Spdy: h2
www.pescadores.cl/wp-content/uploads/2018/10/cropped-pescadoresgroup_logo-32x32.png
201.148.105.73404 Not Found 9.2 kB URL HTTP/2 www.pescadores.cl/wp-content/uploads/2018/10/cropped-pescadoresgroup_logo-32x32.png
IP 201.148.105.73:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (8047), with CRLF, LF line terminators
Hash 28ffced232a8914eeeb6995ddcd51991
e18fc0c103883c59291dcd0583d83c2e25a7aa17
3fafcf208aae5a51cd93e5758fef5baebf600e838ed4e941d9e11685d683582b
GET /wp-content/uploads/2018/10/cropped-pescadoresgroup_logo-32x32.png HTTP/1.1
Host: www.pescadores.cl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://delamargm.cl/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 404 Not Found
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
x-frame-options: SAMEORIGIN
link: <https://www.pescadores.cl/wp-json/>; rel="https://api.w.org/"
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 9191
content-type: text/html; charset=UTF-8
date: Tue, 14 Feb 2023 05:14:19 GMT
server: Apache
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Open+Sans:400italic,700italic,400,700&subset=latin,latin-ext
142.250.74.106200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Open+Sans:400italic,700italic,400,700&subset=latin,latin-ext
IP 142.250.74.106:0
GET /css?family=Open+Sans:400italic,700italic,400,700&subset=latin,latin-ext HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://delamargm.cl/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 14 Feb 2023 05:14:16 GMT
date: Tue, 14 Feb 2023 05:14:16 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2