Report - omegasys.com.mx/

Report Overview

Submitted URL
omegasys.com.mx/
IP
67.227.237.232
ASN
#32244 LIQUIDWEB
Submitted
2022-09-16 15:41:06
Access
public
Website Title
Final URL
Tags
None
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
40

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
img-getpocket.cdn.mozilla.net	1631	2018-06-22T01:36:00Z	2023-03-17T05:09:15Z	3.7 kB	83 kB	34.120.237.76
firefox.settings.services.mozilla.com	867	2020-06-04T22:08:41Z	2023-03-17T05:09:04Z	758 B	2.7 kB	143.204.55.36
r3.o.lencr.org	344	2020-12-02T09:52:13Z	2023-03-17T05:09:02Z	1.6 kB	4.4 kB	23.36.77.32
ocsp.digicert.com	86	2012-05-21T09:02:23Z	2023-03-17T10:42:19Z	329 B	737 B	93.184.220.29
ocsp.pki.goog	175	2018-07-01T08:43:07Z	2023-03-17T05:09:22Z	1.3 kB	2.8 kB	142.250.74.3
push.services.mozilla.com	2140	2014-10-24T10:27:06Z	2023-03-17T05:10:36Z	594 B	127 B	34.208.31.97
fonts.gstatic.com	unknown	2014-09-09T02:40:21Z	2023-03-17T10:38:51Z	1.9 kB	109 kB	142.250.74.163
content-signature-2.cdn.mozilla.net	1152	2020-11-03T13:26:46Z	2023-03-17T05:10:36Z	401 B	5.8 kB	143.204.55.25
omegasys.com.mx	unknown			16 kB	1.0 MB	67.227.237.232
contile.services.mozilla.com	1114	2021-05-27T20:32:35Z	2023-03-17T05:10:35Z	321 B	229 B	34.117.237.239
fonts.googleapis.com	8877	2013-06-10T22:14:26Z	2023-03-17T10:24:23Z	408 B	2.1 kB	142.250.74.10

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

Scan Date	Severity	Indicator	Alert
2022-09-16	medium	omegasys.com.mx/	Phishing
2022-09-16	medium	omegasys.com.mx/	Phishing
2022-09-16	medium	omegasys.com.mx/js/rev-slider.js	Phishing
2022-09-16	medium	omegasys.com.mx/revolution/js/extensions/revolution.extension.actions.min.js	Phishing
2022-09-16	medium	omegasys.com.mx/js/scripts.js	Phishing
2022-09-16	medium	omegasys.com.mx/revolution/js/extensions/revolution.extension.kenburn.min.js	Phishing
2022-09-16	medium	omegasys.com.mx/revolution/js/extensions/revolution.extension.carousel.min.js	Phishing
2022-09-16	medium	omegasys.com.mx/revolution/js/extensions/revolution.extension.parallax.min.js	Phishing
2022-09-16	medium	omegasys.com.mx/revolution/js/extensions/revolution.extension.video.min.js	Phishing
2022-09-16	medium	omegasys.com.mx/revolution/js/extensions/revolution.extension.migration.min.js	Phishing
2022-09-16	medium	omegasys.com.mx/revolution/js/extensions/revolution.extension.navigation.min.js	Phishing
2022-09-16	medium	omegasys.com.mx/revolution/js/extensions/revolution.extension.slideanims.min.js	Phishing
2022-09-16	medium	omegasys.com.mx/js/bootstrap.min.js	Phishing
2022-09-16	medium	omegasys.com.mx/revolution/js/extensions/revolution.extension.layeranimation.min.js	Phishing
2022-09-16	medium	omegasys.com.mx/revolution/js/jquery.themepunch.revolution.min.js	Phishing
2022-09-16	medium	omegasys.com.mx/js/plugins.js	Phishing
2022-09-16	medium	omegasys.com.mx/revolution/js/jquery.themepunch.tools.min.js	Phishing
2022-09-16	medium	omegasys.com.mx/fonts/ui-icons.woff2?31292061	Phishing
2022-09-16	medium	omegasys.com.mx/revolution/fonts/revicons/revicons.woff?5510888	Phishing
2022-09-16	medium	omegasys.com.mx/js/jquery.min.js	Phishing

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

JavaScript (13)

	URL	Size	First Seen	Last Seen
	omegasys.com.mx/revolution/js/jquery.themepunch.revolution.min.js	65 kB	2023-03-07	2024-03-03
Pretty URL omegasys.com.mx/revolution/js/jquery.themepunch.revolution.min.js IP 67.227.237.232 ASN #32244 LIQUIDWEB Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:06:36 Last Seen2024-03-03 12:40:08 Times Seen148 Hash 9f238a7a79f7400123d58eba49395d28 86dd4c7bc5ef427558f5e1802334aa578c90a424 4313fa5bb5c7788ced1058ecc60b11f4e384716bf51b64c3595a712a17e80ee8 Loading...

	unknown	0 B	2023-03-07	2024-04-23
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:01:59 Last Seen2024-04-23 15:46:13 Times Seen37021545 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	omegasys.com.mx/revolution/js/extensions/revolution.extension.carousel.min.js	7.6 kB	2023-03-07	2024-04-07
Pretty URL omegasys.com.mx/revolution/js/extensions/revolution.extension.carousel.min.js IP 67.227.237.232 ASN #32244 LIQUIDWEB Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:47 Last Seen2024-04-07 15:53:02 Times Seen482 Hash 54aac3fc68b283e8ad22894408ae47a2 8164c126f5b57e1ebf04b7440cce2e3aae7e5ba9 6180c6c38c4e3b9ac75b0c51215dcf0d6aa5b62757be3d993df8a28ca17a8820 Loading...

	omegasys.com.mx/revolution/js/extensions/revolution.extension.slideanims.min.js	29 kB	2023-03-07	2024-03-03
Pretty URL omegasys.com.mx/revolution/js/extensions/revolution.extension.slideanims.min.js IP 67.227.237.232 ASN #32244 LIQUIDWEB Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:06:36 Last Seen2024-03-03 12:40:09 Times Seen106 Hash 16dd37b372f293208d52d84d49a375ae dd9724509c9d79340d932082f40850f717532146 9dcf557a9e9a7d3641fddaf711b224610496a92cdaeef962ff85b1813f358cca Loading...

	omegasys.com.mx/revolution/js/extensions/revolution.extension.migration.min.js	26 kB	2023-03-07	2024-03-03
Pretty URL omegasys.com.mx/revolution/js/extensions/revolution.extension.migration.min.js IP 67.227.237.232 ASN #32244 LIQUIDWEB Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:06:36 Last Seen2024-03-03 12:40:09 Times Seen165 Hash 67bbcfd4a3ece50288c9e5ac0480852c d893d33514e8d0da3b05e5e5f15e80fe29589124 1c94040e2186822caf034fc3758f74f8372a5e8fbe42d5549061f27dd67d4142 Loading...

	omegasys.com.mx/revolution/js/extensions/revolution.extension.parallax.min.js	11 kB	2023-03-07	2024-03-03
Pretty URL omegasys.com.mx/revolution/js/extensions/revolution.extension.parallax.min.js IP 67.227.237.232 ASN #32244 LIQUIDWEB Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:06:36 Last Seen2024-03-03 12:40:08 Times Seen91 Hash 38d3cf2a1000666cf4932f157718a4a3 d21822a0a6a9c10ed767a86b0c781b29c9180a64 d7a37cf7668d8b45aaf3167078c9e807c91db38a198e20b6a91d15fb4721eb45 Loading...

	omegasys.com.mx/js/bootstrap.min.js	49 kB	2023-03-07	2024-04-23
Pretty URL omegasys.com.mx/js/bootstrap.min.js IP 67.227.237.232 ASN #32244 LIQUIDWEB Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:44 Last Seen2024-04-23 15:33:31 Times Seen136303 Hash 14d449eb8876fa55e1ef3c2cc52b0c17 a9545831803b1359cfeed47e3b4d6bae68e40e99 e7ed36ceee5450b4243bbc35188afabdfb4280c7c57597001de0ed167299b01b Loading...

	omegasys.com.mx/revolution/js/extensions/revolution.extension.video.min.js	26 kB	2023-03-07	2024-03-03
Pretty URL omegasys.com.mx/revolution/js/extensions/revolution.extension.video.min.js IP 67.227.237.232 ASN #32244 LIQUIDWEB Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 14:33:28 Last Seen2024-03-03 12:40:08 Times Seen79 Hash 09c5884dc09740f8848b919a708140ad 48567c3fd1446c222489d85c53921c2f42fb8d67 24a9f95ed6047c70cf1fe88e128174cf1fe6f88f9f7522cf499462f259441f63 Loading...

	omegasys.com.mx/revolution/js/extensions/revolution.extension.layeranimation.min.js	56 kB	2023-03-07	2024-03-03
Pretty URL omegasys.com.mx/revolution/js/extensions/revolution.extension.layeranimation.min.js IP 67.227.237.232 ASN #32244 LIQUIDWEB Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:06:36 Last Seen2024-03-03 12:40:08 Times Seen110 Hash b8fe098e4c85ea4ce1d978b5e8dd2563 9acb50f205d771fcaf2c82978dec884b2933c029 3327922dbad940348d79019ec680c730d71649132fa727675303bea91c6c4010 Loading...

	omegasys.com.mx/revolution/js/extensions/revolution.extension.kenburn.min.js	3.8 kB	2023-03-07	2024-03-03
Pretty URL omegasys.com.mx/revolution/js/extensions/revolution.extension.kenburn.min.js IP 67.227.237.232 ASN #32244 LIQUIDWEB Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:06:36 Last Seen2024-03-03 12:40:08 Times Seen74 Hash 271f12aae2e3fa13230c21b67d39a504 d3076c9447e2753a6d96ffc87a9dc38c39b5bc77 babb248b22b49d281d8c0e8ac1ee23f072d15a1ddea7029f2643036788ae3b27 Loading...

	omegasys.com.mx/js/rev-slider.js	5.9 kB	2023-03-17	2023-03-17
Pretty URL omegasys.com.mx/js/rev-slider.js IP 67.227.237.232 ASN #32244 LIQUIDWEB Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-17 12:44:44 Last Seen2023-03-17 12:44:44 Times Seen1 Hash c5b229ce626e1bc02d4fbf5a22b80747 36891883c729c50f464ca3cd913a7106cd3d9ee0 d6ae8703b0cd47730544c599a6258a4206d10033a082bfe32ef19234b3adf6a1 Loading...

	omegasys.com.mx/js/scripts.js	8.5 kB	2023-03-17	2023-03-17
Pretty URL omegasys.com.mx/js/scripts.js IP 67.227.237.232 ASN #32244 LIQUIDWEB Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-17 12:44:44 Last Seen2023-03-17 12:44:44 Times Seen1 Hash 0f9177dea9b8e54d514df720366faa66 4d116c5bd50324c008d8c69711cdc414348c21ce 346b42c8ece7a4595c0f4313cf3b3bf7b4f4354ecf65fe406168a574f226c540 Loading...

	omegasys.com.mx/revolution/js/extensions/revolution.extension.actions.min.js	8.3 kB	2023-03-07	2024-03-03
Pretty URL omegasys.com.mx/revolution/js/extensions/revolution.extension.actions.min.js IP 67.227.237.232 ASN #32244 LIQUIDWEB Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:47 Last Seen2024-03-03 12:40:07 Times Seen479 Hash 37b37940ac6cf4c7cbd47103bad5ccb5 ad851d07c005bf59206a1c036458984930d8e845 748f3e447f2f7475a4ba75f6f2e2e9f468a3ac443eae879e2104ec562b2158bc Loading...

HTTP Transactions (67)

URL IP Response Size

firefox.settings.services.mozilla.com/v1/

143.204.55.36

200 OK

939 B

URL HTTP/1.1
firefox.settings.services.mozilla.com/v1/
IP
143.204.55.36:0
ASN
#16509 AMAZON-02

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
99b7d23c1748d0526782b9ff9ea45f09
eadd801a3ba2aa00632c6fb52e1f9125bd6d5b4f
48f81668f76955320480b484138aebdad5d03c471036b4449c737aca1ecab08e

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Type, Content-Length, Backoff, Retry-After, Alert
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Fri, 16 Sep 2022 15:10:50 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 185768229530368be94556dcab1c486a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: x4o0Z3ObPhVd37Tb5k6d2to0dbDOWG2Deh5umCNBWmDFDJ45HWlxcw==
Age: 1805

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
b0d651d83075c7a68e3c6a9204226150
294785e3f3a67cdd5f1a530b83a2cbd2c2cc0665
17cbb43fd6662576ba3fe8e06cf44247c903c1313cc419053599c41e286a2442

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "17CBB43FD6662576BA3FE8E06CF44247C903C1313CC419053599C41E286A2442"
Last-Modified: Thu, 15 Sep 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14121
Expires: Fri, 16 Sep 2022 19:36:16 GMT
Date: Fri, 16 Sep 2022 15:40:55 GMT
Connection: keep-alive

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain

143.204.55.25

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain
IP
143.204.55.25:0
ASN
#16509 AMAZON-02

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
742edb4038f38bc533514982f3d2e861
cc3a20c8dc2a8c632ef9387a2744253f1e3fdef1
b6bfa49d3d135035701231db2fffc0c0643444394009a94c6a1b4d829d6b8345

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 20 Aug 2022 23:18:05 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Fri, 16 Sep 2022 04:35:16 GMT
etag: "742edb4038f38bc533514982f3d2e861"
x-cache: Hit from cloudfront
via: 1.1 a6d89f7e2d55548b941f1ff5d5b3c8d4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: PsKjXStaBQbRb9OaT-z9XDzdrgz5FjfNVmQBzRqqB4bsOeFiRBVh6A==
age: 39940
X-Firefox-Spdy: h2

omegasys.com.mx/

67.227.237.232

301 Moved Permanently

232 B

URL HTTP/1.1
omegasys.com.mx/
IP
67.227.237.232:0
ASN
#32244 LIQUIDWEB

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
232 B (232 bytes)
Hash
3f8e9720515d99fdcd9c6cb347939311
1e0e8732f6af5a7a7d194bb2a569f96106685376
53eae674c955a58469531be99ecf313a635eaad7befb510dd4f0fd07635ebca2

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET / HTTP/1.1
Host: omegasys.com.mx
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 301 Moved Permanently
Date: Fri, 16 Sep 2022 15:40:55 GMT
Server: Apache
Location: https://omegasys.com.mx/
Cache-Control: max-age=31536000
Expires: Sat, 16 Sep 2023 15:40:55 GMT
Content-Length: 232
Keep-Alive: timeout=2, max=500
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Fri, 16 Sep 2022 15:40:55 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

143.204.55.36

200 OK

329 B

URL HTTP/1.1
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
143.204.55.36:0
ASN
#16509 AMAZON-02

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Date: Fri, 16 Sep 2022 15:03:22 GMT
Cache-Control: max-age=3600
Expires: Fri, 16 Sep 2022 15:21:09 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 1ca0323262515c9240c58fe69a9ac826.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: fu4jiZd7df1fSWbDyyT3dN45lpjkEcgDppjRmX5XA-VAI3vC-VU79g==
Age: 2253

omegasys.com.mx/

67.227.237.232

200 OK

3.8 kB

URL HTTP/2
omegasys.com.mx/
IP
67.227.237.232:0
ASN
#32244 LIQUIDWEB

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text
Size
3.8 kB (3795 bytes)
Hash
f19497ca9c3ad95a21bd1f38cb2c0d32
92823e12fa9e1bb1681094d7e49dc19c8f639ac1
e2a2a4f9b5e15093f5901a53e033ec36b22d8070f03e138d987501ccfe7f7191

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET / HTTP/1.1
Host: omegasys.com.mx
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

HTTP/2 200 OK
last-modified: Tue, 22 Feb 2022 23:46:21 GMT
accept-ranges: bytes
cache-control: max-age=31536000
expires: Sat, 16 Sep 2023 15:40:55 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 3795
content-type: text/html
date: Fri, 16 Sep 2022 15:40:55 GMT
server: Apache
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
3db421016cf0e3ad25f324cf0faf0fac
b15909de1105d4d2fb5be5b3920c454daf022445
914b15f28636e0a5e851540ffb0625ecd09d0546b2f1f7af90b267ceebcf1d5d

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4886
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 16 Sep 2022 15:40:55 GMT
Last-Modified: Fri, 16 Sep 2022 14:19:29 GMT
Server: ECS (ska/F70C)
X-Cache: HIT
Content-Length: 471

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
7975b33417f675d21a178b997288d616
1d2e957c46d45d6cb2f44389f3dcc66c880b6065
daffff63daade8bb0c2fd63570229df8502c563dd079b4da4103f6ee89fa67e1

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 16 Sep 2022 15:40:55 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

omegasys.com.mx/css/bootstrap.min.css

67.227.237.232

200 OK

7.7 kB

URL HTTP/2
omegasys.com.mx/css/bootstrap.min.css
IP
67.227.237.232:0
ASN
#32244 LIQUIDWEB

File type
ASCII text, with very long lines (52493)
Size
7.7 kB (7715 bytes)
Hash
a8813992f27d147aabe76e4db6aea30a
d6edac9e586278bc3e6155aeed113283b45d8508
4b719ec25b0c2d9d519684cb702173677b5d5e18f41aac070f1eb0e944f6a97a

HTTP Headers

GET /css/bootstrap.min.css HTTP/1.1
Host: omegasys.com.mx
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://omegasys.com.mx/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Mon, 16 Jul 2018 01:39:14 GMT
accept-ranges: bytes
cache-control: max-age=2592000
expires: Sun, 16 Oct 2022 15:40:55 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 7715
content-type: text/css
date: Fri, 16 Sep 2022 15:40:55 GMT
server: Apache
X-Firefox-Spdy: h2

omegasys.com.mx/css/font-icons.css

67.227.237.232

200 OK

2.8 kB

URL HTTP/2
omegasys.com.mx/css/font-icons.css
IP
67.227.237.232:0
ASN
#32244 LIQUIDWEB

File type
Unicode text, UTF-8 text
Size
2.8 kB (2818 bytes)
Hash
8f96ed6978ae8411d97317b96d342823
493be07bc993243d02d3de596a11aa87df8dbaf3
3489bd83bc279bc2abce00f44967f4052d26704a29693bd0bc01b1ab9da2bf51

HTTP Headers

GET /css/font-icons.css HTTP/1.1
Host: omegasys.com.mx
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://omegasys.com.mx/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Sat, 14 Jul 2018 21:53:12 GMT
accept-ranges: bytes
cache-control: max-age=2592000
expires: Sun, 16 Oct 2022 15:40:55 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 2818
content-type: text/css
date: Fri, 16 Sep 2022 15:40:55 GMT
server: Apache
X-Firefox-Spdy: h2

fonts.googleapis.com/css?family=Barlow:400,600%7COpen+Sans:400,400i,700

142.250.74.10

200 OK

1.3 kB

URL HTTP/2
fonts.googleapis.com/css?family=Barlow:400,600%7COpen+Sans:400,400i,700
IP
142.250.74.10:0
ASN
#15169 GOOGLE

File type
data
Size
1.3 kB (1335 bytes)
Hash
826b73093d3f90d234af1764eafe8155
f7a33161f915cd9a40f128b29712657bd071813f
83e8ffc750dd2b854a4e5ee6221b8482d57e49735e3b70953923e0981a812379

HTTP Headers

GET /css?family=Barlow:400,600%7COpen+Sans:400,400i,700 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://omegasys.com.mx/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 16 Sep 2022 15:40:56 GMT
date: Fri, 16 Sep 2022 15:40:56 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

omegasys.com.mx/img/logo2.png

67.227.237.232

200 OK

6.4 kB

URL HTTP/2
omegasys.com.mx/img/logo2.png
IP
67.227.237.232:0
ASN
#32244 LIQUIDWEB

File type
PNG image data, 152 x 71, 8-bit/color RGBA, non-interlaced\012- data
Size
6.4 kB (6382 bytes)
Hash
259c90cf9977085d3e0f080c3dcbb094
4e816ce70181564ffe475d4b9f23fb8d0d7cfbab
94242a2d769487fef2501294a540444846f50e306666fe5cbe0cbdce68df210e

HTTP Headers

GET /img/logo2.png HTTP/1.1
Host: omegasys.com.mx
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://omegasys.com.mx/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Sun, 12 Sep 2021 21:11:19 GMT
accept-ranges: bytes
content-length: 6382
cache-control: max-age=31536000
expires: Sat, 16 Sep 2023 15:40:56 GMT
content-type: image/png
date: Fri, 16 Sep 2022 15:40:56 GMT
server: Apache
X-Firefox-Spdy: h2

omegasys.com.mx/revolution/css/settings.css

67.227.237.232

200 OK

7.1 kB

URL HTTP/2
omegasys.com.mx/revolution/css/settings.css
IP
67.227.237.232:0
ASN
#32244 LIQUIDWEB

File type
ASCII text, with very long lines (29701), with CRLF line terminators
Size
7.1 kB (7127 bytes)
Hash
a257be9f66c34683a50838f0d1f8ce3b
4d1ebcf9bd72f436d25981dd4cc5dbc2a58d2bd6
98d2083b0945bffa1ca9a3b7a53d9f9b52d59be7949380b5a30e1bc2757446c9

HTTP Headers

GET /revolution/css/settings.css HTTP/1.1
Host: omegasys.com.mx
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://omegasys.com.mx/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 14 Jun 2018 16:34:16 GMT
accept-ranges: bytes
cache-control: max-age=2592000
expires: Sun, 16 Oct 2022 15:40:55 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 7127
content-type: text/css
date: Fri, 16 Sep 2022 15:40:55 GMT
server: Apache
X-Firefox-Spdy: h2

push.services.mozilla.com/

34.208.31.97

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
34.208.31.97:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: ueA0avK6sValPmK07mZBzA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: IgdKDek2yVOhSVqcmj56xw1/bEI=

omegasys.com.mx/css/style.css

67.227.237.232

200 OK

19 kB

URL HTTP/2
omegasys.com.mx/css/style.css
IP
67.227.237.232:0
ASN
#32244 LIQUIDWEB

File type
assembler source, Unicode text, UTF-8 text
Size
19 kB (18576 bytes)
Hash
db38eec37201a4807d5f8a20f4ed4483
6f5dcf0b22572eb8dc471a36b978146e6f4aa19c
f1bfb390fab39d63787b119f7b08452cc70df002b700b447d98d39ddefae90b8

HTTP Headers

GET /css/style.css HTTP/1.1
Host: omegasys.com.mx
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://omegasys.com.mx/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Mon, 13 Sep 2021 03:37:11 GMT
accept-ranges: bytes
cache-control: max-age=2592000
expires: Sun, 16 Oct 2022 15:40:55 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 18576
content-type: text/css
date: Fri, 16 Sep 2022 15:40:55 GMT
server: Apache
X-Firefox-Spdy: h2

omegasys.com.mx/js/rev-slider.js

67.227.237.232

200 OK

872 B

URL HTTP/2
omegasys.com.mx/js/rev-slider.js
IP
67.227.237.232:0
ASN
#32244 LIQUIDWEB

File type
ASCII text
Size
872 B (872 bytes)
Hash
4ed84025ec34906ffbc56fa976ce77da
b8d651c0ba8bb0671c37273f90917213002f1ee8
f83b13c4c2a996e4f62dcb52c4e2dbf9ca2ed8248cffd39e2d59f84f094c2732

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /js/rev-slider.js HTTP/1.1
Host: omegasys.com.mx
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://omegasys.com.mx/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Mon, 16 Jul 2018 01:28:22 GMT
accept-ranges: bytes
cache-control: max-age=604800
expires: Fri, 23 Sep 2022 15:40:56 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 872
content-type: application/javascript
date: Fri, 16 Sep 2022 15:40:56 GMT
server: Apache
X-Firefox-Spdy: h2

omegasys.com.mx/revolution/js/extensions/revolution.extension.actions.min.js

67.227.237.232

200 OK

2.6 kB

URL HTTP/2
omegasys.com.mx/revolution/js/extensions/revolution.extension.actions.min.js
IP
67.227.237.232:0
ASN
#32244 LIQUIDWEB

File type
ASCII text, with very long lines (8089), with CRLF line terminators
Size
2.6 kB (2573 bytes)
Hash
138b7354eada8be8be68340a4b9c347d
d95f60a25e4003b631604aa9c90485b39f1552d4
9dba7141bb10928a0ab1b22018f2edf6c1349be2dc3919b65f29cada54e10ffc

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /revolution/js/extensions/revolution.extension.actions.min.js HTTP/1.1
Host: omegasys.com.mx
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://omegasys.com.mx/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Wed, 13 Jun 2018 20:15:10 GMT
accept-ranges: bytes
cache-control: max-age=604800
expires: Fri, 23 Sep 2022 15:40:56 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 2573
content-type: application/javascript
date: Fri, 16 Sep 2022 15:40:56 GMT
server: Apache
X-Firefox-Spdy: h2

omegasys.com.mx/js/scripts.js

67.227.237.232

200 OK

2.2 kB

URL HTTP/2
omegasys.com.mx/js/scripts.js
IP
67.227.237.232:0
ASN
#32244 LIQUIDWEB

File type
ASCII text, with CRLF line terminators
Size
2.2 kB (2234 bytes)
Hash
7b9782589bb7dd92dd23b11c7d9d40d1
2392a9887ba6530f397acff01ed8a35210fe9657
2e8e366eb042ebfc2a2526ecb45d6c985f47d1bddc1d91ab18f01b388a1b4846

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /js/scripts.js HTTP/1.1
Host: omegasys.com.mx
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://omegasys.com.mx/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 17 Jul 2018 14:30:14 GMT
accept-ranges: bytes
cache-control: max-age=604800
expires: Fri, 23 Sep 2022 15:40:56 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 2234
content-type: application/javascript
date: Fri, 16 Sep 2022 15:40:56 GMT
server: Apache
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
7df27d4646e6e1cd358f0997ad604ea9
bf0c3feb55312e00ed8aa718458cc1e932903ac2
ba7ebd5b66156d280c46a2e492c5830f67e114711498b405b4e57ee1f45f4905

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 16 Sep 2022 15:40:56 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

omegasys.com.mx/revolution/js/extensions/revolution.extension.kenburn.min.js

67.227.237.232

200 OK

1.6 kB

URL HTTP/2
omegasys.com.mx/revolution/js/extensions/revolution.extension.kenburn.min.js
IP
67.227.237.232:0
ASN
#32244 LIQUIDWEB

File type
ASCII text, with very long lines (3515), with CRLF line terminators
Size
1.6 kB (1562 bytes)
Hash
6b55ff2390d3e3fd1a2e9f399587448a
72323d188cbc266df3927c055277eb401da6631c
79da1abb37fb31ad695349c3f94a129cfdbff24bdb8bb86c13738699c7ca613e

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /revolution/js/extensions/revolution.extension.kenburn.min.js HTTP/1.1
Host: omegasys.com.mx
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://omegasys.com.mx/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Wed, 13 Jun 2018 20:15:10 GMT
accept-ranges: bytes
cache-control: max-age=604800
expires: Fri, 23 Sep 2022 15:40:56 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 1562
content-type: application/javascript
date: Fri, 16 Sep 2022 15:40:56 GMT
server: Apache
X-Firefox-Spdy: h2

omegasys.com.mx/img/logo_white2.png

67.227.237.232

200 OK

5.1 kB

URL HTTP/2
omegasys.com.mx/img/logo_white2.png
IP
67.227.237.232:0
ASN
#32244 LIQUIDWEB

File type
PNG image data, 152 x 71, 8-bit/color RGBA, non-interlaced\012- data
Size
5.1 kB (5077 bytes)
Hash
255fd817d3cd3987592c40b310019eec
42366a3dad9f9c972d9a5286c9bdba68871c6573
9e02472421a5f4da2ee959bc453da8e7ad34af65fc3c0ac035a2d022f505bd92

HTTP Headers

GET /img/logo_white2.png HTTP/1.1
Host: omegasys.com.mx
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://omegasys.com.mx/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Sun, 12 Sep 2021 17:25:51 GMT
accept-ranges: bytes
content-length: 5077
cache-control: max-age=31536000
expires: Sat, 16 Sep 2023 15:40:56 GMT
content-type: image/png
date: Fri, 16 Sep 2022 15:40:56 GMT
server: Apache
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
7df27d4646e6e1cd358f0997ad604ea9
bf0c3feb55312e00ed8aa718458cc1e932903ac2
ba7ebd5b66156d280c46a2e492c5830f67e114711498b405b4e57ee1f45f4905

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 16 Sep 2022 15:40:56 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2

142.250.74.163

200 OK

45 kB

URL HTTP/2
fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
IP
142.250.74.163:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 44856, version 1.0\012- data
Size
45 kB (44856 bytes)
Hash
565ce506190ad3af920b40baf1794cec
ad3cba5d06100e09449a864d3b5e58403b478b3d
8778e9af2422858d7052ff9a0f3c12c08ae976bdd6e0316db144cd5579cd97db

HTTP Headers

GET /s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://omegasys.com.mx
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 44856
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 13 Sep 2022 08:31:01 GMT
expires: Wed, 13 Sep 2023 08:31:01 GMT
cache-control: public, max-age=31536000
age: 284995
last-modified: Mon, 15 Aug 2022 18:20:18 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

fonts.gstatic.com/s/opensans/v34/memQYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWq8tWZ0Pw86hd0Rk8ZkWVAewA.woff2

142.250.74.163

200 OK

18 kB

URL HTTP/2
fonts.gstatic.com/s/opensans/v34/memQYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWq8tWZ0Pw86hd0Rk8ZkWVAewA.woff2
IP
142.250.74.163:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 17820, version 1.0\012- data
Size
18 kB (17820 bytes)
Hash
3d5107abaf7bf4df5478bd04625c0929
b04d394caabf6ea3e500b74781dc2bfd54f3c18d
9ad0a22b0c58240a7a92b4c01aa31f39a5918dea6a8fdfa77e63042abc4fca31

HTTP Headers

GET /s/opensans/v34/memQYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWq8tWZ0Pw86hd0Rk8ZkWVAewA.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://omegasys.com.mx
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 17820
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 12 Sep 2022 19:07:15 GMT
expires: Tue, 12 Sep 2023 19:07:15 GMT
cache-control: public, max-age=31536000
age: 333221
last-modified: Mon, 15 Aug 2022 18:13:12 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

fonts.gstatic.com/s/barlow/v12/7cHpv4kjgoGqM7E_DMs5.woff2

142.250.74.163

200 OK

21 kB

URL HTTP/2
fonts.gstatic.com/s/barlow/v12/7cHpv4kjgoGqM7E_DMs5.woff2
IP
142.250.74.163:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 21144, version 1.0\012- data
Size
21 kB (21144 bytes)
Hash
2bc7630144496092dc786ce63109e560
723df3658078cfed03c85e47f15fc439eb4331be
7c9c80a6c32c0619d61c28f28723e68c5f8f75163e77ee5cf64c39e640e0d71e

HTTP Headers

GET /s/barlow/v12/7cHpv4kjgoGqM7E_DMs5.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://omegasys.com.mx
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 21144
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 13 Sep 2022 22:36:55 GMT
expires: Wed, 13 Sep 2023 22:36:55 GMT
cache-control: public, max-age=31536000
age: 234241
last-modified: Tue, 19 Apr 2022 19:43:23 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

fonts.gstatic.com/s/barlow/v12/7cHqv4kjgoGqM7E30-8s51os.woff2

142.250.74.163

200 OK

22 kB

URL HTTP/2
fonts.gstatic.com/s/barlow/v12/7cHqv4kjgoGqM7E30-8s51os.woff2
IP
142.250.74.163:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 21796, version 1.0\012- data
Size
22 kB (21796 bytes)
Hash
8074c760fbdd366fc1c33ce702911abf
b68cdebfb413c4ad60fa131dc29e36da4b3ce45c
2b14e8397d552f351a4396dec25ec5da1348865683100e94c4ab0faea4a9a254

HTTP Headers

GET /s/barlow/v12/7cHqv4kjgoGqM7E30-8s51os.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://omegasys.com.mx
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 21796
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 13 Sep 2022 22:37:06 GMT
expires: Wed, 13 Sep 2023 22:37:06 GMT
cache-control: public, max-age=31536000
age: 234230
last-modified: Tue, 19 Apr 2022 19:35:19 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
7df27d4646e6e1cd358f0997ad604ea9
bf0c3feb55312e00ed8aa718458cc1e932903ac2
ba7ebd5b66156d280c46a2e492c5830f67e114711498b405b4e57ee1f45f4905

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 16 Sep 2022 15:40:56 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

omegasys.com.mx/revolution/js/extensions/revolution.extension.carousel.min.js

67.227.237.232

200 OK

2.6 kB

URL HTTP/2
omegasys.com.mx/revolution/js/extensions/revolution.extension.carousel.min.js
IP
67.227.237.232:0
ASN
#32244 LIQUIDWEB

File type
ASCII text, with very long lines (7370), with CRLF line terminators
Size
2.6 kB (2600 bytes)
Hash
26a5be93592ca6466eb48947ff50296a
5f7b1d7c9f53cb50961e338c7dfc54672219142d
b2653a9781f104eb5be8ba49154852154629d1e9cf7c29363970b0db69d1e76b

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /revolution/js/extensions/revolution.extension.carousel.min.js HTTP/1.1
Host: omegasys.com.mx
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://omegasys.com.mx/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Wed, 13 Jun 2018 20:15:10 GMT
accept-ranges: bytes
cache-control: max-age=604800
expires: Fri, 23 Sep 2022 15:40:56 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 2600
content-type: application/javascript
date: Fri, 16 Sep 2022 15:40:56 GMT
server: Apache
X-Firefox-Spdy: h2

omegasys.com.mx/revolution/js/extensions/revolution.extension.parallax.min.js

67.227.237.232

200 OK

3.2 kB

URL HTTP/2
omegasys.com.mx/revolution/js/extensions/revolution.extension.parallax.min.js
IP
67.227.237.232:0
ASN
#32244 LIQUIDWEB

File type
ASCII text, with very long lines (10692), with CRLF line terminators
Size
3.2 kB (3241 bytes)
Hash
53b0a8abf70634ffc2c5de8d3024d9f3
a061e42846b0e3cb046d87010a6f44630ca7af0a
c3ba17af4cb5c660dc08eadf634ce0c2216c533c08bddcc9c8aa2126dbc0cf86

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /revolution/js/extensions/revolution.extension.parallax.min.js HTTP/1.1
Host: omegasys.com.mx
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://omegasys.com.mx/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Wed, 13 Jun 2018 20:15:10 GMT
accept-ranges: bytes
cache-control: max-age=604800
expires: Fri, 23 Sep 2022 15:40:56 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 3241
content-type: application/javascript
date: Fri, 16 Sep 2022 15:40:56 GMT
server: Apache
X-Firefox-Spdy: h2

omegasys.com.mx/revolution/js/extensions/revolution.extension.video.min.js

67.227.237.232

200 OK

7.1 kB

URL HTTP/2
omegasys.com.mx/revolution/js/extensions/revolution.extension.video.min.js
IP
67.227.237.232:0
ASN
#32244 LIQUIDWEB

File type
ASCII text, with very long lines (25833), with CRLF line terminators
Size
7.1 kB (7059 bytes)
Hash
c74e8092f07e802bb0be2f8acc17d824
6217b2b05d5d1757225466f3b83d1c54a9c45a8a
0787f047c7c31284650050bb717c6ccdaad806acd35825ad6e7d777deca7fb91

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /revolution/js/extensions/revolution.extension.video.min.js HTTP/1.1
Host: omegasys.com.mx
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://omegasys.com.mx/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Wed, 13 Jun 2018 20:18:36 GMT
accept-ranges: bytes
cache-control: max-age=604800
expires: Fri, 23 Sep 2022 15:40:56 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 7059
content-type: application/javascript
date: Fri, 16 Sep 2022 15:40:56 GMT
server: Apache
X-Firefox-Spdy: h2

omegasys.com.mx/revolution/js/extensions/revolution.extension.migration.min.js

67.227.237.232

200 OK

7.0 kB

URL HTTP/2
omegasys.com.mx/revolution/js/extensions/revolution.extension.migration.min.js
IP
67.227.237.232:0
ASN
#32244 LIQUIDWEB

File type
ASCII text, with very long lines (25862), with CRLF line terminators
Size
7.0 kB (7042 bytes)
Hash
5ad3dcad56289cf4271be2fa8a5b037c
a6e1fb080b682c37ce0558f824532331af921564
f76fb57445cfc24dba386d12c3aa1c625ff0f024ed60be5a71f032015795eae0

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /revolution/js/extensions/revolution.extension.migration.min.js HTTP/1.1
Host: omegasys.com.mx
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://omegasys.com.mx/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Wed, 13 Jun 2018 20:15:10 GMT
accept-ranges: bytes
cache-control: max-age=604800
expires: Fri, 23 Sep 2022 15:40:56 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 7042
content-type: application/javascript
date: Fri, 16 Sep 2022 15:40:56 GMT
server: Apache
X-Firefox-Spdy: h2

omegasys.com.mx/revolution/js/extensions/revolution.extension.navigation.min.js

67.227.237.232

200 OK

7.0 kB

URL HTTP/2
omegasys.com.mx/revolution/js/extensions/revolution.extension.navigation.min.js
IP
67.227.237.232:0
ASN
#32244 LIQUIDWEB

File type
ASCII text, with very long lines (25862), with CRLF line terminators
Size
7.0 kB (7042 bytes)
Hash
5ad3dcad56289cf4271be2fa8a5b037c
a6e1fb080b682c37ce0558f824532331af921564
f76fb57445cfc24dba386d12c3aa1c625ff0f024ed60be5a71f032015795eae0

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /revolution/js/extensions/revolution.extension.navigation.min.js HTTP/1.1
Host: omegasys.com.mx
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://omegasys.com.mx/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Wed, 13 Jun 2018 20:15:10 GMT
accept-ranges: bytes
cache-control: max-age=604800
expires: Fri, 23 Sep 2022 15:40:56 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 7042
content-type: application/javascript
date: Fri, 16 Sep 2022 15:40:56 GMT
server: Apache
X-Firefox-Spdy: h2

omegasys.com.mx/revolution/js/extensions/revolution.extension.slideanims.min.js

67.227.237.232

200 OK

6.9 kB

URL HTTP/2
omegasys.com.mx/revolution/js/extensions/revolution.extension.slideanims.min.js
IP
67.227.237.232:0
ASN
#32244 LIQUIDWEB

File type
ASCII text, with very long lines (28818), with CRLF line terminators
Size
6.9 kB (6882 bytes)
Hash
004107fda918607182fae53d1799517f
bebb476ad7f324f099bc2eb1435adcb0f6b4782e
ef14c68c7c47d4742328cf33bfe3fb1743da73b1947c57495c25c067ac0dec53

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /revolution/js/extensions/revolution.extension.slideanims.min.js HTTP/1.1
Host: omegasys.com.mx
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://omegasys.com.mx/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Wed, 13 Jun 2018 20:15:10 GMT
accept-ranges: bytes
cache-control: max-age=604800
expires: Fri, 23 Sep 2022 15:40:56 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 6882
content-type: application/javascript
date: Fri, 16 Sep 2022 15:40:56 GMT
server: Apache
X-Firefox-Spdy: h2

omegasys.com.mx/js/bootstrap.min.js

67.227.237.232

200 OK

13 kB

URL HTTP/2
omegasys.com.mx/js/bootstrap.min.js
IP
67.227.237.232:0
ASN
#32244 LIQUIDWEB

File type
ASCII text, with very long lines (48664)
Size
13 kB (13105 bytes)
Hash
d98cccfb9b89091fe42a0fa94083b07c
0d9a5dd0d65305186508b41ccd0075b2f6880389
9db75ee7822d0f0bea3137e023ed756f6f47922700ebfae6dc8707471380526b

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /js/bootstrap.min.js HTTP/1.1
Host: omegasys.com.mx
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://omegasys.com.mx/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Fri, 19 Jan 2018 08:31:06 GMT
accept-ranges: bytes
cache-control: max-age=604800
expires: Fri, 23 Sep 2022 15:40:56 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 13105
content-type: application/javascript
date: Fri, 16 Sep 2022 15:40:56 GMT
server: Apache
X-Firefox-Spdy: h2

omegasys.com.mx/img/blog/from_blog_1.jpg

67.227.237.232

200 OK

40 kB

URL HTTP/2
omegasys.com.mx/img/blog/from_blog_1.jpg
IP
67.227.237.232:0
ASN
#32244 LIQUIDWEB

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=12, height=230, bps=158, PhotometricIntepretation=RGB, orientation=upper-left, width=300], baseline, precision 8, 300x230, components 3\012- data
Size
40 kB (40397 bytes)
Hash
c9b7da4e79193b69b9875cace94d0e60
c411192c7ed8564826c6522666d5b6186c98cade
c1557a3b87358bf123a4d66c7ad051c88c3aa5ebb459d626d014a96e41aa1a7e

HTTP Headers

GET /img/blog/from_blog_1.jpg HTTP/1.1
Host: omegasys.com.mx
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://omegasys.com.mx/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Sun, 12 Sep 2021 23:34:29 GMT
accept-ranges: bytes
content-length: 40397
cache-control: max-age=31536000
expires: Sat, 16 Sep 2023 15:40:56 GMT
content-type: image/jpeg
date: Fri, 16 Sep 2022 15:40:56 GMT
server: Apache
X-Firefox-Spdy: h2

omegasys.com.mx/revolution/js/extensions/revolution.extension.layeranimation.min.js

67.227.237.232

200 OK

14 kB

URL HTTP/2
omegasys.com.mx/revolution/js/extensions/revolution.extension.layeranimation.min.js
IP
67.227.237.232:0
ASN
#32244 LIQUIDWEB

File type
ASCII text, with very long lines (55556), with CRLF line terminators
Size
14 kB (14297 bytes)
Hash
4078b3c143cc39757f0727fbf9dbd704
dcc32466d1c5bc023874391dd319de16c4bb9c28
46cc0c407449c2d1a8fb97bc27e634645a5a73c919bee44559ed8fd3334e86b2

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /revolution/js/extensions/revolution.extension.layeranimation.min.js HTTP/1.1
Host: omegasys.com.mx
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://omegasys.com.mx/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Wed, 13 Jun 2018 20:15:10 GMT
accept-ranges: bytes
cache-control: max-age=604800
expires: Fri, 23 Sep 2022 15:40:56 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 14297
content-type: application/javascript
date: Fri, 16 Sep 2022 15:40:56 GMT
server: Apache
X-Firefox-Spdy: h2

omegasys.com.mx/revolution/js/jquery.themepunch.revolution.min.js

67.227.237.232

200 OK

18 kB

URL HTTP/2
omegasys.com.mx/revolution/js/jquery.themepunch.revolution.min.js
IP
67.227.237.232:0
ASN
#32244 LIQUIDWEB

File type
ASCII text, with very long lines (64660), with CRLF line terminators
Size
18 kB (18104 bytes)
Hash
e975cd641a786e9c6032feac9814f0c3
ae463d24483cc7a15850533918bbd057651aaae3
81f96b920b6fcac1757bfb830d9e4a6408a07bbe02a34188a645735a4f7a18bd

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /revolution/js/jquery.themepunch.revolution.min.js HTTP/1.1
Host: omegasys.com.mx
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://omegasys.com.mx/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Wed, 13 Jun 2018 20:15:10 GMT
accept-ranges: bytes
cache-control: max-age=604800
expires: Fri, 23 Sep 2022 15:40:56 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 18104
content-type: application/javascript
date: Fri, 16 Sep 2022 15:40:56 GMT
server: Apache
X-Firefox-Spdy: h2

omegasys.com.mx/img/blog/from_blog_2.jpg

67.227.237.232

200 OK

51 kB

URL HTTP/2
omegasys.com.mx/img/blog/from_blog_2.jpg
IP
67.227.237.232:0
ASN
#32244 LIQUIDWEB

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=12, height=230, bps=158, PhotometricIntepretation=RGB, orientation=upper-left, width=300], baseline, precision 8, 300x230, components 3\012- data
Size
51 kB (51022 bytes)
Hash
a6aed48c0f3050b1870e76979b53fa9f
459496194f63725bc06c1f78a994cc177b1d75ab
b702a0cf7f2324e07e423867f0cb293c3443d2436168c345bd116f144358444f

HTTP Headers

GET /img/blog/from_blog_2.jpg HTTP/1.1
Host: omegasys.com.mx
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://omegasys.com.mx/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Sun, 12 Sep 2021 23:31:41 GMT
accept-ranges: bytes
content-length: 51022
cache-control: max-age=31536000
expires: Sat, 16 Sep 2023 15:40:56 GMT
content-type: image/jpeg
date: Fri, 16 Sep 2022 15:40:56 GMT
server: Apache
X-Firefox-Spdy: h2

omegasys.com.mx/js/plugins.js

67.227.237.232

200 OK

26 kB

URL HTTP/2
omegasys.com.mx/js/plugins.js
IP
67.227.237.232:0
ASN
#32244 LIQUIDWEB

File type
ASCII text, with very long lines (42862), with CRLF line terminators
Size
26 kB (26418 bytes)
Hash
a283362e160fbfd37ecd60630dfff75a
ef4b40cccfaba7289ad86ac9df76f178e0fad1c2
0940883bb71e2771beeb19322cfa9735c31fd1e15e09d8508fdd348cb92f0046

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /js/plugins.js HTTP/1.1
Host: omegasys.com.mx
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://omegasys.com.mx/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Sun, 15 Jul 2018 14:32:24 GMT
accept-ranges: bytes
cache-control: max-age=604800
expires: Fri, 23 Sep 2022 15:40:56 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 26418
content-type: application/javascript
date: Fri, 16 Sep 2022 15:40:56 GMT
server: Apache
X-Firefox-Spdy: h2

omegasys.com.mx/revolution/js/jquery.themepunch.tools.min.js

67.227.237.232

200 OK

38 kB

URL HTTP/2
omegasys.com.mx/revolution/js/jquery.themepunch.tools.min.js
IP
67.227.237.232:0
ASN
#32244 LIQUIDWEB

File type
ASCII text, with very long lines (27287), with CRLF line terminators
Size
38 kB (38337 bytes)
Hash
33ad97fbd5f6d0ad97af5461cc857da3
a975057df83659e526059661a2dae1a5a4d23fe2
ba0476734001e6e0808e7882a24852cf298dacac37b2beaf2c17718d2032afb2

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /revolution/js/jquery.themepunch.tools.min.js HTTP/1.1
Host: omegasys.com.mx
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://omegasys.com.mx/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Wed, 13 Jun 2018 20:15:10 GMT
accept-ranges: bytes
cache-control: max-age=604800
expires: Fri, 23 Sep 2022 15:40:56 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 38337
content-type: application/javascript
date: Fri, 16 Sep 2022 15:40:56 GMT
server: Apache
X-Firefox-Spdy: h2

omegasys.com.mx/img/revolution/home-1/2.jpg

67.227.237.232

200 OK

165 kB

URL HTTP/2
omegasys.com.mx/img/revolution/home-1/2.jpg
IP
67.227.237.232:0
ASN
#32244 LIQUIDWEB

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1920x1080, components 3\012- data
Size
165 kB (165446 bytes)
Hash
be12810cecd5e9dc4ca3dc31d64c0d36
91f1d5856c27d833bc67aef4829138eea7aed0fe
273a3eb4a6e96540aef06711fa48553488d1b8ccb922468d5c223bf822c3bb7e

HTTP Headers

GET /img/revolution/home-1/2.jpg HTTP/1.1
Host: omegasys.com.mx
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://omegasys.com.mx/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Mon, 13 Sep 2021 20:31:52 GMT
accept-ranges: bytes
content-length: 165446
cache-control: max-age=31536000
expires: Sat, 16 Sep 2023 15:40:56 GMT
content-type: image/jpeg
date: Fri, 16 Sep 2022 15:40:56 GMT
server: Apache
X-Firefox-Spdy: h2

omegasys.com.mx/img/revolution/home-1/3.jpg

67.227.237.232

200 OK

175 kB

URL HTTP/2
omegasys.com.mx/img/revolution/home-1/3.jpg
IP
67.227.237.232:0
ASN
#32244 LIQUIDWEB

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1920x1080, components 3\012- data
Size
175 kB (175191 bytes)
Hash
a845aaf18c5f5edd164b05588818415c
e1f4425c824de49cf43e65894fee0af1addb8697
415c96451522e2013383f9dfd6a7bffa0adf814c5c7898f9177df0a95401962c

HTTP Headers

GET /img/revolution/home-1/3.jpg HTTP/1.1
Host: omegasys.com.mx
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://omegasys.com.mx/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Mon, 13 Sep 2021 20:32:42 GMT
accept-ranges: bytes
content-length: 175191
cache-control: max-age=31536000
expires: Sat, 16 Sep 2023 15:40:56 GMT
content-type: image/jpeg
date: Fri, 16 Sep 2022 15:40:56 GMT
server: Apache
X-Firefox-Spdy: h2

omegasys.com.mx/img/services/1.jpg

67.227.237.232

200 OK

51 kB

URL HTTP/2
omegasys.com.mx/img/services/1.jpg
IP
67.227.237.232:0
ASN
#32244 LIQUIDWEB

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 480x650, components 3\012- data
Size
51 kB (51106 bytes)
Hash
e52cbbd55987066a2bec89cfd3caf423
6648e71e86e2cad9f9a3270c2d7b961efde564ed
1d1d4931d9a8a8d8f0240f2e811e21bf296887a3c1574e4a8f4c71c686165c0b

HTTP Headers

GET /img/services/1.jpg HTTP/1.1
Host: omegasys.com.mx
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://omegasys.com.mx/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Mon, 13 Sep 2021 20:21:54 GMT
accept-ranges: bytes
content-length: 51106
cache-control: max-age=31536000
expires: Sat, 16 Sep 2023 15:40:56 GMT
content-type: image/jpeg
date: Fri, 16 Sep 2022 15:40:56 GMT
server: Apache
X-Firefox-Spdy: h2

omegasys.com.mx/img/services/2.jpg

67.227.237.232

200 OK

38 kB

URL HTTP/2
omegasys.com.mx/img/services/2.jpg
IP
67.227.237.232:0
ASN
#32244 LIQUIDWEB

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 480x650, components 3\012- data
Size
38 kB (37600 bytes)
Hash
18ab00f932232bea89eba4ef4a2d3c03
25ce8a589b09f9eb4b7fd9367ab907ea9c9e9a91
4abb56e520d30ad6267de31606d29be83d40abba62c84901131b877cac0d7291

HTTP Headers

GET /img/services/2.jpg HTTP/1.1
Host: omegasys.com.mx
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://omegasys.com.mx/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Mon, 13 Sep 2021 20:22:43 GMT
accept-ranges: bytes
content-length: 37600
cache-control: max-age=31536000
expires: Sat, 16 Sep 2023 15:40:56 GMT
content-type: image/jpeg
date: Fri, 16 Sep 2022 15:40:56 GMT
server: Apache
X-Firefox-Spdy: h2

omegasys.com.mx/img/services/3.jpg

67.227.237.232

200 OK

52 kB

URL HTTP/2
omegasys.com.mx/img/services/3.jpg
IP
67.227.237.232:0
ASN
#32244 LIQUIDWEB

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 480x650, components 3\012- data
Size
52 kB (52333 bytes)
Hash
634ffdf82ed0cf2ff69cbf1870667eb2
3e02fd2ee31aef0805705238481501d9e9de36b8
a4166702ef02bcbe74752accd55b07fbf972b7ebc979998fd396297420bb9ca3

HTTP Headers

GET /img/services/3.jpg HTTP/1.1
Host: omegasys.com.mx
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://omegasys.com.mx/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Mon, 13 Sep 2021 20:22:30 GMT
accept-ranges: bytes
content-length: 52333
cache-control: max-age=31536000
expires: Sat, 16 Sep 2023 15:40:56 GMT
content-type: image/jpeg
date: Fri, 16 Sep 2022 15:40:56 GMT
server: Apache
X-Firefox-Spdy: h2

omegasys.com.mx/img/services/4.jpg

67.227.237.232

200 OK

50 kB

URL HTTP/2
omegasys.com.mx/img/services/4.jpg
IP
67.227.237.232:0
ASN
#32244 LIQUIDWEB

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 480x650, components 3\012- data
Size
50 kB (49848 bytes)
Hash
43930765b978c0f034af7bb27c5cae14
9903924cfe7c7492a88ac088c2ded0fa43b961b8
f74338bb94a659a0bfbdac31fc2359fb7dbe3e4032814808850b484c5aaf3f4f

HTTP Headers

GET /img/services/4.jpg HTTP/1.1
Host: omegasys.com.mx
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://omegasys.com.mx/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Mon, 13 Sep 2021 20:22:17 GMT
accept-ranges: bytes
content-length: 49848
cache-control: max-age=31536000
expires: Sat, 16 Sep 2023 15:40:56 GMT
content-type: image/jpeg
date: Fri, 16 Sep 2022 15:40:56 GMT
server: Apache
X-Firefox-Spdy: h2

omegasys.com.mx/img/footer/1.jpg

67.227.237.232

200 OK

96 kB

URL HTTP/2
omegasys.com.mx/img/footer/1.jpg
IP
67.227.237.232:0
ASN
#32244 LIQUIDWEB

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=12, height=360, bps=158, PhotometricIntepretation=RGB, orientation=upper-left, width=1860], baseline, precision 8, 1860x360, components 3\012- data
Size
96 kB (96299 bytes)
Hash
d20cf5aedef44ea930c60fdb3ea01484
993a008dffbd64bca7e87551741718476646df38
912274ade4ad9092d46633867a8c3ae6c6c5131828537e71b6408d65580372ae

HTTP Headers

GET /img/footer/1.jpg HTTP/1.1
Host: omegasys.com.mx
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://omegasys.com.mx/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Sun, 12 Sep 2021 19:51:25 GMT
accept-ranges: bytes
content-length: 96299
cache-control: max-age=31536000
expires: Sat, 16 Sep 2023 15:40:56 GMT
content-type: image/jpeg
date: Fri, 16 Sep 2022 15:40:56 GMT
server: Apache
X-Firefox-Spdy: h2

omegasys.com.mx/fonts/ui-icons.woff2?31292061

67.227.237.232

200 OK

14 kB

URL HTTP/2
omegasys.com.mx/fonts/ui-icons.woff2?31292061
IP
67.227.237.232:0
ASN
#32244 LIQUIDWEB

File type
Web Open Font Format (Version 2), TrueType, length 13880, version 1.0\012- data
Size
14 kB (13880 bytes)
Hash
a150474a5922b9a8b6f397a1726dd34d
e28af90afd3bfe4b673d6e02fed7f096fa908e6b
346d6754d06af678343f1d8e86a13ae620c5eae66ddf719434264f4f2669b259

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /fonts/ui-icons.woff2?31292061 HTTP/1.1
Host: omegasys.com.mx
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://omegasys.com.mx/css/font-icons.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 10 Jul 2018 12:22:26 GMT
accept-ranges: bytes
content-length: 13880
cache-control: max-age=31536000
expires: Sat, 16 Sep 2023 15:40:56 GMT
vary: Accept-Encoding,User-Agent
content-type: font/woff2
date: Fri, 16 Sep 2022 15:40:56 GMT
server: Apache
X-Firefox-Spdy: h2

omegasys.com.mx/fonts/Icon54.ttf?3rh4gs

67.227.237.232

200 OK

32 kB

URL HTTP/2
omegasys.com.mx/fonts/Icon54.ttf?3rh4gs
IP
67.227.237.232:0
ASN
#32244 LIQUIDWEB

File type
TrueType Font data, 11 tables, 1st "OS/2", 14 names, Macintosh, type 1 string, Icon54 \012- data
Size
32 kB (32380 bytes)
Hash
64356b98e55fe3174ff9790a34db44e0
58d48b4ffe22f8df5bb5be19cc2baefbc0fabb00
ea6631481724df7702b78cd89fcb6b5b114a7016708bb59bb682660c19db42ca

HTTP Headers

GET /fonts/Icon54.ttf?3rh4gs HTTP/1.1
Host: omegasys.com.mx
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://omegasys.com.mx/css/font-icons.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Sat, 14 Jul 2018 21:51:06 GMT
accept-ranges: bytes
cache-control: max-age=31536000
expires: Sat, 16 Sep 2023 15:40:56 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 32380
content-type: font/ttf
date: Fri, 16 Sep 2022 15:40:56 GMT
server: Apache
X-Firefox-Spdy: h2

omegasys.com.mx/img/apple-touch-icon-114x114.png

67.227.237.232

200 OK

13 kB

URL HTTP/2
omegasys.com.mx/img/apple-touch-icon-114x114.png
IP
67.227.237.232:0
ASN
#32244 LIQUIDWEB

File type
PNG image data, 114 x 114, 8-bit/color RGBA, non-interlaced\012- data
Size
13 kB (12756 bytes)
Hash
06a8548991e7efdff918de66d4fbf4cc
734462e5eafc37fe6142b4f182d2ce153183e150
70f6c2568023c1cb663424d93fa42b2e4970b29338ac511056d6e22c129d38d2

HTTP Headers

GET /img/apple-touch-icon-114x114.png HTTP/1.1
Host: omegasys.com.mx
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://omegasys.com.mx/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Sun, 12 Sep 2021 19:24:21 GMT
accept-ranges: bytes
content-length: 12756
cache-control: max-age=31536000
expires: Sat, 16 Sep 2023 15:40:56 GMT
content-type: image/png
date: Fri, 16 Sep 2022 15:40:56 GMT
server: Apache
X-Firefox-Spdy: h2

omegasys.com.mx/img/favicon.ico

67.227.237.232

200 OK

741 B

URL HTTP/2
omegasys.com.mx/img/favicon.ico
IP
67.227.237.232:0
ASN
#32244 LIQUIDWEB

File type
MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel\012- data
Size
741 B (741 bytes)
Hash
69c5e7b41ea0ffd33475abbff7fc505a
6c1401f2c130012d8794e7b5d4fe829a5bca9e5e
3061028669189eb3efba7afd61486077b1c587c2160239c8f9f251e541939292

HTTP Headers

GET /img/favicon.ico HTTP/1.1
Host: omegasys.com.mx
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://omegasys.com.mx/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Sun, 12 Sep 2021 19:44:25 GMT
accept-ranges: bytes
cache-control: max-age=31536000
expires: Sat, 16 Sep 2023 15:40:56 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 741
content-type: image/x-icon
date: Fri, 16 Sep 2022 15:40:56 GMT
server: Apache
X-Firefox-Spdy: h2

omegasys.com.mx/revolution/fonts/revicons/revicons.woff?5510888

67.227.237.232

200 OK

7.5 kB

URL HTTP/2
omegasys.com.mx/revolution/fonts/revicons/revicons.woff?5510888
IP
67.227.237.232:0
ASN
#32244 LIQUIDWEB

File type
Web Open Font Format, TrueType, length 7536, version 1.0\012- data
Size
7.5 kB (7536 bytes)
Hash
04eb8fc57f27498e5ae37523e3bfb2c7
d942ae11706c3f7e511e3c49b0e4574d7ad199c4
f7b9c3065e55fa3b9e320093612e7b30dcb14355a44ec461247b495a3e729686

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /revolution/fonts/revicons/revicons.woff?5510888 HTTP/1.1
Host: omegasys.com.mx
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://omegasys.com.mx/revolution/css/settings.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 14 Jun 2018 16:34:20 GMT
accept-ranges: bytes
content-length: 7536
cache-control: max-age=31536000
expires: Sat, 16 Sep 2023 15:40:56 GMT
vary: Accept-Encoding,User-Agent
content-type: font/woff
date: Fri, 16 Sep 2022 15:40:56 GMT
server: Apache
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
4abe181b1d086cd7e122d7de32f63fb6
e3482d4df0d59c247109ff7fb97f20ec6f142c4d
63c277b85854c244e38f5b3e60a073eb15962a0784ba1b726353e3ec0c3e9e02

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "63C277B85854C244E38F5B3E60A073EB15962A0784BA1B726353E3EC0C3E9E02"
Last-Modified: Thu, 15 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16851
Expires: Fri, 16 Sep 2022 20:21:48 GMT
Date: Fri, 16 Sep 2022 15:40:57 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
4abe181b1d086cd7e122d7de32f63fb6
e3482d4df0d59c247109ff7fb97f20ec6f142c4d
63c277b85854c244e38f5b3e60a073eb15962a0784ba1b726353e3ec0c3e9e02

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "63C277B85854C244E38F5B3E60A073EB15962A0784BA1B726353E3EC0C3E9E02"
Last-Modified: Thu, 15 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16851
Expires: Fri, 16 Sep 2022 20:21:48 GMT
Date: Fri, 16 Sep 2022 15:40:57 GMT
Connection: keep-alive

omegasys.com.mx/img/intro/1.jpg

67.227.237.232

200 OK

503 B

URL HTTP/2
omegasys.com.mx/img/intro/1.jpg
IP
67.227.237.232:0
ASN
#32244 LIQUIDWEB

File type
data
Size
503 B (503 bytes)
Hash
4abe181b1d086cd7e122d7de32f63fb6
e3482d4df0d59c247109ff7fb97f20ec6f142c4d
63c277b85854c244e38f5b3e60a073eb15962a0784ba1b726353e3ec0c3e9e02

HTTP Headers

GET /img/intro/1.jpg HTTP/1.1
Host: omegasys.com.mx
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://omegasys.com.mx/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Sun, 12 Sep 2021 22:10:09 GMT
accept-ranges: bytes
content-length: 100702
cache-control: max-age=31536000
expires: Sat, 16 Sep 2023 15:40:56 GMT
content-type: image/jpeg
date: Fri, 16 Sep 2022 15:40:56 GMT
server: Apache
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
4abe181b1d086cd7e122d7de32f63fb6
e3482d4df0d59c247109ff7fb97f20ec6f142c4d
63c277b85854c244e38f5b3e60a073eb15962a0784ba1b726353e3ec0c3e9e02

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "63C277B85854C244E38F5B3E60A073EB15962A0784BA1B726353E3EC0C3E9E02"
Last-Modified: Thu, 15 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16851
Expires: Fri, 16 Sep 2022 20:21:48 GMT
Date: Fri, 16 Sep 2022 15:40:57 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
4abe181b1d086cd7e122d7de32f63fb6
e3482d4df0d59c247109ff7fb97f20ec6f142c4d
63c277b85854c244e38f5b3e60a073eb15962a0784ba1b726353e3ec0c3e9e02

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "63C277B85854C244E38F5B3E60A073EB15962A0784BA1B726353E3EC0C3E9E02"
Last-Modified: Thu, 15 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16851
Expires: Fri, 16 Sep 2022 20:21:48 GMT
Date: Fri, 16 Sep 2022 15:40:57 GMT
Connection: keep-alive

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F45619ede-b86e-4373-9398-fec60bb9e862.jpeg

34.120.237.76

200 OK

12 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F45619ede-b86e-4373-9398-fec60bb9e862.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
12 kB (12123 bytes)
Hash
f876cdc19dca10c62d83d19303512c7f
9f812c7bc1b42b0cea3e42694e7d1f6738789770
c647aac44ba9eb501eb7def781ca0168b4eb71a716283cc6f4e6782939a396cc

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F45619ede-b86e-4373-9398-fec60bb9e862.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 12123
x-amzn-requestid: b04ac3c4-b4d8-4094-8b7d-bd229bb7d577
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Yb2GvFnEoAMF-Gw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63216a2a-4e5927ac3f1d0b215ce5a8dc;Sampled=0
x-amzn-remapped-date: Wed, 14 Sep 2022 05:44:10 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 1W0Ito5yNmHNxtYBj5jOJQ3Z2OP_Shvhpj94YUDwLHQKzt-zgqjI8A==
via: 1.1 ddd913fbbe7367d44af4ac06097e7a2a.cloudfront.net (CloudFront), 1.1 f9d716a351f14a0ac1fac2449734849a.cloudfront.net (CloudFront), 1.1 google
date: Fri, 16 Sep 2022 03:12:38 GMT
age: 44899
etag: "9f812c7bc1b42b0cea3e42694e7d1f6738789770"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

9.9 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fee084149-a07d-4141-a484-d9f352209914.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
9.9 kB (9904 bytes)
Hash
e6d17788c7d2a1a91e68eff48df14bd1
8e1090346d90bc69e7a95384e6a7a01154e31567
1e1eefa02e4c55e73be87a309ad5c2335856125cb678cff6ebc42c5ff73a0e2b

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fee084149-a07d-4141-a484-d9f352209914.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 9904
x-amzn-requestid: a23cb4b3-db6e-48ae-90b1-3ecf6478bf52
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YhVDpH_CIAMFl4w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63239bb0-15869210609a18587467d1e2;Sampled=0
x-amzn-remapped-date: Thu, 15 Sep 2022 21:40:00 GMT
x-amz-cf-pop: SEA19-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: JyXQcHKFIksMgLMROqOfV1ZqdFKSp3QSIlGmXuDR6h88o9J6s-mgkw==
via: 1.1 1002c05e647d0804e83147cdd205d14a.cloudfront.net (CloudFront), 1.1 9c675215120a4ade8754c4357ef2f3ea.cloudfront.net (CloudFront), 1.1 google
date: Thu, 15 Sep 2022 22:14:32 GMT
age: 62785
etag: "8e1090346d90bc69e7a95384e6a7a01154e31567"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

12 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fed934f67-48ba-4d22-a8f8-4f5f7a10a9f9.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
12 kB (12425 bytes)
Hash
da1bd18c37b83b0ef4641036dc208eec
abb5c719ec9341c6d4146297a2a1eca171df9c81
0085a66912a814c619a1257545d36610c7109ba32f1b097176102d3d3db2c8d0

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fed934f67-48ba-4d22-a8f8-4f5f7a10a9f9.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 12425
x-amzn-requestid: 96b5f0d2-1327-4180-9d48-f915630c3de2
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YhVDqHyooAMFqyg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63239bb0-7d89d2d7024f6a821a62c948;Sampled=0
x-amzn-remapped-date: Thu, 15 Sep 2022 21:40:00 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: dxJEH4Jh8lAZ0T28BZnFLhWczwZ7oOaspCmR-SWudP32cF3BQc6wmw==
via: 1.1 d1151317ba32afe0e6370fd69fed222e.cloudfront.net (CloudFront), 1.1 5397b304713f6301c7c94ac084b6ed08.cloudfront.net (CloudFront), 1.1 google
date: Thu, 15 Sep 2022 21:56:40 GMT
age: 63857
etag: "abb5c719ec9341c6d4146297a2a1eca171df9c81"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

8.4 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4a73e855-9877-4793-b59a-30b8e5a96117.png
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
8.4 kB (8435 bytes)
Hash
b7d4ee58e0f26ec6817dbab72aa7db6d
b6e634ef27eba9da38c6472565e0fdca6898e4f0
07db05a6ee70a699164ad55da47bfca58e6639956e256d902cbe0388cd7995c6

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4a73e855-9877-4793-b59a-30b8e5a96117.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 8435
x-amzn-requestid: f6efd924-4f54-41a6-8771-087803b5b8ac
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YhU0-EJaoAMFvtQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63239b52-37c21ee857fe27d104b70337;Sampled=0
x-amzn-remapped-date: Thu, 15 Sep 2022 21:38:26 GMT
x-amz-cf-pop: SFO5-P2, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: hhh1q_MrZVAaRWwmc1IuJbL3KhhwwHQgceaL15okbg4NvKJlWfUjyA==
via: 1.1 773ca14e6bd4bf9244988cb69fc9dca8.cloudfront.net (CloudFront), 1.1 73cb83fe6699afc2791b5c690c1ff8c6.cloudfront.net (CloudFront), 1.1 google
date: Thu, 15 Sep 2022 22:02:34 GMT
age: 63503
etag: "b6e634ef27eba9da38c6472565e0fdca6898e4f0"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

10 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc7e55a42-9f36-46db-9415-ab10753c0fb8.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
10 kB (10163 bytes)
Hash
3a4ed510756efe784c4ca84c61c4b5ba
10262867cfb19d3ba8f618e235d1a98531048f34
b5ba0de5ce381579e49e3e3c23244048fc8aac693ce0c977560f28b9a51f6a0b

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc7e55a42-9f36-46db-9415-ab10753c0fb8.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 10163
x-amzn-requestid: 7c849e5d-468e-4f6a-ad44-c7995bfa81bb
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YYvuGFU5oAMF_Og=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63202cc0-5376d2432c79a3146b6c29f4;Sampled=0
x-amzn-remapped-date: Tue, 13 Sep 2022 07:09:52 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: J5lOTqdLhgg3Hzfw3b86ScfLkODllGEA_y9xUSxBxBCS4sI5nAWKZQ==
via: 1.1 1b0911478686968732f973d6e5e31d10.cloudfront.net (CloudFront), 1.1 e80693c02cfdfd081110512210d57840.cloudfront.net (CloudFront), 1.1 google
date: Thu, 15 Sep 2022 23:35:10 GMT
age: 57947
etag: "10262867cfb19d3ba8f618e235d1a98531048f34"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

14 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F855bc857-3105-4de6-b3a8-0eb895422ea5.png
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
14 kB (13536 bytes)
Hash
512280055633fcce9abc7d11a9816a24
de5c3e010fca76659455a144875a52c25fa72bdd
435eadb36830928b20d4cf8ead62134b75bd0ed3228489d9fdee66450bcbeaed

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F855bc857-3105-4de6-b3a8-0eb895422ea5.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 13536
x-amzn-requestid: 5533b257-1558-472b-aeb9-8207a78e1110
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YhVDzFa4IAMF9Rg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63239bb1-05d0dfde7a488ed97d2a40d5;Sampled=0
x-amzn-remapped-date: Thu, 15 Sep 2022 21:40:01 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: aCCBUNe1NErAN4RiVGCdh-sBxSnMm-XfcFzE-h8IcCq6W1Om-UX45g==
via: 1.1 d1151317ba32afe0e6370fd69fed222e.cloudfront.net (CloudFront), 1.1 9c675215120a4ade8754c4357ef2f3ea.cloudfront.net (CloudFront), 1.1 google
date: Thu, 15 Sep 2022 21:45:46 GMT
age: 64511
etag: "de5c3e010fca76659455a144875a52c25fa72bdd"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

9.3 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F032fbd06-806d-41e6-9160-3fdf480555ac.webp
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
9.3 kB (9256 bytes)
Hash
d242ded8ac40a1eb617303256d5f34eb
afbe7dae2d65763a004b5bddc697131762da7bf2
b4b08292f36acfca7df3710c29c184c5ff18592e6383eddc5582d302184fce59

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F032fbd06-806d-41e6-9160-3fdf480555ac.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-length: 9256
x-amzn-requestid: 19e81e48-6501-4938-906c-60aa7acdb33a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YhUj5EE5oAMFvwA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63239ae5-3031e84f158e1ad94da4875b;Sampled=0
x-amzn-remapped-date: Thu, 15 Sep 2022 21:36:37 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: MgjhIwjrfVL6-SF04ZPyZVUIOlXUTJu8E8r6KtOZ_QH0OEZC4uG4yQ==
via: 1.1 5a1753718d8b33365e5f693dd338c510.cloudfront.net (CloudFront), 1.1 001e7070d795018d01b93988b9723742.cloudfront.net (CloudFront), 1.1 google
date: Thu, 15 Sep 2022 21:45:09 GMT
age: 64555
etag: "afbe7dae2d65763a004b5bddc697131762da7bf2"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

omegasys.com.mx/js/jquery.min.js

67.227.237.232

200 OK

0 B

URL HTTP/2
omegasys.com.mx/js/jquery.min.js
IP
67.227.237.232:0
ASN
#32244 LIQUIDWEB

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /js/jquery.min.js HTTP/1.1
Host: omegasys.com.mx
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://omegasys.com.mx/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Sun, 05 Jun 2016 16:00:20 GMT
accept-ranges: bytes
cache-control: max-age=604800
expires: Fri, 23 Sep 2022 15:40:56 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 33760
content-type: application/javascript
date: Fri, 16 Sep 2022 15:40:56 GMT
server: Apache
X-Firefox-Spdy: h2

omegasys.com.mx/img/revolution/home-1/1.jpg

67.227.237.232

200 OK

0 B

URL HTTP/2
omegasys.com.mx/img/revolution/home-1/1.jpg
IP
67.227.237.232:0
ASN
#32244 LIQUIDWEB

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /img/revolution/home-1/1.jpg HTTP/1.1
Host: omegasys.com.mx
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://omegasys.com.mx/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Mon, 13 Sep 2021 20:32:24 GMT
accept-ranges: bytes
content-length: 150496
cache-control: max-age=31536000
expires: Sat, 16 Sep 2023 15:40:56 GMT
content-type: image/jpeg
date: Fri, 16 Sep 2022 15:40:56 GMT
server: Apache
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

JavaScript (13)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP