blog.david-anton.com/
82.165.101.27301 Moved Permanently 162 B IP 82.165.101.27:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: blog.david-anton.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Tue, 25 Oct 2022 10:11:01 GMT
Content-Type: text/html
Content-Length: 162
Connection: keep-alive
Location: https://blog.david-anton.com/
firefox.settings.services.mozilla.com/v1/
143.204.55.35200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 143.204.55.35:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash cd8d0809aa5948f2a6ee41d2158861af
098cd24ac587cdc70137af412678526de4d43969
88e6741d6bf076bf7132c7cf98456702cc775476095aafd839888edff52fb03e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Backoff, Alert, Retry-After, Content-Length, Content-Type
Cache-Control: max-age=3600
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Tue, 25 Oct 2022 09:51:50 GMT
Expires: Tue, 25 Oct 2022 09:55:11 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 71c98156ae29b36a903974f9dd2568f8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: b__e8qyPQ2Lp8_imixhLVgrORKVEGoxzP-Qgz3Pva57k3fVqP6Nazg==
Age: 1161
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash e36c852b5e145f2f09fe73111fb162e1
e439c6a462f86a3003d6464a8b9999b1c4d1e210
52a721168d0c41cb0854ff8c730fce3b79db2e804b383238e95ff1401922bd74
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "52A721168D0C41CB0854FF8C730FCE3B79DB2E804B383238E95FF1401922BD74"
Last-Modified: Mon, 24 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12087
Expires: Tue, 25 Oct 2022 13:32:38 GMT
Date: Tue, 25 Oct 2022 10:11:11 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 8db408c487f7d35bba323046736e8d3a
01b91e2dce7c6d3de9adfe6ff4d38f9b24ab7db0
9aeafc72c1a969243e1fc96f68ce18888034a749ee70582208bf814bd40b61a5
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9AEAFC72C1A969243E1FC96F68CE18888034A749EE70582208BF814BD40B61A5"
Last-Modified: Tue, 25 Oct 2022 02:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12897
Expires: Tue, 25 Oct 2022 13:46:08 GMT
Date: Tue, 25 Oct 2022 10:11:11 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 67d5a988edcda47bc3b3b3f65d32b4b6
d4f0e0da8b3690cc7da925026d3414b68c7d954f
55e4848e3ec682e808ce7ee70950f86179c43af4f81926d826a95edfda395a78
GET /chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: c+o8KskIOH+e6iJD7dujoYr069V1t55MmG8NcHgjRYZBLDoiBECCyEfXHay4vjRTwxmC7p+PJ+Q=
x-amz-request-id: R9AK87XYK36SYSF0
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Tue, 25 Oct 2022 09:38:45 GMT
age: 1946
last-modified: Fri, 30 Sep 2022 18:50:55 GMT
etag: "67d5a988edcda47bc3b3b3f65d32b4b6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 25 Oct 2022 10:11:11 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash e77bd9d1056de1be571489cbcd2dfb44
7759ccf6c559225e04610601c9718898761430aa
7e002d9221a29a1b5f7802a976da360a9565f36164d4433a65be095dd62f4487
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "7E002D9221A29A1B5F7802A976DA360A9565F36164D4433A65BE095DD62F4487"
Last-Modified: Mon, 24 Oct 2022 02:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21539
Expires: Tue, 25 Oct 2022 16:10:10 GMT
Date: Tue, 25 Oct 2022 10:11:11 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
143.204.55.35200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 143.204.55.35:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Date: Tue, 25 Oct 2022 09:33:32 GMT
Cache-Control: max-age=3600
Expires: Tue, 25 Oct 2022 10:11:37 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 80d21802b1b80c40e55ccf83433b8eac.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: WixMxqtfBAQ-JIT1Ft5xoCiOISE7gCwc-38d2b4U3-VfrVo2XfpfNQ==
Age: 2259
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 518ff04fd536958e285cf07aaf4a2786
fa5dad2391c2a9957340bd629f0462db4f412a5c
608c78964412d5dc7025e9cbfaef345d448a29eae0f11257c49a41f274917b9a
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6566
Cache-Control: max-age=171902
Content-Type: application/ocsp-response
Date: Tue, 25 Oct 2022 10:11:12 GMT
Etag: "63579918-1d7"
Expires: Thu, 27 Oct 2022 09:56:14 GMT
Last-Modified: Tue, 25 Oct 2022 08:06:48 GMT
Server: ECS (ska/F71D)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
34.218.164.174101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 34.218.164.174:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: I2hRd2ee4KPs4YEtRTU7wQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: qxgp8ACZX4BFdUcpufaYfO7BMWQ=
blog.david-anton.com/
82.165.101.27200 OK 13 kB IP 82.165.101.27:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (51221)
Hash da07b07505c6f0afdd440a7f7a422eb7
1f33961581b5e0ecfba37fce7edd6906efd20eb3
5c4188c1a73a78c424dd2b0a390a012bc37faf3e738cafcab709348e2158829a
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: blog.david-anton.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
server: nginx
date: Tue, 25 Oct 2022 10:11:04 GMT
content-type: text/html; charset=UTF-8
content-length: 13279
x-ua-compatible: IE=edge
link: <https://blog.david-anton.com/wp-json/>; rel="https://api.w.org/"
set-cookie: -bsBiMKuf=tow.vgMAn7eYV; expires=Wed, 26-Oct-2022 10:11:02 GMT; Max-Age=86400; path=/; secure
TsBj_PQnDWSMKNhO=4KUVaQTXiC72l; expires=Wed, 26-Oct-2022 10:11:02 GMT; Max-Age=86400; path=/; secure
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=172800
expires: Thu, 27 Oct 2022 10:11:02 GMT
x-cache-status: MISS
x-powered-by: PHP/7.4.32, PleskLin
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 3e1bb48ebff0d9bf38d970a507a77938
2c4d3493a2d5e64ff86caa9d9f34f5164561a899
ea3c5e3f160b392dca3d5ef017a95ebbe9559e22658af0f8a7d42da34a69055e
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2967
Cache-Control: max-age=92703
Content-Type: application/ocsp-response
Date: Tue, 25 Oct 2022 10:11:13 GMT
Etag: "635671c9-117"
Expires: Wed, 26 Oct 2022 11:56:16 GMT
Last-Modified: Mon, 24 Oct 2022 11:06:49 GMT
Server: ECS (ska/F71D)
X-Cache: HIT
Content-Length: 279
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash f1ae675435a8f16bc0b04ec012c41979
182f87a81464c80b0b25fb524c59592cd40b0ef4
9191ced121d8740b4ed3af75db3033e72c0c44c0b45004abd714583deaa749a4
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 25 Oct 2022 10:11:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 3e1bb48ebff0d9bf38d970a507a77938
2c4d3493a2d5e64ff86caa9d9f34f5164561a899
ea3c5e3f160b392dca3d5ef017a95ebbe9559e22658af0f8a7d42da34a69055e
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2967
Cache-Control: max-age=92703
Content-Type: application/ocsp-response
Date: Tue, 25 Oct 2022 10:11:13 GMT
Etag: "635671c9-117"
Expires: Wed, 26 Oct 2022 11:56:16 GMT
Last-Modified: Mon, 24 Oct 2022 11:06:49 GMT
Server: ECS (ska/F71D)
X-Cache: HIT
Content-Length: 279
www.googletagmanager.com/gtag/js?id=UA-1058630-21
142.250.74.168200 OK 44 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=UA-1058630-21
IP 142.250.74.168:0
File type ASCII text, with very long lines (1588)
Hash 16ab43496ff54859ed66f07310d8e1d1
f2dc0cdc1150367c2a314faca77b82635f2b3db3
bcc97291db45b67fd0a668b051eb5311c9335c8332a1c9aaf7b8df4e5a8599bb
GET /gtag/js?id=UA-1058630-21 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://blog.david-anton.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Tue, 25 Oct 2022 10:11:13 GMT
expires: Tue, 25 Oct 2022 10:11:13 GMT
cache-control: private, max-age=900
last-modified: Tue, 25 Oct 2022 09:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 43590
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 3e1bb48ebff0d9bf38d970a507a77938
2c4d3493a2d5e64ff86caa9d9f34f5164561a899
ea3c5e3f160b392dca3d5ef017a95ebbe9559e22658af0f8a7d42da34a69055e
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2967
Cache-Control: max-age=92703
Content-Type: application/ocsp-response
Date: Tue, 25 Oct 2022 10:11:13 GMT
Etag: "635671c9-117"
Expires: Wed, 26 Oct 2022 11:56:16 GMT
Last-Modified: Mon, 24 Oct 2022 11:06:49 GMT
Server: ECS (ska/F71D)
X-Cache: HIT
Content-Length: 279
blog.david-anton.com/wp-content/cache/autoptimize/js/autoptimize_single_42661f2126c5821c455034d9e360b562.js?ver=3.28
82.165.101.27200 OK 345 B URL HTTP/2 blog.david-anton.com/wp-content/cache/autoptimize/js/autoptimize_single_42661f2126c5821c455034d9e360b562.js?ver=3.28
IP 82.165.101.27:0
File type ASCII text, with very long lines (317)
Hash 65812b5c9c6823e9f4720a3b9aa07c82
141d89427afc3ea5b2a6babb2f5ea27369527de5
eecd3affa358703ef69aa0c86a99ce9fd95233bf0babe11c990fa97a6bda9905
GET /wp-content/cache/autoptimize/js/autoptimize_single_42661f2126c5821c455034d9e360b562.js?ver=3.28 HTTP/1.1
Host: blog.david-anton.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://blog.david-anton.com/
Cookie: -bsBiMKuf=tow.vgMAn7eYV; TsBj_PQnDWSMKNhO=4KUVaQTXiC72l
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 25 Oct 2022 10:11:04 GMT
content-type: application/javascript
content-length: 345
x-accel-version: 0.01
last-modified: Wed, 31 Aug 2022 10:12:19 GMT
etag: "306-5e786bb68d5fc-gzip"
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=30672000, public, immutable
expires: Sun, 15 Oct 2023 10:11:04 GMT
x-cache-status: BYPASS
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash 7803ed55a8c674bc97bca2fb93451b4e
69bbf1f5914d7863c6d9f03323ac6e7069b48b1b
d75224c2f8995a021eb13f49a90238083f7551fd4af85beaad4416a0a52f1537
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 25 Oct 2022 10:11:13 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Sun, 23 Oct 2022 13:08:41 GMT
Expires: Sun, 30 Oct 2022 13:08:40 GMT
Etag: "69bbf1f5914d7863c6d9f03323ac6e7069b48b1b"
Cache-Control: max-age=442046,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 75fa2ab9092ab4ff-OSL
blog.david-anton.com/wp-content/themes/imagely/inc/side-panel/assets/js/main.min.js
82.165.101.27200 OK 360 B URL HTTP/2 blog.david-anton.com/wp-content/themes/imagely/inc/side-panel/assets/js/main.min.js
IP 82.165.101.27:0
File type ASCII text, with very long lines (793)
Hash 1dc2aa6c0041e29dd8a9325898b61fa8
f2effe9c6e586f9203eab8332f416dd8d61921eb
10b8fe23bb9431b9fbc22eefb9a6d4f6de0eb76ff0f51b385e723f5df25cbd74
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/imagely/inc/side-panel/assets/js/main.min.js HTTP/1.1
Host: blog.david-anton.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://blog.david-anton.com/
Cookie: -bsBiMKuf=tow.vgMAn7eYV; TsBj_PQnDWSMKNhO=4KUVaQTXiC72l
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 25 Oct 2022 10:11:04 GMT
content-type: application/javascript
content-length: 360
x-accel-version: 0.01
last-modified: Tue, 28 Dec 2021 18:19:23 GMT
etag: "33e-5d438dc55b982-gzip"
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=172800
expires: Thu, 27 Oct 2022 10:11:04 GMT
x-cache-status: BYPASS
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash f1ae675435a8f16bc0b04ec012c41979
182f87a81464c80b0b25fb524c59592cd40b0ef4
9191ced121d8740b4ed3af75db3033e72c0c44c0b45004abd714583deaa749a4
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 25 Oct 2022 10:11:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
sp-ao.shortpixel.ai/client/to_webp,q_glossy,ret_img,w_1280/https://blog.david-anton.com/wp-content/uploads/Hochzeitsfotograf-Offenburg-0005.jpg
194.242.11.186302 Found 0 B URL HTTP/2 sp-ao.shortpixel.ai/client/to_webp,q_glossy,ret_img,w_1280/https://blog.david-anton.com/wp-content/uploads/Hochzeitsfotograf-Offenburg-0005.jpg
IP 194.242.11.186:0
ASN #34989 ServeTheWorld AS
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /client/to_webp,q_glossy,ret_img,w_1280/https://blog.david-anton.com/wp-content/uploads/Hochzeitsfotograf-Offenburg-0005.jpg HTTP/1.1
Host: sp-ao.shortpixel.ai
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://blog.david-anton.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
date: Tue, 25 Oct 2022 10:11:13 GMT
content-type: text/html; charset=UTF-8
content-length: 0
location: https://blog.david-anton.com/wp-content/uploads/Hochzeitsfotograf-Offenburg-0005.jpg
server: BunnyCDN-NO-830
cdn-pullzone: 257218
cdn-uid: ceac3dab-9909-4315-8d54-a27751b54dd0
cdn-requestcountrycode: NO
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
cache-control: public, max-age=86400
pragma: cache
cdn-cachedat: 10/25/2022 10:11:13
cdn-tag: 0; Domain: blog.david-anton.com; 302
cdn-proxyver: 1.03
cdn-requestpullcode: 302
cdn-requestpullsuccess: True
cdn-edgestorageid: 830
cdn-status: 302
cdn-requestid: 39d91b4f66a3bac7cd0ff5e78f616a8d
cdn-cache: MISS
X-Firefox-Spdy: h2
blog.david-anton.com/wp-content/themes/imagely/assets/js/main.min.js?ver=2.0.0
82.165.101.27200 OK 17 kB URL HTTP/2 blog.david-anton.com/wp-content/themes/imagely/assets/js/main.min.js?ver=2.0.0
IP 82.165.101.27:0
File type ASCII text, with very long lines (63244)
Hash a31e6dbc028296395056c840db6fc4f7
112e14afb103e5fdf9fdd01e304039712fb61b81
72216e3cb01ce1bb7e4889222cba6e4ebc88137d31da546db3b3dfc7dfc35906
GET /wp-content/themes/imagely/assets/js/main.min.js?ver=2.0.0 HTTP/1.1
Host: blog.david-anton.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://blog.david-anton.com/
Cookie: -bsBiMKuf=tow.vgMAn7eYV; TsBj_PQnDWSMKNhO=4KUVaQTXiC72l
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 25 Oct 2022 10:11:04 GMT
content-type: application/javascript
last-modified: Tue, 28 Dec 2021 18:19:23 GMT
cache-control: max-age=172800
expires: Thu, 27 Oct 2022 10:11:04 GMT
etag: W/"61cb552b-f731"
x-cache-status: BYPASS
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 358ecd0ec047d700042e2a62f9847199
7bf4c552f47536fe451dc6ccfb0930c592084ef9
e14317aace5d64e9901867578379dd4dd4252b059070d37722f82ebb2e649d27
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E14317AACE5D64E9901867578379DD4DD4252B059070D37722F82EBB2E649D27"
Last-Modified: Mon, 24 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13902
Expires: Tue, 25 Oct 2022 14:02:55 GMT
Date: Tue, 25 Oct 2022 10:11:13 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcf8cfe72-ca76-42ae-a95f-b33a2edb91b3.jpeg
34.120.237.76200 OK 8.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcf8cfe72-ca76-42ae-a95f-b33a2edb91b3.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 80bab61eeda285e378b86b3efc4f87f9
5c690531e195332c04092ce22e7bdcecccc3c9d5
0c4dec046835501b598b5165acd592c3baeb2d6e21b6ac5fd549e790a802cd02
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcf8cfe72-ca76-42ae-a95f-b33a2edb91b3.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7977
x-amzn-requestid: 3e217877-33a2-4efc-a21f-b75764a8ced9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ah3FWGRooAMFagw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63570555-2bc77cb653ef022b4aab7f71;Sampled=0
x-amzn-remapped-date: Mon, 24 Oct 2022 21:36:21 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: H9SrkX9dE_JU-7hTyxvpc7a2fQNo_WaeSxT5r3P63tu28yjFahtnXQ==
via: 1.1 e5af640ced3aa8764b82c4bc3f7af38e.cloudfront.net (CloudFront), 1.1 98aedae6661e3904540676966998ed88.cloudfront.net (CloudFront), 1.1 google
date: Mon, 24 Oct 2022 21:42:39 GMT
age: 44914
etag: "5c690531e195332c04092ce22e7bdcecccc3c9d5"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
blog.david-anton.com/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9
82.165.101.27200 OK 14 kB URL HTTP/2 blog.david-anton.com/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9
IP 82.165.101.27:0
File type ASCII text, with very long lines (6475), with no line terminators
Hash 27209050797b0081efec5dcac9127e6f
2ac07b17a3c16a311eb9749f389c7594b22ab73e
7d12e2b5b5fd97d3d1337f1ed7ce612473d97a8b2319dd1f7bff1d88f20d1a1a
GET /wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9 HTTP/1.1
Host: blog.david-anton.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://blog.david-anton.com/
Cookie: -bsBiMKuf=tow.vgMAn7eYV; TsBj_PQnDWSMKNhO=4KUVaQTXiC72l
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 25 Oct 2022 10:11:04 GMT
content-type: application/javascript
last-modified: Wed, 31 Aug 2022 10:11:31 GMT
cache-control: max-age=172800
expires: Thu, 27 Oct 2022 10:11:04 GMT
etag: W/"630f33d3-194b"
x-cache-status: BYPASS
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
blog.david-anton.com/wp-content/cache/autoptimize/js/autoptimize_single_ae0f40d4f21faa4c3ae5e3ec85853384.js?ver=5.6.2
82.165.101.27200 OK 14 kB URL HTTP/2 blog.david-anton.com/wp-content/cache/autoptimize/js/autoptimize_single_ae0f40d4f21faa4c3ae5e3ec85853384.js?ver=5.6.2
IP 82.165.101.27:0
File type ASCII text, with very long lines (21905), with no line terminators
Hash 94af241267fbf255c41216b2640974ad
a55ef77c69290f79bc4c5917f7ca314caedcd811
500e3010c8f88e7c5f1ed5f5d7c406cea2635f4bf1c90e01c01ff0989582e96a
GET /wp-content/cache/autoptimize/js/autoptimize_single_ae0f40d4f21faa4c3ae5e3ec85853384.js?ver=5.6.2 HTTP/1.1
Host: blog.david-anton.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://blog.david-anton.com/
Cookie: -bsBiMKuf=tow.vgMAn7eYV; TsBj_PQnDWSMKNhO=4KUVaQTXiC72l
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 25 Oct 2022 10:11:04 GMT
content-type: application/javascript
last-modified: Wed, 31 Aug 2022 10:12:19 GMT
cache-control: max-age=30672000, public, immutable
expires: Sun, 15 Oct 2023 10:11:04 GMT
etag: W/"630f3403-5591"
x-cache-status: BYPASS
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
blog.david-anton.com/wp-includes/js/imagesloaded.min.js?ver=4.1.4
82.165.101.27200 OK 9.7 kB URL HTTP/2 blog.david-anton.com/wp-includes/js/imagesloaded.min.js?ver=4.1.4
IP 82.165.101.27:0
File type ASCII text, with very long lines (5477)
Hash d47fde86d20098dbb6f571ddd83bc36e
e8f95bf62ad0186a4e1f2f36228a6d2e55188317
33905dc852731f255b8a18791f510897a6caba89c0d55e3fb1900edd0f3b7d18
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/imagesloaded.min.js?ver=4.1.4 HTTP/1.1
Host: blog.david-anton.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://blog.david-anton.com/
Cookie: -bsBiMKuf=tow.vgMAn7eYV; TsBj_PQnDWSMKNhO=4KUVaQTXiC72l
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 25 Oct 2022 10:11:04 GMT
content-type: application/javascript
last-modified: Tue, 28 Dec 2021 18:21:44 GMT
cache-control: max-age=172800
expires: Thu, 27 Oct 2022 10:11:04 GMT
etag: W/"61cb55b8-15fd"
x-cache-status: BYPASS
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
blog.david-anton.com/wp-content/plugins/nextgen-gallery/products/photocrati_nextgen/modules/ajax/static/ajax.min.js?ver=3.28
82.165.101.27200 OK 9.1 kB URL HTTP/2 blog.david-anton.com/wp-content/plugins/nextgen-gallery/products/photocrati_nextgen/modules/ajax/static/ajax.min.js?ver=3.28
IP 82.165.101.27:0
File type ASCII text, with very long lines (415)
Hash f09dd2b8655b6fc6d852991f3983e04b
6d19670199155df5db18775070b48e11cb40541b
58e58758a3bba1cdc640ad8823b15dcb4e0d15d19620068df5c53fee083cccc3
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/nextgen-gallery/products/photocrati_nextgen/modules/ajax/static/ajax.min.js?ver=3.28 HTTP/1.1
Host: blog.david-anton.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://blog.david-anton.com/
Cookie: -bsBiMKuf=tow.vgMAn7eYV; TsBj_PQnDWSMKNhO=4KUVaQTXiC72l
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 25 Oct 2022 10:11:04 GMT
content-type: application/javascript
last-modified: Wed, 31 Aug 2022 10:09:55 GMT
cache-control: max-age=172800
expires: Thu, 27 Oct 2022 10:11:04 GMT
etag: W/"630f3373-a95"
x-cache-status: BYPASS
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F075a794f-9140-4676-afb2-493f44932cc3.jpeg
34.120.237.76200 OK 4.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F075a794f-9140-4676-afb2-493f44932cc3.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 3cf322f19151bcfa374c2e32b9ac986f
e8e69ac951def18bc1e03ecd4fe8a21d3b825b27
54ddfd1876f65e264b9b3209a0e805a3796013b4aacc8e9fd20b49754b4917a0
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F075a794f-9140-4676-afb2-493f44932cc3.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4206
x-amzn-requestid: 6b02f96a-ea03-4eff-acde-c73925260102
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ah3E3GPQoAMFpIA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63570552-77cf762d0e54f1f60efe52c3;Sampled=0
x-amzn-remapped-date: Mon, 24 Oct 2022 21:36:18 GMT
x-amz-cf-pop: SEA19-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: jcuTYNKiYp8BkDnzo34tidRVmcFlE_xDfPGGgrUKfR67IfwGjFxceA==
via: 1.1 fec77e486350d1bd33f526a760d8b5a4.cloudfront.net (CloudFront), 1.1 e4d3d5aafc7d7d582423c073065ab562.cloudfront.net (CloudFront), 1.1 google
date: Mon, 24 Oct 2022 21:42:36 GMT
age: 44917
etag: "e8e69ac951def18bc1e03ecd4fe8a21d3b825b27"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
blog.david-anton.com/wp-content/themes/imagely/assets/fonts/fontawesome/webfonts/fa-solid-900.woff2
82.165.101.27200 OK 74 kB URL HTTP/2 blog.david-anton.com/wp-content/themes/imagely/assets/fonts/fontawesome/webfonts/fa-solid-900.woff2
IP 82.165.101.27:0
File type Web Open Font Format (Version 2), TrueType, length 74348, version 329.31064\012- data
Hash 462806316fea535a6a57651bc2b000b0
80644191098f863f25be27841c0d92c452cf2327
4f9ee3d8f6e621642979e6a8f7e75c57cb9da34918cc08a38abfe178dbae1dd2
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/imagely/assets/fonts/fontawesome/webfonts/fa-solid-900.woff2 HTTP/1.1
Host: blog.david-anton.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://blog.david-anton.com/wp-content/cache/autoptimize/css/autoptimize_c48c38e06f091ed5554d3d5562236e33.css
Cookie: -bsBiMKuf=tow.vgMAn7eYV; TsBj_PQnDWSMKNhO=4KUVaQTXiC72l
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 25 Oct 2022 10:11:04 GMT
content-type: font/woff2
content-length: 74348
last-modified: Tue, 28 Dec 2021 18:19:23 GMT
cache-control: max-age=172800
expires: Thu, 27 Oct 2022 10:11:04 GMT
etag: "61cb552b-1226c"
x-cache-status: BYPASS
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
sp-ao.shortpixel.ai/client/to_webp,q_glossy,ret_img,w_1200/https://blog.david-anton.com/wp-content/uploads/wpja-number.jpg
194.242.11.186302 Found 0 B URL HTTP/2 sp-ao.shortpixel.ai/client/to_webp,q_glossy,ret_img,w_1200/https://blog.david-anton.com/wp-content/uploads/wpja-number.jpg
IP 194.242.11.186:0
ASN #34989 ServeTheWorld AS
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /client/to_webp,q_glossy,ret_img,w_1200/https://blog.david-anton.com/wp-content/uploads/wpja-number.jpg HTTP/1.1
Host: sp-ao.shortpixel.ai
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://blog.david-anton.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
date: Tue, 25 Oct 2022 10:11:13 GMT
content-type: text/html; charset=UTF-8
content-length: 0
location: https://blog.david-anton.com/wp-content/uploads/wpja-number.jpg
server: BunnyCDN-NO-830
cdn-pullzone: 257218
cdn-uid: ceac3dab-9909-4315-8d54-a27751b54dd0
cdn-requestcountrycode: NO
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
cache-control: public, max-age=86400
pragma: cache
cdn-cachedat: 10/25/2022 10:11:13
cdn-tag: 0; Domain: blog.david-anton.com; 302
cdn-proxyver: 1.03
cdn-requestpullcode: 302
cdn-requestpullsuccess: True
cdn-edgestorageid: 830
cdn-status: 302
cdn-requestid: da58163d66f6a4b1f7c32a7434a9c4ab
cdn-cache: MISS
X-Firefox-Spdy: h2
sp-ao.shortpixel.ai/client/to_webp,q_glossy,ret_img,w_500/https://blog.david-anton.com/wp-content/uploads/Obdachlose-Madrid.jpg
194.242.11.186302 Found 0 B URL HTTP/2 sp-ao.shortpixel.ai/client/to_webp,q_glossy,ret_img,w_500/https://blog.david-anton.com/wp-content/uploads/Obdachlose-Madrid.jpg
IP 194.242.11.186:0
ASN #34989 ServeTheWorld AS
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /client/to_webp,q_glossy,ret_img,w_500/https://blog.david-anton.com/wp-content/uploads/Obdachlose-Madrid.jpg HTTP/1.1
Host: sp-ao.shortpixel.ai
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://blog.david-anton.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
date: Tue, 25 Oct 2022 10:11:13 GMT
content-type: text/html; charset=UTF-8
content-length: 0
location: https://blog.david-anton.com/wp-content/uploads/Obdachlose-Madrid.jpg
server: BunnyCDN-NO-830
cdn-pullzone: 257218
cdn-uid: ceac3dab-9909-4315-8d54-a27751b54dd0
cdn-requestcountrycode: NO
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
cache-control: public, max-age=86400
pragma: cache
cdn-cachedat: 10/25/2022 10:11:13
cdn-tag: 0; Domain: blog.david-anton.com; 302
cdn-proxyver: 1.03
cdn-requestpullcode: 302
cdn-requestpullsuccess: True
cdn-edgestorageid: 830
cdn-status: 302
cdn-requestid: 72083df95d48b0933d6d9fc98ef43229
cdn-cache: MISS
X-Firefox-Spdy: h2
sp-ao.shortpixel.ai/client/to_webp,q_glossy,ret_img,w_1419/https://blog.david-anton.com/wp-content/uploads/Best-Hochzeitsfotos-2019.jpg
194.242.11.186302 Found 0 B URL HTTP/2 sp-ao.shortpixel.ai/client/to_webp,q_glossy,ret_img,w_1419/https://blog.david-anton.com/wp-content/uploads/Best-Hochzeitsfotos-2019.jpg
IP 194.242.11.186:0
ASN #34989 ServeTheWorld AS
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /client/to_webp,q_glossy,ret_img,w_1419/https://blog.david-anton.com/wp-content/uploads/Best-Hochzeitsfotos-2019.jpg HTTP/1.1
Host: sp-ao.shortpixel.ai
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://blog.david-anton.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
date: Tue, 25 Oct 2022 10:11:13 GMT
content-type: text/html; charset=UTF-8
content-length: 0
location: https://blog.david-anton.com/wp-content/uploads/Best-Hochzeitsfotos-2019.jpg
server: BunnyCDN-NO-830
cdn-pullzone: 257218
cdn-uid: ceac3dab-9909-4315-8d54-a27751b54dd0
cdn-requestcountrycode: NO
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
cache-control: public, max-age=86400
pragma: cache
cdn-cachedat: 10/25/2022 10:11:13
cdn-tag: 0; Domain: blog.david-anton.com; 302
cdn-proxyver: 1.03
cdn-requestpullcode: 302
cdn-requestpullsuccess: True
cdn-edgestorageid: 830
cdn-status: 302
cdn-requestid: d6aee7fafee6fa7cd32552ab00715a6c
cdn-cache: MISS
X-Firefox-Spdy: h2
blog.david-anton.com/wp-content/uploads/Hochzeitsfotograf-Offenburg-0005.jpg
82.165.101.27200 OK 224 kB URL HTTP/2 blog.david-anton.com/wp-content/uploads/Hochzeitsfotograf-Offenburg-0005.jpg
IP 82.165.101.27:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=5, xresolution=74, yresolution=82, resolutionunit=2, copyright=David Anton Asensio], baseline, precision 8, 1280x854, components 3\012- data
Size 224 kB (223975 bytes)
Hash d91a07ee1578064700da88c1a6d6cca6
079c34b5ae4ab125164feb935a92b8e1ef66c0e9
15bcf37e5c2c5cdf8a6a5fe02dc67e071d6da1f631526ad6dc12f7707b7455c8
GET /wp-content/uploads/Hochzeitsfotograf-Offenburg-0005.jpg HTTP/1.1
Host: blog.david-anton.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://blog.david-anton.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 25 Oct 2022 10:11:04 GMT
content-type: image/jpeg
content-length: 223975
last-modified: Fri, 31 Dec 2021 10:56:10 GMT
cache-control: max-age=5184000
expires: Sat, 24 Dec 2022 10:11:04 GMT
etag: "61cee1ca-36ae7"
x-cache-status: MISS
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
blog.david-anton.com/wp-content/uploads/wpja-number.jpg
82.165.101.27200 OK 74 kB URL HTTP/2 blog.david-anton.com/wp-content/uploads/wpja-number.jpg
IP 82.165.101.27:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1200x484, components 3\012- data
Hash 195f9a10efa381cd70682ed518b887f8
90663968c53912207527907fd5740096c4f2970f
984e8316ae7cf6d741d90b7fc33763d409dd9174bcaa59b51438bd56cd3806f0
GET /wp-content/uploads/wpja-number.jpg HTTP/1.1
Host: blog.david-anton.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://blog.david-anton.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 25 Oct 2022 10:11:04 GMT
content-type: image/jpeg
content-length: 74423
last-modified: Thu, 06 Feb 2020 09:40:59 GMT
cache-control: max-age=5184000
expires: Sat, 24 Dec 2022 10:11:04 GMT
etag: "5e3bdf2b-122b7"
x-cache-status: MISS
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
blog.david-anton.com/wp-content/uploads/Obdachlose-Madrid.jpg
82.165.101.27200 OK 105 kB URL HTTP/2 blog.david-anton.com/wp-content/uploads/Obdachlose-Madrid.jpg
IP 82.165.101.27:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=6, xresolution=86, yresolution=94, resolutionunit=2], baseline, precision 8, 500x333, components 3\012- data
Size 105 kB (104871 bytes)
Hash 87c8f3fcb2aca0831b2ca3f8c9576835
2dfa314a78b0d7ea8f868f0cb87d6cbecbde784f
875614fc8c80c9c63041b358324188617d5ab3f1d1cbf3efacc3c5619fce571b
GET /wp-content/uploads/Obdachlose-Madrid.jpg HTTP/1.1
Host: blog.david-anton.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://blog.david-anton.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 25 Oct 2022 10:11:04 GMT
content-type: image/jpeg
content-length: 104871
last-modified: Sun, 29 Dec 2019 10:18:53 GMT
cache-control: max-age=5184000
expires: Sat, 24 Dec 2022 10:11:04 GMT
etag: "5e087d8d-199a7"
x-cache-status: MISS
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
blog.david-anton.com/wp-content/uploads/Best-Hochzeitsfotos-2019.jpg
82.165.101.27200 OK 521 kB URL HTTP/2 blog.david-anton.com/wp-content/uploads/Best-Hochzeitsfotos-2019.jpg
IP 82.165.101.27:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1419x1844, components 3\012- data
Size 521 kB (520857 bytes)
Hash 00947a9be132fe12e94a6443e879a027
4354cc06e21c554dbc0e7de5231cf989012d5d95
a6a8f36a706fa8789ecac0168772f7a15470cb05b4e9f3d97d45060267ef5d4d
GET /wp-content/uploads/Best-Hochzeitsfotos-2019.jpg HTTP/1.1
Host: blog.david-anton.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://blog.david-anton.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 25 Oct 2022 10:11:04 GMT
content-type: image/jpeg
content-length: 520857
last-modified: Sun, 22 Dec 2019 11:09:23 GMT
cache-control: max-age=5184000
expires: Sat, 24 Dec 2022 10:11:04 GMT
etag: "5dff4ee3-7f299"
x-cache-status: MISS
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash acec9d810585c808df0df23e76f2e41e
8e1b499472279dd3bc05384556be258a8c23d21d
9c7eb8919c7f9f8133d2e9cc1c11ba39cae32bcaf3c012d91020d1338156680b
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9C7EB8919C7F9F8133D2E9CC1C11BA39CAE32BCAF3C012D91020D1338156680B"
Last-Modified: Tue, 25 Oct 2022 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21556
Expires: Tue, 25 Oct 2022 16:10:30 GMT
Date: Tue, 25 Oct 2022 10:11:14 GMT
Connection: keep-alive
sp-ao.shortpixel.ai/client/to_webp,q_glossy,ret_img,w_192,h_192/https://blog.david-anton.com/wp-content/uploads/cropped-favicon-192x192.png
194.242.11.186302 Found 0 B URL HTTP/2 sp-ao.shortpixel.ai/client/to_webp,q_glossy,ret_img,w_192,h_192/https://blog.david-anton.com/wp-content/uploads/cropped-favicon-192x192.png
IP 194.242.11.186:0
ASN #34989 ServeTheWorld AS
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /client/to_webp,q_glossy,ret_img,w_192,h_192/https://blog.david-anton.com/wp-content/uploads/cropped-favicon-192x192.png HTTP/1.1
Host: sp-ao.shortpixel.ai
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://blog.david-anton.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
date: Tue, 25 Oct 2022 10:11:14 GMT
content-type: text/html; charset=UTF-8
content-length: 0
location: https://blog.david-anton.com/wp-content/uploads/cropped-favicon-192x192.png
server: BunnyCDN-NO-830
cdn-pullzone: 257218
cdn-uid: ceac3dab-9909-4315-8d54-a27751b54dd0
cdn-requestcountrycode: NO
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
cache-control: public, max-age=86400
pragma: cache
cdn-cachedat: 10/25/2022 10:11:14
cdn-tag: 0; Domain: blog.david-anton.com; 302
cdn-proxyver: 1.03
cdn-requestpullcode: 302
cdn-requestpullsuccess: True
cdn-edgestorageid: 830
cdn-status: 302
cdn-requestid: e42fe26af20079996a8216403dd4da68
cdn-cache: MISS
X-Firefox-Spdy: h2
www.google-analytics.com/analytics.js
142.250.74.174200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 142.250.74.174:0
File type ASCII text, with very long lines (1325)
Hash 47e6f374ca946fddd5b59871b325736c
baa9282efc8785e84d247c3bff518eaa45f101c4
16580b5c87c58e5702e411f1888fdef511094e4cd6d62bb47d16291ffb25985e
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://blog.david-anton.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20039
date: Tue, 25 Oct 2022 08:41:09 GMT
expires: Tue, 25 Oct 2022 10:41:09 GMT
cache-control: public, max-age=7200
age: 5405
last-modified: Tue, 27 Sep 2022 22:01:05 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
blog.david-anton.com/wp-content/uploads/cropped-favicon-192x192.png
82.165.101.27200 OK 4.6 kB URL HTTP/2 blog.david-anton.com/wp-content/uploads/cropped-favicon-192x192.png
IP 82.165.101.27:0
File type PNG image data, 192 x 192, 8-bit/color RGBA, non-interlaced\012- data
Hash 144036e0d7cfec77fa7664c3da50592c
d061ed6a781c7ed88b8716bb5ad7b4aed430c10a
a11b9c000a767fefe675115e92a3f6b051677fd0aaa7b89119be37448484cbfa
GET /wp-content/uploads/cropped-favicon-192x192.png HTTP/1.1
Host: blog.david-anton.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://blog.david-anton.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 25 Oct 2022 10:11:05 GMT
content-type: image/png
content-length: 4639
last-modified: Fri, 30 Nov 2018 11:36:33 GMT
cache-control: max-age=5184000
expires: Sat, 24 Dec 2022 10:11:05 GMT
etag: "5c0120c1-121f"
x-cache-status: MISS
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
use.fontawesome.com/releases/v5.3.1/js/all.js?ver=5.3.1
172.64.132.15200 OK 349 kB URL HTTP/2 use.fontawesome.com/releases/v5.3.1/js/all.js?ver=5.3.1
IP 172.64.132.15:0
File type ASCII text, with very long lines (65351)
Size 349 kB (348964 bytes)
Hash b1ed2671de0852c284723b9cdfe2a1cb
073f11166e215864bba52ccb1d36d2116b7fa258
41a999a550d88efe4e8e37b96c8ab9e68e197b66690c46c9d9ba8f7dab221604
GET /releases/v5.3.1/js/all.js?ver=5.3.1 HTTP/1.1
Host: use.fontawesome.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://blog.david-anton.com
Connection: keep-alive
Referer: https://blog.david-anton.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 25 Oct 2022 10:11:13 GMT
content-type: application/javascript
x-amz-id-2: 9UoJRcy+jE/ASeTSXWx35ugLuH8IaoV93ExbZX/yQzXRJhxDU4/VcGGUZDVcu/cQgL6DPC7Zys8=
x-amz-request-id: 25PYWRGN2Z7GQACP
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding
last-modified: Wed, 30 Jun 2021 15:42:14 GMT
etag: W/"d0482db440697a659af4980d2e841891"
cache-control: max-age=31556926
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=vPbPPBYlM5PyoAI%2FculI%2BPT4eirZBaucCPCDcqBtELWFYqg4gibMruqXO1uZxPAtaOIGKxIKFdgCaT7NJ%2FCYBZwcqXuReknXpBlD3wGngxnJkc49VVxrSG%2B51vQHcvE4pD2NU%2Fn9"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 75fa2ab96ecc06a6-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
blog.david-anton.com/wp-includes/js/wp-emoji-release.min.js?ver=6.0.3
82.165.101.27200 OK 591 kB URL HTTP/2 blog.david-anton.com/wp-includes/js/wp-emoji-release.min.js?ver=6.0.3
IP 82.165.101.27:0
File type ASCII text, with very long lines (15660)
Size 591 kB (591365 bytes)
Hash 1b4207f095151db9235cd0c5363e9357
50640c0656b35cecd81765f131abd24f4ee99965
11484a43de228f5a331fe30527f057f7fba4b07012d89e573360c15fede963d4
GET /wp-includes/js/wp-emoji-release.min.js?ver=6.0.3 HTTP/1.1
Host: blog.david-anton.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://blog.david-anton.com/
Cookie: -bsBiMKuf=tow.vgMAn7eYV; TsBj_PQnDWSMKNhO=4KUVaQTXiC72l
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 25 Oct 2022 10:11:04 GMT
content-type: application/javascript
last-modified: Wed, 31 Aug 2022 10:11:31 GMT
cache-control: max-age=172800
expires: Thu, 27 Oct 2022 10:11:04 GMT
etag: W/"630f33d3-48b9"
x-cache-status: BYPASS
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
sp-ao.shortpixel.ai/client/to_webp,q_glossy,ret_img,w_32,h_32/https://blog.david-anton.com/wp-content/uploads/cropped-favicon-32x32.png
194.242.11.186302 Found 0 B URL HTTP/2 sp-ao.shortpixel.ai/client/to_webp,q_glossy,ret_img,w_32,h_32/https://blog.david-anton.com/wp-content/uploads/cropped-favicon-32x32.png
IP 194.242.11.186:0
ASN #34989 ServeTheWorld AS
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /client/to_webp,q_glossy,ret_img,w_32,h_32/https://blog.david-anton.com/wp-content/uploads/cropped-favicon-32x32.png HTTP/1.1
Host: sp-ao.shortpixel.ai
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://blog.david-anton.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
date: Tue, 25 Oct 2022 10:11:14 GMT
content-type: text/html; charset=UTF-8
content-length: 0
location: https://blog.david-anton.com/wp-content/uploads/cropped-favicon-32x32.png
server: BunnyCDN-NO-830
cdn-pullzone: 257218
cdn-uid: ceac3dab-9909-4315-8d54-a27751b54dd0
cdn-requestcountrycode: NO
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
cache-control: public, max-age=86400
pragma: cache
cdn-cachedat: 10/25/2022 10:11:14
cdn-tag: 0; Domain: blog.david-anton.com; 302
cdn-proxyver: 1.03
cdn-requestpullcode: 302
cdn-requestpullsuccess: True
cdn-edgestorageid: 830
cdn-status: 302
cdn-requestid: 488d2761a235d6dfaf15952ae4c8676d
cdn-cache: MISS
X-Firefox-Spdy: h2
blog.david-anton.com/wp-content/uploads/cropped-favicon-32x32.png
82.165.101.27200 OK 947 B URL HTTP/2 blog.david-anton.com/wp-content/uploads/cropped-favicon-32x32.png
IP 82.165.101.27:0
File type PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced\012- data
Hash 084f979506c42d6a7b9b6d0277aa674a
3d278950ef32dd7aa762a42e5d3ebc10f134c761
6389891f3abd3f417fa4ab0fe511b546e9bdc8d9ff13d1235a0c3e5280dd011f
GET /wp-content/uploads/cropped-favicon-32x32.png HTTP/1.1
Host: blog.david-anton.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://blog.david-anton.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 25 Oct 2022 10:11:05 GMT
content-type: image/png
content-length: 947
x-accel-version: 0.01
last-modified: Fri, 30 Nov 2018 11:36:33 GMT
etag: "3b3-57be0360ea6e5"
cache-control: max-age=5184000
expires: Sat, 24 Dec 2022 10:11:05 GMT
x-cache-status: MISS
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
region1.google-analytics.com/g/collect?v=2&tid=G-MGRL7TWHZV>m=2oeaj0&_p=1803843875&gdid=dZTNiMT&cid=1403604007.1666692672&ul=en-us&sr=1280x1024&_s=1&sid=1666692672&sct=1&seg=0&dl=https%3A%2F%2Fblog.david-anton.com%2F&dt=Hochzeitsfotograf%20Karlsruhe&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1
216.239.32.36204 No Content 0 B URL HTTP/2 region1.google-analytics.com/g/collect?v=2&tid=G-MGRL7TWHZV>m=2oeaj0&_p=1803843875&gdid=dZTNiMT&cid=1403604007.1666692672&ul=en-us&sr=1280x1024&_s=1&sid=1666692672&sct=1&seg=0&dl=https%3A%2F%2Fblog.david-anton.com%2F&dt=Hochzeitsfotograf%20Karlsruhe&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1
IP 216.239.32.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-MGRL7TWHZV>m=2oeaj0&_p=1803843875&gdid=dZTNiMT&cid=1403604007.1666692672&ul=en-us&sr=1280x1024&_s=1&sid=1666692672&sct=1&seg=0&dl=https%3A%2F%2Fblog.david-anton.com%2F&dt=Hochzeitsfotograf%20Karlsruhe&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1 HTTP/1.1
Host: region1.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://blog.david-anton.com
Connection: keep-alive
Referer: https://blog.david-anton.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://blog.david-anton.com
date: Tue, 25 Oct 2022 10:11:14 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
blog.david-anton.com/page/2/
82.165.101.27200 OK 13 kB URL HTTP/2 blog.david-anton.com/page/2/
IP 82.165.101.27:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (48666)
Hash 29397273136d5a72bf9fe7b559676135
9ab481d77730b533c27b94e83955aa99dd6e407a
d4ddc5d5be3a7e6dbf5f8a3972314318e44086961a3fe2c93143c199f722dae0
Analyzer Verdict Alert fortinet Phishing
GET /page/2/ HTTP/1.1
Host: blog.david-anton.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
Connection: keep-alive
Referer: https://blog.david-anton.com/
Cookie: -bsBiMKuf=tow.vgMAn7eYV; TsBj_PQnDWSMKNhO=4KUVaQTXiC72l; cookielawinfo-checkbox-necessary=yes; cookielawinfo-checkbox-non-necessary=yes; _ga_MGRL7TWHZV=GS1.1.1666692672.1.0.1666692672.0.0.0; _ga=GA1.2.1403604007.1666692672; _gid=GA1.2.928515651.1666692672; _gat_gtag_UA_1058630_21=1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 25 Oct 2022 10:11:06 GMT
content-type: text/html; charset=UTF-8
content-length: 12675
x-ua-compatible: IE=edge
link: <https://blog.david-anton.com/wp-json/>; rel="https://api.w.org/"
set-cookie: -bsBiMKuf=tow.vgMAn7eYV; expires=Wed, 26-Oct-2022 10:11:05 GMT; Max-Age=86400; path=/; secure
TsBj_PQnDWSMKNhO=4KUVaQTXiC72l; expires=Wed, 26-Oct-2022 10:11:05 GMT; Max-Age=86400; path=/; secure
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=172800
expires: Thu, 27 Oct 2022 10:11:05 GMT
x-cache-status: BYPASS
x-powered-by: PHP/7.4.32, PleskLin
X-Firefox-Spdy: h2
use.fontawesome.com/releases/v5.3.1/css/v4-shims.css?ver=6.0.3
172.64.132.15200 OK 0 B URL HTTP/2 use.fontawesome.com/releases/v5.3.1/css/v4-shims.css?ver=6.0.3
IP 172.64.132.15:0
GET /releases/v5.3.1/css/v4-shims.css?ver=6.0.3 HTTP/1.1
Host: use.fontawesome.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://blog.david-anton.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 25 Oct 2022 10:11:13 GMT
content-type: text/css
x-amz-id-2: 6c3AvLmGmOwwCcDPk6sovm99Zj7Kb34jWca/tszgRtpZ4cRe+Zz6C/0WeIoDKdyz6GuU9W4Txk8=
x-amz-request-id: 8EDFH65M9ZMHGQZZ
last-modified: Wed, 30 Jun 2021 15:42:14 GMT
etag: W/"25b2445e0c1838b110583405b3ec0177"
cache-control: max-age=31556926
cf-cache-status: HIT
age: 645755
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=5Nc81rKNgxw6Jqsmi99WC4X4%2BlYlEwDRwp6n7MKfBVDu1PJEQhhy6P1UsvHW4qipYbHnq1TYinCnnUwbrfxgbaGBmx2xaVmpIgTg7%2FtHIQpQNO5oSwzV208iPb4WQ1hwyrZ5BbSv"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 75fa2ab95dae7321-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
blog.david-anton.com/wp-content/cache/autoptimize/js/autoptimize_single_c9ecd41de2bf0fcc902760f68c2ef6a4.js?ver=3.28
82.165.101.27200 OK 0 B URL HTTP/2 blog.david-anton.com/wp-content/cache/autoptimize/js/autoptimize_single_c9ecd41de2bf0fcc902760f68c2ef6a4.js?ver=3.28
IP 82.165.101.27:0
GET /wp-content/cache/autoptimize/js/autoptimize_single_c9ecd41de2bf0fcc902760f68c2ef6a4.js?ver=3.28 HTTP/1.1
Host: blog.david-anton.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://blog.david-anton.com/
Cookie: -bsBiMKuf=tow.vgMAn7eYV; TsBj_PQnDWSMKNhO=4KUVaQTXiC72l
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 25 Oct 2022 10:11:04 GMT
content-type: application/javascript
last-modified: Wed, 31 Aug 2022 10:12:19 GMT
cache-control: max-age=30672000, public, immutable
expires: Sun, 15 Oct 2023 10:11:04 GMT
etag: W/"630f3403-e49"
x-cache-status: BYPASS
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
blog.david-anton.com/wp-includes/css/dashicons.min.css?ver=6.0.3
82.165.101.27200 OK 0 B URL HTTP/2 blog.david-anton.com/wp-includes/css/dashicons.min.css?ver=6.0.3
IP 82.165.101.27:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/css/dashicons.min.css?ver=6.0.3 HTTP/1.1
Host: blog.david-anton.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://blog.david-anton.com/
Cookie: -bsBiMKuf=tow.vgMAn7eYV; TsBj_PQnDWSMKNhO=4KUVaQTXiC72l
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 25 Oct 2022 10:11:04 GMT
content-type: text/css
last-modified: Tue, 28 Dec 2021 18:21:44 GMT
cache-control: max-age=5184000
expires: Sat, 24 Dec 2022 10:11:04 GMT
etag: W/"61cb55b8-e688"
x-cache-status: BYPASS
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
blog.david-anton.com/wp-content/cache/autoptimize/js/autoptimize_single_dffa195b546cf1dfd52f2206955eb892.js?ver=2.1.2
82.165.101.27200 OK 0 B URL HTTP/2 blog.david-anton.com/wp-content/cache/autoptimize/js/autoptimize_single_dffa195b546cf1dfd52f2206955eb892.js?ver=2.1.2
IP 82.165.101.27:0
GET /wp-content/cache/autoptimize/js/autoptimize_single_dffa195b546cf1dfd52f2206955eb892.js?ver=2.1.2 HTTP/1.1
Host: blog.david-anton.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://blog.david-anton.com/
Cookie: -bsBiMKuf=tow.vgMAn7eYV; TsBj_PQnDWSMKNhO=4KUVaQTXiC72l
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 25 Oct 2022 10:11:04 GMT
content-type: application/javascript
last-modified: Wed, 31 Aug 2022 10:12:19 GMT
cache-control: max-age=30672000, public, immutable
expires: Sun, 15 Oct 2023 10:11:04 GMT
etag: W/"630f3403-6c14"
x-cache-status: BYPASS
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
blog.david-anton.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
82.165.101.27200 OK 0 B URL HTTP/2 blog.david-anton.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP 82.165.101.27:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: blog.david-anton.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://blog.david-anton.com/
Cookie: -bsBiMKuf=tow.vgMAn7eYV; TsBj_PQnDWSMKNhO=4KUVaQTXiC72l
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 25 Oct 2022 10:11:04 GMT
content-type: application/javascript
last-modified: Tue, 28 Dec 2021 18:21:44 GMT
cache-control: max-age=172800
expires: Thu, 27 Oct 2022 10:11:04 GMT
etag: W/"61cb55b8-2bd8"
x-cache-status: BYPASS
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
blog.david-anton.com/wp-content/cache/autoptimize/css/autoptimize_c48c38e06f091ed5554d3d5562236e33.css
82.165.101.27200 OK 0 B URL HTTP/2 blog.david-anton.com/wp-content/cache/autoptimize/css/autoptimize_c48c38e06f091ed5554d3d5562236e33.css
IP 82.165.101.27:0
GET /wp-content/cache/autoptimize/css/autoptimize_c48c38e06f091ed5554d3d5562236e33.css HTTP/1.1
Host: blog.david-anton.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://blog.david-anton.com/
Cookie: -bsBiMKuf=tow.vgMAn7eYV; TsBj_PQnDWSMKNhO=4KUVaQTXiC72l
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 25 Oct 2022 10:11:04 GMT
content-type: text/css
last-modified: Wed, 31 Aug 2022 10:31:31 GMT
cache-control: max-age=30672000, public, immutable
expires: Sun, 15 Oct 2023 10:11:04 GMT
etag: W/"630f3883-5f7dd"
x-cache-status: BYPASS
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
use.fontawesome.com/releases/v5.3.1/js/v4-shims.js?ver=5.3.1
172.64.132.15200 OK 0 B URL HTTP/2 use.fontawesome.com/releases/v5.3.1/js/v4-shims.js?ver=5.3.1
IP 172.64.132.15:0
GET /releases/v5.3.1/js/v4-shims.js?ver=5.3.1 HTTP/1.1
Host: use.fontawesome.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://blog.david-anton.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 25 Oct 2022 10:11:13 GMT
content-type: application/javascript
x-amz-id-2: PNbVKTAlC1W6LMoIilGv24koNTAm5uQ8ZzPiglFjOVPXndway16WjopLbDuhtbNvmqRTOAH7Bis=
x-amz-request-id: F0PHA2EYSHV49GC7
last-modified: Wed, 30 Jun 2021 15:42:14 GMT
etag: W/"ee849cdefc4ea73142659f04402a1a99"
cache-control: max-age=31556926
cf-cache-status: HIT
age: 31459695
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ur2%2B7HMBNnrWRLM%2BXLAdVDLTa6DHb%2B1oKdLm7tkklgZ1XOEIy5FhzHlvJHfgKgwDQe7EoWIErNq%2BtuYh6iOu7x2hkjxcn2Dc8kjBvRmkMLbKWJhT46WqR9%2Bii4oZSb14ceNb7j3O"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 75fa2ab93d747321-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
blog.david-anton.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
82.165.101.27200 OK 0 B URL HTTP/2 blog.david-anton.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
IP 82.165.101.27:0
GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.0 HTTP/1.1
Host: blog.david-anton.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://blog.david-anton.com/
Cookie: -bsBiMKuf=tow.vgMAn7eYV; TsBj_PQnDWSMKNhO=4KUVaQTXiC72l
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 25 Oct 2022 10:11:04 GMT
content-type: application/javascript
last-modified: Tue, 28 Dec 2021 18:21:44 GMT
cache-control: max-age=172800
expires: Thu, 27 Oct 2022 10:11:04 GMT
etag: W/"61cb55b8-15db1"
x-cache-status: BYPASS
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
blog.david-anton.com/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0
82.165.101.27200 OK 0 B URL HTTP/2 blog.david-anton.com/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0
IP 82.165.101.27:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0 HTTP/1.1
Host: blog.david-anton.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://blog.david-anton.com/
Cookie: -bsBiMKuf=tow.vgMAn7eYV; TsBj_PQnDWSMKNhO=4KUVaQTXiC72l
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 25 Oct 2022 10:11:04 GMT
content-type: application/javascript
last-modified: Wed, 31 Aug 2022 10:11:31 GMT
cache-control: max-age=172800
expires: Thu, 27 Oct 2022 10:11:04 GMT
etag: W/"630f33d3-4ac6"
x-cache-status: BYPASS
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2