r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 5eb7c9bc996a0ff420e58af45526f053
8c2614832b8efe1c9da0bbd465d6f3f172d95a9e
c085cf277dd0429fe15e4a4bce5595636e9f2204d5a8e77220f8bf88adf4068f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C085CF277DD0429FE15E4A4BCE5595636E9F2204D5A8E77220F8BF88ADF4068F"
Last-Modified: Sun, 29 Jan 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11728
Expires: Mon, 30 Jan 2023 23:37:05 GMT
Date: Mon, 30 Jan 2023 20:21:37 GMT
Connection: keep-alive
cafedelafonda.com/
301 Moved Permanently 707 B IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF, LF line terminators
Hash 1304294c0823ca486542ba408ed761e3
b2a70fb2d810ca13985882e6981f33998823e83e
3bbe72f3baa8ec61de17a1d767fca58704769684b7abe9161d0c4eaf4c8f0982
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: cafedelafonda.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
content-type: text/html
content-length: 707
date: Mon, 30 Jan 2023 20:21:37 GMT
server: LiteSpeed
location: https://cafedelafonda.com/
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 3eb88dea4fe00db1182370e72683c3ab
ca520abf1e91bfd2aef40c6a1270a911071e8922
d8083ee567c7b3023111dc30f32c94237df7db30d4d2daaea0a569e8a3069ad7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D8083EE567C7B3023111DC30F32C94237DF7DB30D4D2DAAEA0A569E8A3069AD7"
Last-Modified: Sat, 28 Jan 2023 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11391
Expires: Mon, 30 Jan 2023 23:31:28 GMT
Date: Mon, 30 Jan 2023 20:21:37 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 302c7548412192add063ad6c8b99cf3b
e5d178931a27db036ce8daae302594d3ff7050b8
fc2bd9091006189e67e8074093805ee5492ce16e1dbfba32e083abeeae34969d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "FC2BD9091006189E67E8074093805EE5492CE16E1DBFBA32E083ABEEAE34969D"
Last-Modified: Sat, 28 Jan 2023 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6777
Expires: Mon, 30 Jan 2023 22:14:34 GMT
Date: Mon, 30 Jan 2023 20:21:37 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash bf0c602d32b3c14606f22a86183b5e3c
6eabd8d83475eba731968abe1a05a8bfd272f160
6c6a7c519a9e950c2445ed874a25211a94dd4d3cf3afb0103af9dcd1dbd5ff9e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Content-Length, Retry-After, Content-Type, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Mon, 30 Jan 2023 19:35:46 GMT
content-type: application/json
age: 2751
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP
File type PEM certificate\012- , ASCII text
Hash 7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: 8wA7S6kl2ZZVrfXe+gpWVcBjAiM7vMlPacACWLclCzypcwFXvK28N8u01Bi+0sJtXn3SdOhCQu8=
x-amz-request-id: 96M7TN0Y6JWANV9J
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Mon, 30 Jan 2023 19:21:55 GMT
age: 3582
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Mon, 30 Jan 2023 20:21:37 GMT
content-type: application/json
content-length: 12
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-expose-headers: content-type
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Pragma, Last-Modified, ETag, Content-Length, Expires, Cache-Control, Retry-After, Content-Type, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Mon, 30 Jan 2023 19:41:41 GMT
age: 2396
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 22b9916fc1fafc9bdc9bb37f9eac8a9a
86f640e134a741a0f906a8e3a0f5c6659dd0e394
a29ee843c8a39551a1507cc6ad949ad509e33aaae8b72c58ac4884bad8b0b38e
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A29EE843C8A39551A1507CC6AD949AD509E33AAAE8B72C58AC4884BAD8B0B38E"
Last-Modified: Sun, 29 Jan 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6471
Expires: Mon, 30 Jan 2023 22:09:28 GMT
Date: Mon, 30 Jan 2023 20:21:37 GMT
Connection: keep-alive
push.services.mozilla.com/
101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: MBKpjBJCPQIuU1elJJkmXg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 3TATnK/5d/17HXrmhVWNAURfCD0=
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash dfb84426fed94988d5c90372baff059c
f1c4740830034ff8a5759d59ae3f657ea524d083
d97efec67504b084ca6ff9e2af973b45b916f90aa021603e3615806bb2737b6a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D97EFEC67504B084CA6FF9E2AF973B45B916F90AA021603E3615806BB2737B6A"
Last-Modified: Sun, 29 Jan 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6358
Expires: Mon, 30 Jan 2023 22:07:37 GMT
Date: Mon, 30 Jan 2023 20:21:39 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash dfb84426fed94988d5c90372baff059c
f1c4740830034ff8a5759d59ae3f657ea524d083
d97efec67504b084ca6ff9e2af973b45b916f90aa021603e3615806bb2737b6a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D97EFEC67504B084CA6FF9E2AF973B45B916F90AA021603E3615806BB2737B6A"
Last-Modified: Sun, 29 Jan 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6358
Expires: Mon, 30 Jan 2023 22:07:37 GMT
Date: Mon, 30 Jan 2023 20:21:39 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash dfb84426fed94988d5c90372baff059c
f1c4740830034ff8a5759d59ae3f657ea524d083
d97efec67504b084ca6ff9e2af973b45b916f90aa021603e3615806bb2737b6a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D97EFEC67504B084CA6FF9E2AF973B45B916F90AA021603E3615806BB2737B6A"
Last-Modified: Sun, 29 Jan 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6358
Expires: Mon, 30 Jan 2023 22:07:37 GMT
Date: Mon, 30 Jan 2023 20:21:39 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash dfb84426fed94988d5c90372baff059c
f1c4740830034ff8a5759d59ae3f657ea524d083
d97efec67504b084ca6ff9e2af973b45b916f90aa021603e3615806bb2737b6a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D97EFEC67504B084CA6FF9E2AF973B45B916F90AA021603E3615806BB2737B6A"
Last-Modified: Sun, 29 Jan 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6358
Expires: Mon, 30 Jan 2023 22:07:37 GMT
Date: Mon, 30 Jan 2023 20:21:39 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5f0097a6-af00-4a1c-8faa-f9516e27b31a.jpeg
200 OK 4.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5f0097a6-af00-4a1c-8faa-f9516e27b31a.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4205d8106659e00fff1cbe9262918b8c
ab4f6528594a1725934727dc7d834c028a79c609
31f1a28602a194bd0856495d4d81d5c72cd7ff4e5bad6bdd1a31ec3041f4a2cc
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5f0097a6-af00-4a1c-8faa-f9516e27b31a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4475
x-amzn-requestid: b7b272d6-3089-4f33-89b5-5cb388640e10
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fa_e6HsaIAMF5Lg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d445f8-1789f7f4264270916da323db;Sampled=0
x-amzn-remapped-date: Fri, 27 Jan 2023 21:45:28 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 4jPbm4WufkUKm7ljLvpHrJUFhr-JQ_nl3iYfI5S8nTqEszFdUtz9EQ==
via: 1.1 8f22423015641505b8c857a37450d6c0.cloudfront.net (CloudFront), 1.1 4f3feb5c4393987d42d1971d404d7cea.cloudfront.net (CloudFront), 1.1 google
date: Sun, 29 Jan 2023 21:56:46 GMT
age: 80693
etag: "ab4f6528594a1725934727dc7d834c028a79c609"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6df754eb-70f9-4576-ac48-68a6ae719511.jpeg
200 OK 9.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6df754eb-70f9-4576-ac48-68a6ae719511.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 51aa950d5eed7b90cab6632107092edc
e4388ced02e5576867e77547496dec1ac2338ef7
588830e5f725e8e56270565e40f817f2658b0ee7c0425d138e5f65a17ff40483
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6df754eb-70f9-4576-ac48-68a6ae719511.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9457
x-amzn-requestid: 7c48e5ca-2128-43da-ba83-fd91568af1ef
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fhkBOGHVoAMFQtw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d6e6d4-1b850ffd543f51f92dec3894;Sampled=0
x-amzn-remapped-date: Sun, 29 Jan 2023 21:36:20 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: soTFEnYjNcti77h3FpnztwzR7ypv68NbyoI6DxS0NhU412ykFsWAgA==
via: 1.1 0c96ded7ff282d2dbcf47c918b6bb500.cloudfront.net (CloudFront), 1.1 be082a2326b7d49643607b097f1e7180.cloudfront.net (CloudFront), 1.1 google
date: Sun, 29 Jan 2023 22:00:38 GMT
age: 80461
etag: "e4388ced02e5576867e77547496dec1ac2338ef7"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F52796f60-dafe-46ba-9c7a-a08ce5e16c34.jpeg
200 OK 8.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F52796f60-dafe-46ba-9c7a-a08ce5e16c34.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash fe31ee140c2fd62e616c8a1edc9e78bb
7aa5fbdc8156514770ae620e81f1afef1c77890f
799af4bf9fa07ed27ebdc9d1a3344ee8a2b6529f076c263495b93290c47a1cc4
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F52796f60-dafe-46ba-9c7a-a08ce5e16c34.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8464
x-amzn-requestid: bf2cf356-ebb1-469b-ba35-a79bb009cad6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fhj3qGeboAMFzNw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d6e697-7c96841f52b6a96d1b0eaf34;Sampled=0
x-amzn-remapped-date: Sun, 29 Jan 2023 21:35:19 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: UNub7Gd4S0ogn5EJhtJVu8q1qML5_4eL2lIPQXiAuXy_q-XiR4s-5w==
via: 1.1 cd48ffda04934d18865e47e99ea080bc.cloudfront.net (CloudFront), 1.1 476c2ba6d9f6cd69dbcedbd65688cbc0.cloudfront.net (CloudFront), 1.1 google
date: Sun, 29 Jan 2023 21:55:21 GMT
etag: "7aa5fbdc8156514770ae620e81f1afef1c77890f"
content-type: image/jpeg
age: 80778
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdfb887e5-87fa-4855-b0ee-712d39779fa0.jpeg
200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdfb887e5-87fa-4855-b0ee-712d39779fa0.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b7a0759c043594fbe85af422b59b8227
a05cfaad16078f42218dae233da38f6f5dff8487
e898d6ef1b3998fb9322a8fc190069ec5f7b3582bfe8397a2367497d84a27549
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdfb887e5-87fa-4855-b0ee-712d39779fa0.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11568
x-amzn-requestid: 2e85f75e-ab9d-4d45-adad-7313950a9647
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fSWbxGwnoAMFejw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d0d117-68f1a9e71a07a0453311fd32;Sampled=0
x-amzn-remapped-date: Wed, 25 Jan 2023 06:49:59 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: dbz3wXGNaetf6xvRE98rshyHy-FVfDo8co-4VDL0a4Qe3E4U8A82Og==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 2bedbeaa49b4a77447d30097858cb81a.cloudfront.net (CloudFront), 1.1 google
date: Sun, 29 Jan 2023 23:25:02 GMT
age: 75397
etag: "a05cfaad16078f42218dae233da38f6f5dff8487"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F72e6599c-6a41-4dd2-a346-b15fa84cb20a.jpeg
200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F72e6599c-6a41-4dd2-a346-b15fa84cb20a.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 65c02d8a1b0d6a210cb2a649c5c67469
027dbc7a104c922904f067ed15d696c363c11774
89d5443a1d313c632d09a583ef602aa4645a16986076387329f434262d15b0a1
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F72e6599c-6a41-4dd2-a346-b15fa84cb20a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10997
x-amzn-requestid: a6fac0ab-1acf-4808-8785-3b4ec5e32edf
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fhj30FX7IAMFa5w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d6e698-005109ec2e76529e793678d6;Sampled=0
x-amzn-remapped-date: Sun, 29 Jan 2023 21:35:20 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: skGKI_MWvDwpAbGibUcr8wTlimgoPU9ZYhEHltd3uhdJZ_GoNznVAA==
via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 325ed3ba58a560748d886354beef39c0.cloudfront.net (CloudFront), 1.1 google
date: Sun, 29 Jan 2023 21:53:08 GMT
age: 80911
etag: "027dbc7a104c922904f067ed15d696c363c11774"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3bb7921c-8aaf-40cd-bf87-43903c3f1a74.jpeg
200 OK 7.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3bb7921c-8aaf-40cd-bf87-43903c3f1a74.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 3e04b9eaf7449828136ad59e4c9d69f1
b820be4ed885dcf288eb6460c57e1fa7b1c7c476
df75cf7183d401a19655aab025d08ad2c498573c88b32e9b258d951d2993b936
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3bb7921c-8aaf-40cd-bf87-43903c3f1a74.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7679
x-amzn-requestid: 0c7983d5-6040-44e9-b394-21c3784702a2
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fhkEtEfHoAMFaNA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d6e6ea-54c55dbd09ca642048af8916;Sampled=0
x-amzn-remapped-date: Sun, 29 Jan 2023 21:36:42 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: Wx-qjsrMLYpLmE-8QmpR46BeRySbUGL2Rrr6LqhEQ8jaEEj_6Aj0qg==
via: 1.1 26ca01ec7377e425b59b6a08cb1ec342.cloudfront.net (CloudFront), 1.1 d6a002c70d55f415107618b0750d493c.cloudfront.net (CloudFront), 1.1 google
date: Sun, 29 Jan 2023 21:52:09 GMT
age: 80970
etag: "b820be4ed885dcf288eb6460c57e1fa7b1c7c476"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
cafedelafonda.com/wp-includes/js/mediaelement/mediaelementplayer-legacy.min.css?ver=4.2.17
200 OK 2.4 kB URL HTTP/2 cafedelafonda.com/wp-includes/js/mediaelement/mediaelementplayer-legacy.min.css?ver=4.2.17
IP
File type ASCII text, with very long lines (11256), with no line terminators
Hash ce94f62588d05264ac0148712111cb11
518bcd922f54169aeb199c0ccbc5877165ac218e
84ab658a69c39f424be0b27f61d612447d01606fce33beb962cbea53627d8c81
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/mediaelement/mediaelementplayer-legacy.min.css?ver=4.2.17 HTTP/1.1
Host: cafedelafonda.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://cafedelafonda.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 06 Feb 2023 20:21:40 GMT
content-type: text/css
last-modified: Thu, 10 Dec 2020 04:22:18 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2394
date: Mon, 30 Jan 2023 20:21:40 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
cafedelafonda.com/wp-includes/css/dist/block-library/style.min.css?ver=6.1.1
200 OK 12 kB URL HTTP/2 cafedelafonda.com/wp-includes/css/dist/block-library/style.min.css?ver=6.1.1
IP
File type ASCII text, with very long lines (47826)
Hash c4d7cc056b49b00e05cc29cc59aa3d5a
48c426bec60099d2a8628df430ed682c72aab42a
8009c12f2674a8d38401f4b5faad1fef2cfcd18a8c927ed2561ae9d7de9b57b5
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/css/dist/block-library/style.min.css?ver=6.1.1 HTTP/1.1
Host: cafedelafonda.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://cafedelafonda.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 06 Feb 2023 20:21:40 GMT
content-type: text/css
last-modified: Wed, 16 Nov 2022 03:30:31 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 11616
date: Mon, 30 Jan 2023 20:21:40 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
cafedelafonda.com/wp-includes/js/mediaelement/wp-mediaelement.min.css?ver=6.1.1
200 OK 982 B URL HTTP/2 cafedelafonda.com/wp-includes/js/mediaelement/wp-mediaelement.min.css?ver=6.1.1
IP
File type ASCII text, with very long lines (4186), with no line terminators
Hash 24f4d7f425e792ab35adaab50816e54a
9e25bf79b674ddb7ba09ad7f118c50ec473c02c8
1c78bfb4d523785a4ebd37bb1f79f214f9bdb16673f7cc50805f7f1a26ad7f83
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/mediaelement/wp-mediaelement.min.css?ver=6.1.1 HTTP/1.1
Host: cafedelafonda.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://cafedelafonda.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 06 Feb 2023 20:21:40 GMT
content-type: text/css
last-modified: Thu, 14 Nov 2019 19:55:30 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 982
date: Mon, 30 Jan 2023 20:21:40 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
cafedelafonda.com/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-vendors-style.css?ver=8.9.2
200 OK 1.8 kB URL HTTP/2 cafedelafonda.com/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-vendors-style.css?ver=8.9.2
IP
File type ASCII text, with very long lines (10435), with no line terminators
Hash f7237084ac82ea6a4f5bf1448c3a2148
60457635a5e809ee1199c61090d8e33b91e8e1f2
18a1cb7f08c1ace52a79f46d73461ed03bf8cf5c9e8a3687eacc3e04f08e7a09
GET /wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-vendors-style.css?ver=8.9.2 HTTP/1.1
Host: cafedelafonda.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://cafedelafonda.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 06 Feb 2023 20:21:40 GMT
content-type: text/css
last-modified: Wed, 04 Jan 2023 22:36:05 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1754
date: Mon, 30 Jan 2023 20:21:40 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
cafedelafonda.com/wp-content/plugins/yith-woocommerce-wishlist/assets/css/jquery.selectBox.css?ver=1.2.0
200 OK 670 B URL HTTP/2 cafedelafonda.com/wp-content/plugins/yith-woocommerce-wishlist/assets/css/jquery.selectBox.css?ver=1.2.0
IP
File type ASCII text, with very long lines (2630), with no line terminators
Hash 6867f0990d852a8660a2d6f7a6675183
0240940bdf174107a14d132fa82b50b1445ff2f8
598b0ec44ac00e2f238bebe6077530ad4e6ac41f99122d495313302b380c2868
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/yith-woocommerce-wishlist/assets/css/jquery.selectBox.css?ver=1.2.0 HTTP/1.1
Host: cafedelafonda.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://cafedelafonda.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 06 Feb 2023 20:21:40 GMT
content-type: text/css
last-modified: Wed, 04 Jan 2023 23:27:46 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 670
date: Mon, 30 Jan 2023 20:21:40 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
cafedelafonda.com/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-style.css?ver=8.9.2
200 OK 23 kB URL HTTP/2 cafedelafonda.com/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-style.css?ver=8.9.2
IP
File type Unicode text, UTF-8 text, with very long lines (65527), with no line terminators
Hash 4d23c7c4fe90b0cc94040f8a46e3ab2d
0d12bd303dc5120e3c51a798ddc6cb7969c19a78
682ca5cc04f3633628682f11743b36dd7085fc56d51c67492c065607a9a0d128
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-style.css?ver=8.9.2 HTTP/1.1
Host: cafedelafonda.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://cafedelafonda.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 06 Feb 2023 20:21:40 GMT
content-type: text/css
last-modified: Wed, 04 Jan 2023 22:36:05 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 22940
date: Mon, 30 Jan 2023 20:21:40 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 40bac282ee9730b7a7fde839fcf58736
be00063ec5c760560f34663d0a6a9cad87cfebe4
45b83537d8621d3c4a7c046a9b78f6745977c359db2868d720f19dbb0eb80d3d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 20:21:40 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 40bac282ee9730b7a7fde839fcf58736
be00063ec5c760560f34663d0a6a9cad87cfebe4
45b83537d8621d3c4a7c046a9b78f6745977c359db2868d720f19dbb0eb80d3d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 20:21:40 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 40bac282ee9730b7a7fde839fcf58736
be00063ec5c760560f34663d0a6a9cad87cfebe4
45b83537d8621d3c4a7c046a9b78f6745977c359db2868d720f19dbb0eb80d3d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 20:21:40 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash d81f874741beb45c89de8bb5c6de438e
a251ab903e654953631d84721479bbae55aa5cdf
ec28dafa2a54818028d4dfe99218d9e4b507f3bd7efaabfba630d85f24d4d75d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 20:21:40 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
cafedelafonda.com/wp-content/plugins/yith-woocommerce-wishlist/assets/css/font-awesome.css?ver=4.7.0
200 OK 6.6 kB URL HTTP/2 cafedelafonda.com/wp-content/plugins/yith-woocommerce-wishlist/assets/css/font-awesome.css?ver=4.7.0
IP
File type ASCII text, with very long lines (30441)
Hash 3160c468e16b391c087428c6961602de
0e39e52d4887d3e52e7af98526a76a8b788738ed
4aaedd1cc4ee377bb8b5390fe56da25db79b9cf2d7e6c0d64c1bc8fc88436a95
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/yith-woocommerce-wishlist/assets/css/font-awesome.css?ver=4.7.0 HTTP/1.1
Host: cafedelafonda.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://cafedelafonda.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 06 Feb 2023 20:21:40 GMT
content-type: text/css
last-modified: Wed, 04 Jan 2023 23:27:46 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 6581
date: Mon, 30 Jan 2023 20:21:40 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
cafedelafonda.com/
200 OK 38 kB IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (35092), with CRLF, LF line terminators
Hash a4a4205966b97a23444c312b023e4885
6582c2f09598e9fbc408ac0d53afd7e4fd0abf1e
417cfea6903848e9ff77a09c0824e1b2ddb4e931521fdff59d8888a65e8d2aed
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: cafedelafonda.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
x-powered-by: PHP/7.4.33
content-security-policy: upgrade-insecure-requests;
x-xss-protection: 0
x-content-type-options: nosniff
referrer-policy: strict-origin-when-cross-origin
content-type: text/html; charset=UTF-8
link: <https://cafedelafonda.com/wp-json/>; rel="https://api.w.org/", <https://cafedelafonda.com/wp-json/wp/v2/pages/393>; rel="alternate"; type="application/json", <https://cafedelafonda.com/>; rel=shortlink
content-encoding: br
vary: Accept-Encoding
date: Mon, 30 Jan 2023 20:21:40 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
cafedelafonda.com/wp-content/plugins/whatsapp-for-wordpress/assets/dist/css/style.css?ver=6.1.1
200 OK 5.0 kB URL HTTP/2 cafedelafonda.com/wp-content/plugins/whatsapp-for-wordpress/assets/dist/css/style.css?ver=6.1.1
IP
File type ASCII text, with very long lines (42449), with no line terminators
Hash 8ebc80362af5f10d781576a2c26b197a
a4b6c6da92a100cd823c3063f63d9830fd292773
031ab2b8edaa064a0d55a7ec2ef28b60734d4283af3425d4484763f0329b796c
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/whatsapp-for-wordpress/assets/dist/css/style.css?ver=6.1.1 HTTP/1.1
Host: cafedelafonda.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://cafedelafonda.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 06 Feb 2023 20:21:40 GMT
content-type: text/css
last-modified: Thu, 20 Oct 2022 18:47:45 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 4985
date: Mon, 30 Jan 2023 20:21:40 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
cafedelafonda.com/wp-content/plugins/yith-woocommerce-wishlist/assets/css/style.css?ver=3.16.0
200 OK 4.6 kB URL HTTP/2 cafedelafonda.com/wp-content/plugins/yith-woocommerce-wishlist/assets/css/style.css?ver=3.16.0
IP
File type ASCII text, with very long lines (29337), with no line terminators
Hash d57b8bb9da5c87b07c0bbfbf68eedfde
d85a4b62617cef8db8476076d9a2c4b5def0e226
0eccad1a79bcc73c4bd29ff253cd618161eb102c60cc755f42c55f7b85a1b763
GET /wp-content/plugins/yith-woocommerce-wishlist/assets/css/style.css?ver=3.16.0 HTTP/1.1
Host: cafedelafonda.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://cafedelafonda.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 06 Feb 2023 20:21:40 GMT
content-type: text/css
last-modified: Wed, 04 Jan 2023 23:27:46 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 4583
date: Mon, 30 Jan 2023 20:21:40 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 40bac282ee9730b7a7fde839fcf58736
be00063ec5c760560f34663d0a6a9cad87cfebe4
45b83537d8621d3c4a7c046a9b78f6745977c359db2868d720f19dbb0eb80d3d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 20:21:40 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.googletagmanager.com/gtag/js?id=UA-246388586-1
200 OK 44 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=UA-246388586-1
IP
File type ASCII text, with very long lines (1759)
Hash 7ee89e2d28b52e6e48e7fbc4436fef41
03d13ec41301cbce2431c3e36e09d0a65a5a5e73
3c8985a89385aada43861462eed3e2eb404441583035a939690e410e79500f77
GET /gtag/js?id=UA-246388586-1 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://cafedelafonda.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Mon, 30 Jan 2023 20:21:40 GMT
expires: Mon, 30 Jan 2023 20:21:40 GMT
cache-control: private, max-age=900
last-modified: Mon, 30 Jan 2023 20:00:08 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 44093
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cafedelafonda.com/wp-includes/css/classic-themes.min.css?ver=1
200 OK 144 B URL HTTP/2 cafedelafonda.com/wp-includes/css/classic-themes.min.css?ver=1
IP
Hash fcbd239f30d9a6dd1f3637f291143d37
2871bf7d98af3f43e42f7fa32808048e7134fabf
c2f98e9d71f782b7a3266cd337c61ae6c8dcbb7203669c07852aa2ab65ab6144
GET /wp-includes/css/classic-themes.min.css?ver=1 HTTP/1.1
Host: cafedelafonda.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://cafedelafonda.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 06 Feb 2023 20:21:40 GMT
content-type: text/css
last-modified: Wed, 02 Nov 2022 03:28:25 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 144
date: Mon, 30 Jan 2023 20:21:40 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 2ac1bcdceabf1fc4e07017906aa8a815
ba00b737325fc50b35af8d851ced0fe13d1cba22
c6c54f5dbbfc40b454b9c67a7972827f500d83b10a1594f7cb56c69158278c08
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 20:21:40 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
cafedelafonda.com/wp-content/plugins/g5-core/assets/vendors/ladda/ladda-themeless.min.css?ver=1.0.5
200 OK 1.0 kB URL HTTP/2 cafedelafonda.com/wp-content/plugins/g5-core/assets/vendors/ladda/ladda-themeless.min.css?ver=1.0.5
IP
File type ASCII text, with very long lines (7678)
Hash 8749e7528151a8ee705c18a2be024a4c
e214a148b4ff259607090b468de14fdbbf67691d
d8070668f7740e5e761d2b9fea3634b533faccbf094524bd8073d1e934eff95a
GET /wp-content/plugins/g5-core/assets/vendors/ladda/ladda-themeless.min.css?ver=1.0.5 HTTP/1.1
Host: cafedelafonda.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://cafedelafonda.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 06 Feb 2023 20:21:40 GMT
content-type: text/css
last-modified: Fri, 26 Mar 2021 18:07:17 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1024
date: Mon, 30 Jan 2023 20:21:40 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
cafedelafonda.com/wp-content/plugins/post-views-counter/css/frontend.min.css?ver=1.3.12
200 OK 110 B URL HTTP/2 cafedelafonda.com/wp-content/plugins/post-views-counter/css/frontend.min.css?ver=1.3.12
IP
File type ASCII text, with no line terminators
Hash 4ad68a2693caf1845ad5ea4228b06311
711a407b2581589181b0f37856e8f36831788ca1
b0ea7d779b0a318655262782cc84559e1128c89ca5f002522788f6c8fdb55131
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/post-views-counter/css/frontend.min.css?ver=1.3.12 HTTP/1.1
Host: cafedelafonda.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://cafedelafonda.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 06 Feb 2023 20:21:40 GMT
content-type: text/css
last-modified: Sat, 05 Nov 2022 22:59:24 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 110
date: Mon, 30 Jan 2023 20:21:40 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
cafedelafonda.com/wp-content/plugins/yith-woocommerce-compare/assets/css/colorbox.css?ver=1.4.21
200 OK 1.1 kB URL HTTP/2 cafedelafonda.com/wp-content/plugins/yith-woocommerce-compare/assets/css/colorbox.css?ver=1.4.21
IP
Hash 263b70217f905feda4c01edde0b2737a
5ee9d3538967433d441e6aa357bf166724200523
1c82d8152cb3112b7df9b40a89ac28db20e51562266c13d392e8530fc06cd5ce
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/yith-woocommerce-compare/assets/css/colorbox.css?ver=1.4.21 HTTP/1.1
Host: cafedelafonda.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://cafedelafonda.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 06 Feb 2023 20:21:40 GMT
content-type: text/css
last-modified: Wed, 04 Jan 2023 23:27:06 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1060
date: Mon, 30 Jan 2023 20:21:40 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
cafedelafonda.com/wp-content/plugins/woocommerce/assets/css/woocommerce-layout.css?ver=7.2.2
200 OK 2.3 kB URL HTTP/2 cafedelafonda.com/wp-content/plugins/woocommerce/assets/css/woocommerce-layout.css?ver=7.2.2
IP
File type ASCII text, with very long lines (17809), with no line terminators
Hash 09d93f4de720fc11a2944fea38fcafcd
e46cf6a8d3373c7fa5feba0b30cd9b9983f719b2
cf900721be13309b96cf6c6f56b1c0a40194e8aea1b0a0361739219c9c0f9998
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/woocommerce/assets/css/woocommerce-layout.css?ver=7.2.2 HTTP/1.1
Host: cafedelafonda.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://cafedelafonda.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 06 Feb 2023 20:21:40 GMT
content-type: text/css
last-modified: Wed, 04 Jan 2023 22:35:40 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2329
date: Mon, 30 Jan 2023 20:21:40 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
cafedelafonda.com/wp-content/plugins/g5-core/assets/vendors/bootstrap-select/css/bootstrap-select.min.css?ver=1.13.14
200 OK 2.0 kB URL HTTP/2 cafedelafonda.com/wp-content/plugins/g5-core/assets/vendors/bootstrap-select/css/bootstrap-select.min.css?ver=1.13.14
IP
File type ASCII text, with very long lines (10755)
Hash c447ea26ed8afb4aa5545cea1d40dca9
c70cce938b5bd014b54fb597dde7e5262a109e3f
43c9d87c27780fb99a30ac3c6bcc4b7a577c998263086d1b452252608d47f353
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/g5-core/assets/vendors/bootstrap-select/css/bootstrap-select.min.css?ver=1.13.14 HTTP/1.1
Host: cafedelafonda.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://cafedelafonda.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 06 Feb 2023 20:21:40 GMT
content-type: text/css
last-modified: Fri, 26 Mar 2021 18:07:07 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1996
date: Mon, 30 Jan 2023 20:21:40 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
cafedelafonda.com/wp-content/plugins/g5-core/lib/smart-framework/assets/vendors/perfect-scrollbar/css/perfect-scrollbar.min.css?ver=0.6.15
200 OK 465 B URL HTTP/2 cafedelafonda.com/wp-content/plugins/g5-core/lib/smart-framework/assets/vendors/perfect-scrollbar/css/perfect-scrollbar.min.css?ver=0.6.15
IP
File type ASCII text, with very long lines (3181), with no line terminators
Hash e4f1756991c1fa5ef3b168baa8199b25
b467a8133e12e5181d075ccd446d9c842430e190
e194228e5fbf59d19798b42665e985bd1125cb96765e5d611fbb450b89ed7ac7
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/g5-core/lib/smart-framework/assets/vendors/perfect-scrollbar/css/perfect-scrollbar.min.css?ver=0.6.15 HTTP/1.1
Host: cafedelafonda.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://cafedelafonda.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 06 Feb 2023 20:21:40 GMT
content-type: text/css
last-modified: Fri, 26 Mar 2021 18:07:20 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 465
date: Mon, 30 Jan 2023 20:21:40 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
cafedelafonda.com/wp-content/plugins/g5-core/inc/xmenu/assets/css/animate.min.css?ver=3.5.1
200 OK 710 B URL HTTP/2 cafedelafonda.com/wp-content/plugins/g5-core/inc/xmenu/assets/css/animate.min.css?ver=3.5.1
IP
File type ASCII text, with very long lines (7924), with no line terminators
Hash b90a60a29b7b6eb50d32bc47c3a3d568
d5d2ce3ae129013cc1823f0a96481f0652d8b802
970b9fab0cc8e26ffdbc65520753625844ccbd810fb6372499a7ce322d08fb11
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/g5-core/inc/xmenu/assets/css/animate.min.css?ver=3.5.1 HTTP/1.1
Host: cafedelafonda.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://cafedelafonda.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 06 Feb 2023 20:21:40 GMT
content-type: text/css
last-modified: Fri, 26 Mar 2021 18:07:19 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 710
date: Mon, 30 Jan 2023 20:21:40 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
cafedelafonda.com/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.7.2
200 OK 870 B URL HTTP/2 cafedelafonda.com/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.7.2
IP
Hash db1891276028bf4b41d1e27e86517147
00b1fb3f26fd4b31d4ea0bf6ef5fb87e7a643d74
9351dbbea3e724e73cde04476a06a98a726c0b341c4cbe4a40354c4752494e5d
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.7.2 HTTP/1.1
Host: cafedelafonda.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://cafedelafonda.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 06 Feb 2023 20:21:40 GMT
content-type: text/css
last-modified: Wed, 04 Jan 2023 22:04:00 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 870
date: Mon, 30 Jan 2023 20:21:40 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
cafedelafonda.com/wp-content/plugins/g5-core/lib/smart-framework/assets/vendors/magnific-popup/magnific-popup.min.css?ver=1.1.0
200 OK 1.4 kB URL HTTP/2 cafedelafonda.com/wp-content/plugins/g5-core/lib/smart-framework/assets/vendors/magnific-popup/magnific-popup.min.css?ver=1.1.0
IP
File type ASCII text, with very long lines (5140), with no line terminators
Hash debe16756b020338b82a7810e90e0246
0ec52c028f4ae49448d4ef47aa7fba4045819162
ce8728cc0a8c163fbfdad39942da4d4d1407f9da4a38b430085ca257236c7ce6
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/g5-core/lib/smart-framework/assets/vendors/magnific-popup/magnific-popup.min.css?ver=1.1.0 HTTP/1.1
Host: cafedelafonda.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://cafedelafonda.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 06 Feb 2023 20:21:40 GMT
content-type: text/css
last-modified: Fri, 26 Mar 2021 18:07:20 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1406
date: Mon, 30 Jan 2023 20:21:40 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
cafedelafonda.com/wp-content/plugins/g5-core/assets/vendors/slick/slick.min.css?ver=1.8.1
200 OK 415 B URL HTTP/2 cafedelafonda.com/wp-content/plugins/g5-core/assets/vendors/slick/slick.min.css?ver=1.8.1
IP
File type ASCII text, with very long lines (1359), with no line terminators
Hash 988c983d1d81901a8b99f4010c571063
101c77c89d3dfae7623a7e05889ab58b84473ae6
a20b52f3dc2c053d51a589b40d7c54f6a4d3a446ae58a4f5b922ef97cca783c5
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/g5-core/assets/vendors/slick/slick.min.css?ver=1.8.1 HTTP/1.1
Host: cafedelafonda.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://cafedelafonda.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 06 Feb 2023 20:21:40 GMT
content-type: text/css
last-modified: Fri, 26 Mar 2021 18:07:17 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 415
date: Mon, 30 Jan 2023 20:21:40 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
cafedelafonda.com/wp-content/plugins/g5-element/assets/shortcode-css/heading.min.css?ver=1.1.0
200 OK 201 B URL HTTP/2 cafedelafonda.com/wp-content/plugins/g5-element/assets/shortcode-css/heading.min.css?ver=1.1.0
IP
File type ASCII text, with very long lines (686), with no line terminators
Hash a2a0eede4177c342e63f1387dcb5cdd7
3ccdaedece072c207c1007076ec5aadd35deb112
fd7951267afeae8d538f24db8875aa23c6268ed53db5ecdb041d9d5ed9bd3c9d
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/g5-element/assets/shortcode-css/heading.min.css?ver=1.1.0 HTTP/1.1
Host: cafedelafonda.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://cafedelafonda.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 06 Feb 2023 20:21:40 GMT
content-type: text/css
last-modified: Mon, 21 Jun 2021 20:03:36 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 201
date: Mon, 30 Jan 2023 20:21:40 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
cafedelafonda.com/wp-content/plugins/g5-core/assets/vendors/spinkit/chasing-dots.min.css?ver=6.1.1
200 OK 317 B URL HTTP/2 cafedelafonda.com/wp-content/plugins/g5-core/assets/vendors/spinkit/chasing-dots.min.css?ver=6.1.1
IP
File type ASCII text, with very long lines (1614), with no line terminators
Hash 7a5c561fb25ff05904883b50d747661c
153a25d635f854d355116c51a5d5595a68a05618
b52721a1c0fedad534eac6c0194dc7f65f89053eccececb7ca6cd40e5dcc0ad2
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/g5-core/assets/vendors/spinkit/chasing-dots.min.css?ver=6.1.1 HTTP/1.1
Host: cafedelafonda.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://cafedelafonda.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 06 Feb 2023 20:21:40 GMT
content-type: text/css
last-modified: Fri, 26 Mar 2021 18:07:17 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 317
date: Mon, 30 Jan 2023 20:21:40 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
cafedelafonda.com/wp-content/plugins/g5-core/assets/vendors/justified-gallery/justifiedGallery.min.css?ver=3.7.0
200 OK 592 B URL HTTP/2 cafedelafonda.com/wp-content/plugins/g5-core/assets/vendors/justified-gallery/justifiedGallery.min.css?ver=3.7.0
IP
Hash ad8922b4368eb5d824b32eebb652bd8f
225ca55b890e483564e23f0edac5714f08aeff65
f6bedbde4014a9f5260cdbccaf5877dcb876d4547324f0e2d3f1b0e94a207048
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/g5-core/assets/vendors/justified-gallery/justifiedGallery.min.css?ver=3.7.0 HTTP/1.1
Host: cafedelafonda.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://cafedelafonda.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 06 Feb 2023 20:21:40 GMT
content-type: text/css
last-modified: Fri, 26 Mar 2021 18:07:17 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 592
date: Mon, 30 Jan 2023 20:21:40 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
cafedelafonda.com/wp-content/plugins/g5-element/assets/shortcode-css/video.min.css?ver=1.1.0
200 OK 352 B URL HTTP/2 cafedelafonda.com/wp-content/plugins/g5-element/assets/shortcode-css/video.min.css?ver=1.1.0
IP
File type ASCII text, with very long lines (1324), with no line terminators
Hash 8834a527b23e43ad2b08c6a1aefebf28
738b8071166348cc7bda5d9cd7860433de42daaf
9e95fdff120aeb49e1177f120b5d629b5af18b3de0414eed75e78a7a79f696b5
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/g5-element/assets/shortcode-css/video.min.css?ver=1.1.0 HTTP/1.1
Host: cafedelafonda.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://cafedelafonda.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 06 Feb 2023 20:21:40 GMT
content-type: text/css
last-modified: Mon, 21 Jun 2021 20:03:36 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 352
date: Mon, 30 Jan 2023 20:21:40 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
cafedelafonda.com/wp-content/plugins/g5-element/assets/shortcode-css/button.min.css?ver=1.1.0
200 OK 105 B URL HTTP/2 cafedelafonda.com/wp-content/plugins/g5-element/assets/shortcode-css/button.min.css?ver=1.1.0
IP
File type ASCII text, with no line terminators
Hash ba4c0c0e9034f4f39fffad6fd512aa5b
24b1d1c7bab38c4f939979142529210d17ec97a0
ae93b0a4af9cbc737883419b7feb9f5df20dbf531a00036f1164d5e93d8c8220
GET /wp-content/plugins/g5-element/assets/shortcode-css/button.min.css?ver=1.1.0 HTTP/1.1
Host: cafedelafonda.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://cafedelafonda.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 06 Feb 2023 20:21:40 GMT
content-type: text/css
last-modified: Mon, 21 Jun 2021 20:03:36 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 105
date: Mon, 30 Jan 2023 20:21:40 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
cafedelafonda.com/wp-content/plugins/g5-element/assets/shortcode-css/layout-container.min.css?ver=1.1.0
200 OK 326 B URL HTTP/2 cafedelafonda.com/wp-content/plugins/g5-element/assets/shortcode-css/layout-container.min.css?ver=1.1.0
IP
File type ASCII text, with very long lines (1629), with no line terminators
Hash 16e3bf471b159c4c502a4b2627d30b7c
7d5aefb7b64b399221fd1e79fece54bf975af1a4
10a880be4acb1077ae1a428ec06109d41948f713d9bbad12b838efea30455164
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/g5-element/assets/shortcode-css/layout-container.min.css?ver=1.1.0 HTTP/1.1
Host: cafedelafonda.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://cafedelafonda.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 06 Feb 2023 20:21:40 GMT
content-type: text/css
last-modified: Mon, 21 Jun 2021 20:03:36 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 326
date: Mon, 30 Jan 2023 20:21:40 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
cafedelafonda.com/wp-content/plugins/g5-blog/assets/scss/frontend.min.css?ver=1.0.7
200 OK 1.6 kB URL HTTP/2 cafedelafonda.com/wp-content/plugins/g5-blog/assets/scss/frontend.min.css?ver=1.0.7
IP
File type Unicode text, UTF-8 text, with very long lines (9689), with no line terminators
Hash e7bea06a4a4678ff15a5e6ac0cf1c2af
d0c69b0aaa72e3503bc7484dc07bc486c7f8d5d7
e96db09f0811fc493c1390d92eaada70dabab361cd505899ba9b9d4dc2c6f122
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/g5-blog/assets/scss/frontend.min.css?ver=1.0.7 HTTP/1.1
Host: cafedelafonda.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://cafedelafonda.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 06 Feb 2023 20:21:40 GMT
content-type: text/css
last-modified: Fri, 26 Mar 2021 13:23:20 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1566
date: Mon, 30 Jan 2023 20:21:40 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
cafedelafonda.com/wp-content/plugins/woocommerce/assets/css/photoswipe/default-skin/default-skin.min.css?ver=7.2.2
200 OK 1.7 kB URL HTTP/2 cafedelafonda.com/wp-content/plugins/woocommerce/assets/css/photoswipe/default-skin/default-skin.min.css?ver=7.2.2
IP
File type ASCII text, with very long lines (7887), with no line terminators
Hash 494afef7fdbd631433fe8b40049c9733
e927f43e6ee2f70854247363612dab1107c514ad
54b56f475540254274fa193380ab680e39913768d9a227660bd571bba3456b7f
GET /wp-content/plugins/woocommerce/assets/css/photoswipe/default-skin/default-skin.min.css?ver=7.2.2 HTTP/1.1
Host: cafedelafonda.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://cafedelafonda.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 06 Feb 2023 20:21:40 GMT
content-type: text/css
last-modified: Wed, 04 Jan 2023 22:35:38 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1728
date: Mon, 30 Jan 2023 20:21:40 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
cafedelafonda.com/wp-content/plugins/woocommerce/assets/css/select2.css?ver=7.2.2
200 OK 1.7 kB URL HTTP/2 cafedelafonda.com/wp-content/plugins/woocommerce/assets/css/select2.css?ver=7.2.2
IP
File type ASCII text, with very long lines (14615), with no line terminators
Hash 6c806417d99922522c082e2223750bab
8797eb95862d7f1e48d437d95b3fc2bfe05d60b4
6e9c607f8013ac5e0ad31841452296256014ad282a2fe3e36208ac27f0a15edf
GET /wp-content/plugins/woocommerce/assets/css/select2.css?ver=7.2.2 HTTP/1.1
Host: cafedelafonda.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://cafedelafonda.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 06 Feb 2023 20:21:40 GMT
content-type: text/css
last-modified: Wed, 04 Jan 2023 22:35:39 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1706
date: Mon, 30 Jan 2023 20:21:40 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
cafedelafonda.com/wp-content/plugins/g5-element/assets/shortcode-css/social-icons.min.css?ver=1.1.0
200 OK 373 B URL HTTP/2 cafedelafonda.com/wp-content/plugins/g5-element/assets/shortcode-css/social-icons.min.css?ver=1.1.0
IP
File type ASCII text, with very long lines (1443), with no line terminators
Hash 91b3357255936284aafcdb22445344ff
98d6c438b97ca3af8bef30e58f87653f2481517e
0f55bcf15432e5f752f109843b815ab3d6748e88ef844cf572caa5b00907cb84
GET /wp-content/plugins/g5-element/assets/shortcode-css/social-icons.min.css?ver=1.1.0 HTTP/1.1
Host: cafedelafonda.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://cafedelafonda.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 06 Feb 2023 20:21:40 GMT
content-type: text/css
last-modified: Mon, 21 Jun 2021 20:03:36 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 373
date: Mon, 30 Jan 2023 20:21:40 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
cafedelafonda.com/wp-content/plugins/woocommerce/assets/css/photoswipe/photoswipe.min.css?ver=7.2.2
200 OK 857 B URL HTTP/2 cafedelafonda.com/wp-content/plugins/woocommerce/assets/css/photoswipe/photoswipe.min.css?ver=7.2.2
IP
File type ASCII text, with very long lines (3287), with no line terminators
Hash f91b0cde1c3ae9c4865dbe50b94b7e96
26c7baee70eca5d442f5f30a7c0ccd0a6187c105
224aecccc666e90a5607c1ee584952f275cae6c6f8cad50f9d9834d7499c4bd9
GET /wp-content/plugins/woocommerce/assets/css/photoswipe/photoswipe.min.css?ver=7.2.2 HTTP/1.1
Host: cafedelafonda.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://cafedelafonda.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 06 Feb 2023 20:21:40 GMT
content-type: text/css
last-modified: Wed, 04 Jan 2023 22:35:38 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 857
date: Mon, 30 Jan 2023 20:21:40 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
cafedelafonda.com/wp-content/plugins/g5-element/assets/shortcode-css/page-title.min.css?ver=1.1.0
200 OK 126 B URL HTTP/2 cafedelafonda.com/wp-content/plugins/g5-element/assets/shortcode-css/page-title.min.css?ver=1.1.0
IP
File type ASCII text, with no line terminators
Hash 485913ea8dfc0e0cc21d2d5ff4aca917
2135b9d1ae6d3a92ff5b55f6c6be5b197ac0eeb7
c1a3f9319511615941b498cd1df1addbe50f0f0d0e1c78dde74c48cba3d3271f
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/g5-element/assets/shortcode-css/page-title.min.css?ver=1.1.0 HTTP/1.1
Host: cafedelafonda.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://cafedelafonda.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 06 Feb 2023 20:21:40 GMT
content-type: text/css
last-modified: Mon, 21 Jun 2021 20:03:36 GMT
accept-ranges: bytes
content-length: 126
date: Mon, 30 Jan 2023 20:21:40 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
cafedelafonda.com/wp-content/plugins/g5-element/assets/css/vc-frontend.min.css?ver=1.1.0
200 OK 421 B URL HTTP/2 cafedelafonda.com/wp-content/plugins/g5-element/assets/css/vc-frontend.min.css?ver=1.1.0
IP
File type ASCII text, with very long lines (2102), with no line terminators
Hash fca7d0854bacd113b778b5e5ad63159b
93e253dfb7f71cf40ef91d01901d065528638cb0
362101684b86fa5bf0ee974963523c81dd27febd93b4e97d0284df0cee861c66
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/g5-element/assets/css/vc-frontend.min.css?ver=1.1.0 HTTP/1.1
Host: cafedelafonda.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://cafedelafonda.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 06 Feb 2023 20:21:40 GMT
content-type: text/css
last-modified: Mon, 21 Jun 2021 20:03:34 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 421
date: Mon, 30 Jan 2023 20:21:40 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
cafedelafonda.com/wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.7.0-wc.7.2.2
200 OK 3.2 kB URL HTTP/2 cafedelafonda.com/wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.7.0-wc.7.2.2
IP
File type ASCII text, with very long lines (9111)
Hash 078e27719ab2b91e57a3d06d05bf24d8
ee2c8af72d9dbb148d4101a374f6026d0c9c3044
1c8b599f3f7bfa8d7950d95a171f2c873d051960a91c91e22304293596e5b890
GET /wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.7.0-wc.7.2.2 HTTP/1.1
Host: cafedelafonda.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://cafedelafonda.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 06 Feb 2023 20:21:40 GMT
content-type: application/javascript
last-modified: Wed, 04 Jan 2023 22:35:43 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3247
date: Mon, 30 Jan 2023 20:21:40 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
cafedelafonda.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
200 OK 4.0 kB URL HTTP/2 cafedelafonda.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP
File type ASCII text, with very long lines (11126)
Hash 7e058b51f939eacfa31cdface14dded5
9d732e5afdeb42edef9e1b9631b7e95e054787cc
4ece5b00423755d8f4121ce382c8ea4dc44c241f28f150abe19caa85d0b0acc1
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: cafedelafonda.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://cafedelafonda.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 06 Feb 2023 20:21:40 GMT
content-type: application/javascript
last-modified: Thu, 10 Dec 2020 04:22:17 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3995
date: Mon, 30 Jan 2023 20:21:40 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
cafedelafonda.com/wp-content/plugins/js_composer/assets/js/vendors/woocommerce-add-to-cart.js?ver=6.10.0
200 OK 321 B URL HTTP/2 cafedelafonda.com/wp-content/plugins/js_composer/assets/js/vendors/woocommerce-add-to-cart.js?ver=6.10.0
IP
Hash 159e4731a0ffba6862ee2a1bbcc8a805
7fb2a5ca7a80d96187fda406d0a1b7db23867fa7
c6f102a76dc397d94cfbadcd292d64bb45acaa29b0391b41a9f1cc68c2274ae2
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/js_composer/assets/js/vendors/woocommerce-add-to-cart.js?ver=6.10.0 HTTP/1.1
Host: cafedelafonda.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://cafedelafonda.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 06 Feb 2023 20:21:40 GMT
content-type: application/javascript
last-modified: Mon, 17 Oct 2022 04:54:36 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 321
date: Mon, 30 Jan 2023 20:21:40 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
cafedelafonda.com/wp-content/plugins/g5-core/assets/vendors/waypoints/jquery.waypoints.min.js?ver=4.0.1
200 OK 2.5 kB URL HTTP/2 cafedelafonda.com/wp-content/plugins/g5-core/assets/vendors/waypoints/jquery.waypoints.min.js?ver=4.0.1
IP
File type ASCII text, with very long lines (9127), with no line terminators
Hash 0761f9fa200cfc3386a75d5cf65e745a
461616c82a3da4b32e28ddfea49830642b3b8940
a8714254f72f4ca8c325d17043227541ac94a96ac7ff3481526cc23ab6c473a2
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/g5-core/assets/vendors/waypoints/jquery.waypoints.min.js?ver=4.0.1 HTTP/1.1
Host: cafedelafonda.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://cafedelafonda.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 06 Feb 2023 20:21:40 GMT
content-type: application/javascript
last-modified: Fri, 26 Mar 2021 18:07:17 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2474
date: Mon, 30 Jan 2023 20:21:40 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
cafedelafonda.com/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=7.2.2
200 OK 972 B URL HTTP/2 cafedelafonda.com/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=7.2.2
IP
File type HTML document, ASCII text, with very long lines (3029), with no line terminators
Hash 5ed77e0c59800f40061b5c322cff21fa
ced9d401d300dd1fc676a673bbf7e6360beb402d
3b284b8a096256e6cd0d9cbf2cb4b36505e71c0d7b2227fcd3132dddbeea18cc
GET /wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=7.2.2 HTTP/1.1
Host: cafedelafonda.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://cafedelafonda.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 06 Feb 2023 20:21:40 GMT
content-type: application/javascript
last-modified: Wed, 04 Jan 2023 22:35:43 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 972
date: Mon, 30 Jan 2023 20:21:40 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
cafedelafonda.com/wp-content/plugins/woocommerce/assets/css/woocommerce.css?ver=7.2.2
200 OK 8.4 kB URL HTTP/2 cafedelafonda.com/wp-content/plugins/woocommerce/assets/css/woocommerce.css?ver=7.2.2
IP
File type Unicode text, UTF-8 text, with very long lines (62781), with no line terminators
Hash 6688cf6da7f8e77fce4b23ecd4fa64d4
b787949222758071c1a6221f698cad9bf9b1db2e
1b0db771c94b550d2e2eb123523a8357529aa8ec8869be9e8aabb2595055f438
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/woocommerce/assets/css/woocommerce.css?ver=7.2.2 HTTP/1.1
Host: cafedelafonda.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://cafedelafonda.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 06 Feb 2023 20:21:40 GMT
content-type: text/css
last-modified: Wed, 04 Jan 2023 22:35:40 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 8434
date: Mon, 30 Jan 2023 20:21:40 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
cafedelafonda.com/wp-content/plugins/g5-core/assets/scss/frontend.min.css?ver=1.1.8
200 OK 9.9 kB URL HTTP/2 cafedelafonda.com/wp-content/plugins/g5-core/assets/scss/frontend.min.css?ver=1.1.8
IP
File type Unicode text, UTF-8 text, with very long lines (65526), with no line terminators
Hash 3199622722467f9db5106d6c282b6e99
8bc55bd1a72fc9eb59e430dd0e1e6ff728c678d9
0b2def60494c1cb6d1034549d07dffe18a4bedba10b45cfd7415681259c99c8a
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/g5-core/assets/scss/frontend.min.css?ver=1.1.8 HTTP/1.1
Host: cafedelafonda.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://cafedelafonda.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 06 Feb 2023 20:21:40 GMT
content-type: text/css
last-modified: Fri, 26 Mar 2021 18:07:03 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 9921
date: Mon, 30 Jan 2023 20:21:40 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
cafedelafonda.com/wp-content/themes/porus/assets/vendors/font-awesome/css/fontawesome.css?ver=5.8.2
200 OK 16 kB URL HTTP/2 cafedelafonda.com/wp-content/themes/porus/assets/vendors/font-awesome/css/fontawesome.css?ver=5.8.2
IP
Hash d2c9ffddc6be9154d9a3fb0ac12ce53e
fe6f09e828faabdc0ef0983566c2744670a20ca3
2bd7bb6606435d65e41d15a72355d087f56d6ab4808e0005ca3c35e2b643e253
GET /wp-content/themes/porus/assets/vendors/font-awesome/css/fontawesome.css?ver=5.8.2 HTTP/1.1
Host: cafedelafonda.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://cafedelafonda.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 06 Feb 2023 20:21:40 GMT
content-type: text/css
last-modified: Fri, 26 Mar 2021 15:15:56 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 16248
date: Mon, 30 Jan 2023 20:21:40 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
cafedelafonda.com/wp-content/themes/porus/assets/css/woocommerce.css?ver=1.0.0
200 OK 9.8 kB URL HTTP/2 cafedelafonda.com/wp-content/themes/porus/assets/css/woocommerce.css?ver=1.0.0
IP
File type Unicode text, UTF-8 text, with very long lines (491)
Hash ddf353218d4a7fed079049e88e4a5294
1b1a3e8d66d567188deafdd1d7d1f8b5cd43af5a
dfa34bd460e3cf7e9ae89e172aacf8836f2e316d1fb262882697d94a2bd7ac5c
GET /wp-content/themes/porus/assets/css/woocommerce.css?ver=1.0.0 HTTP/1.1
Host: cafedelafonda.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://cafedelafonda.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 06 Feb 2023 20:21:40 GMT
content-type: text/css
last-modified: Fri, 26 Mar 2021 15:15:52 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 9824
date: Mon, 30 Jan 2023 20:21:40 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
cafedelafonda.com/wp-content/plugins/g5-shop/assets/scss/frontend.min.css?ver=1.1.3
200 OK 5.5 kB URL HTTP/2 cafedelafonda.com/wp-content/plugins/g5-shop/assets/scss/frontend.min.css?ver=1.1.3
IP
File type Unicode text, UTF-8 text, with very long lines (38099), with no line terminators
Hash a0c31ccdf0bf0c35a0baa0fe4b415cc9
6a007798baf0959f02741fbf711d9063697e2efa
41145245a49b892abf1ae3172acc2738bea1790f15e6658bb46de947aa0d5c5c
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/g5-shop/assets/scss/frontend.min.css?ver=1.1.3 HTTP/1.1
Host: cafedelafonda.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://cafedelafonda.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 06 Feb 2023 20:21:40 GMT
content-type: text/css
last-modified: Mon, 21 Jun 2021 20:04:33 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 5507
date: Mon, 30 Jan 2023 20:21:40 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
cafedelafonda.com/wp-includes/js/wp-emoji-release.min.js?ver=6.1.1
200 OK 4.6 kB URL HTTP/2 cafedelafonda.com/wp-includes/js/wp-emoji-release.min.js?ver=6.1.1
IP
File type ASCII text, with very long lines (15660)
Hash 0232689bd203f330529b36a437f41a68
9046583f7469ad38297969f10a9513eb895d5316
feea9f30a6e454579bbeabf236b7abdb0c7de84dd2852422555ad67348c5e886
GET /wp-includes/js/wp-emoji-release.min.js?ver=6.1.1 HTTP/1.1
Host: cafedelafonda.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://cafedelafonda.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 06 Feb 2023 20:21:40 GMT
content-type: application/javascript
last-modified: Sat, 28 May 2022 03:37:34 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 4619
date: Mon, 30 Jan 2023 20:21:40 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
cafedelafonda.com/wp-includes/css/dashicons.min.css?ver=6.1.1
200 OK 35 kB URL HTTP/2 cafedelafonda.com/wp-includes/css/dashicons.min.css?ver=6.1.1
IP
File type ASCII text, with very long lines (58981)
Hash 54c5bfb8a890d87139d9abfe01662c83
f9eddf5b8a3269e6d6fa40b4f13083705e6267c6
9685e5cabe4efc8c85e986725af8009b306416aad3ecc9086ca5bb12b84ce4ef
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/css/dashicons.min.css?ver=6.1.1 HTTP/1.1
Host: cafedelafonda.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://cafedelafonda.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 06 Feb 2023 20:21:40 GMT
content-type: text/css
last-modified: Thu, 15 Apr 2021 03:28:47 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 35110
date: Mon, 30 Jan 2023 20:21:40 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
cafedelafonda.com/wp-content/plugins/g5-core/assets/vendors/bootstrap/css/bootstrap.min.css?ver=4.3.1
200 OK 21 kB URL HTTP/2 cafedelafonda.com/wp-content/plugins/g5-core/assets/vendors/bootstrap/css/bootstrap.min.css?ver=4.3.1
IP
File type ASCII text, with very long lines (65320)
Hash 18ee900c1317c7c2aa4d75e3b8d64954
83d998611109c1b16a2a469ef488801263fe0853
442ffb30be93f9ab02a9508632cacabcd7d97f128f9454c75dc924bd42ddbff7
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/g5-core/assets/vendors/bootstrap/css/bootstrap.min.css?ver=4.3.1 HTTP/1.1
Host: cafedelafonda.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://cafedelafonda.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 06 Feb 2023 20:21:40 GMT
content-type: text/css
last-modified: Fri, 26 Mar 2021 18:07:07 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 20938
date: Mon, 30 Jan 2023 20:21:40 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
cafedelafonda.com/wp-content/plugins/js_composer/assets/css/js_composer.min.css?ver=6.10.0
200 OK 40 kB URL HTTP/2 cafedelafonda.com/wp-content/plugins/js_composer/assets/css/js_composer.min.css?ver=6.10.0
IP
File type ASCII text, with very long lines (65358)
Hash 3fe54710cf7cf76519015faebd57e01f
b890d0692d2fd0b9d541e696554d4d2e1f648212
fbb840e992a73b4745d10dd99c01352a062e13722d4ae84e738a776996111adc
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/js_composer/assets/css/js_composer.min.css?ver=6.10.0 HTTP/1.1
Host: cafedelafonda.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://cafedelafonda.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 06 Feb 2023 20:21:40 GMT
content-type: text/css
last-modified: Mon, 17 Oct 2022 04:54:33 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 40525
date: Mon, 30 Jan 2023 20:21:40 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
cafedelafonda.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.1
200 OK 30 kB URL HTTP/2 cafedelafonda.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.1
IP
File type ASCII text, with very long lines (65447)
Hash 3a1740685bd5c0bbd5f2b812e1eb7fb4
488e07695da787fed18361c50292aef35abb5e81
4a07aed2d8cf88afdec0b56b365b951c76d387db3459166b5a0d25e2e6cc95ef
GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.1 HTTP/1.1
Host: cafedelafonda.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://cafedelafonda.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 06 Feb 2023 20:21:40 GMT
content-type: application/javascript
last-modified: Wed, 02 Nov 2022 03:28:52 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 30324
date: Mon, 30 Jan 2023 20:21:40 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
cafedelafonda.com/wp-content/themes/porus/style.css?ver=1.0.0
200 OK 18 kB URL HTTP/2 cafedelafonda.com/wp-content/themes/porus/style.css?ver=1.0.0
IP
Hash 592460b2d37b51428b1890a27af0adbc
f3bc4a3051eec5041643eb0e68c03b360693b26c
2c91d4c9865abed4806808bce902dd12356e8af360f8b32261d53283d0e1f481
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/porus/style.css?ver=1.0.0 HTTP/1.1
Host: cafedelafonda.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://cafedelafonda.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 06 Feb 2023 20:21:40 GMT
content-type: text/css
last-modified: Fri, 26 Mar 2021 15:16:34 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 17973
date: Mon, 30 Jan 2023 20:21:40 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
www.google.com/recaptcha/api.js?render=6LfgPswZAAAAAK3FNV_IsLVS91UJMGLQajY7rd0U&ver=3.0
200 OK 588 B URL HTTP/2 www.google.com/recaptcha/api.js?render=6LfgPswZAAAAAK3FNV_IsLVS91UJMGLQajY7rd0U&ver=3.0
IP
File type ASCII text, with very long lines (884), with no line terminators
Hash a3184f3388a13d57c4863807a0a117b6
7b2da385f64306d898e8db0f00af369742989eb9
6ff837db99f0cf2fd7e91dfaaad00d97f214d743b85f7495b369cdf58b1ac72c
GET /recaptcha/api.js?render=6LfgPswZAAAAAK3FNV_IsLVS91UJMGLQajY7rd0U&ver=3.0 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://cafedelafonda.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
expires: Mon, 30 Jan 2023 20:21:40 GMT
date: Mon, 30 Jan 2023 20:21:40 GMT
cache-control: private, max-age=300
content-type: text/javascript; charset=UTF-8
cross-origin-resource-policy: cross-origin
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 588
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 75bf326700e29b1b06e57fb96ee2b064
4f979f28905b65637a058cd44be6c25bb51a42e4
385f7a9c4112c4d674264d02229719e7f82e7039e681db8aaa6685ebab2be0c1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 20:21:40 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash ba2ca6af7b23ce2e11aa4f9d86e66269
212aef55d64b6add292dcf6241b16e7c93d1bae2
f163a94d190f5aeeb05b2e344bc8e1544d9701772b08585e9c92b529c8652b3d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 20:21:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash a5ff07b9b81cdf319f4a57d8d6dbbd6d
736ae15d0ed2068580d35a7cff8b33c0ec87af52
24406eda914ef8f78e1f60d6b54237ea6311f2fdf54b2b63647d84b397b41de0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 20:21:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
stats.wp.com/e-202305.js
200 OK 43 kB IP
File type ASCII text, with very long lines (2690)
Hash cd0e51aa31dd93c11f13e0a8305722e7
b21c53b4855a2ad789fd1fcc3be81f521109b753
c61cf9c4f0df71910b747fb2be3a120ce9a01dd192d5b0bb74134eea00107009
GET /e-202305.js HTTP/1.1
Host: stats.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://cafedelafonda.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 30 Jan 2023 20:21:40 GMT
content-type: application/javascript
vary: Accept-Encoding
etag: W/"62f6b688-3508"
content-encoding: br
expires: Wed, 24 Jan 2024 05:54:37 GMT
cache-control: max-age=31536000
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
x-nc: HIT arn
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash f075625a67cefc01c034a3c732ec8023
c3ef563fbf1cf30f75fc931f82426a0f859ccb6d
75ce941806680157fcca91d6074496cbbc7cdcf6da28fa35384273bf9a76d588
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 20:21:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash f075625a67cefc01c034a3c732ec8023
c3ef563fbf1cf30f75fc931f82426a0f859ccb6d
75ce941806680157fcca91d6074496cbbc7cdcf6da28fa35384273bf9a76d588
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 20:21:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash f075625a67cefc01c034a3c732ec8023
c3ef563fbf1cf30f75fc931f82426a0f859ccb6d
75ce941806680157fcca91d6074496cbbc7cdcf6da28fa35384273bf9a76d588
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 20:21:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash db3290a85d0ba4da27406ae9636aa618
4c69da45eddd66a1e26fce5562fc45eda7005309
19db4d0cc84bff9586883a5fa69c426af0b5fc1c2760ee7c259b0307c8afa6b2
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 20:21:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/roboto/v30/KFOkCnqEu92Fr1MmgVxIIzI.woff2
200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOkCnqEu92Fr1MmgVxIIzI.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 15764, version 1.0\012- data
Hash 603b8950590bf833546eee7cbc79944a
ebbde06eb829868c5f689afe2d48377608be1e7b
0f303f31706d39866cced9dcc17b61fb8423674278d7f6051d66b3a79ffbca18
GET /s/roboto/v30/KFOkCnqEu92Fr1MmgVxIIzI.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://cafedelafonda.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15764
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 28 Jan 2023 10:20:24 GMT
expires: Sun, 28 Jan 2024 10:20:24 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 11 May 2022 19:24:35 GMT
content-type: font/woff2
age: 208877
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 15860, version 1.0\012- data
Hash e9f5aaf547f165386cd313b995dddd8e
acdef5603c2387b0e5bffd744b679a24a8bc1968
f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860
GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://cafedelafonda.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 24 Jan 2023 13:09:06 GMT
expires: Wed, 24 Jan 2024 13:09:06 GMT
cache-control: public, max-age=31536000
age: 544355
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/berkshireswash/v16/ptRRTi-cavZOGqCvnNJDl5m5XmN_qs4z.woff2
200 OK 17 kB URL HTTP/2 fonts.gstatic.com/s/berkshireswash/v16/ptRRTi-cavZOGqCvnNJDl5m5XmN_qs4z.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 17348, version 1.0\012- data
Hash f675315c271031b658d1b61bf2422e72
8205fa4dfb777d6ec082bdec112e73a6096aa404
51831d748cc8e6dccff84ea6cdbcf6018224f017dd336a9e71627abc78717c0a
GET /s/berkshireswash/v16/ptRRTi-cavZOGqCvnNJDl5m5XmN_qs4z.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://cafedelafonda.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 17348
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 25 Jan 2023 00:54:29 GMT
expires: Thu, 25 Jan 2024 00:54:29 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 19 Apr 2022 18:33:26 GMT
content-type: font/woff2
age: 502032
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/lora/v26/0QIhMX1D_JOuMw_LIftL.woff2
200 OK 39 kB URL HTTP/2 fonts.gstatic.com/s/lora/v26/0QIhMX1D_JOuMw_LIftL.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 39056, version 1.0\012- data
Hash ab20a3cbee44939ad33cb2d162484f23
f4df3e71cc8aebd85b6207d4ac35c76c602c2779
0a1dc89a4a29593bd35cc4811bfedd9765eeca4a9ef57323eec2cff14c9f9c5b
GET /s/lora/v26/0QIhMX1D_JOuMw_LIftL.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://cafedelafonda.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 39056
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 27 Jan 2023 02:06:14 GMT
expires: Sat, 27 Jan 2024 02:06:14 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 15 Aug 2022 18:05:31 GMT
content-type: font/woff2
age: 324927
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/lora/v26/0QIvMX1D_JOuMwr7Iw.woff2
200 OK 36 kB URL HTTP/2 fonts.gstatic.com/s/lora/v26/0QIvMX1D_JOuMwr7Iw.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 35660, version 1.0\012- data
Hash 0d0d3e5824e5e67a9e993960df2b67a9
328d67bb1d5899a7809df9f4385181863fd035f1
38da98e06ba18c4204f547d30572cd81a2dd3fd5438d306856d2617480ee8639
GET /s/lora/v26/0QIvMX1D_JOuMwr7Iw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://cafedelafonda.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 35660
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 25 Jan 2023 10:14:29 GMT
expires: Thu, 25 Jan 2024 10:14:29 GMT
cache-control: public, max-age=31536000
age: 468432
last-modified: Mon, 15 Aug 2022 18:07:59 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Hash 15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://cafedelafonda.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 29 Jan 2023 22:02:00 GMT
expires: Mon, 29 Jan 2024 22:02:00 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
age: 80381
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash f075625a67cefc01c034a3c732ec8023
c3ef563fbf1cf30f75fc931f82426a0f859ccb6d
75ce941806680157fcca91d6074496cbbc7cdcf6da28fa35384273bf9a76d588
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 20:21:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
stats.wp.com/s-202305.js
200 OK 4.3 kB IP
File type ASCII text, with very long lines (9364), with no line terminators
Hash 6a15cead95cf4a27facc45cfc29bfcfd
0e10d01c8838d36be070927563a11a8bb9536c8b
41ceeb8ea97a3e17569f0a581e9669936d996d80d3e29236c59af67375ab81e8
GET /s-202305.js HTTP/1.1
Host: stats.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://cafedelafonda.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Mon, 30 Jan 2023 20:21:40 GMT
content-type: application/javascript
vary: Accept-Encoding
etag: W/"62f6b688-2494"
content-encoding: br
expires: Wed, 24 Jan 2024 05:54:37 GMT
cache-control: max-age=31536000
x-nc: HIT arn
X-Firefox-Spdy: h2
pixel.wp.com/g.gif?v=ext&blog=182728436&post=393&tz=-5&srv=cafedelafonda.com&j=1%3A11.6&host=cafedelafonda.com&ref=&fcp=4355&rand=0.7428761335081858
200 OK 50 B URL HTTP/2 pixel.wp.com/g.gif?v=ext&blog=182728436&post=393&tz=-5&srv=cafedelafonda.com&j=1%3A11.6&host=cafedelafonda.com&ref=&fcp=4355&rand=0.7428761335081858
IP
File type GIF image data, version 89a, 6 x 5\012- data
Hash e4d673a55c5656f19ef81563fb10884c
1f2d8ed221d39329251ad3a6ff1edb20b7219443
f3a8992acb9ab911e0fa4ae12f4b85ef8e61008619f13ee51c7a121ff87f63b1
GET /g.gif?v=ext&blog=182728436&post=393&tz=-5&srv=cafedelafonda.com&j=1%3A11.6&host=cafedelafonda.com&ref=&fcp=4355&rand=0.7428761335081858 HTTP/1.1
Host: pixel.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://cafedelafonda.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 30 Jan 2023 20:21:41 GMT
content-type: image/gif
content-length: 50
cache-control: no-cache
access-control-allow-origin: *
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 471 B IP
Hash 5c5bc701375ee726e789d906137c3327
82ae36f943c89e5b60c12f2b09ab2e6b866b3c75
6efceb2ae05906e09732571d3e9a00ede94c80404ca0c99a51cc498497c9012b
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5616
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 20:21:42 GMT
Last-Modified: Mon, 30 Jan 2023 18:48:07 GMT
Server: ECS (ska/F715)
X-Cache: HIT
Content-Length: 471
www.google-analytics.com/analytics.js
200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP
File type ASCII text, with very long lines (1490)
Hash ca7fbbfd120e3e329633044190bbf134
d17f81e03dd827554ddd207ea081fb46b3415445
847004cefb32f85a9cc16b0b1eb77529ff5753680c145bfcb23f651d214737db
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://cafedelafonda.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20085
date: Mon, 30 Jan 2023 19:46:59 GMT
expires: Mon, 30 Jan 2023 21:46:59 GMT
cache-control: public, max-age=7200
age: 2083
last-modified: Tue, 10 Jan 2023 21:29:14 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
region1.google-analytics.com/g/collect?v=2&tid=G-DCTKLRN7SK>m=2oe1p0&_p=1587853884&gdid=dZTNiMT&cid=1407271832.1675110116&ul=en-us&sr=1280x1024&uaW=1&_s=1&sid=1675110115&sct=1&seg=0&dl=https%3A%2F%2Fcafedelafonda.com%2F&dt=Cafe%20de%20la%20Fonda%20%E2%80%93%20Cafe%20de%20origen%2C%20100%25%20Colombiano%20%E2%80%93%20100%25%20Colombian%20Coffee%2C&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1
204 No Content 0 B URL HTTP/2 region1.google-analytics.com/g/collect?v=2&tid=G-DCTKLRN7SK>m=2oe1p0&_p=1587853884&gdid=dZTNiMT&cid=1407271832.1675110116&ul=en-us&sr=1280x1024&uaW=1&_s=1&sid=1675110115&sct=1&seg=0&dl=https%3A%2F%2Fcafedelafonda.com%2F&dt=Cafe%20de%20la%20Fonda%20%E2%80%93%20Cafe%20de%20origen%2C%20100%25%20Colombiano%20%E2%80%93%20100%25%20Colombian%20Coffee%2C&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-DCTKLRN7SK>m=2oe1p0&_p=1587853884&gdid=dZTNiMT&cid=1407271832.1675110116&ul=en-us&sr=1280x1024&uaW=1&_s=1&sid=1675110115&sct=1&seg=0&dl=https%3A%2F%2Fcafedelafonda.com%2F&dt=Cafe%20de%20la%20Fonda%20%E2%80%93%20Cafe%20de%20origen%2C%20100%25%20Colombiano%20%E2%80%93%20100%25%20Colombian%20Coffee%2C&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1 HTTP/1.1
Host: region1.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://cafedelafonda.com/
Origin: https://cafedelafonda.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://cafedelafonda.com
date: Mon, 30 Jan 2023 20:21:42 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.paypal.com/sdk/js?client-id=AVg6ZCLN4JGcPEB-kSNRgEfTtBnuIPnLuUgLjWZQ1E_cLxvNh9twXyn1jVAa73_LrZmNStq_MrCwys59¤cy=COP&integration-date=2022-04-13&components=buttons,funding-eligibility&vault=false&commit=false&intent=capture&disable-funding=card&enable-funding=venmo,paylater
200 OK 92 kB URL HTTP/2 www.paypal.com/sdk/js?client-id=AVg6ZCLN4JGcPEB-kSNRgEfTtBnuIPnLuUgLjWZQ1E_cLxvNh9twXyn1jVAa73_LrZmNStq_MrCwys59¤cy=COP&integration-date=2022-04-13&components=buttons,funding-eligibility&vault=false&commit=false&intent=capture&disable-funding=card&enable-funding=venmo,paylater
IP
File type ASCII text, with very long lines (65472)
Hash e0d3a96379f16d8be7492c379341eed6
72babe9740de1db7e08d9d006c50a222ded03019
b456f6ce3408d60cbe29d31bbc5487d17ebaa60534c774f8b4e9f4071183b821
GET /sdk/js?client-id=AVg6ZCLN4JGcPEB-kSNRgEfTtBnuIPnLuUgLjWZQ1E_cLxvNh9twXyn1jVAa73_LrZmNStq_MrCwys59¤cy=COP&integration-date=2022-04-13&components=buttons,funding-eligibility&vault=false&commit=false&intent=capture&disable-funding=card&enable-funding=venmo,paylater HTTP/1.1
Host: www.paypal.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://cafedelafonda.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-encoding: gzip
access-control-allow-origin: *
access-control-expose-headers: Server-Timing
cache-control: public, max-age=3600, s-maxage=10800
content-security-policy: default-src 'self' https://*.paypal.com https://*.paypalobjects.com; connect-src 'self' https://*.paypal.com https://*.paypalobjects.com https://*.qualtrics.com; frame-src 'self' https://*.paypal.com https://*.paypalobjects.com https://*.qualtrics.com; script-src 'nonce-gTveccaf0oP/wY9I7A09Cws+aTzxaqURNr+DsEG4bnq0VaLf' 'self' https://*.paypal.com https://*.paypalobjects.com 'unsafe-inline'; style-src 'nonce-gTveccaf0oP/wY9I7A09Cws+aTzxaqURNr+DsEG4bnq0VaLf' 'self' https://*.paypal.com https://*.paypalobjects.com 'unsafe-inline'; object-src 'none'; img-src https: data:; form-action 'self' https://*.paypal.com; base-uri 'self' https://*.paypal.com; upgrade-insecure-requests;; report-uri https://www.paypal.com/csplog/api/log/csp
content-type: application/javascript; charset=utf-8
date: Mon, 30 Jan 2023 20:21:42 GMT
dc: ccg11-origin-www-1.paypal.com
etag: W/"16545-crq+l0DeHbfgjZ0AbFCiIt7QMBk"
p3p: true
paypal-debug-id: 0a32569438538
server: ECAcc (frc/4CAD)
server-timing: traceparent;desc="00-00000000000000000000a32569438538-cb2e5371c52d64de-01", content-encoding;desc="", x-cdn;desc="edgecast"
set-cookie: tsrce=clientsdknodeweb; Domain=.paypal.com; Path=/; Expires=Thu, 02 Feb 2023 20:21:42 GMT; HttpOnly; Secure; SameSite=None
l7_az=dcg15.slc; Path=/; Domain=paypal.com; Expires=Mon, 30 Jan 2023 20:51:42 GMT; HttpOnly; Secure
ts=vreXpYrS%3D1769804502%26vteXpYrS%3D1675111902%26vr%3D0457b4c51860a1d517074ac2fd864428%26vt%3D0457b4c51860a1d517074ac2fd864427%26vtyp%3Dnew; Path=/; Domain=paypal.com; Expires=Thu, 29 Jan 2026 20:21:42 GMT; HttpOnly; Secure
ts_c=vr%3D0457b4c51860a1d517074ac2fd864428%26vt%3D0457b4c51860a1d517074ac2fd864427; Path=/; Domain=paypal.com; Expires=Thu, 29 Jan 2026 20:21:42 GMT; Secure
strict-transport-security: max-age=63072000; includeSubDomains; preload
timing-allow-origin: *
traceparent: 00-00000000000000000000a32569438538-b7ae35ae4afb3e02-01
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
content-length: 91461
X-Firefox-Spdy: h2
www.paypalobjects.com/muse/muse.js
200 OK 16 kB URL HTTP/2 www.paypalobjects.com/muse/muse.js
IP
File type ASCII text, with very long lines (55891)
Hash 6aebbe482c72000aea20895991f70478
eff1d3370786f9ee4ea539776bc43ab9bece89ba
2acb950bc7678b9e6c265194821fac386bf555db582ee8c0e2d9e68ff3eaa862
GET /muse/muse.js HTTP/1.1
Host: www.paypalobjects.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://cafedelafonda.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: s-maxage=31536000, public,max-age=3600
content-encoding: gzip
content-type: application/javascript
etag: W/"6271663d-da91"
last-modified: Tue, 03 May 2022 17:28:29 GMT
paypal-debug-id: 84840867de170
timing-allow-origin: https://www.paypal.com,https://www.sandbox.paypal.com
dc: ccg11-origin-www-1.paypal.com
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Mon, 30 Jan 2023 20:21:44 GMT
x-served-by: cache-sjc10029-SJC, cache-bma1680-BMA
x-cache: HIT, HIT
x-cache-hits: 2, 33484
x-timer: S1675110104.122756,VS0,VE0
vary: Accept-Encoding
x-content-type-options: nosniff
strict-transport-security: max-age=31557600
content-length: 16464
X-Firefox-Spdy: h2
www.paypalobjects.com/muse/analytics/index.html
200 OK 17 kB URL HTTP/2 www.paypalobjects.com/muse/analytics/index.html
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (55410)
Hash 56fc10c2e8100a7e4418dc987c23d7a5
5c11880437f36368f82da60522bfcb0d57b395cf
326df6156907ef357f13bf48a5a3798dd4e692345d04fb4edad8370058d1198a
GET /muse/analytics/index.html HTTP/1.1
Host: www.paypalobjects.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://cafedelafonda.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: s-maxage=31536000, public,max-age=3600
content-encoding: gzip
content-type: text/html
etag: W/"6271663d-d994"
last-modified: Tue, 03 May 2022 17:28:29 GMT
paypal-debug-id: 50b39f10d2761
timing-allow-origin: https://www.paypal.com,https://www.sandbox.paypal.com
dc: ccg11-origin-www-1.paypal.com
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Mon, 30 Jan 2023 20:21:44 GMT
x-served-by: cache-sjc10077-SJC, cache-bma1680-BMA
x-cache: HIT, HIT
x-cache-hits: 1, 37946
x-timer: S1675110104.167140,VS0,VE0
vary: Accept-Encoding
x-content-type-options: nosniff
strict-transport-security: max-age=31557600
content-length: 16791
X-Firefox-Spdy: h2
www.paypal.com/tagmanager/pptm.js?id=cafedelafonda.com&t=xo&v=5.0.350&source=payments_sdk&client_id=AVg6ZCLN4JGcPEB-kSNRgEfTtBnuIPnLuUgLjWZQ1E_cLxvNh9twXyn1jVAa73_LrZmNStq_MrCwys59&comp=buttons,funding-eligibility&vault=false
200 OK 4.8 kB URL HTTP/2 www.paypal.com/tagmanager/pptm.js?id=cafedelafonda.com&t=xo&v=5.0.350&source=payments_sdk&client_id=AVg6ZCLN4JGcPEB-kSNRgEfTtBnuIPnLuUgLjWZQ1E_cLxvNh9twXyn1jVAa73_LrZmNStq_MrCwys59&comp=buttons,funding-eligibility&vault=false
IP
Hash e43386df448fb53fdb3c31046679591d
0e4a758d48fe4b865ef9a3801d4a25e84bfd7a35
f247b8981bd560797c53f168b44aed006d1a41e2ec13253c0843f035ed698a7b
GET /tagmanager/pptm.js?id=cafedelafonda.com&t=xo&v=5.0.350&source=payments_sdk&client_id=AVg6ZCLN4JGcPEB-kSNRgEfTtBnuIPnLuUgLjWZQ1E_cLxvNh9twXyn1jVAa73_LrZmNStq_MrCwys59&comp=buttons,funding-eligibility&vault=false HTTP/1.1
Host: www.paypal.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://cafedelafonda.com/
Connection: keep-alive
Cookie: tsrce=clientsdknodeweb
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: gzip
access-control-expose-headers: Server-Timing
cache-control: public, max-age=3600
content-security-policy: default-src 'self' https://*.paypal.com https://*.paypalobjects.com 'unsafe-inline'; script-src 'nonce-hIHV1kgoxphosDDB9f0RidIJEp77Q0m1mo4V+hUOn1GrmRCG' 'self' https://*.paypal.com https://*.paypalobjects.com 'unsafe-inline' 'unsafe-eval'; img-src * data:; object-src 'none'; font-src 'self' https://*.paypalobjects.com https://*.paypal.com; connect-src 'self' https://*.paypal.com https://*.paypalobjects.com https://nexus.ensighten.com https://*.google-analytics.com 'unsafe-inline' https://*.qualtrics.com; form-action 'self' https://*.paypal.com; base-uri 'self' https://*.paypal.com; upgrade-insecure-requests;; report-uri https://www.paypal.com/csplog/api/log/csp; frame-src 'self' https://*.paypal.com https://*.paypalobjects.com 'unsafe-inline' https://*.qualtrics.com;
content-type: application/x-javascript; charset=utf-8
date: Mon, 30 Jan 2023 20:21:43 GMT
dc: ccg11-origin-www-1.paypal.com
etag: W/"356b-sjS+3ijvNxFl0malO+rEsIlbY9w"
paypal-debug-id: 03124852095a1
server: ECAcc (frc/4CD0)
server-timing: traceparent;desc="00-000000000000000000003124852095a1-eb05a0b9c1cdaa5f-01", content-encoding;desc="", x-cdn;desc="edgecast"
set-cookie: LANG=en_US%3BUS; Max-Age=31556; Domain=.paypal.com; Path=/; Expires=Tue, 31 Jan 2023 05:07:39 GMT; HttpOnly; Secure
enforce_policy=ccpa; Max-Age=31536000; Domain=.paypal.com; Path=/; Expires=Tue, 30 Jan 2024 20:21:43 GMT; Secure
x-pp-s=eyJ0IjoiMTY3NTExMDEwMzg0OSIsImwiOiIwIiwibSI6IjAifQ; Domain=.paypal.com; Path=/; HttpOnly; Secure
tsrce=tagmanagernodeweb; Domain=.paypal.com; Path=/; Expires=Thu, 02 Feb 2023 20:21:43 GMT; HttpOnly; Secure; SameSite=None
nsid=s%3A4LiVsr96PQ8dxJqyXN6rUTOt3gZF1rQ9.rG0gifHnyvypWugL1X8RmzYXPgH08%2Fs9bN2ac7Bpr4c; Path=/; HttpOnly; Secure
l7_az=dcg13.slc; Path=/; Domain=paypal.com; Expires=Mon, 30 Jan 2023 20:51:43 GMT; HttpOnly; Secure
ts=vreXpYrS%3D1769804503%26vteXpYrS%3D1675111903%26vr%3D0457b8601860a1f1decf90a3fd8beb54%26vt%3D0457b8601860a1f1decf90a3fd8beb53%26vtyp%3Dnew; Path=/; Domain=paypal.com; Expires=Thu, 29 Jan 2026 20:21:43 GMT; HttpOnly; Secure
ts_c=vr%3D0457b8601860a1f1decf90a3fd8beb54%26vt%3D0457b8601860a1f1decf90a3fd8beb53; Path=/; Domain=paypal.com; Expires=Thu, 29 Jan 2026 20:21:43 GMT; Secure
strict-transport-security: max-age=63072000; includeSubDomains; preload
timing-allow-origin: *
traceparent: 00-000000000000000000003124852095a1-90d097a0af66ef1b-01
vary: Accept-Encoding
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
X-Firefox-Spdy: h2
t.paypal.com/ts?pgrp=muse%3Aoffer%3A%3A%3AFZKRPQRL4PQGN-1&page=muse%3Aoffer%3A%3A%3AFZKRPQRL4PQGN-1%3A%3AvisitorInfoFlowStarted%3A&tsrce=tagmanagernodeweb&comp=tagmanagernodeweb&sub_component=analytics&s=ci&item=c15342fc-02ae-46b3-899b-64b2d5771dcb&es=visitorInfoFlowStarted&mrid=FZKRPQRL4PQGN&code=CHECKOUT_BUTTON&partner_name=CHECKOUT_BUTTON&pt=Cafe%20de%20la%20Fonda%20%E2%80%93%20Cafe%20de%20origen%2C%20100%25%20Colombiano%20%E2%80%93%20100%25%20Colombian%20Coffee%2C&dh=1024&dw=1280&bh=939&bw=1280&cd=24&sh=1024&sw=1280&v=NA&rosetta_language=en-US%2Cen&e=im&t=1675110117765&g=0&completeurl=https%3A%2F%2Fcafedelafonda.com%2F
200 OK 42 B URL HTTP/2 t.paypal.com/ts?pgrp=muse%3Aoffer%3A%3A%3AFZKRPQRL4PQGN-1&page=muse%3Aoffer%3A%3A%3AFZKRPQRL4PQGN-1%3A%3AvisitorInfoFlowStarted%3A&tsrce=tagmanagernodeweb&comp=tagmanagernodeweb&sub_component=analytics&s=ci&item=c15342fc-02ae-46b3-899b-64b2d5771dcb&es=visitorInfoFlowStarted&mrid=FZKRPQRL4PQGN&code=CHECKOUT_BUTTON&partner_name=CHECKOUT_BUTTON&pt=Cafe%20de%20la%20Fonda%20%E2%80%93%20Cafe%20de%20origen%2C%20100%25%20Colombiano%20%E2%80%93%20100%25%20Colombian%20Coffee%2C&dh=1024&dw=1280&bh=939&bw=1280&cd=24&sh=1024&sw=1280&v=NA&rosetta_language=en-US%2Cen&e=im&t=1675110117765&g=0&completeurl=https%3A%2F%2Fcafedelafonda.com%2F
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash b4682377ddfbe4e7dabfddb2e543e842
328e472721a93345801ed5533240eac2d1f8498c
6d8ba81d1b60a18707722a1f2b62dad48a6acced95a1933f49a68b5016620b93
GET /ts?pgrp=muse%3Aoffer%3A%3A%3AFZKRPQRL4PQGN-1&page=muse%3Aoffer%3A%3A%3AFZKRPQRL4PQGN-1%3A%3AvisitorInfoFlowStarted%3A&tsrce=tagmanagernodeweb&comp=tagmanagernodeweb&sub_component=analytics&s=ci&item=c15342fc-02ae-46b3-899b-64b2d5771dcb&es=visitorInfoFlowStarted&mrid=FZKRPQRL4PQGN&code=CHECKOUT_BUTTON&partner_name=CHECKOUT_BUTTON&pt=Cafe%20de%20la%20Fonda%20%E2%80%93%20Cafe%20de%20origen%2C%20100%25%20Colombiano%20%E2%80%93%20100%25%20Colombian%20Coffee%2C&dh=1024&dw=1280&bh=939&bw=1280&cd=24&sh=1024&sw=1280&v=NA&rosetta_language=en-US%2Cen&e=im&t=1675110117765&g=0&completeurl=https%3A%2F%2Fcafedelafonda.com%2F HTTP/1.1
Host: t.paypal.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://cafedelafonda.com/
Connection: keep-alive
Cookie: tsrce=tagmanagernodeweb
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: max-age=0, no-cache, no-store, must-revalidate
content-type: image/gif
date: Mon, 30 Jan 2023 20:21:44 GMT
expires: Mon, 30 Jan 2023 20:21:44 GMT
p3p: policyref="https://t.paypal.com/w3c/p3p.xml",CP="CAO IND OUR SAM UNI STA COR COM"
paypal-debug-id: 3a5b183de7e25
pragma: no-cache
server: ECAcc (frc/4CF8)
server-timing: content-encoding;desc="", x-cdn;desc="edgecast"
set-cookie: ts=vreXpYrS%3D1769804504%26vteXpYrS%3D1675111904%26vr%3D0457bd0b1860a464b9c1d6f1ffffffff%26vt%3D0457bd0b1860a464b9c1d6f1fffffffe; Expires=Fri, 30 Jan 2026 20:21:44 GMT; Domain=.paypal.com; Path=/; Secure; HttpOnly
ts_c=vr%3D0457bd0b1860a464b9c1d6f1ffffffff%26vt%3D0457bd0b1860a464b9c1d6f1fffffffe; Expires=Fri, 30 Jan 2026 20:21:44 GMT; Domain=.paypal.com; Path=/; Secure
strict-transport-security: max-age=63072000; includeSubDomains; preload
timing-allow-origin: *
traceparent: 00-00000000000000000003a5b183de7e25-3e86ce8fdcc24676-01
content-length: 42
X-Firefox-Spdy: h2
www.paypal.com/targeting/graphql
204 No Content 0 B URL HTTP/2 www.paypal.com/targeting/graphql
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /targeting/graphql HTTP/1.1
Host: www.paypal.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://www.paypalobjects.com/
Origin: https://www.paypalobjects.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
access-control-allow-credentials: true
access-control-allow-headers: content-type
access-control-allow-methods: GET,HEAD,PUT,PATCH,POST,DELETE
access-control-allow-origin: https://www.paypalobjects.com
access-control-expose-headers: Paypal-Debug-Id
cache-control: max-age=0, no-cache, no-store, must-revalidate
date: Mon, 30 Jan 2023 20:21:44 GMT
dc: ccg11-origin-www-1.paypal.com
paypal-debug-id: 034a83438a446
server: ECAcc (frc/4C95)
server-timing: content-encoding;desc="", x-cdn;desc="edgecast"
set-cookie: LANG=en_US%3BUS; Max-Age=31556; Domain=.paypal.com; Path=/; Expires=Tue, 31 Jan 2023 05:07:40 GMT; HttpOnly; Secure
enforce_policy=ccpa; Max-Age=31536000; Domain=.paypal.com; Path=/; Expires=Tue, 30 Jan 2024 20:21:44 GMT; Secure
x-pp-s=eyJ0IjoiMTY3NTExMDEwNDM1MSIsImwiOiIwIiwibSI6IjAifQ; Domain=.paypal.com; Path=/; HttpOnly; Secure
nsid=s%3ApZF0XxeUN8-01ioE6XVk015m0QRDHyDX.SkmLc6%2BIcVWp6Ddj3wyc4mGamnK2dhvLJkiipOMu2m0; Path=/; HttpOnly; Secure
l7_az=dcg14.slc; Path=/; Domain=paypal.com; Expires=Mon, 30 Jan 2023 20:51:44 GMT; HttpOnly; Secure
ts=vreXpYrS%3D1769804504%26vteXpYrS%3D1675111904%26vr%3D0457bd121860ad04ba072f67fdb2d335%26vt%3D0457bd121860ad04ba072f67fdb2d334%26vtyp%3Dnew; Path=/; Domain=paypal.com; Expires=Thu, 29 Jan 2026 20:21:44 GMT; HttpOnly; Secure
ts_c=vr%3D0457bd121860ad04ba072f67fdb2d335%26vt%3D0457bd121860ad04ba072f67fdb2d334; Path=/; Domain=paypal.com; Expires=Thu, 29 Jan 2026 20:21:44 GMT; Secure
strict-transport-security: max-age=63072000; includeSubDomains; preload
timing-allow-origin: *
traceparent: 00-0000000000000000000034a83438a446-b8191de018e56742-01
vary: Origin, Access-Control-Request-Headers
X-Firefox-Spdy: h2
www.paypal.com/targeting/graphql
200 OK 304 B URL HTTP/2 www.paypal.com/targeting/graphql
IP
File type JSON data\012- , ASCII text, with very long lines (442)
Hash b14c9dd0b9c21a1c74d34cd213d33494
ab4894504ad81e56b81a61ec3140ba79902f6b29
eb623cc0b1e85f5ada704dab1219c96cbb3c776da03e04402cff57bdc50a8599
POST /targeting/graphql HTTP/1.1
Host: www.paypal.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.paypalobjects.com/
Content-Type: application/json
Origin: https://www.paypalobjects.com
Content-Length: 319
Connection: keep-alive
Cookie: tsrce=tagmanagernodeweb
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: gzip
access-control-allow-credentials: true
access-control-allow-origin: https://www.paypalobjects.com
access-control-expose-headers: Paypal-Debug-Id
cache-control: max-age=0, no-cache, no-store, must-revalidate
content-security-policy: default-src 'self' https://*.paypal.com https://*.paypalobjects.com; img-src 'self' https:; script-src 'nonce-Bj1FTpYrhDzZszXBGtLsNxNVfqsLimo6mcAvHhuPhBl7PCt+' 'self' https://*.paypal.com https://*.paypalobjects.com 'unsafe-inline' ; style-src 'self' https://*.paypal.com https://*.paypalobjects.com 'unsafe-inline' ; form-action 'self' https://*.paypal.com; base-uri 'self' https://*.paypal.com; object-src 'none'; frame-src 'self' https://*.paypal.com https://*.paypalobjects.com https://*.qualtrics.com; connect-src 'self' https://*.paypal.com https://*.paypalobjects.com https://*.qualtrics.com;
content-type: application/json; charset=utf-8
date: Mon, 30 Jan 2023 20:21:44 GMT
dc: ccg11-origin-www-1.paypal.com
etag: W/"1bb-p9EpcdsuPfiu1CwV/U+wdru2DeA"
paypal-debug-id: 01557a6b17556
server: ECAcc (frc/4CBC)
server-timing: content-encoding;desc="", x-cdn;desc="edgecast"
set-cookie: LANG=en_US%3BUS; Max-Age=31556; Domain=.paypal.com; Path=/; Expires=Tue, 31 Jan 2023 05:07:40 GMT; HttpOnly; Secure
enforce_policy=ccpa; Max-Age=31536000; Domain=.paypal.com; Path=/; Expires=Tue, 30 Jan 2024 20:21:44 GMT; Secure
x-pp-s=eyJ0IjoiMTY3NTExMDEwNDYyOSIsImwiOiIwIiwibSI6IjAifQ; Domain=.paypal.com; Path=/; HttpOnly; Secure
tsrce=targetingnodeweb; Domain=.paypal.com; Path=/; Expires=Thu, 02 Feb 2023 20:21:44 GMT; HttpOnly; Secure; SameSite=None
nsid=s%3AA9qRgWDjqS8zhYdlrhRqmQIElyZQMWp2.az1V3FUHL50NiB38aJnv4NUIKumpwbxP0tf%2BJT2iSCg; Path=/; HttpOnly; Secure
l7_az=dcg02.phx; Path=/; Domain=paypal.com; Expires=Mon, 30 Jan 2023 20:51:44 GMT; HttpOnly; Secure
ts=vreXpYrS%3D1769804504%26vteXpYrS%3D1675111904%26vr%3D0457bddf1860a1d640f56f80fd7a04db%26vt%3D0457bddf1860a1d640f56f80fd7a04da%26vtyp%3Dnew; Path=/; Domain=paypal.com; Expires=Thu, 29 Jan 2026 20:21:44 GMT; HttpOnly; Secure
ts_c=vr%3D0457bddf1860a1d640f56f80fd7a04db%26vt%3D0457bddf1860a1d640f56f80fd7a04da; Path=/; Domain=paypal.com; Expires=Thu, 29 Jan 2026 20:21:44 GMT; Secure
strict-transport-security: max-age=63072000; includeSubDomains; preload
timing-allow-origin: *
traceparent: 00-000000000000000000001557a6b17556-1001a1971117abbb-01
vary: Origin,Accept-Encoding
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
content-length: 304
X-Firefox-Spdy: h2
www.paypal.com/xoplatform/logger/api/logger
200 OK 606 B URL HTTP/2 www.paypal.com/xoplatform/logger/api/logger
IP
File type JSON data\012- , ASCII text, with very long lines (1017), with no line terminators
Hash 13687e5870ae9cd694565ff8ddb47321
954f93dbe90362aa38ef38a167a83502e81b589e
968666090e97b4f4d977b5e252097e23ce92b217b5ff32a70f60c739130b48d5
POST /xoplatform/logger/api/logger HTTP/1.1
Host: www.paypal.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://cafedelafonda.com/
content-type: application/json
Content-Length: 1481
Origin: https://cafedelafonda.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: gzip
access-control-allow-credentials: true
access-control-allow-origin: https://cafedelafonda.com
cache-control: max-age=0, no-cache, no-store, must-revalidate
content-type: application/json; charset=utf-8
date: Mon, 30 Jan 2023 20:21:44 GMT
dc: ccg11-origin-www-1.paypal.com
etag: W/"3f9-VetagrDfRaaq5Xc1AwEfEQD3g0Y"
paypal-debug-id: 0a0146a151b10
server: ECAcc (frc/4C9A)
server-timing: content-encoding;desc="", x-cdn;desc="edgecast"
set-cookie: enforce_policy=ccpa; Max-Age=31536000; Domain=.paypal.com; Path=/; Expires=Tue, 30 Jan 2024 20:21:44 GMT; Secure
LANG=en_US%3BUS; Max-Age=31556; Domain=.paypal.com; Path=/; Expires=Tue, 31 Jan 2023 05:07:40 GMT; HttpOnly; Secure
tsrce=loggernodeweb; Max-Age=259199; Domain=.paypal.com; Path=/; Expires=Thu, 02 Feb 2023 20:21:43 GMT; HttpOnly; Secure
x-pp-s=eyJ0IjoiMTY3NTExMDEwNDgyNSIsImwiOiIwIiwibSI6IjAifQ; Domain=.paypal.com; Path=/; HttpOnly; Secure
l7_az=dcg01.phx; Path=/; Domain=paypal.com; Expires=Mon, 30 Jan 2023 20:51:44 GMT; HttpOnly; Secure
ts=vreXpYrS%3D1769804504%26vteXpYrS%3D1675111904%26vr%3D0457bee31860a7a0a6411131ff35cb90%26vt%3D0457bee31860a7a0a6411131ff35cb8f%26vtyp%3Dnew; Path=/; Domain=paypal.com; Expires=Thu, 29 Jan 2026 20:21:44 GMT; HttpOnly; Secure
ts_c=vr%3D0457bee31860a7a0a6411131ff35cb90%26vt%3D0457bee31860a7a0a6411131ff35cb8f; Path=/; Domain=paypal.com; Expires=Thu, 29 Jan 2026 20:21:44 GMT; Secure
strict-transport-security: max-age=63072000; includeSubDomains; preload
timing-allow-origin: *
traceparent: 00-00000000000000000000a0146a151b10-0a874000d9d78860-01
vary: Accept-Encoding
x-content-type-options: nosniff
content-length: 606
X-Firefox-Spdy: h2
t.paypal.com/ts?pgrp=muse%3Aoffer%3A%3A%3AFZKRPQRL4PQGN-1&page=muse%3Aoffer%3A%3A%3AFZKRPQRL4PQGN-1%3A%3AvisitorInfo%3A&tsrce=tagmanagernodeweb&comp=tagmanagernodeweb&sub_component=analytics&s=ci&item=c15342fc-02ae-46b3-899b-64b2d5771dcb&es=visitorInfo&cust=K8SKZ36LQBWXJ&mrid=FZKRPQRL4PQGN&code=CHECKOUT_BUTTON&partner_name=CHECKOUT_BUTTON&pt=Cafe%20de%20la%20Fonda%20%E2%80%93%20Cafe%20de%20origen%2C%20100%25%20Colombiano%20%E2%80%93%20100%25%20Colombian%20Coffee%2C&dh=1024&dw=1280&bh=939&bw=1280&cd=24&sh=1024&sw=1280&v=NA&rosetta_language=en-US%2Cen&unsc=0&identifier_used=IP&e=im&t=1675110118284&g=0&completeurl=https%3A%2F%2Fcafedelafonda.com%2F
200 OK 42 B URL HTTP/2 t.paypal.com/ts?pgrp=muse%3Aoffer%3A%3A%3AFZKRPQRL4PQGN-1&page=muse%3Aoffer%3A%3A%3AFZKRPQRL4PQGN-1%3A%3AvisitorInfo%3A&tsrce=tagmanagernodeweb&comp=tagmanagernodeweb&sub_component=analytics&s=ci&item=c15342fc-02ae-46b3-899b-64b2d5771dcb&es=visitorInfo&cust=K8SKZ36LQBWXJ&mrid=FZKRPQRL4PQGN&code=CHECKOUT_BUTTON&partner_name=CHECKOUT_BUTTON&pt=Cafe%20de%20la%20Fonda%20%E2%80%93%20Cafe%20de%20origen%2C%20100%25%20Colombiano%20%E2%80%93%20100%25%20Colombian%20Coffee%2C&dh=1024&dw=1280&bh=939&bw=1280&cd=24&sh=1024&sw=1280&v=NA&rosetta_language=en-US%2Cen&unsc=0&identifier_used=IP&e=im&t=1675110118284&g=0&completeurl=https%3A%2F%2Fcafedelafonda.com%2F
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash b4682377ddfbe4e7dabfddb2e543e842
328e472721a93345801ed5533240eac2d1f8498c
6d8ba81d1b60a18707722a1f2b62dad48a6acced95a1933f49a68b5016620b93
GET /ts?pgrp=muse%3Aoffer%3A%3A%3AFZKRPQRL4PQGN-1&page=muse%3Aoffer%3A%3A%3AFZKRPQRL4PQGN-1%3A%3AvisitorInfo%3A&tsrce=tagmanagernodeweb&comp=tagmanagernodeweb&sub_component=analytics&s=ci&item=c15342fc-02ae-46b3-899b-64b2d5771dcb&es=visitorInfo&cust=K8SKZ36LQBWXJ&mrid=FZKRPQRL4PQGN&code=CHECKOUT_BUTTON&partner_name=CHECKOUT_BUTTON&pt=Cafe%20de%20la%20Fonda%20%E2%80%93%20Cafe%20de%20origen%2C%20100%25%20Colombiano%20%E2%80%93%20100%25%20Colombian%20Coffee%2C&dh=1024&dw=1280&bh=939&bw=1280&cd=24&sh=1024&sw=1280&v=NA&rosetta_language=en-US%2Cen&unsc=0&identifier_used=IP&e=im&t=1675110118284&g=0&completeurl=https%3A%2F%2Fcafedelafonda.com%2F HTTP/1.1
Host: t.paypal.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://cafedelafonda.com/
Connection: keep-alive
Cookie: tsrce=targetingnodeweb
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: max-age=0, no-cache, no-store, must-revalidate
content-type: image/gif
date: Mon, 30 Jan 2023 20:21:44 GMT
expires: Mon, 30 Jan 2023 20:21:44 GMT
p3p: policyref="https://t.paypal.com/w3c/p3p.xml",CP="CAO IND OUR SAM UNI STA COR COM"
paypal-debug-id: 6da2edcbd0daf
pragma: no-cache
server: ECAcc (frc/4C87)
server-timing: content-encoding;desc="", x-cdn;desc="edgecast"
set-cookie: ts=vreXpYrS%3D1769804504%26vteXpYrS%3D1675111904%26vr%3D0457bf121860a465c714e20bffffffff%26vt%3D0457bf121860a465c714e20bfffffffe; Expires=Fri, 30 Jan 2026 20:21:44 GMT; Domain=.paypal.com; Path=/; Secure; HttpOnly
ts_c=vr%3D0457bf121860a465c714e20bffffffff%26vt%3D0457bf121860a465c714e20bfffffffe; Expires=Fri, 30 Jan 2026 20:21:44 GMT; Domain=.paypal.com; Path=/; Secure
strict-transport-security: max-age=63072000; includeSubDomains; preload
timing-allow-origin: *
traceparent: 00-00000000000000000006da2edcbd0daf-05f19c5b2ec2c1fc-01
content-length: 42
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F55e9b24d-3c7c-46d8-89b7-084483cc3d1d.jpeg
200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F55e9b24d-3c7c-46d8-89b7-084483cc3d1d.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 5190c0bdc6abe0ee258e9f8c20ddaf51
d60f280f8a742480527dbc32d08f321f972d4fcf
874b38a04aa3736e65aaef72da2cc2efceb208618267107a495bdfe51ec58e58
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F55e9b24d-3c7c-46d8-89b7-084483cc3d1d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 12507
x-amzn-requestid: 85c9adcd-b997-48ca-bbfb-ccdeaf3e8cfb
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fhklyFaJoAMFqKA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d6e7be-2bcdd8c353d8429d2b1e95f6;Sampled=0
x-amzn-remapped-date: Sun, 29 Jan 2023 21:40:14 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: UDJKl99GiUxTW_EgWFDjLaJZbKFhfaJR-XRLsbQphwHuCXczDlxrDA==
via: 1.1 a20e81b65d2465c729ce2f6bfe539dd0.cloudfront.net (CloudFront), 1.1 82ea95080f526df99896343fb7269b06.cloudfront.net (CloudFront), 1.1 google
date: Sun, 29 Jan 2023 21:54:37 GMT
age: 80829
etag: "d60f280f8a742480527dbc32d08f321f972d4fcf"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Lora%3A400i%2C700%2C700i%7CRoboto%3A100%2C100i%2C300%2C300i%2C400%2C400i%2C500%2C500i%2C700%2C700i%2C900%2C900i%7CFugaz+One%3A400&subset=cyrillic%2Ccyrillic-ext%2Clatin%2Clatin-ext%2Cvietnamese%2Cgreek%2Cgreek-ext&ver=6.1.1
200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Lora%3A400i%2C700%2C700i%7CRoboto%3A100%2C100i%2C300%2C300i%2C400%2C400i%2C500%2C500i%2C700%2C700i%2C900%2C900i%7CFugaz+One%3A400&subset=cyrillic%2Ccyrillic-ext%2Clatin%2Clatin-ext%2Cvietnamese%2Cgreek%2Cgreek-ext&ver=6.1.1
IP
GET /css?family=Lora%3A400i%2C700%2C700i%7CRoboto%3A100%2C100i%2C300%2C300i%2C400%2C400i%2C500%2C500i%2C700%2C700i%2C900%2C900i%7CFugaz+One%3A400&subset=cyrillic%2Ccyrillic-ext%2Clatin%2Clatin-ext%2Cvietnamese%2Cgreek%2Cgreek-ext&ver=6.1.1 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://cafedelafonda.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Mon, 30 Jan 2023 20:21:40 GMT
date: Mon, 30 Jan 2023 20:21:40 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.googleapis.com/css2?family=Lora%3Aital%2Cwght%400%2C300%3B0%2C400%3B0%2C500%3B0%2C600%3B0%2C700%3B1%2C300%3B1%2C400%3B1%2C500%3B1%2C600%3B1%2C700&display=swap&ver=6.1.1
200 OK 0 B URL HTTP/2 fonts.googleapis.com/css2?family=Lora%3Aital%2Cwght%400%2C300%3B0%2C400%3B0%2C500%3B0%2C600%3B0%2C700%3B1%2C300%3B1%2C400%3B1%2C500%3B1%2C600%3B1%2C700&display=swap&ver=6.1.1
IP
GET /css2?family=Lora%3Aital%2Cwght%400%2C300%3B0%2C400%3B0%2C500%3B0%2C600%3B0%2C700%3B1%2C300%3B1%2C400%3B1%2C500%3B1%2C600%3B1%2C700&display=swap&ver=6.1.1 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://cafedelafonda.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Mon, 30 Jan 2023 20:21:40 GMT
date: Mon, 30 Jan 2023 20:21:40 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cafedelafonda.com/wp-content/plugins/jetpack/css/jetpack.css?ver=11.6
200 OK 0 B URL HTTP/2 cafedelafonda.com/wp-content/plugins/jetpack/css/jetpack.css?ver=11.6
IP
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/jetpack/css/jetpack.css?ver=11.6 HTTP/1.1
Host: cafedelafonda.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://cafedelafonda.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 06 Feb 2023 20:21:40 GMT
content-type: text/css
last-modified: Wed, 04 Jan 2023 22:07:38 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 15678
date: Mon, 30 Jan 2023 20:21:40 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Lora:700%2C400%7CBerkshire+Swash:400%7CRoboto:700%2C400&display=swap
200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Lora:700%2C400%7CBerkshire+Swash:400%7CRoboto:700%2C400&display=swap
IP
GET /css?family=Lora:700%2C400%7CBerkshire+Swash:400%7CRoboto:700%2C400&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://cafedelafonda.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Mon, 30 Jan 2023 20:21:40 GMT
date: Mon, 30 Jan 2023 20:21:40 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.paypal.com/xoplatform/logger/api/logger
200 OK 0 B URL HTTP/2 www.paypal.com/xoplatform/logger/api/logger
IP
OPTIONS /xoplatform/logger/api/logger HTTP/1.1
Host: www.paypal.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://cafedelafonda.com/
Origin: https://cafedelafonda.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-credentials: true
access-control-allow-headers: content-type
access-control-allow-methods: POST
access-control-allow-origin: https://cafedelafonda.com
cache-control: max-age=0, no-cache, no-store, must-revalidate
date: Mon, 30 Jan 2023 20:21:44 GMT
dc: ccg11-origin-www-1.paypal.com
paypal-debug-id: 035310891107a
server: ECAcc (frc/4C94)
server-timing: content-encoding;desc="", x-cdn;desc="edgecast"
set-cookie: LANG=en_US%3BUS; Max-Age=31556; Domain=.paypal.com; Path=/; Expires=Tue, 31 Jan 2023 05:07:40 GMT; HttpOnly; Secure
enforce_policy=ccpa; Max-Age=31536000; Domain=.paypal.com; Path=/; Expires=Tue, 30 Jan 2024 20:21:44 GMT; Secure
x-pp-s=eyJ0IjoiMTY3NTExMDEwNDYwOCIsImwiOiIwIiwibSI6IjAifQ; Domain=.paypal.com; Path=/; HttpOnly; Secure
tsrce=loggernodeweb; Domain=.paypal.com; Path=/; Expires=Thu, 02 Feb 2023 20:21:44 GMT; HttpOnly; Secure; SameSite=None
l7_az=dcg01.phx; Path=/; Domain=paypal.com; Expires=Mon, 30 Jan 2023 20:51:44 GMT; HttpOnly; Secure
ts=vreXpYrS%3D1769804504%26vteXpYrS%3D1675111904%26vr%3D0457be021860ad04b7183900fdb1a61b%26vt%3D0457be021860ad04b7183900fdb1a61a%26vtyp%3Dnew; Path=/; Domain=paypal.com; Expires=Thu, 29 Jan 2026 20:21:44 GMT; HttpOnly; Secure
ts_c=vr%3D0457be021860ad04b7183900fdb1a61b%26vt%3D0457be021860ad04b7183900fdb1a61a; Path=/; Domain=paypal.com; Expires=Thu, 29 Jan 2026 20:21:44 GMT; Secure
strict-transport-security: max-age=63072000; includeSubDomains; preload
timing-allow-origin: *
traceparent: 00-0000000000000000000035310891107a-4d383a73e6a3df67-01
x-content-type-options: nosniff
X-Firefox-Spdy: h2
fonts.googleapis.com/css2?family=Berkshire+Swash%3Aital%2Cwght%400%2C300%3B0%2C400%3B0%2C500%3B0%2C600%3B0%2C700%3B1%2C300%3B1%2C400%3B1%2C500%3B1%2C600%3B1%2C700&display=swap&ver=6.1.1
200 OK 0 B URL HTTP/2 fonts.googleapis.com/css2?family=Berkshire+Swash%3Aital%2Cwght%400%2C300%3B0%2C400%3B0%2C500%3B0%2C600%3B0%2C700%3B1%2C300%3B1%2C400%3B1%2C500%3B1%2C600%3B1%2C700&display=swap&ver=6.1.1
IP
GET /css2?family=Berkshire+Swash%3Aital%2Cwght%400%2C300%3B0%2C400%3B0%2C500%3B0%2C600%3B0%2C700%3B1%2C300%3B1%2C400%3B1%2C500%3B1%2C600%3B1%2C700&display=swap&ver=6.1.1 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://cafedelafonda.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Mon, 30 Jan 2023 20:21:40 GMT
date: Mon, 30 Jan 2023 20:21:40 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
149.56.93.240
34.117.237.239
93.184.220.29
23.36.77.32
0.0.0.0