firefox.settings.services.mozilla.com/v1/
143.204.55.36200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 143.204.55.36:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 2d12f67fe57a87e7366b662d153a5582
d7b02d81cc74f24a251d9363e0f4b0a149264ec1
73c273c0b5a2de3cb970b8e8c187999d3b55e760dc7766dab4bb76428d19b551
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Type, Alert, Backoff, Retry-After, Content-Length
Cache-Control: max-age=3600
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Mon, 26 Sep 2022 11:15:18 GMT
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 095562e8748e634f880ee3c4ada2b6d0.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: wWE6TPcfMURxnN3aRswcRN8MvxKZzTOfFLK7kSSPNx18-qjl7I3WwA==
Age: 2142
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash d2560f62890e75b8de444fed96c22f52
334ce0c48e606ee029f31eeb1463af87b1024bb9
4397e6b45b5822fbab9b83abe0b96ee70efba7cd2160b51936159865ede5fdb1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4397E6B45B5822FBAB9B83ABE0B96EE70EFBA7CD2160B51936159865EDE5FDB1"
Last-Modified: Sun, 25 Sep 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4711
Expires: Mon, 26 Sep 2022 13:09:31 GMT
Date: Mon, 26 Sep 2022 11:51:00 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
143.204.55.25200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
IP 143.204.55.25:0
File type PEM certificate\012- , ASCII text
Hash 6113f8408c59aebe188d6af273b90743
7398873bf00f99944eaa77ad3ebc0d43c23dba6b
b6e0cc9ad68306208a160f3835fb8da76acc5a82d8fde1da5a98e1de1c11a770
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 10 Sep 2022 18:47:45 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Mon, 26 Sep 2022 04:35:16 GMT
etag: "6113f8408c59aebe188d6af273b90743"
x-cache: Hit from cloudfront
via: 1.1 410f51195842d9b592b15d6588c36654.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: aQ5eq4cHsSLgDqrqDlorRIOtxGjlyEUG116-km1XWOFeDUspIZJUiQ==
age: 26145
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Mon, 26 Sep 2022 11:51:00 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
143.204.55.36200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 143.204.55.36:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600, max-age=3600
Date: Mon, 26 Sep 2022 11:10:46 GMT
Expires: Mon, 26 Sep 2022 11:28:27 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 8e6dce34fd223e0c9d89fd938d1784a2.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 5YXN2kCVpmZcsqW7ojQt5Zia9KPFhb6Mw91gc2pc-djphyR24yBItQ==
Age: 2415
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 5adb7eb1d103eadeeafac36e663ffdd3
23b784388dd634fa736cd60aed71570661e73d02
5c95ba48bc342887b4f7ef697bd4def50f6f2f472f654169179e5ac44df883d9
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4348
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 26 Sep 2022 11:51:01 GMT
Last-Modified: Mon, 26 Sep 2022 10:38:34 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
35.155.157.101101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 35.155.157.101:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: A33R+7gku85IPbyYSUOmZg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: im4uRfbSmHBT6IUCnZrSipM6XzY=
kaniwan.cl/
131.108.210.11301 Moved Permanently 0 B IP 131.108.210.11:0
ASN #26623 TECNOLOGIACHILE.COM LTDA TCHILE.COM
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Malware
GET / HTTP/1.1
Host: kaniwan.cl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Mon, 26 Sep 2022 11:51:00 GMT
Server: Apache
X-Redirect-By: WordPress
Location: https://kaniwan.cl/
Content-Length: 0
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 639785692dc29802e484e1e1d0ec86c4
cf81784351ce6302f540f491f893b44496809677
0e47d6e33fe9f6e588d308b62fa059c960a000c56651713e30baf6cd09b7de41
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E47D6E33FE9F6E588D308B62FA059C960A000C56651713E30BAF6CD09B7DE41"
Last-Modified: Sun, 25 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3067
Expires: Mon, 26 Sep 2022 12:42:10 GMT
Date: Mon, 26 Sep 2022 11:51:03 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 639785692dc29802e484e1e1d0ec86c4
cf81784351ce6302f540f491f893b44496809677
0e47d6e33fe9f6e588d308b62fa059c960a000c56651713e30baf6cd09b7de41
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E47D6E33FE9F6E588D308B62FA059C960A000C56651713E30BAF6CD09B7DE41"
Last-Modified: Sun, 25 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3067
Expires: Mon, 26 Sep 2022 12:42:10 GMT
Date: Mon, 26 Sep 2022 11:51:03 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1deb918e-bcb0-4629-aaa7-0ae0322969be.jpeg
34.120.237.76200 OK 13 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1deb918e-bcb0-4629-aaa7-0ae0322969be.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3 DIY-Thermocam raw data\012- (Lepton 2.x), scale 3-257, spot sensor temperature 0.000000, unit celsius, color scheme 0, show scale bar, calibration: offset 0.000000, slope 241253891388563521536.000000\012- data
Hash b3a72e81317074689a71dac7059e4b6a
b6d56333d7f1ea7ddc8838d84de498ff913c5464
e665a8821b5e7b2e78787647a08d629bf70cbf4cbfee2057c8601cf0565154a1
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1deb918e-bcb0-4629-aaa7-0ae0322969be.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12826
x-amzn-requestid: f075cf62-acfc-4bc1-be14-7c3dafb7aaed
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YfVRNFP-oAMFgrA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6322cf3a-184b678042d64ac9266b1128;Sampled=0
x-amzn-remapped-date: Thu, 15 Sep 2022 07:07:38 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: W6ZD1652Yn1xqZG7ehDcirlYoG8Hcsrdj11Fzfgj7zb-OiU8xHj1gw==
via: 1.1 7f5e0d3b9ea85d0d75063a66c0ebc840.cloudfront.net (CloudFront), 1.1 91356d2137f5a7345e93da4516c49ec4.cloudfront.net (CloudFront), 1.1 google
date: Sun, 25 Sep 2022 21:37:19 GMT
age: 51224
etag: "b6d56333d7f1ea7ddc8838d84de498ff913c5464"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F744f3733-ce02-4fd8-bd5a-62fdf6e03e58.jpeg
34.120.237.76200 OK 14 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F744f3733-ce02-4fd8-bd5a-62fdf6e03e58.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 45bfaa4f09146505d73d50365c63e9df
f31946e5ed8806c8c8ca0b7e7bcc8e3ea8df9c85
107d33f184be7c156e133b679752ee324be33c9c5e242ce67e0aafad811a592e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F744f3733-ce02-4fd8-bd5a-62fdf6e03e58.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 14161
x-amzn-requestid: e2dec384-fbe8-44d6-9024-dcf46ed71e27
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZCSJuGQFIAMFS9A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6330ca3e-004eb3805201c42170903ac5;Sampled=0
x-amzn-remapped-date: Sun, 25 Sep 2022 21:38:06 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: ydsxR8YxLX5go4Ti83lBg05bRXvYryUWiFQe_qxYqerzlChGKwYV9A==
via: 1.1 a4fe306096165bb1e86e69365dc8fac2.cloudfront.net (CloudFront), 1.1 0d4ebcaa87ba94709def0eaac9371e5a.cloudfront.net (CloudFront), 1.1 google
date: Sun, 25 Sep 2022 21:47:24 GMT
age: 50619
etag: "f31946e5ed8806c8c8ca0b7e7bcc8e3ea8df9c85"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3a7e9af9-ebe4-49ea-9af4-d118f2ef0b43.jpeg
34.120.237.76200 OK 8.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3a7e9af9-ebe4-49ea-9af4-d118f2ef0b43.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 431ff1171a3d7c60a31cc1c3f62164ee
4b32113aaf50132b38c8034017a6eb5a32d7040b
65d598db252fb3979d3df3cb8d052861bb31d6187552f9c694ec27a322b308c9
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3a7e9af9-ebe4-49ea-9af4-d118f2ef0b43.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8851
x-amzn-requestid: dbe6ba4c-3d38-48e8-9d08-088d8e26e7a4
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZCUDAE23oAMF_yg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6330cd46-4f3b85952fa3109d2921d0e1;Sampled=0
x-amzn-remapped-date: Sun, 25 Sep 2022 21:51:02 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: wbbfzE5nQkhK_nsXX8XGJbOl3Yf6NDA1r_AC-0dOzqJDkLQ2BLxK9A==
via: 1.1 ddd913fbbe7367d44af4ac06097e7a2a.cloudfront.net (CloudFront), 1.1 09331f0822fc98eebaf04130a83dbd44.cloudfront.net (CloudFront), 1.1 google
date: Sun, 25 Sep 2022 22:32:20 GMT
age: 47923
etag: "4b32113aaf50132b38c8034017a6eb5a32d7040b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Febd85aa2-fe15-49c2-aa3e-38b97cb99849.jpeg
34.120.237.76200 OK 5.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Febd85aa2-fe15-49c2-aa3e-38b97cb99849.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 2fe8c4f0c70fb6c1f4259eabedc7015e
85e378d0fff856832a8dd01743516b9476fed8c6
508a1c7d350fcf82d1ece0b99f8557b2f300c7c1148f28c3ae9fece20530e4b6
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Febd85aa2-fe15-49c2-aa3e-38b97cb99849.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5157
x-amzn-requestid: b5748f49-693f-4bc3-a850-cb68e770de24
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZCUG9GUHIAMF7pw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6330cd5f-5d2aaa212cf1be2506593746;Sampled=0
x-amzn-remapped-date: Sun, 25 Sep 2022 21:51:27 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: 4h9lb_7egxb2hBbxjcS_cpZ5lDq6Lx-c_WUZyRHdUA0YTwr6kgDuiQ==
via: 1.1 86b676273517904f44af31586adb06ae.cloudfront.net (CloudFront), 1.1 5fe5f2a3903f1378941d92eceaf3fa16.cloudfront.net (CloudFront), 1.1 google
date: Sun, 25 Sep 2022 22:10:16 GMT
age: 49247
etag: "85e378d0fff856832a8dd01743516b9476fed8c6"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9723d426-a6ee-4860-8067-0b8d98143233.jpeg
34.120.237.76200 OK 8.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9723d426-a6ee-4860-8067-0b8d98143233.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d02ede0c964f3346fd53ae2950bf2a62
e49306a3713cb724be024a4ddb5e90645718a718
c0e653d89656016c55aca9b198b9191620f1ae9a3c45742a90744bd74c4f9505
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9723d426-a6ee-4860-8067-0b8d98143233.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8637
x-amzn-requestid: 07dc23e0-000f-4f6c-8d2b-0e65d88be270
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZCSvvEenoAMFr0Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6330cb31-520803124760abc216152d7b;Sampled=0
x-amzn-remapped-date: Sun, 25 Sep 2022 21:42:09 GMT
x-amz-cf-pop: SEA19-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: mToVKJcSAtJB1AOuQ-Y9o_EZzyhUuZJivVa3DLql5FwzK4NC82kh5Q==
via: 1.1 27a84054de24e45f952ea4056a821764.cloudfront.net (CloudFront), 1.1 0d4ebcaa87ba94709def0eaac9371e5a.cloudfront.net (CloudFront), 1.1 google
date: Sun, 25 Sep 2022 22:06:17 GMT
age: 49486
etag: "e49306a3713cb724be024a4ddb5e90645718a718"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7838a122-2b2e-4e4c-9bcc-7c6b46a93b1e.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7838a122-2b2e-4e4c-9bcc-7c6b46a93b1e.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 968b9c138702fb5994d1d9eab1a697fa
9660bb2d38079182efbd11d7a687bfc7f9d30751
5ba74820ad451747c8ed25529f06b037bebf4c0616a1f2165c9197c1171db7a6
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7838a122-2b2e-4e4c-9bcc-7c6b46a93b1e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11728
x-amzn-requestid: bf60e58f-c4f4-45c7-923b-0d1539f720f5
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZCUCGGw7oAMF3wQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6330cd40-32043c1b1411544f5d00edc0;Sampled=0
x-amzn-remapped-date: Sun, 25 Sep 2022 21:50:56 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: ZRG0Axnhc5RY5rDbnnbauco9dpPeFdkP01UxkpNYI5pgSbfGKWcikw==
via: 1.1 26ca01ec7377e425b59b6a08cb1ec342.cloudfront.net (CloudFront), 1.1 73cb83fe6699afc2791b5c690c1ff8c6.cloudfront.net (CloudFront), 1.1 google
date: Sun, 25 Sep 2022 22:16:26 GMT
age: 48877
etag: "9660bb2d38079182efbd11d7a687bfc7f9d30751"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash f09a18ffd47757d6303864753f40a57c
6f056a04785c83dae4a4f40eaac5ac34a5a391f2
9969afe37e2b095cd931423fcc9dbfaa9a751d81a055bcd8f77a1aa7a51bd72e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 26 Sep 2022 11:51:04 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.googleapis.com/css?family=Poppins%3A300%2C500%2C600%2C600italic%2C700%2C500italic%2C400%2C700italic%2C800%7COpen+Sans%3A400%2C400italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic&display=swap&ver=6.0.2
142.250.74.10200 OK 1.8 kB URL HTTP/2 fonts.googleapis.com/css?family=Poppins%3A300%2C500%2C600%2C600italic%2C700%2C500italic%2C400%2C700italic%2C800%7COpen+Sans%3A400%2C400italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic&display=swap&ver=6.0.2
IP 142.250.74.10:0
Hash e68f606736547aaaf7550db6fc759801
f620bcb4530e3445e36665b583b8dd6988decf06
5701fffc603f99b7eadbd602159b22834b7693cef3abfca0c255ce4623569512
GET /css?family=Poppins%3A300%2C500%2C600%2C600italic%2C700%2C500italic%2C400%2C700italic%2C800%7COpen+Sans%3A400%2C400italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic&display=swap&ver=6.0.2 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kaniwan.cl/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Mon, 26 Sep 2022 11:51:04 GMT
date: Mon, 26 Sep 2022 11:51:04 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
kaniwan.cl/
131.108.210.11200 OK 126 kB IP 131.108.210.11:0
ASN #26623 TECNOLOGIACHILE.COM LTDA TCHILE.COM
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (20424), with CRLF, LF line terminators
Size 126 kB (125450 bytes)
Hash c92f4395395bb55d8b1f3b7c24473342
21d945f2349512bb0adbc7396255ac607acd1ac2
fbed7bb0d2b067e5e30bb8d667109885a7fc2c9b136ca6e987a5f927832c7bb3
Analyzer Verdict Alert fortinet Malware
GET / HTTP/1.1
Host: kaniwan.cl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/1.1 200 OK
Date: Mon, 26 Sep 2022 11:51:02 GMT
Server: Apache
Link: <https://kaniwan.cl/wp-json/>; rel="https://api.w.org/", <https://kaniwan.cl/wp-json/wp/v2/pages/23761>; rel="alternate"; type="application/json", <https://kaniwan.cl/>; rel=shortlink
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
kaniwan.cl/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.6.3
131.108.210.11200 OK 2.7 kB URL HTTP/1.1 kaniwan.cl/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.6.3
IP 131.108.210.11:0
ASN #26623 TECNOLOGIACHILE.COM LTDA TCHILE.COM
Hash e6fae855021a88a0067fcc58121c594f
6299ac3987b5e81725781799dad361d19ac3b99d
e50f9ccd2d6582a58ba1879fa578e60d25fea4c5eedc07deafd14482b2403181
GET /wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.6.3 HTTP/1.1
Host: kaniwan.cl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kaniwan.cl/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 26 Sep 2022 11:51:04 GMT
Server: Apache
Last-Modified: Mon, 12 Sep 2022 14:55:27 GMT
Accept-Ranges: bytes
Content-Length: 2731
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
kaniwan.cl/wp-content/plugins/rut-chileno-con-validacion/public/css/wc-chilean-bundle-public.css?ver=1.1.0
131.108.210.11200 OK 98 B URL HTTP/1.1 kaniwan.cl/wp-content/plugins/rut-chileno-con-validacion/public/css/wc-chilean-bundle-public.css?ver=1.1.0
IP 131.108.210.11:0
ASN #26623 TECNOLOGIACHILE.COM LTDA TCHILE.COM
Hash e6094661d8923e95b233019ebff7c8f0
cfd836d385d475baffee45d85cfeb9bb36e70d9e
547dda3c14b284819be511be1e410da94a5efc6ccc4a9afe1c75394f9333191a
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/rut-chileno-con-validacion/public/css/wc-chilean-bundle-public.css?ver=1.1.0 HTTP/1.1
Host: kaniwan.cl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kaniwan.cl/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 26 Sep 2022 11:51:04 GMT
Server: Apache
Last-Modified: Mon, 15 Mar 2021 01:48:50 GMT
Accept-Ranges: bytes
Content-Length: 98
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
kaniwan.cl/wp-content/plugins/Ultimate_VC_Addons/assets/min-css/style.min.css?ver=3.19.11
131.108.210.11200 OK 13 kB URL HTTP/1.1 kaniwan.cl/wp-content/plugins/Ultimate_VC_Addons/assets/min-css/style.min.css?ver=3.19.11
IP 131.108.210.11:0
ASN #26623 TECNOLOGIACHILE.COM LTDA TCHILE.COM
File type ASCII text, with very long lines (13362), with no line terminators
Hash bc9c0a583bffafcbad675ef5925ba710
9bba5dbbffabbed2a5c5d820538bc37a9256e58c
9a31d5c9c0b108e9c1d8ccd47780a975d44ed8665a3be8a37b2c3614ad5fc157
GET /wp-content/plugins/Ultimate_VC_Addons/assets/min-css/style.min.css?ver=3.19.11 HTTP/1.1
Host: kaniwan.cl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kaniwan.cl/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 26 Sep 2022 11:51:05 GMT
Server: Apache
Last-Modified: Tue, 29 Mar 2022 14:06:54 GMT
Accept-Ranges: bytes
Content-Length: 13362
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
kaniwan.cl/wp-content/uploads/smile_fonts/Defaults/Defaults.css?ver=3.19.11
131.108.210.11200 OK 28 kB URL HTTP/1.1 kaniwan.cl/wp-content/uploads/smile_fonts/Defaults/Defaults.css?ver=3.19.11
IP 131.108.210.11:0
ASN #26623 TECNOLOGIACHILE.COM LTDA TCHILE.COM
File type ASCII text, with very long lines (27639), with no line terminators
Hash 36ea4805809e6b690c2f5126a0808297
4531470deab3efd0b8499f29a323a1b45f0efced
4354449ab7a164ef5486d12020f3bc403b8ff104a8da73e9f9332106b86b061c
Analyzer Verdict Alert fortinet Malware
GET /wp-content/uploads/smile_fonts/Defaults/Defaults.css?ver=3.19.11 HTTP/1.1
Host: kaniwan.cl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kaniwan.cl/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 26 Sep 2022 11:51:05 GMT
Server: Apache
Last-Modified: Sat, 13 Mar 2021 22:21:07 GMT
Accept-Ranges: bytes
Content-Length: 27639
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
kaniwan.cl/wp-content/plugins/Ultimate_VC_Addons/assets/min-css/slick.min.css?ver=3.19.11
131.108.210.11200 OK 6.0 kB URL HTTP/1.1 kaniwan.cl/wp-content/plugins/Ultimate_VC_Addons/assets/min-css/slick.min.css?ver=3.19.11
IP 131.108.210.11:0
ASN #26623 TECNOLOGIACHILE.COM LTDA TCHILE.COM
File type Unicode text, UTF-8 text, with very long lines (5951), with no line terminators
Hash 6663c483cd3e18c0e6c94cc5abbf7829
39e9794a15d1b2a75fab8f10773d11f469f0de75
13d181334b653e0e28d1d0f84553dd42825d43840214eac5c28b5958920616e9
GET /wp-content/plugins/Ultimate_VC_Addons/assets/min-css/slick.min.css?ver=3.19.11 HTTP/1.1
Host: kaniwan.cl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kaniwan.cl/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 26 Sep 2022 11:51:05 GMT
Server: Apache
Last-Modified: Tue, 29 Mar 2022 14:06:54 GMT
Accept-Ranges: bytes
Content-Length: 5953
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
kaniwan.cl/wp-content/plugins/Ultimate_VC_Addons/assets/css/icons.css?ver=3.19.11
131.108.210.11200 OK 1.6 kB URL HTTP/1.1 kaniwan.cl/wp-content/plugins/Ultimate_VC_Addons/assets/css/icons.css?ver=3.19.11
IP 131.108.210.11:0
ASN #26623 TECNOLOGIACHILE.COM LTDA TCHILE.COM
File type ASCII text, with CRLF line terminators
Hash d1bf2259b160993796fa278c4a652c72
1c19c51cd93f6bb7243b486b5dc7d7ecd4111b75
e18a7e7c066be5b361790012308feff237d8d95a175feee93f5304efbaf1651c
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/Ultimate_VC_Addons/assets/css/icons.css?ver=3.19.11 HTTP/1.1
Host: kaniwan.cl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kaniwan.cl/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 26 Sep 2022 11:51:05 GMT
Server: Apache
Last-Modified: Tue, 29 Mar 2022 14:06:54 GMT
Accept-Ranges: bytes
Content-Length: 1599
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
kaniwan.cl/wp-content/plugins/Ultimate_VC_Addons/assets/min-css/animate.min.css?ver=3.19.11
131.108.210.11200 OK 70 kB URL HTTP/1.1 kaniwan.cl/wp-content/plugins/Ultimate_VC_Addons/assets/min-css/animate.min.css?ver=3.19.11
IP 131.108.210.11:0
ASN #26623 TECNOLOGIACHILE.COM LTDA TCHILE.COM
File type ASCII text, with very long lines (64385), with CRLF line terminators
Hash 9de78c593950f1caca6e6068cb353f92
707dbccc34027929a9bbef5f4a16cb8dc38f4d27
fdf1f6b74140e75ff45ecec7fe84540a6c0c2f307946e99cddb1d70da6811654
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/Ultimate_VC_Addons/assets/min-css/animate.min.css?ver=3.19.11 HTTP/1.1
Host: kaniwan.cl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kaniwan.cl/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 26 Sep 2022 11:51:05 GMT
Server: Apache
Last-Modified: Tue, 29 Mar 2022 14:06:54 GMT
Accept-Ranges: bytes
Content-Length: 70199
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css
kaniwan.cl/wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.4.3
131.108.210.11200 OK 61 kB URL HTTP/1.1 kaniwan.cl/wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.4.3
IP 131.108.210.11:0
ASN #26623 TECNOLOGIACHILE.COM LTDA TCHILE.COM
File type Unicode text, UTF-8 text, with very long lines (12602), with CRLF line terminators
Hash 74179b8bedf852b2fe74728e6628f101
ba2eaa1b6b10e3eb56b88c802718b19b8a2fb3e1
3e552d7bc9bfca204cf359cf30bc26b49a0f9a66dc22240a5f816fee0e069fbd
GET /wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.4.3 HTTP/1.1
Host: kaniwan.cl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kaniwan.cl/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 26 Sep 2022 11:51:04 GMT
Server: Apache
Last-Modified: Sat, 13 Mar 2021 21:09:36 GMT
Accept-Ranges: bytes
Content-Length: 61044
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
kaniwan.cl/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
131.108.210.11200 OK 11 kB URL HTTP/1.1 kaniwan.cl/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP 131.108.210.11:0
ASN #26623 TECNOLOGIACHILE.COM LTDA TCHILE.COM
File type ASCII text, with very long lines (11126)
Hash 79b4956b7ec478ec10244b5e2d33ac7d
a46025b9d05e3df30d610a8aef14f392c7058dc9
029e0a2e809fd6b5dbe76abe8b7a74936be306c9a8c27c814c4d44aa54623300
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: kaniwan.cl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kaniwan.cl/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 26 Sep 2022 11:51:05 GMT
Server: Apache
Last-Modified: Wed, 18 Nov 2020 09:06:06 GMT
Accept-Ranges: bytes
Content-Length: 11224
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript
kaniwan.cl/wp-content/plugins/rut-chileno-con-validacion/public/js/wc-chilean-bundle-public.js?ver=1.1.0
131.108.210.11200 OK 1.6 kB URL HTTP/1.1 kaniwan.cl/wp-content/plugins/rut-chileno-con-validacion/public/js/wc-chilean-bundle-public.js?ver=1.1.0
IP 131.108.210.11:0
ASN #26623 TECNOLOGIACHILE.COM LTDA TCHILE.COM
File type ASCII text, with very long lines (761)
Hash 7e661c0e5b86c81cd8dbbae5a392f002
b0a92d2fba3b55738ac43ca8c010186935398845
19a5bc9af52c44e4e7bcaa76102bd67a0baa82acaa1c3ad3d287b501252e983d
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/rut-chileno-con-validacion/public/js/wc-chilean-bundle-public.js?ver=1.1.0 HTTP/1.1
Host: kaniwan.cl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kaniwan.cl/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 26 Sep 2022 11:51:05 GMT
Server: Apache
Last-Modified: Mon, 15 Mar 2021 01:48:50 GMT
Accept-Ranges: bytes
Content-Length: 1599
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/javascript
kaniwan.cl/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
131.108.210.11200 OK 90 kB URL HTTP/1.1 kaniwan.cl/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
IP 131.108.210.11:0
ASN #26623 TECNOLOGIACHILE.COM LTDA TCHILE.COM
File type ASCII text, with very long lines (65447)
Hash 02dd5d04add4759122013c5ab4dc5cc2
a45a56e396ac549b4ff39b696ce9e0c16a7612de
bd4de6a3fc0fb68d6f76ba7b93514b96a92e585c295b5351c31ad92a4b0777ea
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.0 HTTP/1.1
Host: kaniwan.cl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kaniwan.cl/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 26 Sep 2022 11:51:05 GMT
Server: Apache
Last-Modified: Wed, 10 Mar 2021 15:07:24 GMT
Accept-Ranges: bytes
Content-Length: 89521
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/javascript
kaniwan.cl/wp-content/plugins/Ultimate_VC_Addons/assets/min-js/ultimate-params.min.js?ver=3.19.11
131.108.210.11200 OK 1.1 kB URL HTTP/1.1 kaniwan.cl/wp-content/plugins/Ultimate_VC_Addons/assets/min-js/ultimate-params.min.js?ver=3.19.11
IP 131.108.210.11:0
ASN #26623 TECNOLOGIACHILE.COM LTDA TCHILE.COM
File type HTML document, ASCII text, with very long lines (1108), with no line terminators
Hash 77f1aa68672dbccdb8b027d66855bd01
33888afc11257c6c28bcd483a072901b6a818ff5
1b10d243afb4a51af9177fd7be630d28d6deec9b83d3dbdc434a0ecc16d5fb89
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/Ultimate_VC_Addons/assets/min-js/ultimate-params.min.js?ver=3.19.11 HTTP/1.1
Host: kaniwan.cl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kaniwan.cl/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 26 Sep 2022 11:51:05 GMT
Server: Apache
Last-Modified: Tue, 29 Mar 2022 14:06:55 GMT
Accept-Ranges: bytes
Content-Length: 1108
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript
kaniwan.cl/wp-content/plugins/Ultimate_VC_Addons/assets/min-js/custom.min.js?ver=3.19.11
131.108.210.11200 OK 21 kB URL HTTP/1.1 kaniwan.cl/wp-content/plugins/Ultimate_VC_Addons/assets/min-js/custom.min.js?ver=3.19.11
IP 131.108.210.11:0
ASN #26623 TECNOLOGIACHILE.COM LTDA TCHILE.COM
File type ASCII text, with very long lines (21126), with no line terminators
Hash cc40c3f2fa084ca1bab5d9e5fbd6ddd8
60c3b92e604af6feb6777f3ac77860233a2941a2
d8e49702031a4c0aa7cc3948ef8c57ff618d4358fea07da88a39186854f20fb6
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/Ultimate_VC_Addons/assets/min-js/custom.min.js?ver=3.19.11 HTTP/1.1
Host: kaniwan.cl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kaniwan.cl/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 26 Sep 2022 11:51:05 GMT
Server: Apache
Last-Modified: Tue, 29 Mar 2022 14:06:55 GMT
Accept-Ranges: bytes
Content-Length: 21126
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript
kaniwan.cl/wp-content/plugins/Ultimate_VC_Addons/assets/min-js/slick.min.js?ver=3.19.11
131.108.210.11200 OK 41 kB URL HTTP/1.1 kaniwan.cl/wp-content/plugins/Ultimate_VC_Addons/assets/min-js/slick.min.js?ver=3.19.11
IP 131.108.210.11:0
ASN #26623 TECNOLOGIACHILE.COM LTDA TCHILE.COM
File type ASCII text, with very long lines (40670), with no line terminators
Hash e9385e41ef621ed031b7b423490df65e
56cf754db2c2f25db664304185fa9d7ce70f5eaf
8cb729861460e8b4c0d348e98400b7ce50c7abf86df6dd0004975d40daf8be27
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/Ultimate_VC_Addons/assets/min-js/slick.min.js?ver=3.19.11 HTTP/1.1
Host: kaniwan.cl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kaniwan.cl/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 26 Sep 2022 11:51:06 GMT
Server: Apache
Last-Modified: Tue, 29 Mar 2022 14:06:55 GMT
Accept-Ranges: bytes
Content-Length: 40670
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript
kaniwan.cl/wp-content/plugins/Ultimate_VC_Addons/assets/min-js/jquery-appear.min.js?ver=3.19.11
131.108.210.11200 OK 1.4 kB URL HTTP/1.1 kaniwan.cl/wp-content/plugins/Ultimate_VC_Addons/assets/min-js/jquery-appear.min.js?ver=3.19.11
IP 131.108.210.11:0
ASN #26623 TECNOLOGIACHILE.COM LTDA TCHILE.COM
File type ASCII text, with very long lines (1353), with no line terminators
Hash 4b98ca0c3fd2dd6bb074c3d6fd3df791
6e2eb34d2c9e64b22ba1af37c9112f2e6431010e
2e8fc6aca9005a5f3a01cf42ecac4027011eaf71afb5cb9d64820b432b0d7bc3
GET /wp-content/plugins/Ultimate_VC_Addons/assets/min-js/jquery-appear.min.js?ver=3.19.11 HTTP/1.1
Host: kaniwan.cl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kaniwan.cl/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 26 Sep 2022 11:51:06 GMT
Server: Apache
Last-Modified: Tue, 29 Mar 2022 14:06:55 GMT
Accept-Ranges: bytes
Content-Length: 1353
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript
kaniwan.cl/wp-content/plugins/Ultimate_VC_Addons/assets/min-js/slick-custom.min.js?ver=3.19.11
131.108.210.11200 OK 3.1 kB URL HTTP/1.1 kaniwan.cl/wp-content/plugins/Ultimate_VC_Addons/assets/min-js/slick-custom.min.js?ver=3.19.11
IP 131.108.210.11:0
ASN #26623 TECNOLOGIACHILE.COM LTDA TCHILE.COM
File type HTML document, ASCII text, with very long lines (3078), with no line terminators
Hash 72a52fd5dc1be8e5a0fc7f37bee56029
531060037905d22b1d714450c1f8db1e3d309891
f5a5d53823fdc12931896f011eb7c2c781dcbe0daf6a438de6db2f871928df02
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/Ultimate_VC_Addons/assets/min-js/slick-custom.min.js?ver=3.19.11 HTTP/1.1
Host: kaniwan.cl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kaniwan.cl/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 26 Sep 2022 11:51:06 GMT
Server: Apache
Last-Modified: Tue, 29 Mar 2022 14:06:55 GMT
Accept-Ranges: bytes
Content-Length: 3078
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript
kaniwan.cl/wp-content/plugins/revslider/public/assets/js/rbtools.min.js?ver=6.4.3
131.108.210.11200 OK 125 kB URL HTTP/1.1 kaniwan.cl/wp-content/plugins/revslider/public/assets/js/rbtools.min.js?ver=6.4.3
IP 131.108.210.11:0
ASN #26623 TECNOLOGIACHILE.COM LTDA TCHILE.COM
File type ASCII text, with very long lines (42889)
Size 125 kB (124720 bytes)
Hash 254b9bfcd5fdf14ba11ba93c06f2c29b
61f3d82b2984567659e2672799460a17f450b5c6
95e73a0206394a4dfec8d22c2fc341a5ec013cb75837c6cf03cccf3039e15d3e
GET /wp-content/plugins/revslider/public/assets/js/rbtools.min.js?ver=6.4.3 HTTP/1.1
Host: kaniwan.cl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kaniwan.cl/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 26 Sep 2022 11:51:05 GMT
Server: Apache
Last-Modified: Sat, 13 Mar 2021 21:09:36 GMT
Accept-Ranges: bytes
Content-Length: 124720
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript
kaniwan.cl/wp-includes/js/wp-emoji-release.min.js?ver=6.0.2
131.108.210.11200 OK 19 kB URL HTTP/1.1 kaniwan.cl/wp-includes/js/wp-emoji-release.min.js?ver=6.0.2
IP 131.108.210.11:0
ASN #26623 TECNOLOGIACHILE.COM LTDA TCHILE.COM
File type ASCII text, with very long lines (15660)
Hash 32beb68a374e3aeac00abdf9e12b84ea
b5d18aa625e8696dd9d07cd0869337717b211ae0
5aad5fbd4238981a9ff5e2772ff1353dfe1a801fb49542fe157418c1438f7782
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/wp-emoji-release.min.js?ver=6.0.2 HTTP/1.1
Host: kaniwan.cl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kaniwan.cl/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 26 Sep 2022 11:51:06 GMT
Server: Apache
Last-Modified: Wed, 29 Jun 2022 15:02:18 GMT
Accept-Ranges: bytes
Content-Length: 18617
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript
kaniwan.cl/wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.4.3
131.108.210.11200 OK 356 kB URL HTTP/1.1 kaniwan.cl/wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.4.3
IP 131.108.210.11:0
ASN #26623 TECNOLOGIACHILE.COM LTDA TCHILE.COM
File type ASCII text, with very long lines (64270)
Size 356 kB (356416 bytes)
Hash 972ac9b6c7e259cb865fc6265b45a97f
e05aca880e5b1e1bbfe95603ff3d3af7e78ff119
3e20c01446670de86721f6683350473bde6f92fbf132f222256e4da61930bdb7
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.4.3 HTTP/1.1
Host: kaniwan.cl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kaniwan.cl/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 26 Sep 2022 11:51:05 GMT
Server: Apache
Last-Modified: Sat, 13 Mar 2021 21:09:36 GMT
Accept-Ranges: bytes
Content-Length: 356416
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript
kaniwan.cl/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.3
131.108.210.11200 OK 12 kB URL HTTP/1.1 kaniwan.cl/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.3
IP 131.108.210.11:0
ASN #26623 TECNOLOGIACHILE.COM LTDA TCHILE.COM
File type HTML document, ASCII text, with very long lines (12211), with no line terminators
Hash 3f3fc23f477a3849aa5677c585b2a2b4
ccf0865ebd37f76c450c7a377a86ff2448288db3
985fdd42398281348ca133a44750a56fe4909a806b9c075c9443a5d0bd6d2e51
GET /wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.3 HTTP/1.1
Host: kaniwan.cl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kaniwan.cl/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 26 Sep 2022 11:51:06 GMT
Server: Apache
Last-Modified: Mon, 12 Sep 2022 14:55:27 GMT
Accept-Ranges: bytes
Content-Length: 12211
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript
kaniwan.cl/wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4-wc.6.8.2
131.108.210.11200 OK 1.8 kB URL HTTP/1.1 kaniwan.cl/wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4-wc.6.8.2
IP 131.108.210.11:0
ASN #26623 TECNOLOGIACHILE.COM LTDA TCHILE.COM
File type ASCII text, with very long lines (1668)
Hash d0a6d8547c66b0d7b0172466558d1208
ff93916519c7b9483251f609e4d29f38c30a66e3
3b1384ff918d4b7f95f9ee5c8fc388203dedff7344d3d96598c9562162788612
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4-wc.6.8.2 HTTP/1.1
Host: kaniwan.cl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kaniwan.cl/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 26 Sep 2022 11:51:06 GMT
Server: Apache
Last-Modified: Mon, 12 Sep 2022 14:56:29 GMT
Accept-Ranges: bytes
Content-Length: 1834
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: application/javascript
kaniwan.cl/wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.7.0-wc.6.8.2
131.108.210.11200 OK 9.5 kB URL HTTP/1.1 kaniwan.cl/wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.7.0-wc.6.8.2
IP 131.108.210.11:0
ASN #26623 TECNOLOGIACHILE.COM LTDA TCHILE.COM
File type ASCII text, with very long lines (9115)
Hash a5451283952efd5df49466bbeace6911
dce405842471c303c3d8fd6fa3c084aa56a71029
f4e38e5ef16efe51836cf7142412b8e1aa8b73ce89afed23be0cf77dfd8e095d
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.7.0-wc.6.8.2 HTTP/1.1
Host: kaniwan.cl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kaniwan.cl/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 26 Sep 2022 11:51:06 GMT
Server: Apache
Last-Modified: Mon, 12 Sep 2022 14:56:29 GMT
Accept-Ranges: bytes
Content-Length: 9509
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash d1256b6452c58ffb05e1db44d9d37a5f
04538f69abefe1019a0c4c6cc1fd3ffe5a5b2cfd
4bf592b24e41cf58e4ea973378a8559c4011a25ccdc51cc7a31457cc6561d22b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 26 Sep 2022 11:51:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
kaniwan.cl/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=6.8.2
131.108.210.11200 OK 3.0 kB URL HTTP/1.1 kaniwan.cl/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=6.8.2
IP 131.108.210.11:0
ASN #26623 TECNOLOGIACHILE.COM LTDA TCHILE.COM
File type HTML document, ASCII text, with very long lines (3037), with no line terminators
Hash 4e544022235ced14996464116a9ed9b2
31ee19d95973124b812a22c5ff5944d5b5bf8147
4ef2d5b0ef62523af87f3e13d8061449b2ddbfce07064f26b1305084abbf18f1
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=6.8.2 HTTP/1.1
Host: kaniwan.cl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kaniwan.cl/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 26 Sep 2022 11:51:06 GMT
Server: Apache
Last-Modified: Mon, 12 Sep 2022 14:56:29 GMT
Accept-Ranges: bytes
Content-Length: 3037
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript
fonts.gstatic.com/s/poppins/v20/pxiByp8kv8JHgFVrLCz7Z1xlFQ.woff2
142.250.74.163200 OK 7.8 kB URL HTTP/2 fonts.gstatic.com/s/poppins/v20/pxiByp8kv8JHgFVrLCz7Z1xlFQ.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 7816, version 1.0\012- data
Hash 25b0e113ca7cce3770d542736db26368
cb726212d5d525021752a1d8470a0fb593e0c49e
9338e65fc077355c7a87ae0d64cc101e23b9bf8ad78ae65f0f319c857311b526
GET /s/poppins/v20/pxiByp8kv8JHgFVrLCz7Z1xlFQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://kaniwan.cl
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 7816
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 21 Sep 2022 19:30:59 GMT
expires: Thu, 21 Sep 2023 19:30:59 GMT
cache-control: public, max-age=31536000
age: 404408
last-modified: Wed, 27 Apr 2022 16:11:40 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash d1256b6452c58ffb05e1db44d9d37a5f
04538f69abefe1019a0c4c6cc1fd3ffe5a5b2cfd
4bf592b24e41cf58e4ea973378a8559c4011a25ccdc51cc7a31457cc6561d22b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 26 Sep 2022 11:51:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash d1256b6452c58ffb05e1db44d9d37a5f
04538f69abefe1019a0c4c6cc1fd3ffe5a5b2cfd
4bf592b24e41cf58e4ea973378a8559c4011a25ccdc51cc7a31457cc6561d22b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 26 Sep 2022 11:51:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/poppins/v20/pxiByp8kv8JHgFVrLEj6Z1xlFQ.woff2
142.250.74.163200 OK 8.0 kB URL HTTP/2 fonts.gstatic.com/s/poppins/v20/pxiByp8kv8JHgFVrLEj6Z1xlFQ.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 8000, version 1.0\012- data
Hash 72993dddf88a63e8f226656f7de88e57
179f97ec0275f09603a8db94d4380eb584d81cd5
f4e80d9dfd374d02989b87a27b5ed4cb78fbb177c27f1478e9a8b0afb7513149
GET /s/poppins/v20/pxiByp8kv8JHgFVrLEj6Z1xlFQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://kaniwan.cl
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 8000
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 21 Sep 2022 19:30:59 GMT
expires: Thu, 21 Sep 2023 19:30:59 GMT
cache-control: public, max-age=31536000
age: 404408
last-modified: Wed, 27 Apr 2022 16:59:07 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
kaniwan.cl/wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=6.8.2
131.108.210.11200 OK 2.1 kB URL HTTP/1.1 kaniwan.cl/wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=6.8.2
IP 131.108.210.11:0
ASN #26623 TECNOLOGIACHILE.COM LTDA TCHILE.COM
File type ASCII text, with very long lines (2139), with no line terminators
Hash b72c1cbb1530a011a27bd9800f26765a
27b825c5d8255f33b8427a059d4545ebd65e1746
a256fccecac3b32ab73c91d79a18747519a1a18023be05465c933b03523a82e8
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=6.8.2 HTTP/1.1
Host: kaniwan.cl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kaniwan.cl/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 26 Sep 2022 11:51:06 GMT
Server: Apache
Last-Modified: Mon, 12 Sep 2022 14:56:29 GMT
Accept-Ranges: bytes
Content-Length: 2139
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript
fonts.gstatic.com/s/poppins/v20/pxiByp8kv8JHgFVrLGT9Z1xlFQ.woff2
142.250.74.163200 OK 7.7 kB URL HTTP/2 fonts.gstatic.com/s/poppins/v20/pxiByp8kv8JHgFVrLGT9Z1xlFQ.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 7748, version 1.0\012- data
Hash a09f2fccfee35b7247b08a1a266f0328
0da2d17e738f46d2a09e6fb7969da451719a9820
cd36de204aca2d5fa263a731f7c20009b5e3d754ba1f1e03c33e93a48f3e7446
GET /s/poppins/v20/pxiByp8kv8JHgFVrLGT9Z1xlFQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://kaniwan.cl
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 7748
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 21 Sep 2022 19:30:59 GMT
expires: Thu, 21 Sep 2023 19:30:59 GMT
cache-control: public, max-age=31536000
age: 404408
last-modified: Wed, 27 Apr 2022 16:21:30 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
kaniwan.cl/wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js?ver=6.8.2
131.108.210.11200 OK 2.9 kB URL HTTP/1.1 kaniwan.cl/wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js?ver=6.8.2
IP 131.108.210.11:0
ASN #26623 TECNOLOGIACHILE.COM LTDA TCHILE.COM
File type ASCII text, with very long lines (2938), with no line terminators
Hash 0fd625c3991a4015814cffdc88e2fc82
d7c2f53e058210ff3ea773297641008bab71a5f3
2d022db650d194d935faea46a40e5512235b43bc3f8b181e32ce6d3dd745f4e1
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js?ver=6.8.2 HTTP/1.1
Host: kaniwan.cl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kaniwan.cl/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 26 Sep 2022 11:51:06 GMT
Server: Apache
Last-Modified: Mon, 12 Sep 2022 14:56:29 GMT
Accept-Ranges: bytes
Content-Length: 2938
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/javascript
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash d1256b6452c58ffb05e1db44d9d37a5f
04538f69abefe1019a0c4c6cc1fd3ffe5a5b2cfd
4bf592b24e41cf58e4ea973378a8559c4011a25ccdc51cc7a31457cc6561d22b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 26 Sep 2022 11:51:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/poppins/v20/pxiEyp8kv8JHgFVrJJfecg.woff2
142.250.74.163200 OK 7.9 kB URL HTTP/2 fonts.gstatic.com/s/poppins/v20/pxiEyp8kv8JHgFVrJJfecg.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 7884, version 1.0\012- data
Hash 9212f6f9860f9fc6c69b02fedf6db8c3
ac6d71b4d5fdd2b3dabc9a06ff6c001e4251da0b
7d93459d86585bfcdbb7e0376056226adb25821ee54b96236fe2123e9560929f
GET /s/poppins/v20/pxiEyp8kv8JHgFVrJJfecg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://kaniwan.cl
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 7884
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 21 Sep 2022 19:32:09 GMT
expires: Thu, 21 Sep 2023 19:32:09 GMT
cache-control: public, max-age=31536000
age: 404338
last-modified: Wed, 27 Apr 2022 17:03:52 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash d1256b6452c58ffb05e1db44d9d37a5f
04538f69abefe1019a0c4c6cc1fd3ffe5a5b2cfd
4bf592b24e41cf58e4ea973378a8559c4011a25ccdc51cc7a31457cc6561d22b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 26 Sep 2022 11:51:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
player.vimeo.com/video/523298166?autoplay=1&loop=1&muted=1&title=0&byline=0&background=1
162.159.128.61200 OK 4.9 kB URL HTTP/1.1 player.vimeo.com/video/523298166?autoplay=1&loop=1&muted=1&title=0&byline=0&background=1
IP 162.159.128.61:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (14541)
Hash d84eb99b4fcb842f9d7089595940b239
de0c6d13be7d467ec48138953e0e78d3d13ea755
e478756cd43e33d75ba304c2a66ffa979b8fd175037463de7b60ad45f2b09090
GET /video/523298166?autoplay=1&loop=1&muted=1&title=0&byline=0&background=1 HTTP/1.1
Host: player.vimeo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kaniwan.cl/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Mon, 26 Sep 2022 11:51:07 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
x-xss-protection: 1; mode=block
content-security-policy: script-src 'self' 'unsafe-inline' blob: resource: https://f.vimeocdn.com https://vimeo.com https://js-agent.newrelic.com https://imasdk.googleapis.com/ https://adservice.google.com/ https://s0.2mdn.net/instream/video/ https://bam.nr-data.net https://src.litix.io https://www.gstatic.com https://cdn.streamroot.io https://cdn.kollective.app/ https://wirewax.s3.eu-west-1.amazonaws.com https://edge-assets.wirewax.com https://embedder-sdk.wirewax.com https://embedder-sdk.wirewax.tv https://f.vimeocdn.com; style-src 'self' 'unsafe-inline' https://f.vimeocdn.com https://fonts.googleapis.com https://edge-assets.wirewax.com https://f.vimeocdn.com; connect-src 'self' ws: wss: https://vimeo.com https://vimeo.dev https://api.vimeo.com https://api.vimeo.dev https://*.ci.vimeows.com https://csi.gstatic.com https://fresnel-player-staging.vimeows.com https://fresnel-event-staging.vimeows.com https://player-telemetry.vimeo.com https://*.akamaized.net https://*.akamaized-staging.net https://*.vimeocdn.com https://netflux.cloud.vimeo.com https://lic.staging.drmtoday.com https://lic.drmtoday.com https://wv.service.expressplay.com https://fp.service.expressplay.com https://pr.service.expressplay.com https://sentry.io https://*.ingest.sentry.io https://storage.googleapis.com https://bam.nr-data.net https://live-api.cloud.vimeo.com https://live-api-dev.cloud.vimeo.com https://*.litix.io/ https://collector.vhx.tv https://collector.vhxstaging.com https://*.dna-delivery.com https://*.kollective.app/ https://mimir.cloud.vimeo.com https://*.wirewax.com https://*.wirewax.tv https://wirewax.s3.eu-west-1.amazonaws.com https://sqs.us-east-1.amazonaws.com https://sqs.eu-west-1.amazonaws.com https://s3-eu-west-1.amazonaws.com https://cognito-identity.us-east-1.amazonaws.com https://cognito-identity.eu-west-1.amazonaws.com; media-src 'self' blob: https://*.vimeocdn.com https://*.akamaized.net https://*.akamaized-staging.net https://*.gvt1.com https://live-api.cloud.vimeo.com https://live-api-dev.cloud.vimeo.com https://devcaptions.cloud.vimeo.com/; object-src 'self' https://*.vimeocdn.com https://*.akamaized.net https://*.akamaized-staging.net; default-src 'none'; font-src https://edge-assets.wirewax.com https://player.vimeo.com https://fonts.gstatic.com; img-src 'self' data: https://i.vimeocdn.com https://secure-b.vimeocdn.com https://f.vimeocdn.com https://vimeo.com https://secure.gravatar.com https://i0.wp.com https://i1.wp.com https://i2.wp.com https://pagead2.googlesyndication.com https://player.vimeo.com https://*.ci.vimeows.com https://videoapi-sprites.vimeocdn.com https://i.vimeocdn.com https://wirewax.s3.eu-west-1.amazonaws.com https://studio-media.wirewax.com https://edge-assets.wirewax.com https://maps.googleapis.com https://f.vimeocdn.com; frame-src 'self' https://*
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
link: <https://i.vimeocdn.com>; rel=preconnect; crossorigin, <https://f.vimeocdn.com>; rel=preconnect; crossorigin, <https://fresnel.vimeocdn.com>; rel=preconnect; crossorigin
p3p: CP="This is not a P3P policy! See https://vimeo.com/privacy"
expires: Mon, 26 Sep 2022 12:01:07 GMT
x-host: player-84c9846b45-pnxlm
via: 1.1 varnish, 1.1 varnish
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
x-varnish-cache: 0
x-vserver: playproxy-rollout-prod-varnish-6
x-backend-proxy: playproxy7
x-bapp-server: player-84c9846b45-pnxlm
Age: 0
X-Served-By: cache-bma1624-BMA
X-Cache: MISS
X-Cache-Hits: 0
X-Timer: S1664193067.976495,VS0,VE258
Vary: Accept-Encoding
X-Player-Backend: p
CF-Cache-Status: DYNAMIC
Set-Cookie: __cf_bm=PY9N2tPy5hP6f10vavQgOU9Ohr1WCLt8DepE5rCcIaA-1664193067-0-AVG6ZKjA1HyBkoMoCXd0mF95oXD5DwQHJJeh+9zDlBsGKULZ4wfy1auhUU+OOg9bPwFn5/Ie6Uze3/EGJ7KfVmE=; path=/; expires=Mon, 26-Sep-22 12:21:07 GMT; domain=.vimeo.com; HttpOnly; Secure; SameSite=None
Server: cloudflare
CF-RAY: 750bc92c787b0b4d-OSL
Content-Encoding: gzip
kaniwan.cl/wp-content/themes/Zephyr/fonts/fa-brands-400.woff2?ver=8.6.1
131.108.210.11200 OK 77 kB URL HTTP/1.1 kaniwan.cl/wp-content/themes/Zephyr/fonts/fa-brands-400.woff2?ver=8.6.1
IP 131.108.210.11:0
ASN #26623 TECNOLOGIACHILE.COM LTDA TCHILE.COM
File type Web Open Font Format (Version 2), TrueType, length 76736, version 331.-31196\012- data
Hash ed311c7a0ade9a75bb3ebf5a7670f31d
0613c7ebba55ee47ef302c0f7766324692f899a7
8ea8791754915a898a3100e63e32978a6d1763be6df8e73a39d3a90d691cdeef
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/Zephyr/fonts/fa-brands-400.woff2?ver=8.6.1 HTTP/1.1
Host: kaniwan.cl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://kaniwan.cl/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 26 Sep 2022 11:51:06 GMT
Server: Apache
Last-Modified: Tue, 29 Mar 2022 13:56:58 GMT
Accept-Ranges: bytes
Content-Length: 76736
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: font/woff2
kaniwan.cl/wp-content/themes/Zephyr/fonts/fa-regular-400.woff2?ver=8.6.1
131.108.210.11200 OK 13 kB URL HTTP/1.1 kaniwan.cl/wp-content/themes/Zephyr/fonts/fa-regular-400.woff2?ver=8.6.1
IP 131.108.210.11:0
ASN #26623 TECNOLOGIACHILE.COM LTDA TCHILE.COM
File type Web Open Font Format (Version 2), TrueType, length 13224, version 331.-31196\012- data
Hash b91d376b8d7646d671cd820950d5f7f1
13517529affa39e2585c591acae6dc336b6aa917
e42a88444448ac3d60549cc7c1ff2c8a9cac721034c073d80a14a44e79730cca
GET /wp-content/themes/Zephyr/fonts/fa-regular-400.woff2?ver=8.6.1 HTTP/1.1
Host: kaniwan.cl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://kaniwan.cl/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 26 Sep 2022 11:51:06 GMT
Server: Apache
Last-Modified: Tue, 29 Mar 2022 13:56:58 GMT
Accept-Ranges: bytes
Content-Length: 13224
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: font/woff2
f.vimeocdn.com/p/4.10.1/css/player.css
151.101.86.109200 OK 20 kB URL HTTP/2 f.vimeocdn.com/p/4.10.1/css/player.css
IP 151.101.86.109:0
File type ASCII text, with very long lines (65495)
Hash 674ea13d207a5c2820c92eb236796548
439a3a05f926e21e43ed043e47197aec6c02358f
99105d0c1f2a3eee4823bc2f2151f1747c3f7fa45df401596bc2273328abc22f
GET /p/4.10.1/css/player.css HTTP/1.1
Host: f.vimeocdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://player.vimeo.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Mon, 26 Sep 2022 11:51:07 GMT
age: 490415
x-served-by: cache-iad-kjyo7100154-IAD, cache-bma1650-BMA
x-cache: HIT, HIT
x-cache-hits: 61, 90865
x-timer: S1664193067.328376,VS0,VE0
vary: Accept-Encoding,x-http-method-override
cache-control: max-age=1209600
access-control-allow-origin: *
content-length: 20284
X-Firefox-Spdy: h2
f.vimeocdn.com/js_opt/modules/utils/vuid.min.js
151.101.86.109200 OK 997 B URL HTTP/2 f.vimeocdn.com/js_opt/modules/utils/vuid.min.js
IP 151.101.86.109:0
File type ASCII text, with very long lines (1839)
Hash a726e1c270a0429ccce67d981a12ac33
7319cca36fa04ee8d74ea677a0bb5dd113649011
2601818bf89176145a614b0d50b1ef1cd95272a5bc6be5526d54c464f6172dbf
GET /js_opt/modules/utils/vuid.min.js HTTP/1.1
Host: f.vimeocdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://player.vimeo.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-encoding: gzip
cache-control: public, max-age=2592000
timing-allow-origin: *
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Mon, 26 Sep 2022 11:51:07 GMT
age: 585228
x-served-by: cache-iad-kiad7000169-IAD, cache-bma1650-BMA
x-cache: HIT, HIT
x-cache-hits: 1, 92726
x-timer: S1664193067.342579,VS0,VE0
vary: Accept-Encoding,x-http-method-override
content-length: 997
X-Firefox-Spdy: h2
f.vimeocdn.com/p/4.10.1/js/player.js
151.101.86.109200 OK 212 kB URL HTTP/2 f.vimeocdn.com/p/4.10.1/js/player.js
IP 151.101.86.109:0
File type ASCII text, with very long lines (64649)
Size 212 kB (212091 bytes)
Hash 0178a74556a8c2ae4b0adc1e5896add3
a2187164dbe08839a3bed391ee10f5b3ef24542b
0ab6e243b2068c5ba3620a078364c9b73c7075d70f8e73a00be48fad7bf707ae
GET /p/4.10.1/js/player.js HTTP/1.1
Host: f.vimeocdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://player.vimeo.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Mon, 26 Sep 2022 11:51:07 GMT
age: 490415
x-served-by: cache-iad-kcgs7200127-IAD, cache-bma1650-BMA
x-cache: HIT, HIT
x-cache-hits: 52, 70090
x-timer: S1664193067.341869,VS0,VE0
vary: Accept-Encoding,x-http-method-override
cache-control: max-age=1209600
content-length: 212091
X-Firefox-Spdy: h2
kaniwan.cl/wp-content/uploads/2021/04/bg-kaniwan.jpg
131.108.210.11200 OK 154 kB URL HTTP/1.1 kaniwan.cl/wp-content/uploads/2021/04/bg-kaniwan.jpg
IP 131.108.210.11:0
ASN #26623 TECNOLOGIACHILE.COM LTDA TCHILE.COM
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1920x1215, components 3\012- data
Size 154 kB (153554 bytes)
Hash 6d2a33e773aa6a9d3d455a4129d512a4
8e20dc82f13c6a143360a599721d633578d9cc4e
9386360adf67f4f0589f1d6d05c5d374466b56ade5411342535320b66b28ee95
GET /wp-content/uploads/2021/04/bg-kaniwan.jpg HTTP/1.1
Host: kaniwan.cl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kaniwan.cl/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 26 Sep 2022 11:51:06 GMT
Server: Apache
Last-Modified: Mon, 12 Apr 2021 13:33:01 GMT
Accept-Ranges: bytes
Content-Length: 153554
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: image/jpeg
kaniwan.cl/wp-content/themes/Zephyr/fonts/fa-solid-900.woff2?ver=8.6.1
131.108.210.11200 OK 78 kB URL HTTP/1.1 kaniwan.cl/wp-content/themes/Zephyr/fonts/fa-solid-900.woff2?ver=8.6.1
IP 131.108.210.11:0
ASN #26623 TECNOLOGIACHILE.COM LTDA TCHILE.COM
File type Web Open Font Format (Version 2), TrueType, length 78268, version 331.-31196\012- data
Hash d824df7eb2e268626a2dd9a6a741ac4e
0ccb2c814a7e4ca12c4778821633809cb0361eaa
9834b82ad26e2a37583d22676a12dd2eb0fe7c80356a2114d0db1aa8b3899537
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/Zephyr/fonts/fa-solid-900.woff2?ver=8.6.1 HTTP/1.1
Host: kaniwan.cl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://kaniwan.cl/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 26 Sep 2022 11:51:06 GMT
Server: Apache
Last-Modified: Tue, 29 Mar 2022 13:56:58 GMT
Accept-Ranges: bytes
Content-Length: 78268
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: font/woff2
kaniwan.cl/wp-content/uploads/us-assets/kaniwan.cl.js?ver=e013811f
131.108.210.11200 OK 171 kB URL HTTP/1.1 kaniwan.cl/wp-content/uploads/us-assets/kaniwan.cl.js?ver=e013811f
IP 131.108.210.11:0
ASN #26623 TECNOLOGIACHILE.COM LTDA TCHILE.COM
File type ASCII text, with very long lines (5819), with CRLF, LF line terminators
Size 171 kB (171070 bytes)
Hash e13cc1489e547290e7f0e27c2a0ff3a6
e1a49fb546111a7a2d69eef032960d0c353e7bba
6adf0c0012353f9a916b0bf511f75caf86869eb6bfe631bf1717fcb8914c9cf2
GET /wp-content/uploads/us-assets/kaniwan.cl.js?ver=e013811f HTTP/1.1
Host: kaniwan.cl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kaniwan.cl/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 26 Sep 2022 11:51:06 GMT
Server: Apache
Last-Modified: Tue, 29 Mar 2022 14:02:51 GMT
Accept-Ranges: bytes
Content-Length: 171070
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: application/javascript
kaniwan.cl/wp-content/uploads/2017/07/logo-ok-kaniwan.svg
131.108.210.11200 OK 2.1 kB URL HTTP/1.1 kaniwan.cl/wp-content/uploads/2017/07/logo-ok-kaniwan.svg
IP 131.108.210.11:0
ASN #26623 TECNOLOGIACHILE.COM LTDA TCHILE.COM
File type SVG Scalable Vector Graphics image\012- SVG XML document\012- XML 1.0 document text\012- SVG XML document\012- XML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash d4d2d401552d60ec98e38cdd579856da
de7f65bf3a66f84a4f6a70ddb55e187152092fd0
29005f5a5de7f80c63cb2376ae46fdeee1e4f3ee7f680378451b49940c6c20c9
Analyzer Verdict Alert fortinet Malware
GET /wp-content/uploads/2017/07/logo-ok-kaniwan.svg HTTP/1.1
Host: kaniwan.cl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kaniwan.cl/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 26 Sep 2022 11:51:07 GMT
Server: Apache
Last-Modified: Mon, 15 Mar 2021 03:13:41 GMT
Accept-Ranges: bytes
Content-Length: 2111
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: image/svg+xml
i.vimeocdn.com/portrait/49559819_60x60.jpg
151.101.86.109200 OK 725 B URL HTTP/2 i.vimeocdn.com/portrait/49559819_60x60.jpg
IP 151.101.86.109:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 60x60, components 3\012- data
Hash aa400826a8bbc9690d3badce0a7da91b
ec09bdc13cbeacaaabc41f035e09da0c2efcf2c7
03ee9dad70856cdf2041dc7fc61d474e313dea26b1e1d01ac932b8f91f18cd49
GET /portrait/49559819_60x60.jpg HTTP/1.1
Host: i.vimeocdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://player.vimeo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
etag: aa400826a8bbc9690d3badce0a7da91b
x-viewmaster-lossless-format: lossy
viewmaster-server: viewmaster-us-central1-91pv
cache-control: public, max-age=2592000
via: vvarnish, 1.1 varnish, 1.1 varnish
x-backend-server: varnish
access-control-allow-origin: *
access-control-expose-headers: X-Viewmaster-Status
access-control-max-age: 86400
accept-ranges: bytes
date: Mon, 26 Sep 2022 11:51:07 GMT
age: 221165
x-served-by: cache-dfw-kdfw8210101-DFW, cache-bma1650-BMA
x-cache: miss, HIT, MISS
x-cache-hits: 1, 0
x-timer: S1664193068.830435,VS0,VE129
content-length: 725
X-Firefox-Spdy: h2
194vod-adaptive.akamaized.net/exp=1664196967~acl=%2Fdb47ed1a-45ce-43d0-9a54-93a1ef40fcd1%2F%2A~hmac=fc3163acf806b740064cf44c45dbe8c039ca7962e80d50e830e3c9f1699c9764/db47ed1a-45ce-43d0-9a54-93a1ef40fcd1/sep/video/e10a8746,0e925ebb,0ee21319,03f264c6,abc61e4d/audio/7b603a7e,c77ca71d/master.json?query_string_ranges=1&base64_init=1
23.36.76.130200 OK 4.1 kB URL HTTP/1.1 194vod-adaptive.akamaized.net/exp=1664196967~acl=%2Fdb47ed1a-45ce-43d0-9a54-93a1ef40fcd1%2F%2A~hmac=fc3163acf806b740064cf44c45dbe8c039ca7962e80d50e830e3c9f1699c9764/db47ed1a-45ce-43d0-9a54-93a1ef40fcd1/sep/video/e10a8746,0e925ebb,0ee21319,03f264c6,abc61e4d/audio/7b603a7e,c77ca71d/master.json?query_string_ranges=1&base64_init=1
IP 23.36.76.130:0
ASN #20940 Akamai International B.V.
File type JSON data\012- , ASCII text, with very long lines (19365)
Hash fc9f4018d14e643797e6b5a370d028da
030e2f7e59a222e2f204dc77adc81d9d0fed917c
ffc7848e4ff2777a5ee37e2a14988c9853194c545e1a89bfbfc201cab69bc377
GET /exp=1664196967~acl=%2Fdb47ed1a-45ce-43d0-9a54-93a1ef40fcd1%2F%2A~hmac=fc3163acf806b740064cf44c45dbe8c039ca7962e80d50e830e3c9f1699c9764/db47ed1a-45ce-43d0-9a54-93a1ef40fcd1/sep/video/e10a8746,0e925ebb,0ee21319,03f264c6,abc61e4d/audio/7b603a7e,c77ca71d/master.json?query_string_ranges=1&base64_init=1 HTTP/1.1
Host: 194vod-adaptive.akamaized.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://player.vimeo.com
Connection: keep-alive
Referer: https://player.vimeo.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
origin-retrieved-hour: 1656525600
Access-Control-Max-Age: 86400
timing-allow-origin: *
Content-Encoding: gzip
Content-Length: 4119
Aka-c-hit: cache-hit
Cache-Control: max-age=31465534
Date: Mon, 26 Sep 2022 11:51:08 GMT
Connection: keep-alive
Vary: Accept-Encoding
Akamai-Mon-Iucid-Del: 877678
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
AK-REFERENCE-ID: 0.7e4c2417.1664193068.57b9b94
X-VIM-CACHEBC: EP:H11,E:m,TD0:m,CW:m,PE:h
Access-Control-Expose-Headers: Akamai-Edge-IP, X-VIM-CACHEBC, X-Akamai-Request-ID, AK-REFERENCE-ID
Akamai-Edge-IP: 23.36.76.130
Access-Control-Allow-Headers: Content-Type, Accept-Encoding, Range, X-OTT-Agent,CMCD-Request,CMCD-Object,CMCD-Status,CMCD-Session
Access-Control-Allow-Origin: *
kaniwan.cl/wp-content/plugins/Ultimate_VC_Addons/assets/min-css/ajax-loader.gif
131.108.210.11200 OK 4.2 kB URL HTTP/1.1 kaniwan.cl/wp-content/plugins/Ultimate_VC_Addons/assets/min-css/ajax-loader.gif
IP 131.108.210.11:0
ASN #26623 TECNOLOGIACHILE.COM LTDA TCHILE.COM
File type GIF image data, version 89a, 32 x 32\012- data
Hash c5cd7f5300576ab4c88202b42f6ded62
7a1aa43614396382bb15e5fde574d9cdcd21698f
e7b44c86b050fca766a96ddac2d0932af0126da6f2305280342d909168dcce6b
GET /wp-content/plugins/Ultimate_VC_Addons/assets/min-css/ajax-loader.gif HTTP/1.1
Host: kaniwan.cl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kaniwan.cl/wp-content/plugins/Ultimate_VC_Addons/assets/min-css/slick.min.css?ver=3.19.11
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 26 Sep 2022 11:51:07 GMT
Server: Apache
Last-Modified: Tue, 29 Mar 2022 14:06:54 GMT
Accept-Ranges: bytes
Content-Length: 4178
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: image/gif
kaniwan.cl/wp-content/uploads/2021/03/mate-con-avez-600x600.jpg
131.108.210.11200 OK 59 kB URL HTTP/1.1 kaniwan.cl/wp-content/uploads/2021/03/mate-con-avez-600x600.jpg
IP 131.108.210.11:0
ASN #26623 TECNOLOGIACHILE.COM LTDA TCHILE.COM
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, progressive, precision 8, 600x600, components 3\012- data
Hash 231521bbdda60bc05192d187b6a2de10
c086ad3aff54b8d135b20a4da107b4e9a25fb70b
11bf0b0f9e480b4e3554e6d8834f460c31f278857555f50fd27652d1ecc4239d
GET /wp-content/uploads/2021/03/mate-con-avez-600x600.jpg HTTP/1.1
Host: kaniwan.cl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kaniwan.cl/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 26 Sep 2022 11:51:07 GMT
Server: Apache
Last-Modified: Mon, 15 Mar 2021 01:00:13 GMT
Accept-Ranges: bytes
Content-Length: 59426
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: image/jpeg
ocsp.pki.goog/s/gts1d4/5Ylu76wHhgo
142.250.74.3200 OK 471 B URL HTTP/1.1 ocsp.pki.goog/s/gts1d4/5Ylu76wHhgo
IP 142.250.74.3:0
Hash 6c624ca09ab26da2dca3770e5d631ecf
4f35a28b7407293f817b8c52bdf9154320e7d65f
338f426e1384937381a35ce5b6b8afaa302b2c089eb2bd0b4c43cebc6e34fee1
POST /s/gts1d4/5Ylu76wHhgo HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 26 Sep 2022 11:51:08 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/s/gts1d4/5Ylu76wHhgo
142.250.74.3200 OK 471 B URL HTTP/1.1 ocsp.pki.goog/s/gts1d4/5Ylu76wHhgo
IP 142.250.74.3:0
Hash 6c624ca09ab26da2dca3770e5d631ecf
4f35a28b7407293f817b8c52bdf9154320e7d65f
338f426e1384937381a35ce5b6b8afaa302b2c089eb2bd0b4c43cebc6e34fee1
POST /s/gts1d4/5Ylu76wHhgo HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 26 Sep 2022 11:51:08 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
194vod-adaptive.akamaized.net/exp=1664196967~acl=%2Fdb47ed1a-45ce-43d0-9a54-93a1ef40fcd1%2F%2A~hmac=fc3163acf806b740064cf44c45dbe8c039ca7962e80d50e830e3c9f1699c9764/db47ed1a-45ce-43d0-9a54-93a1ef40fcd1/sep/audio/0ee21319/chop/segment-1.m4s?r=dXM%3D
23.36.76.130200 OK 96 kB URL HTTP/1.1 194vod-adaptive.akamaized.net/exp=1664196967~acl=%2Fdb47ed1a-45ce-43d0-9a54-93a1ef40fcd1%2F%2A~hmac=fc3163acf806b740064cf44c45dbe8c039ca7962e80d50e830e3c9f1699c9764/db47ed1a-45ce-43d0-9a54-93a1ef40fcd1/sep/audio/0ee21319/chop/segment-1.m4s?r=dXM%3D
IP 23.36.76.130:0
ASN #20940 Akamai International B.V.
Hash 78bf7af6c219ff498a511008719a01f9
905d96c2a76350ebb25a7c668a6406c2a2aef05d
8aec6c6b0c267f18bd225b15ac4d1692d0691eed65891278f0d67b0b280bb6e6
GET /exp=1664196967~acl=%2Fdb47ed1a-45ce-43d0-9a54-93a1ef40fcd1%2F%2A~hmac=fc3163acf806b740064cf44c45dbe8c039ca7962e80d50e830e3c9f1699c9764/db47ed1a-45ce-43d0-9a54-93a1ef40fcd1/sep/audio/0ee21319/chop/segment-1.m4s?r=dXM%3D HTTP/1.1
Host: 194vod-adaptive.akamaized.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://player.vimeo.com
Connection: keep-alive
Referer: https://player.vimeo.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
accept-range: bytes
Content-Length: 95570
ETag: "b4d4ca267e6d9612b382ee541054a7ec"
using-starlord: true
origin-retrieved-hour: 1664031600
Access-Control-Max-Age: 86400
timing-allow-origin: *
Aka-c-hit: cache-hit
Cache-Control: max-age=31374976
Date: Mon, 26 Sep 2022 11:51:08 GMT
Connection: keep-alive
Akamai-Mon-Iucid-Del: 877678
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
Content-Type: video/mp4
AK-REFERENCE-ID: 0.7e4c2417.1664193068.57b9bc0
X-VIM-CACHEBC: EP:H11,E:m,TD0:m,CW:m,PE:h
Access-Control-Expose-Headers: Akamai-Edge-IP, X-VIM-CACHEBC, X-Akamai-Request-ID, AK-REFERENCE-ID
Akamai-Edge-IP: 23.36.76.130
Access-Control-Allow-Headers: Content-Type, Accept-Encoding, Range, X-OTT-Agent,CMCD-Request,CMCD-Object,CMCD-Status,CMCD-Session
Access-Control-Allow-Origin: *
fresnel.vimeocdn.com/add/player-test-impression?beacon=1
34.120.202.204200 OK 0 B URL HTTP/2 fresnel.vimeocdn.com/add/player-test-impression?beacon=1
IP 34.120.202.204:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /add/player-test-impression?beacon=1 HTTP/1.1
Host: fresnel.vimeocdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 116
Origin: https://player.vimeo.com
Connection: keep-alive
Referer: https://player.vimeo.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-credentials: true
access-control-allow-origin: https://player.vimeo.com
date: Mon, 26 Sep 2022 11:51:08 GMT
content-length: 0
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fresnel.vimeocdn.com/add/player-stats?beacon=1&session-id=7c4eba0311dd1b37cb40233be748cf221a3288821664193067
34.120.202.204200 OK 0 B URL HTTP/2 fresnel.vimeocdn.com/add/player-stats?beacon=1&session-id=7c4eba0311dd1b37cb40233be748cf221a3288821664193067
IP 34.120.202.204:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /add/player-stats?beacon=1&session-id=7c4eba0311dd1b37cb40233be748cf221a3288821664193067 HTTP/1.1
Host: fresnel.vimeocdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 1418
Origin: https://player.vimeo.com
Connection: keep-alive
Referer: https://player.vimeo.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-credentials: true
access-control-allow-origin: https://player.vimeo.com
date: Mon, 26 Sep 2022 11:51:08 GMT
content-length: 0
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fresnel.vimeocdn.com/add/player-stats?beacon=1&session-id=7c4eba0311dd1b37cb40233be748cf221a3288821664193067
34.120.202.204200 OK 0 B URL HTTP/2 fresnel.vimeocdn.com/add/player-stats?beacon=1&session-id=7c4eba0311dd1b37cb40233be748cf221a3288821664193067
IP 34.120.202.204:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /add/player-stats?beacon=1&session-id=7c4eba0311dd1b37cb40233be748cf221a3288821664193067 HTTP/1.1
Host: fresnel.vimeocdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 1724
Origin: https://player.vimeo.com
Connection: keep-alive
Referer: https://player.vimeo.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-credentials: true
access-control-allow-origin: https://player.vimeo.com
date: Mon, 26 Sep 2022 11:51:08 GMT
content-length: 0
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
player-telemetry.vimeo.com/player-events/log/play
34.120.202.204200 OK 0 B URL HTTP/2 player-telemetry.vimeo.com/player-events/log/play
IP 34.120.202.204:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /player-events/log/play HTTP/1.1
Host: player-telemetry.vimeo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 649
Origin: https://player.vimeo.com
Connection: keep-alive
Referer: https://player.vimeo.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
access-control-allow-credentials: true
access-control-allow-origin: https://player.vimeo.com
content-type: text/html; charset=UTF-8
date: Mon, 26 Sep 2022 11:51:08 GMT
content-length: 0
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/s/gts1d4/5Ylu76wHhgo
142.250.74.3200 OK 471 B URL HTTP/1.1 ocsp.pki.goog/s/gts1d4/5Ylu76wHhgo
IP 142.250.74.3:0
Hash 6c624ca09ab26da2dca3770e5d631ecf
4f35a28b7407293f817b8c52bdf9154320e7d65f
338f426e1384937381a35ce5b6b8afaa302b2c089eb2bd0b4c43cebc6e34fee1
POST /s/gts1d4/5Ylu76wHhgo HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 26 Sep 2022 11:51:08 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/s/gts1d4/5Ylu76wHhgo
142.250.74.3200 OK 471 B URL HTTP/1.1 ocsp.pki.goog/s/gts1d4/5Ylu76wHhgo
IP 142.250.74.3:0
Hash 6c624ca09ab26da2dca3770e5d631ecf
4f35a28b7407293f817b8c52bdf9154320e7d65f
338f426e1384937381a35ce5b6b8afaa302b2c089eb2bd0b4c43cebc6e34fee1
POST /s/gts1d4/5Ylu76wHhgo HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 26 Sep 2022 11:51:08 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
194vod-adaptive.akamaized.net/exp=1664196967~acl=%2Fdb47ed1a-45ce-43d0-9a54-93a1ef40fcd1%2F%2A~hmac=fc3163acf806b740064cf44c45dbe8c039ca7962e80d50e830e3c9f1699c9764/db47ed1a-45ce-43d0-9a54-93a1ef40fcd1/parcel/video/0e925ebb.mp4?r=dXM%3D&range=973-209319
23.36.76.130200 OK 208 kB URL HTTP/1.1 194vod-adaptive.akamaized.net/exp=1664196967~acl=%2Fdb47ed1a-45ce-43d0-9a54-93a1ef40fcd1%2F%2A~hmac=fc3163acf806b740064cf44c45dbe8c039ca7962e80d50e830e3c9f1699c9764/db47ed1a-45ce-43d0-9a54-93a1ef40fcd1/parcel/video/0e925ebb.mp4?r=dXM%3D&range=973-209319
IP 23.36.76.130:0
ASN #20940 Akamai International B.V.
Size 208 kB (208347 bytes)
Hash 412e477c43ed7e3df02697a474d7fe9c
ee145e51ee2aa0f9edfaa706b389f5778667882e
e2c9a818f09688360b13f41c9112a8dafc2932a3cd8cb985f2f17ba2822e2b15
GET /exp=1664196967~acl=%2Fdb47ed1a-45ce-43d0-9a54-93a1ef40fcd1%2F%2A~hmac=fc3163acf806b740064cf44c45dbe8c039ca7962e80d50e830e3c9f1699c9764/db47ed1a-45ce-43d0-9a54-93a1ef40fcd1/parcel/video/0e925ebb.mp4?r=dXM%3D&range=973-209319 HTTP/1.1
Host: 194vod-adaptive.akamaized.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://player.vimeo.com
Connection: keep-alive
Referer: https://player.vimeo.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Accept-Ranges: bytes
Content-Length: 208347
Last-Modified: Sun, 14 Mar 2021 00:02:11 GMT
Server: parcel
origin-retrieved-hour: 1656525600
Access-Control-Max-Age: 86400
timing-allow-origin: *
Aka-c-hit: cache-hit
Cache-Control: private, max-age=31374913
Expires: Sun, 24 Sep 2023 15:06:21 GMT
Date: Mon, 26 Sep 2022 11:51:08 GMT
Connection: keep-alive
Akamai-Mon-Iucid-Del: 877678
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
Content-Type: video/mp4
AK-REFERENCE-ID: 0.7e4c2417.1664193068.57b9bf7
X-VIM-CACHEBC: EP:H11,E:m,TD0:m,CW:h
Access-Control-Expose-Headers: Akamai-Edge-IP, X-VIM-CACHEBC, X-Akamai-Request-ID, AK-REFERENCE-ID
Akamai-Edge-IP: 23.36.76.130
Access-Control-Allow-Headers: Content-Type, Accept-Encoding, Range, X-OTT-Agent,CMCD-Request,CMCD-Object,CMCD-Status,CMCD-Session
Access-Control-Allow-Origin: *
Set-Cookie: aka_debug=cpcode:877678~clientip:91.90.42.154~ghostip:23.36.76.130~requestid:57b9bf7~time:1664193068~ghostforwardip:23.217.99.177~edgecache:cache-miss~rtt:0~region:NO-; path=/; domain=.akamaized.net;
kaniwan.cl/wp-content/themes/Zephyr/common/js/vendor/owl.carousel.js
131.108.210.11200 OK 44 kB URL HTTP/1.1 kaniwan.cl/wp-content/themes/Zephyr/common/js/vendor/owl.carousel.js
IP 131.108.210.11:0
ASN #26623 TECNOLOGIACHILE.COM LTDA TCHILE.COM
File type ASCII text, with very long lines (31997), with CRLF line terminators
Hash 38c7a1431dd87cb2a62e5279d9585d87
d9cb02667303ac77b4d93c888048619e047f7818
a9b1987f404870f26e3b6d875da3a65abc2a592dbdc97f7e147ca0bc03c402f1
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/Zephyr/common/js/vendor/owl.carousel.js HTTP/1.1
Host: kaniwan.cl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/javascript, application/javascript, application/ecmascript, application/x-ecmascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Referer: https://kaniwan.cl/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 26 Sep 2022 11:51:08 GMT
Server: Apache
Last-Modified: Tue, 29 Mar 2022 13:56:58 GMT
Accept-Ranges: bytes
Content-Length: 44479
Keep-Alive: timeout=5, max=90
Connection: Keep-Alive
Content-Type: application/javascript
kaniwan.cl/wp-content/uploads/2021/04/image002-min.jpg
131.108.210.11200 OK 114 kB URL HTTP/1.1 kaniwan.cl/wp-content/uploads/2021/04/image002-min.jpg
IP 131.108.210.11:0
ASN #26623 TECNOLOGIACHILE.COM LTDA TCHILE.COM
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 950x886, components 3\012- data
Size 114 kB (114473 bytes)
Hash 1c12dda478b7a8bc9475e47e7ca499fa
3eaf87998747f2cc922ed6f4f970e518b104607a
2bbea5fb7d11ab2a23a4815bde82d8153460781f33c52c5cba31ab6d8cc10534
GET /wp-content/uploads/2021/04/image002-min.jpg HTTP/1.1
Host: kaniwan.cl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kaniwan.cl/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 26 Sep 2022 11:51:07 GMT
Server: Apache
Last-Modified: Mon, 12 Apr 2021 13:25:55 GMT
Accept-Ranges: bytes
Content-Length: 114473
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: image/jpeg
i.vimeocdn.com/video/1083781976-a03bb9c67143dd04b6e4649b5bd4afe61dd9297d538bd4d71b0f437c7a204945-d?mw=1200&mh=675
151.101.86.109200 OK 54 kB URL HTTP/2 i.vimeocdn.com/video/1083781976-a03bb9c67143dd04b6e4649b5bd4afe61dd9297d538bd4d71b0f437c7a204945-d?mw=1200&mh=675
IP 151.101.86.109:0
File type ISO Media, AVIF Image\012- data
Hash d9c02a496cf94267fd27b7f439431a9c
712c0c69e7c6ce516f9125d1685391ebb5d0cfff
43138a0ada26c52213f0e418c17ae5bd902e3661bbb04e4555a90eada647f67a
GET /video/1083781976-a03bb9c67143dd04b6e4649b5bd4afe61dd9297d538bd4d71b0f437c7a204945-d?mw=1200&mh=675 HTTP/1.1
Host: i.vimeocdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://player.vimeo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/avif
etag: d9c02a496cf94267fd27b7f439431a9c
x-viewmaster-lossless-format: automatic
viewmaster-server: viewmaster-us-central1-l7zz
cache-control: public, max-age=2592000
via: vvarnish, 1.1 varnish, 1.1 varnish
x-backend-server: varnish
access-control-allow-origin: *
access-control-expose-headers: X-Viewmaster-Status
access-control-max-age: 86400
accept-ranges: bytes
date: Mon, 26 Sep 2022 11:51:08 GMT
age: 0
x-served-by: cache-dfw-kdfw8210090-DFW, cache-bma1650-BMA
x-cache: miss, MISS, MISS
x-cache-hits: 0, 0
x-timer: S1664193068.642302,VS0,VE1031
vary: Accept
content-length: 53635
X-Firefox-Spdy: h2
194vod-adaptive.akamaized.net/exp=1664196967~acl=%2Fdb47ed1a-45ce-43d0-9a54-93a1ef40fcd1%2F%2A~hmac=fc3163acf806b740064cf44c45dbe8c039ca7962e80d50e830e3c9f1699c9764/db47ed1a-45ce-43d0-9a54-93a1ef40fcd1/sep/audio/e10a8746/chop/segment-1.m4s?r=dXM%3D
23.36.76.130200 OK 192 kB URL HTTP/1.1 194vod-adaptive.akamaized.net/exp=1664196967~acl=%2Fdb47ed1a-45ce-43d0-9a54-93a1ef40fcd1%2F%2A~hmac=fc3163acf806b740064cf44c45dbe8c039ca7962e80d50e830e3c9f1699c9764/db47ed1a-45ce-43d0-9a54-93a1ef40fcd1/sep/audio/e10a8746/chop/segment-1.m4s?r=dXM%3D
IP 23.36.76.130:0
ASN #20940 Akamai International B.V.
Size 192 kB (191826 bytes)
Hash 92cdb39787374bdf36d11db068a178f1
82db6b65115bffccece529db4ad5425e82388f49
a47ea17b53608d226153e9ead1788dc2f294ced8a527eb2bc92feb4f182d911d
GET /exp=1664196967~acl=%2Fdb47ed1a-45ce-43d0-9a54-93a1ef40fcd1%2F%2A~hmac=fc3163acf806b740064cf44c45dbe8c039ca7962e80d50e830e3c9f1699c9764/db47ed1a-45ce-43d0-9a54-93a1ef40fcd1/sep/audio/e10a8746/chop/segment-1.m4s?r=dXM%3D HTTP/1.1
Host: 194vod-adaptive.akamaized.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://player.vimeo.com
Connection: keep-alive
Referer: https://player.vimeo.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
accept-range: bytes
Content-Length: 191826
ETag: "b4d4ca267e6d9612b382ee541054a7ec"
using-starlord: true
origin-retrieved-hour: 1664121600
Access-Control-Max-Age: 86400
timing-allow-origin: *
Aka-c-hit: cache-hit
Cache-Control: max-age=31465593
Date: Mon, 26 Sep 2022 11:51:08 GMT
Connection: keep-alive
Akamai-Mon-Iucid-Del: 877678
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
Content-Type: video/mp4
AK-REFERENCE-ID: 0.7e4c2417.1664193068.57b9c06
X-VIM-CACHEBC: EP:H11,E:m,TD0:m,CW:m,PE:h
Access-Control-Expose-Headers: Akamai-Edge-IP, X-VIM-CACHEBC, X-Akamai-Request-ID, AK-REFERENCE-ID
Akamai-Edge-IP: 23.36.76.130
Access-Control-Allow-Headers: Content-Type, Accept-Encoding, Range, X-OTT-Agent,CMCD-Request,CMCD-Object,CMCD-Status,CMCD-Session
Access-Control-Allow-Origin: *
kaniwan.cl/wp-content/uploads/2021/03/Pifilka-kollon-600x600.jpg
131.108.210.11200 OK 71 kB URL HTTP/1.1 kaniwan.cl/wp-content/uploads/2021/03/Pifilka-kollon-600x600.jpg
IP 131.108.210.11:0
ASN #26623 TECNOLOGIACHILE.COM LTDA TCHILE.COM
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, progressive, precision 8, 600x600, components 3\012- data
Hash 85bf551ae9abcbdd61efa56a2726a4b1
702cd99e4ce784cdc1dac958a5c274cc6b127853
299c89d253cb7563bae52e33f895f9fd20f88eca7221650cd5aecf7e31ed067b
GET /wp-content/uploads/2021/03/Pifilka-kollon-600x600.jpg HTTP/1.1
Host: kaniwan.cl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kaniwan.cl/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 26 Sep 2022 11:51:08 GMT
Server: Apache
Last-Modified: Sun, 14 Mar 2021 14:34:59 GMT
Accept-Ranges: bytes
Content-Length: 71058
Keep-Alive: timeout=5, max=89
Connection: Keep-Alive
Content-Type: image/jpeg
kaniwan.cl/wp-content/themes/Zephyr/fonts/material-icons.woff2?ver=8.6.1
131.108.210.11200 OK 111 kB URL HTTP/1.1 kaniwan.cl/wp-content/themes/Zephyr/fonts/material-icons.woff2?ver=8.6.1
IP 131.108.210.11:0
ASN #26623 TECNOLOGIACHILE.COM LTDA TCHILE.COM
File type Web Open Font Format (Version 2), TrueType, length 110560, version 1.0\012- data
Size 111 kB (110560 bytes)
Hash 38699e69c673ccadce553bcef499b571
be9632119acce89bdb8d7fb0e6d90a6fe75b5a14
ff253fe18544cbbce7aab407c64ac2bc1e7bd6b933b9e0ed8865e60d96cd9b39
GET /wp-content/themes/Zephyr/fonts/material-icons.woff2?ver=8.6.1 HTTP/1.1
Host: kaniwan.cl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://kaniwan.cl/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 26 Sep 2022 11:51:06 GMT
Server: Apache
Last-Modified: Tue, 29 Mar 2022 13:56:58 GMT
Accept-Ranges: bytes
Content-Length: 110560
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: font/woff2
194vod-adaptive.akamaized.net/exp=1664196967~acl=%2Fdb47ed1a-45ce-43d0-9a54-93a1ef40fcd1%2F%2A~hmac=fc3163acf806b740064cf44c45dbe8c039ca7962e80d50e830e3c9f1699c9764/db47ed1a-45ce-43d0-9a54-93a1ef40fcd1/sep/video/03f264c6/chop/segment-1.m4s?r=dXM%3D
23.36.76.130200 OK 2.4 MB URL HTTP/1.1 194vod-adaptive.akamaized.net/exp=1664196967~acl=%2Fdb47ed1a-45ce-43d0-9a54-93a1ef40fcd1%2F%2A~hmac=fc3163acf806b740064cf44c45dbe8c039ca7962e80d50e830e3c9f1699c9764/db47ed1a-45ce-43d0-9a54-93a1ef40fcd1/sep/video/03f264c6/chop/segment-1.m4s?r=dXM%3D
IP 23.36.76.130:0
ASN #20940 Akamai International B.V.
Size 2.4 MB (2434547 bytes)
Hash 86ddbd284cb41494c0712427bc906c46
e8f78d4a8449f3d05dcb2eb16661978ca8a8f0d9
af307875ffe0ba5873b0bbb823a4e72a1e9af0d7c5b842c8d480857ad031aec8
GET /exp=1664196967~acl=%2Fdb47ed1a-45ce-43d0-9a54-93a1ef40fcd1%2F%2A~hmac=fc3163acf806b740064cf44c45dbe8c039ca7962e80d50e830e3c9f1699c9764/db47ed1a-45ce-43d0-9a54-93a1ef40fcd1/sep/video/03f264c6/chop/segment-1.m4s?r=dXM%3D HTTP/1.1
Host: 194vod-adaptive.akamaized.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://player.vimeo.com
Connection: keep-alive
Referer: https://player.vimeo.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Length: 2434547
ETag: 04046ffd7138c89629f8cdb1543ef6c4
using-starlord: true
origin-retrieved-hour: 1663106400
Access-Control-Max-Age: 86400
timing-allow-origin: *
Aka-c-hit: cache-hit
Cache-Control: max-age=30450700
Date: Mon, 26 Sep 2022 11:51:08 GMT
Connection: keep-alive
Akamai-Mon-Iucid-Del: 877678
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
Content-Type: video/mp4
AK-REFERENCE-ID: 0.7e4c2417.1664193068.57b9c2e
X-VIM-CACHEBC: EP:H11,E:m,TD0:m,CW:m,PE:h
Access-Control-Expose-Headers: Akamai-Edge-IP, X-VIM-CACHEBC, X-Akamai-Request-ID, AK-REFERENCE-ID
Akamai-Edge-IP: 23.36.76.130
Access-Control-Allow-Headers: Content-Type, Accept-Encoding, Range, X-OTT-Agent,CMCD-Request,CMCD-Object,CMCD-Status,CMCD-Session
Access-Control-Allow-Origin: *
kaniwan.cl/wp-content/uploads/2021/03/Pipa-Chacana-600x600.jpg
131.108.210.11200 OK 40 kB URL HTTP/1.1 kaniwan.cl/wp-content/uploads/2021/03/Pipa-Chacana-600x600.jpg
IP 131.108.210.11:0
ASN #26623 TECNOLOGIACHILE.COM LTDA TCHILE.COM
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, progressive, precision 8, 600x600, components 3\012- data
Hash aad4e4dfe55377f5a784899595cd7a32
87f2b0877bfedee634c14b5b935166a0f0aca64a
c371b02f915d0d35a88d1c05f027796c30eb2ffa1cb997007fea2a33d1f55dae
GET /wp-content/uploads/2021/03/Pipa-Chacana-600x600.jpg HTTP/1.1
Host: kaniwan.cl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kaniwan.cl/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 26 Sep 2022 11:51:08 GMT
Server: Apache
Last-Modified: Sun, 14 Mar 2021 14:33:28 GMT
Accept-Ranges: bytes
Content-Length: 39725
Keep-Alive: timeout=5, max=88
Connection: Keep-Alive
Content-Type: image/jpeg
kaniwan.cl/wp-content/uploads/2021/03/kaniwan-30-min.jpg
131.108.210.11200 OK 266 kB URL HTTP/1.1 kaniwan.cl/wp-content/uploads/2021/03/kaniwan-30-min.jpg
IP 131.108.210.11:0
ASN #26623 TECNOLOGIACHILE.COM LTDA TCHILE.COM
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1365x2048, components 3\012- data
Size 266 kB (266354 bytes)
Hash 6cd047d2a61d7554e40b1cefcc9caf65
46ae90d383889ca34e55aa1443ae48f2af1cdb1c
3a2d9254735d54ea5e67735f70632f65d41b5971986acc5a9aeaf83c54f2df2e
GET /wp-content/uploads/2021/03/kaniwan-30-min.jpg HTTP/1.1
Host: kaniwan.cl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kaniwan.cl/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 26 Sep 2022 11:51:07 GMT
Server: Apache
Last-Modified: Sat, 13 Mar 2021 23:16:06 GMT
Accept-Ranges: bytes
Content-Length: 266354
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: image/jpeg
kaniwan.cl/wp-content/uploads/2021/04/image007-min.png
131.108.210.11200 OK 604 kB URL HTTP/1.1 kaniwan.cl/wp-content/uploads/2021/04/image007-min.png
IP 131.108.210.11:0
ASN #26623 TECNOLOGIACHILE.COM LTDA TCHILE.COM
File type PNG image data, 1085 x 1628, 8-bit colormap, non-interlaced\012- data
Size 604 kB (604544 bytes)
Hash d58579a406b45bd86ecbcfedc830f8d1
9abbd1ede5f5df20004caee068c953f677ca641c
e33dc57b01f0620e56314a6f727e4131ca045d807443052e70df33e0ade7c90a
GET /wp-content/uploads/2021/04/image007-min.png HTTP/1.1
Host: kaniwan.cl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kaniwan.cl/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 26 Sep 2022 11:51:07 GMT
Server: Apache
Last-Modified: Mon, 12 Apr 2021 13:26:18 GMT
Accept-Ranges: bytes
Content-Length: 604544
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: image/png
kaniwan.cl/wp-content/uploads/2021/03/Kilkay-diedemas-600x600.jpg
131.108.210.11200 OK 0 B URL HTTP/1.1 kaniwan.cl/wp-content/uploads/2021/03/Kilkay-diedemas-600x600.jpg
IP 131.108.210.11:0
ASN #26623 TECNOLOGIACHILE.COM LTDA TCHILE.COM
GET /wp-content/uploads/2021/03/Kilkay-diedemas-600x600.jpg HTTP/1.1
Host: kaniwan.cl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kaniwan.cl/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 26 Sep 2022 11:51:08 GMT
Server: Apache
Last-Modified: Sun, 14 Mar 2021 14:35:45 GMT
Accept-Ranges: bytes
Content-Length: 74857
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: image/jpeg
kaniwan.cl/wp-content/uploads/us-assets/kaniwan.cl.css?ver=692f5011
131.108.210.11200 OK 0 B URL HTTP/1.1 kaniwan.cl/wp-content/uploads/us-assets/kaniwan.cl.css?ver=692f5011
IP 131.108.210.11:0
ASN #26623 TECNOLOGIACHILE.COM LTDA TCHILE.COM
Analyzer Verdict Alert fortinet Malware
GET /wp-content/uploads/us-assets/kaniwan.cl.css?ver=692f5011 HTTP/1.1
Host: kaniwan.cl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kaniwan.cl/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 26 Sep 2022 11:51:05 GMT
Server: Apache
Last-Modified: Tue, 29 Mar 2022 14:02:51 GMT
Accept-Ranges: bytes
Content-Length: 312005
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css