Report - aexa.es/

Report Overview

Submitted URL
aexa.es/
IP
217.160.101.116
ASN
#8560 IONOS SE
Submitted
2023-02-02 20:03:07
Access
Website Title
Final URL
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
44

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
aexa.es	unknown	2017-05-29T00:26:15Z	2023-03-13T06:02:49Z	16 kB	3.9 MB	217.160.101.116
r3.o.lencr.org	344	2020-12-02T09:52:13Z	2023-03-13T05:09:07Z	3.0 kB	8.0 kB	23.36.77.32
region1.google-analytics.com	unknown	2022-03-17T12:26:33Z	2023-03-13T05:09:18Z	694 B	438 B	216.239.32.36
fonts.googleapis.com	8877	2013-06-10T22:14:26Z	2023-03-13T08:14:31Z	393 B	630 B	142.250.74.106
ocsp.pki.goog	175	2018-07-01T08:43:07Z	2023-03-13T05:09:47Z	2.1 kB	4.2 kB	142.250.74.131
img-getpocket.cdn.mozilla.net	1631	2018-06-22T01:36:00Z	2023-03-13T05:09:16Z	4.4 kB	88 kB	34.120.237.76
www.googletagmanager.com	75	2013-05-22T04:07:37Z	2023-03-13T08:28:24Z	377 B	45 kB	142.250.74.40
firefox.settings.services.mozilla.com	867	2020-06-04T22:08:41Z	2023-03-13T05:09:10Z	782 B	2.4 kB	35.241.9.150
content-signature-2.cdn.mozilla.net	1152	2020-11-03T13:26:46Z	2023-03-13T05:09:35Z	413 B	5.8 kB	34.160.144.191
contile.services.mozilla.com	1114	2021-05-27T20:32:35Z	2023-03-13T05:09:13Z	333 B	391 B	34.117.237.239
push.services.mozilla.com	2140	2014-10-24T10:27:06Z	2023-03-13T05:09:14Z	606 B	127 B	52.40.49.56

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

Scan Date	Severity	Indicator	Alert
2023-02-02	medium	aexa.es/	Phishing
2023-02-02	medium	aexa.es/wp-content/astra-local-fonts/barlow/7cHqv4kjgoGqM7E3j-ws51os.woff2	Phishing
2023-02-02	medium	aexa.es/wp-content/astra-local-fonts/montserrat/JTUHjIg1_i6t8kCHKm4532VJOt5-QNFgpCu173w5aXo.woff2	Phishing
2023-02-02	medium	aexa.es/wp-content/astra-local-fonts/barlow/7cHqv4kjgoGqM7E3p-ks51os.woff2	Phishing
2023-02-02	medium	aexa.es/wp-content/astra-local-fonts/barlow/7cHpv4kjgoGqM7E_DMs5.woff2	Phishing
2023-02-02	medium	aexa.es/wp-content/astra-local-fonts/barlow/7cHqv4kjgoGqM7E3w-os51os.woff2	Phishing
2023-02-02	medium	aexa.es/wp-content/astra-local-fonts/barlow/7cHsv4kjgoGqM7E_CfP04WouvTo.woff2	Phishing
2023-02-02	medium	aexa.es/wp-content/astra-local-fonts/barlow/7cHqv4kjgoGqM7E3t-4s51os.woff2	Phishing
2023-02-02	medium	aexa.es/wp-content/themes/astra/assets/fonts/astra.woff	Phishing
2023-02-02	medium	aexa.es/wp-includes/js/jquery/jquery.min.js?ver=3.6.1	Phishing
2023-02-02	medium	aexa.es/wp-includes/js/dist/element.min.js?ver=47162ff4492c7ec4956b	Phishing
2023-02-02	medium	aexa.es/wp-content/astra-local-fonts/astra-local-fonts.css?ver=4.0.2	Phishing
2023-02-02	medium	aexa.es/wp-includes/js/dist/escape-html.min.js?ver=03e27a7b6ae14f7afaa6	Phishing
2023-02-02	medium	aexa.es/wp-includes/js/dist/vendor/react-dom.min.js?ver=17.0.1	Phishing
2023-02-02	medium	aexa.es/wp-content/plugins/advanced-post-block/dist/style.css?ver=1.8.3	Phishing
2023-02-02	medium	aexa.es/wp-content/plugins/advanced-post-block/assets/js/easy-ticker.min.js?ver=3.2.1	Phishing
2023-02-02	medium	aexa.es/wp-content/themes/astra/assets/js/minified/frontend.min.js?ver=4.0.2	Phishing
2023-02-02	medium	aexa.es/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9	Phishing
2023-02-02	medium	aexa.es/wp-includes/js/wp-emoji-release.min.js?ver=6.1.1	Phishing
2023-02-02	medium	aexa.es/wp-content/plugins/advanced-post-block/dist/script.js?ver=1.8.3	Phishing
2023-02-02	medium	aexa.es/	Phishing
2023-02-02	medium	aexa.es/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2	Phishing

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (19)

	URL	Size	First Seen	Last Seen
	aexa.es/wp-content/plugins/advanced-post-block/assets/js/swiper-bundle.min.js?ver=7.0.3	135 kB	2023-03-07	2024-04-16
Pretty URL aexa.es/wp-content/plugins/advanced-post-block/assets/js/swiper-bundle.min.js?ver=7.0.3 IP 217.160.101.116 ASN #8560 IONOS SE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:10:27 Last Seen2024-04-16 01:06:38 Times Seen49 Hash 5b0cd7f1ae592cad783865f51fe31c97 f577c8ab5a6d358e7680fdac1258a06c5d68ccf1 a497f2aed65da237595458a9a3c970ebbbded7b3ddf59769d170018667b963a2 Loading...

	aexa.es/wp-includes/js/jquery/jquery.min.js?ver=3.6.1	90 kB	2023-03-08	2024-04-26
Pretty URL aexa.es/wp-includes/js/jquery/jquery.min.js?ver=3.6.1 IP 217.160.101.116 ASN #8560 IONOS SE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:21:46 Last Seen2024-04-26 13:21:22 Times Seen31829 Hash 17738318d61d394f1de8890d589afaec f6d0c4dc1399cf02d53f5753ad46573a8bbc2ac3 cc7403bab52ed166e24ea9324241045af370be482f5b594468f4a6ac6e7e7981 Loading...

	aexa.es/wp-content/themes/astra/assets/js/minified/frontend.min.js?ver=4.0.2	18 kB	2023-03-12	2024-04-18
Pretty URL aexa.es/wp-content/themes/astra/assets/js/minified/frontend.min.js?ver=4.0.2 IP 217.160.101.116 ASN #8560 IONOS SE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 22:05:48 Last Seen2024-04-18 14:03:49 Times Seen1122 Hash 17021088d1e5bf6d919f1eef0e7c9edb 24009d663fa269f6e85368f0f0e314681cba36e7 149712c16718936d2b7ad4c16d10e89de23c9c3b1c157158b533b961f2bf644d Loading...

	aexa.es/	292 B	2023-03-13	2023-04-18
Pretty URL aexa.es/ IP 217.160.101.116 ASN #8560 IONOS SE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 07:24:33 Last Seen2023-04-18 21:04:00 Times Seen6 Hash 4eb350b26c636cfb52c6508633b17bb6 a9b5d0a2d9f034c3a699720a1ddb913d34edbd7c 75a818d37fb7538a7667d85ce92b959dd53ee144634e329f824c1d7c5efdb355 Loading...

	aexa.es/	90 B	2023-03-12	2024-04-18
Pretty URL aexa.es/ IP 217.160.101.116 ASN #8560 IONOS SE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 21:50:29 Last Seen2024-04-18 14:03:47 Times Seen572 Hash 984c6d5f35203a53abff44467224b6de f7845afc8811594f022047a647e55f5e65db4795 e423dedf76f9543545fef46f60cd74c40f50e6c338a090bf5937cb3369fdee7b Loading...

	aexa.es/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9	6.5 kB	2023-03-07	2024-04-25
Pretty URL aexa.es/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9 IP 217.160.101.116 ASN #8560 IONOS SE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:08 Last Seen2024-04-25 21:53:57 Times Seen15501 Hash 61449413a42d2daaa79dbe7298b40e21 d86c474164c603084397bdc50fb0e469d28b5772 f30769ea0b80a5d900c5f0de30b1aad1ab461195e69223d5ef63c2c5de8b6c1a Loading...

	aexa.es/wp-includes/js/dist/vendor/react-dom.min.js?ver=17.0.1	118 kB	2023-03-07	2024-04-18
Pretty URL aexa.es/wp-includes/js/dist/vendor/react-dom.min.js?ver=17.0.1 IP 217.160.101.116 ASN #8560 IONOS SE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:18:10 Last Seen2024-04-18 12:49:20 Times Seen515 Hash e2a920d393a009727111fbf1e4a3e283 e70afa2ea51b0b9ed31c1ab9af6ce7281a36cd98 faab00bb343aef689870018af7e09d1edd5cbd150b712e727240e4634fa1ffa2 Loading...

	aexa.es/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2	11 kB	2023-03-07	2024-04-26
Pretty URL aexa.es/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 IP 217.160.101.116 ASN #8560 IONOS SE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:02 Last Seen2024-04-26 13:23:23 Times Seen68666 Hash 79b4956b7ec478ec10244b5e2d33ac7d a46025b9d05e3df30d610a8aef14f392c7058dc9 029e0a2e809fd6b5dbe76abe8b7a74936be306c9a8c27c814c4d44aa54623300 Loading...

	aexa.es/	333 B	2023-03-07	2024-04-26
Pretty URL aexa.es/ IP 217.160.101.116 ASN #8560 IONOS SE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:35 Last Seen2024-04-26 02:04:43 Times Seen7490 Hash 3688fd64c409264431201fa55a828e81 2b7eeefaa1edf3a7621f7576b35b01c895ef5367 944433761a880eab1d567dd5389499af76aa03582c82a8aa88838e3c6c2134c6 Loading...

	aexa.es/wp-includes/js/dist/element.min.js?ver=47162ff4492c7ec4956b	12 kB	2023-03-08	2024-04-18
Pretty URL aexa.es/wp-includes/js/dist/element.min.js?ver=47162ff4492c7ec4956b IP 217.160.101.116 ASN #8560 IONOS SE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 19:46:38 Last Seen2024-04-18 12:49:19 Times Seen381 Hash ea0d01a925f98cfa34156dfcc6600f03 b011362ca664891da4629f16845431ac0975c63d 1987ae63250aaf378e4da5e114eeca519f6c46a8d55b27e2d0c7b8b05968e6af Loading...

	www.google-analytics.com/analytics.js	50 kB	2023-03-12	2024-04-15
Pretty URL www.google-analytics.com/analytics.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 21:46:21 Last Seen2024-04-15 18:54:35 Times Seen35101 Hash 54e51056211dda674100cc5b323a58ad 26dc5034cb6c7f3bbe061edd37c7fc6006cb835b 5971b095cff574a66d35ada016d4c077c86e2dea62e9c0f14cf7c94b258619de Loading...

	aexa.es/wp-includes/js/dist/vendor/react.min.js?ver=17.0.1	11 kB	2023-03-07	2024-04-18
Pretty URL aexa.es/wp-includes/js/dist/vendor/react.min.js?ver=17.0.1 IP 217.160.101.116 ASN #8560 IONOS SE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:18:10 Last Seen2024-04-18 12:49:19 Times Seen542 Hash 0dc4a04efdf47cdf1389331779edfa2f 2ca9923fdce4e3e5d45c14bf61aff6c0b4964ffc 7441e843483c183606e93bc717055148574dad9bc39cb9ecfef062c1fb2d9e1a Loading...

	aexa.es/wp-includes/js/wp-emoji-release.min.js?ver=6.1.1	19 kB	2023-03-07	2024-04-26
Pretty URL aexa.es/wp-includes/js/wp-emoji-release.min.js?ver=6.1.1 IP 217.160.101.116 ASN #8560 IONOS SE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:08 Last Seen2024-04-26 13:23:23 Times Seen38059 Hash 32beb68a374e3aeac00abdf9e12b84ea b5d18aa625e8696dd9d07cd0869337717b211ae0 5aad5fbd4238981a9ff5e2772ff1353dfe1a801fb49542fe157418c1438f7782 Loading...

	www.googletagmanager.com/gtag/js?id=UA-236610839-1	112 kB	2023-03-13	2023-03-13
Pretty URL www.googletagmanager.com/gtag/js?id=UA-236610839-1 IP 142.250.74.40 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 15:15:02 Last Seen2023-03-13 15:15:02 Times Seen1 Hash c8613d609d3ff6da250b6d527c0ab32f 09a47271e1b99cb482bd1e044738737a4fa26f39 71f24b97a351b7644af2e4a36592b0a8b1a0362f777fd04a66c4d17d3da6b9d9 Loading...

	aexa.es/wp-content/plugins/advanced-post-block/dist/script.js?ver=1.8.3	11 kB	2023-03-09	2023-06-20
Pretty URL aexa.es/wp-content/plugins/advanced-post-block/dist/script.js?ver=1.8.3 IP 217.160.101.116 ASN #8560 IONOS SE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 07:49:41 Last Seen2023-06-20 22:48:02 Times Seen18 Hash 9dbb11f0702f8c6155f5ecc0b1a6d6d4 963f489d47355ad2ba185c70787d05a0aee1dbab 99be0a7660b322e572ef351ccad9f42fae22cfc590de78be065141abbfa1b91d Loading...

	aexa.es/wp-content/plugins/advanced-post-block/assets/js/easy-ticker.min.js?ver=3.2.1	2.9 kB	2023-03-07	2024-04-16
Pretty URL aexa.es/wp-content/plugins/advanced-post-block/assets/js/easy-ticker.min.js?ver=3.2.1 IP 217.160.101.116 ASN #8560 IONOS SE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:10:27 Last Seen2024-04-16 01:06:38 Times Seen41 Hash 5f80abff80d689e3635bf5e6384ef505 fe7aeb42eb441efa2cd4258f5cc8b9c6dd2fee3e 45dd4fc53965906c457bedcd538838b59a00db7b5e9849e84d37302ac19b03e7 Loading...

	www.googletagmanager.com/gtag/js?id=G-8RS8F2CE81&l=dataLayer&cx=c	185 kB	2023-03-13	2023-03-13
Pretty URL www.googletagmanager.com/gtag/js?id=G-8RS8F2CE81&l=dataLayer&cx=c IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 15:15:02 Last Seen2023-03-13 15:15:02 Times Seen1 Hash 33c077a9c0446114e7414b946d5d3b5f 9b7440724ab35c75ee3d11ef3c43a7330d21d5ed 5e0571598500999ae1120ba3f6e71574be09b9d49c1119b4e023b5028de43d49 Loading...

	aexa.es/	2.1 kB	2023-03-13	2023-03-13
Pretty URL aexa.es/ IP 217.160.101.116 ASN #8560 IONOS SE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 07:24:33 Last Seen2023-03-13 17:02:40 Times Seen1 Hash c1035b4878a50ce706531cc17e32d5af dc12fd8b5fba05cc7973b14c7d231ddbbb11625f 67397476fbcc35bd834588436a0a8f23913317c93c698071f4ee069e784ff3ea Loading...

	aexa.es/wp-includes/js/dist/escape-html.min.js?ver=03e27a7b6ae14f7afaa6	1.1 kB	2023-03-07	2024-04-26
Pretty URL aexa.es/wp-includes/js/dist/escape-html.min.js?ver=03e27a7b6ae14f7afaa6 IP 217.160.101.116 ASN #8560 IONOS SE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:18:10 Last Seen2024-04-26 10:54:39 Times Seen2470 Hash 27b8b3680cd49b8f105b2bf49da03b1c ad0c8cbc41c7e19ad1d892234f6c4b403df1439c cfb6ea70d464c88b03728fe77f38a7400f7a3b1b5b0eaaae5817844d730e8cbd Loading...

HTTP Transactions (66)

URL IP Response Size

aexa.es/

217.160.101.116

301 Moved Permanently

162 B

URL HTTP/1.1
aexa.es/
IP
217.160.101.116:0
ASN
#8560 IONOS SE

File type
HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size
162 B (162 bytes)
Hash
4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET / HTTP/1.1
Host: aexa.es
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Thu, 02 Feb 2023 20:02:55 GMT
Content-Type: text/html
Content-Length: 162
Connection: keep-alive
Location: https://aexa.es/

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
d4e95d0d8982bcd07804baf6fc88231c
5027abda0875bd2529dd4d6691784c74da71a9ee
373799b5749d2cb08b5721699a3e4c6b94b0d41604ac07d4ef7179e47dabc71f

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "373799B5749D2CB08B5721699A3E4C6B94B0D41604AC07D4EF7179E47DABC71F"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4030
Expires: Thu, 02 Feb 2023 21:10:05 GMT
Date: Thu, 02 Feb 2023 20:02:55 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
ec47f9eed203ae063b9c210009de54a9
19ff156471b9cffbc2432c5b65543bdd18e36271
3974208ce1840f6c9467287b7e220379ed881d76db64939f411dbc500c103d48

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "3974208CE1840F6C9467287B7E220379ED881D76DB64939F411DBC500C103D48"
Last-Modified: Thu, 02 Feb 2023 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16888
Expires: Fri, 03 Feb 2023 00:44:23 GMT
Date: Thu, 02 Feb 2023 20:02:55 GMT
Connection: keep-alive

firefox.settings.services.mozilla.com/v1/

35.241.9.150

200 OK

939 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/
IP
35.241.9.150:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
ff250d3ef3fa45322bf05039a0122a9f
b3e7a2c383bce1bab807dbe1a03c375258b51f1d
d07f109a96e0ae6ec7b1d46ce8761b3f06fe845769ce65d69e053dd40aa561ba

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Retry-After, Backoff, Content-Type, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Thu, 02 Feb 2023 19:43:31 GMT
content-type: application/json
age: 1164
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
9a76feabb767086ae0fa54e0ffbf763f
3655d78994a1e9838340669462728b67c8c12e54
bf215ab858c7785b7c01f7d3d437a918f056f00fe9b065820e1cdd09b7bba8f9

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BF215AB858C7785B7C01F7D3D437A918F056F00FE9B065820E1CDD09B7BBA8F9"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=19911
Expires: Fri, 03 Feb 2023 01:34:46 GMT
Date: Thu, 02 Feb 2023 20:02:55 GMT
Connection: keep-alive

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain

34.160.144.191

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP
34.160.144.191:0
ASN
#15169 GOOGLE

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-amz-id-2: Ty8MdKSplhtRYu6uAqRfnV3Ykx4wr6sDkmO0aMWnFkd6hmzM7Vxqo44giBggCu+Gr8e/lDPJPkw=
x-amz-request-id: FB64932EXQX2Y30J
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Thu, 02 Feb 2023 19:52:06 GMT
age: 649
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Thu, 02 Feb 2023 20:02:55 GMT
content-type: application/json
content-length: 12
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-expose-headers: content-type
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
752fd231261252d0188f0237914b72b4
6bcbaf3b922dd47e7bd79bb541a0ebe69a933a62
edd6a4b3822b0ff4a906343bfc8ebed31b790322f9f9e6eadaa64fbd0e549e1d

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EDD6A4B3822B0FF4A906343BFC8EBED31B790322F9F9E6EADAA64FBD0E549E1D"
Last-Modified: Thu, 02 Feb 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21546
Expires: Fri, 03 Feb 2023 02:02:01 GMT
Date: Thu, 02 Feb 2023 20:02:55 GMT
Connection: keep-alive

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

35.241.9.150

200 OK

329 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
35.241.9.150:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Retry-After, Last-Modified, Cache-Control, Pragma, ETag, Backoff, Content-Type, Alert, Expires
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Thu, 02 Feb 2023 19:49:05 GMT
age: 830
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
8913af0be619500295008bb91f506660
a7b8068ba9aa506205a295b24458c2616997a0d1
6a9838d00256431807ca382fc205064b07c08d5054f2895c2ae3cc4e9094179a

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6A9838D00256431807CA382FC205064B07C08D5054F2895C2AE3CC4E9094179A"
Last-Modified: Wed, 01 Feb 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5071
Expires: Thu, 02 Feb 2023 21:27:26 GMT
Date: Thu, 02 Feb 2023 20:02:55 GMT
Connection: keep-alive

push.services.mozilla.com/

52.40.49.56

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
52.40.49.56:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: hDuU7WfxdZkeMzL7HQWvnw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: TfFv24Wub+E9tRF8TNeIJlUlXuI=

aexa.es/wp-content/astra-local-fonts/barlow/7cHqv4kjgoGqM7E3j-ws51os.woff2

217.160.101.116

200 OK

21 kB

URL HTTP/2
aexa.es/wp-content/astra-local-fonts/barlow/7cHqv4kjgoGqM7E3j-ws51os.woff2
IP
217.160.101.116:0
ASN
#8560 IONOS SE

File type
Web Open Font Format (Version 2), TrueType, length 21416, version 1.0\012- data
Size
21 kB (21416 bytes)
Hash
d258461a8f2c53d244500969828bdd3f
c796103e6ca328dd6a92bfecf72cda8f0a143158
f9bfb04a18c8be687fadacd7f67647b65113ee8d1aabcb0f410eac21681fa7ef

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/astra-local-fonts/barlow/7cHqv4kjgoGqM7E3j-ws51os.woff2 HTTP/1.1
Host: aexa.es
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aexa.es/
Cookie: _eshoob=1
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 02 Feb 2023 20:02:56 GMT
content-type: font/woff2
content-length: 21416
last-modified: Mon, 14 Nov 2022 09:13:26 GMT
etag: "637206b6-53a8"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
e8e0173672ec76c01676a1ba4e1be857
3d01334320c94972440226cfe96c8c7646cae796
c75aea885e434e8bf53e439c4b441e2af4b228f70212001fcc4c8094f534e0f1

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C75AEA885E434E8BF53E439C4B441E2AF4B228F70212001FCC4C8094F534E0F1"
Last-Modified: Tue, 31 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18214
Expires: Fri, 03 Feb 2023 01:06:30 GMT
Date: Thu, 02 Feb 2023 20:02:56 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
e8e0173672ec76c01676a1ba4e1be857
3d01334320c94972440226cfe96c8c7646cae796
c75aea885e434e8bf53e439c4b441e2af4b228f70212001fcc4c8094f534e0f1

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C75AEA885E434E8BF53E439C4B441E2AF4B228F70212001FCC4C8094F534E0F1"
Last-Modified: Tue, 31 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18214
Expires: Fri, 03 Feb 2023 01:06:30 GMT
Date: Thu, 02 Feb 2023 20:02:56 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
e8e0173672ec76c01676a1ba4e1be857
3d01334320c94972440226cfe96c8c7646cae796
c75aea885e434e8bf53e439c4b441e2af4b228f70212001fcc4c8094f534e0f1

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C75AEA885E434E8BF53E439C4B441E2AF4B228F70212001FCC4C8094F534E0F1"
Last-Modified: Tue, 31 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18214
Expires: Fri, 03 Feb 2023 01:06:30 GMT
Date: Thu, 02 Feb 2023 20:02:56 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
e8e0173672ec76c01676a1ba4e1be857
3d01334320c94972440226cfe96c8c7646cae796
c75aea885e434e8bf53e439c4b441e2af4b228f70212001fcc4c8094f534e0f1

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C75AEA885E434E8BF53E439C4B441E2AF4B228F70212001FCC4C8094F534E0F1"
Last-Modified: Tue, 31 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18214
Expires: Fri, 03 Feb 2023 01:06:30 GMT
Date: Thu, 02 Feb 2023 20:02:56 GMT
Connection: keep-alive

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
9c45ea25709afbea416f215ee34611b0
117c52c0ee3ff15a2485c0b1e39cc12c7c2021ed
7fbc3c806c7fc6d70d70b55723dbbfc00698b14fcad55014218bc5e03e92a118

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 20:02:56 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe2d02739-590e-4a37-9ca5-c27003f9e416.jpeg

34.120.237.76

200 OK

16 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe2d02739-590e-4a37-9ca5-c27003f9e416.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
16 kB (15857 bytes)
Hash
4bb3a6fba496d54cdbbccaf2b9600386
8e30002699e9fbf2047f9ac11a36d2175fc9c591
927bf3a04b011b4e3bc8d8772a3d5813507f7f523312d43627767b64615562f3

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe2d02739-590e-4a37-9ca5-c27003f9e416.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 15857
x-amzn-requestid: cfe36b9d-34f6-4f3f-896e-e70ec45c4a04
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fmJ2JGGWoAMFSLA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d8bcf3-0dd68dd778b9aba268a129b0;Sampled=0
x-amzn-remapped-date: Tue, 31 Jan 2023 07:02:11 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: C1kqthy0eZop0UZfG3_op5xeBOVGiPLYfia4uS1l4-kchEzV6ccE9w==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 6172bb1a5d00a3b06ae3700570ebe116.cloudfront.net (CloudFront), 1.1 google
date: Thu, 02 Feb 2023 07:16:08 GMT
age: 46008
etag: "8e30002699e9fbf2047f9ac11a36d2175fc9c591"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

aexa.es/wp-content/astra-local-fonts/montserrat/JTUHjIg1_i6t8kCHKm4532VJOt5-QNFgpCu173w5aXo.woff2

217.160.101.116

200 OK

13 kB

URL HTTP/2
aexa.es/wp-content/astra-local-fonts/montserrat/JTUHjIg1_i6t8kCHKm4532VJOt5-QNFgpCu173w5aXo.woff2
IP
217.160.101.116:0
ASN
#8560 IONOS SE

File type
Web Open Font Format (Version 2), TrueType, length 12700, version 1.0\012- data
Size
13 kB (12700 bytes)
Hash
e571167fbcce8d5081bce96a09930063
e12420f5e4da3ccdc75a58ce744e7d5a0c6cf79e
98be19bc78b5bc5d419e4fa6ea055ebd4671a963e2cc644aeed4362f15d14c31

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/astra-local-fonts/montserrat/JTUHjIg1_i6t8kCHKm4532VJOt5-QNFgpCu173w5aXo.woff2 HTTP/1.1
Host: aexa.es
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aexa.es/
Cookie: _eshoob=1
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 02 Feb 2023 20:02:56 GMT
content-type: font/woff2
content-length: 12700
last-modified: Mon, 14 Nov 2022 09:13:26 GMT
etag: "637206b6-319c"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2

34.120.237.76

200 OK

9.2 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F88b0e15d-e5be-4197-a382-bf7332128068.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
9.2 kB (9221 bytes)
Hash
df4a4906103a8f409c066b1cded71384
22847e3926db3e3d5f6b529297a4abe8b377c3a6
84a14b73b2cc7f4641eaa5539cbee0a109ae2b05cf88d06797a2b00c8d4f0c43

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F88b0e15d-e5be-4197-a382-bf7332128068.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 9221
x-amzn-requestid: 209c2ad4-7a1f-4867-bf98-4ca8621111a1
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: frdTBFv5IAMFgqQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dadc13-1627a9d603c69f7760ad013b;Sampled=0
x-amzn-remapped-date: Wed, 01 Feb 2023 21:39:31 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: kAkcQOKAvuq3k-X081MLCqon-cnQJqGryVeE0fwX0a7bcXgJlySIvg==
via: 1.1 a4fe306096165bb1e86e69365dc8fac2.cloudfront.net (CloudFront), 1.1 1b74ccf4cb51eacf97a0e6d60ae46a3e.cloudfront.net (CloudFront), 1.1 google
date: Wed, 01 Feb 2023 22:21:38 GMT
age: 78078
etag: "22847e3926db3e3d5f6b529297a4abe8b377c3a6"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

15 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdab614ba-4572-4b54-9079-a26b68b1ece7.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
15 kB (15051 bytes)
Hash
6bb5b89e738516f4862491eec286bf6d
8fb46b9ca85f2c578eb2a56d0007859183e12209
7f164a37b675bf39f8473392b07a2a383397da003303965fb190fd4f455bb43b

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdab614ba-4572-4b54-9079-a26b68b1ece7.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 15051
x-amzn-requestid: 72a3f2ae-538e-40dc-9496-86c28334ba0d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: frc6jGTAIAMFy4A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dadb76-72178ed13a2e70d462785b90;Sampled=0
x-amzn-remapped-date: Wed, 01 Feb 2023 21:36:54 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: CKTfQzCvXa4oL6Lm2n8Rw_9Uhj69YfgpDTP9s0zoaX5qW1vcqWIXDA==
via: 1.1 5a1753718d8b33365e5f693dd338c510.cloudfront.net (CloudFront), 1.1 57a21088b36c69a83578b5a5579df58e.cloudfront.net (CloudFront), 1.1 google
date: Wed, 01 Feb 2023 21:54:58 GMT
age: 79678
etag: "8fb46b9ca85f2c578eb2a56d0007859183e12209"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

11 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F496723d4-47ce-49a5-b3b3-9ae546523015.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
11 kB (11367 bytes)
Hash
395bb0f71f9eba82f5ca23548d08900f
b1fada280c7ea3eb775a6fa46ce173a51eb045f5
7443babb69532e1ee3ee779e05ad4f62de2c5bf62548bcb5702f8290a527664c

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F496723d4-47ce-49a5-b3b3-9ae546523015.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 11367
x-amzn-requestid: 67702c15-9a68-46ec-95e5-efb57f08e2f1
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: frc5OGfBoAMF3Yw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dadb6e-033182ba55fdd0230ad5a270;Sampled=0
x-amzn-remapped-date: Wed, 01 Feb 2023 21:36:46 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: Ybz4mmNUwsKOkpz6GFm4nLz7iGX5gJ--EiUjqrs8G92GBLn6qaF7IQ==
via: 1.1 86b676273517904f44af31586adb06ae.cloudfront.net (CloudFront), 1.1 2bedbeaa49b4a77447d30097858cb81a.cloudfront.net (CloudFront), 1.1 google
date: Wed, 01 Feb 2023 21:57:51 GMT
age: 79505
etag: "b1fada280c7ea3eb775a6fa46ce173a51eb045f5"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

8.9 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffd3cca56-2e75-4efc-8090-c33c65a99f80.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
8.9 kB (8944 bytes)
Hash
b9af1fd56c0de8f128ddce88d49c1b4d
e3bb3d4950f7c0267f4476eef21872da332831aa
908153182f76362ff329803d9c11c06c66181e85e8e51dabd927f1f1ac630d5c

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffd3cca56-2e75-4efc-8090-c33c65a99f80.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 8944
x-amzn-requestid: 07495184-ede8-485c-94e8-5302ec348ea6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: freiLHRPoAMFYbw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dade0d-275437a54eceb40e302a7f55;Sampled=0
x-amzn-remapped-date: Wed, 01 Feb 2023 21:47:57 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: e0zaXjoBKOmsY4fPEbl1SWCBxetMssmszZug0-epLq-X5rGb5zKHZw==
via: 1.1 446313511980eb02f28ff5a9a4147c0a.cloudfront.net (CloudFront), 1.1 d8792dbd3191bbe722eba5b536b979c8.cloudfront.net (CloudFront), 1.1 google
date: Wed, 01 Feb 2023 21:59:36 GMT
age: 79400
etag: "e3bb3d4950f7c0267f4476eef21872da332831aa"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

5.4 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe18f9e12-0986-423b-911d-6271bb996db4.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
5.4 kB (5356 bytes)
Hash
7c823f1d6bf1c50d58eb263b85e6e37c
a7b74d11494fb3254df907e5cc1eead070d84617
b2706961eb756383e0988dfdb501dc424aea59697aedd1e4a6c294c314a31935

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe18f9e12-0986-423b-911d-6271bb996db4.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 5356
x-amzn-requestid: fef22c83-35a4-4990-9008-af5853f838d1
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: frc5BEB6oAMFczg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dadb6c-68d3017555c069bc3107d150;Sampled=0
x-amzn-remapped-date: Wed, 01 Feb 2023 21:36:44 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: i697kJpdT4ZPeMLWIftWf16pWCic0-v4tL4GDKfVfTZLo-E4-3FwDQ==
via: 1.1 ddd913fbbe7367d44af4ac06097e7a2a.cloudfront.net (CloudFront), 1.1 d6b180eb367f7de26d67a9f3901b96a6.cloudfront.net (CloudFront), 1.1 google
date: Wed, 01 Feb 2023 22:21:38 GMT
age: 78078
etag: "a7b74d11494fb3254df907e5cc1eead070d84617"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

www.googletagmanager.com/gtag/js?id=UA-236610839-1

142.250.74.40

200 OK

44 kB

URL HTTP/2
www.googletagmanager.com/gtag/js?id=UA-236610839-1
IP
142.250.74.40:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (1759)
Size
44 kB (43944 bytes)
Hash
8b1deeae123d98ed25b9ba8026269110
2ffa672d9cb6198d0bf49fe1c5ce15e4ede5557d
24e98ba293461f99f12f6dda711b6db501876ccd2bc8fba6759e3446f902543e

HTTP Headers

GET /gtag/js?id=UA-236610839-1 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aexa.es/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Thu, 02 Feb 2023 20:02:56 GMT
expires: Thu, 02 Feb 2023 20:02:56 GMT
cache-control: private, max-age=900
last-modified: Thu, 02 Feb 2023 19:29:34 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 43944
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
2751084b42dd111d0a7f28241a77201b
680a9ac2f4cf451c9a8449c4df3587595ed9cc4c
1c68a770afbcdb5405fe330f2eabefa576ea1d08740719956083d7f6b490ccf8

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 20:02:56 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

aexa.es/wp-content/uploads/2022/06/logo21.png

217.160.101.116

200 OK

13 kB

URL HTTP/2
aexa.es/wp-content/uploads/2022/06/logo21.png
IP
217.160.101.116:0
ASN
#8560 IONOS SE

File type
PNG image data, 220 x 90, 8-bit/color RGBA, non-interlaced\012- data
Size
13 kB (13007 bytes)
Hash
cc89ce7365ce5b53690aba52bd533cdd
c45bc7988042bad2227ef9767585093d01bfe6db
e1219effcd2cedc412f928f187048c9586dd90ec89317c6442a4838de5f2d9ab

HTTP Headers

GET /wp-content/uploads/2022/06/logo21.png HTTP/1.1
Host: aexa.es
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aexa.es/
Cookie: _eshoob=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 02 Feb 2023 20:02:56 GMT
content-type: image/png
content-length: 13007
last-modified: Wed, 29 Jun 2022 20:45:16 GMT
etag: "62bcb9dc-32cf"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2

aexa.es/wp-content/uploads/2022/06/logo1-1.png

217.160.101.116

200 OK

8.8 kB

URL HTTP/2
aexa.es/wp-content/uploads/2022/06/logo1-1.png
IP
217.160.101.116:0
ASN
#8560 IONOS SE

File type
PNG image data, 220 x 90, 8-bit/color RGB, non-interlaced\012- data
Size
8.8 kB (8761 bytes)
Hash
3c03838c700dec6fec54b4338565918e
8d4807b4b061afb73751984eca099362e03c4250
0243e9bfd5668f9926f9c716476ed854493a9e57c32dd17c6c6d32b2bfac827a

HTTP Headers

GET /wp-content/uploads/2022/06/logo1-1.png HTTP/1.1
Host: aexa.es
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aexa.es/
Cookie: _eshoob=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 02 Feb 2023 20:02:56 GMT
content-type: image/png
content-length: 8761
last-modified: Wed, 29 Jun 2022 20:41:59 GMT
etag: "62bcb917-2239"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2

aexa.es/wp-content/uploads/2022/06/Captura-de-pantalla-2022-05-30-a-las-13.01.19-1536x818.png

217.160.101.116

200 OK

2.9 MB

URL HTTP/2
aexa.es/wp-content/uploads/2022/06/Captura-de-pantalla-2022-05-30-a-las-13.01.19-1536x818.png
IP
217.160.101.116:0
ASN
#8560 IONOS SE

File type
PNG image data, 1536 x 818, 8-bit/color RGBA, non-interlaced\012- data
Size
2.9 MB (2872651 bytes)
Hash
7100737d088341896e8dc1b504e16933
22a77a40702bb44d8e276721c840265cee5455b1
c21ecc23def6332c3143960e8818460f8a13deac7e0553e89976d6068d3a3018

HTTP Headers

GET /wp-content/uploads/2022/06/Captura-de-pantalla-2022-05-30-a-las-13.01.19-1536x818.png HTTP/1.1
Host: aexa.es
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aexa.es/
Cookie: _eshoob=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 02 Feb 2023 20:02:56 GMT
content-type: image/png
content-length: 2872651
last-modified: Tue, 07 Jun 2022 21:29:52 GMT
etag: "629fc350-2bd54b"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2

aexa.es/wp-content/uploads/2022/11/Cartel-Navidad-AEXAJPG-3-724x1024.jpg

217.160.101.116

200 OK

108 kB

URL HTTP/2
aexa.es/wp-content/uploads/2022/11/Cartel-Navidad-AEXAJPG-3-724x1024.jpg
IP
217.160.101.116:0
ASN
#8560 IONOS SE

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 121x121, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=6, orientation=upper-left, xresolution=86, yresolution=94, resolutionunit=2], baseline, precision 8, 724x1024, components 3\012- data
Size
108 kB (107964 bytes)
Hash
2d3506f52abfe8fbc8ad1a63538200f7
8cace8dcbe965225fdda7118e50ff09614334ab5
b3ed0679e132b34f06034a55ac5d672057be7f267603c9443868cdf262d5591c

HTTP Headers

GET /wp-content/uploads/2022/11/Cartel-Navidad-AEXAJPG-3-724x1024.jpg HTTP/1.1
Host: aexa.es
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aexa.es/
Cookie: _eshoob=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 02 Feb 2023 20:02:56 GMT
content-type: image/jpeg
content-length: 107964
last-modified: Mon, 14 Nov 2022 11:48:56 GMT
etag: "63722b28-1a5bc"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2

aexa.es/wp-content/uploads/2022/03/Concurso_de_Escaparates_y_Decoracin_Navidea.png

217.160.101.116

200 OK

284 kB

URL HTTP/2
aexa.es/wp-content/uploads/2022/03/Concurso_de_Escaparates_y_Decoracin_Navidea.png
IP
217.160.101.116:0
ASN
#8560 IONOS SE

File type
PNG image data, 827 x 827, 8-bit/color RGBA, non-interlaced\012- data
Size
284 kB (284365 bytes)
Hash
026648a572b3b7b36dd211b308ed132f
b4208f8d70e4ca496774d925542d75c33706939d
9c710f9d4eb671c6176bc271facfd59280ba8bc048ddd101089b45f7c3a1e17c

HTTP Headers

GET /wp-content/uploads/2022/03/Concurso_de_Escaparates_y_Decoracin_Navidea.png HTTP/1.1
Host: aexa.es
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aexa.es/
Cookie: _eshoob=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 02 Feb 2023 20:02:56 GMT
content-type: image/png
content-length: 284365
last-modified: Mon, 07 Mar 2022 12:31:41 GMT
etag: "6225fb2d-456cd"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2

aexa.es/wp-content/uploads/2022/03/Cartel_Navidad_AEXA.jpg

217.160.101.116

200 OK

163 kB

URL HTTP/2
aexa.es/wp-content/uploads/2022/03/Cartel_Navidad_AEXA.jpg
IP
217.160.101.116:0
ASN
#8560 IONOS SE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 680x960, components 3\012- data
Size
163 kB (163414 bytes)
Hash
6e7d0361c4f569ba30a22ab080b0761b
5e77893930a4c21fc73f223b262132c2090e3e4e
b13596db6d6cd5eaa6ea841954566b81e2d48e89d81ba041212d57f151eedf42

HTTP Headers

GET /wp-content/uploads/2022/03/Cartel_Navidad_AEXA.jpg HTTP/1.1
Host: aexa.es
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aexa.es/
Cookie: _eshoob=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 02 Feb 2023 20:02:56 GMT
content-type: image/jpeg
content-length: 163414
last-modified: Thu, 10 Mar 2022 12:58:56 GMT
etag: "6229f610-27e56"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2

aexa.es/wp-content/uploads/2022/03/Cartel_10_Campaa_Comercio_Rectificado_Fechas.jpg

217.160.101.116

200 OK

158 kB

URL HTTP/2
aexa.es/wp-content/uploads/2022/03/Cartel_10_Campaa_Comercio_Rectificado_Fechas.jpg
IP
217.160.101.116:0
ASN
#8560 IONOS SE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 637x900, components 3\012- data
Size
158 kB (158075 bytes)
Hash
848bca211b4d3bb0a915b100545b244d
8e61883d8b9228da07ae0e35a0cf7fe886914b10
35ced903a6769cb878bcab60c4e5dc94af8d7988a7d828930629a2792b6262ba

HTTP Headers

GET /wp-content/uploads/2022/03/Cartel_10_Campaa_Comercio_Rectificado_Fechas.jpg HTTP/1.1
Host: aexa.es
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aexa.es/
Cookie: _eshoob=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 02 Feb 2023 20:02:56 GMT
content-type: image/jpeg
content-length: 158075
last-modified: Sat, 12 Mar 2022 06:58:13 GMT
etag: "622c4485-2697b"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2

aexa.es/wp-content/astra-local-fonts/barlow/7cHqv4kjgoGqM7E3p-ks51os.woff2

217.160.101.116

200 OK

21 kB

URL HTTP/2
aexa.es/wp-content/astra-local-fonts/barlow/7cHqv4kjgoGqM7E3p-ks51os.woff2
IP
217.160.101.116:0
ASN
#8560 IONOS SE

File type
Web Open Font Format (Version 2), TrueType, length 20992, version 1.0\012- data
Size
21 kB (20992 bytes)
Hash
9bbb36e16c6af8205e564346df9579c0
8dc297321f4b344e6ea16b549734b10097594860
6563f08627fa2cd60c0c300318405b6f545f0d7f469df6ba87c9e31ecc987217

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/astra-local-fonts/barlow/7cHqv4kjgoGqM7E3p-ks51os.woff2 HTTP/1.1
Host: aexa.es
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://aexa.es/wp-content/astra-local-fonts/astra-local-fonts.css?ver=4.0.2
Cookie: _eshoob=1
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 02 Feb 2023 20:02:56 GMT
content-type: font/woff2
content-length: 20992
last-modified: Mon, 14 Nov 2022 09:13:24 GMT
etag: "637206b4-5200"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2

aexa.es/wp-content/astra-local-fonts/barlow/7cHpv4kjgoGqM7E_DMs5.woff2

217.160.101.116

200 OK

21 kB

URL HTTP/2
aexa.es/wp-content/astra-local-fonts/barlow/7cHpv4kjgoGqM7E_DMs5.woff2
IP
217.160.101.116:0
ASN
#8560 IONOS SE

File type
Web Open Font Format (Version 2), TrueType, length 21144, version 1.0\012- data
Size
21 kB (21144 bytes)
Hash
2bc7630144496092dc786ce63109e560
723df3658078cfed03c85e47f15fc439eb4331be
7c9c80a6c32c0619d61c28f28723e68c5f8f75163e77ee5cf64c39e640e0d71e

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/astra-local-fonts/barlow/7cHpv4kjgoGqM7E_DMs5.woff2 HTTP/1.1
Host: aexa.es
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://aexa.es/wp-content/astra-local-fonts/astra-local-fonts.css?ver=4.0.2
Cookie: _eshoob=1
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 02 Feb 2023 20:02:56 GMT
content-type: font/woff2
content-length: 21144
last-modified: Mon, 14 Nov 2022 09:13:25 GMT
etag: "637206b5-5298"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2

aexa.es/wp-content/astra-local-fonts/barlow/7cHqv4kjgoGqM7E3w-os51os.woff2

217.160.101.116

200 OK

21 kB

URL HTTP/2
aexa.es/wp-content/astra-local-fonts/barlow/7cHqv4kjgoGqM7E3w-os51os.woff2
IP
217.160.101.116:0
ASN
#8560 IONOS SE

File type
Web Open Font Format (Version 2), TrueType, length 20712, version 1.0\012- data
Size
21 kB (20712 bytes)
Hash
70bad2e5fa320f5ebc4f640be04ac2d9
4cd93511cb4b3ba0a957865fd2a5c607a3a729d3
815f02681d0fd52b5f52e8c3fca5e754fefb3c83c2eed47b63fd3c3228628cd6

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/astra-local-fonts/barlow/7cHqv4kjgoGqM7E3w-os51os.woff2 HTTP/1.1
Host: aexa.es
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://aexa.es/wp-content/astra-local-fonts/astra-local-fonts.css?ver=4.0.2
Cookie: _eshoob=1
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 02 Feb 2023 20:02:56 GMT
content-type: font/woff2
content-length: 20712
last-modified: Mon, 14 Nov 2022 09:13:24 GMT
etag: "637206b4-50e8"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2

aexa.es/wp-content/astra-local-fonts/barlow/7cHsv4kjgoGqM7E_CfP04WouvTo.woff2

217.160.101.116

200 OK

23 kB

URL HTTP/2
aexa.es/wp-content/astra-local-fonts/barlow/7cHsv4kjgoGqM7E_CfP04WouvTo.woff2
IP
217.160.101.116:0
ASN
#8560 IONOS SE

File type
Web Open Font Format (Version 2), TrueType, length 23120, version 1.0\012- data
Size
23 kB (23120 bytes)
Hash
928cdeb3df698908a5e67ee3b6e7d3d7
d08bcdd338624d33415ca972b7305c17f2f22f8e
333c8986d1ba8412b2e111826ccee7f74c121ad7bbd3c415193503b3fe73f810

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/astra-local-fonts/barlow/7cHsv4kjgoGqM7E_CfP04WouvTo.woff2 HTTP/1.1
Host: aexa.es
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://aexa.es/wp-content/astra-local-fonts/astra-local-fonts.css?ver=4.0.2
Cookie: _eshoob=1
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 02 Feb 2023 20:02:56 GMT
content-type: font/woff2
content-length: 23120
last-modified: Mon, 14 Nov 2022 09:13:24 GMT
etag: "637206b4-5a50"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
de49044c9365e16fec3a6d361cb94728
2b7b69c16de6fda1ae5206f92fe781ee07bd182a
6e76887b036544a5da3918116a180876c094cc3b31676abce8d5b7b716b00c30

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 20:02:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

aexa.es/wp-content/astra-local-fonts/barlow/7cHqv4kjgoGqM7E3t-4s51os.woff2

217.160.101.116

200 OK

22 kB

URL HTTP/2
aexa.es/wp-content/astra-local-fonts/barlow/7cHqv4kjgoGqM7E3t-4s51os.woff2
IP
217.160.101.116:0
ASN
#8560 IONOS SE

File type
Web Open Font Format (Version 2), TrueType, length 21724, version 1.0\012- data
Size
22 kB (21724 bytes)
Hash
c3609c36a150ce088ea4dcab92b7c00b
0c18236a183e962533a4f61bff3ae2581313561a
65a47caa5183b035bf78d0f93adbe5cea500333410259c54abf2de356740df7e

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/astra-local-fonts/barlow/7cHqv4kjgoGqM7E3t-4s51os.woff2 HTTP/1.1
Host: aexa.es
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://aexa.es/wp-content/astra-local-fonts/astra-local-fonts.css?ver=4.0.2
Cookie: _eshoob=1
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 02 Feb 2023 20:02:56 GMT
content-type: font/woff2
content-length: 21724
last-modified: Mon, 14 Nov 2022 09:13:25 GMT
etag: "637206b5-54dc"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2

aexa.es/wp-content/themes/astra/assets/fonts/astra.woff

217.160.101.116

200 OK

3.3 kB

URL HTTP/2
aexa.es/wp-content/themes/astra/assets/fonts/astra.woff
IP
217.160.101.116:0
ASN
#8560 IONOS SE

File type
Web Open Font Format, TrueType, length 3304, version 1.0\012- data
Size
3.3 kB (3304 bytes)
Hash
bfe0ed8503c926d68f58ed0408dfe0d0
0346d02d96ff7d2a0278bc10f4dfdf365c80eac3
ec7ef7aa5fd1e019f1c26193e95e46d481d4983673936a9dda086705ada6e3d5

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/astra/assets/fonts/astra.woff HTTP/1.1
Host: aexa.es
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://aexa.es/
Cookie: _eshoob=1
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 02 Feb 2023 20:02:56 GMT
content-type: application/font-woff
content-length: 3304
last-modified: Sat, 21 Jan 2023 08:25:41 GMT
etag: "63cba185-ce8"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
bbeb609cbf32a8842bf96a124588e65e
40c0f548bcb714731f62df5a27cad21adef0463d
502c60a18a13b84598933731d182aafd4b83576bfc56451b36f9238c621a571d

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 20:02:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

aexa.es/wp-includes/css/dist/block-library/style.min.css?ver=6.1.1

217.160.101.116

200 OK

32 kB

URL HTTP/2
aexa.es/wp-includes/css/dist/block-library/style.min.css?ver=6.1.1
IP
217.160.101.116:0
ASN
#8560 IONOS SE

File type
ASCII text, with very long lines (47826)
Size
32 kB (31520 bytes)
Hash
936521b4ae73df60388f4a373e463322
87e2fe7cf577deb7456152331398a5180767649e
1e5499483a8758305fef40483a9ef14bf657677b503635dfaa374bb45184b71b

HTTP Headers

GET /wp-includes/css/dist/block-library/style.min.css?ver=6.1.1 HTTP/1.1
Host: aexa.es
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aexa.es/
Cookie: _eshoob=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 02 Feb 2023 20:02:56 GMT
content-type: text/css
last-modified: Fri, 11 Nov 2022 14:56:45 GMT
etag: W/"636e62ad-172a9"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

aexa.es/wp-includes/js/jquery/jquery.min.js?ver=3.6.1

217.160.101.116

200 OK

46 kB

URL HTTP/2
aexa.es/wp-includes/js/jquery/jquery.min.js?ver=3.6.1
IP
217.160.101.116:0
ASN
#8560 IONOS SE

File type
ASCII text, with very long lines (65447)
Size
46 kB (46004 bytes)
Hash
8d3a45257e6335025f0627531eb074ac
24faac40a4add4a1a0cc0834ea849124e2ea2eee
31ac585230911470a99c4ee48bfcfed1267dc02e79a9c7d87e62c28684e0066a

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.1 HTTP/1.1
Host: aexa.es
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aexa.es/
Cookie: _eshoob=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 02 Feb 2023 20:02:56 GMT
content-type: application/javascript
last-modified: Mon, 19 Sep 2022 14:16:24 GMT
etag: W/"632879b8-15e54"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

aexa.es/wp-includes/css/dashicons.min.css?ver=6.1.1

217.160.101.116

200 OK

37 kB

URL HTTP/2
aexa.es/wp-includes/css/dashicons.min.css?ver=6.1.1
IP
217.160.101.116:0
ASN
#8560 IONOS SE

File type
ASCII text, with very long lines (58981)
Size
37 kB (36674 bytes)
Hash
c434047bd71e92d3808d9751faf20d11
64a6d1af7fd81e959de449b21ffcb044303474d5
b1119777bbb07e9ed25e2c53437bd00edd38170abf3818feefda7406940837c7

HTTP Headers

GET /wp-includes/css/dashicons.min.css?ver=6.1.1 HTTP/1.1
Host: aexa.es
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aexa.es/
Cookie: _eshoob=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 02 Feb 2023 20:02:56 GMT
content-type: text/css
last-modified: Wed, 03 Mar 2021 21:16:22 GMT
etag: W/"603ffca6-e688"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
e3383a870b280d28b1d924543e6128af
0e9ccaf308e10ae68774fe0d32e10d063f379e7d
093a4523b327faf080d2d200d6e8d9e615abe6e048a72d70c3bc8e9f89cc50bf

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 20:02:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

aexa.es/wp-includes/js/dist/vendor/react.min.js?ver=17.0.1

217.160.101.116

200 OK

20 kB

URL HTTP/2
aexa.es/wp-includes/js/dist/vendor/react.min.js?ver=17.0.1
IP
217.160.101.116:0
ASN
#8560 IONOS SE

File type
ASCII text, with very long lines (11082)
Size
20 kB (20020 bytes)
Hash
461ce779a9c653f54dc18414631820e7
ed30b4cd3a96ae4c1e2944a1ced3ab7d53a0e598
f9140fe6539e559d63158bacf3bf1c50599b3c370a12edfb008a00bbf582a472

HTTP Headers

GET /wp-includes/js/dist/vendor/react.min.js?ver=17.0.1 HTTP/1.1
Host: aexa.es
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aexa.es/
Cookie: _eshoob=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 02 Feb 2023 20:02:56 GMT
content-type: application/javascript
last-modified: Tue, 12 Apr 2022 15:12:47 GMT
etag: W/"625596ef-2c3c"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
e3383a870b280d28b1d924543e6128af
0e9ccaf308e10ae68774fe0d32e10d063f379e7d
093a4523b327faf080d2d200d6e8d9e615abe6e048a72d70c3bc8e9f89cc50bf

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 20:02:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

aexa.es/wp-includes/js/dist/element.min.js?ver=47162ff4492c7ec4956b

217.160.101.116

200 OK

4.7 kB

URL HTTP/2
aexa.es/wp-includes/js/dist/element.min.js?ver=47162ff4492c7ec4956b
IP
217.160.101.116:0
ASN
#8560 IONOS SE

File type
ASCII text, with very long lines (7680)
Size
4.7 kB (4709 bytes)
Hash
17222a8512a35d417d055bb444dcf10e
168428fcf2d8d9f04d352d68860b482d7574482b
faa72e371e2203617b98ce1acd8215b278d712e9dd8b87346f20b46a0e6db290

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-includes/js/dist/element.min.js?ver=47162ff4492c7ec4956b HTTP/1.1
Host: aexa.es
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aexa.es/
Cookie: _eshoob=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 02 Feb 2023 20:02:56 GMT
content-type: application/javascript
last-modified: Tue, 20 Sep 2022 15:43:29 GMT
etag: W/"6329dfa1-2fd6"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

region1.google-analytics.com/g/collect?v=2&tid=G-8RS8F2CE81&gtm=2oe210&_p=670770225&gdid=dZTNiMT&cid=1252741741.1675368205&ul=en-us&sr=1280x1024&uaW=1&_s=1&sid=1675368204&sct=1&seg=0&dl=https%3A%2F%2Faexa.es%2F&dt=AEXA%20%E2%80%93%20Asociaci%C3%B3n%20de%20Empresarios%20por%20Algarrobo&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1

216.239.32.36

204 No Content

0 B

URL HTTP/2
region1.google-analytics.com/g/collect?v=2&tid=G-8RS8F2CE81&gtm=2oe210&_p=670770225&gdid=dZTNiMT&cid=1252741741.1675368205&ul=en-us&sr=1280x1024&uaW=1&_s=1&sid=1675368204&sct=1&seg=0&dl=https%3A%2F%2Faexa.es%2F&dt=AEXA%20%E2%80%93%20Asociaci%C3%B3n%20de%20Empresarios%20por%20Algarrobo&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1
IP
216.239.32.36:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /g/collect?v=2&tid=G-8RS8F2CE81&gtm=2oe210&_p=670770225&gdid=dZTNiMT&cid=1252741741.1675368205&ul=en-us&sr=1280x1024&uaW=1&_s=1&sid=1675368204&sct=1&seg=0&dl=https%3A%2F%2Faexa.es%2F&dt=AEXA%20%E2%80%93%20Asociaci%C3%B3n%20de%20Empresarios%20por%20Algarrobo&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1 HTTP/1.1
Host: region1.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://aexa.es
Connection: keep-alive
Referer: https://aexa.es/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0

HTTP/2 204 No Content
access-control-allow-origin: https://aexa.es
date: Thu, 02 Feb 2023 20:02:57 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

34.120.237.76

200 OK

5.6 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F85f439bb-b615-43ac-bd20-2466bff7ff50.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
5.6 kB (5561 bytes)
Hash
d910c24f5a6108cb74103cd70692a703
9fe648fa464e46d16f685aca1704f3414eda4107
5cbe5e571e62555225621440203ae24a3b8c41ac7f49b6b731bc2c94e620797f

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F85f439bb-b615-43ac-bd20-2466bff7ff50.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-length: 5561
x-amzn-requestid: 76ca969b-a840-4d5c-97c1-2dfd93b8f630
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: frdKYE3-IAMFqbw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dadbdb-2729fe22420bcc0563c39aff;Sampled=0
x-amzn-remapped-date: Wed, 01 Feb 2023 21:38:35 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: E91BIw8QT3vXXQY8GIPpnRqnTZV4paZ3wynf7UjLnjeIfwS0tiC1Gg==
via: 1.1 26ca01ec7377e425b59b6a08cb1ec342.cloudfront.net (CloudFront), 1.1 2bedbeaa49b4a77447d30097858cb81a.cloudfront.net (CloudFront), 1.1 google
date: Wed, 01 Feb 2023 22:21:38 GMT
age: 78085
etag: "9fe648fa464e46d16f685aca1704f3414eda4107"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

8.6 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1ff2ba7c-95eb-402b-8e98-e95f8ac322aa.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
8.6 kB (8642 bytes)
Hash
0f85742f336de59ca88f7f964a8b33f4
0fc7177f8cb06421a8807e93989f651bda743567
fbd5fd39c39c218b0fa956f8cb8050cbdbfcb109a92303f6175d73cc8c339526

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1ff2ba7c-95eb-402b-8e98-e95f8ac322aa.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-length: 8642
x-amzn-requestid: f47f7616-41aa-4983-8ada-20f6f0b6856b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: frfXtHkUoAMFr1Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dadf64-083a903959cdab540bd38265;Sampled=0
x-amzn-remapped-date: Wed, 01 Feb 2023 21:53:40 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: UqoeSWse0jZAC3IEIWk5fj9q_4xsAoZRkn67U4m2L5NkayHxsAYmlA==
via: 1.1 9b311162717b41c968f6f00426d88aaa.cloudfront.net (CloudFront), 1.1 12a392bc3a7281f8d5d4591bfadc41fc.cloudfront.net (CloudFront), 1.1 google
date: Wed, 01 Feb 2023 22:00:35 GMT
age: 79349
etag: "0fc7177f8cb06421a8807e93989f651bda743567"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

aexa.es/wp-content/astra-local-fonts/astra-local-fonts.css?ver=4.0.2

217.160.101.116

200 OK

0 B

URL HTTP/2
aexa.es/wp-content/astra-local-fonts/astra-local-fonts.css?ver=4.0.2
IP
217.160.101.116:0
ASN
#8560 IONOS SE

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/astra-local-fonts/astra-local-fonts.css?ver=4.0.2 HTTP/1.1
Host: aexa.es
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aexa.es/
Cookie: _eshoob=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 02 Feb 2023 20:02:56 GMT
content-type: text/css
last-modified: Mon, 14 Nov 2022 09:13:26 GMT
etag: W/"637206b6-377b"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

aexa.es/wp-includes/js/dist/escape-html.min.js?ver=03e27a7b6ae14f7afaa6

217.160.101.116

200 OK

0 B

URL HTTP/2
aexa.es/wp-includes/js/dist/escape-html.min.js?ver=03e27a7b6ae14f7afaa6
IP
217.160.101.116:0
ASN
#8560 IONOS SE

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-includes/js/dist/escape-html.min.js?ver=03e27a7b6ae14f7afaa6 HTTP/1.1
Host: aexa.es
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aexa.es/
Cookie: _eshoob=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 02 Feb 2023 20:02:56 GMT
content-type: application/javascript
last-modified: Mon, 11 Apr 2022 12:04:30 GMT
etag: W/"6254194e-473"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

aexa.es/wp-includes/js/dist/vendor/react-dom.min.js?ver=17.0.1

217.160.101.116

200 OK

0 B

URL HTTP/2
aexa.es/wp-includes/js/dist/vendor/react-dom.min.js?ver=17.0.1
IP
217.160.101.116:0
ASN
#8560 IONOS SE

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-includes/js/dist/vendor/react-dom.min.js?ver=17.0.1 HTTP/1.1
Host: aexa.es
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aexa.es/
Cookie: _eshoob=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 02 Feb 2023 20:02:56 GMT
content-type: application/javascript
last-modified: Tue, 12 Apr 2022 15:12:47 GMT
etag: W/"625596ef-1ce9e"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

aexa.es/wp-content/plugins/advanced-post-block/assets/js/swiper-bundle.min.js?ver=7.0.3

217.160.101.116

200 OK

0 B

URL HTTP/2
aexa.es/wp-content/plugins/advanced-post-block/assets/js/swiper-bundle.min.js?ver=7.0.3
IP
217.160.101.116:0
ASN
#8560 IONOS SE

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-content/plugins/advanced-post-block/assets/js/swiper-bundle.min.js?ver=7.0.3 HTTP/1.1
Host: aexa.es
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aexa.es/
Cookie: _eshoob=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 02 Feb 2023 20:02:56 GMT
content-type: application/javascript
last-modified: Sat, 21 Jan 2023 08:19:35 GMT
etag: W/"63cba017-20e84"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

fonts.googleapis.com/css2?family=Roboto&display=swap

142.250.74.106

200 OK

0 B

URL HTTP/2
fonts.googleapis.com/css2?family=Roboto&display=swap
IP
142.250.74.106:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /css2?family=Roboto&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aexa.es/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 02 Feb 2023 20:02:57 GMT
date: Thu, 02 Feb 2023 20:02:57 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

aexa.es/wp-content/plugins/advanced-post-block/dist/style.css?ver=1.8.3

217.160.101.116

200 OK

0 B

URL HTTP/2
aexa.es/wp-content/plugins/advanced-post-block/dist/style.css?ver=1.8.3
IP
217.160.101.116:0
ASN
#8560 IONOS SE

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/advanced-post-block/dist/style.css?ver=1.8.3 HTTP/1.1
Host: aexa.es
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aexa.es/
Cookie: _eshoob=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 02 Feb 2023 20:02:56 GMT
content-type: text/css
last-modified: Sat, 21 Jan 2023 08:19:35 GMT
etag: W/"63cba017-76b0"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

aexa.es/wp-content/plugins/advanced-post-block/assets/js/easy-ticker.min.js?ver=3.2.1

217.160.101.116

200 OK

0 B

URL HTTP/2
aexa.es/wp-content/plugins/advanced-post-block/assets/js/easy-ticker.min.js?ver=3.2.1
IP
217.160.101.116:0
ASN
#8560 IONOS SE

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/advanced-post-block/assets/js/easy-ticker.min.js?ver=3.2.1 HTTP/1.1
Host: aexa.es
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aexa.es/
Cookie: _eshoob=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 02 Feb 2023 20:02:56 GMT
content-type: application/javascript
last-modified: Sat, 21 Jan 2023 08:19:35 GMT
etag: W/"63cba017-b56"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

aexa.es/wp-content/themes/astra/assets/js/minified/frontend.min.js?ver=4.0.2

217.160.101.116

200 OK

0 B

URL HTTP/2
aexa.es/wp-content/themes/astra/assets/js/minified/frontend.min.js?ver=4.0.2
IP
217.160.101.116:0
ASN
#8560 IONOS SE

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/astra/assets/js/minified/frontend.min.js?ver=4.0.2 HTTP/1.1
Host: aexa.es
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aexa.es/
Cookie: _eshoob=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 02 Feb 2023 20:02:56 GMT
content-type: application/javascript
last-modified: Sat, 21 Jan 2023 08:25:41 GMT
etag: W/"63cba185-46c2"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

aexa.es/wp-content/themes/astra/assets/css/minified/frontend.min.css?ver=4.0.2

217.160.101.116

200 OK

0 B

URL HTTP/2
aexa.es/wp-content/themes/astra/assets/css/minified/frontend.min.css?ver=4.0.2
IP
217.160.101.116:0
ASN
#8560 IONOS SE

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-content/themes/astra/assets/css/minified/frontend.min.css?ver=4.0.2 HTTP/1.1
Host: aexa.es
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aexa.es/
Cookie: _eshoob=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 02 Feb 2023 20:02:56 GMT
content-type: text/css
last-modified: Sat, 21 Jan 2023 08:25:41 GMT
etag: W/"63cba185-b515"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

aexa.es/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9

217.160.101.116

200 OK

0 B

URL HTTP/2
aexa.es/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9
IP
217.160.101.116:0
ASN
#8560 IONOS SE

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9 HTTP/1.1
Host: aexa.es
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aexa.es/
Cookie: _eshoob=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 02 Feb 2023 20:02:56 GMT
content-type: application/javascript
last-modified: Mon, 11 Apr 2022 12:04:30 GMT
etag: W/"6254194e-194b"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

aexa.es/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0

217.160.101.116

200 OK

0 B

URL HTTP/2
aexa.es/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0
IP
217.160.101.116:0
ASN
#8560 IONOS SE

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0 HTTP/1.1
Host: aexa.es
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aexa.es/
Cookie: _eshoob=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 02 Feb 2023 20:02:56 GMT
content-type: application/javascript
last-modified: Tue, 20 Sep 2022 15:43:29 GMT
etag: W/"6329dfa1-459f"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

aexa.es/wp-includes/js/wp-emoji-release.min.js?ver=6.1.1

217.160.101.116

200 OK

0 B

URL HTTP/2
aexa.es/wp-includes/js/wp-emoji-release.min.js?ver=6.1.1
IP
217.160.101.116:0
ASN
#8560 IONOS SE

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-includes/js/wp-emoji-release.min.js?ver=6.1.1 HTTP/1.1
Host: aexa.es
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aexa.es/
Cookie: _eshoob=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 02 Feb 2023 20:02:56 GMT
content-type: application/javascript
last-modified: Tue, 12 Apr 2022 05:56:23 GMT
etag: W/"62551487-48b9"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

aexa.es/wp-content/plugins/advanced-post-block/dist/script.js?ver=1.8.3

217.160.101.116

200 OK

0 B

URL HTTP/2
aexa.es/wp-content/plugins/advanced-post-block/dist/script.js?ver=1.8.3
IP
217.160.101.116:0
ASN
#8560 IONOS SE

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/advanced-post-block/dist/script.js?ver=1.8.3 HTTP/1.1
Host: aexa.es
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aexa.es/
Cookie: _eshoob=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 02 Feb 2023 20:02:56 GMT
content-type: application/javascript
last-modified: Sat, 21 Jan 2023 08:19:35 GMT
etag: W/"63cba017-29df"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

aexa.es/

217.160.101.116

200 OK

0 B

URL HTTP/2
aexa.es/
IP
217.160.101.116:0
ASN
#8560 IONOS SE

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET / HTTP/1.1
Host: aexa.es
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

HTTP/2 200 OK
server: nginx
date: Thu, 02 Feb 2023 20:02:56 GMT
content-type: text/html; charset=UTF-8
x-litespeed-tag: e81_HTTP.200
link: <https://aexa.es/wp-json/>; rel="https://api.w.org/", <https://aexa.es/wp-json/wp/v2/pages/961>; rel="alternate"; type="application/json", <https://aexa.es/>; rel=shortlink
set-cookie: _eshoob=1; expires=Thu, 09-Feb-2023 20:02:55 GMT; Max-Age=604800; path=/
x-powered-by: PHP/8.0.27, PleskLin
content-encoding: br
X-Firefox-Spdy: h2

aexa.es/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2

217.160.101.116

200 OK

0 B

URL HTTP/2
aexa.es/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP
217.160.101.116:0
ASN
#8560 IONOS SE

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: aexa.es
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aexa.es/
Cookie: _eshoob=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 02 Feb 2023 20:02:56 GMT
content-type: application/javascript
last-modified: Wed, 18 Nov 2020 09:06:06 GMT
etag: W/"5fb4e3fe-2bd8"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (19)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML