vidadigna.alboan.org/
301 Moved Permanently 178 B IP
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash cd2e0e43980a00fb6a2742d3afd803b8
81ffbd1712afe8cdf138b570c0fc9934742c33c1
bd9df047d51943acc4bc6cf55d88edb5b6785a53337ee2a0f74dd521aedde87d
Analyzer Verdict Alert fortinet Malware
GET / HTTP/1.1
Host: vidadigna.alboan.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Sat, 07 Jan 2023 03:25:01 GMT
Content-Type: text/html
Content-Length: 178
Connection: keep-alive
Location: https://vidadigna.alboan.org/
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 326898eb925368408f6f42ee173b9d89
b8b20ee34b7e7b139e7729b8e46a54ea25f54ac8
96c2c75f700ab55649882111713ca3cfb2eaf08e404c2bc245a641dc12ae168a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "96C2C75F700AB55649882111713CA3CFB2EAF08E404C2BC245A641DC12AE168A"
Last-Modified: Wed, 04 Jan 2023 19:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13661
Expires: Sat, 07 Jan 2023 07:12:42 GMT
Date: Sat, 07 Jan 2023 03:25:01 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 516b9d6951b09439a51d5284994ed92f
5c78edb38bae36caa8e2db8ed6635a32e46c91dd
eaaf4ebc59d2a06d02b552154c5adb7c713ffc4a7f5caabcff1c2b4cd6ec5c7b
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EAAF4EBC59D2A06D02B552154C5ADB7C713FFC4A7F5CAABCFF1C2B4CD6EC5C7B"
Last-Modified: Fri, 06 Jan 2023 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4052
Expires: Sat, 07 Jan 2023 04:32:33 GMT
Date: Sat, 07 Jan 2023 03:25:01 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash ff250d3ef3fa45322bf05039a0122a9f
b3e7a2c383bce1bab807dbe1a03c375258b51f1d
d07f109a96e0ae6ec7b1d46ce8761b3f06fe845769ce65d69e053dd40aa561ba
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Alert, Content-Type, Content-Length, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sat, 07 Jan 2023 02:48:05 GMT
content-type: application/json
age: 2216
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 75f0037a1d53a9a5321a796206ec3e24
70d42c9bf1334f20e1cea4ce3c8212e0e780ee77
80ec1e61f9563e799c9f44ea31e616c37daea1b9670091fbbc6efc39ebafe3d3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "80EC1E61F9563E799C9F44EA31E616C37DAEA1B9670091FBBC6EFC39EBAFE3D3"
Last-Modified: Fri, 06 Jan 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13240
Expires: Sat, 07 Jan 2023 07:05:41 GMT
Date: Sat, 07 Jan 2023 03:25:01 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-08-14-47-57.chain
200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-08-14-47-57.chain
IP
File type PEM certificate\012- , ASCII text
Hash b1fcd419a4245617397846e8d17233f6
2a037ce244587640b27ead9a0ec2af4f862d91b2
e059b6d834c06e58494c43fb2ff42acbc27c1a1d8f7f30e2f32ca0e167599e2f
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-08-14-47-57.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: WdDV6MpIeoLeWUQhQwC/LbEJOrPHj1vgD4cHh3HuolVyoVLZPSAEQQ8O16vG2tz68sIh/tQRoFY=
x-amz-request-id: XXP8EQREMZQV1ZA9
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sat, 07 Jan 2023 03:00:14 GMT
age: 1487
last-modified: Tue, 20 Dec 2022 14:47:58 GMT
etag: "b1fcd419a4245617397846e8d17233f6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 07 Jan 2023 03:25:01 GMT
content-type: application/json
content-length: 12
access-control-expose-headers: content-type
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 75607af56b2d8a4c180ad60bc58f0144
30e9fb78a3b864bf1fb20f2e2e35c12eacf83a80
de60b50cefe65ecafe2ad06d50927bedd0dea0234839ca5a03f65611185e2d8f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DE60B50CEFE65ECAFE2AD06D50927BEDD0DEA0234839CA5A03F65611185E2D8F"
Last-Modified: Sat, 07 Jan 2023 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21541
Expires: Sat, 07 Jan 2023 09:24:02 GMT
Date: Sat, 07 Jan 2023 03:25:01 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Expires, Last-Modified, Alert, Content-Type, Content-Length, ETag, Pragma, Cache-Control, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sat, 07 Jan 2023 02:33:39 GMT
age: 3082
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
vidadigna.alboan.org/
200 OK 9.5 kB IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (5463), with CRLF, LF line terminators
Hash 31bfbc820fa4282afb152ab643061e8e
2f945774537971fca260463ef2624f4568fda149
03369e74773486cee4fe97f3ecc86f90163bd5157aaa4d37d446854d11cd7236
Analyzer Verdict Alert fortinet Malware
GET / HTTP/1.1
Host: vidadigna.alboan.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 07 Jan 2023 03:25:01 GMT
Content-Type: text/html; charset=UTF-8
Content-Length: 9522
Connection: keep-alive
X-Pingback: https://vidadigna.alboan.org/xmlrpc.php
Link: <https://vidadigna.alboan.org/wp-json/>; rel="https://api.w.org/", <https://vidadigna.alboan.org/>; rel=shortlink
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PHP/7.2.14, PleskLin
ocsp.digicert.com/
200 OK 471 B IP
Hash 43c8442b7447debab97b0f6bc973e23a
38a5f1869cff7f6ddbfd3a24e57a3da7851ba3b0
4eb7adc914570287dde1317395d1d95b07271c8fe20b97a8928025c292c47dba
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6059
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 07 Jan 2023 03:25:01 GMT
Last-Modified: Sat, 07 Jan 2023 01:44:02 GMT
Server: ECS (ska/F6FC)
X-Cache: HIT
Content-Length: 471
vidadigna.alboan.org/wp-content/plugins/sitepress-multilingual-cms/templates/language-switchers/legacy-list-horizontal/style.css?ver=1
200 OK 313 B URL HTTP/1.1 vidadigna.alboan.org/wp-content/plugins/sitepress-multilingual-cms/templates/language-switchers/legacy-list-horizontal/style.css?ver=1
IP
File type ASCII text, with very long lines (850)
Hash 1dd1129795df6e900fecbe2d73ac3068
9adafd827ba7c5a59f41d466862547c45508a0a8
9dfdac78c0115c8877fbe917d83f5ade1e64af7c50c3167ecae8e139efe1edd3
GET /wp-content/plugins/sitepress-multilingual-cms/templates/language-switchers/legacy-list-horizontal/style.css?ver=1 HTTP/1.1
Host: vidadigna.alboan.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vidadigna.alboan.org/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 07 Jan 2023 03:25:02 GMT
Content-Type: text/css
Content-Length: 313
Connection: keep-alive
X-Accel-Version: 0.01
Last-Modified: Tue, 10 Dec 2019 11:15:18 GMT
ETag: "5618c6-353-59957a08d8518"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PleskLin
vidadigna.alboan.org/wp-content/plugins/simple-social-icons/css/style.css?ver=3.0.1
200 OK 1.2 kB URL HTTP/1.1 vidadigna.alboan.org/wp-content/plugins/simple-social-icons/css/style.css?ver=3.0.1
IP
Hash 81e8538f7aa726a386fd42cbdca9c255
dfcfea7c71944942d7bea1bd541fb238c8109e8d
f230538018f9156f925bd667c6ac4f437ae4541b9d421424728592d359b499c8
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/simple-social-icons/css/style.css?ver=3.0.1 HTTP/1.1
Host: vidadigna.alboan.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vidadigna.alboan.org/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 07 Jan 2023 03:25:02 GMT
Content-Type: text/css
Content-Length: 1228
Last-Modified: Thu, 13 Jun 2019 07:31:34 GMT
Connection: keep-alive
ETag: "5d01fbd6-4cc"
X-Powered-By: PleskLin
Accept-Ranges: bytes
vidadigna.alboan.org/wp-includes/css/dist/block-library/style.min.css?ver=5.3.14
200 OK 41 kB URL HTTP/1.1 vidadigna.alboan.org/wp-includes/css/dist/block-library/style.min.css?ver=5.3.14
IP
File type ASCII text, with very long lines (41045), with no line terminators
Hash 612b7ab9f699e968f5b3206ca16ee834
12685fd0b83dabb9a2004dd4c74de4515fea3013
dfd6d929422d1f69a727fb6b525f610562eab183a333576516bec0b0503cb049
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/css/dist/block-library/style.min.css?ver=5.3.14 HTTP/1.1
Host: vidadigna.alboan.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vidadigna.alboan.org/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 07 Jan 2023 03:25:02 GMT
Content-Type: text/css
Content-Length: 41045
Last-Modified: Thu, 11 Jun 2020 00:30:23 GMT
Connection: keep-alive
ETag: "5ee17b1f-a055"
X-Powered-By: PleskLin
Accept-Ranges: bytes
vidadigna.alboan.org/wp-content/themes/mai-lifestyle-pro/style.css?ver=1.1.0.22220190904
200 OK 2.7 kB URL HTTP/1.1 vidadigna.alboan.org/wp-content/themes/mai-lifestyle-pro/style.css?ver=1.1.0.22220190904
IP
Hash e5743295c6cf6b2598f8c7f6ea7b3bb8
895e91e81917ffe5012dd68098d0e6b3245ab6f9
e0013abc533055eb09550e4e2b8640c9fc5e436397359f6ede77fe629c9b5aac
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/mai-lifestyle-pro/style.css?ver=1.1.0.22220190904 HTTP/1.1
Host: vidadigna.alboan.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vidadigna.alboan.org/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 07 Jan 2023 03:25:02 GMT
Content-Type: text/css
Content-Length: 2718
Last-Modified: Fri, 22 Feb 2019 09:04:03 GMT
Connection: keep-alive
ETag: "5c6fbb03-a9e"
X-Powered-By: PleskLin
Accept-Ranges: bytes
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 623e85ff33837eb6c59e11ae2759237a
cea1948490802e652e7f6678dc76694e0d6ab61a
1fb30f3579d3277435c860f472008bea3680db1202d838ad4669d943ec88ba65
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 07 Jan 2023 03:25:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
push.services.mozilla.com/
101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: +wTMUgsLHC6UdseFX6ffXw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: rcw76yt55OjiwyTYmz6RGB2UK4c=
vidadigna.alboan.org/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.4.1
200 OK 10 kB URL HTTP/1.1 vidadigna.alboan.org/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.4.1
IP
File type ASCII text, with very long lines (9959)
Hash 7121994eec5320fbe6586463bf9651c2
90532aff6d4121954254cdf04994d834f7ec169b
48eb8b500ae6a38617b5738d2b3faec481922a7782246e31d2755c034a45cd5d
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=1.4.1 HTTP/1.1
Host: vidadigna.alboan.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vidadigna.alboan.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 07 Jan 2023 03:25:02 GMT
Content-Type: application/javascript
Content-Length: 10056
Last-Modified: Fri, 22 Feb 2019 09:04:04 GMT
Connection: keep-alive
ETag: "5c6fbb04-2748"
X-Powered-By: PleskLin
Accept-Ranges: bytes
vidadigna.alboan.org/wp-content/plugins/simple-social-icons/svgxuse.js?ver=1.1.21
200 OK 9.2 kB URL HTTP/1.1 vidadigna.alboan.org/wp-content/plugins/simple-social-icons/svgxuse.js?ver=1.1.21
IP
Hash df359d8ed4dfab28e65067d535bf9ca4
8a1dd77c7ef8b118bcac1962ad3d26e82d2b3bee
860e4b944663ab48a4929f7f995379090822e06521ab6321612490be84de42fd
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/simple-social-icons/svgxuse.js?ver=1.1.21 HTTP/1.1
Host: vidadigna.alboan.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vidadigna.alboan.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 07 Jan 2023 03:25:02 GMT
Content-Type: application/javascript
Content-Length: 9238
Last-Modified: Thu, 13 Jun 2019 07:31:34 GMT
Connection: keep-alive
ETag: "5d01fbd6-2416"
X-Powered-By: PleskLin
Accept-Ranges: bytes
fonts.googleapis.com/css?family=Muli%3A200%2C200i%7COpen+Sans%3A300%2C300i%2C400%2C400i%2C700%2C700i%7CPlayfair+Display%3A700%2C700i&ver=1.1.0
200 OK 1.7 kB URL HTTP/2 fonts.googleapis.com/css?family=Muli%3A200%2C200i%7COpen+Sans%3A300%2C300i%2C400%2C400i%2C700%2C700i%7CPlayfair+Display%3A700%2C700i&ver=1.1.0
IP
Hash ec0d29861766c25712bd69d38a2a043c
82a354a41b94e3addd09ad76af4fcef7ad18cdef
8ac2d7d6f0ce03a5538fd3b6a46860b81dcf6a9c0e4f856c8c06675b39cf8be9
GET /css?family=Muli%3A200%2C200i%7COpen+Sans%3A300%2C300i%2C400%2C400i%2C700%2C700i%7CPlayfair+Display%3A700%2C700i&ver=1.1.0 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vidadigna.alboan.org/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sat, 07 Jan 2023 03:25:02 GMT
date: Sat, 07 Jan 2023 03:25:02 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
vidadigna.alboan.org/wp-includes/js/imagesloaded.min.js?ver=3.2.0
200 OK 8.1 kB URL HTTP/1.1 vidadigna.alboan.org/wp-includes/js/imagesloaded.min.js?ver=3.2.0
IP
File type ASCII text, with very long lines (7996)
Hash 7e97ab52c3df75e9053002bb59f2cdd5
502edaa98677c743246149deb3a76f5ff65272dd
11e15f1d64a63cb498d0d42720a688ed15bf78393d8c460d695a110244c066e3
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/imagesloaded.min.js?ver=3.2.0 HTTP/1.1
Host: vidadigna.alboan.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vidadigna.alboan.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 07 Jan 2023 03:25:02 GMT
Content-Type: application/javascript
Content-Length: 8113
Last-Modified: Fri, 22 Feb 2019 11:01:31 GMT
Connection: keep-alive
ETag: "5c6fd68b-1fb1"
X-Powered-By: PleskLin
Accept-Ranges: bytes
vidadigna.alboan.org/wp-includes/js/wp-emoji-release.min.js?ver=5.3.14
200 OK 14 kB URL HTTP/1.1 vidadigna.alboan.org/wp-includes/js/wp-emoji-release.min.js?ver=5.3.14
IP
File type ASCII text, with very long lines (10927)
Hash d6aeffd9e0126160ff89d369c05a5fbe
8480b15ad38e8e1d67960e72b513fa4f463e2cc1
95309410230b1d3148e52211dcee018bfa011a2d69e9d7d6f81164035e8518a0
GET /wp-includes/js/wp-emoji-release.min.js?ver=5.3.14 HTTP/1.1
Host: vidadigna.alboan.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vidadigna.alboan.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 07 Jan 2023 03:25:02 GMT
Content-Type: application/javascript
Content-Length: 13849
Last-Modified: Fri, 16 Apr 2021 00:30:14 GMT
Connection: keep-alive
ETag: "6078da96-3619"
X-Powered-By: PleskLin
Accept-Ranges: bytes
vidadigna.alboan.org/wp-content/plugins/mai-theme-engine/assets/css/mai-theme.min.css?ver=1.10.4.1
200 OK 78 kB URL HTTP/1.1 vidadigna.alboan.org/wp-content/plugins/mai-theme-engine/assets/css/mai-theme.min.css?ver=1.10.4.1
IP
File type ASCII text, with very long lines (65536), with no line terminators
Hash d7fee6a7ac11c30b9816e8064d004788
54f3afe27edec39dafb5ef030fdfeac5090c0d5e
8832009fc53e3d935c271f57e613a822a60c274e53ddb4c96d3ee12037ca1ea8
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/mai-theme-engine/assets/css/mai-theme.min.css?ver=1.10.4.1 HTTP/1.1
Host: vidadigna.alboan.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vidadigna.alboan.org/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 07 Jan 2023 03:25:02 GMT
Content-Type: text/css
Content-Length: 77716
Last-Modified: Fri, 15 Nov 2019 10:01:42 GMT
Connection: keep-alive
ETag: "5dce7786-12f94"
X-Powered-By: PleskLin
Accept-Ranges: bytes
vidadigna.alboan.org/wp-content/plugins/mai-theme-engine/assets/css/flexington.min.css?ver=2.5.0
200 OK 95 kB URL HTTP/1.1 vidadigna.alboan.org/wp-content/plugins/mai-theme-engine/assets/css/flexington.min.css?ver=2.5.0
IP
File type ASCII text, with very long lines (65536), with no line terminators
Hash df62f54b2632d5a823a78f5c173f2df8
7339b7966b8aea4b85e3fb73e0f83b9d588f3b31
18dd8449dd7bd05b1b1a8a1640218993802b7e73a218b75c05acf5c9b47d6082
GET /wp-content/plugins/mai-theme-engine/assets/css/flexington.min.css?ver=2.5.0 HTTP/1.1
Host: vidadigna.alboan.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vidadigna.alboan.org/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 07 Jan 2023 03:25:02 GMT
Content-Type: text/css
Content-Length: 95429
Last-Modified: Fri, 15 Nov 2019 10:01:42 GMT
Connection: keep-alive
ETag: "5dce7786-174c5"
X-Powered-By: PleskLin
Accept-Ranges: bytes
vidadigna.alboan.org/wp-includes/js/jquery/jquery.masonry.min.js?ver=3.1.2b
200 OK 1.8 kB URL HTTP/1.1 vidadigna.alboan.org/wp-includes/js/jquery/jquery.masonry.min.js?ver=3.1.2b
IP
File type ASCII text, with very long lines (1626)
Hash cd0eb3406096ff80266e7c9d7d419186
0e3709691bf96233766de30e2fd473b84166c5b6
c2e606e1fc82ea3a554aad5d0520e25d2677b89a891dc5c49e7ace08fce92e25
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/jquery/jquery.masonry.min.js?ver=3.1.2b HTTP/1.1
Host: vidadigna.alboan.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vidadigna.alboan.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 07 Jan 2023 03:25:02 GMT
Content-Type: application/javascript
Content-Length: 1819
Last-Modified: Fri, 22 Feb 2019 09:04:04 GMT
Connection: keep-alive
ETag: "5c6fbb04-71b"
X-Powered-By: PleskLin
Accept-Ranges: bytes
vidadigna.alboan.org/wp-includes/js/jquery/jquery.js?ver=1.12.4-wp
200 OK 97 kB URL HTTP/1.1 vidadigna.alboan.org/wp-includes/js/jquery/jquery.js?ver=1.12.4-wp
IP
File type ASCII text, with very long lines (31997)
Hash 49edccea2e7ba985cadc9ba0531cbed1
f8747f8ee704d9af31d0950015e01d3f9635b070
1db21d816296e6939ba1f42962496e4134ae2b0081e26970864c40c6d02bb1df
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/jquery/jquery.js?ver=1.12.4-wp HTTP/1.1
Host: vidadigna.alboan.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vidadigna.alboan.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 07 Jan 2023 03:25:02 GMT
Content-Type: application/javascript
Content-Length: 96873
Last-Modified: Thu, 13 Jun 2019 07:38:14 GMT
Connection: keep-alive
ETag: "5d01fd66-17a69"
X-Powered-By: PleskLin
Accept-Ranges: bytes
vidadigna.alboan.org/wp-includes/js/masonry.min.js?ver=3.3.2
200 OK 29 kB URL HTTP/1.1 vidadigna.alboan.org/wp-includes/js/masonry.min.js?ver=3.3.2
IP
File type ASCII text, with very long lines (28817)
Hash c54e75edf5cbaf412bc16ba4145f6032
67638430c92c23cedb89db038627876d361135c0
733d7c26a5fb7240e83e8af2c822218b321b5143e28c2dd65ab2492297ac6bd7
GET /wp-includes/js/masonry.min.js?ver=3.3.2 HTTP/1.1
Host: vidadigna.alboan.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vidadigna.alboan.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 07 Jan 2023 03:25:02 GMT
Content-Type: application/javascript
Content-Length: 28953
Last-Modified: Fri, 22 Feb 2019 11:01:31 GMT
Connection: keep-alive
ETag: "5c6fd68b-7119"
X-Powered-By: PleskLin
Accept-Ranges: bytes
vidadigna.alboan.org/wp-includes/js/hoverIntent.min.js?ver=1.8.1
200 OK 1.1 kB URL HTTP/1.1 vidadigna.alboan.org/wp-includes/js/hoverIntent.min.js?ver=1.8.1
IP
File type ASCII text, with very long lines (1087), with no line terminators
Hash 3dc5811cb7bb6e67b9054c8c39f9f4c9
ced11144eb84a14db2b3b0ab92998128c5e88204
124f0860b7201dc2fa46889b30ac0e4269e84ac2e71c33dc025ed14ed15bd8f0
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/hoverIntent.min.js?ver=1.8.1 HTTP/1.1
Host: vidadigna.alboan.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vidadigna.alboan.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 07 Jan 2023 03:25:02 GMT
Content-Type: application/javascript
Content-Length: 1087
Last-Modified: Fri, 16 Apr 2021 00:30:14 GMT
Connection: keep-alive
ETag: "6078da96-43f"
X-Powered-By: PleskLin
Accept-Ranges: bytes
vidadigna.alboan.org/wp-content/themes/genesis/lib/js/menu/superfish.min.js?ver=1.7.10
200 OK 4.5 kB URL HTTP/1.1 vidadigna.alboan.org/wp-content/themes/genesis/lib/js/menu/superfish.min.js?ver=1.7.10
IP
File type ASCII text, with very long lines (4270)
Hash af42109dbc91e0d99fd0041dd9c3395a
7266b5e6ef8e7fc633511d669af04220f1569fbb
ece565a1f66a32347dfed83562c428ff7736648de72b0027dd8f0e0f27e0c327
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/genesis/lib/js/menu/superfish.min.js?ver=1.7.10 HTTP/1.1
Host: vidadigna.alboan.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vidadigna.alboan.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 07 Jan 2023 03:25:02 GMT
Content-Type: application/javascript
Content-Length: 4499
Last-Modified: Fri, 15 Nov 2019 10:03:00 GMT
Connection: keep-alive
ETag: "5dce77d4-1193"
X-Powered-By: PleskLin
Accept-Ranges: bytes
vidadigna.alboan.org/wp-content/themes/genesis/lib/js/skip-links.min.js?ver=3.2.1
200 OK 251 B URL HTTP/1.1 vidadigna.alboan.org/wp-content/themes/genesis/lib/js/skip-links.min.js?ver=3.2.1
IP
File type ASCII text, with very long lines (386), with no line terminators
Hash 2d0b1905d07058a7a7fce935cc8daacf
93c5e93088524ab3ab1c6d944f433e7c9a9b2f74
cdfdf54e49bb9605726750451648eaef5536099a7fafe13dfb4d41af86c278c9
GET /wp-content/themes/genesis/lib/js/skip-links.min.js?ver=3.2.1 HTTP/1.1
Host: vidadigna.alboan.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vidadigna.alboan.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 07 Jan 2023 03:25:02 GMT
Content-Type: application/javascript
Content-Length: 251
Connection: keep-alive
X-Accel-Version: 0.01
Last-Modified: Fri, 15 Nov 2019 10:03:00 GMT
ETag: "120b88-182-5975fb3f3f5c9"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PleskLin
vidadigna.alboan.org/wp-content/plugins/mai-theme-engine/assets/js/mai-theme.min.js?ver=1.10.4.1
200 OK 9.2 kB URL HTTP/1.1 vidadigna.alboan.org/wp-content/plugins/mai-theme-engine/assets/js/mai-theme.min.js?ver=1.10.4.1
IP
File type ASCII text, with very long lines (9219), with no line terminators
Hash 13ccc4974daf0711c7982312b9f0f739
dca36643bb600901bd622cabf9c001fe8caa1774
60afe36374b8877dd92b12499621b88bf771a65d7549d769a87353b504953306
GET /wp-content/plugins/mai-theme-engine/assets/js/mai-theme.min.js?ver=1.10.4.1 HTTP/1.1
Host: vidadigna.alboan.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vidadigna.alboan.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 07 Jan 2023 03:25:02 GMT
Content-Type: application/javascript
Content-Length: 9219
Last-Modified: Fri, 15 Nov 2019 10:01:42 GMT
Connection: keep-alive
ETag: "5dce7786-2403"
X-Powered-By: PleskLin
Accept-Ranges: bytes
vidadigna.alboan.org/wp-content/plugins/mai-theme-engine/assets/js/basic-scroll.min.js?ver=3.0.1
200 OK 11 kB URL HTTP/1.1 vidadigna.alboan.org/wp-content/plugins/mai-theme-engine/assets/js/basic-scroll.min.js?ver=3.0.1
IP
File type ASCII text, with very long lines (10586)
Hash 6af2c88267fdbb0e1bcd0f78cf735c5c
ccb48c06c32a11710eb1c285f6e769aeb3b8af35
4d376399b789ce0df0a7b65bf64415414b45e525e67ea9e1e95b9ad5d4bab176
GET /wp-content/plugins/mai-theme-engine/assets/js/basic-scroll.min.js?ver=3.0.1 HTTP/1.1
Host: vidadigna.alboan.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vidadigna.alboan.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 07 Jan 2023 03:25:02 GMT
Content-Type: application/javascript
Content-Length: 10587
Last-Modified: Fri, 15 Nov 2019 10:01:42 GMT
Connection: keep-alive
ETag: "5dce7786-295b"
X-Powered-By: PleskLin
Accept-Ranges: bytes
vidadigna.alboan.org/wp-content/plugins/mai-theme-engine/assets/js/mai-scroll.min.js?ver=1.10.4.1
200 OK 4.1 kB URL HTTP/1.1 vidadigna.alboan.org/wp-content/plugins/mai-theme-engine/assets/js/mai-scroll.min.js?ver=1.10.4.1
IP
File type ASCII text, with very long lines (4077), with no line terminators
Hash adb6109fcb6fd6fddea20d0886461afc
ccfed0b11de151dca6cb7891f328459195ed906c
4084f171ee38b4c3cf0d6091280ba0dacbcebf2ccfb1af256bfe5d6ec6fcb8d8
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/mai-theme-engine/assets/js/mai-scroll.min.js?ver=1.10.4.1 HTTP/1.1
Host: vidadigna.alboan.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vidadigna.alboan.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 07 Jan 2023 03:25:02 GMT
Content-Type: application/javascript
Content-Length: 4077
Last-Modified: Fri, 15 Nov 2019 10:01:42 GMT
Connection: keep-alive
ETag: "5dce7786-fed"
X-Powered-By: PleskLin
Accept-Ranges: bytes
vidadigna.alboan.org/wp-content/plugins/thrive-visual-editor/editor/js/dist/frontend.min.js?ver=2.4.5.2
200 OK 91 kB URL HTTP/1.1 vidadigna.alboan.org/wp-content/plugins/thrive-visual-editor/editor/js/dist/frontend.min.js?ver=2.4.5.2
IP
File type Unicode text, UTF-8 text, with very long lines (65426)
Hash 76820b308fa20cde8c05940c18ee55ce
491a40b547c984bea8a47316c9b2de264c4fceab
d449cf5a8ce8c10a6edd51d3be7d9b13aae1f91742d4988f85c50912c48800e3
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/thrive-visual-editor/editor/js/dist/frontend.min.js?ver=2.4.5.2 HTTP/1.1
Host: vidadigna.alboan.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vidadigna.alboan.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 07 Jan 2023 03:25:02 GMT
Content-Type: application/javascript
Content-Length: 91449
Last-Modified: Tue, 10 Dec 2019 11:15:00 GMT
Connection: keep-alive
ETag: "5def7e34-16539"
X-Powered-By: PleskLin
Accept-Ranges: bytes
vidadigna.alboan.org/wp-content/plugins/mai-theme-engine/assets/js/fitvids-init.min.js?ver=1.10.4.1
200 OK 87 B URL HTTP/1.1 vidadigna.alboan.org/wp-content/plugins/mai-theme-engine/assets/js/fitvids-init.min.js?ver=1.10.4.1
IP
File type ASCII text, with no line terminators
Hash 89010029569da07294873966c74280b8
a6997286b51ce6a9d5e44d85c1f8b370dbba0767
8a734fe77854bafd40dc1eaafd4db782fddd2c1c808c77a4689db45a91fd2844
GET /wp-content/plugins/mai-theme-engine/assets/js/fitvids-init.min.js?ver=1.10.4.1 HTTP/1.1
Host: vidadigna.alboan.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vidadigna.alboan.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 07 Jan 2023 03:25:02 GMT
Content-Type: application/javascript
Content-Length: 87
Connection: keep-alive
X-Accel-Version: 0.01
Last-Modified: Fri, 15 Nov 2019 10:01:42 GMT
ETag: "541e6c-44-5975faf55e46c"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PleskLin
vidadigna.alboan.org/wp-content/plugins/mai-theme-engine/assets/js/fitvids.min.js?ver=1.2.0
200 OK 1.8 kB URL HTTP/1.1 vidadigna.alboan.org/wp-content/plugins/mai-theme-engine/assets/js/fitvids.min.js?ver=1.2.0
IP
File type HTML document, ASCII text, with very long lines (1782), with no line terminators
Hash efaf5225d9d859b03bc0ab5c1113a847
0c56317c5edfae5badf735718c173ea08c37ada4
150cbe5c514aa70efcd179127476f4f5451db2ed4d033c0608afabdf9d18ec92
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/mai-theme-engine/assets/js/fitvids.min.js?ver=1.2.0 HTTP/1.1
Host: vidadigna.alboan.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vidadigna.alboan.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 07 Jan 2023 03:25:02 GMT
Content-Type: application/javascript
Content-Length: 1782
Last-Modified: Fri, 15 Nov 2019 10:01:42 GMT
Connection: keep-alive
ETag: "5dce7786-6f6"
X-Powered-By: PleskLin
Accept-Ranges: bytes
vidadigna.alboan.org/wp-content/plugins/thrive-visual-editor/thrive-dashboard/js/dist/frontend.min.js?ver=2.2.5.3
200 OK 1.8 kB URL HTTP/1.1 vidadigna.alboan.org/wp-content/plugins/thrive-visual-editor/thrive-dashboard/js/dist/frontend.min.js?ver=2.2.5.3
IP
File type HTML document, ASCII text, with very long lines (1728)
Hash 2eb0940dc7f222350813e24fa9987eda
d22b80318b3d4eb065cb4013f040c1c1bcef72ef
1d3932a5e1163d2cb23f5dee0be9db7c6316fabaf8c5d96d93287c11da0a12c8
GET /wp-content/plugins/thrive-visual-editor/thrive-dashboard/js/dist/frontend.min.js?ver=2.2.5.3 HTTP/1.1
Host: vidadigna.alboan.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vidadigna.alboan.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 07 Jan 2023 03:25:02 GMT
Content-Type: application/javascript
Content-Length: 1832
Last-Modified: Tue, 10 Dec 2019 11:14:59 GMT
Connection: keep-alive
ETag: "5def7e33-728"
X-Powered-By: PleskLin
Accept-Ranges: bytes
vidadigna.alboan.org/wp-includes/js/wp-embed.min.js?ver=5.3.14
200 OK 1.4 kB URL HTTP/1.1 vidadigna.alboan.org/wp-includes/js/wp-embed.min.js?ver=5.3.14
IP
File type ASCII text, with very long lines (1391), with no line terminators
Hash 570ae0f3c201604926ea599d3d1f6c04
2c29243a73660964d4712b969d2a15e27777bc14
5138d39633dc69fcd0ed7f33a5e38dc339123f682fa7f5242066879c2bbc8c9b
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/wp-embed.min.js?ver=5.3.14 HTTP/1.1
Host: vidadigna.alboan.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vidadigna.alboan.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 07 Jan 2023 03:25:02 GMT
Content-Type: application/javascript
Content-Length: 1391
Last-Modified: Fri, 16 Apr 2021 00:30:14 GMT
Connection: keep-alive
ETag: "6078da96-56f"
X-Powered-By: PleskLin
Accept-Ranges: bytes
vidadigna.alboan.org/wp-content/plugins/thrive-visual-editor/editor/css/thrive_flat.css?ver=2.4.5.2
200 OK 483 kB URL HTTP/1.1 vidadigna.alboan.org/wp-content/plugins/thrive-visual-editor/editor/css/thrive_flat.css?ver=2.4.5.2
IP
File type ASCII text, with very long lines (65536), with no line terminators
Size 483 kB (483113 bytes)
Hash fc52e23ea47088d7d928ef7c2506c3bb
ad0dd022d7976aec19324bf9f190eed15842363b
4d7615fcf1c3035ba2d08b6ad41f72694a528ef96392070ec7467f6d18b893af
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/thrive-visual-editor/editor/css/thrive_flat.css?ver=2.4.5.2 HTTP/1.1
Host: vidadigna.alboan.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vidadigna.alboan.org/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 07 Jan 2023 03:25:02 GMT
Content-Type: text/css
Content-Length: 483113
Last-Modified: Tue, 10 Dec 2019 11:15:00 GMT
Connection: keep-alive
ETag: "5def7e34-75f29"
X-Powered-By: PleskLin
Accept-Ranges: bytes
vidadigna.alboan.org/wp-content/uploads/logo-alboan-vidadigna.png
200 OK 4.7 kB URL HTTP/1.1 vidadigna.alboan.org/wp-content/uploads/logo-alboan-vidadigna.png
IP
File type PNG image data, 289 x 75, 8-bit/color RGBA, non-interlaced\012- data
Hash e969bd5661ce75fbd5caed5cedb3cc43
1295c07e3f34196b872350127e56a34b7ee52689
d9e1d7a5e2c18391c1baefee0d42753fcff81a222a31cc9dabeb9e7f22927bbb
GET /wp-content/uploads/logo-alboan-vidadigna.png HTTP/1.1
Host: vidadigna.alboan.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vidadigna.alboan.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 07 Jan 2023 03:25:02 GMT
Content-Type: image/png
Content-Length: 4719
Last-Modified: Fri, 22 Feb 2019 09:04:03 GMT
Connection: keep-alive
ETag: "5c6fbb03-126f"
X-Powered-By: PleskLin
Accept-Ranges: bytes
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 5ddd48b55142ea746fa6165da9c75916
a2e4ddea65431b1b1bddbcbf257874fddd7cc332
f6f85f03bb7716bf8d960e8cd94b66495040371cc68c1642f4a30e0f95e7c27e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 07 Jan 2023 03:25:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
vidadigna.alboan.org/wp-content/plugins/simple-social-icons/symbol-defs.svg
200 OK 19 kB URL HTTP/1.1 vidadigna.alboan.org/wp-content/plugins/simple-social-icons/symbol-defs.svg
IP
File type SVG Scalable Vector Graphics image\012- HTML document, ASCII text, with very long lines (2479)
Hash 0272bb095e4e8f05595ae6748510eb59
73ed04eb779e6540f4496bfc76aed3b056ed2f4e
194388578fe16a8f6d0790e1af9f6f935a03b3ecb8d7620f0ebca642761ebc88
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/simple-social-icons/symbol-defs.svg HTTP/1.1
Host: vidadigna.alboan.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vidadigna.alboan.org/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: same-origin
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 07 Jan 2023 03:25:02 GMT
Content-Type: image/svg+xml
Content-Length: 19329
Last-Modified: Thu, 13 Jun 2019 07:31:34 GMT
Connection: keep-alive
ETag: "5d01fbd6-4b81"
X-Powered-By: PleskLin
Accept-Ranges: bytes
vidadigna.alboan.org/wp-content/uploads/accion-humanitaria-vidadigna-1.jpg
200 OK 104 kB URL HTTP/1.1 vidadigna.alboan.org/wp-content/uploads/accion-humanitaria-vidadigna-1.jpg
IP
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=1, copyright= ], baseline, precision 8, 576x432, components 3\012- data
Size 104 kB (104196 bytes)
Hash 434df8625ab9fd6933896b2dc1c0737d
92ad7dd05efe9e08a0ea6bb7dd4286b8405e27cc
0f9227c7ba73d389ff0a913caa227ae849d60b10e0d265b45de8720012a003d2
GET /wp-content/uploads/accion-humanitaria-vidadigna-1.jpg HTTP/1.1
Host: vidadigna.alboan.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vidadigna.alboan.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 07 Jan 2023 03:25:02 GMT
Content-Type: image/jpeg
Content-Length: 104196
Last-Modified: Fri, 22 Feb 2019 09:04:03 GMT
Connection: keep-alive
ETag: "5c6fbb03-19704"
X-Powered-By: PleskLin
Accept-Ranges: bytes
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 8b64a17d9b8c33515817fc19dd6f60d7
a752305109964bc1ef3537debed9c40c44198cea
8f7b7d229100176e82780eb0c3808b410b078025237210d8b5037c30ac3b0987
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 07 Jan 2023 03:25:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/muli/v28/7Aulp_0qiz-aVz7u3PJLcUMYOFlOkEk30eg.woff2
200 OK 17 kB URL HTTP/2 fonts.gstatic.com/s/muli/v28/7Aulp_0qiz-aVz7u3PJLcUMYOFlOkEk30eg.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 16864, version 1.0\012- data
Hash 806b7824a04dca4bb20897403917a59c
d5eacd77612899de6a0ce82d30010fb3947ca016
b39c72b6e04582a47117c4a7468d85b7ac661c6bb51c4fa0fca7b67a807210a7
GET /s/muli/v28/7Aulp_0qiz-aVz7u3PJLcUMYOFlOkEk30eg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://vidadigna.alboan.org
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 16864
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 03 Jan 2023 19:09:00 GMT
expires: Wed, 03 Jan 2024 19:09:00 GMT
cache-control: public, max-age=31536000
age: 288962
last-modified: Mon, 11 Jul 2022 20:43:02 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 8b64a17d9b8c33515817fc19dd6f60d7
a752305109964bc1ef3537debed9c40c44198cea
8f7b7d229100176e82780eb0c3808b410b078025237210d8b5037c30ac3b0987
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 07 Jan 2023 03:25:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
vidadigna.alboan.org/wp-content/uploads/participacion-vidadigna.jpg
200 OK 103 kB URL HTTP/1.1 vidadigna.alboan.org/wp-content/uploads/participacion-vidadigna.jpg
IP
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 960x720, components 3\012- data
Size 103 kB (103308 bytes)
Hash f80a49639ce17603811e309d27d27276
2f6f73fcb8f0a5acc6849cdba12aeb484ceba708
219d8ef74f0205087bff1701644c68f331da9ef502ab18e4ada0df5ec7f0e544
GET /wp-content/uploads/participacion-vidadigna.jpg HTTP/1.1
Host: vidadigna.alboan.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vidadigna.alboan.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 07 Jan 2023 03:25:02 GMT
Content-Type: image/jpeg
Content-Length: 103308
Last-Modified: Fri, 22 Feb 2019 09:04:03 GMT
Connection: keep-alive
ETag: "5c6fbb03-1938c"
X-Powered-By: PleskLin
Accept-Ranges: bytes
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 8b64a17d9b8c33515817fc19dd6f60d7
a752305109964bc1ef3537debed9c40c44198cea
8f7b7d229100176e82780eb0c3808b410b078025237210d8b5037c30ac3b0987
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 07 Jan 2023 03:25:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 8b64a17d9b8c33515817fc19dd6f60d7
a752305109964bc1ef3537debed9c40c44198cea
8f7b7d229100176e82780eb0c3808b410b078025237210d8b5037c30ac3b0987
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 07 Jan 2023 03:25:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 8b64a17d9b8c33515817fc19dd6f60d7
a752305109964bc1ef3537debed9c40c44198cea
8f7b7d229100176e82780eb0c3808b410b078025237210d8b5037c30ac3b0987
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 07 Jan 2023 03:25:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
vidadigna.alboan.org/wp-content/plugins/thrive-visual-editor/editor/css/fonts/thrvicomoon/icomoon.ttf?jtzdu4
200 OK 6.0 kB URL HTTP/1.1 vidadigna.alboan.org/wp-content/plugins/thrive-visual-editor/editor/css/fonts/thrvicomoon/icomoon.ttf?jtzdu4
IP
File type TrueType Font data, 11 tables, 1st "OS/2", 14 names, Macintosh, type 1 string, icomoon \012- data
Hash 421665940ed8cc53f7f7b1d7b7006e3f
c1f58cb4d1b9ea2b70466ca9fbb2748417fe2ec7
a57a7356656f58ccfe1a75cab7db5c2fdc0340f16f0046125d5b0faacb91acad
GET /wp-content/plugins/thrive-visual-editor/editor/css/fonts/thrvicomoon/icomoon.ttf?jtzdu4 HTTP/1.1
Host: vidadigna.alboan.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vidadigna.alboan.org/wp-content/plugins/thrive-visual-editor/editor/css/thrive_flat.css?ver=2.4.5.2
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 07 Jan 2023 03:25:02 GMT
Content-Type: application/octet-stream
Content-Length: 6040
Last-Modified: Tue, 10 Dec 2019 11:15:00 GMT
Connection: keep-alive
ETag: "5def7e34-1798"
X-Powered-By: PleskLin
Accept-Ranges: bytes
vidadigna.alboan.org/wp-content/uploads/educacion-vidadigna.jpg
200 OK 109 kB URL HTTP/1.1 vidadigna.alboan.org/wp-content/uploads/educacion-vidadigna.jpg
IP
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 960x720, components 3\012- data
Size 109 kB (108893 bytes)
Hash 6206698794280ccdab07f5a646026901
47391c07851ad4cb58c80debe833c07c88c09c0b
fa4b089d19260c5ecd5166d31a9cfd96008b3e3902a078697f7853eceeac48d3
GET /wp-content/uploads/educacion-vidadigna.jpg HTTP/1.1
Host: vidadigna.alboan.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vidadigna.alboan.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 07 Jan 2023 03:25:02 GMT
Content-Type: image/jpeg
Content-Length: 108893
Last-Modified: Fri, 22 Feb 2019 09:04:03 GMT
Connection: keep-alive
ETag: "5c6fbb03-1a95d"
X-Powered-By: PleskLin
Accept-Ranges: bytes
fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
200 OK 45 kB URL HTTP/2 fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 44856, version 1.0\012- data
Hash 565ce506190ad3af920b40baf1794cec
ad3cba5d06100e09449a864d3b5e58403b478b3d
8778e9af2422858d7052ff9a0f3c12c08ae976bdd6e0316db144cd5579cd97db
GET /s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://vidadigna.alboan.org
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 44856
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 02 Jan 2023 18:52:41 GMT
expires: Tue, 02 Jan 2024 18:52:41 GMT
cache-control: public, max-age=31536000
age: 376341
last-modified: Mon, 15 Aug 2022 18:20:18 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/playfairdisplay/v30/nuFvD-vYSZviVYUb_rj3ij__anPXJzDwcbmjWBN2PKeiunDXbtM.woff2
200 OK 21 kB URL HTTP/2 fonts.gstatic.com/s/playfairdisplay/v30/nuFvD-vYSZviVYUb_rj3ij__anPXJzDwcbmjWBN2PKeiunDXbtM.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 20968, version 1.0\012- data
Hash 726ce483f9627699bb178e053afbd3a4
3840d4461253413a4d71d2702c39cf4edfb89753
6454829f91def11ae630252985f686e8553c439ee0ee4d20b0e6dda0429fd30d
GET /s/playfairdisplay/v30/nuFvD-vYSZviVYUb_rj3ij__anPXJzDwcbmjWBN2PKeiunDXbtM.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://vidadigna.alboan.org
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 20968
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 02 Jan 2023 21:20:44 GMT
expires: Tue, 02 Jan 2024 21:20:44 GMT
cache-control: public, max-age=31536000
age: 367458
last-modified: Mon, 18 Jul 2022 19:02:12 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
200 OK 15 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 15344, version 1.0\012- data
Hash 5d4aeb4e5f5ef754e307d7ffaef688bd
06db651cdf354c64a7383ea9c77024ef4fb4cef8
3e253b66056519aa065b00a453bac37ac5ed8f3e6fe7b542e93a9dcdcc11d0bc
GET /s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15344
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 05 Jan 2023 21:48:03 GMT
expires: Fri, 05 Jan 2024 21:48:03 GMT
cache-control: public, max-age=31536000
age: 106619
last-modified: Mon, 16 Oct 2017 17:32:55 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 15552, version 1.0\012- data
Hash 285467176f7fe6bb6a9c6873b3dad2cc
ea04e4ff5142ddd69307c183def721a160e0a64e
5a8c1e7681318caa29e9f44e8a6e271f6a4067a2703e9916dfd4fe9099241db7
GET /s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15552
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 05 Jan 2023 16:40:43 GMT
expires: Fri, 05 Jan 2024 16:40:43 GMT
cache-control: public, max-age=31536000
age: 125059
last-modified: Mon, 16 Oct 2017 17:33:02 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.youtube.com/s/player/e5f6cbd5/www-player.css
200 OK 50 kB URL HTTP/2 www.youtube.com/s/player/e5f6cbd5/www-player.css
IP
File type ASCII text, with very long lines (65536), with no line terminators
Hash 6b1464acd0042e69d9b42545b2475ade
fbb758851b19297ae248005196ce125af86bbceb
a41ea67f5651721d99d5af76b63d8286da883c9a5c8de0b06ad590cf35099740
GET /s/player/e5f6cbd5/www-player.css HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/embed/m-_7M09caQc?rel=0&modestbranding=0&controls=1&showinfo=1&fs=1&wmode=transparent
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding, Origin
content-encoding: br
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 49906
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 06 Jan 2023 16:07:13 GMT
expires: Sat, 06 Jan 2024 16:07:13 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 02 Jan 2023 22:39:54 GMT
content-type: text/css
age: 40669
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 8b64a17d9b8c33515817fc19dd6f60d7
a752305109964bc1ef3537debed9c40c44198cea
8f7b7d229100176e82780eb0c3808b410b078025237210d8b5037c30ac3b0987
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 07 Jan 2023 03:25:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.youtube.com/s/player/e5f6cbd5/www-embed-player.vflset/www-embed-player.js
200 OK 109 kB URL HTTP/2 www.youtube.com/s/player/e5f6cbd5/www-embed-player.vflset/www-embed-player.js
IP
File type ASCII text, with very long lines (679)
Size 109 kB (109069 bytes)
Hash de70cca71a002835d2d2e36d34adc509
19df5ef5e91da5a7ac9ac6d58ed26eb39aa65425
53068fee4e27a994ee67cea47396a03452d3fa6e8b63fe6ca2e110c2f36f5e43
GET /s/player/e5f6cbd5/www-embed-player.vflset/www-embed-player.js HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/embed/m-_7M09caQc?rel=0&modestbranding=0&controls=1&showinfo=1&fs=1&wmode=transparent
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding, Origin
content-encoding: br
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 109069
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 06 Jan 2023 10:37:34 GMT
expires: Sat, 06 Jan 2024 10:37:34 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 02 Jan 2023 22:39:54 GMT
content-type: text/javascript
age: 60448
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.youtube.com/s/player/e5f6cbd5/fetch-polyfill.vflset/fetch-polyfill.js
200 OK 2.8 kB URL HTTP/2 www.youtube.com/s/player/e5f6cbd5/fetch-polyfill.vflset/fetch-polyfill.js
IP
File type Algol 68 source text\012- Pascal source, ASCII text, with very long lines (555)
Hash 80fe2d229007996c8397073b00755dc7
121f82c77bcf2a297a1085e3b092415c463fcafe
033dfa8941482c82d4f1aaa4a9172fb379b9e46a02d5b36297c5476bbbfdea2c
GET /s/player/e5f6cbd5/fetch-polyfill.vflset/fetch-polyfill.js HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/embed/m-_7M09caQc?rel=0&modestbranding=0&controls=1&showinfo=1&fs=1&wmode=transparent
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding, Origin
content-encoding: br
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 2786
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 06 Jan 2023 16:07:15 GMT
expires: Sat, 06 Jan 2024 16:07:15 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 02 Jan 2023 22:39:54 GMT
content-type: text/javascript
age: 40667
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.youtube.com/s/player/e5f6cbd5/player_ias.vflset/en_US/base.js
200 OK 610 kB URL HTTP/2 www.youtube.com/s/player/e5f6cbd5/player_ias.vflset/en_US/base.js
IP
File type ASCII text, with very long lines (517)
Size 610 kB (610118 bytes)
Hash a13da9969baf95d1681d9628b5e4b2d5
e4eec7bb9a5e8ffce24b8f2de3d2e201d71850e5
4ceb577159cf250ae9a1e90a381eb3eefbef311f948947feaef3d40429cc8810
GET /s/player/e5f6cbd5/player_ias.vflset/en_US/base.js HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/embed/m-_7M09caQc?rel=0&modestbranding=0&controls=1&showinfo=1&fs=1&wmode=transparent
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding, Origin
content-encoding: br
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 610118
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 03 Jan 2023 20:38:25 GMT
expires: Wed, 03 Jan 2024 20:38:25 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 02 Jan 2023 22:39:54 GMT
content-type: text/javascript
age: 283597
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
vidadigna.alboan.org/wp-content/uploads/vidadigna-portada.jpg
200 OK 119 kB URL HTTP/1.1 vidadigna.alboan.org/wp-content/uploads/vidadigna-portada.jpg
IP
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 1920x1032, components 3\012- data
Size 119 kB (119089 bytes)
Hash d36e80394674f401080335a509487895
ec2bd2b4421eed52d878a16dd346060b701e1948
67c56c229c3475f26b33873233a9531ce7ed3fee09596d5dca60cc1dc857162c
GET /wp-content/uploads/vidadigna-portada.jpg HTTP/1.1
Host: vidadigna.alboan.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vidadigna.alboan.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 07 Jan 2023 03:25:02 GMT
Content-Type: image/jpeg
Content-Length: 119089
Last-Modified: Fri, 22 Feb 2019 09:04:03 GMT
Connection: keep-alive
ETag: "5c6fbb03-1d131"
X-Powered-By: PleskLin
Accept-Ranges: bytes
vidadigna.alboan.org/wp-content/uploads/economia-vidadigna.jpg
200 OK 204 kB URL HTTP/1.1 vidadigna.alboan.org/wp-content/uploads/economia-vidadigna.jpg
IP
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 960x720, components 3\012- data
Size 204 kB (203732 bytes)
Hash ca3da857332c15a0a84fa4288d4b55d9
0717e11007a9c4c381936c913a4b064517a5188d
60a5abf50a039f5b5998e9eba0ff98719221e8541b50f6f1a634725b1293b6e4
GET /wp-content/uploads/economia-vidadigna.jpg HTTP/1.1
Host: vidadigna.alboan.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vidadigna.alboan.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 07 Jan 2023 03:25:02 GMT
Content-Type: image/jpeg
Content-Length: 203732
Last-Modified: Fri, 22 Feb 2019 09:04:03 GMT
Connection: keep-alive
ETag: "5c6fbb03-31bd4"
X-Powered-By: PleskLin
Accept-Ranges: bytes
vidadigna.alboan.org/wp-content/uploads/cropped-favicon-192x192.jpg
200 OK 2.6 kB URL HTTP/1.1 vidadigna.alboan.org/wp-content/uploads/cropped-favicon-192x192.jpg
IP
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, progressive, precision 8, 192x192, components 3\012- data
Hash 3f76607167095d2893d5162e9b1049e8
1f8c4efbf550b67cdcda3466d474597b8a7c2d21
132b928c319b052e71842ddca0ff22820bfc906a4b1d7d364cfdb30c1cce9276
GET /wp-content/uploads/cropped-favicon-192x192.jpg HTTP/1.1
Host: vidadigna.alboan.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vidadigna.alboan.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 07 Jan 2023 03:25:03 GMT
Content-Type: image/jpeg
Content-Length: 2579
Last-Modified: Fri, 22 Feb 2019 09:04:03 GMT
Connection: keep-alive
ETag: "5c6fbb03-a13"
X-Powered-By: PleskLin
Accept-Ranges: bytes
vidadigna.alboan.org/wp-content/uploads/cropped-favicon-32x32.jpg
200 OK 918 B URL HTTP/1.1 vidadigna.alboan.org/wp-content/uploads/cropped-favicon-32x32.jpg
IP
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, progressive, precision 8, 32x32, components 3\012- data
Hash 0907f99be254f2bb3675259563d0bd33
ba4d7316ee2db7edd8692b8965f4657ee48bfd8a
806c40d6ef81d52fe732e6683fc2d4c79e274949f6cbd7f937db201f95ff359c
GET /wp-content/uploads/cropped-favicon-32x32.jpg HTTP/1.1
Host: vidadigna.alboan.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vidadigna.alboan.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 07 Jan 2023 03:25:03 GMT
Content-Type: image/jpeg
Content-Length: 918
Connection: keep-alive
X-Accel-Version: 0.01
Last-Modified: Fri, 22 Feb 2019 09:04:03 GMT
ETag: "1220ea-396-58277df5ed235"
Accept-Ranges: bytes
X-Powered-By: PleskLin
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 11aea3c23fce2f77cadf7a551f4e8b17
4963aafedcf3fc5f28f1b4a6b0212abfd5526702
d2ada7d592878b58921cd0568efa62abefd7423d40bec16133886e2c67a791b3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D2ADA7D592878B58921CD0568EFA62ABEFD7423D40BEC16133886E2C67A791B3"
Last-Modified: Fri, 06 Jan 2023 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4433
Expires: Sat, 07 Jan 2023 04:38:56 GMT
Date: Sat, 07 Jan 2023 03:25:03 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 11aea3c23fce2f77cadf7a551f4e8b17
4963aafedcf3fc5f28f1b4a6b0212abfd5526702
d2ada7d592878b58921cd0568efa62abefd7423d40bec16133886e2c67a791b3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D2ADA7D592878B58921CD0568EFA62ABEFD7423D40BEC16133886E2C67A791B3"
Last-Modified: Fri, 06 Jan 2023 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4433
Expires: Sat, 07 Jan 2023 04:38:56 GMT
Date: Sat, 07 Jan 2023 03:25:03 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 11aea3c23fce2f77cadf7a551f4e8b17
4963aafedcf3fc5f28f1b4a6b0212abfd5526702
d2ada7d592878b58921cd0568efa62abefd7423d40bec16133886e2c67a791b3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D2ADA7D592878B58921CD0568EFA62ABEFD7423D40BEC16133886E2C67A791B3"
Last-Modified: Fri, 06 Jan 2023 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4433
Expires: Sat, 07 Jan 2023 04:38:56 GMT
Date: Sat, 07 Jan 2023 03:25:03 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 11aea3c23fce2f77cadf7a551f4e8b17
4963aafedcf3fc5f28f1b4a6b0212abfd5526702
d2ada7d592878b58921cd0568efa62abefd7423d40bec16133886e2c67a791b3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D2ADA7D592878B58921CD0568EFA62ABEFD7423D40BEC16133886E2C67A791B3"
Last-Modified: Fri, 06 Jan 2023 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4433
Expires: Sat, 07 Jan 2023 04:38:56 GMT
Date: Sat, 07 Jan 2023 03:25:03 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1970bdac-3b6b-435a-8842-b9f3926d8831.jpeg
200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1970bdac-3b6b-435a-8842-b9f3926d8831.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash bfcf48fe2526a5e5c258c32099c71fd8
d65e224952502f5abc15f2a017d685f900d696cf
8bda5701785693f200f49dbe39d9523e123b3c599889ee26bc7ab10b159b3a4d
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1970bdac-3b6b-435a-8842-b9f3926d8831.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12334
x-amzn-requestid: 57a281c2-b266-41d8-bf3f-47cbbbecee77
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: eGCNVHxnIAMFzoA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63b24a55-4760ddad29c658ed555e62ac;Sampled=0
x-amzn-remapped-date: Mon, 02 Jan 2023 03:07:01 GMT
x-amz-cf-pop: SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: q6haURIZ6SEyJ9Zdp7RWanL7OnmBUfZlnuTtYTPrfujCkCiNR3xwwQ==
via: 1.1 6ba2a21321beeef65404429d0a4b6380.cloudfront.net (CloudFront), 1.1 9825a45e2b387a61504c0c3df20048ee.cloudfront.net (CloudFront), 1.1 google
date: Fri, 06 Jan 2023 22:20:40 GMT
age: 18263
etag: "d65e224952502f5abc15f2a017d685f900d696cf"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7308753d-b099-45a9-ac63-aeb8be417c01.jpeg
200 OK 4.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7308753d-b099-45a9-ac63-aeb8be417c01.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4ac8905d1d5c1d4287877b2cd12c578f
3dba315adee4a143e7368e64c52c8766895a754c
7c19db731473111c9e8a0d939b1204b59e11a887cd90774b48d3dfa974cb491d
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7308753d-b099-45a9-ac63-aeb8be417c01.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4795
x-amzn-requestid: b8d2ba5b-92d8-40cc-8954-55bd8ed1dd34
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: eS7RFFznIAMFe4w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63b7726d-00b967487cd1c1380f7f66d5;Sampled=0
x-amzn-remapped-date: Fri, 06 Jan 2023 00:59:25 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: R_Xc4CnUgOLg_6xXWMQ0DEoSigBBnOdZRGi49w-GOvpzCTXkItb0GQ==
via: 1.1 1f6e68152880a39d72e6bf2996cd6a60.cloudfront.net (CloudFront), 1.1 1a53057db389e96b4ef1bfbc925dde1c.cloudfront.net (CloudFront), 1.1 google
date: Fri, 06 Jan 2023 09:19:59 GMT
age: 65104
etag: "3dba315adee4a143e7368e64c52c8766895a754c"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F32750e1f-43b2-4ea2-9562-1ec8c85222fe.jpeg
200 OK 8.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F32750e1f-43b2-4ea2-9562-1ec8c85222fe.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 05977aeaee3d020a9e54b103bff0072e
74f544d78132f079b849fc2ef613a892c515378f
72b0b5e6ed8685fa24bd66e4173db1701b4a48b3df15c86228b833e615935da8
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F32750e1f-43b2-4ea2-9562-1ec8c85222fe.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8704
x-amzn-requestid: 1a997886-3172-4ba2-967d-328539cf685c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: eVxErFfVoAMFhYg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63b89550-7c30a3ff5d97f8b421776fb5;Sampled=0
x-amzn-remapped-date: Fri, 06 Jan 2023 21:40:32 GMT
x-amz-cf-pop: SEA19-C1, SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: CKplX8NiGi4DVG0lwV2LILGwKdV6wOzThlE7SEjStyLgYQieTmJfPw==
via: 1.1 599f04a365a179d553682d476509c388.cloudfront.net (CloudFront), 1.1 5c7981a979abd51ba7e5ca7d464fd048.cloudfront.net (CloudFront), 1.1 google
date: Fri, 06 Jan 2023 21:47:57 GMT
age: 20226
etag: "74f544d78132f079b849fc2ef613a892c515378f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7a51093b-a234-4694-9280-6ea68de36744.jpeg
200 OK 5.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7a51093b-a234-4694-9280-6ea68de36744.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b970a91b8b2e02c08da490ad7a897a79
0b25447121c9d5d1c276cde893549234ab1d0448
e528ef574f793d899cd41ec3d2f954bc1a3658f4c8faedc04206aaf0c530e2e3
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7a51093b-a234-4694-9280-6ea68de36744.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5815
x-amzn-requestid: c2634739-191d-47c0-98bb-2c91f0d7e5ab
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: d_-8mEtSoAMF1Fg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63afdeb6-55946d3d7784a69409205dfc;Sampled=0
x-amzn-remapped-date: Sat, 31 Dec 2022 07:03:18 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: -th5qESR6innpF94Jxt76YClWg6POsf_bL0RBQBRgIhcrNCR6S88rQ==
via: 1.1 e5af640ced3aa8764b82c4bc3f7af38e.cloudfront.net (CloudFront), 1.1 556b99c6be8d7078b9f067347c62df6a.cloudfront.net (CloudFront), 1.1 google
date: Fri, 06 Jan 2023 04:04:50 GMT
age: 84013
etag: "0b25447121c9d5d1c276cde893549234ab1d0448"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fae19b7ca-4dfd-4eb2-9016-efe102832200.jpeg
200 OK 6.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fae19b7ca-4dfd-4eb2-9016-efe102832200.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 5da8730bc434765cb6905cfb77bb16e4
fb0f2ec5d9e45af3c7bbe49cda08b4bcb841268b
986df029801bcf98f587f7a502b4f6aba9660c9230fbda8f073ed01bcf967e1e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fae19b7ca-4dfd-4eb2-9016-efe102832200.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6716
x-amzn-requestid: b3538bab-5780-4adb-84fe-5d67be71edb5
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: eKsTpGSIoAMF6VA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63b4274a-30a59f80542f1ec6796c474d;Sampled=0
x-amzn-remapped-date: Tue, 03 Jan 2023 13:02:02 GMT
x-amz-cf-pop: SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: abPNUKvrq2f1xNTuEvhREe_dBR9tk0vnsQp3v37AbKNm04BlDKvBsQ==
via: 1.1 e5af640ced3aa8764b82c4bc3f7af38e.cloudfront.net (CloudFront), 1.1 8cb7de37a1655236518810d0aabb8656.cloudfront.net (CloudFront), 1.1 google
date: Fri, 06 Jan 2023 21:49:18 GMT
age: 20145
etag: "fb0f2ec5d9e45af3c7bbe49cda08b4bcb841268b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0f37a3ca-5b31-4876-bbcd-442c1f718b3c.jpeg
200 OK 5.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0f37a3ca-5b31-4876-bbcd-442c1f718b3c.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash e832123ea0c92a446b5894e75efc86ae
bb438ca635b43819701067ef07a3d910ad29a0c7
e1b0c6cd873f304de15664f96af6b6914e13fbbfb3e2179ba43369e116446773
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0f37a3ca-5b31-4876-bbcd-442c1f718b3c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5578
x-amzn-requestid: 93353c3e-1b26-424c-b4c6-0d113703edd6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: eFvpBFGvIAMFobw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63b22c9f-1d07cff31ae39320693642f0;Sampled=0
x-amzn-remapped-date: Mon, 02 Jan 2023 01:00:15 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: skIlgzeKmjJ2Wsx2QeubgMvO7chgpPNZYqW4E_xhRgkCtDEhAfBp4w==
via: 1.1 4f87745990545c1ac0195c157e1668f8.cloudfront.net (CloudFront), 1.1 476c2ba6d9f6cd69dbcedbd65688cbc0.cloudfront.net (CloudFront), 1.1 google
date: Fri, 06 Jan 2023 07:33:22 GMT
age: 71501
etag: "bb438ca635b43819701067ef07a3d910ad29a0c7"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 0521e41515d6353221b262052a1379d0
093c1306189c79f1cadc7b17f2a70ea34c0bc1d6
81d59ed2135bdc6f5987a5a3ff39fd7073c158f0a6fe1b79137799d7b2963a3f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 07 Jan 2023 03:25:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 251012792f6962c47805037579567a8e
939cfca6ec3b4e67c2f457ae03d3aa73af395a06
f2bae093cffdb74e733ce01886914ce45987110de4f0d7e33fe2060c6b97a015
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 07 Jan 2023 03:25:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
static.doubleclick.net/instream/ad_status.js
200 OK 29 B URL HTTP/2 static.doubleclick.net/instream/ad_status.js
IP
Hash 1fa71744db23d0f8df9cce6719defcb7
e4be9b7136697942a036f97cf26ebaf703ad2067
eed0dc1fdb5d97ed188ae16fd5e1024a5bb744af47340346be2146300a6c54b9
GET /instream/ad_status.js HTTP/1.1
Host: static.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="ads-doubleclick-media"
report-to: {"group":"ads-doubleclick-media","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-doubleclick-media"}]}
timing-allow-origin: *
content-length: 29
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 07 Jan 2023 03:17:37 GMT
expires: Sat, 07 Jan 2023 03:32:37 GMT
cache-control: public, max-age=900
age: 446
last-modified: Thu, 12 Dec 2013 23:40:16 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
googleads.g.doubleclick.net/pagead/id
302 Found 0 B URL HTTP/2 googleads.g.doubleclick.net/pagead/id
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pagead/id HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
location: https://googleads.g.doubleclick.net/pagead/id?slf_rd=1
access-control-allow-credentials: true
access-control-allow-origin: https://www.youtube.com
date: Sat, 07 Jan 2023 03:25:03 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
server: cafe
content-length: 0
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 0521e41515d6353221b262052a1379d0
093c1306189c79f1cadc7b17f2a70ea34c0bc1d6
81d59ed2135bdc6f5987a5a3ff39fd7073c158f0a6fe1b79137799d7b2963a3f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 07 Jan 2023 03:25:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 251012792f6962c47805037579567a8e
939cfca6ec3b4e67c2f457ae03d3aa73af395a06
f2bae093cffdb74e733ce01886914ce45987110de4f0d7e33fe2060c6b97a015
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 07 Jan 2023 03:25:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
200 OK 0 B URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /$rpc/google.internal.waa.v1.Waa/Create HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-goog-api-key,x-user-agent
Referer: https://www.youtube.com/
Origin: https://www.youtube.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://www.youtube.com
vary: origin, referer, x-origin
access-control-allow-credentials: true
access-control-allow-methods: DELETE,GET,HEAD,OPTIONS,PATCH,POST,PUT
access-control-allow-headers: content-type,x-goog-api-key,x-user-agent
access-control-max-age: 3600
date: Sat, 07 Jan 2023 03:25:03 GMT
content-type: text/html
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 29bbb88937e291fb70ac7920c1e4eeb1
d95e6da4d4dc4c4e301ff073f057c417986099fe
f5b298d0f4129a8139623fef229a0cda537587b380837c81968f418f3fba8c69
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 07 Jan 2023 03:25:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
200 OK 31 kB URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
IP
File type JSON data\012- , ASCII text, with very long lines (65536), with no line terminators
Hash b18c32f1ca21ccc881640312ab81dffc
a8e36efdac3de89cb2cf041a40ce3bee4873dba6
ccc8b7e6ba57071de8b00f8ed775b6285d0fb263784193e4bfa6f5be8ee6e93b
POST /$rpc/google.internal.waa.v1.Waa/Create HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Api-Key: AIzaSyDyT5W0Jh49F30Pqqtyfdf7pDLFKLJoAnw
Content-Type: application/json+protobuf
X-User-Agent: grpc-web-javascript/0.1
Content-Length: 24
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json+protobuf; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Sat, 07 Jan 2023 03:25:03 GMT
server: ESF
cache-control: private
content-length: 31122
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.youtube.com
access-control-allow-credentials: true
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google.com/js/th/wBNXk7Q6V2dkHawik5TUb6id0fydDqlxfrWFyJdQ6Xw.js
200 OK 14 kB URL HTTP/2 www.google.com/js/th/wBNXk7Q6V2dkHawik5TUb6id0fydDqlxfrWFyJdQ6Xw.js
IP
File type ASCII text, with very long lines (36000)
Hash b40bdd235c7883921e2b18743b3aea21
9aaa96e2ec231327ba976911513989568c56c7c1
8b00f3a7d9b7acabf6b991926d7543944771ce1431efd342dea743192ec667e3
GET /js/th/wBNXk7Q6V2dkHawik5TUb6id0fydDqlxfrWFyJdQ6Xw.js HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/botguard-scs
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="botguard-scs"
report-to: {"group":"botguard-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/botguard-scs"}]}
content-length: 14173
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 05 Jan 2023 10:28:56 GMT
expires: Fri, 05 Jan 2024 10:28:56 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 03 Jan 2023 15:00:00 GMT
content-type: text/javascript
age: 147367
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash e82d05ecc27093ebcf8a7e505edd9851
cff9c858dfd31fa699928788e2ecec1d19b4794f
f32de2c98bbad38f7422bdcc97b57f1db9cf6e94a62e9f498589a636f043a6c4
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 07 Jan 2023 03:25:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
i.ytimg.com/vi_webp/m-_7M09caQc/sddefault.webp
200 OK 9.8 kB URL HTTP/2 i.ytimg.com/vi_webp/m-_7M09caQc/sddefault.webp
IP
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 640x480, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash d02e87734ce5e20eab63ed1126fc2fec
430056e7f437e981788eda336e5be73ff9a69541
0ccdf5eca4570f56d6928feb3cdb04ec50df4a4c96c6d3b771ca39b9917ddeb6
GET /vi_webp/m-_7M09caQc/sddefault.webp HTTP/1.1
Host: i.ytimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
content-type: image/webp
vary: Origin
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 9760
date: Sat, 07 Jan 2023 03:25:03 GMT
expires: Sat, 07 Jan 2023 05:25:03 GMT
cache-control: public, max-age=7200
etag: "1448134498"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash e82d05ecc27093ebcf8a7e505edd9851
cff9c858dfd31fa699928788e2ecec1d19b4794f
f32de2c98bbad38f7422bdcc97b57f1db9cf6e94a62e9f498589a636f043a6c4
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 07 Jan 2023 03:25:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 0790db21e0dbda812497eb7f8551e28d
cd70c52bec33102cd0d34e404914dabec39b12a4
0c79b14a1631994a2c73e01a4e9d1db08669eed59801851de26b7643b3e612ec
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 07 Jan 2023 03:25:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
yt3.ggpht.com/ytc/AMLnZu8UEzTLqzjBaxIvJUBSDiLyzgSSTwjpXMv4RBHh4w=s68-c-k-c0x00ffffff-no-rj
200 OK 1.4 kB URL HTTP/2 yt3.ggpht.com/ytc/AMLnZu8UEzTLqzjBaxIvJUBSDiLyzgSSTwjpXMv4RBHh4w=s68-c-k-c0x00ffffff-no-rj
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 68x68, components 3\012- data
Hash b49a4f16f21d8db3adeb0f2985df39ac
71ab823d50446a2afe60f89740448db23493850b
cb2dce5c05eba99500896b15e606bcc706fe19932266173769b635cb5c8c1daf
GET /ytc/AMLnZu8UEzTLqzjBaxIvJUBSDiLyzgSSTwjpXMv4RBHh4w=s68-c-k-c0x00ffffff-no-rj HTTP/1.1
Host: yt3.ggpht.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-expose-headers: Content-Length
content-disposition: inline;filename="unnamed.jpg"
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
server: fife
content-length: 1432
x-xss-protection: 0
date: Sat, 07 Jan 2023 03:25:04 GMT
expires: Mon, 02 Jan 2023 04:25:31 GMT
cache-control: public, max-age=86400, no-transform
etag: "v15a9"
content-type: image/jpeg
age: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 0790db21e0dbda812497eb7f8551e28d
cd70c52bec33102cd0d34e404914dabec39b12a4
0c79b14a1631994a2c73e01a4e9d1db08669eed59801851de26b7643b3e612ec
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 07 Jan 2023 03:25:04 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
200 OK 0 B URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /$rpc/google.internal.waa.v1.Waa/GenerateIT HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-goog-api-key,x-user-agent
Referer: https://www.youtube.com/
Origin: https://www.youtube.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: https://www.youtube.com
vary: origin, referer, x-origin
access-control-allow-credentials: true
access-control-allow-methods: DELETE,GET,HEAD,OPTIONS,PATCH,POST,PUT
access-control-allow-headers: content-type,x-goog-api-key,x-user-agent
access-control-max-age: 3600
date: Sat, 07 Jan 2023 03:25:04 GMT
content-type: text/html
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
200 OK 114 B URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 39c741ae680d40ad378ba599b423030d
70acaafc9c841016a863ef64b59e4a33afc2ae1f
9dfb01c9baa98dd08c51605d50aadab6b3ff56d80948bead846776df5f265c1d
POST /$rpc/google.internal.waa.v1.Waa/GenerateIT HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Api-Key: AIzaSyDyT5W0Jh49F30Pqqtyfdf7pDLFKLJoAnw
Content-Type: application/json+protobuf
X-User-Agent: grpc-web-javascript/0.1
Content-Length: 851
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json+protobuf; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Sat, 07 Jan 2023 03:25:04 GMT
server: ESF
cache-control: private
content-length: 114
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.youtube.com
access-control-allow-credentials: true
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F53b10b23-bc94-4aaa-ad1a-5f2fe3dc175e.jpeg
200 OK 7.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F53b10b23-bc94-4aaa-ad1a-5f2fe3dc175e.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 38737d94d2cd65e9c29f76857ace4475
c833563644d1d9f66f86baea512ea3c0ce9597d0
ea22e6273f2a9e458ab44817881f764956c1f8635b52d4075eb6122cd341a26e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F53b10b23-bc94-4aaa-ad1a-5f2fe3dc175e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 7693
x-amzn-requestid: a016aacf-2b2b-496a-8546-c0ffb583f43f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: eO7TWGqPIAMFoQg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63b5d8e2-6e8e32bf78c6bc98676fc113;Sampled=0
x-amzn-remapped-date: Wed, 04 Jan 2023 19:52:02 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: 7LPlA2tPOJ5Cv8VXhADZAl-eRNDbs_DmomRLkD9yAh0B9hr38WuzpA==
via: 1.1 ddd913fbbe7367d44af4ac06097e7a2a.cloudfront.net (CloudFront), 1.1 31dfa94142c6eaf975b0e5454c00340a.cloudfront.net (CloudFront), 1.1 google
date: Fri, 06 Jan 2023 21:49:53 GMT
age: 20117
etag: "c833563644d1d9f66f86baea512ea3c0ce9597d0"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
www.youtube.com/embed/m-_7M09caQc?rel=0&modestbranding=0&controls=1&showinfo=1&fs=1&wmode=transparent
200 OK 0 B URL HTTP/2 www.youtube.com/embed/m-_7M09caQc?rel=0&modestbranding=0&controls=1&showinfo=1&fs=1&wmode=transparent
IP
GET /embed/m-_7M09caQc?rel=0&modestbranding=0&controls=1&showinfo=1&fs=1&wmode=transparent HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vidadigna.alboan.org/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html; charset=utf-8
x-content-type-options: nosniff
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Sat, 07 Jan 2023 03:25:02 GMT
strict-transport-security: max-age=31536000
cross-origin-opener-policy-report-only: same-origin; report-to="youtube_main"
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-platform=*, ch-ua-platform-version=*
cross-origin-resource-policy: cross-origin
report-to: {"group":"youtube_main","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube_main"}]}
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657?hl=en for more info."
content-encoding: br
server: ESF
x-xss-protection: 0
set-cookie: YSC=sJE5FlXdDLs; Domain=.youtube.com; Path=/; Secure; HttpOnly; SameSite=none
VISITOR_INFO1_LIVE=6Eh-fxMJi4k; Domain=.youtube.com; Expires=Thu, 06-Jul-2023 03:25:02 GMT; Path=/; Secure; HttpOnly; SameSite=none
CONSENT=PENDING+118; expires=Mon, 06-Jan-2025 03:25:02 GMT; path=/; domain=.youtube.com; Secure
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
82.223.31.192
216.58.207.202
23.36.76.226
93.184.220.29
0.0.0.0