| staging.hotelviladepremia.com/ | 167.86.73.18 | 301 Moved Permanently | 162 B |
URL HTTP/1.1staging.hotelviladepremia.com/ IP167.86.73.18:0
File typeHTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators Hash4f8e702cc244ec5d4de32740c0ecbd97 3adb1f02d5b6054de0046e367c1d687b6cdf7aff 9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
Analyzer | Verdict | Alert | fortinet | Phishing | |
GET / HTTP/1.1
Host: staging.hotelviladepremia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Sun, 16 Oct 2022 02:35:56 GMT
Content-Type: text/html
Content-Length: 162
Connection: keep-alive
Location: https://staging.hotelviladepremia.com/
|
|
| firefox.settings.services.mozilla.com/v1/ | 143.204.55.115 | 200 OK | 939 B |
URL HTTP/1.1firefox.settings.services.mozilla.com/v1/ IP143.204.55.115:0
File typeJSON data\012- , ASCII text, with very long lines (939), with no line terminators Hashbdb8b66c705a7b996496d780f50c00b5 403ae92039fcc933870f51f913f78ccaf9652256 c923ed2539f4ce9f4d43743c402fbb2060a52a4cbedbf14c5f5742ab718073d6
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Alert, Content-Length, Content-Type, Retry-After, Backoff
Cache-Control: max-age=3600
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Sun, 16 Oct 2022 01:50:22 GMT
Expires: Sun, 16 Oct 2022 02:39:11 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 475d4ecb64796af058573c6f1048e898.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 1vuHfj7t_GTGIsLIWboZqZ1V-emTCbZSY01dhCxfl7UEsdgvfTbn6Q==
Age: 2734
|
|
| r3.o.lencr.org/ | 23.36.77.32 | 200 OK | 503 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hash07b3389fc24c0f8eb82a9d05b546d17e 02716741b8952e548b9a223adbb3f16204eef2b2 25e13458988115ae1f8176cb2328dbfebd612eabebf256b4af64594d5e23d6ca
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "25E13458988115AE1F8176CB2328DBFEBD612EABEBF256B4AF64594D5E23D6CA"
Last-Modified: Sat, 15 Oct 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8543
Expires: Sun, 16 Oct 2022 04:58:19 GMT
Date: Sun, 16 Oct 2022 02:35:56 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 23.36.77.32 | 200 OK | 503 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hasha57d0f62d9bd29668b94a513fa45d18e d7cb263502e21f9235b4523a596e2138d22042ec df7acd4fe34cc9c4945a5d83ef538105a73dfc1a8b485bc7a62488c5406b1294
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DF7ACD4FE34CC9C4945A5D83EF538105A73DFC1A8B485BC7A62488C5406B1294"
Last-Modified: Sat, 15 Oct 2022 02:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14799
Expires: Sun, 16 Oct 2022 06:42:35 GMT
Date: Sun, 16 Oct 2022 02:35:56 GMT
Connection: keep-alive
|
|
| content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain | 34.160.144.191 | 200 OK | 5.3 kB |
URL HTTP/2content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain IP34.160.144.191:0
File typePEM certificate\012- , ASCII text Hash67d5a988edcda47bc3b3b3f65d32b4b6 d4f0e0da8b3690cc7da925026d3414b68c7d954f 55e4848e3ec682e808ce7ee70950f86179c43af4f81926d826a95edfda395a78
GET /chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: hnngjH43hhoSCUaGHV9pg/knqnpi5egBLqCqEAPaujJP/hHh5Im4/k7oQ19LVKL3Vr7/UEN899M=
x-amz-request-id: MDNX025H1WKFYZ5D
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sun, 16 Oct 2022 02:02:49 GMT
age: 1987
last-modified: Fri, 30 Sep 2022 18:50:55 GMT
etag: "67d5a988edcda47bc3b3b3f65d32b4b6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| r3.o.lencr.org/ | 23.36.77.32 | 200 OK | 503 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hashda2bf38122ff39d769e149b479de67ea 978a24865866a754239d0449bb65699ea9e33e8d 8b7cee751e3d6f379459eec4ef7d798079ff07b299d53afc7df508525a90d260
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "8B7CEE751E3D6F379459EEC4EF7D798079FF07B299D53AFC7DF508525A90D260"
Last-Modified: Sun, 16 Oct 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14441
Expires: Sun, 16 Oct 2022 06:36:37 GMT
Date: Sun, 16 Oct 2022 02:35:56 GMT
Connection: keep-alive
|
|
| contile.services.mozilla.com/v1/tiles | 34.117.237.239 | 200 OK | 12 B |
URL HTTP/2contile.services.mozilla.com/v1/tiles IP34.117.237.239:0
File typeJSON data\012- , ASCII text, with no line terminators Hash23e88fb7b99543fb33315b29b1fad9d6 a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 16 Oct 2022 02:35:56 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US | 143.204.55.115 | 200 OK | 329 B |
URL HTTP/1.1firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US IP143.204.55.115:0
File typeJSON data\012- , ASCII text, with very long lines (329), with no line terminators Hash0333b0655111aa68de771adfcc4db243 63f295a144ac87a7c8e23417626724eeca68a7eb 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Date: Sun, 16 Oct 2022 02:07:43 GMT
Cache-Control: max-age=3600
Expires: Sun, 16 Oct 2022 03:07:43 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 bcd5dadccb0831729969c938747ff79a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: hVL6oHy1rbiq5FX9te5WdJjUKItvXoEDP0FDgfwIgGCvT-RKwhjh8Q==
Age: 1693
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 471 B |
IP93.184.220.29:0
Hash301aafc13bc66315321d9476df002258 e6bfd29899543fcd4d1b332623757bbad355306f c64315afdfcf146b16942d981588ed912650472c5e2bba7b6f8dee396d820860
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1123
Cache-Control: max-age=107381
Content-Type: application/ocsp-response
Date: Sun, 16 Oct 2022 02:35:57 GMT
Etag: "634a6a1f-1d7"
Expires: Mon, 17 Oct 2022 08:25:38 GMT
Last-Modified: Sat, 15 Oct 2022 08:06:55 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 471
|
|
| push.services.mozilla.com/ | 34.215.107.141 | 101 Switching Protocols | 0 B |
URL HTTP/1.1push.services.mozilla.com/ IP34.215.107.141:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 3UcZz7Ubnyy+yYtGjefLZQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: htiLqJQpyIhYOFnWXPEPxbe90ds=
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 471 B |
IP142.250.74.3:0
Hash3039b3640f516724d3ec7e845c2f20d1 efa6a85767ab44afd629d1d82413770412abce0e d454aa6e955985b5b78d1a190b7abc035a1e6dea0c3c5f06220bad3031717249
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 16 Oct 2022 02:35:58 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 471 B |
IP142.250.74.3:0
Hashd3a7a0d85121715a9a3590df07145cd8 7da0f8eba172ed91b10f292054a913b1b33da66d e77042397dd2555f12bfd9ed17a663845ce9c657c852af3807c90581f91fbb90
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 16 Oct 2022 02:35:58 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 471 B |
IP142.250.74.3:0
Hashd3a7a0d85121715a9a3590df07145cd8 7da0f8eba172ed91b10f292054a913b1b33da66d e77042397dd2555f12bfd9ed17a663845ce9c657c852af3807c90581f91fbb90
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 16 Oct 2022 02:35:58 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 471 B |
IP142.250.74.3:0
Hashd3a7a0d85121715a9a3590df07145cd8 7da0f8eba172ed91b10f292054a913b1b33da66d e77042397dd2555f12bfd9ed17a663845ce9c657c852af3807c90581f91fbb90
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 16 Oct 2022 02:35:58 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 471 B |
IP142.250.74.3:0
Hashd3a7a0d85121715a9a3590df07145cd8 7da0f8eba172ed91b10f292054a913b1b33da66d e77042397dd2555f12bfd9ed17a663845ce9c657c852af3807c90581f91fbb90
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 16 Oct 2022 02:35:58 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| www.googletagmanager.com/gtag/js?id=UA-145338186-1 | 142.250.74.168 | 200 OK | 42 kB |
URL HTTP/2www.googletagmanager.com/gtag/js?id=UA-145338186-1 IP142.250.74.168:0
File typeASCII text, with very long lines (1952) Hashb94bed35c469a980048db955a3962d39 c5c27c3e6c2ccf2780afd96968c80ccc9755e941 6d500978909deaf83695dc8039ecc75a7c03124c127dd4843e24dcb12990e6f6
GET /gtag/js?id=UA-145338186-1 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://staging.hotelviladepremia.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sun, 16 Oct 2022 02:35:58 GMT
expires: Sun, 16 Oct 2022 02:35:58 GMT
cache-control: private, max-age=900
last-modified: Sun, 16 Oct 2022 00:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 42485
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| staging.hotelviladepremia.com/wp-content/plugins/smart-logo-showcase-lite/css/font-awesome.min.css?ver=1.1.9 | 167.86.73.18 | 200 OK | 6.7 kB |
URL HTTP/2staging.hotelviladepremia.com/wp-content/plugins/smart-logo-showcase-lite/css/font-awesome.min.css?ver=1.1.9 IP167.86.73.18:0
File typeASCII text, with very long lines (28900) Hash7b17b093a88cb14bfd1b792edaf3a2b1 d2f9c5a1f1e0517e69deebaafdec67050bc6e22e 861afafba5a97b989f628189489ce70e33f773f8ce12f54e526305e4622d8c06
GET /wp-content/plugins/smart-logo-showcase-lite/css/font-awesome.min.css?ver=1.1.9 HTTP/1.1
Host: staging.hotelviladepremia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://staging.hotelviladepremia.com/
Cookie: bNQZztypjxfPY=Vsbld2njU%40_yZ; qMuPUgcpZWl_IGx=HbyGIF7vU0z; tfhBnUHVz=IUDNnaBfW2%404%2Ag; PHPSESSID=tsuvfvh1tacp8c9smo5qu904s7; ls-popup-last-displayed=1665887757; ls-popup-4=1665887757
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 16 Oct 2022 02:35:58 GMT
content-type: text/css
last-modified: Mon, 05 Sep 2022 08:55:27 GMT
etag: W/"6315b97f-7187"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 471 B |
IP142.250.74.3:0
Hashb71c1dfe563720287179a76edf29c680 6096cc371998151d37a2f7698b0fe0371bb43269 7472e945b0ae9b967b68ec85dc8a005c74c2f5c63c68a9de142be69983062a90
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 16 Oct 2022 02:35:58 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| fonts.googleapis.com/css?family=Roboto%3A300%2C400%2C400italic%2C500%2C700%2C700italic%7CLora%3A300%2C400%2C400italic%2C500%2C700%2C700italic&ver=6.0.2 | 216.58.211.10 | 200 OK | 1.3 kB |
URL HTTP/2fonts.googleapis.com/css?family=Roboto%3A300%2C400%2C400italic%2C500%2C700%2C700italic%7CLora%3A300%2C400%2C400italic%2C500%2C700%2C700italic&ver=6.0.2 IP216.58.211.10:0
Hash4a4699d1ff4402e36b1da820c2f36a0a 6507d86f12c479899f583ac25041f9abbe8f4e24 1c59d24d05549a1cbb860311e949b78c23d68a7738e52aaf8160fc4dc8c478b8
GET /css?family=Roboto%3A300%2C400%2C400italic%2C500%2C700%2C700italic%7CLora%3A300%2C400%2C400italic%2C500%2C700%2C700italic&ver=6.0.2 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://staging.hotelviladepremia.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sun, 16 Oct 2022 02:35:58 GMT
date: Sun, 16 Oct 2022 02:35:58 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| www.googletagmanager.com/gtag/js?id=AW-718123990 | 142.250.74.168 | 200 OK | 47 kB |
URL HTTP/2www.googletagmanager.com/gtag/js?id=AW-718123990 IP142.250.74.168:0
File typeASCII text, with very long lines (1934) Hash4617e6a02d6b9e59a23997bb44651977 75c0835402e8a2b1c548e2bc13616f33e2f25c6e ed13bdcfb15b71f1a09aa54a420eb6c24a4f52f326b64fe95ff4479d34712e72
GET /gtag/js?id=AW-718123990 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://staging.hotelviladepremia.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sun, 16 Oct 2022 02:35:58 GMT
expires: Sun, 16 Oct 2022 02:35:58 GMT
cache-control: private, max-age=900
last-modified: Sun, 16 Oct 2022 00:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 46757
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| r3.o.lencr.org/ | 23.36.77.32 | 200 OK | 503 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hashc573c53ad104eb7f78f9146ea13e7e22 3e7d57f52b2436d59ef69cd704c33fcf2608e723 598fddce2c406933b1b7b43d429c15b20b68c2900d38a0cf79c558fbcd9accee
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "598FDDCE2C406933B1B7B43D429C15B20B68C2900D38A0CF79C558FBCD9ACCEE"
Last-Modified: Thu, 13 Oct 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14374
Expires: Sun, 16 Oct 2022 06:35:32 GMT
Date: Sun, 16 Oct 2022 02:35:58 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 23.36.77.32 | 200 OK | 503 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hashc573c53ad104eb7f78f9146ea13e7e22 3e7d57f52b2436d59ef69cd704c33fcf2608e723 598fddce2c406933b1b7b43d429c15b20b68c2900d38a0cf79c558fbcd9accee
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "598FDDCE2C406933B1B7B43D429C15B20B68C2900D38A0CF79C558FBCD9ACCEE"
Last-Modified: Thu, 13 Oct 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14374
Expires: Sun, 16 Oct 2022 06:35:32 GMT
Date: Sun, 16 Oct 2022 02:35:58 GMT
Connection: keep-alive
|
|
| cdnjs.cloudflare.com/ajax/libs/moment.js/2.22.2/moment-with-locales.min.js?ver=6.0.2 | 104.17.25.14 | 200 OK | 54 kB |
URL HTTP/2cdnjs.cloudflare.com/ajax/libs/moment.js/2.22.2/moment-with-locales.min.js?ver=6.0.2 IP104.17.25.14:0
File typeASCII text, with very long lines (65536), with no line terminators Hashda708ff34bb8b91823e05f3dc9c47fc8 776a5586cea14fb983ebbeb47089f23166a7e3a5 c1e79918a76dbe401de5ca772209c8af7c134f43e71f17433a1ac82c255ccf12
GET /ajax/libs/moment.js/2.22.2/moment-with-locales.min.js?ver=6.0.2 HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://staging.hotelviladepremia.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 16 Oct 2022 02:35:58 GMT
content-type: application/javascript; charset=utf-8
content-length: 53699
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03f26-4fc01"
last-modified: Mon, 04 May 2020 16:13:26 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 3230680
expires: Fri, 06 Oct 2023 02:35:58 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=GtsUky1BMk0homOU0IAFTDLnxjJJ3zOdlYgVscAUQtsrtllfBR9yVf9seqtaUZ5vi4nzSV%2BynJUrBm%2FMYYGj0N0Mr2yFE4fFaY2wYGoflJXRh53OtnbH%2FdENm78k36PjCuseOuhc"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 75ad677c7b1bb51b-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| r3.o.lencr.org/ | 23.36.77.32 | 200 OK | 503 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hashc573c53ad104eb7f78f9146ea13e7e22 3e7d57f52b2436d59ef69cd704c33fcf2608e723 598fddce2c406933b1b7b43d429c15b20b68c2900d38a0cf79c558fbcd9accee
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "598FDDCE2C406933B1B7B43D429C15B20B68C2900D38A0CF79C558FBCD9ACCEE"
Last-Modified: Thu, 13 Oct 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14374
Expires: Sun, 16 Oct 2022 06:35:32 GMT
Date: Sun, 16 Oct 2022 02:35:58 GMT
Connection: keep-alive
|
|
| staging.hotelviladepremia.com/wp-content/plugins/wp-gdpr-compliance/Assets/css/front.css?ver=1662368303 | 167.86.73.18 | 200 OK | 4.5 kB |
URL HTTP/2staging.hotelviladepremia.com/wp-content/plugins/wp-gdpr-compliance/Assets/css/front.css?ver=1662368303 IP167.86.73.18:0
File typeUnicode text, UTF-8 text, with very long lines (26316), with no line terminators Hash88a757e8f81ce09e4194bb123becddb4 3c31fd8eb2c67baf3f2e9b6e0860ed1943961afd 34b7196164af8a8b0f47a407beee10952082cce747b78c006a5ace312275b28a
Analyzer | Verdict | Alert | fortinet | Phishing | |
GET /wp-content/plugins/wp-gdpr-compliance/Assets/css/front.css?ver=1662368303 HTTP/1.1
Host: staging.hotelviladepremia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://staging.hotelviladepremia.com/
Cookie: bNQZztypjxfPY=Vsbld2njU%40_yZ; qMuPUgcpZWl_IGx=HbyGIF7vU0z; tfhBnUHVz=IUDNnaBfW2%404%2Ag; PHPSESSID=tsuvfvh1tacp8c9smo5qu904s7; ls-popup-last-displayed=1665887757; ls-popup-4=1665887757
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 16 Oct 2022 02:35:58 GMT
content-type: text/css
last-modified: Mon, 05 Sep 2022 08:58:23 GMT
etag: W/"6315ba2f-66d0"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| r3.o.lencr.org/ | 23.36.77.32 | 200 OK | 503 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hash467c98217b3c90dedabafc249207b8eb 8a0756b2c6003aaaba58cc75be784e8e283feb45 82b3ac154fd4347d2a7827d48ff7f0ccc8c0abe562cb6796a52b02e7cc9b6467
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "82B3AC154FD4347D2A7827D48FF7F0CCC8C0ABE562CB6796A52B02E7CC9B6467"
Last-Modified: Sat, 15 Oct 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5018
Expires: Sun, 16 Oct 2022 03:59:36 GMT
Date: Sun, 16 Oct 2022 02:35:58 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 23.36.77.32 | 200 OK | 503 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hash467c98217b3c90dedabafc249207b8eb 8a0756b2c6003aaaba58cc75be784e8e283feb45 82b3ac154fd4347d2a7827d48ff7f0ccc8c0abe562cb6796a52b02e7cc9b6467
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "82B3AC154FD4347D2A7827D48FF7F0CCC8C0ABE562CB6796A52B02E7CC9B6467"
Last-Modified: Sat, 15 Oct 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5018
Expires: Sun, 16 Oct 2022 03:59:36 GMT
Date: Sun, 16 Oct 2022 02:35:58 GMT
Connection: keep-alive
|
|
| staging.hotelviladepremia.com/wp-content/plugins/cookie-law-info/public/css/cookie-law-info-gdpr.css?ver=2.1.2 | 167.86.73.18 | 200 OK | 14 kB |
URL HTTP/2staging.hotelviladepremia.com/wp-content/plugins/cookie-law-info/public/css/cookie-law-info-gdpr.css?ver=2.1.2 IP167.86.73.18:0
Hash5f34a29097aca55324fd38cfd1b8c09b 1aa0e6f594c4c8e530cc9d3f23533d77bfbce30b a20d9a9c7386fd8003f7adadc52ecfdbf3bf3a6c7cc20d7e0fa3f9520048c22d
Analyzer | Verdict | Alert | fortinet | Phishing | |
GET /wp-content/plugins/cookie-law-info/public/css/cookie-law-info-gdpr.css?ver=2.1.2 HTTP/1.1
Host: staging.hotelviladepremia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://staging.hotelviladepremia.com/
Cookie: bNQZztypjxfPY=Vsbld2njU%40_yZ; qMuPUgcpZWl_IGx=HbyGIF7vU0z; tfhBnUHVz=IUDNnaBfW2%404%2Ag; PHPSESSID=tsuvfvh1tacp8c9smo5qu904s7; ls-popup-last-displayed=1665887757; ls-popup-4=1665887757
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 16 Oct 2022 02:35:58 GMT
content-type: text/css
last-modified: Mon, 05 Sep 2022 08:48:46 GMT
etag: W/"6315b7ee-6a71"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4c75eb52-0ce4-4b74-92b3-a3670b609024.jpeg | 34.120.237.76 | 200 OK | 8.6 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4c75eb52-0ce4-4b74-92b3-a3670b609024.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash0dee97568c5306e8334fcc9dce195ccb 194a7c40cdfae31844fa711d53142ea98f007a92 bf4e94f2062baf118da68b2fe3f5f38e20f21fe85900cdc69509119e757707c4
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4c75eb52-0ce4-4b74-92b3-a3670b609024.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8579
x-amzn-requestid: c473888c-7989-4b4d-a5e7-f5f3149e145c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: aEL5NEfdoAMFaWA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-634b26a1-4a1d1eb16fc64022768f622d;Sampled=0
x-amzn-remapped-date: Sat, 15 Oct 2022 21:31:13 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: z6PLkUePwJv5_jlSqRfz7hee6rhpsiQ-xqiY_UgAU860NABjaTAN5A==
via: 1.1 e5af640ced3aa8764b82c4bc3f7af38e.cloudfront.net (CloudFront), 1.1 cd858042f70b416ca05e042acf3908a4.cloudfront.net (CloudFront), 1.1 google
date: Sat, 15 Oct 2022 22:09:02 GMT
age: 16016
etag: "194a7c40cdfae31844fa711d53142ea98f007a92"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4eb39673-9b77-4a82-8d34-c0e1405dca47.jpeg | 34.120.237.76 | 200 OK | 8.8 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4eb39673-9b77-4a82-8d34-c0e1405dca47.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hashc0cabcd5467191890163abd8c081c0cb 37c76a9fe6833ee0fc50d92b2f8e32fc44d43e54 b3b17175a7899e8876d93a83271f9319b0cd76af7e091837b87aaba2ac2d3920
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4eb39673-9b77-4a82-8d34-c0e1405dca47.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8757
x-amzn-requestid: c384db56-c2e0-4a61-ab03-0688422929c6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: aEL3_ESBIAMFUIQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-634b2699-1a0f51aa005d4a5e4f4ec4df;Sampled=0
x-amzn-remapped-date: Sat, 15 Oct 2022 21:31:05 GMT
x-amz-cf-pop: SFO5-P2, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: Kv-E67FiKXWHds-RntkYWG7Y0jduRHHWP_9H-8PMvDtJuF8n2jVfng==
via: 1.1 58f9a50682bb94842197f3e957919c60.cloudfront.net (CloudFront), 1.1 989017835f43d594873bde5a7ee7fe5e.cloudfront.net (CloudFront), 1.1 google
date: Sat, 15 Oct 2022 22:02:04 GMT
age: 16434
etag: "37c76a9fe6833ee0fc50d92b2f8e32fc44d43e54"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 280 B |
IP93.184.220.29:0
Hash5fada94ec59c5b97b9510ed352eae4fe 50c92953754d931fd10d4789a2d3a651f042551e 71356493f95aaee7069bb3b06b02e9709a630276e702b9d0b418f9cc3817a367
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1362
Cache-Control: max-age=148303
Content-Type: application/ocsp-response
Date: Sun, 16 Oct 2022 02:35:58 GMT
Etag: "634b090c-118"
Expires: Mon, 17 Oct 2022 19:47:41 GMT
Last-Modified: Sat, 15 Oct 2022 19:25:00 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 280
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 471 B |
IP142.250.74.3:0
Hash3039b3640f516724d3ec7e845c2f20d1 efa6a85767ab44afd629d1d82413770412abce0e d454aa6e955985b5b78d1a190b7abc035a1e6dea0c3c5f06220bad3031717249
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 16 Oct 2022 02:35:58 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 471 B |
IP142.250.74.3:0
Hashd3a7a0d85121715a9a3590df07145cd8 7da0f8eba172ed91b10f292054a913b1b33da66d e77042397dd2555f12bfd9ed17a663845ce9c657c852af3807c90581f91fbb90
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 16 Oct 2022 02:35:58 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc72044c0-fdd0-4da5-aa61-159d966f040f.jpeg | 34.120.237.76 | 200 OK | 7.1 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc72044c0-fdd0-4da5-aa61-159d966f040f.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash3e86d948bf8ed2f5918f8323b043ad5f 41548e231e2358d3453e7630f0d07a645cc25ddc 6602f2a020618234d34a9b6cd107398f0405de6dd14227e265aca84b38eaa5cc
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc72044c0-fdd0-4da5-aa61-159d966f040f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7075
x-amzn-requestid: 254a8860-b3bf-4e8d-a08d-31effa209a6e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: aEL5iGQqIAMFmkA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-634b26a3-1a2820f550f35bf830444c22;Sampled=0
x-amzn-remapped-date: Sat, 15 Oct 2022 21:31:15 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: noeZThjNw_knj4oZ39f_xFQl_eFhT_iJ5ki1eaCv873z5WThwd7gXA==
via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 b13f158bdf9805ca47e07c0c35870c12.cloudfront.net (CloudFront), 1.1 google
date: Sat, 15 Oct 2022 21:39:58 GMT
age: 17760
etag: "41548e231e2358d3453e7630f0d07a645cc25ddc"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F223c148f-e76c-4625-8d19-0d3ef6b3ab03.jpeg | 34.120.237.76 | 200 OK | 9.9 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F223c148f-e76c-4625-8d19-0d3ef6b3ab03.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash94dbefe5b048c0bebab2485de87367a1 a0df1068e09270f0b5ab7529dc31cc533a244cdd e6e10ade9f819cccc5a36790016d41bc5ccb02512075f750afc136486d0fbc2c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F223c148f-e76c-4625-8d19-0d3ef6b3ab03.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9904
x-amzn-requestid: b1678079-b51b-4b98-a44c-4024ad28451d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: aEL5XFbAIAMF08A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-634b26a2-1178963d495ce7232844459d;Sampled=0
x-amzn-remapped-date: Sat, 15 Oct 2022 21:31:14 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: PhNaJFavGm6uhnz7Qx7Y8e2dvRedDAKiAIdGlvdIL0BlvGmVRSZlnA==
via: 1.1 d1151317ba32afe0e6370fd69fed222e.cloudfront.net (CloudFront), 1.1 ebe4011a81a36e2bf678f69ce1711330.cloudfront.net (CloudFront), 1.1 google
date: Sat, 15 Oct 2022 21:37:09 GMT
age: 17929
etag: "a0df1068e09270f0b5ab7529dc31cc533a244cdd"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6da0eaa5-24ec-42bb-8269-d235104e844f.jpeg | 34.120.237.76 | 200 OK | 9.6 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6da0eaa5-24ec-42bb-8269-d235104e844f.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash440811a19987ddee099df289d9b61e79 ce0f78803a81b1c6b3067c78b75bc6f1d5a7f7c1 1309e9dcb36858de70ef82900ec1ad429fbb795ddb9823fd1c290b18f4e2c1a3
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6da0eaa5-24ec-42bb-8269-d235104e844f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9623
x-amzn-requestid: b3d5bd8d-111b-4d50-9720-71f72c62f860
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Z7Q8oFLRIAMFrEw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6347951d-613e5e810f420e4c0ba3e6f6;Sampled=0
x-amzn-remapped-date: Thu, 13 Oct 2022 04:33:33 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: OA9iHADyiam26eo88jYDECifkqeBaTjsuoeHD2YOy0aZJZEGhG-xow==
via: 1.1 0aebf3fe433ff96e68d785fad4ea4c0e.cloudfront.net (CloudFront), 1.1 6396e88c437c096ef98930ce29f731a2.cloudfront.net (CloudFront), 1.1 google
date: Sat, 15 Oct 2022 21:37:22 GMT
age: 17916
etag: "ce0f78803a81b1c6b3067c78b75bc6f1d5a7f7c1"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 471 B |
IP142.250.74.3:0
Hashb71c1dfe563720287179a76edf29c680 6096cc371998151d37a2f7698b0fe0371bb43269 7472e945b0ae9b967b68ec85dc8a005c74c2f5c63c68a9de142be69983062a90
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 16 Oct 2022 02:35:58 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| hotelviladepremia.com/wp-content/uploads/2019/05/divider.png | 167.86.73.18 | 200 OK | 255 B |
URL HTTP/2hotelviladepremia.com/wp-content/uploads/2019/05/divider.png IP167.86.73.18:0
File typePNG image data, 7 x 73, 8-bit colormap, non-interlaced\012- data Hashe8db90c766ab45c9814f1b57dc43fb38 f3f808247e74b74c494b8ed64ea0e9ee52e3b783 fc76a86b7bd274b72d60d8ac1a80f3391718355940f12db3c628fa823f9556b0
GET /wp-content/uploads/2019/05/divider.png HTTP/1.1
Host: hotelviladepremia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://staging.hotelviladepremia.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 16 Oct 2022 02:35:59 GMT
content-type: image/png
content-length: 255
last-modified: Fri, 19 Jul 2019 10:01:41 GMT
etag: "5d319505-ff"
pragma: public
cache-control: max-age=31536000, public
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| hotelviladepremia.com/wp-content/uploads/2019/05/star.png | 167.86.73.18 | 200 OK | 542 B |
URL HTTP/2hotelviladepremia.com/wp-content/uploads/2019/05/star.png IP167.86.73.18:0
File typePNG image data, 88 x 54, 8-bit colormap, non-interlaced\012- data Hashf256ee0ce386510627ee99bddcdc8f35 97cf0a026da82db827ef25baefce4159f48c4f1d 0986daa49a27f439ef6e833a3b8440273d2c58f03b888231e6f391739e914cd5
GET /wp-content/uploads/2019/05/star.png HTTP/1.1
Host: hotelviladepremia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://staging.hotelviladepremia.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 16 Oct 2022 02:35:59 GMT
content-type: image/png
content-length: 542
last-modified: Fri, 19 Jul 2019 09:58:22 GMT
etag: "5d31943e-21e"
pragma: public
cache-control: max-age=31536000, public
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| staging.hotelviladepremia.com/wp-content/themes/betheme/images/logo/logo.png | 167.86.73.18 | 200 OK | 1.3 kB |
URL HTTP/2staging.hotelviladepremia.com/wp-content/themes/betheme/images/logo/logo.png IP167.86.73.18:0
File typePNG image data, 129 x 30, 8-bit colormap, non-interlaced\012- data Hash106247894ca5953b46daadc299df224f 044d44ffdbc651cfeba424212358b1142e373a39 00f31e318f7681fa708a4aeb998b713ede05ba9f2bab7058cf9275ee2a26fb8f
GET /wp-content/themes/betheme/images/logo/logo.png HTTP/1.1
Host: staging.hotelviladepremia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://staging.hotelviladepremia.com/
Cookie: bNQZztypjxfPY=Vsbld2njU%40_yZ; qMuPUgcpZWl_IGx=HbyGIF7vU0z; tfhBnUHVz=IUDNnaBfW2%404%2Ag; PHPSESSID=tsuvfvh1tacp8c9smo5qu904s7; ls-popup-last-displayed=1665887757; ls-popup-4=1665887757
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 16 Oct 2022 02:35:59 GMT
content-type: image/png
content-length: 1317
last-modified: Mon, 27 May 2019 12:03:41 GMT
etag: "5cebd21d-525"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| staging.hotelviladepremia.com/wp-content/uploads/2019/12/109-hotel-5.png | 167.86.73.18 | 200 OK | 7.4 kB |
URL HTTP/2staging.hotelviladepremia.com/wp-content/uploads/2019/12/109-hotel-5.png IP167.86.73.18:0
File typePNG image data, 512 x 512, 8-bit colormap, non-interlaced\012- data Hash1dc0f7e24a3dd59cd207fc37c8ac37c5 e3d430c0da06a46e02bed47507df04ab147d3f7b d3c3ff66cdb1793644102729a9721101d7382a860aa067f228120766c6a1506a
GET /wp-content/uploads/2019/12/109-hotel-5.png HTTP/1.1
Host: staging.hotelviladepremia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://staging.hotelviladepremia.com/
Cookie: bNQZztypjxfPY=Vsbld2njU%40_yZ; qMuPUgcpZWl_IGx=HbyGIF7vU0z; tfhBnUHVz=IUDNnaBfW2%404%2Ag; PHPSESSID=tsuvfvh1tacp8c9smo5qu904s7; ls-popup-last-displayed=1665887757; ls-popup-4=1665887757
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 16 Oct 2022 02:35:59 GMT
content-type: image/png
content-length: 7410
last-modified: Fri, 13 Dec 2019 17:27:06 GMT
etag: "5df3c9ea-1cf2"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| staging.hotelviladepremia.com/wp-content/uploads/2019/12/016-payment-1.png | 167.86.73.18 | 200 OK | 8.3 kB |
URL HTTP/2staging.hotelviladepremia.com/wp-content/uploads/2019/12/016-payment-1.png IP167.86.73.18:0
File typePNG image data, 512 x 512, 8-bit colormap, non-interlaced\012- data Hash5bedd30f623b0534d2e5580378a35606 2e478f89f40100e3930d0637971040c5a6b47db1 c72c674d1fc633192897ba5c0b25609e76a275de4b6f992b8fc5bbfa80b7628e
GET /wp-content/uploads/2019/12/016-payment-1.png HTTP/1.1
Host: staging.hotelviladepremia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://staging.hotelviladepremia.com/
Cookie: bNQZztypjxfPY=Vsbld2njU%40_yZ; qMuPUgcpZWl_IGx=HbyGIF7vU0z; tfhBnUHVz=IUDNnaBfW2%404%2Ag; PHPSESSID=tsuvfvh1tacp8c9smo5qu904s7; ls-popup-last-displayed=1665887757; ls-popup-4=1665887757
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 16 Oct 2022 02:35:59 GMT
content-type: image/png
content-length: 8338
last-modified: Fri, 13 Dec 2019 17:26:57 GMT
etag: "5df3c9e1-2092"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| staging.hotelviladepremia.com/wp-content/uploads/2019/12/118-verified-1.png | 167.86.73.18 | 200 OK | 6.5 kB |
URL HTTP/2staging.hotelviladepremia.com/wp-content/uploads/2019/12/118-verified-1.png IP167.86.73.18:0
File typePNG image data, 512 x 512, 8-bit colormap, non-interlaced\012- data Hashf2f413b4f6b3070c12dbf9bf244f5c9f 21f743c0b77180ce11537274d0f93a1f8b798d60 5cdc66dcd9f5090919edea305e369a27e7237032b721a310f73e7ec0a5e8eb96
GET /wp-content/uploads/2019/12/118-verified-1.png HTTP/1.1
Host: staging.hotelviladepremia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://staging.hotelviladepremia.com/
Cookie: bNQZztypjxfPY=Vsbld2njU%40_yZ; qMuPUgcpZWl_IGx=HbyGIF7vU0z; tfhBnUHVz=IUDNnaBfW2%404%2Ag; PHPSESSID=tsuvfvh1tacp8c9smo5qu904s7; ls-popup-last-displayed=1665887757; ls-popup-4=1665887757
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 16 Oct 2022 02:35:59 GMT
content-type: image/png
content-length: 6501
last-modified: Fri, 13 Dec 2019 17:27:10 GMT
etag: "5df3c9ee-1965"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| staging.hotelviladepremia.com/wp-content/uploads/2019/12/057-real-estate.png | 167.86.73.18 | 200 OK | 7.7 kB |
URL HTTP/2staging.hotelviladepremia.com/wp-content/uploads/2019/12/057-real-estate.png IP167.86.73.18:0
File typePNG image data, 512 x 512, 8-bit colormap, non-interlaced\012- data Hashdff43fd7a24c10adb8f8d0bb910ac287 303c815920b4772683c21f70b3603c7d88d953bb ebf8c0555897148ffbcb6f5bd59a833af00af286baff2a7a1b8c3692436c562e
GET /wp-content/uploads/2019/12/057-real-estate.png HTTP/1.1
Host: staging.hotelviladepremia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://staging.hotelviladepremia.com/
Cookie: bNQZztypjxfPY=Vsbld2njU%40_yZ; qMuPUgcpZWl_IGx=HbyGIF7vU0z; tfhBnUHVz=IUDNnaBfW2%404%2Ag; PHPSESSID=tsuvfvh1tacp8c9smo5qu904s7; ls-popup-last-displayed=1665887757; ls-popup-4=1665887757
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 16 Oct 2022 02:35:59 GMT
content-type: image/png
content-length: 7655
last-modified: Fri, 13 Dec 2019 17:27:00 GMT
etag: "5df3c9e4-1de7"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| staging.hotelviladepremia.com/wp-content/uploads/2019/12/077-like.png | 167.86.73.18 | 200 OK | 7.6 kB |
URL HTTP/2staging.hotelviladepremia.com/wp-content/uploads/2019/12/077-like.png IP167.86.73.18:0
File typePNG image data, 512 x 512, 8-bit colormap, non-interlaced\012- data Hash83c6399dad3f08149cced225690ec587 08e224af078b00b7733c38cfcb0e637f07d31577 cf4335c4d1d5c623298f6b08ffc30a480ae54f2e5b0993a9611ff4c0eb8ce3d9
GET /wp-content/uploads/2019/12/077-like.png HTTP/1.1
Host: staging.hotelviladepremia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://staging.hotelviladepremia.com/
Cookie: bNQZztypjxfPY=Vsbld2njU%40_yZ; qMuPUgcpZWl_IGx=HbyGIF7vU0z; tfhBnUHVz=IUDNnaBfW2%404%2Ag; PHPSESSID=tsuvfvh1tacp8c9smo5qu904s7; ls-popup-last-displayed=1665887757; ls-popup-4=1665887757
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 16 Oct 2022 02:35:59 GMT
content-type: image/png
content-length: 7634
last-modified: Fri, 13 Dec 2019 17:27:03 GMT
etag: "5df3c9e7-1dd2"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| staging.hotelviladepremia.com/wp-content/uploads/2019/12/1010377-1630x860.jpg | 167.86.73.18 | 200 OK | 309 kB |
URL HTTP/2staging.hotelviladepremia.com/wp-content/uploads/2019/12/1010377-1630x860.jpg IP167.86.73.18:0
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=8, manufacturer=Panasonic, model=DMC-G80, xresolution=128, yresolution=136, resolutionunit=2, software=Capture One Pro 12.0 Windows, copyright=David Martinez Fernandez], baseline, precision 8, 1630x860, components 3\012- data Size309 kB (309166 bytes) Hashc0c2dc69405fffb43f4cfd8133885f39 62a03bfc0d70b4d0cb27cb1cc730502e70a1ad9f 0cc651d7466d872bf29d0511514cfe6933b45fe3abccf3cc903ce4923597e4fe
GET /wp-content/uploads/2019/12/1010377-1630x860.jpg HTTP/1.1
Host: staging.hotelviladepremia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://staging.hotelviladepremia.com/
Cookie: bNQZztypjxfPY=Vsbld2njU%40_yZ; qMuPUgcpZWl_IGx=HbyGIF7vU0z; tfhBnUHVz=IUDNnaBfW2%404%2Ag; PHPSESSID=tsuvfvh1tacp8c9smo5qu904s7; ls-popup-last-displayed=1665887757; ls-popup-4=1665887757
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 16 Oct 2022 02:35:59 GMT
content-type: image/jpeg
content-length: 309166
last-modified: Wed, 18 Dec 2019 18:33:30 GMT
etag: "5dfa70fa-4b7ae"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| hotelviladepremia.com/wp-content/uploads/2019/07/sin-t%C3%ADtulo-19.jpg | 167.86.73.18 | 200 OK | 1.4 MB |
URL HTTP/2hotelviladepremia.com/wp-content/uploads/2019/07/sin-t%C3%ADtulo-19.jpg IP167.86.73.18:0
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=8, manufacturer=FUJIFILM, model=X-T1, xresolution=126, yresolution=134, resolutionunit=2, software=Adobe Photoshop Lightroom Classic 8.2 (Windows), datetime=2019:05:23 12:39:37], baseline, precision 8, 4896x3264, components 3\012- data Size1.4 MB (1409126 bytes) Hashf1981202c54cf2fe28be20e898b65cd5 a081c3ad3c674932c82fd2b1987a5138e1d97141 3f8b772f793eac6c65d860d52c0d5c3f2784f0649ff84a7b15e1b7aee3e2a46b
GET /wp-content/uploads/2019/07/sin-t%C3%ADtulo-19.jpg HTTP/1.1
Host: hotelviladepremia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://staging.hotelviladepremia.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 16 Oct 2022 02:35:59 GMT
content-type: image/jpeg
content-length: 1409126
last-modified: Fri, 19 Jul 2019 10:26:04 GMT
etag: "5d319abc-158066"
pragma: public
cache-control: max-age=31536000, public
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| staging.hotelviladepremia.com/wp-includes/js/jquery/ui/accordion.min.js?ver=1.13.1 | 167.86.73.18 | 200 OK | 58 kB |
URL HTTP/2staging.hotelviladepremia.com/wp-includes/js/jquery/ui/accordion.min.js?ver=1.13.1 IP167.86.73.18:0
File typeASCII text, with very long lines (8632) Hash71d86d2544d677479f4972a89741819c d51913028b7f1e3b4f51a5a167ad3d026b514b97 333b3dd020e1612550c6b1801e4e15effa8f35b1dad32f28d3e67a8a2b8eea56
GET /wp-includes/js/jquery/ui/accordion.min.js?ver=1.13.1 HTTP/1.1
Host: staging.hotelviladepremia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://staging.hotelviladepremia.com/
Cookie: bNQZztypjxfPY=Vsbld2njU%40_yZ; qMuPUgcpZWl_IGx=HbyGIF7vU0z; tfhBnUHVz=IUDNnaBfW2%404%2Ag; PHPSESSID=tsuvfvh1tacp8c9smo5qu904s7; ls-popup-last-displayed=1665887757; ls-popup-4=1665887757
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 16 Oct 2022 02:35:59 GMT
content-type: application/javascript
last-modified: Mon, 05 Sep 2022 09:40:11 GMT
etag: W/"6315c3fb-226e"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| staging.hotelviladepremia.com/wp-content/themes/betheme/js/plugins.js?ver=21.2.2 | 167.86.73.18 | 200 OK | 55 kB |
URL HTTP/2staging.hotelviladepremia.com/wp-content/themes/betheme/js/plugins.js?ver=21.2.2 IP167.86.73.18:0
File typeASCII text, with very long lines (32011) Hashcad57305c153480c3134d825cfa65295 d8e8adce3fa12de5920959875fc0a083670c1a62 dc518524bd5d166eb6541c9e22721e6f1be9262530b190483268b6d3b2f345cd
Analyzer | Verdict | Alert | fortinet | Phishing | |
GET /wp-content/themes/betheme/js/plugins.js?ver=21.2.2 HTTP/1.1
Host: staging.hotelviladepremia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://staging.hotelviladepremia.com/
Cookie: bNQZztypjxfPY=Vsbld2njU%40_yZ; qMuPUgcpZWl_IGx=HbyGIF7vU0z; tfhBnUHVz=IUDNnaBfW2%404%2Ag; PHPSESSID=tsuvfvh1tacp8c9smo5qu904s7; ls-popup-last-displayed=1665887757; ls-popup-4=1665887757
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 16 Oct 2022 02:35:59 GMT
content-type: application/javascript
last-modified: Mon, 27 May 2019 12:03:46 GMT
etag: W/"5cebd222-2f7c3"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| staging.hotelviladepremia.com/wp-content/themes/betheme/assets/jplayer/css/jplayer.blue.monday.css?ver=21.2.2 | 167.86.73.18 | 200 OK | 2.4 kB |
URL HTTP/2staging.hotelviladepremia.com/wp-content/themes/betheme/assets/jplayer/css/jplayer.blue.monday.css?ver=21.2.2 IP167.86.73.18:0
Hashf072479b1cc4dcd8430f76447c1529cc 413ef4f9c795153d269b66a087f41b42a623d35c 88fb2a2183d9642bfdad0e06e697e99657260cce893d7c952e953f15544ea229
GET /wp-content/themes/betheme/assets/jplayer/css/jplayer.blue.monday.css?ver=21.2.2 HTTP/1.1
Host: staging.hotelviladepremia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://staging.hotelviladepremia.com/
Cookie: bNQZztypjxfPY=Vsbld2njU%40_yZ; qMuPUgcpZWl_IGx=HbyGIF7vU0z; tfhBnUHVz=IUDNnaBfW2%404%2Ag; PHPSESSID=tsuvfvh1tacp8c9smo5qu904s7; ls-popup-last-displayed=1665887757; ls-popup-4=1665887757
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 16 Oct 2022 02:35:59 GMT
content-type: text/css
last-modified: Mon, 27 May 2019 12:03:13 GMT
etag: W/"5cebd201-266a"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| staging.hotelviladepremia.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.0 | 167.86.73.18 | 200 OK | 31 kB |
URL HTTP/2staging.hotelviladepremia.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.0 IP167.86.73.18:0
File typeASCII text, with very long lines (65447) Hashd323f26be6827f3e19d4aa285ca32b74 1afc0ec667cb6c1ef422df4bdd3190ecd6f780f5 28965ec10bbd9d8051bc40a8d1225a67e0e4a896b7b62cac85906ba4ba74c7ee
GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.0 HTTP/1.1
Host: staging.hotelviladepremia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://staging.hotelviladepremia.com/
Cookie: bNQZztypjxfPY=Vsbld2njU%40_yZ; qMuPUgcpZWl_IGx=HbyGIF7vU0z; tfhBnUHVz=IUDNnaBfW2%404%2Ag; PHPSESSID=tsuvfvh1tacp8c9smo5qu904s7; ls-popup-last-displayed=1665887757; ls-popup-4=1665887757
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 16 Oct 2022 02:35:58 GMT
content-type: application/javascript
last-modified: Mon, 05 Sep 2022 09:40:11 GMT
etag: W/"6315c3fb-15db1"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 471 B |
IP142.250.74.3:0
Hash254c0f79943125eff7adbf9cb30d2b46 e24342391b47646fbbe9fa6a26dd95c0eadda7e5 35052bd13c72ac6c33ec3aa08ae793c5e12d2edeec5c91c9e2b2ac4762c3fc67
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 16 Oct 2022 02:35:59 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| staging.hotelviladepremia.com/wp-content/themes/betheme/js/scripts.js?ver=21.2.2 | 167.86.73.18 | 200 OK | 31 kB |
URL HTTP/2staging.hotelviladepremia.com/wp-content/themes/betheme/js/scripts.js?ver=21.2.2 IP167.86.73.18:0
Hash5006979a59bd3635cd5e6db5b6b685f4 da0e11e803dd23abb1bc249fb71301ff45e860ab ff087705d065cd929f84933559cfcf1047bf0f100eea6a95b6d4587dd4d0714e
Analyzer | Verdict | Alert | fortinet | Phishing | |
GET /wp-content/themes/betheme/js/scripts.js?ver=21.2.2 HTTP/1.1
Host: staging.hotelviladepremia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://staging.hotelviladepremia.com/
Cookie: bNQZztypjxfPY=Vsbld2njU%40_yZ; qMuPUgcpZWl_IGx=HbyGIF7vU0z; tfhBnUHVz=IUDNnaBfW2%404%2Ag; PHPSESSID=tsuvfvh1tacp8c9smo5qu904s7; ls-popup-last-displayed=1665887757; ls-popup-4=1665887757
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 16 Oct 2022 02:35:59 GMT
content-type: application/javascript
last-modified: Mon, 27 May 2019 12:03:45 GMT
etag: W/"5cebd221-10b73"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| staging.hotelviladepremia.com/wp-content/plugins/nextend-smart-slider3-pro/library/media/dist/smartslider-frontend.min.js?1576586448 | 167.86.73.18 | 200 OK | 63 kB |
URL HTTP/2staging.hotelviladepremia.com/wp-content/plugins/nextend-smart-slider3-pro/library/media/dist/smartslider-frontend.min.js?1576586448 IP167.86.73.18:0
File typeASCII text, with very long lines (32103) Hashe34a273784e68fb7cbcb4a7343549d13 58738a9c6ac894a5d8c443a2861edc9841f071d6 f00ed0f7bdc9d393750b63379b84e249de8632e630ef21fe2e7ddd81e1d29c60
Analyzer | Verdict | Alert | fortinet | Phishing | |
GET /wp-content/plugins/nextend-smart-slider3-pro/library/media/dist/smartslider-frontend.min.js?1576586448 HTTP/1.1
Host: staging.hotelviladepremia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://staging.hotelviladepremia.com/
Cookie: bNQZztypjxfPY=Vsbld2njU%40_yZ; qMuPUgcpZWl_IGx=HbyGIF7vU0z; tfhBnUHVz=IUDNnaBfW2%404%2Ag; PHPSESSID=tsuvfvh1tacp8c9smo5qu904s7; ls-popup-last-displayed=1665887757; ls-popup-4=1665887757
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 16 Oct 2022 02:35:58 GMT
content-type: application/javascript
last-modified: Tue, 17 Dec 2019 12:40:48 GMT
etag: W/"5df8ccd0-37db9"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| staging.hotelviladepremia.com/wp-content/themes/betheme/assets/ui/jquery.ui.all.css?ver=21.2.2 | 167.86.73.18 | 200 OK | 19 kB |
URL HTTP/2staging.hotelviladepremia.com/wp-content/themes/betheme/assets/ui/jquery.ui.all.css?ver=21.2.2 IP167.86.73.18:0
File typeASCII text, with very long lines (365) Hash0aaea2ea1e17f94a059eea5ecea91aaa df239ca105c89c604aa6d967eaf69cd167abf0b2 39692da46a6687766c9fe8f7d1b51e64bfb4249178759903cef4e6b94d1af806
GET /wp-content/themes/betheme/assets/ui/jquery.ui.all.css?ver=21.2.2 HTTP/1.1
Host: staging.hotelviladepremia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://staging.hotelviladepremia.com/
Cookie: bNQZztypjxfPY=Vsbld2njU%40_yZ; qMuPUgcpZWl_IGx=HbyGIF7vU0z; tfhBnUHVz=IUDNnaBfW2%404%2Ag; PHPSESSID=tsuvfvh1tacp8c9smo5qu904s7; ls-popup-last-displayed=1665887757; ls-popup-4=1665887757
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 16 Oct 2022 02:35:59 GMT
content-type: text/css
last-modified: Mon, 27 May 2019 12:03:13 GMT
etag: W/"5cebd201-48eb"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| staging.hotelviladepremia.com/wp-content/themes/betheme/assets/animations/animations.min.js?ver=21.2.2 | 167.86.73.18 | 200 OK | 1.3 MB |
URL HTTP/2staging.hotelviladepremia.com/wp-content/themes/betheme/assets/animations/animations.min.js?ver=21.2.2 IP167.86.73.18:0
File typeASCII text, with very long lines (1723) Size1.3 MB (1330301 bytes) Hashe5293076a653e1d6d7d1738221eb9c50 3c7f4071dd32fc757eb1148ac1a506b9086c3442 1352aa48b71659cda536a22ec1d9ec04d803ca34fdb276c8adbef116a9860df2
Analyzer | Verdict | Alert | fortinet | Phishing | |
GET /wp-content/themes/betheme/assets/animations/animations.min.js?ver=21.2.2 HTTP/1.1
Host: staging.hotelviladepremia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://staging.hotelviladepremia.com/
Cookie: bNQZztypjxfPY=Vsbld2njU%40_yZ; qMuPUgcpZWl_IGx=HbyGIF7vU0z; tfhBnUHVz=IUDNnaBfW2%404%2Ag; PHPSESSID=tsuvfvh1tacp8c9smo5qu904s7; ls-popup-last-displayed=1665887757; ls-popup-4=1665887757
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 16 Oct 2022 02:35:59 GMT
content-type: application/javascript
last-modified: Mon, 27 May 2019 12:03:12 GMT
etag: W/"5cebd200-71e"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| staging.hotelviladepremia.com/wp-content/plugins/nextend-smart-slider3-pro/nextend/media/dist/nextend-webfontloader.min.js?1576586450 | 167.86.73.18 | 200 OK | 36 kB |
URL HTTP/2staging.hotelviladepremia.com/wp-content/plugins/nextend-smart-slider3-pro/nextend/media/dist/nextend-webfontloader.min.js?1576586450 IP167.86.73.18:0
File typeUnicode text, UTF-8 text, with very long lines (12306), with no line terminators Hashfc13905868e547873f7cfbb4e3437671 956ca9bb3960abf2fcee2570f59468a4a6ae6f9e cab228cb36ef7e219265273110f2b6760596645747bbbf85853a6340e21bbffc
GET /wp-content/plugins/nextend-smart-slider3-pro/nextend/media/dist/nextend-webfontloader.min.js?1576586450 HTTP/1.1
Host: staging.hotelviladepremia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://staging.hotelviladepremia.com/
Cookie: bNQZztypjxfPY=Vsbld2njU%40_yZ; qMuPUgcpZWl_IGx=HbyGIF7vU0z; tfhBnUHVz=IUDNnaBfW2%404%2Ag; PHPSESSID=tsuvfvh1tacp8c9smo5qu904s7; ls-popup-last-displayed=1665887757; ls-popup-4=1665887757
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 16 Oct 2022 02:35:58 GMT
content-type: application/javascript
last-modified: Tue, 17 Dec 2019 12:40:50 GMT
etag: W/"5df8ccd2-3029"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmSU5fBBc4.woff2 | 216.58.207.195 | 200 OK | 16 kB |
URL HTTP/2fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmSU5fBBc4.woff2 IP216.58.207.195:0
File typeWeb Open Font Format (Version 2), TrueType, length 15740, version 1.0\012- data Hashb9c29351c46f3e8c8631c4002457f48a e57e59c5780995ff2937ab2b511a769212974a87 f75911313e1c7802c23345ab57e754d87801581706780c993fb23ff4e0fe62ef
GET /s/roboto/v30/KFOlCnqEu92Fr1MmSU5fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://staging.hotelviladepremia.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15740
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 12 Oct 2022 19:34:21 GMT
expires: Thu, 12 Oct 2023 19:34:21 GMT
cache-control: public, max-age=31536000
age: 284498
last-modified: Wed, 11 May 2022 19:24:56 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| staging.hotelviladepremia.com/wp-content/plugins/oscar-hotel-booking-engine/assets/js/ohbe-common.js?ver=4.2 | 167.86.73.18 | 200 OK | 193 kB |
URL HTTP/2staging.hotelviladepremia.com/wp-content/plugins/oscar-hotel-booking-engine/assets/js/ohbe-common.js?ver=4.2 IP167.86.73.18:0
Size193 kB (193147 bytes) Hash24deff9c48ae138bf9a62fb80708b7c3 6179a876f7d75018507cb001269ee1182afd4d50 475026f9e527c15498ae7515aa305d7725c78580755560dce47f490559055051
Analyzer | Verdict | Alert | fortinet | Phishing | |
GET /wp-content/plugins/oscar-hotel-booking-engine/assets/js/ohbe-common.js?ver=4.2 HTTP/1.1
Host: staging.hotelviladepremia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://staging.hotelviladepremia.com/
Cookie: bNQZztypjxfPY=Vsbld2njU%40_yZ; qMuPUgcpZWl_IGx=HbyGIF7vU0z; tfhBnUHVz=IUDNnaBfW2%404%2Ag; PHPSESSID=tsuvfvh1tacp8c9smo5qu904s7; ls-popup-last-displayed=1665887757; ls-popup-4=1665887757
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 16 Oct 2022 02:35:58 GMT
content-type: application/javascript
last-modified: Mon, 05 Sep 2022 08:54:25 GMT
etag: W/"6315b941-1803"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| staging.hotelviladepremia.com/wp-includes/js/jquery/ui/mouse.min.js?ver=1.13.1 | 167.86.73.18 | 200 OK | 957 kB |
URL HTTP/2staging.hotelviladepremia.com/wp-includes/js/jquery/ui/mouse.min.js?ver=1.13.1 IP167.86.73.18:0
File typeASCII text, with very long lines (3233) Size957 kB (956783 bytes) Hash64e2d47778f9d4f4073a0eb3f5cd442d d21725c743b44d0eae5dfdfaf26685642e779f28 be5d940bb22c41a9f1ffd839c45edacc6039d1335e0160e161217710a095cc59
Analyzer | Verdict | Alert | fortinet | Phishing | |
GET /wp-includes/js/jquery/ui/mouse.min.js?ver=1.13.1 HTTP/1.1
Host: staging.hotelviladepremia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://staging.hotelviladepremia.com/
Cookie: bNQZztypjxfPY=Vsbld2njU%40_yZ; qMuPUgcpZWl_IGx=HbyGIF7vU0z; tfhBnUHVz=IUDNnaBfW2%404%2Ag; PHPSESSID=tsuvfvh1tacp8c9smo5qu904s7; ls-popup-last-displayed=1665887757; ls-popup-4=1665887757
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 16 Oct 2022 02:35:59 GMT
content-type: application/javascript
last-modified: Mon, 05 Sep 2022 09:40:11 GMT
etag: W/"6315c3fb-d53"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| staging.hotelviladepremia.com/wp-content/themes/betheme/assets/jplayer/jplayer.min.js?ver=21.2.2 | 167.86.73.18 | 200 OK | 12 kB |
URL HTTP/2staging.hotelviladepremia.com/wp-content/themes/betheme/assets/jplayer/jplayer.min.js?ver=21.2.2 IP167.86.73.18:0
File typeASCII text, with very long lines (634) Hash3a224b03d6661174632d6ac48605f7da b678c7700d4539aa232a53e388e8497e3f7a5666 c07b713286d0c1a082b52a5926e818270b0831136bb26856633ed488f188d427
Analyzer | Verdict | Alert | fortinet | Phishing | |
GET /wp-content/themes/betheme/assets/jplayer/jplayer.min.js?ver=21.2.2 HTTP/1.1
Host: staging.hotelviladepremia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://staging.hotelviladepremia.com/
Cookie: bNQZztypjxfPY=Vsbld2njU%40_yZ; qMuPUgcpZWl_IGx=HbyGIF7vU0z; tfhBnUHVz=IUDNnaBfW2%404%2Ag; PHPSESSID=tsuvfvh1tacp8c9smo5qu904s7; ls-popup-last-displayed=1665887757; ls-popup-4=1665887757
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 16 Oct 2022 02:35:59 GMT
content-type: application/javascript
last-modified: Mon, 27 May 2019 12:03:12 GMT
etag: W/"5cebd200-cd96"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 | 216.58.207.195 | 200 OK | 16 kB |
URL HTTP/2fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 IP216.58.207.195:0
File typeWeb Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data Hash15d9f621c3bd1599f0169dcf0bd5e63e 7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52 f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://staging.hotelviladepremia.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 12 Oct 2022 19:34:08 GMT
expires: Thu, 12 Oct 2023 19:34:08 GMT
cache-control: public, max-age=31536000
age: 284512
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| staging.hotelviladepremia.com/wp-content/plugins/google-language-translator/js/scripts.js?ver=6.0.15 | 167.86.73.18 | 200 OK | 3.1 MB |
URL HTTP/2staging.hotelviladepremia.com/wp-content/plugins/google-language-translator/js/scripts.js?ver=6.0.15 IP167.86.73.18:0
Size3.1 MB (3076689 bytes) Hashb42b0c16c36800ccaf0bd1631dc55a60 5bab783472bd011a6e6240dc471105dd10afaff6 e7065724f67db0a306cd8ac703aa2d232839d6509616c2e56d5d4f3d9eb1d5be
GET /wp-content/plugins/google-language-translator/js/scripts.js?ver=6.0.15 HTTP/1.1
Host: staging.hotelviladepremia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://staging.hotelviladepremia.com/
Cookie: bNQZztypjxfPY=Vsbld2njU%40_yZ; qMuPUgcpZWl_IGx=HbyGIF7vU0z; tfhBnUHVz=IUDNnaBfW2%404%2Ag; PHPSESSID=tsuvfvh1tacp8c9smo5qu904s7; ls-popup-last-displayed=1665887757; ls-popup-4=1665887757
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 16 Oct 2022 02:35:58 GMT
content-type: application/javascript
last-modified: Mon, 05 Sep 2022 08:50:00 GMT
etag: W/"6315b838-35e5"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| staging.hotelviladepremia.com/wp-includes/js/jquery/ui/tabs.min.js?ver=1.13.1 | 167.86.73.18 | 200 OK | 471 B |
URL HTTP/2staging.hotelviladepremia.com/wp-includes/js/jquery/ui/tabs.min.js?ver=1.13.1 IP167.86.73.18:0
Hash254c0f79943125eff7adbf9cb30d2b46 e24342391b47646fbbe9fa6a26dd95c0eadda7e5 35052bd13c72ac6c33ec3aa08ae793c5e12d2edeec5c91c9e2b2ac4762c3fc67
Analyzer | Verdict | Alert | fortinet | Phishing | |
GET /wp-includes/js/jquery/ui/tabs.min.js?ver=1.13.1 HTTP/1.1
Host: staging.hotelviladepremia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://staging.hotelviladepremia.com/
Cookie: bNQZztypjxfPY=Vsbld2njU%40_yZ; qMuPUgcpZWl_IGx=HbyGIF7vU0z; tfhBnUHVz=IUDNnaBfW2%404%2Ag; PHPSESSID=tsuvfvh1tacp8c9smo5qu904s7; ls-popup-last-displayed=1665887757; ls-popup-4=1665887757
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 16 Oct 2022 02:35:59 GMT
content-type: application/javascript
last-modified: Mon, 05 Sep 2022 09:40:11 GMT
etag: W/"6315c3fb-2ea1"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| hotelviladepremia.com/wp-content/uploads/2019/07/sin-t%C3%ADtulo-5-1.jpg | 167.86.73.18 | 200 OK | 95 kB |
URL HTTP/2hotelviladepremia.com/wp-content/uploads/2019/07/sin-t%C3%ADtulo-5-1.jpg IP167.86.73.18:0
File typegzip compressed data, from FAT filesystem (MS-DOS, OS/2, NT)\012- data Hash73eac71f385db2c4ec5162ce02463154 20dbfc59206a6bd3a21db5cf6513fa7000e8db94 9f1f4cd1188285332783d63a66497385dd876e9d8a7cb00c40275d7340336017
GET /wp-content/uploads/2019/07/sin-t%C3%ADtulo-5-1.jpg HTTP/1.1
Host: hotelviladepremia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://staging.hotelviladepremia.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 16 Oct 2022 02:35:59 GMT
content-type: image/jpeg
content-length: 1875273
last-modified: Wed, 24 Jul 2019 15:46:22 GMT
etag: "5d387d4e-1c9d49"
pragma: public
cache-control: max-age=31536000, public
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| staging.hotelviladepremia.com/wp-content/themes/betheme/images/favicon.ico | 167.86.73.18 | 200 OK | 5.4 kB |
URL HTTP/2staging.hotelviladepremia.com/wp-content/themes/betheme/images/favicon.ico IP167.86.73.18:0
File typeMS Windows icon resource - 2 icons, 16x16, 32 bits/pixel, 32x32, 32 bits/pixel\012- data Hash9d1b031ca1395a94a6886087e245cb7b f3f85d209c8f92593b568197814f0f0fcee45ad7 b47275b5b6878455d8937e95b32301f17c3caf0a233be8e864e9dc07493806f1
GET /wp-content/themes/betheme/images/favicon.ico HTTP/1.1
Host: staging.hotelviladepremia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://staging.hotelviladepremia.com/
Cookie: bNQZztypjxfPY=Vsbld2njU%40_yZ; qMuPUgcpZWl_IGx=HbyGIF7vU0z; tfhBnUHVz=IUDNnaBfW2%404%2Ag; PHPSESSID=tsuvfvh1tacp8c9smo5qu904s7; ls-popup-last-displayed=1665887757; ls-popup-4=1665887757; _gcl_au=1.1.369787996.1665887763; cookielawinfo-checkbox-necessary=yes
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 16 Oct 2022 02:36:00 GMT
content-type: image/vnd.microsoft.icon
content-length: 5430
last-modified: Mon, 27 May 2019 12:03:38 GMT
etag: "5cebd21a-1536"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| www.google-analytics.com/analytics.js | 142.250.74.174 | 200 OK | 20 kB |
URL HTTP/2www.google-analytics.com/analytics.js IP142.250.74.174:0
File typeASCII text, with very long lines (1325) Hash47e6f374ca946fddd5b59871b325736c baa9282efc8785e84d247c3bff518eaa45f101c4 16580b5c87c58e5702e411f1888fdef511094e4cd6d62bb47d16291ffb25985e
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://staging.hotelviladepremia.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20039
date: Sun, 16 Oct 2022 00:41:09 GMT
expires: Sun, 16 Oct 2022 02:41:09 GMT
cache-control: public, max-age=7200
age: 6891
last-modified: Tue, 27 Sep 2022 22:01:05 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| staging.hotelviladepremia.com/wp-content/themes/betheme/assets/animations/animations.min.css?ver=21.2.2 | 167.86.73.18 | 200 OK | 4.8 kB |
URL HTTP/2staging.hotelviladepremia.com/wp-content/themes/betheme/assets/animations/animations.min.css?ver=21.2.2 IP167.86.73.18:0
File typeASCII text, with very long lines (58508), with no line terminators Hash905248ac1a3718189b19aa1245be842d 754d83da542d0d12cf0a38af754433f5a0d21c5c bfec10811108d048000f164c3edcbe2fd852279e87a819b39aa06eee091f6a93
GET /wp-content/themes/betheme/assets/animations/animations.min.css?ver=21.2.2 HTTP/1.1
Host: staging.hotelviladepremia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://staging.hotelviladepremia.com/
Cookie: bNQZztypjxfPY=Vsbld2njU%40_yZ; qMuPUgcpZWl_IGx=HbyGIF7vU0z; tfhBnUHVz=IUDNnaBfW2%404%2Ag; PHPSESSID=tsuvfvh1tacp8c9smo5qu904s7; ls-popup-last-displayed=1665887757; ls-popup-4=1665887757
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 16 Oct 2022 02:35:58 GMT
content-type: text/css
last-modified: Mon, 27 May 2019 12:03:12 GMT
etag: W/"5cebd200-e48c"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| www.google.com/pagead/conversion_async.js | 142.250.74.164 | 200 OK | 15 kB |
URL HTTP/2www.google.com/pagead/conversion_async.js IP142.250.74.164:0
File typeASCII text, with very long lines (1654) Hash8766c5a801f08afceca9b66ff9097e6a ce7640d1d166eddeb9d40be642ec34652f790713 f448f99b4ad9a9b50daa9c38054cf16ab2b9fcb5d83ddad60571fb6a8a432a99
GET /pagead/conversion_async.js HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://staging.hotelviladepremia.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
date: Sun, 16 Oct 2022 02:36:00 GMT
expires: Sun, 16 Oct 2022 02:36:00 GMT
cache-control: private, max-age=3600
content-type: text/javascript; charset=UTF-8
etag: 17557423932572341828
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 15187
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| staging.hotelviladepremia.com/wp-content/plugins/google-language-translator/images/flags.png | 167.86.73.18 | 200 OK | 55 kB |
URL HTTP/2staging.hotelviladepremia.com/wp-content/plugins/google-language-translator/images/flags.png IP167.86.73.18:0
File typePNG image data, 169 x 520, 8-bit/color RGBA, non-interlaced\012- data Hash89c95031b56b90591fd4ef80558f8c25 9599f52c93b38f3e68686f299b3184be0a9de63a d64c12a76a61096f3a14aa795d12c3fc0de8e5781ef2e1af3b66517e65d7f00e
GET /wp-content/plugins/google-language-translator/images/flags.png HTTP/1.1
Host: staging.hotelviladepremia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://staging.hotelviladepremia.com/wp-content/plugins/google-language-translator/css/style.css?ver=6.0.15
Cookie: bNQZztypjxfPY=Vsbld2njU%40_yZ; qMuPUgcpZWl_IGx=HbyGIF7vU0z; tfhBnUHVz=IUDNnaBfW2%404%2Ag; PHPSESSID=tsuvfvh1tacp8c9smo5qu904s7; ls-popup-last-displayed=1665887757; ls-popup-4=1665887757; _gcl_au=1.1.369787996.1665887763; cookielawinfo-checkbox-necessary=yes
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 16 Oct 2022 02:36:00 GMT
content-type: image/png
content-length: 54996
last-modified: Mon, 05 Sep 2022 08:50:00 GMT
etag: "6315b838-d6d4"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 472 B |
IP142.250.74.3:0
Hash5c64ced45088660f4e780756e5ca0968 7d1d4b389b65a679b01acd0e3a070da7f6760bf1 d266d13f4491fc184a1f031ed87a5af76d46c58bd8751cb92cbedba574139462
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 16 Oct 2022 02:36:00 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| googleads.g.doubleclick.net/pagead/viewthroughconversion/718123990/?random=1665887763246&cv=9&fst=1665887763246&num=1&bg=ffffff&guid=ON&resp=GooglemKTybQhCsO&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0>m=2oaaa0&sendb=1&ig=0&data=event%3Dgtag.config&frm=0&url=https%3A%2F%2Fstaging.hotelviladepremia.com%2F&tiba=Hotel%20Vila%20de%20Premia%20-%20Hotel%20para%20Bikers%20y%20Viajeros&auid=369787996.1665887763&hn=www.google.com&async=1&rfmt=3&fmt=4 | 142.250.74.66 | 200 OK | 1.1 kB |
URL HTTP/2googleads.g.doubleclick.net/pagead/viewthroughconversion/718123990/?random=1665887763246&cv=9&fst=1665887763246&num=1&bg=ffffff&guid=ON&resp=GooglemKTybQhCsO&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0>m=2oaaa0&sendb=1&ig=0&data=event%3Dgtag.config&frm=0&url=https%3A%2F%2Fstaging.hotelviladepremia.com%2F&tiba=Hotel%20Vila%20de%20Premia%20-%20Hotel%20para%20Bikers%20y%20Viajeros&auid=369787996.1665887763&hn=www.google.com&async=1&rfmt=3&fmt=4 IP142.250.74.66:0
File typeASCII text, with very long lines (2362), with no line terminators Hash32049dfcfe4c0b64715c23afebb14370 3ded3bb89570ee69638fe04c6d127f8be74589d2 6de815fead39d619098634fb9ac48ddf36624b092bfce75fff591232819360e3
GET /pagead/viewthroughconversion/718123990/?random=1665887763246&cv=9&fst=1665887763246&num=1&bg=ffffff&guid=ON&resp=GooglemKTybQhCsO&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0>m=2oaaa0&sendb=1&ig=0&data=event%3Dgtag.config&frm=0&url=https%3A%2F%2Fstaging.hotelviladepremia.com%2F&tiba=Hotel%20Vila%20de%20Premia%20-%20Hotel%20para%20Bikers%20y%20Viajeros&auid=369787996.1665887763&hn=www.google.com&async=1&rfmt=3&fmt=4 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://staging.hotelviladepremia.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sun, 16 Oct 2022 02:36:00 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
server: cafe
content-length: 1066
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Sun, 16-Oct-2022 02:51:00 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| www.gstatic.com/images/branding/product/1x/translate_24dp.png | 142.250.74.163 | 200 OK | 846 B |
URL HTTP/2www.gstatic.com/images/branding/product/1x/translate_24dp.png IP142.250.74.163:0
File typePNG image data, 24 x 24, 8-bit/color RGBA, non-interlaced\012- data Hashe9cd262114358f26b7608b56905185dc 6dbde0a96deaab2b529723ce26c62043cf9180ab 5a861509b658aa24fc3aed2867ac3c061e7d818d90b9990959afc6d1b5d4ff99
GET /images/branding/product/1x/translate_24dp.png HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://staging.hotelviladepremia.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Origin
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="static-on-bigtable"
report-to: {"group":"static-on-bigtable","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/static-on-bigtable"}]}
content-length: 846
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 16 Oct 2022 01:21:45 GMT
expires: Mon, 16 Oct 2023 01:21:45 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 14 Oct 2021 09:08:00 GMT
content-type: image/png
age: 4455
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| staging.hotelviladepremia.com/wp-content/plugins/oscar-hotel-booking-engine/assets/css/bootstrap-datepicker.standalone.min.css?ver=6.0.2 | 167.86.73.18 | 200 OK | 2.9 kB |
URL HTTP/2staging.hotelviladepremia.com/wp-content/plugins/oscar-hotel-booking-engine/assets/css/bootstrap-datepicker.standalone.min.css?ver=6.0.2 IP167.86.73.18:0
File typeASCII text, with very long lines (16264) Hash0900b99337933a1dfa2b31ef35187a1c e45376f9733892d5b65ae35c3c243c1813ab005d 43adb75b0836cd7e60499c0311c732e1dd032b27f74f1619ccb5cb9c3dbe1349
Analyzer | Verdict | Alert | fortinet | Phishing | |
GET /wp-content/plugins/oscar-hotel-booking-engine/assets/css/bootstrap-datepicker.standalone.min.css?ver=6.0.2 HTTP/1.1
Host: staging.hotelviladepremia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://staging.hotelviladepremia.com/
Cookie: bNQZztypjxfPY=Vsbld2njU%40_yZ; qMuPUgcpZWl_IGx=HbyGIF7vU0z; tfhBnUHVz=IUDNnaBfW2%404%2Ag; PHPSESSID=tsuvfvh1tacp8c9smo5qu904s7; ls-popup-last-displayed=1665887757; ls-popup-4=1665887757
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 16 Oct 2022 02:35:58 GMT
content-type: text/css
last-modified: Mon, 05 Sep 2022 08:54:25 GMT
etag: W/"6315b941-4044"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| www.gstatic.com/images/branding/product/2x/translate_24dp.png | 142.250.74.163 | 200 OK | 1.8 kB |
URL HTTP/2www.gstatic.com/images/branding/product/2x/translate_24dp.png IP142.250.74.163:0
File typePNG image data, 48 x 48, 8-bit/color RGBA, non-interlaced\012- data Hashc69c796362406f9e11c7f4bf5bb628da e489ce95ab56208090868882113d7416abf46775 4dac0026fbfa2615dce30c0af12830863fe885f84387a0147b9e338f548d5d82
GET /images/branding/product/2x/translate_24dp.png HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://translate.googleapis.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Origin
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="static-on-bigtable"
report-to: {"group":"static-on-bigtable","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/static-on-bigtable"}]}
content-length: 1842
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 16 Oct 2022 01:12:58 GMT
expires: Mon, 16 Oct 2023 01:12:58 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 14 Oct 2021 09:08:00 GMT
content-type: image/png
age: 4983
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 472 B |
IP142.250.74.3:0
Hash5c64ced45088660f4e780756e5ca0968 7d1d4b389b65a679b01acd0e3a070da7f6760bf1 d266d13f4491fc184a1f031ed87a5af76d46c58bd8751cb92cbedba574139462
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 16 Oct 2022 02:36:01 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| staging.hotelviladepremia.com/wp-content/uploads/2019/07/sin-t%C3%ADtulo-2-1-1630x860.jpg | 167.86.73.18 | 200 OK | 236 kB |
URL HTTP/2staging.hotelviladepremia.com/wp-content/uploads/2019/07/sin-t%C3%ADtulo-2-1-1630x860.jpg IP167.86.73.18:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "Compressed by jpeg-recompress", progressive, precision 8, 1630x860, components 3\012- data Size236 kB (235780 bytes) Hash1a259fc81901f993da47eaabdc05eba0 9926a9863fb4c4a8e92908765f91f8956ec99056 01d285b697c070c11382162321a03bfc76655dcbba21e821004fba9283176294
GET /wp-content/uploads/2019/07/sin-t%C3%ADtulo-2-1-1630x860.jpg HTTP/1.1
Host: staging.hotelviladepremia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://staging.hotelviladepremia.com/
Cookie: bNQZztypjxfPY=Vsbld2njU%40_yZ; qMuPUgcpZWl_IGx=HbyGIF7vU0z; tfhBnUHVz=IUDNnaBfW2%404%2Ag; PHPSESSID=tsuvfvh1tacp8c9smo5qu904s7; ls-popup-last-displayed=1665887757; ls-popup-4=1665887757; _gcl_au=1.1.369787996.1665887763; cookielawinfo-checkbox-necessary=yes; _ga=GA1.2.638368571.1665887763; _gid=GA1.2.1244546599.1665887763; _gat_gtag_UA_145338186_1=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 16 Oct 2022 02:36:01 GMT
content-type: image/jpeg
content-length: 235780
last-modified: Wed, 24 Jul 2019 15:37:56 GMT
etag: "5d387b54-39904"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| staging.hotelviladepremia.com/wp-content/plugins/google-analytics-dashboard-for-wp/assets/js/frontend-gtag.min.js?ver=7.8.2 | 167.86.73.18 | 200 OK | 3.1 kB |
URL HTTP/2staging.hotelviladepremia.com/wp-content/plugins/google-analytics-dashboard-for-wp/assets/js/frontend-gtag.min.js?ver=7.8.2 IP167.86.73.18:0
File typeASCII text, with very long lines (1571) Hash65990601a9069bc537db73f15eccefc7 31baa94d8440623e7741334b0e11e8134e42ffe1 e6f56cfe56024010d993dd652f8a01ac9d53985c685e41f15c843ffcc400db98
GET /wp-content/plugins/google-analytics-dashboard-for-wp/assets/js/frontend-gtag.min.js?ver=7.8.2 HTTP/1.1
Host: staging.hotelviladepremia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://staging.hotelviladepremia.com/
Cookie: bNQZztypjxfPY=Vsbld2njU%40_yZ; qMuPUgcpZWl_IGx=HbyGIF7vU0z; tfhBnUHVz=IUDNnaBfW2%404%2Ag; PHPSESSID=tsuvfvh1tacp8c9smo5qu904s7; ls-popup-last-displayed=1665887757; ls-popup-4=1665887757
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 16 Oct 2022 02:35:58 GMT
content-type: application/javascript
last-modified: Mon, 05 Sep 2022 08:49:27 GMT
etag: W/"6315b817-2e3b"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| staging.hotelviladepremia.com/wp-content/plugins/nextend-smart-slider3-pro/library/media/smartslider.min.css?1576586449 | 167.86.73.18 | 200 OK | 3.5 kB |
URL HTTP/2staging.hotelviladepremia.com/wp-content/plugins/nextend-smart-slider3-pro/library/media/smartslider.min.css?1576586449 IP167.86.73.18:0
File typeASCII text, with very long lines (19654), with no line terminators Hash3557b8e3315d6873e9dc0e26697ea283 9b36321068db12a25eb2ad62d9c78d48acfc9f52 8b65ec85dacfdc06d5ba3d66d3a45a81b20c6204c10e52a391e5336b45e018be
Analyzer | Verdict | Alert | fortinet | Phishing | |
GET /wp-content/plugins/nextend-smart-slider3-pro/library/media/smartslider.min.css?1576586449 HTTP/1.1
Host: staging.hotelviladepremia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://staging.hotelviladepremia.com/
Cookie: bNQZztypjxfPY=Vsbld2njU%40_yZ; qMuPUgcpZWl_IGx=HbyGIF7vU0z; tfhBnUHVz=IUDNnaBfW2%404%2Ag; PHPSESSID=tsuvfvh1tacp8c9smo5qu904s7; ls-popup-last-displayed=1665887757; ls-popup-4=1665887757
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 16 Oct 2022 02:35:58 GMT
content-type: text/css
last-modified: Tue, 17 Dec 2019 12:40:49 GMT
etag: W/"5df8ccd1-4cc6"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| staging.hotelviladepremia.com/wp-content/plugins/LayerSlider/assets/static/layerslider/js/layerslider.utils.js?ver=6.11.1 | 167.86.73.18 | 200 OK | 40 kB |
URL HTTP/2staging.hotelviladepremia.com/wp-content/plugins/LayerSlider/assets/static/layerslider/js/layerslider.utils.js?ver=6.11.1 IP167.86.73.18:0
File typeASCII text, with very long lines (65315) Hashf688cfe962085015bf1ff335707e63ab 28fec7fc9f55d62f5ffebf70671f3dc98522cd4e f2b874b638a8a50cbe70aed2e9ac12b1bc63c685a7a52c6c3f896259cdf007b7
GET /wp-content/plugins/LayerSlider/assets/static/layerslider/js/layerslider.utils.js?ver=6.11.1 HTTP/1.1
Host: staging.hotelviladepremia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://staging.hotelviladepremia.com/
Cookie: bNQZztypjxfPY=Vsbld2njU%40_yZ; qMuPUgcpZWl_IGx=HbyGIF7vU0z; tfhBnUHVz=IUDNnaBfW2%404%2Ag; PHPSESSID=tsuvfvh1tacp8c9smo5qu904s7; ls-popup-last-displayed=1665887757; ls-popup-4=1665887757
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 16 Oct 2022 02:35:58 GMT
content-type: application/javascript
last-modified: Thu, 09 Apr 2020 10:10:22 GMT
etag: W/"5e8ef48e-1e026"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-145338186-1&cid=638368571.1665887763&jid=547618172&gjid=1967939171&_gid=1244546599.1665887763&_u=YEBAAUAAAAAAACAAI~&z=323882812 | 173.194.73.154 | 200 OK | 1 B |
URL HTTP/2stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-145338186-1&cid=638368571.1665887763&jid=547618172&gjid=1967939171&_gid=1244546599.1665887763&_u=YEBAAUAAAAAAACAAI~&z=323882812 IP173.194.73.154:0
File typevery short file (no magic) Hashc4ca4238a0b923820dcc509a6f75849b 356a192b7913b04c54574d18c28d46e6395428ab 6b86b273ff34fce19d6b804eff5a3f5747ada4eaa22f1d49c01e52ddb7875b4b
POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-145338186-1&cid=638368571.1665887763&jid=547618172&gjid=1967939171&_gid=1244546599.1665887763&_u=YEBAAUAAAAAAACAAI~&z=323882812 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://staging.hotelviladepremia.com
Connection: keep-alive
Referer: https://staging.hotelviladepremia.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://staging.hotelviladepremia.com
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Sun, 16 Oct 2022 02:36:01 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 1
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 472 B |
IP142.250.74.3:0
Hash695cea3df950db7392b70395df1d8b05 b7fe7c9dd9f38fd23ad37dd92b9085f35a6fe823 4bad472e725699f54c9983fe6cb3ce0783b831ea2877b1a22f80197b953cfaf6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 16 Oct 2022 02:36:01 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| cdn.jsdelivr.net/emojione/2.2.7/lib/js/emojione.min.js | 151.101.85.229 | 200 OK | 54 kB |
URL HTTP/2cdn.jsdelivr.net/emojione/2.2.7/lib/js/emojione.min.js IP151.101.85.229:0
File typeASCII text, with very long lines (32014) Hashea53ffc3c20542881a2735a62c0426d7 365e24ffd4a54e4c019a47c94204ad90a8538eb5 e4f801f6cd7462489966e441ff53795823a607656497f9d0ce8cbfc08f6c7448
GET /emojione/2.2.7/lib/js/emojione.min.js HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://staging.hotelviladepremia.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: application/javascript; charset=utf-8
etag: W/"49dda-cp9vjKV4fYl0Ow7X6yf9dkBr+YU"
content-encoding: gzip
accept-ranges: bytes
date: Sun, 16 Oct 2022 02:36:02 GMT
age: 18034119
x-served-by: cache-fra19156-FRA, cache-bma1646-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 53889
X-Firefox-Spdy: h2
|
|
| ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q1 | 151.101.86.133 | 200 OK | 1.5 kB |
URL HTTP/1.1ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q1 IP151.101.86.133:0
Hashcd9a6dae1e1c44c86e51f20a79b35ef5 cf964cb36b464aee5ae9c1a5c591afd8d2eb7e75 d8d41ce21c0460d52ac723232b74b486ba2747098f495ab462b939f60d41dd94
POST /ca/gsatlasr3dvtlsca2022q1 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 1462
Content-Type: application/ocsp-response
Etag: "52A0432FB3644DD15FB3ECEE0C8F719EB7FE2C34"
Expires: Sun, 16 Oct 2022 13:00:00 UTC
Last-Modified: Sun, 16 Oct 2022 01:00:00 UTC
Cache-Control: s-maxage=3600, public, no-transform, must-revalidate
Accept-Ranges: bytes
Date: Sun, 16 Oct 2022 02:36:02 GMT
Via: 1.1 varnish
Age: 3212
X-Served-By: cache-bma1621-BMA
X-Cache: HIT
X-Cache-Hits: 2
X-Timer: S1665887763.579037,VS0,VE0
|
|
| va.tawk.to/v1/session/start | 104.22.24.131 | 200 OK | 2.3 kB |
URL HTTP/2va.tawk.to/v1/session/start IP104.22.24.131:0
Hasha5b05f036d8991ef25fb88905f31a084 7db2cdc735972fb4f3bf8c144693992c75a0496b 3f3808b4700efc7d262601009e935e88979b536e1da5948cb32a5bfbea8419c3
OPTIONS /v1/session/start HTTP/1.1
Host: va.tawk.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://staging.hotelviladepremia.com/
Origin: https://staging.hotelviladepremia.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 16 Oct 2022 02:36:01 GMT
x-served-by: visitor-application-preemptive-ksmw
access-control-allow-origin: https://staging.hotelviladepremia.com
access-control-allow-credentials: true
access-control-allow-methods: POST,OPTIONS
access-control-allow-headers: content-type,x-tawk-token
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: DYNAMIC
x-content-type-options: nosniff
server: cloudflare
cf-ray: 75ad678f1adab500-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| fonts.googleapis.com/css?family=Raleway%3A100%2C200%2C300%2C400%2C500%2C600%2C700%2C800%2C900&ver=6.0.2 | 216.58.211.10 | 200 OK | 0 B |
URL HTTP/2fonts.googleapis.com/css?family=Raleway%3A100%2C200%2C300%2C400%2C500%2C600%2C700%2C800%2C900&ver=6.0.2 IP216.58.211.10:0
GET /css?family=Raleway%3A100%2C200%2C300%2C400%2C500%2C600%2C700%2C800%2C900&ver=6.0.2 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://staging.hotelviladepremia.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sun, 16 Oct 2022 02:35:58 GMT
date: Sun, 16 Oct 2022 02:35:58 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| fonts.googleapis.com/css?family=Poppins:300,regular,500,600,700%7CMontserrat:regular,700,100,200,300,900&subset=latin%2Clatin-ext | 216.58.211.10 | 200 OK | 0 B |
URL HTTP/2fonts.googleapis.com/css?family=Poppins:300,regular,500,600,700%7CMontserrat:regular,700,100,200,300,900&subset=latin%2Clatin-ext IP216.58.211.10:0
GET /css?family=Poppins:300,regular,500,600,700%7CMontserrat:regular,700,100,200,300,900&subset=latin%2Clatin-ext HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://staging.hotelviladepremia.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sun, 16 Oct 2022 02:35:58 GMT
date: Sun, 16 Oct 2022 02:35:58 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| staging.hotelviladepremia.com/wp-content/plugins/smart-logo-showcase-lite/js/owl.carousel.js?ver=1.1.9 | 167.86.73.18 | 200 OK | 0 B |
URL HTTP/2staging.hotelviladepremia.com/wp-content/plugins/smart-logo-showcase-lite/js/owl.carousel.js?ver=1.1.9 IP167.86.73.18:0
GET /wp-content/plugins/smart-logo-showcase-lite/js/owl.carousel.js?ver=1.1.9 HTTP/1.1
Host: staging.hotelviladepremia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://staging.hotelviladepremia.com/
Cookie: bNQZztypjxfPY=Vsbld2njU%40_yZ; qMuPUgcpZWl_IGx=HbyGIF7vU0z; tfhBnUHVz=IUDNnaBfW2%404%2Ag; PHPSESSID=tsuvfvh1tacp8c9smo5qu904s7; ls-popup-last-displayed=1665887757; ls-popup-4=1665887757
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 16 Oct 2022 02:35:58 GMT
content-type: application/javascript
last-modified: Mon, 05 Sep 2022 08:55:27 GMT
etag: W/"6315b97f-1412d"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| staging.hotelviladepremia.com/wp-content/plugins/nextend-smart-slider3-pro/nextend/media/dist/n2-j.min.js?1576586450 | 167.86.73.18 | 200 OK | 0 B |
URL HTTP/2staging.hotelviladepremia.com/wp-content/plugins/nextend-smart-slider3-pro/nextend/media/dist/n2-j.min.js?1576586450 IP167.86.73.18:0
Analyzer | Verdict | Alert | fortinet | Phishing | |
GET /wp-content/plugins/nextend-smart-slider3-pro/nextend/media/dist/n2-j.min.js?1576586450 HTTP/1.1
Host: staging.hotelviladepremia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://staging.hotelviladepremia.com/
Cookie: bNQZztypjxfPY=Vsbld2njU%40_yZ; qMuPUgcpZWl_IGx=HbyGIF7vU0z; tfhBnUHVz=IUDNnaBfW2%404%2Ag; PHPSESSID=tsuvfvh1tacp8c9smo5qu904s7; ls-popup-last-displayed=1665887757; ls-popup-4=1665887757
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 16 Oct 2022 02:35:58 GMT
content-type: application/javascript
last-modified: Tue, 17 Dec 2019 12:40:50 GMT
etag: W/"5df8ccd2-18694"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| staging.hotelviladepremia.com/wp-content/plugins/LayerSlider/assets/static/layerslider/js/layerslider.kreaturamedia.jquery.js?ver=6.11.1 | 167.86.73.18 | 200 OK | 0 B |
URL HTTP/2staging.hotelviladepremia.com/wp-content/plugins/LayerSlider/assets/static/layerslider/js/layerslider.kreaturamedia.jquery.js?ver=6.11.1 IP167.86.73.18:0
GET /wp-content/plugins/LayerSlider/assets/static/layerslider/js/layerslider.kreaturamedia.jquery.js?ver=6.11.1 HTTP/1.1
Host: staging.hotelviladepremia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://staging.hotelviladepremia.com/
Cookie: bNQZztypjxfPY=Vsbld2njU%40_yZ; qMuPUgcpZWl_IGx=HbyGIF7vU0z; tfhBnUHVz=IUDNnaBfW2%404%2Ag; PHPSESSID=tsuvfvh1tacp8c9smo5qu904s7; ls-popup-last-displayed=1665887757; ls-popup-4=1665887757
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 16 Oct 2022 02:35:58 GMT
content-type: application/javascript
last-modified: Thu, 09 Apr 2020 10:10:22 GMT
etag: W/"5e8ef48e-1f855"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| staging.hotelviladepremia.com/wp-content/plugins/cookie-law-info/public/css/cookie-law-info-public.css?ver=2.1.2 | 167.86.73.18 | 200 OK | 0 B |
URL HTTP/2staging.hotelviladepremia.com/wp-content/plugins/cookie-law-info/public/css/cookie-law-info-public.css?ver=2.1.2 IP167.86.73.18:0
Analyzer | Verdict | Alert | fortinet | Phishing | |
GET /wp-content/plugins/cookie-law-info/public/css/cookie-law-info-public.css?ver=2.1.2 HTTP/1.1
Host: staging.hotelviladepremia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://staging.hotelviladepremia.com/
Cookie: bNQZztypjxfPY=Vsbld2njU%40_yZ; qMuPUgcpZWl_IGx=HbyGIF7vU0z; tfhBnUHVz=IUDNnaBfW2%404%2Ag; PHPSESSID=tsuvfvh1tacp8c9smo5qu904s7; ls-popup-last-displayed=1665887757; ls-popup-4=1665887757
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 16 Oct 2022 02:35:58 GMT
content-type: text/css
last-modified: Mon, 05 Sep 2022 08:48:46 GMT
etag: W/"6315b7ee-c22"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| staging.hotelviladepremia.com/wp-content/themes/betheme/css/layout.css?ver=21.2.2 | 167.86.73.18 | 200 OK | 0 B |
URL HTTP/2staging.hotelviladepremia.com/wp-content/themes/betheme/css/layout.css?ver=21.2.2 IP167.86.73.18:0
Analyzer | Verdict | Alert | fortinet | Phishing | |
GET /wp-content/themes/betheme/css/layout.css?ver=21.2.2 HTTP/1.1
Host: staging.hotelviladepremia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://staging.hotelviladepremia.com/
Cookie: bNQZztypjxfPY=Vsbld2njU%40_yZ; qMuPUgcpZWl_IGx=HbyGIF7vU0z; tfhBnUHVz=IUDNnaBfW2%404%2Ag; PHPSESSID=tsuvfvh1tacp8c9smo5qu904s7; ls-popup-last-displayed=1665887757; ls-popup-4=1665887757
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 16 Oct 2022 02:35:59 GMT
content-type: text/css
last-modified: Mon, 27 May 2019 12:03:18 GMT
etag: W/"5cebd206-1ca8b"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| staging.hotelviladepremia.com/wp-content/themes/betheme/js/menu.js?ver=21.2.2 | 167.86.73.18 | 200 OK | 0 B |
URL HTTP/2staging.hotelviladepremia.com/wp-content/themes/betheme/js/menu.js?ver=21.2.2 IP167.86.73.18:0
Analyzer | Verdict | Alert | fortinet | Phishing | |
GET /wp-content/themes/betheme/js/menu.js?ver=21.2.2 HTTP/1.1
Host: staging.hotelviladepremia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://staging.hotelviladepremia.com/
Cookie: bNQZztypjxfPY=Vsbld2njU%40_yZ; qMuPUgcpZWl_IGx=HbyGIF7vU0z; tfhBnUHVz=IUDNnaBfW2%404%2Ag; PHPSESSID=tsuvfvh1tacp8c9smo5qu904s7; ls-popup-last-displayed=1665887757; ls-popup-4=1665887757
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 16 Oct 2022 02:35:59 GMT
content-type: application/javascript
last-modified: Mon, 27 May 2019 12:03:45 GMT
etag: W/"5cebd221-98d"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| staging.hotelviladepremia.com/wp-content/plugins/nextend-smart-slider3-pro/nextend/media/dist/nextend-gsap.min.js?1576586450 | 167.86.73.18 | 200 OK | 0 B |
URL HTTP/2staging.hotelviladepremia.com/wp-content/plugins/nextend-smart-slider3-pro/nextend/media/dist/nextend-gsap.min.js?1576586450 IP167.86.73.18:0
GET /wp-content/plugins/nextend-smart-slider3-pro/nextend/media/dist/nextend-gsap.min.js?1576586450 HTTP/1.1
Host: staging.hotelviladepremia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://staging.hotelviladepremia.com/
Cookie: bNQZztypjxfPY=Vsbld2njU%40_yZ; qMuPUgcpZWl_IGx=HbyGIF7vU0z; tfhBnUHVz=IUDNnaBfW2%404%2Ag; PHPSESSID=tsuvfvh1tacp8c9smo5qu904s7; ls-popup-last-displayed=1665887757; ls-popup-4=1665887757
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 16 Oct 2022 02:35:58 GMT
content-type: application/javascript
last-modified: Tue, 17 Dec 2019 12:40:50 GMT
etag: W/"5df8ccd2-1843b"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| fonts.googleapis.com/css?family=Droid+Sans%3A400%2C700&ver=6.0.2 | 216.58.211.10 | 200 OK | 0 B |
URL HTTP/2fonts.googleapis.com/css?family=Droid+Sans%3A400%2C700&ver=6.0.2 IP216.58.211.10:0
GET /css?family=Droid+Sans%3A400%2C700&ver=6.0.2 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://staging.hotelviladepremia.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sun, 16 Oct 2022 02:35:58 GMT
date: Sun, 16 Oct 2022 02:35:58 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| staging.hotelviladepremia.com/wp-content/plugins/oscar-hotel-booking-engine/assets/js/bootstrap_ohbe_datepicker.min.js?ver=6.0.2 | 167.86.73.18 | 200 OK | 0 B |
URL HTTP/2staging.hotelviladepremia.com/wp-content/plugins/oscar-hotel-booking-engine/assets/js/bootstrap_ohbe_datepicker.min.js?ver=6.0.2 IP167.86.73.18:0
Analyzer | Verdict | Alert | fortinet | Phishing | |
GET /wp-content/plugins/oscar-hotel-booking-engine/assets/js/bootstrap_ohbe_datepicker.min.js?ver=6.0.2 HTTP/1.1
Host: staging.hotelviladepremia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://staging.hotelviladepremia.com/
Cookie: bNQZztypjxfPY=Vsbld2njU%40_yZ; qMuPUgcpZWl_IGx=HbyGIF7vU0z; tfhBnUHVz=IUDNnaBfW2%404%2Ag; PHPSESSID=tsuvfvh1tacp8c9smo5qu904s7; ls-popup-last-displayed=1665887757; ls-popup-4=1665887757
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 16 Oct 2022 02:35:58 GMT
content-type: application/javascript
last-modified: Mon, 05 Sep 2022 08:54:25 GMT
etag: W/"6315b941-83d9"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| staging.hotelviladepremia.com/wp-content/plugins/LayerSlider/assets/static/layerslider/js/layerslider.transitions.js?ver=6.11.1 | 167.86.73.18 | 200 OK | 0 B |
URL HTTP/2staging.hotelviladepremia.com/wp-content/plugins/LayerSlider/assets/static/layerslider/js/layerslider.transitions.js?ver=6.11.1 IP167.86.73.18:0
GET /wp-content/plugins/LayerSlider/assets/static/layerslider/js/layerslider.transitions.js?ver=6.11.1 HTTP/1.1
Host: staging.hotelviladepremia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://staging.hotelviladepremia.com/
Cookie: bNQZztypjxfPY=Vsbld2njU%40_yZ; qMuPUgcpZWl_IGx=HbyGIF7vU0z; tfhBnUHVz=IUDNnaBfW2%404%2Ag; PHPSESSID=tsuvfvh1tacp8c9smo5qu904s7; ls-popup-last-displayed=1665887757; ls-popup-4=1665887757
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 16 Oct 2022 02:35:58 GMT
content-type: application/javascript
last-modified: Thu, 09 Apr 2020 10:10:22 GMT
etag: W/"5e8ef48e-5513"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| staging.hotelviladepremia.com/wp-content/plugins/oscar-hotel-booking-engine/assets/css/style.css?ver=4.2 | 167.86.73.18 | 200 OK | 0 B |
URL HTTP/2staging.hotelviladepremia.com/wp-content/plugins/oscar-hotel-booking-engine/assets/css/style.css?ver=4.2 IP167.86.73.18:0
Analyzer | Verdict | Alert | fortinet | Phishing | |
GET /wp-content/plugins/oscar-hotel-booking-engine/assets/css/style.css?ver=4.2 HTTP/1.1
Host: staging.hotelviladepremia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://staging.hotelviladepremia.com/
Cookie: bNQZztypjxfPY=Vsbld2njU%40_yZ; qMuPUgcpZWl_IGx=HbyGIF7vU0z; tfhBnUHVz=IUDNnaBfW2%404%2Ag; PHPSESSID=tsuvfvh1tacp8c9smo5qu904s7; ls-popup-last-displayed=1665887757; ls-popup-4=1665887757
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 16 Oct 2022 02:35:58 GMT
content-type: text/css
last-modified: Mon, 05 Sep 2022 08:54:25 GMT
etag: W/"6315b941-95a"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| embed.tawk.to/_s/v4/app/63258f417d7/js/twk-vendor.js | 104.22.24.131 | 200 OK | 0 B |
URL HTTP/2embed.tawk.to/_s/v4/app/63258f417d7/js/twk-vendor.js IP104.22.24.131:0
GET /_s/v4/app/63258f417d7/js/twk-vendor.js HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://staging.hotelviladepremia.com
Connection: keep-alive
Referer: https://staging.hotelviladepremia.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 16 Oct 2022 02:36:01 GMT
content-type: application/javascript
last-modified: Sat, 17 Sep 2022 09:12:03 GMT
etag: W/"7dcb496e4882926f93f2e73fa87062c0"
access-control-allow-origin: *
cache-control: public, max-age=2592000, immutable
x-cache-status: HIT
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: MISS
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 75ad678bc97fb500-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| embed.tawk.to/_s/v4/app/63258f417d7/js/twk-chunk-32507910.js | 104.22.24.131 | 200 OK | 0 B |
URL HTTP/2embed.tawk.to/_s/v4/app/63258f417d7/js/twk-chunk-32507910.js IP104.22.24.131:0
GET /_s/v4/app/63258f417d7/js/twk-chunk-32507910.js HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://staging.hotelviladepremia.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 16 Oct 2022 02:36:02 GMT
content-type: application/javascript
last-modified: Sat, 17 Sep 2022 09:12:03 GMT
etag: W/"f10a53c04ef8191d522983c590674d5a"
age: 2481040
access-control-allow-origin: *
cache-control: public, max-age=2592000, immutable
x-cache-status: HIT
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: HIT
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 75ad6792bc82b500-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| staging.hotelviladepremia.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 | 167.86.73.18 | 200 OK | 0 B |
URL HTTP/2staging.hotelviladepremia.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 IP167.86.73.18:0
Analyzer | Verdict | Alert | fortinet | Phishing | |
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: staging.hotelviladepremia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://staging.hotelviladepremia.com/
Cookie: bNQZztypjxfPY=Vsbld2njU%40_yZ; qMuPUgcpZWl_IGx=HbyGIF7vU0z; tfhBnUHVz=IUDNnaBfW2%404%2Ag; PHPSESSID=tsuvfvh1tacp8c9smo5qu904s7; ls-popup-last-displayed=1665887757; ls-popup-4=1665887757
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 16 Oct 2022 02:35:58 GMT
content-type: application/javascript
last-modified: Mon, 05 Sep 2022 09:40:11 GMT
etag: W/"6315c3fb-2bd8"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| staging.hotelviladepremia.com/wp-content/themes/betheme/css/responsive.css?ver=21.2.2 | 167.86.73.18 | 200 OK | 0 B |
URL HTTP/2staging.hotelviladepremia.com/wp-content/themes/betheme/css/responsive.css?ver=21.2.2 IP167.86.73.18:0
GET /wp-content/themes/betheme/css/responsive.css?ver=21.2.2 HTTP/1.1
Host: staging.hotelviladepremia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://staging.hotelviladepremia.com/
Cookie: bNQZztypjxfPY=Vsbld2njU%40_yZ; qMuPUgcpZWl_IGx=HbyGIF7vU0z; tfhBnUHVz=IUDNnaBfW2%404%2Ag; PHPSESSID=tsuvfvh1tacp8c9smo5qu904s7; ls-popup-last-displayed=1665887757; ls-popup-4=1665887757
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 16 Oct 2022 02:35:58 GMT
content-type: text/css
last-modified: Mon, 27 May 2019 12:03:17 GMT
etag: W/"5cebd205-dceb"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| fonts.googleapis.com/css?family=Lato%3A400%2C300italic%2C400italic%2C700%2C700italic%2C900italic%2C900&ver=6.0.2 | 216.58.211.10 | 200 OK | 0 B |
URL HTTP/2fonts.googleapis.com/css?family=Lato%3A400%2C300italic%2C400italic%2C700%2C700italic%2C900italic%2C900&ver=6.0.2 IP216.58.211.10:0
GET /css?family=Lato%3A400%2C300italic%2C400italic%2C700%2C700italic%2C900italic%2C900&ver=6.0.2 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://staging.hotelviladepremia.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sun, 16 Oct 2022 02:35:58 GMT
date: Sun, 16 Oct 2022 02:35:58 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| staging.hotelviladepremia.com/wp-content/plugins/smart-logo-showcase-lite/css/owl.carousel.css?ver=1.1.9 | 167.86.73.18 | 200 OK | 0 B |
URL HTTP/2staging.hotelviladepremia.com/wp-content/plugins/smart-logo-showcase-lite/css/owl.carousel.css?ver=1.1.9 IP167.86.73.18:0
Analyzer | Verdict | Alert | fortinet | Phishing | |
GET /wp-content/plugins/smart-logo-showcase-lite/css/owl.carousel.css?ver=1.1.9 HTTP/1.1
Host: staging.hotelviladepremia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://staging.hotelviladepremia.com/
Cookie: bNQZztypjxfPY=Vsbld2njU%40_yZ; qMuPUgcpZWl_IGx=HbyGIF7vU0z; tfhBnUHVz=IUDNnaBfW2%404%2Ag; PHPSESSID=tsuvfvh1tacp8c9smo5qu904s7; ls-popup-last-displayed=1665887757; ls-popup-4=1665887757
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 16 Oct 2022 02:35:58 GMT
content-type: text/css
last-modified: Mon, 05 Sep 2022 08:55:27 GMT
etag: W/"6315b97f-17f5"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| staging.hotelviladepremia.com/wp-content/plugins/smart-logo-showcase-lite/css/popup-contact.css?ver=1.1.9 | 167.86.73.18 | 200 OK | 0 B |
URL HTTP/2staging.hotelviladepremia.com/wp-content/plugins/smart-logo-showcase-lite/css/popup-contact.css?ver=1.1.9 IP167.86.73.18:0
GET /wp-content/plugins/smart-logo-showcase-lite/css/popup-contact.css?ver=1.1.9 HTTP/1.1
Host: staging.hotelviladepremia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://staging.hotelviladepremia.com/
Cookie: bNQZztypjxfPY=Vsbld2njU%40_yZ; qMuPUgcpZWl_IGx=HbyGIF7vU0z; tfhBnUHVz=IUDNnaBfW2%404%2Ag; PHPSESSID=tsuvfvh1tacp8c9smo5qu904s7; ls-popup-last-displayed=1665887757; ls-popup-4=1665887757
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 16 Oct 2022 02:35:58 GMT
content-type: text/css
x-accel-version: 0.01
last-modified: Mon, 05 Sep 2022 08:55:27 GMT
etag: W/"278-5e7ea3dbf2bc8"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| embed.tawk.to/_s/v4/app/63258f417d7/js/twk-main.js | 104.22.24.131 | 200 OK | 0 B |
URL HTTP/2embed.tawk.to/_s/v4/app/63258f417d7/js/twk-main.js IP104.22.24.131:0
GET /_s/v4/app/63258f417d7/js/twk-main.js HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://staging.hotelviladepremia.com
Connection: keep-alive
Referer: https://staging.hotelviladepremia.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 16 Oct 2022 02:36:01 GMT
content-type: application/javascript
last-modified: Sat, 17 Sep 2022 09:12:03 GMT
etag: W/"da5bb1dc647470204df0e49f5afac2de"
access-control-allow-origin: *
cache-control: public, max-age=2592000, immutable
x-cache-status: HIT
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: MISS
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 75ad678bc97eb500-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| staging.hotelviladepremia.com/wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.1.5 | 167.86.73.18 | 200 OK | 0 B |
URL HTTP/2staging.hotelviladepremia.com/wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.1.5 IP167.86.73.18:0
Analyzer | Verdict | Alert | fortinet | Phishing | |
GET /wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.1.5 HTTP/1.1
Host: staging.hotelviladepremia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://staging.hotelviladepremia.com/
Cookie: bNQZztypjxfPY=Vsbld2njU%40_yZ; qMuPUgcpZWl_IGx=HbyGIF7vU0z; tfhBnUHVz=IUDNnaBfW2%404%2Ag; PHPSESSID=tsuvfvh1tacp8c9smo5qu904s7; ls-popup-last-displayed=1665887757; ls-popup-4=1665887757
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 16 Oct 2022 02:35:58 GMT
content-type: text/css
last-modified: Mon, 16 Dec 2019 13:50:17 GMT
etag: W/"5df78b99-e1a2"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| fonts.googleapis.com/css?family=Merriweather+Sans%3A300%2C400%2C700%2C800+Sans%3A300%2C400%2C700&ver=6.0.2 | 216.58.211.10 | 200 OK | 0 B |
URL HTTP/2fonts.googleapis.com/css?family=Merriweather+Sans%3A300%2C400%2C700%2C800+Sans%3A300%2C400%2C700&ver=6.0.2 IP216.58.211.10:0
GET /css?family=Merriweather+Sans%3A300%2C400%2C700%2C800+Sans%3A300%2C400%2C700&ver=6.0.2 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://staging.hotelviladepremia.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sun, 16 Oct 2022 02:35:58 GMT
date: Sun, 16 Oct 2022 02:35:58 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| fonts.googleapis.com/css?family=Roboto%3A400%2C300italic%2C400italic%2C500%2C500italic%2C700%2C700italic%2C900italic%2C900&ver=6.0.2 | 216.58.211.10 | 200 OK | 0 B |
URL HTTP/2fonts.googleapis.com/css?family=Roboto%3A400%2C300italic%2C400italic%2C500%2C500italic%2C700%2C700italic%2C900italic%2C900&ver=6.0.2 IP216.58.211.10:0
GET /css?family=Roboto%3A400%2C300italic%2C400italic%2C500%2C500italic%2C700%2C700italic%2C900italic%2C900&ver=6.0.2 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://staging.hotelviladepremia.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sun, 16 Oct 2022 02:35:58 GMT
date: Sun, 16 Oct 2022 02:35:58 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| staging.hotelviladepremia.com/wp-content/themes/betheme/css/base.css?ver=21.2.2 | 167.86.73.18 | 200 OK | 0 B |
URL HTTP/2staging.hotelviladepremia.com/wp-content/themes/betheme/css/base.css?ver=21.2.2 IP167.86.73.18:0
GET /wp-content/themes/betheme/css/base.css?ver=21.2.2 HTTP/1.1
Host: staging.hotelviladepremia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://staging.hotelviladepremia.com/
Cookie: bNQZztypjxfPY=Vsbld2njU%40_yZ; qMuPUgcpZWl_IGx=HbyGIF7vU0z; tfhBnUHVz=IUDNnaBfW2%404%2Ag; PHPSESSID=tsuvfvh1tacp8c9smo5qu904s7; ls-popup-last-displayed=1665887757; ls-popup-4=1665887757
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 16 Oct 2022 02:35:58 GMT
content-type: text/css
last-modified: Mon, 27 May 2019 12:03:18 GMT
etag: W/"5cebd206-da71"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| staging.hotelviladepremia.com/wp-content/plugins/smart-logo-showcase-lite/css/smls-frontend-style.css?ver=1.1.9 | 167.86.73.18 | 200 OK | 0 B |
URL HTTP/2staging.hotelviladepremia.com/wp-content/plugins/smart-logo-showcase-lite/css/smls-frontend-style.css?ver=1.1.9 IP167.86.73.18:0
GET /wp-content/plugins/smart-logo-showcase-lite/css/smls-frontend-style.css?ver=1.1.9 HTTP/1.1
Host: staging.hotelviladepremia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://staging.hotelviladepremia.com/
Cookie: bNQZztypjxfPY=Vsbld2njU%40_yZ; qMuPUgcpZWl_IGx=HbyGIF7vU0z; tfhBnUHVz=IUDNnaBfW2%404%2Ag; PHPSESSID=tsuvfvh1tacp8c9smo5qu904s7; ls-popup-last-displayed=1665887757; ls-popup-4=1665887757
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 16 Oct 2022 02:35:58 GMT
content-type: text/css
last-modified: Mon, 05 Sep 2022 08:55:27 GMT
etag: W/"6315b97f-7c46"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| staging.hotelviladepremia.com/wp-content/uploads/2019/07/sin-t%C3%ADtulo-36-1-1630x860.jpg | 167.86.73.18 | 200 OK | 0 B |
URL HTTP/2staging.hotelviladepremia.com/wp-content/uploads/2019/07/sin-t%C3%ADtulo-36-1-1630x860.jpg IP167.86.73.18:0
GET /wp-content/uploads/2019/07/sin-t%C3%ADtulo-36-1-1630x860.jpg HTTP/1.1
Host: staging.hotelviladepremia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://staging.hotelviladepremia.com/
Cookie: bNQZztypjxfPY=Vsbld2njU%40_yZ; qMuPUgcpZWl_IGx=HbyGIF7vU0z; tfhBnUHVz=IUDNnaBfW2%404%2Ag; PHPSESSID=tsuvfvh1tacp8c9smo5qu904s7; ls-popup-last-displayed=1665887757; ls-popup-4=1665887757
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 16 Oct 2022 02:36:00 GMT
content-type: image/jpeg
content-length: 194138
last-modified: Fri, 19 Jul 2019 17:30:19 GMT
etag: "5d31fe2b-2f65a"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| staging.hotelviladepremia.com/wp-includes/js/jquery/ui/sortable.min.js?ver=1.13.1 | 167.86.73.18 | 200 OK | 0 B |
URL HTTP/2staging.hotelviladepremia.com/wp-includes/js/jquery/ui/sortable.min.js?ver=1.13.1 IP167.86.73.18:0
Analyzer | Verdict | Alert | fortinet | Phishing | |
GET /wp-includes/js/jquery/ui/sortable.min.js?ver=1.13.1 HTTP/1.1
Host: staging.hotelviladepremia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://staging.hotelviladepremia.com/
Cookie: bNQZztypjxfPY=Vsbld2njU%40_yZ; qMuPUgcpZWl_IGx=HbyGIF7vU0z; tfhBnUHVz=IUDNnaBfW2%404%2Ag; PHPSESSID=tsuvfvh1tacp8c9smo5qu904s7; ls-popup-last-displayed=1665887757; ls-popup-4=1665887757
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 16 Oct 2022 02:35:59 GMT
content-type: application/javascript
last-modified: Mon, 05 Sep 2022 09:40:11 GMT
etag: W/"6315c3fb-636f"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| staging.hotelviladepremia.com/wp-content/plugins/google-language-translator/css/toolbar.css?ver=6.0.15 | 167.86.73.18 | 200 OK | 0 B |
URL HTTP/2staging.hotelviladepremia.com/wp-content/plugins/google-language-translator/css/toolbar.css?ver=6.0.15 IP167.86.73.18:0
Analyzer | Verdict | Alert | fortinet | Phishing | |
GET /wp-content/plugins/google-language-translator/css/toolbar.css?ver=6.0.15 HTTP/1.1
Host: staging.hotelviladepremia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://staging.hotelviladepremia.com/
Cookie: bNQZztypjxfPY=Vsbld2njU%40_yZ; qMuPUgcpZWl_IGx=HbyGIF7vU0z; tfhBnUHVz=IUDNnaBfW2%404%2Ag; PHPSESSID=tsuvfvh1tacp8c9smo5qu904s7; ls-popup-last-displayed=1665887757; ls-popup-4=1665887757
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 16 Oct 2022 02:35:58 GMT
content-type: text/css
last-modified: Mon, 05 Sep 2022 08:50:00 GMT
etag: W/"6315b838-1664"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| staging.hotelviladepremia.com/wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.1.5 | 167.86.73.18 | 200 OK | 0 B |
URL HTTP/2staging.hotelviladepremia.com/wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.1.5 IP167.86.73.18:0
GET /wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.1.5 HTTP/1.1
Host: staging.hotelviladepremia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://staging.hotelviladepremia.com/
Cookie: bNQZztypjxfPY=Vsbld2njU%40_yZ; qMuPUgcpZWl_IGx=HbyGIF7vU0z; tfhBnUHVz=IUDNnaBfW2%404%2Ag; PHPSESSID=tsuvfvh1tacp8c9smo5qu904s7; ls-popup-last-displayed=1665887757; ls-popup-4=1665887757
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 16 Oct 2022 02:35:58 GMT
content-type: application/javascript
last-modified: Mon, 16 Dec 2019 13:50:15 GMT
etag: W/"5df78b97-43767"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| staging.hotelviladepremia.com/wp-content/plugins/smart-logo-showcase-lite/js/tooltipster.bundle.js?ver=1.1.9 | 167.86.73.18 | 200 OK | 0 B |
URL HTTP/2staging.hotelviladepremia.com/wp-content/plugins/smart-logo-showcase-lite/js/tooltipster.bundle.js?ver=1.1.9 IP167.86.73.18:0
GET /wp-content/plugins/smart-logo-showcase-lite/js/tooltipster.bundle.js?ver=1.1.9 HTTP/1.1
Host: staging.hotelviladepremia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://staging.hotelviladepremia.com/
Cookie: bNQZztypjxfPY=Vsbld2njU%40_yZ; qMuPUgcpZWl_IGx=HbyGIF7vU0z; tfhBnUHVz=IUDNnaBfW2%404%2Ag; PHPSESSID=tsuvfvh1tacp8c9smo5qu904s7; ls-popup-last-displayed=1665887757; ls-popup-4=1665887757
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 16 Oct 2022 02:35:58 GMT
content-type: application/javascript
last-modified: Mon, 05 Sep 2022 08:55:27 GMT
etag: W/"6315b97f-1d059"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| hotelviladepremia.com/wp-content/uploads/2019/07/sin-t%C3%ADtulo-843.jpg | 167.86.73.18 | 200 OK | 0 B |
URL HTTP/2hotelviladepremia.com/wp-content/uploads/2019/07/sin-t%C3%ADtulo-843.jpg IP167.86.73.18:0
GET /wp-content/uploads/2019/07/sin-t%C3%ADtulo-843.jpg HTTP/1.1
Host: hotelviladepremia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://staging.hotelviladepremia.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 16 Oct 2022 02:35:59 GMT
content-type: image/jpeg
content-length: 359363
last-modified: Fri, 19 Jul 2019 10:34:23 GMT
etag: "5d319caf-57bc3"
pragma: public
cache-control: max-age=31536000, public
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| staging.hotelviladepremia.com/wp-content/plugins/smart-logo-showcase-lite/js/smls-frontend-script.js?ver=1.1.9 | 167.86.73.18 | 200 OK | 0 B |
URL HTTP/2staging.hotelviladepremia.com/wp-content/plugins/smart-logo-showcase-lite/js/smls-frontend-script.js?ver=1.1.9 IP167.86.73.18:0
Analyzer | Verdict | Alert | fortinet | Phishing | |
GET /wp-content/plugins/smart-logo-showcase-lite/js/smls-frontend-script.js?ver=1.1.9 HTTP/1.1
Host: staging.hotelviladepremia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://staging.hotelviladepremia.com/
Cookie: bNQZztypjxfPY=Vsbld2njU%40_yZ; qMuPUgcpZWl_IGx=HbyGIF7vU0z; tfhBnUHVz=IUDNnaBfW2%404%2Ag; PHPSESSID=tsuvfvh1tacp8c9smo5qu904s7; ls-popup-last-displayed=1665887757; ls-popup-4=1665887757
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 16 Oct 2022 02:35:58 GMT
content-type: application/javascript
last-modified: Mon, 05 Sep 2022 08:55:27 GMT
etag: W/"6315b97f-19a7"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| staging.hotelviladepremia.com/wp-content/plugins/nextend-smart-slider3-pro/nextend/media/dist/nextend-frontend.min.js?1576586450 | 167.86.73.18 | 200 OK | 0 B |
URL HTTP/2staging.hotelviladepremia.com/wp-content/plugins/nextend-smart-slider3-pro/nextend/media/dist/nextend-frontend.min.js?1576586450 IP167.86.73.18:0
Analyzer | Verdict | Alert | fortinet | Phishing | |
GET /wp-content/plugins/nextend-smart-slider3-pro/nextend/media/dist/nextend-frontend.min.js?1576586450 HTTP/1.1
Host: staging.hotelviladepremia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://staging.hotelviladepremia.com/
Cookie: bNQZztypjxfPY=Vsbld2njU%40_yZ; qMuPUgcpZWl_IGx=HbyGIF7vU0z; tfhBnUHVz=IUDNnaBfW2%404%2Ag; PHPSESSID=tsuvfvh1tacp8c9smo5qu904s7; ls-popup-last-displayed=1665887757; ls-popup-4=1665887757
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 16 Oct 2022 02:35:58 GMT
content-type: application/javascript
last-modified: Tue, 17 Dec 2019 12:40:50 GMT
etag: W/"5df8ccd2-e1e5"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| staging.hotelviladepremia.com/wp-includes/js/jquery/ui/core.min.js?ver=1.13.1 | 167.86.73.18 | 200 OK | 0 B |
URL HTTP/2staging.hotelviladepremia.com/wp-includes/js/jquery/ui/core.min.js?ver=1.13.1 IP167.86.73.18:0
Analyzer | Verdict | Alert | fortinet | Phishing | |
GET /wp-includes/js/jquery/ui/core.min.js?ver=1.13.1 HTTP/1.1
Host: staging.hotelviladepremia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://staging.hotelviladepremia.com/
Cookie: bNQZztypjxfPY=Vsbld2njU%40_yZ; qMuPUgcpZWl_IGx=HbyGIF7vU0z; tfhBnUHVz=IUDNnaBfW2%404%2Ag; PHPSESSID=tsuvfvh1tacp8c9smo5qu904s7; ls-popup-last-displayed=1665887757; ls-popup-4=1665887757
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 16 Oct 2022 02:35:59 GMT
content-type: application/javascript
last-modified: Mon, 05 Sep 2022 09:40:11 GMT
etag: W/"6315c3fb-50eb"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| staging.hotelviladepremia.com/wp-content/plugins/google-language-translator/css/style.css?ver=6.0.15 | 167.86.73.18 | 200 OK | 0 B |
URL HTTP/2staging.hotelviladepremia.com/wp-content/plugins/google-language-translator/css/style.css?ver=6.0.15 IP167.86.73.18:0
GET /wp-content/plugins/google-language-translator/css/style.css?ver=6.0.15 HTTP/1.1
Host: staging.hotelviladepremia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://staging.hotelviladepremia.com/
Cookie: bNQZztypjxfPY=Vsbld2njU%40_yZ; qMuPUgcpZWl_IGx=HbyGIF7vU0z; tfhBnUHVz=IUDNnaBfW2%404%2Ag; PHPSESSID=tsuvfvh1tacp8c9smo5qu904s7; ls-popup-last-displayed=1665887757; ls-popup-4=1665887757
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 16 Oct 2022 02:35:58 GMT
content-type: text/css
last-modified: Mon, 05 Sep 2022 08:50:00 GMT
etag: W/"6315b838-1f7d7"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| staging.hotelviladepremia.com/wp-content/plugins/LayerSlider/assets/static/layerslider/css/layerslider.css?ver=6.11.1 | 167.86.73.18 | 200 OK | 0 B |
URL HTTP/2staging.hotelviladepremia.com/wp-content/plugins/LayerSlider/assets/static/layerslider/css/layerslider.css?ver=6.11.1 IP167.86.73.18:0
Analyzer | Verdict | Alert | fortinet | Phishing | |
GET /wp-content/plugins/LayerSlider/assets/static/layerslider/css/layerslider.css?ver=6.11.1 HTTP/1.1
Host: staging.hotelviladepremia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://staging.hotelviladepremia.com/
Cookie: bNQZztypjxfPY=Vsbld2njU%40_yZ; qMuPUgcpZWl_IGx=HbyGIF7vU0z; tfhBnUHVz=IUDNnaBfW2%404%2Ag; PHPSESSID=tsuvfvh1tacp8c9smo5qu904s7; ls-popup-last-displayed=1665887757; ls-popup-4=1665887757
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 16 Oct 2022 02:35:58 GMT
content-type: text/css
last-modified: Thu, 09 Apr 2020 10:10:22 GMT
etag: W/"5e8ef48e-5503"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| translate.google.com/translate_a/element.js?cb=GoogleLanguageTranslatorInit | 142.250.74.46 | 200 OK | 0 B |
URL HTTP/2translate.google.com/translate_a/element.js?cb=GoogleLanguageTranslatorInit IP142.250.74.46:0
GET /translate_a/element.js?cb=GoogleLanguageTranslatorInit HTTP/1.1
Host: translate.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://staging.hotelviladepremia.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Sun, 16 Oct 2022 02:35:58 GMT
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
set-cookie: CONSENT=PENDING+197; expires=Tue, 15-Oct-2024 02:35:58 GMT; path=/; domain=.google.com; Secure
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| staging.hotelviladepremia.com/wp-content/plugins/nextend-smart-slider3-pro/library/media/plugins/type/carousel/carousel/dist/smartslider-carousel-single-type-frontend.min.js?1576586448 | 167.86.73.18 | 200 OK | 0 B |
URL HTTP/2staging.hotelviladepremia.com/wp-content/plugins/nextend-smart-slider3-pro/library/media/plugins/type/carousel/carousel/dist/smartslider-carousel-single-type-frontend.min.js?1576586448 IP167.86.73.18:0
GET /wp-content/plugins/nextend-smart-slider3-pro/library/media/plugins/type/carousel/carousel/dist/smartslider-carousel-single-type-frontend.min.js?1576586448 HTTP/1.1
Host: staging.hotelviladepremia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://staging.hotelviladepremia.com/
Cookie: bNQZztypjxfPY=Vsbld2njU%40_yZ; qMuPUgcpZWl_IGx=HbyGIF7vU0z; tfhBnUHVz=IUDNnaBfW2%404%2Ag; PHPSESSID=tsuvfvh1tacp8c9smo5qu904s7; ls-popup-last-displayed=1665887757; ls-popup-4=1665887757
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 16 Oct 2022 02:35:59 GMT
content-type: application/javascript
last-modified: Tue, 17 Dec 2019 12:40:48 GMT
etag: W/"5df8ccd0-247b"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| staging.hotelviladepremia.com/wp-content/plugins/smart-logo-showcase-lite/css/tooltipster.bundle.css?ver=1.1.9 | 167.86.73.18 | 200 OK | 0 B |
URL HTTP/2staging.hotelviladepremia.com/wp-content/plugins/smart-logo-showcase-lite/css/tooltipster.bundle.css?ver=1.1.9 IP167.86.73.18:0
Analyzer | Verdict | Alert | fortinet | Phishing | |
GET /wp-content/plugins/smart-logo-showcase-lite/css/tooltipster.bundle.css?ver=1.1.9 HTTP/1.1
Host: staging.hotelviladepremia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://staging.hotelviladepremia.com/
Cookie: bNQZztypjxfPY=Vsbld2njU%40_yZ; qMuPUgcpZWl_IGx=HbyGIF7vU0z; tfhBnUHVz=IUDNnaBfW2%404%2Ag; PHPSESSID=tsuvfvh1tacp8c9smo5qu904s7; ls-popup-last-displayed=1665887757; ls-popup-4=1665887757
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 16 Oct 2022 02:35:58 GMT
content-type: text/css
last-modified: Mon, 05 Sep 2022 08:55:27 GMT
etag: W/"6315b97f-4162"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| staging.hotelviladepremia.com/wp-content/plugins/cookie-law-info/public/js/cookie-law-info-public.js?ver=2.1.2 | 167.86.73.18 | 200 OK | 0 B |
URL HTTP/2staging.hotelviladepremia.com/wp-content/plugins/cookie-law-info/public/js/cookie-law-info-public.js?ver=2.1.2 IP167.86.73.18:0
Analyzer | Verdict | Alert | fortinet | Phishing | |
GET /wp-content/plugins/cookie-law-info/public/js/cookie-law-info-public.js?ver=2.1.2 HTTP/1.1
Host: staging.hotelviladepremia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://staging.hotelviladepremia.com/
Cookie: bNQZztypjxfPY=Vsbld2njU%40_yZ; qMuPUgcpZWl_IGx=HbyGIF7vU0z; tfhBnUHVz=IUDNnaBfW2%404%2Ag; PHPSESSID=tsuvfvh1tacp8c9smo5qu904s7; ls-popup-last-displayed=1665887757; ls-popup-4=1665887757
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 16 Oct 2022 02:35:58 GMT
content-type: application/javascript
last-modified: Mon, 05 Sep 2022 08:48:46 GMT
etag: W/"6315b7ee-8583"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| embed.tawk.to/_s/v4/app/63258f417d7/js/twk-chunk-vendors.js | 104.22.24.131 | 200 OK | 0 B |
URL HTTP/2embed.tawk.to/_s/v4/app/63258f417d7/js/twk-chunk-vendors.js IP104.22.24.131:0
GET /_s/v4/app/63258f417d7/js/twk-chunk-vendors.js HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://staging.hotelviladepremia.com
Connection: keep-alive
Referer: https://staging.hotelviladepremia.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 16 Oct 2022 02:36:01 GMT
content-type: application/javascript
last-modified: Sat, 17 Sep 2022 09:12:03 GMT
etag: W/"81c2642aac0b88b6b237d279f5f8ce67"
access-control-allow-origin: *
cache-control: public, max-age=2592000, immutable
x-cache-status: HIT
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: MISS
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 75ad678bd986b500-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| embed.tawk.to/_s/v4/app/63258f417d7/css/min-widget.css | 104.22.24.131 | 200 OK | 0 B |
URL HTTP/2embed.tawk.to/_s/v4/app/63258f417d7/css/min-widget.css IP104.22.24.131:0
GET /_s/v4/app/63258f417d7/css/min-widget.css HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 16 Oct 2022 02:36:02 GMT
content-type: text/css
cache-control: public, max-age=2592000, immutable
cf-bgj: minify
cf-polished: origSize=24960
access-control-allow-origin: *
age: 2481039
etag: W/"80df9814fe6b98404ccc1df3c455ceaa"
last-modified: Sat, 17 Sep 2022 09:12:02 GMT
strict-transport-security: max-age=0; includeSubDomains; preload
x-cache-status: HIT
cf-cache-status: HIT
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 75ad67935cb6b500-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| rec.smartlook.com/recorder.js | 185.76.9.18 | 200 OK | 0 B |
URL HTTP/2rec.smartlook.com/recorder.js IP185.76.9.18:0 ASN#60068 Datacamp Limited
GET /recorder.js HTTP/1.1
Host: rec.smartlook.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://staging.hotelviladepremia.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 16 Oct 2022 02:36:00 GMT
content-type: application/javascript
access-control-allow-origin: *
cache-control: public, max-age=600
etag: W/"634919b5-7492"
last-modified: Fri, 14 Oct 2022 08:11:33 GMT
strict-transport-security: max-age=31536000
vary: Accept-Encoding
x-accel-expires: @1665887967
server: CDN77-Turbo
x-77-nzt: AblMCQ0aQpD/iQEAAA
x-77-nzt-ray: kqJGvqZeVVU
x-cache: HIT
x-age: 393
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
|
|
| staging.hotelviladepremia.com/ | 167.86.73.18 | 200 OK | 0 B |
URL HTTP/2staging.hotelviladepremia.com/ IP167.86.73.18:0
Analyzer | Verdict | Alert | fortinet | Phishing | |
GET / HTTP/1.1
Host: staging.hotelviladepremia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
server: nginx
date: Sun, 16 Oct 2022 02:35:58 GMT
content-type: text/html; charset=UTF-8
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
p3p: CP="ALL DSP NID CURa ADMa DEVa HISa OTPa OUR NOR NAV DEM"
link: <https://staging.hotelviladepremia.com/wp-json/>; rel="https://api.w.org/", <https://staging.hotelviladepremia.com/wp-json/wp/v2/pages/7>; rel="alternate"; type="application/json", <https://staging.hotelviladepremia.com/>; rel=shortlink
set-cookie: bNQZztypjxfPY=Vsbld2njU%40_yZ; expires=Mon, 17-Oct-2022 02:35:57 GMT; Max-Age=86400; path=/; secure
qMuPUgcpZWl_IGx=HbyGIF7vU0z; expires=Mon, 17-Oct-2022 02:35:57 GMT; Max-Age=86400; path=/; secure
tfhBnUHVz=IUDNnaBfW2%404%2Ag; expires=Mon, 17-Oct-2022 02:35:57 GMT; Max-Age=86400; path=/; secure
PHPSESSID=tsuvfvh1tacp8c9smo5qu904s7; path=/
ls-popup-last-displayed=1665887757; expires=Sat, 05-Oct-2024 02:35:57 GMT; Max-Age=62208000; path=/
ls-popup-4=1665887757; expires=Mon, 16-Oct-2023 02:35:57 GMT; Max-Age=31536000
x-powered-by: PHP/7.4.32, PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| staging.hotelviladepremia.com/wp-content/plugins/smart-logo-showcase-lite/inc/smls-block/smls-block.css?ver=1.1.9 | 167.86.73.18 | 200 OK | 0 B |
URL HTTP/2staging.hotelviladepremia.com/wp-content/plugins/smart-logo-showcase-lite/inc/smls-block/smls-block.css?ver=1.1.9 IP167.86.73.18:0
Analyzer | Verdict | Alert | fortinet | Phishing | |
GET /wp-content/plugins/smart-logo-showcase-lite/inc/smls-block/smls-block.css?ver=1.1.9 HTTP/1.1
Host: staging.hotelviladepremia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://staging.hotelviladepremia.com/
Cookie: bNQZztypjxfPY=Vsbld2njU%40_yZ; qMuPUgcpZWl_IGx=HbyGIF7vU0z; tfhBnUHVz=IUDNnaBfW2%404%2Ag; PHPSESSID=tsuvfvh1tacp8c9smo5qu904s7; ls-popup-last-displayed=1665887757; ls-popup-4=1665887757
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 16 Oct 2022 02:35:58 GMT
content-type: text/css
x-accel-version: 0.01
last-modified: Mon, 05 Sep 2022 08:55:27 GMT
etag: W/"95-5e7ea3dbf5aa8"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| fonts.googleapis.com/css?family=Montserrat%3A400%2C700&ver=6.0.2 | 216.58.211.10 | 200 OK | 0 B |
URL HTTP/2fonts.googleapis.com/css?family=Montserrat%3A400%2C700&ver=6.0.2 IP216.58.211.10:0
GET /css?family=Montserrat%3A400%2C700&ver=6.0.2 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://staging.hotelviladepremia.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sun, 16 Oct 2022 02:35:58 GMT
date: Sun, 16 Oct 2022 02:35:58 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| staging.hotelviladepremia.com/wp-content/plugins/revslider/public/assets/js/revolution.tools.min.js?ver=6.0 | 167.86.73.18 | 200 OK | 0 B |
URL HTTP/2staging.hotelviladepremia.com/wp-content/plugins/revslider/public/assets/js/revolution.tools.min.js?ver=6.0 IP167.86.73.18:0
Analyzer | Verdict | Alert | fortinet | Phishing | |
GET /wp-content/plugins/revslider/public/assets/js/revolution.tools.min.js?ver=6.0 HTTP/1.1
Host: staging.hotelviladepremia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://staging.hotelviladepremia.com/
Cookie: bNQZztypjxfPY=Vsbld2njU%40_yZ; qMuPUgcpZWl_IGx=HbyGIF7vU0z; tfhBnUHVz=IUDNnaBfW2%404%2Ag; PHPSESSID=tsuvfvh1tacp8c9smo5qu904s7; ls-popup-last-displayed=1665887757; ls-popup-4=1665887757
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 16 Oct 2022 02:35:58 GMT
content-type: application/javascript
last-modified: Mon, 16 Dec 2019 13:50:15 GMT
etag: W/"5df78b97-24ca1"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| embed.tawk.to/_s/v4/app/63258f417d7/js/twk-chunk-4fe9d5dd.js | 104.22.24.131 | 200 OK | 0 B |
URL HTTP/2embed.tawk.to/_s/v4/app/63258f417d7/js/twk-chunk-4fe9d5dd.js IP104.22.24.131:0
GET /_s/v4/app/63258f417d7/js/twk-chunk-4fe9d5dd.js HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://staging.hotelviladepremia.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 16 Oct 2022 02:36:02 GMT
content-type: application/javascript
last-modified: Sat, 17 Sep 2022 09:12:03 GMT
etag: W/"5f434bdd806571a4e1b385bee9316ff6"
age: 2481040
access-control-allow-origin: *
cache-control: public, max-age=2592000, immutable
x-cache-status: HIT
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: HIT
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 75ad6792ac7db500-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| staging.hotelviladepremia.com/wp-content/themes/betheme/css/shortcodes.css?ver=21.2.2 | 167.86.73.18 | 200 OK | 0 B |
URL HTTP/2staging.hotelviladepremia.com/wp-content/themes/betheme/css/shortcodes.css?ver=21.2.2 IP167.86.73.18:0
GET /wp-content/themes/betheme/css/shortcodes.css?ver=21.2.2 HTTP/1.1
Host: staging.hotelviladepremia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://staging.hotelviladepremia.com/
Cookie: bNQZztypjxfPY=Vsbld2njU%40_yZ; qMuPUgcpZWl_IGx=HbyGIF7vU0z; tfhBnUHVz=IUDNnaBfW2%404%2Ag; PHPSESSID=tsuvfvh1tacp8c9smo5qu904s7; ls-popup-last-displayed=1665887757; ls-popup-4=1665887757
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 16 Oct 2022 02:35:59 GMT
content-type: text/css
last-modified: Mon, 27 May 2019 12:03:17 GMT
etag: W/"5cebd205-217f9"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| staging.hotelviladepremia.com/wp-includes/css/dist/block-library/style.min.css?ver=6.0.2 | 167.86.73.18 | 200 OK | 0 B |
URL HTTP/2staging.hotelviladepremia.com/wp-includes/css/dist/block-library/style.min.css?ver=6.0.2 IP167.86.73.18:0
Analyzer | Verdict | Alert | fortinet | Phishing | |
GET /wp-includes/css/dist/block-library/style.min.css?ver=6.0.2 HTTP/1.1
Host: staging.hotelviladepremia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://staging.hotelviladepremia.com/
Cookie: bNQZztypjxfPY=Vsbld2njU%40_yZ; qMuPUgcpZWl_IGx=HbyGIF7vU0z; tfhBnUHVz=IUDNnaBfW2%404%2Ag; PHPSESSID=tsuvfvh1tacp8c9smo5qu904s7; ls-popup-last-displayed=1665887757; ls-popup-4=1665887757
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 16 Oct 2022 02:35:58 GMT
content-type: text/css
last-modified: Mon, 05 Sep 2022 09:40:11 GMT
etag: W/"6315c3fb-15b64"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| fonts.googleapis.com/css?family=Oxygen%3A300%2C400%2C700&ver=6.0.2 | 216.58.211.10 | 200 OK | 0 B |
URL HTTP/2fonts.googleapis.com/css?family=Oxygen%3A300%2C400%2C700&ver=6.0.2 IP216.58.211.10:0
GET /css?family=Oxygen%3A300%2C400%2C700&ver=6.0.2 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://staging.hotelviladepremia.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sun, 16 Oct 2022 02:35:58 GMT
date: Sun, 16 Oct 2022 02:35:58 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| maxcdn.bootstrapcdn.com/bootstrap/3.3.7/js/bootstrap.min.js?ver=6.0.2 | 104.18.10.207 | 200 OK | 0 B |
URL HTTP/2maxcdn.bootstrapcdn.com/bootstrap/3.3.7/js/bootstrap.min.js?ver=6.0.2 IP104.18.10.207:0
GET /bootstrap/3.3.7/js/bootstrap.min.js?ver=6.0.2 HTTP/1.1
Host: maxcdn.bootstrapcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://staging.hotelviladepremia.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 16 Oct 2022 02:35:58 GMT
content-type: application/javascript; charset=utf-8
vary: Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
access-control-allow-origin: *
cache-control: public, max-age=31919000
etag: W/"5869c96cc8f19086aee625d670d741f9"
last-modified: Mon, 25 Jan 2021 22:04:00 GMT
cdn-cachedat: 05/12/2022 03:05:27
cdn-proxyver: 1.02
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 863
cdn-status: 200
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-requestid: 6d59e58b55f916c7ba1b274da79db1c5
cdn-cache: HIT
cf-cache-status: HIT
age: 3999636
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 75ad677c2c600b02-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| va.tawk.to/log-performance/v3 | 104.22.24.131 | 200 OK | 0 B |
URL HTTP/2va.tawk.to/log-performance/v3 IP104.22.24.131:0
OPTIONS /log-performance/v3 HTTP/1.1
Host: va.tawk.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://staging.hotelviladepremia.com/
Origin: https://staging.hotelviladepremia.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 16 Oct 2022 02:36:03 GMT
x-served-by: visitor-application-preemptive-c1l5
access-control-allow-origin: https://staging.hotelviladepremia.com
access-control-allow-credentials: true
access-control-allow-methods: POST,OPTIONS
access-control-allow-headers: content-type,x-tawk-token
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: DYNAMIC
x-content-type-options: nosniff
server: cloudflare
cf-ray: 75ad67962e03b500-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| staging.hotelviladepremia.com/wp-content/plugins/smart-logo-showcase-lite/css/smls-responsive.css?ver=1.1.9 | 167.86.73.18 | 200 OK | 0 B |
URL HTTP/2staging.hotelviladepremia.com/wp-content/plugins/smart-logo-showcase-lite/css/smls-responsive.css?ver=1.1.9 IP167.86.73.18:0
Analyzer | Verdict | Alert | fortinet | Phishing | |
GET /wp-content/plugins/smart-logo-showcase-lite/css/smls-responsive.css?ver=1.1.9 HTTP/1.1
Host: staging.hotelviladepremia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://staging.hotelviladepremia.com/
Cookie: bNQZztypjxfPY=Vsbld2njU%40_yZ; qMuPUgcpZWl_IGx=HbyGIF7vU0z; tfhBnUHVz=IUDNnaBfW2%404%2Ag; PHPSESSID=tsuvfvh1tacp8c9smo5qu904s7; ls-popup-last-displayed=1665887757; ls-popup-4=1665887757
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 16 Oct 2022 02:35:58 GMT
content-type: text/css
last-modified: Mon, 05 Sep 2022 08:55:27 GMT
etag: W/"6315b97f-1231"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| staging.hotelviladepremia.com/wp-content/plugins/wp-gdpr-compliance/Assets/js/front.min.js?ver=1662368303 | 167.86.73.18 | 200 OK | 0 B |
URL HTTP/2staging.hotelviladepremia.com/wp-content/plugins/wp-gdpr-compliance/Assets/js/front.min.js?ver=1662368303 IP167.86.73.18:0
Analyzer | Verdict | Alert | fortinet | Phishing | |
GET /wp-content/plugins/wp-gdpr-compliance/Assets/js/front.min.js?ver=1662368303 HTTP/1.1
Host: staging.hotelviladepremia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://staging.hotelviladepremia.com/
Cookie: bNQZztypjxfPY=Vsbld2njU%40_yZ; qMuPUgcpZWl_IGx=HbyGIF7vU0z; tfhBnUHVz=IUDNnaBfW2%404%2Ag; PHPSESSID=tsuvfvh1tacp8c9smo5qu904s7; ls-popup-last-displayed=1665887757; ls-popup-4=1665887757
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 16 Oct 2022 02:35:58 GMT
content-type: application/javascript
last-modified: Mon, 05 Sep 2022 08:58:23 GMT
etag: W/"6315ba2f-e6f5"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| va.tawk.to/v1/widget-settings?propertyId=5da74948df22d913399f816e&widgetId=default&sv=undefined | 104.22.24.131 | 200 OK | 0 B |
URL HTTP/2va.tawk.to/v1/widget-settings?propertyId=5da74948df22d913399f816e&widgetId=default&sv=undefined IP104.22.24.131:0
GET /v1/widget-settings?propertyId=5da74948df22d913399f816e&widgetId=default&sv=undefined HTTP/1.1
Host: va.tawk.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://staging.hotelviladepremia.com/
Origin: https://staging.hotelviladepremia.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 16 Oct 2022 02:36:02 GMT
content-type: application/json
x-served-by: visitor-application-preemptive-c1l5
access-control-allow-origin: *
access-control-allow-methods: GET,OPTIONS
access-control-allow-headers: content-type,x-tawk-token
cache-control: public, max-age=7200, s-maxage=1800
etag: W/"2-2-0"
vary: Accept-Encoding
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: MISS
x-content-type-options: nosniff
server: cloudflare
cf-ray: 75ad678f1ad7b500-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| embed.tawk.to/5da74948df22d913399f816e/default | 104.22.24.131 | 200 OK | 0 B |
URL HTTP/2embed.tawk.to/5da74948df22d913399f816e/default IP104.22.24.131:0
GET /5da74948df22d913399f816e/default HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://staging.hotelviladepremia.com
Connection: keep-alive
Referer: https://staging.hotelviladepremia.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 16 Oct 2022 02:36:00 GMT
content-type: application/x-javascript
access-control-allow-origin: *
cache-control: public, max-age=7200, s-maxage=3600
etag: W/"stable-v4-63258f417d7"
vary: Accept-Encoding
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: MISS
x-content-type-options: nosniff
server: cloudflare
cf-ray: 75ad6782dd7ab500-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| fonts.googleapis.com/css?family=Open+Sans%3A400%2C300%2C600%2C700%2C800&ver=6.0.2 | 216.58.211.10 | 200 OK | 0 B |
URL HTTP/2fonts.googleapis.com/css?family=Open+Sans%3A400%2C300%2C600%2C700%2C800&ver=6.0.2 IP216.58.211.10:0
GET /css?family=Open+Sans%3A400%2C300%2C600%2C700%2C800&ver=6.0.2 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://staging.hotelviladepremia.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sun, 16 Oct 2022 02:35:58 GMT
date: Sun, 16 Oct 2022 02:35:58 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| staging.hotelviladepremia.com/wp-content/themes/betheme/style.css?ver=21.2.2 | 167.86.73.18 | 200 OK | 0 B |
URL HTTP/2staging.hotelviladepremia.com/wp-content/themes/betheme/style.css?ver=21.2.2 IP167.86.73.18:0
GET /wp-content/themes/betheme/style.css?ver=21.2.2 HTTP/1.1
Host: staging.hotelviladepremia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://staging.hotelviladepremia.com/
Cookie: bNQZztypjxfPY=Vsbld2njU%40_yZ; qMuPUgcpZWl_IGx=HbyGIF7vU0z; tfhBnUHVz=IUDNnaBfW2%404%2Ag; PHPSESSID=tsuvfvh1tacp8c9smo5qu904s7; ls-popup-last-displayed=1665887757; ls-popup-4=1665887757
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 16 Oct 2022 02:35:58 GMT
content-type: text/css
x-accel-version: 0.01
last-modified: Tue, 22 Oct 2019 16:16:02 GMT
etag: W/"15e-595821dcfd480"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| embed.tawk.to/_s/v4/app/63258f417d7/js/twk-runtime.js | 104.22.24.131 | 200 OK | 0 B |
URL HTTP/2embed.tawk.to/_s/v4/app/63258f417d7/js/twk-runtime.js IP104.22.24.131:0
GET /_s/v4/app/63258f417d7/js/twk-runtime.js HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://staging.hotelviladepremia.com
Connection: keep-alive
Referer: https://staging.hotelviladepremia.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 16 Oct 2022 02:36:01 GMT
content-type: application/javascript
last-modified: Sat, 17 Sep 2022 09:12:03 GMT
etag: W/"31ca85b2b61bb42db4e40c2e9429f7dc"
access-control-allow-origin: *
cache-control: public, max-age=2592000, immutable
x-cache-status: HIT
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: MISS
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 75ad678be989b500-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|