Report - albertguzman.com/

Report Overview

Submitted URL
albertguzman.com/
IP
82.223.3.76
ASN
#8560 IONOS SE
Submitted
2022-12-01 11:19:23
Access
Website Title
Final URL
Tags
None
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
10

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
www.googletagmanager.com	75	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	386 B	44 kB	142.250.74.168
stats.g.doubleclick.net	96	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	606 B	708 B	64.233.165.155
f.vimeocdn.com	3234	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.2 kB	255 kB	151.101.246.109
i.vimeocdn.com	3126	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	966 B	15 kB	151.101.246.109
r3.o.lencr.org	344	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.4 kB	6.2 kB	23.36.76.226
ocsp.digicert.com	86	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.0 kB	2.2 kB	93.184.220.29
firefox.settings.services.mozilla.com	867	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	782 B	2.4 kB	34.102.187.140
content-signature-2.cdn.mozilla.net	1152	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	413 B	5.8 kB	34.160.144.191
img-getpocket.cdn.mozilla.net	1631	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.8 kB	80 kB	34.120.237.76
ocsp.pki.goog	175	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.7 kB	5.6 kB	142.250.74.131
push.services.mozilla.com	2140	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	606 B	127 B	34.218.164.174
www.google-analytics.com	40	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	373 B	21 kB	142.250.74.110
player.vimeo.com	1858	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	548 B	10 kB	162.159.138.60
albertguzman.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	7.1 kB	1.1 MB	82.223.3.76
contile.services.mozilla.com	1114	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	333 B	229 B	34.117.237.239
fonts.googleapis.com	8877	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	500 B	83 kB	142.250.74.106

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

Scan Date	Severity	Indicator	Alert
2022-12-01	medium	albertguzman.com/	Phishing
2022-12-01	medium	albertguzman.com/	Phishing
2022-12-01	medium	albertguzman.com/wp-content/cache/min/1/f26c8f966404ff79674267616a5cc637.js	Phishing
2022-12-01	medium	albertguzman.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.0	Phishing
2022-12-01	medium	albertguzman.com/wp-content/themes/uncode/library/js/init.js	Phishing

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

JavaScript (27)

	URL	Size	First Seen	Last Seen
	albertguzman.com/	57 B	2023-03-11	2023-03-11
Pretty URL albertguzman.com/ IP 82.223.3.76 ASN #8560 IONOS SE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 23:31:22 Last Seen2023-03-11 23:31:22 Times Seen1 Hash 4883758cb360b1a525f91e725e89a0da 6f206d294b565b3b588f7417ef52d5c20abf1236 0ae47fb46e29767f90c393b06025881a73b37e49cf6feab9712779db6ebef98a Loading...

	player.vimeo.com/video/212742380?title=0&byline=0&portrait=0&dnt=1?h=567bc319dc&dnt=1&app_id=122963	359 B	2023-03-08	2023-03-18
Pretty URL player.vimeo.com/video/212742380?title=0&byline=0&portrait=0&dnt=1?h=567bc319dc&dnt=1&app_id=122963 IP 162.159.138.60 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:23:12 Last Seen2023-03-18 07:43:20 Times Seen1 Hash 3bebca74492661d309358758a5066f7f 35eb0d0a00a8f3df0c825a0093eacb71bc6e7d43 c5251ebe799b83572d361fe5378abcfe1c5f08fd2f9ad71d34e43b492b85b94b Loading...

	albertguzman.com/wp-content/themes/uncode/library/js/init.js	171 kB	2023-03-07	2023-11-22
Pretty URL albertguzman.com/wp-content/themes/uncode/library/js/init.js IP 82.223.3.76 ASN #8560 IONOS SE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 15:31:28 Last Seen2023-11-22 14:45:38 Times Seen3 Hash e561495474eaccf5d66b58694eaafc98 9619163bbb4213a4561c11b2d7a051a939d6acee 9da856569ae3348b80c6dc28053d2403677af8f8526361fd003fc9ff0a6b83e6 Loading...

	albertguzman.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.0	90 kB	2023-03-07	2024-04-24
Pretty URL albertguzman.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.0 IP 82.223.3.76 ASN #8560 IONOS SE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:02 Last Seen2024-04-24 22:40:37 Times Seen31821 Hash 02dd5d04add4759122013c5ab4dc5cc2 a45a56e396ac549b4ff39b696ce9e0c16a7612de bd4de6a3fc0fb68d6f76ba7b93514b96a92e585c295b5351c31ad92a4b0777ea Loading...

	albertguzman.com/	20 B	2023-03-07	2024-04-18
Pretty URL albertguzman.com/ IP 82.223.3.76 ASN #8560 IONOS SE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:34:36 Last Seen2024-04-18 11:52:52 Times Seen347 Hash 206dddf111ad5a4f871e2f2557a79b78 1b43dee659722b6b4feb2529f7a8e3064f1327ed 469ad202198a31343b51ac1db23299fa0528e9b8d0aae9db2c817830e693233b Loading...

	f.vimeocdn.com/p/4.14.1/js/player.module.js	484 kB	2023-03-08	2023-03-11
Pretty URL f.vimeocdn.com/p/4.14.1/js/player.module.js IP 151.101.246.109 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:23:12 Last Seen2023-03-11 23:52:38 Times Seen1 Hash 5d2e31c6d64ddcb0aa152d5ab6e7ea54 956ee5db46786642603110687422a6e31f52d3f3 9bc4fe696ce22840edd594d94562f963f1710043bb81c71f179f39e133d81c70 Loading...

	albertguzman.com/	5.8 kB	2023-03-07	2023-03-12
Pretty URL albertguzman.com/ IP 82.223.3.76 ASN #8560 IONOS SE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 15:31:28 Last Seen2023-03-12 17:37:13 Times Seen1 Hash 303d37f9d707670bbc2538c3458ae3df 673e5450aca54654939c4a13b0c572a5345c5a01 f6d4a18830f3f6ccbf7c0a084ff26094df545f87b587a77e93744cf93e022b80 Loading...

	player.vimeo.com/video/212742380?title=0&byline=0&portrait=0&dnt=1?h=567bc319dc&dnt=1&app_id=122963	820 B	2023-03-08	2023-03-18
Pretty URL player.vimeo.com/video/212742380?title=0&byline=0&portrait=0&dnt=1?h=567bc319dc&dnt=1&app_id=122963 IP 162.159.138.60 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:23:12 Last Seen2023-03-18 07:43:22 Times Seen1 Hash ef57c0109c58c2cbc1c0ef49652eb902 180b3bab67f413ffb480bd1eabfe0c66e2550b1a 5598f2690bcdf9b90ff7c652108104895b8e0f0346dd6cf425e4b36380a2a411 Loading...

	f.vimeocdn.com/p/4.14.1/js/vendor.module.js	484 kB	2023-03-08	2023-03-11
Pretty URL f.vimeocdn.com/p/4.14.1/js/vendor.module.js IP 151.101.246.109 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:23:12 Last Seen2023-03-11 23:52:38 Times Seen1 Hash 972045036cf97b32ac55bfa336566b7b bf1d011eca0d600000de759d416b7abbcf6e04a7 62ad87ae35b8e6948990730f5ac9dfd088f37aa0b36841995b43f1cbb0553fe3 Loading...

	www.googletagmanager.com/gtag/js?id=UA-173246516-1	112 kB	2023-03-11	2023-03-11
Pretty URL www.googletagmanager.com/gtag/js?id=UA-173246516-1 IP 142.250.74.168 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 23:31:22 Last Seen2023-03-11 23:31:22 Times Seen1 Hash 4b44cbe58df4ecfcb3d352d4af6384ee 3e4dddd52ffa19742358516b62ba7eaaac08558c 9bd3b4abdb9e6be118276e8e506e3a38e757be5b8c58b9d8a71a59a5a5eb4589 Loading...

	www.google-analytics.com/analytics.js	50 kB	2023-03-08	2024-04-24
Pretty URL www.google-analytics.com/analytics.js IP 142.250.74.110 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 05:22:31 Last Seen2024-04-24 18:41:20 Times Seen1526 Hash fda30e8a22c9bcd954fd8d0fadd0e77c ae47cd34cbde081a48d7f92fc80aaf06a1381193 b42e4a056cb5b80c5a315040826866445ec9332f0749e184509ab2d9d3b86719 Loading...

	albertguzman.com/	57 B	2023-03-11	2023-03-11
Pretty URL albertguzman.com/ IP 82.223.3.76 ASN #8560 IONOS SE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 23:31:22 Last Seen2023-03-11 23:31:22 Times Seen1 Hash 2b26fa5bd5be98d1e9c8b346a08c57cd 0849b915e00b4f5cf3404f27be4a9bf3c1f699c4 8eb7e2b105c44945807c29af11162b5e441f63151cd16752390d2435edf4fc5a Loading...

	albertguzman.com/	23 B	2023-03-07	2024-04-18
Pretty URL albertguzman.com/ IP 82.223.3.76 ASN #8560 IONOS SE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:34:35 Last Seen2024-04-18 11:52:52 Times Seen350 Hash 1eb388df07170e1a6a82946bdf67e903 221b53cc3ccb91e780f9ecf9d4629f84cb78f2a8 ed248c373eabf572c0d24252655e6273bcc544ae34c5a5b995da4fdc1a4e0e61 Loading...

	player.vimeo.com/video/212742380?title=0&byline=0&portrait=0&dnt=1?h=567bc319dc&dnt=1&app_id=122963	1.2 kB	2023-03-07	2023-03-12
Pretty URL player.vimeo.com/video/212742380?title=0&byline=0&portrait=0&dnt=1?h=567bc319dc&dnt=1&app_id=122963 IP 162.159.138.60 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 15:31:28 Last Seen2023-03-12 22:41:13 Times Seen1 Hash 7f389725e910333290e70660cc25b72b 3fd17411e91c0f0389eb096fde3ee549a25da9a2 2586fe38c1a5906dc14e7611ec65eccf62753854bfdd2ec4a3169e78e73f10ae Loading...

	albertguzman.com/	17 B	2023-03-07	2024-04-18
Pretty URL albertguzman.com/ IP 82.223.3.76 ASN #8560 IONOS SE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:34:36 Last Seen2024-04-18 11:52:52 Times Seen349 Hash cab73dc2d74b7af8bc873c294a49e762 52cf237e0e2fa69b348444bf7ca4fa1c34be9d84 6078575f96675dba99ea04b170c06c489417da2cdc99a04071e87d100175ee4b Loading...

	albertguzman.com/	57 B	2023-03-11	2023-03-11
Pretty URL albertguzman.com/ IP 82.223.3.76 ASN #8560 IONOS SE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 23:31:22 Last Seen2023-03-11 23:31:22 Times Seen1 Hash ad9e20af9d48bd6962ad8ce03da7c1e3 7dcdf856f62cc0d952799de13254dcb8f775398a 179145f65ab5731db5ff1f525ef15f91c9bba0d2e028546bf2ecbc98e84c4495 Loading...

	player.vimeo.com/video/212742380?title=0&byline=0&portrait=0&dnt=1?h=567bc319dc&dnt=1&app_id=122963	88 B	2023-03-08	2023-03-18
Pretty URL player.vimeo.com/video/212742380?title=0&byline=0&portrait=0&dnt=1?h=567bc319dc&dnt=1&app_id=122963 IP 162.159.138.60 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:23:12 Last Seen2023-03-18 07:43:21 Times Seen1 Hash ad413198e105cd8f701ecfbbd330f933 10ce91413b40b42e0db106f75f9b906c53aadeae a2eae90d055f51a5223ced60b71f552e93c37d5a8c6caa224f92b90af6a2b971 Loading...

	albertguzman.com/	529 B	2023-03-11	2023-03-11
Pretty URL albertguzman.com/ IP 82.223.3.76 ASN #8560 IONOS SE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 23:31:22 Last Seen2023-03-11 23:31:22 Times Seen1 Hash 3e6220e5cc189b0e7114ed96cbc29798 e65bc7e92c7d74caba0b2d19341bf53de4d5a1f0 826c7157fb720a121e0ddc3ce996d8a134bd83680787b908b1a81f75fea48129 Loading...

	albertguzman.com/	57 B	2023-03-11	2023-03-11
Pretty URL albertguzman.com/ IP 82.223.3.76 ASN #8560 IONOS SE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 23:31:22 Last Seen2023-03-11 23:31:22 Times Seen1 Hash 17d38b017d2362e43c72be4e45763933 3ecf05e093ecbd26317c0a2a633d8911231ad4af 647717e071e5ab3644eecbc178a634664160f6c95b7742090d41d5d4a8fa01be Loading...

	albertguzman.com/	57 B	2023-03-11	2023-03-11
Pretty URL albertguzman.com/ IP 82.223.3.76 ASN #8560 IONOS SE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 23:31:22 Last Seen2023-03-11 23:31:22 Times Seen1 Hash 31085f9b5e2ec8d5d63f7f3705dd956f 7e83d510547de904a72c3a7e1002e3ec6663f30f a93bc66e352549551879ca5b4d133f8f253d9f5400210ad213201e2c9550fec9 Loading...

	www.google-analytics.com/plugins/ua/linkid.js	1.6 kB	2023-03-07	2024-04-15
Pretty URL www.google-analytics.com/plugins/ua/linkid.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:13 Last Seen2024-04-15 19:01:06 Times Seen1974 Hash 0cc3a63fe10060af4a349e5df666eefe 3e8d3925b550345123f2cab26568221fd4154f9c 92fca55833f48b4289ac8f1cedd48752b580fce4ec4b5d81670b8193d6e51b54 Loading...

	albertguzman.com/	261 B	2023-03-07	2023-03-12
Pretty URL albertguzman.com/ IP 82.223.3.76 ASN #8560 IONOS SE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 15:31:28 Last Seen2023-03-12 17:37:13 Times Seen1 Hash c933fe1cb76fc3e5a2a773ac698e1a72 f764e08349dc93b4322ae4ec2c7fd397b28a72a0 0076737e5d1b6a22d8951016f05170693584a90ab14e45e31dd596571c555bc0 Loading...

	albertguzman.com/	57 B	2023-03-11	2023-03-11
Pretty URL albertguzman.com/ IP 82.223.3.76 ASN #8560 IONOS SE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 23:31:22 Last Seen2023-03-11 23:31:22 Times Seen1 Hash 1758baa55449805a2ce4f694c0c0c059 cc6b77cd60cfcfb326281111c299c32258506816 42dd9db3a3d2e4d4f18fb00ba583043469927e723e99ce8508ba9b5194c1b341 Loading...

	albertguzman.com/	2.8 kB	2023-03-07	2023-03-12
Pretty URL albertguzman.com/ IP 82.223.3.76 ASN #8560 IONOS SE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 23:00:12 Last Seen2023-03-12 22:41:14 Times Seen1 Hash be35073504240e74247ab3ad9213bbb6 4207d8d6f0599387c3d93498cdfae0c2e6c16f0e 706283b27130f5f1bd58f7b3b3e1dc41f9f5a1c01dc800a72eb2e8e73bfd1bb7 Loading...

	player.vimeo.com/video/212742380?title=0&byline=0&portrait=0&dnt=1?h=567bc319dc&dnt=1&app_id=122963	200 B	2023-03-07	2023-12-19
Pretty URL player.vimeo.com/video/212742380?title=0&byline=0&portrait=0&dnt=1?h=567bc319dc&dnt=1&app_id=122963 IP 162.159.138.60 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:14:34 Last Seen2023-12-19 13:15:14 Times Seen10 Hash af8cc9e4334b181797ba45066b8ef4d8 c4c1b4ea678176597ae6720445f701d40bfda97d f675bde2f1e403c77205aa30dfe61dc90f15027df3679a79c4582cc804690783 Loading...

	player.vimeo.com/video/212742380?title=0&byline=0&portrait=0&dnt=1?h=567bc319dc&dnt=1&app_id=122963	15 kB	2023-03-11	2023-03-11
Pretty URL player.vimeo.com/video/212742380?title=0&byline=0&portrait=0&dnt=1?h=567bc319dc&dnt=1&app_id=122963 IP 162.159.138.60 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 23:31:22 Last Seen2023-03-11 23:31:22 Times Seen1 Hash 961e44451b767f3462df42800c3f6cfb ee6509a1ee16a0bdd610563d41d7ab3768e7feea 94c25d4b34be9b661bd51b0f064e7217884bfa0063ca27d22acaa07a97e7c673 Loading...

	albertguzman.com/	57 B	2023-03-11	2023-03-11
Pretty URL albertguzman.com/ IP 82.223.3.76 ASN #8560 IONOS SE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 23:31:22 Last Seen2023-03-11 23:31:22 Times Seen1 Hash 62bce58ab735222395f845ed7d8b47bb 028b3e3680683ec0455e1214f9529c6edba2e9b9 a30e6f83f0c65a408a62c44df9327755e02976ecc9603f60d6168e7b67f62b02 Loading...

HTTP Transactions (56)

URL IP Response Size

albertguzman.com/

82.223.3.76

301 Moved Permanently

162 B

URL HTTP/1.1
albertguzman.com/
IP
82.223.3.76:0
ASN
#8560 IONOS SE

File type
HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size
162 B (162 bytes)
Hash
4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET / HTTP/1.1
Host: albertguzman.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Thu, 01 Dec 2022 11:19:06 GMT
Content-Type: text/html
Content-Length: 162
Connection: keep-alive
Location: https://albertguzman.com/

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
a5daf4dc99951793ae2315d4795e8146
4427507ca4d3a5632cc8f598afbc85e2195d00bd
94fb64c1c826ed7099283c0bedb3cea7ac7e1d9526794cb9fad6e761f5989d32

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "94FB64C1C826ED7099283C0BEDB3CEA7AC7E1D9526794CB9FAD6E761F5989D32"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5543
Expires: Thu, 01 Dec 2022 12:51:33 GMT
Date: Thu, 01 Dec 2022 11:19:10 GMT
Connection: keep-alive

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
f3cf023c797da81728c0ac84c8759331
fa07c5e39e4b0741ea484101cccb2202acea9d9c
5206a0bac8bf78d6b84322519271a1ece2c1039a0090e583de6d6192d88873d0

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5828
Cache-Control: max-age=89357
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 11:19:10 GMT
Etag: "638730f7-1d7"
Expires: Fri, 02 Dec 2022 12:08:27 GMT
Last-Modified: Wed, 30 Nov 2022 10:31:19 GMT
Server: ECS (ska/F6FE)
X-Cache: HIT
Content-Length: 471

firefox.settings.services.mozilla.com/v1/

34.102.187.140

200 OK

939 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/
IP
34.102.187.140:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
14cd9a0afb6ba9a763651d5112760d1e
75d7b104ab9ab11fbb73c3f348b43b0119b5adfa
4e32a117106be587ffcd63239c16a8117eb7840830d4c9decf6527761967532e

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Alert, Backoff, Content-Length, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Thu, 01 Dec 2022 10:19:46 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 3564
alt-svc: clear
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
9fce5679881bf302a8978a0b462f01a9
b699fe030ea13ac73813e655c42ed9b531925e2b
a3ec545a8f9364ac9062eddb41279e1465687a1b60f9c1dec6b3a3df8b033eb3

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A3EC545A8F9364AC9062EDDB41279E1465687A1B60F9C1DEC6B3A3DF8B033EB3"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8520
Expires: Thu, 01 Dec 2022 13:41:10 GMT
Date: Thu, 01 Dec 2022 11:19:10 GMT
Connection: keep-alive

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain

34.160.144.191

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
IP
34.160.144.191:0
ASN
#15169 GOOGLE

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
9ebddc2b260d081ebbefee47c037cb28
492bad62a7ca6a74738921ef5ae6f0be5edebf39
74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-amz-id-2: MXHphdZr1wZesIouifnn8sLCublQDuHaJU0vt79qro9J+mXN8G/pGN5sGeXrLt6XihRr0SSDV3M=
x-amz-request-id: XTXRBPFZ4F8BYQ13
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Thu, 01 Dec 2022 10:46:14 GMT
age: 1976
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Thu, 01 Dec 2022 11:19:10 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
82a6ba693c640ec2edef30cc803bd43f
0c5defd9a13a31c14759bf026b092bbff3d28d77
d25eb43af44c7c2d8e0e7b64aad3141ab5e0c11de00ce039b89e1b27f30f2499

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D25EB43AF44C7C2D8E0E7B64AAD3141AB5E0C11DE00CE039B89E1B27F30F2499"
Last-Modified: Tue, 29 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21556
Expires: Thu, 01 Dec 2022 17:18:27 GMT
Date: Thu, 01 Dec 2022 11:19:11 GMT
Connection: keep-alive

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

34.102.187.140

200 OK

329 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
34.102.187.140:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, ETag, Alert, Expires, Cache-Control, Backoff, Content-Length, Content-Type, Pragma, Last-Modified
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Thu, 01 Dec 2022 11:08:56 GMT
cache-control: public,max-age=3600
age: 615
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
1f88399f3fdd89dbb9ca1229cb67143a
325c9dbfd932cf9a6fb9fab2dd8e27083f55a9a3
831ecd45dcd2d5ae2ae86cd63ea5e94ecd85281b7e51054af5df9a6386fb8d79

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5829
Cache-Control: max-age=170687
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 11:19:11 GMT
Etag: "63886ea9-1d7"
Expires: Sat, 03 Dec 2022 10:43:58 GMT
Last-Modified: Thu, 01 Dec 2022 09:06:49 GMT
Server: ECS (ska/F6FE)
X-Cache: HIT
Content-Length: 471

push.services.mozilla.com/

34.218.164.174

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
34.218.164.174:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: wdjZiQI8xoPx2v6jGfwR3w==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: a99M53a1CgS6Jj6qi/N9lVa2QxI=

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
ac3edd07bb0a4ebdaae6ec26e91d2079
b6efe3811dfa37cdcde1e9d411c171732ac7e12a
c5dbd471d178ae4505b28e30aee1e8eed77fffd81b9f7815ad2bda1a0d09a02c

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C5DBD471D178AE4505B28E30AEE1E8EED77FFFD81B9F7815AD2BDA1A0D09A02C"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8007
Expires: Thu, 01 Dec 2022 13:32:39 GMT
Date: Thu, 01 Dec 2022 11:19:12 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
ac3edd07bb0a4ebdaae6ec26e91d2079
b6efe3811dfa37cdcde1e9d411c171732ac7e12a
c5dbd471d178ae4505b28e30aee1e8eed77fffd81b9f7815ad2bda1a0d09a02c

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C5DBD471D178AE4505B28E30AEE1E8EED77FFFD81B9F7815AD2BDA1A0D09A02C"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8007
Expires: Thu, 01 Dec 2022 13:32:39 GMT
Date: Thu, 01 Dec 2022 11:19:12 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
ac3edd07bb0a4ebdaae6ec26e91d2079
b6efe3811dfa37cdcde1e9d411c171732ac7e12a
c5dbd471d178ae4505b28e30aee1e8eed77fffd81b9f7815ad2bda1a0d09a02c

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C5DBD471D178AE4505B28E30AEE1E8EED77FFFD81B9F7815AD2BDA1A0D09A02C"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8007
Expires: Thu, 01 Dec 2022 13:32:39 GMT
Date: Thu, 01 Dec 2022 11:19:12 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
ac3edd07bb0a4ebdaae6ec26e91d2079
b6efe3811dfa37cdcde1e9d411c171732ac7e12a
c5dbd471d178ae4505b28e30aee1e8eed77fffd81b9f7815ad2bda1a0d09a02c

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C5DBD471D178AE4505B28E30AEE1E8EED77FFFD81B9F7815AD2BDA1A0D09A02C"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8007
Expires: Thu, 01 Dec 2022 13:32:39 GMT
Date: Thu, 01 Dec 2022 11:19:12 GMT
Connection: keep-alive

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffc2c1d47-fc4a-4f23-a6f7-5ac8f3a68490.jpeg

34.120.237.76

200 OK

12 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffc2c1d47-fc4a-4f23-a6f7-5ac8f3a68490.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
12 kB (12035 bytes)
Hash
acffcb88ce68b2d70c9c046a7b5a4aa8
cd016e6c0bf5c6eef06e933c9a5257ff4fca9bc1
692d782ac1d812de6dadbcfe46034b6b5d8bbd586e56beedd96dc4d65445dd4c

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffc2c1d47-fc4a-4f23-a6f7-5ac8f3a68490.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 12035
x-amzn-requestid: eef7d417-c6ca-4e3f-ac00-1425f3d5c4a8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cb0TSGHDIAMF_jA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6387cdae-467c79a805dfb5622687f628;Sampled=0
x-amzn-remapped-date: Wed, 30 Nov 2022 21:39:58 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: haFJ2LZecbT4HRbkvcaZxR4SAIx5cGxNyghKiDOJVX6xDkPwzc2wNQ==
via: 1.1 8f22423015641505b8c857a37450d6c0.cloudfront.net (CloudFront), 1.1 32c16f33c8f5601364fa8229b0d74dc2.cloudfront.net (CloudFront), 1.1 google
date: Wed, 30 Nov 2022 21:45:34 GMT
age: 48818
etag: "cd016e6c0bf5c6eef06e933c9a5257ff4fca9bc1"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

9.7 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F966ff24e-ea85-4a2e-aead-22f1a723c59f.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
9.7 kB (9674 bytes)
Hash
5508d05a290b663fd89ead9b58f2efd8
53650399f9a986ba54addd668b4557109d12003b
65704a961410fdd318c491fedf002c8e9b184cd34b76fe1b67026d42ce21be3f

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F966ff24e-ea85-4a2e-aead-22f1a723c59f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 9674
x-amzn-requestid: 7e7d0183-9667-462a-8d44-d125998c1ae3
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cYgEoHVAoAMFvAQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63867a1d-280ba97e3fe1bf7244cbde35;Sampled=0
x-amzn-remapped-date: Tue, 29 Nov 2022 21:31:09 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: qftF-GQkcjKTs30KMGCTDymw2SVSXeAYKGNWUnaMfvIb8HjtfHUx8A==
via: 1.1 26ca01ec7377e425b59b6a08cb1ec342.cloudfront.net (CloudFront), 1.1 57a21088b36c69a83578b5a5579df58e.cloudfront.net (CloudFront), 1.1 google
date: Wed, 30 Nov 2022 21:44:47 GMT
age: 48865
etag: "53650399f9a986ba54addd668b4557109d12003b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

4.8 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F881a33ae-e81b-4603-85d9-a2242b17be66.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
4.8 kB (4803 bytes)
Hash
cc0a257323f882caff067adb86d906e4
cedf2f21be7cd366bd46055b62b5513db3011dfc
c16a9296d5e840a468fef7fb2764b9f7d4b3131d7ade2ce4999de1eead5469e0

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F881a33ae-e81b-4603-85d9-a2242b17be66.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 4803
x-amzn-requestid: 80f7f1c8-0316-4181-83ac-2787b1ae825f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cOo4iFHoIAMF2-g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63828836-2c0a081b07e0785b4350c10c;Sampled=0
x-amzn-remapped-date: Sat, 26 Nov 2022 21:42:14 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: CJiSRzIK7-rQE81gaP2We0LhgKX1YmuJKEGYEqW34Bm1KMx6NB8yhQ==
via: 1.1 da5952aa802df39905ceb16592e9698a.cloudfront.net (CloudFront), 1.1 591683988172c7980c4ebb318cbf18a8.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Dec 2022 04:29:19 GMT
age: 24593
etag: "cedf2f21be7cd366bd46055b62b5513db3011dfc"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

13 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F83cd87b8-4041-419b-ab34-9f8e5a326f4b.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
13 kB (12898 bytes)
Hash
820cf89fcab8380adff42982c9fb11ed
84241ddddbbfd7de30118307fb1a62800d0a4cb3
0d051495f06ac84de934283b40cbfee7a042d32153a73486dd7c017430e882d8

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F83cd87b8-4041-419b-ab34-9f8e5a326f4b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 12898
x-amzn-requestid: 9b594c3c-6b8c-4589-8fcb-b3d7518b46f6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cQZBNFxToAMF_9A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63833ba1-767f510d72eef86d0cc892df;Sampled=0
x-amzn-remapped-date: Sun, 27 Nov 2022 10:27:45 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: gsn5uUFEzDZDOMPTvW9UQxtccvRfJKUM4eJ8U99jvUGzNIKkF9SzeA==
via: 1.1 d1151317ba32afe0e6370fd69fed222e.cloudfront.net (CloudFront), 1.1 4f3feb5c4393987d42d1971d404d7cea.cloudfront.net (CloudFront), 1.1 google
date: Wed, 30 Nov 2022 21:49:20 GMT
age: 48592
etag: "84241ddddbbfd7de30118307fb1a62800d0a4cb3"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

16 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb0e1339e-3c63-4033-8b5b-e21137509777.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
16 kB (16038 bytes)
Hash
ffd12f9c423ffc627d9e3b3145944fe4
5cf9a7a784952e1bb0cbe499104f1774b1269d08
a25f1b752d9af599aefd73073c105853130f1759905269de3d582d2eb35fe167

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb0e1339e-3c63-4033-8b5b-e21137509777.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 16038
x-amzn-requestid: 9d34c42b-ba0c-498f-8f99-d4ab527ffa89
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cbzMdHXNIAMFgaw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6387cbe9-376846f31dc9b995797cbd18;Sampled=0
x-amzn-remapped-date: Wed, 30 Nov 2022 21:32:25 GMT
x-amz-cf-pop: SEA19-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: DngCuOTO9fQAwWe_ip6EtBcgruigZN6Bl1_v5BHM2dsWlhqCXCL3gg==
via: 1.1 efcf7b9d0f917f9ebf314db03e52d9b6.cloudfront.net (CloudFront), 1.1 98aedae6661e3904540676966998ed88.cloudfront.net (CloudFront), 1.1 google
date: Wed, 30 Nov 2022 21:45:33 GMT
age: 48819
etag: "5cf9a7a784952e1bb0cbe499104f1774b1269d08"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

8.7 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F600016d1-5abb-4a6c-996a-933a8d4bc6df.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
8.7 kB (8740 bytes)
Hash
26d6dffbf400da4803a2e76e2a8ef2f8
2e62f9ed8f5e7b2f888a73320dd98b0cda9303b8
04c6e31623fe48cbe83dc91635bfa47b337590f18919995b08d5bde27e929e03

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F600016d1-5abb-4a6c-996a-933a8d4bc6df.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 8740
x-amzn-requestid: 4823cf63-98eb-40d3-bb8b-e09cd2262f36
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cP7SqHjYIAMF8xw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63830c10-316b213c33ce9bc2355c0900;Sampled=0
x-amzn-remapped-date: Sun, 27 Nov 2022 07:04:48 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: tK4wl-g5kcUhVFE3iZGILhZhZSsaMzQD9JTBHj1JXV95yXs_e3gMGw==
via: 1.1 000f4a2f631bace380a0afa747a82482.cloudfront.net (CloudFront), 1.1 559326ad73233233a9e52cb9e8601ede.cloudfront.net (CloudFront), 1.1 google
date: Wed, 30 Nov 2022 13:21:34 GMT
age: 79058
etag: "2e62f9ed8f5e7b2f888a73320dd98b0cda9303b8"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

albertguzman.com/

82.223.3.76

200 OK

12 kB

URL HTTP/2
albertguzman.com/
IP
82.223.3.76:0
ASN
#8560 IONOS SE

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (52661)
Size
12 kB (12102 bytes)
Hash
f6644edb59a6f8768d2b9623b648e4be
92aa60f8fb27022237b38ae6dc151240284e84c6
063d6098cc5fb9241c393d5dca295496a55e80181d46f5ffbe542d749f7cd520

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET / HTTP/1.1
Host: albertguzman.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

HTTP/2 200 OK
server: nginx
date: Thu, 01 Dec 2022 11:19:10 GMT
content-type: text/html; charset=UTF-8
content-length: 12102
link: <https://albertguzman.com/wp-json/>; rel="https://api.w.org/", <https://albertguzman.com/wp-json/wp/v2/pages/42>; rel="alternate"; type="application/json", <https://albertguzman.com/>; rel=shortlink
strict-transport-security: max-age=15768000; includeSubDomains; preload
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=0
expires: Thu, 01 Dec 2022 11:19:06 GMT
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-cache-status: MISS
x-powered-by: PHP/7.4.30, PleskLin
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
3519a58310eefa01756f0440e2acd7dd
50153382830684a6abb653dc7b4e41d7c7e386b5
5f321e771fa62d9f794339006752655316cdb6e8d69bc23e1d0e3c8bc526f12e

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 11:19:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
188c50963e7939b1f26a31dbcb8c8200
859416e6148ea6618584e53604efcf072bb989cc
3a313cd3c1693a886bfbf6ffc6fbac78f87e6ded2b9a7749553444ada65ce36e

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 11:19:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.googletagmanager.com/gtag/js?id=UA-173246516-1

142.250.74.168

200 OK

44 kB

URL HTTP/2
www.googletagmanager.com/gtag/js?id=UA-173246516-1
IP
142.250.74.168:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (1921)
Size
44 kB (43539 bytes)
Hash
81601851df080e79b39f6ece8a774888
8bb02652fed542b7c39296075a2f0e0e4db117a9
be38502bdbf306e4fc556a89e194bdc95a894e9696a14a8eb41df2703093cdc5

HTTP Headers

GET /gtag/js?id=UA-173246516-1 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://albertguzman.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Thu, 01 Dec 2022 11:19:15 GMT
expires: Thu, 01 Dec 2022 11:19:15 GMT
cache-control: private, max-age=900
last-modified: Thu, 01 Dec 2022 09:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 43539
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
3519a58310eefa01756f0440e2acd7dd
50153382830684a6abb653dc7b4e41d7c7e386b5
5f321e771fa62d9f794339006752655316cdb6e8d69bc23e1d0e3c8bc526f12e

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 11:19:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
188c50963e7939b1f26a31dbcb8c8200
859416e6148ea6618584e53604efcf072bb989cc
3a313cd3c1693a886bfbf6ffc6fbac78f87e6ded2b9a7749553444ada65ce36e

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 11:19:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
980f31229421fd11df958496bea34502
648e03f048e6741beb1d4e10099b1429b79e4f00
887d1a1020b73fa3221c168713525f99474ac02fa10e251b5b23f6c0c519afce

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 11:19:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

albertguzman.com/wp-content/cache/min/1/f26c8f966404ff79674267616a5cc637.js

82.223.3.76

200 OK

242 kB

URL HTTP/2
albertguzman.com/wp-content/cache/min/1/f26c8f966404ff79674267616a5cc637.js
IP
82.223.3.76:0
ASN
#8560 IONOS SE

File type
ASCII text, with very long lines (19208)
Size
242 kB (241880 bytes)
Hash
aa009d87baa0860824b811caba4dcc3d
f08f67a8c4bf37bdeb8761f8c3760537212bc5ca
1686bb33bdee00f73a7a0e7dd6008d5ac3ea37310e907e8a96d5e3267569af68

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/cache/min/1/f26c8f966404ff79674267616a5cc637.js HTTP/1.1
Host: albertguzman.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://albertguzman.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 01 Dec 2022 11:19:10 GMT
content-type: application/javascript; charset=utf-8
last-modified: Thu, 17 Nov 2022 09:41:59 GMT
cache-control: max-age=31536000, public
expires: Fri, 01 Dec 2023 11:19:10 GMT
etag: W/"637601e7-103e30"
x-cache-status: MISS
strict-transport-security: max-age=15768000; includeSubDomains
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

fonts.googleapis.com/css?family=Raleway%3A200%2Cregular%2Citalic%2C600%2C600italic%2C700%2C700italic&subset=latin%2Clatin-ext&ver=2.3.0.3&display=swap

142.250.74.106

200 OK

82 kB

URL HTTP/2
fonts.googleapis.com/css?family=Raleway%3A200%2Cregular%2Citalic%2C600%2C600italic%2C700%2C700italic&subset=latin%2Clatin-ext&ver=2.3.0.3&display=swap
IP
142.250.74.106:0
ASN
#15169 GOOGLE

File type
data
Size
82 kB (82483 bytes)
Hash
52b1bf140e162ef67bd065df853db05f
53a7b93f01f414cb89d253e1bb2ebd464da9314d
b008a2c6f5af480e02b14fd6dcb71a2c24d892c1259b2af6ce879292e5ac8c87

HTTP Headers

GET /css?family=Raleway%3A200%2Cregular%2Citalic%2C600%2C600italic%2C700%2C700italic&subset=latin%2Clatin-ext&ver=2.3.0.3&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://albertguzman.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 01 Dec 2022 11:19:15 GMT
date: Thu, 01 Dec 2022 11:19:15 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

albertguzman.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.0

82.223.3.76

200 OK

171 kB

URL HTTP/2
albertguzman.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
IP
82.223.3.76:0
ASN
#8560 IONOS SE

File type
ASCII text, with very long lines (65447)
Size
171 kB (171127 bytes)
Hash
b230ecc86761a2dd7bd4ff14a5314b2a
9900ac4171631ddc831141a9eb70ed0642960351
38b4df94d6e21b98b7250742a2fb77143b36a7bad1dd012a6a5e3427c1fe79c3

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.0 HTTP/1.1
Host: albertguzman.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://albertguzman.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 01 Dec 2022 11:19:10 GMT
content-type: application/javascript; charset=utf-8
last-modified: Tue, 04 Jan 2022 09:12:20 GMT
cache-control: max-age=31536000, public
expires: Fri, 01 Dec 2023 11:19:10 GMT
etag: W/"61d40f74-15db1"
x-cache-status: MISS
strict-transport-security: max-age=15768000; includeSubDomains
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
980f31229421fd11df958496bea34502
648e03f048e6741beb1d4e10099b1429b79e4f00
887d1a1020b73fa3221c168713525f99474ac02fa10e251b5b23f6c0c519afce

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 11:19:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

albertguzman.com/wp-content/uploads/2017/05/peix.jpg

82.223.3.76

200 OK

35 kB

URL HTTP/2
albertguzman.com/wp-content/uploads/2017/05/peix.jpg
IP
82.223.3.76:0
ASN
#8560 IONOS SE

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], progressive, precision 8, 1920x717, components 3\012- data
Size
35 kB (35304 bytes)
Hash
afa0f22e8e12e536027167bbcadf7fb2
c036951ec3adeeb869ce7cbb6d1f580a8d9da819
a83125cd009ddb9921914b95ba3108c98e8317636b03171335d089ac8b5d1648

HTTP Headers

GET /wp-content/uploads/2017/05/peix.jpg HTTP/1.1
Host: albertguzman.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://albertguzman.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 01 Dec 2022 11:19:11 GMT
content-type: image/jpeg
content-length: 35304
last-modified: Wed, 22 Jul 2020 15:38:09 GMT
cache-control: max-age=10368000, public
expires: Fri, 31 Mar 2023 11:19:11 GMT
etag: "5f185d61-89e8"
x-cache-status: MISS
strict-transport-security: max-age=15768000; includeSubDomains
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2

albertguzman.com/wp-content/uploads/2017/05/grans-banys-les-delicies-uai-995x995.jpg

82.223.3.76

200 OK

398 kB

URL HTTP/2
albertguzman.com/wp-content/uploads/2017/05/grans-banys-les-delicies-uai-995x995.jpg
IP
82.223.3.76:0
ASN
#8560 IONOS SE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 995x995, components 3\012- data
Size
398 kB (397565 bytes)
Hash
463d442e733d3180f2375bc3eb660f40
dcac631b61e27eb4b37f2d563b0c680adb9887fd
7dc21f55d4cf470187305d4f1fc6b31989db380a8404f3d9e2f92fa80f5219b7

HTTP Headers

GET /wp-content/uploads/2017/05/grans-banys-les-delicies-uai-995x995.jpg HTTP/1.1
Host: albertguzman.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://albertguzman.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 01 Dec 2022 11:19:11 GMT
content-type: image/jpeg
content-length: 397565
last-modified: Wed, 18 Nov 2020 10:51:19 GMT
cache-control: max-age=10368000, public
expires: Fri, 31 Mar 2023 11:19:11 GMT
etag: "5fb4fca7-610fd"
x-cache-status: MISS
strict-transport-security: max-age=15768000; includeSubDomains
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2

albertguzman.com/wp-content/uploads/2017/05/familia-pescadors-la-rapita.jpg

82.223.3.76

200 OK

110 kB

URL HTTP/2
albertguzman.com/wp-content/uploads/2017/05/familia-pescadors-la-rapita.jpg
IP
82.223.3.76:0
ASN
#8560 IONOS SE

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], progressive, precision 8, 1920x900, components 3\012- data
Size
110 kB (110059 bytes)
Hash
a63f6639a0ad9a5faa9e02ebf831ee07
e7a627a22cdceef99ccfcff4fa2b4ab419c64271
e99a9ddc822bc7dfcef84a90ee29b39d5b6d39bc78276b48224952d27f961ab7

HTTP Headers

GET /wp-content/uploads/2017/05/familia-pescadors-la-rapita.jpg HTTP/1.1
Host: albertguzman.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://albertguzman.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 01 Dec 2022 11:19:11 GMT
content-type: image/jpeg
content-length: 110059
last-modified: Wed, 22 Jul 2020 15:38:09 GMT
cache-control: max-age=10368000, public
expires: Fri, 31 Mar 2023 11:19:11 GMT
etag: "5f185d61-1adeb"
x-cache-status: MISS
strict-transport-security: max-age=15768000; includeSubDomains
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2

albertguzman.com/wp-content/uploads/2017/05/logo-albert-guzman-rneg.png

82.223.3.76

200 OK

27 kB

URL HTTP/2
albertguzman.com/wp-content/uploads/2017/05/logo-albert-guzman-rneg.png
IP
82.223.3.76:0
ASN
#8560 IONOS SE

File type
PNG image data, 220 x 86, 8-bit/color RGBA, interlaced\012- data
Size
27 kB (27057 bytes)
Hash
39f94e249031c20c11c4fd0a58cdd1d0
650ec8f41430909f3aed372e4d0f3ff6958f4cb0
624fc663fa4b15ff21d546d429b90896e1245f2b1a6dadc752c7c3fe670d2c53

HTTP Headers

GET /wp-content/uploads/2017/05/logo-albert-guzman-rneg.png HTTP/1.1
Host: albertguzman.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://albertguzman.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 01 Dec 2022 11:19:11 GMT
content-type: image/png
content-length: 27057
last-modified: Wed, 22 Jul 2020 15:38:09 GMT
cache-control: max-age=10368000, public
expires: Fri, 31 Mar 2023 11:19:11 GMT
etag: "5f185d61-69b1"
x-cache-status: MISS
strict-transport-security: max-age=15768000; includeSubDomains
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2

albertguzman.com/wp-content/uploads/2017/05/delta-de-ebre.jpg

82.223.3.76

200 OK

79 kB

URL HTTP/2
albertguzman.com/wp-content/uploads/2017/05/delta-de-ebre.jpg
IP
82.223.3.76:0
ASN
#8560 IONOS SE

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], progressive, precision 8, 1920x1080, components 3\012- data
Size
79 kB (79008 bytes)
Hash
b54a896650003dd999cd249d9adb9675
1d329e30d9c4046fe6d17db7b4f2c5b5f06d8494
7cc84742f040b31ec1efb5e5015321b95fe344f62bb8bb39be70a77079f1b17e

HTTP Headers

GET /wp-content/uploads/2017/05/delta-de-ebre.jpg HTTP/1.1
Host: albertguzman.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://albertguzman.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 01 Dec 2022 11:19:11 GMT
content-type: image/jpeg
content-length: 79008
last-modified: Wed, 22 Jul 2020 15:38:09 GMT
cache-control: max-age=10368000, public
expires: Fri, 31 Mar 2023 11:19:11 GMT
etag: "5f185d61-134a0"
x-cache-status: MISS
strict-transport-security: max-age=15768000; includeSubDomains
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2

albertguzman.com/wp-content/uploads/2017/05/celler-2.jpg

82.223.3.76

200 OK

27 kB

URL HTTP/2
albertguzman.com/wp-content/uploads/2017/05/celler-2.jpg
IP
82.223.3.76:0
ASN
#8560 IONOS SE

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], progressive, precision 8, 1920x1080, components 3\012- data
Size
27 kB (27091 bytes)
Hash
9036872721bdfe33c463fb09c9d4eac6
fe5d9651ead3ccc7a1d5cf8781f31c356c93a74a
11e423ac095f239cc839dbd4c6193224f63ab8cacd190dc96259e6c27e2b87ce

HTTP Headers

GET /wp-content/uploads/2017/05/celler-2.jpg HTTP/1.1
Host: albertguzman.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://albertguzman.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 01 Dec 2022 11:19:11 GMT
content-type: image/jpeg
content-length: 27091
last-modified: Wed, 22 Jul 2020 15:38:09 GMT
cache-control: max-age=10368000, public
expires: Fri, 31 Mar 2023 11:19:11 GMT
etag: "5f185d61-69d3"
x-cache-status: MISS
strict-transport-security: max-age=15768000; includeSubDomains
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2

www.google-analytics.com/analytics.js

142.250.74.110

200 OK

20 kB

URL HTTP/2
www.google-analytics.com/analytics.js
IP
142.250.74.110:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (1325)
Size
20 kB (20039 bytes)
Hash
47e6f374ca946fddd5b59871b325736c
baa9282efc8785e84d247c3bff518eaa45f101c4
16580b5c87c58e5702e411f1888fdef511094e4cd6d62bb47d16291ffb25985e

HTTP Headers

GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://albertguzman.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20039
date: Thu, 01 Dec 2022 10:41:08 GMT
expires: Thu, 01 Dec 2022 12:41:08 GMT
cache-control: public, max-age=7200
age: 2288
last-modified: Tue, 27 Sep 2022 22:01:05 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

albertguzman.com/wp-content/uploads/2017/05/cropped-trident-512-192x192.png

82.223.3.76

200 OK

5.9 kB

URL HTTP/2
albertguzman.com/wp-content/uploads/2017/05/cropped-trident-512-192x192.png
IP
82.223.3.76:0
ASN
#8560 IONOS SE

File type
PNG image data, 192 x 192, 8-bit/color RGBA, non-interlaced\012- data
Size
5.9 kB (5901 bytes)
Hash
38dbcd029fe8e0860cf344859af2362d
d17f848b89aff4d586d64c1db8c5b7fcc4fd7603
9b2ce749065b4c6b7216742aae50fbd1552835b1ee814cca3c8219740f8ad180

HTTP Headers

GET /wp-content/uploads/2017/05/cropped-trident-512-192x192.png HTTP/1.1
Host: albertguzman.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://albertguzman.com/
Cookie: pll_language=ca
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 01 Dec 2022 11:19:11 GMT
content-type: image/png
content-length: 5901
last-modified: Wed, 22 Jul 2020 15:38:09 GMT
cache-control: max-age=10368000, public
expires: Fri, 31 Mar 2023 11:19:11 GMT
etag: "5f185d61-170d"
x-cache-status: BYPASS
strict-transport-security: max-age=15768000; includeSubDomains
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2

albertguzman.com/wp-content/uploads/2017/05/cropped-trident-512-32x32.png

82.223.3.76

200 OK

710 B

URL HTTP/2
albertguzman.com/wp-content/uploads/2017/05/cropped-trident-512-32x32.png
IP
82.223.3.76:0
ASN
#8560 IONOS SE

File type
PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced\012- data
Size
710 B (710 bytes)
Hash
734de0c8ae299183173442cc1068472f
c8da3c8c9dd02f380124e2ae631bb8ae49109ae8
9b1d7576f8fed82f8ff660fbbd7eb01993a8fd5ba87a3bc0e41ce0463993d62c

HTTP Headers

GET /wp-content/uploads/2017/05/cropped-trident-512-32x32.png HTTP/1.1
Host: albertguzman.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://albertguzman.com/
Cookie: pll_language=ca
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 01 Dec 2022 11:19:11 GMT
content-type: image/png
content-length: 710
strict-transport-security: max-age=15768000; includeSubDomains; preload
x-accel-version: 0.01
last-modified: Wed, 22 Jul 2020 15:38:09 GMT
cache-control: max-age=10368000, public
expires: Fri, 31 Mar 2023 11:19:11 GMT
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
vary: Accept-Encoding
x-cache-status: BYPASS
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
51d5484b700426c5612c309bbf14b114
026994960bfaaa4e2604b66cb795b2787fe300a2
e3e30a64f2e4fc59120c46b320d104f1b9d9a8af90106ab78715d14e49e11ae0

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 11:19:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-173246516-1&cid=808427780.1669893555&jid=1049027684&gjid=227669709&_gid=1948345346.1669893555&_u=aGBAAUIgAAAAACAAI~&z=14730477

64.233.165.155

200 OK

1 B

URL HTTP/2
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-173246516-1&cid=808427780.1669893555&jid=1049027684&gjid=227669709&_gid=1948345346.1669893555&_u=aGBAAUIgAAAAACAAI~&z=14730477
IP
64.233.165.155:0
ASN
#15169 GOOGLE

File type
very short file (no magic)
Size
1 B (1 bytes)
Hash
c4ca4238a0b923820dcc509a6f75849b
356a192b7913b04c54574d18c28d46e6395428ab
6b86b273ff34fce19d6b804eff5a3f5747ada4eaa22f1d49c01e52ddb7875b4b

HTTP Headers

POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-173246516-1&cid=808427780.1669893555&jid=1049027684&gjid=227669709&_gid=1948345346.1669893555&_u=aGBAAUIgAAAAACAAI~&z=14730477 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://albertguzman.com
Connection: keep-alive
Referer: https://albertguzman.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: https://albertguzman.com
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Thu, 01 Dec 2022 11:19:16 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 1
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
51d5484b700426c5612c309bbf14b114
026994960bfaaa4e2604b66cb795b2787fe300a2
e3e30a64f2e4fc59120c46b320d104f1b9d9a8af90106ab78715d14e49e11ae0

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 11:19:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.digicert.com/

93.184.220.29

200 OK

279 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
279 B (279 bytes)
Hash
83ac719d92d4d5a6817edde01146c72e
28f26df2c41b786f0c2e460b86a7ee63f524e602
55fef1f876fda23a86a8e60028ea4750dd46a19d3bf5d231bf505fdc47ffeca3

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5391
Cache-Control: max-age=110512
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 11:19:17 GMT
Etag: "63878556-117"
Expires: Fri, 02 Dec 2022 18:01:09 GMT
Last-Modified: Wed, 30 Nov 2022 16:31:18 GMT
Server: ECS (ska/F6FE)
X-Cache: HIT
Content-Length: 279

albertguzman.com/wp-content/uploads/2017/05/logo-albert-guzman.jpg

82.223.3.76

200 OK

11 kB

URL HTTP/2
albertguzman.com/wp-content/uploads/2017/05/logo-albert-guzman.jpg
IP
82.223.3.76:0
ASN
#8560 IONOS SE

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], progressive, precision 8, 640x640, components 3\012- data
Size
11 kB (11426 bytes)
Hash
9b1510cfdc321934fbacfa08bc948248
c86f6a1e19076f127191724b665ef050462cf6e9
5266a3a32ebcc90d5d79934f5ded77a232c98e3e256f381acc53fa27446f83d5

HTTP Headers

GET /wp-content/uploads/2017/05/logo-albert-guzman.jpg HTTP/1.1
Host: albertguzman.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://albertguzman.com/
Cookie: pll_language=ca; _ga=GA1.2.808427780.1669893555; _gid=GA1.2.1948345346.1669893555; _gat_gtag_UA_173246516_1=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 01 Dec 2022 11:19:12 GMT
content-type: image/jpeg
content-length: 11426
last-modified: Wed, 22 Jul 2020 15:38:09 GMT
cache-control: max-age=10368000, public
expires: Fri, 31 Mar 2023 11:19:12 GMT
etag: "5f185d61-2ca2"
x-cache-status: BYPASS
strict-transport-security: max-age=15768000; includeSubDomains
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2

player.vimeo.com/video/212742380?title=0&byline=0&portrait=0&dnt=1?h=567bc319dc&dnt=1&app_id=122963

162.159.138.60

200 OK

6.3 kB

URL HTTP/1.1
player.vimeo.com/video/212742380?title=0&byline=0&portrait=0&dnt=1?h=567bc319dc&dnt=1&app_id=122963
IP
162.159.138.60:0
ASN
#13335 CLOUDFLARENET

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (20222), with no line terminators
Size
6.3 kB (6267 bytes)
Hash
60ead17264ca11412dab60b9e0437ce3
c49c7a2c023cd46cd675a6b6ad4a3830d310cc13
5035c4683ed39fac5a4f843f91c07b2ca8d9cf95fb351b075857621ec1c74cdb

HTTP Headers

GET /video/212742380?title=0&byline=0&portrait=0&dnt=1?h=567bc319dc&dnt=1&app_id=122963 HTTP/1.1
Host: player.vimeo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://albertguzman.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Date: Thu, 01 Dec 2022 11:19:17 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
x-xss-protection: 1; mode=block
content-security-policy: script-src 'self' 'unsafe-inline' 'unsafe-eval' blob: resource: https://f.vimeocdn.com https://vimeo.com https://js-agent.newrelic.com https://imasdk.googleapis.com/ https://adservice.google.com/ https://s0.2mdn.net/instream/video/ https://bam.nr-data.net https://src.litix.io https://www.gstatic.com https://cdn.streamroot.io https://cdn.kollective.app/ https://wirewax.s3.eu-west-1.amazonaws.com https://edge-assets.wirewax.com https://embedder-sdk.wirewax.com https://embedder-sdk.wirewax.tv https://f.vimeocdn.com; style-src 'self' 'unsafe-inline' https://f.vimeocdn.com https://fonts.googleapis.com https://edge-assets.wirewax.com https://f.vimeocdn.com; connect-src 'self' ws: wss: https://vimeo.com https://vimeo.dev https://api.vimeo.com https://api.vimeo.dev https://*.ci.vimeows.com https://csi.gstatic.com https://fresnel-player-staging.vimeows.com https://fresnel-event-staging.vimeows.com https://player-telemetry.vimeo.com https://*.akamaized.net https://*.akamaized-staging.net https://*.vimeocdn.com https://netflux.cloud.vimeo.com https://lic.staging.drmtoday.com https://lic.drmtoday.com https://wv.service.expressplay.com https://fp.service.expressplay.com https://pr.service.expressplay.com https://sentry.io https://*.ingest.sentry.io https://storage.googleapis.com https://bam.nr-data.net https://live-api.cloud.vimeo.com https://live-api-dev.cloud.vimeo.com https://*.litix.io/ https://collector.vhx.tv https://collector.vhxstaging.com https://*.dna-delivery.com https://*.kollective.app/ https://mimir.cloud.vimeo.com https://*.wirewax.com https://*.wirewax.tv https://wirewax.s3.eu-west-1.amazonaws.com https://sqs.us-east-1.amazonaws.com https://sqs.eu-west-1.amazonaws.com https://s3-eu-west-1.amazonaws.com https://cognito-identity.us-east-1.amazonaws.com https://cognito-identity.eu-west-1.amazonaws.com; media-src 'self' blob: https://*.vimeocdn.com https://*.akamaized.net https://*.akamaized-staging.net https://*.gvt1.com https://live-api.cloud.vimeo.com https://live-api-dev.cloud.vimeo.com https://devcaptions.cloud.vimeo.com/; object-src 'self' https://*.vimeocdn.com https://*.akamaized.net https://*.akamaized-staging.net; default-src 'none'; font-src https://edge-assets.wirewax.com https://player.vimeo.com https://fonts.gstatic.com; img-src 'self' data: https://i.vimeocdn.com https://secure-b.vimeocdn.com https://f.vimeocdn.com https://vimeo.com https://secure.gravatar.com https://i0.wp.com https://i1.wp.com https://i2.wp.com https://pagead2.googlesyndication.com https://player.vimeo.com https://*.ci.vimeows.com https://videoapi-sprites.vimeocdn.com https://i.vimeocdn.com https://wirewax.s3.eu-west-1.amazonaws.com https://studio-media.wirewax.com https://edge-assets.wirewax.com https://maps.googleapis.com https://f.vimeocdn.com; frame-src 'self' https://*
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
link: <https://i.vimeocdn.com>; rel=preconnect; crossorigin, <https://f.vimeocdn.com>; rel=preconnect; crossorigin, <https://fresnel.vimeocdn.com>; rel=preconnect; crossorigin
p3p: CP="This is not a P3P policy! See https://vimeo.com/privacy"
expires: Thu, 01 Dec 2022 11:29:17 GMT
x-host: player-7766df9c7c-npwff
via: 1.1 varnish, 1.1 varnish
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
x-varnish-cache: 0
x-vserver: playproxy-rollout-prod-varnish-7
x-backend-proxy: playproxy8
x-bapp-server: player-7766df9c7c-npwff
Age: 0
X-Served-By: cache-cph2320048-CPH
X-Cache: MISS
X-Cache-Hits: 0
X-Timer: S1669893557.352671,VS0,VE247
Vary: Accept-Encoding
X-Player-Backend: p
CF-Cache-Status: DYNAMIC
Set-Cookie: __cf_bm=aYrktJdbybRBYyNqvkSdNrXRHnpXELYybr.FEu6He5Q-1669893557-0-AeCOLMHvDco4HhVjAtTlOAhlWOVvSmiGEjt5xbwWtjm+OnlBVIamhe4YxVqwaNRVwpVgu/xgurvlijN3kiFcGEQ=; path=/; expires=Thu, 01-Dec-22 11:49:17 GMT; domain=.vimeo.com; HttpOnly; Secure; SameSite=None
Server: cloudflare
CF-RAY: 772b6d4d5838b509-OSL
Content-Encoding: gzip

f.vimeocdn.com/p/4.14.1/css/player.css

151.101.246.109

200 OK

21 kB

URL HTTP/2
f.vimeocdn.com/p/4.14.1/css/player.css
IP
151.101.246.109:0
ASN
#54113 FASTLY

File type
ASCII text, with very long lines (65495)
Size
21 kB (20726 bytes)
Hash
4acf7af3b78cc35650da87ee77464c29
abe870c3258849b8286439c8e06b7b885a1f1ac3
ed7715a1dab6ae7896cca6ae124ce68f61b8a502a7f468001142fdf9a81a3626

HTTP Headers

GET /p/4.14.1/css/player.css HTTP/1.1
Host: f.vimeocdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://player.vimeo.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/css
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 01 Dec 2022 11:19:17 GMT
age: 751245
x-served-by: cache-iad-kiad7000129-IAD, cache-hel1410023-HEL
x-cache: HIT, HIT
x-cache-hits: 34, 456797
x-timer: S1669893558.725177,VS0,VE0
vary: Accept-Encoding,x-http-method-override
cache-control: max-age=1209600
access-control-allow-origin: *
content-length: 20726
X-Firefox-Spdy: h2

i.vimeocdn.com/video/628804598-1b954796bd4849ead66612970135642db8a8932aa18d7d48088446beff080b88-d.jpg?mw=80&q=85

151.101.246.109

200 OK

1.2 kB

URL HTTP/2
i.vimeocdn.com/video/628804598-1b954796bd4849ead66612970135642db8a8932aa18d7d48088446beff080b88-d.jpg?mw=80&q=85
IP
151.101.246.109:0
ASN
#54113 FASTLY

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 80x45, components 3\012- data
Size
1.2 kB (1195 bytes)
Hash
f0e59fea8a4f95992fb6bf724e11c485
ee605ad5c52d57107eaf764e531cb9ddefb984a7
40bdf4f521ba5ba61719da8bc78db204797fa6bcdb57be7543a302cce329674f

HTTP Headers

GET /video/628804598-1b954796bd4849ead66612970135642db8a8932aa18d7d48088446beff080b88-d.jpg?mw=80&q=85 HTTP/1.1
Host: i.vimeocdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://player.vimeo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: image/jpeg
etag: f0e59fea8a4f95992fb6bf724e11c485
x-viewmaster-lossless-format: lossy
viewmaster-server: viewmaster-us-east1-7d1b
cache-control: public, max-age=2592000
via: vvarnish, 1.1 varnish, 1.1 varnish
x-backend-server: varnish
access-control-allow-origin: *
access-control-expose-headers: X-Viewmaster-Status
access-control-max-age: 86400
accept-ranges: bytes
date: Thu, 01 Dec 2022 11:19:17 GMT
age: 2483095
x-served-by: cache-dfw-kdfw8210044-DFW, cache-hel1410023-HEL
x-cache: miss, HIT, HIT
x-cache-hits: 48, 1
x-timer: S1669893558.743924,VS0,VE1
content-length: 1195
X-Firefox-Spdy: h2

f.vimeocdn.com/p/4.14.1/js/player.module.js

151.101.246.109

200 OK

117 kB

URL HTTP/2
f.vimeocdn.com/p/4.14.1/js/player.module.js
IP
151.101.246.109:0
ASN
#54113 FASTLY

File type
Unicode text, UTF-8 text, with very long lines (65445)
Size
117 kB (116762 bytes)
Hash
93b123a49355679299f45758f7c7ead7
5edf4cf812084390b321b37e824196e0a5351243
2310a3197f869d02d56fbeabd61c29c842e0c22e4bcc8c528c17beb1a348042b

HTTP Headers

GET /p/4.14.1/js/player.module.js HTTP/1.1
Host: f.vimeocdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://player.vimeo.com
Connection: keep-alive
Referer: https://player.vimeo.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: application/javascript
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 01 Dec 2022 11:19:17 GMT
age: 751245
x-served-by: cache-iad-kjyo7100101-IAD, cache-hel1410027-HEL
x-cache: HIT, HIT
x-cache-hits: 28, 347400
x-timer: S1669893558.795881,VS0,VE0
vary: Accept-Encoding,x-http-method-override
cache-control: max-age=1209600
access-control-allow-origin: *
content-length: 116762
X-Firefox-Spdy: h2

f.vimeocdn.com/p/4.14.1/js/vendor.module.js

151.101.246.109

200 OK

116 kB

URL HTTP/2
f.vimeocdn.com/p/4.14.1/js/vendor.module.js
IP
151.101.246.109:0
ASN
#54113 FASTLY

File type
ASCII text, with very long lines (65457)
Size
116 kB (116187 bytes)
Hash
30972a3e9883ce81e7bb54ca377da88f
19077360603241f1fb218c44027d7d1437770d8d
10fb36a7c941c7565c0cb906cfeafc288aeaca33c293bbf3d1353f418eeb7d8f

HTTP Headers

GET /p/4.14.1/js/vendor.module.js HTTP/1.1
Host: f.vimeocdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://player.vimeo.com
Connection: keep-alive
Referer: https://f.vimeocdn.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: application/javascript
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 01 Dec 2022 11:19:17 GMT
age: 751246
x-served-by: cache-iad-kjyo7100028-IAD, cache-hel1410027-HEL
x-cache: HIT, HIT
x-cache-hits: 37, 441632
x-timer: S1669893558.934833,VS0,VE0
vary: Accept-Encoding,x-http-method-override
cache-control: max-age=1209600
access-control-allow-origin: *
content-length: 116187
X-Firefox-Spdy: h2

i.vimeocdn.com/video/628804598-1b954796bd4849ead66612970135642db8a8932aa18d7d48088446beff080b88-d?mw=1200&mh=510

151.101.246.109

200 OK

13 kB

URL HTTP/2
i.vimeocdn.com/video/628804598-1b954796bd4849ead66612970135642db8a8932aa18d7d48088446beff080b88-d?mw=1200&mh=510
IP
151.101.246.109:0
ASN
#54113 FASTLY

File type
ISO Media, AVIF Image\012- data
Size
13 kB (12854 bytes)
Hash
2b151a738848418e7dc86fa40a03eca4
840951261a80b317c3b74b7bf0470d862cf3ae58
fc081ded28bb389431cf8adfb32b0c561e16ea4744c9ae7acc02ebc9f6255662

HTTP Headers

GET /video/628804598-1b954796bd4849ead66612970135642db8a8932aa18d7d48088446beff080b88-d?mw=1200&mh=510 HTTP/1.1
Host: i.vimeocdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://player.vimeo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: image/avif
etag: 2b151a738848418e7dc86fa40a03eca4
x-viewmaster-lossless-format: automatic
viewmaster-server: viewmaster-us-central1-rgq4
cache-control: public, max-age=2592000
via: vvarnish, 1.1 varnish, 1.1 varnish
x-backend-server: varnish
access-control-allow-origin: *
access-control-expose-headers: X-Viewmaster-Status
access-control-max-age: 86400
accept-ranges: bytes
date: Thu, 01 Dec 2022 11:19:18 GMT
age: 1821829
x-served-by: cache-dfw-kdfw8210109-DFW, cache-hel1410023-HEL
x-cache: miss, HIT, MISS
x-cache-hits: 30, 0
x-timer: S1669893558.110902,VS0,VE126
vary: Accept
content-length: 12854
X-Firefox-Spdy: h2

34.120.237.76

200 OK

8.0 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7837c610-4f38-4ecd-b984-5752ff89a1f8.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
8.0 kB (7957 bytes)
Hash
37004182402c955f288eb1fa8df7aef4
01a07f9a5725f608fafeced7b3d1ebdbcb776c29
c90c80dd5cadbde3fef20a9c4561b1efa47401e5f6bdf64c91246553c50204f0

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7837c610-4f38-4ecd-b984-5752ff89a1f8.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-length: 7957
x-amzn-requestid: 54f43d6b-cf41-4067-b459-6b8d98869354
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cV91PGgNIAMF2Xg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63857687-069ac54c22797a511c69a220;Sampled=0
x-amzn-remapped-date: Tue, 29 Nov 2022 03:03:35 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 5et72pBhP9fdm4fNy6V5AJjs7B5N3HUGgaToNJV3LbA59D-0QDAMvw==
via: 1.1 6c90b631453c435bd0022caa657b67e8.cloudfront.net (CloudFront), 1.1 6172bb1a5d00a3b06ae3700570ebe116.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Dec 2022 06:33:17 GMT
age: 17162
etag: "01a07f9a5725f608fafeced7b3d1ebdbcb776c29"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

albertguzman.com/wp-content/cache/min/1/22d21df50292517a01f28db4353ec984.css

82.223.3.76

200 OK

0 B

URL HTTP/2
albertguzman.com/wp-content/cache/min/1/22d21df50292517a01f28db4353ec984.css
IP
82.223.3.76:0
ASN
#8560 IONOS SE

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-content/cache/min/1/22d21df50292517a01f28db4353ec984.css HTTP/1.1
Host: albertguzman.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://albertguzman.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 01 Dec 2022 11:19:10 GMT
content-type: text/css; charset=utf-8
last-modified: Thu, 17 Nov 2022 09:41:59 GMT
cache-control: max-age=31536000, public
expires: Fri, 01 Dec 2023 11:19:10 GMT
etag: W/"637601e7-af68a"
x-cache-status: MISS
strict-transport-security: max-age=15768000; includeSubDomains
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

albertguzman.com/wp-content/uploads/2017/05/peix-fresc-sant-carles-la-lapita.jpg

82.223.3.76

200 OK

0 B

URL HTTP/2
albertguzman.com/wp-content/uploads/2017/05/peix-fresc-sant-carles-la-lapita.jpg
IP
82.223.3.76:0
ASN
#8560 IONOS SE

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-content/uploads/2017/05/peix-fresc-sant-carles-la-lapita.jpg HTTP/1.1
Host: albertguzman.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://albertguzman.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 01 Dec 2022 11:19:11 GMT
content-type: image/jpeg
content-length: 245128
last-modified: Wed, 22 Jul 2020 15:38:09 GMT
cache-control: max-age=10368000, public
expires: Fri, 31 Mar 2023 11:19:11 GMT
etag: "5f185d61-3bd88"
x-cache-status: MISS
strict-transport-security: max-age=15768000; includeSubDomains
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2

albertguzman.com/wp-content/themes/uncode/library/js/init.js

82.223.3.76

200 OK

0 B

URL HTTP/2
albertguzman.com/wp-content/themes/uncode/library/js/init.js
IP
82.223.3.76:0
ASN
#8560 IONOS SE

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/uncode/library/js/init.js HTTP/1.1
Host: albertguzman.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://albertguzman.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 01 Dec 2022 11:19:10 GMT
content-type: application/javascript; charset=utf-8
last-modified: Mon, 09 Nov 2020 06:28:42 GMT
cache-control: max-age=31536000, public
expires: Fri, 01 Dec 2023 11:19:10 GMT
etag: W/"5fa8e19a-29aca"
x-cache-status: MISS
strict-transport-security: max-age=15768000; includeSubDomains
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

JavaScript (27)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations