santvicenc.salesians.cat/
137.74.97.145301 Moved Permanently 162 B URL HTTP/1.1 santvicenc.salesians.cat/
IP 137.74.97.145:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
Analyzer Verdict Alert fortinet Malware
GET / HTTP/1.1
Host: santvicenc.salesians.cat
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Tue, 25 Oct 2022 04:47:32 GMT
Content-Type: text/html
Content-Length: 162
Connection: keep-alive
Location: https://santvicenc.salesians.cat/
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash b3537658770790ad6cf0d727f0c0acd2
8365cadda05ef27b2ebd627d545e31886b512bde
df992311f130f15459739841de925c7eec2604d5a68ca6b2a67b6dc8d229212c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DF992311F130F15459739841DE925C7EEC2604D5A68CA6B2A67B6DC8D229212C"
Last-Modified: Mon, 24 Oct 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12070
Expires: Tue, 25 Oct 2022 08:08:43 GMT
Date: Tue, 25 Oct 2022 04:47:33 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
143.204.55.115200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 143.204.55.115:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash cd8d0809aa5948f2a6ee41d2158861af
098cd24ac587cdc70137af412678526de4d43969
88e6741d6bf076bf7132c7cf98456702cc775476095aafd839888edff52fb03e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Backoff, Alert, Retry-After, Content-Length, Content-Type
Cache-Control: max-age=3600
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Tue, 25 Oct 2022 03:53:05 GMT
Expires: Tue, 25 Oct 2022 04:32:34 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 96c778ce6156d12f24b8b6cdaa0cbf66.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: bE_zp2MroyFX0gwvFMbyQE7YMYQyhYuznaj896oU7l2H6jhgkAUTOg==
Age: 3268
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash ae56efd62a0d9249d98573172eb8b28b
5ff4e9959be677ad76c26ca73f9ef4feb9fa2f28
82d9ee4948fce839f7edb1f8490c4213cded3912464a4169b0bf6a61278694bd
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "82D9EE4948FCE839F7EDB1F8490C4213CDED3912464A4169B0BF6A61278694BD"
Last-Modified: Sat, 22 Oct 2022 14:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7073
Expires: Tue, 25 Oct 2022 06:45:26 GMT
Date: Tue, 25 Oct 2022 04:47:33 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 67d5a988edcda47bc3b3b3f65d32b4b6
d4f0e0da8b3690cc7da925026d3414b68c7d954f
55e4848e3ec682e808ce7ee70950f86179c43af4f81926d826a95edfda395a78
GET /chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: z8dkSsj7oK+k1cCUF/ByClGP4wv1ZzH20gAzKpLn8Ykom+lOModc6XR69xtx3+81infubEMtQUs=
x-amz-request-id: E6N7S7GEN6NPP9JS
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Tue, 25 Oct 2022 04:08:47 GMT
age: 2326
last-modified: Fri, 30 Sep 2022 18:50:55 GMT
etag: "67d5a988edcda47bc3b3b3f65d32b4b6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 25 Oct 2022 04:47:33 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.sectigo.com/
104.18.32.68200 OK 471 B IP 104.18.32.68:0
Hash a038a2a948d5fe5de7bc42b5f13b21d7
acd7309704af608e2b5555531ec10b8a280bf78b
9d0bfd45ac47222e1fda6e5609412628220db3f01ca01870ee4f6ee96bab2659
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 25 Oct 2022 04:47:33 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Sat, 22 Oct 2022 04:18:45 GMT
Expires: Sat, 29 Oct 2022 04:18:44 GMT
Etag: "acd7309704af608e2b5555531ec10b8a280bf78b"
Cache-Control: max-age=343270,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 75f85099a864b4eb-OSL
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
143.204.55.115200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 143.204.55.115:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600
Date: Tue, 25 Oct 2022 04:33:32 GMT
Expires: Tue, 25 Oct 2022 05:03:02 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 f00e3524edcdf61801454f2bb21e71ce.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: OaJR1HE03i6igV2bn7rzm6jX_0FJTY28GSjY9gblW3Nsz8820-FD1g==
Age: 841
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 7c6fdc8e76ef5875b5c965ade2df503e
45d548aa2a9d7ede163743274790700878eaea62
d2ff6eacd48af4892a2642e5d7bb925ca683062139f5a5cb4047f6f706830618
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2760
Cache-Control: max-age=101111
Content-Type: application/ocsp-response
Date: Tue, 25 Oct 2022 04:47:34 GMT
Etag: "63564795-1d7"
Expires: Wed, 26 Oct 2022 08:52:45 GMT
Last-Modified: Mon, 24 Oct 2022 08:06:45 GMT
Server: ECS (ska/F70A)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
35.162.35.244101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 35.162.35.244:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: jckgjjsBROE6IkvAUxoBmw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: Mk1dggju14ypuUu0EwCLuKwyYGc=
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 398e3c90084d7d71fc1e9fd833116f5f
3e202da5559a8f219144adee3639d063a98559c0
724547db3ed9f1779308e9dd6604664e6ffa3580ca076fbdc1dfb1b75591bba4
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "724547DB3ED9F1779308E9DD6604664E6FFA3580CA076FBDC1DFB1B75591BBA4"
Last-Modified: Mon, 24 Oct 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9645
Expires: Tue, 25 Oct 2022 07:28:20 GMT
Date: Tue, 25 Oct 2022 04:47:35 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 398e3c90084d7d71fc1e9fd833116f5f
3e202da5559a8f219144adee3639d063a98559c0
724547db3ed9f1779308e9dd6604664e6ffa3580ca076fbdc1dfb1b75591bba4
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "724547DB3ED9F1779308E9DD6604664E6FFA3580CA076FBDC1DFB1B75591BBA4"
Last-Modified: Mon, 24 Oct 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9645
Expires: Tue, 25 Oct 2022 07:28:20 GMT
Date: Tue, 25 Oct 2022 04:47:35 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 398e3c90084d7d71fc1e9fd833116f5f
3e202da5559a8f219144adee3639d063a98559c0
724547db3ed9f1779308e9dd6604664e6ffa3580ca076fbdc1dfb1b75591bba4
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "724547DB3ED9F1779308E9DD6604664E6FFA3580CA076FBDC1DFB1B75591BBA4"
Last-Modified: Mon, 24 Oct 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9645
Expires: Tue, 25 Oct 2022 07:28:20 GMT
Date: Tue, 25 Oct 2022 04:47:35 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6d122f5c-ef0b-49a6-a68c-137a02ef7894.jpeg
34.120.237.76200 OK 8.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6d122f5c-ef0b-49a6-a68c-137a02ef7894.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b3e41dda631c7f2ee5e664d43e48af31
5a8579a70d8791a19e0192995c46594e242e864d
c26bec6c4527220272777fe7b3209d8726c94105955ef15f05a584bae50ae719
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6d122f5c-ef0b-49a6-a68c-137a02ef7894.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8239
x-amzn-requestid: c37a1abe-9823-4181-a64f-5cc074cfdf2a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ah3OeGxOoAMFtJQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6357058f-10c7cfed331c043e00a600e0;Sampled=0
x-amzn-remapped-date: Mon, 24 Oct 2022 21:37:19 GMT
x-amz-cf-pop: SEA19-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: W3FmIxKlIU9N0kCfbiIqszSpbnmBk5gVmAOZ_w5e7a116zrKEeUpMw==
via: 1.1 2e20768704c71ff3ce2e677251d27f3c.cloudfront.net (CloudFront), 1.1 ce71f64ad5dca81beca846466f2d5008.cloudfront.net (CloudFront), 1.1 google
date: Mon, 24 Oct 2022 21:45:49 GMT
etag: "5a8579a70d8791a19e0192995c46594e242e864d"
content-type: image/jpeg
age: 25306
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe4187937-4231-40b4-ad9b-64f01574c759.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe4187937-4231-40b4-ad9b-64f01574c759.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 3f221d25faa21470234ce71bf4c932d1
645eaf4c0b5fddecf421e60cec8383b18aa9ade1
fed14838d30250a3e543b00460f099db77084cbe8be03d6dcd4bf41f3e843125
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe4187937-4231-40b4-ad9b-64f01574c759.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11349
x-amzn-requestid: 75e9b497-24e9-4fa9-918a-f1500bddb597
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: aLiDqGEiIAMF6LQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-634e16e4-23e290b155802d4c7ddea4a8;Sampled=0
x-amzn-remapped-date: Tue, 18 Oct 2022 03:00:52 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 3WzSkIh7GxMUoDzYRvmCsEPY7ma9XF7arHIvbhD3KXMUwe5NGWgSog==
via: 1.1 446313511980eb02f28ff5a9a4147c0a.cloudfront.net (CloudFront), 1.1 6396e88c437c096ef98930ce29f731a2.cloudfront.net (CloudFront), 1.1 google
date: Mon, 24 Oct 2022 22:37:37 GMT
age: 22198
etag: "645eaf4c0b5fddecf421e60cec8383b18aa9ade1"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fda327ff0-bd82-4034-a53b-e04d5c486276.jpeg
34.120.237.76200 OK 8.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fda327ff0-bd82-4034-a53b-e04d5c486276.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 531f350512ac7712d932234803aa4602
2fb4599ad3d513a160c1f29fefda27b45852c381
7a4da3420f736c098806676359b8ff80578a2e1e98fc0e20e45e2d6192e1d566
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fda327ff0-bd82-4034-a53b-e04d5c486276.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8090
x-amzn-requestid: a84a2888-e0eb-40d3-8377-9c1ea2af733c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: aVb2oH2uoAMFueA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63520cf7-204870ee3f63ced427033eb5;Sampled=0
x-amzn-remapped-date: Fri, 21 Oct 2022 03:07:35 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: TkdgdFp1dXipnGokyVpkamtD5qLRUC7aNYJrX_OKkEujnQsplMsgXA==
via: 1.1 1de1880e08f1cae7d1aca174a29a5c1e.cloudfront.net (CloudFront), 1.1 5397b304713f6301c7c94ac084b6ed08.cloudfront.net (CloudFront), 1.1 google
date: Tue, 25 Oct 2022 04:35:17 GMT
age: 738
etag: "2fb4599ad3d513a160c1f29fefda27b45852c381"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9ac739ea-5d5d-4900-8e3f-c815c25f5c8d.png
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9ac739ea-5d5d-4900-8e3f-c815c25f5c8d.png
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 1f22a424f72f369a3511d6af25d67a82
e9aabd2daee2d2e6265a69e309542c5b5983d1f2
600f1a4989fe65b14cfe5234c8bc723834d53543026c13eaf8217b22d3a3a9a9
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9ac739ea-5d5d-4900-8e3f-c815c25f5c8d.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11916
x-amzn-requestid: 01915cb4-17aa-4fd6-95fc-384cf3daf698
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ahf6ZGnvIAMFQ8w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6356e042-2bb80aca19d6c0ff133c75b7;Sampled=0
x-amzn-remapped-date: Mon, 24 Oct 2022 18:58:10 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 9ZJ7byRMNo0XYgeiiX8ntoPWazlzeVUn7nm4BvDhMppzqtAVpisATQ==
via: 1.1 c34da255183aa208dd1c722ff211f9b2.cloudfront.net (CloudFront), 1.1 a3bd0eb50c22e4d5fbda56a30b96002c.cloudfront.net (CloudFront), 1.1 google
date: Mon, 24 Oct 2022 20:31:12 GMT
age: 29783
etag: "e9aabd2daee2d2e6265a69e309542c5b5983d1f2"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa3694988-223c-4449-a1a5-28c1de7da771.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa3694988-223c-4449-a1a5-28c1de7da771.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 1970a25715283fecf7a05a199bf4cae6
3a3005e722d2e89c9218c34ba283bbcde72e4bbc
624f6f86abe8c7cb8b24669851103baf152802c3ea915dcdea88ce984d468361
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa3694988-223c-4449-a1a5-28c1de7da771.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11051
x-amzn-requestid: 2eef9564-c660-421d-aff6-40644b72ffa1
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: aFfupETyoAMF3qg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-634bacc3-48a6442d4ec030f50e8f8f13;Sampled=0
x-amzn-remapped-date: Sun, 16 Oct 2022 07:03:32 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: HgK4QTgdR6OSGV86ooPEJ0_jtGehzs1DHgeynAoCthtKlAAohrKVSg==
via: 1.1 912d83c7c9b4676eb19f09c9bfabda24.cloudfront.net (CloudFront), 1.1 9c675215120a4ade8754c4357ef2f3ea.cloudfront.net (CloudFront), 1.1 google
date: Mon, 24 Oct 2022 22:18:45 GMT
age: 23330
etag: "3a3005e722d2e89c9218c34ba283bbcde72e4bbc"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5799e548-737d-43a5-ae0b-3ccb8e2f1daf.jpeg
34.120.237.76200 OK 8.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5799e548-737d-43a5-ae0b-3ccb8e2f1daf.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 6977b5f01197ed4e914157b59ce56c2a
0c4bc06cb32bae6cdcbd61fde8b6289fa901a0c2
98ed9be1f79f4d1ff9acd3dc22aa64f7e0218d7c4854fc7cb71e70dd341dd7ed
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5799e548-737d-43a5-ae0b-3ccb8e2f1daf.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8031
x-amzn-requestid: 39e6cba4-dc3b-4fe8-9f00-f9042b3dfb3a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ah3D7E2SoAMF_TA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6357054c-541d3ed176c9176913844804;Sampled=0
x-amzn-remapped-date: Mon, 24 Oct 2022 21:36:12 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: j3sV_Wswao5mW-vx2uno8kuZE0qTvTaJYVB8MeVi1dolnHblN_uYwQ==
via: 1.1 eece508272520f70691e4eebdc5a6dea.cloudfront.net (CloudFront), 1.1 4f3feb5c4393987d42d1971d404d7cea.cloudfront.net (CloudFront), 1.1 google
date: Mon, 24 Oct 2022 21:45:49 GMT
etag: "0c4bc06cb32bae6cdcbd61fde8b6289fa901a0c2"
content-type: image/jpeg
age: 25306
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
santvicenc.salesians.cat/
137.74.97.145200 OK 43 kB URL HTTP/2 santvicenc.salesians.cat/
IP 137.74.97.145:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (26350)
Hash 50fd50365e5abe81f9f41cf0bd7c72e0
bd65492a8d85fd3146e54a008ebf90ea75deac28
ea830275d62ac8d5ada721a78abb1c50a00386a13f4b46d0d4b26c7e3791c25c
Analyzer Verdict Alert fortinet Malware
GET / HTTP/1.1
Host: santvicenc.salesians.cat
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
server: nginx
date: Tue, 25 Oct 2022 04:47:36 GMT
content-type: text/html; charset=UTF-8
content-length: 42709
link: <https://santvicenc.salesians.cat/wp-json/>; rel="https://api.w.org/", <https://santvicenc.salesians.cat/wp-json/wp/v2/pages/9308>; rel="alternate"; type="application/json", <https://santvicenc.salesians.cat/>; rel=shortlink
set-cookie: __wpdm_client=c11170dca089cc3d7eb6d01a7f1a1068; secure; HttpOnly
vary: Accept-Encoding
content-encoding: gzip
x-powered-by: PHP/7.4.32, PleskLin
X-Firefox-Spdy: h2
santvicenc.salesians.cat/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.6.4
137.74.97.145200 OK 972 B URL HTTP/2 santvicenc.salesians.cat/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.6.4
IP 137.74.97.145:0
Hash 8bf268dfcca7cb20719b7ea14373ef4a
58bd839bbf0e8cc082f0a488b538b4ec71bebd2e
eece4a14939273c7af07bce8bab3a6cfc2c9de44c0eea82cc886abac13cb3870
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.6.4 HTTP/1.1
Host: santvicenc.salesians.cat
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://santvicenc.salesians.cat/
Cookie: __wpdm_client=c11170dca089cc3d7eb6d01a7f1a1068
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 25 Oct 2022 04:47:36 GMT
content-type: text/css
content-length: 972
last-modified: Fri, 21 Oct 2022 06:14:48 GMT
etag: "aab-5eb855be8263b-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-powered-by: PleskLin
X-Firefox-Spdy: h2
santvicenc.salesians.cat/wp-content/plugins/download-manager/assets/css/front.css?ver=6.0.3
137.74.97.145200 OK 12 kB URL HTTP/2 santvicenc.salesians.cat/wp-content/plugins/download-manager/assets/css/front.css?ver=6.0.3
IP 137.74.97.145:0
File type ASCII text, with very long lines (482)
Hash fa54c063be67257ec362c58274eda485
124588af9a6f59541060b7ca4f5c7e69917d23d9
3f0e7bd24a26576333f457014e8b9988ff7054d98db493bb52eb75eac864fd50
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/download-manager/assets/css/front.css?ver=6.0.3 HTTP/1.1
Host: santvicenc.salesians.cat
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://santvicenc.salesians.cat/
Cookie: __wpdm_client=c11170dca089cc3d7eb6d01a7f1a1068
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 25 Oct 2022 04:47:36 GMT
content-type: text/css
content-length: 11784
last-modified: Tue, 18 Oct 2022 10:42:30 GMT
etag: "10020-5eb4cbfbeb4dc-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-powered-by: PleskLin
X-Firefox-Spdy: h2
santvicenc.salesians.cat/wp-content/plugins/download-manager/assets/bootstrap/css/bootstrap.min.css?ver=6.0.3
137.74.97.145200 OK 9.8 kB URL HTTP/2 santvicenc.salesians.cat/wp-content/plugins/download-manager/assets/bootstrap/css/bootstrap.min.css?ver=6.0.3
IP 137.74.97.145:0
File type ASCII text, with very long lines (57835), with no line terminators
Hash 387cbe843176b30ca61a67e09b236ee9
1290c5afe83c7549c5e9b70512f609c34ed38b53
69a8274b0ad8141bc05bdde75675ba4944de802c694b0794243bfe89c02e6a59
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/download-manager/assets/bootstrap/css/bootstrap.min.css?ver=6.0.3 HTTP/1.1
Host: santvicenc.salesians.cat
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://santvicenc.salesians.cat/
Cookie: __wpdm_client=c11170dca089cc3d7eb6d01a7f1a1068
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 25 Oct 2022 04:47:36 GMT
content-type: text/css
content-length: 9768
last-modified: Tue, 18 Oct 2022 10:42:30 GMT
etag: "e1eb-5eb4cbfbe477b-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-powered-by: PleskLin
X-Firefox-Spdy: h2
santvicenc.salesians.cat/wp-content/plugins/download-manager/assets/fontawesome/css/all.min.css?ver=6.0.3
137.74.97.145200 OK 21 kB URL HTTP/2 santvicenc.salesians.cat/wp-content/plugins/download-manager/assets/fontawesome/css/all.min.css?ver=6.0.3
IP 137.74.97.145:0
File type ASCII text, with very long lines (65317)
Hash 10173d417037f1433662c2a01897aca9
6b38bb5f2af6501d73f8eb8a77a9e66527e1fa3a
6c6ffbd611c34b4f0fa9883fae80ce22da043cf363ee18dbff2b035ba00ca2e6
GET /wp-content/plugins/download-manager/assets/fontawesome/css/all.min.css?ver=6.0.3 HTTP/1.1
Host: santvicenc.salesians.cat
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://santvicenc.salesians.cat/
Cookie: __wpdm_client=c11170dca089cc3d7eb6d01a7f1a1068
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 25 Oct 2022 04:47:36 GMT
content-type: text/css
content-length: 20909
last-modified: Tue, 18 Oct 2022 10:42:30 GMT
etag: "190f0-5eb4cbfbed41c-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-powered-by: PleskLin
X-Firefox-Spdy: h2
santvicenc.salesians.cat/wp-content/plugins/photo-gallery/css/sumoselect.min.css?ver=3.4.6
137.74.97.145200 OK 2.1 kB URL HTTP/2 santvicenc.salesians.cat/wp-content/plugins/photo-gallery/css/sumoselect.min.css?ver=3.4.6
IP 137.74.97.145:0
File type ASCII text, with very long lines (7609)
Hash b7c2fd201680d0fdae258d6e7c0b0e16
d6b0c3c069b8c33115b8e33c5ce1eff64ef33139
3457dbccf9f39fb5588b077fbe22d0059bdb686e7298ff7b3c4b8154fe550580
GET /wp-content/plugins/photo-gallery/css/sumoselect.min.css?ver=3.4.6 HTTP/1.1
Host: santvicenc.salesians.cat
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://santvicenc.salesians.cat/
Cookie: __wpdm_client=c11170dca089cc3d7eb6d01a7f1a1068
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 25 Oct 2022 04:47:36 GMT
content-type: text/css
content-length: 2081
last-modified: Thu, 13 Oct 2022 07:10:10 GMT
etag: "1dba-5eae53328340d-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-powered-by: PleskLin
X-Firefox-Spdy: h2
santvicenc.salesians.cat/wp-content/plugins/photo-gallery/css/bwg-fonts/fonts.css?ver=0.0.1
137.74.97.145200 OK 890 B URL HTTP/2 santvicenc.salesians.cat/wp-content/plugins/photo-gallery/css/bwg-fonts/fonts.css?ver=0.0.1
IP 137.74.97.145:0
Hash 77844a96d72d03c84c5e6970c1fe631b
5f02982c93cf4bf4f70d77ea6dfe04d2efcd9b81
0b5162518ddfdb56914db022a95c1a5eca3271ae2f062cfaa939cc5b7094d63c
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/photo-gallery/css/bwg-fonts/fonts.css?ver=0.0.1 HTTP/1.1
Host: santvicenc.salesians.cat
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://santvicenc.salesians.cat/
Cookie: __wpdm_client=c11170dca089cc3d7eb6d01a7f1a1068
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 25 Oct 2022 04:47:36 GMT
content-type: text/css
content-length: 890
last-modified: Thu, 13 Oct 2022 07:10:10 GMT
etag: "fbc-5eae53328534d-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-powered-by: PleskLin
X-Firefox-Spdy: h2
santvicenc.salesians.cat/wp-content/plugins/photo-gallery/css/jquery.mCustomScrollbar.min.css?ver=3.1.5
137.74.97.145200 OK 4.0 kB URL HTTP/2 santvicenc.salesians.cat/wp-content/plugins/photo-gallery/css/jquery.mCustomScrollbar.min.css?ver=3.1.5
IP 137.74.97.145:0
File type ASCII text, with very long lines (42839), with no line terminators
Hash e7d460fe41c87ad9e87c0695426d2f92
f16685ccaa6474b82a282f394ef673b27f07fcc9
b92e0e744425caad084ada130f27b25b00c07eecbca8de743686ab33d3cf100f
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/photo-gallery/css/jquery.mCustomScrollbar.min.css?ver=3.1.5 HTTP/1.1
Host: santvicenc.salesians.cat
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://santvicenc.salesians.cat/
Cookie: __wpdm_client=c11170dca089cc3d7eb6d01a7f1a1068
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 25 Oct 2022 04:47:36 GMT
content-type: text/css
content-length: 3984
last-modified: Thu, 13 Oct 2022 07:10:10 GMT
etag: "a757-5eae53328534d-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-powered-by: PleskLin
X-Firefox-Spdy: h2
santvicenc.salesians.cat/wp-content/plugins/photo-gallery/css/styles.min.css?ver=1.8.0
137.74.97.145200 OK 7.3 kB URL HTTP/2 santvicenc.salesians.cat/wp-content/plugins/photo-gallery/css/styles.min.css?ver=1.8.0
IP 137.74.97.145:0
File type ASCII text, with very long lines (45857), with no line terminators
Hash 5b7f76b9021caeed57532323bd9ac803
9102ac2f9cc75ac35c7f05f2f086615d99183502
a9e164289a6bcc2f3ec0917b351510c460a1b0de40d02f51563c110c7dbd9c3f
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/photo-gallery/css/styles.min.css?ver=1.8.0 HTTP/1.1
Host: santvicenc.salesians.cat
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://santvicenc.salesians.cat/
Cookie: __wpdm_client=c11170dca089cc3d7eb6d01a7f1a1068
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 25 Oct 2022 04:47:36 GMT
content-type: text/css
content-length: 7260
last-modified: Thu, 13 Oct 2022 07:10:10 GMT
etag: "b321-5eae53328534d-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-powered-by: PleskLin
X-Firefox-Spdy: h2
santvicenc.salesians.cat/wp-content/plugins/complianz-gdpr/assets/css/cookieblocker.min.css?ver=6.3.4
137.74.97.145200 OK 713 B URL HTTP/2 santvicenc.salesians.cat/wp-content/plugins/complianz-gdpr/assets/css/cookieblocker.min.css?ver=6.3.4
IP 137.74.97.145:0
File type ASCII text, with very long lines (2723), with no line terminators
Hash 7e67979bdd7b91ff88c5113cd3db186e
1ef16fddac63946359c3d47b46d1985c3961ea26
10f99207a897bca4be545b3a4a330907e90e0dc49326c774946393ed4adcd83c
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/complianz-gdpr/assets/css/cookieblocker.min.css?ver=6.3.4 HTTP/1.1
Host: santvicenc.salesians.cat
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://santvicenc.salesians.cat/
Cookie: __wpdm_client=c11170dca089cc3d7eb6d01a7f1a1068
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 25 Oct 2022 04:47:36 GMT
content-type: text/css
content-length: 713
last-modified: Mon, 17 Oct 2022 05:59:59 GMT
etag: "aa3-5eb34af840f5d-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-powered-by: PleskLin
X-Firefox-Spdy: h2
santvicenc.salesians.cat/wp-content/et-cache/1/1/9308/et-divi-dynamic-tb-9280-9308-late.css?ver=1666609354
137.74.97.145200 OK 1.6 kB URL HTTP/2 santvicenc.salesians.cat/wp-content/et-cache/1/1/9308/et-divi-dynamic-tb-9280-9308-late.css?ver=1666609354
IP 137.74.97.145:0
File type ASCII text, with very long lines (16772)
Hash 28f1e3b41ff9ae534189f09feec359bc
69d014b9df3e7b8610558698f8f57245500fc1f0
f4a90690120bd1a4f2d7865d437381650d0451023f962161c6d2f3632d9e3957
Analyzer Verdict Alert fortinet Malware
GET /wp-content/et-cache/1/1/9308/et-divi-dynamic-tb-9280-9308-late.css?ver=1666609354 HTTP/1.1
Host: santvicenc.salesians.cat
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://santvicenc.salesians.cat/
Cookie: __wpdm_client=c11170dca089cc3d7eb6d01a7f1a1068
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 25 Oct 2022 04:47:36 GMT
content-type: text/css
content-length: 1616
last-modified: Mon, 24 Oct 2022 11:02:34 GMT
etag: "4430-5ebc5ba940b7d-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-powered-by: PleskLin
X-Firefox-Spdy: h2
santvicenc.salesians.cat/wp-content/plugins/newsletter/style.css?ver=7.5.3
137.74.97.145200 OK 1.2 kB URL HTTP/2 santvicenc.salesians.cat/wp-content/plugins/newsletter/style.css?ver=7.5.3
IP 137.74.97.145:0
Hash efdd902a4a2785e263af1bc9789087a3
9c43991cc8be7245d2220bf749521bfb2eef7b4b
65518f98fd22862efde1673e5865a2755a2bb6cd2e2ac259706dbd1b8ae3ee17
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/newsletter/style.css?ver=7.5.3 HTTP/1.1
Host: santvicenc.salesians.cat
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://santvicenc.salesians.cat/
Cookie: __wpdm_client=c11170dca089cc3d7eb6d01a7f1a1068
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 25 Oct 2022 04:47:36 GMT
content-type: text/css
content-length: 1198
last-modified: Mon, 10 Oct 2022 16:16:23 GMT
etag: "188a-5eab07b173079-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-powered-by: PleskLin
X-Firefox-Spdy: h2
santvicenc.salesians.cat/wp-content/themes/Divi-child/style.css?ver=4.18.0
137.74.97.145200 OK 2.5 kB URL HTTP/2 santvicenc.salesians.cat/wp-content/themes/Divi-child/style.css?ver=4.18.0
IP 137.74.97.145:0
Hash dbd75036c6b5c6614e9343b8252e7725
7a620d291c79a895f5433c7b5393c97ba4759d73
19cf5abb2a59b208975c24aafed4b4d0b91bec83c4392c9b6076452be638fdeb
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/Divi-child/style.css?ver=4.18.0 HTTP/1.1
Host: santvicenc.salesians.cat
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://santvicenc.salesians.cat/
Cookie: __wpdm_client=c11170dca089cc3d7eb6d01a7f1a1068
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 25 Oct 2022 04:47:36 GMT
content-type: text/css
content-length: 2500
last-modified: Thu, 13 May 2021 10:50:45 GMT
etag: "28ac-5c233e641204d-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-powered-by: PleskLin
X-Firefox-Spdy: h2
santvicenc.salesians.cat/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
137.74.97.145200 OK 4.2 kB URL HTTP/2 santvicenc.salesians.cat/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP 137.74.97.145:0
File type ASCII text, with very long lines (11126)
Hash 5629711d7fdd5b28441bac39b851299f
4e0bf2b7383097f7c352023a1b1b1b48a50356b6
44c444309c7a6c05ff4a9bc198bed9e9596bedb5658637c85689c9a471dcdd16
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: santvicenc.salesians.cat
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://santvicenc.salesians.cat/
Cookie: __wpdm_client=c11170dca089cc3d7eb6d01a7f1a1068
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 25 Oct 2022 04:47:36 GMT
content-type: application/javascript
content-length: 4169
last-modified: Wed, 18 Nov 2020 09:06:06 GMT
etag: "2bd8-5b45debe27b80-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-powered-by: PleskLin
X-Firefox-Spdy: h2
santvicenc.salesians.cat/wp-content/plugins/photo-gallery/js/jquery.sumoselect.min.js?ver=3.4.6
137.74.97.145200 OK 7.9 kB URL HTTP/2 santvicenc.salesians.cat/wp-content/plugins/photo-gallery/js/jquery.sumoselect.min.js?ver=3.4.6
IP 137.74.97.145:0
File type ASCII text, with very long lines (1518)
Hash af7b8363167c766fc5c415c5831609de
2fe2c8d1f1c7e256c3b9cd97b50098c60bd50d3e
1371f4af47e8ab2d5de2d86f16942e0d89acd924c9065c823c6e22295d384b8d
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/photo-gallery/js/jquery.sumoselect.min.js?ver=3.4.6 HTTP/1.1
Host: santvicenc.salesians.cat
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://santvicenc.salesians.cat/
Cookie: __wpdm_client=c11170dca089cc3d7eb6d01a7f1a1068
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 25 Oct 2022 04:47:36 GMT
content-type: application/javascript
content-length: 7883
last-modified: Thu, 13 Oct 2022 07:10:10 GMT
etag: "56cd-5eae53328052d-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-powered-by: PleskLin
X-Firefox-Spdy: h2
santvicenc.salesians.cat/wp-content/plugins/download-manager/assets/bootstrap/js/bootstrap.min.js?ver=6.0.3
137.74.97.145200 OK 15 kB URL HTTP/2 santvicenc.salesians.cat/wp-content/plugins/download-manager/assets/bootstrap/js/bootstrap.min.js?ver=6.0.3
IP 137.74.97.145:0
File type ASCII text, with very long lines (62161)
Hash 3e3cbc4a64027d9fdb17c900353372ba
3a8dac461ade65ffd99f637a63d1c185747db2dc
0d03072ead9234e1e1565425195cdac3f727a3da2eb2afad322ddd902f3aa5da
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/download-manager/assets/bootstrap/js/bootstrap.min.js?ver=6.0.3 HTTP/1.1
Host: santvicenc.salesians.cat
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://santvicenc.salesians.cat/
Cookie: __wpdm_client=c11170dca089cc3d7eb6d01a7f1a1068
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 25 Oct 2022 04:47:36 GMT
content-type: application/javascript
content-length: 15286
last-modified: Tue, 18 Oct 2022 10:42:30 GMT
etag: "f3e8-5eb4cbfbe477b-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-powered-by: PleskLin
X-Firefox-Spdy: h2
santvicenc.salesians.cat/wp-content/plugins/download-manager/assets/js/front.js?ver=3.2.58
137.74.97.145200 OK 11 kB URL HTTP/2 santvicenc.salesians.cat/wp-content/plugins/download-manager/assets/js/front.js?ver=3.2.58
IP 137.74.97.145:0
File type ASCII text, with very long lines (4122)
Hash d6e3e043d12b29ec97b02f0c35842e22
118ef46fb4d48432c06bffd049be4c189b63e413
eb97765ab98991ecce3ec391ae0f9dc63901f39cf272e2f7e2f966d4a2c15acd
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/download-manager/assets/js/front.js?ver=3.2.58 HTTP/1.1
Host: santvicenc.salesians.cat
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://santvicenc.salesians.cat/
Cookie: __wpdm_client=c11170dca089cc3d7eb6d01a7f1a1068
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 25 Oct 2022 04:47:36 GMT
content-type: application/javascript
content-length: 10912
last-modified: Tue, 18 Oct 2022 10:42:30 GMT
etag: "9cd0-5eb4cbfbe66bb-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-powered-by: PleskLin
X-Firefox-Spdy: h2
santvicenc.salesians.cat/wp-content/plugins/photo-gallery/js/jquery.mobile.min.js?ver=1.4.5
137.74.97.145200 OK 9.2 kB URL HTTP/2 santvicenc.salesians.cat/wp-content/plugins/photo-gallery/js/jquery.mobile.min.js?ver=1.4.5
IP 137.74.97.145:0
File type HTML document, ASCII text, with very long lines (25075)
Hash 0bfe7b8b35f14ed782c6cc66ff0e59e4
8ea52ad5ea35d338ab6cf085e11daf8caf6c3d17
3ee8c1b963cd1bec48cc7158d94b786bace54840e90bd6c5560fc16c97e11a58
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/photo-gallery/js/jquery.mobile.min.js?ver=1.4.5 HTTP/1.1
Host: santvicenc.salesians.cat
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://santvicenc.salesians.cat/
Cookie: __wpdm_client=c11170dca089cc3d7eb6d01a7f1a1068
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 25 Oct 2022 04:47:36 GMT
content-type: application/javascript
content-length: 9160
last-modified: Thu, 13 Oct 2022 07:10:10 GMT
etag: "6254-5eae53328052d-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-powered-by: PleskLin
X-Firefox-Spdy: h2
santvicenc.salesians.cat/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
137.74.97.145200 OK 31 kB URL HTTP/2 santvicenc.salesians.cat/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
IP 137.74.97.145:0
File type ASCII text, with very long lines (65447)
Hash 9640915738503451aa21181699feab5b
c053eaf36ef0da96619706b3abda326305063bd6
f8834e669ad1f4039442c26aaa373ec39c35a233b9786d374fc3f670f16b0adc
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.0 HTTP/1.1
Host: santvicenc.salesians.cat
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://santvicenc.salesians.cat/
Cookie: __wpdm_client=c11170dca089cc3d7eb6d01a7f1a1068
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 25 Oct 2022 04:47:36 GMT
content-type: application/javascript
content-length: 30908
last-modified: Wed, 21 Jul 2021 01:00:16 GMT
etag: "15db1-5c797b193163b-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-powered-by: PleskLin
X-Firefox-Spdy: h2
santvicenc.salesians.cat/wp-content/plugins/download-manager/assets/bootstrap/js/popper.min.js?ver=6.0.3
137.74.97.145200 OK 7.5 kB URL HTTP/2 santvicenc.salesians.cat/wp-content/plugins/download-manager/assets/bootstrap/js/popper.min.js?ver=6.0.3
IP 137.74.97.145:0
File type ASCII text, with very long lines (21084)
Hash c4a1c12a7ed7875f729fcd9dee7bddb1
f91a9ce3bec72b2c15abea8da8d7b59f9efebdca
029820eeba5a80dd14614fd547fea9101680567065a08ea125266ba7786292b3
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/download-manager/assets/bootstrap/js/popper.min.js?ver=6.0.3 HTTP/1.1
Host: santvicenc.salesians.cat
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://santvicenc.salesians.cat/
Cookie: __wpdm_client=c11170dca089cc3d7eb6d01a7f1a1068
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 25 Oct 2022 04:47:36 GMT
content-type: application/javascript
content-length: 7484
last-modified: Tue, 18 Oct 2022 10:42:30 GMT
etag: "52e2-5eb4cbfbe477b-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-powered-by: PleskLin
X-Firefox-Spdy: h2
santvicenc.salesians.cat/wp-content/plugins/photo-gallery/js/jquery.fullscreen.min.js?ver=0.6.0
137.74.97.145200 OK 2.2 kB URL HTTP/2 santvicenc.salesians.cat/wp-content/plugins/photo-gallery/js/jquery.fullscreen.min.js?ver=0.6.0
IP 137.74.97.145:0
File type Unicode text, UTF-8 text, with very long lines (5661)
Hash 3db40b3f7c407d30d76f440e241f5ad5
f9af12bf4d63638552de17e006c6e2b67fb5fa97
6deec47a77d780ae266a29dfcdcb0caec7f130886c6cf9789a956e868f8a0dc4
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/photo-gallery/js/jquery.fullscreen.min.js?ver=0.6.0 HTTP/1.1
Host: santvicenc.salesians.cat
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://santvicenc.salesians.cat/
Cookie: __wpdm_client=c11170dca089cc3d7eb6d01a7f1a1068
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 25 Oct 2022 04:47:36 GMT
content-type: application/javascript
content-length: 2171
last-modified: Thu, 13 Oct 2022 07:10:10 GMT
etag: "18c5-5eae53328052d-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-powered-by: PleskLin
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash d114ab00b1cfe7f9b4f56c7b3655b55d
641e580d6148329b0c9eb2d49f5f8a30c08f30e9
e5420e919b2c05c148179c7d85a210941be6862b1f65ccfafcfc38d960bf38d7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 25 Oct 2022 04:47:36 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
santvicenc.salesians.cat/wp-content/plugins/photo-gallery/js/jquery.mCustomScrollbar.concat.min.js?ver=3.1.5
137.74.97.145200 OK 13 kB URL HTTP/2 santvicenc.salesians.cat/wp-content/plugins/photo-gallery/js/jquery.mCustomScrollbar.concat.min.js?ver=3.1.5
IP 137.74.97.145:0
File type ASCII text, with very long lines (32001)
Hash e24f931251f056652e0b8ba2a0d3e6ee
161dc1e62ac932d0072b3f31e1c7374fc7798864
b550aebced99bdaf156b11639171d479c1e705df85e33cea2e958a3465b44350
GET /wp-content/plugins/photo-gallery/js/jquery.mCustomScrollbar.concat.min.js?ver=3.1.5 HTTP/1.1
Host: santvicenc.salesians.cat
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://santvicenc.salesians.cat/
Cookie: __wpdm_client=c11170dca089cc3d7eb6d01a7f1a1068
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 25 Oct 2022 04:47:36 GMT
content-type: application/javascript
content-length: 12940
last-modified: Thu, 13 Oct 2022 07:10:10 GMT
etag: "b1a7-5eae53328052d-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-powered-by: PleskLin
X-Firefox-Spdy: h2
santvicenc.salesians.cat/wp-content/plugins/photo-gallery/js/circle-progress.js?ver=1.8.0
137.74.97.145200 OK 4.5 kB URL HTTP/2 santvicenc.salesians.cat/wp-content/plugins/photo-gallery/js/circle-progress.js?ver=1.8.0
IP 137.74.97.145:0
Hash 0943a0de5840e9168a804e914a5a09f6
ec0adbe60f690ff1138aca466c7ad2f50789033c
cac0563d56df8fe2f8d1fe93013d95fd8de6a7e70ef373d26ca6394a77ba1d5a
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/photo-gallery/js/circle-progress.js?ver=1.8.0 HTTP/1.1
Host: santvicenc.salesians.cat
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://santvicenc.salesians.cat/
Cookie: __wpdm_client=c11170dca089cc3d7eb6d01a7f1a1068
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 25 Oct 2022 04:47:36 GMT
content-type: application/javascript
content-length: 4528
last-modified: Thu, 13 Oct 2022 07:10:10 GMT
etag: "3c0a-5eae53328052d-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-powered-by: PleskLin
X-Firefox-Spdy: h2
santvicenc.salesians.cat/wp-content/plugins/photo-gallery/js/scripts.min.js?ver=1.8.0
137.74.97.145200 OK 35 kB URL HTTP/2 santvicenc.salesians.cat/wp-content/plugins/photo-gallery/js/scripts.min.js?ver=1.8.0
IP 137.74.97.145:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash b719eda115973f0f9757a052ad87ecf7
38c8bb8e6bdf3bdb9419d08962074ed24b4dd93a
5c3db1932398ccd9f07b590c6b97297adb8cf8049d2ad1380a8bf56cefc2e11c
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/photo-gallery/js/scripts.min.js?ver=1.8.0 HTTP/1.1
Host: santvicenc.salesians.cat
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://santvicenc.salesians.cat/
Cookie: __wpdm_client=c11170dca089cc3d7eb6d01a7f1a1068
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 25 Oct 2022 04:47:36 GMT
content-type: application/javascript
content-length: 34590
last-modified: Thu, 13 Oct 2022 07:10:10 GMT
etag: "2f1d4-5eae53328052d-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-powered-by: PleskLin
X-Firefox-Spdy: h2
santvicenc.salesians.cat/wp-includes/js/mediaelement/mediaelementplayer-legacy.min.css?ver=4.2.16
137.74.97.145200 OK 2.6 kB URL HTTP/2 santvicenc.salesians.cat/wp-includes/js/mediaelement/mediaelementplayer-legacy.min.css?ver=4.2.16
IP 137.74.97.145:0
File type ASCII text, with very long lines (11256), with no line terminators
Hash 583529ff412cb2b255fa606024d1133e
8db4b0a0be402cc5e38488528791b73b0c7369d0
6fdf0933a8faf229b277740f401600834c00d0b204f7ed38293cd4abcdb3ea20
GET /wp-includes/js/mediaelement/mediaelementplayer-legacy.min.css?ver=4.2.16 HTTP/1.1
Host: santvicenc.salesians.cat
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://santvicenc.salesians.cat/
Cookie: __wpdm_client=c11170dca089cc3d7eb6d01a7f1a1068
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 25 Oct 2022 04:47:36 GMT
content-type: text/css
content-length: 2592
last-modified: Tue, 29 Sep 2020 15:53:06 GMT
etag: "2bf8-5b075c75d5c80-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-powered-by: PleskLin
X-Firefox-Spdy: h2
santvicenc.salesians.cat/wp-includes/js/mediaelement/wp-mediaelement.min.css?ver=6.0.3
137.74.97.145200 OK 1.2 kB URL HTTP/2 santvicenc.salesians.cat/wp-includes/js/mediaelement/wp-mediaelement.min.css?ver=6.0.3
IP 137.74.97.145:0
File type ASCII text, with very long lines (4186), with no line terminators
Hash 30d57d7aa11190e44974cce8621f22c7
59f516369877009cce06ca45b1c296944bb674a4
094ae87a3d4cee4a1ddc5cada149c2deacabd4cf2e377b97fe4ca641142258ee
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/mediaelement/wp-mediaelement.min.css?ver=6.0.3 HTTP/1.1
Host: santvicenc.salesians.cat
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://santvicenc.salesians.cat/
Cookie: __wpdm_client=c11170dca089cc3d7eb6d01a7f1a1068
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 25 Oct 2022 04:47:36 GMT
content-type: text/css
content-length: 1156
last-modified: Fri, 07 Jun 2019 20:45:02 GMT
etag: "105a-58ac1e7924f80-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-powered-by: PleskLin
X-Firefox-Spdy: h2
santvicenc.salesians.cat/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.4
137.74.97.145200 OK 4.0 kB URL HTTP/2 santvicenc.salesians.cat/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.4
IP 137.74.97.145:0
File type HTML document, ASCII text, with very long lines (12310), with no line terminators
Hash 832eeb1fd498e5839b89bfb5f05a2f0d
cf2d8668aecc5033346ac2906bb8bf7e143cfa4a
35b2b27ba0ba63c065e4c67d15b7cb1878b5868d7f475cc7f6f1724d3988793a
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.4 HTTP/1.1
Host: santvicenc.salesians.cat
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://santvicenc.salesians.cat/
Cookie: __wpdm_client=c11170dca089cc3d7eb6d01a7f1a1068
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 25 Oct 2022 04:47:36 GMT
content-type: application/javascript
content-length: 3957
last-modified: Fri, 21 Oct 2022 06:14:48 GMT
etag: "3016-5eb855be8169a-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-powered-by: PleskLin
X-Firefox-Spdy: h2
santvicenc.salesians.cat/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.4
137.74.97.145200 OK 2.9 kB URL HTTP/2 santvicenc.salesians.cat/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.4
IP 137.74.97.145:0
File type ASCII text, with very long lines (9937), with no line terminators
Hash 8189a6a3f3f0efc64f857fe869d3729b
bc84b1c1e96a26fd6595da0cb024aad989c1f331
e2683386c2d5a8b3280fa9920d22fedb31a33a8bdca8ec494d3fe4df9fc6b337
GET /wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.4 HTTP/1.1
Host: santvicenc.salesians.cat
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://santvicenc.salesians.cat/
Cookie: __wpdm_client=c11170dca089cc3d7eb6d01a7f1a1068
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 25 Oct 2022 04:47:36 GMT
content-type: application/javascript
content-length: 2937
last-modified: Fri, 21 Oct 2022 06:14:48 GMT
etag: "26d1-5eb855be8169a-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-powered-by: PleskLin
X-Firefox-Spdy: h2
santvicenc.salesians.cat/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9
137.74.97.145200 OK 2.5 kB URL HTTP/2 santvicenc.salesians.cat/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9
IP 137.74.97.145:0
File type ASCII text, with very long lines (6475), with no line terminators
Hash 27cbbd0a9d7c5ad9402118c4afc36035
7659d08a005f5ecfa6c779e3cda45c30007fd059
ebc771d0af626966e38535357861fab0090e0bd7ff346cbe3c7ffdde1683809f
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9 HTTP/1.1
Host: santvicenc.salesians.cat
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://santvicenc.salesians.cat/
Cookie: __wpdm_client=c11170dca089cc3d7eb6d01a7f1a1068
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 25 Oct 2022 04:47:36 GMT
content-type: application/javascript
content-length: 2457
last-modified: Wed, 25 May 2022 02:42:46 GMT
etag: "194b-5dfcd0738c999-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-powered-by: PleskLin
X-Firefox-Spdy: h2
santvicenc.salesians.cat/wp-content/uploads/2022/05/logo_svh_webnova2.jpg
137.74.97.145200 OK 47 kB URL HTTP/2 santvicenc.salesians.cat/wp-content/uploads/2022/05/logo_svh_webnova2.jpg
IP 137.74.97.145:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 150x150, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1, orientation=upper-left], baseline, precision 8, 512x158, components 3\012- data
Hash 63025b3594b588080e6cfb30918f73d7
16bebc9ad9e8df5bbbbb4b195afc582ca7a2ac6d
35d1dc411a51015f434576d1f1ea0a68feb175f79d0844d950a72a5922dbe9a1
GET /wp-content/uploads/2022/05/logo_svh_webnova2.jpg HTTP/1.1
Host: santvicenc.salesians.cat
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://santvicenc.salesians.cat/
Cookie: __wpdm_client=c11170dca089cc3d7eb6d01a7f1a1068
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 25 Oct 2022 04:47:36 GMT
content-type: image/jpeg
content-length: 46613
last-modified: Mon, 09 May 2022 10:12:09 GMT
etag: "b615-5de9170eff4a2"
accept-ranges: bytes
x-powered-by: PleskLin
X-Firefox-Spdy: h2
santvicenc.salesians.cat/wp-content/uploads/2022/10/Aprovats-First-400x250.png
137.74.97.145200 OK 170 kB URL HTTP/2 santvicenc.salesians.cat/wp-content/uploads/2022/10/Aprovats-First-400x250.png
IP 137.74.97.145:0
File type PNG image data, 400 x 250, 8-bit/color RGBA, non-interlaced\012- data
Size 170 kB (169856 bytes)
Hash 1e287ca91355f5b6bdedc27b783ad204
bbe3a5a11f18a5ce83760dd8a38c76370075480a
2125887fd62baaa9ba0fe91a9509c57049ae42f9093b20094dc8c79b15d1f3dd
GET /wp-content/uploads/2022/10/Aprovats-First-400x250.png HTTP/1.1
Host: santvicenc.salesians.cat
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://santvicenc.salesians.cat/
Cookie: __wpdm_client=c11170dca089cc3d7eb6d01a7f1a1068
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 25 Oct 2022 04:47:36 GMT
content-type: image/png
content-length: 169856
last-modified: Mon, 10 Oct 2022 09:09:59 GMT
etag: "29780-5eaaa862049d3"
accept-ranges: bytes
x-powered-by: PleskLin
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash d114ab00b1cfe7f9b4f56c7b3655b55d
641e580d6148329b0c9eb2d49f5f8a30c08f30e9
e5420e919b2c05c148179c7d85a210941be6862b1f65ccfafcfc38d960bf38d7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 25 Oct 2022 04:47:36 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
santvicenc.salesians.cat/wp-includes/js/dist/i18n.min.js?ver=ebee46757c6a411e38fd079a7ac71d94
137.74.97.145200 OK 3.9 kB URL HTTP/2 santvicenc.salesians.cat/wp-includes/js/dist/i18n.min.js?ver=ebee46757c6a411e38fd079a7ac71d94
IP 137.74.97.145:0
Hash ca0cf10a1d933e4262c732da8f9008c1
d6fdc041e650cf096841671884db8854490dba72
fbd145cb64d3185e42b8a3f6fff22b3e4cc3550934b63a4f874c21c44f920702
GET /wp-includes/js/dist/i18n.min.js?ver=ebee46757c6a411e38fd079a7ac71d94 HTTP/1.1
Host: santvicenc.salesians.cat
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://santvicenc.salesians.cat/
Cookie: __wpdm_client=c11170dca089cc3d7eb6d01a7f1a1068
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 25 Oct 2022 04:47:36 GMT
content-type: application/javascript
content-length: 3865
last-modified: Wed, 25 May 2022 02:42:46 GMT
etag: "27ee-5dfcd0738b9f9-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-powered-by: PleskLin
X-Firefox-Spdy: h2
santvicenc.salesians.cat/wp-includes/js/jquery/jquery.form.min.js?ver=4.3.0
137.74.97.145200 OK 6.0 kB URL HTTP/2 santvicenc.salesians.cat/wp-includes/js/jquery/jquery.form.min.js?ver=4.3.0
IP 137.74.97.145:0
File type ASCII text, with very long lines (16109), with no line terminators
Hash 50f1b56214f7e26856cb386786ef488c
16e4411fc85326e3b97b2cae8ded89c68e978d46
b8ac9041ececad43c28db3f7875fcf3e76d5e01d1d062f33036e561782bc6ce9
GET /wp-includes/js/jquery/jquery.form.min.js?ver=4.3.0 HTTP/1.1
Host: santvicenc.salesians.cat
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://santvicenc.salesians.cat/
Cookie: __wpdm_client=c11170dca089cc3d7eb6d01a7f1a1068
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 25 Oct 2022 04:47:36 GMT
content-type: application/javascript
content-length: 5962
last-modified: Wed, 25 May 2022 02:42:45 GMT
etag: "3eed-5dfcd07385c39-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-powered-by: PleskLin
X-Firefox-Spdy: h2
santvicenc.salesians.cat/wp-includes/js/dist/hooks.min.js?ver=c6d64f2cb8f5c6bb49caca37f8828ce3
137.74.97.145200 OK 1.7 kB URL HTTP/2 santvicenc.salesians.cat/wp-includes/js/dist/hooks.min.js?ver=c6d64f2cb8f5c6bb49caca37f8828ce3
IP 137.74.97.145:0
File type ASCII text, with very long lines (4875)
Hash 320b86bb1a9ce650a5e3553b2bb1c430
c56e8668b398641ed5cdcfbd8a8eba7d631cdb9c
c9ebbb8d122c6be3880d18172abfe308bb07db900689484fa765a73b8b20b3ec
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/dist/hooks.min.js?ver=c6d64f2cb8f5c6bb49caca37f8828ce3 HTTP/1.1
Host: santvicenc.salesians.cat
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://santvicenc.salesians.cat/
Cookie: __wpdm_client=c11170dca089cc3d7eb6d01a7f1a1068
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 25 Oct 2022 04:47:36 GMT
content-type: application/javascript
content-length: 1661
last-modified: Wed, 25 May 2022 02:42:45 GMT
etag: "132e-5dfcd07389ab9-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-powered-by: PleskLin
X-Firefox-Spdy: h2
santvicenc.salesians.cat/wp-content/themes/Divi/js/smoothscroll.js?ver=4.18.0
137.74.97.145200 OK 2.6 kB URL HTTP/2 santvicenc.salesians.cat/wp-content/themes/Divi/js/smoothscroll.js?ver=4.18.0
IP 137.74.97.145:0
File type ASCII text, with very long lines (5644)
Hash 062e1255f1cb0d2f5b2badd2375ac0fd
c3c9772e967520006444fe8877b747a7155afc87
90164a05ed461227744513b44fbd7e0b0b2e4ea18de01c0da57df97039e93147
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/Divi/js/smoothscroll.js?ver=4.18.0 HTTP/1.1
Host: santvicenc.salesians.cat
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://santvicenc.salesians.cat/
Cookie: __wpdm_client=c11170dca089cc3d7eb6d01a7f1a1068
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 25 Oct 2022 04:47:36 GMT
content-type: application/javascript
content-length: 2557
last-modified: Tue, 16 Aug 2022 11:47:27 GMT
etag: "1652-5e65a5000dd79-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-powered-by: PleskLin
X-Firefox-Spdy: h2
santvicenc.salesians.cat/wp-content/themes/Divi/includes/builder/feature/dynamic-assets/assets/js/jquery.fitvids.js?ver=4.18.0
137.74.97.145200 OK 1.3 kB URL HTTP/2 santvicenc.salesians.cat/wp-content/themes/Divi/includes/builder/feature/dynamic-assets/assets/js/jquery.fitvids.js?ver=4.18.0
IP 137.74.97.145:0
File type HTML document, ASCII text
Hash 1ac5fd0d746d90e81bb4663d18a6d4c8
4566f66fbfc4cd3881967b31c39ba9299c5f4e6a
9e76b39ba632c5e8d0e3e91427ba4498cb4343394efbfb60fcc58dd0e8a09d3f
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/Divi/includes/builder/feature/dynamic-assets/assets/js/jquery.fitvids.js?ver=4.18.0 HTTP/1.1
Host: santvicenc.salesians.cat
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://santvicenc.salesians.cat/
Cookie: __wpdm_client=c11170dca089cc3d7eb6d01a7f1a1068
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 25 Oct 2022 04:47:36 GMT
content-type: application/javascript
content-length: 1341
last-modified: Tue, 16 Aug 2022 11:47:27 GMT
etag: "d15-5e65a50014ada-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-powered-by: PleskLin
X-Firefox-Spdy: h2
santvicenc.salesians.cat/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0
137.74.97.145200 OK 7.1 kB URL HTTP/2 santvicenc.salesians.cat/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0
IP 137.74.97.145:0
File type Unicode text, UTF-8 text, with very long lines (19138), with no line terminators
Hash 2f4fcc5a628b379672d76b7e91cbdf07
9d72f2c9cbc1e9b036360acfce8c8ccc8b832b8c
a360f715a418026d2e1acd81c02c83233d0c0b60fdf4ce0b4d33562925d6a0b5
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0 HTTP/1.1
Host: santvicenc.salesians.cat
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://santvicenc.salesians.cat/
Cookie: __wpdm_client=c11170dca089cc3d7eb6d01a7f1a1068
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 25 Oct 2022 04:47:36 GMT
content-type: application/javascript
content-length: 7095
last-modified: Wed, 25 May 2022 02:42:46 GMT
etag: "4ac6-5dfcd0738c999-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-powered-by: PleskLin
X-Firefox-Spdy: h2
santvicenc.salesians.cat/wp-content/themes/Divi/includes/builder/feature/dynamic-assets/assets/js/salvattore.js?ver=4.18.0
137.74.97.145200 OK 3.4 kB URL HTTP/2 santvicenc.salesians.cat/wp-content/themes/Divi/includes/builder/feature/dynamic-assets/assets/js/salvattore.js?ver=4.18.0
IP 137.74.97.145:0
File type ASCII text, with very long lines (6322)
Hash 1b5c71c55e7595d6077b747f5eb16e19
6189a3be66ea8d32b04b0407fc618df86e8151fd
8d79ef704cdba7f25c913a457d969ab10884fdf0a7f6bfca8bbcbc4cba069b32
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/Divi/includes/builder/feature/dynamic-assets/assets/js/salvattore.js?ver=4.18.0 HTTP/1.1
Host: santvicenc.salesians.cat
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://santvicenc.salesians.cat/
Cookie: __wpdm_client=c11170dca089cc3d7eb6d01a7f1a1068
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 25 Oct 2022 04:47:36 GMT
content-type: application/javascript
content-length: 3412
last-modified: Tue, 16 Aug 2022 11:47:27 GMT
etag: "217e-5e65a50014ada-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-powered-by: PleskLin
X-Firefox-Spdy: h2
santvicenc.salesians.cat/wp-content/themes/Divi/core/admin/js/common.js?ver=4.18.0
137.74.97.145200 OK 566 B URL HTTP/2 santvicenc.salesians.cat/wp-content/themes/Divi/core/admin/js/common.js?ver=4.18.0
IP 137.74.97.145:0
Hash c24ce4d2c7d7512601a6db3b24242297
ed36ea05d2e96b5706a803067c84206a8f7c3202
ce9cccfd1fbc822ac820d3ad47f5a3adabb312ac517a8c6473568bd2d2f98fb4
GET /wp-content/themes/Divi/core/admin/js/common.js?ver=4.18.0 HTTP/1.1
Host: santvicenc.salesians.cat
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://santvicenc.salesians.cat/
Cookie: __wpdm_client=c11170dca089cc3d7eb6d01a7f1a1068
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 25 Oct 2022 04:47:36 GMT
content-type: application/javascript
content-length: 566
last-modified: Tue, 16 Aug 2022 11:47:27 GMT
etag: "53f-5e65a5002b23b-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-powered-by: PleskLin
X-Firefox-Spdy: h2
santvicenc.salesians.cat/wp-includes/js/mediaelement/wp-mediaelement.min.js?ver=6.0.3
137.74.97.145200 OK 475 B URL HTTP/2 santvicenc.salesians.cat/wp-includes/js/mediaelement/wp-mediaelement.min.js?ver=6.0.3
IP 137.74.97.145:0
File type HTML document, ASCII text, with very long lines (906), with no line terminators
Hash c7aa8936938be0b65781455878aa2085
0066e0c5ed75b3ccd5bb01db5f373d995c217a29
a764eb4204428f671190ad2bc84bcbd86cd9a6bfd05a7ded46bceb651503c508
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/mediaelement/wp-mediaelement.min.js?ver=6.0.3 HTTP/1.1
Host: santvicenc.salesians.cat
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://santvicenc.salesians.cat/
Cookie: __wpdm_client=c11170dca089cc3d7eb6d01a7f1a1068
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 25 Oct 2022 04:47:36 GMT
content-type: application/javascript
content-length: 475
last-modified: Wed, 20 Jan 2021 13:35:18 GMT
etag: "38a-5b955069f1180-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-powered-by: PleskLin
X-Firefox-Spdy: h2
santvicenc.salesians.cat/wp-content/plugins/complianz-gdpr/cookiebanner/js/complianz.min.js?ver=6.3.4
137.74.97.145200 OK 11 kB URL HTTP/2 santvicenc.salesians.cat/wp-content/plugins/complianz-gdpr/cookiebanner/js/complianz.min.js?ver=6.3.4
IP 137.74.97.145:0
File type C source textAlgol 68 source text\012- Pascal source, ASCII text, with very long lines (48592), with no line terminators
Hash 13cd0ad0665e304568a86b0cb88e599e
c744ede694d0d135619aaa4368ac60c255dae71f
927156d852a86a7be4347e8b4eee9207c534ee6ff9c7b8f8c3ac670fd946d1de
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/complianz-gdpr/cookiebanner/js/complianz.min.js?ver=6.3.4 HTTP/1.1
Host: santvicenc.salesians.cat
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://santvicenc.salesians.cat/
Cookie: __wpdm_client=c11170dca089cc3d7eb6d01a7f1a1068
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 25 Oct 2022 04:47:36 GMT
content-type: application/javascript
content-length: 11184
last-modified: Mon, 17 Oct 2022 05:59:59 GMT
etag: "bdd0-5eb34af84ea1d-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-powered-by: PleskLin
X-Firefox-Spdy: h2
santvicenc.salesians.cat/wp-content/themes/Divi/includes/builder/feature/dynamic-assets/assets/js/easypiechart.js?ver=4.18.0
137.74.97.145200 OK 3.1 kB URL HTTP/2 santvicenc.salesians.cat/wp-content/themes/Divi/includes/builder/feature/dynamic-assets/assets/js/easypiechart.js?ver=4.18.0
IP 137.74.97.145:0
Hash 7406ade9a9146b2dc07aa61b09322f8a
b34eabcff49affa7f58d5a780c5bfcf0d35ff65d
7b2c96e32dc476b187952ddb54912351c789ba6b41935b60c818278b92e64e4f
GET /wp-content/themes/Divi/includes/builder/feature/dynamic-assets/assets/js/easypiechart.js?ver=4.18.0 HTTP/1.1
Host: santvicenc.salesians.cat
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://santvicenc.salesians.cat/
Cookie: __wpdm_client=c11170dca089cc3d7eb6d01a7f1a1068
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 25 Oct 2022 04:47:36 GMT
content-type: application/javascript
content-length: 3118
last-modified: Tue, 16 Aug 2022 11:47:27 GMT
etag: "2466-5e65a50014ada-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-powered-by: PleskLin
X-Firefox-Spdy: h2
santvicenc.salesians.cat/wp-includes/js/mediaelement/mediaelement-migrate.min.js?ver=6.0.3
137.74.97.145200 OK 540 B URL HTTP/2 santvicenc.salesians.cat/wp-includes/js/mediaelement/mediaelement-migrate.min.js?ver=6.0.3
IP 137.74.97.145:0
File type ASCII text, with very long lines (1191), with no line terminators
Hash 2029090ac267ecfc20a3c0b884202de9
0ad1d2ea2030ad3c98315a8342168cb0e2c2fca1
a5f0b6001e19c189db4a985f7be8577804f4620edfc4e0812483cf571618607d
GET /wp-includes/js/mediaelement/mediaelement-migrate.min.js?ver=6.0.3 HTTP/1.1
Host: santvicenc.salesians.cat
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://santvicenc.salesians.cat/
Cookie: __wpdm_client=c11170dca089cc3d7eb6d01a7f1a1068
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 25 Oct 2022 04:47:36 GMT
content-type: application/javascript
content-length: 540
last-modified: Wed, 25 May 2022 02:42:45 GMT
etag: "4a7-5dfcd07385c39-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-powered-by: PleskLin
X-Firefox-Spdy: h2
santvicenc.salesians.cat/wp-includes/js/mediaelement/mediaelement-and-player.min.js?ver=4.2.16
137.74.97.145200 OK 39 kB URL HTTP/2 santvicenc.salesians.cat/wp-includes/js/mediaelement/mediaelement-and-player.min.js?ver=4.2.16
IP 137.74.97.145:0
File type ASCII text, with very long lines (65266)
Hash 4cdaad83ca56a59ee7352b981c2f6db5
4cba1a66bde2345f35c94cacc40749e7aaa30d79
e1aab11a4a9f355af8664139d9151aaf59a6a7d58791aeceda7e611eb049b215
GET /wp-includes/js/mediaelement/mediaelement-and-player.min.js?ver=4.2.16 HTTP/1.1
Host: santvicenc.salesians.cat
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://santvicenc.salesians.cat/
Cookie: __wpdm_client=c11170dca089cc3d7eb6d01a7f1a1068
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 25 Oct 2022 04:47:36 GMT
content-type: application/javascript
content-length: 38657
last-modified: Tue, 29 Sep 2020 15:53:06 GMT
etag: "267aa-5b075c75d5c80-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-powered-by: PleskLin
X-Firefox-Spdy: h2
santvicenc.salesians.cat/wp-content/themes/Divi/style.css
137.74.97.145200 OK 235 B URL HTTP/2 santvicenc.salesians.cat/wp-content/themes/Divi/style.css
IP 137.74.97.145:0
Hash d7eadd436ef762785d1951847e9ecdff
db02795bf4f0c1049ded5da7dc38efd0b8a39fca
3551e9280f729a4e7bdd25611df5c59e6dbb159630a76d5511ae8ab4f5412ad2
GET /wp-content/themes/Divi/style.css HTTP/1.1
Host: santvicenc.salesians.cat
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://santvicenc.salesians.cat/wp-content/themes/Divi-child/style.css?ver=4.18.0
Cookie: __wpdm_client=c11170dca089cc3d7eb6d01a7f1a1068
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 25 Oct 2022 04:47:36 GMT
content-type: text/css
content-length: 235
last-modified: Tue, 16 Aug 2022 11:47:27 GMT
etag: "158-5e65a5000cdd9-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-powered-by: PleskLin
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash d114ab00b1cfe7f9b4f56c7b3655b55d
641e580d6148329b0c9eb2d49f5f8a30c08f30e9
e5420e919b2c05c148179c7d85a210941be6862b1f65ccfafcfc38d960bf38d7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 25 Oct 2022 04:47:36 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
santvicenc.salesians.cat/wp-content/uploads/2022/02/facana-Custom.jpg
137.74.97.145200 OK 249 kB URL HTTP/2 santvicenc.salesians.cat/wp-content/uploads/2022/02/facana-Custom.jpg
IP 137.74.97.145:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 180x180, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=13, manufacturer=Panasonic, model=DMC-TZ20, orientation=upper-left, xresolution=190, yresolution=198, resolutionunit=2, software=Ver.1.0 , datetime=2013:10:09 11:42:55], baseline, precision 8, 960x720, components 3\012- data
Size 249 kB (249208 bytes)
Hash 1b34a0d18b764bb6ac07507f3f24964f
e3f3c57ca8720891e62d3ca84ee6edef2c4d1ea5
b7046f4cc65b6b107c6c9d0ca7e7b6d35e93ac6b942fa701eaf3d017d36dfddd
GET /wp-content/uploads/2022/02/facana-Custom.jpg HTTP/1.1
Host: santvicenc.salesians.cat
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://santvicenc.salesians.cat/
Cookie: __wpdm_client=c11170dca089cc3d7eb6d01a7f1a1068
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 25 Oct 2022 04:47:36 GMT
content-type: image/jpeg
content-length: 249208
last-modified: Thu, 10 Feb 2022 11:56:07 GMT
etag: "3cd78-5d7a8a2b7fc77"
accept-ranges: bytes
x-powered-by: PleskLin
X-Firefox-Spdy: h2
santvicenc.salesians.cat/wp-content/themes/Divi/core/admin/fonts/modules/social/modules.ttf
137.74.97.145200 OK 10 kB URL HTTP/2 santvicenc.salesians.cat/wp-content/themes/Divi/core/admin/fonts/modules/social/modules.ttf
IP 137.74.97.145:0
File type TrueType Font data, 11 tables, 1st "OS/2", 14 names, Macintosh, type 1 string, ETmodules \012- data
Hash 23a66d210554b24349c8e0bcee734828
330f4d259582d721f59ee7951746961e163d01cd
57b1f974576a3372b5ebee24172d169426c645118081aced33137320bc972567
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/Divi/core/admin/fonts/modules/social/modules.ttf HTTP/1.1
Host: santvicenc.salesians.cat
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://santvicenc.salesians.cat/wp-content/et-cache/1/1/9308/et-divi-dynamic-tb-9280-9308-late.css?ver=1666609354
Cookie: __wpdm_client=c11170dca089cc3d7eb6d01a7f1a1068
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 25 Oct 2022 04:47:36 GMT
content-type: font/ttf
content-length: 10396
last-modified: Tue, 16 Aug 2022 11:47:27 GMT
etag: "289c-5e65a5002b23b"
accept-ranges: bytes
x-powered-by: PleskLin
X-Firefox-Spdy: h2
santvicenc.salesians.cat/wp-content/themes/Divi/core/admin/fonts/fontawesome/fa-brands-400.woff2
137.74.97.145200 OK 78 kB URL HTTP/2 santvicenc.salesians.cat/wp-content/themes/Divi/core/admin/fonts/fontawesome/fa-brands-400.woff2
IP 137.74.97.145:0
File type Web Open Font Format (Version 2), TrueType, length 78460, version 331.-31392\012- data
Hash f075c50f89795e4cdb4d45b51f1a6800
f726c4275bb494a045fde059175f072de06c01df
71b3ce72680f4183d28db86b184542051fd533bb1146933233e4f6a20cf98cba
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/Divi/core/admin/fonts/fontawesome/fa-brands-400.woff2 HTTP/1.1
Host: santvicenc.salesians.cat
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://santvicenc.salesians.cat/
Cookie: __wpdm_client=c11170dca089cc3d7eb6d01a7f1a1068
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 25 Oct 2022 04:47:36 GMT
content-type: font/woff2
content-length: 78460
last-modified: Tue, 16 Aug 2022 11:47:27 GMT
etag: "1327c-5e65a5002c1db"
accept-ranges: bytes
x-powered-by: PleskLin
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Rubik
142.250.74.10200 OK 50 kB URL HTTP/2 fonts.googleapis.com/css?family=Rubik
IP 142.250.74.10:0
Hash af060142f020fe6f1bf15376e3ac4514
1df4302b30f9a3728b1042934f076bb7882bcfd7
8689c3b0e8ffabe8d1a783f99590ab1a7ef13ef56da88a974a6a780d876e0864
GET /css?family=Rubik HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://santvicenc.salesians.cat/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 25 Oct 2022 04:47:36 GMT
date: Tue, 25 Oct 2022 04:47:36 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
santvicenc.salesians.cat/wp-content/uploads/2022/01/tria_escola_cristiana-2.png
137.74.97.145200 OK 15 kB URL HTTP/2 santvicenc.salesians.cat/wp-content/uploads/2022/01/tria_escola_cristiana-2.png
IP 137.74.97.145:0
File type PNG image data, 350 x 90, 8-bit/color RGBA, non-interlaced\012- data
Hash 41c8d10bc2d4f3fccb07b7d888decfcd
ab5648219aa67ff6d9c5c77ff5d094f7fccfd8a8
e215ebde1d33ffa0c3f9aabc9899f8563f52120b687d91c433538e53b3e8b9ce
GET /wp-content/uploads/2022/01/tria_escola_cristiana-2.png HTTP/1.1
Host: santvicenc.salesians.cat
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://santvicenc.salesians.cat/
Cookie: __wpdm_client=c11170dca089cc3d7eb6d01a7f1a1068
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 25 Oct 2022 04:47:36 GMT
content-type: image/png
content-length: 14980
last-modified: Thu, 27 Jan 2022 08:51:23 GMT
etag: "3a84-5d68c6c417f9c"
accept-ranges: bytes
x-powered-by: PleskLin
X-Firefox-Spdy: h2
santvicenc.salesians.cat/wp-content/uploads/2022/01/RIEEB.png
137.74.97.145200 OK 29 kB URL HTTP/2 santvicenc.salesians.cat/wp-content/uploads/2022/01/RIEEB.png
IP 137.74.97.145:0
File type PNG image data, 379 x 357, 8-bit/color RGBA, non-interlaced\012- data
Hash b2098886bc34152bb13c79fc40e4a4f5
f1c9ee55c44c03fe96f748dbb4b9a9310e61c489
b7c7e3802c26d6360cdd0fd34b4faaeab148aa6b225bd4ca452e147625d67682
GET /wp-content/uploads/2022/01/RIEEB.png HTTP/1.1
Host: santvicenc.salesians.cat
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://santvicenc.salesians.cat/
Cookie: __wpdm_client=c11170dca089cc3d7eb6d01a7f1a1068
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 25 Oct 2022 04:47:36 GMT
content-type: image/png
content-length: 28645
last-modified: Thu, 27 Jan 2022 08:39:13 GMT
etag: "6fe5-5d68c40bdd11e"
accept-ranges: bytes
x-powered-by: PleskLin
X-Firefox-Spdy: h2
santvicenc.salesians.cat/wp-content/uploads/2022/01/ESC-M43bS-E04-Marca-EDUQATIA-ISO9001-635-17-Logos-1280x1963.jpg
137.74.97.145200 OK 127 kB URL HTTP/2 santvicenc.salesians.cat/wp-content/uploads/2022/01/ESC-M43bS-E04-Marca-EDUQATIA-ISO9001-635-17-Logos-1280x1963.jpg
IP 137.74.97.145:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=4, xresolution=62, yresolution=70, resolutionunit=2, software=paint.net 4.0.5], baseline, precision 8, 1280x1963, components 3\012- data
Size 127 kB (126932 bytes)
Hash 5641d79fd19ef7ff92c5344b81e5b59b
d4c7575dd1e3e1177b408f2c28c6f88c2cbdb036
cd75d265256a1cb0ca2e31cb86589cfc85759a1681803ec832687cfa5d373d7c
GET /wp-content/uploads/2022/01/ESC-M43bS-E04-Marca-EDUQATIA-ISO9001-635-17-Logos-1280x1963.jpg HTTP/1.1
Host: santvicenc.salesians.cat
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://santvicenc.salesians.cat/
Cookie: __wpdm_client=c11170dca089cc3d7eb6d01a7f1a1068
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 25 Oct 2022 04:47:36 GMT
content-type: image/jpeg
content-length: 126932
last-modified: Thu, 27 Jan 2022 08:34:12 GMT
etag: "1efd4-5d68c2ec6987c"
accept-ranges: bytes
x-powered-by: PleskLin
X-Firefox-Spdy: h2
santvicenc.salesians.cat/wp-content/uploads/2022/01/DUAL_alta.jpg
137.74.97.145200 OK 60 kB URL HTTP/2 santvicenc.salesians.cat/wp-content/uploads/2022/01/DUAL_alta.jpg
IP 137.74.97.145:0
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS5 Windows, datetime=2015:06:17 08:13:02], baseline, precision 8, 553x554, components 3\012- data
Hash c7a5ad412bbaeba8d0c6e1252d992a84
a34151deafcd0ef4d6db82b8cbc37a906dc2513e
f2d35fac1a6a4bc5766fdd80d9617508bb059c08587efc617050651f2d6f9352
GET /wp-content/uploads/2022/01/DUAL_alta.jpg HTTP/1.1
Host: santvicenc.salesians.cat
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://santvicenc.salesians.cat/
Cookie: __wpdm_client=c11170dca089cc3d7eb6d01a7f1a1068
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 25 Oct 2022 04:47:36 GMT
content-type: image/jpeg
content-length: 59997
last-modified: Thu, 27 Jan 2022 08:39:50 GMT
etag: "ea5d-5d68c42f12d17"
accept-ranges: bytes
x-powered-by: PleskLin
X-Firefox-Spdy: h2
santvicenc.salesians.cat/wp-content/et-cache/1/1/9308/et-divi-dynamic-tb-9280-9308-late.css
137.74.97.145200 OK 1.6 kB URL HTTP/2 santvicenc.salesians.cat/wp-content/et-cache/1/1/9308/et-divi-dynamic-tb-9280-9308-late.css
IP 137.74.97.145:0
File type ASCII text, with very long lines (16772)
Hash 28f1e3b41ff9ae534189f09feec359bc
69d014b9df3e7b8610558698f8f57245500fc1f0
f4a90690120bd1a4f2d7865d437381650d0451023f962161c6d2f3632d9e3957
GET /wp-content/et-cache/1/1/9308/et-divi-dynamic-tb-9280-9308-late.css HTTP/1.1
Host: santvicenc.salesians.cat
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://santvicenc.salesians.cat/
Cookie: __wpdm_client=c11170dca089cc3d7eb6d01a7f1a1068
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 25 Oct 2022 04:47:36 GMT
content-type: text/css
content-length: 1616
last-modified: Mon, 24 Oct 2022 11:02:34 GMT
etag: "4430-5ebc5ba940b7d-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-powered-by: PleskLin
X-Firefox-Spdy: h2
santvicenc.salesians.cat/wp-content/uploads/2022/10/quafrat-obrim-camins-400x250.jpg
137.74.97.145200 OK 2.9 kB URL HTTP/2 santvicenc.salesians.cat/wp-content/uploads/2022/10/quafrat-obrim-camins-400x250.jpg
IP 137.74.97.145:0
File type gzip compressed data, from Unix\012- data
Hash 1fc2f9914804de9bdd98711848f3a92d
711bdf6b0713b0b258a0cd85f816b8e08034afde
d6ba559640d9e51778a93d2c192e05c4184c2dd324869f9c9d3de4f9fda3e1bb
GET /wp-content/uploads/2022/10/quafrat-obrim-camins-400x250.jpg HTTP/1.1
Host: santvicenc.salesians.cat
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://santvicenc.salesians.cat/
Cookie: __wpdm_client=c11170dca089cc3d7eb6d01a7f1a1068
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 25 Oct 2022 04:47:36 GMT
content-type: image/jpeg
content-length: 16326
last-modified: Mon, 10 Oct 2022 09:05:03 GMT
etag: "3fc6-5eaaa747b65ee"
accept-ranges: bytes
x-powered-by: PleskLin
X-Firefox-Spdy: h2
santvicenc.salesians.cat/wp-content/uploads/2022/01/cropped-cropped-logo_svh_webnova2-32x32.jpg
137.74.97.145200 OK 876 B URL HTTP/2 santvicenc.salesians.cat/wp-content/uploads/2022/01/cropped-cropped-logo_svh_webnova2-32x32.jpg
IP 137.74.97.145:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 90", baseline, precision 8, 32x32, components 3\012- data
Hash 6fd28e531d3171b2f09d1f1a83194c52
760764b639f2bf136f84badfff7a691fa02764e7
353c8a12edf4b403e8555cfff68f4483162ad6fc660e764ace4a980904e72fca
GET /wp-content/uploads/2022/01/cropped-cropped-logo_svh_webnova2-32x32.jpg HTTP/1.1
Host: santvicenc.salesians.cat
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://santvicenc.salesians.cat/
Cookie: __wpdm_client=c11170dca089cc3d7eb6d01a7f1a1068
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 25 Oct 2022 04:47:36 GMT
content-type: image/jpeg
content-length: 876
last-modified: Thu, 27 Jan 2022 11:19:56 GMT
etag: "36c-5d68e7f7d5f4e"
accept-ranges: bytes
x-powered-by: PleskLin
X-Firefox-Spdy: h2
santvicenc.salesians.cat/wp-content/uploads/2022/01/cropped-cropped-logo_svh_webnova2-192x192.jpg
137.74.97.145200 OK 6.4 kB URL HTTP/2 santvicenc.salesians.cat/wp-content/uploads/2022/01/cropped-cropped-logo_svh_webnova2-192x192.jpg
IP 137.74.97.145:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 90", baseline, precision 8, 192x192, components 3\012- data
Hash a069de083e45f91a07456eae57b55017
7aef81561e7fef0db565b85bf00447fdb94537be
6917d82f6464a933fdd23c22ddd719458debb49d1f2c110fea3dccab449c7699
GET /wp-content/uploads/2022/01/cropped-cropped-logo_svh_webnova2-192x192.jpg HTTP/1.1
Host: santvicenc.salesians.cat
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://santvicenc.salesians.cat/
Cookie: __wpdm_client=c11170dca089cc3d7eb6d01a7f1a1068
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 25 Oct 2022 04:47:36 GMT
content-type: image/jpeg
content-length: 6354
last-modified: Thu, 27 Jan 2022 11:19:56 GMT
etag: "18d2-5d68e7f7d20ce"
accept-ranges: bytes
x-powered-by: PleskLin
X-Firefox-Spdy: h2
santvicenc.salesians.cat/wp-content/themes/Divi/js/scripts.min.js?ver=4.18.0
137.74.97.145200 OK 0 B URL HTTP/2 santvicenc.salesians.cat/wp-content/themes/Divi/js/scripts.min.js?ver=4.18.0
IP 137.74.97.145:0
GET /wp-content/themes/Divi/js/scripts.min.js?ver=4.18.0 HTTP/1.1
Host: santvicenc.salesians.cat
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://santvicenc.salesians.cat/
Cookie: __wpdm_client=c11170dca089cc3d7eb6d01a7f1a1068
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 25 Oct 2022 04:47:36 GMT
content-type: application/javascript
last-modified: Tue, 16 Aug 2022 11:47:27 GMT
etag: "42e58-5e65a5000dd79-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-powered-by: PleskLin
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Ubuntu&subset=greek,latin,greek-ext,vietnamese,cyrillic-ext,latin-ext,cyrillic
142.250.74.10200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Ubuntu&subset=greek,latin,greek-ext,vietnamese,cyrillic-ext,latin-ext,cyrillic
IP 142.250.74.10:0
GET /css?family=Ubuntu&subset=greek,latin,greek-ext,vietnamese,cyrillic-ext,latin-ext,cyrillic HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://santvicenc.salesians.cat/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 25 Oct 2022 04:47:36 GMT
date: Tue, 25 Oct 2022 04:47:36 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
santvicenc.salesians.cat/wp-content/uploads/2022/10/6-400x250.png
137.74.97.145200 OK 0 B URL HTTP/2 santvicenc.salesians.cat/wp-content/uploads/2022/10/6-400x250.png
IP 137.74.97.145:0
GET /wp-content/uploads/2022/10/6-400x250.png HTTP/1.1
Host: santvicenc.salesians.cat
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://santvicenc.salesians.cat/
Cookie: __wpdm_client=c11170dca089cc3d7eb6d01a7f1a1068
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 25 Oct 2022 04:47:36 GMT
content-type: image/png
content-length: 204650
last-modified: Thu, 13 Oct 2022 13:44:08 GMT
etag: "31f6a-5eaeab4169e53"
accept-ranges: bytes
x-powered-by: PleskLin
X-Firefox-Spdy: h2