Report - aexa.es/

Report Overview

Submitted URL
aexa.es/
IP
217.160.101.116
ASN
#8560 IONOS SE
Submitted
2023-01-30 07:03:08
Access
Website Title
Final URL
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
38

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
r3.o.lencr.org	344	2020-12-02T09:52:13Z	2023-03-13T05:09:07Z	2.7 kB	7.1 kB	23.36.77.32
contile.services.mozilla.com	1114	2021-05-27T20:32:35Z	2023-03-13T05:09:13Z	333 B	391 B	34.117.237.239
ocsp.pki.goog	175	2018-07-01T08:43:07Z	2023-03-13T05:09:47Z	1.4 kB	2.8 kB	142.250.74.131
www.google-analytics.com	40	2012-10-03T03:04:21Z	2023-03-13T07:36:03Z	364 B	21 kB	142.250.74.110
fonts.gstatic.com	unknown	2014-09-09T02:40:21Z	2023-03-13T08:44:36Z	471 B	17 kB	142.250.74.35
region1.google-analytics.com	unknown	2022-03-17T12:26:33Z	2023-03-13T05:09:18Z	694 B	438 B	216.239.34.36
aexa.es	unknown	2017-05-29T00:26:15Z	2023-03-13T06:02:49Z	14 kB	3.9 MB	217.160.101.116
content-signature-2.cdn.mozilla.net	1152	2020-11-03T13:26:46Z	2023-03-13T05:09:35Z	413 B	5.9 kB	34.160.144.191
push.services.mozilla.com	2140	2014-10-24T10:27:06Z	2023-03-13T05:09:14Z	606 B	127 B	54.190.123.170
www.googletagmanager.com	75	2013-05-22T04:07:37Z	2023-03-13T08:28:24Z	377 B	45 kB	142.250.74.168
img-getpocket.cdn.mozilla.net	1631	2018-06-22T01:36:00Z	2023-03-13T05:09:16Z	3.8 kB	66 kB	34.120.237.76
firefox.settings.services.mozilla.com	867	2020-06-04T22:08:41Z	2023-03-13T05:09:10Z	782 B	2.4 kB	35.241.9.150

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

Scan Date	Severity	Indicator	Alert
2023-01-30	medium	aexa.es/	Phishing
2023-01-30	medium	aexa.es/wp-content/astra-local-fonts/barlow/7cHqv4kjgoGqM7E3j-ws51os.woff2	Phishing
2023-01-30	medium	aexa.es/wp-content/astra-local-fonts/montserrat/JTUHjIg1_i6t8kCHKm4532VJOt5-QNFgpCu173w5aXo.woff2	Phishing
2023-01-30	medium	aexa.es/wp-includes/js/dist/element.min.js?ver=47162ff4492c7ec4956b	Phishing
2023-01-30	medium	aexa.es/	Phishing
2023-01-30	medium	aexa.es/wp-content/astra-local-fonts/barlow/7cHqv4kjgoGqM7E3p-ks51os.woff2	Phishing
2023-01-30	medium	aexa.es/wp-content/astra-local-fonts/barlow/7cHpv4kjgoGqM7E_DMs5.woff2	Phishing
2023-01-30	medium	aexa.es/wp-content/plugins/advanced-post-block/assets/js/easy-ticker.min.js?ver=3.2.1	Phishing
2023-01-30	medium	aexa.es/wp-content/plugins/advanced-post-block/dist/script.js?ver=1.8.3	Phishing
2023-01-30	medium	aexa.es/wp-includes/js/dist/escape-html.min.js?ver=03e27a7b6ae14f7afaa6	Phishing
2023-01-30	medium	aexa.es/wp-content/plugins/advanced-post-block/dist/style.css?ver=1.8.3	Phishing
2023-01-30	medium	aexa.es/wp-content/themes/astra/assets/fonts/astra.woff	Phishing
2023-01-30	medium	aexa.es/wp-content/astra-local-fonts/astra-local-fonts.css?ver=4.0.2	Phishing
2023-01-30	medium	aexa.es/wp-includes/js/jquery/jquery.min.js?ver=3.6.1	Phishing
2023-01-30	medium	aexa.es/wp-includes/js/wp-emoji-release.min.js?ver=6.1.1	Phishing
2023-01-30	medium	aexa.es/wp-content/themes/astra/assets/js/minified/frontend.min.js?ver=4.0.2	Phishing
2023-01-30	medium	aexa.es/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9	Phishing
2023-01-30	medium	aexa.es/wp-includes/js/dist/vendor/react-dom.min.js?ver=17.0.1	Phishing
2023-01-30	medium	aexa.es/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2	Phishing

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (19)

	URL	Size	First Seen	Last Seen
	aexa.es/	2.1 kB	2023-03-13	2023-03-13
Pretty URL aexa.es/ IP 217.160.101.116 ASN #8560 IONOS SE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 07:24:33 Last Seen2023-03-13 17:02:40 Times Seen1 Hash c1035b4878a50ce706531cc17e32d5af dc12fd8b5fba05cc7973b14c7d231ddbbb11625f 67397476fbcc35bd834588436a0a8f23913317c93c698071f4ee069e784ff3ea Loading...

	aexa.es/wp-includes/js/dist/vendor/react-dom.min.js?ver=17.0.1	118 kB	2023-03-07	2024-04-18
Pretty URL aexa.es/wp-includes/js/dist/vendor/react-dom.min.js?ver=17.0.1 IP 217.160.101.116 ASN #8560 IONOS SE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:18:10 Last Seen2024-04-18 12:49:20 Times Seen515 Hash e2a920d393a009727111fbf1e4a3e283 e70afa2ea51b0b9ed31c1ab9af6ce7281a36cd98 faab00bb343aef689870018af7e09d1edd5cbd150b712e727240e4634fa1ffa2 Loading...

	aexa.es/wp-content/plugins/advanced-post-block/assets/js/swiper-bundle.min.js?ver=7.0.3	135 kB	2023-03-07	2024-04-16
Pretty URL aexa.es/wp-content/plugins/advanced-post-block/assets/js/swiper-bundle.min.js?ver=7.0.3 IP 217.160.101.116 ASN #8560 IONOS SE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:10:27 Last Seen2024-04-16 01:06:38 Times Seen49 Hash 5b0cd7f1ae592cad783865f51fe31c97 f577c8ab5a6d358e7680fdac1258a06c5d68ccf1 a497f2aed65da237595458a9a3c970ebbbded7b3ddf59769d170018667b963a2 Loading...

	aexa.es/	90 B	2023-03-12	2024-04-18
Pretty URL aexa.es/ IP 217.160.101.116 ASN #8560 IONOS SE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 21:50:29 Last Seen2024-04-18 14:03:47 Times Seen572 Hash 984c6d5f35203a53abff44467224b6de f7845afc8811594f022047a647e55f5e65db4795 e423dedf76f9543545fef46f60cd74c40f50e6c338a090bf5937cb3369fdee7b Loading...

	aexa.es/	333 B	2023-03-07	2024-04-26
Pretty URL aexa.es/ IP 217.160.101.116 ASN #8560 IONOS SE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:35 Last Seen2024-04-26 02:04:43 Times Seen7490 Hash 3688fd64c409264431201fa55a828e81 2b7eeefaa1edf3a7621f7576b35b01c895ef5367 944433761a880eab1d567dd5389499af76aa03582c82a8aa88838e3c6c2134c6 Loading...

	www.googletagmanager.com/gtag/js?id=G-8RS8F2CE81&l=dataLayer&cx=c	185 kB	2023-03-13	2023-03-13
Pretty URL www.googletagmanager.com/gtag/js?id=G-8RS8F2CE81&l=dataLayer&cx=c IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 12:09:07 Last Seen2023-03-13 12:09:07 Times Seen1 Hash e6e5f9cf14b7f204ff42632af0ba2b80 863af1a11dc48ab5381531ce3f3956a35ebb749c 90f9ba2c17ac08e0569c7695651df2097d814aa454a811f1442bd22baae70eda Loading...

	aexa.es/wp-includes/js/dist/element.min.js?ver=47162ff4492c7ec4956b	12 kB	2023-03-08	2024-04-18
Pretty URL aexa.es/wp-includes/js/dist/element.min.js?ver=47162ff4492c7ec4956b IP 217.160.101.116 ASN #8560 IONOS SE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 19:46:38 Last Seen2024-04-18 12:49:19 Times Seen381 Hash ea0d01a925f98cfa34156dfcc6600f03 b011362ca664891da4629f16845431ac0975c63d 1987ae63250aaf378e4da5e114eeca519f6c46a8d55b27e2d0c7b8b05968e6af Loading...

	aexa.es/wp-includes/js/dist/escape-html.min.js?ver=03e27a7b6ae14f7afaa6	1.1 kB	2023-03-07	2024-04-25
Pretty URL aexa.es/wp-includes/js/dist/escape-html.min.js?ver=03e27a7b6ae14f7afaa6 IP 217.160.101.116 ASN #8560 IONOS SE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:18:10 Last Seen2024-04-25 09:52:01 Times Seen2468 Hash 27b8b3680cd49b8f105b2bf49da03b1c ad0c8cbc41c7e19ad1d892234f6c4b403df1439c cfb6ea70d464c88b03728fe77f38a7400f7a3b1b5b0eaaae5817844d730e8cbd Loading...

	aexa.es/wp-includes/js/wp-emoji-release.min.js?ver=6.1.1	19 kB	2023-03-07	2024-04-26
Pretty URL aexa.es/wp-includes/js/wp-emoji-release.min.js?ver=6.1.1 IP 217.160.101.116 ASN #8560 IONOS SE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:08 Last Seen2024-04-26 01:56:03 Times Seen38055 Hash 32beb68a374e3aeac00abdf9e12b84ea b5d18aa625e8696dd9d07cd0869337717b211ae0 5aad5fbd4238981a9ff5e2772ff1353dfe1a801fb49542fe157418c1438f7782 Loading...

	aexa.es/wp-content/plugins/advanced-post-block/dist/script.js?ver=1.8.3	11 kB	2023-03-09	2023-06-20
Pretty URL aexa.es/wp-content/plugins/advanced-post-block/dist/script.js?ver=1.8.3 IP 217.160.101.116 ASN #8560 IONOS SE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 07:49:41 Last Seen2023-06-20 22:48:02 Times Seen18 Hash 9dbb11f0702f8c6155f5ecc0b1a6d6d4 963f489d47355ad2ba185c70787d05a0aee1dbab 99be0a7660b322e572ef351ccad9f42fae22cfc590de78be065141abbfa1b91d Loading...

	aexa.es/wp-content/plugins/advanced-post-block/assets/js/easy-ticker.min.js?ver=3.2.1	2.9 kB	2023-03-07	2024-04-16
Pretty URL aexa.es/wp-content/plugins/advanced-post-block/assets/js/easy-ticker.min.js?ver=3.2.1 IP 217.160.101.116 ASN #8560 IONOS SE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:10:27 Last Seen2024-04-16 01:06:38 Times Seen41 Hash 5f80abff80d689e3635bf5e6384ef505 fe7aeb42eb441efa2cd4258f5cc8b9c6dd2fee3e 45dd4fc53965906c457bedcd538838b59a00db7b5e9849e84d37302ac19b03e7 Loading...

	aexa.es/	292 B	2023-03-13	2023-04-18
Pretty URL aexa.es/ IP 217.160.101.116 ASN #8560 IONOS SE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 07:24:33 Last Seen2023-04-18 21:04:00 Times Seen6 Hash 4eb350b26c636cfb52c6508633b17bb6 a9b5d0a2d9f034c3a699720a1ddb913d34edbd7c 75a818d37fb7538a7667d85ce92b959dd53ee144634e329f824c1d7c5efdb355 Loading...

	www.googletagmanager.com/gtag/js?id=UA-236610839-1	113 kB	2023-03-13	2023-03-13
Pretty URL www.googletagmanager.com/gtag/js?id=UA-236610839-1 IP 142.250.74.168 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 12:09:07 Last Seen2023-03-13 12:09:07 Times Seen1 Hash 2196c45f7cc1a69737cf457dab1ab0a0 12d2907493d61f6b44788d3c7e5faa66aaab6a2e 44ad2faac05fc9c0ec0c387ad20adf578811172f23c58b66e8b02aabee0fc18e Loading...

	aexa.es/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9	6.5 kB	2023-03-07	2024-04-25
Pretty URL aexa.es/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9 IP 217.160.101.116 ASN #8560 IONOS SE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:08 Last Seen2024-04-25 21:53:57 Times Seen15501 Hash 61449413a42d2daaa79dbe7298b40e21 d86c474164c603084397bdc50fb0e469d28b5772 f30769ea0b80a5d900c5f0de30b1aad1ab461195e69223d5ef63c2c5de8b6c1a Loading...

	aexa.es/wp-includes/js/dist/vendor/react.min.js?ver=17.0.1	11 kB	2023-03-07	2024-04-18
Pretty URL aexa.es/wp-includes/js/dist/vendor/react.min.js?ver=17.0.1 IP 217.160.101.116 ASN #8560 IONOS SE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:18:10 Last Seen2024-04-18 12:49:19 Times Seen542 Hash 0dc4a04efdf47cdf1389331779edfa2f 2ca9923fdce4e3e5d45c14bf61aff6c0b4964ffc 7441e843483c183606e93bc717055148574dad9bc39cb9ecfef062c1fb2d9e1a Loading...

	aexa.es/wp-includes/js/jquery/jquery.min.js?ver=3.6.1	90 kB	2023-03-08	2024-04-26
Pretty URL aexa.es/wp-includes/js/jquery/jquery.min.js?ver=3.6.1 IP 217.160.101.116 ASN #8560 IONOS SE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:21:46 Last Seen2024-04-26 01:56:03 Times Seen31823 Hash 17738318d61d394f1de8890d589afaec f6d0c4dc1399cf02d53f5753ad46573a8bbc2ac3 cc7403bab52ed166e24ea9324241045af370be482f5b594468f4a6ac6e7e7981 Loading...

	aexa.es/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2	11 kB	2023-03-07	2024-04-26
Pretty URL aexa.es/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 IP 217.160.101.116 ASN #8560 IONOS SE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:02 Last Seen2024-04-26 01:56:03 Times Seen68646 Hash 79b4956b7ec478ec10244b5e2d33ac7d a46025b9d05e3df30d610a8aef14f392c7058dc9 029e0a2e809fd6b5dbe76abe8b7a74936be306c9a8c27c814c4d44aa54623300 Loading...

	aexa.es/wp-content/themes/astra/assets/js/minified/frontend.min.js?ver=4.0.2	18 kB	2023-03-12	2024-04-18
Pretty URL aexa.es/wp-content/themes/astra/assets/js/minified/frontend.min.js?ver=4.0.2 IP 217.160.101.116 ASN #8560 IONOS SE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 22:05:48 Last Seen2024-04-18 14:03:49 Times Seen1122 Hash 17021088d1e5bf6d919f1eef0e7c9edb 24009d663fa269f6e85368f0f0e314681cba36e7 149712c16718936d2b7ad4c16d10e89de23c9c3b1c157158b533b961f2bf644d Loading...

	www.google-analytics.com/analytics.js	50 kB	2023-03-12	2024-04-15
Pretty URL www.google-analytics.com/analytics.js IP 142.250.74.110 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 21:46:21 Last Seen2024-04-15 18:54:35 Times Seen35101 Hash 54e51056211dda674100cc5b323a58ad 26dc5034cb6c7f3bbe061edd37c7fc6006cb835b 5971b095cff574a66d35ada016d4c077c86e2dea62e9c0f14cf7c94b258619de Loading...

HTTP Transactions (60)

URL IP Response Size

aexa.es/

217.160.101.116

301 Moved Permanently

162 B

URL HTTP/1.1
aexa.es/
IP
217.160.101.116:0
ASN
#8560 IONOS SE

File type
HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size
162 B (162 bytes)
Hash
4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET / HTTP/1.1
Host: aexa.es
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Mon, 30 Jan 2023 07:02:55 GMT
Content-Type: text/html
Content-Length: 162
Connection: keep-alive
Location: https://aexa.es/

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
81dd5c5cc5b3278876cb44dcb520a60f
c0511a59e9eccdcdda98717b87c89c5d59974808
41736c303afdb3d31e48724b107dcb22883cae02f3562308eb52d9164001a2de

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "41736C303AFDB3D31E48724B107DCB22883CAE02F3562308EB52D9164001A2DE"
Last-Modified: Fri, 27 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5197
Expires: Mon, 30 Jan 2023 08:29:32 GMT
Date: Mon, 30 Jan 2023 07:02:55 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
5eb7c9bc996a0ff420e58af45526f053
8c2614832b8efe1c9da0bbd465d6f3f172d95a9e
c085cf277dd0429fe15e4a4bce5595636e9f2204d5a8e77220f8bf88adf4068f

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C085CF277DD0429FE15E4A4BCE5595636E9F2204D5A8E77220F8BF88ADF4068F"
Last-Modified: Sun, 29 Jan 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18249
Expires: Mon, 30 Jan 2023 12:07:04 GMT
Date: Mon, 30 Jan 2023 07:02:55 GMT
Connection: keep-alive

firefox.settings.services.mozilla.com/v1/

35.241.9.150

200 OK

939 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/
IP
35.241.9.150:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
bf0c602d32b3c14606f22a86183b5e3c
6eabd8d83475eba731968abe1a05a8bfd272f160
6c6a7c519a9e950c2445ed874a25211a94dd4d3cf3afb0103af9dcd1dbd5ff9e

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Content-Length, Retry-After, Content-Type, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Mon, 30 Jan 2023 06:43:11 GMT
content-type: application/json
age: 1184
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
03092d1a1bc7ac91ee342a1a7ab2a562
52db06ce1fd2c74ddd36b6a0a7aee1b5c891600a
03b8ff2629abac9fc30ebec059c2e2018fcbc41646ad5f71c965ff630fbf1ffd

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "03B8FF2629ABAC9FC30EBEC059C2E2018FCBC41646AD5F71C965FF630FBF1FFD"
Last-Modified: Fri, 27 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4269
Expires: Mon, 30 Jan 2023 08:14:04 GMT
Date: Mon, 30 Jan 2023 07:02:55 GMT
Connection: keep-alive

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain

34.160.144.191

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP
34.160.144.191:0
ASN
#15169 GOOGLE

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-amz-id-2: HNpsvxkQ8ksB7KhNDoHc73+vv3HK/bxyfIJPrwlnZF0ripK7AvTeGHKub35qCApYJUNKpTb+txgHp3JOYjkViQ==
x-amz-request-id: H1KC3S9W61P4SCQG
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Mon, 30 Jan 2023 06:21:41 GMT
age: 2474
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
f830136d7a099ff6d30e1a458bb7e27a
9bb3b39476ca27b2a8f2d636fc7eba985330ec12
6ef024ef106473eb6d8f3a4c277621b0a2edf855154cc2db96968d24b766cac2

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6EF024EF106473EB6D8F3A4C277621B0A2EDF855154CC2DB96968D24B766CAC2"
Last-Modified: Sat, 28 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18000
Expires: Mon, 30 Jan 2023 12:02:55 GMT
Date: Mon, 30 Jan 2023 07:02:55 GMT
Connection: keep-alive

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Mon, 30 Jan 2023 07:02:55 GMT
content-type: application/json
content-length: 12
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-credentials: true
access-control-expose-headers: content-type
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

35.241.9.150

200 OK

329 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
35.241.9.150:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Alert, Last-Modified, Pragma, ETag, Retry-After, Content-Type, Content-Length, Expires, Cache-Control, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Mon, 30 Jan 2023 06:49:04 GMT
age: 831
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
22b9916fc1fafc9bdc9bb37f9eac8a9a
86f640e134a741a0f906a8e3a0f5c6659dd0e394
a29ee843c8a39551a1507cc6ad949ad509e33aaae8b72c58ac4884bad8b0b38e

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A29EE843C8A39551A1507CC6AD949AD509E33AAAE8B72C58AC4884BAD8B0B38E"
Last-Modified: Sun, 29 Jan 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15480
Expires: Mon, 30 Jan 2023 11:20:56 GMT
Date: Mon, 30 Jan 2023 07:02:56 GMT
Connection: keep-alive

push.services.mozilla.com/

54.190.123.170

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
54.190.123.170:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: L2FVEZ2cKE54cpQ9lM7Yfg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: KUIxTrKOzYCJmSsKbiL6xB28g70=

aexa.es/wp-content/astra-local-fonts/barlow/7cHqv4kjgoGqM7E3j-ws51os.woff2

217.160.101.116

200 OK

21 kB

URL HTTP/2
aexa.es/wp-content/astra-local-fonts/barlow/7cHqv4kjgoGqM7E3j-ws51os.woff2
IP
217.160.101.116:0
ASN
#8560 IONOS SE

File type
Web Open Font Format (Version 2), TrueType, length 21416, version 1.0\012- data
Size
21 kB (21416 bytes)
Hash
d258461a8f2c53d244500969828bdd3f
c796103e6ca328dd6a92bfecf72cda8f0a143158
f9bfb04a18c8be687fadacd7f67647b65113ee8d1aabcb0f410eac21681fa7ef

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/astra-local-fonts/barlow/7cHqv4kjgoGqM7E3j-ws51os.woff2 HTTP/1.1
Host: aexa.es
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aexa.es/
Cookie: _eshoob=1
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Mon, 30 Jan 2023 07:02:56 GMT
content-type: font/woff2
content-length: 21416
last-modified: Mon, 14 Nov 2022 09:13:26 GMT
etag: "637206b6-53a8"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
ba2ca6af7b23ce2e11aa4f9d86e66269
212aef55d64b6add292dcf6241b16e7c93d1bae2
f163a94d190f5aeeb05b2e344bc8e1544d9701772b08585e9c92b529c8652b3d

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 07:02:56 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.googletagmanager.com/gtag/js?id=UA-236610839-1

142.250.74.168

200 OK

44 kB

URL HTTP/2
www.googletagmanager.com/gtag/js?id=UA-236610839-1
IP
142.250.74.168:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (1759)
Size
44 kB (44097 bytes)
Hash
82e8202deec208eab2eb577d56c45f9d
366fbb56b130eee1466bbd55fd57f633d62a77ad
27cffd99ce366112dea49cf3eda9e1209524b89c05394275fa3f4e8f342cc00e

HTTP Headers

GET /gtag/js?id=UA-236610839-1 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aexa.es/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Mon, 30 Jan 2023 07:02:56 GMT
expires: Mon, 30 Jan 2023 07:02:56 GMT
cache-control: private, max-age=900
last-modified: Mon, 30 Jan 2023 06:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 44097
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

aexa.es/wp-content/astra-local-fonts/montserrat/JTUHjIg1_i6t8kCHKm4532VJOt5-QNFgpCu173w5aXo.woff2

217.160.101.116

200 OK

13 kB

URL HTTP/2
aexa.es/wp-content/astra-local-fonts/montserrat/JTUHjIg1_i6t8kCHKm4532VJOt5-QNFgpCu173w5aXo.woff2
IP
217.160.101.116:0
ASN
#8560 IONOS SE

File type
Web Open Font Format (Version 2), TrueType, length 12700, version 1.0\012- data
Size
13 kB (12700 bytes)
Hash
e571167fbcce8d5081bce96a09930063
e12420f5e4da3ccdc75a58ce744e7d5a0c6cf79e
98be19bc78b5bc5d419e4fa6ea055ebd4671a963e2cc644aeed4362f15d14c31

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/astra-local-fonts/montserrat/JTUHjIg1_i6t8kCHKm4532VJOt5-QNFgpCu173w5aXo.woff2 HTTP/1.1
Host: aexa.es
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aexa.es/
Cookie: _eshoob=1
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Mon, 30 Jan 2023 07:02:56 GMT
content-type: font/woff2
content-length: 12700
last-modified: Mon, 14 Nov 2022 09:13:26 GMT
etag: "637206b6-319c"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
ba2ca6af7b23ce2e11aa4f9d86e66269
212aef55d64b6add292dcf6241b16e7c93d1bae2
f163a94d190f5aeeb05b2e344bc8e1544d9701772b08585e9c92b529c8652b3d

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 07:02:56 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

aexa.es/wp-content/uploads/2022/06/logo21.png

217.160.101.116

200 OK

13 kB

URL HTTP/2
aexa.es/wp-content/uploads/2022/06/logo21.png
IP
217.160.101.116:0
ASN
#8560 IONOS SE

File type
PNG image data, 220 x 90, 8-bit/color RGBA, non-interlaced\012- data
Size
13 kB (13007 bytes)
Hash
cc89ce7365ce5b53690aba52bd533cdd
c45bc7988042bad2227ef9767585093d01bfe6db
e1219effcd2cedc412f928f187048c9586dd90ec89317c6442a4838de5f2d9ab

HTTP Headers

GET /wp-content/uploads/2022/06/logo21.png HTTP/1.1
Host: aexa.es
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aexa.es/
Cookie: _eshoob=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Mon, 30 Jan 2023 07:02:56 GMT
content-type: image/png
content-length: 13007
last-modified: Wed, 29 Jun 2022 20:45:16 GMT
etag: "62bcb9dc-32cf"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2

aexa.es/wp-content/uploads/2022/06/logo1-1.png

217.160.101.116

200 OK

8.8 kB

URL HTTP/2
aexa.es/wp-content/uploads/2022/06/logo1-1.png
IP
217.160.101.116:0
ASN
#8560 IONOS SE

File type
PNG image data, 220 x 90, 8-bit/color RGB, non-interlaced\012- data
Size
8.8 kB (8761 bytes)
Hash
3c03838c700dec6fec54b4338565918e
8d4807b4b061afb73751984eca099362e03c4250
0243e9bfd5668f9926f9c716476ed854493a9e57c32dd17c6c6d32b2bfac827a

HTTP Headers

GET /wp-content/uploads/2022/06/logo1-1.png HTTP/1.1
Host: aexa.es
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aexa.es/
Cookie: _eshoob=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Mon, 30 Jan 2023 07:02:56 GMT
content-type: image/png
content-length: 8761
last-modified: Wed, 29 Jun 2022 20:41:59 GMT
etag: "62bcb917-2239"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2

aexa.es/wp-content/uploads/2022/06/Captura-de-pantalla-2022-05-30-a-las-13.01.19-1536x818.png

217.160.101.116

200 OK

2.9 MB

URL HTTP/2
aexa.es/wp-content/uploads/2022/06/Captura-de-pantalla-2022-05-30-a-las-13.01.19-1536x818.png
IP
217.160.101.116:0
ASN
#8560 IONOS SE

File type
PNG image data, 1536 x 818, 8-bit/color RGBA, non-interlaced\012- data
Size
2.9 MB (2872651 bytes)
Hash
7100737d088341896e8dc1b504e16933
22a77a40702bb44d8e276721c840265cee5455b1
c21ecc23def6332c3143960e8818460f8a13deac7e0553e89976d6068d3a3018

HTTP Headers

GET /wp-content/uploads/2022/06/Captura-de-pantalla-2022-05-30-a-las-13.01.19-1536x818.png HTTP/1.1
Host: aexa.es
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aexa.es/
Cookie: _eshoob=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Mon, 30 Jan 2023 07:02:56 GMT
content-type: image/png
content-length: 2872651
last-modified: Tue, 07 Jun 2022 21:29:52 GMT
etag: "629fc350-2bd54b"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2

aexa.es/wp-content/uploads/2022/11/Cartel-Navidad-AEXAJPG-3-724x1024.jpg

217.160.101.116

200 OK

108 kB

URL HTTP/2
aexa.es/wp-content/uploads/2022/11/Cartel-Navidad-AEXAJPG-3-724x1024.jpg
IP
217.160.101.116:0
ASN
#8560 IONOS SE

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 121x121, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=6, orientation=upper-left, xresolution=86, yresolution=94, resolutionunit=2], baseline, precision 8, 724x1024, components 3\012- data
Size
108 kB (107964 bytes)
Hash
2d3506f52abfe8fbc8ad1a63538200f7
8cace8dcbe965225fdda7118e50ff09614334ab5
b3ed0679e132b34f06034a55ac5d672057be7f267603c9443868cdf262d5591c

HTTP Headers

GET /wp-content/uploads/2022/11/Cartel-Navidad-AEXAJPG-3-724x1024.jpg HTTP/1.1
Host: aexa.es
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aexa.es/
Cookie: _eshoob=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Mon, 30 Jan 2023 07:02:57 GMT
content-type: image/jpeg
content-length: 107964
last-modified: Mon, 14 Nov 2022 11:48:56 GMT
etag: "63722b28-1a5bc"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2

aexa.es/wp-includes/js/dist/element.min.js?ver=47162ff4492c7ec4956b

217.160.101.116

200 OK

5.2 kB

URL HTTP/2
aexa.es/wp-includes/js/dist/element.min.js?ver=47162ff4492c7ec4956b
IP
217.160.101.116:0
ASN
#8560 IONOS SE

File type
ASCII text, with very long lines (7680)
Size
5.2 kB (5178 bytes)
Hash
98239060856cd154f899cf37cce2b0c6
fed7bc99e05cf41ec7f058833fbb1aafbb4ace42
1da7dced6ae001453f91ff4aacb4f31c3d2533587d30507cc3b18b6d3081e5ed

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-includes/js/dist/element.min.js?ver=47162ff4492c7ec4956b HTTP/1.1
Host: aexa.es
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aexa.es/
Cookie: _eshoob=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Mon, 30 Jan 2023 07:02:56 GMT
content-type: application/javascript
last-modified: Tue, 20 Sep 2022 15:43:29 GMT
etag: W/"6329dfa1-2fd6"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

aexa.es/

217.160.101.116

200 OK

306 kB

URL HTTP/2
aexa.es/
IP
217.160.101.116:0
ASN
#8560 IONOS SE

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (61934), with CRLF, LF line terminators
Size
306 kB (305889 bytes)
Hash
03b9076a9d58a878803db1f74f738878
a94ca25dcd75cf667ace660fcb98596778fe93a2
b688ba3271867e7f4e9cb7a6d4479dc4891cbc2a559019f178ca5d507f5a3b07

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET / HTTP/1.1
Host: aexa.es
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

HTTP/2 200 OK
server: nginx
date: Mon, 30 Jan 2023 07:02:56 GMT
content-type: text/html; charset=UTF-8
x-litespeed-tag: e81_HTTP.200
link: <https://aexa.es/wp-json/>; rel="https://api.w.org/", <https://aexa.es/wp-json/wp/v2/pages/961>; rel="alternate"; type="application/json", <https://aexa.es/>; rel=shortlink
set-cookie: _eshoob=1; expires=Mon, 06-Feb-2023 07:02:56 GMT; Max-Age=604800; path=/
x-powered-by: PHP/8.0.27, PleskLin
content-encoding: br
X-Firefox-Spdy: h2

aexa.es/wp-content/uploads/2022/03/Cartel_10_Campaa_Comercio_Rectificado_Fechas.jpg

217.160.101.116

200 OK

158 kB

URL HTTP/2
aexa.es/wp-content/uploads/2022/03/Cartel_10_Campaa_Comercio_Rectificado_Fechas.jpg
IP
217.160.101.116:0
ASN
#8560 IONOS SE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 637x900, components 3\012- data
Size
158 kB (158075 bytes)
Hash
848bca211b4d3bb0a915b100545b244d
8e61883d8b9228da07ae0e35a0cf7fe886914b10
35ced903a6769cb878bcab60c4e5dc94af8d7988a7d828930629a2792b6262ba

HTTP Headers

GET /wp-content/uploads/2022/03/Cartel_10_Campaa_Comercio_Rectificado_Fechas.jpg HTTP/1.1
Host: aexa.es
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aexa.es/
Cookie: _eshoob=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Mon, 30 Jan 2023 07:02:57 GMT
content-type: image/jpeg
content-length: 158075
last-modified: Sat, 12 Mar 2022 06:58:13 GMT
etag: "622c4485-2697b"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2

aexa.es/wp-content/uploads/2022/03/Cartel_Navidad_AEXA.jpg

217.160.101.116

200 OK

163 kB

URL HTTP/2
aexa.es/wp-content/uploads/2022/03/Cartel_Navidad_AEXA.jpg
IP
217.160.101.116:0
ASN
#8560 IONOS SE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 680x960, components 3\012- data
Size
163 kB (163414 bytes)
Hash
6e7d0361c4f569ba30a22ab080b0761b
5e77893930a4c21fc73f223b262132c2090e3e4e
b13596db6d6cd5eaa6ea841954566b81e2d48e89d81ba041212d57f151eedf42

HTTP Headers

GET /wp-content/uploads/2022/03/Cartel_Navidad_AEXA.jpg HTTP/1.1
Host: aexa.es
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aexa.es/
Cookie: _eshoob=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Mon, 30 Jan 2023 07:02:57 GMT
content-type: image/jpeg
content-length: 163414
last-modified: Thu, 10 Mar 2022 12:58:56 GMT
etag: "6229f610-27e56"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2

aexa.es/wp-content/astra-local-fonts/barlow/7cHqv4kjgoGqM7E3p-ks51os.woff2

217.160.101.116

200 OK

21 kB

URL HTTP/2
aexa.es/wp-content/astra-local-fonts/barlow/7cHqv4kjgoGqM7E3p-ks51os.woff2
IP
217.160.101.116:0
ASN
#8560 IONOS SE

File type
Web Open Font Format (Version 2), TrueType, length 20992, version 1.0\012- data
Size
21 kB (20992 bytes)
Hash
9bbb36e16c6af8205e564346df9579c0
8dc297321f4b344e6ea16b549734b10097594860
6563f08627fa2cd60c0c300318405b6f545f0d7f469df6ba87c9e31ecc987217

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/astra-local-fonts/barlow/7cHqv4kjgoGqM7E3p-ks51os.woff2 HTTP/1.1
Host: aexa.es
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://aexa.es/wp-content/astra-local-fonts/astra-local-fonts.css?ver=4.0.2
Cookie: _eshoob=1
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Mon, 30 Jan 2023 07:02:57 GMT
content-type: font/woff2
content-length: 20992
last-modified: Mon, 14 Nov 2022 09:13:24 GMT
etag: "637206b4-5200"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2

aexa.es/wp-content/astra-local-fonts/barlow/7cHpv4kjgoGqM7E_DMs5.woff2

217.160.101.116

200 OK

21 kB

URL HTTP/2
aexa.es/wp-content/astra-local-fonts/barlow/7cHpv4kjgoGqM7E_DMs5.woff2
IP
217.160.101.116:0
ASN
#8560 IONOS SE

File type
Web Open Font Format (Version 2), TrueType, length 21144, version 1.0\012- data
Size
21 kB (21144 bytes)
Hash
2bc7630144496092dc786ce63109e560
723df3658078cfed03c85e47f15fc439eb4331be
7c9c80a6c32c0619d61c28f28723e68c5f8f75163e77ee5cf64c39e640e0d71e

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/astra-local-fonts/barlow/7cHpv4kjgoGqM7E_DMs5.woff2 HTTP/1.1
Host: aexa.es
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://aexa.es/wp-content/astra-local-fonts/astra-local-fonts.css?ver=4.0.2
Cookie: _eshoob=1
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Mon, 30 Jan 2023 07:02:57 GMT
content-type: font/woff2
content-length: 21144
last-modified: Mon, 14 Nov 2022 09:13:25 GMT
etag: "637206b5-5298"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2

aexa.es/wp-content/plugins/advanced-post-block/assets/js/easy-ticker.min.js?ver=3.2.1

217.160.101.116

200 OK

22 kB

URL HTTP/2
aexa.es/wp-content/plugins/advanced-post-block/assets/js/easy-ticker.min.js?ver=3.2.1
IP
217.160.101.116:0
ASN
#8560 IONOS SE

File type
ASCII text, with very long lines (2841)
Size
22 kB (21764 bytes)
Hash
134dec02ab918a13eb6936f38b6b9ebd
dd1f1a5710c50799890cbdb2d1cc2012d8202550
7830a99819abf6bbe8f32d6ff4100d5fd00ea354d0d34fb90a0dc3374d769049

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/advanced-post-block/assets/js/easy-ticker.min.js?ver=3.2.1 HTTP/1.1
Host: aexa.es
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aexa.es/
Cookie: _eshoob=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Mon, 30 Jan 2023 07:02:56 GMT
content-type: application/javascript
last-modified: Sat, 21 Jan 2023 08:19:35 GMT
etag: W/"63cba017-b56"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

aexa.es/wp-content/plugins/advanced-post-block/dist/script.js?ver=1.8.3

217.160.101.116

200 OK

26 kB

URL HTTP/2
aexa.es/wp-content/plugins/advanced-post-block/dist/script.js?ver=1.8.3
IP
217.160.101.116:0
ASN
#8560 IONOS SE

File type
ASCII text, with very long lines (10684)
Size
26 kB (26154 bytes)
Hash
18739a23b255c44a338e91a0214049f1
dc77eacb57c899410b7d04be80db6122ca39a4f5
75a19b3af1643d5feccf7fec84d97edb05e52f73295be79d35da7d9d60d71dc6

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/advanced-post-block/dist/script.js?ver=1.8.3 HTTP/1.1
Host: aexa.es
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aexa.es/
Cookie: _eshoob=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Mon, 30 Jan 2023 07:02:56 GMT
content-type: application/javascript
last-modified: Sat, 21 Jan 2023 08:19:35 GMT
etag: W/"63cba017-29df"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

aexa.es/wp-includes/js/dist/escape-html.min.js?ver=03e27a7b6ae14f7afaa6

217.160.101.116

200 OK

68 kB

URL HTTP/2
aexa.es/wp-includes/js/dist/escape-html.min.js?ver=03e27a7b6ae14f7afaa6
IP
217.160.101.116:0
ASN
#8560 IONOS SE

File type
ASCII text, with very long lines (1104)
Size
68 kB (68377 bytes)
Hash
81b78b6a15862ce0efa62bded185fba1
d9c16b89348e55bf6d75ecf7b5e4df939f8932da
85fb22b8fc64bb782ccad890e238159aa88a46909a7f867b793c2cf82c81396b

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-includes/js/dist/escape-html.min.js?ver=03e27a7b6ae14f7afaa6 HTTP/1.1
Host: aexa.es
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aexa.es/
Cookie: _eshoob=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Mon, 30 Jan 2023 07:02:56 GMT
content-type: application/javascript
last-modified: Mon, 11 Apr 2022 12:04:30 GMT
etag: W/"6254194e-473"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

aexa.es/wp-content/plugins/advanced-post-block/dist/style.css?ver=1.8.3

217.160.101.116

200 OK

28 kB

URL HTTP/2
aexa.es/wp-content/plugins/advanced-post-block/dist/style.css?ver=1.8.3
IP
217.160.101.116:0
ASN
#8560 IONOS SE

File type
ASCII text, with very long lines (30347)
Size
28 kB (27541 bytes)
Hash
3cee664000fe4b832b1b6cffef399a81
7f31f0dd1a292bca984e1f0daedfd7e023ed1aed
f67575b1538627ff52c6dba5cc08f6571b34e7d95d8b5748f1161c1925ce0d18

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/advanced-post-block/dist/style.css?ver=1.8.3 HTTP/1.1
Host: aexa.es
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aexa.es/
Cookie: _eshoob=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Mon, 30 Jan 2023 07:02:56 GMT
content-type: text/css
last-modified: Sat, 21 Jan 2023 08:19:35 GMT
etag: W/"63cba017-76b0"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

aexa.es/wp-content/themes/astra/assets/fonts/astra.woff

217.160.101.116

200 OK

3.3 kB

URL HTTP/2
aexa.es/wp-content/themes/astra/assets/fonts/astra.woff
IP
217.160.101.116:0
ASN
#8560 IONOS SE

File type
Web Open Font Format, TrueType, length 3304, version 1.0\012- data
Size
3.3 kB (3304 bytes)
Hash
bfe0ed8503c926d68f58ed0408dfe0d0
0346d02d96ff7d2a0278bc10f4dfdf365c80eac3
ec7ef7aa5fd1e019f1c26193e95e46d481d4983673936a9dda086705ada6e3d5

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/astra/assets/fonts/astra.woff HTTP/1.1
Host: aexa.es
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://aexa.es/
Cookie: _eshoob=1
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Mon, 30 Jan 2023 07:02:57 GMT
content-type: application/font-woff
content-length: 3304
last-modified: Sat, 21 Jan 2023 08:25:41 GMT
etag: "63cba185-ce8"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2

aexa.es/wp-includes/css/dist/block-library/style.min.css?ver=6.1.1

217.160.101.116

200 OK

12 kB

URL HTTP/2
aexa.es/wp-includes/css/dist/block-library/style.min.css?ver=6.1.1
IP
217.160.101.116:0
ASN
#8560 IONOS SE

File type
ASCII text, with very long lines (47826)
Size
12 kB (11906 bytes)
Hash
0093b6e3e7ae84a5b386515f1749d838
5df528a87a5436368377eff2047855cee8c4be40
c4f8ecd17bd41b3cafb0c61721ead264dd0459777a4a8337cb3c50e9d8af78e0

HTTP Headers

GET /wp-includes/css/dist/block-library/style.min.css?ver=6.1.1 HTTP/1.1
Host: aexa.es
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aexa.es/
Cookie: _eshoob=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Mon, 30 Jan 2023 07:02:56 GMT
content-type: text/css
last-modified: Fri, 11 Nov 2022 14:56:45 GMT
etag: W/"636e62ad-172a9"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

www.google-analytics.com/analytics.js

142.250.74.110

200 OK

20 kB

URL HTTP/2
www.google-analytics.com/analytics.js
IP
142.250.74.110:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (1490)
Size
20 kB (20085 bytes)
Hash
ca7fbbfd120e3e329633044190bbf134
d17f81e03dd827554ddd207ea081fb46b3415445
847004cefb32f85a9cc16b0b1eb77529ff5753680c145bfcb23f651d214737db

HTTP Headers

GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aexa.es/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20085
date: Mon, 30 Jan 2023 05:46:59 GMT
expires: Mon, 30 Jan 2023 07:46:59 GMT
cache-control: public, max-age=7200
age: 4558
last-modified: Tue, 10 Jan 2023 21:29:14 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

aexa.es/wp-content/uploads/2022/03/cropped-favicon-192x192.png

217.160.101.116

200 OK

16 kB

URL HTTP/2
aexa.es/wp-content/uploads/2022/03/cropped-favicon-192x192.png
IP
217.160.101.116:0
ASN
#8560 IONOS SE

File type
PNG image data, 192 x 192, 8-bit/color RGBA, non-interlaced\012- data
Size
16 kB (15827 bytes)
Hash
9cc34223c26d642c253f7049e985825a
d588a5e69bdc1d2058d4f8d8199868efd4115f09
09d56a8bf784b1f9ba3c9d92f6cc86c55f1f95dde4eefb3a6357f1ac805fa017

HTTP Headers

GET /wp-content/uploads/2022/03/cropped-favicon-192x192.png HTTP/1.1
Host: aexa.es
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aexa.es/
Cookie: _eshoob=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Mon, 30 Jan 2023 07:02:57 GMT
content-type: image/png
content-length: 15827
last-modified: Sat, 12 Mar 2022 07:47:13 GMT
etag: "622c5001-3dd3"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2

aexa.es/wp-content/astra-local-fonts/astra-local-fonts.css?ver=4.0.2

217.160.101.116

200 OK

2.9 kB

URL HTTP/2
aexa.es/wp-content/astra-local-fonts/astra-local-fonts.css?ver=4.0.2
IP
217.160.101.116:0
ASN
#8560 IONOS SE

File type
ASCII text
Size
2.9 kB (2852 bytes)
Hash
2219007cff521d3ebd0fcfb1babe3c57
fa81e10ee3e32abe45045c6091cd0be96c43d758
735b6372c3593a4446950935a1b34c0f5a76e9e3f3a75a7001a7b6bff1f6fc85

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/astra-local-fonts/astra-local-fonts.css?ver=4.0.2 HTTP/1.1
Host: aexa.es
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aexa.es/
Cookie: _eshoob=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Mon, 30 Jan 2023 07:02:56 GMT
content-type: text/css
last-modified: Mon, 14 Nov 2022 09:13:26 GMT
etag: W/"637206b6-377b"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
db3290a85d0ba4da27406ae9636aa618
4c69da45eddd66a1e26fce5562fc45eda7005309
19db4d0cc84bff9586883a5fa69c426af0b5fc1c2760ee7c259b0307c8afa6b2

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 07:02:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2

142.250.74.35

200 OK

16 kB

URL HTTP/2
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Size
16 kB (15744 bytes)
Hash
15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615

HTTP Headers

GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://aexa.es
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 29 Jan 2023 22:02:00 GMT
expires: Mon, 29 Jan 2024 22:02:00 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
age: 32457
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
db3290a85d0ba4da27406ae9636aa618
4c69da45eddd66a1e26fce5562fc45eda7005309
19db4d0cc84bff9586883a5fa69c426af0b5fc1c2760ee7c259b0307c8afa6b2

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 07:02:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
f2a0c2c0f25bdd19baf87cbb3a87dcdb
bc78ca6206ee8cc1cc05ab7778df71c7e6d1182a
c57f26c0c2e439dc2f69181e1b2f6ae371bff9d299af739e0047eabc8bfb5a69

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C57F26C0C2E439DC2F69181E1B2F6AE371BFF9D299AF739E0047EABC8BFB5A69"
Last-Modified: Fri, 27 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4990
Expires: Mon, 30 Jan 2023 08:26:07 GMT
Date: Mon, 30 Jan 2023 07:02:57 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
f2a0c2c0f25bdd19baf87cbb3a87dcdb
bc78ca6206ee8cc1cc05ab7778df71c7e6d1182a
c57f26c0c2e439dc2f69181e1b2f6ae371bff9d299af739e0047eabc8bfb5a69

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C57F26C0C2E439DC2F69181E1B2F6AE371BFF9D299AF739E0047EABC8BFB5A69"
Last-Modified: Fri, 27 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4990
Expires: Mon, 30 Jan 2023 08:26:07 GMT
Date: Mon, 30 Jan 2023 07:02:57 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
f2a0c2c0f25bdd19baf87cbb3a87dcdb
bc78ca6206ee8cc1cc05ab7778df71c7e6d1182a
c57f26c0c2e439dc2f69181e1b2f6ae371bff9d299af739e0047eabc8bfb5a69

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C57F26C0C2E439DC2F69181E1B2F6AE371BFF9D299AF739E0047EABC8BFB5A69"
Last-Modified: Fri, 27 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4990
Expires: Mon, 30 Jan 2023 08:26:07 GMT
Date: Mon, 30 Jan 2023 07:02:57 GMT
Connection: keep-alive

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd9a423a9-16ee-4e3f-b9b4-34f6a469aba9.jpeg

34.120.237.76

200 OK

9.2 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd9a423a9-16ee-4e3f-b9b4-34f6a469aba9.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
9.2 kB (9167 bytes)
Hash
3be81f83687ddb6c93d3ff3c09a9dba2
50a48e737310d3f31840db4301b25927fbcc12c5
e78c909e2381898e7f546183784a05dff47c31734c95358aaada8c2777ad47be

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd9a423a9-16ee-4e3f-b9b4-34f6a469aba9.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 9167
x-amzn-requestid: f644ca78-a07a-43d1-96e4-95bcdecff7fb
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fPGLfFtOIAMFp7w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63cf83e2-202ca7160544acd24259bd5d;Sampled=0
x-amzn-remapped-date: Tue, 24 Jan 2023 07:08:18 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: xRwqrWS66l4qJfg2HnGphN1dbrIUod9XKW3zTk_-Km9AQRPyV2UqWg==
via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 5565a51537c689d1d16f6b4d41f40082.cloudfront.net (CloudFront), 1.1 google
date: Sun, 29 Jan 2023 20:46:17 GMT
age: 37000
etag: "50a48e737310d3f31840db4301b25927fbcc12c5"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

7.7 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3bb7921c-8aaf-40cd-bf87-43903c3f1a74.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
7.7 kB (7679 bytes)
Hash
3e04b9eaf7449828136ad59e4c9d69f1
b820be4ed885dcf288eb6460c57e1fa7b1c7c476
df75cf7183d401a19655aab025d08ad2c498573c88b32e9b258d951d2993b936

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3bb7921c-8aaf-40cd-bf87-43903c3f1a74.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 7679
x-amzn-requestid: 0c7983d5-6040-44e9-b394-21c3784702a2
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fhkEtEfHoAMFaNA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d6e6ea-54c55dbd09ca642048af8916;Sampled=0
x-amzn-remapped-date: Sun, 29 Jan 2023 21:36:42 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: Wx-qjsrMLYpLmE-8QmpR46BeRySbUGL2Rrr6LqhEQ8jaEEj_6Aj0qg==
via: 1.1 26ca01ec7377e425b59b6a08cb1ec342.cloudfront.net (CloudFront), 1.1 d6a002c70d55f415107618b0750d493c.cloudfront.net (CloudFront), 1.1 google
date: Sun, 29 Jan 2023 21:52:09 GMT
age: 33048
etag: "b820be4ed885dcf288eb6460c57e1fa7b1c7c476"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

5.8 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa29141be-cb17-4a1d-a64f-9b3d296461f2.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
5.8 kB (5764 bytes)
Hash
546f1cb9f94ea553ae884a6f50c6bd3d
fd08d9841bcd8864aaf2e5d93ca61b31246b6db5
5aba48ac6c65e371c6c1aeee43f97670f196d3a3933b9f5812a67be90b7dbdfa

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa29141be-cb17-4a1d-a64f-9b3d296461f2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 5764
x-amzn-requestid: 33ebf979-ba40-451e-bbdb-3ee4a9dc07ae
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fhksyGRVoAMF5UQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d6e7eb-55fcbb4d6d88dbf758409801;Sampled=0
x-amzn-remapped-date: Sun, 29 Jan 2023 21:40:59 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: X3lzViVGoynSgoeenp6EIU2E3FMSRlKNGOy73pIOAASV11hOk2B4UA==
via: 1.1 26ca01ec7377e425b59b6a08cb1ec342.cloudfront.net (CloudFront), 1.1 981753271eb5b6d11bc29d52f173a5da.cloudfront.net (CloudFront), 1.1 google
date: Sun, 29 Jan 2023 22:11:27 GMT
age: 31890
etag: "fd08d9841bcd8864aaf2e5d93ca61b31246b6db5"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

6.0 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F83495dde-218f-4893-8556-3013e3f83f78.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
6.0 kB (5960 bytes)
Hash
e8901f99d8e3001e442c887f89e2e650
a61875fcee6c09087462f0443286482d903725bc
d3a69a5bce1852c464755452d7f5a88f0d20fbed14b9f16ac6f539d4d1bfdb21

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F83495dde-218f-4893-8556-3013e3f83f78.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 5960
x-amzn-requestid: 313f5526-984b-4224-b321-732fe5ae5a7d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fhkl0HimoAMFvAQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d6e7be-430032d00080eff464e4d574;Sampled=0
x-amzn-remapped-date: Sun, 29 Jan 2023 21:40:14 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: TiZDGG_JsgbKWvLfQn_uioEKmxzYKKV8cT9wJ2PntoNPb4r1a2YKtg==
via: 1.1 00f0a41f749793b9dd653153037c957e.cloudfront.net (CloudFront), 1.1 57a21088b36c69a83578b5a5579df58e.cloudfront.net (CloudFront), 1.1 google
date: Sun, 29 Jan 2023 21:55:33 GMT
age: 32844
etag: "a61875fcee6c09087462f0443286482d903725bc"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

11 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7aae2b2c-8949-4749-8a9b-24d6a82a5b50.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
11 kB (10616 bytes)
Hash
435598df0723ba8070784ee6a8d6de8b
0dab67801b42d738a5074ec3f0489f04c5e6552c
05339073fff5fe4213a38505242c577f579aba68d5c249e8bac10b03d379a2dd

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7aae2b2c-8949-4749-8a9b-24d6a82a5b50.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 10616
x-amzn-requestid: 809aadb4-f948-41a5-82bc-84a520a5689a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fhkEtEZIIAMFreQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d6e6ea-2c659eae4d513b433aa749e3;Sampled=0
x-amzn-remapped-date: Sun, 29 Jan 2023 21:36:42 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: pzTV9rIn345DR4kpnePsLi7muCptJ5Ivrs25Yanl_z6A5nsxaiXyNw==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 6172bb1a5d00a3b06ae3700570ebe116.cloudfront.net (CloudFront), 1.1 google
date: Sun, 29 Jan 2023 21:52:09 GMT
age: 33048
etag: "0dab67801b42d738a5074ec3f0489f04c5e6552c"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

9.5 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6df754eb-70f9-4576-ac48-68a6ae719511.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
9.5 kB (9457 bytes)
Hash
51aa950d5eed7b90cab6632107092edc
e4388ced02e5576867e77547496dec1ac2338ef7
588830e5f725e8e56270565e40f817f2658b0ee7c0425d138e5f65a17ff40483

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6df754eb-70f9-4576-ac48-68a6ae719511.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 9457
x-amzn-requestid: 7c48e5ca-2128-43da-ba83-fd91568af1ef
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fhkBOGHVoAMFQtw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d6e6d4-1b850ffd543f51f92dec3894;Sampled=0
x-amzn-remapped-date: Sun, 29 Jan 2023 21:36:20 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: soTFEnYjNcti77h3FpnztwzR7ypv68NbyoI6DxS0NhU412ykFsWAgA==
via: 1.1 0c96ded7ff282d2dbcf47c918b6bb500.cloudfront.net (CloudFront), 1.1 be082a2326b7d49643607b097f1e7180.cloudfront.net (CloudFront), 1.1 google
date: Sun, 29 Jan 2023 22:00:38 GMT
age: 32539
etag: "e4388ced02e5576867e77547496dec1ac2338ef7"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

region1.google-analytics.com/g/collect?v=2&tid=G-8RS8F2CE81&gtm=2oe1p0&_p=555474135&gdid=dZTNiMT&cid=2119118399.1675062188&ul=en-us&sr=1280x1024&uaW=1&_s=1&sid=1675062188&sct=1&seg=0&dl=https%3A%2F%2Faexa.es%2F&dt=AEXA%20%E2%80%93%20Asociaci%C3%B3n%20de%20Empresarios%20por%20Algarrobo&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1

216.239.34.36

204 No Content

0 B

URL HTTP/2
region1.google-analytics.com/g/collect?v=2&tid=G-8RS8F2CE81&gtm=2oe1p0&_p=555474135&gdid=dZTNiMT&cid=2119118399.1675062188&ul=en-us&sr=1280x1024&uaW=1&_s=1&sid=1675062188&sct=1&seg=0&dl=https%3A%2F%2Faexa.es%2F&dt=AEXA%20%E2%80%93%20Asociaci%C3%B3n%20de%20Empresarios%20por%20Algarrobo&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1
IP
216.239.34.36:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /g/collect?v=2&tid=G-8RS8F2CE81&gtm=2oe1p0&_p=555474135&gdid=dZTNiMT&cid=2119118399.1675062188&ul=en-us&sr=1280x1024&uaW=1&_s=1&sid=1675062188&sct=1&seg=0&dl=https%3A%2F%2Faexa.es%2F&dt=AEXA%20%E2%80%93%20Asociaci%C3%B3n%20de%20Empresarios%20por%20Algarrobo&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1 HTTP/1.1
Host: region1.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://aexa.es
Connection: keep-alive
Referer: https://aexa.es/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0

HTTP/2 204 No Content
access-control-allow-origin: https://aexa.es
date: Mon, 30 Jan 2023 07:02:58 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

34.120.237.76

200 OK

9.7 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdc895bb6-fa1f-4972-a2f8-5ce71b0c72c0.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
9.7 kB (9700 bytes)
Hash
6d200552d23c85c199558b79cc24348f
8cc20b9ce98eeacd5b826268da24955a82e78a01
09b05ae6f75b5141401ddc49014e0eb2eac0856ba3b5020bc85f4a9a64d3d2a6

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdc895bb6-fa1f-4972-a2f8-5ce71b0c72c0.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-length: 9700
x-amzn-requestid: 9f944a46-7e39-44c3-a640-3c7e9b778bca
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fhkoEEkJIAMFs0w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d6e7cd-4b29196f5bd1b2fb04e6363f;Sampled=0
x-amzn-remapped-date: Sun, 29 Jan 2023 21:40:29 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: Jdh2u-xrCjqq1SKWL7hCTqrlGRjbytuxecJS-cwiXb5FQypGKYbFzg==
via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 12a392bc3a7281f8d5d4591bfadc41fc.cloudfront.net (CloudFront), 1.1 google
date: Sun, 29 Jan 2023 21:55:35 GMT
age: 32849
etag: "8cc20b9ce98eeacd5b826268da24955a82e78a01"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

aexa.es/wp-includes/js/jquery/jquery.min.js?ver=3.6.1

217.160.101.116

200 OK

0 B

URL HTTP/2
aexa.es/wp-includes/js/jquery/jquery.min.js?ver=3.6.1
IP
217.160.101.116:0
ASN
#8560 IONOS SE

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.1 HTTP/1.1
Host: aexa.es
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aexa.es/
Cookie: _eshoob=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Mon, 30 Jan 2023 07:02:56 GMT
content-type: application/javascript
last-modified: Mon, 19 Sep 2022 14:16:24 GMT
etag: W/"632879b8-15e54"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

aexa.es/wp-includes/js/wp-emoji-release.min.js?ver=6.1.1

217.160.101.116

200 OK

0 B

URL HTTP/2
aexa.es/wp-includes/js/wp-emoji-release.min.js?ver=6.1.1
IP
217.160.101.116:0
ASN
#8560 IONOS SE

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-includes/js/wp-emoji-release.min.js?ver=6.1.1 HTTP/1.1
Host: aexa.es
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aexa.es/
Cookie: _eshoob=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Mon, 30 Jan 2023 07:02:56 GMT
content-type: application/javascript
last-modified: Tue, 12 Apr 2022 05:56:23 GMT
etag: W/"62551487-48b9"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

aexa.es/wp-content/plugins/advanced-post-block/assets/js/swiper-bundle.min.js?ver=7.0.3

217.160.101.116

200 OK

0 B

URL HTTP/2
aexa.es/wp-content/plugins/advanced-post-block/assets/js/swiper-bundle.min.js?ver=7.0.3
IP
217.160.101.116:0
ASN
#8560 IONOS SE

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-content/plugins/advanced-post-block/assets/js/swiper-bundle.min.js?ver=7.0.3 HTTP/1.1
Host: aexa.es
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aexa.es/
Cookie: _eshoob=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Mon, 30 Jan 2023 07:02:56 GMT
content-type: application/javascript
last-modified: Sat, 21 Jan 2023 08:19:35 GMT
etag: W/"63cba017-20e84"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

aexa.es/wp-content/themes/astra/assets/css/minified/frontend.min.css?ver=4.0.2

217.160.101.116

200 OK

0 B

URL HTTP/2
aexa.es/wp-content/themes/astra/assets/css/minified/frontend.min.css?ver=4.0.2
IP
217.160.101.116:0
ASN
#8560 IONOS SE

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-content/themes/astra/assets/css/minified/frontend.min.css?ver=4.0.2 HTTP/1.1
Host: aexa.es
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aexa.es/
Cookie: _eshoob=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Mon, 30 Jan 2023 07:02:56 GMT
content-type: text/css
last-modified: Sat, 21 Jan 2023 08:25:41 GMT
etag: W/"63cba185-b515"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

aexa.es/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0

217.160.101.116

200 OK

0 B

URL HTTP/2
aexa.es/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0
IP
217.160.101.116:0
ASN
#8560 IONOS SE

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0 HTTP/1.1
Host: aexa.es
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aexa.es/
Cookie: _eshoob=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Mon, 30 Jan 2023 07:02:56 GMT
content-type: application/javascript
last-modified: Tue, 20 Sep 2022 15:43:29 GMT
etag: W/"6329dfa1-459f"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

aexa.es/wp-includes/js/dist/vendor/react.min.js?ver=17.0.1

217.160.101.116

200 OK

0 B

URL HTTP/2
aexa.es/wp-includes/js/dist/vendor/react.min.js?ver=17.0.1
IP
217.160.101.116:0
ASN
#8560 IONOS SE

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-includes/js/dist/vendor/react.min.js?ver=17.0.1 HTTP/1.1
Host: aexa.es
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aexa.es/
Cookie: _eshoob=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Mon, 30 Jan 2023 07:02:56 GMT
content-type: application/javascript
last-modified: Tue, 12 Apr 2022 15:12:47 GMT
etag: W/"625596ef-2c3c"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

aexa.es/wp-content/themes/astra/assets/js/minified/frontend.min.js?ver=4.0.2

217.160.101.116

200 OK

0 B

URL HTTP/2
aexa.es/wp-content/themes/astra/assets/js/minified/frontend.min.js?ver=4.0.2
IP
217.160.101.116:0
ASN
#8560 IONOS SE

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/astra/assets/js/minified/frontend.min.js?ver=4.0.2 HTTP/1.1
Host: aexa.es
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aexa.es/
Cookie: _eshoob=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Mon, 30 Jan 2023 07:02:56 GMT
content-type: application/javascript
last-modified: Sat, 21 Jan 2023 08:25:41 GMT
etag: W/"63cba185-46c2"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

aexa.es/wp-includes/css/dashicons.min.css?ver=6.1.1

217.160.101.116

200 OK

0 B

URL HTTP/2
aexa.es/wp-includes/css/dashicons.min.css?ver=6.1.1
IP
217.160.101.116:0
ASN
#8560 IONOS SE

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-includes/css/dashicons.min.css?ver=6.1.1 HTTP/1.1
Host: aexa.es
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aexa.es/
Cookie: _eshoob=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Mon, 30 Jan 2023 07:02:56 GMT
content-type: text/css
last-modified: Wed, 03 Mar 2021 21:16:22 GMT
etag: W/"603ffca6-e688"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

aexa.es/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9

217.160.101.116

200 OK

0 B

URL HTTP/2
aexa.es/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9
IP
217.160.101.116:0
ASN
#8560 IONOS SE

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9 HTTP/1.1
Host: aexa.es
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aexa.es/
Cookie: _eshoob=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Mon, 30 Jan 2023 07:02:56 GMT
content-type: application/javascript
last-modified: Mon, 11 Apr 2022 12:04:30 GMT
etag: W/"6254194e-194b"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

aexa.es/wp-includes/js/dist/vendor/react-dom.min.js?ver=17.0.1

217.160.101.116

200 OK

0 B

URL HTTP/2
aexa.es/wp-includes/js/dist/vendor/react-dom.min.js?ver=17.0.1
IP
217.160.101.116:0
ASN
#8560 IONOS SE

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-includes/js/dist/vendor/react-dom.min.js?ver=17.0.1 HTTP/1.1
Host: aexa.es
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aexa.es/
Cookie: _eshoob=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Mon, 30 Jan 2023 07:02:56 GMT
content-type: application/javascript
last-modified: Tue, 12 Apr 2022 15:12:47 GMT
etag: W/"625596ef-1ce9e"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

aexa.es/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2

217.160.101.116

200 OK

0 B

URL HTTP/2
aexa.es/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP
217.160.101.116:0
ASN
#8560 IONOS SE

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: aexa.es
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aexa.es/
Cookie: _eshoob=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Mon, 30 Jan 2023 07:02:56 GMT
content-type: application/javascript
last-modified: Wed, 18 Nov 2020 09:06:06 GMT
etag: W/"5fb4e3fe-2bd8"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (19)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML