82.165.101.27200 OK 162 B URL User Request GET HTTP/2 IP 82.165.101.27:443
Certificate IssuerLet's Encrypt
Subjectblog.david-anton.com
FingerprintEE:5A:B8:41:A2:D2:0C:8D:4E:5A:4A:07:79:5D:9B:63:9F:C1:0E:F4
ValidityFri, 10 Mar 2023 16:20:10 GMT - Thu, 08 Jun 2023 16:20:09 GMT
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: blog.david-anton.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Thu, 20 Apr 2023 09:11:46 GMT
Content-Type: text/html
Content-Length: 162
Connection: keep-alive
Location: https://blog.david-anton.com/
82.165.101.27200 OK 13 kB URL User Request GET HTTP/2 IP 82.165.101.27:443
Certificate IssuerLet's Encrypt
Subjectblog.david-anton.com
FingerprintEE:5A:B8:41:A2:D2:0C:8D:4E:5A:4A:07:79:5D:9B:63:9F:C1:0E:F4
ValidityFri, 10 Mar 2023 16:20:10 GMT - Thu, 08 Jun 2023 16:20:09 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (51221)
Hash 73da76f1573c9072fccbcf02250b2460
cad9e1d0fde672c3faa7f9cac652da739653e224
539b6438aec90cf230786778d1c3e7dbb2d44331a86a638b20e977480d135273
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: blog.david-anton.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Thu, 20 Apr 2023 09:11:48 GMT
content-type: text/html; charset=UTF-8
content-length: 13279
x-ua-compatible: IE=edge
link: <https://blog.david-anton.com/wp-json/>; rel="https://api.w.org/"
set-cookie: -bsBiMKuf=tow.vgMAn7eYV; expires=Fri, 21-Apr-2023 09:11:46 GMT; Max-Age=86400; path=/; secure
TsBj_PQnDWSMKNhO=4KUVaQTXiC72l; expires=Fri, 21-Apr-2023 09:11:46 GMT; Max-Age=86400; path=/; secure
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=172800
expires: Sat, 22 Apr 2023 09:11:46 GMT
x-cache-status: BYPASS
x-powered-by: PHP/7.4.33, PleskLin
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131 472 B IP 142.250.74.131:0
Hash 3ab880d47371ab610d419736fd9fdf2f
a65a2f5c78d0933611fa111a2f0e8c1a44d0d508
a8d8d28848cd03e5f9e788188faee46bfaba3e321f85bfd464de1bdddbbca7cf
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 20 Apr 2023 09:11:49 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.googletagmanager.com/gtag/js?id=UA-1058630-21
142.250.74.168200 OK 61 kB URL GET HTTP/2 www.googletagmanager.com/gtag/js?id=UA-1058630-21
IP 142.250.74.168:443
Requested by https://blog.david-anton.com/
Certificate IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint0D:E0:7D:60:57:50:BA:EB:CA:6E:2A:3F:20:5B:C7:91:67:89:3F:09
ValidityTue, 28 Mar 2023 16:45:47 GMT - Tue, 20 Jun 2023 16:45:46 GMT
File type ASCII text, with very long lines (3991)
Hash 2b670d71ff7f0aed7cb84c19ed4689a6
ae9814b0362a0ba82c4f85b42ccd4a761cba1ecf
a3e63d6b6bf7d1013cb2641184931eb1eb98fab34c5247b24654f3261aa58db8
GET /gtag/js?id=UA-1058630-21 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://blog.david-anton.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Thu, 20 Apr 2023 09:11:49 GMT
expires: Thu, 20 Apr 2023 09:11:49 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 61417
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.sectigo.com/
104.18.32.68 472 B IP 104.18.32.68:0
Hash bb31f2739d730ba55982c41adc03efe1
6ade6336c5608475507a36afe23a5a7550e7f23f
5d4f067e3610e57185641147f3a1f8e5467066ddf8f103643f87da2ed784c0d3
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 20 Apr 2023 09:11:49 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Mon, 17 Apr 2023 19:16:09 GMT
Expires: Mon, 24 Apr 2023 19:16:08 GMT
Etag: "6ade6336c5608475507a36afe23a5a7550e7f23f"
Cache-Control: max-age=381258,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7bac43148a0cb517-OSL
blog.david-anton.com/wp-content/themes/imagely/inc/side-panel/assets/js/main.min.js
82.165.101.27200 OK 360 B URL GET HTTP/2 blog.david-anton.com/wp-content/themes/imagely/inc/side-panel/assets/js/main.min.js
IP 82.165.101.27:443
Requested by https://blog.david-anton.com/
Certificate IssuerLet's Encrypt
Subjectblog.david-anton.com
FingerprintEE:5A:B8:41:A2:D2:0C:8D:4E:5A:4A:07:79:5D:9B:63:9F:C1:0E:F4
ValidityFri, 10 Mar 2023 16:20:10 GMT - Thu, 08 Jun 2023 16:20:09 GMT
File type ASCII text, with very long lines (793)
Hash 1dc2aa6c0041e29dd8a9325898b61fa8
f2effe9c6e586f9203eab8332f416dd8d61921eb
10b8fe23bb9431b9fbc22eefb9a6d4f6de0eb76ff0f51b385e723f5df25cbd74
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/imagely/inc/side-panel/assets/js/main.min.js HTTP/1.1
Host: blog.david-anton.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://blog.david-anton.com/
Cookie: -bsBiMKuf=tow.vgMAn7eYV; TsBj_PQnDWSMKNhO=4KUVaQTXiC72l
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 20 Apr 2023 09:11:48 GMT
content-type: application/javascript
content-length: 360
x-accel-version: 0.01
last-modified: Tue, 28 Dec 2021 18:19:23 GMT
etag: "33e-5d438dc55b982-gzip"
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=172800
expires: Sat, 22 Apr 2023 09:11:48 GMT
x-cache-status: BYPASS
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
blog.david-anton.com/wp-content/cache/autoptimize/js/autoptimize_single_42661f2126c5821c455034d9e360b562.js?ver=3.28
82.165.101.27200 OK 345 B URL GET HTTP/2 blog.david-anton.com/wp-content/cache/autoptimize/js/autoptimize_single_42661f2126c5821c455034d9e360b562.js?ver=3.28
IP 82.165.101.27:443
Requested by https://blog.david-anton.com/
Certificate IssuerLet's Encrypt
Subjectblog.david-anton.com
FingerprintEE:5A:B8:41:A2:D2:0C:8D:4E:5A:4A:07:79:5D:9B:63:9F:C1:0E:F4
ValidityFri, 10 Mar 2023 16:20:10 GMT - Thu, 08 Jun 2023 16:20:09 GMT
File type ASCII text, with very long lines (317)
Hash 65812b5c9c6823e9f4720a3b9aa07c82
141d89427afc3ea5b2a6babb2f5ea27369527de5
eecd3affa358703ef69aa0c86a99ce9fd95233bf0babe11c990fa97a6bda9905
GET /wp-content/cache/autoptimize/js/autoptimize_single_42661f2126c5821c455034d9e360b562.js?ver=3.28 HTTP/1.1
Host: blog.david-anton.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://blog.david-anton.com/
Cookie: -bsBiMKuf=tow.vgMAn7eYV; TsBj_PQnDWSMKNhO=4KUVaQTXiC72l
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 20 Apr 2023 09:11:48 GMT
content-type: application/javascript
content-length: 345
x-accel-version: 0.01
last-modified: Wed, 31 Aug 2022 10:12:19 GMT
etag: "306-5e786bb68d5fc-gzip"
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=30672000, public, immutable
expires: Tue, 09 Apr 2024 09:11:48 GMT
x-cache-status: BYPASS
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131 472 B IP 142.250.74.131:0
Hash 3ab880d47371ab610d419736fd9fdf2f
a65a2f5c78d0933611fa111a2f0e8c1a44d0d508
a8d8d28848cd03e5f9e788188faee46bfaba3e321f85bfd464de1bdddbbca7cf
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 20 Apr 2023 09:11:49 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
sp-ao.shortpixel.ai/client/to_webp,q_glossy,ret_img,w_1280/https://blog.david-anton.com/wp-content/uploads/Hochzeitsfotograf-Offenburg-0005.jpg
194.242.11.186302 Found 0 B URL GET HTTP/2 sp-ao.shortpixel.ai/client/to_webp,q_glossy,ret_img,w_1280/https://blog.david-anton.com/wp-content/uploads/Hochzeitsfotograf-Offenburg-0005.jpg
IP 194.242.11.186:443
ASN #34989 ServeTheWorld AS
Requested by https://blog.david-anton.com/
Certificate IssuerSectigo Limited
Subject*.shortpixel.ai
FingerprintD3:2C:60:18:FC:72:6F:6C:49:7F:6E:01:A8:C0:0D:30:3D:E9:43:24
ValidityThu, 26 Jan 2023 00:00:00 GMT - Wed, 17 Jan 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /client/to_webp,q_glossy,ret_img,w_1280/https://blog.david-anton.com/wp-content/uploads/Hochzeitsfotograf-Offenburg-0005.jpg HTTP/1.1
Host: sp-ao.shortpixel.ai
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://blog.david-anton.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 302 Found
date: Thu, 20 Apr 2023 09:11:49 GMT
content-type: text/html; charset=UTF-8
content-length: 0
location: https://blog.david-anton.com/wp-content/uploads/Hochzeitsfotograf-Offenburg-0005.jpg
server: BunnyCDN-NO1-830
cdn-pullzone: 257218
cdn-uid: ceac3dab-9909-4315-8d54-a27751b54dd0
cdn-requestcountrycode: NO
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
cache-control: public, max-age=43200
pragma: cache
cdn-cachedat: 04/20/2023 09:11:49
cdn-tag: 0; Domain: blog.david-anton.com; 302
cdn-proxyver: 1.03
cdn-requestpullcode: 302
cdn-requestpullsuccess: True
cdn-edgestorageid: 830
cdn-status: 302
cdn-requestid: 53c070abe90bd5eb413bde7978399757
cdn-cache: MISS
X-Firefox-Spdy: h2
blog.david-anton.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
82.165.101.27200 OK 109 kB URL GET HTTP/2 blog.david-anton.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
IP 82.165.101.27:443
Requested by https://blog.david-anton.com/
Certificate IssuerLet's Encrypt
Subjectblog.david-anton.com
FingerprintEE:5A:B8:41:A2:D2:0C:8D:4E:5A:4A:07:79:5D:9B:63:9F:C1:0E:F4
ValidityFri, 10 Mar 2023 16:20:10 GMT - Thu, 08 Jun 2023 16:20:09 GMT
File type ASCII text, with very long lines (65447)
Size 109 kB (109050 bytes)
Hash 8437eabf3ae0bbd395b3543030b2ebd7
78c4a680db28e0e1c406408079d99371ef66def1
16d6d228f66115f18218b4333bfd669831d454b66f4571b6392c6f99dbf72f10
GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.0 HTTP/1.1
Host: blog.david-anton.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://blog.david-anton.com/
Cookie: -bsBiMKuf=tow.vgMAn7eYV; TsBj_PQnDWSMKNhO=4KUVaQTXiC72l
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 20 Apr 2023 09:11:48 GMT
content-type: application/javascript
last-modified: Tue, 28 Dec 2021 18:21:44 GMT
cache-control: max-age=172800
expires: Sat, 22 Apr 2023 09:11:48 GMT
etag: W/"61cb55b8-15db1"
x-cache-status: BYPASS
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
sp-ao.shortpixel.ai/client/to_webp,q_glossy,ret_img,w_1200/https://blog.david-anton.com/wp-content/uploads/wpja-number.jpg
194.242.11.186302 Found 0 B URL GET HTTP/2 sp-ao.shortpixel.ai/client/to_webp,q_glossy,ret_img,w_1200/https://blog.david-anton.com/wp-content/uploads/wpja-number.jpg
IP 194.242.11.186:443
ASN #34989 ServeTheWorld AS
Requested by https://blog.david-anton.com/
Certificate IssuerSectigo Limited
Subject*.shortpixel.ai
FingerprintD3:2C:60:18:FC:72:6F:6C:49:7F:6E:01:A8:C0:0D:30:3D:E9:43:24
ValidityThu, 26 Jan 2023 00:00:00 GMT - Wed, 17 Jan 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /client/to_webp,q_glossy,ret_img,w_1200/https://blog.david-anton.com/wp-content/uploads/wpja-number.jpg HTTP/1.1
Host: sp-ao.shortpixel.ai
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://blog.david-anton.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 302 Found
date: Thu, 20 Apr 2023 09:11:49 GMT
content-type: text/html; charset=UTF-8
content-length: 0
location: https://blog.david-anton.com/wp-content/uploads/wpja-number.jpg
server: BunnyCDN-NO1-830
cdn-pullzone: 257218
cdn-uid: ceac3dab-9909-4315-8d54-a27751b54dd0
cdn-requestcountrycode: NO
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
cache-control: public, max-age=43200
pragma: cache
cdn-cachedat: 04/20/2023 09:11:49
cdn-tag: 0; Domain: blog.david-anton.com; 302
cdn-proxyver: 1.03
cdn-requestpullcode: 302
cdn-requestpullsuccess: True
cdn-edgestorageid: 830
cdn-status: 302
cdn-requestid: 14979a6b412f2f2d95f8519d499b369a
cdn-cache: MISS
X-Firefox-Spdy: h2
sp-ao.shortpixel.ai/client/to_webp,q_glossy,ret_img,w_1419/https://blog.david-anton.com/wp-content/uploads/Best-Hochzeitsfotos-2019.jpg
194.242.11.186302 Found 0 B URL GET HTTP/2 sp-ao.shortpixel.ai/client/to_webp,q_glossy,ret_img,w_1419/https://blog.david-anton.com/wp-content/uploads/Best-Hochzeitsfotos-2019.jpg
IP 194.242.11.186:443
ASN #34989 ServeTheWorld AS
Requested by https://blog.david-anton.com/
Certificate IssuerSectigo Limited
Subject*.shortpixel.ai
FingerprintD3:2C:60:18:FC:72:6F:6C:49:7F:6E:01:A8:C0:0D:30:3D:E9:43:24
ValidityThu, 26 Jan 2023 00:00:00 GMT - Wed, 17 Jan 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /client/to_webp,q_glossy,ret_img,w_1419/https://blog.david-anton.com/wp-content/uploads/Best-Hochzeitsfotos-2019.jpg HTTP/1.1
Host: sp-ao.shortpixel.ai
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://blog.david-anton.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 302 Found
date: Thu, 20 Apr 2023 09:11:49 GMT
content-type: text/html; charset=UTF-8
content-length: 0
location: https://blog.david-anton.com/wp-content/uploads/Best-Hochzeitsfotos-2019.jpg
server: BunnyCDN-NO1-830
cdn-pullzone: 257218
cdn-uid: ceac3dab-9909-4315-8d54-a27751b54dd0
cdn-requestcountrycode: NO
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
cache-control: public, max-age=43200
pragma: cache
cdn-cachedat: 04/20/2023 09:11:49
cdn-tag: 0; Domain: blog.david-anton.com; 302
cdn-proxyver: 1.03
cdn-requestpullcode: 302
cdn-requestpullsuccess: True
cdn-edgestorageid: 830
cdn-status: 302
cdn-requestid: 3f369ae2bda14ccf739a86e36eb11ace
cdn-cache: MISS
X-Firefox-Spdy: h2
sp-ao.shortpixel.ai/client/to_webp,q_glossy,ret_img,w_500/https://blog.david-anton.com/wp-content/uploads/Obdachlose-Madrid.jpg
194.242.11.186302 Found 0 B URL GET HTTP/2 sp-ao.shortpixel.ai/client/to_webp,q_glossy,ret_img,w_500/https://blog.david-anton.com/wp-content/uploads/Obdachlose-Madrid.jpg
IP 194.242.11.186:443
ASN #34989 ServeTheWorld AS
Requested by https://blog.david-anton.com/
Certificate IssuerSectigo Limited
Subject*.shortpixel.ai
FingerprintD3:2C:60:18:FC:72:6F:6C:49:7F:6E:01:A8:C0:0D:30:3D:E9:43:24
ValidityThu, 26 Jan 2023 00:00:00 GMT - Wed, 17 Jan 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /client/to_webp,q_glossy,ret_img,w_500/https://blog.david-anton.com/wp-content/uploads/Obdachlose-Madrid.jpg HTTP/1.1
Host: sp-ao.shortpixel.ai
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://blog.david-anton.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 302 Found
date: Thu, 20 Apr 2023 09:11:49 GMT
content-type: text/html; charset=UTF-8
content-length: 0
location: https://blog.david-anton.com/wp-content/uploads/Obdachlose-Madrid.jpg
server: BunnyCDN-NO1-830
cdn-pullzone: 257218
cdn-uid: ceac3dab-9909-4315-8d54-a27751b54dd0
cdn-requestcountrycode: NO
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
cache-control: public, max-age=43200
pragma: cache
cdn-cachedat: 04/20/2023 09:11:49
cdn-tag: 0; Domain: blog.david-anton.com; 302
cdn-proxyver: 1.03
cdn-requestpullcode: 302
cdn-requestpullsuccess: True
cdn-edgestorageid: 830
cdn-status: 302
cdn-requestid: 48ffa9dad88e720d7c57bac1270fde1a
cdn-cache: MISS
X-Firefox-Spdy: h2
blog.david-anton.com/wp-content/uploads/Hochzeitsfotograf-Offenburg-0005.jpg
82.165.101.27200 OK 224 kB URL GET HTTP/2 blog.david-anton.com/wp-content/uploads/Hochzeitsfotograf-Offenburg-0005.jpg
IP 82.165.101.27:443
Requested by https://blog.david-anton.com/
Certificate IssuerLet's Encrypt
Subjectblog.david-anton.com
FingerprintEE:5A:B8:41:A2:D2:0C:8D:4E:5A:4A:07:79:5D:9B:63:9F:C1:0E:F4
ValidityFri, 10 Mar 2023 16:20:10 GMT - Thu, 08 Jun 2023 16:20:09 GMT
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=5, xresolution=74, yresolution=82, resolutionunit=2, copyright=David Anton Asensio], baseline, precision 8, 1280x854, components 3\012- data
Size 224 kB (223975 bytes)
Hash d91a07ee1578064700da88c1a6d6cca6
079c34b5ae4ab125164feb935a92b8e1ef66c0e9
15bcf37e5c2c5cdf8a6a5fe02dc67e071d6da1f631526ad6dc12f7707b7455c8
GET /wp-content/uploads/Hochzeitsfotograf-Offenburg-0005.jpg HTTP/1.1
Host: blog.david-anton.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://blog.david-anton.com/
Connection: keep-alive
Cookie: -bsBiMKuf=tow.vgMAn7eYV; TsBj_PQnDWSMKNhO=4KUVaQTXiC72l
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 20 Apr 2023 09:11:49 GMT
content-type: image/jpeg
content-length: 223975
last-modified: Fri, 31 Dec 2021 10:56:10 GMT
cache-control: max-age=5184000
expires: Mon, 19 Jun 2023 09:11:49 GMT
etag: "61cee1ca-36ae7"
x-cache-status: BYPASS
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
blog.david-anton.com/wp-content/uploads/wpja-number.jpg
82.165.101.27200 OK 74 kB URL GET HTTP/2 blog.david-anton.com/wp-content/uploads/wpja-number.jpg
IP 82.165.101.27:443
Requested by https://blog.david-anton.com/
Certificate IssuerLet's Encrypt
Subjectblog.david-anton.com
FingerprintEE:5A:B8:41:A2:D2:0C:8D:4E:5A:4A:07:79:5D:9B:63:9F:C1:0E:F4
ValidityFri, 10 Mar 2023 16:20:10 GMT - Thu, 08 Jun 2023 16:20:09 GMT
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1200x484, components 3\012- data
Hash 195f9a10efa381cd70682ed518b887f8
90663968c53912207527907fd5740096c4f2970f
984e8316ae7cf6d741d90b7fc33763d409dd9174bcaa59b51438bd56cd3806f0
GET /wp-content/uploads/wpja-number.jpg HTTP/1.1
Host: blog.david-anton.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://blog.david-anton.com/
Connection: keep-alive
Cookie: -bsBiMKuf=tow.vgMAn7eYV; TsBj_PQnDWSMKNhO=4KUVaQTXiC72l
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 20 Apr 2023 09:11:49 GMT
content-type: image/jpeg
content-length: 74423
last-modified: Thu, 06 Feb 2020 09:40:59 GMT
cache-control: max-age=5184000
expires: Mon, 19 Jun 2023 09:11:49 GMT
etag: "5e3bdf2b-122b7"
x-cache-status: BYPASS
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
www.googletagmanager.com/gtag/js?id=G-0GP6EDTPDB&l=dataLayer&cx=c
142.250.74.168200 OK 74 kB URL GET HTTP/3 www.googletagmanager.com/gtag/js?id=G-0GP6EDTPDB&l=dataLayer&cx=c
IP 142.250.74.168:443
Requested by https://blog.david-anton.com/
Certificate IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint0D:E0:7D:60:57:50:BA:EB:CA:6E:2A:3F:20:5B:C7:91:67:89:3F:09
ValidityTue, 28 Mar 2023 16:45:47 GMT - Tue, 20 Jun 2023 16:45:46 GMT
File type ASCII text, with very long lines (17174)
Hash 03f8870941e1f2f8ce10e90e731f6e37
f60de84229d7cf8cf2c2b013e58911df06c567d9
2669e514807b55d0b7706ce08a5a934178f860858801d0b224a31152b5b51e6e
GET /gtag/js?id=G-0GP6EDTPDB&l=dataLayer&cx=c HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Alt-Used: www.googletagmanager.com
Connection: keep-alive
Referer: https://blog.david-anton.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Thu, 20 Apr 2023 09:11:49 GMT
expires: Thu, 20 Apr 2023 09:11:49 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 74038
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
blog.david-anton.com/wp-content/cache/autoptimize/js/autoptimize_single_c9ecd41de2bf0fcc902760f68c2ef6a4.js?ver=3.28
82.165.101.27200 OK 69 kB URL GET HTTP/2 blog.david-anton.com/wp-content/cache/autoptimize/js/autoptimize_single_c9ecd41de2bf0fcc902760f68c2ef6a4.js?ver=3.28
IP 82.165.101.27:443
Requested by https://blog.david-anton.com/
Certificate IssuerLet's Encrypt
Subjectblog.david-anton.com
FingerprintEE:5A:B8:41:A2:D2:0C:8D:4E:5A:4A:07:79:5D:9B:63:9F:C1:0E:F4
ValidityFri, 10 Mar 2023 16:20:10 GMT - Thu, 08 Jun 2023 16:20:09 GMT
File type ASCII text, with very long lines (644)
Hash 8e40abae26b218e19fe4bef37b7503a5
6b0976c5afa79f6e96252357c8e5fe5709581b62
92694b55a462c54fd6ca9d6990fc2fe8c74c3a2424472ac9e45f2db58b3d66cf
GET /wp-content/cache/autoptimize/js/autoptimize_single_c9ecd41de2bf0fcc902760f68c2ef6a4.js?ver=3.28 HTTP/1.1
Host: blog.david-anton.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://blog.david-anton.com/
Cookie: -bsBiMKuf=tow.vgMAn7eYV; TsBj_PQnDWSMKNhO=4KUVaQTXiC72l
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 20 Apr 2023 09:11:48 GMT
content-type: application/javascript
last-modified: Wed, 31 Aug 2022 10:12:19 GMT
cache-control: max-age=30672000, public, immutable
expires: Tue, 09 Apr 2024 09:11:48 GMT
etag: W/"630f3403-e49"
x-cache-status: BYPASS
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
blog.david-anton.com/wp-content/uploads/Best-Hochzeitsfotos-2019.jpg
82.165.101.27200 OK 521 kB URL GET HTTP/2 blog.david-anton.com/wp-content/uploads/Best-Hochzeitsfotos-2019.jpg
IP 82.165.101.27:443
Requested by https://blog.david-anton.com/
Certificate IssuerLet's Encrypt
Subjectblog.david-anton.com
FingerprintEE:5A:B8:41:A2:D2:0C:8D:4E:5A:4A:07:79:5D:9B:63:9F:C1:0E:F4
ValidityFri, 10 Mar 2023 16:20:10 GMT - Thu, 08 Jun 2023 16:20:09 GMT
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1419x1844, components 3\012- data
Size 521 kB (520857 bytes)
Hash 00947a9be132fe12e94a6443e879a027
4354cc06e21c554dbc0e7de5231cf989012d5d95
a6a8f36a706fa8789ecac0168772f7a15470cb05b4e9f3d97d45060267ef5d4d
GET /wp-content/uploads/Best-Hochzeitsfotos-2019.jpg HTTP/1.1
Host: blog.david-anton.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://blog.david-anton.com/
Connection: keep-alive
Cookie: -bsBiMKuf=tow.vgMAn7eYV; TsBj_PQnDWSMKNhO=4KUVaQTXiC72l
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 20 Apr 2023 09:11:49 GMT
content-type: image/jpeg
content-length: 520857
last-modified: Sun, 22 Dec 2019 11:09:23 GMT
cache-control: max-age=5184000
expires: Mon, 19 Jun 2023 09:11:49 GMT
etag: "5dff4ee3-7f299"
x-cache-status: BYPASS
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
blog.david-anton.com/wp-content/uploads/Obdachlose-Madrid.jpg
82.165.101.27200 OK 105 kB URL GET HTTP/2 blog.david-anton.com/wp-content/uploads/Obdachlose-Madrid.jpg
IP 82.165.101.27:443
Requested by https://blog.david-anton.com/
Certificate IssuerLet's Encrypt
Subjectblog.david-anton.com
FingerprintEE:5A:B8:41:A2:D2:0C:8D:4E:5A:4A:07:79:5D:9B:63:9F:C1:0E:F4
ValidityFri, 10 Mar 2023 16:20:10 GMT - Thu, 08 Jun 2023 16:20:09 GMT
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=6, xresolution=86, yresolution=94, resolutionunit=2], baseline, precision 8, 500x333, components 3\012- data
Size 105 kB (104871 bytes)
Hash 87c8f3fcb2aca0831b2ca3f8c9576835
2dfa314a78b0d7ea8f868f0cb87d6cbecbde784f
875614fc8c80c9c63041b358324188617d5ab3f1d1cbf3efacc3c5619fce571b
GET /wp-content/uploads/Obdachlose-Madrid.jpg HTTP/1.1
Host: blog.david-anton.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://blog.david-anton.com/
Connection: keep-alive
Cookie: -bsBiMKuf=tow.vgMAn7eYV; TsBj_PQnDWSMKNhO=4KUVaQTXiC72l
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 20 Apr 2023 09:11:49 GMT
content-type: image/jpeg
content-length: 104871
last-modified: Sun, 29 Dec 2019 10:18:53 GMT
cache-control: max-age=5184000
expires: Mon, 19 Jun 2023 09:11:49 GMT
etag: "5e087d8d-199a7"
x-cache-status: BYPASS
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
blog.david-anton.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
82.165.101.27200 OK 591 kB URL GET HTTP/2 blog.david-anton.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP 82.165.101.27:443
Requested by https://blog.david-anton.com/
Certificate IssuerLet's Encrypt
Subjectblog.david-anton.com
FingerprintEE:5A:B8:41:A2:D2:0C:8D:4E:5A:4A:07:79:5D:9B:63:9F:C1:0E:F4
ValidityFri, 10 Mar 2023 16:20:10 GMT - Thu, 08 Jun 2023 16:20:09 GMT
File type ASCII text, with very long lines (11126)
Size 591 kB (590771 bytes)
Hash c75b4fe39e1a6a38c26292523ae1d531
764fd1a673161ba6632d6a2f47f706e13b1cedda
7f3ec9b802c0e1675ba07cfc9cb205a6bbd8bd1ebf10362acf4334dc2b6197ea
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: blog.david-anton.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://blog.david-anton.com/
Cookie: -bsBiMKuf=tow.vgMAn7eYV; TsBj_PQnDWSMKNhO=4KUVaQTXiC72l
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 20 Apr 2023 09:11:48 GMT
content-type: application/javascript
last-modified: Tue, 28 Dec 2021 18:21:44 GMT
cache-control: max-age=172800
expires: Sat, 22 Apr 2023 09:11:48 GMT
etag: W/"61cb55b8-2bd8"
x-cache-status: BYPASS
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
sp-ao.shortpixel.ai/client/to_webp,q_glossy,ret_img,w_192,h_192/https://blog.david-anton.com/wp-content/uploads/cropped-favicon-192x192.png
194.242.11.186302 Found 0 B URL GET HTTP/2 sp-ao.shortpixel.ai/client/to_webp,q_glossy,ret_img,w_192,h_192/https://blog.david-anton.com/wp-content/uploads/cropped-favicon-192x192.png
IP 194.242.11.186:443
ASN #34989 ServeTheWorld AS
Requested by https://blog.david-anton.com/
Certificate IssuerSectigo Limited
Subject*.shortpixel.ai
FingerprintD3:2C:60:18:FC:72:6F:6C:49:7F:6E:01:A8:C0:0D:30:3D:E9:43:24
ValidityThu, 26 Jan 2023 00:00:00 GMT - Wed, 17 Jan 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /client/to_webp,q_glossy,ret_img,w_192,h_192/https://blog.david-anton.com/wp-content/uploads/cropped-favicon-192x192.png HTTP/1.1
Host: sp-ao.shortpixel.ai
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://blog.david-anton.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 302 Found
date: Thu, 20 Apr 2023 09:11:50 GMT
content-type: text/html; charset=UTF-8
content-length: 0
location: https://blog.david-anton.com/wp-content/uploads/cropped-favicon-192x192.png
server: BunnyCDN-NO1-830
cdn-pullzone: 257218
cdn-uid: ceac3dab-9909-4315-8d54-a27751b54dd0
cdn-requestcountrycode: NO
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
cache-control: public, max-age=43200
pragma: cache
cdn-cachedat: 04/20/2023 09:11:50
cdn-tag: 0; Domain: blog.david-anton.com; 302
cdn-proxyver: 1.03
cdn-requestpullcode: 302
cdn-requestpullsuccess: True
cdn-edgestorageid: 830
cdn-status: 302
cdn-requestid: 0cc0083c5f4878b40e49b1a06307fc17
cdn-cache: MISS
X-Firefox-Spdy: h2
sp-ao.shortpixel.ai/client/to_webp,q_glossy,ret_img,w_32,h_32/https://blog.david-anton.com/wp-content/uploads/cropped-favicon-32x32.png
194.242.11.186302 Found 0 B URL GET HTTP/2 sp-ao.shortpixel.ai/client/to_webp,q_glossy,ret_img,w_32,h_32/https://blog.david-anton.com/wp-content/uploads/cropped-favicon-32x32.png
IP 194.242.11.186:443
ASN #34989 ServeTheWorld AS
Requested by https://blog.david-anton.com/
Certificate IssuerSectigo Limited
Subject*.shortpixel.ai
FingerprintD3:2C:60:18:FC:72:6F:6C:49:7F:6E:01:A8:C0:0D:30:3D:E9:43:24
ValidityThu, 26 Jan 2023 00:00:00 GMT - Wed, 17 Jan 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /client/to_webp,q_glossy,ret_img,w_32,h_32/https://blog.david-anton.com/wp-content/uploads/cropped-favicon-32x32.png HTTP/1.1
Host: sp-ao.shortpixel.ai
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://blog.david-anton.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 302 Found
date: Thu, 20 Apr 2023 09:11:50 GMT
content-type: text/html; charset=UTF-8
content-length: 0
location: https://blog.david-anton.com/wp-content/uploads/cropped-favicon-32x32.png
server: BunnyCDN-NO1-830
cdn-pullzone: 257218
cdn-uid: ceac3dab-9909-4315-8d54-a27751b54dd0
cdn-requestcountrycode: NO
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
cache-control: public, max-age=43200
pragma: cache
cdn-cachedat: 04/20/2023 09:11:50
cdn-tag: 0; Domain: blog.david-anton.com; 302
cdn-proxyver: 1.03
cdn-requestpullcode: 302
cdn-requestpullsuccess: True
cdn-edgestorageid: 830
cdn-status: 302
cdn-requestid: 5eda89ec95f651c6a8a99a9e4dbe9744
cdn-cache: MISS
X-Firefox-Spdy: h2
blog.david-anton.com/wp-content/uploads/cropped-favicon-32x32.png
82.165.101.27200 OK 947 B URL GET HTTP/2 blog.david-anton.com/wp-content/uploads/cropped-favicon-32x32.png
IP 82.165.101.27:443
Requested by https://blog.david-anton.com/
Certificate IssuerLet's Encrypt
Subjectblog.david-anton.com
FingerprintEE:5A:B8:41:A2:D2:0C:8D:4E:5A:4A:07:79:5D:9B:63:9F:C1:0E:F4
ValidityFri, 10 Mar 2023 16:20:10 GMT - Thu, 08 Jun 2023 16:20:09 GMT
File type PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced\012- data
Hash 084f979506c42d6a7b9b6d0277aa674a
3d278950ef32dd7aa762a42e5d3ebc10f134c761
6389891f3abd3f417fa4ab0fe511b546e9bdc8d9ff13d1235a0c3e5280dd011f
GET /wp-content/uploads/cropped-favicon-32x32.png HTTP/1.1
Host: blog.david-anton.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://blog.david-anton.com/
Connection: keep-alive
Cookie: -bsBiMKuf=tow.vgMAn7eYV; TsBj_PQnDWSMKNhO=4KUVaQTXiC72l; _ga_0GP6EDTPDB=GS1.1.1681982068.1.0.1681982068.0.0.0; _ga=GA1.1.458736531.1681982069; _ga_MGRL7TWHZV=GS1.1.1681982068.1.0.1681982068.0.0.0; cookielawinfo-checkbox-necessary=yes; cookielawinfo-checkbox-non-necessary=yes
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 20 Apr 2023 09:11:49 GMT
content-type: image/png
content-length: 947
x-accel-version: 0.01
last-modified: Fri, 30 Nov 2018 11:36:33 GMT
etag: "3b3-57be0360ea6e5"
cache-control: max-age=5184000
expires: Mon, 19 Jun 2023 09:11:49 GMT
x-cache-status: BYPASS
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
blog.david-anton.com/wp-content/plugins/nextgen-gallery/products/photocrati_nextgen/modules/ajax/static/ajax.min.js?ver=3.28
82.165.101.27200 OK 5.7 kB URL GET HTTP/2 blog.david-anton.com/wp-content/plugins/nextgen-gallery/products/photocrati_nextgen/modules/ajax/static/ajax.min.js?ver=3.28
IP 82.165.101.27:443
Requested by https://blog.david-anton.com/
Certificate IssuerLet's Encrypt
Subjectblog.david-anton.com
FingerprintEE:5A:B8:41:A2:D2:0C:8D:4E:5A:4A:07:79:5D:9B:63:9F:C1:0E:F4
ValidityFri, 10 Mar 2023 16:20:10 GMT - Thu, 08 Jun 2023 16:20:09 GMT
File type ASCII text, with very long lines (415)
Hash c40b2dcbec14b6b0ca721856e0525e20
d3a037e7178ccc3ecc63ea8f0317f6a47efac8fa
d6eff788afb548629263b6dc9448f40680b8a8efd450e11bed1ffc2cd65ac060
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/nextgen-gallery/products/photocrati_nextgen/modules/ajax/static/ajax.min.js?ver=3.28 HTTP/1.1
Host: blog.david-anton.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://blog.david-anton.com/
Cookie: -bsBiMKuf=tow.vgMAn7eYV; TsBj_PQnDWSMKNhO=4KUVaQTXiC72l
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 20 Apr 2023 09:11:48 GMT
content-type: application/javascript
last-modified: Wed, 31 Aug 2022 10:09:55 GMT
cache-control: max-age=172800
expires: Sat, 22 Apr 2023 09:11:48 GMT
etag: W/"630f3373-a95"
x-cache-status: BYPASS
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
blog.david-anton.com/page/2/
82.165.101.27200 OK 13 kB URL GET HTTP/2 blog.david-anton.com/page/2/
IP 82.165.101.27:443
Requested by https://blog.david-anton.com/
Certificate IssuerLet's Encrypt
Subjectblog.david-anton.com
FingerprintEE:5A:B8:41:A2:D2:0C:8D:4E:5A:4A:07:79:5D:9B:63:9F:C1:0E:F4
ValidityFri, 10 Mar 2023 16:20:10 GMT - Thu, 08 Jun 2023 16:20:09 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (48666)
Hash dd1dee62ce397f52c4963fef723e2ca3
4ac4f110f421569d76ba41c6ad70888a95f64a27
dbf5b6dc83aaaffaab57705e7e313bd4421c2c32df54528a3bf3deac066f9b0d
Analyzer Verdict Alert fortinet Phishing
GET /page/2/ HTTP/1.1
Host: blog.david-anton.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
Connection: keep-alive
Referer: https://blog.david-anton.com/
Cookie: -bsBiMKuf=tow.vgMAn7eYV; TsBj_PQnDWSMKNhO=4KUVaQTXiC72l; _ga_0GP6EDTPDB=GS1.1.1681982068.1.0.1681982068.0.0.0; _ga=GA1.1.458736531.1681982069; _ga_MGRL7TWHZV=GS1.1.1681982068.1.0.1681982068.0.0.0; cookielawinfo-checkbox-necessary=yes; cookielawinfo-checkbox-non-necessary=yes
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 20 Apr 2023 09:11:51 GMT
content-type: text/html; charset=UTF-8
content-length: 12676
x-ua-compatible: IE=edge
link: <https://blog.david-anton.com/wp-json/>; rel="https://api.w.org/"
set-cookie: -bsBiMKuf=tow.vgMAn7eYV; expires=Fri, 21-Apr-2023 09:11:50 GMT; Max-Age=86400; path=/; secure
TsBj_PQnDWSMKNhO=4KUVaQTXiC72l; expires=Fri, 21-Apr-2023 09:11:50 GMT; Max-Age=86400; path=/; secure
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=172800
expires: Sat, 22 Apr 2023 09:11:49 GMT
x-cache-status: BYPASS
x-powered-by: PHP/7.4.33, PleskLin
X-Firefox-Spdy: h2
blog.david-anton.com/wp-includes/js/wp-emoji-release.min.js?ver=6.0.3
82.165.101.27200 OK 19 kB URL GET HTTP/2 blog.david-anton.com/wp-includes/js/wp-emoji-release.min.js?ver=6.0.3
IP 82.165.101.27:443
Requested by https://blog.david-anton.com/
Certificate IssuerLet's Encrypt
Subjectblog.david-anton.com
FingerprintEE:5A:B8:41:A2:D2:0C:8D:4E:5A:4A:07:79:5D:9B:63:9F:C1:0E:F4
ValidityFri, 10 Mar 2023 16:20:10 GMT - Thu, 08 Jun 2023 16:20:09 GMT
File type ASCII text, with very long lines (15660)
Hash 32beb68a374e3aeac00abdf9e12b84ea
b5d18aa625e8696dd9d07cd0869337717b211ae0
5aad5fbd4238981a9ff5e2772ff1353dfe1a801fb49542fe157418c1438f7782
GET /wp-includes/js/wp-emoji-release.min.js?ver=6.0.3 HTTP/1.1
Host: blog.david-anton.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://blog.david-anton.com/
Cookie: -bsBiMKuf=tow.vgMAn7eYV; TsBj_PQnDWSMKNhO=4KUVaQTXiC72l
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Thu, 20 Apr 2023 09:11:49 GMT
content-type: application/javascript
last-modified: Wed, 31 Aug 2022 10:11:31 GMT
cache-control: max-age=172800
expires: Sat, 22 Apr 2023 09:11:49 GMT
etag: W/"630f33d3-48b9"
x-cache-status: BYPASS
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
blog.david-anton.com/wp-includes/css/dashicons.min.css?ver=6.0.3
82.165.101.27200 OK 59 kB URL GET HTTP/2 blog.david-anton.com/wp-includes/css/dashicons.min.css?ver=6.0.3
IP 82.165.101.27:443
Requested by https://blog.david-anton.com/
Certificate IssuerLet's Encrypt
Subjectblog.david-anton.com
FingerprintEE:5A:B8:41:A2:D2:0C:8D:4E:5A:4A:07:79:5D:9B:63:9F:C1:0E:F4
ValidityFri, 10 Mar 2023 16:20:10 GMT - Thu, 08 Jun 2023 16:20:09 GMT
File type ASCII text, with very long lines (58981)
Hash d68d6bf519169d86e155bad0bed833f8
27ba9c67d0e775fc4e6dd62011daf4c3902698fc
c21e5a2b32c47bc5f9d9efc97bc0e29fd081946d1d3ebffc5621cfafb1d3960e
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/css/dashicons.min.css?ver=6.0.3 HTTP/1.1
Host: blog.david-anton.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://blog.david-anton.com/
Cookie: -bsBiMKuf=tow.vgMAn7eYV; TsBj_PQnDWSMKNhO=4KUVaQTXiC72l
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Thu, 20 Apr 2023 09:11:48 GMT
content-type: text/css
last-modified: Tue, 28 Dec 2021 18:21:44 GMT
cache-control: max-age=5184000
expires: Mon, 19 Jun 2023 09:11:48 GMT
etag: W/"61cb55b8-e688"
x-cache-status: BYPASS
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
blog.david-anton.com/wp-content/cache/autoptimize/js/autoptimize_single_ae0f40d4f21faa4c3ae5e3ec85853384.js?ver=5.6.2
82.165.101.27200 OK 22 kB URL GET HTTP/2 blog.david-anton.com/wp-content/cache/autoptimize/js/autoptimize_single_ae0f40d4f21faa4c3ae5e3ec85853384.js?ver=5.6.2
IP 82.165.101.27:443
Requested by https://blog.david-anton.com/
Certificate IssuerLet's Encrypt
Subjectblog.david-anton.com
FingerprintEE:5A:B8:41:A2:D2:0C:8D:4E:5A:4A:07:79:5D:9B:63:9F:C1:0E:F4
ValidityFri, 10 Mar 2023 16:20:10 GMT - Thu, 08 Jun 2023 16:20:09 GMT
File type ASCII text, with very long lines (21905), with no line terminators
Hash ae0f40d4f21faa4c3ae5e3ec85853384
c94eb67feaf4d226d3e08ccd7e2d236d1a013c5d
32dd00604df8db3415240d450341558b6827b1e02dc0f211d8a6d9a4287c522e
GET /wp-content/cache/autoptimize/js/autoptimize_single_ae0f40d4f21faa4c3ae5e3ec85853384.js?ver=5.6.2 HTTP/1.1
Host: blog.david-anton.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://blog.david-anton.com/
Cookie: -bsBiMKuf=tow.vgMAn7eYV; TsBj_PQnDWSMKNhO=4KUVaQTXiC72l
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Thu, 20 Apr 2023 09:11:48 GMT
content-type: application/javascript
last-modified: Wed, 31 Aug 2022 10:12:19 GMT
cache-control: max-age=30672000, public, immutable
expires: Tue, 09 Apr 2024 09:11:48 GMT
etag: W/"630f3403-5591"
x-cache-status: BYPASS
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
blog.david-anton.com/wp-content/themes/imagely/assets/js/main.min.js?ver=2.0.0
82.165.101.27200 OK 63 kB URL GET HTTP/2 blog.david-anton.com/wp-content/themes/imagely/assets/js/main.min.js?ver=2.0.0
IP 82.165.101.27:443
Requested by https://blog.david-anton.com/
Certificate IssuerLet's Encrypt
Subjectblog.david-anton.com
FingerprintEE:5A:B8:41:A2:D2:0C:8D:4E:5A:4A:07:79:5D:9B:63:9F:C1:0E:F4
ValidityFri, 10 Mar 2023 16:20:10 GMT - Thu, 08 Jun 2023 16:20:09 GMT
File type ASCII text, with very long lines (63244)
Hash 22ee0df809a8627f773d16342c1e1a91
23b09f97c6d9a4fc063b7f22b53bb56a7eed7414
5614ed14e9d875c98b7466d9b8fe57856fc2d7e2a18ba5b35cb6c8fa62cf7e72
GET /wp-content/themes/imagely/assets/js/main.min.js?ver=2.0.0 HTTP/1.1
Host: blog.david-anton.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://blog.david-anton.com/
Cookie: -bsBiMKuf=tow.vgMAn7eYV; TsBj_PQnDWSMKNhO=4KUVaQTXiC72l
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Thu, 20 Apr 2023 09:11:48 GMT
content-type: application/javascript
last-modified: Tue, 28 Dec 2021 18:19:23 GMT
cache-control: max-age=172800
expires: Sat, 22 Apr 2023 09:11:48 GMT
etag: W/"61cb552b-f731"
x-cache-status: BYPASS
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
www.googletagmanager.com/gtag/js?id=G-MGRL7TWHZV&l=dataLayer&cx=c
142.250.74.168200 OK 185 kB URL GET HTTP/3 www.googletagmanager.com/gtag/js?id=G-MGRL7TWHZV&l=dataLayer&cx=c
IP 142.250.74.168:443
Requested by https://blog.david-anton.com/
Certificate IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint0D:E0:7D:60:57:50:BA:EB:CA:6E:2A:3F:20:5B:C7:91:67:89:3F:09
ValidityTue, 28 Mar 2023 16:45:47 GMT - Tue, 20 Jun 2023 16:45:46 GMT
File type ASCII text, with very long lines (3897)
Size 185 kB (185227 bytes)
Hash 06229fa65fdb0e41704414d77c2b5e15
ea46311855344ad92ecaf4ee33c6aa15e4180942
ba6e555b6fac5ad47d16d9dd9ff525c52c8b8924e98fbb8d6f5115fdaf519229
GET /gtag/js?id=G-MGRL7TWHZV&l=dataLayer&cx=c HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Alt-Used: www.googletagmanager.com
Connection: keep-alive
Referer: https://blog.david-anton.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Thu, 20 Apr 2023 09:11:49 GMT
expires: Thu, 20 Apr 2023 09:11:49 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 68370
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
blog.david-anton.com/wp-content/cache/autoptimize/js/autoptimize_single_dffa195b546cf1dfd52f2206955eb892.js?ver=2.1.2
82.165.101.27200 OK 28 kB URL GET HTTP/2 blog.david-anton.com/wp-content/cache/autoptimize/js/autoptimize_single_dffa195b546cf1dfd52f2206955eb892.js?ver=2.1.2
IP 82.165.101.27:443
Requested by https://blog.david-anton.com/
Certificate IssuerLet's Encrypt
Subjectblog.david-anton.com
FingerprintEE:5A:B8:41:A2:D2:0C:8D:4E:5A:4A:07:79:5D:9B:63:9F:C1:0E:F4
ValidityFri, 10 Mar 2023 16:20:10 GMT - Thu, 08 Jun 2023 16:20:09 GMT
File type ASCII text, with very long lines (2188)
Hash b7a6919f9899c8b64fa8877319143fdd
67bbf10d50812bda430fedea1465a6ae1895383d
74a3cb03a59beecff186a92d23f4a70d57f0531d3e7466f1818b8859022dcb91
GET /wp-content/cache/autoptimize/js/autoptimize_single_dffa195b546cf1dfd52f2206955eb892.js?ver=2.1.2 HTTP/1.1
Host: blog.david-anton.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://blog.david-anton.com/
Cookie: -bsBiMKuf=tow.vgMAn7eYV; TsBj_PQnDWSMKNhO=4KUVaQTXiC72l
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Thu, 20 Apr 2023 09:11:48 GMT
content-type: application/javascript
last-modified: Wed, 31 Aug 2022 10:12:19 GMT
cache-control: max-age=30672000, public, immutable
expires: Tue, 09 Apr 2024 09:11:48 GMT
etag: W/"630f3403-6c14"
x-cache-status: BYPASS
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
blog.david-anton.com/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9
82.165.101.27200 OK 6.5 kB URL GET HTTP/2 blog.david-anton.com/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9
IP 82.165.101.27:443
Requested by https://blog.david-anton.com/
Certificate IssuerLet's Encrypt
Subjectblog.david-anton.com
FingerprintEE:5A:B8:41:A2:D2:0C:8D:4E:5A:4A:07:79:5D:9B:63:9F:C1:0E:F4
ValidityFri, 10 Mar 2023 16:20:10 GMT - Thu, 08 Jun 2023 16:20:09 GMT
File type ASCII text, with very long lines (6637), with no line terminators
Hash fbd33253058e5e0407a4db2c5f2ef51d
97718f74c2d2e013073a56821e520a0acadce4fe
5b2427c792b1b03c804f01c67eea1deeb69e8209c19a54686b655222acf1bb3c
GET /wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9 HTTP/1.1
Host: blog.david-anton.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://blog.david-anton.com/
Cookie: -bsBiMKuf=tow.vgMAn7eYV; TsBj_PQnDWSMKNhO=4KUVaQTXiC72l
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Thu, 20 Apr 2023 09:11:48 GMT
content-type: application/javascript
last-modified: Wed, 31 Aug 2022 10:11:31 GMT
cache-control: max-age=172800
expires: Sat, 22 Apr 2023 09:11:48 GMT
etag: W/"630f33d3-194b"
x-cache-status: BYPASS
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
use.fontawesome.com/releases/v5.3.1/js/v4-shims.js?ver=5.3.1
172.64.132.15200 OK 15 kB URL GET HTTP/2 use.fontawesome.com/releases/v5.3.1/js/v4-shims.js?ver=5.3.1
IP 172.64.132.15:443
Requested by https://blog.david-anton.com/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintF8:B8:F9:45:BF:19:61:F1:60:E0:B4:AF:F4:E5:96:31:40:A4:84:69
ValidityMon, 06 Jun 2022 00:00:00 GMT - Mon, 05 Jun 2023 23:59:59 GMT
File type ASCII text, with very long lines (15025)
Hash ee849cdefc4ea73142659f04402a1a99
eb960831237921f6f5a5cb36aee15a46ed9d4336
b6aff3c3243270b1640acb09d152266a2bcdaabcf7b13bc8fa9804415982047d
GET /releases/v5.3.1/js/v4-shims.js?ver=5.3.1 HTTP/1.1
Host: use.fontawesome.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://blog.david-anton.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 20 Apr 2023 09:11:49 GMT
content-type: application/javascript
x-amz-id-2: jV0WHDPLtUJuT/k7RyUO3XQEH7kbysMmfRCdHSmsUrf5b8fKwLpOlFX3ZaevJWpu/8na/+gYwWs=
x-amz-request-id: N0YY134QH2VYW4CM
last-modified: Wed, 30 Jun 2021 15:42:14 GMT
etag: W/"ee849cdefc4ea73142659f04402a1a99"
cache-control: max-age=31556926
cf-cache-status: HIT
age: 1878785
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=6%2BTLj9WchNENPDP9Pnx9huoWBWX99W2FrbJJ2wJB7Eu4zEghmY4r8WFzCuPatXPIMev05Yda3ZsER9Bf40sVqTDNpUqiNU5K7ZGjUacVhNsW85lLtZ57rvUYEYo77kcQSGQNtXG1"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7bac43148e644164-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
blog.david-anton.com/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0
82.165.101.27200 OK 19 kB URL GET HTTP/2 blog.david-anton.com/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0
IP 82.165.101.27:443
Requested by https://blog.david-anton.com/
Certificate IssuerLet's Encrypt
Subjectblog.david-anton.com
FingerprintEE:5A:B8:41:A2:D2:0C:8D:4E:5A:4A:07:79:5D:9B:63:9F:C1:0E:F4
ValidityFri, 10 Mar 2023 16:20:10 GMT - Thu, 08 Jun 2023 16:20:09 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0 HTTP/1.1
Host: blog.david-anton.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://blog.david-anton.com/
Cookie: -bsBiMKuf=tow.vgMAn7eYV; TsBj_PQnDWSMKNhO=4KUVaQTXiC72l
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Thu, 20 Apr 2023 09:11:48 GMT
content-type: application/javascript
last-modified: Wed, 31 Aug 2022 10:11:31 GMT
cache-control: max-age=172800
expires: Sat, 22 Apr 2023 09:11:48 GMT
etag: W/"630f33d3-4ac6"
x-cache-status: BYPASS
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
blog.david-anton.com/wp-content/themes/imagely/assets/fonts/fontawesome/webfonts/fa-solid-900.woff2
82.165.101.27200 OK 74 kB URL GET HTTP/2 blog.david-anton.com/wp-content/themes/imagely/assets/fonts/fontawesome/webfonts/fa-solid-900.woff2
IP 82.165.101.27:443
Requested by https://blog.david-anton.com/
Certificate IssuerLet's Encrypt
Subjectblog.david-anton.com
FingerprintEE:5A:B8:41:A2:D2:0C:8D:4E:5A:4A:07:79:5D:9B:63:9F:C1:0E:F4
ValidityFri, 10 Mar 2023 16:20:10 GMT - Thu, 08 Jun 2023 16:20:09 GMT
File type Web Open Font Format (Version 2), TrueType, length 74348, version 329.31064\012- data
Hash 462806316fea535a6a57651bc2b000b0
80644191098f863f25be27841c0d92c452cf2327
4f9ee3d8f6e621642979e6a8f7e75c57cb9da34918cc08a38abfe178dbae1dd2
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/imagely/assets/fonts/fontawesome/webfonts/fa-solid-900.woff2 HTTP/1.1
Host: blog.david-anton.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://blog.david-anton.com/wp-content/cache/autoptimize/css/autoptimize_c48c38e06f091ed5554d3d5562236e33.css
Cookie: -bsBiMKuf=tow.vgMAn7eYV; TsBj_PQnDWSMKNhO=4KUVaQTXiC72l
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Thu, 20 Apr 2023 09:11:49 GMT
content-type: font/woff2
content-length: 74348
last-modified: Tue, 28 Dec 2021 18:19:23 GMT
cache-control: max-age=172800
expires: Sat, 22 Apr 2023 09:11:49 GMT
etag: "61cb552b-1226c"
x-cache-status: BYPASS
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
blog.david-anton.com/wp-content/uploads/cropped-favicon-192x192.png
82.165.101.27200 OK 4.6 kB URL GET HTTP/2 blog.david-anton.com/wp-content/uploads/cropped-favicon-192x192.png
IP 82.165.101.27:443
Requested by https://blog.david-anton.com/
Certificate IssuerLet's Encrypt
Subjectblog.david-anton.com
FingerprintEE:5A:B8:41:A2:D2:0C:8D:4E:5A:4A:07:79:5D:9B:63:9F:C1:0E:F4
ValidityFri, 10 Mar 2023 16:20:10 GMT - Thu, 08 Jun 2023 16:20:09 GMT
File type PNG image data, 192 x 192, 8-bit/color RGBA, non-interlaced\012- data
Hash 144036e0d7cfec77fa7664c3da50592c
d061ed6a781c7ed88b8716bb5ad7b4aed430c10a
a11b9c000a767fefe675115e92a3f6b051677fd0aaa7b89119be37448484cbfa
GET /wp-content/uploads/cropped-favicon-192x192.png HTTP/1.1
Host: blog.david-anton.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://blog.david-anton.com/
Connection: keep-alive
Cookie: -bsBiMKuf=tow.vgMAn7eYV; TsBj_PQnDWSMKNhO=4KUVaQTXiC72l; _ga_0GP6EDTPDB=GS1.1.1681982068.1.0.1681982068.0.0.0; _ga=GA1.1.458736531.1681982069; _ga_MGRL7TWHZV=GS1.1.1681982068.1.0.1681982068.0.0.0; cookielawinfo-checkbox-necessary=yes; cookielawinfo-checkbox-non-necessary=yes
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Thu, 20 Apr 2023 09:11:49 GMT
content-type: image/png
content-length: 4639
last-modified: Fri, 30 Nov 2018 11:36:33 GMT
cache-control: max-age=5184000
expires: Mon, 19 Jun 2023 09:11:49 GMT
etag: "5c0120c1-121f"
x-cache-status: BYPASS
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
use.fontawesome.com/releases/v5.3.1/js/all.js?ver=5.3.1
172.64.132.15200 OK 986 kB URL GET HTTP/2 use.fontawesome.com/releases/v5.3.1/js/all.js?ver=5.3.1
IP 172.64.132.15:443
Requested by https://blog.david-anton.com/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintF8:B8:F9:45:BF:19:61:F1:60:E0:B4:AF:F4:E5:96:31:40:A4:84:69
ValidityMon, 06 Jun 2022 00:00:00 GMT - Mon, 05 Jun 2023 23:59:59 GMT
File type ASCII text, with very long lines (65351)
Size 986 kB (986033 bytes)
Hash d0482db440697a659af4980d2e841891
d7ff2806086f5924e06910e90a79b44492b52450
8cb270b4d9485a93b31df98113fda8723ffc067fa7bfa90cedd47b76f7b10be1
GET /releases/v5.3.1/js/all.js?ver=5.3.1 HTTP/1.1
Host: use.fontawesome.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://blog.david-anton.com
Connection: keep-alive
Referer: https://blog.david-anton.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 20 Apr 2023 09:11:49 GMT
content-type: application/javascript
x-amz-id-2: 41XGdGcnSdIE2+Axl0UDkkKyL0v+xfYk2c4PwHxazr3WlyID4wavj9DxjL9PfyeEVLE31UyHWDc=
x-amz-request-id: 9C3WNYQWMMQ1N128
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding
last-modified: Wed, 30 Jun 2021 15:42:14 GMT
etag: W/"d0482db440697a659af4980d2e841891"
cache-control: max-age=31556926
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=q7y11Bi1rVaUiqf5V1T4V7Q%2ByfaL5rCTO%2BHU%2BbqM0kixfCSuTuDQ%2BlmwPfx1fe9dBv4%2BQsVYtMSdTm1FV23H1tFu0Cm%2FHxeFMrDPT4uN4%2FpL4wJy68tLci5hYbquumlT4vMNgl7G"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7bac43148f49777a-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
blog.david-anton.com/wp-includes/js/imagesloaded.min.js?ver=4.1.4
82.165.101.27200 OK 5.6 kB URL GET HTTP/2 blog.david-anton.com/wp-includes/js/imagesloaded.min.js?ver=4.1.4
IP 82.165.101.27:443
Requested by https://blog.david-anton.com/
Certificate IssuerLet's Encrypt
Subjectblog.david-anton.com
FingerprintEE:5A:B8:41:A2:D2:0C:8D:4E:5A:4A:07:79:5D:9B:63:9F:C1:0E:F4
ValidityFri, 10 Mar 2023 16:20:10 GMT - Thu, 08 Jun 2023 16:20:09 GMT
File type ASCII text, with very long lines (5734), with no line terminators
Hash 1dda7be32d909ff3dd78ba7420c70ad9
25b565675b390118e460d5841a18dc8bfca9f1da
196458b44851dc116932b65c48ab21694fcdba403d3ba3d76ba4b7eba747b0cd
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/imagesloaded.min.js?ver=4.1.4 HTTP/1.1
Host: blog.david-anton.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://blog.david-anton.com/
Cookie: -bsBiMKuf=tow.vgMAn7eYV; TsBj_PQnDWSMKNhO=4KUVaQTXiC72l
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Thu, 20 Apr 2023 09:11:48 GMT
content-type: application/javascript
last-modified: Tue, 28 Dec 2021 18:21:44 GMT
cache-control: max-age=172800
expires: Sat, 22 Apr 2023 09:11:48 GMT
etag: W/"61cb55b8-15fd"
x-cache-status: BYPASS
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
blog.david-anton.com/wp-content/cache/autoptimize/css/autoptimize_c48c38e06f091ed5554d3d5562236e33.css
82.165.101.27200 OK 391 kB URL GET HTTP/2 blog.david-anton.com/wp-content/cache/autoptimize/css/autoptimize_c48c38e06f091ed5554d3d5562236e33.css
IP 82.165.101.27:443
Requested by https://blog.david-anton.com/
Certificate IssuerLet's Encrypt
Subjectblog.david-anton.com
FingerprintEE:5A:B8:41:A2:D2:0C:8D:4E:5A:4A:07:79:5D:9B:63:9F:C1:0E:F4
ValidityFri, 10 Mar 2023 16:20:10 GMT - Thu, 08 Jun 2023 16:20:09 GMT
Size 391 kB (391133 bytes)
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /wp-content/cache/autoptimize/css/autoptimize_c48c38e06f091ed5554d3d5562236e33.css HTTP/1.1
Host: blog.david-anton.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://blog.david-anton.com/
Cookie: -bsBiMKuf=tow.vgMAn7eYV; TsBj_PQnDWSMKNhO=4KUVaQTXiC72l
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Thu, 20 Apr 2023 09:11:48 GMT
content-type: text/css
last-modified: Wed, 31 Aug 2022 10:31:31 GMT
cache-control: max-age=30672000, public, immutable
expires: Tue, 09 Apr 2024 09:11:48 GMT
etag: W/"630f3883-5f7dd"
x-cache-status: BYPASS
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
use.fontawesome.com/releases/v5.3.1/css/v4-shims.css?ver=6.0.3
172.64.132.15200 OK 27 kB URL GET HTTP/2 use.fontawesome.com/releases/v5.3.1/css/v4-shims.css?ver=6.0.3
IP 172.64.132.15:443
Requested by https://blog.david-anton.com/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintF8:B8:F9:45:BF:19:61:F1:60:E0:B4:AF:F4:E5:96:31:40:A4:84:69
ValidityMon, 06 Jun 2022 00:00:00 GMT - Mon, 05 Jun 2023 23:59:59 GMT
File type ASCII text, with very long lines (26508)
Hash 25b2445e0c1838b110583405b3ec0177
373bcdb8062402667eacdf0e77b830415dab1675
d791d2cc8c4150d7ca64c8e7c1485c0869a64755ce1ee758eff116638175ceae
GET /releases/v5.3.1/css/v4-shims.css?ver=6.0.3 HTTP/1.1
Host: use.fontawesome.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://blog.david-anton.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 20 Apr 2023 09:11:49 GMT
content-type: text/css
x-amz-id-2: OsqOQ4xawgjsm0t0J776lpQEO8L4NDFaYhqgXkdiMuOEXobQmYGupkz8HwXtU35NdeouAOp+UVM=
x-amz-request-id: M75SFTNJ1FPTWN0D
last-modified: Wed, 30 Jun 2021 15:42:14 GMT
etag: W/"25b2445e0c1838b110583405b3ec0177"
cache-control: max-age=31556926
cf-cache-status: HIT
age: 2648083
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=9vA4y9ZlLQw42U3XVfUbqDkA%2FY6mhwEiOPS4haugAssvW%2BCumLtNNGb2beUWBqp5cqmQcBRyD824lHkzTI%2FzxL6xCCHuXUlud2tQEWHYqjAODndWVmju35KRC9g6%2FpNMqjYXoaza"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7bac43149e764164-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.david-anton.com/wp-content/uploads/Hochzeitsfotograf-Offenburg-01.jpg
82.165.101.27200 OK 587 kB URL GET HTTP/2 www.david-anton.com/wp-content/uploads/Hochzeitsfotograf-Offenburg-01.jpg
IP 82.165.101.27:443
Requested by https://blog.david-anton.com/
Certificate IssuerLet's Encrypt
Subjectdavid-anton.com
FingerprintBF:1F:E8:46:76:BE:BC:BF:7F:C2:8C:B8:40:F7:B9:EA:1E:F2:60:41
ValidityFri, 03 Mar 2023 17:20:25 GMT - Thu, 01 Jun 2023 17:20:24 GMT
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=5, xresolution=74, yresolution=82, resolutionunit=2, copyright=David Anton], baseline, precision 8, 1920x1281, components 3\012- data
Size 587 kB (586782 bytes)
Hash ac406dcaef359274f353b388479cbccf
15804da3982a94b3f3fd0c09217e12e42a837683
2cb878a6b9289f4e7599453591e87b7903d2621238c4f84fd0c77101cb373426
GET /wp-content/uploads/Hochzeitsfotograf-Offenburg-01.jpg HTTP/1.1
Host: www.david-anton.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://blog.david-anton.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Thu, 20 Apr 2023 09:11:49 GMT
content-type: image/jpeg
content-length: 586782
last-modified: Sun, 14 Feb 2021 10:23:26 GMT
cache-control: max-age=5184000
expires: Mon, 19 Jun 2023 09:11:49 GMT
etag: "6028fa1e-8f41e"
x-cache-status: MISS
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2