firefox.settings.services.mozilla.com/v1/
143.204.55.35200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 143.204.55.35:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash bdb8b66c705a7b996496d780f50c00b5
403ae92039fcc933870f51f913f78ccaf9652256
c923ed2539f4ce9f4d43743c402fbb2060a52a4cbedbf14c5f5742ab718073d6
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Type, Alert, Content-Length, Retry-After, Backoff
Cache-Control: max-age=3600
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Fri, 21 Oct 2022 21:52:27 GMT
Expires: Fri, 21 Oct 2022 22:44:05 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 a7d2a4ec2f50830f128dc406960aef9a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 1mRJfyweMtutOw0l8tq7M7yT4mMi-5Ya-MYLMmGSxbgtepaRlooqlA==
Age: 729
www.glocalmanagers.com/es/inicio/
107.180.50.176301 Moved Permanently 249 B URL HTTP/1.1 www.glocalmanagers.com/es/inicio/
IP 107.180.50.176:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 56dee6ddec1c25e8476ecbbc376af600
e1a194c21fbf74f08fe01251128abc850e9130f5
49ef79751649633d0c59467cd87ba30c0816e0ae5c20add829c7c14661387e77
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /es/inicio/ HTTP/1.1
Host: www.glocalmanagers.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Fri, 21 Oct 2022 22:04:36 GMT
Server: Apache
Location: https://www.glocalmanagers.com/es/inicio/
Content-Length: 249
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 6b6481bf5f33b42cdd966d49d8b70107
03ed01a9dc82a7efaf3706691249d811f64719a4
1e42a2cd7e7ef655d17dea6423dff85d3f57111d9bd08d2f829535aa462eb11c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1E42A2CD7E7EF655D17DEA6423DFF85D3F57111D9BD08D2F829535AA462EB11C"
Last-Modified: Wed, 19 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3676
Expires: Fri, 21 Oct 2022 23:05:52 GMT
Date: Fri, 21 Oct 2022 22:04:36 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 9dc4f23f82148797f6d8041bdda3c7f7
6841ded3e2dd94fd762316d01efd43f7aafb8354
e229db1854a85b320cee574e805210f3adf5797136ea820c0a0ce9abcd63d4dd
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E229DB1854A85B320CEE574E805210F3ADF5797136EA820C0A0CE9ABCD63D4DD"
Last-Modified: Thu, 20 Oct 2022 02:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3740
Expires: Fri, 21 Oct 2022 23:06:56 GMT
Date: Fri, 21 Oct 2022 22:04:36 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 67d5a988edcda47bc3b3b3f65d32b4b6
d4f0e0da8b3690cc7da925026d3414b68c7d954f
55e4848e3ec682e808ce7ee70950f86179c43af4f81926d826a95edfda395a78
GET /chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: QoxePjX51EA6YKhfm96D6Im5q5yV9lx0GrquQn7BlZAyYJ5HvISyWNZpWmxW4AbQX6kvCL8Ln8o=
x-amz-request-id: WRYTD4XZATZM3P5A
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Fri, 21 Oct 2022 21:07:22 GMT
age: 3434
last-modified: Fri, 30 Sep 2022 18:50:55 GMT
etag: "67d5a988edcda47bc3b3b3f65d32b4b6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 21 Oct 2022 22:04:36 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
143.204.55.35200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 143.204.55.35:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600
Date: Fri, 21 Oct 2022 21:43:40 GMT
Expires: Fri, 21 Oct 2022 21:50:50 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 057fdebf738f5915bf38a78949190758.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: y6329ih0CrXuQ0Fr07pls3W2_5wvUDCMe5kTJ01yA5HIT1GhDNt9Mw==
Age: 1257
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash f47cc320695635b544a761f72f3afc6f
b7cee764dcb0a625e0f8e0b4a4fce04548a1bf76
78608be3d0d6aaaf0364aed316b8676ab28d23c9b6a8ac6c147cf5d16e5cc283
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5410
Cache-Control: max-age=127940
Content-Type: application/ocsp-response
Date: Fri, 21 Oct 2022 22:04:37 GMT
Etag: "63525317-1d7"
Expires: Sun, 23 Oct 2022 09:36:57 GMT
Last-Modified: Fri, 21 Oct 2022 08:06:47 GMT
Server: ECS (ska/F714)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
44.240.140.78101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 44.240.140.78:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: wvd59NKOfanAGIxByDFs+Q==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: /Lh5DbqGnFDpagDGzZz2mV0z9eo=
www.glocalmanagers.com/es/inicio/
107.180.50.176200 OK 37 kB URL HTTP/2 www.glocalmanagers.com/es/inicio/
IP 107.180.50.176:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (43548), with CRLF, LF line terminators
Hash 21246c5a72f2041eb2143ca1ef98dda5
26cebae22e1f858cdc795405ff86013c5cfd4855
cea23588c265177d6ba0edf219f017c98c76f12e0ebdfc84c1090b36ba85004a
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /es/inicio/ HTTP/1.1
Host: www.glocalmanagers.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
x-powered-by: PHP/8.1.11
link: <https://www.glocalmanagers.com/wp-json/>; rel="https://api.w.org/", <https://www.glocalmanagers.com/wp-json/wp/v2/pages/2054>; rel="alternate"; type="application/json", <https://www.glocalmanagers.com/>; rel=shortlink
vary: Accept-Encoding
content-encoding: br
referrer-policy: no-referrer-when-downgrade
content-length: 37347
content-type: text/html; charset=UTF-8
date: Fri, 21 Oct 2022 22:04:37 GMT
server: Apache
X-Firefox-Spdy: h2
www.glocalmanagers.com/wp-content/plugins/devvn-image-hotspot/frontend/css/jquery.powertip.min.css?ver=1.2.0
107.180.50.176200 OK 422 B URL HTTP/2 www.glocalmanagers.com/wp-content/plugins/devvn-image-hotspot/frontend/css/jquery.powertip.min.css?ver=1.2.0
IP 107.180.50.176:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (1805), with no line terminators
Hash a3327ff898ea349b6253609e6ab94320
43be7503d28aa40c28b4611b5301d5bf1a5eb5bb
d43bb6989a4e75ed95edb40299f6e3033b55765412f95efab3bd0deabf964b37
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/plugins/devvn-image-hotspot/frontend/css/jquery.powertip.min.css?ver=1.2.0 HTTP/1.1
Host: www.glocalmanagers.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.glocalmanagers.com/es/inicio/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 03 May 2022 22:31:11 GMT
etag: "70d-5de2310de425c-gzip"
accept-ranges: bytes
cache-control: max-age=31536000
expires: Sat, 21 Oct 2023 22:04:38 GMT
vary: Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
content-length: 422
content-type: text/css
date: Fri, 21 Oct 2022 22:04:38 GMT
server: Apache
X-Firefox-Spdy: h2
www.glocalmanagers.com/wp-content/plugins/devvn-image-hotspot/frontend/css/maps_points.css?ver=1.2.2
107.180.50.176200 OK 1.5 kB URL HTTP/2 www.glocalmanagers.com/wp-content/plugins/devvn-image-hotspot/frontend/css/maps_points.css?ver=1.2.2
IP 107.180.50.176:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with CRLF line terminators
Hash 86efa0b30c894fd3877f63a7f8909e95
0b2099d789044cc77040b75810d11aa663093684
d3e137f487a1a85386db50f9578b92638aa8188aa05b7e212e56e031a425e5ed
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/plugins/devvn-image-hotspot/frontend/css/maps_points.css?ver=1.2.2 HTTP/1.1
Host: www.glocalmanagers.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.glocalmanagers.com/es/inicio/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 03 May 2022 22:31:11 GMT
etag: "1c2f-5de2310de2ed4-gzip"
accept-ranges: bytes
cache-control: max-age=31536000
expires: Sat, 21 Oct 2023 22:04:38 GMT
vary: Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
content-length: 1484
content-type: text/css
date: Fri, 21 Oct 2022 22:04:38 GMT
server: Apache
X-Firefox-Spdy: h2
www.glocalmanagers.com/wp-content/themes/astra/assets/css/minified/main.min.css?ver=3.9.1
107.180.50.176200 OK 8.0 kB URL HTTP/2 www.glocalmanagers.com/wp-content/themes/astra/assets/css/minified/main.min.css?ver=3.9.1
IP 107.180.50.176:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (38375)
Hash d89e3ba867ab89c62c514e1d58141464
c724d8feac32d089d553dd53172d42336360a4a9
580c184394148868aa24830fabd6b5137cb83e022a467dddb8bae2cb2e0225b6
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/themes/astra/assets/css/minified/main.min.css?ver=3.9.1 HTTP/1.1
Host: www.glocalmanagers.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.glocalmanagers.com/es/inicio/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 11 Aug 2022 20:03:04 GMT
etag: "9e45-5e5fca74a63f9-gzip"
accept-ranges: bytes
cache-control: max-age=31536000
expires: Sat, 21 Oct 2023 22:04:38 GMT
vary: Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
content-length: 7989
content-type: text/css
date: Fri, 21 Oct 2022 22:04:38 GMT
server: Apache
X-Firefox-Spdy: h2
www.glocalmanagers.com/wp-includes/css/dist/block-library/style.min.css?ver=6.0.3
107.180.50.176200 OK 12 kB URL HTTP/2 www.glocalmanagers.com/wp-includes/css/dist/block-library/style.min.css?ver=6.0.3
IP 107.180.50.176:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (43771)
Hash e5548800176e913a9084f47a3e1e04f6
eff4604acc5c26ae82a19188de2f98bf5b79d80c
a2569c768eaca09f2483b971fcebb97badd57c9a16b5ae3e16b8cdcd8c688b07
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-includes/css/dist/block-library/style.min.css?ver=6.0.3 HTTP/1.1
Host: www.glocalmanagers.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.glocalmanagers.com/es/inicio/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 04 Jul 2022 12:10:37 GMT
etag: "15b64-5e2f99fa9e940-gzip"
accept-ranges: bytes
cache-control: max-age=31536000
expires: Sat, 21 Oct 2023 22:04:38 GMT
vary: Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
content-length: 11681
content-type: text/css
date: Fri, 21 Oct 2022 22:04:38 GMT
server: Apache
X-Firefox-Spdy: h2
www.glocalmanagers.com/wp-content/plugins/honeypot/includes/css/wpa.css?ver=2.0.2
107.180.50.176200 OK 255 B URL HTTP/2 www.glocalmanagers.com/wp-content/plugins/honeypot/includes/css/wpa.css?ver=2.0.2
IP 107.180.50.176:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with CRLF line terminators
Hash 5d6e08a950c64535088acc54ccf4d3dc
f37909e7bb91b58f7a82443eee79126d6f1cbc46
bd62fcfcb21423c230b55fe11eb5e6553fdfbaceb8c581a006950981e0c18247
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/plugins/honeypot/includes/css/wpa.css?ver=2.0.2 HTTP/1.1
Host: www.glocalmanagers.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.glocalmanagers.com/es/inicio/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 18 Oct 2022 18:55:53 GMT
etag: "22c-5eb53a433160d-gzip"
accept-ranges: bytes
cache-control: max-age=31536000
expires: Sat, 21 Oct 2023 22:04:38 GMT
vary: Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
content-length: 255
content-type: text/css
date: Fri, 21 Oct 2022 22:04:38 GMT
server: Apache
X-Firefox-Spdy: h2
www.glocalmanagers.com/wp-content/plugins/wp-polls/polls-css.css?ver=2.77.0
107.180.50.176200 OK 723 B URL HTTP/2 www.glocalmanagers.com/wp-content/plugins/wp-polls/polls-css.css?ver=2.77.0
IP 107.180.50.176:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
Hash acd9e0c7db4217f3ef0dba9da9009574
5b17d0734aa21661c577a77c8cb587eae7c51b33
69dfb81d289c91cd39f3c5e0e2fb0781f64688a2ca729bbcbdf6c28cd366e447
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/plugins/wp-polls/polls-css.css?ver=2.77.0 HTTP/1.1
Host: www.glocalmanagers.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.glocalmanagers.com/es/inicio/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 11 Oct 2022 13:59:47 GMT
etag: "a94-5eac2b069a4a8-gzip"
accept-ranges: bytes
cache-control: max-age=31536000
expires: Sat, 21 Oct 2023 22:04:38 GMT
vary: Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
content-length: 723
content-type: text/css
date: Fri, 21 Oct 2022 22:04:38 GMT
server: Apache
X-Firefox-Spdy: h2
www.glocalmanagers.com/wp-content/plugins/exclusive-addons-for-elementor/assets/vendor/css/slick.min.css?ver=6.0.3
107.180.50.176200 OK 468 B URL HTTP/2 www.glocalmanagers.com/wp-content/plugins/exclusive-addons-for-elementor/assets/vendor/css/slick.min.css?ver=6.0.3
IP 107.180.50.176:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (1183), with no line terminators
Hash f381c67030d62e2cca8a5d3695480238
499d6d0efa28b91daddf2eda936d9c4af916e166
4f9a041d21e3e12f0bbb3d85c54824d119769d887356ae37ef51ffbe5c3542b5
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/plugins/exclusive-addons-for-elementor/assets/vendor/css/slick.min.css?ver=6.0.3 HTTP/1.1
Host: www.glocalmanagers.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.glocalmanagers.com/es/inicio/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 11 Oct 2022 14:56:30 GMT
etag: "49f-5eac37b37e5ec-gzip"
accept-ranges: bytes
cache-control: max-age=31536000
expires: Sat, 21 Oct 2023 22:04:38 GMT
vary: Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
content-length: 468
content-type: text/css
date: Fri, 21 Oct 2022 22:04:38 GMT
server: Apache
X-Firefox-Spdy: h2
www.glocalmanagers.com/wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.3.5
107.180.50.176200 OK 13 kB URL HTTP/2 www.glocalmanagers.com/wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.3.5
IP 107.180.50.176:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type Unicode text, UTF-8 text, with very long lines (12602), with CRLF line terminators
Hash 95694c26156eb25eb12f2ba199e1cba3
5af183c533a42e5e23a31c0b1202c34f7be1f6f2
6fb2bee54db95a1965c2fb2e690e42d2a4247fc604e26bc67ca74e172615f05b
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.3.5 HTTP/1.1
Host: www.glocalmanagers.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.glocalmanagers.com/es/inicio/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 24 May 2022 15:25:35 GMT
etag: "eb91-5dfc3917c074a-gzip"
accept-ranges: bytes
cache-control: max-age=31536000
expires: Sat, 21 Oct 2023 22:04:38 GMT
vary: Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
content-length: 12679
content-type: text/css
date: Fri, 21 Oct 2022 22:04:38 GMT
server: Apache
X-Firefox-Spdy: h2
www.glocalmanagers.com/wp-content/plugins/exclusive-addons-for-elementor/assets/vendor/css/slick-theme.min.css?ver=6.0.3
107.180.50.176200 OK 791 B URL HTTP/2 www.glocalmanagers.com/wp-content/plugins/exclusive-addons-for-elementor/assets/vendor/css/slick-theme.min.css?ver=6.0.3
IP 107.180.50.176:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
Hash c89ef9f18478ac009310355ccbadf656
463013a052a78fef3a3954a0f507240dc2a36aae
10c10f97612ececf8df6159a0ddfe4c9c44a8c4a1162774796f531b582ccfa90
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/plugins/exclusive-addons-for-elementor/assets/vendor/css/slick-theme.min.css?ver=6.0.3 HTTP/1.1
Host: www.glocalmanagers.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.glocalmanagers.com/es/inicio/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 11 Oct 2022 14:56:30 GMT
etag: "bcb-5eac37b37e5ec-gzip"
accept-ranges: bytes
cache-control: max-age=31536000
expires: Sat, 21 Oct 2023 22:04:38 GMT
vary: Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
content-length: 791
content-type: text/css
date: Fri, 21 Oct 2022 22:04:38 GMT
server: Apache
X-Firefox-Spdy: h2
www.glocalmanagers.com/wp-content/plugins/exclusive-addons-for-elementor/assets/css/exad-styles.min.css?ver=6.0.3
107.180.50.176200 OK 15 kB URL HTTP/2 www.glocalmanagers.com/wp-content/plugins/exclusive-addons-for-elementor/assets/css/exad-styles.min.css?ver=6.0.3
IP 107.180.50.176:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (65536), with no line terminators
Hash 2830238ac66cd850c97241ab268a611c
06f18fa0a07bf891eee0810e85030d960207404e
7fbd88f065f26a14afac17eea282d45d550be2c2c5fc446a9607691b1d4af948
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/plugins/exclusive-addons-for-elementor/assets/css/exad-styles.min.css?ver=6.0.3 HTTP/1.1
Host: www.glocalmanagers.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.glocalmanagers.com/es/inicio/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 11 Oct 2022 14:56:30 GMT
etag: "1d591-5eac37b37f58c-gzip"
accept-ranges: bytes
cache-control: max-age=31536000
expires: Sat, 21 Oct 2023 22:04:38 GMT
vary: Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
content-length: 15348
content-type: text/css
date: Fri, 21 Oct 2022 22:04:38 GMT
server: Apache
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 794a6d2df00fc15e8b4ed6ff4992525e
f8d67c7fd506709d7232298859fe2b3daf374f29
02d38690754b5d99178d576fe6df6c1ca881a2bbd806a75c633c371fac0221da
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 21 Oct 2022 22:04:38 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 94ee541bb392e5675c1e24c94c197f8b
bce18b05a24f5e2c6743cbbe849a733091586176
82f791c205847646216d72b4ce65bc3587ca69d1da17a3a2afb477640822c4dc
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 21 Oct 2022 22:04:38 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 794a6d2df00fc15e8b4ed6ff4992525e
f8d67c7fd506709d7232298859fe2b3daf374f29
02d38690754b5d99178d576fe6df6c1ca881a2bbd806a75c633c371fac0221da
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 21 Oct 2022 22:04:38 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash f1b833a135e4d839859e4994f349bb6c
399b607015c4d9200df20084c7396591007dc995
28db09a2a0e821b37dc1cfb710bf896c438755bfc992eb775f41128b0e52e5d1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "28DB09A2A0E821B37DC1CFB710BF896C438755BFC992EB775F41128B0E52E5D1"
Last-Modified: Fri, 21 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4267
Expires: Fri, 21 Oct 2022 23:15:45 GMT
Date: Fri, 21 Oct 2022 22:04:38 GMT
Connection: keep-alive
www.glocalmanagers.com/wp-content/uploads/elementor/css/post-13.css?ver=1665509217
107.180.50.176200 OK 404 B URL HTTP/2 www.glocalmanagers.com/wp-content/uploads/elementor/css/post-13.css?ver=1665509217
IP 107.180.50.176:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (1213), with no line terminators
Hash 2d4973e37b120fb7c701da1e91fd932d
e8bddd88b5ae3d4781a6d105acd16cfc14d8093d
af73129add40b86735a1e914a3beb927a07af85385dfb2fd1251c4c836dc9586
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/uploads/elementor/css/post-13.css?ver=1665509217 HTTP/1.1
Host: www.glocalmanagers.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.glocalmanagers.com/es/inicio/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 11 Oct 2022 17:26:57 GMT
etag: "4bd-5eac5954e7525-gzip"
accept-ranges: bytes
cache-control: max-age=31536000
expires: Sat, 21 Oct 2023 22:04:38 GMT
vary: Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
content-length: 404
content-type: text/css
date: Fri, 21 Oct 2022 22:04:38 GMT
server: Apache
X-Firefox-Spdy: h2
www.glocalmanagers.com/wp-content/uploads/elementor/css/post-4519.css?ver=1665509218
107.180.50.176200 OK 1.0 kB URL HTTP/2 www.glocalmanagers.com/wp-content/uploads/elementor/css/post-4519.css?ver=1665509218
IP 107.180.50.176:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (7857), with no line terminators
Hash 1d791620491cda148149cf27b1814c69
e767408bc9d141a6b2a8062bc886d72d9639ace2
34c1ad79837de6063e43e8956845709289b416bc21db11e6277bdd9a9cc3a4dc
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/uploads/elementor/css/post-4519.css?ver=1665509218 HTTP/1.1
Host: www.glocalmanagers.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.glocalmanagers.com/es/inicio/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 11 Oct 2022 17:26:58 GMT
etag: "1eb1-5eac59556d5b3-gzip"
accept-ranges: bytes
cache-control: max-age=31536000
expires: Sat, 21 Oct 2023 22:04:38 GMT
vary: Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
content-length: 1023
content-type: text/css
date: Fri, 21 Oct 2022 22:04:38 GMT
server: Apache
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 471 B IP 142.250.74.35:0
Hash 9f4b1d3c4fdfbd28fa4afc92115bd9f9
365125fe68f668bae6f3c13ef21d92bb00783ebe
92ea3ab34acb6f2464ef06496365dd1a54767519d3429346849898739bf05bb5
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 21 Oct 2022 22:04:38 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.glocalmanagers.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/regular.min.css?ver=5.15.3
107.180.50.176200 OK 308 B URL HTTP/2 www.glocalmanagers.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/regular.min.css?ver=5.15.3
IP 107.180.50.176:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (491)
Hash 851fd514d412b7e854365f20a4227c8a
08bf47072f70af1816450cc85a5efb3b8f9114d2
a9449e3cc7c003e5ed6b93bae7b0bba3e4f1713c52214f41d3591692a759b9d7
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/regular.min.css?ver=5.15.3 HTTP/1.1
Host: www.glocalmanagers.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.glocalmanagers.com/es/inicio/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 11 Oct 2022 14:55:46 GMT
etag: "2a5-5eac378975504-gzip"
accept-ranges: bytes
cache-control: max-age=31536000
expires: Sat, 21 Oct 2023 22:04:38 GMT
vary: Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
content-length: 308
content-type: text/css
date: Fri, 21 Oct 2022 22:04:38 GMT
server: Apache
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash f1b833a135e4d839859e4994f349bb6c
399b607015c4d9200df20084c7396591007dc995
28db09a2a0e821b37dc1cfb710bf896c438755bfc992eb775f41128b0e52e5d1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "28DB09A2A0E821B37DC1CFB710BF896C438755BFC992EB775F41128B0E52E5D1"
Last-Modified: Fri, 21 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4267
Expires: Fri, 21 Oct 2022 23:15:45 GMT
Date: Fri, 21 Oct 2022 22:04:38 GMT
Connection: keep-alive
www.glocalmanagers.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/solid.min.css?ver=5.15.3
107.180.50.176200 OK 309 B URL HTTP/2 www.glocalmanagers.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/solid.min.css?ver=5.15.3
IP 107.180.50.176:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (483)
Hash 0ea43e394ddaae5fdb710dbbc8869e58
3b0c93adc80720236096201db5cc2751e703996d
85225fffa21a94bfd954393d7471069ab227b98fd8b51cb5ab4af5488168a34e
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/solid.min.css?ver=5.15.3 HTTP/1.1
Host: www.glocalmanagers.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.glocalmanagers.com/es/inicio/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 11 Oct 2022 14:55:46 GMT
etag: "29d-5eac37897511c-gzip"
accept-ranges: bytes
cache-control: max-age=31536000
expires: Sat, 21 Oct 2023 22:04:38 GMT
vary: Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
content-length: 309
content-type: text/css
date: Fri, 21 Oct 2022 22:04:38 GMT
server: Apache
X-Firefox-Spdy: h2
www.glocalmanagers.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/brands.min.css?ver=5.15.3
107.180.50.176200 OK 308 B URL HTTP/2 www.glocalmanagers.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/brands.min.css?ver=5.15.3
IP 107.180.50.176:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (489)
Hash 0a08469d24387f830bbaaa00b3c228ae
01f5dfeb8f93a32c9a8f66fe5940758109771fcd
3c7c29e5fc1193ff7ce24f72f77b2dc129e1a9434a97ef7b625f6f715531803c
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/brands.min.css?ver=5.15.3 HTTP/1.1
Host: www.glocalmanagers.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.glocalmanagers.com/es/inicio/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 11 Oct 2022 14:55:46 GMT
etag: "2a3-5eac378975504-gzip"
accept-ranges: bytes
cache-control: max-age=31536000
expires: Sat, 21 Oct 2023 22:04:38 GMT
vary: Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
content-length: 308
content-type: text/css
date: Fri, 21 Oct 2022 22:04:38 GMT
server: Apache
X-Firefox-Spdy: h2
www.glocalmanagers.com/wp-content/uploads/elementor/css/post-4526.css?ver=1665509218
107.180.50.176200 OK 1.8 kB URL HTTP/2 www.glocalmanagers.com/wp-content/uploads/elementor/css/post-4526.css?ver=1665509218
IP 107.180.50.176:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (15570), with no line terminators
Hash 5c781e1b0712fc5ab0b7af6ff54ec64e
1ddd5d5074985144c4b6b8f212281cfc33dbdb04
355948cd1c0d094c4a236b785f3ecc84d484099644dbee46802724a916242140
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/uploads/elementor/css/post-4526.css?ver=1665509218 HTTP/1.1
Host: www.glocalmanagers.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.glocalmanagers.com/es/inicio/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 11 Oct 2022 17:26:58 GMT
etag: "3cd2-5eac59558b244-gzip"
accept-ranges: bytes
cache-control: max-age=31536000
expires: Sat, 21 Oct 2023 22:04:38 GMT
vary: Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
content-length: 1842
content-type: text/css
date: Fri, 21 Oct 2022 22:04:38 GMT
server: Apache
X-Firefox-Spdy: h2
www.glocalmanagers.com/wp-content/plugins/elementskit-lite/widgets/init/assets/css/responsive.css?ver=2.7.3
107.180.50.176200 OK 3.2 kB URL HTTP/2 www.glocalmanagers.com/wp-content/plugins/elementskit-lite/widgets/init/assets/css/responsive.css?ver=2.7.3
IP 107.180.50.176:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (30283), with no line terminators
Hash fa8a82a872b3b2398c41c1bb265c5a66
c849c961903a1c55b8225baceeeefb20e1fde379
5b4878e61a75c816221675ce2c5f3aabb360fc6e268a0758f8d2938415d0ead1
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/plugins/elementskit-lite/widgets/init/assets/css/responsive.css?ver=2.7.3 HTTP/1.1
Host: www.glocalmanagers.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.glocalmanagers.com/es/inicio/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 18 Oct 2022 18:55:32 GMT
etag: "764b-5eb53a2f048cb-gzip"
accept-ranges: bytes
cache-control: max-age=31536000
expires: Sat, 21 Oct 2023 22:04:38 GMT
vary: Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
content-length: 3150
content-type: text/css
date: Fri, 21 Oct 2022 22:04:38 GMT
server: Apache
X-Firefox-Spdy: h2
www.glocalmanagers.com/wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.16.0
107.180.50.176200 OK 4.0 kB URL HTTP/2 www.glocalmanagers.com/wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.16.0
IP 107.180.50.176:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (19233)
Hash 24dc15839234f4dbd06f677098762e1c
a285318fa3f4d9a1491f523f080cd32e1df12315
016fdb3d864bb8491d6450906f97c734548f76ca9ead4b13b92dc7112c5568c6
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.16.0 HTTP/1.1
Host: www.glocalmanagers.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.glocalmanagers.com/es/inicio/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 11 Oct 2022 14:55:50 GMT
etag: "4b4f-5eac378d45266-gzip"
accept-ranges: bytes
cache-control: max-age=31536000
expires: Sat, 21 Oct 2023 22:04:38 GMT
vary: Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
content-length: 3961
content-type: text/css
date: Fri, 21 Oct 2022 22:04:38 GMT
server: Apache
X-Firefox-Spdy: h2
www.glocalmanagers.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/v4-shims.min.css?ver=3.7.8
107.180.50.176200 OK 4.2 kB URL HTTP/2 www.glocalmanagers.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/v4-shims.min.css?ver=3.7.8
IP 107.180.50.176:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (26516)
Hash d74abcef3df71d56667a44693f75c454
be993a7b5c88a550ef0dc19c4841f240e41967f8
8c8fb98c0a68a93f2bcf224fcc1bdaa1095fc1b3f5418f2e2c5fddcfa3dee410
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/v4-shims.min.css?ver=3.7.8 HTTP/1.1
Host: www.glocalmanagers.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.glocalmanagers.com/es/inicio/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 11 Oct 2022 14:55:46 GMT
etag: "684e-5eac378975504-gzip"
accept-ranges: bytes
cache-control: max-age=31536000
expires: Sat, 21 Oct 2023 22:04:38 GMT
vary: Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
content-length: 4229
content-type: text/css
date: Fri, 21 Oct 2022 22:04:38 GMT
server: Apache
X-Firefox-Spdy: h2
www.googletagmanager.com/gtag/js?id=UA-208500043-1
142.250.74.168200 OK 44 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=UA-208500043-1
IP 142.250.74.168:0
File type ASCII text, with very long lines (1588)
Hash 218524044f5fd6eaae099f0c95200c25
10b3a359110412f09924c313764950a80751931e
503a66261ffcc0eccd7931d5032c9494e25034d6b43ebb33a43640a104aec7e0
GET /gtag/js?id=UA-208500043-1 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.glocalmanagers.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Fri, 21 Oct 2022 22:04:38 GMT
expires: Fri, 21 Oct 2022 22:04:38 GMT
cache-control: private, max-age=900
last-modified: Fri, 21 Oct 2022 21:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 43590
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.glocalmanagers.com/wp-content/plugins/email-download-link/inc/email-download-link.js?ver=2.2
107.180.50.176200 OK 863 B URL HTTP/2 www.glocalmanagers.com/wp-content/plugins/email-download-link/inc/email-download-link.js?ver=2.2
IP 107.180.50.176:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with CRLF line terminators
Hash d5919e9bb895c1635164631d4eeb2592
bab85a09bfb1c8fd6cc752ce94d6e65305147e9c
83fa3630c26d1b8786eed3678a71741c7d02cd3488d157233d238ab3f0030c05
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/plugins/email-download-link/inc/email-download-link.js?ver=2.2 HTTP/1.1
Host: www.glocalmanagers.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.glocalmanagers.com/es/inicio/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 14 Jul 2022 10:30:05 GMT
etag: "891-5e3c1628b1b0b-gzip"
accept-ranges: bytes
cache-control: max-age=31536000
expires: Sat, 21 Oct 2023 22:04:38 GMT
vary: Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
content-length: 863
content-type: application/x-javascript
date: Fri, 21 Oct 2022 22:04:38 GMT
server: Apache
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash f1b833a135e4d839859e4994f349bb6c
399b607015c4d9200df20084c7396591007dc995
28db09a2a0e821b37dc1cfb710bf896c438755bfc992eb775f41128b0e52e5d1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "28DB09A2A0E821B37DC1CFB710BF896C438755BFC992EB775F41128B0E52E5D1"
Last-Modified: Fri, 21 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4267
Expires: Fri, 21 Oct 2022 23:15:45 GMT
Date: Fri, 21 Oct 2022 22:04:38 GMT
Connection: keep-alive
www.glocalmanagers.com/wp-content/plugins/wp-polls/polls-js.js?ver=2.77.0
107.180.50.176200 OK 648 B URL HTTP/2 www.glocalmanagers.com/wp-content/plugins/wp-polls/polls-js.js?ver=2.77.0
IP 107.180.50.176:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (3242), with no line terminators
Hash fdb5d09071104de7db796c38a84ebe45
146383aa9675739068ba086f0ef901aa9d041715
d575172eba1c4d257937ec139777f1ba2547d434b8133254e772004a265862da
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/plugins/wp-polls/polls-js.js?ver=2.77.0 HTTP/1.1
Host: www.glocalmanagers.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.glocalmanagers.com/es/inicio/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 11 Oct 2022 13:59:47 GMT
etag: "caa-5eac2b069a4a8-gzip"
accept-ranges: bytes
cache-control: max-age=31536000
expires: Sat, 21 Oct 2023 22:04:38 GMT
vary: Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
content-length: 648
content-type: application/x-javascript
date: Fri, 21 Oct 2022 22:04:38 GMT
server: Apache
X-Firefox-Spdy: h2
www.glocalmanagers.com/wp-content/plugins/devvn-image-hotspot/frontend/js/jquery.powertip.min.js?ver=1.2.0
107.180.50.176200 OK 5.1 kB URL HTTP/2 www.glocalmanagers.com/wp-content/plugins/devvn-image-hotspot/frontend/js/jquery.powertip.min.js?ver=1.2.0
IP 107.180.50.176:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (13012)
Hash e1babb57a38a9e50892a8e8631624849
9364b3eeae96af9348843bbdf91af051e6988722
4bb99c9f133c7235db3051c71cfcd4d067e7232220dca9f23194b4ee56d54be0
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/plugins/devvn-image-hotspot/frontend/js/jquery.powertip.min.js?ver=1.2.0 HTTP/1.1
Host: www.glocalmanagers.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.glocalmanagers.com/es/inicio/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 03 May 2022 22:31:11 GMT
etag: "33ce-5de2310d269c0-gzip"
accept-ranges: bytes
cache-control: max-age=31536000
expires: Sat, 21 Oct 2023 22:04:38 GMT
vary: Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
content-length: 5096
content-type: application/x-javascript
date: Fri, 21 Oct 2022 22:04:38 GMT
server: Apache
X-Firefox-Spdy: h2
www.glocalmanagers.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
107.180.50.176200 OK 4.2 kB URL HTTP/2 www.glocalmanagers.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP 107.180.50.176:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (11126)
Hash 5629711d7fdd5b28441bac39b851299f
4e0bf2b7383097f7c352023a1b1b1b48a50356b6
44c444309c7a6c05ff4a9bc198bed9e9596bedb5658637c85689c9a471dcdd16
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: www.glocalmanagers.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.glocalmanagers.com/es/inicio/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 18 Nov 2020 09:06:06 GMT
etag: "2bd8-5b45debe27b80-gzip"
accept-ranges: bytes
cache-control: max-age=31536000
expires: Sat, 21 Oct 2023 22:04:38 GMT
vary: Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
content-length: 4169
content-type: application/x-javascript
date: Fri, 21 Oct 2022 22:04:38 GMT
server: Apache
X-Firefox-Spdy: h2
www.google.com/recaptcha/api.js?render=explicit&ver=3.7.3
142.250.74.164200 OK 556 B URL HTTP/2 www.google.com/recaptcha/api.js?render=explicit&ver=3.7.3
IP 142.250.74.164:0
File type ASCII text, with very long lines (852), with no line terminators
Hash eaf37a00dc94ba6c8788cfeae9013b6b
c89382b233cb5a2637a989324cb918b7c90069a0
b16803cb43f692e9eaa889d278081234019b5b6edac051a92f47cd384195159f
GET /recaptcha/api.js?render=explicit&ver=3.7.3 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.glocalmanagers.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
expires: Fri, 21 Oct 2022 22:04:39 GMT
date: Fri, 21 Oct 2022 22:04:39 GMT
cache-control: private, max-age=300
content-type: text/javascript; charset=UTF-8
cross-origin-resource-policy: cross-origin
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 556
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd0e33502-97b5-4327-985f-813c8107dbb8.jpeg
34.120.237.76200 OK 4.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd0e33502-97b5-4327-985f-813c8107dbb8.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b772335d96ac97ec5b28623955fb026d
7a19bf011359ad768b05dd79cec66787d2dc59fd
c13e7384880ec6fe431f3627eb61529c7fdb934cf0b021b4586ff2dc1c2e1244
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd0e33502-97b5-4327-985f-813c8107dbb8.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4786
x-amzn-requestid: 263fe384-2385-48c4-b250-1708a3cdd710
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: aUsKKFOYoAMF92Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6351c0a7-46dfbb85286685373b0b5e77;Sampled=0
x-amzn-remapped-date: Thu, 20 Oct 2022 21:41:59 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: GhDYxREyQelTVPFx_xFWCv_dkPXdLcN93vamcyT_aXSp7r3iW0L-ug==
via: 1.1 00f0a41f749793b9dd653153037c957e.cloudfront.net (CloudFront), 1.1 2ab6211e66998c8b58132661a7e3cade.cloudfront.net (CloudFront), 1.1 google
date: Fri, 21 Oct 2022 21:52:58 GMT
age: 701
etag: "7a19bf011359ad768b05dd79cec66787d2dc59fd"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5eaba338-753d-49fa-b65c-70aa4d08ec7d.jpeg
34.120.237.76200 OK 6.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5eaba338-753d-49fa-b65c-70aa4d08ec7d.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 41720951bc9f58ea936fb65b472ef05a
b8739209bdacc59cbf87b49024f73650a9a0f113
9dd1c174c5a45cf4167c4c20752c2575ab4280f869f49dd9056907c9521afe36
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5eaba338-753d-49fa-b65c-70aa4d08ec7d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6730
x-amzn-requestid: 97d867bc-a398-4b2b-8dda-2497a105845e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: aSsAnEP3oAMF2lw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6350f39d-3f56509c395ff64a396b5706;Sampled=0
x-amzn-remapped-date: Thu, 20 Oct 2022 07:07:09 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: 92JemdQ9iP0ZStmalSRrraqZJIAsZdDsaXdVwu-Q4PYnIBJ_IfcBag==
via: 1.1 c7c3cdef911c9ee3c1a83a78f425dc5a.cloudfront.net (CloudFront), 1.1 ead78c395f4bede3ec6cd7ea180e3d3a.cloudfront.net (CloudFront), 1.1 google
date: Fri, 21 Oct 2022 06:21:47 GMT
age: 56572
etag: "b8739209bdacc59cbf87b49024f73650a9a0f113"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
www.glocalmanagers.com/wp-content/plugins/elementor/assets/lib/font-awesome/js/v4-shims.min.js?ver=3.7.8
107.180.50.176200 OK 4.2 kB URL HTTP/2 www.glocalmanagers.com/wp-content/plugins/elementor/assets/lib/font-awesome/js/v4-shims.min.js?ver=3.7.8
IP 107.180.50.176:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (14869)
Hash 1fcdd9935a66511c3b8069495af248e3
b0e375ac95b547b3bb6ce74cd1bcc505ffc2281d
4a741209fc122872cb5ae018a5870d70848a616fa98eb4289ad78cec986ec282
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/plugins/elementor/assets/lib/font-awesome/js/v4-shims.min.js?ver=3.7.8 HTTP/1.1
Host: www.glocalmanagers.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.glocalmanagers.com/es/inicio/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 11 Oct 2022 14:55:50 GMT
etag: "3acf-5eac378d43326-gzip"
accept-ranges: bytes
cache-control: max-age=31536000
expires: Sat, 21 Oct 2023 22:04:38 GMT
vary: Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
content-length: 4205
content-type: application/x-javascript
date: Fri, 21 Oct 2022 22:04:38 GMT
server: Apache
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4f52601f-0c98-4537-a72e-d72f9dbe4167.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4f52601f-0c98-4537-a72e-d72f9dbe4167.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 6bd5e942443ffd011faf10dc88d92081
beff4ae9e24599addce8a961c955788045c56645
2c59d984971e73d497975032c23700b5602fccf403f4683a8047f5f42d4e261f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4f52601f-0c98-4537-a72e-d72f9dbe4167.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10973
x-amzn-requestid: 081470ca-0107-4052-be55-9c713105bb27
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: aUr-TEKPoAMFZfQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6351c05b-17199f8c0fc0fb7443a902f1;Sampled=0
x-amzn-remapped-date: Thu, 20 Oct 2022 21:40:43 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: C8HRcZnP8nrEFWU_vn1olwnkXdvlqUu2_w0YIED9MSXDtO3U2mKO-w==
via: 1.1 8dbfaf7df256a75768461d934659b6b2.cloudfront.net (CloudFront), 1.1 5397b304713f6301c7c94ac084b6ed08.cloudfront.net (CloudFront), 1.1 google
date: Thu, 20 Oct 2022 22:36:05 GMT
age: 84514
etag: "beff4ae9e24599addce8a961c955788045c56645"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
www.glocalmanagers.com/wp-content/plugins/exclusive-addons-for-elementor/assets/vendor/js/jquery.sticky-sidebar.js?ver=2.5.8
107.180.50.176200 OK 6.0 kB URL HTTP/2 www.glocalmanagers.com/wp-content/plugins/exclusive-addons-for-elementor/assets/vendor/js/jquery.sticky-sidebar.js?ver=2.5.8
IP 107.180.50.176:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
Hash e3818075a36c18f1043457cc3f1feccb
983e7fef577ff27cacb292da8612bd8165e42417
cbf576af694f94d86cc73cabc08ea3f1029f56ea208b673af841b824d5e4e810
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/plugins/exclusive-addons-for-elementor/assets/vendor/js/jquery.sticky-sidebar.js?ver=2.5.8 HTTP/1.1
Host: www.glocalmanagers.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.glocalmanagers.com/es/inicio/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 11 Oct 2022 14:56:30 GMT
etag: "69d8-5eac37b37edbc-gzip"
accept-ranges: bytes
cache-control: max-age=31536000
expires: Sat, 21 Oct 2023 22:04:38 GMT
vary: Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
content-length: 5982
content-type: application/x-javascript
date: Fri, 21 Oct 2022 22:04:38 GMT
server: Apache
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb97a147f-f3d0-45e2-ab3e-cd90d0626589.jpeg
34.120.237.76200 OK 6.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb97a147f-f3d0-45e2-ab3e-cd90d0626589.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 1c6ab9a31e082a0c0eaab2a0f526495a
c30e9954dcef66d4f14ac8618ebf2a1da0b3e12a
ca3a602c8af7b3e87957e54910663ea2bb72d008e14719af0f9fd7bd1a949f3e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb97a147f-f3d0-45e2-ab3e-cd90d0626589.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6551
x-amzn-requestid: 4deffe4d-e687-436e-938c-f8128bb84376
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Zql_MG5QoAMFahg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6340e9fa-66d4e2210fda5a80155f2466;Sampled=0
x-amzn-remapped-date: Sat, 08 Oct 2022 03:09:46 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: tUzBA20lqAqZvWHt_SJ2nSXqp1suoKPRgxDN99w33CdoKY0vPspg0A==
via: 1.1 86b676273517904f44af31586adb06ae.cloudfront.net (CloudFront), 1.1 707e733794d52100fde0ab21bf0b1462.cloudfront.net (CloudFront), 1.1 google
date: Fri, 21 Oct 2022 07:10:48 GMT
age: 53631
etag: "c30e9954dcef66d4f14ac8618ebf2a1da0b3e12a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
www.glocalmanagers.com/wp-content/uploads/elementor/css/post-2054.css?ver=1665510143
107.180.50.176200 OK 11 kB URL HTTP/2 www.glocalmanagers.com/wp-content/uploads/elementor/css/post-2054.css?ver=1665510143
IP 107.180.50.176:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (42670)
Hash 65a283c6627b04a098041e1e96958432
00da5a819df48a1ff20db997161229fcc0de3b51
8bbc65cd64d3a4af224ead1d821425ec8caaf3ff32735b9999095ba0d1dae540
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/uploads/elementor/css/post-2054.css?ver=1665510143 HTTP/1.1
Host: www.glocalmanagers.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.glocalmanagers.com/es/inicio/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 11 Oct 2022 17:42:23 GMT
etag: "22e2d-5eac5cc7c83df-gzip"
accept-ranges: bytes
cache-control: max-age=31536000
expires: Sat, 21 Oct 2023 22:04:38 GMT
vary: Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
content-length: 10786
content-type: text/css
date: Fri, 21 Oct 2022 22:04:38 GMT
server: Apache
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6e67413c-6e4d-487c-807f-ff21a90aa792.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6e67413c-6e4d-487c-807f-ff21a90aa792.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 00f8ff57c0d15e1ce75a788b91dc0bd3
46445de659e1aa0623c7666c98b5f642ffeff89d
95eb2c3d2ab4643affffd59887814a013edacba9f73c633399905d9d0d397b1d
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6e67413c-6e4d-487c-807f-ff21a90aa792.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10799
x-amzn-requestid: 9b27131b-a0ca-426d-939c-78de0beac51c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: aUsKLF9hIAMF97g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6351c0a7-76bf3c356f04a6a672e2f7a1;Sampled=0
x-amzn-remapped-date: Thu, 20 Oct 2022 21:41:59 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 96xd1B3QDqywkAxLGVMbF6P4UJ_gweEBpEc8fcCwUzVhTG6GWA66FA==
via: 1.1 d83ae0e1ba84e92e58bc1efc23a0c652.cloudfront.net (CloudFront), 1.1 556b99c6be8d7078b9f067347c62df6a.cloudfront.net (CloudFront), 1.1 google
date: Fri, 21 Oct 2022 21:52:51 GMT
age: 708
etag: "46445de659e1aa0623c7666c98b5f642ffeff89d"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
www.glocalmanagers.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/all.min.css?ver=3.7.8
107.180.50.176200 OK 13 kB URL HTTP/2 www.glocalmanagers.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/all.min.css?ver=3.7.8
IP 107.180.50.176:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (59158)
Hash d7913fc87c4606f82b4ee77a8d47fc2f
62a54acf7535ae53425b44dadfe5fdabf3d8300a
bb05c88bb0b82e2f14f1efb94b4c3511292f74c3bb7cb0b104d300a42a49492f
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/all.min.css?ver=3.7.8 HTTP/1.1
Host: www.glocalmanagers.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.glocalmanagers.com/es/inicio/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 11 Oct 2022 14:55:46 GMT
etag: "e7d0-5eac378975504-gzip"
accept-ranges: bytes
cache-control: max-age=31536000
expires: Sat, 21 Oct 2023 22:04:38 GMT
vary: Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
content-length: 12869
content-type: text/css
date: Fri, 21 Oct 2022 22:04:38 GMT
server: Apache
X-Firefox-Spdy: h2
www.glocalmanagers.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/fontawesome.min.css?ver=5.15.3
107.180.50.176200 OK 13 kB URL HTTP/2 www.glocalmanagers.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/fontawesome.min.css?ver=5.15.3
IP 107.180.50.176:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (57726)
Hash 991d00cd7cb62d50a29295522d554f1f
e128a5238f141e9c4da1979716108d858340fe03
b8fcb61816168fc6a7ee01bb09fa4378398838dc6e4f49dc411872876355d113
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/fontawesome.min.css?ver=5.15.3 HTTP/1.1
Host: www.glocalmanagers.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.glocalmanagers.com/es/inicio/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 11 Oct 2022 14:55:46 GMT
etag: "e238-5eac37897511c-gzip"
accept-ranges: bytes
cache-control: max-age=31536000
expires: Sat, 21 Oct 2023 22:04:38 GMT
vary: Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
content-length: 12582
content-type: text/css
date: Fri, 21 Oct 2022 22:04:38 GMT
server: Apache
X-Firefox-Spdy: h2
www.glocalmanagers.com/wp-content/plugins/elementskit-lite/modules/elementskit-icon-pack/assets/css/ekiticons.css?ver=2.7.3
107.180.50.176200 OK 13 kB URL HTTP/2 www.glocalmanagers.com/wp-content/plugins/elementskit-lite/modules/elementskit-icon-pack/assets/css/ekiticons.css?ver=2.7.3
IP 107.180.50.176:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (65536), with no line terminators
Hash 1eb36b9b3e86dcd6b3ac37cd456ae13b
ec155435b21a22616dfc8e5e4c5131a993f6543b
ab4a8c97e29bb124fbf273eec3a1aaa5c485f48ca5d80bd88fc1f5e7609cc79d
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/plugins/elementskit-lite/modules/elementskit-icon-pack/assets/css/ekiticons.css?ver=2.7.3 HTTP/1.1
Host: www.glocalmanagers.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.glocalmanagers.com/es/inicio/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 18 Oct 2022 18:55:27 GMT
etag: "1dea3-5eb53a2b0edf0-gzip"
accept-ranges: bytes
cache-control: max-age=31536000
expires: Sat, 21 Oct 2023 22:04:38 GMT
vary: Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
content-length: 12876
content-type: text/css
date: Fri, 21 Oct 2022 22:04:38 GMT
server: Apache
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F66bcc767-1c09-4b79-aee1-3917407a2700.jpeg
34.120.237.76200 OK 9.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F66bcc767-1c09-4b79-aee1-3917407a2700.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d369f8641d3489521afd62e112136f5b
088a3290733195efeb1d79dcc995c22b603bece0
b18601499cbb7bbcc1eaa464cec12c0287f8fab52a89e97973bd78fcb26ea918
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F66bcc767-1c09-4b79-aee1-3917407a2700.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9195
x-amzn-requestid: e40418b8-2272-44a3-83d6-9465798793ad
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: aUsKLEk4oAMFsSQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6351c0a7-34994aca1e13dcab306bf1a4;Sampled=0
x-amzn-remapped-date: Thu, 20 Oct 2022 21:41:59 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: HiqVKy3h8lRNMBBm6hwNCOc2l63juo5dMhkJbFSXW6jmHtwdueuq5Q==
via: 1.1 010c0731b9775a983eceaec0f5fa6a2e.cloudfront.net (CloudFront), 1.1 2ab6211e66998c8b58132661a7e3cade.cloudfront.net (CloudFront), 1.1 google
date: Fri, 21 Oct 2022 21:52:48 GMT
age: 711
etag: "088a3290733195efeb1d79dcc995c22b603bece0"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
www.glocalmanagers.com/wp-content/plugins/elementor/assets/css/frontend.min.css?ver=3.7.8
107.180.50.176200 OK 20 kB URL HTTP/2 www.glocalmanagers.com/wp-content/plugins/elementor/assets/css/frontend.min.css?ver=3.7.8
IP 107.180.50.176:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (65497)
Hash 3ec4cec0224ecb4e607832d0eb21c3d0
5063f1c2afa88465a8898c373415429404eaa03f
a408cdfe48ed889f8f6cee2692c74d920421936cfa8613898a6c03b1eae55b39
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/plugins/elementor/assets/css/frontend.min.css?ver=3.7.8 HTTP/1.1
Host: www.glocalmanagers.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.glocalmanagers.com/es/inicio/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 11 Oct 2022 14:55:45 GMT
etag: "28726-5eac3788fd321-gzip"
accept-ranges: bytes
cache-control: max-age=31536000
expires: Sat, 21 Oct 2023 22:04:38 GMT
vary: Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
content-length: 20221
content-type: text/css
date: Fri, 21 Oct 2022 22:04:38 GMT
server: Apache
X-Firefox-Spdy: h2
www.glocalmanagers.com/wp-content/plugins/honeypot/includes/js/wpa.js?ver=2.0.2
107.180.50.176200 OK 1.2 kB URL HTTP/2 www.glocalmanagers.com/wp-content/plugins/honeypot/includes/js/wpa.js?ver=2.0.2
IP 107.180.50.176:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (379), with CRLF line terminators
Hash 117b81bc5820ec26d9846e18a0b00628
38992226ec4138fb7882f2ed3dd07d79533b5a87
66d0f056a1ba9bb3c266d2634d20b26fb6ec2d8a146a1d68ca0546f40a46eede
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/plugins/honeypot/includes/js/wpa.js?ver=2.0.2 HTTP/1.1
Host: www.glocalmanagers.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.glocalmanagers.com/es/inicio/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 18 Oct 2022 18:55:53 GMT
etag: "d7a-5eb53a4331ddd-gzip"
accept-ranges: bytes
cache-control: max-age=31536000
expires: Sat, 21 Oct 2023 22:04:38 GMT
vary: Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
content-length: 1210
content-type: application/x-javascript
date: Fri, 21 Oct 2022 22:04:38 GMT
server: Apache
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 94ee541bb392e5675c1e24c94c197f8b
bce18b05a24f5e2c6743cbbe849a733091586176
82f791c205847646216d72b4ce65bc3587ca69d1da17a3a2afb477640822c4dc
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 21 Oct 2022 22:04:39 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.glocalmanagers.com/wp-content/plugins/elementskit-lite/libs/framework/assets/js/frontend-script.js?ver=2.7.3
107.180.50.176200 OK 41 B URL HTTP/2 www.glocalmanagers.com/wp-content/plugins/elementskit-lite/libs/framework/assets/js/frontend-script.js?ver=2.7.3
IP 107.180.50.176:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with no line terminators
Hash faa0d9bf9223de717808e9ad68d53780
6c3f1a3bc3f5e3720caea8b1175c3b4db613d5cb
d9d9c497b64dae215faa480b40b4d6885e351691ecd64272fec0bc406ec7517d
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/plugins/elementskit-lite/libs/framework/assets/js/frontend-script.js?ver=2.7.3 HTTP/1.1
Host: www.glocalmanagers.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.glocalmanagers.com/es/inicio/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 18 Oct 2022 18:55:27 GMT
etag: "28-5eb53a2b09030-br"
accept-ranges: bytes
cache-control: max-age=31536000
expires: Sat, 21 Oct 2023 22:04:38 GMT
vary: Accept-Encoding
content-encoding: br
referrer-policy: no-referrer-when-downgrade
content-length: 41
content-type: application/x-javascript
date: Fri, 21 Oct 2022 22:04:38 GMT
server: Apache
X-Firefox-Spdy: h2
www.glocalmanagers.com/wp-content/plugins/elementor/assets/lib/jquery-numerator/jquery-numerator.min.js?ver=0.2.1
107.180.50.176200 OK 740 B URL HTTP/2 www.glocalmanagers.com/wp-content/plugins/elementor/assets/lib/jquery-numerator/jquery-numerator.min.js?ver=0.2.1
IP 107.180.50.176:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (1801), with no line terminators
Hash bd12ee216064ef934647790b1b00fb8e
3e1641ca3a862fbc43f270b0196fb1e1eb55adfa
511d1d3b63a21f0fac62d77bfb6b3cb3cd354b4546318736b87a7e08c7b5b9ef
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/plugins/elementor/assets/lib/jquery-numerator/jquery-numerator.min.js?ver=0.2.1 HTTP/1.1
Host: www.glocalmanagers.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.glocalmanagers.com/es/inicio/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 11 Oct 2022 14:55:46 GMT
etag: "709-5eac378973d94-gzip"
accept-ranges: bytes
cache-control: max-age=31536000
expires: Sat, 21 Oct 2023 22:04:38 GMT
vary: Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
content-length: 740
content-type: application/x-javascript
date: Fri, 21 Oct 2022 22:04:38 GMT
server: Apache
X-Firefox-Spdy: h2
www.glocalmanagers.com/wp-content/plugins/devvn-image-hotspot/frontend/js/maps_points.js?ver=1.2.2
107.180.50.176200 OK 1.4 kB URL HTTP/2 www.glocalmanagers.com/wp-content/plugins/devvn-image-hotspot/frontend/js/maps_points.js?ver=1.2.2
IP 107.180.50.176:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (2291), with CRLF line terminators
Hash 6c4897e54a4ad1c29534d074d63288ec
cb2c4757a5c342c94bd4bcff16e09aecff50e2fb
e66deed4073fe62ecb0d7ae710eec05e25c9d54700102073032bbd229d9d40cf
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/plugins/devvn-image-hotspot/frontend/js/maps_points.js?ver=1.2.2 HTTP/1.1
Host: www.glocalmanagers.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.glocalmanagers.com/es/inicio/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 03 May 2022 22:31:11 GMT
etag: "b5d-5de2310d269c0-gzip"
accept-ranges: bytes
cache-control: max-age=31536000
expires: Sat, 21 Oct 2023 22:04:38 GMT
vary: Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
content-length: 1440
content-type: application/x-javascript
date: Fri, 21 Oct 2022 22:04:38 GMT
server: Apache
X-Firefox-Spdy: h2
www.glocalmanagers.com/wp-content/plugins/pro-elements/assets/js/webpack-pro.runtime.min.js?ver=3.7.3
107.180.50.176200 OK 2.4 kB URL HTTP/2 www.glocalmanagers.com/wp-content/plugins/pro-elements/assets/js/webpack-pro.runtime.min.js?ver=3.7.3
IP 107.180.50.176:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (5141)
Hash 6d8e425d4a1d3aa406f4caa53e05afcf
08d3e55328c921576239ed827bdcd8bd13112e99
a072ecaf48dc40b5bd5e2612a6903c2f1fb510170a1fd80dc6dd38e18886d4c3
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/plugins/pro-elements/assets/js/webpack-pro.runtime.min.js?ver=3.7.3 HTTP/1.1
Host: www.glocalmanagers.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.glocalmanagers.com/es/inicio/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 11 Oct 2022 17:25:33 GMT
etag: "143f-5eac59046f7ec-gzip"
accept-ranges: bytes
cache-control: max-age=31536000
expires: Sat, 21 Oct 2023 22:04:38 GMT
vary: Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
content-length: 2367
content-type: application/x-javascript
date: Fri, 21 Oct 2022 22:04:38 GMT
server: Apache
X-Firefox-Spdy: h2
www.glocalmanagers.com/wp-content/plugins/elementor/assets/lib/animations/animations.min.css?ver=3.7.8
107.180.50.176200 OK 2.6 kB URL HTTP/2 www.glocalmanagers.com/wp-content/plugins/elementor/assets/lib/animations/animations.min.css?ver=3.7.8
IP 107.180.50.176:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (10019)
Hash 0ea81c35141c6a4692506e4fe8d36edb
392c5f96995e66d74c27ed5a42f93169c2f32d18
b7488fd21ad73e483cdcaf42097ea7787ffe0616477e29a537f53f6064e321ab
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/plugins/elementor/assets/lib/animations/animations.min.css?ver=3.7.8 HTTP/1.1
Host: www.glocalmanagers.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.glocalmanagers.com/es/inicio/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 11 Oct 2022 14:55:54 GMT
etag: "4824-5eac37910e268-gzip"
accept-ranges: bytes
cache-control: max-age=31536000
expires: Sat, 21 Oct 2023 22:04:38 GMT
vary: Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
content-length: 2592
content-type: text/css
date: Fri, 21 Oct 2022 22:04:38 GMT
server: Apache
X-Firefox-Spdy: h2
www.glocalmanagers.com/wp-content/themes/astra/assets/js/minified/frontend.min.js?ver=3.9.1
107.180.50.176200 OK 4.1 kB URL HTTP/2 www.glocalmanagers.com/wp-content/themes/astra/assets/js/minified/frontend.min.js?ver=3.9.1
IP 107.180.50.176:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (16772), with no line terminators
Hash e0c9a631dece782e95b9dc769ceb6d56
be01319e0fe08462de55cddce03a139c85be5301
79c8c7fcd1a8857ad201656e9c05b6fbe0d7eb755a66b5e762ca1731e612acee
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/themes/astra/assets/js/minified/frontend.min.js?ver=3.9.1 HTTP/1.1
Host: www.glocalmanagers.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.glocalmanagers.com/es/inicio/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 11 Aug 2022 20:03:08 GMT
etag: "4184-5e5fca77e4d1d-gzip"
accept-ranges: bytes
cache-control: max-age=31536000
expires: Sat, 21 Oct 2023 22:04:38 GMT
vary: Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
content-length: 4058
content-type: application/x-javascript
date: Fri, 21 Oct 2022 22:04:38 GMT
server: Apache
X-Firefox-Spdy: h2
www.glocalmanagers.com/wp-includes/js/imagesloaded.min.js?ver=4.1.4
107.180.50.176200 OK 1.8 kB URL HTTP/2 www.glocalmanagers.com/wp-includes/js/imagesloaded.min.js?ver=4.1.4
IP 107.180.50.176:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (5477)
Hash 951ae46ca55ec7b0e401e2074bdf8b54
64bbbdc28a351b26cab9c230e134ca8eb4d4f83e
fd5d4c623e9d68551114b2a1303584b6792e592e864d4416145904fe8b9edd91
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-includes/js/imagesloaded.min.js?ver=4.1.4 HTTP/1.1
Host: www.glocalmanagers.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.glocalmanagers.com/es/inicio/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 13 Jun 2020 18:53:27 GMT
etag: "15fd-5a7fbb57c37c0-gzip"
accept-ranges: bytes
cache-control: max-age=31536000
expires: Sat, 21 Oct 2023 22:04:38 GMT
vary: Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
content-length: 1834
content-type: application/x-javascript
date: Fri, 21 Oct 2022 22:04:38 GMT
server: Apache
X-Firefox-Spdy: h2
www.glocalmanagers.com/wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.7.8
107.180.50.176200 OK 2.2 kB URL HTTP/2 www.glocalmanagers.com/wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.7.8
IP 107.180.50.176:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (4918)
Hash d0e4eb53954c6912b6bd9ec65c7077c7
914cff98ed617cd6147417b846c3de04fb551fc8
d81efc68c2e078e814a9753404ae8bc87f7eed14de224c2c42f426d20ef46bb6
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.7.8 HTTP/1.1
Host: www.glocalmanagers.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.glocalmanagers.com/es/inicio/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 11 Oct 2022 14:55:57 GMT
etag: "135d-5eac3794832a8-gzip"
accept-ranges: bytes
cache-control: max-age=31536000
expires: Sat, 21 Oct 2023 22:04:38 GMT
vary: Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
content-length: 2193
content-type: application/x-javascript
date: Fri, 21 Oct 2022 22:04:38 GMT
server: Apache
X-Firefox-Spdy: h2
www.glocalmanagers.com/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9
107.180.50.176200 OK 2.5 kB URL HTTP/2 www.glocalmanagers.com/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9
IP 107.180.50.176:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (6475), with no line terminators
Hash 27cbbd0a9d7c5ad9402118c4afc36035
7659d08a005f5ecfa6c779e3cda45c30007fd059
ebc771d0af626966e38535357861fab0090e0bd7ff346cbe3c7ffdde1683809f
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9 HTTP/1.1
Host: www.glocalmanagers.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.glocalmanagers.com/es/inicio/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 11 Apr 2022 12:04:30 GMT
etag: "194b-5dc5fbf1e6f80-gzip"
accept-ranges: bytes
cache-control: max-age=31536000
expires: Sat, 21 Oct 2023 22:04:38 GMT
vary: Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
content-length: 2457
content-type: application/x-javascript
date: Fri, 21 Oct 2022 22:04:38 GMT
server: Apache
X-Firefox-Spdy: h2
www.glocalmanagers.com/wp-includes/js/dist/hooks.min.js?ver=c6d64f2cb8f5c6bb49caca37f8828ce3
107.180.50.176200 OK 1.7 kB URL HTTP/2 www.glocalmanagers.com/wp-includes/js/dist/hooks.min.js?ver=c6d64f2cb8f5c6bb49caca37f8828ce3
IP 107.180.50.176:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (4875)
Hash 320b86bb1a9ce650a5e3553b2bb1c430
c56e8668b398641ed5cdcfbd8a8eba7d631cdb9c
c9ebbb8d122c6be3880d18172abfe308bb07db900689484fa765a73b8b20b3ec
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-includes/js/dist/hooks.min.js?ver=c6d64f2cb8f5c6bb49caca37f8828ce3 HTTP/1.1
Host: www.glocalmanagers.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.glocalmanagers.com/es/inicio/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 11 Apr 2022 12:04:30 GMT
etag: "132e-5dc5fbf1e6f80-gzip"
accept-ranges: bytes
cache-control: max-age=31536000
expires: Sat, 21 Oct 2023 22:04:38 GMT
vary: Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
content-length: 1661
content-type: application/x-javascript
date: Fri, 21 Oct 2022 22:04:38 GMT
server: Apache
X-Firefox-Spdy: h2
www.glocalmanagers.com/wp-content/plugins/exclusive-addons-for-elementor/assets/js/exad-scripts.min.js?ver=2.5.8
107.180.50.176200 OK 6.1 kB URL HTTP/2 www.glocalmanagers.com/wp-content/plugins/exclusive-addons-for-elementor/assets/js/exad-scripts.min.js?ver=2.5.8
IP 107.180.50.176:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (26378), with no line terminators
Hash 989116ff58d7f516208c28249822b799
89ed5f6e369443bd1e3c1fe89acdb9933102046a
bcbd5d0757e584713c03d2c99ee71a6d85d823091d350d55d6e3ad047079bc10
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/plugins/exclusive-addons-for-elementor/assets/js/exad-scripts.min.js?ver=2.5.8 HTTP/1.1
Host: www.glocalmanagers.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.glocalmanagers.com/es/inicio/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 11 Oct 2022 14:56:39 GMT
etag: "670a-5eac37bbd7d5d-gzip"
accept-ranges: bytes
cache-control: max-age=31536000
expires: Sat, 21 Oct 2023 22:04:38 GMT
vary: Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
content-length: 6102
content-type: application/x-javascript
date: Fri, 21 Oct 2022 22:04:38 GMT
server: Apache
X-Firefox-Spdy: h2
www.glocalmanagers.com/wp-content/plugins/elementskit-lite/widgets/init/assets/js/animate-circle.js?ver=2.7.3
107.180.50.176200 OK 442 B URL HTTP/2 www.glocalmanagers.com/wp-content/plugins/elementskit-lite/widgets/init/assets/js/animate-circle.js?ver=2.7.3
IP 107.180.50.176:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (810), with no line terminators
Hash b96c7d958b2c4a3ff7e92608615daeb0
6e95b60a83d06479921cefd745c4dd058842604e
5176a7109dc14142199bbc99ce78c5c6536812d06562b1d300b283bd26849d2f
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/plugins/elementskit-lite/widgets/init/assets/js/animate-circle.js?ver=2.7.3 HTTP/1.1
Host: www.glocalmanagers.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.glocalmanagers.com/es/inicio/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 18 Oct 2022 18:55:32 GMT
etag: "32a-5eb53a2f0603b-gzip"
accept-ranges: bytes
cache-control: max-age=31536000
expires: Sat, 21 Oct 2023 22:04:38 GMT
vary: Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
content-length: 442
content-type: application/x-javascript
date: Fri, 21 Oct 2022 22:04:38 GMT
server: Apache
X-Firefox-Spdy: h2
www.glocalmanagers.com/wp-content/plugins/elementor/assets/lib/share-link/share-link.min.js?ver=3.7.8
107.180.50.176200 OK 1.1 kB URL HTTP/2 www.glocalmanagers.com/wp-content/plugins/elementor/assets/lib/share-link/share-link.min.js?ver=3.7.8
IP 107.180.50.176:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (2620), with no line terminators
Hash 366a9c35bbef9fea7021f6b1b56cf8d0
18feab78c61c6e8261db364d6681a9633041e837
b1108a264198109bc4e692e30e2dc7c148625fa9a3dce15477fc7618669c7a6f
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/plugins/elementor/assets/lib/share-link/share-link.min.js?ver=3.7.8 HTTP/1.1
Host: www.glocalmanagers.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.glocalmanagers.com/es/inicio/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 11 Oct 2022 14:55:46 GMT
etag: "a3c-5eac378973d94-gzip"
accept-ranges: bytes
cache-control: max-age=31536000
expires: Sat, 21 Oct 2023 22:04:38 GMT
vary: Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
content-length: 1139
content-type: application/x-javascript
date: Fri, 21 Oct 2022 22:04:38 GMT
server: Apache
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 794a6d2df00fc15e8b4ed6ff4992525e
f8d67c7fd506709d7232298859fe2b3daf374f29
02d38690754b5d99178d576fe6df6c1ca881a2bbd806a75c633c371fac0221da
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 21 Oct 2022 22:04:39 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.glocalmanagers.com/wp-content/plugins/pro-elements/assets/lib/sticky/jquery.sticky.min.js?ver=3.7.3
107.180.50.176200 OK 1.6 kB URL HTTP/2 www.glocalmanagers.com/wp-content/plugins/pro-elements/assets/lib/sticky/jquery.sticky.min.js?ver=3.7.3
IP 107.180.50.176:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (3703)
Hash dbb7b7eb1f27ef159dcd3e20d95d0ccf
fef3645e4691734fee4bac5a58c1d5d70acd6a1b
dd5eb456aa6a6ccad9a7eebd497a816aa22f73e5007a507ff8929192cd7d7c8e
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/plugins/pro-elements/assets/lib/sticky/jquery.sticky.min.js?ver=3.7.3 HTTP/1.1
Host: www.glocalmanagers.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.glocalmanagers.com/es/inicio/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 11 Oct 2022 17:25:29 GMT
etag: "e78-5eac590083171-gzip"
accept-ranges: bytes
cache-control: max-age=31536000
expires: Sat, 21 Oct 2023 22:04:38 GMT
vary: Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
content-length: 1586
content-type: application/x-javascript
date: Fri, 21 Oct 2022 22:04:38 GMT
server: Apache
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 1b0cd7fce51616614b5ebb265d02c2f7
6748d7df7c347bbe06afb2155fff3bbc8bf50eb0
d41beb047830bdacb772b75123c39906db8edcd49fdc8c9a00258a2556efd1c9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 21 Oct 2022 22:04:39 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.glocalmanagers.com/wp-includes/js/dist/i18n.min.js?ver=ebee46757c6a411e38fd079a7ac71d94
107.180.50.176200 OK 3.9 kB URL HTTP/2 www.glocalmanagers.com/wp-includes/js/dist/i18n.min.js?ver=ebee46757c6a411e38fd079a7ac71d94
IP 107.180.50.176:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
Hash ca0cf10a1d933e4262c732da8f9008c1
d6fdc041e650cf096841671884db8854490dba72
fbd145cb64d3185e42b8a3f6fff22b3e4cc3550934b63a4f874c21c44f920702
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-includes/js/dist/i18n.min.js?ver=ebee46757c6a411e38fd079a7ac71d94 HTTP/1.1
Host: www.glocalmanagers.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.glocalmanagers.com/es/inicio/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 12 Apr 2022 15:12:47 GMT
etag: "27ee-5dc767e5059c0-gzip"
accept-ranges: bytes
cache-control: max-age=31536000
expires: Sat, 21 Oct 2023 22:04:38 GMT
vary: Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
content-length: 3865
content-type: application/x-javascript
date: Fri, 21 Oct 2022 22:04:38 GMT
server: Apache
X-Firefox-Spdy: h2
www.glocalmanagers.com/wp-content/plugins/elementor/assets/lib/dialog/dialog.min.js?ver=4.9.0
107.180.50.176200 OK 3.4 kB URL HTTP/2 www.glocalmanagers.com/wp-content/plugins/elementor/assets/lib/dialog/dialog.min.js?ver=4.9.0
IP 107.180.50.176:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (10544)
Hash 88f71137b2a89a53df46cdb4deeb4e3d
426e12f0e8712db20afd2c54e77e1384074f3181
591a8b7a859de8af878c56e1ec72384596285f768387e9958f0a0afe53d89428
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/plugins/elementor/assets/lib/dialog/dialog.min.js?ver=4.9.0 HTTP/1.1
Host: www.glocalmanagers.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.glocalmanagers.com/es/inicio/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 11 Oct 2022 14:55:46 GMT
etag: "29ba-5eac37897417c-gzip"
accept-ranges: bytes
cache-control: max-age=31536000
expires: Sat, 21 Oct 2023 22:04:38 GMT
vary: Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
content-length: 3446
content-type: application/x-javascript
date: Fri, 21 Oct 2022 22:04:38 GMT
server: Apache
X-Firefox-Spdy: h2
www.glocalmanagers.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
107.180.50.176200 OK 31 kB URL HTTP/2 www.glocalmanagers.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
IP 107.180.50.176:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (65447)
Hash 9640915738503451aa21181699feab5b
c053eaf36ef0da96619706b3abda326305063bd6
f8834e669ad1f4039442c26aaa373ec39c35a233b9786d374fc3f670f16b0adc
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.0 HTTP/1.1
Host: www.glocalmanagers.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.glocalmanagers.com/es/inicio/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 10 Mar 2021 15:07:24 GMT
etag: "15db1-5bd3006388300-gzip"
accept-ranges: bytes
cache-control: max-age=31536000
expires: Sat, 21 Oct 2023 22:04:38 GMT
vary: Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
content-length: 30908
content-type: application/x-javascript
date: Fri, 21 Oct 2022 22:04:38 GMT
server: Apache
X-Firefox-Spdy: h2
www.glocalmanagers.com/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0
107.180.50.176200 OK 7.1 kB URL HTTP/2 www.glocalmanagers.com/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0
IP 107.180.50.176:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type Unicode text, UTF-8 text, with very long lines (19138), with no line terminators
Hash 2f4fcc5a628b379672d76b7e91cbdf07
9d72f2c9cbc1e9b036360acfce8c8ccc8b832b8c
a360f715a418026d2e1acd81c02c83233d0c0b60fdf4ce0b4d33562925d6a0b5
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0 HTTP/1.1
Host: www.glocalmanagers.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.glocalmanagers.com/es/inicio/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 11 Apr 2022 12:04:30 GMT
etag: "4ac6-5dc5fbf1e6f80-gzip"
accept-ranges: bytes
cache-control: max-age=31536000
expires: Sat, 21 Oct 2023 22:04:38 GMT
vary: Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
content-length: 7095
content-type: application/x-javascript
date: Fri, 21 Oct 2022 22:04:38 GMT
server: Apache
X-Firefox-Spdy: h2
www.glocalmanagers.com/wp-content/plugins/elementskit-lite/widgets/init/assets/js/elementor.js?ver=2.7.3
107.180.50.176200 OK 5.0 kB URL HTTP/2 www.glocalmanagers.com/wp-content/plugins/elementskit-lite/widgets/init/assets/js/elementor.js?ver=2.7.3
IP 107.180.50.176:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (17948), with no line terminators
Hash 0a8cbea9d1aadfded1d932e2257c1e52
241e4a893042518f7964c2266324cec95d4a232e
984daf3d361d84cbae2f1ec3785c1e38aa52fc64ef4ef098d9829e395b50265e
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/plugins/elementskit-lite/widgets/init/assets/js/elementor.js?ver=2.7.3 HTTP/1.1
Host: www.glocalmanagers.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.glocalmanagers.com/es/inicio/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 18 Oct 2022 18:55:32 GMT
etag: "461c-5eb53a2f0603b-gzip"
accept-ranges: bytes
cache-control: max-age=31536000
expires: Sat, 21 Oct 2023 22:04:38 GMT
vary: Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
content-length: 5049
content-type: application/x-javascript
date: Fri, 21 Oct 2022 22:04:38 GMT
server: Apache
X-Firefox-Spdy: h2
www.glocalmanagers.com/wp-includes/js/wp-emoji-release.min.js?ver=6.0.3
107.180.50.176200 OK 5.0 kB URL HTTP/2 www.glocalmanagers.com/wp-includes/js/wp-emoji-release.min.js?ver=6.0.3
IP 107.180.50.176:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (15660)
Hash e6624e0b978e6ddba476be41aaaa82df
822e920d8233072110ed7c8a7f379e5b13209b18
dac86a9ce08e4d8cded47b4fa900a664b0c997d8910c2a1be54a423678925a41
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-includes/js/wp-emoji-release.min.js?ver=6.0.3 HTTP/1.1
Host: www.glocalmanagers.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.glocalmanagers.com/es/inicio/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 12 Apr 2022 05:56:23 GMT
etag: "48b9-5dc6eb878efc0-gzip"
accept-ranges: bytes
cache-control: max-age=31536000
expires: Sat, 21 Oct 2023 22:04:38 GMT
vary: Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
content-length: 5009
content-type: application/x-javascript
date: Fri, 21 Oct 2022 22:04:38 GMT
server: Apache
X-Firefox-Spdy: h2
www.glocalmanagers.com/wp-content/plugins/pro-elements/assets/js/frontend.min.js?ver=3.7.3
107.180.50.176200 OK 5.7 kB URL HTTP/2 www.glocalmanagers.com/wp-content/plugins/pro-elements/assets/js/frontend.min.js?ver=3.7.3
IP 107.180.50.176:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (21374)
Hash 94f616726bc6e8a6922c1bd7741a517d
98116d83b589b2fc59255f2dfc1b5627c8d00698
058f77a82b772e96ba9bdccc4999fde129c4548e94950b5b6bd54666f2ae7d45
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/plugins/pro-elements/assets/js/frontend.min.js?ver=3.7.3 HTTP/1.1
Host: www.glocalmanagers.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.glocalmanagers.com/es/inicio/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 11 Oct 2022 17:25:37 GMT
etag: "53a8-5eac5908368be-gzip"
accept-ranges: bytes
cache-control: max-age=31536000
expires: Sat, 21 Oct 2023 22:04:38 GMT
vary: Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
content-length: 5716
content-type: application/x-javascript
date: Fri, 21 Oct 2022 22:04:38 GMT
server: Apache
X-Firefox-Spdy: h2
www.glocalmanagers.com/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2
107.180.50.176200 OK 3.0 kB URL HTTP/2 www.glocalmanagers.com/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2
IP 107.180.50.176:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (12198), with no line terminators
Hash cfea3c51880820f2962a7773fbc864f9
45aa7ddc9b0c4201097d0df36791ab346470b734
12296ac9ef200103f8eea198a2bcd92692119dacece39538499758a0349035fb
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2 HTTP/1.1
Host: www.glocalmanagers.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.glocalmanagers.com/es/inicio/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 11 Oct 2022 14:55:46 GMT
etag: "2fa6-5eac378974564-gzip"
accept-ranges: bytes
cache-control: max-age=31536000
expires: Sat, 21 Oct 2023 22:04:38 GMT
vary: Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
content-length: 2993
content-type: application/x-javascript
date: Fri, 21 Oct 2022 22:04:38 GMT
server: Apache
X-Firefox-Spdy: h2
www.glocalmanagers.com/wp-content/plugins/revslider/public/assets/js/rbtools.min.js?ver=6.3.5
107.180.50.176200 OK 47 kB URL HTTP/2 www.glocalmanagers.com/wp-content/plugins/revslider/public/assets/js/rbtools.min.js?ver=6.3.5
IP 107.180.50.176:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (42889)
Hash 07d1da003bec21ac2ff372cece2fbff5
40678ebec5f9205ff5fb3a99df1fbf2a56e2a06a
970baf4e8dd60faf09dc8bec303363cf6624094691b4b8d45963279cf35ac4f4
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/plugins/revslider/public/assets/js/rbtools.min.js?ver=6.3.5 HTTP/1.1
Host: www.glocalmanagers.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.glocalmanagers.com/es/inicio/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 24 May 2022 15:25:46 GMT
etag: "1e463-5dfc39214b280-gzip"
accept-ranges: bytes
cache-control: max-age=31536000
expires: Sat, 21 Oct 2023 22:04:38 GMT
vary: Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
content-length: 47258
content-type: application/x-javascript
date: Fri, 21 Oct 2022 22:04:38 GMT
server: Apache
X-Firefox-Spdy: h2
www.glocalmanagers.com/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.7.8
107.180.50.176200 OK 11 kB URL HTTP/2 www.glocalmanagers.com/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.7.8
IP 107.180.50.176:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type Unicode text, UTF-8 text, with very long lines (32889)
Hash 41e7307e69775772797b7cd940b4df0a
b9e0e06eeb178c11a7bbfdc0696bba4e695741d2
d9a2e4abd068e07870a30beaeb7471ace3c594816a0c6f8543773ea8e65a0954
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.7.8 HTTP/1.1
Host: www.glocalmanagers.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.glocalmanagers.com/es/inicio/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 11 Oct 2022 14:55:54 GMT
etag: "80a1-5eac3791128b8-gzip"
accept-ranges: bytes
cache-control: max-age=31536000
expires: Sat, 21 Oct 2023 22:04:38 GMT
vary: Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
content-length: 10742
content-type: application/x-javascript
date: Fri, 21 Oct 2022 22:04:38 GMT
server: Apache
X-Firefox-Spdy: h2
www.glocalmanagers.com/wp-content/plugins/elementskit-lite/widgets/init/assets/css/widget-styles.css?ver=2.7.3
107.180.50.176200 OK 50 kB URL HTTP/2 www.glocalmanagers.com/wp-content/plugins/elementskit-lite/widgets/init/assets/css/widget-styles.css?ver=2.7.3
IP 107.180.50.176:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type Unicode text, UTF-8 text, with very long lines (65530), with no line terminators
Hash 1af92a2620f853253ccfd3fad7d5c108
9a875e793c0205e21cf85193245e1e8c4a5dbf30
ce35b6b3c8fbdfae3ad5d884e8df7af873de5255a3f2058d34131a3aa29acc67
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/plugins/elementskit-lite/widgets/init/assets/css/widget-styles.css?ver=2.7.3 HTTP/1.1
Host: www.glocalmanagers.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.glocalmanagers.com/es/inicio/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 18 Oct 2022 18:55:32 GMT
etag: "6cfa2-5eb53a2f048cb-gzip"
accept-ranges: bytes
cache-control: max-age=31536000
expires: Sat, 21 Oct 2023 22:04:38 GMT
vary: Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
content-length: 50230
content-type: text/css
date: Fri, 21 Oct 2022 22:04:38 GMT
server: Apache
X-Firefox-Spdy: h2
www.glocalmanagers.com/wp-includes/js/jquery/ui/core.min.js?ver=1.13.1
107.180.50.176200 OK 6.9 kB URL HTTP/2 www.glocalmanagers.com/wp-includes/js/jquery/ui/core.min.js?ver=1.13.1
IP 107.180.50.176:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type Unicode text, UTF-8 text, with very long lines (8189)
Hash 7e2b78a6e8a9b90385330755ee1cf3e5
684c325f39d45e42ae44a9e42f5e9fe4fb0b909c
43f124dabb4bc663cc1cc8d3161c1e6365cf8445d873ed5d69bbfdb507cf24a9
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-includes/js/jquery/ui/core.min.js?ver=1.13.1 HTTP/1.1
Host: www.glocalmanagers.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.glocalmanagers.com/es/inicio/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 08 Apr 2022 20:07:18 GMT
etag: "50eb-5dc2a2438e980-gzip"
accept-ranges: bytes
cache-control: max-age=31536000
expires: Sat, 21 Oct 2023 22:04:38 GMT
vary: Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
content-length: 6914
content-type: application/x-javascript
date: Fri, 21 Oct 2022 22:04:38 GMT
server: Apache
X-Firefox-Spdy: h2
www.glocalmanagers.com/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.7.8
107.180.50.176200 OK 12 kB URL HTTP/2 www.glocalmanagers.com/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.7.8
IP 107.180.50.176:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (40474)
Hash a6c577d8e3a2d401d3d8dc73be9bf1ea
f323e195b9ad4843d81de9715b0dd2efd978f65a
3c0b9b10be0457a0d48117486750dadde37937a9f15b3299383082c52590ec7e
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.7.8 HTTP/1.1
Host: www.glocalmanagers.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.glocalmanagers.com/es/inicio/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 11 Oct 2022 14:55:57 GMT
etag: "9e41-5eac379484630-gzip"
accept-ranges: bytes
cache-control: max-age=31536000
expires: Sat, 21 Oct 2023 22:04:38 GMT
vary: Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
content-length: 12045
content-type: application/x-javascript
date: Fri, 21 Oct 2022 22:04:38 GMT
server: Apache
X-Firefox-Spdy: h2
www.glocalmanagers.com/wp-content/plugins/elementor/assets/lib/swiper/swiper.min.js?ver=5.3.6
107.180.50.176200 OK 36 kB URL HTTP/2 www.glocalmanagers.com/wp-content/plugins/elementor/assets/lib/swiper/swiper.min.js?ver=5.3.6
IP 107.180.50.176:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (65280)
Hash f2f239cb6e82311cd197aa5888632811
e2376a981fa3bf8e7e36e86b979f3a3ea6443d29
c4ceac2088d1b38f5263c50bdfb2e54ed643186248b3a81c5850214b55336e4d
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/plugins/elementor/assets/lib/swiper/swiper.min.js?ver=5.3.6 HTTP/1.1
Host: www.glocalmanagers.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.glocalmanagers.com/es/inicio/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 11 Oct 2022 14:55:50 GMT
etag: "21f91-5eac378d43ede-gzip"
accept-ranges: bytes
cache-control: max-age=31536000
expires: Sat, 21 Oct 2023 22:04:38 GMT
vary: Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
content-length: 35491
content-type: application/x-javascript
date: Fri, 21 Oct 2022 22:04:38 GMT
server: Apache
X-Firefox-Spdy: h2
www.glocalmanagers.com/wp-content/plugins/elementskit-lite/widgets/init/assets/js/widget-scripts.js?ver=2.7.3
107.180.50.176200 OK 42 kB URL HTTP/2 www.glocalmanagers.com/wp-content/plugins/elementskit-lite/widgets/init/assets/js/widget-scripts.js?ver=2.7.3
IP 107.180.50.176:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (45047)
Hash 1d61f0efdf42ff3cdf314959aef98560
f09383d6f90b3fd71b8c7b3bb63228f4b046202b
d0cfe661b30573c8c8f4edd682ed5ad748178fa8212c531e48f0b0526f3757a3
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/plugins/elementskit-lite/widgets/init/assets/js/widget-scripts.js?ver=2.7.3 HTTP/1.1
Host: www.glocalmanagers.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.glocalmanagers.com/es/inicio/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 18 Oct 2022 18:55:32 GMT
etag: "2193f-5eb53a2f0603b-gzip"
accept-ranges: bytes
cache-control: max-age=31536000
expires: Sat, 21 Oct 2023 22:04:38 GMT
vary: Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
content-length: 41659
content-type: application/x-javascript
date: Fri, 21 Oct 2022 22:04:38 GMT
server: Apache
X-Firefox-Spdy: h2
www.glocalmanagers.com/wp-content/uploads/2022/06/Logo-Endeavor.png
107.180.50.176200 OK 11 kB URL HTTP/2 www.glocalmanagers.com/wp-content/uploads/2022/06/Logo-Endeavor.png
IP 107.180.50.176:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type PNG image data, 665 x 300, 8-bit/color RGBA, non-interlaced\012- data
Hash 9ae971ddf59b44e925564d43587cd59a
5c4d598fc283172596d12d81ae909c4c03c9057c
d638833f7753a6d32ce02d2a4b27163388b9e34eb04450baa6eca0ad2dc8f529
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/2022/06/Logo-Endeavor.png HTTP/1.1
Host: www.glocalmanagers.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.glocalmanagers.com/es/inicio/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 13 Jun 2022 18:08:17 GMT
etag: "2c49-5e1582c24b802"
accept-ranges: bytes
content-length: 11337
cache-control: max-age=31536000
expires: Sat, 21 Oct 2023 22:04:38 GMT
referrer-policy: no-referrer-when-downgrade
content-type: image/png
date: Fri, 21 Oct 2022 22:04:38 GMT
server: Apache
X-Firefox-Spdy: h2
www.glocalmanagers.com/wp-content/uploads/2022/02/dot4.png
107.180.50.176200 OK 16 kB URL HTTP/2 www.glocalmanagers.com/wp-content/uploads/2022/02/dot4.png
IP 107.180.50.176:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type PNG image data, 24 x 25, 8-bit/color RGBA, non-interlaced\012- data
Hash ac05f7cd566f53b64b4866e4b098ee0e
c83cf613e18eefd2cfb07c17470f571ea968abd7
030ef32dedb1bedcb35062155b24cf9af0cb290d7f7ca49ee7bd2a7c19a384b4
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/2022/02/dot4.png HTTP/1.1
Host: www.glocalmanagers.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.glocalmanagers.com/es/inicio/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 16 Feb 2022 15:05:22 GMT
etag: "3e6a-5d823fa849080"
accept-ranges: bytes
content-length: 15978
cache-control: max-age=31536000
expires: Sat, 21 Oct 2023 22:04:38 GMT
referrer-policy: no-referrer-when-downgrade
content-type: image/png
date: Fri, 21 Oct 2022 22:04:38 GMT
server: Apache
X-Firefox-Spdy: h2
www.glocalmanagers.com/wp-content/uploads/2022/02/dot2.png
107.180.50.176200 OK 16 kB URL HTTP/2 www.glocalmanagers.com/wp-content/uploads/2022/02/dot2.png
IP 107.180.50.176:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type PNG image data, 24 x 25, 8-bit/color RGBA, non-interlaced\012- data
Hash 7ddd30f4e19f773059dd2214178e863b
99440935d7b53422f852aefa99b16cdf307c6975
d5366a521ac1b402ef04113efba57542b583b3e42453925cdc4025cde5cefc53
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/2022/02/dot2.png HTTP/1.1
Host: www.glocalmanagers.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.glocalmanagers.com/es/inicio/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 16 Feb 2022 15:03:54 GMT
etag: "3d2d-5d823f545ca80"
accept-ranges: bytes
content-length: 15661
cache-control: max-age=31536000
expires: Sat, 21 Oct 2023 22:04:38 GMT
referrer-policy: no-referrer-when-downgrade
content-type: image/png
date: Fri, 21 Oct 2022 22:04:38 GMT
server: Apache
X-Firefox-Spdy: h2
www.glocalmanagers.com/wp-content/uploads/2022/06/FORWARD-FOODING-LOGO.png
107.180.50.176200 OK 24 kB URL HTTP/2 www.glocalmanagers.com/wp-content/uploads/2022/06/FORWARD-FOODING-LOGO.png
IP 107.180.50.176:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type PNG image data, 665 x 300, 8-bit/color RGBA, non-interlaced\012- data
Hash c08d02ed1295ab66205d01ab0d550001
7a406bc38b37fc0a683f42f2ceb5df47786d7767
8be6474880a835e24c5ab97b3220141d692b80bdd79ff38b0a107791f47a81e8
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/2022/06/FORWARD-FOODING-LOGO.png HTTP/1.1
Host: www.glocalmanagers.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.glocalmanagers.com/es/inicio/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 13 Jun 2022 18:07:21 GMT
etag: "5f4c-5e15828c7b7c9"
accept-ranges: bytes
content-length: 24396
cache-control: max-age=31536000
expires: Sat, 21 Oct 2023 22:04:38 GMT
referrer-policy: no-referrer-when-downgrade
content-type: image/png
date: Fri, 21 Oct 2022 22:04:38 GMT
server: Apache
X-Firefox-Spdy: h2
www.glocalmanagers.com/wp-content/uploads/2022/06/Logo-NOVA.png
107.180.50.176200 OK 21 kB URL HTTP/2 www.glocalmanagers.com/wp-content/uploads/2022/06/Logo-NOVA.png
IP 107.180.50.176:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type PNG image data, 665 x 300, 8-bit/color RGBA, non-interlaced\012- data
Hash 11b49bc3fd6e888b87613cba85182405
a99e17ab1c2b0e2baf94cb22a367c77bd232f4c4
369e7beee3d417c072b62b5aacfb17c506137910a3b2f2171e8f14d5a1dc6e60
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/2022/06/Logo-NOVA.png HTTP/1.1
Host: www.glocalmanagers.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.glocalmanagers.com/es/inicio/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 13 Jun 2022 18:06:46 GMT
etag: "51e9-5e15826b9aa7e"
accept-ranges: bytes
content-length: 20969
cache-control: max-age=31536000
expires: Sat, 21 Oct 2023 22:04:38 GMT
referrer-policy: no-referrer-when-downgrade
content-type: image/png
date: Fri, 21 Oct 2022 22:04:38 GMT
server: Apache
X-Firefox-Spdy: h2
www.glocalmanagers.com/wp-content/uploads/2022/06/Logo-Agstar.png
107.180.50.176200 OK 21 kB URL HTTP/2 www.glocalmanagers.com/wp-content/uploads/2022/06/Logo-Agstar.png
IP 107.180.50.176:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type PNG image data, 665 x 300, 8-bit/color RGBA, non-interlaced\012- data
Hash c4c21e4a5fd99b5ce7c48e8a4d8ac3ab
440e9799e60ec547064af65c753d5a5403587182
4c77cbd4b3abeb4075f7aae261118c466439da13f347028dd17d6947d877f771
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/2022/06/Logo-Agstar.png HTTP/1.1
Host: www.glocalmanagers.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.glocalmanagers.com/es/inicio/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 13 Jun 2022 18:08:28 GMT
etag: "5089-5e1582cc9744b"
accept-ranges: bytes
content-length: 20617
cache-control: max-age=31536000
expires: Sat, 21 Oct 2023 22:04:38 GMT
referrer-policy: no-referrer-when-downgrade
content-type: image/png
date: Fri, 21 Oct 2022 22:04:38 GMT
server: Apache
X-Firefox-Spdy: h2
www.glocalmanagers.com/wp-content/uploads/2022/06/Agrigate-Global-Logo.png
107.180.50.176200 OK 25 kB URL HTTP/2 www.glocalmanagers.com/wp-content/uploads/2022/06/Agrigate-Global-Logo.png
IP 107.180.50.176:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type PNG image data, 665 x 300, 8-bit/color RGBA, non-interlaced\012- data
Hash 073b871c679c5ce8030200d6c3be3e28
62dc6e5d23bd6e841a3b90ed8dc4026173b2c431
9a31ac757acd550c0dd7192f41e41e9a5a6162724dc31033e6a2450359b96795
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/2022/06/Agrigate-Global-Logo.png HTTP/1.1
Host: www.glocalmanagers.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.glocalmanagers.com/es/inicio/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 13 Jun 2022 18:07:18 GMT
etag: "619d-5e15828a6973b"
accept-ranges: bytes
content-length: 24989
cache-control: max-age=31536000
expires: Sat, 21 Oct 2023 22:04:38 GMT
referrer-policy: no-referrer-when-downgrade
content-type: image/png
date: Fri, 21 Oct 2022 22:04:38 GMT
server: Apache
X-Firefox-Spdy: h2
www.glocalmanagers.com/wp-content/uploads/2022/06/Pulse-Hub-Logo.png
107.180.50.176200 OK 18 kB URL HTTP/2 www.glocalmanagers.com/wp-content/uploads/2022/06/Pulse-Hub-Logo.png
IP 107.180.50.176:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type PNG image data, 665 x 300, 8-bit/color RGBA, non-interlaced\012- data
Hash a5eed911242d3c663b1fdc6ef32c9c78
c0107d3c51eb90c27cdcb6422a2e70f64770f6f0
5d8b57058ecef32af49af9206ac5795109614d34ac1a7789e15c90d1bf92f6ff
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/2022/06/Pulse-Hub-Logo.png HTTP/1.1
Host: www.glocalmanagers.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.glocalmanagers.com/es/inicio/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 13 Jun 2022 18:09:44 GMT
etag: "4504-5e15831501c79"
accept-ranges: bytes
content-length: 17668
cache-control: max-age=31536000
expires: Sat, 21 Oct 2023 22:04:38 GMT
referrer-policy: no-referrer-when-downgrade
content-type: image/png
date: Fri, 21 Oct 2022 22:04:38 GMT
server: Apache
X-Firefox-Spdy: h2
www.glocalmanagers.com/wp-content/uploads/2022/06/Logo-La-Segunda.png
107.180.50.176200 OK 41 kB URL HTTP/2 www.glocalmanagers.com/wp-content/uploads/2022/06/Logo-La-Segunda.png
IP 107.180.50.176:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type PNG image data, 665 x 300, 8-bit/color RGBA, non-interlaced\012- data
Hash b1835e6238c618b08836957043aa68d7
381926b2a90ff0c40d8f198eccdd7aa95a5c7cd1
7aa8bc561bf61d6e11303b7cf37d92ca598a559b0ed0ca05d5af1c15ffe84c34
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/2022/06/Logo-La-Segunda.png HTTP/1.1
Host: www.glocalmanagers.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.glocalmanagers.com/es/inicio/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 13 Jun 2022 18:10:18 GMT
etag: "a1cd-5e158335a8426"
accept-ranges: bytes
content-length: 41421
cache-control: max-age=31536000
expires: Sat, 21 Oct 2023 22:04:38 GMT
referrer-policy: no-referrer-when-downgrade
content-type: image/png
date: Fri, 21 Oct 2022 22:04:38 GMT
server: Apache
X-Firefox-Spdy: h2
www.glocalmanagers.com/wp-content/uploads/2022/06/logo-santa-fe-secretaria-ciencia.png
107.180.50.176200 OK 29 kB URL HTTP/2 www.glocalmanagers.com/wp-content/uploads/2022/06/logo-santa-fe-secretaria-ciencia.png
IP 107.180.50.176:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type PNG image data, 665 x 300, 8-bit/color RGBA, non-interlaced\012- data
Hash b814ace5e77d76e49fa8aafd657b2721
0b695de13b8a2652ff3d6effcf10b106c9296bcf
8906af91e03a283051e94ee68385fdabbf32fe42b6d390fe986d6508df432471
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/2022/06/logo-santa-fe-secretaria-ciencia.png HTTP/1.1
Host: www.glocalmanagers.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.glocalmanagers.com/es/inicio/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 13 Jun 2022 18:10:19 GMT
etag: "71ee-5e15833688def"
accept-ranges: bytes
content-length: 29166
cache-control: max-age=31536000
expires: Sat, 21 Oct 2023 22:04:38 GMT
referrer-policy: no-referrer-when-downgrade
content-type: image/png
date: Fri, 21 Oct 2022 22:04:38 GMT
server: Apache
X-Firefox-Spdy: h2
www.glocalmanagers.com/wp-content/uploads/2022/06/logo-Surcos-PNG.png
107.180.50.176200 OK 31 kB URL HTTP/2 www.glocalmanagers.com/wp-content/uploads/2022/06/logo-Surcos-PNG.png
IP 107.180.50.176:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type PNG image data, 665 x 300, 8-bit/color RGBA, non-interlaced\012- data
Hash ea646d453a8c2b473b3f2692e452ce7e
2f5ad57588d3e1fce3dfb3e00a6e063ef3187e21
42a9e777a51791d4a75c763e40564df0dadf08ae0ada86e5a37980015cc41b9d
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/2022/06/logo-Surcos-PNG.png HTTP/1.1
Host: www.glocalmanagers.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.glocalmanagers.com/es/inicio/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 13 Jun 2022 18:06:44 GMT
etag: "778e-5e158269bdd83"
accept-ranges: bytes
content-length: 30606
cache-control: max-age=31536000
expires: Sat, 21 Oct 2023 22:04:38 GMT
referrer-policy: no-referrer-when-downgrade
content-type: image/png
date: Fri, 21 Oct 2022 22:04:38 GMT
server: Apache
X-Firefox-Spdy: h2
www.glocalmanagers.com/wp-content/uploads/2022/06/logo-INNOVA-360.jpg
107.180.50.176200 OK 38 kB URL HTTP/2 www.glocalmanagers.com/wp-content/uploads/2022/06/logo-INNOVA-360.jpg
IP 107.180.50.176:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 665x300, components 3\012- data
Hash 3c536a2035a0cb5d470d9c42df79bfb4
cb7389280a7a2d7adc90f263e83dc2d9a827fd14
2ee789dd48bd2690c551379ed36a3dddd06bebb857335ce196d51983c765636c
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/2022/06/logo-INNOVA-360.jpg HTTP/1.1
Host: www.glocalmanagers.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.glocalmanagers.com/es/inicio/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 13 Jun 2022 18:08:16 GMT
etag: "9475-5e1582c10f945"
accept-ranges: bytes
content-length: 38005
cache-control: max-age=31536000
expires: Sat, 21 Oct 2023 22:04:38 GMT
referrer-policy: no-referrer-when-downgrade
content-type: image/jpeg
date: Fri, 21 Oct 2022 22:04:38 GMT
server: Apache
X-Firefox-Spdy: h2
www.glocalmanagers.com/wp-content/uploads/2022/06/Representacion_bayern.jpg
107.180.50.176200 OK 52 kB URL HTTP/2 www.glocalmanagers.com/wp-content/uploads/2022/06/Representacion_bayern.jpg
IP 107.180.50.176:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 665x300, components 3\012- data
Hash c94576511c10d235e084e8e40b09256c
2e9693f8bf26d0c508ab25d60780060d8cc4d15c
4e7f07dfe8c6986cf035bc1f8b138a10212c9231e7a029d0141c1b8ad3f01655
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/2022/06/Representacion_bayern.jpg HTTP/1.1
Host: www.glocalmanagers.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.glocalmanagers.com/es/inicio/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 13 Jun 2022 18:09:45 GMT
etag: "cc21-5e158315c5d39"
accept-ranges: bytes
content-length: 52257
cache-control: max-age=31536000
expires: Sat, 21 Oct 2023 22:04:38 GMT
referrer-policy: no-referrer-when-downgrade
content-type: image/jpeg
date: Fri, 21 Oct 2022 22:04:38 GMT
server: Apache
X-Firefox-Spdy: h2
www.glocalmanagers.com/wp-content/uploads/2022/06/Food-Banking.png
107.180.50.176200 OK 46 kB URL HTTP/2 www.glocalmanagers.com/wp-content/uploads/2022/06/Food-Banking.png
IP 107.180.50.176:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type PNG image data, 665 x 300, 8-bit/color RGBA, non-interlaced\012- data
Hash b2beef6457d037dd63d0418f22d96acb
3a3bc04e3f60bddfc37784e8cd5890306625e6b0
5b19aeef9bdede001460dc925e13f63e499b62181f1a87277c191c5185b46359
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/2022/06/Food-Banking.png HTTP/1.1
Host: www.glocalmanagers.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.glocalmanagers.com/es/inicio/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 13 Jun 2022 18:10:16 GMT
etag: "b30e-5e1583338d6f9"
accept-ranges: bytes
content-length: 45838
cache-control: max-age=31536000
expires: Sat, 21 Oct 2023 22:04:38 GMT
referrer-policy: no-referrer-when-downgrade
content-type: image/png
date: Fri, 21 Oct 2022 22:04:38 GMT
server: Apache
X-Firefox-Spdy: h2
www.glocalmanagers.com/wp-content/uploads/2022/06/UCANR_Logo_Forest.png
107.180.50.176200 OK 60 kB URL HTTP/2 www.glocalmanagers.com/wp-content/uploads/2022/06/UCANR_Logo_Forest.png
IP 107.180.50.176:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type PNG image data, 665 x 300, 8-bit/color RGBA, non-interlaced\012- data
Hash df46875409a852a15557609e05fbc5cd
e12559471ada299f060ae3830fba59488d4f3318
7b4ea9aae233d8a923115cfeb2633d44599528ae3b33e130463afa29e3a4c5bd
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/2022/06/UCANR_Logo_Forest.png HTTP/1.1
Host: www.glocalmanagers.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.glocalmanagers.com/es/inicio/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 13 Jun 2022 18:10:21 GMT
etag: "e981-5e1583382a5b0"
accept-ranges: bytes
content-length: 59777
cache-control: max-age=31536000
expires: Sat, 21 Oct 2023 22:04:38 GMT
referrer-policy: no-referrer-when-downgrade
content-type: image/png
date: Fri, 21 Oct 2022 22:04:38 GMT
server: Apache
X-Firefox-Spdy: h2
www.glocalmanagers.com/wp-content/uploads/2022/06/logo-bayer.png
107.180.50.176200 OK 46 kB URL HTTP/2 www.glocalmanagers.com/wp-content/uploads/2022/06/logo-bayer.png
IP 107.180.50.176:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type PNG image data, 665 x 300, 8-bit/color RGBA, non-interlaced\012- data
Hash 43c546319e15083caa160308ab555183
ad5d62b46e18ef32f2ac89725f1b07f49b130283
86b69fc4c2a75cf3d38c21dbfb556c7c34d0c13f0b4fd32975731fa0c9f18e3a
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/2022/06/logo-bayer.png HTTP/1.1
Host: www.glocalmanagers.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.glocalmanagers.com/es/inicio/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 13 Jun 2022 18:06:47 GMT
etag: "b402-5e15826cc28ea"
accept-ranges: bytes
content-length: 46082
cache-control: max-age=31536000
expires: Sat, 21 Oct 2023 22:04:38 GMT
referrer-policy: no-referrer-when-downgrade
content-type: image/png
date: Fri, 21 Oct 2022 22:04:38 GMT
server: Apache
X-Firefox-Spdy: h2
www.glocalmanagers.com/wp-content/uploads/2022/06/Logo-Agrofy.png
107.180.50.176200 OK 50 kB URL HTTP/2 www.glocalmanagers.com/wp-content/uploads/2022/06/Logo-Agrofy.png
IP 107.180.50.176:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type PNG image data, 665 x 300, 8-bit/color RGBA, non-interlaced\012- data
Hash 120c29307ea50f07951bfa28f3c4f5c1
e1629d54ac75a843a5384ff2a6fb3b9cb3c3fd87
b910bb16545f65d5cbda256dc13186ee192cbec1414cf2992caf82a56bd7f697
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/2022/06/Logo-Agrofy.png HTTP/1.1
Host: www.glocalmanagers.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.glocalmanagers.com/es/inicio/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 13 Jun 2022 18:07:59 GMT
etag: "c21b-5e1582b17c3c5"
accept-ranges: bytes
content-length: 49691
cache-control: max-age=31536000
expires: Sat, 21 Oct 2023 22:04:38 GMT
referrer-policy: no-referrer-when-downgrade
content-type: image/png
date: Fri, 21 Oct 2022 22:04:38 GMT
server: Apache
X-Firefox-Spdy: h2
www.glocalmanagers.com/wp-content/uploads/2022/06/LOGO-Food-Tech-Hub-FTH-Latam.png
107.180.50.176200 OK 53 kB URL HTTP/2 www.glocalmanagers.com/wp-content/uploads/2022/06/LOGO-Food-Tech-Hub-FTH-Latam.png
IP 107.180.50.176:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type PNG image data, 665 x 300, 8-bit/color RGBA, non-interlaced\012- data
Hash fe4125ffc48eae0eb0ef20d6a8290d38
79a81f6210d9503d47bbf4f8cf2526c47c3c40d0
d49fce209787d673e4e9aa6f5f1fc1d8a4b6ef5e38ef3c87f0d5455d864580d9
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/2022/06/LOGO-Food-Tech-Hub-FTH-Latam.png HTTP/1.1
Host: www.glocalmanagers.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.glocalmanagers.com/es/inicio/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 13 Jun 2022 18:08:18 GMT
etag: "cd6f-5e1582c33ee94"
accept-ranges: bytes
content-length: 52591
cache-control: max-age=31536000
expires: Sat, 21 Oct 2023 22:04:38 GMT
referrer-policy: no-referrer-when-downgrade
content-type: image/png
date: Fri, 21 Oct 2022 22:04:38 GMT
server: Apache
X-Firefox-Spdy: h2
www.glocalmanagers.com/wp-content/uploads/2022/06/Universidad-San-Telmo-logo.png
107.180.50.176200 OK 50 kB URL HTTP/2 www.glocalmanagers.com/wp-content/uploads/2022/06/Universidad-San-Telmo-logo.png
IP 107.180.50.176:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type PNG image data, 665 x 300, 8-bit/color RGB, non-interlaced\012- data
Hash db72b439406b87b272e716c01118e5b3
976f9b5aa8113f5c7d64971928571fa9048bce8e
c877aa665339f7171c92175bdb22d862a0e211a6ff0bf85f2d31f776aa3cbcb7
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/2022/06/Universidad-San-Telmo-logo.png HTTP/1.1
Host: www.glocalmanagers.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.glocalmanagers.com/es/inicio/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 13 Jun 2022 18:09:46 GMT
etag: "c45e-5e1583178af4b"
accept-ranges: bytes
content-length: 50270
cache-control: max-age=31536000
expires: Sat, 21 Oct 2023 22:04:38 GMT
referrer-policy: no-referrer-when-downgrade
content-type: image/png
date: Fri, 21 Oct 2022 22:04:38 GMT
server: Apache
X-Firefox-Spdy: h2
www.glocalmanagers.com/wp-content/uploads/2022/06/Logo_Grupo-San-Cristobal.png
107.180.50.176200 OK 52 kB URL HTTP/2 www.glocalmanagers.com/wp-content/uploads/2022/06/Logo_Grupo-San-Cristobal.png
IP 107.180.50.176:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type PNG image data, 665 x 300, 8-bit/color RGBA, non-interlaced\012- data
Hash 976137b83c4dcab6f0d68bc49c5ef014
21cbf683495565fe6c8de9dd05c0cffedf7f61ca
40f8dc4bc8a35cdcbe3e33bcff5f515139dcecace0deabe67b4f4454c9674c99
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/2022/06/Logo_Grupo-San-Cristobal.png HTTP/1.1
Host: www.glocalmanagers.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.glocalmanagers.com/es/inicio/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 13 Jun 2022 18:10:20 GMT
etag: "c900-5e158337572bf"
accept-ranges: bytes
content-length: 51456
cache-control: max-age=31536000
expires: Sat, 21 Oct 2023 22:04:38 GMT
referrer-policy: no-referrer-when-downgrade
content-type: image/png
date: Fri, 21 Oct 2022 22:04:38 GMT
server: Apache
X-Firefox-Spdy: h2
www.glocalmanagers.com/wp-content/uploads/2022/06/Startuplinks-logo.png
107.180.50.176200 OK 62 kB URL HTTP/2 www.glocalmanagers.com/wp-content/uploads/2022/06/Startuplinks-logo.png
IP 107.180.50.176:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type PNG image data, 665 x 300, 8-bit/color RGBA, non-interlaced\012- data
Hash 349e1c40298aed77320f8d927cf4c247
734b20fe8e179f4f56eb282ce276cc927b9d6003
ee2b3abefb3bb898c8b1bf232779454fc349ac294588b3d132c3122d411fe91a
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/2022/06/Startuplinks-logo.png HTTP/1.1
Host: www.glocalmanagers.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.glocalmanagers.com/es/inicio/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 13 Jun 2022 18:09:45 GMT
etag: "f1cd-5e158316a5f32"
accept-ranges: bytes
content-length: 61901
cache-control: max-age=31536000
expires: Sat, 21 Oct 2023 22:04:38 GMT
referrer-policy: no-referrer-when-downgrade
content-type: image/png
date: Fri, 21 Oct 2022 22:04:38 GMT
server: Apache
X-Firefox-Spdy: h2
www.glocalmanagers.com/wp-content/uploads/2022/06/Logo-AgroMulher-.png
107.180.50.176200 OK 63 kB URL HTTP/2 www.glocalmanagers.com/wp-content/uploads/2022/06/Logo-AgroMulher-.png
IP 107.180.50.176:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type PNG image data, 665 x 300, 8-bit/color RGBA, non-interlaced\012- data
Hash 8ec4d38afd80b586ef1a1fbd7e4242c1
815bba59771bd6c7486b6983f0964f066bfa79d5
b0a42c27a3981e08694fa64490a299b499769bdba385ca35741c90ca9bd48443
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/2022/06/Logo-AgroMulher-.png HTTP/1.1
Host: www.glocalmanagers.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.glocalmanagers.com/es/inicio/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 13 Jun 2022 18:08:01 GMT
etag: "f5a0-5e1582b30e185"
accept-ranges: bytes
content-length: 62880
cache-control: max-age=31536000
expires: Sat, 21 Oct 2023 22:04:38 GMT
referrer-policy: no-referrer-when-downgrade
content-type: image/png
date: Fri, 21 Oct 2022 22:04:38 GMT
server: Apache
X-Firefox-Spdy: h2
www.glocalmanagers.com/wp-content/uploads/2022/06/logo-LDC-Louis-Dreyfus-Company.png
107.180.50.176200 OK 70 kB URL HTTP/2 www.glocalmanagers.com/wp-content/uploads/2022/06/logo-LDC-Louis-Dreyfus-Company.png
IP 107.180.50.176:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type PNG image data, 665 x 300, 8-bit/color RGBA, non-interlaced\012- data
Hash 3f449ff4fea033a3ae4f29c8347a393b
95dc6634821792406754ba44ab1379f602145436
663fa40507f76796d6d0534494357e0eeb2ffb4ab3379097b02e845095d1f71c
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/2022/06/logo-LDC-Louis-Dreyfus-Company.png HTTP/1.1
Host: www.glocalmanagers.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.glocalmanagers.com/es/inicio/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 13 Jun 2022 18:06:50 GMT
etag: "110c7-5e15826ef1a50"
accept-ranges: bytes
content-length: 69831
cache-control: max-age=31536000
expires: Sat, 21 Oct 2023 22:04:38 GMT
referrer-policy: no-referrer-when-downgrade
content-type: image/png
date: Fri, 21 Oct 2022 22:04:38 GMT
server: Apache
X-Firefox-Spdy: h2
www.glocalmanagers.com/wp-content/uploads/2022/06/logo-Aapresid.png
107.180.50.176200 OK 72 kB URL HTTP/2 www.glocalmanagers.com/wp-content/uploads/2022/06/logo-Aapresid.png
IP 107.180.50.176:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type PNG image data, 665 x 300, 8-bit/color RGBA, non-interlaced\012- data
Hash a614bdd9faa2de69972cb2a56a8d3374
923ccd7e12f89dd025cc303c241ef4dc5ca6643c
6a65edaca57f1de4aee1321304a3c627c4ce98aaafa42cd5a9f48e90f698953e
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/2022/06/logo-Aapresid.png HTTP/1.1
Host: www.glocalmanagers.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.glocalmanagers.com/es/inicio/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 13 Jun 2022 18:10:17 GMT
etag: "11a31-5e158334bedbd"
accept-ranges: bytes
content-length: 72241
cache-control: max-age=31536000
expires: Sat, 21 Oct 2023 22:04:38 GMT
referrer-policy: no-referrer-when-downgrade
content-type: image/png
date: Fri, 21 Oct 2022 22:04:38 GMT
server: Apache
X-Firefox-Spdy: h2
www.glocalmanagers.com/wp-content/uploads/2022/06/Logo-PIT-Pergamino-.png
107.180.50.176200 OK 85 kB URL HTTP/2 www.glocalmanagers.com/wp-content/uploads/2022/06/Logo-PIT-Pergamino-.png
IP 107.180.50.176:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type PNG image data, 665 x 300, 8-bit/color RGBA, non-interlaced\012- data
Hash 3109cd254e8e3b5b2c3317ad94c6f0b1
2fa4d630dc010ed2caaeb80a9e1b9c03d034b827
13db5bf8568347f1a2406281a6dabc883eaee95bb5f6ad98ce92e22b0ec69d3b
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/2022/06/Logo-PIT-Pergamino-.png HTTP/1.1
Host: www.glocalmanagers.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.glocalmanagers.com/es/inicio/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 13 Jun 2022 18:09:43 GMT
etag: "14b33-5e15831422638"
accept-ranges: bytes
content-length: 84787
cache-control: max-age=31536000
expires: Sat, 21 Oct 2023 22:04:38 GMT
referrer-policy: no-referrer-when-downgrade
content-type: image/png
date: Fri, 21 Oct 2022 22:04:38 GMT
server: Apache
X-Firefox-Spdy: h2
www.glocalmanagers.com/wp-content/uploads/2022/09/mapa-portfolio-2022-v4.jpg
107.180.50.176200 OK 313 kB URL HTTP/2 www.glocalmanagers.com/wp-content/uploads/2022/09/mapa-portfolio-2022-v4.jpg
IP 107.180.50.176:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1499x1077, components 3\012- data
Size 313 kB (312823 bytes)
Hash 97a1b702345ab4c8667847284e178402
6e14a7967f7189c395c884901f56fe4419a5616d
e2a492a0b9bab8ec74af2b371633332d64449d11979e1abd071c89f4483888c2
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/2022/09/mapa-portfolio-2022-v4.jpg HTTP/1.1
Host: www.glocalmanagers.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.glocalmanagers.com/es/inicio/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 12 Sep 2022 20:29:13 GMT
etag: "4c5f7-5e880bfb8a10d"
accept-ranges: bytes
content-length: 312823
cache-control: max-age=31536000
expires: Sat, 21 Oct 2023 22:04:38 GMT
referrer-policy: no-referrer-when-downgrade
content-type: image/jpeg
date: Fri, 21 Oct 2022 22:04:38 GMT
server: Apache
X-Firefox-Spdy: h2
www.glocalmanagers.com/wp-content/uploads/2022/02/Pioneers-in-AgriFood-Sustainable-Investing.jpg
107.180.50.176200 OK 509 kB URL HTTP/2 www.glocalmanagers.com/wp-content/uploads/2022/02/Pioneers-in-AgriFood-Sustainable-Investing.jpg
IP 107.180.50.176:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=12, height=1237, bps=0, PhotometricIntepretation=RGB, orientation=upper-left, width=2200], progressive, precision 8, 2200x1237, components 3\012- data
Size 509 kB (508747 bytes)
Hash a5b5b4856a3b2b1a63296a2682d5bc16
6611c74efaf393a187b8ca73a58adf343c625cd3
31f8544f40541c807adc12fe186772bb4987a3dd144a8a388df590324ae1a9f4
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/2022/02/Pioneers-in-AgriFood-Sustainable-Investing.jpg HTTP/1.1
Host: www.glocalmanagers.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.glocalmanagers.com/es/inicio/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 16 Feb 2022 13:13:03 GMT
etag: "7c34b-5d82268d795c0"
accept-ranges: bytes
content-length: 508747
cache-control: max-age=31536000
expires: Sat, 21 Oct 2023 22:04:38 GMT
referrer-policy: no-referrer-when-downgrade
content-type: image/jpeg
date: Fri, 21 Oct 2022 22:04:38 GMT
server: Apache
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 09f1d552877c07059a3c8debf4187f12
5832bc57522a3fda9a0fec7288076db87d4560c5
de8ad3e1d71f1e4f709bed37590b5e0cdb520db9a246e57d212036af8cfc0f18
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 21 Oct 2022 22:04:39 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 09f1d552877c07059a3c8debf4187f12
5832bc57522a3fda9a0fec7288076db87d4560c5
de8ad3e1d71f1e4f709bed37590b5e0cdb520db9a246e57d212036af8cfc0f18
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 21 Oct 2022 22:04:39 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 09f1d552877c07059a3c8debf4187f12
5832bc57522a3fda9a0fec7288076db87d4560c5
de8ad3e1d71f1e4f709bed37590b5e0cdb520db9a246e57d212036af8cfc0f18
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 21 Oct 2022 22:04:39 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/raleway/v28/1Ptug8zYS_SKggPNyC0ITw.woff2
216.58.207.195200 OK 46 kB URL HTTP/2 fonts.gstatic.com/s/raleway/v28/1Ptug8zYS_SKggPNyC0ITw.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 46524, version 1.0\012- data
Hash c1fd378f54921c75e4ae1821e7b8fff6
2ce96e97783b2f154d07f4464ca6f8eb2469f2c1
405ceee1c2f5c31f1cb94ebc63d49a43fddd1471c2c7401a01c7c11bb1d93826
GET /s/raleway/v28/1Ptug8zYS_SKggPNyC0ITw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.glocalmanagers.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 46524
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 17 Oct 2022 21:13:13 GMT
expires: Tue, 17 Oct 2023 21:13:13 GMT
cache-control: public, max-age=31536000
age: 348686
last-modified: Mon, 18 Jul 2022 19:58:01 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
216.58.207.195200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Hash 15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.glocalmanagers.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 19 Oct 2022 19:34:08 GMT
expires: Thu, 19 Oct 2023 19:34:08 GMT
cache-control: public, max-age=31536000
age: 181831
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.glocalmanagers.com/wp-content/plugins/elementskit-lite/modules/elementskit-icon-pack/assets/fonts/elementskit.woff?y24e1e
107.180.50.176200 OK 454 kB URL HTTP/2 www.glocalmanagers.com/wp-content/plugins/elementskit-lite/modules/elementskit-icon-pack/assets/fonts/elementskit.woff?y24e1e
IP 107.180.50.176:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type Web Open Font Format, TrueType, length 454356, version 1.0\012- data
Size 454 kB (454356 bytes)
Hash b9c06e9a6857fa27f58f460eb07d634b
b248d700ee5a882068c4e63a1102b44d7afc95e4
11c608304b6bba53880c8d448c4d975d74c1db1801cfbca9fe72ff5f3a58f42f
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/plugins/elementskit-lite/modules/elementskit-icon-pack/assets/fonts/elementskit.woff?y24e1e HTTP/1.1
Host: www.glocalmanagers.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://www.glocalmanagers.com/wp-content/plugins/elementskit-lite/modules/elementskit-icon-pack/assets/css/ekiticons.css?ver=2.7.3
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 18 Oct 2022 18:55:27 GMT
etag: "6eed4-5eb53a2b0f1d8"
accept-ranges: bytes
content-length: 454356
cache-control: max-age=31536000
expires: Sat, 21 Oct 2023 22:04:39 GMT
vary: Accept-Encoding
referrer-policy: no-referrer-when-downgrade
content-type: application/font-woff
date: Fri, 21 Oct 2022 22:04:39 GMT
server: Apache
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 09f1d552877c07059a3c8debf4187f12
5832bc57522a3fda9a0fec7288076db87d4560c5
de8ad3e1d71f1e4f709bed37590b5e0cdb520db9a246e57d212036af8cfc0f18
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 21 Oct 2022 22:04:39 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
216.58.207.195200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 15860, version 1.0\012- data
Hash e9f5aaf547f165386cd313b995dddd8e
acdef5603c2387b0e5bffd744b679a24a8bc1968
f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860
GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.glocalmanagers.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 19 Oct 2022 19:34:08 GMT
expires: Thu, 19 Oct 2023 19:34:08 GMT
cache-control: public, max-age=31536000
age: 181831
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/raleway/v28/1Ptxg8zYS_SKggPN4iEgvnHyvveLxVvaorCIPrE.woff2
216.58.207.195200 OK 21 kB URL HTTP/2 fonts.gstatic.com/s/raleway/v28/1Ptxg8zYS_SKggPN4iEgvnHyvveLxVvaorCIPrE.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 21280, version 1.0\012- data
Hash 16911581ab7ea10687a5aee74cbc5612
b0b24248345739209d753a4ac77ccfc1f627b219
c78a1da5fd0868a547cf285748c7fb73006571190385eb71c0d601b6b240ffaf
GET /s/raleway/v28/1Ptxg8zYS_SKggPN4iEgvnHyvveLxVvaorCIPrE.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.glocalmanagers.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 21280
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 17 Oct 2022 21:07:43 GMT
expires: Tue, 17 Oct 2023 21:07:43 GMT
cache-control: public, max-age=31536000
age: 349016
last-modified: Mon, 18 Jul 2022 19:57:59 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/cairo/v20/SLXGc1nY6HkvalIhTps.woff2
216.58.207.195200 OK 33 kB URL HTTP/2 fonts.gstatic.com/s/cairo/v20/SLXGc1nY6HkvalIhTps.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 33172, version 1.0\012- data
Hash fb9b446233fbd3be946266e3d2ae750a
12935adbdff8c3d9bc1a3c9b735afe9130a7c960
e87849f221bbdc16a325dca3a1474301c20b365d2a27dce81ffe6ef2beb7eb44
GET /s/cairo/v20/SLXGc1nY6HkvalIhTps.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.glocalmanagers.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 33172
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 19 Oct 2022 22:13:32 GMT
expires: Thu, 19 Oct 2023 22:13:32 GMT
cache-control: public, max-age=31536000
age: 172267
last-modified: Fri, 24 Jun 2022 19:42:29 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/nunitosans/v12/pe0oMImSLYBIv1o4X1M8cce4E9lKdg.woff2
216.58.207.195200 OK 18 kB URL HTTP/2 fonts.gstatic.com/s/nunitosans/v12/pe0oMImSLYBIv1o4X1M8cce4E9lKdg.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 17684, version 1.0\012- data
Hash 67f5e167a73df331cd54701561965cd0
5c6e5ca963553c516240156bcdca131b2d0ac87e
6637ea3139ffb01e240829717a4f8c195d7be6b81780ed643000b49833d8d6d1
GET /s/nunitosans/v12/pe0oMImSLYBIv1o4X1M8cce4E9lKdg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.glocalmanagers.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 17684
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 17 Oct 2022 22:02:04 GMT
expires: Tue, 17 Oct 2023 22:02:04 GMT
cache-control: public, max-age=31536000
age: 345755
last-modified: Mon, 09 May 2022 18:32:01 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/nunitosans/v12/pe03MImSLYBIv1o4X1M8cc8GBs5tU1E.woff2
216.58.207.195200 OK 17 kB URL HTTP/2 fonts.gstatic.com/s/nunitosans/v12/pe03MImSLYBIv1o4X1M8cc8GBs5tU1E.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 17116, version 1.0\012- data
Hash bcf3a3fb620dfbee774f84e2c8e71530
40a79d240acdd7e5a95e165515ac7c0958a37971
280aaa8929329764ac3213ca093c63505cfcc665347939c79905c426d33867c5
GET /s/nunitosans/v12/pe03MImSLYBIv1o4X1M8cc8GBs5tU1E.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.glocalmanagers.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 17116
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 17 Oct 2022 21:55:26 GMT
expires: Tue, 17 Oct 2023 21:55:26 GMT
cache-control: public, max-age=31536000
age: 346153
last-modified: Mon, 09 May 2022 18:31:19 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/nunito/v25/XRXV3I6Li01BKofINeaB.woff2
216.58.207.195200 OK 36 kB URL HTTP/2 fonts.gstatic.com/s/nunito/v25/XRXV3I6Li01BKofINeaB.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 35904, version 1.0\012- data
Hash c26b97e7f5bb7a34d190703522d75e16
69d9e5aea0544dbaf9b78c1b65139c03eceece8f
96217f1d27fb909f92b4a6b35a0d3d6775f2f0b4d136d27aee88547d3ed87357
GET /s/nunito/v25/XRXV3I6Li01BKofINeaB.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.glocalmanagers.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 35904
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 17 Oct 2022 21:11:05 GMT
expires: Tue, 17 Oct 2023 21:11:05 GMT
cache-control: public, max-age=31536000
age: 348814
last-modified: Mon, 18 Jul 2022 19:34:47 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.glocalmanagers.com/wp-content/plugins/elementor/assets/js/preloaded-modules.min.js?ver=3.7.8
107.180.50.176200 OK 7.7 kB URL HTTP/2 www.glocalmanagers.com/wp-content/plugins/elementor/assets/js/preloaded-modules.min.js?ver=3.7.8
IP 107.180.50.176:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
Hash a09f2fccfee35b7247b08a1a266f0328
0da2d17e738f46d2a09e6fb7969da451719a9820
cd36de204aca2d5fa263a731f7c20009b5e3d754ba1f1e03c33e93a48f3e7446
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/plugins/elementor/assets/js/preloaded-modules.min.js?ver=3.7.8 HTTP/1.1
Host: www.glocalmanagers.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.glocalmanagers.com/es/inicio/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 11 Oct 2022 14:55:57 GMT
etag: "a884-5eac379483690-gzip"
accept-ranges: bytes
cache-control: max-age=31536000
expires: Sat, 21 Oct 2023 22:04:38 GMT
vary: Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
content-length: 13121
content-type: application/x-javascript
date: Fri, 21 Oct 2022 22:04:38 GMT
server: Apache
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmSU5fBBc4.woff2
216.58.207.195200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmSU5fBBc4.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 15740, version 1.0\012- data
Hash b9c29351c46f3e8c8631c4002457f48a
e57e59c5780995ff2937ab2b511a769212974a87
f75911313e1c7802c23345ab57e754d87801581706780c993fb23ff4e0fe62ef
GET /s/roboto/v30/KFOlCnqEu92Fr1MmSU5fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.glocalmanagers.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15740
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 19 Oct 2022 19:34:21 GMT
expires: Thu, 19 Oct 2023 19:34:21 GMT
cache-control: public, max-age=31536000
age: 181818
last-modified: Wed, 11 May 2022 19:24:56 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
216.58.207.195200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 15920, version 1.0\012- data
Hash 3a44e06eb954b96aa043227f3534189d
23cef6993ddb2b2979e8e7647fc3763694e2ba7d
b019538234514166ec7665359d097403358f8a4c991901983922fb4d56989f1e
GET /s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.glocalmanagers.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15920
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 19 Oct 2022 14:07:32 GMT
expires: Thu, 19 Oct 2023 14:07:32 GMT
cache-control: public, max-age=31536000
age: 201427
last-modified: Wed, 11 May 2022 19:24:45 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.glocalmanagers.com/wp-content/uploads/2022/01/bottom-border3-envato-kit0129-CC0.png
107.180.50.176200 OK 28 kB URL HTTP/2 www.glocalmanagers.com/wp-content/uploads/2022/01/bottom-border3-envato-kit0129-CC0.png
IP 107.180.50.176:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type PNG image data, 1920 x 693, 8-bit/color RGBA, non-interlaced\012- data
Hash adef49b02074ea4d951b275a62d0284c
55159422ac631d5e0073e81077711228e3a909b9
148a86a71ab33f866dfdc9d00507f0be55c31ea39aeecfaf5cd58d00b6ae403e
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/2022/01/bottom-border3-envato-kit0129-CC0.png HTTP/1.1
Host: www.glocalmanagers.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.glocalmanagers.com/wp-content/uploads/elementor/css/post-2054.css?ver=1665510143
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 26 Jan 2022 14:24:50 GMT
etag: "6d2f-5d67cf6e45080"
accept-ranges: bytes
content-length: 27951
cache-control: max-age=31536000
expires: Sat, 21 Oct 2023 22:04:39 GMT
referrer-policy: no-referrer-when-downgrade
content-type: image/png
date: Fri, 21 Oct 2022 22:04:39 GMT
server: Apache
X-Firefox-Spdy: h2
fonts.gstatic.com/s/hind/v16/5aU69_a8oxmIdGl4BA.woff2
216.58.207.195200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/hind/v16/5aU69_a8oxmIdGl4BA.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 16216, version 1.0\012- data
Hash 4c5bc71b3cf6f2584725c0bb3e25d391
f051f482061dc48d09c328c45459dd04db5b5547
aca5dec430a7470ff1d8a16f9e7bb3ca30f2ff58f3bd60432cf1dddfa30c9d71
GET /s/hind/v16/5aU69_a8oxmIdGl4BA.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.glocalmanagers.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 16216
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 18 Oct 2022 17:27:22 GMT
expires: Wed, 18 Oct 2023 17:27:22 GMT
cache-control: public, max-age=31536000
age: 275837
last-modified: Tue, 26 Apr 2022 15:45:50 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOkCnqEu92Fr1MmgVxIIzI.woff2
216.58.207.195200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOkCnqEu92Fr1MmgVxIIzI.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 15764, version 1.0\012- data
Hash 603b8950590bf833546eee7cbc79944a
ebbde06eb829868c5f689afe2d48377608be1e7b
0f303f31706d39866cced9dcc17b61fb8423674278d7f6051d66b3a79ffbca18
GET /s/roboto/v30/KFOkCnqEu92Fr1MmgVxIIzI.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.glocalmanagers.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15764
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 19 Oct 2022 19:40:21 GMT
expires: Thu, 19 Oct 2023 19:40:21 GMT
cache-control: public, max-age=31536000
age: 181458
last-modified: Wed, 11 May 2022 19:24:35 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.glocalmanagers.com/wp-content/uploads/2022/02/sector-inversores.jpg
107.180.50.176200 OK 259 kB URL HTTP/2 www.glocalmanagers.com/wp-content/uploads/2022/02/sector-inversores.jpg
IP 107.180.50.176:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=12, height=467, bps=0, PhotometricIntepretation=RGB, orientation=upper-left, width=730], baseline, precision 8, 800x450, components 3\012- data
Size 259 kB (259325 bytes)
Hash d80112ef58acb8d634fdeece3c996819
e3fab49dc18528246fcdd64abcf141ac3afeea80
329a02662cfe039d66c672592ef7f0a72d44c7acf5eef938b4608e131058ad70
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/2022/02/sector-inversores.jpg HTTP/1.1
Host: www.glocalmanagers.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.glocalmanagers.com/wp-content/uploads/elementor/css/post-2054.css?ver=1665510143
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 10 Feb 2022 11:25:47 GMT
etag: "3f4fd-5d7a8362dc4c0"
accept-ranges: bytes
content-length: 259325
cache-control: max-age=31536000
expires: Sat, 21 Oct 2023 22:04:39 GMT
referrer-policy: no-referrer-when-downgrade
content-type: image/jpeg
date: Fri, 21 Oct 2022 22:04:39 GMT
server: Apache
X-Firefox-Spdy: h2
www.glocalmanagers.com/wp-content/uploads/2022/02/julian-hochgesang-2slVEjqu-2o-unsplash-scaled.jpeg
107.180.50.176200 OK 267 kB URL HTTP/2 www.glocalmanagers.com/wp-content/uploads/2022/02/julian-hochgesang-2slVEjqu-2o-unsplash-scaled.jpeg
IP 107.180.50.176:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 2560x1707, components 3\012- data
Size 267 kB (267301 bytes)
Hash 5e451369efd3b7a859151bc09b1e9cc0
7d673ee65b562755c0f3418d9323e2b71b5cb580
99c9ad7b316012697588f7f25d561285e1781e98d87802874a059949099b4898
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/uploads/2022/02/julian-hochgesang-2slVEjqu-2o-unsplash-scaled.jpeg HTTP/1.1
Host: www.glocalmanagers.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.glocalmanagers.com/wp-content/uploads/elementor/css/post-2054.css?ver=1665510143
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 01 Feb 2022 11:17:33 GMT
etag: "41425-5d6f30c298d40"
accept-ranges: bytes
content-length: 267301
cache-control: max-age=31536000
expires: Sat, 21 Oct 2023 22:04:39 GMT
referrer-policy: no-referrer-when-downgrade
content-type: image/jpeg
date: Fri, 21 Oct 2022 22:04:39 GMT
server: Apache
X-Firefox-Spdy: h2
www.glocalmanagers.com/wp-content/uploads/2022/02/mimi-thian-ZKBzlifgkgw-unsplash-scaled.jpeg
107.180.50.176200 OK 296 kB URL HTTP/2 www.glocalmanagers.com/wp-content/uploads/2022/02/mimi-thian-ZKBzlifgkgw-unsplash-scaled.jpeg
IP 107.180.50.176:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 2560x1920, components 3\012- data
Size 296 kB (296225 bytes)
Hash dfc13dcf637137d4684284e49d8cebd6
a8cd188e25fad955669f7d7e4f639a4d04e432dc
5272113841682028b4d4c8560ab24b952539dd61977a2cfade707e172347830a
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/uploads/2022/02/mimi-thian-ZKBzlifgkgw-unsplash-scaled.jpeg HTTP/1.1
Host: www.glocalmanagers.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.glocalmanagers.com/wp-content/uploads/elementor/css/post-2054.css?ver=1665510143
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 01 Feb 2022 11:31:27 GMT
etag: "48521-5d6f33ddf61c0"
accept-ranges: bytes
content-length: 296225
cache-control: max-age=31536000
expires: Sat, 21 Oct 2023 22:04:39 GMT
referrer-policy: no-referrer-when-downgrade
content-type: image/jpeg
date: Fri, 21 Oct 2022 22:04:39 GMT
server: Apache
X-Firefox-Spdy: h2
www.glocalmanagers.com/wp-content/uploads/2022/02/christin-hume-Hcfwew744z4-unsplash-scaled.jpeg
107.180.50.176200 OK 407 kB URL HTTP/2 www.glocalmanagers.com/wp-content/uploads/2022/02/christin-hume-Hcfwew744z4-unsplash-scaled.jpeg
IP 107.180.50.176:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 2560x1707, components 3\012- data
Size 407 kB (407087 bytes)
Hash d2b4ece3b0eda550cdb7301ee010aec4
b7edb587678810750e6a79b765cd08d1ed607311
043e3b483e459ffaf1968bca54e1642cbee143fd1406d3865639f02f40597bf1
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/uploads/2022/02/christin-hume-Hcfwew744z4-unsplash-scaled.jpeg HTTP/1.1
Host: www.glocalmanagers.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.glocalmanagers.com/wp-content/uploads/elementor/css/post-2054.css?ver=1665510143
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 01 Feb 2022 11:47:51 GMT
etag: "6362f-5d6f3788607c0"
accept-ranges: bytes
content-length: 407087
cache-control: max-age=31536000
expires: Sat, 21 Oct 2023 22:04:39 GMT
referrer-policy: no-referrer-when-downgrade
content-type: image/jpeg
date: Fri, 21 Oct 2022 22:04:39 GMT
server: Apache
X-Firefox-Spdy: h2
www.glocalmanagers.com/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-regular-400.woff2
107.180.50.176200 OK 13 kB URL HTTP/2 www.glocalmanagers.com/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-regular-400.woff2
IP 107.180.50.176:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type Web Open Font Format (Version 2), TrueType, length 13276, version 331.-31261\012- data
Hash f0f8230116992e521526097a28f54066
0447c6b10bbf73f97b23dcfd6e6a48510822cb6e
8afc6e5e842baab16010c2ce6fcf48ec4ded8e1579a37c1f1bc027e120d04951
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-regular-400.woff2 HTTP/1.1
Host: www.glocalmanagers.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://www.glocalmanagers.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/regular.min.css?ver=5.15.3
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 11 Oct 2022 14:55:46 GMT
etag: "33dc-5eac378976c74"
accept-ranges: bytes
content-length: 13276
cache-control: max-age=31536000
expires: Sat, 21 Oct 2023 22:04:39 GMT
vary: Accept-Encoding
referrer-policy: no-referrer-when-downgrade
content-type: application/font-woff2
date: Fri, 21 Oct 2022 22:04:39 GMT
server: Apache
X-Firefox-Spdy: h2
www.glocalmanagers.com/wp-content/uploads/2022/01/GLOCAL-Logo-clean-300x85.png
107.180.50.176200 OK 7.8 kB URL HTTP/2 www.glocalmanagers.com/wp-content/uploads/2022/01/GLOCAL-Logo-clean-300x85.png
IP 107.180.50.176:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type PNG image data, 300 x 85, 8-bit/color RGBA, non-interlaced\012- data
Hash b95574cf728826b03116efb7921d5fd0
942f6237c53f29d0a39f09e855d82f6b182878b0
c8c8e16eb38b09ff1ff4333631cc9ece2484c819faf922c0be447e4920125439
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/2022/01/GLOCAL-Logo-clean-300x85.png HTTP/1.1
Host: www.glocalmanagers.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.glocalmanagers.com/es/inicio/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 18 Oct 2022 20:20:15 GMT
etag: "1e6c-5eb54d1ef9d7c"
accept-ranges: bytes
content-length: 7788
cache-control: max-age=31536000
expires: Sat, 21 Oct 2023 22:04:39 GMT
referrer-policy: no-referrer-when-downgrade
content-type: image/png
date: Fri, 21 Oct 2022 22:04:39 GMT
server: Apache
X-Firefox-Spdy: h2
www.glocalmanagers.com/wp-content/uploads/2022/01/GLOCAL-Logo-azul-e1656527987190-300x91.png
107.180.50.176200 OK 8.2 kB URL HTTP/2 www.glocalmanagers.com/wp-content/uploads/2022/01/GLOCAL-Logo-azul-e1656527987190-300x91.png
IP 107.180.50.176:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type PNG image data, 300 x 91, 8-bit/color RGBA, non-interlaced\012- data
Hash 2b79ee12a7bf3317e9f44fe26d791ad1
ce8ac2ed73be9738c5470ca46b07e19f854dc63f
fda001d67f39d9c923d434c6d600728e0da5c65b20d869167174c189854c9622
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/2022/01/GLOCAL-Logo-azul-e1656527987190-300x91.png HTTP/1.1
Host: www.glocalmanagers.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.glocalmanagers.com/es/inicio/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 29 Jun 2022 18:39:47 GMT
etag: "1ff6-5e29a7a42d1b2"
accept-ranges: bytes
content-length: 8182
cache-control: max-age=31536000
expires: Sat, 21 Oct 2023 22:04:39 GMT
referrer-policy: no-referrer-when-downgrade
content-type: image/png
date: Fri, 21 Oct 2022 22:04:39 GMT
server: Apache
X-Firefox-Spdy: h2
www.glocalmanagers.com/wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.3.5
107.180.50.176200 OK 163 kB URL HTTP/2 www.glocalmanagers.com/wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.3.5
IP 107.180.50.176:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
Size 163 kB (163378 bytes)
Hash 2d80677ae40335b43bc6dbd73140dcb0
b30ad791447b0c786e1da50dc9ac70930ce0dde6
fddf28fc742246d3b8ba607d1886212f3a420bab7f6f020916635b91dfa7db6e
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.3.5 HTTP/1.1
Host: www.glocalmanagers.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.glocalmanagers.com/es/inicio/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 24 May 2022 15:25:46 GMT
etag: "52784-5dfc39214b280-gzip"
accept-ranges: bytes
cache-control: max-age=31536000
expires: Sat, 21 Oct 2023 22:04:38 GMT
vary: Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
content-type: application/x-javascript
date: Fri, 21 Oct 2022 22:04:38 GMT
server: Apache
X-Firefox-Spdy: h2
www.glocalmanagers.com/wp-content/plugins/elementor/assets/lib/eicons/fonts/eicons.woff2?5.16.0
107.180.50.176200 OK 93 kB URL HTTP/2 www.glocalmanagers.com/wp-content/plugins/elementor/assets/lib/eicons/fonts/eicons.woff2?5.16.0
IP 107.180.50.176:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type Web Open Font Format (Version 2), TrueType, length 93372, version 1.0\012- data
Hash aab0bb3379e0eb7ebc26071db61fbd57
711c8d350c4192c2f1aa7f73551445b89fb4b161
691fa7d17effc7d303eda0ad7e4a1d91b2f375506cfc8a774480cc2b55f156ea
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/plugins/elementor/assets/lib/eicons/fonts/eicons.woff2?5.16.0 HTTP/1.1
Host: www.glocalmanagers.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://www.glocalmanagers.com/wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.16.0
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 11 Oct 2022 14:55:50 GMT
etag: "16cbc-5eac378d45a36"
accept-ranges: bytes
content-length: 93372
cache-control: max-age=31536000
expires: Sat, 21 Oct 2023 22:04:39 GMT
vary: Accept-Encoding
referrer-policy: no-referrer-when-downgrade
content-type: application/font-woff2
date: Fri, 21 Oct 2022 22:04:39 GMT
server: Apache
X-Firefox-Spdy: h2
www.glocalmanagers.com/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-solid-900.woff2
107.180.50.176200 OK 78 kB URL HTTP/2 www.glocalmanagers.com/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-solid-900.woff2
IP 107.180.50.176:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type Web Open Font Format (Version 2), TrueType, length 78196, version 331.-31261\012- data
Hash e8a427e15cc502bef99cfd722b37ea98
a9922842a120a7f1eaced667480c5e185a106d69
d0b4256abed72481585662971262eabee345c19f837af00d7ce24239d3b40eef
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-solid-900.woff2 HTTP/1.1
Host: www.glocalmanagers.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://www.glocalmanagers.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/solid.min.css?ver=5.15.3
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 11 Oct 2022 14:55:46 GMT
etag: "13174-5eac37897688c"
accept-ranges: bytes
content-length: 78196
cache-control: max-age=31536000
expires: Sat, 21 Oct 2023 22:04:39 GMT
vary: Accept-Encoding
referrer-policy: no-referrer-when-downgrade
content-type: application/font-woff2
date: Fri, 21 Oct 2022 22:04:39 GMT
server: Apache
X-Firefox-Spdy: h2
www.glocalmanagers.com/wp-content/uploads/2022/08/B-Certificado.png
107.180.50.176200 OK 45 kB URL HTTP/2 www.glocalmanagers.com/wp-content/uploads/2022/08/B-Certificado.png
IP 107.180.50.176:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type PNG image data, 310 x 260, 8-bit/color RGBA, non-interlaced\012- data
Hash 9991af57380325d9c1a9c269b4acf23c
589e68699ef72c391db75ee01b436b4a2f9beaf1
d19e49f39685eca0a8e6ea4cbeed77adeb0bb417d14e0cc38c1eef6ec421f3d7
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/2022/08/B-Certificado.png HTTP/1.1
Host: www.glocalmanagers.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.glocalmanagers.com/es/inicio/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 24 Aug 2022 15:14:39 GMT
etag: "b069-5e6fe23c1174b"
accept-ranges: bytes
content-length: 45161
cache-control: max-age=31536000
expires: Sat, 21 Oct 2023 22:04:39 GMT
referrer-policy: no-referrer-when-downgrade
content-type: image/png
date: Fri, 21 Oct 2022 22:04:39 GMT
server: Apache
X-Firefox-Spdy: h2
www.glocalmanagers.com/wp-content/uploads/2022/02/grafico-1536x804.jpg
107.180.50.176200 OK 108 kB URL HTTP/2 www.glocalmanagers.com/wp-content/uploads/2022/02/grafico-1536x804.jpg
IP 107.180.50.176:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 1536x804, components 3\012- data
Size 108 kB (108523 bytes)
Hash 9a40b51f5bdfefee2643c2482fd20a66
a22573576f1efea66aae487f9cd0d276d8e05091
8797e3b57b3b036ff3a63fa71ad13b09be0b3839fbb1ec3cdc957fc89376ad8c
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/2022/02/grafico-1536x804.jpg HTTP/1.1
Host: www.glocalmanagers.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.glocalmanagers.com/es/inicio/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 16 Feb 2022 12:09:08 GMT
etag: "1a7eb-5d82184422100"
accept-ranges: bytes
content-length: 108523
cache-control: max-age=31536000
expires: Sat, 21 Oct 2023 22:04:39 GMT
referrer-policy: no-referrer-when-downgrade
content-type: image/jpeg
date: Fri, 21 Oct 2022 22:04:39 GMT
server: Apache
X-Firefox-Spdy: h2
www.glocalmanagers.com/wp-content/uploads/2022/01/rawpixel-676878-unsplash.jpg
107.180.50.176200 OK 967 kB URL HTTP/2 www.glocalmanagers.com/wp-content/uploads/2022/01/rawpixel-676878-unsplash.jpg
IP 107.180.50.176:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], progressive, precision 8, 1600x1259, components 3\012- data
Size 967 kB (966866 bytes)
Hash 56a2542c9c8fb2b69f7fa08673ad21ba
026f79afec13e350df936d35281bbd0b491dae5f
8c5a216d57a7091d7c2bc9d4d95ce234a039d137f86fc5178df74253f1ee9031
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/2022/01/rawpixel-676878-unsplash.jpg HTTP/1.1
Host: www.glocalmanagers.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.glocalmanagers.com/wp-content/uploads/elementor/css/post-2054.css?ver=1665510143
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 28 Jan 2022 15:12:14 GMT
etag: "ec0d2-5d6a5dc170f80"
accept-ranges: bytes
content-length: 966866
cache-control: max-age=31536000
expires: Sat, 21 Oct 2023 22:04:39 GMT
referrer-policy: no-referrer-when-downgrade
content-type: image/jpeg
date: Fri, 21 Oct 2022 22:04:39 GMT
server: Apache
X-Firefox-Spdy: h2
www.glocalmanagers.com/wp-content/uploads/2022/03/animacion-mapa.mp4
107.180.50.176206 Partial Content 2.6 MB URL HTTP/2 www.glocalmanagers.com/wp-content/uploads/2022/03/animacion-mapa.mp4
IP 107.180.50.176:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ISO Media, MP4 v2 [ISO 14496-14]\012- data
Size 2.6 MB (2571958 bytes)
Hash 28bd69a3d8a467ab08c081d05e30fac1
4a6702fa703d3c7c0a55e0455c9d84d03d28d96f
10af632ac02f1ed809509bedb730d955351b24a0c434d02ac9e53044b8b92c02
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/uploads/2022/03/animacion-mapa.mp4 HTTP/1.1
Host: www.glocalmanagers.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Referer: https://www.glocalmanagers.com/es/inicio/
Range: bytes=0-
Connection: keep-alive
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 206 Partial Content
last-modified: Thu, 03 Mar 2022 01:34:09 GMT
etag: "273eb6-5d94665002640"
accept-ranges: bytes
content-length: 2571958
cache-control: max-age=31536000
expires: Sat, 21 Oct 2023 22:04:39 GMT
vary: Accept-Encoding
referrer-policy: no-referrer-when-downgrade
content-range: bytes 0-2571957/2571958
content-type: video/mp4
date: Fri, 21 Oct 2022 22:04:39 GMT
server: Apache
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 2eaba36da86177a324dc3f59051e88f8
8248e37c850c10c13b3b55e85e81869984ff98ea
c62416a009668f178cc78773d72276b0d2999cad0ec94cf8ccbfe1090c3bd844
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3204
Cache-Control: max-age=146612
Content-Type: application/ocsp-response
Date: Fri, 21 Oct 2022 22:04:40 GMT
Etag: "6352a4a8-1d7"
Expires: Sun, 23 Oct 2022 14:48:12 GMT
Last-Modified: Fri, 21 Oct 2022 13:54:48 GMT
Server: ECS (ska/F714)
X-Cache: HIT
Content-Length: 471
www.google-analytics.com/analytics.js
142.250.74.174200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 142.250.74.174:0
File type ASCII text, with very long lines (1325)
Hash 47e6f374ca946fddd5b59871b325736c
baa9282efc8785e84d247c3bff518eaa45f101c4
16580b5c87c58e5702e411f1888fdef511094e4cd6d62bb47d16291ffb25985e
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.glocalmanagers.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20039
date: Fri, 21 Oct 2022 20:41:09 GMT
expires: Fri, 21 Oct 2022 22:41:09 GMT
cache-control: public, max-age=7200
age: 5011
last-modified: Tue, 27 Sep 2022 22:01:05 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
connect.facebook.net/en_US/fbevents.js
31.13.72.12200 OK 27 kB URL HTTP/2 connect.facebook.net/en_US/fbevents.js
IP 31.13.72.12:0
File type ASCII text, with very long lines (64348)
Hash 71875f848896ee82a106224e048bd060
277a624e507dff2cd9cff104aa0c5618ca76e105
a22635e404a419027fc88eee705d254910d05d481953733d5e1fda4bc6ab3c5b
GET /en_US/fbevents.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.glocalmanagers.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
content-type: application/x-javascript; charset=utf-8
content-security-policy: default-src facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com data: blob: 'self';script-src *.fbcdn.net *.facebook.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src data: blob: 'unsafe-inline' facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com;connect-src *.fbcdn.net *.facebook.net wss://*.fbcdn.net attachment.fbsbx.com blob: 'self';block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
pragma: public
cache-control: public, max-age=1200
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
x-fb-debug: JJ+0LHHP5vc3dIwyNTUjWKB22VgyG+Aje7fy6UORyMLKNubxsHFQ+dgZvw+Np4IX0xe3iWOoXgCi7ekGMKDxTA==
priority: u=3,i
content-length: 27027
x-fb-trip-id: 1904183273
date: Fri, 21 Oct 2022 22:04:40 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
www.gstatic.com/recaptcha/releases/vP4jQKq0YJFzU6e21-BGy3GP/recaptcha__en.js
142.250.74.163200 OK 160 kB URL HTTP/2 www.gstatic.com/recaptcha/releases/vP4jQKq0YJFzU6e21-BGy3GP/recaptcha__en.js
IP 142.250.74.163:0
File type ASCII text, with very long lines (608)
Size 160 kB (159789 bytes)
Hash 1230a090d5cedcb9e764406ab9497c1b
3d175bcf4ad9957c3e32611713c01347299b173e
585cafe3d6a3b932804aaa5aeb19a650688a2c15767f513d0d60c1941475c428
GET /recaptcha/releases/vP4jQKq0YJFzU6e21-BGy3GP/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.glocalmanagers.com
Connection: keep-alive
Referer: https://www.glocalmanagers.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 159789
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 21 Oct 2022 20:02:13 GMT
expires: Sat, 21 Oct 2023 20:02:13 GMT
cache-control: public, max-age=31536000
last-modified: Sun, 02 Oct 2022 20:02:07 GMT
content-type: text/javascript
age: 7347
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 2eaba36da86177a324dc3f59051e88f8
8248e37c850c10c13b3b55e85e81869984ff98ea
c62416a009668f178cc78773d72276b0d2999cad0ec94cf8ccbfe1090c3bd844
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3204
Cache-Control: max-age=146612
Content-Type: application/ocsp-response
Date: Fri, 21 Oct 2022 22:04:40 GMT
Etag: "6352a4a8-1d7"
Expires: Sun, 23 Oct 2022 14:48:12 GMT
Last-Modified: Fri, 21 Oct 2022 13:54:48 GMT
Server: ECS (ska/F714)
X-Cache: HIT
Content-Length: 471
www.glocalmanagers.com/wp-content/uploads/fbrfg/favicon-16x16.png
107.180.50.176200 OK 1.1 kB URL HTTP/2 www.glocalmanagers.com/wp-content/uploads/fbrfg/favicon-16x16.png
IP 107.180.50.176:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type PNG image data, 16 x 16, 8-bit colormap, non-interlaced\012- data
Hash b07d135dcc9b974a841d349b3630e56a
90b05a0ef254efd17cb9b34c0315fed349144b96
a9f69da8535e1bb2807d43a21fcf9b70f7cc139bb1300f01e46c7f4205963b63
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/fbrfg/favicon-16x16.png HTTP/1.1
Host: www.glocalmanagers.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.glocalmanagers.com/es/inicio/
Connection: keep-alive
Cookie: pll_language=es
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 04 Mar 2022 11:19:24 GMT
etag: "42f-5d962afdcd3a6"
accept-ranges: bytes
content-length: 1071
cache-control: max-age=31536000
expires: Sat, 21 Oct 2023 22:04:40 GMT
referrer-policy: no-referrer-when-downgrade
content-type: image/png
date: Fri, 21 Oct 2022 22:04:40 GMT
server: Apache
X-Firefox-Spdy: h2
www.glocalmanagers.com/wp-content/uploads/2022/01/GLOCAL-favicon-300x300.png
107.180.50.176200 OK 17 kB URL HTTP/2 www.glocalmanagers.com/wp-content/uploads/2022/01/GLOCAL-favicon-300x300.png
IP 107.180.50.176:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type PNG image data, 300 x 300, 8-bit/color RGBA, non-interlaced\012- data
Hash 565b70a661bb278d7363035c5b40980d
f3c6fdc36a69f30cdfceecad817d4aa2c552f40b
d6f895cc62fad910790ba880f6a28568ccad0d9fe5de3a6befb8a0418b9fbccb
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/2022/01/GLOCAL-favicon-300x300.png HTTP/1.1
Host: www.glocalmanagers.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.glocalmanagers.com/es/inicio/
Connection: keep-alive
Cookie: pll_language=es
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 27 Jun 2022 16:10:08 GMT
etag: "410e-5e270275fdbd2"
accept-ranges: bytes
content-length: 16654
cache-control: max-age=31536000
expires: Sat, 21 Oct 2023 22:04:40 GMT
referrer-policy: no-referrer-when-downgrade
content-type: image/png
date: Fri, 21 Oct 2022 22:04:40 GMT
server: Apache
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 1b0cd7fce51616614b5ebb265d02c2f7
6748d7df7c347bbe06afb2155fff3bbc8bf50eb0
d41beb047830bdacb772b75123c39906db8edcd49fdc8c9a00258a2556efd1c9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 21 Oct 2022 22:04:40 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.facebook.com/tr/?id=1382375845613535&ev=PageView&dl=https%3A%2F%2Fwww.glocalmanagers.com%2Fes%2Finicio%2F&rl=&if=false&ts=1666389894075&sw=1280&sh=1024&v=2.9.87&r=stable&ec=0&o=30&fbp=fb.1.1666389894074.1096069869&it=1666389893855&coo=false&exp=b2&rqm=GET
31.13.72.36200 OK 0 B URL HTTP/2 www.facebook.com/tr/?id=1382375845613535&ev=PageView&dl=https%3A%2F%2Fwww.glocalmanagers.com%2Fes%2Finicio%2F&rl=&if=false&ts=1666389894075&sw=1280&sh=1024&v=2.9.87&r=stable&ec=0&o=30&fbp=fb.1.1666389894074.1096069869&it=1666389893855&coo=false&exp=b2&rqm=GET
IP 31.13.72.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tr/?id=1382375845613535&ev=PageView&dl=https%3A%2F%2Fwww.glocalmanagers.com%2Fes%2Finicio%2F&rl=&if=false&ts=1666389894075&sw=1280&sh=1024&v=2.9.87&r=stable&ec=0&o=30&fbp=fb.1.1666389894074.1096069869&it=1666389893855&coo=false&exp=b2&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.glocalmanagers.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin:
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400
date: Fri, 21 Oct 2022 22:04:40 GMT
X-Firefox-Spdy: h2
www.youtube.com/iframe_api
172.217.21.174200 OK 3.0 kB URL HTTP/2 www.youtube.com/iframe_api
IP 172.217.21.174:0
File type ASCII text, with very long lines (509)
Hash 795f98d8e205057d891cf91beebe84be
5549e7196a36a9d8a2e58deeb804be818128d165
f4921ebfb080687e3f6136ab88299690088a5c5341ff227b6bbbb2ff00b56996
GET /iframe_api HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.glocalmanagers.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
x-content-type-options: nosniff
expires: Fri, 21 Oct 2022 22:04:40 GMT
date: Fri, 21 Oct 2022 22:04:40 GMT
cache-control: private, max-age=0
strict-transport-security: max-age=31536000
x-frame-options: SAMEORIGIN
report-to: {"group":"youtube_main","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube_main"}]}
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-platform=*, ch-ua-platform-version=*
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube_main"
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657?hl=en for more info."
content-encoding: br
server: ESF
x-xss-protection: 0
set-cookie: YSC=_qbceqL0lPY; Domain=.youtube.com; Path=/; Secure; HttpOnly; SameSite=none
VISITOR_INFO1_LIVE=gbMebYQVGEg; Domain=.youtube.com; Expires=Wed, 19-Apr-2023 22:04:40 GMT; Path=/; Secure; HttpOnly; SameSite=none
CONSENT=PENDING+481; expires=Sun, 20-Oct-2024 22:04:40 GMT; path=/; domain=.youtube.com; Secure
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.glocalmanagers.com/wp-content/uploads/2022/02/15-1.jpg
107.180.50.176200 OK 711 kB URL HTTP/2 www.glocalmanagers.com/wp-content/uploads/2022/02/15-1.jpg
IP 107.180.50.176:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=12, height=1799, bps=0, PhotometricIntepretation=RGB, orientation=upper-left, width=2400], progressive, precision 8, 2400x1799, components 3\012- data
Size 711 kB (711057 bytes)
Hash a19fad516603068f3ca0afc8fee423ad
88f7b1fabfdb9d2303d39e54188b9564187f61ed
7c0f4777f112ee2bf8b2aee6d23d916c5364df33d8ba882e5c97e2575868a209
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/2022/02/15-1.jpg HTTP/1.1
Host: www.glocalmanagers.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.glocalmanagers.com/es/inicio/
Connection: keep-alive
Cookie: pll_language=es; _ga=GA1.2.622997455.1666389894; _gid=GA1.2.1195696723.1666389894; _gat_gtag_UA_208500043_1=1; _fbp=fb.1.1666389894074.1096069869
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 10 Feb 2022 14:38:43 GMT
etag: "ad991-5d7aae82982c0"
accept-ranges: bytes
content-length: 711057
cache-control: max-age=31536000
expires: Sat, 21 Oct 2023 22:04:40 GMT
referrer-policy: no-referrer-when-downgrade
content-type: image/jpeg
date: Fri, 21 Oct 2022 22:04:40 GMT
server: Apache
X-Firefox-Spdy: h2
www.glocalmanagers.com/wp-content/uploads/2022/02/fondo-unicornio-1-scaled-50x100.jpg
107.180.50.176200 OK 1.1 kB URL HTTP/2 www.glocalmanagers.com/wp-content/uploads/2022/02/fondo-unicornio-1-scaled-50x100.jpg
IP 107.180.50.176:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 50x100, components 3\012- data
Hash e16faa974d32437eff5280ef679adfb6
3ee421acdfa26c9be6250697651ac115eaa52a81
3d53882af8a70e7546f28adb51b42162cee37e72956ae922b21ea975fd3bdd50
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/2022/02/fondo-unicornio-1-scaled-50x100.jpg HTTP/1.1
Host: www.glocalmanagers.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.glocalmanagers.com/es/inicio/
Connection: keep-alive
Cookie: pll_language=es; _ga=GA1.2.622997455.1666389894; _gid=GA1.2.1195696723.1666389894; _gat_gtag_UA_208500043_1=1; _fbp=fb.1.1666389894074.1096069869
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 23 Feb 2022 11:42:13 GMT
etag: "45e-5d8adf4e2cf40"
accept-ranges: bytes
content-length: 1118
cache-control: max-age=31536000
expires: Sat, 21 Oct 2023 22:04:40 GMT
referrer-policy: no-referrer-when-downgrade
content-type: image/jpeg
date: Fri, 21 Oct 2022 22:04:40 GMT
server: Apache
X-Firefox-Spdy: h2
www.glocalmanagers.com/wp-content/uploads/2022/02/Pioneers-in-AgriFood-Sustainable-Investing-50x100.jpg
107.180.50.176200 OK 2.6 kB URL HTTP/2 www.glocalmanagers.com/wp-content/uploads/2022/02/Pioneers-in-AgriFood-Sustainable-Investing-50x100.jpg
IP 107.180.50.176:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 50x100, components 3\012- data
Hash 058eadc36e4213c19ad2958bbfbb3857
c8d089d43393378fd58d1fc17630a4af303ce375
3a7b21f841150d32961c2b428fd34045248dcdab05dc013b7ce90f165a741c06
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/2022/02/Pioneers-in-AgriFood-Sustainable-Investing-50x100.jpg HTTP/1.1
Host: www.glocalmanagers.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.glocalmanagers.com/es/inicio/
Connection: keep-alive
Cookie: pll_language=es; _ga=GA1.2.622997455.1666389894; _gid=GA1.2.1195696723.1666389894; _gat_gtag_UA_208500043_1=1; _fbp=fb.1.1666389894074.1096069869
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 16 Feb 2022 13:13:23 GMT
etag: "a0c-5d8226a08c2c0"
accept-ranges: bytes
content-length: 2572
cache-control: max-age=31536000
expires: Sat, 21 Oct 2023 22:04:40 GMT
referrer-policy: no-referrer-when-downgrade
content-type: image/jpeg
date: Fri, 21 Oct 2022 22:04:40 GMT
server: Apache
X-Firefox-Spdy: h2
www.glocalmanagers.com/wp-content/uploads/2022/02/15-1-50x100.jpg
107.180.50.176200 OK 2.0 kB URL HTTP/2 www.glocalmanagers.com/wp-content/uploads/2022/02/15-1-50x100.jpg
IP 107.180.50.176:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 50x100, components 3\012- data
Hash 9a6a25c28c58e54923271a59ab62a5bb
06aaeeacba9657d68b98a19fb519439dd3ca33d2
9a68cd137b086e33bee1ab5a589a392d8ec172994dd24caa26d8cb65a1df5ecb
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/2022/02/15-1-50x100.jpg HTTP/1.1
Host: www.glocalmanagers.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.glocalmanagers.com/es/inicio/
Connection: keep-alive
Cookie: pll_language=es; _ga=GA1.2.622997455.1666389894; _gid=GA1.2.1195696723.1666389894; _gat_gtag_UA_208500043_1=1; _fbp=fb.1.1666389894074.1096069869
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 10 Feb 2022 14:38:55 GMT
etag: "7c5-5d7aae8e09dc0"
accept-ranges: bytes
content-length: 1989
cache-control: max-age=31536000
expires: Sat, 21 Oct 2023 22:04:40 GMT
referrer-policy: no-referrer-when-downgrade
content-type: image/jpeg
date: Fri, 21 Oct 2022 22:04:40 GMT
server: Apache
X-Firefox-Spdy: h2
www.glocalmanagers.com/wp-content/uploads/2022/02/fondo-unicornio-1-scaled.jpg
107.180.50.176200 OK 56 kB URL HTTP/2 www.glocalmanagers.com/wp-content/uploads/2022/02/fondo-unicornio-1-scaled.jpg
IP 107.180.50.176:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 2560x1200, components 3\012- data
Hash 37665de6784bdd49c7d7c6cbc5b47080
50cd4dbc2ade1de19ea708d118db3db9f0646a57
1aa6b67f4eef6685e74b46db176d8885b7395f410fe44d63ae6801fd26756652
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/2022/02/fondo-unicornio-1-scaled.jpg HTTP/1.1
Host: www.glocalmanagers.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.glocalmanagers.com/es/inicio/
Connection: keep-alive
Cookie: pll_language=es; _ga=GA1.2.622997455.1666389894; _gid=GA1.2.1195696723.1666389894; _gat_gtag_UA_208500043_1=1; _fbp=fb.1.1666389894074.1096069869
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 23 Feb 2022 11:40:12 GMT
etag: "da1c-5d8adedac7f00"
accept-ranges: bytes
content-length: 55836
cache-control: max-age=31536000
expires: Sat, 21 Oct 2023 22:04:40 GMT
referrer-policy: no-referrer-when-downgrade
content-type: image/jpeg
date: Fri, 21 Oct 2022 22:04:40 GMT
server: Apache
X-Firefox-Spdy: h2
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-208500043-1&cid=622997455.1666389894&jid=267256721&gjid=846551468&_gid=1195696723.1666389894&_u=YEBAAUAAAAAAACAAI~&z=1970359088
173.194.222.157200 OK 1 B URL HTTP/2 stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-208500043-1&cid=622997455.1666389894&jid=267256721&gjid=846551468&_gid=1195696723.1666389894&_u=YEBAAUAAAAAAACAAI~&z=1970359088
IP 173.194.222.157:0
File type very short file (no magic)
Hash c4ca4238a0b923820dcc509a6f75849b
356a192b7913b04c54574d18c28d46e6395428ab
6b86b273ff34fce19d6b804eff5a3f5747ada4eaa22f1d49c01e52ddb7875b4b
POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-208500043-1&cid=622997455.1666389894&jid=267256721&gjid=846551468&_gid=1195696723.1666389894&_u=YEBAAUAAAAAAACAAI~&z=1970359088 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://www.glocalmanagers.com
Connection: keep-alive
Referer: https://www.glocalmanagers.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://www.glocalmanagers.com
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Fri, 21 Oct 2022 22:04:41 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 1
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 06210a4a9db522652fd6aabfa05b2653
630b4ef71ec82a3970927a328d279035eaaa1267
5100e1703020fdef7d473c91e1c88dfb734083057f431feeefaaa24838990a21
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 21 Oct 2022 22:04:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 78f2476e0e57d3c337ba3e29aafe7c32
8ca483064a69de5aef97b32126cb95c13dbd33c4
33459d0c1860c80ee0159e476727a4fb0e704de2c71ad01fdd5761702f90a0c9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 21 Oct 2022 22:04:42 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
googleads.g.doubleclick.net/pagead/id
142.250.74.2302 Found 0 B URL HTTP/2 googleads.g.doubleclick.net/pagead/id
IP 142.250.74.2:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pagead/id HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
location: https://googleads.g.doubleclick.net/pagead/id?slf_rd=1
access-control-allow-credentials: true
access-control-allow-origin: https://www.youtube.com
date: Fri, 21 Oct 2022 22:04:42 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
server: cafe
content-length: 0
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
static.doubleclick.net/instream/ad_status.js
142.250.74.166200 OK 29 B URL HTTP/2 static.doubleclick.net/instream/ad_status.js
IP 142.250.74.166:0
Hash 1fa71744db23d0f8df9cce6719defcb7
e4be9b7136697942a036f97cf26ebaf703ad2067
eed0dc1fdb5d97ed188ae16fd5e1024a5bb744af47340346be2146300a6c54b9
GET /instream/ad_status.js HTTP/1.1
Host: static.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="ads-doubleclick-media"
report-to: {"group":"ads-doubleclick-media","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-doubleclick-media"}]}
timing-allow-origin: *
content-length: 29
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 21 Oct 2022 21:58:39 GMT
expires: Fri, 21 Oct 2022 22:13:39 GMT
cache-control: public, max-age=900
age: 363
last-modified: Thu, 12 Dec 2013 23:40:16 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
216.58.207.234200 OK 0 B URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
IP 216.58.207.234:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /$rpc/google.internal.waa.v1.Waa/Create HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-goog-api-key,x-user-agent
Referer: https://www.youtube.com/
Origin: https://www.youtube.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://www.youtube.com
vary: origin, referer, x-origin
access-control-allow-credentials: true
access-control-allow-methods: DELETE,GET,HEAD,OPTIONS,PATCH,POST,PUT
access-control-allow-headers: content-type,x-goog-api-key,x-user-agent
access-control-max-age: 3600
date: Fri, 21 Oct 2022 22:04:42 GMT
content-type: text/html
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 78f2476e0e57d3c337ba3e29aafe7c32
8ca483064a69de5aef97b32126cb95c13dbd33c4
33459d0c1860c80ee0159e476727a4fb0e704de2c71ad01fdd5761702f90a0c9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 21 Oct 2022 22:04:42 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
216.58.207.234200 OK 31 kB URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
IP 216.58.207.234:0
File type JSON data\012- , ASCII text, with very long lines (65536), with no line terminators
Hash 95774b93da077e76838214be927a90a2
6d90072f2662cbb655acd0293d0434b9be4bf0d2
4ae6866416bcdde9a3c45feb18e4dfb9041e0676302679c10d8c644e7cfca4b8
POST /$rpc/google.internal.waa.v1.Waa/Create HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Api-Key: AIzaSyDyT5W0Jh49F30Pqqtyfdf7pDLFKLJoAnw
Content-Type: application/json+protobuf
X-User-Agent: grpc-web-javascript/0.1
Content-Length: 24
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json+protobuf; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Fri, 21 Oct 2022 22:04:42 GMT
server: ESF
cache-control: private
content-length: 30828
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.youtube.com
access-control-allow-credentials: true
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash aa309aedf8b141359457b1e4e2ccb131
c724074a6ca5a6d6e9647cac8e94477311f67fb4
79dedaea42a3a988a64fc4d1510cebc024c84eda44f3549da13d28bce54f2b2f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 21 Oct 2022 22:04:42 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
i.ytimg.com/vi/iIDSONWZMas/sddefault.jpg
142.250.74.150200 OK 43 kB URL HTTP/2 i.ytimg.com/vi/iIDSONWZMas/sddefault.jpg
IP 142.250.74.150:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 640x480, components 3\012- data
Hash d43d1b43fed8d5daab1dfb77435046de
7ae6b0cf0a18e109e3a610a4eb2dc472bba2afda
b2da3e15ae1358702153349fb5e82bb4aa0647a0c2c8d7f4f5669cf0472984da
GET /vi/iIDSONWZMas/sddefault.jpg HTTP/1.1
Host: i.ytimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
content-type: image/jpeg
vary: Origin
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
timing-allow-origin: *
content-length: 43281
date: Fri, 21 Oct 2022 22:04:42 GMT
expires: Sat, 22 Oct 2022 00:04:42 GMT
cache-control: public, max-age=7200
etag: "1659707007"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash f5a0403c34dd256feacb1af3a533cac1
f0433e15b73b22d61caff3a718a2ec745bdf7421
ca62e818ba50bcf980f8fca10ded9c1f190d0909ddc8d3de32b76eb7a9d99204
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 21 Oct 2022 22:04:42 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash aa309aedf8b141359457b1e4e2ccb131
c724074a6ca5a6d6e9647cac8e94477311f67fb4
79dedaea42a3a988a64fc4d1510cebc024c84eda44f3549da13d28bce54f2b2f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 21 Oct 2022 22:04:42 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
yt3.ggpht.com/Wxxlz4PDU0WmyVKbqglvR0zlI63R-ZgNWMd1nrLFFlE4SEp7S0aX0WPhxRqBpcJBmfPp0n05qQ=s68-c-k-c0x00ffffff-no-rj
142.250.74.161200 OK 2.6 kB URL HTTP/2 yt3.ggpht.com/Wxxlz4PDU0WmyVKbqglvR0zlI63R-ZgNWMd1nrLFFlE4SEp7S0aX0WPhxRqBpcJBmfPp0n05qQ=s68-c-k-c0x00ffffff-no-rj
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 68x68, components 3\012- data
Hash 6522daa2f19a86a9b4cb478764808723
3ace3981cd90347e7a883b24cf9761af37c55c92
80bb69bc71821049502ababf73053e0dde6263de67309d48b4d724585865d644
GET /Wxxlz4PDU0WmyVKbqglvR0zlI63R-ZgNWMd1nrLFFlE4SEp7S0aX0WPhxRqBpcJBmfPp0n05qQ=s68-c-k-c0x00ffffff-no-rj HTTP/1.1
Host: yt3.ggpht.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-expose-headers: Content-Length
content-disposition: inline;filename="channels4_profile.jpg"
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
server: fife
content-length: 2634
x-xss-protection: 0
date: Fri, 21 Oct 2022 22:04:42 GMT
expires: Sat, 22 Oct 2022 13:30:30 GMT
cache-control: public, max-age=86400, no-transform
etag: "v1"
content-type: image/jpeg
age: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash f5a0403c34dd256feacb1af3a533cac1
f0433e15b73b22d61caff3a718a2ec745bdf7421
ca62e818ba50bcf980f8fca10ded9c1f190d0909ddc8d3de32b76eb7a9d99204
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 21 Oct 2022 22:04:42 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
216.58.207.234200 OK 0 B URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
IP 216.58.207.234:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /$rpc/google.internal.waa.v1.Waa/GenerateIT HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-goog-api-key,x-user-agent
Referer: https://www.youtube.com/
Origin: https://www.youtube.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: https://www.youtube.com
vary: origin, referer, x-origin
access-control-allow-credentials: true
access-control-allow-methods: DELETE,GET,HEAD,OPTIONS,PATCH,POST,PUT
access-control-allow-headers: content-type,x-goog-api-key,x-user-agent
access-control-max-age: 3600
date: Fri, 21 Oct 2022 22:04:42 GMT
content-type: text/html
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
216.58.207.234200 OK 110 B URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
IP 216.58.207.234:0
File type JSON data\012- , ASCII text, with no line terminators
Hash c889635033a638baa2478b3e2015895a
44c0b4dd35a374c6363c39f04fc6e6ae760d5e0d
ca4e24cb69f40f07221be009611930824814fadb216d7ef183e908f03cd7ab2d
POST /$rpc/google.internal.waa.v1.Waa/GenerateIT HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Api-Key: AIzaSyDyT5W0Jh49F30Pqqtyfdf7pDLFKLJoAnw
Content-Type: application/json+protobuf
X-User-Agent: grpc-web-javascript/0.1
Content-Length: 964
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json+protobuf; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Fri, 21 Oct 2022 22:04:42 GMT
server: ESF
cache-control: private
content-length: 110
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.youtube.com
access-control-allow-credentials: true
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa0f39369-b0de-4f1a-a265-fb5b78bd72bb.jpeg
34.120.237.76200 OK 8.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa0f39369-b0de-4f1a-a265-fb5b78bd72bb.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 9092a9add4d42e5bd0fd11c1459b5c69
4055fbef2d5d4e27a1d88ee293552f7742914390
b07359415e41671b4eb74c0d253d36f99bd2b40f6223bf4915bb11d2086af571
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa0f39369-b0de-4f1a-a265-fb5b78bd72bb.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 8859
x-amzn-requestid: 8ecd9a22-fe28-487d-b01a-a818eb874d6d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: aUsQ9Es8oAMFiVQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6351c0d2-6cd9f84f1fe795e5758d2527;Sampled=0
x-amzn-remapped-date: Thu, 20 Oct 2022 21:42:42 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: 7PXqP2B3EZKZDCcews8bixw8SacLHtQHNMgzH0JtTFQ0AZHok1Ki8A==
via: 1.1 010c0731b9775a983eceaec0f5fa6a2e.cloudfront.net (CloudFront), 1.1 28390a4d24ed4fdccd685d99cd06cf4e.cloudfront.net (CloudFront), 1.1 google
date: Fri, 21 Oct 2022 11:59:52 GMT
age: 36293
etag: "4055fbef2d5d4e27a1d88ee293552f7742914390"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
www.glocalmanagers.com/wp-content/plugins/pro-elements/assets/css/frontend.min.css?ver=3.7.3
107.180.50.176200 OK 0 B URL HTTP/2 www.glocalmanagers.com/wp-content/plugins/pro-elements/assets/css/frontend.min.css?ver=3.7.3
IP 107.180.50.176:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/plugins/pro-elements/assets/css/frontend.min.css?ver=3.7.3 HTTP/1.1
Host: www.glocalmanagers.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.glocalmanagers.com/es/inicio/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 11 Oct 2022 17:25:29 GMT
etag: "7551b-5eac5900821d1-gzip"
accept-ranges: bytes
cache-control: max-age=31536000
expires: Sat, 21 Oct 2023 22:04:38 GMT
vary: Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
content-length: 41255
content-type: text/css
date: Fri, 21 Oct 2022 22:04:38 GMT
server: Apache
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Raleway:400%7CRoboto:400
142.250.74.10200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Raleway:400%7CRoboto:400
IP 142.250.74.10:0
GET /css?family=Raleway:400%7CRoboto:400 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.glocalmanagers.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 21 Oct 2022 22:04:38 GMT
date: Fri, 21 Oct 2022 22:04:38 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.glocalmanagers.com/wp-content/plugins/pro-elements/assets/js/preloaded-elements-handlers.min.js?ver=3.7.3
107.180.50.176200 OK 0 B URL HTTP/2 www.glocalmanagers.com/wp-content/plugins/pro-elements/assets/js/preloaded-elements-handlers.min.js?ver=3.7.3
IP 107.180.50.176:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/plugins/pro-elements/assets/js/preloaded-elements-handlers.min.js?ver=3.7.3 HTTP/1.1
Host: www.glocalmanagers.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.glocalmanagers.com/es/inicio/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 11 Oct 2022 17:25:33 GMT
etag: "20de5-5eac59046ec34-gzip"
accept-ranges: bytes
cache-control: max-age=31536000
expires: Sat, 21 Oct 2023 22:04:38 GMT
vary: Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
content-length: 31443
content-type: application/x-javascript
date: Fri, 21 Oct 2022 22:04:38 GMT
server: Apache
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Roboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto+Slab%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRaleway%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CCairo%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CNunito+Sans%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CNunito%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CPoppins%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CHind%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto&ver=6.0.3
142.250.74.10200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Roboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto+Slab%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRaleway%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CCairo%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CNunito+Sans%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CNunito%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CPoppins%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CHind%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto&ver=6.0.3
IP 142.250.74.10:0
GET /css?family=Roboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto+Slab%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRaleway%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CCairo%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CNunito+Sans%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CNunito%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CPoppins%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CHind%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto&ver=6.0.3 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.glocalmanagers.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 21 Oct 2022 22:04:38 GMT
date: Fri, 21 Oct 2022 22:04:38 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.glocalmanagers.com/wp-content/uploads/2022/06/logo-agfunder.png
107.180.50.176200 OK 0 B URL HTTP/2 www.glocalmanagers.com/wp-content/uploads/2022/06/logo-agfunder.png
IP 107.180.50.176:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/2022/06/logo-agfunder.png HTTP/1.1
Host: www.glocalmanagers.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.glocalmanagers.com/es/inicio/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 13 Jun 2022 18:10:15 GMT
etag: "e2e1-5e158332b2708"
accept-ranges: bytes
content-length: 58081
cache-control: max-age=31536000
expires: Sat, 21 Oct 2023 22:04:38 GMT
referrer-policy: no-referrer-when-downgrade
content-type: image/png
date: Fri, 21 Oct 2022 22:04:38 GMT
server: Apache
X-Firefox-Spdy: h2
www.glocalmanagers.com/wp-content/uploads/2022/06/Logo-Bunge.png
107.180.50.176200 OK 0 B URL HTTP/2 www.glocalmanagers.com/wp-content/uploads/2022/06/Logo-Bunge.png
IP 107.180.50.176:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/2022/06/Logo-Bunge.png HTTP/1.1
Host: www.glocalmanagers.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.glocalmanagers.com/es/inicio/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 13 Jun 2022 18:06:48 GMT
etag: "65a8-5e15826da1f2b"
accept-ranges: bytes
content-length: 26024
cache-control: max-age=31536000
expires: Sat, 21 Oct 2023 22:04:38 GMT
referrer-policy: no-referrer-when-downgrade
content-type: image/png
date: Fri, 21 Oct 2022 22:04:38 GMT
server: Apache
X-Firefox-Spdy: h2