82.165.101.27200 OK 162 B URL User Request GET HTTP/2 IP 82.165.101.27:443
Certificate IssuerLet's Encrypt
Subjectblog.david-anton.com
FingerprintEE:5A:B8:41:A2:D2:0C:8D:4E:5A:4A:07:79:5D:9B:63:9F:C1:0E:F4
ValidityFri, 10 Mar 2023 16:20:10 GMT - Thu, 08 Jun 2023 16:20:09 GMT
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: blog.david-anton.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Sun, 09 Apr 2023 07:11:47 GMT
Content-Type: text/html
Content-Length: 162
Connection: keep-alive
Location: https://blog.david-anton.com/
82.165.101.27200 OK 13 kB URL User Request GET HTTP/2 IP 82.165.101.27:443
Certificate IssuerLet's Encrypt
Subjectblog.david-anton.com
FingerprintEE:5A:B8:41:A2:D2:0C:8D:4E:5A:4A:07:79:5D:9B:63:9F:C1:0E:F4
ValidityFri, 10 Mar 2023 16:20:10 GMT - Thu, 08 Jun 2023 16:20:09 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (51221)
Hash 9adb9bd8bbb7f2fe8355086fa4c19360
7a5556efeeced6168ab2aad1bbf59d57c25f999f
3d4514c2e147871ef5e2f11636c6334e63186029d7739bf4f54d5221a8101945
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: blog.david-anton.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Sun, 09 Apr 2023 07:11:49 GMT
content-type: text/html; charset=UTF-8
content-length: 13280
x-ua-compatible: IE=edge
link: <https://blog.david-anton.com/wp-json/>; rel="https://api.w.org/"
set-cookie: -bsBiMKuf=tow.vgMAn7eYV; expires=Mon, 10-Apr-2023 07:11:47 GMT; Max-Age=86400; path=/; secure
TsBj_PQnDWSMKNhO=4KUVaQTXiC72l; expires=Mon, 10-Apr-2023 07:11:47 GMT; Max-Age=86400; path=/; secure
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=172800
expires: Tue, 11 Apr 2023 07:11:47 GMT
x-cache-status: BYPASS
x-powered-by: PHP/7.4.33, PleskLin
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131 472 B IP 142.250.74.131:0
Hash 33aec5a6a26165f6104026c0dd599fc5
9ec1804ec89416bdf58e8735674e02b07cc231f2
b1d1d3c4e711f2dfbe75afc8bcfd8368fb69ee8720f684188744189fc25b8bdc
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 09 Apr 2023 07:11:53 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.googletagmanager.com/gtag/js?id=UA-1058630-21
142.250.74.136200 OK 45 kB URL GET HTTP/2 www.googletagmanager.com/gtag/js?id=UA-1058630-21
IP 142.250.74.136:443
Requested by https://blog.david-anton.com/
Certificate IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint3C:0B:85:94:2A:86:0A:B3:D0:9E:43:A9:87:6A:FB:56:49:9F:F6:B8
ValidityMon, 20 Mar 2023 08:17:43 GMT - Mon, 12 Jun 2023 08:17:42 GMT
File type ASCII text, with very long lines (2206)
Hash ee00f96f24bc75a89ef8b1dd4bdfc146
e98f47ab89fc5f1e1fff28adf4083d03402c7068
9df6767af0dac4797511c31a1088128c0962bce61365fd7684f613e5ef72d384
GET /gtag/js?id=UA-1058630-21 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://blog.david-anton.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sun, 09 Apr 2023 07:11:53 GMT
expires: Sun, 09 Apr 2023 07:11:53 GMT
cache-control: private, max-age=900
last-modified: Sun, 09 Apr 2023 06:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 44942
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
blog.david-anton.com/wp-content/cache/autoptimize/js/autoptimize_single_42661f2126c5821c455034d9e360b562.js?ver=3.28
82.165.101.27200 OK 345 B URL GET HTTP/2 blog.david-anton.com/wp-content/cache/autoptimize/js/autoptimize_single_42661f2126c5821c455034d9e360b562.js?ver=3.28
IP 82.165.101.27:443
Requested by https://blog.david-anton.com/
Certificate IssuerLet's Encrypt
Subjectblog.david-anton.com
FingerprintEE:5A:B8:41:A2:D2:0C:8D:4E:5A:4A:07:79:5D:9B:63:9F:C1:0E:F4
ValidityFri, 10 Mar 2023 16:20:10 GMT - Thu, 08 Jun 2023 16:20:09 GMT
File type ASCII text, with very long lines (317)
Hash 65812b5c9c6823e9f4720a3b9aa07c82
141d89427afc3ea5b2a6babb2f5ea27369527de5
eecd3affa358703ef69aa0c86a99ce9fd95233bf0babe11c990fa97a6bda9905
GET /wp-content/cache/autoptimize/js/autoptimize_single_42661f2126c5821c455034d9e360b562.js?ver=3.28 HTTP/1.1
Host: blog.david-anton.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://blog.david-anton.com/
Cookie: -bsBiMKuf=tow.vgMAn7eYV; TsBj_PQnDWSMKNhO=4KUVaQTXiC72l
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 09 Apr 2023 07:11:49 GMT
content-type: application/javascript
content-length: 345
x-accel-version: 0.01
last-modified: Wed, 31 Aug 2022 10:12:19 GMT
etag: "306-5e786bb68d5fc-gzip"
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=30672000, public, immutable
expires: Fri, 29 Mar 2024 07:11:49 GMT
x-cache-status: BYPASS
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
blog.david-anton.com/wp-content/themes/imagely/inc/side-panel/assets/js/main.min.js
82.165.101.27200 OK 360 B URL GET HTTP/2 blog.david-anton.com/wp-content/themes/imagely/inc/side-panel/assets/js/main.min.js
IP 82.165.101.27:443
Requested by https://blog.david-anton.com/
Certificate IssuerLet's Encrypt
Subjectblog.david-anton.com
FingerprintEE:5A:B8:41:A2:D2:0C:8D:4E:5A:4A:07:79:5D:9B:63:9F:C1:0E:F4
ValidityFri, 10 Mar 2023 16:20:10 GMT - Thu, 08 Jun 2023 16:20:09 GMT
File type ASCII text, with very long lines (793)
Hash 1dc2aa6c0041e29dd8a9325898b61fa8
f2effe9c6e586f9203eab8332f416dd8d61921eb
10b8fe23bb9431b9fbc22eefb9a6d4f6de0eb76ff0f51b385e723f5df25cbd74
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/imagely/inc/side-panel/assets/js/main.min.js HTTP/1.1
Host: blog.david-anton.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://blog.david-anton.com/
Cookie: -bsBiMKuf=tow.vgMAn7eYV; TsBj_PQnDWSMKNhO=4KUVaQTXiC72l
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 09 Apr 2023 07:11:49 GMT
content-type: application/javascript
content-length: 360
x-accel-version: 0.01
last-modified: Tue, 28 Dec 2021 18:19:23 GMT
etag: "33e-5d438dc55b982-gzip"
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=172800
expires: Tue, 11 Apr 2023 07:11:49 GMT
x-cache-status: BYPASS
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
blog.david-anton.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
82.165.101.27200 OK 4.5 kB URL GET HTTP/2 blog.david-anton.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP 82.165.101.27:443
Requested by https://blog.david-anton.com/
Certificate IssuerLet's Encrypt
Subjectblog.david-anton.com
FingerprintEE:5A:B8:41:A2:D2:0C:8D:4E:5A:4A:07:79:5D:9B:63:9F:C1:0E:F4
ValidityFri, 10 Mar 2023 16:20:10 GMT - Thu, 08 Jun 2023 16:20:09 GMT
File type ASCII text, with very long lines (11126)
Hash 6efa4ac1b1c191f423b192a62b1dce2b
ea57c763153b0e9a1638528723878559ba0146b1
3bb345a4516d37298dc340574baa45ce4dea1741039d2b9bd6cb61a3e4bceeca
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: blog.david-anton.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://blog.david-anton.com/
Cookie: -bsBiMKuf=tow.vgMAn7eYV; TsBj_PQnDWSMKNhO=4KUVaQTXiC72l
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 09 Apr 2023 07:11:49 GMT
content-type: application/javascript
last-modified: Tue, 28 Dec 2021 18:21:44 GMT
cache-control: max-age=172800
expires: Tue, 11 Apr 2023 07:11:49 GMT
etag: W/"61cb55b8-2bd8"
x-cache-status: BYPASS
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
use.fontawesome.com/releases/v5.3.1/css/v4-shims.css?ver=6.0.3
172.64.133.15200 OK 78 kB URL GET HTTP/2 use.fontawesome.com/releases/v5.3.1/css/v4-shims.css?ver=6.0.3
IP 172.64.133.15:443
Requested by https://blog.david-anton.com/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintF8:B8:F9:45:BF:19:61:F1:60:E0:B4:AF:F4:E5:96:31:40:A4:84:69
ValidityMon, 06 Jun 2022 00:00:00 GMT - Mon, 05 Jun 2023 23:59:59 GMT
File type ASCII text, with very long lines (26508)
Hash 94c234e5cde7d3f1a231d29b4bc9075d
42629fc57a202f6b66fef1f9e8c9518d83b0c83c
3fa8af03aed04535ee80387aaefca661b09ea2f8bbbd9f8279a8cd1b3be5978f
GET /releases/v5.3.1/css/v4-shims.css?ver=6.0.3 HTTP/1.1
Host: use.fontawesome.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://blog.david-anton.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 09 Apr 2023 07:11:53 GMT
content-type: text/css
x-amz-id-2: TKKkRZLEZM5Ry30V8DhaOmV4dLHAwTmkdOz1h4RueDSB60voZpQETScuJqGMoNF6uAXT/55bOWE=
x-amz-request-id: ZBN2VRCK6ZVNFY5W
last-modified: Wed, 30 Jun 2021 15:42:14 GMT
etag: W/"25b2445e0c1838b110583405b3ec0177"
cache-control: max-age=31556926
cf-cache-status: HIT
age: 1585044
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=XlVMBhSo9%2B7ixcZ8JUo%2BLeGcrwvddaXshCXEj6AFgJHiqr4X9lgCZCOM%2FFEnfvzI4sUEpEBP0p5GjQ%2FyHmCCI%2FVpTkl7q2anJ96bCc1JPCjR1yin7QaOtU%2F6FKoys%2BJwx0I9H5UI"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7b50f04859e674ad-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.sectigo.com/
104.18.32.68 472 B IP 104.18.32.68:0
Hash 71b73311ebca581bd350d3e38b38175d
b0890b6507680facb60a95aa8714fbbb8a14924c
a3007d85d31ffe0c26c9e27833811def96c78b6515c4348398c20555242bb09b
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 09 Apr 2023 07:11:53 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Fri, 07 Apr 2023 07:16:11 GMT
Expires: Fri, 14 Apr 2023 07:16:10 GMT
Etag: "b0890b6507680facb60a95aa8714fbbb8a14924c"
Cache-Control: max-age=431656,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7b50f048dc9fb4f1-OSL
use.fontawesome.com/releases/v5.3.1/js/v4-shims.js?ver=5.3.1
172.64.133.15200 OK 4.4 kB URL GET HTTP/2 use.fontawesome.com/releases/v5.3.1/js/v4-shims.js?ver=5.3.1
IP 172.64.133.15:443
Requested by https://blog.david-anton.com/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintF8:B8:F9:45:BF:19:61:F1:60:E0:B4:AF:F4:E5:96:31:40:A4:84:69
ValidityMon, 06 Jun 2022 00:00:00 GMT - Mon, 05 Jun 2023 23:59:59 GMT
File type ASCII text, with very long lines (15025)
Hash 26889f3e0e4a7694d716591a99bb48d8
6a2aee879f2f8ae8a6f294af76bb047e569f5f6d
77ed60d88aabc4be29b01b647d2f0fadb2fb234b018c28c2fe4f9d3c2183828e
GET /releases/v5.3.1/js/v4-shims.js?ver=5.3.1 HTTP/1.1
Host: use.fontawesome.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://blog.david-anton.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 09 Apr 2023 07:11:53 GMT
content-type: application/javascript
x-amz-id-2: xUHhLCrCc0ZRyxd3H2xCdZ/b0bOMMtThNLR4Pmf462iqMxHq+QBkSKBBl0FB5M9RNKZHTSwyXvQ=
x-amz-request-id: 48X3DJEXB2534KJZ
last-modified: Wed, 30 Jun 2021 15:42:14 GMT
etag: W/"ee849cdefc4ea73142659f04402a1a99"
cache-control: max-age=31556926
cf-cache-status: HIT
age: 842365
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=K26T85iIn4KAkJHMn4DLM23z9OXSNyR4zROlkFbOH6NThsdxOrW%2FtkUtXsMYrR9uZo5DWbdiIs9O4Y9ieJ7bQU%2B1v2K9yQuzwWCtkr9CFOZ875cHH2uJ84K%2B9RL%2FkQAbZma4GQhH"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7b50f04849d874ad-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.sectigo.com/
104.18.32.68 472 B IP 104.18.32.68:0
Hash 71b73311ebca581bd350d3e38b38175d
b0890b6507680facb60a95aa8714fbbb8a14924c
a3007d85d31ffe0c26c9e27833811def96c78b6515c4348398c20555242bb09b
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 09 Apr 2023 07:11:53 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Fri, 07 Apr 2023 07:16:11 GMT
Expires: Fri, 14 Apr 2023 07:16:10 GMT
Etag: "b0890b6507680facb60a95aa8714fbbb8a14924c"
Cache-Control: max-age=431656,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7b50f04a2e6bb4f1-OSL
sp-ao.shortpixel.ai/client/to_webp,q_glossy,ret_img,w_1280/https://blog.david-anton.com/wp-content/uploads/Hochzeitsfotograf-Offenburg-0005.jpg
194.242.11.186302 Found 0 B URL GET HTTP/2 sp-ao.shortpixel.ai/client/to_webp,q_glossy,ret_img,w_1280/https://blog.david-anton.com/wp-content/uploads/Hochzeitsfotograf-Offenburg-0005.jpg
IP 194.242.11.186:443
ASN #34989 ServeTheWorld AS
Requested by https://blog.david-anton.com/
Certificate IssuerSectigo Limited
Subject*.shortpixel.ai
FingerprintD3:2C:60:18:FC:72:6F:6C:49:7F:6E:01:A8:C0:0D:30:3D:E9:43:24
ValidityThu, 26 Jan 2023 00:00:00 GMT - Wed, 17 Jan 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /client/to_webp,q_glossy,ret_img,w_1280/https://blog.david-anton.com/wp-content/uploads/Hochzeitsfotograf-Offenburg-0005.jpg HTTP/1.1
Host: sp-ao.shortpixel.ai
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://blog.david-anton.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
date: Sun, 09 Apr 2023 07:11:53 GMT
content-type: text/html; charset=UTF-8
content-length: 0
location: https://blog.david-anton.com/wp-content/uploads/Hochzeitsfotograf-Offenburg-0005.jpg
server: BunnyCDN-NO1-830
cdn-pullzone: 257218
cdn-uid: ceac3dab-9909-4315-8d54-a27751b54dd0
cdn-requestcountrycode: NO
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
cache-control: public, max-age=86400
pragma: cache
cdn-cachedat: 04/08/2023 06:12:02
cdn-tag: 0; Domain: blog.david-anton.com; 302
cdn-proxyver: 1.03
cdn-requestpullcode: 302
cdn-requestpullsuccess: True
cdn-edgestorageid: 830
cdn-status: 302
cdn-requestid: 3d707ff806e537da78c5ef9415ed35be
cdn-cache: STALE
X-Firefox-Spdy: h2
blog.david-anton.com/wp-content/uploads/wpja-number.jpg
82.165.101.27200 OK 74 kB URL GET HTTP/2 blog.david-anton.com/wp-content/uploads/wpja-number.jpg
IP 82.165.101.27:443
Requested by https://blog.david-anton.com/
Certificate IssuerLet's Encrypt
Subjectblog.david-anton.com
FingerprintEE:5A:B8:41:A2:D2:0C:8D:4E:5A:4A:07:79:5D:9B:63:9F:C1:0E:F4
ValidityFri, 10 Mar 2023 16:20:10 GMT - Thu, 08 Jun 2023 16:20:09 GMT
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1200x484, components 3\012- data
Hash 195f9a10efa381cd70682ed518b887f8
90663968c53912207527907fd5740096c4f2970f
984e8316ae7cf6d741d90b7fc33763d409dd9174bcaa59b51438bd56cd3806f0
GET /wp-content/uploads/wpja-number.jpg HTTP/1.1
Host: blog.david-anton.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://blog.david-anton.com/
Connection: keep-alive
Cookie: -bsBiMKuf=tow.vgMAn7eYV; TsBj_PQnDWSMKNhO=4KUVaQTXiC72l
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 09 Apr 2023 07:11:50 GMT
content-type: image/jpeg
content-length: 74423
last-modified: Thu, 06 Feb 2020 09:40:59 GMT
cache-control: max-age=5184000
expires: Thu, 08 Jun 2023 07:11:50 GMT
etag: "5e3bdf2b-122b7"
x-cache-status: BYPASS
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
www.googletagmanager.com/gtag/js?id=G-MGRL7TWHZV&l=dataLayer&cx=c
142.250.74.136200 OK 69 kB URL GET HTTP/3 www.googletagmanager.com/gtag/js?id=G-MGRL7TWHZV&l=dataLayer&cx=c
IP 142.250.74.136:443
Requested by https://blog.david-anton.com/
Certificate IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint3C:0B:85:94:2A:86:0A:B3:D0:9E:43:A9:87:6A:FB:56:49:9F:F6:B8
ValidityMon, 20 Mar 2023 08:17:43 GMT - Mon, 12 Jun 2023 08:17:42 GMT
File type ASCII text, with very long lines (3897)
Hash 15daedce7ed06733d83e96e950b0925d
536ed18cfade4f00f1889346f069d9275f45fa23
c31a83b401adbe661dc538c25d9f5df6e26cc0baf2df25ee32b47a1716592d4c
GET /gtag/js?id=G-MGRL7TWHZV&l=dataLayer&cx=c HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Alt-Used: www.googletagmanager.com
Connection: keep-alive
Referer: https://blog.david-anton.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sun, 09 Apr 2023 07:11:54 GMT
expires: Sun, 09 Apr 2023 07:11:54 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 68646
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
blog.david-anton.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
82.165.101.27200 OK 254 kB URL GET HTTP/2 blog.david-anton.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
IP 82.165.101.27:443
Requested by https://blog.david-anton.com/
Certificate IssuerLet's Encrypt
Subjectblog.david-anton.com
FingerprintEE:5A:B8:41:A2:D2:0C:8D:4E:5A:4A:07:79:5D:9B:63:9F:C1:0E:F4
ValidityFri, 10 Mar 2023 16:20:10 GMT - Thu, 08 Jun 2023 16:20:09 GMT
File type ASCII text, with very long lines (65447)
Size 254 kB (254094 bytes)
Hash 8ea69324657b895875ad9a93f17ec507
b299f17f793c1b891d229127492900bb2147bab2
9af99af8c9b1204767adae83cccfc2bfaeddcab21a96a462b231de1ad479d4cd
GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.0 HTTP/1.1
Host: blog.david-anton.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://blog.david-anton.com/
Cookie: -bsBiMKuf=tow.vgMAn7eYV; TsBj_PQnDWSMKNhO=4KUVaQTXiC72l
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 09 Apr 2023 07:11:49 GMT
content-type: application/javascript
last-modified: Tue, 28 Dec 2021 18:21:44 GMT
cache-control: max-age=172800
expires: Tue, 11 Apr 2023 07:11:49 GMT
etag: W/"61cb55b8-15db1"
x-cache-status: BYPASS
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
ocsp.sectigo.com/
172.64.155.188 472 B IP 172.64.155.188:0
Hash 71b73311ebca581bd350d3e38b38175d
b0890b6507680facb60a95aa8714fbbb8a14924c
a3007d85d31ffe0c26c9e27833811def96c78b6515c4348398c20555242bb09b
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 09 Apr 2023 07:11:54 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Fri, 07 Apr 2023 07:16:11 GMT
Expires: Fri, 14 Apr 2023 07:16:10 GMT
Etag: "b0890b6507680facb60a95aa8714fbbb8a14924c"
Cache-Control: max-age=431655,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7b50f04a2bff1bfa-OSL
blog.david-anton.com/wp-content/plugins/nextgen-gallery/products/photocrati_nextgen/modules/ajax/static/ajax.min.js?ver=3.28
82.165.101.27200 OK 1.0 kB URL GET HTTP/2 blog.david-anton.com/wp-content/plugins/nextgen-gallery/products/photocrati_nextgen/modules/ajax/static/ajax.min.js?ver=3.28
IP 82.165.101.27:443
Requested by https://blog.david-anton.com/
Certificate IssuerLet's Encrypt
Subjectblog.david-anton.com
FingerprintEE:5A:B8:41:A2:D2:0C:8D:4E:5A:4A:07:79:5D:9B:63:9F:C1:0E:F4
ValidityFri, 10 Mar 2023 16:20:10 GMT - Thu, 08 Jun 2023 16:20:09 GMT
File type ASCII text, with very long lines (415)
Hash 7aa77bb706bd2cec2bd085e801fb56ff
8dc863dd9e42a0bfed3a073ce6cb9958bbad5f7a
aebc6fee3aa21ae67b1e9d3c8a34a6d6979a21a6fa95518737979f20548743e1
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/nextgen-gallery/products/photocrati_nextgen/modules/ajax/static/ajax.min.js?ver=3.28 HTTP/1.1
Host: blog.david-anton.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://blog.david-anton.com/
Cookie: -bsBiMKuf=tow.vgMAn7eYV; TsBj_PQnDWSMKNhO=4KUVaQTXiC72l
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 09 Apr 2023 07:11:49 GMT
content-type: application/javascript
last-modified: Wed, 31 Aug 2022 10:09:55 GMT
cache-control: max-age=172800
expires: Tue, 11 Apr 2023 07:11:49 GMT
etag: W/"630f3373-a95"
x-cache-status: BYPASS
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
blog.david-anton.com/wp-content/uploads/Obdachlose-Madrid.jpg
82.165.101.27200 OK 105 kB URL GET HTTP/2 blog.david-anton.com/wp-content/uploads/Obdachlose-Madrid.jpg
IP 82.165.101.27:443
Requested by https://blog.david-anton.com/
Certificate IssuerLet's Encrypt
Subjectblog.david-anton.com
FingerprintEE:5A:B8:41:A2:D2:0C:8D:4E:5A:4A:07:79:5D:9B:63:9F:C1:0E:F4
ValidityFri, 10 Mar 2023 16:20:10 GMT - Thu, 08 Jun 2023 16:20:09 GMT
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=6, xresolution=86, yresolution=94, resolutionunit=2], baseline, precision 8, 500x333, components 3\012- data
Size 105 kB (104871 bytes)
Hash 87c8f3fcb2aca0831b2ca3f8c9576835
2dfa314a78b0d7ea8f868f0cb87d6cbecbde784f
875614fc8c80c9c63041b358324188617d5ab3f1d1cbf3efacc3c5619fce571b
GET /wp-content/uploads/Obdachlose-Madrid.jpg HTTP/1.1
Host: blog.david-anton.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://blog.david-anton.com/
Connection: keep-alive
Cookie: -bsBiMKuf=tow.vgMAn7eYV; TsBj_PQnDWSMKNhO=4KUVaQTXiC72l; _ga_MGRL7TWHZV=GS1.1.1681024313.1.0.1681024313.0.0.0; _ga=GA1.1.795027286.1681024314
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 09 Apr 2023 07:11:50 GMT
content-type: image/jpeg
content-length: 104871
last-modified: Sun, 29 Dec 2019 10:18:53 GMT
cache-control: max-age=5184000
expires: Thu, 08 Jun 2023 07:11:50 GMT
etag: "5e087d8d-199a7"
x-cache-status: BYPASS
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
blog.david-anton.com/wp-includes/js/wp-emoji-release.min.js?ver=6.0.3
82.165.101.27200 OK 5.1 kB URL GET HTTP/2 blog.david-anton.com/wp-includes/js/wp-emoji-release.min.js?ver=6.0.3
IP 82.165.101.27:443
Requested by https://blog.david-anton.com/
Certificate IssuerLet's Encrypt
Subjectblog.david-anton.com
FingerprintEE:5A:B8:41:A2:D2:0C:8D:4E:5A:4A:07:79:5D:9B:63:9F:C1:0E:F4
ValidityFri, 10 Mar 2023 16:20:10 GMT - Thu, 08 Jun 2023 16:20:09 GMT
File type ASCII text, with very long lines (15660)
Hash 9e747d1bd4b36ed3c524c531a6c552d0
111877d556a0c8c21464729ab5a0eaa764002691
afa922841da1d69eed5616178cf5cba97d75264360776d98de0ddf029b0aa007
GET /wp-includes/js/wp-emoji-release.min.js?ver=6.0.3 HTTP/1.1
Host: blog.david-anton.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://blog.david-anton.com/
Cookie: -bsBiMKuf=tow.vgMAn7eYV; TsBj_PQnDWSMKNhO=4KUVaQTXiC72l
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 09 Apr 2023 07:11:49 GMT
content-type: application/javascript
last-modified: Wed, 31 Aug 2022 10:11:31 GMT
cache-control: max-age=172800
expires: Tue, 11 Apr 2023 07:11:49 GMT
etag: W/"630f33d3-48b9"
x-cache-status: BYPASS
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
sp-ao.shortpixel.ai/client/to_webp,q_glossy,ret_img,w_192,h_192/https://blog.david-anton.com/wp-content/uploads/cropped-favicon-192x192.png
194.242.11.186302 Found 0 B URL GET HTTP/2 sp-ao.shortpixel.ai/client/to_webp,q_glossy,ret_img,w_192,h_192/https://blog.david-anton.com/wp-content/uploads/cropped-favicon-192x192.png
IP 194.242.11.186:443
ASN #34989 ServeTheWorld AS
Requested by https://blog.david-anton.com/
Certificate IssuerSectigo Limited
Subject*.shortpixel.ai
FingerprintD3:2C:60:18:FC:72:6F:6C:49:7F:6E:01:A8:C0:0D:30:3D:E9:43:24
ValidityThu, 26 Jan 2023 00:00:00 GMT - Wed, 17 Jan 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /client/to_webp,q_glossy,ret_img,w_192,h_192/https://blog.david-anton.com/wp-content/uploads/cropped-favicon-192x192.png HTTP/1.1
Host: sp-ao.shortpixel.ai
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://blog.david-anton.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 302 Found
date: Sun, 09 Apr 2023 07:11:54 GMT
content-type: text/html; charset=UTF-8
content-length: 0
location: https://blog.david-anton.com/wp-content/uploads/cropped-favicon-192x192.png
server: BunnyCDN-NO1-830
cdn-pullzone: 257218
cdn-uid: ceac3dab-9909-4315-8d54-a27751b54dd0
cdn-requestcountrycode: NO
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
cache-control: public, max-age=86400
pragma: cache
cdn-cachedat: 04/08/2023 06:12:02
cdn-tag: 0; Domain: blog.david-anton.com; 302
cdn-proxyver: 1.03
cdn-requestpullcode: 302
cdn-requestpullsuccess: True
cdn-edgestorageid: 830
cdn-status: 302
cdn-requestid: 9dd0fa6531db5e5d1a8c5d7fe6842ffa
cdn-cache: STALE
X-Firefox-Spdy: h2
sp-ao.shortpixel.ai/client/to_webp,q_glossy,ret_img,w_32,h_32/https://blog.david-anton.com/wp-content/uploads/cropped-favicon-32x32.png
194.242.11.186302 Found 0 B URL GET HTTP/2 sp-ao.shortpixel.ai/client/to_webp,q_glossy,ret_img,w_32,h_32/https://blog.david-anton.com/wp-content/uploads/cropped-favicon-32x32.png
IP 194.242.11.186:443
ASN #34989 ServeTheWorld AS
Requested by https://blog.david-anton.com/
Certificate IssuerSectigo Limited
Subject*.shortpixel.ai
FingerprintD3:2C:60:18:FC:72:6F:6C:49:7F:6E:01:A8:C0:0D:30:3D:E9:43:24
ValidityThu, 26 Jan 2023 00:00:00 GMT - Wed, 17 Jan 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /client/to_webp,q_glossy,ret_img,w_32,h_32/https://blog.david-anton.com/wp-content/uploads/cropped-favicon-32x32.png HTTP/1.1
Host: sp-ao.shortpixel.ai
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://blog.david-anton.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 302 Found
date: Sun, 09 Apr 2023 07:11:54 GMT
content-type: text/html; charset=UTF-8
content-length: 0
location: https://blog.david-anton.com/wp-content/uploads/cropped-favicon-32x32.png
server: BunnyCDN-NO1-830
cdn-pullzone: 257218
cdn-uid: ceac3dab-9909-4315-8d54-a27751b54dd0
cdn-requestcountrycode: NO
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
cache-control: public, max-age=86400
pragma: cache
cdn-cachedat: 04/08/2023 06:12:02
cdn-tag: 0; Domain: blog.david-anton.com; 302
cdn-proxyver: 1.03
cdn-requestpullcode: 302
cdn-requestpullsuccess: True
cdn-edgestorageid: 830
cdn-status: 302
cdn-requestid: d4e349c295858d1d6936055e99c14a6e
cdn-cache: STALE
X-Firefox-Spdy: h2
blog.david-anton.com/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0
82.165.101.27200 OK 121 kB URL GET HTTP/2 blog.david-anton.com/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0
IP 82.165.101.27:443
Requested by https://blog.david-anton.com/
Certificate IssuerLet's Encrypt
Subjectblog.david-anton.com
FingerprintEE:5A:B8:41:A2:D2:0C:8D:4E:5A:4A:07:79:5D:9B:63:9F:C1:0E:F4
ValidityFri, 10 Mar 2023 16:20:10 GMT - Thu, 08 Jun 2023 16:20:09 GMT
File type Unicode text, UTF-8 text, with very long lines (19138), with no line terminators
Size 121 kB (120697 bytes)
Hash c914866ff801d01a6674033ec3374401
60387d2ef34222a592b68b9fdb0427f5ebcd3bb6
9ce4856b4346e2faf309eb5a8bb48818ebbf0d6cfa6db76b8632cfe3673341c8
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0 HTTP/1.1
Host: blog.david-anton.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://blog.david-anton.com/
Cookie: -bsBiMKuf=tow.vgMAn7eYV; TsBj_PQnDWSMKNhO=4KUVaQTXiC72l
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 09 Apr 2023 07:11:49 GMT
content-type: application/javascript
last-modified: Wed, 31 Aug 2022 10:11:31 GMT
cache-control: max-age=172800
expires: Tue, 11 Apr 2023 07:11:49 GMT
etag: W/"630f33d3-4ac6"
x-cache-status: BYPASS
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
blog.david-anton.com/wp-content/uploads/cropped-favicon-192x192.png
82.165.101.27200 OK 4.6 kB URL GET HTTP/2 blog.david-anton.com/wp-content/uploads/cropped-favicon-192x192.png
IP 82.165.101.27:443
Requested by https://blog.david-anton.com/
Certificate IssuerLet's Encrypt
Subjectblog.david-anton.com
FingerprintEE:5A:B8:41:A2:D2:0C:8D:4E:5A:4A:07:79:5D:9B:63:9F:C1:0E:F4
ValidityFri, 10 Mar 2023 16:20:10 GMT - Thu, 08 Jun 2023 16:20:09 GMT
File type PNG image data, 192 x 192, 8-bit/color RGBA, non-interlaced\012- data
Hash 144036e0d7cfec77fa7664c3da50592c
d061ed6a781c7ed88b8716bb5ad7b4aed430c10a
a11b9c000a767fefe675115e92a3f6b051677fd0aaa7b89119be37448484cbfa
GET /wp-content/uploads/cropped-favicon-192x192.png HTTP/1.1
Host: blog.david-anton.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://blog.david-anton.com/
Connection: keep-alive
Cookie: -bsBiMKuf=tow.vgMAn7eYV; TsBj_PQnDWSMKNhO=4KUVaQTXiC72l; _ga_MGRL7TWHZV=GS1.1.1681024313.1.0.1681024313.0.0.0; _ga=GA1.1.795027286.1681024314; cookielawinfo-checkbox-necessary=yes; cookielawinfo-checkbox-non-necessary=yes
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 09 Apr 2023 07:11:50 GMT
content-type: image/png
content-length: 4639
last-modified: Fri, 30 Nov 2018 11:36:33 GMT
cache-control: max-age=5184000
expires: Thu, 08 Jun 2023 07:11:50 GMT
etag: "5c0120c1-121f"
x-cache-status: BYPASS
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
blog.david-anton.com/wp-includes/js/imagesloaded.min.js?ver=4.1.4
82.165.101.27200 OK 2.7 kB URL GET HTTP/2 blog.david-anton.com/wp-includes/js/imagesloaded.min.js?ver=4.1.4
IP 82.165.101.27:443
Requested by https://blog.david-anton.com/
Certificate IssuerLet's Encrypt
Subjectblog.david-anton.com
FingerprintEE:5A:B8:41:A2:D2:0C:8D:4E:5A:4A:07:79:5D:9B:63:9F:C1:0E:F4
ValidityFri, 10 Mar 2023 16:20:10 GMT - Thu, 08 Jun 2023 16:20:09 GMT
File type ASCII text, with very long lines (5477)
Hash ab0e52b4e70573d3370f3e5fa9a1057c
10a1d73746d37c62eaaa5055fef8b31d36a45b0f
86ce6ccf4e1890cc322209d217fc7a58b1866a1c2cae14fd35a28b185896670d
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/imagesloaded.min.js?ver=4.1.4 HTTP/1.1
Host: blog.david-anton.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://blog.david-anton.com/
Cookie: -bsBiMKuf=tow.vgMAn7eYV; TsBj_PQnDWSMKNhO=4KUVaQTXiC72l
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 09 Apr 2023 07:11:49 GMT
content-type: application/javascript
last-modified: Tue, 28 Dec 2021 18:21:44 GMT
cache-control: max-age=172800
expires: Tue, 11 Apr 2023 07:11:49 GMT
etag: W/"61cb55b8-15fd"
x-cache-status: BYPASS
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
blog.david-anton.com/page/2/
82.165.101.27200 OK 13 kB URL GET HTTP/2 blog.david-anton.com/page/2/
IP 82.165.101.27:443
Requested by https://blog.david-anton.com/
Certificate IssuerLet's Encrypt
Subjectblog.david-anton.com
FingerprintEE:5A:B8:41:A2:D2:0C:8D:4E:5A:4A:07:79:5D:9B:63:9F:C1:0E:F4
ValidityFri, 10 Mar 2023 16:20:10 GMT - Thu, 08 Jun 2023 16:20:09 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (48666)
Hash a03246a814874af549e4d0d77c08110c
cdb29302028c43e4a9dedce6078c6cc85c814b4a
c0111f7e1e8a719241aad373e33060252144d6e0afa419539de2a83e0a28035f
Analyzer Verdict Alert fortinet Phishing
GET /page/2/ HTTP/1.1
Host: blog.david-anton.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
Connection: keep-alive
Referer: https://blog.david-anton.com/
Cookie: -bsBiMKuf=tow.vgMAn7eYV; TsBj_PQnDWSMKNhO=4KUVaQTXiC72l; _ga_MGRL7TWHZV=GS1.1.1681024313.1.0.1681024313.0.0.0; _ga=GA1.1.795027286.1681024314; cookielawinfo-checkbox-necessary=yes; cookielawinfo-checkbox-non-necessary=yes
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 09 Apr 2023 07:11:52 GMT
content-type: text/html; charset=UTF-8
content-length: 12676
x-ua-compatible: IE=edge
link: <https://blog.david-anton.com/wp-json/>; rel="https://api.w.org/"
set-cookie: -bsBiMKuf=tow.vgMAn7eYV; expires=Mon, 10-Apr-2023 07:11:50 GMT; Max-Age=86400; path=/; secure
TsBj_PQnDWSMKNhO=4KUVaQTXiC72l; expires=Mon, 10-Apr-2023 07:11:50 GMT; Max-Age=86400; path=/; secure
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=172800
expires: Tue, 11 Apr 2023 07:11:50 GMT
x-cache-status: BYPASS
x-powered-by: PHP/7.4.33, PleskLin
X-Firefox-Spdy: h2
blog.david-anton.com/wp-content/uploads/Hochzeitsfotograf-Offenburg-0005.jpg
82.165.101.27200 OK 224 kB URL GET HTTP/2 blog.david-anton.com/wp-content/uploads/Hochzeitsfotograf-Offenburg-0005.jpg
IP 82.165.101.27:443
Requested by https://blog.david-anton.com/
Certificate IssuerLet's Encrypt
Subjectblog.david-anton.com
FingerprintEE:5A:B8:41:A2:D2:0C:8D:4E:5A:4A:07:79:5D:9B:63:9F:C1:0E:F4
ValidityFri, 10 Mar 2023 16:20:10 GMT - Thu, 08 Jun 2023 16:20:09 GMT
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=5, xresolution=74, yresolution=82, resolutionunit=2, copyright=David Anton Asensio], baseline, precision 8, 1280x854, components 3\012- data
Size 224 kB (223975 bytes)
Hash d91a07ee1578064700da88c1a6d6cca6
079c34b5ae4ab125164feb935a92b8e1ef66c0e9
15bcf37e5c2c5cdf8a6a5fe02dc67e071d6da1f631526ad6dc12f7707b7455c8
GET /wp-content/uploads/Hochzeitsfotograf-Offenburg-0005.jpg HTTP/1.1
Host: blog.david-anton.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://blog.david-anton.com/
Connection: keep-alive
Cookie: -bsBiMKuf=tow.vgMAn7eYV; TsBj_PQnDWSMKNhO=4KUVaQTXiC72l
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Sun, 09 Apr 2023 07:11:50 GMT
content-type: image/jpeg
content-length: 223975
last-modified: Fri, 31 Dec 2021 10:56:10 GMT
cache-control: max-age=5184000
expires: Thu, 08 Jun 2023 07:11:50 GMT
etag: "61cee1ca-36ae7"
x-cache-status: BYPASS
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
blog.david-anton.com/wp-content/cache/autoptimize/js/autoptimize_single_dffa195b546cf1dfd52f2206955eb892.js?ver=2.1.2
82.165.101.27200 OK 28 kB URL GET HTTP/2 blog.david-anton.com/wp-content/cache/autoptimize/js/autoptimize_single_dffa195b546cf1dfd52f2206955eb892.js?ver=2.1.2
IP 82.165.101.27:443
Requested by https://blog.david-anton.com/
Certificate IssuerLet's Encrypt
Subjectblog.david-anton.com
FingerprintEE:5A:B8:41:A2:D2:0C:8D:4E:5A:4A:07:79:5D:9B:63:9F:C1:0E:F4
ValidityFri, 10 Mar 2023 16:20:10 GMT - Thu, 08 Jun 2023 16:20:09 GMT
File type ASCII text, with very long lines (2188)
Hash b7a6919f9899c8b64fa8877319143fdd
67bbf10d50812bda430fedea1465a6ae1895383d
74a3cb03a59beecff186a92d23f4a70d57f0531d3e7466f1818b8859022dcb91
GET /wp-content/cache/autoptimize/js/autoptimize_single_dffa195b546cf1dfd52f2206955eb892.js?ver=2.1.2 HTTP/1.1
Host: blog.david-anton.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://blog.david-anton.com/
Cookie: -bsBiMKuf=tow.vgMAn7eYV; TsBj_PQnDWSMKNhO=4KUVaQTXiC72l
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Sun, 09 Apr 2023 07:11:49 GMT
content-type: application/javascript
last-modified: Wed, 31 Aug 2022 10:12:19 GMT
cache-control: max-age=30672000, public, immutable
expires: Fri, 29 Mar 2024 07:11:49 GMT
etag: W/"630f3403-6c14"
x-cache-status: BYPASS
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
www.david-anton.com/wp-content/uploads/nggallery_import/7R36325.jpg
82.165.101.27200 OK 114 kB URL GET HTTP/2 www.david-anton.com/wp-content/uploads/nggallery_import/7R36325.jpg
IP 82.165.101.27:443
Requested by https://blog.david-anton.com/
Certificate IssuerLet's Encrypt
Subjectdavid-anton.com
FingerprintBF:1F:E8:46:76:BE:BC:BF:7F:C2:8C:B8:40:F7:B9:EA:1E:F2:60:41
ValidityFri, 03 Mar 2023 17:20:25 GMT - Thu, 01 Jun 2023 17:20:24 GMT
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=5, xresolution=74, yresolution=82, resolutionunit=2, copyright=David Anton Asensio], baseline, precision 8, 1100x734, components 3\012- data
Size 114 kB (113848 bytes)
Hash 273c79f34f3a0a090815f398f5ca41b8
4d12e4ab515f11040643cbcb6739100bc57b914e
b2d937380f6983a46586e476fc8ab385a25ba296dd53a6c774593301beb22f80
GET /wp-content/uploads/nggallery_import/7R36325.jpg HTTP/1.1
Host: www.david-anton.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://blog.david-anton.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Sun, 09 Apr 2023 07:11:50 GMT
content-type: image/jpeg
content-length: 113848
last-modified: Tue, 28 Dec 2021 16:52:17 GMT
cache-control: max-age=5184000
expires: Thu, 08 Jun 2023 07:11:50 GMT
etag: "61cb40c1-1bcb8"
x-cache-status: MISS
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
blog.david-anton.com/wp-content/cache/autoptimize/css/autoptimize_b3a2a334ab4fbc267fd2dc862a5fec1f.css
82.165.101.27200 OK 391 kB URL GET HTTP/2 blog.david-anton.com/wp-content/cache/autoptimize/css/autoptimize_b3a2a334ab4fbc267fd2dc862a5fec1f.css
IP 82.165.101.27:443
Requested by https://blog.david-anton.com/
Certificate IssuerLet's Encrypt
Subjectblog.david-anton.com
FingerprintEE:5A:B8:41:A2:D2:0C:8D:4E:5A:4A:07:79:5D:9B:63:9F:C1:0E:F4
ValidityFri, 10 Mar 2023 16:20:10 GMT - Thu, 08 Jun 2023 16:20:09 GMT
Size 391 kB (391127 bytes)
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /wp-content/cache/autoptimize/css/autoptimize_b3a2a334ab4fbc267fd2dc862a5fec1f.css HTTP/1.1
Host: blog.david-anton.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://blog.david-anton.com/
Cookie: -bsBiMKuf=tow.vgMAn7eYV; TsBj_PQnDWSMKNhO=4KUVaQTXiC72l
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Sun, 09 Apr 2023 07:11:49 GMT
content-type: text/css
last-modified: Wed, 31 Aug 2022 10:12:20 GMT
cache-control: max-age=30672000, public, immutable
expires: Fri, 29 Mar 2024 07:11:49 GMT
etag: W/"630f3404-5f7d7"
x-cache-status: BYPASS
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
blog.david-anton.com/wp-includes/css/dashicons.min.css?ver=6.0.3
82.165.101.27200 OK 59 kB URL GET HTTP/2 blog.david-anton.com/wp-includes/css/dashicons.min.css?ver=6.0.3
IP 82.165.101.27:443
Requested by https://blog.david-anton.com/
Certificate IssuerLet's Encrypt
Subjectblog.david-anton.com
FingerprintEE:5A:B8:41:A2:D2:0C:8D:4E:5A:4A:07:79:5D:9B:63:9F:C1:0E:F4
ValidityFri, 10 Mar 2023 16:20:10 GMT - Thu, 08 Jun 2023 16:20:09 GMT
File type ASCII text, with very long lines (58981)
Hash d68d6bf519169d86e155bad0bed833f8
27ba9c67d0e775fc4e6dd62011daf4c3902698fc
c21e5a2b32c47bc5f9d9efc97bc0e29fd081946d1d3ebffc5621cfafb1d3960e
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/css/dashicons.min.css?ver=6.0.3 HTTP/1.1
Host: blog.david-anton.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://blog.david-anton.com/
Cookie: -bsBiMKuf=tow.vgMAn7eYV; TsBj_PQnDWSMKNhO=4KUVaQTXiC72l
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Sun, 09 Apr 2023 07:11:49 GMT
content-type: text/css
last-modified: Tue, 28 Dec 2021 18:21:44 GMT
cache-control: max-age=5184000
expires: Thu, 08 Jun 2023 07:11:49 GMT
etag: W/"61cb55b8-e688"
x-cache-status: BYPASS
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
blog.david-anton.com/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9
82.165.101.27200 OK 6.5 kB URL GET HTTP/2 blog.david-anton.com/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9
IP 82.165.101.27:443
Requested by https://blog.david-anton.com/
Certificate IssuerLet's Encrypt
Subjectblog.david-anton.com
FingerprintEE:5A:B8:41:A2:D2:0C:8D:4E:5A:4A:07:79:5D:9B:63:9F:C1:0E:F4
ValidityFri, 10 Mar 2023 16:20:10 GMT - Thu, 08 Jun 2023 16:20:09 GMT
File type ASCII text, with very long lines (6637), with no line terminators
Hash fbd33253058e5e0407a4db2c5f2ef51d
97718f74c2d2e013073a56821e520a0acadce4fe
5b2427c792b1b03c804f01c67eea1deeb69e8209c19a54686b655222acf1bb3c
GET /wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9 HTTP/1.1
Host: blog.david-anton.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://blog.david-anton.com/
Cookie: -bsBiMKuf=tow.vgMAn7eYV; TsBj_PQnDWSMKNhO=4KUVaQTXiC72l
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Sun, 09 Apr 2023 07:11:49 GMT
content-type: application/javascript
last-modified: Wed, 31 Aug 2022 10:11:31 GMT
cache-control: max-age=172800
expires: Tue, 11 Apr 2023 07:11:49 GMT
etag: W/"630f33d3-194b"
x-cache-status: BYPASS
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
blog.david-anton.com/wp-content/cache/autoptimize/js/autoptimize_single_c9ecd41de2bf0fcc902760f68c2ef6a4.js?ver=3.28
82.165.101.27200 OK 3.7 kB URL GET HTTP/2 blog.david-anton.com/wp-content/cache/autoptimize/js/autoptimize_single_c9ecd41de2bf0fcc902760f68c2ef6a4.js?ver=3.28
IP 82.165.101.27:443
Requested by https://blog.david-anton.com/
Certificate IssuerLet's Encrypt
Subjectblog.david-anton.com
FingerprintEE:5A:B8:41:A2:D2:0C:8D:4E:5A:4A:07:79:5D:9B:63:9F:C1:0E:F4
ValidityFri, 10 Mar 2023 16:20:10 GMT - Thu, 08 Jun 2023 16:20:09 GMT
File type ASCII text, with very long lines (3669), with no line terminators
Hash 71f0548a18c661663225f7bb0aa2c7bd
6ad61e673e4b9a5ac130e8995fae5b863fbd15de
74a1295e1c6a66b9d4fcab2547fe093d896183f8a1eaacfcb090de15eeaa9d9b
GET /wp-content/cache/autoptimize/js/autoptimize_single_c9ecd41de2bf0fcc902760f68c2ef6a4.js?ver=3.28 HTTP/1.1
Host: blog.david-anton.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://blog.david-anton.com/
Cookie: -bsBiMKuf=tow.vgMAn7eYV; TsBj_PQnDWSMKNhO=4KUVaQTXiC72l
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Sun, 09 Apr 2023 07:11:49 GMT
content-type: application/javascript
last-modified: Wed, 31 Aug 2022 10:12:19 GMT
cache-control: max-age=30672000, public, immutable
expires: Fri, 29 Mar 2024 07:11:49 GMT
etag: W/"630f3403-e49"
x-cache-status: BYPASS
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
sp-ao.shortpixel.ai/client/to_webp,q_glossy,ret_img,w_500/https://blog.david-anton.com/wp-content/uploads/Obdachlose-Madrid.jpg
194.242.11.186302 Found 105 kB URL GET HTTP/2 sp-ao.shortpixel.ai/client/to_webp,q_glossy,ret_img,w_500/https://blog.david-anton.com/wp-content/uploads/Obdachlose-Madrid.jpg
IP 194.242.11.186:443
ASN #34989 ServeTheWorld AS
Requested by https://blog.david-anton.com/
Certificate IssuerSectigo Limited
Subject*.shortpixel.ai
FingerprintD3:2C:60:18:FC:72:6F:6C:49:7F:6E:01:A8:C0:0D:30:3D:E9:43:24
ValidityThu, 26 Jan 2023 00:00:00 GMT - Wed, 17 Jan 2024 23:59:59 GMT
Size 105 kB (104871 bytes)
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /client/to_webp,q_glossy,ret_img,w_500/https://blog.david-anton.com/wp-content/uploads/Obdachlose-Madrid.jpg HTTP/1.1
Host: sp-ao.shortpixel.ai
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://blog.david-anton.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
date: Sun, 09 Apr 2023 07:11:54 GMT
content-type: text/html; charset=UTF-8
content-length: 0
location: https://blog.david-anton.com/wp-content/uploads/Obdachlose-Madrid.jpg
server: BunnyCDN-NO1-830
cdn-pullzone: 257218
cdn-uid: ceac3dab-9909-4315-8d54-a27751b54dd0
cdn-requestcountrycode: NO
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
cache-control: public, max-age=86400
pragma: cache
cdn-cachedat: 04/08/2023 06:12:02
cdn-tag: 0; Domain: blog.david-anton.com; 302
cdn-proxyver: 1.03
cdn-requestpullcode: 302
cdn-requestpullsuccess: True
cdn-edgestorageid: 830
cdn-status: 302
cdn-requestid: 6663320ddc60f682a5e77304df613b10
cdn-cache: STALE
X-Firefox-Spdy: h2
use.fontawesome.com/releases/v5.3.1/js/all.js?ver=5.3.1
172.64.133.15200 OK 986 kB URL GET HTTP/2 use.fontawesome.com/releases/v5.3.1/js/all.js?ver=5.3.1
IP 172.64.133.15:443
Requested by https://blog.david-anton.com/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintF8:B8:F9:45:BF:19:61:F1:60:E0:B4:AF:F4:E5:96:31:40:A4:84:69
ValidityMon, 06 Jun 2022 00:00:00 GMT - Mon, 05 Jun 2023 23:59:59 GMT
File type ASCII text, with very long lines (65351)
Size 986 kB (986033 bytes)
Hash d0482db440697a659af4980d2e841891
d7ff2806086f5924e06910e90a79b44492b52450
8cb270b4d9485a93b31df98113fda8723ffc067fa7bfa90cedd47b76f7b10be1
GET /releases/v5.3.1/js/all.js?ver=5.3.1 HTTP/1.1
Host: use.fontawesome.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://blog.david-anton.com
Connection: keep-alive
Referer: https://blog.david-anton.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 09 Apr 2023 07:11:54 GMT
content-type: application/javascript
x-amz-id-2: /dmnNZGwdOKJQsvlOpea6ixq8X48DwFVLnCl5rTMKQaTkFdkQ1NfIan8T1d/q7V7UMbagltqRgE=
x-amz-request-id: SBE41BZ27ZPYGW7Q
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding
last-modified: Wed, 30 Jun 2021 15:42:14 GMT
etag: W/"d0482db440697a659af4980d2e841891"
cache-control: max-age=31556926
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=TlWrEyrYmre6VxtC9ca0%2FEnHSGdyX3KGUZvHaQCTgx6B67PwSTHY0ARTrXNUEZvfuy%2F7BtJgZ4t%2FxnuA3buJ2Eh939vfEX3V5MuUgxCm48TUZCfDYy91Jeq3f75Y4nIE5DmL8eIK"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7b50f0485ecbd16c-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
blog.david-anton.com/wp-content/themes/imagely/assets/js/main.min.js?ver=2.0.0
82.165.101.27200 OK 63 kB URL GET HTTP/2 blog.david-anton.com/wp-content/themes/imagely/assets/js/main.min.js?ver=2.0.0
IP 82.165.101.27:443
Requested by https://blog.david-anton.com/
Certificate IssuerLet's Encrypt
Subjectblog.david-anton.com
FingerprintEE:5A:B8:41:A2:D2:0C:8D:4E:5A:4A:07:79:5D:9B:63:9F:C1:0E:F4
ValidityFri, 10 Mar 2023 16:20:10 GMT - Thu, 08 Jun 2023 16:20:09 GMT
File type ASCII text, with very long lines (63244)
Hash 22ee0df809a8627f773d16342c1e1a91
23b09f97c6d9a4fc063b7f22b53bb56a7eed7414
5614ed14e9d875c98b7466d9b8fe57856fc2d7e2a18ba5b35cb6c8fa62cf7e72
GET /wp-content/themes/imagely/assets/js/main.min.js?ver=2.0.0 HTTP/1.1
Host: blog.david-anton.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://blog.david-anton.com/
Cookie: -bsBiMKuf=tow.vgMAn7eYV; TsBj_PQnDWSMKNhO=4KUVaQTXiC72l
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Sun, 09 Apr 2023 07:11:49 GMT
content-type: application/javascript
last-modified: Tue, 28 Dec 2021 18:19:23 GMT
cache-control: max-age=172800
expires: Tue, 11 Apr 2023 07:11:49 GMT
etag: W/"61cb552b-f731"
x-cache-status: BYPASS
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
blog.david-anton.com/wp-content/themes/imagely/assets/fonts/fontawesome/webfonts/fa-solid-900.woff2
82.165.101.27200 OK 74 kB URL GET HTTP/2 blog.david-anton.com/wp-content/themes/imagely/assets/fonts/fontawesome/webfonts/fa-solid-900.woff2
IP 82.165.101.27:443
Requested by https://blog.david-anton.com/
Certificate IssuerLet's Encrypt
Subjectblog.david-anton.com
FingerprintEE:5A:B8:41:A2:D2:0C:8D:4E:5A:4A:07:79:5D:9B:63:9F:C1:0E:F4
ValidityFri, 10 Mar 2023 16:20:10 GMT - Thu, 08 Jun 2023 16:20:09 GMT
File type Web Open Font Format (Version 2), TrueType, length 74348, version 329.31064\012- data
Hash 462806316fea535a6a57651bc2b000b0
80644191098f863f25be27841c0d92c452cf2327
4f9ee3d8f6e621642979e6a8f7e75c57cb9da34918cc08a38abfe178dbae1dd2
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/imagely/assets/fonts/fontawesome/webfonts/fa-solid-900.woff2 HTTP/1.1
Host: blog.david-anton.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://blog.david-anton.com/wp-content/cache/autoptimize/css/autoptimize_b3a2a334ab4fbc267fd2dc862a5fec1f.css
Cookie: -bsBiMKuf=tow.vgMAn7eYV; TsBj_PQnDWSMKNhO=4KUVaQTXiC72l
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Sun, 09 Apr 2023 07:11:49 GMT
content-type: font/woff2
content-length: 74348
last-modified: Tue, 28 Dec 2021 18:19:23 GMT
cache-control: max-age=172800
expires: Tue, 11 Apr 2023 07:11:49 GMT
etag: "61cb552b-1226c"
x-cache-status: BYPASS
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
sp-ao.shortpixel.ai/client/to_webp,q_glossy,ret_img,w_1200/https://blog.david-anton.com/wp-content/uploads/wpja-number.jpg
194.242.11.186302 Found 74 kB URL GET HTTP/2 sp-ao.shortpixel.ai/client/to_webp,q_glossy,ret_img,w_1200/https://blog.david-anton.com/wp-content/uploads/wpja-number.jpg
IP 194.242.11.186:443
ASN #34989 ServeTheWorld AS
Requested by https://blog.david-anton.com/
Certificate IssuerSectigo Limited
Subject*.shortpixel.ai
FingerprintD3:2C:60:18:FC:72:6F:6C:49:7F:6E:01:A8:C0:0D:30:3D:E9:43:24
ValidityThu, 26 Jan 2023 00:00:00 GMT - Wed, 17 Jan 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /client/to_webp,q_glossy,ret_img,w_1200/https://blog.david-anton.com/wp-content/uploads/wpja-number.jpg HTTP/1.1
Host: sp-ao.shortpixel.ai
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://blog.david-anton.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
date: Sun, 09 Apr 2023 07:11:53 GMT
content-type: text/html; charset=UTF-8
content-length: 0
location: https://blog.david-anton.com/wp-content/uploads/wpja-number.jpg
server: BunnyCDN-NO1-830
cdn-pullzone: 257218
cdn-uid: ceac3dab-9909-4315-8d54-a27751b54dd0
cdn-requestcountrycode: NO
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
cache-control: public, max-age=86400
pragma: cache
cdn-cachedat: 04/08/2023 06:12:02
cdn-tag: 0; Domain: blog.david-anton.com; 302
cdn-proxyver: 1.03
cdn-requestpullcode: 302
cdn-requestpullsuccess: True
cdn-edgestorageid: 830
cdn-status: 302
cdn-requestid: c715d65c5f12f2f69d733c922c6a5d66
cdn-cache: STALE
X-Firefox-Spdy: h2
blog.david-anton.com/wp-content/uploads/cropped-favicon-32x32.png
82.165.101.27200 OK 947 B URL GET HTTP/2 blog.david-anton.com/wp-content/uploads/cropped-favicon-32x32.png
IP 82.165.101.27:443
Requested by https://blog.david-anton.com/
Certificate IssuerLet's Encrypt
Subjectblog.david-anton.com
FingerprintEE:5A:B8:41:A2:D2:0C:8D:4E:5A:4A:07:79:5D:9B:63:9F:C1:0E:F4
ValidityFri, 10 Mar 2023 16:20:10 GMT - Thu, 08 Jun 2023 16:20:09 GMT
File type PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced\012- data
Hash 084f979506c42d6a7b9b6d0277aa674a
3d278950ef32dd7aa762a42e5d3ebc10f134c761
6389891f3abd3f417fa4ab0fe511b546e9bdc8d9ff13d1235a0c3e5280dd011f
GET /wp-content/uploads/cropped-favicon-32x32.png HTTP/1.1
Host: blog.david-anton.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://blog.david-anton.com/
Connection: keep-alive
Cookie: -bsBiMKuf=tow.vgMAn7eYV; TsBj_PQnDWSMKNhO=4KUVaQTXiC72l; _ga_MGRL7TWHZV=GS1.1.1681024313.1.0.1681024313.0.0.0; _ga=GA1.1.795027286.1681024314; cookielawinfo-checkbox-necessary=yes; cookielawinfo-checkbox-non-necessary=yes
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Sun, 09 Apr 2023 07:11:50 GMT
content-type: image/png
content-length: 947
x-accel-version: 0.01
last-modified: Fri, 30 Nov 2018 11:36:33 GMT
etag: "3b3-57be0360ea6e5"
cache-control: max-age=5184000
expires: Thu, 08 Jun 2023 07:11:50 GMT
x-cache-status: BYPASS
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
blog.david-anton.com/wp-content/cache/autoptimize/js/autoptimize_single_ae0f40d4f21faa4c3ae5e3ec85853384.js?ver=5.6.2
82.165.101.27200 OK 22 kB URL GET HTTP/2 blog.david-anton.com/wp-content/cache/autoptimize/js/autoptimize_single_ae0f40d4f21faa4c3ae5e3ec85853384.js?ver=5.6.2
IP 82.165.101.27:443
Requested by https://blog.david-anton.com/
Certificate IssuerLet's Encrypt
Subjectblog.david-anton.com
FingerprintEE:5A:B8:41:A2:D2:0C:8D:4E:5A:4A:07:79:5D:9B:63:9F:C1:0E:F4
ValidityFri, 10 Mar 2023 16:20:10 GMT - Thu, 08 Jun 2023 16:20:09 GMT
File type ASCII text, with very long lines (21905), with no line terminators
Hash ae0f40d4f21faa4c3ae5e3ec85853384
c94eb67feaf4d226d3e08ccd7e2d236d1a013c5d
32dd00604df8db3415240d450341558b6827b1e02dc0f211d8a6d9a4287c522e
GET /wp-content/cache/autoptimize/js/autoptimize_single_ae0f40d4f21faa4c3ae5e3ec85853384.js?ver=5.6.2 HTTP/1.1
Host: blog.david-anton.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://blog.david-anton.com/
Cookie: -bsBiMKuf=tow.vgMAn7eYV; TsBj_PQnDWSMKNhO=4KUVaQTXiC72l
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Sun, 09 Apr 2023 07:11:49 GMT
content-type: application/javascript
last-modified: Wed, 31 Aug 2022 10:12:19 GMT
cache-control: max-age=30672000, public, immutable
expires: Fri, 29 Mar 2024 07:11:49 GMT
etag: W/"630f3403-5591"
x-cache-status: BYPASS
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2