Report - autoescuelahernani.es/

Report Overview

Visited public
2025-06-22 14:43:43
Tags
Submit Tags
URL
autoescuelahernani.es/
Finishing URL
tamping.net/go/1623694
IP / ASN
104.21.80.1
#13335 CLOUDFLARENET
Title
tamping.net/go/1623694

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
push-sdk.com	unknown	2022-10-25	2022-12-23	2025-06-17	912 B	56 kB	157.90.33.121
fonts.gstatic.com	unknown	2008-02-11	2014-04-02	2025-06-18	1.7 kB	123 kB	142.250.178.67
fonts.googleapis.com	8877	2005-01-25	2012-05-23	2025-06-18	444 B	29 kB	142.250.178.74
ukankingwithea.com	unknown	2024-01-01	2024-09-05	2025-06-20	454 B	842 B	104.21.48.1
cdn-icons-png.flaticon.com	79607	2013-05-10	2021-09-02	2025-06-21	1.9 kB	10 kB	23.33.119.217
www.facebook.com	99	1997-03-29	2012-05-21	2025-06-19	505 B	4.5 kB	31.13.72.36
wearychallengeraise.com	unknown	2024-08-19	2025-01-23	2025-06-22	15 kB	124 kB	192.243.61.225
denknowledc.org	unknown	2025-06-11	2025-06-22	2025-06-22	1.0 kB	4.1 kB	3.167.2.116
cdn.storageimagedisplay.com	unknown	2024-09-13	2024-09-13	2025-06-19	1.4 kB	198 kB	45.133.44.2
tamping.net	unknown	2024-08-10	2025-05-19	2025-06-12	1.0 kB	599 B	157.90.33.78
ddserver.inber.net	unknown	2014-09-02	2024-06-24	2025-06-12	1.8 kB	36 kB	104.21.96.1
region1.google-analytics.com	unknown	2005-07-18	2022-03-17	2025-06-16	1.0 kB	858 B	216.239.34.36
1.bp.blogspot.com	8403	2000-07-31	2012-05-21	2025-06-19	504 B	895 B	142.250.178.97
es.autoescuelahernani.es	unknown	unknown	2025-06-22	2025-06-22	8.8 kB	858 kB	104.21.112.1
dcbbwymp1bhlf.cloudfront.net	unknown	2008-04-25	2024-01-03	2025-06-17	440 B	191 kB	3.167.7.208
experttrafficcounter.com	unknown	2025-01-23	2025-01-24	2025-06-20	465 B	433 B	3.65.117.209
gnawreclaim.com	unknown	2025-04-28	2025-05-03	2025-06-12	2.0 kB	161 kB	172.240.108.68
stachedstimaa.com	unknown	2025-06-11	2025-06-20	2025-06-20	586 B	519 B	172.67.152.15
cdn.creative-stat1.com	unknown	2024-08-20	2024-08-27	2025-06-20	2.4 kB	178 kB	172.67.133.15
accounts.google.com	81	1997-09-15	2012-05-23	2025-06-18	3.8 kB	14 kB	142.250.147.84
praystakeinstinct.com	unknown	2024-09-01	2025-06-01	2025-06-15	513 B	498 B	192.243.59.13
recordedthereby.com	unknown	2024-05-08	2024-05-08	2025-06-17	846 B	172 kB	185.196.197.71
cdn.show-sb.com	unknown	2024-08-20	2024-08-31	2025-06-21	514 B	2.3 kB	104.21.95.140
capaciousdrewreligion.com	unknown	2023-11-07	2023-11-27	2025-06-20	437 B	377 B	185.196.197.72
pagead2.googlesyndication.com	101	2003-01-21	2012-05-21	2025-06-19	489 B	161 kB	142.250.178.34
autoescuelahernani.es	unknown	unknown	2018-12-24	2024-01-30	490 B	49 kB	104.21.112.1

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2025-06-22	medium	praystakeinstinct.com	Sinkholed
2025-06-22	medium	tamping.net	Sinkholed
2025-06-22	medium	recordedthereby.com	Sinkholed
2025-06-22	medium	capaciousdrewreligion.com	Sinkholed
2025-06-22	medium	recordedthereby.com	Sinkholed
2025-06-22	medium	tamping.net	Sinkholed
2025-06-22	medium	gnawreclaim.com	Sinkholed
2025-06-22	medium	gnawreclaim.com	Sinkholed
2025-06-22	medium	gnawreclaim.com	Sinkholed
2025-06-22	medium	gnawreclaim.com	Sinkholed

ThreatFox

No alerts detected

JavaScript (32)

	URL	From	Size	First Seen	Last Seen
	es.autoescuelahernani.es/	ScriptElement	138 B	2025-06-22	2025-06-22
Pretty URL es.autoescuelahernani.es/ IP 104.21.112.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2025-06-22 14:43 Last Seen2025-06-22 14:43 Times Seen1 Hash 451f1b33ae0a2bd8b8eb446530788568 de3d328e2ab66f6a9a775f077f780f374d0e24c8 587b233758839f31b6792ccfaeacb8d4e7786035ec3b180465cc6cb179992983 Loading...

	es.autoescuelahernani.es/wp-content/uploads/caos/8e7e38f0.js?id=G-TN7BC8EWJJ	ScriptElement	399 kB	2025-06-22	2025-06-22
Pretty URL es.autoescuelahernani.es/wp-content/uploads/caos/8e7e38f0.js?id=G-TN7BC8EWJJ IP 104.21.112.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2025-06-22 14:43 Last Seen2025-06-22 14:43 Times Seen1 Hash 5f67554f99c9cfc9b81555054ff78ef2 522ad1b05a40cf29344928290c54aefb4134bb82 a8bfc33ce8734c080fdba2c6e2e997446d94f55bff8b0386a1f62d40c1cce04a Loading...

	ddserver.inber.net/js/expand.js?3	ScriptElement	11 kB	2025-04-14	2025-07-22
Pretty URL ddserver.inber.net/js/expand.js?3 IP 104.21.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2025-04-14 15:09 Last Seen2025-07-22 08:07 Times Seen43 Hash 978eb71e675015b8fb4138d7dcf154df 75d0e23095baea30e80ed6558463ae9659360140 117b7f7c8221145e4e2ee70f5dddef9aae30900c5549f254f8eb072992397cd3 Loading...

	recordedthereby.com/sfp.js	ScriptElement	85 kB	2025-01-25	2025-06-27
Pretty URL recordedthereby.com/sfp.js IP 185.196.197.71 ASN #39572 DataWeb Global Group B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2025-01-25 09:25 Last Seen2025-06-27 06:21 Times Seen2209 Hash 108625937affa4b38bb17cea65510d72 2c0f48e9efa3fb5554d1fa393b28d74d5339f9ee c84263fcf6b091998dd37f5f600b3bfea92ac1d31cbf9631bb87fa411124a9e0 Loading...

	wearychallengeraise.com/6b/d1/6e/6bd16ea70e3aacc701bd282a5ee1f9b3.js	ScriptElement	105 kB	2025-06-22	2025-06-22
Pretty URL wearychallengeraise.com/6b/d1/6e/6bd16ea70e3aacc701bd282a5ee1f9b3.js IP 192.243.61.225 ASN #39572 DataWeb Global Group B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2025-06-22 14:43 Last Seen2025-06-22 14:43 Times Seen1 Hash b1fcfebc0b9f73345ff7de827fb2b103 b05c437e3b81a4589a3460db7ad42535ab824590 bc9e411d4e4243cec10810909f1acfe32b823b0a2c79b13fe5567b1ae96bb731 Loading...

	cdn.creative-stat1.com/sb/ssp/interstitial/bottom_banner/1/js/jquery.min.js	ScriptElement	90 kB	2023-03-07	2025-07-24
Pretty URL cdn.creative-stat1.com/sb/ssp/interstitial/bottom_banner/1/js/jquery.min.js IP 172.67.133.15 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:04 Last Seen2025-07-24 23:45 Times Seen2860 Hash 561acb3e541133bbdd2c0c19f8ee35a1 ffd1353cf3f77d25f801c84d8208613eb0d3d548 9fde6da568db31801e29243a903bf24f342256b41e3c01e7d018ff7c566ce7fc Loading...

	es.autoescuelahernani.es/wp-content/themes/asap/assets/js/asap.min.js?ver=07210623	ScriptElement	4.4 kB	2023-06-29	2025-07-20
Pretty URL es.autoescuelahernani.es/wp-content/themes/asap/assets/js/asap.min.js?ver=07210623 IP 104.21.112.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-06-29 01:29 Last Seen2025-07-20 09:33 Times Seen87 Hash 6d53e2066c0d3ab1200b313009257caa 3af08f225253621ba4b28c7c32e2ca3c2e084396 c882fe4c238c1555febed27c069e8587bfd3ee2971f44082e022cb7c666714b1 Loading...

	es.autoescuelahernani.es/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.8.7	ScriptElement	13 kB	2023-11-16	2025-07-25
Pretty URL es.autoescuelahernani.es/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.8.7 IP 104.21.112.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-16 07:59 Last Seen2025-07-25 00:21 Times Seen5901 Hash 83a062cf6545b990c13b4398035a29d0 5cf24bc45fcbc6f416ea9671e089ca00ef0080d2 7ee08c60d39f5712a56938fda3e2ab10fe3ef23ec98aeb3c9a29e54f6f31ffe1 Loading...

	es.autoescuelahernani.es/	ScriptElement	113 B	2024-08-19	2025-06-22
Pretty URL es.autoescuelahernani.es/ IP 104.21.112.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-08-19 20:22 Last Seen2025-06-22 14:43 Times Seen2 Hash 7073060b4c8c0de595806a14d4e2115e c4778f8fe83c1652c4ec89f8301097c5d7dd3e6d 0a7a4bd5530a14efed0364f59a4520a90f5077ef5933b9db9592d919e1992e44 Loading...

	about:blank	ScriptElement	145 B	2024-08-19	2025-06-22
Pretty URL about:blank IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2024-08-19 20:22 Last Seen2025-06-22 14:43 Times Seen2 Hash ea0faa2cf5b940b9fca53a3e39707a41 8af2d16e55a736884e6a4db6822d6405e8910beb 06026e978610c0acfc429f1ac718ff176f7ac87f0648fd63139e7cde7210775a Loading...

	dcbbwymp1bhlf.cloudfront.net/?wbbcd=1104038	ScriptElement	191 kB	2025-06-22	2025-06-22
Pretty URL dcbbwymp1bhlf.cloudfront.net/?wbbcd=1104038 IP 3.167.7.208 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2025-06-22 14:43 Last Seen2025-06-22 14:43 Times Seen1 Hash e3016cdf8d861fd481cf8d1b5d50bfa7 1b1e6e9e09a340c3471e13459193cdb7417ca77d 376e854a28c4ea18d836dd0179bb709abcc72397e634ae92959f9c1e54340b23 Loading...

	denknowledc.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	ScriptElement	3.0 kB	2025-06-22	2025-06-22
Pretty URL denknowledc.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 IP 3.167.2.116 ASN #0 Introduced by scriptElement Embedded in HTML true Observations First Seen2025-06-22 14:43 Last Seen2025-06-22 14:43 Times Seen1 Hash e69fc200ca2ef608c49882a27ff61a45 9048dd6b310cfe4d1ce177e0c101489adefba549 c77585b25c2ec9a79cf27d60210c747f374a7fad83ef022de8921c377895c6e2 Loading...

	es.autoescuelahernani.es/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.4.1	ScriptElement	14 kB	2023-05-09	2025-07-25
Pretty URL es.autoescuelahernani.es/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.4.1 IP 104.21.112.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-09 19:21 Last Seen2025-07-25 03:56 Times Seen156725 Hash 9ffeb32e2d9efbf8f70caabded242267 3ad0c10e501ac2a9bfa18f9cd7e700219b378738 5274f11e6fb32ae0cf2dfb9f8043272865c397a7c4223b4cfa7d50ea52fbde89 Loading...

	es.autoescuelahernani.es/	ScriptElement	317 B	2025-06-22	2025-06-22
Pretty URL es.autoescuelahernani.es/ IP 104.21.112.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2025-06-22 14:43 Last Seen2025-06-22 14:43 Times Seen1 Hash ef483f99c5909931f54e5e779553ad44 448f697f0a23daa103376520c7debeb42b8854cf 53660b031842d4646d490c28e7be11874d533dbfc5076097234a5bc836c3f5b5 Loading...

	ddserver.inber.net/?id=51	ScriptElement	19 kB	2025-06-22	2025-06-22
Pretty URL ddserver.inber.net/?id=51 IP 104.21.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2025-06-22 14:43 Last Seen2025-06-22 14:43 Times Seen1 Hash c4e33a66f7e4841efb7894a5a94414f5 40c7e4659f61e6f1026cfd80fbaf31c023a06185 8128564c6ee310f0de9c794657acc94c0209419cb2c0a81f393816eb2ccb12c8 Loading...

	es.autoescuelahernani.es/	ScriptElement	113 B	2024-08-19	2025-06-22
Pretty URL es.autoescuelahernani.es/ IP 104.21.112.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-08-19 20:22 Last Seen2025-06-22 14:43 Times Seen2 Hash 7073060b4c8c0de595806a14d4e2115e c4778f8fe83c1652c4ec89f8301097c5d7dd3e6d 0a7a4bd5530a14efed0364f59a4520a90f5077ef5933b9db9592d919e1992e44 Loading...

	about:blank	ScriptElement	1.3 kB	2025-06-04	2025-07-22
Pretty URL about:blank IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2025-06-04 22:24 Last Seen2025-07-22 08:07 Times Seen6 Hash e3948067eadebb723cd0ddf0b146dd36 4a0f79bc6ace76304df8ea5ed4da8fd35f31af32 378fa20ac472ac7357e6bb4c40317005776c2cfd868b077705746a99fb79886d Loading...

	es.autoescuelahernani.es/wp-includes/js/jquery/jquery.min.js?ver=3.7.1	ScriptElement	88 kB	2023-11-03	2025-07-25
Pretty URL es.autoescuelahernani.es/wp-includes/js/jquery/jquery.min.js?ver=3.7.1 IP 104.21.112.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-03 09:26 Last Seen2025-07-25 03:56 Times Seen150809 Hash 826eb77e86b02ab7724fe3d0141ff87c 79cd3587d565afe290076a8d36c31c305a573d18 cb6f2d32c49d1c2b25e9ffc9aaafa3f83075346c01bcd4ae6eb187392a4292cf Loading...

	es.autoescuelahernani.es/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.8.7	ScriptElement	11 kB	2023-11-16	2025-07-25
Pretty URL es.autoescuelahernani.es/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.8.7 IP 104.21.112.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-16 07:59 Last Seen2025-07-25 00:21 Times Seen5938 Hash a53a916adf48efefd5a2aa0861ebbc07 46acfa0be9dd623a7aa9bceb1344c152a8adc13b 9c1989ecd392a0c54fb799409154242706940a8e6d800542ba579dfda576bb9d Loading...

	push-sdk.com/f/sdk.js?z=1621627	ScriptElement	55 kB	2025-04-01	2025-07-24
Pretty URL push-sdk.com/f/sdk.js?z=1621627 IP 157.90.33.121 ASN #24940 Hetzner Online GmbH Introduced by scriptElement Embedded in HTML false Observations First Seen2025-04-01 19:54 Last Seen2025-07-24 23:00 Times Seen343 Hash f4d87b22393ed5eef57d01d86c6a88f6 5e1aaee78cd735c23cc423fc863decca30aee219 91cf9b34af48f3b62d706127b1140c89d8bb3a5455120acd2cfcfc41ab4ad5ee Loading...

	recordedthereby.com/sfp.js	ScriptElement	85 kB	2025-01-25	2025-06-27
Pretty URL recordedthereby.com/sfp.js IP 185.196.197.71 ASN #39572 DataWeb Global Group B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2025-01-25 09:25 Last Seen2025-06-27 06:21 Times Seen2209 Hash 108625937affa4b38bb17cea65510d72 2c0f48e9efa3fb5554d1fa393b28d74d5339f9ee c84263fcf6b091998dd37f5f600b3bfea92ac1d31cbf9631bb87fa411124a9e0 Loading...

	about:blank	Eval	1.6 kB	2025-06-22	2025-06-22
Pretty URL about:blank IP 0.0.0.0 ASN #0 Introduced by eval Embedded in HTML false Observations First Seen2025-06-22 14:43 Last Seen2025-06-22 14:43 Times Seen1 Hash 834a955b62c81e73322a2b9c1bcf0662 d6d65ddb5a85d860555f316a1916eb7385e85022 f97131dd5fb50e43cde2fcfdf95f86aa6248369353f65d66a97b125a21f270cb Loading...

	es.autoescuelahernani.es/wp-content/plugins/rocket-lazy-load/assets/js/16.1/lazyload.min.js	ScriptElement	7.9 kB	2023-03-07	2025-07-24
Pretty URL es.autoescuelahernani.es/wp-content/plugins/rocket-lazy-load/assets/js/16.1/lazyload.min.js IP 104.21.112.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02 Last Seen2025-07-24 12:29 Times Seen2625 Hash d18523e4a4aaa9420a86e4dddfb07554 fa22a3d38dc3c87ca92f1456846682abeb696b96 6e86a52a9858206302e32036d89907e3ac87762055e7f9c6364aec33221b3e41 Loading...

	es.autoescuelahernani.es/	ScriptElement	3.3 kB	2023-03-10	2025-07-24
Pretty URL es.autoescuelahernani.es/ IP 104.21.112.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-10 21:44 Last Seen2025-07-24 09:25 Times Seen398 Hash fda07396d800001602ab7456856a20e1 7f77d6c52f1664a897d26cf442e0b096c704c3fe 53018bc3ffc101514c9ecc7aab7a08d70ca8568ae3a3164973182be74b5806fd Loading...

	gnawreclaim.com/ffa0876c1cabe3256f86f8c176e515a9/invoke.js	ScriptElement	58 kB	2025-06-22	2025-06-22
Pretty URL gnawreclaim.com/ffa0876c1cabe3256f86f8c176e515a9/invoke.js IP 172.240.108.68 ASN #7979 SERVERS-COM Introduced by scriptElement Embedded in HTML false Observations First Seen2025-06-22 14:43 Last Seen2025-06-22 14:43 Times Seen1 Hash f28480aabd3d0207adac40c7a1457148 dce1a377f48c2ded07033971f1f4f60e08008d14 74df1d90f0d6ecb65f82f26996fe5376d584d5de36a073b954f82b78a54dda35 Loading...

	gnawreclaim.com/0b/1b/84/0b1b84872b24ae8e1fe350135b972392.js	ScriptElement	65 kB	2025-06-03	2025-06-26
Pretty URL gnawreclaim.com/0b/1b/84/0b1b84872b24ae8e1fe350135b972392.js IP 172.240.108.68 ASN #7979 SERVERS-COM Introduced by scriptElement Embedded in HTML false Observations First Seen2025-06-03 09:49 Last Seen2025-06-26 21:20 Times Seen4 Hash b6c056df27d9b3b5d5004119b63dfed7 320ca9f5fd5accfdf74225197ba68f18d2838e76 7cf608ac34fe1970a3dbcf4210193d1c8946e1b5e1ebe731e9f57be4e89a7c95 Loading...

	about:blank	Eval	2.1 kB	2025-06-22	2025-06-22
Pretty URL about:blank IP 0.0.0.0 ASN #0 Introduced by eval Embedded in HTML false Observations First Seen2025-06-22 14:43 Last Seen2025-06-22 14:43 Times Seen1 Hash 0621fc5a44e037297241e4c5094e55b6 59d6e0140b9ebcfe76d30c5736dd423d2ba80edd 909818c237e31191914977e88889806c2b0e7b7e5a0fb2e3f27d66e529149b99 Loading...

	tamping.net/go/1623694	ScriptElement	14 B	2024-08-21	2025-07-22
Pretty URL tamping.net/go/1623694 IP 157.90.33.78 ASN #24940 Hetzner Online GmbH Introduced by scriptElement Embedded in HTML true Observations First Seen2024-08-21 23:41 Last Seen2025-07-22 08:07 Times Seen89 Hash 5585caa5e515433059ab2202ac75f756 03c28f367af3f8d6d7878b4b60a0b034f90f77cd 8eac6dbc39016d1025f47a6abfaf1674d3a279ea60f2d25262ed71232ef34f7e Loading...

	es.autoescuelahernani.es/wp-content/themes/asap/assets/js/menu.min.js?ver=02270623	ScriptElement	407 B	2023-07-15	2025-07-20
Pretty URL es.autoescuelahernani.es/wp-content/themes/asap/assets/js/menu.min.js?ver=02270623 IP 104.21.112.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-07-15 23:34 Last Seen2025-07-20 09:33 Times Seen71 Hash f8f8cc022443bb1069e0241855810bbf f848d7cb3ccfb8b2f308011f41323b6e9f046c45 b5ce527fa41f6d5cb7521e43c60c2364ab9fea0727dedf4ea87bf614c7bf9fde Loading...

	es.autoescuelahernani.es/	ScriptElement	1.2 kB	2023-12-16	2025-07-20
Pretty URL es.autoescuelahernani.es/ IP 104.21.112.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-12-16 06:07 Last Seen2025-07-20 14:11 Times Seen245 Hash 3b9603e44630cd092e3bfb1f0a446a22 79a7dea911d1b9fee061e64fb44c2006ec2f77c6 46f1ed0b1643438fe7ee225a2d6789130dd274ddfcfa1bc94d577c76aeb7b6a1 Loading...

	gnawreclaim.com/5f360a64944f4339e3d54a3ee778476a/invoke.js	ScriptElement	27 kB	2025-06-22	2025-06-22
Pretty URL gnawreclaim.com/5f360a64944f4339e3d54a3ee778476a/invoke.js IP 172.240.108.68 ASN #7979 SERVERS-COM Introduced by scriptElement Embedded in HTML false Observations First Seen2025-06-22 14:43 Last Seen2025-06-22 14:43 Times Seen1 Hash 881364694a54a0d93d97733cdefbd9f7 c7ab082934676427b18ae210fc1639e55ce6829a c86c70325fdf8865b96bca5ea8af7a68c9c5ffbfb1e4d28c89ea93ac0a7b8962 Loading...

	about:blank	ScriptElement	4.9 kB	2025-06-22	2025-06-22
Pretty URL about:blank IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2025-06-22 14:43 Last Seen2025-06-22 14:43 Times Seen1 Hash 34984766974a68b15f213c3324242924 18413fff37e998a2d2ee738cf662cda23bf0b30b a678de0d191bd2617a8481b60d657e637503615287398faaf41b17849830cd94 Loading...

HTTP Transactions (77)

URL IP Response Size

GET cdn-icons-png.flaticon.com/128/3694/3694289.png

23.33.119.217

200 OK

2.1 kB

URL GET
cdn-icons-png.flaticon.com/128/3694/3694289.png
IP
23.33.119.217:443
ASN
#20940 Akamai International B.V.

Requested by
https://es.autoescuelahernani.es/
Certificate
IssuerLet's Encrypt
Subject*.flaticon.com
FingerprintE8:BC:CE:05:EB:0D:D1:AD:87:B8:28:30:2E:A1:71:97:C2:15:20:35
ValidityMon, 28 Apr 2025 13:33:52 GMT - Sun, 27 Jul 2025 13:33:51 GMT

File type
PNG image data, 128 x 128, 8-bit/color RGBA, non-interlaced
Size
2.1 kB (2136 bytes)
Hash
347491530cbe6442242bc6e0c8a442e1
5da0cb5f2b6b30cab02f70c4286ef7fc40f46380
ebb985c6e5734fd2547e843ec56d40addf092cc4ff9027599c40c8d90a212f06

HTTP Headers

GET /128/3694/3694289.png HTTP/1.1
Host: cdn-icons-png.flaticon.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://es.autoescuelahernani.es/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/png
content-length: 2136
last-modified: Mon, 18 Sep 2023 22:48:32 GMT
etag: "347491530cbe6442242bc6e0c8a442e1"
accept-ranges: bytes
date: Sun, 22 Jun 2025 14:43:21 GMT
vary: Accept-Encoding
access-control-allow-origin: *
pragma: public
cache-control: public, max-age=31536000
x-default-rule: YES
X-Firefox-Spdy: h2

POST push-sdk.com/event?z=1621627

157.90.33.121

200 OK

0 B

URL POST
push-sdk.com/event?z=1621627
IP
157.90.33.121:443
ASN
#24940 Hetzner Online GmbH

Requested by
https://es.autoescuelahernani.es/
Certificate
IssuerLet's Encrypt
Subjectpush-sdk.com
Fingerprint2E:9A:67:76:0E:42:81:D5:30:A2:76:47:85:CA:6C:D7:FD:FF:38:9C
ValidityThu, 05 Jun 2025 03:47:05 GMT - Wed, 03 Sep 2025 03:47:04 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /event?z=1621627 HTTP/1.1
Host: push-sdk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 83
Origin: https://es.autoescuelahernani.es
DNT: 1
Connection: keep-alive
Referer: https://es.autoescuelahernani.es/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: Angie
date: Sun, 22 Jun 2025 14:43:21 GMT
content-length: 0
access-control-allow-origin: https://es.autoescuelahernani.es
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization, X-CSRF-Token
access-control-expose-headers: Authorization
cache-control: no-cache, max-age=0, must-revalidate, proxy-revalidate, no-store
pragma: no-cache
expires: Tue, 11 Jan 1994 00:00:00 GMT
accept-ch: Sec-CH-UA, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Model, Sec-CH-UA-Bitness, Sec-CH-UA-Wow64
X-Firefox-Spdy: h2

GET cdn.creative-stat1.com/sb/ssp/interstitial/bottom_banner/1/css/style.css

172.67.133.15

200 OK

3.5 kB

URL GET
cdn.creative-stat1.com/sb/ssp/interstitial/bottom_banner/1/css/style.css
IP
172.67.133.15:443
ASN
#13335 CLOUDFLARENET

Requested by
https://es.autoescuelahernani.es/
Certificate
IssuerGoogle Trust Services
Subjectcreative-stat1.com
FingerprintEA:78:8B:9D:53:DF:84:5F:BA:B0:1B:CB:77:59:D8:9B:CC:8C:CC:86
ValidityWed, 11 Jun 2025 22:34:34 GMT - Tue, 09 Sep 2025 23:32:59 GMT

File type
ASCII text
Size
3.5 kB (3487 bytes)
Hash
f9f1955433320a3b43c5741f2bde9a3d
3b70c2a57fad02833bf227d8b6a0391ac8b98432
cbb99d697521db3b645225c1b50873e6aa8a39c91afcc7c8dd756746b8bf2645

HTTP Headers

GET /sb/ssp/interstitial/bottom_banner/1/css/style.css HTTP/1.1
Host: cdn.creative-stat1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://es.autoescuelahernani.es
DNT: 1
Connection: keep-alive
Referer: https://es.autoescuelahernani.es/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sun, 22 Jun 2025 14:43:32 GMT
content-type: text/css
server: cloudflare
last-modified: Fri, 19 Jan 2024 14:19:45 GMT
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
etag: W/"65aa8501-d9f"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
content-encoding: gzip
cf-cache-status: MISS
vary: accept-encoding
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=GBsHh7WTO2bIZ3sc6F6S%2BYUebXKUM9I3xYJu7qi%2FJhf367k8sWnARfEWnVLQcoQwHr9Cz2qFFdRy3WQhdSVVWg8H3B0TaSbuqRZTte3pJEskJDrY"}]}
cf-ray: 953c84be8eb456c0-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

GET www.facebook.com/login.php?next=https%3A%2F%2Fwww.facebook.com%2Ffavicon.ico%3F_rdr%3Dp

31.13.72.36

400 Bad Request

0 B

URL GET
www.facebook.com/login.php?next=https%3A%2F%2Fwww.facebook.com%2Ffavicon.ico%3F_rdr%3Dp
IP
31.13.72.36:443
ASN
#32934 FACEBOOK

Requested by
https://es.autoescuelahernani.es/
Certificate
IssuerDigiCert Inc
Subject*.facebook.com
FingerprintAA:43:3C:2F:60:10:EA:75:71:FC:F4:FA:34:E8:57:43:FA:3F:44:83
ValidityMon, 31 Mar 2025 00:00:00 GMT - Sun, 29 Jun 2025 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /login.php?next=https%3A%2F%2Fwww.facebook.com%2Ffavicon.ico%3F_rdr%3Dp HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://es.autoescuelahernani.es/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 400 Bad Request
content-encoding: br
pragma: no-cache
cache-control: private, no-cache, no-store, must-revalidate
expires: Sat, 01 Jan 2000 00:00:00 GMT
content-security-policy: default-src blob: 'self' https://*.fbsbx.com *.facebook.com *.fbcdn.net;script-src *.facebook.com *.fbcdn.net 127.0.0.1:* 'nonce-WjLkwZ87' blob: 'self' 'wasm-unsafe-eval';style-src *.fbcdn.net data: *.facebook.com 'unsafe-inline';connect-src *.facebook.com facebook.com *.fbcdn.net wss://*.facebook.com:* wss://*.whatsapp.com:* wss://*.fbcdn.net attachment.fbsbx.com ws://localhost:* blob: *.cdninstagram.com 'self' http://localhost:3103 wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ v.whatsapp.net *.fbsbx.com *.fb.com;font-src data: *.facebook.com *.fbcdn.net *.fbsbx.com;img-src *.fbcdn.net *.facebook.com data: https://*.fbsbx.com facebook.com *.cdninstagram.com fbsbx.com fbcdn.net blob: android-webview-video-poster: *.whatsapp.net *.fb.com *.oculuscdn.com https://trustly.one/ https://*.trustly.one/ https://paywithmybank.com/ https://*.paywithmybank.com/;media-src *.cdninstagram.com blob: *.fbcdn.net *.fbsbx.com www.facebook.com *.facebook.com data:;child-src data: blob: 'self' https://*.fbsbx.com *.facebook.com *.fbcdn.net;frame-src *.facebook.com *.fbsbx.com fbsbx.com data: www.instagram.com *.fbcdn.net accounts.meta.com https://trustly.one/ https://*.trustly.one/ https://paywithmybank.com/ https://*.paywithmybank.com/;manifest-src data: blob: 'self' https://*.fbsbx.com *.facebook.com *.fbcdn.net;object-src data: blob: 'self' https://*.fbsbx.com *.facebook.com *.fbcdn.net;worker-src blob: *.facebook.com data:;block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
document-policy: include-js-call-stacks-in-crash-reports
x-frame-options: DENY
x-content-type-options: nosniff
x-xss-protection: 0
reporting-endpoints: coop_report="https://www.facebook.com/browser_reporting/coop/?minimize=0", default="https://www.facebook.com/ajax/browser_error_reports/?device_level=unknown&brsid=7518784425057562665&cpp=C3&cv=1024071169&st=1750603417107"
report-to: {"max_age":2592000,"endpoints":[{"url":"https:\/\/www.facebook.com\/browser_reporting\/coop\/?minimize=0"}],"group":"coop_report","include_subdomains":true}, {"max_age":259200,"endpoints":[{"url":"https:\/\/www.facebook.com\/ajax\/browser_error_reports\/?device_level=unknown&brsid=7518784425057562665&cpp=C3&cv=1024071169&st=1750603417107"}]}
cross-origin-embedder-policy-report-only: require-corp;report-to="coep_report"
cross-origin-opener-policy: same-origin-allow-popups
vary: Sec-Fetch-Site, Sec-Fetch-Mode, Accept-Encoding
origin-agent-cluster: ?1
strict-transport-security: max-age=15552000; preload
content-type: text/html; charset="utf-8"
x-fb-debug: xW01XYCKmZCHBv4HUNystBiR76oFmDKgyJvtcvTC/+WgJu48JaDrqGVSViZoCSs2uRTTqbph8AWxDUuJzf9Lag==
content-length: 744
date: Sun, 22 Jun 2025 14:43:37 GMT
proxy-status: http_request_error; e_fb_vipaddr="AcP2ahK0qBDfF03jGpBYXH9s19cJDo-UdmilaJ_D-j8PT3UOaH0u7D4Fe9uNLb0BRw5PfQv6JCVqJ_aGyYII_wJvlnVBKy2LAQ"; e_clientaddr="AcP99klURaaCGL7W6psyQtjZhPSdzwdeTlx3mW6koSoRhpIn3zb6uLMLVFdmmHb92iFSyPuumO1w9uyQbuCXW3YFcTllB1a4bRRjLtnvueGUcFHX"; e_upip="AcNygaYkPksbN0toVNj_Uxa9fUisTCzYv3OQIo3HWg-0yM1TQrVM-sKjxdQaLGChrN-1T4iU2sdRWxyyGJYy6nc-6zsSwVHK5Nbe"; e_fb_zone="AcOVi7cMk-leB-i3GGQnyvpYbcD2jPH9WLjFu_yULtYDuALdmGLzvJYAv9aJoI89"; e_fb_twtaskhandle="AcN6vHsnSPyQ_0wiAJyXQyqK17-Y2MQRId-oJxJ4HfM3x2mB57GgMQ40J4VXay32HU2nhiTwEda42MRB7nKEZVCH09BWisH_9A1_pklMWjIsAJs"; e_proxy="AcPk2877tkYJYrDzWpqdw01WTp3wk5BOFCSJojKnwgHw26PKA5BbkzWRV8IGqGUBzsdmkBriBBReX0rzgLc2", http_request_error; e_fb_vipaddr="AcMvJvhVJx6PWkqxR1A51BTKA1fl6v9-pc94aJ5bq08ZyMeuK5CyW_II0a9MujFFDZ-wNbA"; e_clientaddr="AcOMrGFIb9LMhNiQaRqqfjb39rArwjK4LREr2uMyYGyAlVXKm7nGRyJNfTfU0ayYxWls0DSPRWm6MJGA"; e_upip="AcMcc_1IZhPHlxcoo6sCr0UUiIIN67--PW9vzrevEFkHhdzELzhFrx1IeMzM3647-71j6nsjKMoUlIQ4hjIhr7TtyVH0TQhNuQ"; e_fb_zone="AcNlmhKjbwqkZsYQrldUcdRkwPGsGYVVg-QeJ2IF0nBmh_F08jURl1q4nT0KSg"; e_fb_twtaskhandle="AcPZSPMzmT3hzqLzyqt8R3fSM1uxIZZVvtdB2N0ahpCDZXn1vPbSbonv9EUHiCQn9P0dRsfntJlQE3K6cVBCESLaleH-YrLAA4W4"; e_proxy="AcOPkxDOBj8wd8wwcl4yq21OBz4_i1I8h_wOQlBOkNc8AV8D1cjB9KOQAiZ4E8PKsDCNLpttvFve7OI"
x-fb-connection-quality: EXCELLENT; q=0.9, rtt=20, rtx=0, c=10, mss=1380, tbw=3384, tp=-1, tpl=-1, uplat=45, ullat=0
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

GET accounts.google.com/InteractiveLogin?continue=https://www.youtube.com/favicon.ico&hl=en&passive=true&service=youtube&uilel=3&ifkv=AdBytiMXHLyvcFwfuT-ZY3cdXbZ-Zvgm_OIZqqHBuyPGRe8ShBjnqLDPf6gL14J9Th89BgSKymYl

142.250.147.84

302 Found

0 B

URL GET
accounts.google.com/InteractiveLogin?continue=https://www.youtube.com/favicon.ico&hl=en&passive=true&service=youtube&uilel=3&ifkv=AdBytiMXHLyvcFwfuT-ZY3cdXbZ-Zvgm_OIZqqHBuyPGRe8ShBjnqLDPf6gL14J9Th89BgSKymYl
IP
142.250.147.84:443
ASN
#15169 GOOGLE

Requested by
https://es.autoescuelahernani.es/
Certificate
IssuerGoogle Trust Services
Subjectaccounts.google.com
Fingerprint5B:F0:BA:9C:EB:7F:11:56:9B:32:66:06:15:C3:6B:70:80:8F:1F:AC
ValidityMon, 02 Jun 2025 08:37:23 GMT - Mon, 25 Aug 2025 08:37:22 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /InteractiveLogin?continue=https://www.youtube.com/favicon.ico&hl=en&passive=true&service=youtube&uilel=3&ifkv=AdBytiMXHLyvcFwfuT-ZY3cdXbZ-Zvgm_OIZqqHBuyPGRe8ShBjnqLDPf6gL14J9Th89BgSKymYl HTTP/1.1
Host: accounts.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://es.autoescuelahernani.es/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 302 Found
content-type: text/html; charset=UTF-8
set-cookie: __Host-GAPS=1:3GUJLkLFL2UXxX0n_WJFGp1Y6PSM0Q:U4nkQmoA7P3G3NU2;Path=/;Expires=Tue, 22-Jun-2027 14:43:37 GMT;Secure;HttpOnly;Priority=HIGH
x-frame-options: DENY
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Sun, 22 Jun 2025 14:43:37 GMT
location: https://accounts.google.com/v3/signin/identifier?continue=https%3A%2F%2Fwww.youtube.com%2Ffavicon.ico&hl=en&ifkv=AdBytiPylLBrgDbpiKEKdCchsjkzWotQwV3yV4P2gConidT4Pb-UXYkzgnzUkEm5P07TMF011ZMF6Q&passive=true&service=youtube&uilel=3&flowName=GlifWebSignIn&flowEntry=ServiceLogin&dsh=S119649581%3A1750603417409316
strict-transport-security: max-age=31536000; includeSubDomains
content-security-policy: require-trusted-types-for 'script';report-uri /cspreport, script-src 'nonce-7pB0Q6rrPzCGFE9KPpEuGQ' 'unsafe-inline' 'unsafe-eval';object-src 'none';base-uri 'self';report-uri /cspreport
cross-origin-opener-policy-report-only: same-origin; report-to="coop_gse_qebhlk"
report-to: {"group":"coop_gse_qebhlk","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gse_qebhlk"}]}
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 418
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

GET es.autoescuelahernani.es/wp-content/plugins/rocket-lazy-load/assets/js/16.1/lazyload.min.js

104.21.112.1

200 OK

7.9 kB

URL GET
es.autoescuelahernani.es/wp-content/plugins/rocket-lazy-load/assets/js/16.1/lazyload.min.js
IP
104.21.112.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://es.autoescuelahernani.es/
Certificate
IssuerGoogle Trust Services
Subjectautoescuelahernani.es
Fingerprint49:B5:EF:77:74:B6:46:69:FE:35:76:47:DC:0F:B1:92:95:26:FD:7F
ValiditySat, 17 May 2025 13:28:15 GMT - Fri, 15 Aug 2025 14:25:59 GMT

File type
JavaScript source, ASCII text, with very long lines (7889)
Size
7.9 kB (7890 bytes)
Hash
d18523e4a4aaa9420a86e4dddfb07554
fa22a3d38dc3c87ca92f1456846682abeb696b96
6e86a52a9858206302e32036d89907e3ac87762055e7f9c6364aec33221b3e41

HTTP Headers

GET /wp-content/plugins/rocket-lazy-load/assets/js/16.1/lazyload.min.js HTTP/1.1
Host: es.autoescuelahernani.es
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://es.autoescuelahernani.es/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sun, 22 Jun 2025 14:43:21 GMT
content-type: application/javascript; charset=utf-8
server: cloudflare
last-modified: Sat, 13 Jul 2024 00:18:43 GMT
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
vary: Accept-Encoding
etag: W/"6691c7e3-1ed2"
expires: Tue, 22 Jul 2025 14:43:21 GMT
cache-control: max-age=2592000
content-encoding: gzip
cf-cache-status: MISS
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=8bk0HegByyxVaiAnqTtopbAQGpW7hgg%2BDOJVktHbkfQI6kNxDk3uAqEMi2A%2BMUsW3yPfxwjY2tyR7utqLClYUrK3Tv5PkBSH%2Fu7pCvNK9gcAnNOuJPQ%3D"}]}
cf-ray: 953c84780ab356b5-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

GET cdn-icons-png.flaticon.com/128/733/733603.png

23.33.119.217

200 OK

1.4 kB

URL GET
cdn-icons-png.flaticon.com/128/733/733603.png
IP
23.33.119.217:443
ASN
#20940 Akamai International B.V.

Requested by
https://es.autoescuelahernani.es/
Certificate
IssuerLet's Encrypt
Subject*.flaticon.com
FingerprintE8:BC:CE:05:EB:0D:D1:AD:87:B8:28:30:2E:A1:71:97:C2:15:20:35
ValidityMon, 28 Apr 2025 13:33:52 GMT - Sun, 27 Jul 2025 13:33:51 GMT

File type
PNG image data, 128 x 128, 8-bit/color RGBA, non-interlaced
Size
1.4 kB (1356 bytes)
Hash
44618e2d39ad910559cfdf3e499c3bde
52ad0e416094a4c070bb27e6257eb9e902af504d
2cafb8b2d1ff9530f7fecbf7d6a3d1aaa1e84fe0f1dcb6973f1583b7652acd53

HTTP Headers

GET /128/733/733603.png HTTP/1.1
Host: cdn-icons-png.flaticon.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://es.autoescuelahernani.es/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/png
content-length: 1356
last-modified: Mon, 18 Sep 2023 23:46:55 GMT
etag: "44618e2d39ad910559cfdf3e499c3bde"
accept-ranges: bytes
date: Sun, 22 Jun 2025 14:43:21 GMT
vary: Accept-Encoding
access-control-allow-origin: *
pragma: public
cache-control: public, max-age=31536000
x-default-rule: YES
X-Firefox-Spdy: h2

GET praystakeinstinct.com/pixel/purst?dl=0&th=0&sc=0&rs=10716&rd=10716&fd=485&bv=25.5.2579&tmpl=136

192.243.59.13

200 OK

0 B

URL GET
praystakeinstinct.com/pixel/purst?dl=0&th=0&sc=0&rs=10716&rd=10716&fd=485&bv=25.5.2579&tmpl=136
IP
192.243.59.13:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://es.autoescuelahernani.es/
Certificate
IssuerLet's Encrypt
Subjectpraystakeinstinct.com
FingerprintEB:32:11:47:9B:33:13:C9:D7:C7:F1:D3:1F:81:A6:05:E1:9D:89:CC
ValidityTue, 29 Apr 2025 22:08:44 GMT - Mon, 28 Jul 2025 22:08:43 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /pixel/purst?dl=0&th=0&sc=0&rs=10716&rd=10716&fd=485&bv=25.5.2579&tmpl=136 HTTP/1.1
Host: praystakeinstinct.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://es.autoescuelahernani.es/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Sun, 22 Jun 2025 14:43:31 GMT
Content-Length: 0
Connection: keep-alive
Host: praystakeinstinct.com
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range

GET cdn.creative-stat1.com/sb/ssp/interstitial/bottom_banner/1/css/animate.css

172.67.133.15

200 OK

79 kB

URL GET
cdn.creative-stat1.com/sb/ssp/interstitial/bottom_banner/1/css/animate.css
IP
172.67.133.15:443
ASN
#13335 CLOUDFLARENET

Requested by
https://es.autoescuelahernani.es/
Certificate
IssuerGoogle Trust Services
Subjectcreative-stat1.com
FingerprintEA:78:8B:9D:53:DF:84:5F:BA:B0:1B:CB:77:59:D8:9B:CC:8C:CC:86
ValidityWed, 11 Jun 2025 22:34:34 GMT - Tue, 09 Sep 2025 23:32:59 GMT

File type
ASCII text
Size
79 kB (78689 bytes)
Hash
3d4123dbfb33d27a5cfdfcfa91df6783
e7d0eeeec54b848f0bc3da8685fa3bc88429d660
cb7d1393b65701b2f97d8da244c2c6023e9cbc3463ecb0136b915cfc775c6887

HTTP Headers

GET /sb/ssp/interstitial/bottom_banner/1/css/animate.css HTTP/1.1
Host: cdn.creative-stat1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://es.autoescuelahernani.es
DNT: 1
Connection: keep-alive
Referer: https://es.autoescuelahernani.es/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sun, 22 Jun 2025 14:43:32 GMT
content-type: text/css
server: cloudflare
last-modified: Fri, 19 Jan 2024 14:19:45 GMT
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
etag: W/"65aa8501-13361"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
content-encoding: gzip
cf-cache-status: MISS
vary: accept-encoding
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=Ei%2BKadSxuoJqZO5y7vPzrWiLy1qrOQ%2FwjgnMMnLi2mEsxQZR9oBYl1LUNWpvF%2FX1r4ckxozYBdsh0h2qwZwGYFJ%2FqJJZYEYxww%2BjTbSFkqUeCa%2F8"}]}
cf-ray: 953c84be8eaa56c0-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

GET es.autoescuelahernani.es/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.8.7

104.21.112.1

200 OK

13 kB

URL GET
es.autoescuelahernani.es/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.8.7
IP
104.21.112.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://es.autoescuelahernani.es/
Certificate
IssuerGoogle Trust Services
Subjectautoescuelahernani.es
Fingerprint49:B5:EF:77:74:B6:46:69:FE:35:76:47:DC:0F:B1:92:95:26:FD:7F
ValiditySat, 17 May 2025 13:28:15 GMT - Fri, 15 Aug 2025 14:25:59 GMT

File type
JavaScript source, ASCII text, with very long lines (13182), with no line terminators
Size
13 kB (13182 bytes)
Hash
83a062cf6545b990c13b4398035a29d0
5cf24bc45fcbc6f416ea9671e089ca00ef0080d2
7ee08c60d39f5712a56938fda3e2ab10fe3ef23ec98aeb3c9a29e54f6f31ffe1

HTTP Headers

GET /wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.8.7 HTTP/1.1
Host: es.autoescuelahernani.es
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://es.autoescuelahernani.es/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sun, 22 Jun 2025 14:43:21 GMT
content-type: application/javascript; charset=utf-8
server: cloudflare
last-modified: Tue, 13 Feb 2024 22:49:25 GMT
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
vary: Accept-Encoding
etag: W/"65cbf1f5-337e"
expires: Tue, 22 Jul 2025 14:43:20 GMT
cache-control: max-age=2592000
content-encoding: gzip
cf-cache-status: MISS
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=4oJhvpHQz5OQdQ0QjvT3BXnN9%2B6msPIFmHMLNfnMa9w8M0vlJcPqahT1SFwiTxookBqC23uWs9SCw9%2ForkolPkHEPYdePycmzLjfnLVOmDsJ%2Bd%2FHBiE%3D"}]}
cf-ray: 953c84780a9d56b5-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

GET push-sdk.com/f/sdk.js?z=1621627

157.90.33.121

200 OK

55 kB

URL GET
push-sdk.com/f/sdk.js?z=1621627
IP
157.90.33.121:443
ASN
#24940 Hetzner Online GmbH

Requested by
https://es.autoescuelahernani.es/
Certificate
IssuerLet's Encrypt
Subjectpush-sdk.com
Fingerprint2E:9A:67:76:0E:42:81:D5:30:A2:76:47:85:CA:6C:D7:FD:FF:38:9C
ValidityThu, 05 Jun 2025 03:47:05 GMT - Wed, 03 Sep 2025 03:47:04 GMT

File type
JavaScript source, Unicode text, UTF-8 text, with very long lines (54745), with no line terminators
Size
55 kB (54787 bytes)
Hash
f4d87b22393ed5eef57d01d86c6a88f6
5e1aaee78cd735c23cc423fc863decca30aee219
91cf9b34af48f3b62d706127b1140c89d8bb3a5455120acd2cfcfc41ab4ad5ee

HTTP Headers

GET /f/sdk.js?z=1621627 HTTP/1.1
Host: push-sdk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://es.autoescuelahernani.es/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: Angie
date: Sun, 22 Jun 2025 14:43:21 GMT
content-type: application/javascript; charset=utf-8
content-length: 15242
content-encoding: gzip
cache-control: no-cache, max-age=0, must-revalidate, proxy-revalidate
vary: Accept-Encoding
X-Firefox-Spdy: h2

GET fonts.gstatic.com/s/roboto/v48/KFO7CnqEu92Fr1ME7kSn66aGLdTylUAMa3yUBA.woff2

142.250.178.67

200 OK

40 kB

URL GET
fonts.gstatic.com/s/roboto/v48/KFO7CnqEu92Fr1ME7kSn66aGLdTylUAMa3yUBA.woff2
IP
142.250.178.67:443
ASN
#15169 GOOGLE

Requested by
https://es.autoescuelahernani.es/
Certificate
IssuerGoogle Trust Services
Subject*.gstatic.com
Fingerprint6C:DD:E7:B7:B0:02:A6:B7:4F:2D:EB:A1:11:A3:4B:1C:31:F9:07:F7
ValidityMon, 02 Jun 2025 08:36:37 GMT - Mon, 25 Aug 2025 08:36:36 GMT

File type
Web Open Font Format (Version 2), TrueType, length 40128, version 1.0
Size
40 kB (40128 bytes)
Hash
9a01b69183a9604ab3a439e388b30501
8ed1d59003d0dbe6360481017b44665153665fbe
20b535fa80c8189e3b87d1803038389960203a886d502bc2ef1857affc2f38d2

HTTP Headers

GET /s/roboto/v48/KFO7CnqEu92Fr1ME7kSn66aGLdTylUAMa3yUBA.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://es.autoescuelahernani.es
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 40128
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 20 Jun 2025 08:13:08 GMT
expires: Sat, 20 Jun 2026 08:13:08 GMT
cache-control: public, max-age=31536000
age: 196225
last-modified: Thu, 29 May 2025 23:30:55 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

GET accounts.google.com/v3/signin/identifier?continue=https%3A%2F%2Fwww.google.com%2Ffavicon.ico&hl=en&ifkv=AdBytiNOH4jUDYnd6lJUXT_Co3cbyNNYRvaB4CBWfZ8HHxfzkkhZ8tm4UiRYK7AnVuDTRl2p-0oBQw&passive=true&service=mail&uilel=3&flowName=GlifWebSignIn&flowEntry=ServiceLogin&dsh=S638699612%3A1750603417361292

142.250.147.84

403 Forbidden

0 B

URL GET
accounts.google.com/v3/signin/identifier?continue=https%3A%2F%2Fwww.google.com%2Ffavicon.ico&hl=en&ifkv=AdBytiNOH4jUDYnd6lJUXT_Co3cbyNNYRvaB4CBWfZ8HHxfzkkhZ8tm4UiRYK7AnVuDTRl2p-0oBQw&passive=true&service=mail&uilel=3&flowName=GlifWebSignIn&flowEntry=ServiceLogin&dsh=S638699612%3A1750603417361292
IP
142.250.147.84:443
ASN
#15169 GOOGLE

Requested by
https://es.autoescuelahernani.es/
Certificate
IssuerGoogle Trust Services
Subject*.google.com
FingerprintEE:B4:21:E2:07:A7:35:36:27:81:A0:3A:3E:C9:6C:F5:11:A0:7F:5C
ValidityMon, 02 Jun 2025 08:35:30 GMT - Mon, 25 Aug 2025 08:35:29 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /v3/signin/identifier?continue=https%3A%2F%2Fwww.google.com%2Ffavicon.ico&hl=en&ifkv=AdBytiNOH4jUDYnd6lJUXT_Co3cbyNNYRvaB4CBWfZ8HHxfzkkhZ8tm4UiRYK7AnVuDTRl2p-0oBQw&passive=true&service=mail&uilel=3&flowName=GlifWebSignIn&flowEntry=ServiceLogin&dsh=S638699612%3A1750603417361292 HTTP/1.1
Host: accounts.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://es.autoescuelahernani.es/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 403 Forbidden
content-type: text/html; charset=utf-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Sun, 22 Jun 2025 14:43:37 GMT
vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site
strict-transport-security: max-age=31536000; includeSubDomains
content-security-policy: script-src 'nonce-iIyQcL5zkwBWOlV34fMYgw' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /v3/signin/_/AccountsSignInUi/cspreport;worker-src 'self', script-src 'unsafe-inline' 'unsafe-eval' blob: data: 'self' https://apis.google.com https://ssl.gstatic.com https://www.google.com https://www.googletagmanager.com https://www.gstatic.com https://www.google-analytics.com https://www.google.com/tools/feedback/ https://www.gstatic.com/feedback/js/ https://www.gstatic.com/inproduct_help/ https://www.gstatic.com/support/content/ https://www.gstatic.com/uservoice/feedback/client/web/live/ https://www.gstatic.com/uservoice/surveys/resources/prod/js/survey/ https://support.google.com/inapp/;report-uri /v3/signin/_/AccountsSignInUi/cspreport/allowlist, require-trusted-types-for 'script';report-uri /v3/signin/_/AccountsSignInUi/cspreport
content-security-policy-report-only: script-src 'unsafe-inline' 'unsafe-eval' blob: data: https://ajax.googleapis.com/ajax/libs/jquery/3.6.4/jquery.min.js https://translate.google.com/translate_a/element.js https://www.google.com/recaptcha/api.js https://www.google.com/tools/feedback/chat_load.js https://www.google.com/tools/feedback/help_api.js https://www.google.com/tools/feedback/load.js https://www.google.com/tools/feedback/open.js https://www.google.com/tools/feedback/open_to_help_guide_lazy.js https://www.gstatic.com/feedback/js/ https://www.gstatic.com/feedback/js/help/prod/service/lazy.min.js https://www.gstatic.com/inproduct_help/api/main.min.js https://www.gstatic.com/inproduct_help/chatsupport/chatsupport_button_v2.js https://www.gstatic.com/inproduct_help/service/lazy.min.js https://www.gstatic.com/uservoice/feedback/client/web/live/ https://www.gstatic.com/uservoice/surveys/resources/prod/js/survey/ https://www.gstatic.com/_/mss/boq-one-google/_/ https://www.gstatic.com/og/_/js/ https://apis.google.com/js/api.js https://apis.google.com/js/client.js https://www.googletagmanager.com/gtag/js https://www.google-analytics.com/analytics.js https://www.googletagmanager.com/gtag/destination https://www.gstatic.com/_/mss/boq-identity/_/js/k=boq-identity.AccountsSignInUi.en.EgAwAlBY3zc.es5.O/ https://apis.google.com/_/scs/abc-static/_/js/ https://translate.googleapis.com/_/translate_http/_/js/ https://www.gstatic.com/recaptcha/releases/;report-uri /v3/signin/_/AccountsSignInUi/cspreport/fine-allowlist
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Form-Factors, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
report-to: {"group":"AccountsSignInUi","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/AccountsSignInUi"}]}
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-form-factors=*, ch-ua-platform=*, ch-ua-platform-version=*
cross-origin-opener-policy-report-only: same-origin; report-to="AccountsSignInUi"
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

GET es.autoescuelahernani.es/

104.21.112.1

200 OK

48 kB

URL User Request GET
es.autoescuelahernani.es/
IP
104.21.112.1:443
ASN
#13335 CLOUDFLARENET

Certificate
IssuerGoogle Trust Services
Subjectautoescuelahernani.es
Fingerprint49:B5:EF:77:74:B6:46:69:FE:35:76:47:DC:0F:B1:92:95:26:FD:7F
ValiditySat, 17 May 2025 13:28:15 GMT - Fri, 15 Aug 2025 14:25:59 GMT

File type
HTML document, Unicode text, UTF-8 text, with very long lines (10156), with CRLF, LF line terminators
Size
48 kB (48237 bytes)
Hash
cf66fcdabb22a5e848a52e1e4f519c1b
a3d2446fb3164636c0ae076fe64a593914a353ff
dc4f100a293f858c975685fdc7890961a4a1d4a3d3233b1778c89087a300ab1a

HTTP Headers

GET / HTTP/1.1
Host: es.autoescuelahernani.es
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sun, 22 Jun 2025 14:43:20 GMT
content-type: text/html; charset=UTF-8
server: cloudflare
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
vary: Accept-Encoding
x-fastcgi-cache: HIT
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=ksP4%2B5Nk7q8qB%2F3sI%2F07FInOnP%2Bv3wk5Zoghcyp1B4UTE3bNqbOU%2BxwPkngaMeLTWjPcmy2JQzb7nPJIfndpK8FNj2Fdm9M9CWiBFJFzW2UJOEoA8KI%3D"}]}
cf-cache-status: DYNAMIC
content-encoding: br
cf-ray: 953c8475af6756b5-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

GET es.autoescuelahernani.es/wp-content/uploads/caos/8e7e38f0.js?id=G-TN7BC8EWJJ

104.21.112.1

200 OK

399 kB

URL GET
es.autoescuelahernani.es/wp-content/uploads/caos/8e7e38f0.js?id=G-TN7BC8EWJJ
IP
104.21.112.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://es.autoescuelahernani.es/
Certificate
IssuerGoogle Trust Services
Subjectautoescuelahernani.es
Fingerprint49:B5:EF:77:74:B6:46:69:FE:35:76:47:DC:0F:B1:92:95:26:FD:7F
ValiditySat, 17 May 2025 13:28:15 GMT - Fri, 15 Aug 2025 14:25:59 GMT

File type
JavaScript source, ASCII text, with very long lines (6004)
Size
399 kB (399065 bytes)
Hash
5f67554f99c9cfc9b81555054ff78ef2
522ad1b05a40cf29344928290c54aefb4134bb82
a8bfc33ce8734c080fdba2c6e2e997446d94f55bff8b0386a1f62d40c1cce04a

HTTP Headers

GET /wp-content/uploads/caos/8e7e38f0.js?id=G-TN7BC8EWJJ HTTP/1.1
Host: es.autoescuelahernani.es
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://es.autoescuelahernani.es/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sun, 22 Jun 2025 14:43:21 GMT
content-type: application/javascript; charset=utf-8
server: cloudflare
last-modified: Sun, 22 Jun 2025 02:21:51 GMT
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
vary: Accept-Encoding
etag: W/"685768bf-616d9"
expires: Tue, 22 Jul 2025 14:43:21 GMT
cache-control: max-age=2592000
content-encoding: gzip
cf-cache-status: MISS
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=7aVYrjoohofYmTaMcRzmQh%2FsMkkMxjElPVAabEAViCo7eVDA3IgEI2iglOde9RP5slaciF%2BoCHMqrfFrVMB2T3Xza1dXGT5EVljowbM4SiSLc%2FCezb0%3D"}]}
cf-ray: 953c84780ab156b5-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

GET wearychallengeraise.com/ren.gif?sid=H4sIAAAAAAAC_1RSz4scRRSu3t2boBgkICLMwYOCO9u_5kebQzAmkWB-kUQimktVV_VsuTVdbVX39GQUXFyQPXiYoAe99X6zm40aRb0LMit4WBAcT4NkL_kPFHKWmR1YfVDvvarvVfG979WnO8URCVHQ6fUreiCVomuNult7-bZMuS5t7eqtmufW3TO12zJthmdq_Zkzvde8IKy7r9TeFPGGXvNdz3U916tdlEYkur82RyGzh5FXj9x66Ne9Roi--f_eFg4sdcB7R-QUJJ888zh5DzIeI-3-cF7YjVxnr17oForm2qDH999ON1JdpuiepIlxkKT7i2poOyHkyyXodH_RAXRvd9YBmJyQpdOPwNL9BU2w3t4xU6YgUjD-FMreGEKNIekYsd6C5H8QIOa4eg1p9_5VbUp69xilM3RCVp78A1lOyMqj55B2vz-nZL92U6silzq16CcVZH8M2RkjKw6QD5YgywPE-SeQ_Hey9uQy0u7uNas0JJ--JJJWux233NWGoGw15JyvMtaiqzQKkqSdCNZk_lwimYyhxBDUOihmSzooEgdF5qDLp7XQbYexR4NmEvG45YY0DLlgbtT2XZdGcQtFPOM_RJ4NEashYrOJzGxiQw5hil9g1ytY7sDmBD1eoRQEpSUoKUEpCcqcoOxVe1xZ31b3ubIF8xbRX8SgGum8s0P3dN4RKQE1Qxhe7crsA7uFOF8eDRLLR3rmKMurEWW82smOyLMzaZ07332GDTGtucxj7bDd8pkfUtEWXiKChusFDRa1_CDyYWUFaZfmYgzkhLTPfIxMTsjKhefB6AGsOkAsl0GLF0HLCnS9wiD9iXMrTE-YukyZMPVU5OC6QpavIL_r7Kgj8sJ8xO9-uA0RH559HMwNsamQmQrvy18JOmp7dEOXZPeGLi358VqWy64c0Nn4b-Y0F8vfvCXultrwS-ft8OvX4xkwSx_eEja_TFMu044l356TnAtzUZtYkJ8v2duCXS_s-rnCpEV2-fobFy91MyOslTodg8oJcf42iOWEnPptOv_aweodSDOGKSp0i0OyMEg9RpxtwmYn_K0mMOqkhmUOyqIaGZ-dHCo5IVe-eAAlDs9-9dHBvacf_AXKKljxn4sn-cjQ2QtUVjt2Gx3jgOZbSLsVeqZCT1WgaghbLI_yzBye_XNBhSlnxJRxdpky6t6x1FZOaw2fBc12uymSJk8CHvgBjxquiEIaNcMobCC3k_V3Tn_-bwAAAP__xDV4M8AEAAA=

192.243.61.225

200 OK

0 B

URL GET
wearychallengeraise.com/ren.gif?sid=H4sIAAAAAAAC_1RSz4scRRSu3t2boBgkICLMwYOCO9u_5kebQzAmkWB-kUQimktVV_VsuTVdbVX39GQUXFyQPXiYoAe99X6zm40aRb0LMit4WBAcT4NkL_kPFHKWmR1YfVDvvarvVfG979WnO8URCVHQ6fUreiCVomuNult7-bZMuS5t7eqtmufW3TO12zJthmdq_Zkzvde8IKy7r9TeFPGGXvNdz3U916tdlEYkur82RyGzh5FXj9x66Ne9Roi--f_eFg4sdcB7R-QUJJ888zh5DzIeI-3-cF7YjVxnr17oForm2qDH999ON1JdpuiepIlxkKT7i2poOyHkyyXodH_RAXRvd9YBmJyQpdOPwNL9BU2w3t4xU6YgUjD-FMreGEKNIekYsd6C5H8QIOa4eg1p9_5VbUp69xilM3RCVp78A1lOyMqj55B2vz-nZL92U6silzq16CcVZH8M2RkjKw6QD5YgywPE-SeQ_Hey9uQy0u7uNas0JJ--JJJWux233NWGoGw15JyvMtaiqzQKkqSdCNZk_lwimYyhxBDUOihmSzooEgdF5qDLp7XQbYexR4NmEvG45YY0DLlgbtT2XZdGcQtFPOM_RJ4NEashYrOJzGxiQw5hil9g1ytY7sDmBD1eoRQEpSUoKUEpCcqcoOxVe1xZ31b3ubIF8xbRX8SgGum8s0P3dN4RKQE1Qxhe7crsA7uFOF8eDRLLR3rmKMurEWW82smOyLMzaZ07332GDTGtucxj7bDd8pkfUtEWXiKChusFDRa1_CDyYWUFaZfmYgzkhLTPfIxMTsjKhefB6AGsOkAsl0GLF0HLCnS9wiD9iXMrTE-YukyZMPVU5OC6QpavIL_r7Kgj8sJ8xO9-uA0RH559HMwNsamQmQrvy18JOmp7dEOXZPeGLi358VqWy64c0Nn4b-Y0F8vfvCXultrwS-ft8OvX4xkwSx_eEja_TFMu044l356TnAtzUZtYkJ8v2duCXS_s-rnCpEV2-fobFy91MyOslTodg8oJcf42iOWEnPptOv_aweodSDOGKSp0i0OyMEg9RpxtwmYn_K0mMOqkhmUOyqIaGZ-dHCo5IVe-eAAlDs9-9dHBvacf_AXKKljxn4sn-cjQ2QtUVjt2Gx3jgOZbSLsVeqZCT1WgaghbLI_yzBye_XNBhSlnxJRxdpky6t6x1FZOaw2fBc12uymSJk8CHvgBjxquiEIaNcMobCC3k_V3Tn_-bwAAAP__xDV4M8AEAAA=
IP
192.243.61.225:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://es.autoescuelahernani.es/
Certificate
IssuerLet's Encrypt
Subjectwearychallengeraise.com
FingerprintC2:9A:4F:D1:20:4F:D6:7B:AD:D9:F3:AE:DB:94:98:E2:A5:BE:EF:8B
ValidityThu, 19 Jun 2025 03:13:57 GMT - Wed, 17 Sep 2025 03:13:56 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /ren.gif?sid=H4sIAAAAAAAC_1RSz4scRRSu3t2boBgkICLMwYOCO9u_5kebQzAmkWB-kUQimktVV_VsuTVdbVX39GQUXFyQPXiYoAe99X6zm40aRb0LMit4WBAcT4NkL_kPFHKWmR1YfVDvvarvVfG979WnO8URCVHQ6fUreiCVomuNult7-bZMuS5t7eqtmufW3TO12zJthmdq_Zkzvde8IKy7r9TeFPGGXvNdz3U916tdlEYkur82RyGzh5FXj9x66Ne9Roi--f_eFg4sdcB7R-QUJJ888zh5DzIeI-3-cF7YjVxnr17oForm2qDH999ON1JdpuiepIlxkKT7i2poOyHkyyXodH_RAXRvd9YBmJyQpdOPwNL9BU2w3t4xU6YgUjD-FMreGEKNIekYsd6C5H8QIOa4eg1p9_5VbUp69xilM3RCVp78A1lOyMqj55B2vz-nZL92U6silzq16CcVZH8M2RkjKw6QD5YgywPE-SeQ_Hey9uQy0u7uNas0JJ--JJJWux233NWGoGw15JyvMtaiqzQKkqSdCNZk_lwimYyhxBDUOihmSzooEgdF5qDLp7XQbYexR4NmEvG45YY0DLlgbtT2XZdGcQtFPOM_RJ4NEashYrOJzGxiQw5hil9g1ytY7sDmBD1eoRQEpSUoKUEpCcqcoOxVe1xZ31b3ubIF8xbRX8SgGum8s0P3dN4RKQE1Qxhe7crsA7uFOF8eDRLLR3rmKMurEWW82smOyLMzaZ07332GDTGtucxj7bDd8pkfUtEWXiKChusFDRa1_CDyYWUFaZfmYgzkhLTPfIxMTsjKhefB6AGsOkAsl0GLF0HLCnS9wiD9iXMrTE-YukyZMPVU5OC6QpavIL_r7Kgj8sJ8xO9-uA0RH559HMwNsamQmQrvy18JOmp7dEOXZPeGLi358VqWy64c0Nn4b-Y0F8vfvCXultrwS-ft8OvX4xkwSx_eEja_TFMu044l356TnAtzUZtYkJ8v2duCXS_s-rnCpEV2-fobFy91MyOslTodg8oJcf42iOWEnPptOv_aweodSDOGKSp0i0OyMEg9RpxtwmYn_K0mMOqkhmUOyqIaGZ-dHCo5IVe-eAAlDs9-9dHBvacf_AXKKljxn4sn-cjQ2QtUVjt2Gx3jgOZbSLsVeqZCT1WgaghbLI_yzBye_XNBhSlnxJRxdpky6t6x1FZOaw2fBc12uymSJk8CHvgBjxquiEIaNcMobCC3k_V3Tn_-bwAAAP__xDV4M8AEAAA= HTTP/1.1
Host: wearychallengeraise.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://es.autoescuelahernani.es/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Sun, 22 Jun 2025 14:43:31 GMT
Content-Type: image/gif
Content-Length: 7
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Host: wearychallengeraise.com
Expires: Thu, 01 Jan 1970 00:00:01 GMT
X-Request-ID: c6a1110c5e3a76a333ca52f8d20ed502
Cache-Control: no-cache, max-age=0, private, no-cache
Pragma: no-cache
Strict-Transport-Security: max-age=0; includeSubdomains

GET denknowledc.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

3.167.2.116

200 OK

3.1 kB

URL GET
denknowledc.org/QTJKdlcgUCkbaCAPKFAiM153U2UHF3gwMyJQKAEuLEJ7FD8tVGQVOy5HLhAlLlw+WDkkRm9EEXl8MDwjJQAmIw8QfxggPA9QCSMnGHAtPA0TAyUmEQMCDDIRBGIJNwUJZCEVDQZzMjMCE1UZNAEbUwk3AglkJgESFmMyMxEAUQ80Oy1xHzQGDGcNNxUNYRwsMQBVGy4BE10ZARoVZz1PMxRjHCEPAEIBImYLUQ4dJxh3HDsdB2QbMhEDWQI0OzZiDA4eJ2chFRoGY38zDxRBCTUWMVQLEWcAZXtCGhRePg4VcXwCIhYUcRgnFgBlHC8UAHAlJRYHH3osHxN7Cy4CG2gNJx0IYAkFBAB0ejcWB1kPIQELUy4kMydgMjMVA1kiMxw5ewsuBhRUDxESMmAmGRMJdHsTAwBnCTU/CHkSMGYIYBlOEQBeMj4AEGsJLhELUAhHBgRwGw4FGWAcJQBydw4uPA96CA4GGGEmEXErQSUYJ3xRLxEFLWgGGBkkVX4VDQ
IP
3.167.2.116:443
ASN
#0

Requested by
https://es.autoescuelahernani.es/
Certificate
IssuerAmazon
Subjectdenknowledc.org
FingerprintF2:62:65:1C:38:43:C9:DB:CE:22:22:6E:46:9E:78:A7:A6:6F:0E:27
ValidityWed, 18 Jun 2025 00:00:00 GMT - Fri, 17 Jul 2026 23:59:59 GMT

File type
HTML document, ASCII text, with very long lines (3087), with no line terminators
Size
3.1 kB (3087 bytes)
Hash
d911e0ec33dac5aae69cb6cceedc50d8
808a5342cfff77b06b5967e5b17c17bde9fafe54
43cee909330d89f38c70ef047240e5a87a1d58feb1017dfebc60be27ab256b56

HTTP Headers

GET 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 HTTP/1.1
Host: denknowledc.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://es.autoescuelahernani.es/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/html
content-length: 1225
date: Sun, 22 Jun 2025 14:43:37 GMT
accept-ch: DPR, Width, Viewport-Width, Device-Memory, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List
set-cookie: AWSALB=UFYdG2wFUor6og5qxnHOKGJrv/AJspFugQ9j2hrTSyddMsgec86IquoMDWJ+kDH91e/0Gva7HcOUJSVOktnOOIinSZv7F3AbGTZqd6voivklr77hYFEPIBgcICUx; Expires=Sun, 29 Jun 2025 14:43:37 GMT; Path=/
AWSALBCORS=UFYdG2wFUor6og5qxnHOKGJrv/AJspFugQ9j2hrTSyddMsgec86IquoMDWJ+kDH91e/0Gva7HcOUJSVOktnOOIinSZv7F3AbGTZqd6voivklr77hYFEPIBgcICUx; Expires=Sun, 29 Jun 2025 14:43:37 GMT; Path=/; SameSite=None
server: openresty/1.17.8.2
cache-control: no-store, no-cache, must-revalidate, no-transform
pragma: no-cache
p3p: CP="NID DSP ALL COR"
content-encoding: gzip
x-cache: Miss from cloudfront
via: 1.1 bac2c08263be93278e77355a3ca67ff6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: CuRoBXT28GIzuN2BpSXYsprm3T-Oq6pSGL7_nR7-iIHMtjbVvGd_wg==
X-Firefox-Spdy: h2

GET es.autoescuelahernani.es/favicon.ico

104.21.80.1

200 OK

15 kB

URL GET
es.autoescuelahernani.es/favicon.ico
IP
104.21.80.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://es.autoescuelahernani.es/
Certificate
IssuerGoogle Trust Services
Subjectautoescuelahernani.es
Fingerprint49:B5:EF:77:74:B6:46:69:FE:35:76:47:DC:0F:B1:92:95:26:FD:7F
ValiditySat, 17 May 2025 13:28:15 GMT - Fri, 15 Aug 2025 14:25:59 GMT

File type
MS Windows icon resource - 3 icons, 16x16, 32 bits/pixel, 32x32, 32 bits/pixel
Size
15 kB (15406 bytes)
Hash
23e4276af8b0ada97f6c85652a82f126
63bdeef9d0cbb348196492143379ea65cea6c480
495957afb5ada30252c646610f7823c7d7d332243b635bfeb575570093d3c3ab

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: es.autoescuelahernani.es
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://es.autoescuelahernani.es/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sun, 22 Jun 2025 14:43:21 GMT
content-type: image/x-icon
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=VDDLXT96AR6h6uLXX%2BkFfX95HL%2BZyO5pmVUujsve%2BYIbQwq%2BHVLlK2l0rCLYVbeOF22wRnkio8Sc4ImvTMULcfC%2FVJGS%2B3IUJnD2cyDpCXQI1R0u3fSCpAq24ga8mTaeeUKDYfLWQtjaZ%2Fc%3D"}],"group":"cf-nel","max_age":604800}
last-modified: Tue, 27 Feb 2024 14:24:47 GMT
vary: Accept-Encoding
etag: W/"65ddf0af-3c2e"
content-encoding: gzip
cache-control: max-age=14400
cf-cache-status: MISS
cf-ray: 953c847a68d30afa-OSL
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=2240&min_rtt=550&rtt_var=1495&sent=192&recv=214&lost=0&retrans=0&sent_bytes=38476&recv_bytes=12829&delivery_rate=927114&ss_exit_cwnd=14936&ss_exit_reason=2&cwnd=15500&unsent_bytes=0&cid=321a9b6e5ed65361&ts=721&inflight_dur=93&x=44"

GET es.autoescuelahernani.es/page/2/

104.21.80.1

200 OK

45 kB

URL GET
es.autoescuelahernani.es/page/2/
IP
104.21.80.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://es.autoescuelahernani.es/
Certificate
IssuerGoogle Trust Services
Subjectautoescuelahernani.es
Fingerprint49:B5:EF:77:74:B6:46:69:FE:35:76:47:DC:0F:B1:92:95:26:FD:7F
ValiditySat, 17 May 2025 13:28:15 GMT - Fri, 15 Aug 2025 14:25:59 GMT

File type
HTML document, Unicode text, UTF-8 text, with very long lines (10156), with CRLF, LF line terminators
Size
45 kB (45027 bytes)
Hash
da680bbd9c9fd3e1360aab0ffaa80b0f
b1c84a561bb856ab343d47c72d32517d0c1c0a80
e9ce2cc7c1b7d6fec0a7cdb4564975eec9b582a6806f51ba2c73fe7bae40f405

HTTP Headers

GET /page/2/ HTTP/1.1
Host: es.autoescuelahernani.es
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
DNT: 1
Connection: keep-alive
Referer: https://es.autoescuelahernani.es/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sun, 22 Jun 2025 14:43:22 GMT
content-type: text/html; charset=UTF-8
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=gOz0uyLgKe3Ze%2BIym4ZreW0loX%2FhhgdRf8R7buaqFmMU9Kl5yTLzQ8cfzBPlbWtGiaBCdHexDf%2FBhGZdNCgThteOm4BbwZwR6OPaldzVXydSYN4SFECMf682L9hcOPZMstF2zpP1W%2F6wRi4%3D"}],"group":"cf-nel","max_age":604800}
vary: Accept-Encoding
x-fastcgi-cache: MISS
cf-cache-status: DYNAMIC
content-encoding: br
cf-ray: 953c847c08de0afa-OSL
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=2020&min_rtt=550&rtt_var=1190&sent=196&recv=217&lost=0&retrans=0&sent_bytes=41022&recv_bytes=13198&delivery_rate=1158894&ss_exit_cwnd=14936&ss_exit_reason=2&cwnd=14875&unsent_bytes=0&cid=321a9b6e5ed65361&ts=1842&inflight_dur=117&x=44"

GET cdn.storageimagedisplay.com/si/f4/90/38/f49038f6df185b46cc6e646a1ee94772/1709778664.png

45.133.44.2

200 OK

153 kB

URL GET
cdn.storageimagedisplay.com/si/f4/90/38/f49038f6df185b46cc6e646a1ee94772/1709778664.png
IP
45.133.44.2:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://es.autoescuelahernani.es/
Certificate
IssuerLet's Encrypt
Subjectcdn.storageimagedisplay.com
Fingerprint7C:BD:B0:48:37:0F:A4:22:46:5F:09:F9:77:FA:07:FF:25:25:52:76
ValiditySun, 11 May 2025 02:32:51 GMT - Sat, 09 Aug 2025 02:32:50 GMT

File type
PNG image data, 720 x 480, 8-bit/color RGBA, non-interlaced
Size
153 kB (152797 bytes)
Hash
d40bfa96aea99dda66bc72a16f22c531
8e0d56bca2496d24affaf889b701b7c80ab38ae5
9c344984870bc844be51223e5c127bfb94cd1730c8cdd7bf2761ecd1d523f59a

HTTP Headers

GET /si/f4/90/38/f49038f6df185b46cc6e646a1ee94772/1709778664.png HTTP/1.1
Host: cdn.storageimagedisplay.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sun, 22 Jun 2025 14:43:32 GMT
content-type: image/png
content-length: 152797
server: nginx/1.21.6
last-modified: Thu, 07 Mar 2024 02:31:12 GMT
etag: "65e926f0-254dd"
expires: Tue, 24 Jun 2025 14:43:32 GMT
cache-control: max-age=172800
x-cdn-host-id: ah0543
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2

GET accounts.google.com/InteractiveLogin?continue=https://www.google.com/favicon.ico&hl=en&passive=true&service=mail&uilel=3&ifkv=AdBytiMtk-KPU7sKJ9TqxQce24E5hlO87dDoMMF8vUnOb7tI0VjUIBGUAZoMyytik-QayCICIuwP

142.250.147.84

302 Found

0 B

URL GET
accounts.google.com/InteractiveLogin?continue=https://www.google.com/favicon.ico&hl=en&passive=true&service=mail&uilel=3&ifkv=AdBytiMtk-KPU7sKJ9TqxQce24E5hlO87dDoMMF8vUnOb7tI0VjUIBGUAZoMyytik-QayCICIuwP
IP
142.250.147.84:443
ASN
#15169 GOOGLE

Requested by
https://es.autoescuelahernani.es/
Certificate
IssuerGoogle Trust Services
Subjectaccounts.google.com
Fingerprint5B:F0:BA:9C:EB:7F:11:56:9B:32:66:06:15:C3:6B:70:80:8F:1F:AC
ValidityMon, 02 Jun 2025 08:37:23 GMT - Mon, 25 Aug 2025 08:37:22 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /InteractiveLogin?continue=https://www.google.com/favicon.ico&hl=en&passive=true&service=mail&uilel=3&ifkv=AdBytiMtk-KPU7sKJ9TqxQce24E5hlO87dDoMMF8vUnOb7tI0VjUIBGUAZoMyytik-QayCICIuwP HTTP/1.1
Host: accounts.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://es.autoescuelahernani.es/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 302 Found
content-type: text/html; charset=UTF-8
set-cookie: __Host-GAPS=1:8MGeQcTrGosRmo-VKdwP0hTTuugzJg:3jCMTQprsQ1V90TS;Path=/;Expires=Tue, 22-Jun-2027 14:43:37 GMT;Secure;HttpOnly;Priority=HIGH
x-frame-options: DENY
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Sun, 22 Jun 2025 14:43:37 GMT
location: https://accounts.google.com/v3/signin/identifier?continue=https%3A%2F%2Fwww.google.com%2Ffavicon.ico&hl=en&ifkv=AdBytiNOH4jUDYnd6lJUXT_Co3cbyNNYRvaB4CBWfZ8HHxfzkkhZ8tm4UiRYK7AnVuDTRl2p-0oBQw&passive=true&service=mail&uilel=3&flowName=GlifWebSignIn&flowEntry=ServiceLogin&dsh=S638699612%3A1750603417361292
strict-transport-security: max-age=31536000; includeSubDomains
content-security-policy: require-trusted-types-for 'script';report-uri /cspreport, script-src 'nonce-pjqSntpG7Ml9_1H-BTR8uA' 'unsafe-inline' 'unsafe-eval';object-src 'none';base-uri 'self';report-uri /cspreport
cross-origin-opener-policy-report-only: same-origin; report-to="coop_gse_qebhlk"
report-to: {"group":"coop_gse_qebhlk","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gse_qebhlk"}]}
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 416
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

GET tamping.net/go/1623694

157.90.33.78

200 OK

31 B

URL User Request GET
tamping.net/go/1623694
IP
157.90.33.78:443
ASN
#24940 Hetzner Online GmbH

Certificate
IssuerLet's Encrypt
Subjecttamping.net
FingerprintB9:2F:83:A6:B1:27:B8:B5:19:B1:51:FA:61:6C:59:59:55:6F:31:84
ValidityMon, 28 Apr 2025 03:57:38 GMT - Sun, 27 Jul 2025 03:57:37 GMT

File type
HTML document, ASCII text, with no line terminators
Size
31 B (31 bytes)
Hash
dc5de10ca1b5b874b954745fa1b61b5f
64689a89ad96e188715f49f8187490c742bc935d
f91b1662285405dce2af5446855f3c6c4aea3ddd4fe238e7ef97c362afbe3ca2

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /go/1623694 HTTP/1.1
Host: tamping.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://es.autoescuelahernani.es/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: Angie
date: Sun, 22 Jun 2025 14:43:39 GMT
content-type: text/html; charset=utf-8
content-length: 31
accept-ch: Sec-CH-UA, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Model, Sec-CH-UA-Bitness, Sec-CH-UA-Wow64
set-cookie: rauid=nIR4cE5ORYWXIONIYmFfeg; expires=Mon, 22 Jun 2026 14:43:39 GMT; path=/; secure; SameSite=None
X-Firefox-Spdy: h2

GET es.autoescuelahernani.es/wp-includes/css/dist/block-library/style.min.css?ver=6.8.1

104.21.112.1

200 OK

116 kB

URL GET
es.autoescuelahernani.es/wp-includes/css/dist/block-library/style.min.css?ver=6.8.1
IP
104.21.112.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://es.autoescuelahernani.es/
Certificate
IssuerGoogle Trust Services
Subjectautoescuelahernani.es
Fingerprint49:B5:EF:77:74:B6:46:69:FE:35:76:47:DC:0F:B1:92:95:26:FD:7F
ValiditySat, 17 May 2025 13:28:15 GMT - Fri, 15 Aug 2025 14:25:59 GMT

File type
ASCII text, with very long lines (55654)
Size
116 kB (116363 bytes)
Hash
dfe67cbbac3da53fdbbaed71c91db428
8c82643ef63a8389c1b800b7c5d0af9d684b8b24
597ddfdee7171750c16ec5aafd392cf992e9c53386d6bb6061d48e30334f09e9

HTTP Headers

GET /wp-includes/css/dist/block-library/style.min.css?ver=6.8.1 HTTP/1.1
Host: es.autoescuelahernani.es
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://es.autoescuelahernani.es/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sun, 22 Jun 2025 14:43:20 GMT
content-type: text/css
server: cloudflare
last-modified: Thu, 17 Apr 2025 02:30:35 GMT
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
vary: Accept-Encoding
etag: W/"680067cb-1c68b"
expires: Tue, 22 Jul 2025 14:43:20 GMT
cache-control: max-age=2592000
content-encoding: gzip
cf-cache-status: MISS
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=qRuX9OpqZtVaZSzzRCUWWCCBqNt8pNjhRNfOcB1kApudwhXJQ05B%2FiSxZ3GrEpLgz%2B9ocLFg7jZTgkBNVgSZY0V45H06FkJlkbnw8SmitiS8cSdeol4%3D"}]}
cf-ray: 953c8477ea5c56b5-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

GET ddserver.inber.net/?id=51&report=true&browser=Firefox&platform=Linux%20x86_64

104.21.96.1

200 OK

2 B

URL GET
ddserver.inber.net/?id=51&report=true&browser=Firefox&platform=Linux%20x86_64
IP
104.21.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://es.autoescuelahernani.es/
Certificate
IssuerGoogle Trust Services
Subjectinber.net
Fingerprint5F:2F:D8:09:3F:5B:FF:23:26:E0:E0:7E:F4:1E:80:36:45:29:EA:4F
ValidityFri, 06 Jun 2025 04:10:29 GMT - Thu, 04 Sep 2025 05:08:14 GMT

File type
JSON text data
Size
2 B (2 bytes)
Hash
99914b932bd37a50b983c5e7c90ae93b
bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f
44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a

HTTP Headers

GET /?id=51&report=true&browser=Firefox&platform=Linux%20x86_64 HTTP/1.1
Host: ddserver.inber.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://es.autoescuelahernani.es
DNT: 1
Connection: keep-alive
Referer: https://es.autoescuelahernani.es/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sun, 22 Jun 2025 14:43:21 GMT
content-type: application/javascript; charset=utf-8
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=LaMqHSdpmxMDd3IDrt7LMSvjKh%2BvnTwt3TL5WiZqhslUsQHVC1nmcPWngGOxRCxd1TgMLXr0AudzmtenJtSkSkWrD2JPpIFYtQPIaVPytMgtf%2FavHjcakHIkfY77uukyJEwuPtk%3D"}],"group":"cf-nel","max_age":604800}
access-control-allow-origin: *
access-control-allow-methods: GET, POST
access-control-allow-headers: Content-Type
content-encoding: gzip
vary: Accept-Encoding
cf-cache-status: DYNAMIC
cf-ray: 953c847c0b6b56c3-OSL
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=8652&min_rtt=1674&rtt_var=6700&sent=11&recv=8&lost=0&retrans=0&sent_bytes=3719&recv_bytes=1216&delivery_rate=329462&ss_exit_cwnd=0&ss_exit_reason=0&cwnd=15494&unsent_bytes=0&cid=fab55b9cfa3233fc&ts=82&inflight_dur=31&x=44"

GET cdn.creative-stat1.com/sb/ssp/interstitial/bottom_banner/1/js/jquery.min.js

172.67.133.15

200 OK

90 kB

URL GET
cdn.creative-stat1.com/sb/ssp/interstitial/bottom_banner/1/js/jquery.min.js
IP
172.67.133.15:443
ASN
#13335 CLOUDFLARENET

Requested by
https://es.autoescuelahernani.es/
Certificate
IssuerGoogle Trust Services
Subjectcreative-stat1.com
FingerprintEA:78:8B:9D:53:DF:84:5F:BA:B0:1B:CB:77:59:D8:9B:CC:8C:CC:86
ValidityWed, 11 Jun 2025 22:34:34 GMT - Tue, 09 Sep 2025 23:32:59 GMT

File type
JavaScript source, ASCII text, with very long lines (65451)
Size
90 kB (89492 bytes)
Hash
561acb3e541133bbdd2c0c19f8ee35a1
ffd1353cf3f77d25f801c84d8208613eb0d3d548
9fde6da568db31801e29243a903bf24f342256b41e3c01e7d018ff7c566ce7fc

HTTP Headers

GET /sb/ssp/interstitial/bottom_banner/1/js/jquery.min.js HTTP/1.1
Host: cdn.creative-stat1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sun, 22 Jun 2025 14:43:32 GMT
content-type: application/javascript
content-length: 89492
server: cloudflare
last-modified: Fri, 19 Jan 2024 14:19:45 GMT
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
etag: "65aa8501-15d94"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
accept-ranges: bytes
age: 352793
cf-cache-status: HIT
vary: accept-encoding
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=c8%2BTZPgnpcLEoafneag6NB45ijkNwnQgFckPOtJfni%2FhWeR5yu9Bu9Dd1i9%2BEDw58KwX%2FLvJFYrLak33U%2BhIAYNL01YJqEwj%2B4i1xxUD%2Fz12JIu7"}]}
cf-ray: 953c84beef5356c0-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

GET wearychallengeraise.com/pixel/sbls?bv=&tmpl=482&u=https%3A%2F%2Fcdn.creative-stat1.com%2Fsb%2Fssp%2Finterstitial%2Fbottom_banner%2F1%2Fcss%2Fstyle.css&l=3487&fd=560

192.243.61.225

200 OK

0 B

URL GET
wearychallengeraise.com/pixel/sbls?bv=&tmpl=482&u=https%3A%2F%2Fcdn.creative-stat1.com%2Fsb%2Fssp%2Finterstitial%2Fbottom_banner%2F1%2Fcss%2Fstyle.css&l=3487&fd=560
IP
192.243.61.225:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://es.autoescuelahernani.es/
Certificate
IssuerLet's Encrypt
Subjectwearychallengeraise.com
FingerprintC2:9A:4F:D1:20:4F:D6:7B:AD:D9:F3:AE:DB:94:98:E2:A5:BE:EF:8B
ValidityThu, 19 Jun 2025 03:13:57 GMT - Wed, 17 Sep 2025 03:13:56 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /pixel/sbls?bv=&tmpl=482&u=https%3A%2F%2Fcdn.creative-stat1.com%2Fsb%2Fssp%2Finterstitial%2Fbottom_banner%2F1%2Fcss%2Fstyle.css&l=3487&fd=560 HTTP/1.1
Host: wearychallengeraise.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://es.autoescuelahernani.es/
Cookie: ain=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.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.Lu-ZiVWn6XfY_9U1huUrwStOn7UGnZ_wevLqDwifYxU; uid_id2=ef788c70-5eab-4ddd-bb7a-a93ff8feb6b2:1:1; pdhtkv=true; uncs=1; pdhtkv32=true; uncs32=1; u_pl22700495=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Sun, 22 Jun 2025 14:43:32 GMT
Content-Length: 0
Connection: keep-alive
Host: wearychallengeraise.com
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range

GET cdn.creative-stat1.com/sb/ssp/interstitial/bottom_banner/1/js/script.js

172.67.133.15

200 OK

957 B

URL GET
cdn.creative-stat1.com/sb/ssp/interstitial/bottom_banner/1/js/script.js
IP
172.67.133.15:443
ASN
#13335 CLOUDFLARENET

Requested by
https://es.autoescuelahernani.es/
Certificate
IssuerGoogle Trust Services
Subjectcreative-stat1.com
FingerprintEA:78:8B:9D:53:DF:84:5F:BA:B0:1B:CB:77:59:D8:9B:CC:8C:CC:86
ValidityWed, 11 Jun 2025 22:34:34 GMT - Tue, 09 Sep 2025 23:32:59 GMT

File type
ASCII text
Size
957 B (957 bytes)
Hash
41051a33fb99370ee2aeae5227abec51
f1b81c1d24d27bea43a09f308ae28668453704fb
67f07ddfdc4a81dc7ae4f83c332eb76107442caf0230e307d6398bae7663aa0d

HTTP Headers

GET /sb/ssp/interstitial/bottom_banner/1/js/script.js HTTP/1.1
Host: cdn.creative-stat1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://es.autoescuelahernani.es
DNT: 1
Connection: keep-alive
Referer: https://es.autoescuelahernani.es/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sun, 22 Jun 2025 14:43:33 GMT
content-type: application/javascript
content-length: 957
server: cloudflare
last-modified: Fri, 19 Jan 2024 14:19:45 GMT
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
etag: "65aa8501-3bd"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
accept-ranges: bytes
cf-cache-status: MISS
vary: accept-encoding
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=EffKji3%2Fc5%2FTeQj98pbSctq%2FEDVyCLXaGuWkLHEfT2ngd93IwYtXfP4tikFAz6zFWdUZh8OIMYSEuGk9sL5isD6Z%2FV5xJbr3lRVFte1hJ57wXFcX"}]}
cf-ray: 953c84c10a5f56c0-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

GET accounts.google.com/ServiceLogin?passive=true&continue=https%3A%2F%2Fwww.google.com%2Ffavicon.ico&uilel=3&hl=en&service=mail

142.250.147.84

302 Found

0 B

URL GET
accounts.google.com/ServiceLogin?passive=true&continue=https%3A%2F%2Fwww.google.com%2Ffavicon.ico&uilel=3&hl=en&service=mail
IP
142.250.147.84:443
ASN
#15169 GOOGLE

Requested by
https://es.autoescuelahernani.es/
Certificate
IssuerGoogle Trust Services
Subjectaccounts.google.com
Fingerprint5B:F0:BA:9C:EB:7F:11:56:9B:32:66:06:15:C3:6B:70:80:8F:1F:AC
ValidityMon, 02 Jun 2025 08:37:23 GMT - Mon, 25 Aug 2025 08:37:22 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /ServiceLogin?passive=true&continue=https%3A%2F%2Fwww.google.com%2Ffavicon.ico&uilel=3&hl=en&service=mail HTTP/1.1
Host: accounts.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://es.autoescuelahernani.es/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 302 Found
content-type: application/binary
set-cookie: __Host-GAPS=1:Ly4A_sk9OYGMN2KvdpLg7YnrTcNNLw:8dBQkLXlpckQINDn; Expires=Tue, 22-Jun-2027 14:43:37 GMT; Path=/; Secure; HttpOnly; Priority=HIGH
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Sun, 22 Jun 2025 14:43:37 GMT
location: https://accounts.google.com/InteractiveLogin?continue=https://www.google.com/favicon.ico&hl=en&passive=true&service=mail&uilel=3&ifkv=AdBytiMtk-KPU7sKJ9TqxQce24E5hlO87dDoMMF8vUnOb7tI0VjUIBGUAZoMyytik-QayCICIuwP
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Form-Factors, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-form-factors=*, ch-ua-platform=*, ch-ua-platform-version=*
content-security-policy: script-src 'nonce-j_NLAdTkxr7OulUG1tBhvg' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /_/AccountsSigninPassiveLoginHttp/cspreport;worker-src 'self', script-src 'unsafe-inline' 'unsafe-eval' blob: data: 'self' https://apis.google.com https://ssl.gstatic.com https://www.google.com https://www.googletagmanager.com https://www.gstatic.com https://www.google-analytics.com;report-uri /_/AccountsSigninPassiveLoginHttp/cspreport/allowlist, require-trusted-types-for 'script';report-uri /_/AccountsSigninPassiveLoginHttp/cspreport
cross-origin-opener-policy: unsafe-none
server: ESF
content-length: 0
x-xss-protection: 0
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

GET es.autoescuelahernani.es/wp-content/themes/asap/assets/fonts/poppins-700.woff2

104.21.80.1

200 OK

7.8 kB

URL GET
es.autoescuelahernani.es/wp-content/themes/asap/assets/fonts/poppins-700.woff2
IP
104.21.80.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://es.autoescuelahernani.es/
Certificate
IssuerGoogle Trust Services
Subjectautoescuelahernani.es
Fingerprint49:B5:EF:77:74:B6:46:69:FE:35:76:47:DC:0F:B1:92:95:26:FD:7F
ValiditySat, 17 May 2025 13:28:15 GMT - Fri, 15 Aug 2025 14:25:59 GMT

File type
Web Open Font Format (Version 2), TrueType, length 7816, version 1.0
Size
7.8 kB (7816 bytes)
Hash
25b0e113ca7cce3770d542736db26368
cb726212d5d525021752a1d8470a0fb593e0c49e
9338e65fc077355c7a87ae0d64cc101e23b9bf8ad78ae65f0f319c857311b526

HTTP Headers

GET /wp-content/themes/asap/assets/fonts/poppins-700.woff2 HTTP/1.1
Host: es.autoescuelahernani.es
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://es.autoescuelahernani.es/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sun, 22 Jun 2025 14:43:21 GMT
content-type: font/woff2
content-length: 7816
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=avsefBx2fFt0iNTArywMhcepupFvmoRdRZo5G4AIY%2BWvpkgtuzPCQ7VcQ90WnAXj231PSY7Yyk4spd0bAGb33niuWDtjlT9rzm5AyU1YeciozcBpmA2cDgLnkAIlbW2Tha%2BkGdy%2Bjx8Byqw%3D"}],"group":"cf-nel","max_age":604800}
last-modified: Tue, 30 Jan 2024 22:33:00 GMT
etag: "65b9791c-1e88"
expires: Tue, 22 Jul 2025 14:43:21 GMT
cache-control: max-age=2592000
accept-ranges: bytes
cf-cache-status: MISS
cf-ray: 953c8479a8d10afa-OSL
server: cloudflare
vary: Accept-Encoding
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=2170&min_rtt=550&rtt_var=1682&sent=173&recv=210&lost=0&retrans=0&sent_bytes=20887&recv_bytes=12403&delivery_rate=927114&ss_exit_cwnd=14936&ss_exit_reason=2&cwnd=14400&unsent_bytes=0&cid=321a9b6e5ed65361&ts=638&inflight_dur=46&x=44"

GET recordedthereby.com/sfp.js

185.196.197.71

200 OK

85 kB

URL GET
recordedthereby.com/sfp.js
IP
185.196.197.71:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://es.autoescuelahernani.es/
Certificate
IssuerLet's Encrypt
Subjectrecordedthereby.com
Fingerprint43:76:D8:56:43:66:8A:49:51:DC:E6:8E:5A:E9:35:93:29:07:37:C1
ValidityMon, 05 May 2025 21:20:39 GMT - Sun, 03 Aug 2025 21:20:38 GMT

File type
JavaScript source, Unicode text, UTF-8 text, with very long lines (65529), with no line terminators
Size
85 kB (85380 bytes)
Hash
108625937affa4b38bb17cea65510d72
2c0f48e9efa3fb5554d1fa393b28d74d5339f9ee
c84263fcf6b091998dd37f5f600b3bfea92ac1d31cbf9631bb87fa411124a9e0

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /sfp.js HTTP/1.1
Host: recordedthereby.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://es.autoescuelahernani.es/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Sun, 22 Jun 2025 14:43:30 GMT
Content-Type: application/javascript; charset=utf-8
Content-Length: 28255
Connection: keep-alive
Content-Encoding: gzip
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Vary: Accept-Encoding
Host: recordedthereby.com
Expires: Thu, 01 Jan 1970 00:00:01 GMT
X-Request-ID: cfa5fb2da236d2b2c660dc5196fa0ada
Cache-Control: no-cache, max-age=0, private, no-cache
Pragma: no-cache
Strict-Transport-Security: max-age=0; includeSubdomains

GET cdn.show-sb.com/sb/au/78/74/fd/7874fd62186fc577273fa59756d17076/1744381737.html

104.21.95.140

200 OK

1.5 kB

URL GET
cdn.show-sb.com/sb/au/78/74/fd/7874fd62186fc577273fa59756d17076/1744381737.html
IP
104.21.95.140:443
ASN
#13335 CLOUDFLARENET

Requested by
https://es.autoescuelahernani.es/
Certificate
IssuerGoogle Trust Services
Subjectshow-sb.com
FingerprintDF:A8:5A:11:E9:7E:8B:0E:2E:08:20:FB:02:FE:C4:E3:E7:97:E8:3A
ValidityThu, 12 Jun 2025 07:26:41 GMT - Wed, 10 Sep 2025 08:25:04 GMT

File type
HTML document, ASCII text
Size
1.5 kB (1544 bytes)
Hash
972f68410d9349904f897739b33e12cc
e41130dbad60e81ad2665bb7407a50888aae8150
90c062931018d386488b555fd261405457f9744db31512ff5780d49769d7b0d0

HTTP Headers

GET /sb/au/78/74/fd/7874fd62186fc577273fa59756d17076/1744381737.html HTTP/1.1
Host: cdn.show-sb.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://es.autoescuelahernani.es
DNT: 1
Connection: keep-alive
Referer: https://es.autoescuelahernani.es/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sun, 22 Jun 2025 14:43:32 GMT
content-type: text/html
server: cloudflare
last-modified: Fri, 11 Apr 2025 14:28:57 GMT
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
vary: accept-encoding
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
access-control-allow-origin: *
access-control-expose-headers: Date
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=lyq1A2SJOF4ABTrXW2PXEtH2Fvg98cYUU5kYtTQMTfWElxbdx1scjGF1auCCjkZ98Ep73AMFgdoKtRshLe%2Bev52brPRn1SJGHvTI9KM%3D"}]}
cf-cache-status: DYNAMIC
content-encoding: br
cf-ray: 953c84ba1bf55696-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

GET wearychallengeraise.com/pixel/sbls?bv=&tmpl=482&u=https%3A%2F%2Fcdn.show-sb.com%2Fsb%2Fau%2F78%2F74%2Ffd%2F7874fd62186fc577273fa59756d17076%2F1744381737.html&l=1544&fd=551

192.243.61.225

200 OK

0 B

URL GET
wearychallengeraise.com/pixel/sbls?bv=&tmpl=482&u=https%3A%2F%2Fcdn.show-sb.com%2Fsb%2Fau%2F78%2F74%2Ffd%2F7874fd62186fc577273fa59756d17076%2F1744381737.html&l=1544&fd=551
IP
192.243.61.225:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://es.autoescuelahernani.es/
Certificate
IssuerLet's Encrypt
Subjectwearychallengeraise.com
FingerprintC2:9A:4F:D1:20:4F:D6:7B:AD:D9:F3:AE:DB:94:98:E2:A5:BE:EF:8B
ValidityThu, 19 Jun 2025 03:13:57 GMT - Wed, 17 Sep 2025 03:13:56 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /pixel/sbls?bv=&tmpl=482&u=https%3A%2F%2Fcdn.show-sb.com%2Fsb%2Fau%2F78%2F74%2Ffd%2F7874fd62186fc577273fa59756d17076%2F1744381737.html&l=1544&fd=551 HTTP/1.1
Host: wearychallengeraise.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://es.autoescuelahernani.es/
Cookie: ain=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.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.Lu-ZiVWn6XfY_9U1huUrwStOn7UGnZ_wevLqDwifYxU; uid_id2=ef788c70-5eab-4ddd-bb7a-a93ff8feb6b2:1:1; pdhtkv=true; uncs=1; pdhtkv32=true; uncs32=1; u_pl22700495=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Sun, 22 Jun 2025 14:43:32 GMT
Content-Length: 0
Connection: keep-alive
Host: wearychallengeraise.com
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range

GET wearychallengeraise.com/watch.1725675008276.js?dev=e&key=5f360a64944f4339e3d54a3ee778476a&kw=%5B%22autoescuela%22%2C%22hernani%22%2C%22-%22%2C%22directorio%22%2C%22de%22%2C%22autoescuelas%22%2C%22en%22%2C%22espa%C3%B1a%22%5D&pst=1750603471&rb=&refer=https%3A%2F%2Fes.autoescuelahernani.es%2F&res=14.3095&rmtc=t&shu=7a7a37047e42ebda9073a12c60259f3faeff6c2ee2498e619b3becad0ca6429dd3c5663476d860c6a2ac70f55572061002440f349c735ad6b088dc53bc856cf266c3aca1210446734e5e8f2b04acdec9e4fb0abe8649b2f7d7b0e1&tz=0&uuid=ef788c70-5eab-4ddd-bb7a-a93ff8feb6b2%3A1%3A1

192.243.61.225

200 OK

4.9 kB

URL GET
wearychallengeraise.com/watch.1725675008276.js?dev=e&key=5f360a64944f4339e3d54a3ee778476a&kw=%5B%22autoescuela%22%2C%22hernani%22%2C%22-%22%2C%22directorio%22%2C%22de%22%2C%22autoescuelas%22%2C%22en%22%2C%22espa%C3%B1a%22%5D&pst=1750603471&rb=&refer=https%3A%2F%2Fes.autoescuelahernani.es%2F&res=14.3095&rmtc=t&shu=7a7a37047e42ebda9073a12c60259f3faeff6c2ee2498e619b3becad0ca6429dd3c5663476d860c6a2ac70f55572061002440f349c735ad6b088dc53bc856cf266c3aca1210446734e5e8f2b04acdec9e4fb0abe8649b2f7d7b0e1&tz=0&uuid=ef788c70-5eab-4ddd-bb7a-a93ff8feb6b2%3A1%3A1
IP
192.243.61.225:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://es.autoescuelahernani.es/
Certificate
IssuerLet's Encrypt
Subjectwearychallengeraise.com
FingerprintC2:9A:4F:D1:20:4F:D6:7B:AD:D9:F3:AE:DB:94:98:E2:A5:BE:EF:8B
ValidityThu, 19 Jun 2025 03:13:57 GMT - Wed, 17 Sep 2025 03:13:56 GMT

File type
JavaScript source, ASCII text, with very long lines (4051)
Size
4.9 kB (4927 bytes)
Hash
64b062856257aeac99cf70851b5b21f0
28b3d520aefd946f89731ab7d04f57282a6398ec
d6bcbd203c925902202fa93b41b81b27c3c289d3442e3267f45b54e7a5588a71

HTTP Headers

GET /watch.1725675008276.js?dev=e&key=5f360a64944f4339e3d54a3ee778476a&kw=%5B%22autoescuela%22%2C%22hernani%22%2C%22-%22%2C%22directorio%22%2C%22de%22%2C%22autoescuelas%22%2C%22en%22%2C%22espa%C3%B1a%22%5D&pst=1750603471&rb=&refer=https%3A%2F%2Fes.autoescuelahernani.es%2F&res=14.3095&rmtc=t&shu=7a7a37047e42ebda9073a12c60259f3faeff6c2ee2498e619b3becad0ca6429dd3c5663476d860c6a2ac70f55572061002440f349c735ad6b088dc53bc856cf266c3aca1210446734e5e8f2b04acdec9e4fb0abe8649b2f7d7b0e1&tz=0&uuid=ef788c70-5eab-4ddd-bb7a-a93ff8feb6b2%3A1%3A1 HTTP/1.1
Host: wearychallengeraise.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://es.autoescuelahernani.es
Referer: https://es.autoescuelahernani.es/
DNT: 1
Connection: keep-alive
Cookie: ain=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.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.Lu-ZiVWn6XfY_9U1huUrwStOn7UGnZ_wevLqDwifYxU
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Sun, 22 Jun 2025 14:43:32 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://es.autoescuelahernani.es
Access-Control-Allow-Origin: https://es.autoescuelahernani.es
Access-Control-Allow-Credentials: true
Set-Cookie: uid_id2=ef788c70-5eab-4ddd-bb7a-a93ff8feb6b2:1:1; expires=Sun, 29 Jun 2025 14:43:32 GMT; path=/; secure; SameSite=None
pdhtkv=true; expires=Mon, 23 Jun 2025 14:43:32 GMT; path=/; secure; SameSite=None
uncs=1; expires=Mon, 23 Jun 2025 14:43:32 GMT; path=/; secure; SameSite=None
pdhtkv32=true; expires=Mon, 23 Jun 2025 14:43:32 GMT; path=/; secure; SameSite=None
uncs32=1; expires=Mon, 23 Jun 2025 14:43:32 GMT; path=/; secure; SameSite=None
u_pl22700495=1; expires=Mon, 23 Jun 2025 14:43:32 GMT; path=/; secure; SameSite=None
Host: wearychallengeraise.com
Expires: Thu, 01 Jan 1970 00:00:01 GMT
X-Request-ID: 2b95c327b020a733a8fa55a806c8ce37
Cache-Control: no-cache, max-age=0, private, no-cache
Pragma: no-cache
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip

GET wearychallengeraise.com/watch.1725675008276.js?key=5f360a64944f4339e3d54a3ee778476a&kw=%5B%22autoescuela%22%2C%22hernani%22%2C%22-%22%2C%22directorio%22%2C%22de%22%2C%22autoescuelas%22%2C%22en%22%2C%22espa%C3%B1a%22%5D&refer=https%3A%2F%2Fes.autoescuelahernani.es%2F&tz=0&dev=e&res=14.3095&rb=&uuid=ef788c70-5eab-4ddd-bb7a-a93ff8feb6b2%3A1%3A1

192.243.61.225

307 Temporary Redirect

4.9 kB

URL GET
wearychallengeraise.com/watch.1725675008276.js?key=5f360a64944f4339e3d54a3ee778476a&kw=%5B%22autoescuela%22%2C%22hernani%22%2C%22-%22%2C%22directorio%22%2C%22de%22%2C%22autoescuelas%22%2C%22en%22%2C%22espa%C3%B1a%22%5D&refer=https%3A%2F%2Fes.autoescuelahernani.es%2F&tz=0&dev=e&res=14.3095&rb=&uuid=ef788c70-5eab-4ddd-bb7a-a93ff8feb6b2%3A1%3A1
IP
192.243.61.225:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://es.autoescuelahernani.es/
Certificate
IssuerLet's Encrypt
Subjectwearychallengeraise.com
FingerprintC2:9A:4F:D1:20:4F:D6:7B:AD:D9:F3:AE:DB:94:98:E2:A5:BE:EF:8B
ValidityThu, 19 Jun 2025 03:13:57 GMT - Wed, 17 Sep 2025 03:13:56 GMT

File type

Size
4.9 kB (4927 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /watch.1725675008276.js?key=5f360a64944f4339e3d54a3ee778476a&kw=%5B%22autoescuela%22%2C%22hernani%22%2C%22-%22%2C%22directorio%22%2C%22de%22%2C%22autoescuelas%22%2C%22en%22%2C%22espa%C3%B1a%22%5D&refer=https%3A%2F%2Fes.autoescuelahernani.es%2F&tz=0&dev=e&res=14.3095&rb=&uuid=ef788c70-5eab-4ddd-bb7a-a93ff8feb6b2%3A1%3A1 HTTP/1.1
Host: wearychallengeraise.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://es.autoescuelahernani.es
DNT: 1
Connection: keep-alive
Referer: https://es.autoescuelahernani.es/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 307 Temporary Redirect
Server: nginx/1.21.6
Date: Sun, 22 Jun 2025 14:43:31 GMT
Content-Type: text/html
Content-Length: 0
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://es.autoescuelahernani.es
Access-Control-Allow-Origin: https://es.autoescuelahernani.es
Access-Control-Allow-Credentials: true
Location: https://wearychallengeraise.com/watch.1725675008276.js?dev=e&key=5f360a64944f4339e3d54a3ee778476a&kw=%5B%22autoescuela%22%2C%22hernani%22%2C%22-%22%2C%22directorio%22%2C%22de%22%2C%22autoescuelas%22%2C%22en%22%2C%22espa%C3%B1a%22%5D&pst=1750603471&rb=&refer=https%3A%2F%2Fes.autoescuelahernani.es%2F&res=14.3095&rmtc=t&shu=7a7a37047e42ebda9073a12c60259f3faeff6c2ee2498e619b3becad0ca6429dd3c5663476d860c6a2ac70f55572061002440f349c735ad6b088dc53bc856cf266c3aca1210446734e5e8f2b04acdec9e4fb0abe8649b2f7d7b0e1&tz=0&uuid=ef788c70-5eab-4ddd-bb7a-a93ff8feb6b2%3A1%3A1
Set-Cookie: ain=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.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.Lu-ZiVWn6XfY_9U1huUrwStOn7UGnZ_wevLqDwifYxU; expires=Sun, 22 Jun 2025 14:44:31 GMT; path=/; secure; SameSite=None
Host: wearychallengeraise.com
Expires: Thu, 01 Jan 1970 00:00:01 GMT
X-Request-ID: b44c03302388be5a815733a2d2309538
Cache-Control: no-cache, max-age=0, private, no-cache
Pragma: no-cache
Strict-Transport-Security: max-age=0; includeSubdomains

GET dcbbwymp1bhlf.cloudfront.net/?wbbcd=1104038

3.167.7.208

200 OK

191 kB

URL GET
dcbbwymp1bhlf.cloudfront.net/?wbbcd=1104038
IP
3.167.7.208:443
ASN
#0

Requested by
https://es.autoescuelahernani.es/
Certificate
IssuerAmazon
Subject*.cloudfront.net
Fingerprint8F:00:F1:34:A7:1E:27:1C:CF:CD:A6:53:8B:C4:82:B0:68:BC:C8:72
ValidityMon, 05 May 2025 00:00:00 GMT - Thu, 23 Apr 2026 23:59:59 GMT

File type
JavaScript source, Unicode text, UTF-8 text, with very long lines (38488)
Size
191 kB (190767 bytes)
Hash
e3016cdf8d861fd481cf8d1b5d50bfa7
1b1e6e9e09a340c3471e13459193cdb7417ca77d
376e854a28c4ea18d836dd0179bb709abcc72397e634ae92959f9c1e54340b23

HTTP Headers

GET /?wbbcd=1104038 HTTP/1.1
Host: dcbbwymp1bhlf.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://es.autoescuelahernani.es/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-length: 64392
date: Sun, 22 Jun 2025 14:43:36 GMT
access-control-allow-origin: *
cache-control: no-store, no-cache, proxy-revalidate, must-revalidate, private, no-transform
content-encoding: gzip
pragma: no-cache
x-cache: Miss from cloudfront
via: 1.1 8b440cccbe8a332306f650e1ec8894ac.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: 7g17Jvb-npTWXWOmMbEE570IDd5GRCJ1HfOVmgX-U-eeoKQBGpUkiA==
X-Firefox-Spdy: h2

GET capaciousdrewreligion.com/advertisers.js

185.196.197.72

200 OK

0 B

URL GET
capaciousdrewreligion.com/advertisers.js
IP
185.196.197.72:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://es.autoescuelahernani.es/
Certificate
IssuerLet's Encrypt
Subjectcapaciousdrewreligion.com
Fingerprint4C:9A:D1:39:AD:B4:C8:D5:6E:A1:5A:54:6F:88:D5:0F:D1:C6:5A:06
ValidityFri, 02 May 2025 21:09:09 GMT - Thu, 31 Jul 2025 21:09:08 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /advertisers.js HTTP/1.1
Host: capaciousdrewreligion.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://es.autoescuelahernani.es/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Sun, 22 Jun 2025 14:43:31 GMT
Content-Type: application/javascript
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
X-Request-ID: b1ee9a4966d7a74e21b548de7c2cb1be
Cache-Control: no-cache, max-age=0, private, no-cache
Pragma: no-cache
Strict-Transport-Security: max-age=0; includeSubdomains

GET wearychallengeraise.com/pixel/sbls?bv=&tmpl=482&u=https%3A%2F%2Fcdn.creative-stat1.com%2Fsb%2Fssp%2Finterstitial%2Fbottom_banner%2F1%2Fcss%2Fanimate.css&l=78689&fd=569

192.243.61.227

200 OK

0 B

URL GET
wearychallengeraise.com/pixel/sbls?bv=&tmpl=482&u=https%3A%2F%2Fcdn.creative-stat1.com%2Fsb%2Fssp%2Finterstitial%2Fbottom_banner%2F1%2Fcss%2Fanimate.css&l=78689&fd=569
IP
192.243.61.227:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://es.autoescuelahernani.es/
Certificate
IssuerLet's Encrypt
Subjectwearychallengeraise.com
FingerprintC2:9A:4F:D1:20:4F:D6:7B:AD:D9:F3:AE:DB:94:98:E2:A5:BE:EF:8B
ValidityThu, 19 Jun 2025 03:13:57 GMT - Wed, 17 Sep 2025 03:13:56 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /pixel/sbls?bv=&tmpl=482&u=https%3A%2F%2Fcdn.creative-stat1.com%2Fsb%2Fssp%2Finterstitial%2Fbottom_banner%2F1%2Fcss%2Fanimate.css&l=78689&fd=569 HTTP/1.1
Host: wearychallengeraise.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://es.autoescuelahernani.es/
Cookie: ain=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJwIjp7ImlkIjoyMjcwMDQ5NSwiayI6IjVmMzYwYTY0OTQ0ZjQzMzllM2Q1NGEzZWU3Nzg0NzZhIiwic2lkIjoiIiwiaXNpZCI6MiwiYXNpZCI6MSwiemlkIjozNjYwMzA3LCJwaWQiOjI3OTgzMywiYW4iOnRydWUsImxhbiI6dHJ1ZSwiY2lkIjozLCJhaWQiOjMyLCJwdCI6NCwicGsiOiJxNzRrN21tbiIsInQiOjF9LCJ1Ijp7InUiOjEsImF1IjoxLCJkIjp7ImlkIjoyNjY1NjExMTUsImlkcyI6IiIsImljIjpmYWxzZSwibiI6IkRlc2t0b3AsRW11bGF0b3IiLCJ2IjoiVW5rbm93biIsIm0iOiJVbmtub3duIiwiZiI6MSwiZm4iOiJEZXNrdG9wIiwib2lkIjozODkxNCwib24iOiJXaW5kb3dzIiwib3YiOiIxMC4wIiwiYmlkIjoxMzY5MjUsImJuIjoiRmlyZWZveCIsImJ2IjoiMTM0LjAiLCJ3diI6ZmFsc2UsImUiOnRydWUsImFiIjpmYWxzZX0sImMiOnsiaWQiOjE2MiwiYyI6Ik5PIiwibiI6Ik5vcndheSJ9LCJhIjpmYWxzZSwiY3IiOnsibiI6IkJsaXggU29sdXRpb25zIn0sInhmIjoiIiwiaXhmIjpmYWxzZSwiaWd4ZiI6ZmFsc2UsInVwIjp0cnVlLCJyIjoiaHR0cHM6Ly9lcy5hdXRvZXNjdWVsYWhlcm5hbmkuZXMvIiwiYXIiOltdfX0.Lu-ZiVWn6XfY_9U1huUrwStOn7UGnZ_wevLqDwifYxU; uid_id2=ef788c70-5eab-4ddd-bb7a-a93ff8feb6b2:1:1; pdhtkv=true; uncs=1; pdhtkv32=true; uncs32=1; u_pl22700495=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Sun, 22 Jun 2025 14:43:33 GMT
Content-Length: 0
Connection: keep-alive
Host: wearychallengeraise.com
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range

GET fonts.gstatic.com/s/roboto/v48/KFO7CnqEu92Fr1ME7kSn66aGLdTylUAMa3yUBA.woff2

142.250.178.67

200 OK

40 kB

URL GET
fonts.gstatic.com/s/roboto/v48/KFO7CnqEu92Fr1ME7kSn66aGLdTylUAMa3yUBA.woff2
IP
142.250.178.67:443
ASN
#15169 GOOGLE

Requested by
https://es.autoescuelahernani.es/
Certificate
IssuerGoogle Trust Services
Subject*.gstatic.com
Fingerprint6C:DD:E7:B7:B0:02:A6:B7:4F:2D:EB:A1:11:A3:4B:1C:31:F9:07:F7
ValidityMon, 02 Jun 2025 08:36:37 GMT - Mon, 25 Aug 2025 08:36:36 GMT

File type
Web Open Font Format (Version 2), TrueType, length 40128, version 1.0
Size
40 kB (40128 bytes)
Hash
9a01b69183a9604ab3a439e388b30501
8ed1d59003d0dbe6360481017b44665153665fbe
20b535fa80c8189e3b87d1803038389960203a886d502bc2ef1857affc2f38d2

HTTP Headers

GET /s/roboto/v48/KFO7CnqEu92Fr1ME7kSn66aGLdTylUAMa3yUBA.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://es.autoescuelahernani.es
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 40128
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 20 Jun 2025 08:13:08 GMT
expires: Sat, 20 Jun 2026 08:13:08 GMT
cache-control: public, max-age=31536000
age: 196225
last-modified: Thu, 29 May 2025 23:30:55 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

GET es.autoescuelahernani.es/wp-includes/js/jquery/jquery.min.js?ver=3.7.1

104.21.112.1

200 OK

88 kB

URL GET
es.autoescuelahernani.es/wp-includes/js/jquery/jquery.min.js?ver=3.7.1
IP
104.21.112.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://es.autoescuelahernani.es/
Certificate
IssuerGoogle Trust Services
Subjectautoescuelahernani.es
Fingerprint49:B5:EF:77:74:B6:46:69:FE:35:76:47:DC:0F:B1:92:95:26:FD:7F
ValiditySat, 17 May 2025 13:28:15 GMT - Fri, 15 Aug 2025 14:25:59 GMT

File type
JavaScript source, ASCII text, with very long lines (65447)
Size
88 kB (87553 bytes)
Hash
826eb77e86b02ab7724fe3d0141ff87c
79cd3587d565afe290076a8d36c31c305a573d18
cb6f2d32c49d1c2b25e9ffc9aaafa3f83075346c01bcd4ae6eb187392a4292cf

HTTP Headers

GET /wp-includes/js/jquery/jquery.min.js?ver=3.7.1 HTTP/1.1
Host: es.autoescuelahernani.es
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://es.autoescuelahernani.es/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sun, 22 Jun 2025 14:43:21 GMT
content-type: application/javascript; charset=utf-8
server: cloudflare
last-modified: Tue, 30 Jan 2024 22:33:00 GMT
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
vary: Accept-Encoding
etag: W/"65b9791c-15601"
expires: Tue, 22 Jul 2025 14:43:21 GMT
cache-control: max-age=2592000
content-encoding: gzip
cf-cache-status: MISS
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=k7gAsuI7pZn65gfzdH68geQlTpZldCUlY%2BGGVt2JIUpojv%2BScHllFO%2B0lVGvxQ83NodCS4aD%2FcOcxOZkbui%2BuEK3WA7zzhiPUdaE8uubQbJn3CcC3tE%3D"}]}
cf-ray: 953c84780aa256b5-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

GET es.autoescuelahernani.es/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.4.1

104.21.112.1

200 OK

14 kB

URL GET
es.autoescuelahernani.es/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.4.1
IP
104.21.112.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://es.autoescuelahernani.es/
Certificate
IssuerGoogle Trust Services
Subjectautoescuelahernani.es
Fingerprint49:B5:EF:77:74:B6:46:69:FE:35:76:47:DC:0F:B1:92:95:26:FD:7F
ValiditySat, 17 May 2025 13:28:15 GMT - Fri, 15 Aug 2025 14:25:59 GMT

File type
JavaScript source, ASCII text, with very long lines (13479)
Size
14 kB (13577 bytes)
Hash
9ffeb32e2d9efbf8f70caabded242267
3ad0c10e501ac2a9bfa18f9cd7e700219b378738
5274f11e6fb32ae0cf2dfb9f8043272865c397a7c4223b4cfa7d50ea52fbde89

HTTP Headers

GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.4.1 HTTP/1.1
Host: es.autoescuelahernani.es
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://es.autoescuelahernani.es/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sun, 22 Jun 2025 14:43:21 GMT
content-type: application/javascript; charset=utf-8
server: cloudflare
last-modified: Tue, 30 Jan 2024 22:33:00 GMT
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
vary: Accept-Encoding
etag: W/"65b9791c-3509"
expires: Tue, 22 Jul 2025 14:43:21 GMT
cache-control: max-age=2592000
content-encoding: gzip
cf-cache-status: MISS
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=Gcgs2nSCBnaoWa%2FB%2Bs02MtETlUGQCcq2ELyDx5zd2DCR%2FsPOfNIawsD5x%2FmucIJl14eiPYfdnxvDUCB59ZtWIUxPataupLP1Dyy%2BFfmFsZWPuMw5OwI%3D"}]}
cf-ray: 953c84780aa456b5-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

GET es.autoescuelahernani.es/wp-content/themes/asap/assets/js/asap.min.js?ver=07210623

104.21.112.1

200 OK

4.4 kB

URL GET
es.autoescuelahernani.es/wp-content/themes/asap/assets/js/asap.min.js?ver=07210623
IP
104.21.112.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://es.autoescuelahernani.es/
Certificate
IssuerGoogle Trust Services
Subjectautoescuelahernani.es
Fingerprint49:B5:EF:77:74:B6:46:69:FE:35:76:47:DC:0F:B1:92:95:26:FD:7F
ValiditySat, 17 May 2025 13:28:15 GMT - Fri, 15 Aug 2025 14:25:59 GMT

File type
JavaScript source, ASCII text, with very long lines (3761)
Size
4.4 kB (4363 bytes)
Hash
6d53e2066c0d3ab1200b313009257caa
3af08f225253621ba4b28c7c32e2ca3c2e084396
c882fe4c238c1555febed27c069e8587bfd3ee2971f44082e022cb7c666714b1

HTTP Headers

GET /wp-content/themes/asap/assets/js/asap.min.js?ver=07210623 HTTP/1.1
Host: es.autoescuelahernani.es
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://es.autoescuelahernani.es/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sun, 22 Jun 2025 14:43:21 GMT
content-type: application/javascript; charset=utf-8
server: cloudflare
last-modified: Tue, 30 Jan 2024 22:33:00 GMT
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
vary: Accept-Encoding
etag: W/"65b9791c-110b"
expires: Tue, 22 Jul 2025 14:43:21 GMT
cache-control: max-age=2592000
content-encoding: gzip
cf-cache-status: MISS
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=ZnRlG2XuD%2FKVUuBlFktuVOxTD1e74vsa0S1ZzhdQ3%2FTrv7Y1oMXzJWOYTcfueacky0%2BGqtiC0m6EQab2TtWZkFn98J6ePg5%2FHwgEwB6VokD77liSAoc%3D"}]}
cf-ray: 953c84780aab56b5-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

GET cdn-icons-png.flaticon.com/128/25/25347.png

23.33.119.217

200 OK

2.2 kB

URL GET
cdn-icons-png.flaticon.com/128/25/25347.png
IP
23.33.119.217:443
ASN
#20940 Akamai International B.V.

Requested by
https://es.autoescuelahernani.es/
Certificate
IssuerLet's Encrypt
Subject*.flaticon.com
FingerprintE8:BC:CE:05:EB:0D:D1:AD:87:B8:28:30:2E:A1:71:97:C2:15:20:35
ValidityMon, 28 Apr 2025 13:33:52 GMT - Sun, 27 Jul 2025 13:33:51 GMT

File type
PNG image data, 128 x 128, 8-bit colormap, non-interlaced
Size
2.2 kB (2174 bytes)
Hash
766e0f4cc77596f615894f8e2f40c03b
cc06cabb7b96f7f8fa426574ee4ee3c89c7bcd58
9cb792fdbce307e0c4e9c0f7a6558381fe716d86d651af8a54d381dc24b11bce

HTTP Headers

GET /128/25/25347.png HTTP/1.1
Host: cdn-icons-png.flaticon.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://es.autoescuelahernani.es/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/png
content-length: 2174
last-modified: Tue, 19 Sep 2023 00:48:29 GMT
etag: "766e0f4cc77596f615894f8e2f40c03b"
accept-ranges: bytes
date: Sun, 22 Jun 2025 14:43:21 GMT
vary: Accept-Encoding
access-control-allow-origin: *
pragma: public
cache-control: public, max-age=31536000
x-default-rule: YES
X-Firefox-Spdy: h2

GET ukankingwithea.com/

104.21.48.1

200 OK

26 B

URL GET
ukankingwithea.com/
IP
104.21.48.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://es.autoescuelahernani.es/
Certificate
IssuerGoogle Trust Services
Subjectukankingwithea.com
Fingerprint02:15:28:2A:F2:F8:5D:3A:DE:6D:1D:DC:CF:6D:06:BA:00:3A:63:70
ValidityTue, 29 Apr 2025 13:46:48 GMT - Mon, 28 Jul 2025 14:44:24 GMT

File type
ASCII text, with no line terminators
Size
26 B (26 bytes)
Hash
4997342eb9a1699a7f9655629b3b3dca
3d918682b320eedbc1bd113a450dbd0c05846606
ee52494cc4c87910ad1907f42090eae7d167afaf8dbdf86880b3565d2cfa8cfa

HTTP Headers

GET / HTTP/1.1
Host: ukankingwithea.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://es.autoescuelahernani.es/
Origin: https://es.autoescuelahernani.es
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sun, 22 Jun 2025 14:43:37 GMT
content-type: text/plain
server: cloudflare
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
access-control-allow-origin: https://es.autoescuelahernani.es
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-headers: X-Requested-With, content-type
cf-cache-status: DYNAMIC
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=3dGj4owwKjOaZ6Ir087SSHxLzTHdSfu4Ahrouj5avN%2BUL%2BMIGc9SgbtN5agYnsyc%2FnLK0mR1Udc8ioQCuzwrEQkuw1CZylfSEIaSR0Q%2F5E4%3D"}]}
content-encoding: br
set-cookie: csu=630607191364755@1@1750603417; SameSite=None; Secure; Max-Age=31104000
cf-ray: 953c84dc394356a9-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

POST region1.google-analytics.com/g/collect?v=2&tid=G-TN7BC8EWJJ&gtm=45je56g0v9176541134za204&_p=1750603401169&gcd=13l3l3l2l1l1&npa=1&dma_cps=syphamo&dma=1&tag_exp=101509157~103116026~103200004~103233427~103351869~103351871~104573694~104684204~104684207~104718208~104791498~104791500&cid=1321936476.1750603402&ul=en-us&sr=1280x1024&frm=0&pscdl=noapi&_s=1&sid=1750603401&sct=1&seg=0&dl=https%3A%2F%2Fes.autoescuelahernani.es%2F&dt=Autoescuela%20Hernani%20-%20Directorio%20de%20autoescuelas%20en%20Espa%C3%B1a&_tu=QAg&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1&tfd=1172

216.239.34.36

204 No Content

0 B

URL POST
region1.google-analytics.com/g/collect?v=2&tid=G-TN7BC8EWJJ&gtm=45je56g0v9176541134za204&_p=1750603401169&gcd=13l3l3l2l1l1&npa=1&dma_cps=syphamo&dma=1&tag_exp=101509157~103116026~103200004~103233427~103351869~103351871~104573694~104684204~104684207~104718208~104791498~104791500&cid=1321936476.1750603402&ul=en-us&sr=1280x1024&frm=0&pscdl=noapi&_s=1&sid=1750603401&sct=1&seg=0&dl=https%3A%2F%2Fes.autoescuelahernani.es%2F&dt=Autoescuela%20Hernani%20-%20Directorio%20de%20autoescuelas%20en%20Espa%C3%B1a&_tu=QAg&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1&tfd=1172
IP
216.239.34.36:443
ASN
#15169 GOOGLE

Requested by
https://es.autoescuelahernani.es/
Certificate
IssuerGoogle Trust Services
Subject*.google-analytics.com
Fingerprint79:AA:03:D4:F6:6B:0F:61:E5:C5:AB:19:F4:A5:5D:DC:97:80:AF:DA
ValidityMon, 02 Jun 2025 08:35:30 GMT - Mon, 25 Aug 2025 08:35:29 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /g/collect?v=2&tid=G-TN7BC8EWJJ&gtm=45je56g0v9176541134za204&_p=1750603401169&gcd=13l3l3l2l1l1&npa=1&dma_cps=syphamo&dma=1&tag_exp=101509157~103116026~103200004~103233427~103351869~103351871~104573694~104684204~104684207~104718208~104791498~104791500&cid=1321936476.1750603402&ul=en-us&sr=1280x1024&frm=0&pscdl=noapi&_s=1&sid=1750603401&sct=1&seg=0&dl=https%3A%2F%2Fes.autoescuelahernani.es%2F&dt=Autoescuela%20Hernani%20-%20Directorio%20de%20autoescuelas%20en%20Espa%C3%B1a&_tu=QAg&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1&tfd=1172 HTTP/1.1
Host: region1.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://es.autoescuelahernani.es/
Origin: https://es.autoescuelahernani.es
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Content-Length: 0

HTTP/2 204 No Content
access-control-allow-origin: https://es.autoescuelahernani.es
date: Sun, 22 Jun 2025 14:43:21 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
content-security-policy-report-only: script-src 'none'; form-action 'none'; frame-src 'none'; report-uri https://csp.withgoogle.com/csp/scaffolding/ascnsrsggc:102:0
cross-origin-opener-policy-report-only: same-origin; report-to=ascnsrsggc:102:0
report-to: {"group":"ascnsrsggc:102:0","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/scaffolding/ascnsrsggc:102:0"}],}
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

GET experttrafficcounter.com/stats

3.65.117.209

200 OK

40 B

URL GET
experttrafficcounter.com/stats
IP
3.65.117.209:443
ASN
#16509 AMAZON-02

Requested by
https://es.autoescuelahernani.es/
Certificate
IssuerAmazon
Subjectexperttrafficcounter.com
FingerprintCE:93:F6:82:20:C2:20:51:6E:53:85:EC:03:9C:48:F0:13:0B:67:D7
ValidityTue, 29 Apr 2025 00:00:00 GMT - Thu, 28 May 2026 23:59:59 GMT

File type
ASCII text, with no line terminators
Size
40 B (40 bytes)
Hash
b2c726dfc8fea477fd4bbacd6232c887
f43df7ba29456b7db5d039d444b3bc06b3ba363c
bd7c33089884e88b85c34281157e0f3a1fe99b7c8cd2697557cdee9f84b7b71a

HTTP Headers

GET /stats HTTP/1.1
Host: experttrafficcounter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://es.autoescuelahernani.es
DNT: 1
Connection: keep-alive
Referer: https://es.autoescuelahernani.es/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sun, 22 Jun 2025 14:43:25 GMT
content-type: text/html; charset=UTF-8
content-length: 40
server: fasthttp
access-control-allow-origin: https://es.autoescuelahernani.es
vary: Origin
access-control-allow-credentials: true
set-cookie: uid_id2=ef788c70-5eab-4ddd-bb7a-a93ff8feb6b2:1:1; expires=Wed, 20 Jun 2035 14:43:25 GMT; secure; SameSite=None
X-Firefox-Spdy: h2

GET recordedthereby.com/sfp.js

185.196.197.71

200 OK

85 kB

URL GET
recordedthereby.com/sfp.js
IP
185.196.197.71:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://es.autoescuelahernani.es/
Certificate
IssuerLet's Encrypt
Subjectrecordedthereby.com
Fingerprint43:76:D8:56:43:66:8A:49:51:DC:E6:8E:5A:E9:35:93:29:07:37:C1
ValidityMon, 05 May 2025 21:20:39 GMT - Sun, 03 Aug 2025 21:20:38 GMT

File type
JavaScript source, Unicode text, UTF-8 text, with very long lines (65529), with no line terminators
Size
85 kB (85380 bytes)
Hash
108625937affa4b38bb17cea65510d72
2c0f48e9efa3fb5554d1fa393b28d74d5339f9ee
c84263fcf6b091998dd37f5f600b3bfea92ac1d31cbf9631bb87fa411124a9e0

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /sfp.js HTTP/1.1
Host: recordedthereby.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://es.autoescuelahernani.es/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Sun, 22 Jun 2025 14:43:31 GMT
Content-Type: application/javascript; charset=utf-8
Content-Length: 28255
Connection: keep-alive
Content-Encoding: gzip
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Vary: Accept-Encoding
Host: recordedthereby.com
Expires: Thu, 01 Jan 1970 00:00:01 GMT
X-Request-ID: fa1991ba1714452b990057ef0d78ed9d
Cache-Control: no-cache, max-age=0, private, no-cache
Pragma: no-cache
Strict-Transport-Security: max-age=0; includeSubdomains

GET fonts.googleapis.com/css2?family=Roboto:wght@100;300;400;500;700&display=swap

142.250.178.74

200 OK

28 kB

URL GET
fonts.googleapis.com/css2?family=Roboto:wght@100;300;400;500;700&display=swap
IP
142.250.178.74:443
ASN
#15169 GOOGLE

Requested by
https://es.autoescuelahernani.es/
Certificate
IssuerGoogle Trust Services
Subjectupload.video.google.com
Fingerprint58:09:05:96:27:31:E2:3D:AB:89:AD:1C:2E:C3:03:82:B0:27:3D:86
ValidityMon, 02 Jun 2025 08:36:37 GMT - Mon, 25 Aug 2025 08:36:36 GMT

File type
ASCII text, with very long lines (1572)
Size
28 kB (27925 bytes)
Hash
8ce20b90f602eca81760f51e82ec3323
4e3bcb53083c31091d592bad676a2f9745c9db25
14f74125fcc00d0afabf2d2db11f273fccb72581fbbb0986895e12e06c3a831f

HTTP Headers

GET /css2?family=Roboto:wght@100;300;400;500;700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css; charset=utf-8
vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sun, 22 Jun 2025 14:43:32 GMT
date: Sun, 22 Jun 2025 14:43:32 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

GET tamping.net/favicon.ico

157.90.33.78

204 No Content

0 B

URL GET
tamping.net/favicon.ico
IP
157.90.33.78:443
ASN
#24940 Hetzner Online GmbH

Requested by
https://tamping.net/go/1623694
Certificate
IssuerLet's Encrypt
Subjecttamping.net
FingerprintB9:2F:83:A6:B1:27:B8:B5:19:B1:51:FA:61:6C:59:59:55:6F:31:84
ValidityMon, 28 Apr 2025 03:57:38 GMT - Sun, 27 Jul 2025 03:57:37 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: tamping.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tamping.net/go/1623694
Cookie: rauid=nIR4cE5ORYWXIONIYmFfeg
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 204 No Content
server: Angie
date: Sun, 22 Jun 2025 14:43:39 GMT
X-Firefox-Spdy: h2

GET es.autoescuelahernani.es/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.8.7

104.21.112.1

200 OK

2.9 kB

URL GET
es.autoescuelahernani.es/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.8.7
IP
104.21.112.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://es.autoescuelahernani.es/
Certificate
IssuerGoogle Trust Services
Subjectautoescuelahernani.es
Fingerprint49:B5:EF:77:74:B6:46:69:FE:35:76:47:DC:0F:B1:92:95:26:FD:7F
ValiditySat, 17 May 2025 13:28:15 GMT - Fri, 15 Aug 2025 14:25:59 GMT

File type
ASCII text
Size
2.9 kB (2894 bytes)
Hash
3fd2afa98866679439097f4ab102fe0a
dbc9c4139e49d0d9fb41b7191aad1a2db6c555fd
ccd31ffa708d025833f954b3e0560cedd58df9a0d2706b2ccee5f501c5b2467b

HTTP Headers

GET /wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.8.7 HTTP/1.1
Host: es.autoescuelahernani.es
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://es.autoescuelahernani.es/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sun, 22 Jun 2025 14:43:20 GMT
content-type: text/css
server: cloudflare
last-modified: Tue, 13 Feb 2024 22:49:25 GMT
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
vary: Accept-Encoding
etag: W/"65cbf1f5-b4e"
expires: Tue, 22 Jul 2025 14:43:20 GMT
cache-control: max-age=2592000
content-encoding: gzip
cf-cache-status: MISS
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=TSndIgZFQ5LV8FFOz7M1vCqahGZK8yHqckleWuNtNWFTG6Mn47tH3zHbFFSI1MA990v3Cl6PqhU9oKlUsYRd0XeYEGbMxfm%2Fp3uSwFWtg1pwXrsqylk%3D"}]}
cf-ray: 953c8477ea5f56b5-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

GET pagead2.googlesyndication.com/pagead/js/adsbygoogle.js

142.250.178.34

200 OK

160 kB

URL GET
pagead2.googlesyndication.com/pagead/js/adsbygoogle.js
IP
142.250.178.34:443
ASN
#15169 GOOGLE

Requested by
https://es.autoescuelahernani.es/
Certificate
IssuerGoogle Trust Services
Subject*.g.doubleclick.net
Fingerprint84:E0:95:A7:B0:AD:C7:14:6D:3A:8F:52:B9:8A:24:71:29:A9:E4:CC
ValidityMon, 02 Jun 2025 08:35:30 GMT - Mon, 25 Aug 2025 08:35:29 GMT

File type
JavaScript source, ASCII text, with very long lines (4327)
Size
160 kB (160237 bytes)
Hash
9b4d258f52ba6b3738eddf33bf7e2d04
9d29fc4b8b4098538e328cf634e13266b373ace5
50bc15be5e4af88b2c857f125977eaa13deaf07e61fc1cde63b427857646d362

HTTP Headers

GET /pagead/js/adsbygoogle.js HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://es.autoescuelahernani.es
DNT: 1
Connection: keep-alive
Referer: https://es.autoescuelahernani.es/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
link: <https://googleads.g.doubleclick.net>; rel="preconnect"; crossorigin
vary: Accept-Encoding
date: Sun, 22 Jun 2025 14:43:21 GMT
expires: Sun, 22 Jun 2025 14:43:21 GMT
cache-control: private, max-age=3600, stale-while-revalidate=3600
content-type: text/javascript; charset=UTF-8
etag: 15624816631914001295
access-control-allow-origin: *
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 53417
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

GET ddserver.inber.net/css/expand.css

104.21.96.1

200 OK

1.8 kB

URL GET
ddserver.inber.net/css/expand.css
IP
104.21.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://es.autoescuelahernani.es/
Certificate
IssuerGoogle Trust Services
Subjectinber.net
Fingerprint5F:2F:D8:09:3F:5B:FF:23:26:E0:E0:7E:F4:1E:80:36:45:29:EA:4F
ValidityFri, 06 Jun 2025 04:10:29 GMT - Thu, 04 Sep 2025 05:08:14 GMT

File type
ASCII text, with CRLF line terminators
Size
1.8 kB (1807 bytes)
Hash
d2888c2136c735fcc302fb5d920c706c
b1ff4f9da477668166d22bded3ed8fc8a7032407
85b2a6c187701f9a7fcf4d64cff3e0a5b28838e2f66b52293f521047e40816df

HTTP Headers

GET /css/expand.css HTTP/1.1
Host: ddserver.inber.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://es.autoescuelahernani.es/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sun, 22 Jun 2025 14:43:21 GMT
content-type: text/css
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=IMXdi%2BR%2BSBZA16xyPBWS0t3G1U40u8939wSroyPt7Rfp7zX5503xQRPjHNTdZd%2FlWYuzn0e38EQy4DMqTbcw71fxUM4QEtZgFRQBmFp5ynjE6Fu5zKcOwuE1h9uoxdXhTLbuQAI%3D"}],"group":"cf-nel","max_age":604800}
last-modified: Mon, 24 Feb 2025 21:34:21 GMT
vary: Accept-Encoding
etag: "67bce5dd-70f"
expires: Tue, 22 Jul 2025 09:06:54 GMT
cache-control: max-age=2592000
content-encoding: gzip
age: 20186
cf-cache-status: HIT
cf-ray: 953c847bffcfb4f4-OSL
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=6414&min_rtt=3135&rtt_var=6110&sent=33&recv=37&lost=0&retrans=0&sent_bytes=4841&recv_bytes=2897&delivery_rate=548605&ss_exit_cwnd=0&ss_exit_reason=0&cwnd=15484&unsent_bytes=0&cid=8cb96c51ecc91d1d&ts=493&inflight_dur=36&x=44"

GET fonts.gstatic.com/s/roboto/v48/KFO7CnqEu92Fr1ME7kSn66aGLdTylUAMa3yUBA.woff2

142.250.178.67

200 OK

40 kB

URL GET
fonts.gstatic.com/s/roboto/v48/KFO7CnqEu92Fr1ME7kSn66aGLdTylUAMa3yUBA.woff2
IP
142.250.178.67:443
ASN
#15169 GOOGLE

Requested by
https://es.autoescuelahernani.es/
Certificate
IssuerGoogle Trust Services
Subject*.gstatic.com
Fingerprint6C:DD:E7:B7:B0:02:A6:B7:4F:2D:EB:A1:11:A3:4B:1C:31:F9:07:F7
ValidityMon, 02 Jun 2025 08:36:37 GMT - Mon, 25 Aug 2025 08:36:36 GMT

File type
Web Open Font Format (Version 2), TrueType, length 40128, version 1.0
Size
40 kB (40128 bytes)
Hash
9a01b69183a9604ab3a439e388b30501
8ed1d59003d0dbe6360481017b44665153665fbe
20b535fa80c8189e3b87d1803038389960203a886d502bc2ef1857affc2f38d2

HTTP Headers

GET /s/roboto/v48/KFO7CnqEu92Fr1ME7kSn66aGLdTylUAMa3yUBA.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://es.autoescuelahernani.es
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 40128
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 20 Jun 2025 08:13:08 GMT
expires: Sat, 20 Jun 2026 08:13:08 GMT
cache-control: public, max-age=31536000
age: 196225
last-modified: Thu, 29 May 2025 23:30:55 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

GET es.autoescuelahernani.es/wp-content/themes/asap/assets/fonts/poppins-400.woff2

104.21.80.1

200 OK

7.9 kB

URL GET
es.autoescuelahernani.es/wp-content/themes/asap/assets/fonts/poppins-400.woff2
IP
104.21.80.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://es.autoescuelahernani.es/
Certificate
IssuerGoogle Trust Services
Subjectautoescuelahernani.es
Fingerprint49:B5:EF:77:74:B6:46:69:FE:35:76:47:DC:0F:B1:92:95:26:FD:7F
ValiditySat, 17 May 2025 13:28:15 GMT - Fri, 15 Aug 2025 14:25:59 GMT

File type
Web Open Font Format (Version 2), TrueType, length 7884, version 1.0
Size
7.9 kB (7884 bytes)
Hash
9212f6f9860f9fc6c69b02fedf6db8c3
ac6d71b4d5fdd2b3dabc9a06ff6c001e4251da0b
7d93459d86585bfcdbb7e0376056226adb25821ee54b96236fe2123e9560929f

HTTP Headers

GET /wp-content/themes/asap/assets/fonts/poppins-400.woff2 HTTP/1.1
Host: es.autoescuelahernani.es
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://es.autoescuelahernani.es/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sun, 22 Jun 2025 14:43:21 GMT
content-type: font/woff2
content-length: 7884
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=lsBkRCGj9FG6HC3a2flRnSQYbomIEaJgmw0bIOHcEsl7DMScUQBE0UsKnZoTqVMh8GO0OK43I8b3UFndVltsmkOQ27Lk5WqFwqOH%2BVIfMpxUeNq3a90uxSf7WO%2FORK23HX46GeUPNzgCfGc%3D"}],"group":"cf-nel","max_age":604800}
last-modified: Tue, 30 Jan 2024 22:33:00 GMT
etag: "65b9791c-1ecc"
expires: Tue, 22 Jul 2025 14:43:21 GMT
cache-control: max-age=2592000
accept-ranges: bytes
cf-cache-status: MISS
cf-ray: 953c8479a8cf0afa-OSL
server: cloudflare
vary: Accept-Encoding
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=2170&min_rtt=550&rtt_var=1682&sent=176&recv=210&lost=0&retrans=0&sent_bytes=24487&recv_bytes=12403&delivery_rate=927114&ss_exit_cwnd=14936&ss_exit_reason=2&cwnd=14400&unsent_bytes=0&cid=321a9b6e5ed65361&ts=640&inflight_dur=51&x=44"

GET cdn-icons-png.flaticon.com/128/3536/3536479.png

23.33.119.217

200 OK

3.1 kB

URL GET
cdn-icons-png.flaticon.com/128/3536/3536479.png
IP
23.33.119.217:443
ASN
#20940 Akamai International B.V.

Requested by
https://es.autoescuelahernani.es/
Certificate
IssuerLet's Encrypt
Subject*.flaticon.com
FingerprintE8:BC:CE:05:EB:0D:D1:AD:87:B8:28:30:2E:A1:71:97:C2:15:20:35
ValidityMon, 28 Apr 2025 13:33:52 GMT - Sun, 27 Jul 2025 13:33:51 GMT

File type
PNG image data, 128 x 128, 8-bit/color RGBA, non-interlaced
Size
3.1 kB (3103 bytes)
Hash
6a8c5eaac52af2fb176320b05a18f14e
8e62297def0682c44fd5363bfe6c4ac90f34f7ea
62414171824bec2e9248bf5dfd48eb6223de304268148312ca006167dae369c3

HTTP Headers

GET /128/3536/3536479.png HTTP/1.1
Host: cdn-icons-png.flaticon.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://es.autoescuelahernani.es/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/png
content-length: 3103
last-modified: Mon, 18 Sep 2023 23:20:26 GMT
etag: "6a8c5eaac52af2fb176320b05a18f14e"
accept-ranges: bytes
date: Sun, 22 Jun 2025 14:43:21 GMT
vary: Accept-Encoding
access-control-allow-origin: *
pragma: public
cache-control: public, max-age=31536000
x-default-rule: YES
X-Firefox-Spdy: h2

GET cdn.storageimagedisplay.com/cti/1a/ba/60/1aba60ed15ec9a757d923658796c771d/1707923285.png

45.133.44.2

200 OK

30 kB

URL GET
cdn.storageimagedisplay.com/cti/1a/ba/60/1aba60ed15ec9a757d923658796c771d/1707923285.png
IP
45.133.44.2:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://es.autoescuelahernani.es/
Certificate
IssuerLet's Encrypt
Subjectcdn.storageimagedisplay.com
Fingerprint7C:BD:B0:48:37:0F:A4:22:46:5F:09:F9:77:FA:07:FF:25:25:52:76
ValiditySun, 11 May 2025 02:32:51 GMT - Sat, 09 Aug 2025 02:32:50 GMT

File type
PNG image data, 320 x 50, 8-bit/color RGBA, non-interlaced
Size
30 kB (30384 bytes)
Hash
2471c88a76fc28f99949311ee0826a7f
da73b2288a199fe009115576711a2b5869b6dfe4
913697d38c42449701edbc9076e47f75adba56e709af47e76c5b71dfa52f95d2

HTTP Headers

GET /cti/1a/ba/60/1aba60ed15ec9a757d923658796c771d/1707923285.png HTTP/1.1
Host: cdn.storageimagedisplay.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sun, 22 Jun 2025 14:43:32 GMT
content-type: image/png
content-length: 30384
server: nginx/1.21.6
last-modified: Wed, 14 Feb 2024 15:08:14 GMT
etag: "65ccd75e-76b0"
expires: Tue, 24 Jun 2025 14:43:32 GMT
cache-control: max-age=172800
x-cdn-host-id: ah0543
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2

GET cdn.creative-stat1.com/sb/ssp/interstitial/bottom_banner/1/img/close.svg

172.67.133.15

200 OK

1.3 kB

URL GET
cdn.creative-stat1.com/sb/ssp/interstitial/bottom_banner/1/img/close.svg
IP
172.67.133.15:443
ASN
#13335 CLOUDFLARENET

Requested by
https://es.autoescuelahernani.es/
Certificate
IssuerGoogle Trust Services
Subjectcreative-stat1.com
FingerprintEA:78:8B:9D:53:DF:84:5F:BA:B0:1B:CB:77:59:D8:9B:CC:8C:CC:86
ValidityWed, 11 Jun 2025 22:34:34 GMT - Tue, 09 Sep 2025 23:32:59 GMT

File type
SVG Scalable Vector Graphics image
Size
1.3 kB (1279 bytes)
Hash
369850b9873659adf0951d845f57dba1
a64257186daa33b6b318943a457b6cf8d80b26b6
9630c142a8c074cc1809ebf4109538cf29cc0baeb6c27726191f1cf5376e2e21

HTTP Headers

GET /sb/ssp/interstitial/bottom_banner/1/img/close.svg HTTP/1.1
Host: cdn.creative-stat1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sun, 22 Jun 2025 14:43:32 GMT
content-type: image/svg+xml
content-length: 1279
server: cloudflare
last-modified: Fri, 19 Jan 2024 14:19:45 GMT
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
etag: "65aa8501-4ff"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
accept-ranges: bytes
age: 352793
cf-cache-status: HIT
vary: accept-encoding
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=DfyUXtZ9aAM3W7wZ6br1bxkxvOR9xb9UQ2iNcNKtmZyy7AETnBHnKPkOXFyOlcB2C6V0u3pDGicJSijU%2BWxxnA1GIU%2FA%2FCcI%2F%2BUUB5WXGmJDkhAH"}]}
cf-ray: 953c84beef3b56c0-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

GET es.autoescuelahernani.es/wp-content/plugins/contact-form-7-image-captcha/css/cf7ic-style.css?ver=3.3.7

104.21.112.1

200 OK

4.0 kB

URL GET
es.autoescuelahernani.es/wp-content/plugins/contact-form-7-image-captcha/css/cf7ic-style.css?ver=3.3.7
IP
104.21.112.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://es.autoescuelahernani.es/
Certificate
IssuerGoogle Trust Services
Subjectautoescuelahernani.es
Fingerprint49:B5:EF:77:74:B6:46:69:FE:35:76:47:DC:0F:B1:92:95:26:FD:7F
ValiditySat, 17 May 2025 13:28:15 GMT - Fri, 15 Aug 2025 14:25:59 GMT

File type
ASCII text
Size
4.0 kB (4042 bytes)
Hash
600b40b95c28d947a8d2cc21cabb7ce1
5eef7a3c865a4aaefa9d011da1f7078bb1d2e6d5
c4c160d6b4a0d6f54bdbb9f80bb882234285967430a38df830049f2ddcc96079

HTTP Headers

GET /wp-content/plugins/contact-form-7-image-captcha/css/cf7ic-style.css?ver=3.3.7 HTTP/1.1
Host: es.autoescuelahernani.es
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://es.autoescuelahernani.es/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sun, 22 Jun 2025 14:43:20 GMT
content-type: text/css
server: cloudflare
last-modified: Tue, 20 Feb 2024 12:52:58 GMT
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
vary: Accept-Encoding
etag: W/"65d4a0aa-fca"
expires: Tue, 22 Jul 2025 14:43:20 GMT
cache-control: max-age=2592000
content-encoding: gzip
cf-cache-status: MISS
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=D2dwlk98Rn2UFdBUXcp8XEcq3idj1B6P7f%2FST9ZkdAZoR2JAzO83uAHppALLi0UR2izM9WCLC%2B8fLSV8oz9ckBca6ppVbQAMsfmnPRGITEw1cqjm7mU%3D"}]}
cf-ray: 953c8477ea5556b5-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

GET es.autoescuelahernani.es/wp-content/themes/asap/assets/css/main.min.css?ver=02211023

104.21.112.1

200 OK

51 kB

URL GET
es.autoescuelahernani.es/wp-content/themes/asap/assets/css/main.min.css?ver=02211023
IP
104.21.112.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://es.autoescuelahernani.es/
Certificate
IssuerGoogle Trust Services
Subjectautoescuelahernani.es
Fingerprint49:B5:EF:77:74:B6:46:69:FE:35:76:47:DC:0F:B1:92:95:26:FD:7F
ValiditySat, 17 May 2025 13:28:15 GMT - Fri, 15 Aug 2025 14:25:59 GMT

File type
Unicode text, UTF-8 text, with very long lines (51232), with no line terminators
Size
51 kB (51234 bytes)
Hash
f6fa3922c79c6ed9cba477c0626754ca
c01175db7c4e2b8597f7870b892dc4e02eaab16f
407f5aca7864677efd7e6889e0e7f6fe3739abab3fd199bfb396f6b6e9d3c4c2

HTTP Headers

GET /wp-content/themes/asap/assets/css/main.min.css?ver=02211023 HTTP/1.1
Host: es.autoescuelahernani.es
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://es.autoescuelahernani.es/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sun, 22 Jun 2025 14:43:20 GMT
content-type: text/css
server: cloudflare
last-modified: Tue, 30 Jan 2024 22:33:00 GMT
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
vary: Accept-Encoding
etag: W/"65b9791c-c822"
expires: Tue, 22 Jul 2025 14:43:20 GMT
cache-control: max-age=2592000
content-encoding: gzip
cf-cache-status: MISS
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=S5%2BngqzpXv%2BvxUpLz8i8it%2Fn83jTpztp%2B1mCoHO3hy7rPGd8Eu5pPxCkp0bZnPBZEzIxGnN27TOVLOKMdQY%2B7ZP099ruhOBq0sG7U6c9%2Bwnw91aGEl4%3D"}]}
cf-ray: 953c8477ea6556b5-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

GET es.autoescuelahernani.es/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.8.7

104.21.112.1

200 OK

11 kB

URL GET
es.autoescuelahernani.es/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.8.7
IP
104.21.112.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://es.autoescuelahernani.es/
Certificate
IssuerGoogle Trust Services
Subjectautoescuelahernani.es
Fingerprint49:B5:EF:77:74:B6:46:69:FE:35:76:47:DC:0F:B1:92:95:26:FD:7F
ValiditySat, 17 May 2025 13:28:15 GMT - Fri, 15 Aug 2025 14:25:59 GMT

File type
JavaScript source, ASCII text, with very long lines (11117), with no line terminators
Size
11 kB (11117 bytes)
Hash
a53a916adf48efefd5a2aa0861ebbc07
46acfa0be9dd623a7aa9bceb1344c152a8adc13b
9c1989ecd392a0c54fb799409154242706940a8e6d800542ba579dfda576bb9d

HTTP Headers

GET /wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.8.7 HTTP/1.1
Host: es.autoescuelahernani.es
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://es.autoescuelahernani.es/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sun, 22 Jun 2025 14:43:21 GMT
content-type: application/javascript; charset=utf-8
server: cloudflare
last-modified: Tue, 13 Feb 2024 22:49:25 GMT
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
vary: Accept-Encoding
etag: W/"65cbf1f5-2b6d"
expires: Tue, 22 Jul 2025 14:43:20 GMT
cache-control: max-age=2592000
content-encoding: gzip
cf-cache-status: MISS
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=z9zLMl%2BWsdJD71Ue7J0DKSVyv%2B2aJ2dSaNenelJPlUxNlNIN5ePnm8c2O2QFQwU8JJKaB579Wxb8%2Ft4TNQByNUDOGa6qrhMA42SP3VC3L%2BVrIKRyo4g%3D"}]}
cf-ray: 953c84780a9a56b5-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

GET es.autoescuelahernani.es/wp-content/themes/asap/assets/js/menu.min.js?ver=02270623

104.21.112.1

200 OK

407 B

URL GET
es.autoescuelahernani.es/wp-content/themes/asap/assets/js/menu.min.js?ver=02270623
IP
104.21.112.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://es.autoescuelahernani.es/
Certificate
IssuerGoogle Trust Services
Subjectautoescuelahernani.es
Fingerprint49:B5:EF:77:74:B6:46:69:FE:35:76:47:DC:0F:B1:92:95:26:FD:7F
ValiditySat, 17 May 2025 13:28:15 GMT - Fri, 15 Aug 2025 14:25:59 GMT

File type
JavaScript source, ASCII text, with very long lines (407), with no line terminators
Size
407 B (407 bytes)
Hash
f8f8cc022443bb1069e0241855810bbf
f848d7cb3ccfb8b2f308011f41323b6e9f046c45
b5ce527fa41f6d5cb7521e43c60c2364ab9fea0727dedf4ea87bf614c7bf9fde

HTTP Headers

GET /wp-content/themes/asap/assets/js/menu.min.js?ver=02270623 HTTP/1.1
Host: es.autoescuelahernani.es
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://es.autoescuelahernani.es/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sun, 22 Jun 2025 14:43:21 GMT
content-type: application/javascript; charset=utf-8
server: cloudflare
last-modified: Tue, 30 Jan 2024 22:33:00 GMT
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
vary: accept-encoding
expires: Tue, 22 Jul 2025 14:43:21 GMT
cache-control: max-age=2592000
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=K4sOuPQDKVi3DQcejVy8kLkKApmCRCXb%2BkTbmyZdewUcqYmf8ctkEBL3hvIgpnI17kcQKeXWY0xIAVEqwQofrXAMGalbi%2BhBQajqONYJYQpOtTEQR1Y%3D"}]}
cf-cache-status: MISS
etag: W/"65b9791c-197"
content-encoding: br
cf-ray: 953c84780aae56b5-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

GET wearychallengeraise.com/pixel/sbs?c=1

192.243.61.225

200 OK

0 B

URL GET
wearychallengeraise.com/pixel/sbs?c=1
IP
192.243.61.225:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://es.autoescuelahernani.es/
Certificate
IssuerLet's Encrypt
Subjectwearychallengeraise.com
FingerprintC2:9A:4F:D1:20:4F:D6:7B:AD:D9:F3:AE:DB:94:98:E2:A5:BE:EF:8B
ValidityThu, 19 Jun 2025 03:13:57 GMT - Wed, 17 Sep 2025 03:13:56 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /pixel/sbs?c=1 HTTP/1.1
Host: wearychallengeraise.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://es.autoescuelahernani.es/
Cookie: ain=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.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.Lu-ZiVWn6XfY_9U1huUrwStOn7UGnZ_wevLqDwifYxU; uid_id2=ef788c70-5eab-4ddd-bb7a-a93ff8feb6b2:1:1; pdhtkv=true; uncs=1; pdhtkv32=true; uncs32=1; u_pl22700495=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Sun, 22 Jun 2025 14:43:33 GMT
Content-Length: 0
Connection: keep-alive
Host: wearychallengeraise.com
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range

GET ddserver.inber.net/?id=51

104.21.96.1

200 OK

19 kB

URL GET
ddserver.inber.net/?id=51
IP
104.21.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://es.autoescuelahernani.es/
Certificate
IssuerGoogle Trust Services
Subjectinber.net
Fingerprint5F:2F:D8:09:3F:5B:FF:23:26:E0:E0:7E:F4:1E:80:36:45:29:EA:4F
ValidityFri, 06 Jun 2025 04:10:29 GMT - Thu, 04 Sep 2025 05:08:14 GMT

File type
JavaScript source, Unicode text, UTF-8 text, with very long lines (327)
Size
19 kB (18811 bytes)
Hash
c4e33a66f7e4841efb7894a5a94414f5
40c7e4659f61e6f1026cfd80fbaf31c023a06185
8128564c6ee310f0de9c794657acc94c0209419cb2c0a81f393816eb2ccb12c8

HTTP Headers

GET /?id=51 HTTP/1.1
Host: ddserver.inber.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://es.autoescuelahernani.es/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sun, 22 Jun 2025 14:43:21 GMT
content-type: application/javascript; charset=utf-8
server: cloudflare
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
access-control-allow-origin: *
access-control-allow-methods: GET, POST
access-control-allow-headers: Content-Type
content-encoding: gzip
vary: Accept-Encoding
cf-cache-status: DYNAMIC
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=dxbSttX0iMGGrWAZxrMONHs7XatCRLTxszwLLvcyMnvIKB7N%2FMFbLDADY1GRktTIARoY3xW%2BJEp49wfNBod92eOCEOjYRhhcQ8M7Pz9WeEE%3D"}]}
cf-ray: 953c84783af856ba-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

GET ddserver.inber.net/js/expand.js?3

104.21.96.1

200 OK

11 kB

URL GET
ddserver.inber.net/js/expand.js?3
IP
104.21.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://es.autoescuelahernani.es/
Certificate
IssuerGoogle Trust Services
Subjectinber.net
Fingerprint5F:2F:D8:09:3F:5B:FF:23:26:E0:E0:7E:F4:1E:80:36:45:29:EA:4F
ValidityFri, 06 Jun 2025 04:10:29 GMT - Thu, 04 Sep 2025 05:08:14 GMT

File type
JavaScript source, Unicode text, UTF-8 text, with very long lines (734), with CRLF line terminators
Size
11 kB (11263 bytes)
Hash
978eb71e675015b8fb4138d7dcf154df
75d0e23095baea30e80ed6558463ae9659360140
117b7f7c8221145e4e2ee70f5dddef9aae30900c5549f254f8eb072992397cd3

HTTP Headers

GET /js/expand.js?3 HTTP/1.1
Host: ddserver.inber.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://es.autoescuelahernani.es/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sun, 22 Jun 2025 14:43:21 GMT
content-type: application/javascript; charset=utf-8
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ZTcTx1ja7zgsOiOgYZDaRm1IpR3zIqZamRBbxPShPXYWgU0TJdfBTYivwMkGnXjcv95qQWIvLjMJalfdVPnv8bKrU97Knn2OWckFDJYuoc1grIN38GUsr9q14MouM8Swque5MnY%3D"}],"group":"cf-nel","max_age":604800}
last-modified: Mon, 24 Feb 2025 21:42:51 GMT
vary: Accept-Encoding
etag: W/"67bce7db-2bff"
expires: Fri, 18 Jul 2025 20:50:03 GMT
cache-control: max-age=2592000
content-encoding: gzip
age: 323598
cf-cache-status: HIT
cf-ray: 953c847befceb4f4-OSL
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=5817&min_rtt=1633&rtt_var=5778&sent=35&recv=38&lost=0&retrans=0&sent_bytes=6309&recv_bytes=2941&delivery_rate=886938&ss_exit_cwnd=0&ss_exit_reason=0&cwnd=16952&unsent_bytes=0&cid=8cb96c51ecc91d1d&ts=498&inflight_dur=38&x=44"

GET gnawreclaim.com/ffa0876c1cabe3256f86f8c176e515a9/invoke.js

172.240.108.68

200 OK

58 kB

URL GET
gnawreclaim.com/ffa0876c1cabe3256f86f8c176e515a9/invoke.js
IP
172.240.108.68:443
ASN
#7979 SERVERS-COM

Requested by
https://es.autoescuelahernani.es/
Certificate
IssuerLet's Encrypt
Subjectgnawreclaim.com
FingerprintED:B9:09:00:38:DC:DB:DB:38:7D:9E:6B:A8:94:7B:05:8F:BC:F5:9A
ValidityMon, 28 Apr 2025 20:43:43 GMT - Sun, 27 Jul 2025 20:43:42 GMT

File type
JavaScript source, ASCII text, with very long lines (57800), with no line terminators
Size
58 kB (57800 bytes)
Hash
f28480aabd3d0207adac40c7a1457148
dce1a377f48c2ded07033971f1f4f60e08008d14
74df1d90f0d6ecb65f82f26996fe5376d584d5de36a073b954f82b78a54dda35

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /ffa0876c1cabe3256f86f8c176e515a9/invoke.js HTTP/1.1
Host: gnawreclaim.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://es.autoescuelahernani.es/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Sun, 22 Jun 2025 14:43:24 GMT
Content-Type: application/javascript
Content-Length: 20147
Connection: keep-alive
content-encoding: gzip
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
access-control-allow-origin: *
accept-ch: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
set-cookie: 4b4e7ab587d59b22ad7bcd2439afc363_hd-43082-nv=1; expires=Sun, 22 Jun 2025 14:43:24 GMT; secure; SameSite=None
x-envoy-upstream-service-time: 8
Host: gnawreclaim.com
Expires: Thu, 01 Jan 1970 00:00:01 GMT
X-Request-ID: 8c7a2d231d8a7ee42b0fb9355a412f02
Cache-Control: no-cache, max-age=0, private, no-cache
Pragma: no-cache
Strict-Transport-Security: max-age=0; includeSubdomains

GET wearychallengeraise.com/pixel/sbls?bv=&tmpl=482&u=https%3A%2F%2Fcdn.creative-stat1.com%2Fsb%2Fssp%2Finterstitial%2Fbottom_banner%2F1%2Fjs%2Fscript.js&l=957&fd=649

192.243.61.225

200 OK

0 B

URL GET
wearychallengeraise.com/pixel/sbls?bv=&tmpl=482&u=https%3A%2F%2Fcdn.creative-stat1.com%2Fsb%2Fssp%2Finterstitial%2Fbottom_banner%2F1%2Fjs%2Fscript.js&l=957&fd=649
IP
192.243.61.225:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://es.autoescuelahernani.es/
Certificate
IssuerLet's Encrypt
Subjectwearychallengeraise.com
FingerprintC2:9A:4F:D1:20:4F:D6:7B:AD:D9:F3:AE:DB:94:98:E2:A5:BE:EF:8B
ValidityThu, 19 Jun 2025 03:13:57 GMT - Wed, 17 Sep 2025 03:13:56 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /pixel/sbls?bv=&tmpl=482&u=https%3A%2F%2Fcdn.creative-stat1.com%2Fsb%2Fssp%2Finterstitial%2Fbottom_banner%2F1%2Fjs%2Fscript.js&l=957&fd=649 HTTP/1.1
Host: wearychallengeraise.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://es.autoescuelahernani.es/
Cookie: ain=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJwIjp7ImlkIjoyMjcwMDQ5NSwiayI6IjVmMzYwYTY0OTQ0ZjQzMzllM2Q1NGEzZWU3Nzg0NzZhIiwic2lkIjoiIiwiaXNpZCI6MiwiYXNpZCI6MSwiemlkIjozNjYwMzA3LCJwaWQiOjI3OTgzMywiYW4iOnRydWUsImxhbiI6dHJ1ZSwiY2lkIjozLCJhaWQiOjMyLCJwdCI6NCwicGsiOiJxNzRrN21tbiIsInQiOjF9LCJ1Ijp7InUiOjEsImF1IjoxLCJkIjp7ImlkIjoyNjY1NjExMTUsImlkcyI6IiIsImljIjpmYWxzZSwibiI6IkRlc2t0b3AsRW11bGF0b3IiLCJ2IjoiVW5rbm93biIsIm0iOiJVbmtub3duIiwiZiI6MSwiZm4iOiJEZXNrdG9wIiwib2lkIjozODkxNCwib24iOiJXaW5kb3dzIiwib3YiOiIxMC4wIiwiYmlkIjoxMzY5MjUsImJuIjoiRmlyZWZveCIsImJ2IjoiMTM0LjAiLCJ3diI6ZmFsc2UsImUiOnRydWUsImFiIjpmYWxzZX0sImMiOnsiaWQiOjE2MiwiYyI6Ik5PIiwibiI6Ik5vcndheSJ9LCJhIjpmYWxzZSwiY3IiOnsibiI6IkJsaXggU29sdXRpb25zIn0sInhmIjoiIiwiaXhmIjpmYWxzZSwiaWd4ZiI6ZmFsc2UsInVwIjp0cnVlLCJyIjoiaHR0cHM6Ly9lcy5hdXRvZXNjdWVsYWhlcm5hbmkuZXMvIiwiYXIiOltdfX0.Lu-ZiVWn6XfY_9U1huUrwStOn7UGnZ_wevLqDwifYxU; uid_id2=ef788c70-5eab-4ddd-bb7a-a93ff8feb6b2:1:1; pdhtkv=true; uncs=1; pdhtkv32=true; uncs32=1; u_pl22700495=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Sun, 22 Jun 2025 14:43:33 GMT
Content-Length: 0
Connection: keep-alive
Host: wearychallengeraise.com
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range

GET cdn.storageimagedisplay.com/si/79/2e/e8/792ee83e80b5394e4d3a5125e432eb70/1701650147.png

45.133.44.2

200 OK

14 kB

URL GET
cdn.storageimagedisplay.com/si/79/2e/e8/792ee83e80b5394e4d3a5125e432eb70/1701650147.png
IP
45.133.44.2:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://es.autoescuelahernani.es/
Certificate
IssuerLet's Encrypt
Subjectcdn.storageimagedisplay.com
Fingerprint7C:BD:B0:48:37:0F:A4:22:46:5F:09:F9:77:FA:07:FF:25:25:52:76
ValiditySun, 11 May 2025 02:32:51 GMT - Sat, 09 Aug 2025 02:32:50 GMT

File type
PNG image data, 192 x 192, 8-bit/color RGBA, non-interlaced
Size
14 kB (13731 bytes)
Hash
b39effc8e82a1a83041a3282200f2d32
4dd606913c72d9728485151e85d6f4a431f6215b
e5375e1f3bac974f8fed58b80f75290dd66b7d71873f9c489aefab684f725fdf

HTTP Headers

GET /si/79/2e/e8/792ee83e80b5394e4d3a5125e432eb70/1701650147.png HTTP/1.1
Host: cdn.storageimagedisplay.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sun, 22 Jun 2025 14:43:32 GMT
content-type: image/png
content-length: 13731
server: nginx/1.21.6
last-modified: Mon, 04 Dec 2023 00:35:56 GMT
etag: "656d1eec-35a3"
expires: Tue, 24 Jun 2025 14:43:32 GMT
cache-control: max-age=172800
x-cdn-host-id: ah0543
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2

GET wearychallengeraise.com/impr.gif?sid=H4sIAAAAAAAC_1RSz2skRRSuTnITFBdZEBHm4EHBTPrXZHrcw-K6u7K4v9hdieheqrqqJ2Vqutqq7unJKBgMSA4eZtGD3jrfJJtVV1HvgkwEDwHB8TTI5rL_gcKeZSYD0Qf13qv6XhXf-159ulsckxAFndy8pvtSKbrSqLu1l9dkynVpa9fv1Dy37p6rrcl0NTxX602d6b7mBWHdfaX2pog39Irveq7ruV7tsjQi0b2VGQqZPWx59ZZbD_261wjRM__f28KBpQ5495icgeTjZx4n70HGI6SdHy4Ku5Hr7NVLnULRXBt0-cHb6UaqyxSd0zQxDpL0YF4NbceEfLkAnR7MO4Du7k07AJNjsnD2EVh6MKcJ1t0_YcoURArGn0LZHUGoESQdIdbbkPwPAsQc128g7dy_rk1JN09QOkXHZOnJP5DlmCw9eg5p5_sLSvZqt7UqcqlTi15SQfZGkO0RsuIQeX8BsjxEnH8CyX8nK0-uIu3s3bBKQ_LJSyJpRlHcdJcbgrLlkHO-zFiTLtNWkCRRItgq82cSyWQEJQag1kExXdJBkTgoMgcdPqmFbhTGHg1WkxaPm25Iw5AL5rYi33VpK26iiKf8B8izAWI1QGy2kJktbMgBTPEL7HoFyx3YnKDLK5SCoLQEJSUoJUGZE5Tdap8r69vqPle2YN48-vMYVEOdt3fpvs7bIiWgZgDDqz2ZfWC3EeeLw35i-VBPHWV5NaSMV7vZMXl2Kq1z97vPsCEmNZd5LAqjps_8kIpIeIkIGq4XNFir6QctH1ZWkHZhJkZfjkl07mNkckyWLj0PRg9h1SFiuQhavAhaVqDrFfrpT5xbYbrC1GXKhKmnIgfXFbJ8Cfmms6uOyQuzEb_74Q5EfHT-cTAzxKZCZiq8L38laKud4S1dkr1burTkxxtZLjuyT6fjv53TXCx-85bYLLXhVy7awdevx1Ngmj68I2x-laZcpm1Lvr0gORfmsjaxID9fsWuC3Szs-oXCpEV29eYbl690MiOslTodgcoxcf42iOWYnPltMvvawfJdSDOCKSp0iiMyN0g9QpxtwWan_K0mMOq0hmUOyqIaGp-dHio5Jte-eAAljs5_9dHhvacf_AXKKljxn4un-dDQ6QtUVrt2B23jgObbSDsVuqZCV1WgagBbLA7zzByd_3NOhSlnyJRx9pgy6t6J1FZOakkg_Nh1o-aqF0SJ8IKQx0kjClt8lbpBIJDb8fo7Zz__NwAA__84XejtwAQAAA==

192.243.61.227

200 OK

0 B

URL GET
wearychallengeraise.com/impr.gif?sid=H4sIAAAAAAAC_1RSz2skRRSuTnITFBdZEBHm4EHBTPrXZHrcw-K6u7K4v9hdieheqrqqJ2Vqutqq7unJKBgMSA4eZtGD3jrfJJtVV1HvgkwEDwHB8TTI5rL_gcKeZSYD0Qf13qv6XhXf-159ulsckxAFndy8pvtSKbrSqLu1l9dkynVpa9fv1Dy37p6rrcl0NTxX602d6b7mBWHdfaX2pog39Irveq7ruV7tsjQi0b2VGQqZPWx59ZZbD_261wjRM__f28KBpQ5495icgeTjZx4n70HGI6SdHy4Ku5Hr7NVLnULRXBt0-cHb6UaqyxSd0zQxDpL0YF4NbceEfLkAnR7MO4Du7k07AJNjsnD2EVh6MKcJ1t0_YcoURArGn0LZHUGoESQdIdbbkPwPAsQc128g7dy_rk1JN09QOkXHZOnJP5DlmCw9eg5p5_sLSvZqt7UqcqlTi15SQfZGkO0RsuIQeX8BsjxEnH8CyX8nK0-uIu3s3bBKQ_LJSyJpRlHcdJcbgrLlkHO-zFiTLtNWkCRRItgq82cSyWQEJQag1kExXdJBkTgoMgcdPqmFbhTGHg1WkxaPm25Iw5AL5rYi33VpK26iiKf8B8izAWI1QGy2kJktbMgBTPEL7HoFyx3YnKDLK5SCoLQEJSUoJUGZE5Tdap8r69vqPle2YN48-vMYVEOdt3fpvs7bIiWgZgDDqz2ZfWC3EeeLw35i-VBPHWV5NaSMV7vZMXl2Kq1z97vPsCEmNZd5LAqjps_8kIpIeIkIGq4XNFir6QctH1ZWkHZhJkZfjkl07mNkckyWLj0PRg9h1SFiuQhavAhaVqDrFfrpT5xbYbrC1GXKhKmnIgfXFbJ8Cfmms6uOyQuzEb_74Q5EfHT-cTAzxKZCZiq8L38laKud4S1dkr1burTkxxtZLjuyT6fjv53TXCx-85bYLLXhVy7awdevx1Ngmj68I2x-laZcpm1Lvr0gORfmsjaxID9fsWuC3Szs-oXCpEV29eYbl690MiOslTodgcoxcf42iOWYnPltMvvawfJdSDOCKSp0iiMyN0g9QpxtwWan_K0mMOq0hmUOyqIaGp-dHio5Jte-eAAljs5_9dHhvacf_AXKKljxn4un-dDQ6QtUVrt2B23jgObbSDsVuqZCV1WgagBbLA7zzByd_3NOhSlnyJRx9pgy6t6J1FZOakkg_Nh1o-aqF0SJ8IKQx0kjClt8lbpBIJDb8fo7Zz__NwAA__84XejtwAQAAA==
IP
192.243.61.227:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://es.autoescuelahernani.es/
Certificate
IssuerLet's Encrypt
Subjectwearychallengeraise.com
FingerprintC2:9A:4F:D1:20:4F:D6:7B:AD:D9:F3:AE:DB:94:98:E2:A5:BE:EF:8B
ValidityThu, 19 Jun 2025 03:13:57 GMT - Wed, 17 Sep 2025 03:13:56 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /impr.gif?sid=H4sIAAAAAAAC_1RSz2skRRSuTnITFBdZEBHm4EHBTPrXZHrcw-K6u7K4v9hdieheqrqqJ2Vqutqq7unJKBgMSA4eZtGD3jrfJJtVV1HvgkwEDwHB8TTI5rL_gcKeZSYD0Qf13qv6XhXf-159ulsckxAFndy8pvtSKbrSqLu1l9dkynVpa9fv1Dy37p6rrcl0NTxX602d6b7mBWHdfaX2pog39Irveq7ruV7tsjQi0b2VGQqZPWx59ZZbD_261wjRM__f28KBpQ5495icgeTjZx4n70HGI6SdHy4Ku5Hr7NVLnULRXBt0-cHb6UaqyxSd0zQxDpL0YF4NbceEfLkAnR7MO4Du7k07AJNjsnD2EVh6MKcJ1t0_YcoURArGn0LZHUGoESQdIdbbkPwPAsQc128g7dy_rk1JN09QOkXHZOnJP5DlmCw9eg5p5_sLSvZqt7UqcqlTi15SQfZGkO0RsuIQeX8BsjxEnH8CyX8nK0-uIu3s3bBKQ_LJSyJpRlHcdJcbgrLlkHO-zFiTLtNWkCRRItgq82cSyWQEJQag1kExXdJBkTgoMgcdPqmFbhTGHg1WkxaPm25Iw5AL5rYi33VpK26iiKf8B8izAWI1QGy2kJktbMgBTPEL7HoFyx3YnKDLK5SCoLQEJSUoJUGZE5Tdap8r69vqPle2YN48-vMYVEOdt3fpvs7bIiWgZgDDqz2ZfWC3EeeLw35i-VBPHWV5NaSMV7vZMXl2Kq1z97vPsCEmNZd5LAqjps_8kIpIeIkIGq4XNFir6QctH1ZWkHZhJkZfjkl07mNkckyWLj0PRg9h1SFiuQhavAhaVqDrFfrpT5xbYbrC1GXKhKmnIgfXFbJ8Cfmms6uOyQuzEb_74Q5EfHT-cTAzxKZCZiq8L38laKud4S1dkr1burTkxxtZLjuyT6fjv53TXCx-85bYLLXhVy7awdevx1Ngmj68I2x-laZcpm1Lvr0gORfmsjaxID9fsWuC3Szs-oXCpEV29eYbl690MiOslTodgcoxcf42iOWYnPltMvvawfJdSDOCKSp0iiMyN0g9QpxtwWan_K0mMOq0hmUOyqIaGp-dHio5Jte-eAAljs5_9dHhvacf_AXKKljxn4un-dDQ6QtUVrt2B23jgObbSDsVuqZCV1WgagBbLA7zzByd_3NOhSlnyJRx9pgy6t6J1FZOakkg_Nh1o-aqF0SJ8IKQx0kjClt8lbpBIJDb8fo7Zz__NwAA__84XejtwAQAAA== HTTP/1.1
Host: wearychallengeraise.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://es.autoescuelahernani.es/
Cookie: ain=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.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.Lu-ZiVWn6XfY_9U1huUrwStOn7UGnZ_wevLqDwifYxU; uid_id2=ef788c70-5eab-4ddd-bb7a-a93ff8feb6b2:1:1; pdhtkv=true; uncs=1; pdhtkv32=true; uncs32=1; u_pl22700495=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Sun, 22 Jun 2025 14:43:33 GMT
Content-Type: image/gif
Content-Length: 7
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Host: wearychallengeraise.com
Expires: Thu, 01 Jan 1970 00:00:01 GMT
X-Request-ID: 70dee6f6434de49d818d197a13d2d236
Cache-Control: no-cache, max-age=0, private, no-cache
Pragma: no-cache
Strict-Transport-Security: max-age=0; includeSubdomains

GET accounts.google.com/ServiceLogin?passive=true&continue=https%3A%2F%2Fwww.youtube.com%2Ffavicon.ico&uilel=3&hl=en&service=youtube

142.250.147.84

302 Found

0 B

URL GET
accounts.google.com/ServiceLogin?passive=true&continue=https%3A%2F%2Fwww.youtube.com%2Ffavicon.ico&uilel=3&hl=en&service=youtube
IP
142.250.147.84:443
ASN
#15169 GOOGLE

Requested by
https://es.autoescuelahernani.es/
Certificate
IssuerGoogle Trust Services
Subjectaccounts.google.com
Fingerprint5B:F0:BA:9C:EB:7F:11:56:9B:32:66:06:15:C3:6B:70:80:8F:1F:AC
ValidityMon, 02 Jun 2025 08:37:23 GMT - Mon, 25 Aug 2025 08:37:22 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /ServiceLogin?passive=true&continue=https%3A%2F%2Fwww.youtube.com%2Ffavicon.ico&uilel=3&hl=en&service=youtube HTTP/1.1
Host: accounts.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://es.autoescuelahernani.es/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 302 Found
content-type: application/binary
set-cookie: __Host-GAPS=1:G6FDidUtAd20Rh_goNtgkUjtNJ_ZvA:ncpEIhMsQnTRoOqe; Expires=Tue, 22-Jun-2027 14:43:37 GMT; Path=/; Secure; HttpOnly; Priority=HIGH
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Sun, 22 Jun 2025 14:43:37 GMT
location: https://accounts.google.com/InteractiveLogin?continue=https://www.youtube.com/favicon.ico&hl=en&passive=true&service=youtube&uilel=3&ifkv=AdBytiMXHLyvcFwfuT-ZY3cdXbZ-Zvgm_OIZqqHBuyPGRe8ShBjnqLDPf6gL14J9Th89BgSKymYl
strict-transport-security: max-age=31536000; includeSubDomains
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-form-factors=*, ch-ua-platform=*, ch-ua-platform-version=*
content-security-policy: require-trusted-types-for 'script';report-uri /_/AccountsSigninPassiveLoginHttp/cspreport, script-src 'nonce-THZxDsQp7SsikNxOtKFLSg' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /_/AccountsSigninPassiveLoginHttp/cspreport;worker-src 'self', script-src 'unsafe-inline' 'unsafe-eval' blob: data: 'self' https://apis.google.com https://ssl.gstatic.com https://www.google.com https://www.googletagmanager.com https://www.gstatic.com https://www.google-analytics.com;report-uri /_/AccountsSigninPassiveLoginHttp/cspreport/allowlist
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Form-Factors, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
cross-origin-opener-policy: unsafe-none
cross-origin-resource-policy: cross-origin
server: ESF
content-length: 0
x-xss-protection: 0
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

GET gnawreclaim.com/sbar.json?key=0b1b84872b24ae8e1fe350135b972392&uuid=ef788c70-5eab-4ddd-bb7a-a93ff8feb6b2%3A1%3A1

172.240.108.68

200 OK

6.8 kB

URL GET
gnawreclaim.com/sbar.json?key=0b1b84872b24ae8e1fe350135b972392&uuid=ef788c70-5eab-4ddd-bb7a-a93ff8feb6b2%3A1%3A1
IP
172.240.108.68:443
ASN
#7979 SERVERS-COM

Requested by
https://es.autoescuelahernani.es/
Certificate
IssuerLet's Encrypt
Subjectgnawreclaim.com
FingerprintED:B9:09:00:38:DC:DB:DB:38:7D:9E:6B:A8:94:7B:05:8F:BC:F5:9A
ValidityMon, 28 Apr 2025 20:43:43 GMT - Sun, 27 Jul 2025 20:43:42 GMT

File type
JSON text data
Size
6.8 kB (6752 bytes)
Hash
8caaf499911cddbde7971910e58c0ad5
e7299f3422f8b43c610a9c85302aa75e107c32fd
25268675ba7e3cb7a619e92e0be7d4c37498425435aad7cc6d41a62b810efa98

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /sbar.json?key=0b1b84872b24ae8e1fe350135b972392&uuid=ef788c70-5eab-4ddd-bb7a-a93ff8feb6b2%3A1%3A1 HTTP/1.1
Host: gnawreclaim.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://es.autoescuelahernani.es
DNT: 1
Connection: keep-alive
Referer: https://es.autoescuelahernani.es/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Sun, 22 Jun 2025 14:43:31 GMT
Content-Type: text/plain; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
accept-ch: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
custom-referer: https://es.autoescuelahernani.es
access-control-allow-origin: https://es.autoescuelahernani.es
access-control-allow-credentials: true
set-cookie: uid_id2=ef788c70-5eab-4ddd-bb7a-a93ff8feb6b2:1:1; expires=Sun, 29 Jun 2025 14:43:31 GMT; path=/; secure; SameSite=None
pdhtkv=true; expires=Mon, 23 Jun 2025 14:43:31 GMT; path=/; secure; SameSite=None
uncs=1; expires=Mon, 23 Jun 2025 14:43:31 GMT; path=/; secure; SameSite=None
pdhtkv29=true; expires=Mon, 23 Jun 2025 14:43:31 GMT; path=/; secure; SameSite=None
uncs29=1; expires=Mon, 23 Jun 2025 14:43:31 GMT; path=/; secure; SameSite=None
u_pl22850956=1; expires=Mon, 23 Jun 2025 14:43:31 GMT; path=/; secure; SameSite=None
x-envoy-upstream-service-time: 183
Host: gnawreclaim.com
Expires: Thu, 01 Jan 1970 00:00:01 GMT
X-Request-ID: 98100c9b9bedb48cde38220057a1ad2f
Cache-Control: no-cache, max-age=0, private, no-cache
Pragma: no-cache
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip

GET gnawreclaim.com/5f360a64944f4339e3d54a3ee778476a/invoke.js

172.240.108.68

200 OK

27 kB

URL GET
gnawreclaim.com/5f360a64944f4339e3d54a3ee778476a/invoke.js
IP
172.240.108.68:443
ASN
#7979 SERVERS-COM

Requested by
https://es.autoescuelahernani.es/
Certificate
IssuerLet's Encrypt
Subjectgnawreclaim.com
FingerprintED:B9:09:00:38:DC:DB:DB:38:7D:9E:6B:A8:94:7B:05:8F:BC:F5:9A
ValidityMon, 28 Apr 2025 20:43:43 GMT - Sun, 27 Jul 2025 20:43:42 GMT

File type
JavaScript source, ASCII text, with very long lines (27388), with no line terminators
Size
27 kB (27388 bytes)
Hash
881364694a54a0d93d97733cdefbd9f7
c7ab082934676427b18ae210fc1639e55ce6829a
c86c70325fdf8865b96bca5ea8af7a68c9c5ffbfb1e4d28c89ea93ac0a7b8962

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /5f360a64944f4339e3d54a3ee778476a/invoke.js HTTP/1.1
Host: gnawreclaim.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://es.autoescuelahernani.es/
Cookie: uid_id2=ef788c70-5eab-4ddd-bb7a-a93ff8feb6b2:1:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1; u_pl22850956=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Sun, 22 Jun 2025 14:43:31 GMT
Content-Type: application/javascript
Content-Length: 11515
Connection: keep-alive
content-encoding: gzip
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
access-control-allow-origin: *
accept-ch: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
x-envoy-upstream-service-time: 9
Host: gnawreclaim.com
Expires: Thu, 01 Jan 1970 00:00:01 GMT
X-Request-ID: 883719df1fc8bde10102c342f0bf6fee
Cache-Control: no-cache, max-age=0, private, no-cache
Pragma: no-cache
Strict-Transport-Security: max-age=0; includeSubdomains

GET 1.bp.blogspot.com/-_A83iDM6JYc/VhtxROLILrI/AAAAAAAADK4/aM4ikIA6aqI/s1600/btn_close.gif

142.250.178.97

200 OK

362 B

URL GET
1.bp.blogspot.com/-_A83iDM6JYc/VhtxROLILrI/AAAAAAAADK4/aM4ikIA6aqI/s1600/btn_close.gif
IP
142.250.178.97:443
ASN
#15169 GOOGLE

Requested by
https://es.autoescuelahernani.es/
Certificate
IssuerGoogle Trust Services
Subjectmisc-sni.blogspot.com
Fingerprint62:35:2C:75:A9:F8:BC:A5:9C:C4:96:ED:C9:6D:FC:CC:EC:8C:C6:08
ValidityMon, 02 Jun 2025 08:36:18 GMT - Mon, 25 Aug 2025 08:36:17 GMT

File type
GIF image data, version 89a, 52 x 15
Size
362 B (362 bytes)
Hash
fd2c05a8c327ace309722b0a5fc4faf3
f446e97c43f8830be9f60644563dd846abe6b8e8
0450e2e1aa3c8b5435690d841f3e573c4f521864e1f8e01a5b6dbcdac922c8b4

HTTP Headers

GET /-_A83iDM6JYc/VhtxROLILrI/AAAAAAAADK4/aM4ikIA6aqI/s1600/btn_close.gif HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://es.autoescuelahernani.es/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
content-disposition: inline;filename="btn_close.gif"
x-content-type-options: nosniff
server: fife
content-length: 362
x-xss-protection: 0
date: Sun, 22 Jun 2025 13:13:21 GMT
expires: Mon, 23 Jun 2025 13:13:21 GMT
cache-control: public, max-age=86400, no-transform
age: 5410
etag: "vcb0"
content-type: image/gif
vary: Origin
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

GET stachedstimaa.com/dWZWUndaWTUhSiALEAAtMig6BxojMwFgEy88ZyojFAoyOCIZJ3AmHhFbZ2NHQVZlalEFDzJvRlMVIjMDABVrY1EcCDA9SlMQa2NZRlJ4YUFbU3AnSkRAIiIWEltndAcBEjpvRkJTZmRHRlJnZE5HVQ

172.67.152.15

204 No Content

0 B

URL GET
stachedstimaa.com/dWZWUndaWTUhSiALEAAtMig6BxojMwFgEy88ZyojFAoyOCIZJ3AmHhFbZ2NHQVZlalEFDzJvRlMVIjMDABVrY1EcCDA9SlMQa2NZRlJ4YUFbU3AnSkRAIiIWEltndAcBEjpvRkJTZmRHRlJnZE5HVQ
IP
172.67.152.15:443
ASN
#13335 CLOUDFLARENET

Requested by
https://es.autoescuelahernani.es/
Certificate
IssuerGoogle Trust Services
Subjectstachedstimaa.com
Fingerprint12:AD:B7:AA:16:39:CA:1D:5C:8F:D4:4E:CA:74:C6:E5:CD:8B:42:27
ValidityWed, 11 Jun 2025 06:23:35 GMT - Tue, 09 Sep 2025 07:21:12 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /dWZWUndaWTUhSiALEAAtMig6BxojMwFgEy88ZyojFAoyOCIZJ3AmHhFbZ2NHQVZlalEFDzJvRlMVIjMDABVrY1EcCDA9SlMQa2NZRlJ4YUFbU3AnSkRAIiIWEltndAcBEjpvRkJTZmRHRlJnZE5HVQ HTTP/1.1
Host: stachedstimaa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://es.autoescuelahernani.es/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 204 No Content
date: Sun, 22 Jun 2025 14:43:37 GMT
access-control-allow-origin: *
cf-cache-status: DYNAMIC
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=zAEfmI5yvjd4U9wU9UZ8lu9YCvfPKc3nbbzrr4Rzb%2FXJG%2B76DbNVhyh5lT13pYmpQH8m2WS9mWQ2thmGETYVTBIy9gOjt7qz07KnlnRilg%3D%3D"}]}
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
server: cloudflare
cf-ray: 953c84dc3e8356c3-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

GET autoescuelahernani.es/

104.21.112.1

301 Moved Permanently

48 kB

URL User Request GET
autoescuelahernani.es/
IP
104.21.112.1:443
ASN
#13335 CLOUDFLARENET

Certificate
IssuerGoogle Trust Services
Subjectautoescuelahernani.es
Fingerprint49:B5:EF:77:74:B6:46:69:FE:35:76:47:DC:0F:B1:92:95:26:FD:7F
ValiditySat, 17 May 2025 13:28:15 GMT - Fri, 15 Aug 2025 14:25:59 GMT

File type

Size
48 kB (48237 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: autoescuelahernani.es
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 301 Moved Permanently
date: Sun, 22 Jun 2025 14:43:20 GMT
location: https://es.autoescuelahernani.es/
vary: accept-encoding
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=WwuKoqzsw5xGbGbE9T00wNk%2FLQ2O5KULoM22fpNzBIPBKxD5pf39vKP0xwB3x7t%2Fs1olA5cCbkxw6scJq94UhkZ6E1sYOI%2FK5reT857CXIm2yCw%3D"}]}
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
server: cloudflare
cf-ray: 953c84757efe56b5-OSL
X-Firefox-Spdy: h2

GET es.autoescuelahernani.es/wp-content/themes/asap/assets/fonts/poppins-300.woff2

104.21.80.1

200 OK

7.8 kB

URL GET
es.autoescuelahernani.es/wp-content/themes/asap/assets/fonts/poppins-300.woff2
IP
104.21.80.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://es.autoescuelahernani.es/
Certificate
IssuerGoogle Trust Services
Subjectautoescuelahernani.es
Fingerprint49:B5:EF:77:74:B6:46:69:FE:35:76:47:DC:0F:B1:92:95:26:FD:7F
ValiditySat, 17 May 2025 13:28:15 GMT - Fri, 15 Aug 2025 14:25:59 GMT

File type
Web Open Font Format (Version 2), TrueType, length 7840, version 1.0
Size
7.8 kB (7840 bytes)
Hash
8d91ec1ca2d8b56640a47117e313a3e9
a9e9bafe64666f4595051a0e895b47a5fa39e67e
78bc3aa78faec288bbb3bf26c9a0fa4eb67b1e69da94a17233c5cab60525efdb

HTTP Headers

GET /wp-content/themes/asap/assets/fonts/poppins-300.woff2 HTTP/1.1
Host: es.autoescuelahernani.es
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://es.autoescuelahernani.es/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sun, 22 Jun 2025 14:43:21 GMT
content-type: font/woff2
content-length: 7840
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Ma8mBr45IraYZltjXjb%2BekqveT3WKn9j5GLcE3AfjeeXNiEnfca760sDgptfJ%2FTYbx%2Fhs%2B9hTHO1ysj8XfPtF7r305GPzjl7NLz0X%2BKlI%2FW9twGIG3qfj2oJGeqvvGjB97bOtL0jnMMp0Ps%3D"}],"group":"cf-nel","max_age":604800}
last-modified: Tue, 30 Jan 2024 22:33:00 GMT
etag: "65b9791c-1ea0"
expires: Tue, 22 Jul 2025 14:43:21 GMT
cache-control: max-age=2592000
accept-ranges: bytes
cf-cache-status: MISS
cf-ray: 953c8479a8d00afa-OSL
server: cloudflare
vary: Accept-Encoding
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=2519&min_rtt=550&rtt_var=1859&sent=165&recv=208&lost=0&retrans=0&sent_bytes=12103&recv_bytes=12314&delivery_rate=482471&ss_exit_cwnd=14936&ss_exit_reason=2&cwnd=12000&unsent_bytes=0&cid=321a9b6e5ed65361&ts=624&inflight_dur=37&x=44"

GET gnawreclaim.com/0b/1b/84/0b1b84872b24ae8e1fe350135b972392.js

172.240.108.68

200 OK

65 kB

URL GET
gnawreclaim.com/0b/1b/84/0b1b84872b24ae8e1fe350135b972392.js
IP
172.240.108.68:443
ASN
#7979 SERVERS-COM

Requested by
https://es.autoescuelahernani.es/
Certificate
IssuerLet's Encrypt
Subjectgnawreclaim.com
FingerprintED:B9:09:00:38:DC:DB:DB:38:7D:9E:6B:A8:94:7B:05:8F:BC:F5:9A
ValidityMon, 28 Apr 2025 20:43:43 GMT - Sun, 27 Jul 2025 20:43:42 GMT

File type
JavaScript source, ASCII text, with very long lines (64968), with no line terminators
Size
65 kB (64968 bytes)
Hash
b6c056df27d9b3b5d5004119b63dfed7
320ca9f5fd5accfdf74225197ba68f18d2838e76
7cf608ac34fe1970a3dbcf4210193d1c8946e1b5e1ebe731e9f57be4e89a7c95

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /0b/1b/84/0b1b84872b24ae8e1fe350135b972392.js HTTP/1.1
Host: gnawreclaim.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://es.autoescuelahernani.es/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Sun, 22 Jun 2025 14:43:30 GMT
Content-Type: application/javascript
Content-Length: 23646
Connection: keep-alive
content-encoding: gzip
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
access-control-allow-origin: *
accept-ch: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
x-envoy-upstream-service-time: 3
Host: gnawreclaim.com
Expires: Thu, 01 Jan 1970 00:00:01 GMT
X-Request-ID: 9b5a3e44e2dfc58195601e3c0c947220
Cache-Control: no-cache, max-age=0, private, no-cache
Pragma: no-cache
Strict-Transport-Security: max-age=0; includeSubdomains

GET wearychallengeraise.com/6b/d1/6e/6bd16ea70e3aacc701bd282a5ee1f9b3.js

192.243.61.225

200 OK

105 kB

URL GET
wearychallengeraise.com/6b/d1/6e/6bd16ea70e3aacc701bd282a5ee1f9b3.js
IP
192.243.61.225:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://es.autoescuelahernani.es/
Certificate
IssuerLet's Encrypt
Subjectwearychallengeraise.com
FingerprintC2:9A:4F:D1:20:4F:D6:7B:AD:D9:F3:AE:DB:94:98:E2:A5:BE:EF:8B
ValidityThu, 19 Jun 2025 03:13:57 GMT - Wed, 17 Sep 2025 03:13:56 GMT

File type
JavaScript source, ASCII text, with very long lines (65536), with no line terminators
Size
105 kB (104960 bytes)
Hash
b1fcfebc0b9f73345ff7de827fb2b103
b05c437e3b81a4589a3460db7ad42535ab824590
bc9e411d4e4243cec10810909f1acfe32b823b0a2c79b13fe5567b1ae96bb731

HTTP Headers

GET /6b/d1/6e/6bd16ea70e3aacc701bd282a5ee1f9b3.js HTTP/1.1
Host: wearychallengeraise.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://es.autoescuelahernani.es/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Sun, 22 Jun 2025 14:43:31 GMT
Content-Type: application/javascript
Content-Length: 32725
Connection: keep-alive
Content-Encoding: gzip
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Host: wearychallengeraise.com
Expires: Thu, 01 Jan 1970 00:00:01 GMT
X-Request-ID: 08ad4350b15572ceea693328d3fcfad0
Cache-Control: no-cache, max-age=0, private, no-cache
Pragma: no-cache
Strict-Transport-Security: max-age=0; includeSubdomains

GET accounts.google.com/v3/signin/identifier?continue=https%3A%2F%2Fwww.youtube.com%2Ffavicon.ico&hl=en&ifkv=AdBytiPylLBrgDbpiKEKdCchsjkzWotQwV3yV4P2gConidT4Pb-UXYkzgnzUkEm5P07TMF011ZMF6Q&passive=true&service=youtube&uilel=3&flowName=GlifWebSignIn&flowEntry=ServiceLogin&dsh=S119649581%3A1750603417409316

142.250.147.84

403 Forbidden

0 B

URL GET
accounts.google.com/v3/signin/identifier?continue=https%3A%2F%2Fwww.youtube.com%2Ffavicon.ico&hl=en&ifkv=AdBytiPylLBrgDbpiKEKdCchsjkzWotQwV3yV4P2gConidT4Pb-UXYkzgnzUkEm5P07TMF011ZMF6Q&passive=true&service=youtube&uilel=3&flowName=GlifWebSignIn&flowEntry=ServiceLogin&dsh=S119649581%3A1750603417409316
IP
142.250.147.84:443
ASN
#15169 GOOGLE

Requested by
https://es.autoescuelahernani.es/
Certificate
IssuerGoogle Trust Services
Subject*.google.com
FingerprintEE:B4:21:E2:07:A7:35:36:27:81:A0:3A:3E:C9:6C:F5:11:A0:7F:5C
ValidityMon, 02 Jun 2025 08:35:30 GMT - Mon, 25 Aug 2025 08:35:29 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /v3/signin/identifier?continue=https%3A%2F%2Fwww.youtube.com%2Ffavicon.ico&hl=en&ifkv=AdBytiPylLBrgDbpiKEKdCchsjkzWotQwV3yV4P2gConidT4Pb-UXYkzgnzUkEm5P07TMF011ZMF6Q&passive=true&service=youtube&uilel=3&flowName=GlifWebSignIn&flowEntry=ServiceLogin&dsh=S119649581%3A1750603417409316 HTTP/1.1
Host: accounts.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://es.autoescuelahernani.es/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 403 Forbidden
content-type: text/html; charset=utf-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Sun, 22 Jun 2025 14:43:37 GMT
vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site
strict-transport-security: max-age=31536000; includeSubDomains
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-form-factors=*, ch-ua-platform=*, ch-ua-platform-version=*
cross-origin-opener-policy-report-only: same-origin; report-to="AccountsSignInUi"
content-security-policy: script-src 'nonce-4AQWd_QHLJ1m599lu1UTRg' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /v3/signin/_/AccountsSignInUi/cspreport;worker-src 'self', script-src 'unsafe-inline' 'unsafe-eval' blob: data: 'self' https://apis.google.com https://ssl.gstatic.com https://www.google.com https://www.googletagmanager.com https://www.gstatic.com https://www.google-analytics.com https://www.google.com/tools/feedback/ https://www.gstatic.com/feedback/js/ https://www.gstatic.com/inproduct_help/ https://www.gstatic.com/support/content/ https://www.gstatic.com/uservoice/feedback/client/web/live/ https://www.gstatic.com/uservoice/surveys/resources/prod/js/survey/ https://support.google.com/inapp/;report-uri /v3/signin/_/AccountsSignInUi/cspreport/allowlist, require-trusted-types-for 'script';report-uri /v3/signin/_/AccountsSignInUi/cspreport
content-security-policy-report-only: script-src 'unsafe-inline' 'unsafe-eval' blob: data: https://ajax.googleapis.com/ajax/libs/jquery/3.6.4/jquery.min.js https://translate.google.com/translate_a/element.js https://www.google.com/recaptcha/api.js https://www.google.com/tools/feedback/chat_load.js https://www.google.com/tools/feedback/help_api.js https://www.google.com/tools/feedback/load.js https://www.google.com/tools/feedback/open.js https://www.google.com/tools/feedback/open_to_help_guide_lazy.js https://www.gstatic.com/feedback/js/ https://www.gstatic.com/feedback/js/help/prod/service/lazy.min.js https://www.gstatic.com/inproduct_help/api/main.min.js https://www.gstatic.com/inproduct_help/chatsupport/chatsupport_button_v2.js https://www.gstatic.com/inproduct_help/service/lazy.min.js https://www.gstatic.com/uservoice/feedback/client/web/live/ https://www.gstatic.com/uservoice/surveys/resources/prod/js/survey/ https://www.gstatic.com/_/mss/boq-one-google/_/ https://www.gstatic.com/og/_/js/ https://apis.google.com/js/api.js https://apis.google.com/js/client.js https://www.googletagmanager.com/gtag/js https://www.google-analytics.com/analytics.js https://www.googletagmanager.com/gtag/destination https://www.gstatic.com/_/mss/boq-identity/_/js/k=boq-identity.AccountsSignInUi.en.EgAwAlBY3zc.es5.O/ https://apis.google.com/_/scs/abc-static/_/js/ https://translate.googleapis.com/_/translate_http/_/js/ https://www.gstatic.com/recaptcha/releases/;report-uri /v3/signin/_/AccountsSignInUi/cspreport/fine-allowlist
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Form-Factors, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
report-to: {"group":"AccountsSignInUi","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/AccountsSignInUi"}]}
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

Report Overview

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

Quad9 DNS

ThreatFox

JavaScript (32)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML