www.gruporosmar.com.mx/rosmar/servicio-integral-desinfeccion-total-amex
52.87.157.254301 Moved Permanently 194 B URL HTTP/1.1 www.gruporosmar.com.mx/rosmar/servicio-integral-desinfeccion-total-amex
IP 52.87.157.254:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash ec0f2d6d8da7997a10f72a2537729e59
d6b8ca36f266d92775f5b757e65b8c10c747c30a
95e1144ae5faba1d6ea1ac58b29b1e8d0399125e4dbc6a17d50d0bf5cf3bdcf8
Analyzer Verdict Alert fortinet Phishing
GET /rosmar/servicio-integral-desinfeccion-total-amex HTTP/1.1
Host: www.gruporosmar.com.mx
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Server: nginx/1.14.0 (Ubuntu)
Date: Mon, 30 Jan 2023 02:53:20 GMT
Content-Type: text/html
Content-Length: 194
Connection: keep-alive
Location: https://www.gruporosmar.com.mx/rosmar/servicio-integral-desinfeccion-total-amex
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash a2104f935c638b4767ca5ae0d738ef23
85c6af15af749be0ceeae6de17c36925b750f166
5d4789a3696bd7faa9916768cb627bbc89bf70a756d80e53860cbac13c2bc8b1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5D4789A3696BD7FAA9916768CB627BBC89BF70A756D80E53860CBAC13C2BC8B1"
Last-Modified: Fri, 27 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11309
Expires: Mon, 30 Jan 2023 06:01:50 GMT
Date: Mon, 30 Jan 2023 02:53:21 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 81dd5c5cc5b3278876cb44dcb520a60f
c0511a59e9eccdcdda98717b87c89c5d59974808
41736c303afdb3d31e48724b107dcb22883cae02f3562308eb52d9164001a2de
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "41736C303AFDB3D31E48724B107DCB22883CAE02F3562308EB52D9164001A2DE"
Last-Modified: Fri, 27 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16754
Expires: Mon, 30 Jan 2023 07:32:35 GMT
Date: Mon, 30 Jan 2023 02:53:21 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash bf0c602d32b3c14606f22a86183b5e3c
6eabd8d83475eba731968abe1a05a8bfd272f160
6c6a7c519a9e950c2445ed874a25211a94dd4d3cf3afb0103af9dcd1dbd5ff9e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Content-Length, Retry-After, Content-Type, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Mon, 30 Jan 2023 02:35:39 GMT
content-type: application/json
age: 1062
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 302c7548412192add063ad6c8b99cf3b
e5d178931a27db036ce8daae302594d3ff7050b8
fc2bd9091006189e67e8074093805ee5492ce16e1dbfba32e083abeeae34969d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "FC2BD9091006189E67E8074093805EE5492CE16E1DBFBA32E083ABEEAE34969D"
Last-Modified: Sat, 28 Jan 2023 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8809
Expires: Mon, 30 Jan 2023 05:20:10 GMT
Date: Mon, 30 Jan 2023 02:53:21 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: VDaSHxfuDbPfHmdjiptNtyemgaxXS5CzyJmnPqZ1tRMt/saXx0wxwf1MblE+VOrwA6kQ4ZBJ8As=
x-amz-request-id: 4REDZ86K40N44GSN
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Mon, 30 Jan 2023 02:50:34 GMT
age: 167
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Mon, 30 Jan 2023 02:53:21 GMT
content-type: application/json
content-length: 12
access-control-allow-credentials: true
access-control-expose-headers: content-type
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 8612bae816b904a99a549f0c6c0b8e53
8e71fc4a0815ced3de02f9d12f05b745e7011f16
7e06889f8eaa7a5814f6c6272d85736710d8953431d6409380653866843cb133
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "7E06889F8EAA7A5814F6C6272D85736710D8953431D6409380653866843CB133"
Last-Modified: Sun, 29 Jan 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21561
Expires: Mon, 30 Jan 2023 08:52:42 GMT
Date: Mon, 30 Jan 2023 02:53:21 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Last-Modified, ETag, Expires, Backoff, Content-Length, Cache-Control, Alert, Retry-After, Pragma
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Mon, 30 Jan 2023 02:49:04 GMT
age: 257
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
www.gruporosmar.com.mx/rosmar/servicio-integral-desinfeccion-total-amex
52.87.157.254301 Moved Permanently 0 B URL HTTP/1.1 www.gruporosmar.com.mx/rosmar/servicio-integral-desinfeccion-total-amex
IP 52.87.157.254:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Phishing
GET /rosmar/servicio-integral-desinfeccion-total-amex HTTP/1.1
Host: www.gruporosmar.com.mx
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/1.1 301 Moved Permanently
Server: nginx/1.14.0 (Ubuntu)
Date: Mon, 30 Jan 2023 02:53:21 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
cf-edge-cache: cache,platform=wordpress
Expires: Mon, 30 Jan 2023 03:53:21 GMT
Cache-Control: max-age=3600
X-Redirect-By: WordPress
Location: https://gruporosmar.com.mx/servicio-integral-desinfeccion-total-amex/
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 22b9916fc1fafc9bdc9bb37f9eac8a9a
86f640e134a741a0f906a8e3a0f5c6659dd0e394
a29ee843c8a39551a1507cc6ad949ad509e33aaae8b72c58ac4884bad8b0b38e
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A29EE843C8A39551A1507CC6AD949AD509E33AAAE8B72C58AC4884BAD8B0B38E"
Last-Modified: Sun, 29 Jan 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14550
Expires: Mon, 30 Jan 2023 06:55:51 GMT
Date: Mon, 30 Jan 2023 02:53:21 GMT
Connection: keep-alive
push.services.mozilla.com/
52.33.66.202101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.33.66.202:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: rod6u1dPzsbjWGVw1p+I7Q==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: cKWg1a8d6aQrXwPQJuMwqMNmT9E=
gruporosmar.com.mx/servicio-integral-desinfeccion-total-amex/
52.87.157.254200 OK 24 kB URL HTTP/1.1 gruporosmar.com.mx/servicio-integral-desinfeccion-total-amex/
IP 52.87.157.254:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (20229), with CRLF, LF line terminators
Hash 3e30e125197190a580993f9ac3a8331f
9d0ae192c3314c4a72c832cd1ca8fb480bfa8b97
fa9b1996717f3652952f4f5d4fb2eb08042d2539e4ba8868cb7ed69210ce8877
Analyzer Verdict Alert fortinet Phishing
GET /servicio-integral-desinfeccion-total-amex/ HTTP/1.1
Host: gruporosmar.com.mx
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/1.1 200 OK
Server: nginx/1.14.0 (Ubuntu)
Date: Mon, 30 Jan 2023 02:53:22 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
cf-edge-cache: cache,platform=wordpress
Link: <https://gruporosmar.com.mx/wp-json/>; rel="https://api.w.org/", <https://gruporosmar.com.mx/wp-json/wp/v2/pages/9163>; rel="alternate"; type="application/json", <https://gruporosmar.com.mx/?p=9163>; rel=shortlink
Content-Encoding: gzip
gruporosmar.com.mx/wp-includes/css/dist/block-library/style.min.css?ver=5.8.3
52.87.157.254200 OK 10 kB URL HTTP/1.1 gruporosmar.com.mx/wp-includes/css/dist/block-library/style.min.css?ver=5.8.3
IP 52.87.157.254:0
File type Unicode text, UTF-8 text, with very long lines (33376)
Hash 6451fb83b7956148ab72128682dcd692
16baf47c52c622ca880c58aa19e8ef87c00ec76e
21ddd09ee634c8bea9ab5b947cef21a36e064de3dbc5cd1b68f3a4710b267346
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/css/dist/block-library/style.min.css?ver=5.8.3 HTTP/1.1
Host: gruporosmar.com.mx
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gruporosmar.com.mx/servicio-integral-desinfeccion-total-amex/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.14.0 (Ubuntu)
Date: Mon, 30 Jan 2023 02:53:23 GMT
Content-Type: text/css
Last-Modified: Wed, 01 Sep 2021 04:05:58 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"612efc26-13abe"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Content-Encoding: gzip
gruporosmar.com.mx/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-style.css?ver=6.5.2
52.87.157.254200 OK 21 kB URL HTTP/1.1 gruporosmar.com.mx/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-style.css?ver=6.5.2
IP 52.87.157.254:0
File type Unicode text, UTF-8 text, with very long lines (65527), with no line terminators
Hash 326b646becfa3533d61236044dd48735
66e5a84cedb52bcb297f9abb4e560783f8eb5c9a
b9eb00e94c64d6a27ccacc4d2c4642b1b0fd0a617770af809cfb1d95f51fc998
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-style.css?ver=6.5.2 HTTP/1.1
Host: gruporosmar.com.mx
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gruporosmar.com.mx/servicio-integral-desinfeccion-total-amex/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.14.0 (Ubuntu)
Date: Mon, 30 Jan 2023 02:53:23 GMT
Content-Type: text/css
Last-Modified: Thu, 10 Mar 2022 17:45:42 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"622a3946-3045e"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Content-Encoding: gzip
gruporosmar.com.mx/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-vendors-style.css?ver=6.5.2
52.87.157.254200 OK 1.4 kB URL HTTP/1.1 gruporosmar.com.mx/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-vendors-style.css?ver=6.5.2
IP 52.87.157.254:0
File type ASCII text, with very long lines (5305), with no line terminators
Hash 9437778616b64363b1dd28983f34cd49
5e42e7d566714125551df14c2050f58250cb47fd
650e9bdf3c1e8f3fe79621e3614687d2945381eb04d669e3ee46ef0f3ad95e08
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-vendors-style.css?ver=6.5.2 HTTP/1.1
Host: gruporosmar.com.mx
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gruporosmar.com.mx/servicio-integral-desinfeccion-total-amex/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.14.0 (Ubuntu)
Date: Mon, 30 Jan 2023 02:53:23 GMT
Content-Type: text/css
Last-Modified: Thu, 10 Mar 2022 17:45:42 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"622a3946-14b9"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Content-Encoding: gzip
gruporosmar.com.mx/wp-content/plugins/theplus_elementor_addon/assets/css/main/pre-loader/plus-pre-loader.min.css?ver=5.0.8
52.87.157.254200 OK 5.2 kB URL HTTP/1.1 gruporosmar.com.mx/wp-content/plugins/theplus_elementor_addon/assets/css/main/pre-loader/plus-pre-loader.min.css?ver=5.0.8
IP 52.87.157.254:0
File type ASCII text, with very long lines (43805), with no line terminators
Hash dc9d97913ac3c678fe0fad9f552650a1
57222ac9f2980968abc057bb12e98fd852866bec
ab35066687c5ded33b6ec2e6f66dda171d139576bf13349870dc29540885d281
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/theplus_elementor_addon/assets/css/main/pre-loader/plus-pre-loader.min.css?ver=5.0.8 HTTP/1.1
Host: gruporosmar.com.mx
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gruporosmar.com.mx/servicio-integral-desinfeccion-total-amex/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.14.0 (Ubuntu)
Date: Mon, 30 Jan 2023 02:53:23 GMT
Content-Type: text/css
Last-Modified: Mon, 24 Jan 2022 10:23:12 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"61ee7e10-ab1d"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Content-Encoding: gzip
gruporosmar.com.mx/wp-content/plugins/woocommerce/assets/css/woocommerce-layout.css?ver=6.1.2
52.87.157.254200 OK 2.6 kB URL HTTP/1.1 gruporosmar.com.mx/wp-content/plugins/woocommerce/assets/css/woocommerce-layout.css?ver=6.1.2
IP 52.87.157.254:0
File type ASCII text, with very long lines (17809), with no line terminators
Hash be0befa6b3a8509adb68e2a5a976978b
ebf3b07fac78db7fc7617a802912388fe0e28438
018ccaf9b85e8352adbac26932fb2123993f4fb96d8248a1cd5a44d7679937ad
GET /wp-content/plugins/woocommerce/assets/css/woocommerce-layout.css?ver=6.1.2 HTTP/1.1
Host: gruporosmar.com.mx
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gruporosmar.com.mx/servicio-integral-desinfeccion-total-amex/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.14.0 (Ubuntu)
Date: Mon, 30 Jan 2023 02:53:23 GMT
Content-Type: text/css
Last-Modified: Thu, 10 Mar 2022 17:45:42 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"622a3946-4591"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Content-Encoding: gzip
gruporosmar.com.mx/wp-content/plugins/woocommerce/assets/css/woocommerce.css?ver=6.1.2
52.87.157.254200 OK 8.9 kB URL HTTP/1.1 gruporosmar.com.mx/wp-content/plugins/woocommerce/assets/css/woocommerce.css?ver=6.1.2
IP 52.87.157.254:0
File type Unicode text, UTF-8 text, with very long lines (62753), with no line terminators
Hash 5e6f0816cfea75222a4c840a9bc95c2d
73bfbef7c9dbbc5033c432b6b12c6dbffd017c43
8dadb86fcb6d0d3eafb86089bb65845d072a3964c0a12f266ea410e2faff60f0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/woocommerce/assets/css/woocommerce.css?ver=6.1.2 HTTP/1.1
Host: gruporosmar.com.mx
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gruporosmar.com.mx/servicio-integral-desinfeccion-total-amex/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.14.0 (Ubuntu)
Date: Mon, 30 Jan 2023 02:53:23 GMT
Content-Type: text/css
Last-Modified: Thu, 10 Mar 2022 17:45:42 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"622a3946-f523"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Content-Encoding: gzip
gruporosmar.com.mx/wp-content/uploads/theplus-addons/theplus-post-9163.min.css?ver=1660850848
52.87.157.254200 OK 3.6 kB URL HTTP/1.1 gruporosmar.com.mx/wp-content/uploads/theplus-addons/theplus-post-9163.min.css?ver=1660850848
IP 52.87.157.254:0
File type assembler source, ASCII text, with very long lines (18485), with no line terminators
Hash 57f3e0f51a48b8cfe3ea04108761a2fc
fa271f10b34c2188dd0d6cc6e9304243e3b0a1a7
e68ebb7457b9bd796256acc80ab10f043ac3ca07c763b4a3a28165ba6c8e93bb
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/theplus-addons/theplus-post-9163.min.css?ver=1660850848 HTTP/1.1
Host: gruporosmar.com.mx
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gruporosmar.com.mx/servicio-integral-desinfeccion-total-amex/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.14.0 (Ubuntu)
Date: Mon, 30 Jan 2023 02:53:23 GMT
Content-Type: text/css
Last-Modified: Sat, 28 Jan 2023 08:14:58 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"63d4d982-4835"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Content-Encoding: gzip
gruporosmar.com.mx/wp-content/themes/hello-elementor/style.min.css?ver=2.4.1
52.87.157.254200 OK 2.3 kB URL HTTP/1.1 gruporosmar.com.mx/wp-content/themes/hello-elementor/style.min.css?ver=2.4.1
IP 52.87.157.254:0
File type ASCII text, with very long lines (5856)
Hash 7a43a5e7dd5ad61b6649d9114f4281b3
4502b77fc371d8dec68cad33151e9cddb7daa306
f613326b15171e16c2704e6cf95127345c95c040c7f27c72a052f2d4f7ac51e5
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/hello-elementor/style.min.css?ver=2.4.1 HTTP/1.1
Host: gruporosmar.com.mx
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gruporosmar.com.mx/servicio-integral-desinfeccion-total-amex/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.14.0 (Ubuntu)
Date: Mon, 30 Jan 2023 02:53:23 GMT
Content-Type: text/css
Last-Modified: Fri, 08 Oct 2021 10:45:14 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"6160213a-1a1f"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Content-Encoding: gzip
gruporosmar.com.mx/wp-content/themes/hello-elementor/theme.min.css?ver=2.4.1
52.87.157.254200 OK 2.5 kB URL HTTP/1.1 gruporosmar.com.mx/wp-content/themes/hello-elementor/theme.min.css?ver=2.4.1
IP 52.87.157.254:0
File type ASCII text, with very long lines (15164), with no line terminators
Hash 8ee5784a3ae8ea18f8dc8bb56b3657b4
5dee196cb073c26661eeefa7c2ed0644c59a9e58
c4957693fef7187966c0c99e4a10441ed3f9aa3ae40823657d519b33589b25f4
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/hello-elementor/theme.min.css?ver=2.4.1 HTTP/1.1
Host: gruporosmar.com.mx
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gruporosmar.com.mx/servicio-integral-desinfeccion-total-amex/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.14.0 (Ubuntu)
Date: Mon, 30 Jan 2023 02:53:23 GMT
Content-Type: text/css
Last-Modified: Fri, 08 Oct 2021 10:45:14 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"6160213a-3b3c"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Content-Encoding: gzip
gruporosmar.com.mx/wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.14.0
52.87.157.254200 OK 3.9 kB URL HTTP/1.1 gruporosmar.com.mx/wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.14.0
IP 52.87.157.254:0
File type ASCII text, with very long lines (19004)
Hash a6fed7324f20ae459a4a914ac8c83fb6
19f2bd2bedde45b24cfa3f6b58a7ce20553905fb
2d90632f8a5e64d4d0d9404b11b9d359ea525f919476853b5410ff1fc5845793
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.14.0 HTTP/1.1
Host: gruporosmar.com.mx
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gruporosmar.com.mx/servicio-integral-desinfeccion-total-amex/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.14.0 (Ubuntu)
Date: Mon, 30 Jan 2023 02:53:23 GMT
Content-Type: text/css
Last-Modified: Mon, 24 Jan 2022 10:19:19 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"61ee7d27-4a6a"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Content-Encoding: gzip
gruporosmar.com.mx/wp-content/plugins/theplus_elementor_addon/assets/css/extra/iconsmind.min.css?ver=5.0.8
52.87.157.254200 OK 16 kB URL HTTP/1.1 gruporosmar.com.mx/wp-content/plugins/theplus_elementor_addon/assets/css/extra/iconsmind.min.css?ver=5.0.8
IP 52.87.157.254:0
File type ASCII text, with very long lines (64998), with CRLF line terminators
Hash 114d184f62bdab07044bbeb771a41336
50fc0af3b23b956808bf0adab60de75062f7786f
0ab5ae5abd3ff653f481d6b85193bf6e0f0fcb26abe5ea73f1b02dc38fdc15c7
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/theplus_elementor_addon/assets/css/extra/iconsmind.min.css?ver=5.0.8 HTTP/1.1
Host: gruporosmar.com.mx
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gruporosmar.com.mx/servicio-integral-desinfeccion-total-amex/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.14.0 (Ubuntu)
Date: Mon, 30 Jan 2023 02:53:23 GMT
Content-Type: text/css
Last-Modified: Mon, 24 Jan 2022 10:23:12 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"61ee7e10-16aa2"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Content-Encoding: gzip
gruporosmar.com.mx/wp-content/plugins/elementor/assets/css/frontend.min.css?ver=3.5.4
52.87.157.254200 OK 18 kB URL HTTP/1.1 gruporosmar.com.mx/wp-content/plugins/elementor/assets/css/frontend.min.css?ver=3.5.4
IP 52.87.157.254:0
File type ASCII text, with very long lines (65497)
Hash 96ee9546e42a2f2f142024c7c10af7b8
93c9d89d3b1c5e391e2eff39f599feae9a233f16
1c99c9abddfffed613209bb8ba949828e1d1b91718ef7b23b56ff9c8f271a115
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/css/frontend.min.css?ver=3.5.4 HTTP/1.1
Host: gruporosmar.com.mx
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gruporosmar.com.mx/servicio-integral-desinfeccion-total-amex/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.14.0 (Ubuntu)
Date: Mon, 30 Jan 2023 02:53:23 GMT
Content-Type: text/css
Last-Modified: Mon, 24 Jan 2022 10:19:19 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"61ee7d27-21826"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Content-Encoding: gzip
gruporosmar.com.mx/wp-content/plugins/elementor/assets/lib/font-awesome/css/all.min.css?ver=3.5.4
52.87.157.254200 OK 13 kB URL HTTP/1.1 gruporosmar.com.mx/wp-content/plugins/elementor/assets/lib/font-awesome/css/all.min.css?ver=3.5.4
IP 52.87.157.254:0
File type ASCII text, with very long lines (59158)
Hash ec28881f94373ca699b82164b944915a
4abd68ea4dd8e75b907092030283332d8e037ee0
800119a3bea6194c052f582d6005bbb8f280b8e51cc9d3a487c2bccfc01eff81
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/all.min.css?ver=3.5.4 HTTP/1.1
Host: gruporosmar.com.mx
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gruporosmar.com.mx/servicio-integral-desinfeccion-total-amex/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.14.0 (Ubuntu)
Date: Mon, 30 Jan 2023 02:53:23 GMT
Content-Type: text/css
Last-Modified: Mon, 24 Jan 2022 10:19:19 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"61ee7d27-e7d0"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Content-Encoding: gzip
gruporosmar.com.mx/wp-content/plugins/elementor/assets/lib/font-awesome/css/v4-shims.min.css?ver=3.5.4
52.87.157.254200 OK 4.2 kB URL HTTP/1.1 gruporosmar.com.mx/wp-content/plugins/elementor/assets/lib/font-awesome/css/v4-shims.min.css?ver=3.5.4
IP 52.87.157.254:0
File type ASCII text, with very long lines (26516)
Hash d74abcef3df71d56667a44693f75c454
be993a7b5c88a550ef0dc19c4841f240e41967f8
8c8fb98c0a68a93f2bcf224fcc1bdaa1095fc1b3f5418f2e2c5fddcfa3dee410
GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/v4-shims.min.css?ver=3.5.4 HTTP/1.1
Host: gruporosmar.com.mx
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gruporosmar.com.mx/servicio-integral-desinfeccion-total-amex/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.14.0 (Ubuntu)
Date: Mon, 30 Jan 2023 02:53:23 GMT
Content-Type: text/css
Last-Modified: Mon, 24 Jan 2022 10:19:19 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"61ee7d27-684e"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Content-Encoding: gzip
gruporosmar.com.mx/wp-content/plugins/elementor/assets/lib/font-awesome/css/fontawesome.min.css?ver=5.15.3
52.87.157.254200 OK 13 kB URL HTTP/1.1 gruporosmar.com.mx/wp-content/plugins/elementor/assets/lib/font-awesome/css/fontawesome.min.css?ver=5.15.3
IP 52.87.157.254:0
File type ASCII text, with very long lines (57726)
Hash b8914a9a422b658a721edee22da4803f
dcb57be1523de06493b62bff04208dbb7eaf7b92
32cbd3295c9c436f50437a22d401fa3838a98c1dc03eddfc4552eda9e0a6bc6e
GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/fontawesome.min.css?ver=5.15.3 HTTP/1.1
Host: gruporosmar.com.mx
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gruporosmar.com.mx/servicio-integral-desinfeccion-total-amex/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.14.0 (Ubuntu)
Date: Mon, 30 Jan 2023 02:53:23 GMT
Content-Type: text/css
Last-Modified: Mon, 24 Jan 2022 10:19:19 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"61ee7d27-e238"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Content-Encoding: gzip
gruporosmar.com.mx/wp-content/plugins/elementor/assets/lib/font-awesome/css/solid.min.css?ver=5.15.3
52.87.157.254200 OK 309 B URL HTTP/1.1 gruporosmar.com.mx/wp-content/plugins/elementor/assets/lib/font-awesome/css/solid.min.css?ver=5.15.3
IP 52.87.157.254:0
File type ASCII text, with very long lines (483)
Hash 0ea43e394ddaae5fdb710dbbc8869e58
3b0c93adc80720236096201db5cc2751e703996d
85225fffa21a94bfd954393d7471069ab227b98fd8b51cb5ab4af5488168a34e
GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/solid.min.css?ver=5.15.3 HTTP/1.1
Host: gruporosmar.com.mx
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gruporosmar.com.mx/servicio-integral-desinfeccion-total-amex/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.14.0 (Ubuntu)
Date: Mon, 30 Jan 2023 02:53:23 GMT
Content-Type: text/css
Last-Modified: Mon, 24 Jan 2022 10:19:19 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"61ee7d27-29d"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Content-Encoding: gzip
gruporosmar.com.mx/wp-content/plugins/elementor/assets/lib/font-awesome/css/regular.min.css?ver=5.15.3
52.87.157.254200 OK 308 B URL HTTP/1.1 gruporosmar.com.mx/wp-content/plugins/elementor/assets/lib/font-awesome/css/regular.min.css?ver=5.15.3
IP 52.87.157.254:0
File type ASCII text, with very long lines (491)
Hash 851fd514d412b7e854365f20a4227c8a
08bf47072f70af1816450cc85a5efb3b8f9114d2
a9449e3cc7c003e5ed6b93bae7b0bba3e4f1713c52214f41d3591692a759b9d7
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/regular.min.css?ver=5.15.3 HTTP/1.1
Host: gruporosmar.com.mx
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gruporosmar.com.mx/servicio-integral-desinfeccion-total-amex/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.14.0 (Ubuntu)
Date: Mon, 30 Jan 2023 02:53:23 GMT
Content-Type: text/css
Last-Modified: Mon, 24 Jan 2022 10:19:19 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"61ee7d27-2a5"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Content-Encoding: gzip
gruporosmar.com.mx/wp-content/plugins/elementor-pro/assets/css/frontend.min.css?ver=3.5.2
52.87.157.254200 OK 35 kB URL HTTP/1.1 gruporosmar.com.mx/wp-content/plugins/elementor-pro/assets/css/frontend.min.css?ver=3.5.2
IP 52.87.157.254:0
File type ASCII text, with very long lines (65493)
Hash 8053a1807f4e101b61cc43e9e5fc7e5c
9394834a7a95095adaf0fced72171bcdaccf0e66
c11eaa4772ec9f8b908731f5830a51b89c93829e1b69e6f51173d398d4b737bd
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor-pro/assets/css/frontend.min.css?ver=3.5.2 HTTP/1.1
Host: gruporosmar.com.mx
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gruporosmar.com.mx/servicio-integral-desinfeccion-total-amex/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.14.0 (Ubuntu)
Date: Mon, 30 Jan 2023 02:53:23 GMT
Content-Type: text/css
Last-Modified: Mon, 24 Jan 2022 10:22:59 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"61ee7e03-503a1"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Content-Encoding: gzip
gruporosmar.com.mx/wp-content/plugins/elementor/assets/lib/font-awesome/css/brands.min.css?ver=5.15.3
52.87.157.254200 OK 308 B URL HTTP/1.1 gruporosmar.com.mx/wp-content/plugins/elementor/assets/lib/font-awesome/css/brands.min.css?ver=5.15.3
IP 52.87.157.254:0
File type ASCII text, with very long lines (489)
Hash 0a08469d24387f830bbaaa00b3c228ae
01f5dfeb8f93a32c9a8f66fe5940758109771fcd
3c7c29e5fc1193ff7ce24f72f77b2dc129e1a9434a97ef7b625f6f715531803c
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/brands.min.css?ver=5.15.3 HTTP/1.1
Host: gruporosmar.com.mx
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gruporosmar.com.mx/servicio-integral-desinfeccion-total-amex/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.14.0 (Ubuntu)
Date: Mon, 30 Jan 2023 02:53:23 GMT
Content-Type: text/css
Last-Modified: Mon, 24 Jan 2022 10:19:19 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"61ee7d27-2a3"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Content-Encoding: gzip
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash ba2ca6af7b23ce2e11aa4f9d86e66269
212aef55d64b6add292dcf6241b16e7c93d1bae2
f163a94d190f5aeeb05b2e344bc8e1544d9701772b08585e9c92b529c8652b3d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 02:53:23 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 75bf326700e29b1b06e57fb96ee2b064
4f979f28905b65637a058cd44be6c25bb51a42e4
385f7a9c4112c4d674264d02229719e7f82e7039e681db8aaa6685ebab2be0c1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 02:53:23 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 75bf326700e29b1b06e57fb96ee2b064
4f979f28905b65637a058cd44be6c25bb51a42e4
385f7a9c4112c4d674264d02229719e7f82e7039e681db8aaa6685ebab2be0c1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 02:53:23 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.googletagmanager.com/gtag/js?id=UA-159644567-1
172.217.21.168200 OK 44 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=UA-159644567-1
IP 172.217.21.168:0
File type ASCII text, with very long lines (1759)
Hash 65b41d1ad2efd34f5dfd4dc24838fc54
8645221902187d266a8d0702016e8f0c5846cb4e
28b4d744b4fd97adaa50a0970304935908c4017b27b96936f19275f18f322cb9
GET /gtag/js?id=UA-159644567-1 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gruporosmar.com.mx/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Mon, 30 Jan 2023 02:53:23 GMT
expires: Mon, 30 Jan 2023 02:53:23 GMT
cache-control: private, max-age=900
last-modified: Mon, 30 Jan 2023 00:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 44096
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
gruporosmar.com.mx/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
52.87.157.254200 OK 11 kB URL HTTP/1.1 gruporosmar.com.mx/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP 52.87.157.254:0
File type ASCII text, with very long lines (11126)
Hash 79b4956b7ec478ec10244b5e2d33ac7d
a46025b9d05e3df30d610a8aef14f392c7058dc9
029e0a2e809fd6b5dbe76abe8b7a74936be306c9a8c27c814c4d44aa54623300
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: gruporosmar.com.mx
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gruporosmar.com.mx/servicio-integral-desinfeccion-total-amex/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.14.0 (Ubuntu)
Date: Mon, 30 Jan 2023 02:53:23 GMT
Content-Type: application/javascript
Content-Length: 11224
Last-Modified: Wed, 18 Nov 2020 09:06:06 GMT
Connection: keep-alive
ETag: "5fb4e3fe-2bd8"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Accept-Ranges: bytes
gruporosmar.com.mx/wp-content/plugins/theplus_elementor_addon/assets/js/main/pre-loader/plus-pre-loader-extra-transition.min.js?ver=5.0.8
52.87.157.254200 OK 1.7 kB URL HTTP/1.1 gruporosmar.com.mx/wp-content/plugins/theplus_elementor_addon/assets/js/main/pre-loader/plus-pre-loader-extra-transition.min.js?ver=5.0.8
IP 52.87.157.254:0
File type ASCII text, with very long lines (1674), with no line terminators
Hash f5b0b15122ba915645443b8b9ea1992f
d9b588a8df58e187a52cd19256ed9af41882b7ff
71cbac19a8b9c793c36076eb0dd755713283c2c28f4bf05668f1f36ab3b141e9
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/theplus_elementor_addon/assets/js/main/pre-loader/plus-pre-loader-extra-transition.min.js?ver=5.0.8 HTTP/1.1
Host: gruporosmar.com.mx
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gruporosmar.com.mx/servicio-integral-desinfeccion-total-amex/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.14.0 (Ubuntu)
Date: Mon, 30 Jan 2023 02:53:23 GMT
Content-Type: application/javascript
Content-Length: 1674
Last-Modified: Mon, 24 Jan 2022 10:23:12 GMT
Connection: keep-alive
ETag: "61ee7e10-68a"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Accept-Ranges: bytes
gruporosmar.com.mx/wp-content/plugins/theplus_elementor_addon/assets/js/main/pre-loader/plus-pre-loader.min.js?ver=5.0.8
52.87.157.254200 OK 8.3 kB URL HTTP/1.1 gruporosmar.com.mx/wp-content/plugins/theplus_elementor_addon/assets/js/main/pre-loader/plus-pre-loader.min.js?ver=5.0.8
IP 52.87.157.254:0
File type ASCII text, with very long lines (8315), with no line terminators
Hash 0cbf9604ea75a0835158da7a89cba3c4
0217844f73f67860393688c17382297a51e991bb
8421a3bdf342aa348d21644c345679a4346e2201bcb03270b935da35f2f3536a
GET /wp-content/plugins/theplus_elementor_addon/assets/js/main/pre-loader/plus-pre-loader.min.js?ver=5.0.8 HTTP/1.1
Host: gruporosmar.com.mx
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gruporosmar.com.mx/servicio-integral-desinfeccion-total-amex/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.14.0 (Ubuntu)
Date: Mon, 30 Jan 2023 02:53:23 GMT
Content-Type: application/javascript
Content-Length: 8315
Last-Modified: Mon, 24 Jan 2022 10:23:12 GMT
Connection: keep-alive
ETag: "61ee7e10-207b"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Accept-Ranges: bytes
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash f2a0c2c0f25bdd19baf87cbb3a87dcdb
bc78ca6206ee8cc1cc05ab7778df71c7e6d1182a
c57f26c0c2e439dc2f69181e1b2f6ae371bff9d299af739e0047eabc8bfb5a69
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C57F26C0C2E439DC2F69181E1B2F6AE371BFF9D299AF739E0047EABC8BFB5A69"
Last-Modified: Fri, 27 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11055
Expires: Mon, 30 Jan 2023 05:57:38 GMT
Date: Mon, 30 Jan 2023 02:53:23 GMT
Connection: keep-alive
gruporosmar.com.mx/wp-content/plugins/elementor/assets/lib/font-awesome/js/v4-shims.min.js?ver=3.5.4
52.87.157.254200 OK 15 kB URL HTTP/1.1 gruporosmar.com.mx/wp-content/plugins/elementor/assets/lib/font-awesome/js/v4-shims.min.js?ver=3.5.4
IP 52.87.157.254:0
File type ASCII text, with very long lines (14869)
Hash 7a5dea0a705cc2f4cd87dbaaa6666bc6
678bc6f750f13adb29bbc158eb0d9cd813b736fa
97cf1307c16a437b77b5f7f5c9bc0b985d0745a14be5a279019aca5a3432e264
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/lib/font-awesome/js/v4-shims.min.js?ver=3.5.4 HTTP/1.1
Host: gruporosmar.com.mx
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gruporosmar.com.mx/servicio-integral-desinfeccion-total-amex/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.14.0 (Ubuntu)
Date: Mon, 30 Jan 2023 02:53:23 GMT
Content-Type: application/javascript
Content-Length: 15055
Last-Modified: Mon, 24 Jan 2022 10:19:19 GMT
Connection: keep-alive
ETag: "61ee7d27-3acf"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Accept-Ranges: bytes
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash f2a0c2c0f25bdd19baf87cbb3a87dcdb
bc78ca6206ee8cc1cc05ab7778df71c7e6d1182a
c57f26c0c2e439dc2f69181e1b2f6ae371bff9d299af739e0047eabc8bfb5a69
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C57F26C0C2E439DC2F69181E1B2F6AE371BFF9D299AF739E0047EABC8BFB5A69"
Last-Modified: Fri, 27 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11055
Expires: Mon, 30 Jan 2023 05:57:38 GMT
Date: Mon, 30 Jan 2023 02:53:23 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F80079413-a219-4943-96b4-3e14e10bb5ba.jpeg
34.120.237.76200 OK 7.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F80079413-a219-4943-96b4-3e14e10bb5ba.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 36ff8d0c9899da25e80edbb858b164de
3e2491c5465f3c427a11c32bdfee27767559bb3f
b060501c6d82e97bd4826a62b790d58cd9d7ece8e1590267bc9b48033f3ce9b1
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F80079413-a219-4943-96b4-3e14e10bb5ba.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7223
x-amzn-requestid: b05a1db9-29e2-42d0-9eca-9a0f462c87c3
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fhj3IHtpIAMFUkw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d6e693-7e13d93143b5e666313a4b8f;Sampled=0
x-amzn-remapped-date: Sun, 29 Jan 2023 21:35:15 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: plMEbbqV1vxLnOthRyrgLOOwdxH-aFHCP98axvP0RORnE4gtbEkZyg==
via: 1.1 efe54e8b68e074d39b2ecd249f85100a.cloudfront.net (CloudFront), 1.1 6a9b42e38e76b7d4a4044ebe0e0eca08.cloudfront.net (CloudFront), 1.1 google
date: Sun, 29 Jan 2023 22:11:52 GMT
age: 16891
etag: "3e2491c5465f3c427a11c32bdfee27767559bb3f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6df754eb-70f9-4576-ac48-68a6ae719511.jpeg
34.120.237.76200 OK 9.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6df754eb-70f9-4576-ac48-68a6ae719511.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 51aa950d5eed7b90cab6632107092edc
e4388ced02e5576867e77547496dec1ac2338ef7
588830e5f725e8e56270565e40f817f2658b0ee7c0425d138e5f65a17ff40483
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6df754eb-70f9-4576-ac48-68a6ae719511.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 9457
x-amzn-requestid: 7c48e5ca-2128-43da-ba83-fd91568af1ef
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fhkBOGHVoAMFQtw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d6e6d4-1b850ffd543f51f92dec3894;Sampled=0
x-amzn-remapped-date: Sun, 29 Jan 2023 21:36:20 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 3EXFa0gb46AbdZ9ZznGiPTemGZ7zWh9WLs5Yr1zmfyh_jyKA6o7xoA==
via: 1.1 0c96ded7ff282d2dbcf47c918b6bb500.cloudfront.net (CloudFront), 1.1 7022a5bbf9872d4a09d63e6cdb457dfe.cloudfront.net (CloudFront), 1.1 google
date: Sun, 29 Jan 2023 22:19:57 GMT
age: 16406
etag: "e4388ced02e5576867e77547496dec1ac2338ef7"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3bb7921c-8aaf-40cd-bf87-43903c3f1a74.jpeg
34.120.237.76200 OK 7.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3bb7921c-8aaf-40cd-bf87-43903c3f1a74.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 3e04b9eaf7449828136ad59e4c9d69f1
b820be4ed885dcf288eb6460c57e1fa7b1c7c476
df75cf7183d401a19655aab025d08ad2c498573c88b32e9b258d951d2993b936
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3bb7921c-8aaf-40cd-bf87-43903c3f1a74.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 7679
x-amzn-requestid: 0c7983d5-6040-44e9-b394-21c3784702a2
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fhkEtEfHoAMFaNA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d6e6ea-54c55dbd09ca642048af8916;Sampled=0
x-amzn-remapped-date: Sun, 29 Jan 2023 21:36:42 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: VHh2SQ21xoDoBnGvM2kRiposhXuCE-DdWW1bM35kEykjbHYmhsldVA==
via: 1.1 26ca01ec7377e425b59b6a08cb1ec342.cloudfront.net (CloudFront), 1.1 82ea95080f526df99896343fb7269b06.cloudfront.net (CloudFront), 1.1 google
date: Sun, 29 Jan 2023 21:51:22 GMT
age: 18121
etag: "b820be4ed885dcf288eb6460c57e1fa7b1c7c476"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd9a423a9-16ee-4e3f-b9b4-34f6a469aba9.jpeg
34.120.237.76200 OK 9.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd9a423a9-16ee-4e3f-b9b4-34f6a469aba9.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 3be81f83687ddb6c93d3ff3c09a9dba2
50a48e737310d3f31840db4301b25927fbcc12c5
e78c909e2381898e7f546183784a05dff47c31734c95358aaada8c2777ad47be
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd9a423a9-16ee-4e3f-b9b4-34f6a469aba9.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 9167
x-amzn-requestid: e6e0789c-a4a9-4ffa-a0ae-691770d1035b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fPF9YEBmIAMF0kQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63cf8388-01d2093432d3959903671a69;Sampled=0
x-amzn-remapped-date: Tue, 24 Jan 2023 07:06:48 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: awfNeaKbFw2bjiTGwUrwUTxU-qbVS2eTjn948H8kn1hy7pi_DwLMlQ==
via: 1.1 01c28b52813cd0e82f810c492808b142.cloudfront.net (CloudFront), 1.1 b2f9564ebf9c745cc2ceae96d434977e.cloudfront.net (CloudFront), 1.1 google
date: Sun, 29 Jan 2023 17:35:56 GMT
age: 33447
etag: "50a48e737310d3f31840db4301b25927fbcc12c5"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
maps.googleapis.com/maps/api/js?key=&sensor=false
142.250.74.106200 OK 53 kB URL HTTP/2 maps.googleapis.com/maps/api/js?key=&sensor=false
IP 142.250.74.106:0
File type ASCII text, with very long lines (2414)
Hash 6ebcaf6eb99c812506a1ba3b48369304
765e723931136a7ac0210c8231f258e79064d801
bec5e63f59fff556b09f8eb19f32390070367b807f23ccb5f7eddaf536c17b99
GET /maps/api/js?key=&sensor=false HTTP/1.1
Host: maps.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gruporosmar.com.mx/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/javascript; charset=UTF-8
date: Mon, 30 Jan 2023 02:53:23 GMT
expires: Mon, 30 Jan 2023 03:23:23 GMT
cache-control: public, max-age=1800
vary: Accept-Language
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
content-encoding: gzip
server: mafe
content-length: 52757
x-xss-protection: 0
x-frame-options: SAMEORIGIN
server-timing: gfet4t7; dur=24
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffbe179e9-ed5b-474f-b131-5b5a63a84dfb.jpeg
34.120.237.76200 OK 8.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffbe179e9-ed5b-474f-b131-5b5a63a84dfb.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 2ffefd279ef73e586048a7907c0425b8
53d3da3cdf647e619abe96c6af42f2374112f334
75d7034fd709cb69e15234a4de94cdd9b42de1e26e3a0b2cb107be3228575af2
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffbe179e9-ed5b-474f-b131-5b5a63a84dfb.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 8414
x-amzn-requestid: 3ca84a59-6dce-45f8-919e-bd551d553a99
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fhj5EGvAIAMFtPA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d6e6a0-446d1dff705f17853e7d0a77;Sampled=0
x-amzn-remapped-date: Sun, 29 Jan 2023 21:35:28 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: hUnafsPNiSpfZcu0hzwVC3VOHbVjqwIHo2vuJuZUKT1Lj93l9NkVrQ==
via: 1.1 eece508272520f70691e4eebdc5a6dea.cloudfront.net (CloudFront), 1.1 3cd7af07832481c336aa1c93c9b4a6fe.cloudfront.net (CloudFront), 1.1 google
date: Sun, 29 Jan 2023 21:51:22 GMT
age: 18121
etag: "53d3da3cdf647e619abe96c6af42f2374112f334"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash f2a0c2c0f25bdd19baf87cbb3a87dcdb
bc78ca6206ee8cc1cc05ab7778df71c7e6d1182a
c57f26c0c2e439dc2f69181e1b2f6ae371bff9d299af739e0047eabc8bfb5a69
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C57F26C0C2E439DC2F69181E1B2F6AE371BFF9D299AF739E0047EABC8BFB5A69"
Last-Modified: Fri, 27 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11055
Expires: Mon, 30 Jan 2023 05:57:38 GMT
Date: Mon, 30 Jan 2023 02:53:23 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F57d55e9c-b793-48b6-9641-536d9d4b8a49.jpeg
34.120.237.76200 OK 9.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F57d55e9c-b793-48b6-9641-536d9d4b8a49.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 7ce4f845d4cdd467b4c82d8fbeb9ae0b
68257cdadb6e13a8f7f5e2354aca225286107a79
243b58df1616fd8b78c11302dbf90c97ecb6a3b289abe5f3439252cdbf304892
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F57d55e9c-b793-48b6-9641-536d9d4b8a49.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 9150
x-amzn-requestid: 2b8949c8-5c97-49f5-8784-85daa42adff1
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fhj4NF1moAMFQ9A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d6e69a-2ab06022306835b013c1e46f;Sampled=0
x-amzn-remapped-date: Sun, 29 Jan 2023 21:35:22 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: rhWnoHh5bILzb5MAI88JvXr6MGkRKHOT5L10I8VJkjjfN-Iuupva2Q==
via: 1.1 0aebf3fe433ff96e68d785fad4ea4c0e.cloudfront.net (CloudFront), 1.1 1a53057db389e96b4ef1bfbc925dde1c.cloudfront.net (CloudFront), 1.1 google
date: Sun, 29 Jan 2023 22:19:22 GMT
age: 16441
etag: "68257cdadb6e13a8f7f5e2354aca225286107a79"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
gruporosmar.com.mx/wp-content/plugins/elementor/assets/lib/e-gallery/css/e-gallery.min.css?ver=1.2.0
52.87.157.254200 OK 844 B URL HTTP/1.1 gruporosmar.com.mx/wp-content/plugins/elementor/assets/lib/e-gallery/css/e-gallery.min.css?ver=1.2.0
IP 52.87.157.254:0
File type ASCII text, with very long lines (3264)
Hash 822a89612b23b9a53fd40a8393e5d394
a9c863b977bf8b18e10f4f09c180bfb4cd5be099
f2de00c5ebf8246b2fdbe9654b58f43e173402a2898f6822e4d00d5994067997
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/lib/e-gallery/css/e-gallery.min.css?ver=1.2.0 HTTP/1.1
Host: gruporosmar.com.mx
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gruporosmar.com.mx/servicio-integral-desinfeccion-total-amex/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.14.0 (Ubuntu)
Date: Mon, 30 Jan 2023 02:53:23 GMT
Content-Type: text/css
Last-Modified: Mon, 24 Jan 2022 10:19:19 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"61ee7d27-ce7"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Content-Encoding: gzip
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash f2a0c2c0f25bdd19baf87cbb3a87dcdb
bc78ca6206ee8cc1cc05ab7778df71c7e6d1182a
c57f26c0c2e439dc2f69181e1b2f6ae371bff9d299af739e0047eabc8bfb5a69
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C57F26C0C2E439DC2F69181E1B2F6AE371BFF9D299AF739E0047EABC8BFB5A69"
Last-Modified: Fri, 27 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11055
Expires: Mon, 30 Jan 2023 05:57:38 GMT
Date: Mon, 30 Jan 2023 02:53:23 GMT
Connection: keep-alive
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 75bf326700e29b1b06e57fb96ee2b064
4f979f28905b65637a058cd44be6c25bb51a42e4
385f7a9c4112c4d674264d02229719e7f82e7039e681db8aaa6685ebab2be0c1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 02:53:23 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
gruporosmar.com.mx/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
52.87.157.254200 OK 90 kB URL HTTP/1.1 gruporosmar.com.mx/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
IP 52.87.157.254:0
File type ASCII text, with very long lines (65447)
Hash 02dd5d04add4759122013c5ab4dc5cc2
a45a56e396ac549b4ff39b696ce9e0c16a7612de
bd4de6a3fc0fb68d6f76ba7b93514b96a92e585c295b5351c31ad92a4b0777ea
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.0 HTTP/1.1
Host: gruporosmar.com.mx
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gruporosmar.com.mx/servicio-integral-desinfeccion-total-amex/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.14.0 (Ubuntu)
Date: Mon, 30 Jan 2023 02:53:23 GMT
Content-Type: application/javascript
Content-Length: 89521
Last-Modified: Wed, 10 Mar 2021 15:07:24 GMT
Connection: keep-alive
ETag: "6048e0ac-15db1"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Accept-Ranges: bytes
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash ba2ca6af7b23ce2e11aa4f9d86e66269
212aef55d64b6add292dcf6241b16e7c93d1bae2
f163a94d190f5aeeb05b2e344bc8e1544d9701772b08585e9c92b529c8652b3d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 02:53:23 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
gruporosmar.com.mx/wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.7.0-wc.6.1.2
52.87.157.254200 OK 9.5 kB URL HTTP/1.1 gruporosmar.com.mx/wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.7.0-wc.6.1.2
IP 52.87.157.254:0
File type ASCII text, with very long lines (9139)
Hash 87c54edf7dad7dfdfde015f6eee45ff1
96ec1a06ea3093c47e1e2fc4444ada7f4456135d
ef22199864042b8ceeee3729f3254c140df7217364045737ca3aadf8434fb3da
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.7.0-wc.6.1.2 HTTP/1.1
Host: gruporosmar.com.mx
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gruporosmar.com.mx/servicio-integral-desinfeccion-total-amex/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.14.0 (Ubuntu)
Date: Mon, 30 Jan 2023 02:53:23 GMT
Content-Type: application/javascript
Content-Length: 9533
Last-Modified: Thu, 10 Mar 2022 17:45:42 GMT
Connection: keep-alive
ETag: "622a3946-253d"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Accept-Ranges: bytes
gruporosmar.com.mx/wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4-wc.6.1.2
52.87.157.254200 OK 1.8 kB URL HTTP/1.1 gruporosmar.com.mx/wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4-wc.6.1.2
IP 52.87.157.254:0
File type ASCII text, with very long lines (1668)
Hash d0a6d8547c66b0d7b0172466558d1208
ff93916519c7b9483251f609e4d29f38c30a66e3
3b1384ff918d4b7f95f9ee5c8fc388203dedff7344d3d96598c9562162788612
GET /wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4-wc.6.1.2 HTTP/1.1
Host: gruporosmar.com.mx
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gruporosmar.com.mx/servicio-integral-desinfeccion-total-amex/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.14.0 (Ubuntu)
Date: Mon, 30 Jan 2023 02:53:23 GMT
Content-Type: application/javascript
Content-Length: 1834
Last-Modified: Thu, 10 Mar 2022 17:45:42 GMT
Connection: keep-alive
ETag: "622a3946-72a"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Accept-Ranges: bytes
gruporosmar.com.mx/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=6.1.2
52.87.157.254200 OK 3.0 kB URL HTTP/1.1 gruporosmar.com.mx/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=6.1.2
IP 52.87.157.254:0
File type HTML document, ASCII text, with very long lines (3037), with no line terminators
Hash 8bc2109ef48cabf7a26b73d7c3536c5f
0e0dfee3a3975eafc3dd55f190d1deb3c6c55d3b
8634aa7a3ac0bc6d359b458c8922e9d3269f64c1355b329bfe215beb12773af8
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=6.1.2 HTTP/1.1
Host: gruporosmar.com.mx
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gruporosmar.com.mx/servicio-integral-desinfeccion-total-amex/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.14.0 (Ubuntu)
Date: Mon, 30 Jan 2023 02:53:23 GMT
Content-Type: application/javascript
Content-Length: 3037
Last-Modified: Thu, 10 Mar 2022 17:45:42 GMT
Connection: keep-alive
ETag: "622a3946-bdd"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Accept-Ranges: bytes
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 75bf326700e29b1b06e57fb96ee2b064
4f979f28905b65637a058cd44be6c25bb51a42e4
385f7a9c4112c4d674264d02229719e7f82e7039e681db8aaa6685ebab2be0c1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 02:53:23 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
gruporosmar.com.mx/wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=6.1.2
52.87.157.254200 OK 2.1 kB URL HTTP/1.1 gruporosmar.com.mx/wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=6.1.2
IP 52.87.157.254:0
File type ASCII text, with very long lines (2139), with no line terminators
Hash b72c1cbb1530a011a27bd9800f26765a
27b825c5d8255f33b8427a059d4545ebd65e1746
a256fccecac3b32ab73c91d79a18747519a1a18023be05465c933b03523a82e8
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=6.1.2 HTTP/1.1
Host: gruporosmar.com.mx
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gruporosmar.com.mx/servicio-integral-desinfeccion-total-amex/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.14.0 (Ubuntu)
Date: Mon, 30 Jan 2023 02:53:23 GMT
Content-Type: application/javascript
Content-Length: 2139
Last-Modified: Thu, 10 Mar 2022 17:45:42 GMT
Connection: keep-alive
ETag: "622a3946-85b"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Accept-Ranges: bytes
gruporosmar.com.mx/wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js?ver=6.1.2
52.87.157.254200 OK 2.9 kB URL HTTP/1.1 gruporosmar.com.mx/wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js?ver=6.1.2
IP 52.87.157.254:0
File type ASCII text, with very long lines (2938), with no line terminators
Hash 0fd625c3991a4015814cffdc88e2fc82
d7c2f53e058210ff3ea773297641008bab71a5f3
2d022db650d194d935faea46a40e5512235b43bc3f8b181e32ce6d3dd745f4e1
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js?ver=6.1.2 HTTP/1.1
Host: gruporosmar.com.mx
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gruporosmar.com.mx/servicio-integral-desinfeccion-total-amex/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.14.0 (Ubuntu)
Date: Mon, 30 Jan 2023 02:53:23 GMT
Content-Type: application/javascript
Content-Length: 2938
Last-Modified: Thu, 10 Mar 2022 17:45:42 GMT
Connection: keep-alive
ETag: "622a3946-b7a"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Accept-Ranges: bytes
gruporosmar.com.mx/wp-includes/js/jquery/ui/core.min.js?ver=1.12.1
52.87.157.254200 OK 21 kB URL HTTP/1.1 gruporosmar.com.mx/wp-includes/js/jquery/ui/core.min.js?ver=1.12.1
IP 52.87.157.254:0
File type ASCII text, with very long lines (7973)
Hash 49fa677b9cd7ddf221dc06537b35e10f
7485f3f99c3c1a57197f2b099f3f8d68b8609d06
0cd851e5b33af0fbb354df65506da39807b998e07723f3d08aba5179fa2ed97e
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/ui/core.min.js?ver=1.12.1 HTTP/1.1
Host: gruporosmar.com.mx
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gruporosmar.com.mx/servicio-integral-desinfeccion-total-amex/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.14.0 (Ubuntu)
Date: Mon, 30 Jan 2023 02:53:23 GMT
Content-Type: application/javascript
Content-Length: 20787
Last-Modified: Thu, 18 Mar 2021 17:48:23 GMT
Connection: keep-alive
ETag: "60539267-5133"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Accept-Ranges: bytes
gruporosmar.com.mx/wp-includes/js/jquery/ui/mouse.min.js?ver=1.12.1
52.87.157.254200 OK 3.4 kB URL HTTP/1.1 gruporosmar.com.mx/wp-includes/js/jquery/ui/mouse.min.js?ver=1.12.1
IP 52.87.157.254:0
File type ASCII text, with very long lines (3202)
Hash f5fec54ae43bea19a01d7479cdd6d0ee
3abf306a1352402f2b0fae989eb3211c4af0bede
93ffe8a780b4034c7b14ac0d57d752368b53eafc734d906c8cdf3d3642a9eb36
GET /wp-includes/js/jquery/ui/mouse.min.js?ver=1.12.1 HTTP/1.1
Host: gruporosmar.com.mx
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gruporosmar.com.mx/servicio-integral-desinfeccion-total-amex/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.14.0 (Ubuntu)
Date: Mon, 30 Jan 2023 02:53:23 GMT
Content-Type: application/javascript
Content-Length: 3380
Last-Modified: Wed, 06 Jan 2021 15:29:24 GMT
Connection: keep-alive
ETag: "5ff5d754-d34"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Accept-Ranges: bytes
gruporosmar.com.mx/wp-includes/js/jquery/ui/slider.min.js?ver=1.12.1
52.87.157.254200 OK 11 kB URL HTTP/1.1 gruporosmar.com.mx/wp-includes/js/jquery/ui/slider.min.js?ver=1.12.1
IP 52.87.157.254:0
File type ASCII text, with very long lines (10533)
Hash 4ac1bae73b8905dac93a072f7d569e40
752d5dd0c6a4eec6dc8a3630820b48620923716a
97c8f279229e1db1fc340de3c4fbf154ee841b0d7015ed146f4bc9ea100906bd
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/ui/slider.min.js?ver=1.12.1 HTTP/1.1
Host: gruporosmar.com.mx
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gruporosmar.com.mx/servicio-integral-desinfeccion-total-amex/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.14.0 (Ubuntu)
Date: Mon, 30 Jan 2023 02:53:23 GMT
Content-Type: application/javascript
Content-Length: 10712
Last-Modified: Tue, 08 Jun 2021 17:15:15 GMT
Connection: keep-alive
ETag: "60bfa5a3-29d8"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Accept-Ranges: bytes
gruporosmar.com.mx/wp-content/uploads/theplus-addons/theplus-post-9163.min.js?ver=1660850848
52.87.157.254200 OK 674 B URL HTTP/1.1 gruporosmar.com.mx/wp-content/uploads/theplus-addons/theplus-post-9163.min.js?ver=1660850848
IP 52.87.157.254:0
File type ASCII text, with very long lines (674), with no line terminators
Hash 1731860341faf232f5124e4afd1f3fc1
3148e6e8b652f22959ba1368edaee13c1c1e72b9
b8538fde3306673cfac9ad0015dfc28aaab2623cb23e734c75e435e3cdf47fd4
GET /wp-content/uploads/theplus-addons/theplus-post-9163.min.js?ver=1660850848 HTTP/1.1
Host: gruporosmar.com.mx
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gruporosmar.com.mx/servicio-integral-desinfeccion-total-amex/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.14.0 (Ubuntu)
Date: Mon, 30 Jan 2023 02:53:23 GMT
Content-Type: application/javascript
Content-Length: 674
Last-Modified: Sat, 28 Jan 2023 08:14:58 GMT
Connection: keep-alive
ETag: "63d4d982-2a2"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Accept-Ranges: bytes
gruporosmar.com.mx/wp-includes/js/jquery/ui/draggable.min.js?ver=1.12.1
52.87.157.254200 OK 18 kB URL HTTP/1.1 gruporosmar.com.mx/wp-includes/js/jquery/ui/draggable.min.js?ver=1.12.1
IP 52.87.157.254:0
File type ASCII text, with very long lines (18109)
Hash dc4a96afb25c4fe7d2d0892ff3487025
2f73f2d3bce92803dade2a79bfd83f27a842ec96
f1bf653303feda96bea1c7a80569602afbadf257a8f7d8a3cd320c82acb34b8e
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/ui/draggable.min.js?ver=1.12.1 HTTP/1.1
Host: gruporosmar.com.mx
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gruporosmar.com.mx/servicio-integral-desinfeccion-total-amex/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.14.0 (Ubuntu)
Date: Mon, 30 Jan 2023 02:53:23 GMT
Content-Type: application/javascript
Content-Length: 18291
Last-Modified: Wed, 20 Jan 2021 13:35:18 GMT
Connection: keep-alive
ETag: "60083196-4773"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Accept-Ranges: bytes
gruporosmar.com.mx/wp-includes/js/jquery/jquery.ui.touch-punch.js?ver=0.2.2
52.87.157.254200 OK 1.2 kB URL HTTP/1.1 gruporosmar.com.mx/wp-includes/js/jquery/jquery.ui.touch-punch.js?ver=0.2.2
IP 52.87.157.254:0
File type ASCII text, with very long lines (985)
Hash 4cc86d1003c45134d6838f13e3885db1
7e24d802fa52db547e437a5d92f21932bb858993
196bed4faf0fe38b89a496b1f41319b2a8077263f85819f8ad42933e0a2e2e52
GET /wp-includes/js/jquery/jquery.ui.touch-punch.js?ver=0.2.2 HTTP/1.1
Host: gruporosmar.com.mx
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gruporosmar.com.mx/servicio-integral-desinfeccion-total-amex/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.14.0 (Ubuntu)
Date: Mon, 30 Jan 2023 02:53:23 GMT
Content-Type: application/javascript
Content-Length: 1179
Last-Modified: Wed, 11 Apr 2012 02:58:23 GMT
Connection: keep-alive
ETag: "4f84f34f-49b"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Accept-Ranges: bytes
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash db3290a85d0ba4da27406ae9636aa618
4c69da45eddd66a1e26fce5562fc45eda7005309
19db4d0cc84bff9586883a5fa69c426af0b5fc1c2760ee7c259b0307c8afa6b2
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 02:53:23 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
rosmarusa.kglabs.net/wp-content/uploads/2021/07/bigstock-People-Disinfecting-Hands-With-355919132-small-scaled.jpeg
172.67.177.69301 Moved Permanently 0 B URL HTTP/1.1 rosmarusa.kglabs.net/wp-content/uploads/2021/07/bigstock-People-Disinfecting-Hands-With-355919132-small-scaled.jpeg
IP 172.67.177.69:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /wp-content/uploads/2021/07/bigstock-People-Disinfecting-Hands-With-355919132-small-scaled.jpeg HTTP/1.1
Host: rosmarusa.kglabs.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 301 Moved Permanently
Date: Mon, 30 Jan 2023 02:53:23 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=3600
Expires: Mon, 30 Jan 2023 03:53:23 GMT
Location: https://rosmarusa.kglabs.net/wp-content/uploads/2021/07/bigstock-People-Disinfecting-Hands-With-355919132-small-scaled.jpeg
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=MBFq7mqP2t3zM2k6p9IudmvnKctbznsRvmDcZoD%2BNzCIAR%2Bvgrq33%2FfgdNJo%2Fv0K13z3znNKzrSrGqlAf3AD6nDKcmQZWrnxI0k50owpJ4P%2FKOA1ghkC1G42sa%2BWRboZr6yreh4XFg%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7916eac0efccb50c-OSL
alt-svc: h2=":443"; ma=60
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash db3290a85d0ba4da27406ae9636aa618
4c69da45eddd66a1e26fce5562fc45eda7005309
19db4d0cc84bff9586883a5fa69c426af0b5fc1c2760ee7c259b0307c8afa6b2
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 02:53:23 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash db3290a85d0ba4da27406ae9636aa618
4c69da45eddd66a1e26fce5562fc45eda7005309
19db4d0cc84bff9586883a5fa69c426af0b5fc1c2760ee7c259b0307c8afa6b2
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 02:53:24 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/rubik/v23/iJWKBXyIfDnIV7nBrXw.woff2
216.58.207.227200 OK 34 kB URL HTTP/2 fonts.gstatic.com/s/rubik/v23/iJWKBXyIfDnIV7nBrXw.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 34112, version 1.0\012- data
Hash c21e7acd53a6d80fa451f1af92d9a492
4096e12b96fa2549e4f169044a49b6ec60214008
6a0d96c353719068401ebbedf7f58e3be1232756327243922b6ab9690a3591bd
GET /s/rubik/v23/iJWKBXyIfDnIV7nBrXw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://gruporosmar.com.mx
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 34112
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 26 Jan 2023 00:13:07 GMT
expires: Fri, 26 Jan 2024 00:13:07 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 07 Dec 2022 18:11:50 GMT
content-type: font/woff2
age: 355217
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
216.58.207.227200 OK 45 kB URL HTTP/2 fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 44856, version 1.0\012- data
Hash 565ce506190ad3af920b40baf1794cec
ad3cba5d06100e09449a864d3b5e58403b478b3d
8778e9af2422858d7052ff9a0f3c12c08ae976bdd6e0316db144cd5579cd97db
GET /s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://gruporosmar.com.mx
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 44856
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 23 Jan 2023 18:52:41 GMT
expires: Tue, 23 Jan 2024 18:52:41 GMT
cache-control: public, max-age=31536000
age: 547243
last-modified: Mon, 15 Aug 2022 18:20:18 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/rubik/v23/iJWEBXyIfDnIV7nEnX661A.woff2
216.58.207.227200 OK 35 kB URL HTTP/2 fonts.gstatic.com/s/rubik/v23/iJWEBXyIfDnIV7nEnX661A.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 34700, version 1.0\012- data
Hash da9951c50d7ecfc6776ef499fa8fe877
f059522d5f9f3761029a82e79eeb7cca41b69301
2d59f1d5d598489dab3f6a322c2074409e3e669962b101d7c0580c3ce747f3de
GET /s/rubik/v23/iJWEBXyIfDnIV7nEnX661A.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://gruporosmar.com.mx
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 34700
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 27 Jan 2023 02:06:03 GMT
expires: Sat, 27 Jan 2024 02:06:03 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 07 Dec 2022 18:42:14 GMT
content-type: font/woff2
age: 262041
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
gruporosmar.com.mx/wp-includes/js/wp-embed.min.js?ver=5.8.3
52.87.157.254200 OK 1.4 kB URL HTTP/1.1 gruporosmar.com.mx/wp-includes/js/wp-embed.min.js?ver=5.8.3
IP 52.87.157.254:0
File type ASCII text, with very long lines (1391)
Hash 905225d5711b559d3092387d5ffbedbd
6f6c39075263bafb9e8c10f1b34a1a0f7ee03c9d
5be614bce53f767993a5f5f14a6badd6aae6bf3af7cbdbf4d31520de49e27991
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/wp-embed.min.js?ver=5.8.3 HTTP/1.1
Host: gruporosmar.com.mx
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gruporosmar.com.mx/servicio-integral-desinfeccion-total-amex/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.14.0 (Ubuntu)
Date: Mon, 30 Jan 2023 02:53:23 GMT
Content-Type: application/javascript
Content-Length: 1426
Last-Modified: Wed, 06 Jan 2021 15:29:24 GMT
Connection: keep-alive
ETag: "5ff5d754-592"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Accept-Ranges: bytes
gruporosmar.com.mx/wp-content/plugins/elementor-pro/assets/lib/smartmenus/jquery.smartmenus.min.js?ver=1.0.1
52.87.157.254200 OK 25 kB URL HTTP/1.1 gruporosmar.com.mx/wp-content/plugins/elementor-pro/assets/lib/smartmenus/jquery.smartmenus.min.js?ver=1.0.1
IP 52.87.157.254:0
File type ASCII text, with very long lines (25115)
Hash 046405de007ff73e52d17dab2af75258
887cfb8a9de27005875f6e1c1d1ead43bd0865c8
533e264cc615ee4601da8d2c1dee4a8987319e53d4d7162272f067fbbf250020
GET /wp-content/plugins/elementor-pro/assets/lib/smartmenus/jquery.smartmenus.min.js?ver=1.0.1 HTTP/1.1
Host: gruporosmar.com.mx
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gruporosmar.com.mx/servicio-integral-desinfeccion-total-amex/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.14.0 (Ubuntu)
Date: Mon, 30 Jan 2023 02:53:23 GMT
Content-Type: application/javascript
Content-Length: 25202
Last-Modified: Mon, 24 Jan 2022 10:22:59 GMT
Connection: keep-alive
ETag: "61ee7e03-6272"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Accept-Ranges: bytes
gruporosmar.com.mx/wp-content/plugins/elementor/assets/lib/e-gallery/js/e-gallery.min.js?ver=1.2.0
52.87.157.254200 OK 15 kB URL HTTP/1.1 gruporosmar.com.mx/wp-content/plugins/elementor/assets/lib/e-gallery/js/e-gallery.min.js?ver=1.2.0
IP 52.87.157.254:0
File type ASCII text, with very long lines (15310)
Hash a095cc82c2505b373ea5186ebe36ff76
31cd1d49c8c1a67f149483b2f2800b2344e6a9a7
1552db8e5af899961c91e11575ede5c16f8b2cb65aaafd877a02845670e55e1e
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/lib/e-gallery/js/e-gallery.min.js?ver=1.2.0 HTTP/1.1
Host: gruporosmar.com.mx
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gruporosmar.com.mx/servicio-integral-desinfeccion-total-amex/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.14.0 (Ubuntu)
Date: Mon, 30 Jan 2023 02:53:24 GMT
Content-Type: application/javascript
Content-Length: 15347
Last-Modified: Mon, 24 Jan 2022 10:19:19 GMT
Connection: keep-alive
ETag: "61ee7d27-3bf3"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Accept-Ranges: bytes
gruporosmar.com.mx/wp-content/plugins/elementor-pro/assets/js/webpack-pro.runtime.min.js?ver=3.5.2
52.87.157.254200 OK 5.0 kB URL HTTP/1.1 gruporosmar.com.mx/wp-content/plugins/elementor-pro/assets/js/webpack-pro.runtime.min.js?ver=3.5.2
IP 52.87.157.254:0
File type ASCII text, with very long lines (4922)
Hash 4b89c63b3a608532f302ce183c639590
5a1c40f1df407ebdab2f7ea0767e791fab771508
fe0b038edbeff4a8cdb38484012d640f9eb1bbe50df495cc38850ee9ff2cdb19
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor-pro/assets/js/webpack-pro.runtime.min.js?ver=3.5.2 HTTP/1.1
Host: gruporosmar.com.mx
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gruporosmar.com.mx/servicio-integral-desinfeccion-total-amex/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.14.0 (Ubuntu)
Date: Mon, 30 Jan 2023 02:53:24 GMT
Content-Type: application/javascript
Content-Length: 4965
Last-Modified: Mon, 24 Jan 2022 10:22:59 GMT
Connection: keep-alive
ETag: "61ee7e03-1365"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Accept-Ranges: bytes
gruporosmar.com.mx/wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.5.4
52.87.157.254200 OK 4.9 kB URL HTTP/1.1 gruporosmar.com.mx/wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.5.4
IP 52.87.157.254:0
File type ASCII text, with very long lines (4866)
Hash 4681157e14fd7f6cb3e272ee3159a937
e3b7c34dace4100f12918c5ab39a5c7b8f2635eb
9ba944e835b122f70dcf015cd40925ec29f0029a2bf8e4d3b8f04d543e6cca8d
GET /wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.5.4 HTTP/1.1
Host: gruporosmar.com.mx
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gruporosmar.com.mx/servicio-integral-desinfeccion-total-amex/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.14.0 (Ubuntu)
Date: Mon, 30 Jan 2023 02:53:24 GMT
Content-Type: application/javascript
Content-Length: 4905
Last-Modified: Mon, 24 Jan 2022 10:19:18 GMT
Connection: keep-alive
ETag: "61ee7d26-1329"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Accept-Ranges: bytes
gruporosmar.com.mx/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.5.4
52.87.157.254200 OK 14 kB URL HTTP/1.1 gruporosmar.com.mx/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.5.4
IP 52.87.157.254:0
File type ASCII text, with very long lines (14196)
Hash ab2174607197e6a0f98c5a04d2ebe213
963197645f9bc2a8865ac247ad58fe227bbedf71
c963799958f6596baa8de220fc30fdf661519664fd3428bdd92da76c4be2bb55
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.5.4 HTTP/1.1
Host: gruporosmar.com.mx
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gruporosmar.com.mx/servicio-integral-desinfeccion-total-amex/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.14.0 (Ubuntu)
Date: Mon, 30 Jan 2023 02:53:24 GMT
Content-Type: application/javascript
Content-Length: 14235
Last-Modified: Mon, 24 Jan 2022 10:19:19 GMT
Connection: keep-alive
ETag: "61ee7d27-379b"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Accept-Ranges: bytes
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash db3290a85d0ba4da27406ae9636aa618
4c69da45eddd66a1e26fce5562fc45eda7005309
19db4d0cc84bff9586883a5fa69c426af0b5fc1c2760ee7c259b0307c8afa6b2
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 02:53:24 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
gruporosmar.com.mx/wp-content/plugins/elementor-pro/assets/js/frontend.min.js?ver=3.5.2
52.87.157.254200 OK 20 kB URL HTTP/1.1 gruporosmar.com.mx/wp-content/plugins/elementor-pro/assets/js/frontend.min.js?ver=3.5.2
IP 52.87.157.254:0
File type ASCII text, with very long lines (20250)
Hash 6dd98ee5258bff321dbfd4b96a42df74
ccd467b173c920800cf87bf8ae190488bb29ed2c
ce0ed4310e1bd403aa701f5461db2cecf2f414ad8334893234ff2d106fb0a5e7
GET /wp-content/plugins/elementor-pro/assets/js/frontend.min.js?ver=3.5.2 HTTP/1.1
Host: gruporosmar.com.mx
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gruporosmar.com.mx/servicio-integral-desinfeccion-total-amex/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.14.0 (Ubuntu)
Date: Mon, 30 Jan 2023 02:53:24 GMT
Content-Type: application/javascript
Content-Length: 20293
Last-Modified: Mon, 24 Jan 2022 10:22:59 GMT
Connection: keep-alive
ETag: "61ee7e03-4f45"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Accept-Ranges: bytes
gruporosmar.com.mx/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2
52.87.157.254200 OK 12 kB URL HTTP/1.1 gruporosmar.com.mx/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2
IP 52.87.157.254:0
File type ASCII text, with very long lines (12198), with no line terminators
Hash 3819c3569da71daec283a75483735f7e
ecd40a5cc6f0b76200c454ca880210dc301cfab8
214674cc77aba35ab3567b88e2739fd08e8e96c61d279559ad61874069683ea0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2 HTTP/1.1
Host: gruporosmar.com.mx
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gruporosmar.com.mx/servicio-integral-desinfeccion-total-amex/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.14.0 (Ubuntu)
Date: Mon, 30 Jan 2023 02:53:24 GMT
Content-Type: application/javascript
Content-Length: 12198
Last-Modified: Mon, 24 Jan 2022 10:19:19 GMT
Connection: keep-alive
ETag: "61ee7d27-2fa6"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Accept-Ranges: bytes
gruporosmar.com.mx/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.5.4
52.87.157.254200 OK 37 kB URL HTTP/1.1 gruporosmar.com.mx/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.5.4
IP 52.87.157.254:0
File type ASCII text, with very long lines (36850)
Hash 1a64ef9cea84cf08310e2689ed114cd4
f3b3ee91b7336dc7de24590df23c026f9a7d1198
75754376128a8873b22a74f74108596b8f028a0f92b187437c14211b6d469aed
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.5.4 HTTP/1.1
Host: gruporosmar.com.mx
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gruporosmar.com.mx/servicio-integral-desinfeccion-total-amex/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.14.0 (Ubuntu)
Date: Mon, 30 Jan 2023 02:53:24 GMT
Content-Type: application/javascript
Content-Length: 36889
Last-Modified: Mon, 24 Jan 2022 10:19:18 GMT
Connection: keep-alive
ETag: "61ee7d26-9019"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Accept-Ranges: bytes
gruporosmar.com.mx/wp-content/plugins/elementor-pro/assets/js/elements-handlers.min.js?ver=3.5.2
52.87.157.254200 OK 24 kB URL HTTP/1.1 gruporosmar.com.mx/wp-content/plugins/elementor-pro/assets/js/elements-handlers.min.js?ver=3.5.2
IP 52.87.157.254:0
File type ASCII text, with very long lines (24241)
Hash de04a91e544f7aa2e37e2ea2a5c7163a
0926aa7f7f212a4efa051211bb9eeae5173cf0d1
2d990e6c3d103a96bb92f0d6e827e07b56bb3ef7c143ed05eb936d4a0abfe00d
GET /wp-content/plugins/elementor-pro/assets/js/elements-handlers.min.js?ver=3.5.2 HTTP/1.1
Host: gruporosmar.com.mx
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gruporosmar.com.mx/servicio-integral-desinfeccion-total-amex/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.14.0 (Ubuntu)
Date: Mon, 30 Jan 2023 02:53:24 GMT
Content-Type: application/javascript
Content-Length: 24284
Last-Modified: Mon, 24 Jan 2022 10:22:59 GMT
Connection: keep-alive
ETag: "61ee7e03-5edc"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Accept-Ranges: bytes
gruporosmar.com.mx/wp-content/plugins/theplus_elementor_addon/assets/js/main/event-tracker/plus-event-tracker.min.js?ver=5.8.3
52.87.157.254200 OK 2.7 kB URL HTTP/1.1 gruporosmar.com.mx/wp-content/plugins/theplus_elementor_addon/assets/js/main/event-tracker/plus-event-tracker.min.js?ver=5.8.3
IP 52.87.157.254:0
File type ASCII text, with very long lines (2706), with no line terminators
Hash a597e26ce44328256038590a7d34ac79
651fdfc880e171ae7ed2219b0c7581ae884126c3
25345ad27f4f72848c9988a605e5a70fa98a7cfe5b34031708dd610f41fdcaeb
GET /wp-content/plugins/theplus_elementor_addon/assets/js/main/event-tracker/plus-event-tracker.min.js?ver=5.8.3 HTTP/1.1
Host: gruporosmar.com.mx
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gruporosmar.com.mx/servicio-integral-desinfeccion-total-amex/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.14.0 (Ubuntu)
Date: Mon, 30 Jan 2023 02:53:24 GMT
Content-Type: application/javascript
Content-Length: 2706
Last-Modified: Mon, 24 Jan 2022 10:23:12 GMT
Connection: keep-alive
ETag: "61ee7e10-a92"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Accept-Ranges: bytes
gruporosmar.com.mx/wp-content/plugins/theplus_elementor_addon/assets/js/main/section-column-link/plus-section-column-link.min.js?ver=5.8.3
52.87.157.254200 OK 473 B URL HTTP/1.1 gruporosmar.com.mx/wp-content/plugins/theplus_elementor_addon/assets/js/main/section-column-link/plus-section-column-link.min.js?ver=5.8.3
IP 52.87.157.254:0
File type HTML document, ASCII text, with very long lines (473), with no line terminators
Hash 0fd6b8f82e2e09df0c72594344ff21e9
d329cdf6fbea0f0b8b02459efc587d7d4e841c14
62c68bc8fc746c27e47cb9edc77eebdc70e6df9a0724e7baab0bb516740ba7c1
GET /wp-content/plugins/theplus_elementor_addon/assets/js/main/section-column-link/plus-section-column-link.min.js?ver=5.8.3 HTTP/1.1
Host: gruporosmar.com.mx
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gruporosmar.com.mx/servicio-integral-desinfeccion-total-amex/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.14.0 (Ubuntu)
Date: Mon, 30 Jan 2023 02:53:24 GMT
Content-Type: application/javascript
Content-Length: 473
Last-Modified: Mon, 24 Jan 2022 10:23:12 GMT
Connection: keep-alive
ETag: "61ee7e10-1d9"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Accept-Ranges: bytes
gruporosmar.com.mx/wp-includes/js/wp-emoji-release.min.js?ver=5.8.3
52.87.157.254200 OK 18 kB URL HTTP/1.1 gruporosmar.com.mx/wp-includes/js/wp-emoji-release.min.js?ver=5.8.3
IP 52.87.157.254:0
File type ASCII text, with very long lines (15224)
Hash 116c86c56f8db0bb63f15ceda50fdc98
75e308982ecf7cd43644b8b426e6aa1a0b0fbe26
def5de6254be138b8b35d680d1fdd8b07827d03b8626daebfeeb4157ec330ea7
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/wp-emoji-release.min.js?ver=5.8.3 HTTP/1.1
Host: gruporosmar.com.mx
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gruporosmar.com.mx/servicio-integral-desinfeccion-total-amex/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.14.0 (Ubuntu)
Date: Mon, 30 Jan 2023 02:53:24 GMT
Content-Type: application/javascript
Content-Length: 18181
Last-Modified: Tue, 08 Jun 2021 22:15:12 GMT
Connection: keep-alive
ETag: "60bfebf0-4705"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Accept-Ranges: bytes
gruporosmar.com.mx/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-regular-400.woff2
52.87.157.254200 OK 13 kB URL HTTP/1.1 gruporosmar.com.mx/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-regular-400.woff2
IP 52.87.157.254:0
File type Web Open Font Format (Version 2), TrueType, length 13276, version 331.-31261\012- data
Hash f0f8230116992e521526097a28f54066
0447c6b10bbf73f97b23dcfd6e6a48510822cb6e
8afc6e5e842baab16010c2ce6fcf48ec4ded8e1579a37c1f1bc027e120d04951
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-regular-400.woff2 HTTP/1.1
Host: gruporosmar.com.mx
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://gruporosmar.com.mx/wp-content/plugins/elementor/assets/lib/font-awesome/css/regular.min.css?ver=5.15.3
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.14.0 (Ubuntu)
Date: Mon, 30 Jan 2023 02:53:24 GMT
Content-Type: application/octet-stream
Content-Length: 13276
Last-Modified: Mon, 24 Jan 2022 10:19:19 GMT
Connection: keep-alive
ETag: "61ee7d27-33dc"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Accept-Ranges: bytes
gruporosmar.com.mx/wp-content/plugins/woocommerce/assets/css/woocommerce-smallscreen.css?ver=6.1.2
52.87.157.254200 OK 1.2 kB URL HTTP/1.1 gruporosmar.com.mx/wp-content/plugins/woocommerce/assets/css/woocommerce-smallscreen.css?ver=6.1.2
IP 52.87.157.254:0
File type ASCII text, with very long lines (7043), with no line terminators
Hash 7a01d757cd8aced5af866e83a6d0ce76
f352b0e25c2a3ca7af84f93c9bc1fd700db3586f
da5327f259e09fafac875160fbcd3fe934f48359e751e42b802f5577310b014c
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/woocommerce/assets/css/woocommerce-smallscreen.css?ver=6.1.2 HTTP/1.1
Host: gruporosmar.com.mx
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gruporosmar.com.mx/servicio-integral-desinfeccion-total-amex/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.14.0 (Ubuntu)
Date: Mon, 30 Jan 2023 02:53:24 GMT
Content-Type: text/css
Last-Modified: Thu, 10 Mar 2022 17:45:42 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"622a3946-1b83"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Content-Encoding: gzip
gruporosmar.com.mx/wp-content/uploads/2021/07/LOGO-GRUPO-ROSMAR-2011-fondo-transparente-2-300x98.png
52.87.157.254200 OK 12 kB URL HTTP/1.1 gruporosmar.com.mx/wp-content/uploads/2021/07/LOGO-GRUPO-ROSMAR-2011-fondo-transparente-2-300x98.png
IP 52.87.157.254:0
File type PNG image data, 300 x 98, 8-bit/color RGBA, non-interlaced\012- data
Hash f8dbc7064b012c63593272cbf2549150
7f4b22512a194b8344aca222c1badf76d3ec4004
c0e11eb5adb159e707399b601251a4a4d34a894644db826a3e908b3b5173989f
GET /wp-content/uploads/2021/07/LOGO-GRUPO-ROSMAR-2011-fondo-transparente-2-300x98.png HTTP/1.1
Host: gruporosmar.com.mx
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gruporosmar.com.mx/servicio-integral-desinfeccion-total-amex/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.14.0 (Ubuntu)
Date: Mon, 30 Jan 2023 02:53:24 GMT
Content-Type: image/png
Content-Length: 11560
Last-Modified: Fri, 16 Jul 2021 18:01:53 GMT
Connection: keep-alive
ETag: "60f1c991-2d28"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Accept-Ranges: bytes
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash e754935b7ed58519f7b36f81825929d2
96463974e9b68f08d2b2ce879b234647768acee4
0814edd00e85c72f676335858bbcdd2e2dcaaa7d17460a7212e90391c099b1fe
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0814EDD00E85C72F676335858BBCDD2E2DCAAA7D17460A7212E90391C099B1FE"
Last-Modified: Sun, 29 Jan 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10245
Expires: Mon, 30 Jan 2023 05:44:09 GMT
Date: Mon, 30 Jan 2023 02:53:24 GMT
Connection: keep-alive
gruporosmar.com.mx/wp-content/uploads/2022/01/rosmar-professional-products-300x122.png
52.87.157.254200 OK 20 kB URL HTTP/1.1 gruporosmar.com.mx/wp-content/uploads/2022/01/rosmar-professional-products-300x122.png
IP 52.87.157.254:0
File type PNG image data, 300 x 122, 8-bit/color RGBA, non-interlaced\012- data
Hash f9f080308551aad5e7d78d6ec7a8b208
ced75d97966a3f337e454ef2ef1ee15df0263806
bcb70278c627b1685eb9181beedd6f627ec1ef7b4d1acb8116899f8eb1c5ced6
GET /wp-content/uploads/2022/01/rosmar-professional-products-300x122.png HTTP/1.1
Host: gruporosmar.com.mx
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gruporosmar.com.mx/servicio-integral-desinfeccion-total-amex/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.14.0 (Ubuntu)
Date: Mon, 30 Jan 2023 02:53:24 GMT
Content-Type: image/png
Content-Length: 20220
Last-Modified: Tue, 18 Jan 2022 02:20:54 GMT
Connection: keep-alive
ETag: "61e62406-4efc"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Accept-Ranges: bytes
gruporosmar.com.mx/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-solid-900.woff2
52.87.157.254200 OK 78 kB URL HTTP/1.1 gruporosmar.com.mx/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-solid-900.woff2
IP 52.87.157.254:0
File type Web Open Font Format (Version 2), TrueType, length 78196, version 331.-31261\012- data
Hash e8a427e15cc502bef99cfd722b37ea98
a9922842a120a7f1eaced667480c5e185a106d69
d0b4256abed72481585662971262eabee345c19f837af00d7ce24239d3b40eef
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-solid-900.woff2 HTTP/1.1
Host: gruporosmar.com.mx
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://gruporosmar.com.mx/wp-content/plugins/elementor/assets/lib/font-awesome/css/solid.min.css?ver=5.15.3
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.14.0 (Ubuntu)
Date: Mon, 30 Jan 2023 02:53:24 GMT
Content-Type: application/octet-stream
Content-Length: 78196
Last-Modified: Mon, 24 Jan 2022 10:19:19 GMT
Connection: keep-alive
ETag: "61ee7d27-13174"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Accept-Ranges: bytes
gruporosmar.com.mx/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-brands-400.woff2
52.87.157.254200 OK 77 kB URL HTTP/1.1 gruporosmar.com.mx/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-brands-400.woff2
IP 52.87.157.254:0
File type Web Open Font Format (Version 2), TrueType, length 76764, version 331.-31261\012- data
Hash f7307680c7fe85959f3ecf122493ea7d
fce0da592a3e536d6d5df5b50cb513398d8c5161
43c072c16c9ee6d67acdfa6c6d6685ff1e74eb4237b7cc3c1348ab1c108b26af
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-brands-400.woff2 HTTP/1.1
Host: gruporosmar.com.mx
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://gruporosmar.com.mx/wp-content/plugins/elementor/assets/lib/font-awesome/css/brands.min.css?ver=5.15.3
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.14.0 (Ubuntu)
Date: Mon, 30 Jan 2023 02:53:24 GMT
Content-Type: application/octet-stream
Content-Length: 76764
Last-Modified: Mon, 24 Jan 2022 10:19:19 GMT
Connection: keep-alive
ETag: "61ee7d27-12bdc"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Accept-Ranges: bytes
gruporosmar.com.mx/wp-content/uploads/2021/12/ROSMAR-1-.jpg
52.87.157.254200 OK 25 kB URL HTTP/1.1 gruporosmar.com.mx/wp-content/uploads/2021/12/ROSMAR-1-.jpg
IP 52.87.157.254:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 569x284, components 3\012- data
Hash d170e3c39287baee9a48c1e1db9ebb7b
b1009c23d75ed9d06a44cb222685f0f98eae7a16
be27511300ceacaed20eafe564311bcd134bbcf16f035e29bc8f197f0dbe3c26
GET /wp-content/uploads/2021/12/ROSMAR-1-.jpg HTTP/1.1
Host: gruporosmar.com.mx
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gruporosmar.com.mx/servicio-integral-desinfeccion-total-amex/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.14.0 (Ubuntu)
Date: Mon, 30 Jan 2023 02:53:24 GMT
Content-Type: image/jpeg
Content-Length: 24617
Last-Modified: Wed, 08 Dec 2021 00:00:57 GMT
Connection: keep-alive
ETag: "61aff5b9-6029"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Accept-Ranges: bytes
gruporosmar.com.mx/wp-content/plugins/elementor-pro/assets/js/nav-menu.fd64b77e7258ee4c6205.bundle.min.js
52.87.157.254200 OK 3.2 kB URL HTTP/1.1 gruporosmar.com.mx/wp-content/plugins/elementor-pro/assets/js/nav-menu.fd64b77e7258ee4c6205.bundle.min.js
IP 52.87.157.254:0
File type ASCII text, with very long lines (3201)
Hash 5ee9b17e39a7260d8e3e3bad13dd44f4
a01eea20dedcb0e82bc0f53bedd52ab6756a5188
aafdabe0cb6710666d2b98c81f83484401c21222ee5cc13e099734a38ad0d79f
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor-pro/assets/js/nav-menu.fd64b77e7258ee4c6205.bundle.min.js HTTP/1.1
Host: gruporosmar.com.mx
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gruporosmar.com.mx/servicio-integral-desinfeccion-total-amex/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.14.0 (Ubuntu)
Date: Mon, 30 Jan 2023 02:53:24 GMT
Content-Type: application/javascript
Content-Length: 3244
Last-Modified: Mon, 24 Jan 2022 10:22:59 GMT
Connection: keep-alive
ETag: "61ee7e03-cac"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Accept-Ranges: bytes
gruporosmar.com.mx/wp-content/plugins/elementor/assets/js/lightbox.23e39ac2830dfb4ca6a7.bundle.min.js
52.87.157.254200 OK 29 kB URL HTTP/1.1 gruporosmar.com.mx/wp-content/plugins/elementor/assets/js/lightbox.23e39ac2830dfb4ca6a7.bundle.min.js
IP 52.87.157.254:0
File type ASCII text, with very long lines (29180)
Hash 30172970437eff5194e9724576ba7385
3c9d8b5f7c3a90976b300c682c1eb7d0d9c673b7
de09061497eff3f7c61d085fe517b1e8a4172039660847fd54e99e4daa34ef5a
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/js/lightbox.23e39ac2830dfb4ca6a7.bundle.min.js HTTP/1.1
Host: gruporosmar.com.mx
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gruporosmar.com.mx/servicio-integral-desinfeccion-total-amex/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.14.0 (Ubuntu)
Date: Mon, 30 Jan 2023 02:53:24 GMT
Content-Type: application/javascript
Content-Length: 29219
Last-Modified: Mon, 24 Jan 2022 10:19:19 GMT
Connection: keep-alive
ETag: "61ee7d27-7223"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Accept-Ranges: bytes
gruporosmar.com.mx/wp-content/plugins/elementor/assets/js/text-editor.289ae80d76f0c5abea44.bundle.min.js
52.87.157.254200 OK 1.4 kB URL HTTP/1.1 gruporosmar.com.mx/wp-content/plugins/elementor/assets/js/text-editor.289ae80d76f0c5abea44.bundle.min.js
IP 52.87.157.254:0
File type ASCII text, with very long lines (1316)
Hash 7ac62df7a99adebbefa570e63bc02927
60ddb24bb51d22d88eae1f3b4b34c47c0d1b8259
2cac931b3ab55a2abba862787ef55e78d628c87a940df1f1bb39293eaaa0d78f
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/js/text-editor.289ae80d76f0c5abea44.bundle.min.js HTTP/1.1
Host: gruporosmar.com.mx
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gruporosmar.com.mx/servicio-integral-desinfeccion-total-amex/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.14.0 (Ubuntu)
Date: Mon, 30 Jan 2023 02:53:24 GMT
Content-Type: application/javascript
Content-Length: 1355
Last-Modified: Mon, 24 Jan 2022 10:19:18 GMT
Connection: keep-alive
ETag: "61ee7d26-54b"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Accept-Ranges: bytes
ocsp.sectigo.com/
104.18.32.68200 OK 471 B IP 104.18.32.68:0
Hash c6d2fd5c3938e04beb0aa27f4f833dad
d8d14d70b379dec10cde19a032aa9834b69455f7
99b0b525481eacf7218e7bbc0e46cc8575c7c80d82766e77352460f4d17e0cd4
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 02:53:24 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Sat, 28 Jan 2023 19:12:52 GMT
Expires: Sat, 04 Feb 2023 19:12:51 GMT
Etag: "d8d14d70b379dec10cde19a032aa9834b69455f7"
Cache-Control: max-age=490166,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7916eac28d99fab8-OSL
gruporosmar.com.mx/wp-content/uploads/2022/01/Captura-de-Pantalla-2021-11-01-a-las-17.48.30-1024x527-1-235x300.png
52.87.157.254200 OK 106 kB URL HTTP/1.1 gruporosmar.com.mx/wp-content/uploads/2022/01/Captura-de-Pantalla-2021-11-01-a-las-17.48.30-1024x527-1-235x300.png
IP 52.87.157.254:0
File type PNG image data, 235 x 300, 8-bit/color RGBA, non-interlaced\012- data
Size 106 kB (105732 bytes)
Hash 52260a3e81d503634d1f7a71ccba6155
926d1473431988dd1c0a0c7fc30c83595b642ab8
02f899772ed7ecbea4ed9d54132fd29fd5c1b8935d998b08af555ad1f303e774
GET /wp-content/uploads/2022/01/Captura-de-Pantalla-2021-11-01-a-las-17.48.30-1024x527-1-235x300.png HTTP/1.1
Host: gruporosmar.com.mx
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gruporosmar.com.mx/servicio-integral-desinfeccion-total-amex/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.14.0 (Ubuntu)
Date: Mon, 30 Jan 2023 02:53:24 GMT
Content-Type: image/png
Content-Length: 105732
Last-Modified: Tue, 04 Jan 2022 19:53:57 GMT
Connection: keep-alive
ETag: "61d4a5d5-19d04"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Accept-Ranges: bytes
gruporosmar.com.mx/wp-content/plugins/elementor-pro/assets/js/gallery.6af8f19f91f1b16c3ab6.bundle.min.js
52.87.157.254200 OK 5.7 kB URL HTTP/1.1 gruporosmar.com.mx/wp-content/plugins/elementor-pro/assets/js/gallery.6af8f19f91f1b16c3ab6.bundle.min.js
IP 52.87.157.254:0
File type ASCII text, with very long lines (5697)
Hash 9cf253cb4dbd25c538fda55c1e0ef312
ec24c7ffb7c2b0d460b6424446cee5edf39bf17d
41e13d827e87719450b69138b4f565e4eaabe0b5fca4a81a0a3555aa2ed67a5a
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor-pro/assets/js/gallery.6af8f19f91f1b16c3ab6.bundle.min.js HTTP/1.1
Host: gruporosmar.com.mx
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gruporosmar.com.mx/servicio-integral-desinfeccion-total-amex/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.14.0 (Ubuntu)
Date: Mon, 30 Jan 2023 02:53:24 GMT
Content-Type: application/javascript
Content-Length: 5740
Last-Modified: Mon, 24 Jan 2022 10:22:59 GMT
Connection: keep-alive
ETag: "61ee7e03-166c"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Accept-Ranges: bytes
ocsp.sectigo.com/
104.18.32.68200 OK 471 B IP 104.18.32.68:0
Hash c6d2fd5c3938e04beb0aa27f4f833dad
d8d14d70b379dec10cde19a032aa9834b69455f7
99b0b525481eacf7218e7bbc0e46cc8575c7c80d82766e77352460f4d17e0cd4
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 02:53:24 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Sat, 28 Jan 2023 19:12:52 GMT
Expires: Sat, 04 Feb 2023 19:12:51 GMT
Etag: "d8d14d70b379dec10cde19a032aa9834b69455f7"
Cache-Control: max-age=490166,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7916eac28dde0b3d-OSL
gruporosmar.com.mx/wp-content/plugins/elementor/assets/lib/dialog/dialog.min.js?ver=4.9.0
52.87.157.254200 OK 11 kB URL HTTP/1.1 gruporosmar.com.mx/wp-content/plugins/elementor/assets/lib/dialog/dialog.min.js?ver=4.9.0
IP 52.87.157.254:0
File type ASCII text, with very long lines (10544)
Hash 4eee50ac6f4f364ba3a284d0753ddae3
a8e7e824e6824ae0b370ff36e2c07ca07276fae0
b936db5880aa9b6b2f26a8d32fc2b689fb75f69d971b94194f16dba801221ffe
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/lib/dialog/dialog.min.js?ver=4.9.0 HTTP/1.1
Host: gruporosmar.com.mx
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gruporosmar.com.mx/servicio-integral-desinfeccion-total-amex/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.14.0 (Ubuntu)
Date: Mon, 30 Jan 2023 02:53:24 GMT
Content-Type: application/javascript
Content-Length: 10682
Last-Modified: Mon, 24 Jan 2022 10:19:19 GMT
Connection: keep-alive
ETag: "61ee7d27-29ba"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Accept-Ranges: bytes
gruporosmar.com.mx/wp-content/plugins/elementor/assets/lib/share-link/share-link.min.js?ver=3.5.4
52.87.157.254200 OK 2.6 kB URL HTTP/1.1 gruporosmar.com.mx/wp-content/plugins/elementor/assets/lib/share-link/share-link.min.js?ver=3.5.4
IP 52.87.157.254:0
File type ASCII text, with very long lines (2577)
Hash 9bb8540493a7fe11b229870eb37be165
d77f17cb9057dc8f622b8c0bf23f6acb739b3b8e
4a7ee62eb33f3bbb66c2151e5cac6bf4904e28302efc36128f3e3ccae6fde580
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/lib/share-link/share-link.min.js?ver=3.5.4 HTTP/1.1
Host: gruporosmar.com.mx
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gruporosmar.com.mx/servicio-integral-desinfeccion-total-amex/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.14.0 (Ubuntu)
Date: Mon, 30 Jan 2023 02:53:24 GMT
Content-Type: application/javascript
Content-Length: 2578
Last-Modified: Mon, 24 Jan 2022 10:19:19 GMT
Connection: keep-alive
ETag: "61ee7d27-a12"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Accept-Ranges: bytes
gruporosmar.com.mx/wp-content/uploads/2021/12/ROSMAR-2.jpg
52.87.157.254200 OK 19 kB URL HTTP/1.1 gruporosmar.com.mx/wp-content/uploads/2021/12/ROSMAR-2.jpg
IP 52.87.157.254:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 569x284, components 3\012- data
Hash 07bf4b36b2c1306d79532c098f6f7301
e799e6cf9b7286780133a2b078e3e504f2864959
5e7d3a7f5ae1264ec790b98f2dbebe9b8c93db5e10359c74c485a4a40b373b5b
GET /wp-content/uploads/2021/12/ROSMAR-2.jpg HTTP/1.1
Host: gruporosmar.com.mx
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gruporosmar.com.mx/servicio-integral-desinfeccion-total-amex/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.14.0 (Ubuntu)
Date: Mon, 30 Jan 2023 02:53:24 GMT
Content-Type: image/jpeg
Content-Length: 19243
Last-Modified: Wed, 08 Dec 2021 00:00:57 GMT
Connection: keep-alive
ETag: "61aff5b9-4b2b"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Accept-Ranges: bytes
gruporosmar.com.mx/wp-content/uploads/2021/12/ROSMAR-3.jpg
52.87.157.254200 OK 23 kB URL HTTP/1.1 gruporosmar.com.mx/wp-content/uploads/2021/12/ROSMAR-3.jpg
IP 52.87.157.254:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 569x284, components 3\012- data
Hash 95a93b7ebdc3bd7f8438257d6b046e2c
2e8cd4ef2ac215fd4e585ad37f81f6c9fd3af982
ff7d4c1f6a5fb2bda381f60aabc01b3b2b0fa117ae73d952d5a676277c7b65f2
GET /wp-content/uploads/2021/12/ROSMAR-3.jpg HTTP/1.1
Host: gruporosmar.com.mx
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gruporosmar.com.mx/servicio-integral-desinfeccion-total-amex/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.14.0 (Ubuntu)
Date: Mon, 30 Jan 2023 02:53:24 GMT
Content-Type: image/jpeg
Content-Length: 23060
Last-Modified: Wed, 08 Dec 2021 00:00:58 GMT
Connection: keep-alive
ETag: "61aff5ba-5a14"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Accept-Ranges: bytes
gruporosmar.com.mx/?wc-ajax=get_refreshed_fragments
52.87.157.254200 OK 201 B URL HTTP/1.1 gruporosmar.com.mx/?wc-ajax=get_refreshed_fragments
IP 52.87.157.254:0
File type JSON data\012- , ASCII text, with very long lines (308), with no line terminators
Hash f7bcccea581cf08a80ad81beac818908
f33490badc7780163be33ef7e28ec6e58e509a78
185896aba020fe7b30eb4825ac749be611b72e293f894ca3dca4ac3bc284eed5
Analyzer Verdict Alert fortinet Phishing
POST /?wc-ajax=get_refreshed_fragments HTTP/1.1
Host: gruporosmar.com.mx
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 18
Origin: https://gruporosmar.com.mx
Connection: keep-alive
Referer: https://gruporosmar.com.mx/servicio-integral-desinfeccion-total-amex/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.14.0 (Ubuntu)
Date: Mon, 30 Jan 2023 02:53:24 GMT
Content-Type: application/json; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
cf-edge-cache: cache,platform=wordpress
Access-Control-Allow-Origin: https://gruporosmar.com.mx
Access-Control-Allow-Credentials: true
X-Content-Type-Options: nosniff
X-Robots-Tag: noindex
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Content-Encoding: gzip
sw-themes.com/porto_dummy/wp-content/uploads/images/business-consulting-2/icons/mail.svg
162.144.217.30200 OK 880 B URL HTTP/1.1 sw-themes.com/porto_dummy/wp-content/uploads/images/business-consulting-2/icons/mail.svg
IP 162.144.217.30:0
ASN #46606 UNIFIEDLAYER-AS-1
File type SVG Scalable Vector Graphics image\012- SVG XML document\012- XML 1.0 document text\012- SVG XML document\012- XML document text\012- exported SGML document, ASCII text, with very long lines (880), with no line terminators
Hash 3721bf6fdc8ad5203d3ebf1ed381b36d
873c1b269602285c8b9e3bdff53b4c1cab0ab226
f1a0b74b38e33f83f865cf7fdecc422da70059e0d25d90cc57349076cf5f884f
GET /porto_dummy/wp-content/uploads/images/business-consulting-2/icons/mail.svg HTTP/1.1
Host: sw-themes.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gruporosmar.com.mx/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 02:34:47 GMT
Server: Apache
Last-Modified: Mon, 12 Sep 2022 12:13:28 GMT
Accept-Ranges: bytes
Content-Length: 880
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: image/svg+xml
sw-themes.com/porto_dummy/wp-content/uploads/images/business-consulting-2/icons/phone.svg
162.144.217.30200 OK 972 B URL HTTP/1.1 sw-themes.com/porto_dummy/wp-content/uploads/images/business-consulting-2/icons/phone.svg
IP 162.144.217.30:0
ASN #46606 UNIFIEDLAYER-AS-1
File type SVG Scalable Vector Graphics image\012- SVG XML document\012- XML 1.0 document text\012- SVG XML document\012- XML document text\012- exported SGML document, ASCII text, with very long lines (972), with no line terminators
Hash 14d0d032d3ade9e500f8ac7f23ec7304
03ed2e48f45de6eac047604396d69650082ee6c9
af124c9555e7559cdc94bef2babe7df18999f400f3a0f95f9b3831cd09aac25c
GET /porto_dummy/wp-content/uploads/images/business-consulting-2/icons/phone.svg HTTP/1.1
Host: sw-themes.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gruporosmar.com.mx/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 02:34:47 GMT
Server: Apache
Last-Modified: Mon, 12 Sep 2022 12:13:28 GMT
Accept-Ranges: bytes
Content-Length: 972
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: image/svg+xml
rosmarusa.kglabs.net/wp-content/uploads/2021/07/bigstock-People-Disinfecting-Hands-With-355919132-small-scaled.jpeg
172.67.177.69200 OK 465 kB URL HTTP/2 rosmarusa.kglabs.net/wp-content/uploads/2021/07/bigstock-People-Disinfecting-Hands-With-355919132-small-scaled.jpeg
IP 172.67.177.69:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=9, description=People disinfecting hands with antiseptic wet wipe outdoors. Antiseptic napkin to prevent spread of germs, bacteria, coronaviru, manufacturer=NIKON CORPORATION, model=NIKON D800, orientation=upper-left, xresolution=352, yresolution=360, resolutionunit=2, copyright=Bigstock], baseline, precision 8, 2560x1709, components 3\012- data
Size 465 kB (465239 bytes)
Hash 75c68369ceb97895fd36f4a60e59a3b6
7cac130ffb8d1ab4268f68903be02810c3f65190
3d3119f2eb229cc1e780eba5d81e783de0cee2885cf53eb6f3fca39c114bdcf4
GET /wp-content/uploads/2021/07/bigstock-People-Disinfecting-Hands-With-355919132-small-scaled.jpeg HTTP/1.1
Host: rosmarusa.kglabs.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 02:53:24 GMT
content-type: image/jpeg
content-length: 465239
last-modified: Fri, 16 Jul 2021 19:23:12 GMT
etag: "60f1dca0-71957"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Xq8Xn3r1OiUaqen9tTVfS9gH9NM130SrRt0b4FCCB%2FT6j9xYk%2F5kjuTZ5ecMaWpbBTmsekQaeN%2BLL4UfyxrcmBDUaJbDunXbQJhB7kyyq4JD8Bnu%2Ft06xLuwznS6lTycxeX8kfmeSA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7916eac16bc51c06-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
forms.zohopublic.com/menriquez/form/FORMULARIOSIDAMEX/formperma/amXzJoIu1yNarPYNRJ0mohmLK4pPk-OoTRCV1JJOFko?zf_rszfm=1
136.143.190.97200 19 kB URL HTTP/1.1 forms.zohopublic.com/menriquez/form/FORMULARIOSIDAMEX/formperma/amXzJoIu1yNarPYNRJ0mohmLK4pPk-OoTRCV1JJOFko?zf_rszfm=1
IP 136.143.190.97:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1301)
Hash 08242180a4c830e45154625e512d72f5
db7c04cd73914b4493774e369929c2afd1d580e3
97e8a860793af878634bed3421b3e2e6bb05ee2cb4d03c8b0c656925e092c51e
GET /menriquez/form/FORMULARIOSIDAMEX/formperma/amXzJoIu1yNarPYNRJ0mohmLK4pPk-OoTRCV1JJOFko?zf_rszfm=1 HTTP/1.1
Host: forms.zohopublic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gruporosmar.com.mx/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200
Server: ZGS
Date: Mon, 30 Jan 2023 02:53:24 GMT
Content-Type: text/html;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: 383aeadb58=09c5710d399dc09aa2aecb5e82cb2421; Path=/
X-Content-Type-Options: nosniff
X-XSS-Protection: 1
vary: accept-encoding
Content-Encoding: gzip
Content-Language: en-US
Strict-Transport-Security: max-age=63072000
www.google-analytics.com/analytics.js
142.250.74.78200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 142.250.74.78:0
File type ASCII text, with very long lines (1490)
Hash ca7fbbfd120e3e329633044190bbf134
d17f81e03dd827554ddd207ea081fb46b3415445
847004cefb32f85a9cc16b0b1eb77529ff5753680c145bfcb23f651d214737db
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gruporosmar.com.mx/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20085
date: Mon, 30 Jan 2023 01:45:20 GMT
expires: Mon, 30 Jan 2023 03:45:20 GMT
cache-control: public, max-age=7200
age: 4084
last-modified: Tue, 10 Jan 2023 21:29:14 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
maps.googleapis.com/maps/api/mapsjs/gen_204?csp_test=true
172.217.21.170200 OK 23 B URL HTTP/2 maps.googleapis.com/maps/api/mapsjs/gen_204?csp_test=true
IP 172.217.21.170:0
File type JSON data\012- , ASCII text
Hash e3981ca10169a319d5aa062bf43a5fa1
2c6ed584767b65688ce99b1ebe1a3b7448a67421
8b0b8749aba12de93f3cf5d86f9fac9d6de7cac400a17473718f182a34ebb7e9
GET /maps/api/mapsjs/gen_204?csp_test=true HTTP/1.1
Host: maps.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://gruporosmar.com.mx
Connection: keep-alive
Referer: https://gruporosmar.com.mx/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/json; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Mon, 30 Jan 2023 02:53:24 GMT
server: scaffolding on HTTPServer2
cache-control: private
content-length: 23
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://gruporosmar.com.mx
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
gruporosmar.com.mx/favicon.ico
52.87.157.254200 OK 0 B URL HTTP/1.1 gruporosmar.com.mx/favicon.ico
IP 52.87.157.254:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /favicon.ico HTTP/1.1
Host: gruporosmar.com.mx
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gruporosmar.com.mx/servicio-integral-desinfeccion-total-amex/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.14.0 (Ubuntu)
Date: Mon, 30 Jan 2023 02:53:24 GMT
Content-Type: image/x-icon
Content-Length: 0
Last-Modified: Tue, 14 Sep 2021 16:24:56 GMT
Connection: keep-alive
ETag: "6140ccd8-0"
Accept-Ranges: bytes
ocsp.sectigo.com/
104.18.32.68200 OK 471 B IP 104.18.32.68:0
Hash 17d41e3561bb01a952e87d945d182a09
6f737b8dde852aa395b135872ab7fa11767afdbf
e6d93c06fa0b08ddc6716c55fcb20f3a3d8f03b2e589779ce0ba2870ffc1110a
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 02:53:24 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Fri, 27 Jan 2023 03:09:29 GMT
Expires: Fri, 03 Feb 2023 03:09:28 GMT
Etag: "6f737b8dde852aa395b135872ab7fa11767afdbf"
Cache-Control: max-age=345963,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7916eac6ae5b1c0e-OSL
static.zohocdn.com/forms/css/themes/plain.0720337da238cecd0c8eb444003e97bb.css
185.20.209.147200 OK 2.3 kB URL HTTP/2 static.zohocdn.com/forms/css/themes/plain.0720337da238cecd0c8eb444003e97bb.css
IP 185.20.209.147:0
ASN #41913 Computerline GmbH
File type ASCII text, with very long lines (316)
Hash 62763bb8d47e4b9e8446486d836d493a
2d8f5414082ab822f7fd82913e5ee64de5f7d7c8
3630461b06260afadbb03bf168c3dc0e3c340f6efdff6e875e0e322c09fdb859
GET /forms/css/themes/plain.0720337da238cecd0c8eb444003e97bb.css HTTP/1.1
Host: static.zohocdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://forms.zohopublic.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: ZGS
date: Mon, 30 Jan 2023 02:53:24 GMT
content-type: text/css;charset=UTF-8
content-length: 2336
x-content-type-options: nosniff
x-xss-protection: 1
cache-control: public, max-age=7776000, immutable
etag: "62763bb8d47e4b9e8446486d836d493a"
content-language: en-US
last-modified: Tue, 03 Jan 2023 14:59:58 GMT
content-encoding: br
access-control-expose-headers: *
access-control-allow-origin: *
vary: Accept-Encoding
strict-transport-security: max-age=15768000
timing-allow-origin: *
x-cache: HIT
nb-request-id: 60cfbe74bc769c3c9e1a698ab32609c7
z-origin-id: ex1-daa33559fdb14b9a80d110c6ee2db135
cross-origin-resource-policy: cross-origin
accept-ranges: bytes
X-Firefox-Spdy: h2
forms.zohopublic.com/formstatic/fonts?family=Open+Sans:400,700i,700,600i,600,400i,300i,300
136.143.190.97200 220 B URL HTTP/1.1 forms.zohopublic.com/formstatic/fonts?family=Open+Sans:400,700i,700,600i,600,400i,300i,300
IP 136.143.190.97:0
Hash 9a28d1179664ba6bc299429fa6ad2ffc
75e6c37130a729665af1b3255889f1d7bc9f6b50
c3c5f38d3b34298da17c03f724f13edbfc2a0b91f0f6638501b34b17da8219a8
GET /formstatic/fonts?family=Open+Sans:400,700i,700,600i,600,400i,300i,300 HTTP/1.1
Host: forms.zohopublic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://forms.zohopublic.com/menriquez/form/FORMULARIOSIDAMEX/formperma/amXzJoIu1yNarPYNRJ0mohmLK4pPk-OoTRCV1JJOFko?zf_rszfm=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200
Server: ZGS
Date: Mon, 30 Jan 2023 02:53:24 GMT
Content-Type: text/css;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: 383aeadb58=1b5f58873a9007ab79efd25117bfdf05; Path=/
X-Content-Type-Options: nosniff
X-XSS-Protection: 1
X-Frame-Options: DENY
vary: accept-encoding
Content-Encoding: gzip
Content-Language: en-US
Strict-Transport-Security: max-age=63072000
static.zohocdn.com/forms/js/formsthirdpartylivejs.fa80d21e90eb2a92193fc45ef5617573.js
185.20.209.147200 OK 37 kB URL HTTP/2 static.zohocdn.com/forms/js/formsthirdpartylivejs.fa80d21e90eb2a92193fc45ef5617573.js
IP 185.20.209.147:0
ASN #41913 Computerline GmbH
File type ASCII text, with very long lines (65536), with no line terminators
Hash 519d10234a6e863f26825a7305cb746c
b1dbdc7b42c01f843ac8bb952aa41aedda86deda
cc63dff891f38e2246bd46f551780ebcbefef78dc9deba4070dc48cff295fc5f
GET /forms/js/formsthirdpartylivejs.fa80d21e90eb2a92193fc45ef5617573.js HTTP/1.1
Host: static.zohocdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://forms.zohopublic.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: ZGS
date: Mon, 30 Jan 2023 02:53:24 GMT
content-type: application/javascript;charset=UTF-8
content-length: 37358
x-content-type-options: nosniff
x-xss-protection: 1
cache-control: public, max-age=7776000, immutable
etag: "519d10234a6e863f26825a7305cb746c"
content-language: en-US
last-modified: Wed, 19 May 2021 11:03:03 GMT
content-encoding: br
access-control-expose-headers: *
access-control-allow-origin: *
vary: Accept-Encoding
strict-transport-security: max-age=15768000
timing-allow-origin: *
x-cache: HIT
nb-request-id: 0cd9d837474bc43658900b65d6da6d41
z-origin-id: ex1-c42f49944681497f9b64f671102e272c
cross-origin-resource-policy: cross-origin
accept-ranges: bytes
X-Firefox-Spdy: h2
static.zohocdn.com/forms/js/formscommonlive.44b96ae1ce7e52c53acc5a00a526c901.js
185.20.209.147200 OK 28 kB URL HTTP/2 static.zohocdn.com/forms/js/formscommonlive.44b96ae1ce7e52c53acc5a00a526c901.js
IP 185.20.209.147:0
ASN #41913 Computerline GmbH
File type ASCII text, with very long lines (65536), with no line terminators
Hash 2b33afc1321c04bdba17100583675c1f
db38a2568122d58e3180f48b446bf65014591cdc
0d33560ce98d14999caf0ce1ed5f186352e4d054fdbd181912b45a321917e125
GET /forms/js/formscommonlive.44b96ae1ce7e52c53acc5a00a526c901.js HTTP/1.1
Host: static.zohocdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://forms.zohopublic.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: ZGS
date: Mon, 30 Jan 2023 02:53:24 GMT
content-type: application/javascript;charset=UTF-8
content-length: 27852
x-content-type-options: nosniff
x-xss-protection: 1
cache-control: public, max-age=7776000, immutable
etag: "2b33afc1321c04bdba17100583675c1f"
content-language: en-US
last-modified: Tue, 24 Jan 2023 11:13:33 GMT
content-encoding: br
access-control-expose-headers: *
access-control-allow-origin: *
vary: Accept-Encoding
strict-transport-security: max-age=15768000
timing-allow-origin: *
x-cache: HIT
nb-request-id: fc14ec386f4f11978990b0e5f16e5670
z-origin-id: ex1-a02b5ecde90d41ffa205a8003b5be383
cross-origin-resource-policy: cross-origin
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash e9eba61fbe87bc53d60d0fdd1ba6adb4
8dbb3dfacfaad4ce0fd3a355790cb9b245e01e07
9c0233792f873315e75ce5396d1a210f2df665db23ab858a0724f66bbb4528e7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 02:53:25 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-159644567-1&cid=1616018031.1675047215&jid=1689415332&gjid=450890631&_gid=190240531.1675047215&_u=YEBAAUAAAAAAACAAI~&z=1280235218
173.194.221.154200 OK 4 B URL HTTP/2 stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-159644567-1&cid=1616018031.1675047215&jid=1689415332&gjid=450890631&_gid=190240531.1675047215&_u=YEBAAUAAAAAAACAAI~&z=1280235218
IP 173.194.221.154:0
File type ASCII text, with no line terminators
Hash 48c0473b7821185d937e685216e2168b
3743e47f8a429a5e87b86cb582d78940733d9d2e
570c4d4674fd20602189c548c145ba1f8ac34bc2e4599a71471969028aa1e25a
POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-159644567-1&cid=1616018031.1675047215&jid=1689415332&gjid=450890631&_gid=190240531.1675047215&_u=YEBAAUAAAAAAACAAI~&z=1280235218 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://gruporosmar.com.mx
Connection: keep-alive
Referer: https://gruporosmar.com.mx/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://gruporosmar.com.mx
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Mon, 30 Jan 2023 02:53:25 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
static.zohocdn.com/forms/js/formslive.3161d616900c83ac79b373ce9bd7fd16.js
185.20.209.147200 OK 114 kB URL HTTP/2 static.zohocdn.com/forms/js/formslive.3161d616900c83ac79b373ce9bd7fd16.js
IP 185.20.209.147:0
ASN #41913 Computerline GmbH
File type ASCII text, with very long lines (65433)
Size 114 kB (113917 bytes)
Hash d7ea8441acbbe8b35f41a276376be7c4
6ab2664fdb6795305006e57e176cee8e61e6cdbc
5295e381ceed0c0e07498993bed59cbecdfa0a35510b7db2bc5b56ad731985af
GET /forms/js/formslive.3161d616900c83ac79b373ce9bd7fd16.js HTTP/1.1
Host: static.zohocdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://forms.zohopublic.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: ZGS
date: Mon, 30 Jan 2023 02:53:24 GMT
content-type: application/javascript;charset=UTF-8
content-length: 113917
x-content-type-options: nosniff
x-xss-protection: 1
cache-control: public, max-age=7776000, immutable
etag: "d7ea8441acbbe8b35f41a276376be7c4"
content-language: en-US
last-modified: Tue, 24 Jan 2023 11:13:33 GMT
content-encoding: br
access-control-expose-headers: *
access-control-allow-origin: *
vary: Accept-Encoding
strict-transport-security: max-age=15768000
timing-allow-origin: *
x-cache: HIT
nb-request-id: 8b065418a51c402b5e69250f59fa993e
z-origin-id: ex1-7d6a0371e999412db7e9a2568c5b67bf
cross-origin-resource-policy: cross-origin
accept-ranges: bytes
X-Firefox-Spdy: h2
static.zohocdn.com/forms/js/formsselect.b9384dcadf2bc7b3816527891df599f6.js
185.20.209.147200 OK 22 kB URL HTTP/2 static.zohocdn.com/forms/js/formsselect.b9384dcadf2bc7b3816527891df599f6.js
IP 185.20.209.147:0
ASN #41913 Computerline GmbH
File type Unicode text, UTF-8 text, with very long lines (64217), with no line terminators
Hash 8291598a2a5e82e1baa86741eaf37e17
6be69f7529624d1307396f650ef1027ea85c8d1c
c8d292e84d9e3b58defad6170edf6d784f2658282451e5608795476af90b1014
GET /forms/js/formsselect.b9384dcadf2bc7b3816527891df599f6.js HTTP/1.1
Host: static.zohocdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://forms.zohopublic.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: ZGS
date: Mon, 30 Jan 2023 02:53:24 GMT
content-type: application/javascript;charset=UTF-8
content-length: 21542
x-content-type-options: nosniff
x-xss-protection: 1
cache-control: public, max-age=7776000, immutable
etag: "8291598a2a5e82e1baa86741eaf37e17"
content-language: en-US
last-modified: Tue, 12 Oct 2021 12:30:33 GMT
content-encoding: br
access-control-expose-headers: *
access-control-allow-origin: *
vary: Accept-Encoding
strict-transport-security: max-age=15768000
timing-allow-origin: *
x-cache: HIT
nb-request-id: 25e0d9f98a52cf304323fcceea023cf4
z-origin-id: ex1-01593e1034824c66a5768de53ad6072b
cross-origin-resource-policy: cross-origin
accept-ranges: bytes
X-Firefox-Spdy: h2
static.zohocdn.com/forms/js/zfresize.00f033861733e7a636bc014e38451518.js
185.20.209.147200 OK 717 B URL HTTP/2 static.zohocdn.com/forms/js/zfresize.00f033861733e7a636bc014e38451518.js
IP 185.20.209.147:0
ASN #41913 Computerline GmbH
File type ASCII text, with very long lines (3165), with no line terminators
Hash bd4ef7ca2f759e4f2ccddebc272cafd7
e17315556de00108397d9f6d681589ac0f463fde
05a66a741fc0c94fe098e3fe6a3d9f19734e35d4c3095800f4990b036b4990fa
GET /forms/js/zfresize.00f033861733e7a636bc014e38451518.js HTTP/1.1
Host: static.zohocdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://forms.zohopublic.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: ZGS
date: Mon, 30 Jan 2023 02:53:24 GMT
content-type: application/javascript;charset=UTF-8
content-length: 717
x-content-type-options: nosniff
x-xss-protection: 1
cache-control: public, max-age=7776000, immutable
etag: "bd4ef7ca2f759e4f2ccddebc272cafd7"
content-language: en-US
last-modified: Wed, 02 Nov 2022 06:43:21 GMT
content-encoding: br
access-control-expose-headers: *
access-control-allow-origin: *
vary: Accept-Encoding
strict-transport-security: max-age=15768000
timing-allow-origin: *
x-cache: HIT
nb-request-id: e93fc550e6327a0cc2a2579f28aa99f8
z-origin-id: ex1-88b0645e038f41b2b0d171e9da095d52
cross-origin-resource-policy: cross-origin
accept-ranges: bytes
X-Firefox-Spdy: h2
static.zohocdn.com/forms/js/formstplivejs.5598e1e583c1d09fc270b76b7bc87fed.js
185.20.209.147200 OK 30 kB URL HTTP/2 static.zohocdn.com/forms/js/formstplivejs.5598e1e583c1d09fc270b76b7bc87fed.js
IP 185.20.209.147:0
ASN #41913 Computerline GmbH
File type Unicode text, UTF-8 text, with very long lines (65534), with no line terminators
Hash 545c72fc1816fa5e467e58efd4d47adb
de21bdceadd7365dd432fb5179a5b9f4ac853b92
1a2edd219fb3224cb0045ef280499f1e951f3a393c069efe88449807721735d6
GET /forms/js/formstplivejs.5598e1e583c1d09fc270b76b7bc87fed.js HTTP/1.1
Host: static.zohocdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://forms.zohopublic.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: ZGS
date: Mon, 30 Jan 2023 02:53:24 GMT
content-type: application/javascript;charset=UTF-8
content-length: 30037
x-content-type-options: nosniff
x-xss-protection: 1
cache-control: public, max-age=7776000, immutable
etag: "545c72fc1816fa5e467e58efd4d47adb"
content-language: en-US
last-modified: Wed, 19 May 2021 11:03:04 GMT
content-encoding: br
access-control-expose-headers: *
access-control-allow-origin: *
vary: Accept-Encoding
strict-transport-security: max-age=15768000
timing-allow-origin: *
x-cache: HIT
nb-request-id: 184a6ae63a73dde015a78a91dddd7492
z-origin-id: ex1-6b10760054b04ff5a29a2730aaac7932
cross-origin-resource-policy: cross-origin
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.sectigo.com/
104.18.32.68200 OK 471 B IP 104.18.32.68:0
Hash 17d41e3561bb01a952e87d945d182a09
6f737b8dde852aa395b135872ab7fa11767afdbf
e6d93c06fa0b08ddc6716c55fcb20f3a3d8f03b2e589779ce0ba2870ffc1110a
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 02:53:25 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Fri, 27 Jan 2023 03:09:29 GMT
Expires: Fri, 03 Feb 2023 03:09:28 GMT
Etag: "6f737b8dde852aa395b135872ab7fa11767afdbf"
Cache-Control: max-age=345962,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7916eac6aed50b3d-OSL
ocsp.sectigo.com/
104.18.32.68200 OK 471 B IP 104.18.32.68:0
Hash 17d41e3561bb01a952e87d945d182a09
6f737b8dde852aa395b135872ab7fa11767afdbf
e6d93c06fa0b08ddc6716c55fcb20f3a3d8f03b2e589779ce0ba2870ffc1110a
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 02:53:25 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Fri, 27 Jan 2023 03:09:29 GMT
Expires: Fri, 03 Feb 2023 03:09:28 GMT
Etag: "6f737b8dde852aa395b135872ab7fa11767afdbf"
Cache-Control: max-age=345962,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7916eac6ae53fab8-OSL
ocsp.sectigo.com/
104.18.32.68200 OK 471 B IP 104.18.32.68:0
Hash 17d41e3561bb01a952e87d945d182a09
6f737b8dde852aa395b135872ab7fa11767afdbf
e6d93c06fa0b08ddc6716c55fcb20f3a3d8f03b2e589779ce0ba2870ffc1110a
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 02:53:25 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Fri, 27 Jan 2023 03:09:29 GMT
Expires: Fri, 03 Feb 2023 03:09:28 GMT
Etag: "6f737b8dde852aa395b135872ab7fa11767afdbf"
Cache-Control: max-age=345962,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7916eac6be210b61-OSL
ocsp.sectigo.com/
104.18.32.68200 OK 471 B IP 104.18.32.68:0
Hash 17d41e3561bb01a952e87d945d182a09
6f737b8dde852aa395b135872ab7fa11767afdbf
e6d93c06fa0b08ddc6716c55fcb20f3a3d8f03b2e589779ce0ba2870ffc1110a
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 02:53:25 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Fri, 27 Jan 2023 03:09:29 GMT
Expires: Fri, 03 Feb 2023 03:09:28 GMT
Etag: "6f737b8dde852aa395b135872ab7fa11767afdbf"
Cache-Control: max-age=345962,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7916eac6ab72b500-OSL
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash e9eba61fbe87bc53d60d0fdd1ba6adb4
8dbb3dfacfaad4ce0fd3a355790cb9b245e01e07
9c0233792f873315e75ce5396d1a210f2df665db23ab858a0724f66bbb4528e7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 02:53:25 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
static.zohocdn.com/forms/css/formslive.82231feacf8a0145994d2e5f424e612d.css
185.20.209.147200 OK 48 kB URL HTTP/2 static.zohocdn.com/forms/css/formslive.82231feacf8a0145994d2e5f424e612d.css
IP 185.20.209.147:0
ASN #41913 Computerline GmbH
File type ASCII text, with very long lines (65430)
Hash 22274406306c5cb08f238094bba6be89
f7e3d4ea40cd2fb26a6634cca863cd647717da2a
441baa223c4b2f4fab1905e6f02b7149c1c1fdb8afab32b82a8f9ed24288a232
GET /forms/css/formslive.82231feacf8a0145994d2e5f424e612d.css HTTP/1.1
Host: static.zohocdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://forms.zohopublic.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: ZGS
date: Mon, 30 Jan 2023 02:53:25 GMT
content-type: text/css;charset=UTF-8
content-length: 47639
x-content-type-options: nosniff
x-xss-protection: 1
cache-control: public, max-age=7776000, immutable
etag: "22274406306c5cb08f238094bba6be89"
content-language: en-US
last-modified: Fri, 20 Jan 2023 08:10:06 GMT
content-encoding: br
access-control-expose-headers: *
access-control-allow-origin: *
vary: Accept-Encoding
strict-transport-security: max-age=15768000
timing-allow-origin: *
x-cache: HIT
nb-request-id: 96a9371a5215b20ee6fe1fff61f3975d
z-origin-id: ex1-3d44de514ebf4dc1b1531c1ccc6f4149
cross-origin-resource-policy: cross-origin
accept-ranges: bytes
X-Firefox-Spdy: h2
static.zohocdn.com/forms/css/formsthirdparty.2755260429cd02c98112dac6f4b5b8ce.css
185.20.209.147200 OK 12 kB URL HTTP/2 static.zohocdn.com/forms/css/formsthirdparty.2755260429cd02c98112dac6f4b5b8ce.css
IP 185.20.209.147:0
ASN #41913 Computerline GmbH
File type ASCII text, with very long lines (65440)
Hash a338608fc2b539683c6cccb5717cf0aa
e9a5f68ee4fe0972da9cf6ce40df9e170e217b87
6a43f0b04d96257c7b01e2564e33b5e780582a1d1cceb31678d5e101b3a834bd
GET /forms/css/formsthirdparty.2755260429cd02c98112dac6f4b5b8ce.css HTTP/1.1
Host: static.zohocdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://forms.zohopublic.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: ZGS
date: Mon, 30 Jan 2023 02:53:25 GMT
content-type: text/css;charset=UTF-8
content-length: 11641
x-content-type-options: nosniff
x-xss-protection: 1
cache-control: public, max-age=7776000, immutable
etag: "a338608fc2b539683c6cccb5717cf0aa"
content-language: en-US
last-modified: Wed, 19 May 2021 11:03:01 GMT
content-encoding: br
access-control-expose-headers: *
access-control-allow-origin: *
vary: Accept-Encoding
strict-transport-security: max-age=15768000
timing-allow-origin: *
x-cache: HIT
nb-request-id: 78ef2cca8ba65933e27e07f7311fd872
z-origin-id: ex1-df244bf0eeca4dc1b76dac21db7a694e
cross-origin-resource-policy: cross-origin
accept-ranges: bytes
X-Firefox-Spdy: h2
static.zohocdn.com/forms/css/themes/media/plainMedia.a2e7f84f3c2e181407843f86b4dd84c9.css
185.20.209.147200 OK 197 B URL HTTP/2 static.zohocdn.com/forms/css/themes/media/plainMedia.a2e7f84f3c2e181407843f86b4dd84c9.css
IP 185.20.209.147:0
ASN #41913 Computerline GmbH
Hash 667c9a0b995d38addbcd247230aae7b1
75847053a064e46c7de78540740ac3e1b95c4bef
1ca4442cc296b8f65ab5097b11a3164fc4cfb00bac5cf1a43d5e180e9cf4c94d
GET /forms/css/themes/media/plainMedia.a2e7f84f3c2e181407843f86b4dd84c9.css HTTP/1.1
Host: static.zohocdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://forms.zohopublic.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: ZGS
date: Mon, 30 Jan 2023 02:53:25 GMT
content-type: text/css;charset=UTF-8
content-length: 197
x-content-type-options: nosniff
x-xss-protection: 1
cache-control: public, max-age=7776000, immutable
etag: "667c9a0b995d38addbcd247230aae7b1"
content-language: en-US
last-modified: Wed, 19 May 2021 11:02:53 GMT
content-encoding: br
access-control-expose-headers: *
access-control-allow-origin: *
vary: Accept-Encoding
strict-transport-security: max-age=15768000
timing-allow-origin: *
x-cache: HIT
nb-request-id: a66b66609f555616e7a31e3fbc4968bc
z-origin-id: ex1-8756624bbc1e4588a6e8a376f1ed4ec3
cross-origin-resource-policy: cross-origin
accept-ranges: bytes
X-Firefox-Spdy: h2
static.zohocdn.com/forms/css/themes/media.15263692ab8b439c6f381a5b54d9c5ff.css
185.20.209.147200 OK 5.6 kB URL HTTP/2 static.zohocdn.com/forms/css/themes/media.15263692ab8b439c6f381a5b54d9c5ff.css
IP 185.20.209.147:0
ASN #41913 Computerline GmbH
Hash dcb35a10e4c04bdefd3ecbe5cc1636a5
f0fbafffca8eaf0283afa04ab7bb678acb13a760
18c416e258b872304ef420624a120d0bff5f1bf12eed37e990cac342bea7b1a6
GET /forms/css/themes/media.15263692ab8b439c6f381a5b54d9c5ff.css HTTP/1.1
Host: static.zohocdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://forms.zohopublic.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: ZGS
date: Mon, 30 Jan 2023 02:53:25 GMT
content-type: text/css;charset=UTF-8
content-length: 5641
x-content-type-options: nosniff
x-xss-protection: 1
cache-control: public, max-age=7776000, immutable
etag: "dcb35a10e4c04bdefd3ecbe5cc1636a5"
content-language: en-US
last-modified: Tue, 03 Jan 2023 14:59:59 GMT
content-encoding: br
access-control-expose-headers: *
access-control-allow-origin: *
vary: Accept-Encoding
strict-transport-security: max-age=15768000
timing-allow-origin: *
x-cache: HIT
nb-request-id: 111907927aee269722cad9801c3504e4
z-origin-id: ex1-9bd8b8d2789444c583b5b782045a362b
cross-origin-resource-policy: cross-origin
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash a369a4445d1fccf2ce045c3c4c3f3d67
d6f618e6150a4f9ac6eb5df4a503141a635605a2
d62c7913686c10d4c4b8d691d533256534da77cecc9fcf3f8aa885380dcc148b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 02:53:25 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash b67335a8e235eacf68e4b7f98cc5dc40
887a9b34cf2ba9371bbe8c93e362c174668cf812
1ad2f6328af6d819acd85f4e4646afcafd945e17e555d5eeb54244db83cd48fa
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 02:53:25 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-159644567-1&cid=1616018031.1675047215&jid=1689415332&_u=YEBAAUAAAAAAACAAI~&z=1998462278
142.250.74.67200 OK 42 B URL HTTP/2 www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-159644567-1&cid=1616018031.1675047215&jid=1689415332&_u=YEBAAUAAAAAAACAAI~&z=1998462278
IP 142.250.74.67:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-159644567-1&cid=1616018031.1675047215&jid=1689415332&_u=YEBAAUAAAAAAACAAI~&z=1998462278 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gruporosmar.com.mx/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Mon, 30 Jan 2023 02:53:25 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-159644567-1&cid=1616018031.1675047215&jid=1689415332&_u=YEBAAUAAAAAAACAAI~&z=1998462278
142.250.74.132200 OK 42 B URL HTTP/2 www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-159644567-1&cid=1616018031.1675047215&jid=1689415332&_u=YEBAAUAAAAAAACAAI~&z=1998462278
IP 142.250.74.132:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-159644567-1&cid=1616018031.1675047215&jid=1689415332&_u=YEBAAUAAAAAAACAAI~&z=1998462278 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gruporosmar.com.mx/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Mon, 30 Jan 2023 02:53:25 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash a369a4445d1fccf2ce045c3c4c3f3d67
d6f618e6150a4f9ac6eb5df4a503141a635605a2
d62c7913686c10d4c4b8d691d533256534da77cecc9fcf3f8aa885380dcc148b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 02:53:25 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 1141ae65ad448fb3438690d5042af728
aa8b236bb1099c9440bfe3e98530939623250c03
e55eeaf5cd454042706c3e2d7d2b0211e91087b430cb5bae6b9e030392f57b4b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 02:53:25 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
static.zohocdn.com/forms/images/pngSpritelive.8d6bfb1b46f23ca5030982c48f63f51c.png
185.20.209.147200 OK 20 kB URL HTTP/2 static.zohocdn.com/forms/images/pngSpritelive.8d6bfb1b46f23ca5030982c48f63f51c.png
IP 185.20.209.147:0
ASN #41913 Computerline GmbH
File type PNG image data, 476 x 179, 8-bit/color RGBA, non-interlaced\012- data
Hash 14e75cb4b95b1a238211abe04a68aa8b
df317a48097211dcfa0e6f93d3cd93d45e47d6aa
304fcc3da6ba3801bad96701ebeeb354cc703156ac3d4cf1c65b7d8f71cab352
GET /forms/images/pngSpritelive.8d6bfb1b46f23ca5030982c48f63f51c.png HTTP/1.1
Host: static.zohocdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://static.zohocdn.com/forms/css/formslive.82231feacf8a0145994d2e5f424e612d.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: ZGS
date: Mon, 30 Jan 2023 02:53:25 GMT
content-type: image/png
content-length: 19865
x-content-type-options: nosniff
x-xss-protection: 1
cache-control: public, max-age=7776000, immutable
etag: "14e75cb4b95b1a238211abe04a68aa8b"
content-language: en-US
last-modified: Mon, 28 Mar 2022 12:54:36 GMT
content-encoding: br
access-control-expose-headers: *
access-control-allow-origin: *
vary: Accept-Encoding
strict-transport-security: max-age=15768000
timing-allow-origin: *
x-cache: HIT
nb-request-id: e2f3d97b5d8f812c8512aa059a96cd18
z-origin-id: ex1-c7f28a28dcbd4028943fdd289b278211
cross-origin-resource-policy: cross-origin
accept-ranges: bytes
X-Firefox-Spdy: h2
webfonts.zohowebstatic.com/opensanssemibold/font.woff
54.230.111.30200 OK 70 kB URL HTTP/2 webfonts.zohowebstatic.com/opensanssemibold/font.woff
IP 54.230.111.30:0
File type Web Open Font Format, TrueType, length 69852, version 0.0\012- data
Hash 654682e7c66190d84098b3e8294ceb8a
3e7ca432810c66f02d6f804aec19781e5b76972f
34a10249e4f5cad5b730c53997808f0f6bd1c1e9b56a547928329b45c9df075e
GET /opensanssemibold/font.woff HTTP/1.1
Host: webfonts.zohowebstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://forms.zohopublic.com
Connection: keep-alive
Referer: https://forms.zohopublic.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/font-woff
content-length: 69852
server: ZGS
date: Tue, 24 Jan 2023 04:23:37 GMT
last-modified: Wed, 28 Jul 2021 13:35:29 GMT
etag: "61015d21-110dc"
expires: Wed, 24 Jan 2024 04:23:37 GMT
cache-control: max-age=31536000
access-control-allow-origin: *
strict-transport-security: max-age=63072000
accept-ranges: bytes
x-cache: Hit from cloudfront
via: 1.1 227a1815a1677b9cf6dd587e443000b8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: tawrFnYtm2g8ZBfV7i39tw7aTYqGgk6v81tcNCgOQBW1Diqx35-8dA==
age: 512988
X-Firefox-Spdy: h2
webfonts.zohowebstatic.com/opensans/font.woff
54.230.111.30200 OK 68 kB URL HTTP/2 webfonts.zohowebstatic.com/opensans/font.woff
IP 54.230.111.30:0
File type Web Open Font Format, TrueType, length 67480, version 0.0\012- data
Hash a6780ec5a41838c45918fe01c67ee292
7a4b6d0cc40179c57b619ceec4d776728367210e
3d7bb22af23305340142e2a32202893476c790c802b33fcacc82f85ffa4a2677
GET /opensans/font.woff HTTP/1.1
Host: webfonts.zohowebstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://forms.zohopublic.com
Connection: keep-alive
Referer: https://forms.zohopublic.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/font-woff
content-length: 67480
server: ZGS
date: Sun, 08 Jan 2023 00:26:00 GMT
last-modified: Wed, 28 Jul 2021 13:35:31 GMT
etag: "61015d23-10798"
expires: Mon, 08 Jan 2024 00:26:00 GMT
cache-control: max-age=31536000
access-control-allow-origin: *
strict-transport-security: max-age=63072000
accept-ranges: bytes
x-cache: Hit from cloudfront
via: 1.1 227a1815a1677b9cf6dd587e443000b8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 6L1wLHuBJsN2DN95gCQIWledmTLE8gpcuaaoqm4tm6U9BLJ4c_LjHA==
age: 1909645
X-Firefox-Spdy: h2
ocsp.sectigo.com/
104.18.32.68200 OK 472 B IP 104.18.32.68:0
Hash eb878621c311c344647481ce62bd5599
d712d018232bb1f2df20475faa1a3d63dc2ffb3f
cb61dfd955cb368f0c46975c8561c715f329105f36c6cb16d9c240e26ae7f032
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 02:53:25 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Fri, 27 Jan 2023 14:49:26 GMT
Expires: Fri, 03 Feb 2023 14:49:25 GMT
Etag: "d712d018232bb1f2df20475faa1a3d63dc2ffb3f"
Cache-Control: max-age=387959,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7916eaca4f061c0e-OSL
accounts.zoho.com/static/showcaptcha?digest=1_C_78ede2b08bf163ac74bd5736c2050733b2aa88510b3bdb5e5ea5475f5f2bd47e32406e9627b6180934f8f6dfb7a904613677b5518b77b36614c92a46add45e0f
136.143.190.100200 3.2 kB URL HTTP/1.1 accounts.zoho.com/static/showcaptcha?digest=1_C_78ede2b08bf163ac74bd5736c2050733b2aa88510b3bdb5e5ea5475f5f2bd47e32406e9627b6180934f8f6dfb7a904613677b5518b77b36614c92a46add45e0f
IP 136.143.190.100:0
File type PNG image data, 200 x 70, 8-bit/color RGB, non-interlaced\012- data
Hash 19b4942c3e80e5ea2b8ce21d88da09fc
e3eb8409679f18de08531516a49d1cca49988ed2
fbbd824d330b5dda8e1b09a723eacbf09d907abea95b70ffb0e72fcb04c00598
GET /static/showcaptcha?digest=1_C_78ede2b08bf163ac74bd5736c2050733b2aa88510b3bdb5e5ea5475f5f2bd47e32406e9627b6180934f8f6dfb7a904613677b5518b77b36614c92a46add45e0f HTTP/1.1
Host: accounts.zoho.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://forms.zohopublic.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200
Server: ZGS
Date: Mon, 30 Jan 2023 02:53:25 GMT
Content-Type: image/png;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Content-Type-Options: nosniff
X-XSS-Protection: 1
Set-Cookie: e188bc05fe=4d6e62173a764ac5410d1192f41034cd; Path=/; Secure; HttpOnly
iamcsr=f939c6b8-4e1a-429d-9360-c77ebce7831e;path=/;SameSite=None;Secure;priority=high
_zcsr_tmp=f939c6b8-4e1a-429d-9360-c77ebce7831e;path=/;SameSite=Strict;Secure;priority=high
X-Frame-Options: SAMEORIGIN
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Content-Language: en-US
Strict-Transport-Security: max-age=63072000
static.zohocdn.com/forms/images/warning-info.607d397302b1f344f8d8df1258004046.png
185.20.209.147200 OK 0 B URL HTTP/2 static.zohocdn.com/forms/images/warning-info.607d397302b1f344f8d8df1258004046.png
IP 185.20.209.147:0
ASN #41913 Computerline GmbH
GET /forms/images/warning-info.607d397302b1f344f8d8df1258004046.png HTTP/1.1
Host: static.zohocdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://forms.zohopublic.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: ZGS
date: Mon, 30 Jan 2023 02:53:24 GMT
content-type: image/png
content-length: 613
x-content-type-options: nosniff
x-xss-protection: 1
cache-control: public, max-age=7776000, immutable
etag: "795e63fefb59c2bff5f31b157b6d01e9"
content-language: en-US
last-modified: Wed, 19 May 2021 11:02:20 GMT
content-encoding: br
access-control-expose-headers: *
access-control-allow-origin: *
vary: Accept-Encoding
strict-transport-security: max-age=15768000
timing-allow-origin: *
x-cache: HIT
nb-request-id: bd3c299488df30bdc2eda149773983f9
z-origin-id: ex1-1e6cc70eaea848c1be365e5be3da68c8
cross-origin-resource-policy: cross-origin
accept-ranges: bytes
X-Firefox-Spdy: h2
static.zohocdn.com/forms/images/loader.79de1b954774690fff0e7345d82faa25.gif
185.20.209.147200 OK 0 B URL HTTP/2 static.zohocdn.com/forms/images/loader.79de1b954774690fff0e7345d82faa25.gif
IP 185.20.209.147:0
ASN #41913 Computerline GmbH
GET /forms/images/loader.79de1b954774690fff0e7345d82faa25.gif HTTP/1.1
Host: static.zohocdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://forms.zohopublic.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: ZGS
date: Mon, 30 Jan 2023 02:53:24 GMT
content-type: image/gif
content-length: 2558
x-content-type-options: nosniff
x-xss-protection: 1
cache-control: public, max-age=7776000, immutable
etag: "8f3d3ae8228ea0894bbcba2f0dc68375"
content-language: en-US
last-modified: Wed, 19 May 2021 11:02:33 GMT
content-encoding: br
access-control-expose-headers: *
access-control-allow-origin: *
vary: Accept-Encoding
strict-transport-security: max-age=15768000
timing-allow-origin: *
x-cache: HIT
nb-request-id: 9ae897bcb9e7b5bceea26b6e370d5ee1
z-origin-id: ex1-55b29f08091d441e908edef82109d40e
cross-origin-resource-policy: cross-origin
accept-ranges: bytes
X-Firefox-Spdy: h2
static.zohocdn.com/forms/images/check-mark-outline.e44509047a0a79fb604be98bb10ec5bc.png
185.20.209.147200 OK 0 B URL HTTP/2 static.zohocdn.com/forms/images/check-mark-outline.e44509047a0a79fb604be98bb10ec5bc.png
IP 185.20.209.147:0
ASN #41913 Computerline GmbH
GET /forms/images/check-mark-outline.e44509047a0a79fb604be98bb10ec5bc.png HTTP/1.1
Host: static.zohocdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://forms.zohopublic.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: ZGS
date: Mon, 30 Jan 2023 02:53:24 GMT
content-type: image/png
content-length: 4599
x-content-type-options: nosniff
x-xss-protection: 1
cache-control: public, max-age=7776000, immutable
etag: "dad0f95db26f4856b486ad2e685c98dd"
content-language: en-US
last-modified: Wed, 19 May 2021 11:02:37 GMT
content-encoding: br
access-control-expose-headers: *
access-control-allow-origin: *
vary: Accept-Encoding
strict-transport-security: max-age=15768000
timing-allow-origin: *
x-cache: HIT
nb-request-id: 4288bfffd725b3eecacfd65a7eeac48e
z-origin-id: ex1-c8fe46a3f4004251a045b7140bd5c514
cross-origin-resource-policy: cross-origin
accept-ranges: bytes
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Rubik%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7COpen+Sans%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto&ver=5.8.3
142.250.74.106200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Rubik%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7COpen+Sans%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto&ver=5.8.3
IP 142.250.74.106:0
GET /css?family=Rubik%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7COpen+Sans%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto&ver=5.8.3 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gruporosmar.com.mx/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Mon, 30 Jan 2023 02:53:23 GMT
date: Mon, 30 Jan 2023 02:53:23 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2