r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 7c60904d097cde276e4e5632cef1b9f1
4f805026462589345d85e8df2d18eafba6237504
12af026999398f4976749e320667d43da3f99b7a2e8254aca7a410a964a106aa
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "12AF026999398F4976749E320667D43DA3F99B7A2E8254ACA7A410A964A106AA"
Last-Modified: Thu, 24 Nov 2022 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3225
Expires: Fri, 25 Nov 2022 08:41:46 GMT
Date: Fri, 25 Nov 2022 07:48:01 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash af40a2fcf8debb90c3608002da6c907a
3c75d6c0b557a3bd8d5db50155b8d896e852c145
555617a51ee3077552545a29a3baf0b43e8a82367e4c08110ee480ebedc8b523
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4657
Cache-Control: max-age=100847
Content-Type: application/ocsp-response
Date: Fri, 25 Nov 2022 07:48:01 GMT
Etag: "637f47ef-1d7"
Expires: Sat, 26 Nov 2022 11:48:48 GMT
Last-Modified: Thu, 24 Nov 2022 10:31:11 GMT
Server: ECS (ska/F710)
X-Cache: HIT
Content-Length: 471
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 260e9998c20d831b66f1029c8f47aac9
716d630f647c54dc69a7f9c63a6cac294b3df7f7
c9951a909f354174f0075a01c01c3c3aa6960983040e328bfbbbea81aeb405c2
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C9951A909F354174F0075A01C01C3C3AA6960983040E328BFBBBEA81AEB405C2"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10176
Expires: Fri, 25 Nov 2022 10:37:37 GMT
Date: Fri, 25 Nov 2022 07:48:01 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
34.102.187.140200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash d130218d0e2841f39c99610fe1a2ab90
29fbe1e177ee55c7a61ae0a206afff271cf5f945
6b6d74dccf10c2bc98a91c3388280d7ba1d9596bf8cadd7db0e2f63720b3d152
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Alert, Content-Type, Retry-After, Content-Length
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Fri, 25 Nov 2022 07:17:25 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 1836
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 9ebddc2b260d081ebbefee47c037cb28
492bad62a7ca6a74738921ef5ae6f0be5edebf39
74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5
GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: p21q2HuiQJ91deZHILTJCXufDsXvCSwJWPqAKxgMlct5VFkjmWHttytUbT/UGYHB42e38uL01k0=
x-amz-request-id: C0CNDB5PXESXBRYM
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Fri, 25 Nov 2022 07:40:43 GMT
age: 438
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 25 Nov 2022 07:48:01 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
34.102.187.140200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Pragma, Alert, Content-Type, ETag, Retry-After, Last-Modified, Content-Length, Cache-Control, Expires
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Fri, 25 Nov 2022 07:08:53 GMT
cache-control: public,max-age=3600
age: 2348
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2
www.agrofarmacia.net/
185.2.4.42301 Moved Permanently 0 B IP 185.2.4.42:0
ASN #203461 Register S.p.A.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: www.agrofarmacia.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Fri, 25 Nov 2022 07:48:01 GMT
Server: Apache
X-Powered-By: PHP/7.3.33
X-Redirect-By: WordPress
Location: https://www.agrofarmacia.net/
Vary: User-Agent
Content-Length: 0
Keep-Alive: timeout=5, max=150
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash fb6949e7abaa473393f7c604691de14f
599681bba3947709baa603bbae2dd7afd04059a4
36c5165526ea9d34de14d36655ed494d0cffaa11ca3271ee47824ac11246ba13
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4290
Cache-Control: max-age=95417
Content-Type: application/ocsp-response
Date: Fri, 25 Nov 2022 07:48:02 GMT
Etag: "637f3429-1d7"
Expires: Sat, 26 Nov 2022 10:18:19 GMT
Last-Modified: Thu, 24 Nov 2022 09:06:49 GMT
Server: ECS (ska/F710)
X-Cache: HIT
Content-Length: 471
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash ef871eb093ee5a9348279e97c67ccec0
0afd1bfb030db4edbee7019b720e1fa12e37e6c5
5fdc201ed7eed806bb706caf0c24c5348b8cfdd653d52abb2f6206c964f1b44d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5FDC201ED7EED806BB706CAF0C24C5348B8CFDD653D52ABB2F6206C964F1B44D"
Last-Modified: Fri, 25 Nov 2022 07:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21558
Expires: Fri, 25 Nov 2022 13:47:20 GMT
Date: Fri, 25 Nov 2022 07:48:02 GMT
Connection: keep-alive
push.services.mozilla.com/
35.164.56.167101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 35.164.56.167:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: LOXdRn83m7LYpX5AGSAAJA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 19SvlwBKFdBLcuQ2UAIO5hmDNg8=
www.agrofarmacia.net/
185.2.4.42301 Moved Permanently 0 B IP 185.2.4.42:0
ASN #203461 Register S.p.A.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: www.agrofarmacia.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/1.1 301 Moved Permanently
Date: Fri, 25 Nov 2022 07:48:02 GMT
Server: Apache
X-Powered-By: PHP/7.3.33
X-Redirect-By: WordPress
Location: https://agrofarmacia.net/
Vary: User-Agent
Content-Length: 0
Keep-Alive: timeout=5, max=150
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash b75c00c21f5854618bc06d14b8d83c40
ae14f585ae9682e6c2fad146c12c00ee4d83e8f3
a8e7585e49b01a64520051f8d38f499c8cb82645e3d146e6ca34378eac684e69
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A8E7585E49B01A64520051F8D38F499C8CB82645E3D146E6CA34378EAC684E69"
Last-Modified: Wed, 23 Nov 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6051
Expires: Fri, 25 Nov 2022 09:28:54 GMT
Date: Fri, 25 Nov 2022 07:48:03 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash b75c00c21f5854618bc06d14b8d83c40
ae14f585ae9682e6c2fad146c12c00ee4d83e8f3
a8e7585e49b01a64520051f8d38f499c8cb82645e3d146e6ca34378eac684e69
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A8E7585E49B01A64520051F8D38F499C8CB82645E3D146E6CA34378EAC684E69"
Last-Modified: Wed, 23 Nov 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6051
Expires: Fri, 25 Nov 2022 09:28:54 GMT
Date: Fri, 25 Nov 2022 07:48:03 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash b75c00c21f5854618bc06d14b8d83c40
ae14f585ae9682e6c2fad146c12c00ee4d83e8f3
a8e7585e49b01a64520051f8d38f499c8cb82645e3d146e6ca34378eac684e69
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A8E7585E49B01A64520051F8D38F499C8CB82645E3D146E6CA34378EAC684E69"
Last-Modified: Wed, 23 Nov 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6051
Expires: Fri, 25 Nov 2022 09:28:54 GMT
Date: Fri, 25 Nov 2022 07:48:03 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash b75c00c21f5854618bc06d14b8d83c40
ae14f585ae9682e6c2fad146c12c00ee4d83e8f3
a8e7585e49b01a64520051f8d38f499c8cb82645e3d146e6ca34378eac684e69
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A8E7585E49B01A64520051F8D38F499C8CB82645E3D146E6CA34378EAC684E69"
Last-Modified: Wed, 23 Nov 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6051
Expires: Fri, 25 Nov 2022 09:28:54 GMT
Date: Fri, 25 Nov 2022 07:48:03 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash b75c00c21f5854618bc06d14b8d83c40
ae14f585ae9682e6c2fad146c12c00ee4d83e8f3
a8e7585e49b01a64520051f8d38f499c8cb82645e3d146e6ca34378eac684e69
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A8E7585E49B01A64520051F8D38F499C8CB82645E3D146E6CA34378EAC684E69"
Last-Modified: Wed, 23 Nov 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6051
Expires: Fri, 25 Nov 2022 09:28:54 GMT
Date: Fri, 25 Nov 2022 07:48:03 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F25123759-9d71-477d-9857-9cc07cc12173.jpeg
34.120.237.76200 OK 6.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F25123759-9d71-477d-9857-9cc07cc12173.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 92171fa8fbc051aefeb8ceb6072848de
377775b7c7b085efa6dd653d285ba3a52af6a549
537c4d5cc3ef2e60c3d0171ac31c1dba4ab2ff340108015787a9dd20dc76b7ed
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F25123759-9d71-477d-9857-9cc07cc12173.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6891
x-amzn-requestid: 6da0ae90-c3cc-4e9c-9a0e-3c72b4eb7605
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: b7m2NGsvoAMF_fQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637aeb5a-1ed2badf0e84d40e6a052f7a;Sampled=0
x-amzn-remapped-date: Mon, 21 Nov 2022 03:07:06 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: OTpJ5Qu_Ttq5se4SrZIAEiNVm6mqrrUq_0TmMJ4vldeuzMuCSxxUtA==
via: 1.1 1cc6ed0d2d3dd9529ce544f9dfe61a52.cloudfront.net (CloudFront), 1.1 d8792dbd3191bbe722eba5b536b979c8.cloudfront.net (CloudFront), 1.1 google
date: Fri, 25 Nov 2022 06:37:47 GMT
age: 4216
etag: "377775b7c7b085efa6dd653d285ba3a52af6a549"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F20a12e2c-1403-4b39-9da1-b2be17a6bbd1.png
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F20a12e2c-1403-4b39-9da1-b2be17a6bbd1.png
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 6673267df195141739d1018c17101368
b80047da428636adb7027f12718c8d11bd461da4
de30af07eed7326a1326c831e04727649a112c20d0c485a7e973edd96f91bfaa
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F20a12e2c-1403-4b39-9da1-b2be17a6bbd1.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11954
x-amzn-requestid: c2484616-009c-47c4-b52a-36b956c7b207
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: b8JzaHXLoAMFpUw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637b2348-01d4a7be526475d31fce3c13;Sampled=0
x-amzn-remapped-date: Mon, 21 Nov 2022 07:05:44 GMT
x-amz-cf-pop: SEA19-C3
x-cache: Miss from cloudfront
x-amz-cf-id: 3KRN_6gYmJqP-Ehaxdu5iwp9xKOOg-dhtGdUcSaho56NVWqVCtyiFA==
via: 1.1 26ca01ec7377e425b59b6a08cb1ec342.cloudfront.net (CloudFront), 1.1 2c6b5dd77f1abe60653ce0454f344b64.cloudfront.net (CloudFront), 1.1 google
date: Thu, 24 Nov 2022 14:49:47 GMT
age: 61096
etag: "b80047da428636adb7027f12718c8d11bd461da4"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F96a33fb5-b971-4386-a670-7dcbbf52b051.jpeg
34.120.237.76200 OK 2.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F96a33fb5-b971-4386-a670-7dcbbf52b051.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 66d06d3cac1784e4ce6c8c89c300f10a
41ef94d198bbf98185eb332a3b6934c3c26c3afc
55312d1b43447e4f77d8e9e52451bb63a9868ba8122c9e16e0a20479d34367e3
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F96a33fb5-b971-4386-a670-7dcbbf52b051.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 2351
x-amzn-requestid: 141bbf99-5d78-4b9c-a537-491718aee68a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: b43YGE_SoAMFlbw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6379d29a-00017cd344caea2b6408aeb3;Sampled=0
x-amzn-remapped-date: Sun, 20 Nov 2022 07:09:14 GMT
x-amz-cf-pop: SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: 1-8WM-7tNqakPDW9-K0GVbOKdotndEXj2QeJzw3cJol-g9TT5IVyOQ==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 28fdf6e146f70e7372911f118404fb20.cloudfront.net (CloudFront), 1.1 google
date: Thu, 24 Nov 2022 16:45:53 GMT
age: 54130
etag: "41ef94d198bbf98185eb332a3b6934c3c26c3afc"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0a474c96-6cd7-4e42-a54a-02217768182e.jpeg
34.120.237.76200 OK 8.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0a474c96-6cd7-4e42-a54a-02217768182e.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash c8f6118fc03f31862ff68fef8a2b9a7f
318c5d7acd0d36c816b09fcf1b7dc4bfb5ec7e73
cdd4d44f05cc524d7f2b1d6d792ecd8a9a933e52ecb7685a7d7ea786a510ef39
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0a474c96-6cd7-4e42-a54a-02217768182e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8089
x-amzn-requestid: f4b5f150-a5dc-40bf-93b9-394c294a51cb
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cEmkRFSnIAMF5vg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637e8481-74454bee1a1ec6d506f3d75b;Sampled=0
x-amzn-remapped-date: Wed, 23 Nov 2022 20:37:21 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: ZVv8iTGCYV-IiBJ6KwNSG1ZWSEwClaQopUejSqZq0S1wd782lRoyKA==
via: 1.1 49b94a8674d6e86a841d6523f7dbaf14.cloudfront.net (CloudFront), 1.1 57a21088b36c69a83578b5a5579df58e.cloudfront.net (CloudFront), 1.1 google
date: Thu, 24 Nov 2022 22:59:49 GMT
age: 31694
etag: "318c5d7acd0d36c816b09fcf1b7dc4bfb5ec7e73"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd87485db-f230-4024-987f-6b9ea6098576.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd87485db-f230-4024-987f-6b9ea6098576.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 05a92b9f554600c920e8b772eb16ee75
7f29e0e2de89f7a88ff0bf2a720365032ef11cc1
4b51a70a0ee6fe0d723880ea70fee25c15bff671d8a484bbb2a3c9962303c735
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd87485db-f230-4024-987f-6b9ea6098576.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10356
x-amzn-requestid: 8450975f-bcb2-4b59-b0ef-42e43d1bb16a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cCM-cGKIIAMFo7w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637d8ec2-7f95154e3177c6e30a925244;Sampled=0
x-amzn-remapped-date: Wed, 23 Nov 2022 03:08:50 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: _dHgUlzLnOsFrI73NzPGn0VJ2NvJqRew6bHzlD6_n2zwHPfQ-8kIvA==
via: 1.1 c34da255183aa208dd1c722ff211f9b2.cloudfront.net (CloudFront), 1.1 4f3feb5c4393987d42d1971d404d7cea.cloudfront.net (CloudFront), 1.1 google
date: Fri, 25 Nov 2022 03:16:29 GMT
age: 16294
etag: "7f29e0e2de89f7a88ff0bf2a720365032ef11cc1"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F012ad1d7-e278-4523-b537-853fcf51e3c0.jpeg
34.120.237.76200 OK 15 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F012ad1d7-e278-4523-b537-853fcf51e3c0.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 58d104a028a45c82a7310de66477b256
e94f119e32bcff525f9b1a1c239e77747b6fc101
84d79596f4a2c255d1ecb98f557cfa4a2a42230eb92228122df7db6662140250
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F012ad1d7-e278-4523-b537-853fcf51e3c0.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 15116
x-amzn-requestid: fda2f125-032c-47b6-b089-fa24112fbc37
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bujXQG9YIAMFq1Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6375b294-3db431e479f33dae20a54124;Sampled=0
x-amzn-remapped-date: Thu, 17 Nov 2022 04:03:32 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 16F1xBlJu8h6NhDqMDYk_irlTyBNBDKiiChhEiyXWksmr2iGoNWBXA==
via: 1.1 86b676273517904f44af31586adb06ae.cloudfront.net (CloudFront), 1.1 325ed3ba58a560748d886354beef39c0.cloudfront.net (CloudFront), 1.1 google
date: Fri, 25 Nov 2022 05:22:11 GMT
age: 8752
etag: "e94f119e32bcff525f9b1a1c239e77747b6fc101"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
agrofarmacia.net/
185.2.4.42200 OK 12 kB IP 185.2.4.42:0
ASN #203461 Register S.p.A.
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (2996), with CRLF, LF line terminators
Hash 30c88ce86bc81db73a6cbdbc552a2a9f
a5200b45d8e7620b0c865266aef3a52ada3174cd
4bc8c718ca4773cd14b8b4869da073ce5f628ad162eeb64d1fe6df1b51f5322f
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: agrofarmacia.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/1.1 200 OK
Date: Fri, 25 Nov 2022 07:48:02 GMT
Server: Apache
X-Powered-By: PHP/7.3.33
Link: <https://agrofarmacia.net/wp-json/>; rel="https://api.w.org/", <https://agrofarmacia.net/>; rel=shortlink
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 11482
Keep-Alive: timeout=5, max=150
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
agrofarmacia.net/wp-includes/css/dist/block-library/style.min.css?ver=2d8c3b76a3b75c26abcd680221d75268
185.2.4.42200 OK 4.3 kB URL HTTP/1.1 agrofarmacia.net/wp-includes/css/dist/block-library/style.min.css?ver=2d8c3b76a3b75c26abcd680221d75268
IP 185.2.4.42:0
ASN #203461 Register S.p.A.
File type ASCII text, with very long lines (25242), with no line terminators
Hash 5e71e1a3c3df9c07f16076e1372016b8
6d054f2291f0999a1fc673bec8fdadf0cbbd9458
fc12dab9d762325806c12d1fb3c6c4f839ae3be5dba4554acc338b6a275f219b
GET /wp-includes/css/dist/block-library/style.min.css?ver=2d8c3b76a3b75c26abcd680221d75268 HTTP/1.1
Host: agrofarmacia.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://agrofarmacia.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 25 Nov 2022 07:48:04 GMT
Server: Apache
Last-Modified: Thu, 17 Nov 2022 11:05:09 GMT
ETag: "41e24e0-629a-5eda88ffddbef-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 4258
Keep-Alive: timeout=5, max=149
Connection: Keep-Alive
Content-Type: text/css
agrofarmacia.net/wp-content/themes/stockholm/style.css?ver=2d8c3b76a3b75c26abcd680221d75268
185.2.4.42200 OK 335 B URL HTTP/1.1 agrofarmacia.net/wp-content/themes/stockholm/style.css?ver=2d8c3b76a3b75c26abcd680221d75268
IP 185.2.4.42:0
ASN #203461 Register S.p.A.
Hash 6d0bac9d0538dcba4b601e50d3021860
ae63ca6051d3094ca762cd9b090533fe08d1f846
c8d75a22feb6cfe33a73183dbf645444a3a3705c1b48fb71c3c42578cabde002
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/stockholm/style.css?ver=2d8c3b76a3b75c26abcd680221d75268 HTTP/1.1
Host: agrofarmacia.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://agrofarmacia.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 25 Nov 2022 07:48:04 GMT
Server: Apache
Last-Modified: Thu, 17 Nov 2022 10:59:20 GMT
ETag: "41e30cc-204-5eda87b2c1a6e-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 335
Keep-Alive: timeout=5, max=148
Connection: Keep-Alive
Content-Type: text/css
agrofarmacia.net/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=2d8c3b76a3b75c26abcd680221d75268
185.2.4.42200 OK 651 B URL HTTP/1.1 agrofarmacia.net/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=2d8c3b76a3b75c26abcd680221d75268
IP 185.2.4.42:0
ASN #203461 Register S.p.A.
Hash f026e73e8b072cc3ae1491702b9c491a
5cf262adbd7a8a0d067230081688c0f8fe6c36f8
c2340e9fff602440a6a9daadf0e90fc5eb265bd6fbd495d77d7891a303575b29
GET /wp-content/plugins/contact-form-7/includes/css/styles.css?ver=2d8c3b76a3b75c26abcd680221d75268 HTTP/1.1
Host: agrofarmacia.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://agrofarmacia.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 25 Nov 2022 07:48:04 GMT
Server: Apache
Last-Modified: Thu, 17 Nov 2022 11:05:54 GMT
ETag: "4242454-695-5eda892ab1573-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 651
Keep-Alive: timeout=5, max=150
Connection: Keep-Alive
Content-Type: text/css
agrofarmacia.net/wp-content/plugins/revslider/public/assets/css/settings.css?ver=5.4.8
185.2.4.42200 OK 9.5 kB URL HTTP/1.1 agrofarmacia.net/wp-content/plugins/revslider/public/assets/css/settings.css?ver=5.4.8
IP 185.2.4.42:0
ASN #203461 Register S.p.A.
File type Unicode text, UTF-8 text, with very long lines (5178)
Hash 2e23a7f758f5874b18b33609587dba87
ed5ac5ed1f56e27e889dabe78bf42a74159952ea
1a2595768612243d5c078586b0efc23a8d8669737235da43f010f7a61592de12
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/revslider/public/assets/css/settings.css?ver=5.4.8 HTTP/1.1
Host: agrofarmacia.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://agrofarmacia.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 25 Nov 2022 07:48:04 GMT
Server: Apache
Last-Modified: Thu, 17 Nov 2022 11:19:12 GMT
ETag: "4260fe0-9623-5eda8c238b973-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 9480
Keep-Alive: timeout=5, max=150
Connection: Keep-Alive
Content-Type: text/css
agrofarmacia.net/wp-content/themes/stockholm/css/font-awesome/css/font-awesome.min.css?ver=2d8c3b76a3b75c26abcd680221d75268
185.2.4.42200 OK 7.1 kB URL HTTP/1.1 agrofarmacia.net/wp-content/themes/stockholm/css/font-awesome/css/font-awesome.min.css?ver=2d8c3b76a3b75c26abcd680221d75268
IP 185.2.4.42:0
ASN #203461 Register S.p.A.
File type ASCII text, with very long lines (30837)
Hash 52f1a8a2ce85fa8432308b33bc1a2e79
fd80917af5371c8ecad0198592a1e7cce4b77b0e
07bd6a9ea0213e20f362485aadc17a88c486ecfb394004b41b8b38db6e6a35f6
GET /wp-content/themes/stockholm/css/font-awesome/css/font-awesome.min.css?ver=2d8c3b76a3b75c26abcd680221d75268 HTTP/1.1
Host: agrofarmacia.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://agrofarmacia.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 25 Nov 2022 07:48:04 GMT
Server: Apache
Last-Modified: Thu, 17 Nov 2022 11:19:37 GMT
ETag: "4261151-7918-5eda8c3c041e4-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 7053
Keep-Alive: timeout=5, max=150
Connection: Keep-Alive
Content-Type: text/css
agrofarmacia.net/wp-content/themes/stockholm/css/elegant-icons/style.min.css?ver=2d8c3b76a3b75c26abcd680221d75268
185.2.4.42200 OK 4.2 kB URL HTTP/1.1 agrofarmacia.net/wp-content/themes/stockholm/css/elegant-icons/style.min.css?ver=2d8c3b76a3b75c26abcd680221d75268
IP 185.2.4.42:0
ASN #203461 Register S.p.A.
File type ASCII text, with very long lines (21769), with no line terminators
Hash f3a17950a8e7faa7352af4b55d655c4b
492ddab7dfd9e14e7334d92ecedafc5c1940a2cc
d645008ee7f2e849c441b8de7e09a40ec0585095fe201dc87b29408ae1593cac
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/stockholm/css/elegant-icons/style.min.css?ver=2d8c3b76a3b75c26abcd680221d75268 HTTP/1.1
Host: agrofarmacia.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://agrofarmacia.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 25 Nov 2022 07:48:04 GMT
Server: Apache
Last-Modified: Thu, 17 Nov 2022 11:09:29 GMT
ETag: "4242dc1-5509-5eda89f7ea43a-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 4166
Keep-Alive: timeout=5, max=147
Connection: Keep-Alive
Content-Type: text/css
agrofarmacia.net/wp-content/themes/stockholm/css/linear-icons/style.css?ver=2d8c3b76a3b75c26abcd680221d75268
185.2.4.42200 OK 1.7 kB URL HTTP/1.1 agrofarmacia.net/wp-content/themes/stockholm/css/linear-icons/style.css?ver=2d8c3b76a3b75c26abcd680221d75268
IP 185.2.4.42:0
ASN #203461 Register S.p.A.
Hash 7ab6a673d5e6fb9ea8e3ee4645c42493
38b4d86ba2ccd02ae25aaacbf3919a2e57c13c3b
a4ad682d8cad87cb4d62a15777d23087b90e11b156ba5466e52563f2f17767b4
GET /wp-content/themes/stockholm/css/linear-icons/style.css?ver=2d8c3b76a3b75c26abcd680221d75268 HTTP/1.1
Host: agrofarmacia.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://agrofarmacia.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 25 Nov 2022 07:48:04 GMT
Server: Apache
Last-Modified: Thu, 17 Nov 2022 11:09:57 GMT
ETag: "4242de9-2098-5eda8a125de1c-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 1651
Keep-Alive: timeout=5, max=149
Connection: Keep-Alive
Content-Type: text/css
agrofarmacia.net/wp-content/themes/stockholm/css/style_dynamic.css?ver=1668683023
185.2.4.42200 OK 4.3 kB URL HTTP/1.1 agrofarmacia.net/wp-content/themes/stockholm/css/style_dynamic.css?ver=1668683023
IP 185.2.4.42:0
ASN #203461 Register S.p.A.
File type ASCII text, with very long lines (1292)
Hash ee7d287fe53c2f39df8fc1f512157699
bd55667242c5237630f463c04473793dd5d32465
215e8ab867fc347b119d763a6fef8ebd3ac00c9863fa4eaf18b23280a7460af3
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/stockholm/css/style_dynamic.css?ver=1668683023 HTTP/1.1
Host: agrofarmacia.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://agrofarmacia.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 25 Nov 2022 07:48:04 GMT
Server: Apache
Last-Modified: Thu, 17 Nov 2022 11:03:43 GMT
ETag: "4222405-6120-5eda88adb0f45-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 4282
Keep-Alive: timeout=5, max=150
Connection: Keep-Alive
Content-Type: text/css
agrofarmacia.net/wp-includes/js/mediaelement/mediaelementplayer-legacy.min.css?ver=4.2.6-78496d1
185.2.4.42200 OK 2.6 kB URL HTTP/1.1 agrofarmacia.net/wp-includes/js/mediaelement/mediaelementplayer-legacy.min.css?ver=4.2.6-78496d1
IP 185.2.4.42:0
ASN #203461 Register S.p.A.
File type ASCII text, with very long lines (11232), with no line terminators
Hash 32ddff47911411a1e7685adb9b5dc293
542dd289e007fcab44021724159568f33523aee8
6319be54a637315646bb05a597015dbb5ff79af4f7fc7c4a14416183292eb7f9
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/mediaelement/mediaelementplayer-legacy.min.css?ver=4.2.6-78496d1 HTTP/1.1
Host: agrofarmacia.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://agrofarmacia.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 25 Nov 2022 07:48:04 GMT
Server: Apache
Last-Modified: Thu, 17 Nov 2022 10:59:57 GMT
ETag: "41e31bb-2be0-5eda87d680390-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 2585
Keep-Alive: timeout=5, max=149
Connection: Keep-Alive
Content-Type: text/css
agrofarmacia.net/wp-includes/js/mediaelement/wp-mediaelement.min.css?ver=2d8c3b76a3b75c26abcd680221d75268
185.2.4.42200 OK 1.1 kB URL HTTP/1.1 agrofarmacia.net/wp-includes/js/mediaelement/wp-mediaelement.min.css?ver=2d8c3b76a3b75c26abcd680221d75268
IP 185.2.4.42:0
ASN #203461 Register S.p.A.
File type ASCII text, with very long lines (4163), with no line terminators
Hash dcb69e9298cb966d1a9875df8d6e2032
24ab2d72e0fc7324be99528fc214d4f0b1548d04
96eab68e1338db6123a16b34c30c2cdad14bbef84bfb69557160ba023fc08912
GET /wp-includes/js/mediaelement/wp-mediaelement.min.css?ver=2d8c3b76a3b75c26abcd680221d75268 HTTP/1.1
Host: agrofarmacia.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://agrofarmacia.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 25 Nov 2022 07:48:04 GMT
Server: Apache
Last-Modified: Thu, 17 Nov 2022 10:59:58 GMT
ETag: "41e31c2-1043-5eda87d726bae-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 1142
Keep-Alive: timeout=5, max=149
Connection: Keep-Alive
Content-Type: text/css
agrofarmacia.net/wp-content/themes/stockholm/css/style_dynamic_responsive.css?ver=1668683023
185.2.4.42200 OK 172 B URL HTTP/1.1 agrofarmacia.net/wp-content/themes/stockholm/css/style_dynamic_responsive.css?ver=1668683023
IP 185.2.4.42:0
ASN #203461 Register S.p.A.
Hash f111a89343eac12bbdd4b2f7a9eca483
cdfaabcf1f457c755767f46642a99e590fe890fc
acef6b2ee297e144d6848963c1e72efca35c0632e261b483fe2a9d4c0a9fc70b
GET /wp-content/themes/stockholm/css/style_dynamic_responsive.css?ver=1668683023 HTTP/1.1
Host: agrofarmacia.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://agrofarmacia.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 25 Nov 2022 07:48:04 GMT
Server: Apache
Last-Modified: Thu, 17 Nov 2022 11:03:43 GMT
ETag: "4222407-168-5eda88ade91ba-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 172
Keep-Alive: timeout=5, max=148
Connection: Keep-Alive
Content-Type: text/css
agrofarmacia.net/wp-content/themes/stockholm/css/custom_css.css?ver=1668683004
185.2.4.42200 OK 2 B URL HTTP/1.1 agrofarmacia.net/wp-content/themes/stockholm/css/custom_css.css?ver=1668683004
IP 185.2.4.42:0
ASN #203461 Register S.p.A.
Hash e1c06d85ae7b8b032bef47e42e4c08f9
71853c6197a6a7f222db0f1978c7cb232b87c5ee
75a11da44c802486bc6f65640aa48a730f0f684c5c07a42ba3cd1735eb3fb070
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/stockholm/css/custom_css.css?ver=1668683004 HTTP/1.1
Host: agrofarmacia.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://agrofarmacia.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 25 Nov 2022 07:48:04 GMT
Server: Apache
Last-Modified: Thu, 17 Nov 2022 11:03:24 GMT
ETag: "42223fc-2-5eda889c09941"
Accept-Ranges: bytes
Content-Length: 2
Vary: User-Agent
Keep-Alive: timeout=5, max=148
Connection: Keep-Alive
Content-Type: text/css
agrofarmacia.net/wp-content/themes/stockholm/css/responsive.min.css?ver=2d8c3b76a3b75c26abcd680221d75268
185.2.4.42200 OK 9.2 kB URL HTTP/1.1 agrofarmacia.net/wp-content/themes/stockholm/css/responsive.min.css?ver=2d8c3b76a3b75c26abcd680221d75268
IP 185.2.4.42:0
ASN #203461 Register S.p.A.
File type ASCII text, with very long lines (65536), with no line terminators
Hash 91bf9915f4866940a487f505a12286a8
09e093104a54c2db21308c067342ecf57a33ab9e
1abca1d5015213f332e5fd52ea6901e5ac895f52c50735896f63859eca559686
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/stockholm/css/responsive.min.css?ver=2d8c3b76a3b75c26abcd680221d75268 HTTP/1.1
Host: agrofarmacia.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://agrofarmacia.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 25 Nov 2022 07:48:04 GMT
Server: Apache
Last-Modified: Thu, 17 Nov 2022 11:03:31 GMT
ETag: "4222401-11af4-5eda88a2585b3-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 9222
Keep-Alive: timeout=5, max=146
Connection: Keep-Alive
Content-Type: text/css
agrofarmacia.net/wp-content/themes/stockholm-child/style.css?ver=2d8c3b76a3b75c26abcd680221d75268
185.2.4.42200 OK 1.9 kB URL HTTP/1.1 agrofarmacia.net/wp-content/themes/stockholm-child/style.css?ver=2d8c3b76a3b75c26abcd680221d75268
IP 185.2.4.42:0
ASN #203461 Register S.p.A.
Hash 67958d4d813d029dd1f102c2b68cd2cf
c379743e247843894e5259d7b618d77dc17971a8
5cea0263cd61dd8a0da1a0cb36d9bfc2cb201fe09f01aaaa22051e68874bdbbc
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/stockholm-child/style.css?ver=2d8c3b76a3b75c26abcd680221d75268 HTTP/1.1
Host: agrofarmacia.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://agrofarmacia.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 25 Nov 2022 07:48:04 GMT
Server: Apache
Last-Modified: Thu, 17 Nov 2022 10:59:22 GMT
ETag: "41e30d5-2181-5eda87b47ebaa-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 1936
Keep-Alive: timeout=5, max=148
Connection: Keep-Alive
Content-Type: text/css
agrofarmacia.net/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.4.1
185.2.4.42200 OK 4.0 kB URL HTTP/1.1 agrofarmacia.net/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.4.1
IP 185.2.4.42:0
ASN #203461 Register S.p.A.
File type ASCII text, with very long lines (9959)
Hash a6c81e2f02bd04160d2de88c4e8f3559
e3f3c91427d785820ca97dabe738f01faf041f36
b734d83af5da0eb627e04d3e62ce652b9eb7de19667a1b91da6b93f0ea5d7ffe
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=1.4.1 HTTP/1.1
Host: agrofarmacia.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://agrofarmacia.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 25 Nov 2022 07:48:04 GMT
Server: Apache
Last-Modified: Thu, 17 Nov 2022 10:59:54 GMT
ETag: "41e31a2-2748-5eda87d3527c7-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 4014
Keep-Alive: timeout=5, max=147
Connection: Keep-Alive
Content-Type: application/javascript
agrofarmacia.net/wp-content/plugins/revslider/public/assets/js/jquery.themepunch.revolution.min.js?ver=5.4.8
185.2.4.42200 OK 18 kB URL HTTP/1.1 agrofarmacia.net/wp-content/plugins/revslider/public/assets/js/jquery.themepunch.revolution.min.js?ver=5.4.8
IP 185.2.4.42:0
ASN #203461 Register S.p.A.
File type ASCII text, with very long lines (64614)
Hash 29e65dfc954bfad48f980932be5bc816
40b8fed8b09f7d56c2f36545f6bd688f85bf925b
fa7f9a3dc0974c723c21c8b786e7fe43098f23f5a6f4885184e90987909394f4
GET /wp-content/plugins/revslider/public/assets/js/jquery.themepunch.revolution.min.js?ver=5.4.8 HTTP/1.1
Host: agrofarmacia.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://agrofarmacia.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 25 Nov 2022 07:48:04 GMT
Server: Apache
Last-Modified: Thu, 17 Nov 2022 11:19:13 GMT
ETag: "4260fe6-fdaf-5eda8c248559f-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 18082
Keep-Alive: timeout=5, max=147
Connection: Keep-Alive
Content-Type: application/javascript
agrofarmacia.net/wp-content/themes/stockholm/css/stylesheet.min.css?ver=2d8c3b76a3b75c26abcd680221d75268
185.2.4.42200 OK 55 kB URL HTTP/1.1 agrofarmacia.net/wp-content/themes/stockholm/css/stylesheet.min.css?ver=2d8c3b76a3b75c26abcd680221d75268
IP 185.2.4.42:0
ASN #203461 Register S.p.A.
File type ASCII text, with very long lines (65536), with no line terminators
Hash 339bc0e012a48873f39e90395db8963d
adf0c3d5e8619c719041e0499d7f6c8159c16f11
01a3ff484b035049ebcf9dc67ca7565153eb77ce7c186bf2c3b8e1cf8d080461
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/stockholm/css/stylesheet.min.css?ver=2d8c3b76a3b75c26abcd680221d75268 HTTP/1.1
Host: agrofarmacia.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://agrofarmacia.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 25 Nov 2022 07:48:04 GMT
Server: Apache
Last-Modified: Thu, 17 Nov 2022 11:03:40 GMT
ETag: "4222404-60fe4-5eda88ab585b5-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 54646
Keep-Alive: timeout=5, max=150
Connection: Keep-Alive
Content-Type: text/css
agrofarmacia.net/wp-content/plugins/revslider/public/assets/js/jquery.themepunch.tools.min.js?ver=5.4.8
185.2.4.42200 OK 38 kB URL HTTP/1.1 agrofarmacia.net/wp-content/plugins/revslider/public/assets/js/jquery.themepunch.tools.min.js?ver=5.4.8
IP 185.2.4.42:0
ASN #203461 Register S.p.A.
File type ASCII text, with very long lines (27287)
Hash 9f8cfca5b75c0a294c0b6343d98201f0
eaecb944b9565e65271e1f09d682d2ab7dfaf4d0
4fcaa9fdd6eb3d15c6d56fb1de274d78962c6251f1f06191bbb3d97a320afd0d
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/revslider/public/assets/js/jquery.themepunch.tools.min.js?ver=5.4.8 HTTP/1.1
Host: agrofarmacia.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://agrofarmacia.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 25 Nov 2022 07:48:04 GMT
Server: Apache
Last-Modified: Thu, 17 Nov 2022 11:19:13 GMT
ETag: "4260fe8-1af53-5eda8c24d00f5-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 38315
Keep-Alive: timeout=5, max=145
Connection: Keep-Alive
Content-Type: application/javascript
agrofarmacia.net/wp-content/plugins/js_composer/assets/css/js_composer.min.css?ver=5.5.5
185.2.4.42200 OK 46 kB URL HTTP/1.1 agrofarmacia.net/wp-content/plugins/js_composer/assets/css/js_composer.min.css?ver=5.5.5
IP 185.2.4.42:0
ASN #203461 Register S.p.A.
File type ASCII text, with very long lines (65536), with no line terminators
Hash 4cf73362be72b477287acbb3f7737f86
3c3e185f11497b3fc06fbb6b0e1932bf7f5dfb3d
c9e79d70c80ee8ee7114b162dc07a1fda6a6fe6e1cd7af94d8aba516e36a0a14
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/js_composer/assets/css/js_composer.min.css?ver=5.5.5 HTTP/1.1
Host: agrofarmacia.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://agrofarmacia.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 25 Nov 2022 07:48:04 GMT
Server: Apache
Last-Modified: Thu, 17 Nov 2022 11:06:16 GMT
ETag: "42424ce-76596-5eda893fcad07-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 45591
Keep-Alive: timeout=5, max=149
Connection: Keep-Alive
Content-Type: text/css
agrofarmacia.net/wp-includes/js/mediaelement/mediaelement-and-player.min.js?ver=4.2.6-78496d1
185.2.4.42200 OK 38 kB URL HTTP/1.1 agrofarmacia.net/wp-includes/js/mediaelement/mediaelement-and-player.min.js?ver=4.2.6-78496d1
IP 185.2.4.42:0
ASN #203461 Register S.p.A.
File type ASCII text, with very long lines (65266)
Hash 41fc857312dc632e17b5622c845b46b2
e01db357c907260107de3084e14ba7653192c195
1fe191de98595dcde27b948075d6c702d117219e47c281f1a8d279205c1f72d7
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/mediaelement/mediaelement-and-player.min.js?ver=4.2.6-78496d1 HTTP/1.1
Host: agrofarmacia.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://agrofarmacia.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 25 Nov 2022 07:48:04 GMT
Server: Apache
Last-Modified: Thu, 17 Nov 2022 10:59:57 GMT
ETag: "41e31b5-2638f-5eda87d5cad2a-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 38128
Keep-Alive: timeout=5, max=146
Connection: Keep-Alive
Content-Type: application/javascript
agrofarmacia.net/wp-includes/js/mediaelement/mediaelement-migrate.min.js?ver=2d8c3b76a3b75c26abcd680221d75268
185.2.4.42200 OK 551 B URL HTTP/1.1 agrofarmacia.net/wp-includes/js/mediaelement/mediaelement-migrate.min.js?ver=2d8c3b76a3b75c26abcd680221d75268
IP 185.2.4.42:0
ASN #203461 Register S.p.A.
File type ASCII text, with very long lines (1193), with no line terminators
Hash 2f198247159358c97acb1750c59b1ab5
5dbc36778fe163d998f295095ddc5c73895f0daa
edb7abae43f424a4af8fe4d1e823ca6b383758efef9c1caa53c0ea85100b87eb
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/mediaelement/mediaelement-migrate.min.js?ver=2d8c3b76a3b75c26abcd680221d75268 HTTP/1.1
Host: agrofarmacia.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://agrofarmacia.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 25 Nov 2022 07:48:04 GMT
Server: Apache
Last-Modified: Thu, 17 Nov 2022 10:59:57 GMT
ETag: "41e31b7-4a9-5eda87d608d5f-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 551
Keep-Alive: timeout=5, max=146
Connection: Keep-Alive
Content-Type: application/javascript
agrofarmacia.net/wp-content/plugins/contact-form-7/includes/js/scripts.js?ver=2d8c3b76a3b75c26abcd680221d75268
185.2.4.42200 OK 4.0 kB URL HTTP/1.1 agrofarmacia.net/wp-content/plugins/contact-form-7/includes/js/scripts.js?ver=2d8c3b76a3b75c26abcd680221d75268
IP 185.2.4.42:0
ASN #203461 Register S.p.A.
Hash 179ff7e7ba061cb009f29849fc15f071
f824ebc474c27b208137b68aa51d5d0d2b3a89e9
b889c73e9da05e33847d3ab6f1f98c172204c3e4cb2e4832863695f34e2270de
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/contact-form-7/includes/js/scripts.js?ver=2d8c3b76a3b75c26abcd680221d75268 HTTP/1.1
Host: agrofarmacia.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://agrofarmacia.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 25 Nov 2022 07:48:04 GMT
Server: Apache
Last-Modified: Thu, 17 Nov 2022 11:05:55 GMT
ETag: "4242459-3868-5eda892b619d1-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 3993
Keep-Alive: timeout=5, max=149
Connection: Keep-Alive
Content-Type: application/javascript
agrofarmacia.net/wp-content/themes/stockholm/js/plugins/jquery.carouFredSel-6.2.1.js?ver=2d8c3b76a3b75c26abcd680221d75268
185.2.4.42200 OK 19 kB URL HTTP/1.1 agrofarmacia.net/wp-content/themes/stockholm/js/plugins/jquery.carouFredSel-6.2.1.js?ver=2d8c3b76a3b75c26abcd680221d75268
IP 185.2.4.42:0
ASN #203461 Register S.p.A.
Hash 5e31396bc4e557be82fb402cdf8fb05d
61d2261b9dce2ad9a4a0d085721ee49bb72b5853
87d253f69897247052878bf6b7b1845591aa04725c07b0aaf1a30d7ab95c390d
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/stockholm/js/plugins/jquery.carouFredSel-6.2.1.js?ver=2d8c3b76a3b75c26abcd680221d75268 HTTP/1.1
Host: agrofarmacia.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://agrofarmacia.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 25 Nov 2022 07:48:04 GMT
Server: Apache
Last-Modified: Thu, 17 Nov 2022 11:11:05 GMT
ETag: "4242e58-163cc-5eda8a52f695a-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 18559
Keep-Alive: timeout=5, max=145
Connection: Keep-Alive
Content-Type: application/javascript
agrofarmacia.net/wp-content/themes/stockholm/js/plugins/qode-like.js?ver=1.0
185.2.4.42200 OK 393 B URL HTTP/1.1 agrofarmacia.net/wp-content/themes/stockholm/js/plugins/qode-like.js?ver=1.0
IP 185.2.4.42:0
ASN #203461 Register S.p.A.
Hash a3a325e40cd5ff4df0c3860b1482caba
0ef9e3838c5d8f4812f87853456331f2eee41baa
74e56bb80c75baf9113fbd9e94b42599aef99784ed62df1520b0fcff2ec297a8
GET /wp-content/themes/stockholm/js/plugins/qode-like.js?ver=1.0 HTTP/1.1
Host: agrofarmacia.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://agrofarmacia.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 25 Nov 2022 07:48:04 GMT
Server: Apache
Last-Modified: Thu, 17 Nov 2022 11:11:07 GMT
ETag: "4242e6c-2e3-5eda8a54c53d8-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 393
Keep-Alive: timeout=5, max=144
Connection: Keep-Alive
Content-Type: application/javascript
agrofarmacia.net/wp-includes/js/mediaelement/wp-mediaelement.min.js?ver=2d8c3b76a3b75c26abcd680221d75268
185.2.4.42200 OK 481 B URL HTTP/1.1 agrofarmacia.net/wp-includes/js/mediaelement/wp-mediaelement.min.js?ver=2d8c3b76a3b75c26abcd680221d75268
IP 185.2.4.42:0
ASN #203461 Register S.p.A.
File type HTML document, ASCII text, with very long lines (914), with no line terminators
Hash bd1336e7056ac5a40f0b7ad428fb943e
c7e67695c8b623ad31ad42497841510946192cae
100a43ce4da4bbbc881b44eacbdd7105b639499c0d1940098ba8d7c279b4de8b
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/mediaelement/wp-mediaelement.min.js?ver=2d8c3b76a3b75c26abcd680221d75268 HTTP/1.1
Host: agrofarmacia.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://agrofarmacia.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 25 Nov 2022 07:48:04 GMT
Server: Apache
Last-Modified: Thu, 17 Nov 2022 10:59:58 GMT
ETag: "41e31c3-392-5eda87d734287-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 481
Keep-Alive: timeout=5, max=148
Connection: Keep-Alive
Content-Type: application/javascript
agrofarmacia.net/wp-content/themes/stockholm/js/plugins/jquery.mousewheel.min.js?ver=2d8c3b76a3b75c26abcd680221d75268
185.2.4.42200 OK 716 B URL HTTP/1.1 agrofarmacia.net/wp-content/themes/stockholm/js/plugins/jquery.mousewheel.min.js?ver=2d8c3b76a3b75c26abcd680221d75268
IP 185.2.4.42:0
ASN #203461 Register S.p.A.
File type ASCII text, with very long lines (1020)
Hash 1bb069d9e3a8d110eaf5319b82b26e9b
25921fb49b922ecc44a40550587df5ace5e9a9a9
6975d1b270a0cbbcd4f0a652d6b32bce9eb2344944e1ccde88e5588bf51e71d4
GET /wp-content/themes/stockholm/js/plugins/jquery.mousewheel.min.js?ver=2d8c3b76a3b75c26abcd680221d75268 HTTP/1.1
Host: agrofarmacia.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://agrofarmacia.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 25 Nov 2022 07:48:04 GMT
Server: Apache
Last-Modified: Thu, 17 Nov 2022 11:11:05 GMT
ETag: "4242e61-570-5eda8a53bbdaa-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 716
Keep-Alive: timeout=5, max=144
Connection: Keep-Alive
Content-Type: application/javascript
agrofarmacia.net/wp-content/themes/stockholm/js/plugins/jquery.touchSwipe.min.js?ver=2d8c3b76a3b75c26abcd680221d75268
185.2.4.42200 OK 4.0 kB URL HTTP/1.1 agrofarmacia.net/wp-content/themes/stockholm/js/plugins/jquery.touchSwipe.min.js?ver=2d8c3b76a3b75c26abcd680221d75268
IP 185.2.4.42:0
ASN #203461 Register S.p.A.
File type ASCII text, with very long lines (11417)
Hash bfa32a001bd2b3755231fce83f5c6535
3be90f16e183c9d58feb8485cb1fac757e591a0d
855566e1cd3fb73824f070bffdb7deb2cb835ab9e010dbef2c6e94aee3a1cba1
GET /wp-content/themes/stockholm/js/plugins/jquery.touchSwipe.min.js?ver=2d8c3b76a3b75c26abcd680221d75268 HTTP/1.1
Host: agrofarmacia.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://agrofarmacia.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 25 Nov 2022 07:48:04 GMT
Server: Apache
Last-Modified: Thu, 17 Nov 2022 11:11:06 GMT
ETag: "4242e67-2e1d-5eda8a54581b7-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 4029
Keep-Alive: timeout=5, max=144
Connection: Keep-Alive
Content-Type: application/javascript
agrofarmacia.net/wp-content/themes/stockholm/js/plugins/jquery.parallax-scroll.js?ver=2d8c3b76a3b75c26abcd680221d75268
185.2.4.42200 OK 2.0 kB URL HTTP/1.1 agrofarmacia.net/wp-content/themes/stockholm/js/plugins/jquery.parallax-scroll.js?ver=2d8c3b76a3b75c26abcd680221d75268
IP 185.2.4.42:0
ASN #203461 Register S.p.A.
Hash 4bea0328db878dfe4cfd1b9b2ab11c93
c055555cba034baded0d5aaf696770b81b916c65
0dd45fa1793fe28f5793486dde4a5e430586999dafddfb602a7cf0a0d3ce1934
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/stockholm/js/plugins/jquery.parallax-scroll.js?ver=2d8c3b76a3b75c26abcd680221d75268 HTTP/1.1
Host: agrofarmacia.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://agrofarmacia.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 25 Nov 2022 07:48:04 GMT
Server: Apache
Last-Modified: Thu, 17 Nov 2022 11:11:06 GMT
ETag: "4242e63-23b7-5eda8a53e7cce-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 1962
Keep-Alive: timeout=5, max=147
Connection: Keep-Alive
Content-Type: application/javascript
agrofarmacia.net/wp-content/plugins/js_composer/assets/lib/bower/isotope/dist/isotope.pkgd.min.js?ver=5.5.5
185.2.4.42200 OK 9.9 kB URL HTTP/1.1 agrofarmacia.net/wp-content/plugins/js_composer/assets/lib/bower/isotope/dist/isotope.pkgd.min.js?ver=5.5.5
IP 185.2.4.42:0
ASN #203461 Register S.p.A.
File type ASCII text, with very long lines (32004)
Hash f46a131da1c8eb42ffaec895ed170d3c
20562648e83ea77d8265b07a600f0e3a9287b213
379cc38e9fd4ac551b1e4ef3d5cf6db2b978a3f0346255f956f5031514522f85
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/js_composer/assets/lib/bower/isotope/dist/isotope.pkgd.min.js?ver=5.5.5 HTTP/1.1
Host: agrofarmacia.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://agrofarmacia.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 25 Nov 2022 07:48:04 GMT
Server: Apache
Last-Modified: Thu, 17 Nov 2022 11:24:28 GMT
ETag: "4261f4c-8aaf-5eda8d50e044e-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 9863
Keep-Alive: timeout=5, max=143
Connection: Keep-Alive
Content-Type: application/javascript
agrofarmacia.net/wp-content/themes/stockholm/js/custom_js.js?ver=1668683031
185.2.4.42200 OK 102 B URL HTTP/1.1 agrofarmacia.net/wp-content/themes/stockholm/js/custom_js.js?ver=1668683031
IP 185.2.4.42:0
ASN #203461 Register S.p.A.
Hash 7a98cdbc63db93f7aac99d1375cc96a6
cb58957aa4e07bf32215b2b6e10da340dc5a1ca4
8bde1fba94a37fe6af96b96a58ba1dec9753f91aa424256971c7c71f4af69636
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/stockholm/js/custom_js.js?ver=1668683031 HTTP/1.1
Host: agrofarmacia.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://agrofarmacia.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 25 Nov 2022 07:48:04 GMT
Server: Apache
Last-Modified: Thu, 17 Nov 2022 11:03:51 GMT
ETag: "42421c1-55-5eda88b570a2d-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 102
Keep-Alive: timeout=5, max=143
Connection: Keep-Alive
Content-Type: application/javascript
agrofarmacia.net/wp-content/themes/stockholm/js/default_dynamic.js?ver=1668683032
185.2.4.42200 OK 1.6 kB URL HTTP/1.1 agrofarmacia.net/wp-content/themes/stockholm/js/default_dynamic.js?ver=1668683032
IP 185.2.4.42:0
ASN #203461 Register S.p.A.
Hash a10b1dec2ba8e130f9644fb54123efdc
b81d92aa8582bc2f31a9627f276267b7759469b1
acbeb01eb672e019a73700071d5e5e4fb05638967c3a6c29dd10d62be5d12ab6
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/stockholm/js/default_dynamic.js?ver=1668683032 HTTP/1.1
Host: agrofarmacia.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://agrofarmacia.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 25 Nov 2022 07:48:04 GMT
Server: Apache
Last-Modified: Thu, 17 Nov 2022 11:03:52 GMT
ETag: "42421c5-fb5-5eda88b629744-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 1567
Keep-Alive: timeout=5, max=147
Connection: Keep-Alive
Content-Type: application/javascript
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash b44543de9922ec7d97f2e0be1865553e
caef856450efd75de0cfae9402903b1f4bd6de4c
d251377b4bc11c32a847ce4dc5dfda92e56031617f5b3eeea54fdcd0945b3eb7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 25 Nov 2022 07:48:04 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash b44543de9922ec7d97f2e0be1865553e
caef856450efd75de0cfae9402903b1f4bd6de4c
d251377b4bc11c32a847ce4dc5dfda92e56031617f5b3eeea54fdcd0945b3eb7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 25 Nov 2022 07:48:04 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
agrofarmacia.net/wp-content/plugins/js_composer/assets/js/dist/js_composer_front.min.js?ver=5.5.5
185.2.4.42200 OK 5.7 kB URL HTTP/1.1 agrofarmacia.net/wp-content/plugins/js_composer/assets/js/dist/js_composer_front.min.js?ver=5.5.5
IP 185.2.4.42:0
ASN #203461 Register S.p.A.
File type ASCII text, with very long lines (19706), with no line terminators
Hash 7e76e8ec08b6706e3e5814ccecf4cefc
3be624813346feff0ee05ffac2d700a9411f1e6e
35f349a1c263c0e6669607bba7911e3467530bc4b12a0cbd492c6a577a3c35a7
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/js_composer/assets/js/dist/js_composer_front.min.js?ver=5.5.5 HTTP/1.1
Host: agrofarmacia.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://agrofarmacia.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 25 Nov 2022 07:48:04 GMT
Server: Apache
Last-Modified: Thu, 17 Nov 2022 11:17:20 GMT
ETag: "4260bf5-4cfa-5eda8bb8b6e86-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 5653
Keep-Alive: timeout=5, max=146
Connection: Keep-Alive
Content-Type: application/javascript
agrofarmacia.net/wp-includes/js/wp-embed.min.js?ver=2d8c3b76a3b75c26abcd680221d75268
185.2.4.42200 OK 753 B URL HTTP/1.1 agrofarmacia.net/wp-includes/js/wp-embed.min.js?ver=2d8c3b76a3b75c26abcd680221d75268
IP 185.2.4.42:0
ASN #203461 Register S.p.A.
File type ASCII text, with very long lines (1403), with no line terminators
Hash 8151177dccb399a75164172bb63b0491
0a2a5bf7eaa29bb8690a657bbc982360802ab41b
71d58666e959b9ea4a90f83fa5926fced7f92c084a098ee23ec450054b7292a8
GET /wp-includes/js/wp-embed.min.js?ver=2d8c3b76a3b75c26abcd680221d75268 HTTP/1.1
Host: agrofarmacia.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://agrofarmacia.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 25 Nov 2022 07:48:04 GMT
Server: Apache
Last-Modified: Thu, 17 Nov 2022 10:56:11 GMT
ETag: "41e2e4e-57b-5eda86fef5e3e-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 753
Keep-Alive: timeout=5, max=142
Connection: Keep-Alive
Content-Type: application/javascript
agrofarmacia.net/wp-content/themes/stockholm/style.css
185.2.4.42200 OK 335 B URL HTTP/1.1 agrofarmacia.net/wp-content/themes/stockholm/style.css
IP 185.2.4.42:0
ASN #203461 Register S.p.A.
Hash 6d0bac9d0538dcba4b601e50d3021860
ae63ca6051d3094ca762cd9b090533fe08d1f846
c8d75a22feb6cfe33a73183dbf645444a3a3705c1b48fb71c3c42578cabde002
GET /wp-content/themes/stockholm/style.css HTTP/1.1
Host: agrofarmacia.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://agrofarmacia.net/wp-content/themes/stockholm-child/style.css?ver=2d8c3b76a3b75c26abcd680221d75268
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 25 Nov 2022 07:48:04 GMT
Server: Apache
Last-Modified: Thu, 17 Nov 2022 10:59:20 GMT
ETag: "41e30cc-204-5eda87b2c1a6e-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 335
Keep-Alive: timeout=5, max=142
Connection: Keep-Alive
Content-Type: text/css
agrofarmacia.net/wp-content/themes/stockholm/js/default.js?ver=2d8c3b76a3b75c26abcd680221d75268
185.2.4.42200 OK 37 kB URL HTTP/1.1 agrofarmacia.net/wp-content/themes/stockholm/js/default.js?ver=2d8c3b76a3b75c26abcd680221d75268
IP 185.2.4.42:0
ASN #203461 Register S.p.A.
Hash 8f1797b318560ac83255a7b3d006d746
a5c4e934bbbb05220f25284f190f3b7ab3df12f6
e88d69052319c990e3dcf58e200da10f07962f20fd4d5be2d86da6e29c8c5cb5
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/stockholm/js/default.js?ver=2d8c3b76a3b75c26abcd680221d75268 HTTP/1.1
Host: agrofarmacia.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://agrofarmacia.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 25 Nov 2022 07:48:04 GMT
Server: Apache
Last-Modified: Thu, 17 Nov 2022 11:03:52 GMT
ETag: "42421c3-37940-5eda88b5fe7c1-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 36976
Keep-Alive: timeout=5, max=143
Connection: Keep-Alive
Content-Type: application/javascript
agrofarmacia.net/wp-content/uploads/2019/05/difesa.png
185.2.4.42200 OK 2.6 kB URL HTTP/1.1 agrofarmacia.net/wp-content/uploads/2019/05/difesa.png
IP 185.2.4.42:0
ASN #203461 Register S.p.A.
File type PNG image data, 70 x 84, 8-bit/color RGBA, non-interlaced\012- data
Hash 49179e708d57016d5363806c2b8ebacf
1f4d9b07665beec8031e3d37638b5b9b9760f65f
d64becefb5bff109494019f2619e592f7211798e58d93bcfaa6587456c473196
GET /wp-content/uploads/2019/05/difesa.png HTTP/1.1
Host: agrofarmacia.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://agrofarmacia.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 25 Nov 2022 07:48:04 GMT
Server: Apache
Last-Modified: Thu, 17 Nov 2022 11:04:49 GMT
ETag: "42422f8-9ff-5eda88ec96d58"
Accept-Ranges: bytes
Content-Length: 2559
Keep-Alive: timeout=5, max=146
Connection: Keep-Alive
Content-Type: image/png
agrofarmacia.net/wp-content/uploads/2019/05/garden.png
185.2.4.42200 OK 3.7 kB URL HTTP/1.1 agrofarmacia.net/wp-content/uploads/2019/05/garden.png
IP 185.2.4.42:0
ASN #203461 Register S.p.A.
File type PNG image data, 48 x 84, 8-bit/color RGBA, non-interlaced\012- data
Hash d70d6b136257e56fba3fbd7a958c4a9b
8e32290682c5cf2aa25d6595737c8188c8c808c0
f5f7fd4cd42c18ee3bc5cf2e7565ecc42bf78f8d74d91f658c8b6626e840e208
GET /wp-content/uploads/2019/05/garden.png HTTP/1.1
Host: agrofarmacia.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://agrofarmacia.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 25 Nov 2022 07:48:04 GMT
Server: Apache
Last-Modified: Thu, 17 Nov 2022 11:04:52 GMT
ETag: "424230f-e42-5eda88efdd3ac"
Accept-Ranges: bytes
Content-Length: 3650
Keep-Alive: timeout=5, max=145
Connection: Keep-Alive
Content-Type: image/png
agrofarmacia.net/wp-content/uploads/2019/05/impiantistica.png
185.2.4.42200 OK 2.2 kB URL HTTP/1.1 agrofarmacia.net/wp-content/uploads/2019/05/impiantistica.png
IP 185.2.4.42:0
ASN #203461 Register S.p.A.
File type PNG image data, 76 x 84, 8-bit/color RGBA, non-interlaced\012- data
Hash ff9e7ffb8c78c04da42461abae7c5d3c
5f473a5839efa45df710a92c598b05344c6431dd
82977d097b54fc693a2c5c6bbc2a35baa93e0013746169c0a320859966492036
GET /wp-content/uploads/2019/05/impiantistica.png HTTP/1.1
Host: agrofarmacia.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://agrofarmacia.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 25 Nov 2022 07:48:04 GMT
Server: Apache
Last-Modified: Thu, 17 Nov 2022 11:05:01 GMT
ETag: "424234a-87c-5eda88f7c1887"
Accept-Ranges: bytes
Content-Length: 2172
Keep-Alive: timeout=5, max=141
Connection: Keep-Alive
Content-Type: image/png
agrofarmacia.net/wp-content/themes/stockholm/js/plugins.js?ver=2d8c3b76a3b75c26abcd680221d75268
185.2.4.42200 OK 168 kB URL HTTP/1.1 agrofarmacia.net/wp-content/themes/stockholm/js/plugins.js?ver=2d8c3b76a3b75c26abcd680221d75268
IP 185.2.4.42:0
ASN #203461 Register S.p.A.
File type HTML document, ASCII text, with very long lines (45166)
Size 168 kB (168396 bytes)
Hash b1699a8c154aca482ef258e099f02bc0
8100a57d7cd23d6b8f19bc213b4dcbd123399d54
7b0d5e7b857ecbc72ba27d36d66eb99e5de8c902c637efcc5037ed09f0720fe0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/stockholm/js/plugins.js?ver=2d8c3b76a3b75c26abcd680221d75268 HTTP/1.1
Host: agrofarmacia.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://agrofarmacia.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 25 Nov 2022 07:48:04 GMT
Server: Apache
Last-Modified: Thu, 17 Nov 2022 11:03:53 GMT
ETag: "42421c8-a0046-5eda88b74bfcc-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Keep-Alive: timeout=5, max=146
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: application/javascript
agrofarmacia.net/wp-content/uploads/2019/05/concimi-nutrizione.png
185.2.4.42200 OK 4.0 kB URL HTTP/1.1 agrofarmacia.net/wp-content/uploads/2019/05/concimi-nutrizione.png
IP 185.2.4.42:0
ASN #203461 Register S.p.A.
File type PNG image data, 84 x 84, 8-bit/color RGBA, non-interlaced\012- data
Hash 5abafbed5a4645e8e384fb1031b30e74
497451c8ccbcabe578015fc2f03780f349744c8d
f45852c3fbaad3b0259d2b2a85dd0973c0b723aa5fcd938386a00a1e54bd4daa
GET /wp-content/uploads/2019/05/concimi-nutrizione.png HTTP/1.1
Host: agrofarmacia.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://agrofarmacia.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 25 Nov 2022 07:48:04 GMT
Server: Apache
Last-Modified: Thu, 17 Nov 2022 11:04:44 GMT
ETag: "42422d4-f96-5eda88e78eb90"
Accept-Ranges: bytes
Content-Length: 3990
Keep-Alive: timeout=5, max=141
Connection: Keep-Alive
Content-Type: image/png
agrofarmacia.net/wp-content/uploads/2019/05/dots-green.png
185.2.4.42200 OK 837 B URL HTTP/1.1 agrofarmacia.net/wp-content/uploads/2019/05/dots-green.png
IP 185.2.4.42:0
ASN #203461 Register S.p.A.
File type PNG image data, 88 x 184, 8-bit/color RGBA, non-interlaced\012- data
Hash 2389755e28ba27501abdf8a61c4db33a
d3b414ab775160d12aa02aac60dd740465f87b79
b0e3d7c312db02426ffaab775771079be95827b20d33ca399d2708aa58317501
GET /wp-content/uploads/2019/05/dots-green.png HTTP/1.1
Host: agrofarmacia.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://agrofarmacia.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 25 Nov 2022 07:48:04 GMT
Server: Apache
Last-Modified: Thu, 17 Nov 2022 11:04:50 GMT
ETag: "42422fd-345-5eda88ed3e8fe"
Accept-Ranges: bytes
Content-Length: 837
Keep-Alive: timeout=5, max=145
Connection: Keep-Alive
Content-Type: image/png
agrofarmacia.net/wp-content/uploads/2019/05/logo-agrofarmacia.png
185.2.4.42200 OK 21 kB URL HTTP/1.1 agrofarmacia.net/wp-content/uploads/2019/05/logo-agrofarmacia.png
IP 185.2.4.42:0
ASN #203461 Register S.p.A.
File type PNG image data, 285 x 49, 8-bit/color RGBA, non-interlaced\012- data
Hash 4aa8fef1ac6ed9ef39534c51322b2e2d
4c954a488478af2eb0bed96e65d8c0c2b5db45f6
b2ddbec93b491545e511c22e7b30bef9adb21f53629f22a2609b0285255f0c8c
GET /wp-content/uploads/2019/05/logo-agrofarmacia.png HTTP/1.1
Host: agrofarmacia.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://agrofarmacia.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 25 Nov 2022 07:48:04 GMT
Server: Apache
Last-Modified: Thu, 17 Nov 2022 11:05:03 GMT
ETag: "4242361-51be-5eda88f9c0490"
Accept-Ranges: bytes
Content-Length: 20926
Keep-Alive: timeout=5, max=140
Connection: Keep-Alive
Content-Type: image/png
agrofarmacia.net/wp-content/uploads/2019/05/dots.png
185.2.4.42200 OK 802 B URL HTTP/1.1 agrofarmacia.net/wp-content/uploads/2019/05/dots.png
IP 185.2.4.42:0
ASN #203461 Register S.p.A.
File type PNG image data, 88 x 184, 8-bit/color RGBA, non-interlaced\012- data
Hash c65145fdc00f7f4af00a3f3478a40e45
e17152e94240df57e0821924abbc93a2120ff07c
048bafe927035b1648239360efda5ba19a39a44538e15061a811aec3c0b0fd97
GET /wp-content/uploads/2019/05/dots.png HTTP/1.1
Host: agrofarmacia.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://agrofarmacia.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 25 Nov 2022 07:48:04 GMT
Server: Apache
Last-Modified: Thu, 17 Nov 2022 11:04:50 GMT
ETag: "42422fe-322-5eda88ed64e49"
Accept-Ranges: bytes
Content-Length: 802
Keep-Alive: timeout=5, max=140
Connection: Keep-Alive
Content-Type: image/png
agrofarmacia.net/wp-includes/js/wp-emoji-release.min.js?ver=2d8c3b76a3b75c26abcd680221d75268
185.2.4.42200 OK 4.4 kB URL HTTP/1.1 agrofarmacia.net/wp-includes/js/wp-emoji-release.min.js?ver=2d8c3b76a3b75c26abcd680221d75268
IP 185.2.4.42:0
ASN #203461 Register S.p.A.
File type ASCII text, with very long lines (9126)
Hash 9485790a43704a2b24f7937f9bb60dd4
a8d3b551c2fd8fb6e02f80d4d7d8a5d240667202
2f5a5c36b845b3e8c4583884b8e487f6f62c2347df7d1960c4cb463d12df788d
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/wp-emoji-release.min.js?ver=2d8c3b76a3b75c26abcd680221d75268 HTTP/1.1
Host: agrofarmacia.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://agrofarmacia.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 25 Nov 2022 07:48:04 GMT
Server: Apache
Last-Modified: Thu, 17 Nov 2022 10:56:12 GMT
ETag: "41e2e51-2f02-5eda86ff63447-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 4388
Keep-Alive: timeout=5, max=142
Connection: Keep-Alive
Content-Type: application/javascript
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash b44543de9922ec7d97f2e0be1865553e
caef856450efd75de0cfae9402903b1f4bd6de4c
d251377b4bc11c32a847ce4dc5dfda92e56031617f5b3eeea54fdcd0945b3eb7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 25 Nov 2022 07:48:04 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
agrofarmacia.net/wp-content/uploads/2019/05/home-chi-siamo.jpg
185.2.4.42200 OK 300 kB URL HTTP/1.1 agrofarmacia.net/wp-content/uploads/2019/05/home-chi-siamo.jpg
IP 185.2.4.42:0
ASN #203461 Register S.p.A.
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=1, copyright=fotokostic], progressive, precision 8, 800x534, components 3\012- data
Size 300 kB (299717 bytes)
Hash 36f8a5928c2cfbde51e84e110ab43737
8d537dc15d16f269db9e53c74949d85722878cce
9381d6dcecb28233d178de8576cc278e8c9c3809c906a53b1fc27b311047dfe0
GET /wp-content/uploads/2019/05/home-chi-siamo.jpg HTTP/1.1
Host: agrofarmacia.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://agrofarmacia.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 25 Nov 2022 07:48:04 GMT
Server: Apache
Last-Modified: Thu, 17 Nov 2022 11:04:55 GMT
ETag: "424231f-492c5-5eda88f241ca5"
Accept-Ranges: bytes
Content-Length: 299717
Keep-Alive: timeout=5, max=145
Connection: Keep-Alive
Content-Type: image/jpeg
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash e8cf50faf11902823c92a29a4ece097a
933756af035b4b434c57d86408fd7be3a75706be
218f951283e952f483db317412f10befa2623ded6fa13b2d73fef44a8ed58975
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 25 Nov 2022 07:48:04 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Tue, 22 Nov 2022 02:24:21 GMT
Expires: Tue, 29 Nov 2022 02:24:20 GMT
Etag: "933756af035b4b434c57d86408fd7be3a75706be"
Cache-Control: max-age=325575,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 76f8c7a859fdb523-OSL
agrofarmacia.net/wp-content/uploads/2019/05/home-servizi.jpg
185.2.4.42200 OK 201 kB URL HTTP/1.1 agrofarmacia.net/wp-content/uploads/2019/05/home-servizi.jpg
IP 185.2.4.42:0
ASN #203461 Register S.p.A.
File type JPEG image data, baseline, precision 8, 491x351, components 3\012- data
Size 201 kB (200794 bytes)
Hash 86e05656f6291422487ade70bb46adb5
566d82467b45570d01170c44703afa85a459318b
36923107de8d5dda99f5ae16c12d00096f1acb2e0481fb984d00acf0804b6685
GET /wp-content/uploads/2019/05/home-servizi.jpg HTTP/1.1
Host: agrofarmacia.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://agrofarmacia.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 25 Nov 2022 07:48:04 GMT
Server: Apache
Last-Modified: Thu, 17 Nov 2022 11:04:56 GMT
ETag: "4242326-3105a-5eda88f3602c5"
Accept-Ranges: bytes
Content-Length: 200794
Keep-Alive: timeout=5, max=144
Connection: Keep-Alive
Content-Type: image/jpeg
agrofarmacia.net/wp-content/themes/stockholm/css/font-awesome/fonts/fontawesome-webfont.woff2?v=4.7.0
185.2.4.42200 OK 77 kB URL HTTP/1.1 agrofarmacia.net/wp-content/themes/stockholm/css/font-awesome/fonts/fontawesome-webfont.woff2?v=4.7.0
IP 185.2.4.42:0
ASN #203461 Register S.p.A.
File type Web Open Font Format (Version 2), TrueType, length 77160, version 4.459\012- data
Hash af7ae505a9eed503f8b8e6982036873e
d6f48cba7d076fb6f2fd6ba993a75b9dc1ecbf0c
2adefcbc041e7d18fcf2d417879dc5a09997aa64d675b7a3c4b6ce33da13f3fe
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/stockholm/css/font-awesome/fonts/fontawesome-webfont.woff2?v=4.7.0 HTTP/1.1
Host: agrofarmacia.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://agrofarmacia.net/wp-content/themes/stockholm/css/font-awesome/css/font-awesome.min.css?ver=2d8c3b76a3b75c26abcd680221d75268
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 25 Nov 2022 07:48:04 GMT
Server: Apache
Last-Modified: Thu, 17 Nov 2022 11:19:39 GMT
ETag: "4261158-12d68-5eda8c3d8b3d4"
Accept-Ranges: bytes
Content-Length: 77160
Vary: Accept-Encoding,User-Agent
Keep-Alive: timeout=5, max=144
Connection: Keep-Alive
Content-Type: font/woff2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 87de3dd2c7dce12b01a337d1554a222a
30e0bd68bbb78995aa8a0686ac02848fd5a7a699
533c21806ef66401ea5faeeb37366a33f19f0e9052b4fb06f22981ec73b21a59
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 25 Nov 2022 07:48:04 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 87de3dd2c7dce12b01a337d1554a222a
30e0bd68bbb78995aa8a0686ac02848fd5a7a699
533c21806ef66401ea5faeeb37366a33f19f0e9052b4fb06f22981ec73b21a59
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 25 Nov 2022 07:48:04 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/worksans/v18/QGYsz_wNahGAdqQ43Rh_fKDp.woff2
216.58.207.195200 OK 48 kB URL HTTP/2 fonts.gstatic.com/s/worksans/v18/QGYsz_wNahGAdqQ43Rh_fKDp.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 47728, version 1.0\012- data
Hash b1581ddd77372ceb06eb14adfd1bea07
1a3b0fc96fa73b808aa1f91f122a3c9bdcf93ee8
97e82d8eac8d106b28abf1b716982c40c06fffe49cc2f34cd1c299266745ef73
GET /s/worksans/v18/QGYsz_wNahGAdqQ43Rh_fKDp.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://agrofarmacia.net
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 47728
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 22 Nov 2022 19:22:36 GMT
expires: Wed, 22 Nov 2023 19:22:36 GMT
cache-control: public, max-age=31536000
age: 217528
last-modified: Tue, 23 Aug 2022 17:55:22 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
agrofarmacia.net/wp-content/themes/stockholm/css/elegant-icons/fonts/ElegantIcons.woff
185.2.4.42200 OK 64 kB URL HTTP/1.1 agrofarmacia.net/wp-content/themes/stockholm/css/elegant-icons/fonts/ElegantIcons.woff
IP 185.2.4.42:0
ASN #203461 Register S.p.A.
File type Web Open Font Format, CFF, length 63664, version 1.0\012- data
Hash fdd9e757bf61675343dcf55100422b84
f9be87fa2d1d4a95e8305afb51778db4bc759fbc
be1825e52a0dc7df04df9322f62abe2a2f2a25d98aac186de0140dfc7f6bdcae
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/stockholm/css/elegant-icons/fonts/ElegantIcons.woff HTTP/1.1
Host: agrofarmacia.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://agrofarmacia.net/wp-content/themes/stockholm/css/elegant-icons/style.min.css?ver=2d8c3b76a3b75c26abcd680221d75268
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 25 Nov 2022 07:48:04 GMT
Server: Apache
Last-Modified: Thu, 17 Nov 2022 11:19:37 GMT
ETag: "426114b-f8b0-5eda8c3b502ee"
Accept-Ranges: bytes
Content-Length: 63664
Vary: Accept-Encoding,User-Agent
Keep-Alive: timeout=5, max=143
Connection: Keep-Alive
Content-Type: font/woff
agrofarmacia.net/wp-content/uploads/2019/05/home-slider-1.jpg
185.2.4.42200 OK 385 kB URL HTTP/1.1 agrofarmacia.net/wp-content/uploads/2019/05/home-slider-1.jpg
IP 185.2.4.42:0
ASN #203461 Register S.p.A.
File type JPEG image data, baseline, precision 8, 1920x833, components 3\012- data
Size 385 kB (385432 bytes)
Hash 23463afde57ee8a27e9c2adbee73b141
cf43c512a52dadb18e7a396d47c48ce4c87b160f
bff903f41bfa08aba2986a54488b95b24ee087ee0777d2e0a07abfcc82f12ee0
GET /wp-content/uploads/2019/05/home-slider-1.jpg HTTP/1.1
Host: agrofarmacia.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://agrofarmacia.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 25 Nov 2022 07:48:04 GMT
Server: Apache
Last-Modified: Thu, 17 Nov 2022 11:04:58 GMT
ETag: "4242339-5e198-5eda88f5a53d3"
Accept-Ranges: bytes
Content-Length: 385432
Keep-Alive: timeout=5, max=144
Connection: Keep-Alive
Content-Type: image/jpeg
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 87de3dd2c7dce12b01a337d1554a222a
30e0bd68bbb78995aa8a0686ac02848fd5a7a699
533c21806ef66401ea5faeeb37366a33f19f0e9052b4fb06f22981ec73b21a59
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 25 Nov 2022 07:48:04 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
agrofarmacia.net/wp-content/uploads/2019/06/favicon.png
185.2.4.42200 OK 3.8 kB URL HTTP/1.1 agrofarmacia.net/wp-content/uploads/2019/06/favicon.png
IP 185.2.4.42:0
ASN #203461 Register S.p.A.
File type PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced\012- data
Hash 7869fe0991aa78ee35cf639d82666663
702c5773ca3a7dd7ed82a902d60537377c72c41e
4b7ee5b5349f72c66ac1ea01c067b10214697f03540c566ea0a7193088b10ee3
GET /wp-content/uploads/2019/06/favicon.png HTTP/1.1
Host: agrofarmacia.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://agrofarmacia.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 25 Nov 2022 07:48:05 GMT
Server: Apache
Last-Modified: Thu, 17 Nov 2022 11:05:06 GMT
ETag: "4242388-eb4-5eda88fcc0dae"
Accept-Ranges: bytes
Content-Length: 3764
Keep-Alive: timeout=5, max=143
Connection: Keep-Alive
Content-Type: image/png
agrofarmacia.net/wp-content/plugins/revslider/public/assets/js/extensions/revolution.extension.actions.min.js?version=5.4.8
185.2.4.42200 OK 2.6 kB URL HTTP/1.1 agrofarmacia.net/wp-content/plugins/revslider/public/assets/js/extensions/revolution.extension.actions.min.js?version=5.4.8
IP 185.2.4.42:0
ASN #203461 Register S.p.A.
File type ASCII text, with very long lines (8089)
Hash a44416c32b543731b90ba0c4213acc05
95f5caebb59a289044a047c2589e8acf86e48536
ffdddf0f747a7d72f6e55b3cbdf35d2d902ae61964a474355f859fb8ce73a188
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/revslider/public/assets/js/extensions/revolution.extension.actions.min.js?version=5.4.8 HTTP/1.1
Host: agrofarmacia.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/javascript, application/javascript, application/ecmascript, application/x-ecmascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Referer: https://agrofarmacia.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 25 Nov 2022 07:48:05 GMT
Server: Apache
Last-Modified: Thu, 17 Nov 2022 11:23:03 GMT
ETag: "4261a7d-2082-5eda8d00518c8-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 2565
Keep-Alive: timeout=5, max=143
Connection: Keep-Alive
Content-Type: application/javascript
agrofarmacia.net/wp-content/plugins/revslider/public/assets/js/extensions/revolution.extension.slideanims.min.js?version=5.4.8
185.2.4.42200 OK 6.9 kB URL HTTP/1.1 agrofarmacia.net/wp-content/plugins/revslider/public/assets/js/extensions/revolution.extension.slideanims.min.js?version=5.4.8
IP 185.2.4.42:0
ASN #203461 Register S.p.A.
File type ASCII text, with very long lines (28818)
Hash ca30c4ca1262f39bedc5ed3bdf5053b1
a3654635951cedb661812dcfd232827efac46fb6
9469b47cb2420a82e460645fa4c7d09ad6a259876edcdebf835252b9c14f9d02
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/revslider/public/assets/js/extensions/revolution.extension.slideanims.min.js?version=5.4.8 HTTP/1.1
Host: agrofarmacia.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/javascript, application/javascript, application/ecmascript, application/x-ecmascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Referer: https://agrofarmacia.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 25 Nov 2022 07:48:05 GMT
Server: Apache
Last-Modified: Thu, 17 Nov 2022 11:23:04 GMT
ETag: "4261a84-7188-5eda8d011f9b8-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 6873
Keep-Alive: timeout=5, max=142
Connection: Keep-Alive
Content-Type: application/javascript
agrofarmacia.net/wp-content/plugins/revslider/public/assets/js/extensions/revolution.extension.layeranimation.min.js?version=5.4.8
185.2.4.42200 OK 14 kB URL HTTP/1.1 agrofarmacia.net/wp-content/plugins/revslider/public/assets/js/extensions/revolution.extension.layeranimation.min.js?version=5.4.8
IP 185.2.4.42:0
ASN #203461 Register S.p.A.
File type ASCII text, with very long lines (55556)
Hash 30203a9ea6d00f6b53cf4991507e1aca
6eaf5bf53d22c6b20a5fee0962e795800ee55b48
8af4f6de295cad3cba6b131ecd0941c0fb88a8807b25f544109bb0a8546b7266
GET /wp-content/plugins/revslider/public/assets/js/extensions/revolution.extension.layeranimation.min.js?version=5.4.8 HTTP/1.1
Host: agrofarmacia.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/javascript, application/javascript, application/ecmascript, application/x-ecmascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Referer: https://agrofarmacia.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 25 Nov 2022 07:48:05 GMT
Server: Apache
Last-Modified: Thu, 17 Nov 2022 11:23:04 GMT
ETag: "4261a80-d9fb-5eda8d00b75b8-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 14295
Keep-Alive: timeout=5, max=142
Connection: Keep-Alive
Content-Type: application/javascript
agrofarmacia.net/wp-content/plugins/revslider/public/assets/js/extensions/revolution.extension.parallax.min.js?version=5.4.8
185.2.4.42200 OK 3.2 kB URL HTTP/1.1 agrofarmacia.net/wp-content/plugins/revslider/public/assets/js/extensions/revolution.extension.parallax.min.js?version=5.4.8
IP 185.2.4.42:0
ASN #203461 Register S.p.A.
File type ASCII text, with very long lines (10692)
Hash 68ec5f9cd9f31e8e9a780674904f113c
0ba1338b9b3d70f39c855b865ab9ce1aea07d6f8
18f320dcd39283371c6036596f6d2f80a76128d4cf2c8bee1b3dd3c8dfd85703
GET /wp-content/plugins/revslider/public/assets/js/extensions/revolution.extension.parallax.min.js?version=5.4.8 HTTP/1.1
Host: agrofarmacia.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/javascript, application/javascript, application/ecmascript, application/x-ecmascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Referer: https://agrofarmacia.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 25 Nov 2022 07:48:05 GMT
Server: Apache
Last-Modified: Thu, 17 Nov 2022 11:23:04 GMT
ETag: "4261a83-2aad-5eda8d00ea624-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 3234
Keep-Alive: timeout=5, max=139
Connection: Keep-Alive
Content-Type: application/javascript
agrofarmacia.net/wp-content/plugins/revslider/public/assets/assets/loader.gif
185.2.4.42200 OK 2.5 kB URL HTTP/1.1 agrofarmacia.net/wp-content/plugins/revslider/public/assets/assets/loader.gif
IP 185.2.4.42:0
ASN #203461 Register S.p.A.
File type GIF image data, version 89a, 24 x 24\012- data
Hash 4b3afb84b2b71ef56df09997a350bd04
accdac8a7abeab0e21c49539aad0a973addb28ef
9034d5d34015e4b05d2c1d1a8dc9f6ec9d59bd96d305eb9e24e24e65c591a645
GET /wp-content/plugins/revslider/public/assets/assets/loader.gif HTTP/1.1
Host: agrofarmacia.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://agrofarmacia.net/wp-content/plugins/revslider/public/assets/css/settings.css?ver=5.4.8
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 25 Nov 2022 07:48:05 GMT
Server: Apache
Last-Modified: Thu, 17 Nov 2022 11:19:11 GMT
ETag: "4260fd9-9f1-5eda8c228b3ce"
Accept-Ranges: bytes
Content-Length: 2545
Keep-Alive: timeout=5, max=141
Connection: Keep-Alive
Content-Type: image/gif
agrofarmacia.net/wp-includes/js/jquery/jquery.js?ver=1.12.4
185.2.4.42200 OK 0 B URL HTTP/1.1 agrofarmacia.net/wp-includes/js/jquery/jquery.js?ver=1.12.4
IP 185.2.4.42:0
ASN #203461 Register S.p.A.
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/jquery.js?ver=1.12.4 HTTP/1.1
Host: agrofarmacia.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://agrofarmacia.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 25 Nov 2022 07:48:04 GMT
Server: Apache
Last-Modified: Thu, 17 Nov 2022 10:59:55 GMT
ETag: "41e31a9-17b9f-5eda87d415cd7-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 33766
Keep-Alive: timeout=5, max=147
Connection: Keep-Alive
Content-Type: application/javascript
fonts.googleapis.com/css?family=Raleway:100,100italic,200,200italic,300,300italic,400,400italic,500,500italic,600,600italic,700,700italic,800,800italic,900,900italic|Crete+Round:100,100italic,200,200italic,300,300italic,400,400italic,500,500italic,600,600italic,700,700italic,800,800italic,900,900italic|Work+Sans:100,100italic,200,200italic,300,300italic,400,400italic,500,500italic,600,600italic,700,700italic,800,800italic,900,900italic&subset=latin,latin-ext
142.250.74.10200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Raleway:100,100italic,200,200italic,300,300italic,400,400italic,500,500italic,600,600italic,700,700italic,800,800italic,900,900italic|Crete+Round:100,100italic,200,200italic,300,300italic,400,400italic,500,500italic,600,600italic,700,700italic,800,800italic,900,900italic|Work+Sans:100,100italic,200,200italic,300,300italic,400,400italic,500,500italic,600,600italic,700,700italic,800,800italic,900,900italic&subset=latin,latin-ext
IP 142.250.74.10:0
GET /css?family=Raleway:100,100italic,200,200italic,300,300italic,400,400italic,500,500italic,600,600italic,700,700italic,800,800italic,900,900italic|Crete+Round:100,100italic,200,200italic,300,300italic,400,400italic,500,500italic,600,600italic,700,700italic,800,800italic,900,900italic|Work+Sans:100,100italic,200,200italic,300,300italic,400,400italic,500,500italic,600,600italic,700,700italic,800,800italic,900,900italic&subset=latin,latin-ext HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://agrofarmacia.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 25 Nov 2022 07:48:04 GMT
date: Fri, 25 Nov 2022 07:48:04 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Work+Sans:500%2C400
142.250.74.10200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Work+Sans:500%2C400
IP 142.250.74.10:0
GET /css?family=Work+Sans:500%2C400 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://agrofarmacia.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 25 Nov 2022 07:48:04 GMT
date: Fri, 25 Nov 2022 07:48:04 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
cdn.cookie-script.com/s/dffddcd3d49fd889a0d93c2f80ce9cc1.js
78.46.117.148200 OK 0 B URL HTTP/2 cdn.cookie-script.com/s/dffddcd3d49fd889a0d93c2f80ce9cc1.js
IP 78.46.117.148:0
ASN #24940 Hetzner Online GmbH
GET /s/dffddcd3d49fd889a0d93c2f80ce9cc1.js HTTP/1.1
Host: cdn.cookie-script.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://agrofarmacia.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx/1.18.0 (Ubuntu)
date: Fri, 25 Nov 2022 07:48:04 GMT
vary: Accept-Encoding
last-modified: Tue, 22 Nov 2022 14:38:55 GMT
etag: W/"001adaba0e2ad4e7b2946767ac26752c"
access-control-allow-origin: *
x-cache-status: HIT
content-type: application/javascript
content-encoding: gzip
X-Firefox-Spdy: h2