prgtributaristas.com/4959350324/document/index.php
66.7.203.39301 Moved Permanently 266 B URL HTTP/1.1 prgtributaristas.com/4959350324/document/index.php
IP 66.7.203.39:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 6848375c263af14519aea944ad63c7ec
8532dac6b225b3411adf765e6dcc04be7fc7428a
e9ea46180bd69a4a3a7b721cc393e7d71809eb5c0242120a398cd536352155d8
Analyzer Verdict Alert fortinet Phishing
GET /4959350324/document/index.php HTTP/1.1
Host: prgtributaristas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Wed, 30 Nov 2022 03:00:41 GMT
Server: Apache
Location: https://prgtributaristas.com/4959350324/document/index.php
Content-Length: 266
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash a5daf4dc99951793ae2315d4795e8146
4427507ca4d3a5632cc8f598afbc85e2195d00bd
94fb64c1c826ed7099283c0bedb3cea7ac7e1d9526794cb9fad6e761f5989d32
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "94FB64C1C826ED7099283C0BEDB3CEA7AC7E1D9526794CB9FAD6E761F5989D32"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9527
Expires: Wed, 30 Nov 2022 05:39:28 GMT
Date: Wed, 30 Nov 2022 03:00:41 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 4ed065cb23b5fca1a179dd73b3c5b7b2
4422eb24688f5e056fc1b18b127c7f63b1dbf5e0
b723d770d0dec7441d8505dc5a4e7d34f55c9f564ec52f20d9b70c7c3a0d9d35
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2453
Cache-Control: max-age=115883
Content-Type: application/ocsp-response
Date: Wed, 30 Nov 2022 03:00:41 GMT
Etag: "6385df6f-1d7"
Expires: Thu, 01 Dec 2022 11:12:04 GMT
Last-Modified: Tue, 29 Nov 2022 10:31:11 GMT
Server: ECS (ska/F710)
X-Cache: HIT
Content-Length: 471
firefox.settings.services.mozilla.com/v1/
34.102.187.140200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 14cd9a0afb6ba9a763651d5112760d1e
75d7b104ab9ab11fbb73c3f348b43b0119b5adfa
4e32a117106be587ffcd63239c16a8117eb7840830d4c9decf6527761967532e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Alert, Retry-After, Backoff, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Wed, 30 Nov 2022 02:19:39 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 2462
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 9fce5679881bf302a8978a0b462f01a9
b699fe030ea13ac73813e655c42ed9b531925e2b
a3ec545a8f9364ac9062eddb41279e1465687a1b60f9c1dec6b3a3df8b033eb3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A3EC545A8F9364AC9062EDDB41279E1465687A1B60F9C1DEC6B3A3DF8B033EB3"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2807
Expires: Wed, 30 Nov 2022 03:47:28 GMT
Date: Wed, 30 Nov 2022 03:00:41 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 9ebddc2b260d081ebbefee47c037cb28
492bad62a7ca6a74738921ef5ae6f0be5edebf39
74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5
GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: ixfDp7XjqGGr7Lm1EViyCQEYcUn8L8yzDeOu14LVWDiDX8pyo3slXdXe46piQzH745aawesNExo=
x-amz-request-id: X6TTPD2THQ5MQMJ6
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Wed, 30 Nov 2022 02:45:42 GMT
age: 899
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 30 Nov 2022 03:00:41 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
34.102.187.140200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, ETag, Alert, Expires, Cache-Control, Backoff, Content-Length, Content-Type, Pragma, Last-Modified
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Wed, 30 Nov 2022 02:08:56 GMT
cache-control: public,max-age=3600
age: 3106
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 3c8c689bd654417640d85f3da51af313
85123b6d46230a23d03768bf304b386e5d301305
516138ca79703b45e904d32d7dde1c1e9fd35995b9f1bb1331c547542745676d
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2453
Cache-Control: max-age=110819
Content-Type: application/ocsp-response
Date: Wed, 30 Nov 2022 03:00:42 GMT
Etag: "6385cba8-1d7"
Expires: Thu, 01 Dec 2022 09:47:41 GMT
Last-Modified: Tue, 29 Nov 2022 09:06:48 GMT
Server: ECS (ska/F710)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
52.35.190.173101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.35.190.173:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 3WgtC6xeOXJaXPdTPG2t1A==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: dXJoHUTcudnBDYf1gD2d6dLI0zY=
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash ac3edd07bb0a4ebdaae6ec26e91d2079
b6efe3811dfa37cdcde1e9d411c171732ac7e12a
c5dbd471d178ae4505b28e30aee1e8eed77fffd81b9f7815ad2bda1a0d09a02c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C5DBD471D178AE4505B28E30AEE1E8EED77FFFD81B9F7815AD2BDA1A0D09A02C"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15335
Expires: Wed, 30 Nov 2022 07:16:18 GMT
Date: Wed, 30 Nov 2022 03:00:43 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash ac3edd07bb0a4ebdaae6ec26e91d2079
b6efe3811dfa37cdcde1e9d411c171732ac7e12a
c5dbd471d178ae4505b28e30aee1e8eed77fffd81b9f7815ad2bda1a0d09a02c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C5DBD471D178AE4505B28E30AEE1E8EED77FFFD81B9F7815AD2BDA1A0D09A02C"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15335
Expires: Wed, 30 Nov 2022 07:16:18 GMT
Date: Wed, 30 Nov 2022 03:00:43 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash ac3edd07bb0a4ebdaae6ec26e91d2079
b6efe3811dfa37cdcde1e9d411c171732ac7e12a
c5dbd471d178ae4505b28e30aee1e8eed77fffd81b9f7815ad2bda1a0d09a02c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C5DBD471D178AE4505B28E30AEE1E8EED77FFFD81B9F7815AD2BDA1A0D09A02C"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15335
Expires: Wed, 30 Nov 2022 07:16:18 GMT
Date: Wed, 30 Nov 2022 03:00:43 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff7f230eb-6b67-4a80-b973-d8ea78fe73ae.png
34.120.237.76200 OK 13 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff7f230eb-6b67-4a80-b973-d8ea78fe73ae.png
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash e08af5b1d18986e112913c6e69cc8ce6
151b60134a66305bd72dbb3810f67a57720b2af1
555a62d98f4002ad187a6b480d534a1dbe3c64d1f4d17cffad2ab985c10ca462
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff7f230eb-6b67-4a80-b973-d8ea78fe73ae.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12853
x-amzn-requestid: 25e4402d-98d0-4c38-a927-397c37724bea
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cYhdpHAuIAMFweQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63867c57-506672a36959d9ea09ef5155;Sampled=0
x-amzn-remapped-date: Tue, 29 Nov 2022 21:40:39 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: gHL2sFE-o1u5kEIUiabbP6u5CXr3ihI4mKiAVkfReyuJuTF5k5ktSg==
via: 1.1 1cc6ed0d2d3dd9529ce544f9dfe61a52.cloudfront.net (CloudFront), 1.1 1b74ccf4cb51eacf97a0e6d60ae46a3e.cloudfront.net (CloudFront), 1.1 google
date: Tue, 29 Nov 2022 21:44:48 GMT
age: 18955
etag: "151b60134a66305bd72dbb3810f67a57720b2af1"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F67bb1888-5971-4b4a-923b-dc9d4050182b.jpeg
34.120.237.76200 OK 7.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F67bb1888-5971-4b4a-923b-dc9d4050182b.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash e00769bd1391b8f4f5b8ab128a825355
e4ddf955e8ac1986045ed55880c43c69e588a021
81ca4d20c28fed8fd3135515daadc1fdbfb4198535d7c46021b418b8b98e59a5
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F67bb1888-5971-4b4a-923b-dc9d4050182b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7298
x-amzn-requestid: 381e55bb-876b-46ad-84b6-1ddf9f876f56
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cYgDcE3poAMFaAA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63867a15-7c12394600900afc7281e858;Sampled=0
x-amzn-remapped-date: Tue, 29 Nov 2022 21:31:01 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 7mRG070F4NZnewfowUhVhMerJaGjJd4G6O1tvTPiKyvTAzq-Y16-jw==
via: 1.1 470e3fe246a660ba6ace67a79f78d246.cloudfront.net (CloudFront), 1.1 b2f9564ebf9c745cc2ceae96d434977e.cloudfront.net (CloudFront), 1.1 google
date: Tue, 29 Nov 2022 21:56:51 GMT
etag: "e4ddf955e8ac1986045ed55880c43c69e588a021"
content-type: image/jpeg
age: 18232
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff2730750-552d-4852-8ce1-503874565f75.jpeg
34.120.237.76200 OK 9.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff2730750-552d-4852-8ce1-503874565f75.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 05196ec43964cf559caa0c0279148d62
6170d6776615503e3e29f86783febc3e3e78ca66
47f3a5cde661987e3496ce110a0170b10087dd9ba8d4fd691c4830587ba3fa3f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff2730750-552d-4852-8ce1-503874565f75.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9051
x-amzn-requestid: 1032dd9c-a15e-4e8a-9c81-07419e8caf67
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cYhGvEMNIAMFaKw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63867bc4-1005c20a33320dbf6567ca31;Sampled=0
x-amzn-remapped-date: Tue, 29 Nov 2022 21:38:12 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: rtfl896JX35oFFEVmqyH9Nm62iSY6rqwzkLwZMcM45p_ySF6J2QwEQ==
via: 1.1 4d7fa73f804f1c93f20cfc24c4b1266e.cloudfront.net (CloudFront), 1.1 57a21088b36c69a83578b5a5579df58e.cloudfront.net (CloudFront), 1.1 google
date: Tue, 29 Nov 2022 21:44:47 GMT
age: 18956
etag: "6170d6776615503e3e29f86783febc3e3e78ca66"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F48df8a6f-5803-4ce0-ab84-1efc8ca3e251.jpeg
34.120.237.76200 OK 8.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F48df8a6f-5803-4ce0-ab84-1efc8ca3e251.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 8825a2c5c0d98323f489e0b816b7f1d8
05f46985ea4ace57460120876da8e19db08857b3
1d12590a78b32146d6f1d107fb93bdb6cb45228d15babd087c0111495d7138e1
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F48df8a6f-5803-4ce0-ab84-1efc8ca3e251.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8885
x-amzn-requestid: 67e1ba67-b4fb-42c8-985d-f34164101c7b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cYhIGGtloAMFxjw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63867bcd-295995bb1123430c55659fe3;Sampled=0
x-amzn-remapped-date: Tue, 29 Nov 2022 21:38:21 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: d64lSE184IwrwZKVC8KOUINEBclth9b7xRGV9T1uNfAptgXz0bxKhw==
via: 1.1 efe54e8b68e074d39b2ecd249f85100a.cloudfront.net (CloudFront), 1.1 9046e5a276a05e60ee34c8475e92b8e6.cloudfront.net (CloudFront), 1.1 google
date: Tue, 29 Nov 2022 22:14:25 GMT
age: 17178
etag: "05f46985ea4ace57460120876da8e19db08857b3"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fffcc0013-bfb7-45fa-bdf2-4b7a90daae54.jpeg
34.120.237.76200 OK 9.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fffcc0013-bfb7-45fa-bdf2-4b7a90daae54.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash a7c72c70f2b8be44dd384abb4b4a6fdd
eed94c5cb2a5810e985894af5d5f73238a83e136
49a560a81471ad567067dfa4be4bc02d592eeac9ac5bf5376e67f8c93d2ef0d6
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fffcc0013-bfb7-45fa-bdf2-4b7a90daae54.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8953
x-amzn-requestid: 65d5d2d4-62aa-4d5b-abd4-1aa52eb3550f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cYhXeFPgoAMFojw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63867c2f-6eaf6ebe4bb408d51abe0660;Sampled=0
x-amzn-remapped-date: Tue, 29 Nov 2022 21:39:59 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: DqSVagVTQVJm7gZyiBIQP-X113XjRI5tHxaxLRFD1b7aQQiRyKoPZA==
via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 591683988172c7980c4ebb318cbf18a8.cloudfront.net (CloudFront), 1.1 google
date: Tue, 29 Nov 2022 21:44:45 GMT
age: 18958
etag: "eed94c5cb2a5810e985894af5d5f73238a83e136"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F265a94d3-cdf4-4682-bcea-7cb1b79bc860.png
34.120.237.76200 OK 13 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F265a94d3-cdf4-4682-bcea-7cb1b79bc860.png
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 9fb14804c284e300f976848e30396e9c
6004b4b7afd22dded903f026d245bc90a6706767
1cf96b0b6c83f182d018fa4ffb9924038bf282755091e7bacff2a624220260d5
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F265a94d3-cdf4-4682-bcea-7cb1b79bc860.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 13195
x-amzn-requestid: 1303b72c-fe18-46a3-b3c1-06f3b8550d90
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cYhGvHW6oAMFxgw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63867bc4-1b3dbbb005a238117076d1f3;Sampled=0
x-amzn-remapped-date: Tue, 29 Nov 2022 21:38:12 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: pw2Wm8mI8MxRAOVsdvvWLEuxPN5ffcgWBZ_KecuuS5stoTHF4hxECg==
via: 1.1 5ab5dc09da67e3ea794ec8a82992cc88.cloudfront.net (CloudFront), 1.1 aef00f14752da9aa504d392fd46eff94.cloudfront.net (CloudFront), 1.1 google
date: Tue, 29 Nov 2022 21:44:49 GMT
age: 18954
etag: "6004b4b7afd22dded903f026d245bc90a6706767"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
prgtributaristas.com/4959350324/document/index.php
66.7.203.39301 Moved Permanently 0 B URL HTTP/2 prgtributaristas.com/4959350324/document/index.php
IP 66.7.203.39:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Phishing
GET /4959350324/document/index.php HTTP/1.1
Host: prgtributaristas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 301 Moved Permanently
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
x-redirect-by: WordPress
location: https://prgtributaristas.com/4959350324/document/
vary: User-Agent
content-length: 0
content-type: text/html; charset=UTF-8
date: Wed, 30 Nov 2022 03:00:42 GMT
server: Apache
X-Firefox-Spdy: h2
prgtributaristas.com/4959350324/document/
66.7.203.39301 Moved Permanently 0 B URL HTTP/2 prgtributaristas.com/4959350324/document/
IP 66.7.203.39:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Phishing
GET /4959350324/document/ HTTP/1.1
Host: prgtributaristas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
TE: trailers
HTTP/2 301 Moved Permanently
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
x-redirect-by: WordPress
location: https://prgtributaristas.com/documento-soporte-en-adquisiciones-a-no-obligados-a-facturar/
vary: User-Agent
content-length: 0
content-type: text/html; charset=UTF-8
date: Wed, 30 Nov 2022 03:00:43 GMT
server: Apache
X-Firefox-Spdy: h2
prgtributaristas.com/documento-soporte-en-adquisiciones-a-no-obligados-a-facturar/
66.7.203.39200 OK 30 kB URL HTTP/2 prgtributaristas.com/documento-soporte-en-adquisiciones-a-no-obligados-a-facturar/
IP 66.7.203.39:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (24163), with CRLF, LF line terminators
Hash 5bb8b5ee8a7ae32fc245d70dad04a204
f0d4ba181d845dc48de096fc81017dbb6851ce10
db5719184a321653e89eeebeeeddea251b3032f58c84c518701e65f6296e52bb
Analyzer Verdict Alert fortinet Phishing
GET /documento-soporte-en-adquisiciones-a-no-obligados-a-facturar/ HTTP/1.1
Host: prgtributaristas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
TE: trailers
HTTP/2 200 OK
x-pingback: https://prgtributaristas.com/xmlrpc.php
link: <https://prgtributaristas.com/wp-json/>; rel="https://api.w.org/", <https://prgtributaristas.com/wp-json/wp/v2/posts/2738>; rel="alternate"; type="application/json", <https://prgtributaristas.com/?p=2738>; rel=shortlink
set-cookie: pll_language=es; expires=Thu, 30-Nov-2023 03:00:46 GMT; Max-Age=31536000; path=/; SameSite=Lax; secure
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 30058
content-type: text/html; charset=UTF-8
date: Wed, 30 Nov 2022 03:00:45 GMT
server: Apache
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 146dac10a93604a686550631e14eefb9
b4af601ce6d515d9ec124938ce626060e0d43099
bac5bc94c1a95af45522dadbf1639aff31e691fa2314314c6cce1ab1e70bba87
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 30 Nov 2022 03:00:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 07b8296613be09905e34b09dce4a203f
c97c67e8c4b1247423d089c028c31e05734f124e
c8c7b7cd00d5818bbe4a4ddb1b734a1b766dc6474cce300171bd5a0947adc6b2
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 30 Nov 2022 03:00:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
prgtributaristas.com/wp-includes/css/classic-themes.min.css
66.7.203.39200 OK 189 B URL HTTP/2 prgtributaristas.com/wp-includes/css/classic-themes.min.css
IP 66.7.203.39:0
Hash 5a18e16eb01cbaa862eb32e6b77bedb2
3abf9b913cc9f558f02cba7c9b822f8d1812cb96
d2b5af913332941d5ae7786d1fa70e0d009315c4ede6ad5b80d0f663bb54521f
GET /wp-includes/css/classic-themes.min.css HTTP/1.1
Host: prgtributaristas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://prgtributaristas.com/documento-soporte-en-adquisiciones-a-no-obligados-a-facturar/
Cookie: pll_language=es
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 02 Nov 2022 01:22:31 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 189
content-type: text/css
date: Wed, 30 Nov 2022 03:00:46 GMT
server: Apache
X-Firefox-Spdy: h2
prgtributaristas.com/wp-includes/css/dist/block-library/style.min.css
66.7.203.39200 OK 12 kB URL HTTP/2 prgtributaristas.com/wp-includes/css/dist/block-library/style.min.css
IP 66.7.203.39:0
File type ASCII text, with very long lines (47826)
Hash 2d89ec3562ea2923c7a8080a63ddf8be
3e16bb6f80bfbaa242c89741b31c3ec160ba39db
a4d522a00cf441d7f760e686ccaec6a1d51ea4a51aa166af3a3944d7a73a2029
GET /wp-includes/css/dist/block-library/style.min.css HTTP/1.1
Host: prgtributaristas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://prgtributaristas.com/documento-soporte-en-adquisiciones-a-no-obligados-a-facturar/
Cookie: pll_language=es
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 16 Nov 2022 01:20:46 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 12415
content-type: text/css
date: Wed, 30 Nov 2022 03:00:46 GMT
server: Apache
X-Firefox-Spdy: h2
prgtributaristas.com/wp-content/plugins/contact-form-7/includes/css/styles.css
66.7.203.39200 OK 968 B URL HTTP/2 prgtributaristas.com/wp-content/plugins/contact-form-7/includes/css/styles.css
IP 66.7.203.39:0
Hash f109c8bb02100ab586f1c2ad8e0d3413
1bd59126d23b8dcaea3e1820606868ea9460255a
325d80eed78a5029c7e85cb621c99b13234704e9a5cd71e158a50ee8413b0dbc
GET /wp-content/plugins/contact-form-7/includes/css/styles.css HTTP/1.1
Host: prgtributaristas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://prgtributaristas.com/documento-soporte-en-adquisiciones-a-no-obligados-a-facturar/
Cookie: pll_language=es
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 19 Oct 2022 13:14:56 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 968
content-type: text/css
date: Wed, 30 Nov 2022 03:00:46 GMT
server: Apache
X-Firefox-Spdy: h2
prgtributaristas.com/wp-content/plugins/revslider/public/assets/css/settings.css
66.7.203.39200 OK 7.1 kB URL HTTP/2 prgtributaristas.com/wp-content/plugins/revslider/public/assets/css/settings.css
IP 66.7.203.39:0
File type ASCII text, with very long lines (29701), with CRLF line terminators
Hash 13a5b6a9fe49b9da7a9bd3fddaaf3145
596b9fe20ede3dd39ec4c0764336ae1502cc6dae
147497db25bb746ccf812981b6509381dd8794460d5a47655e7bdab97da07de9
GET /wp-content/plugins/revslider/public/assets/css/settings.css HTTP/1.1
Host: prgtributaristas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://prgtributaristas.com/documento-soporte-en-adquisiciones-a-no-obligados-a-facturar/
Cookie: pll_language=es
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 23 Oct 2017 03:16:04 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 7108
content-type: text/css
date: Wed, 30 Nov 2022 03:00:46 GMT
server: Apache
X-Firefox-Spdy: h2
prgtributaristas.com/wp-content/themes/thefox/css/rgs.css
66.7.203.39200 OK 761 B URL HTTP/2 prgtributaristas.com/wp-content/themes/thefox/css/rgs.css
IP 66.7.203.39:0
File type ASCII text, with CRLF line terminators
Hash c60b535a4b7833ed639b1d20ba9f6314
f1650eed5118314e58b62bdb83733e2e1abc51f4
8ac47ed92c5087d6fc36a66fe84d701c4bb12fb81f1a9b2555ae1415779a2ccd
GET /wp-content/themes/thefox/css/rgs.css HTTP/1.1
Host: prgtributaristas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://prgtributaristas.com/documento-soporte-en-adquisiciones-a-no-obligados-a-facturar/
Cookie: pll_language=es
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 29 Sep 2017 22:30:50 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 761
content-type: text/css
date: Wed, 30 Nov 2022 03:00:46 GMT
server: Apache
X-Firefox-Spdy: h2
prgtributaristas.com/wp-content/themes/thefox/includes/Flexslider/flexslider.css
66.7.203.39200 OK 1.7 kB URL HTTP/2 prgtributaristas.com/wp-content/themes/thefox/includes/Flexslider/flexslider.css
IP 66.7.203.39:0
File type ASCII text, with CRLF line terminators
Hash c93ae26a7ea85319ec4eb7c4685307fa
5fe00bf878bb76295e24283e0ff239998cb69fb5
5f3b2701d4e3a3b1ea52c957a508194f9b6b60abdd09987e635a179eb04a66e5
GET /wp-content/themes/thefox/includes/Flexslider/flexslider.css HTTP/1.1
Host: prgtributaristas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://prgtributaristas.com/documento-soporte-en-adquisiciones-a-no-obligados-a-facturar/
Cookie: pll_language=es
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 29 Sep 2017 22:31:06 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 1710
content-type: text/css
date: Wed, 30 Nov 2022 03:00:46 GMT
server: Apache
X-Firefox-Spdy: h2
prgtributaristas.com/wp-content/themes/thefox/media-queries_wide.css
66.7.203.39200 OK 9.1 kB URL HTTP/2 prgtributaristas.com/wp-content/themes/thefox/media-queries_wide.css
IP 66.7.203.39:0
File type Unicode text, UTF-8 text, with very long lines (375), with CRLF line terminators
Hash 2da05751d9de967e36d6c8327f085012
89e44226bd3e93964a7e655cbf0b137e46f86a1b
ed433701930043e9d6e6aad2eefbebe81806853640020471bcb57263c8e2161e
GET /wp-content/themes/thefox/media-queries_wide.css HTTP/1.1
Host: prgtributaristas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://prgtributaristas.com/documento-soporte-en-adquisiciones-a-no-obligados-a-facturar/
Cookie: pll_language=es
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 29 Sep 2017 22:30:36 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 9121
content-type: text/css
date: Wed, 30 Nov 2022 03:00:46 GMT
server: Apache
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 07b8296613be09905e34b09dce4a203f
c97c67e8c4b1247423d089c028c31e05734f124e
c8c7b7cd00d5818bbe4a4ddb1b734a1b766dc6474cce300171bd5a0947adc6b2
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 30 Nov 2022 03:00:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
prgtributaristas.com/wp-content/themes/thefox/css/animations.css
66.7.203.39200 OK 5.3 kB URL HTTP/2 prgtributaristas.com/wp-content/themes/thefox/css/animations.css
IP 66.7.203.39:0
File type ASCII text, with very long lines (446), with CRLF line terminators
Hash f8bd1888868eb164b967016903be50c9
049dcfc66fd98e3d28d877c6beb3bc9414548409
3f542a4983751c3a40ff0097e8a1f4ce95de1ec2801ec86f0d0c4aab9335508e
GET /wp-content/themes/thefox/css/animations.css HTTP/1.1
Host: prgtributaristas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://prgtributaristas.com/documento-soporte-en-adquisiciones-a-no-obligados-a-facturar/
Cookie: pll_language=es
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 29 Sep 2017 22:30:50 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 5264
content-type: text/css
date: Wed, 30 Nov 2022 03:00:46 GMT
server: Apache
X-Firefox-Spdy: h2
prgtributaristas.com/wp-content/themes/thefox/style_end.css
66.7.203.39200 OK 34 kB URL HTTP/2 prgtributaristas.com/wp-content/themes/thefox/style_end.css
IP 66.7.203.39:0
File type assembler source, ASCII text, with CRLF line terminators
Hash e79c3de232daf42248a18c994fc497d9
ed32e95ef4648f330443e66d9179f7ba0ed19958
f304fda091e0c01dca9c92216415c7ededbfd854bf8411eb29410fdbb83cfd46
GET /wp-content/themes/thefox/style_end.css HTTP/1.1
Host: prgtributaristas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://prgtributaristas.com/documento-soporte-en-adquisiciones-a-no-obligados-a-facturar/
Cookie: pll_language=es
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 27 Oct 2017 14:20:00 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 33954
content-type: text/css
date: Wed, 30 Nov 2022 03:00:46 GMT
server: Apache
X-Firefox-Spdy: h2
prgtributaristas.com/wp-content/themes/thefox/style.css
66.7.203.39200 OK 38 kB URL HTTP/2 prgtributaristas.com/wp-content/themes/thefox/style.css
IP 66.7.203.39:0
File type HTML document text\012- assembler source, Unicode text, UTF-8 text, with very long lines (497), with CRLF line terminators
Hash 4f0d8181b0d2d7dc574e08972129112b
0f5743c3fd7a3d3218048ac445f7b4d21b8a70e2
a348f9a46b271e9b76a51707287eaffe07793d4e6ef13731ed97ca54591cc12f
GET /wp-content/themes/thefox/style.css HTTP/1.1
Host: prgtributaristas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://prgtributaristas.com/documento-soporte-en-adquisiciones-a-no-obligados-a-facturar/
Cookie: pll_language=es
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 29 Sep 2017 22:30:36 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 37677
content-type: text/css
date: Wed, 30 Nov 2022 03:00:46 GMT
server: Apache
X-Firefox-Spdy: h2
prgtributaristas.com/wp-content/themes/thefox/includes/zilla-likes/styles/zilla-likes.css
66.7.203.39200 OK 173 B URL HTTP/2 prgtributaristas.com/wp-content/themes/thefox/includes/zilla-likes/styles/zilla-likes.css
IP 66.7.203.39:0
File type ASCII text, with CRLF line terminators
Hash 39b2741e31c5a052c44d2eaa22981fe7
ae72a066e3d23e636e7edfdbba4c74836ed2d431
54cb55ff0e24b12a2631b4152cf810a15e48a34bffbc7b52b25521cc6c828041
GET /wp-content/themes/thefox/includes/zilla-likes/styles/zilla-likes.css HTTP/1.1
Host: prgtributaristas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://prgtributaristas.com/documento-soporte-en-adquisiciones-a-no-obligados-a-facturar/
Cookie: pll_language=es
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 29 Sep 2017 22:31:36 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 173
content-type: text/css
date: Wed, 30 Nov 2022 03:00:47 GMT
server: Apache
X-Firefox-Spdy: h2
prgtributaristas.com/wp-includes/js/jquery/jquery-migrate.min.js
66.7.203.39200 OK 4.2 kB URL HTTP/2 prgtributaristas.com/wp-includes/js/jquery/jquery-migrate.min.js
IP 66.7.203.39:0
File type ASCII text, with very long lines (11126)
Hash 2fe098cbdfcb2c171cd6e4fc7eb595c5
8e1bf93a92cd550526d91c1321711700f0978078
7d6f6e40a91e440cf57e67f4e03a6a5d5ba4549e35117d31f0497eeadfce9d5c
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/jquery-migrate.min.js HTTP/1.1
Host: prgtributaristas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://prgtributaristas.com/documento-soporte-en-adquisiciones-a-no-obligados-a-facturar/
Cookie: pll_language=es
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 10 Mar 2021 22:46:22 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 4165
content-type: application/javascript
date: Wed, 30 Nov 2022 03:00:47 GMT
server: Apache
X-Firefox-Spdy: h2
prgtributaristas.com/wp-content/themes/thefox/css/font-awesome.css
66.7.203.39200 OK 5.3 kB URL HTTP/2 prgtributaristas.com/wp-content/themes/thefox/css/font-awesome.css
IP 66.7.203.39:0
File type troff or preprocessor input, ASCII text, with very long lines (337), with CRLF line terminators
Hash 76da89522b018601b3d86f11fd9a0676
370eb99a21a8a385557df6ba82b4aa9e595c1ac9
5ef094182a84b9d2518e49a99ea83407026be3a79617cfb8417f0525fc8e1ef9
GET /wp-content/themes/thefox/css/font-awesome.css HTTP/1.1
Host: prgtributaristas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://prgtributaristas.com/documento-soporte-en-adquisiciones-a-no-obligados-a-facturar/
Cookie: pll_language=es
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 29 Sep 2017 22:30:50 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 5321
content-type: text/css
date: Wed, 30 Nov 2022 03:00:47 GMT
server: Apache
X-Firefox-Spdy: h2
prgtributaristas.com/wp-content/themes/thefox/css/elegant.css
66.7.203.39200 OK 4.5 kB URL HTTP/2 prgtributaristas.com/wp-content/themes/thefox/css/elegant.css
IP 66.7.203.39:0
File type ASCII text, with very long lines (8050), with CRLF line terminators
Hash 7a83c688db1119de3fc5d33ca16556ee
0450e2c7a661772c94b52c5bc1a0fa4a925ecb73
a714bbde641ca27022a9af2742e189ec17588983fd59002030dc5d8da675cb60
GET /wp-content/themes/thefox/css/elegant.css HTTP/1.1
Host: prgtributaristas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://prgtributaristas.com/documento-soporte-en-adquisiciones-a-no-obligados-a-facturar/
Cookie: pll_language=es
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 29 Sep 2017 22:30:50 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 4481
content-type: text/css
date: Wed, 30 Nov 2022 03:00:47 GMT
server: Apache
X-Firefox-Spdy: h2
prgtributaristas.com/wp-content/uploads/2017/11/logo_final.png
66.7.203.39200 OK 7.8 kB URL HTTP/2 prgtributaristas.com/wp-content/uploads/2017/11/logo_final.png
IP 66.7.203.39:0
File type PNG image data, 226 x 94, 8-bit/color RGBA, non-interlaced\012- data
Hash eb957e9a3ce806c7fb9da0e2e8701aba
536452ea5a66c71e85e8aadc68a729b255e9f371
920faca12209598bfb45e5c863f3717b5d01d52d83f198b0a192b95d96caa08c
GET /wp-content/uploads/2017/11/logo_final.png HTTP/1.1
Host: prgtributaristas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://prgtributaristas.com/documento-soporte-en-adquisiciones-a-no-obligados-a-facturar/
Cookie: pll_language=es
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 19 Nov 2017 19:22:58 GMT
accept-ranges: bytes
content-length: 7832
content-type: image/png
date: Wed, 30 Nov 2022 03:00:47 GMT
server: Apache
X-Firefox-Spdy: h2
prgtributaristas.com/wp-includes/blocks/file/view.min.js
66.7.203.39200 OK 322 B URL HTTP/2 prgtributaristas.com/wp-includes/blocks/file/view.min.js
IP 66.7.203.39:0
File type ASCII text, with very long lines (544), with no line terminators
Hash 6e6b6988da90e6068edc114c326fa6cd
6ef883e5763e3c1ba469a635b443ce731ced6853
dbfd5b15e6ac32679894846cb89439cbab668d2914b328d20e61f8b114ed7a6c
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/blocks/file/view.min.js HTTP/1.1
Host: prgtributaristas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://prgtributaristas.com/documento-soporte-en-adquisiciones-a-no-obligados-a-facturar/
Cookie: pll_language=es
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 26 May 2022 01:08:30 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 322
content-type: application/javascript
date: Wed, 30 Nov 2022 03:00:47 GMT
server: Apache
X-Firefox-Spdy: h2
prgtributaristas.com/wp-content/themes/thefox/js/custom_woo_js.js
66.7.203.39200 OK 697 B URL HTTP/2 prgtributaristas.com/wp-content/themes/thefox/js/custom_woo_js.js
IP 66.7.203.39:0
File type ASCII text, with CRLF line terminators
Hash 88e94a40670ab8a14184053af90a51d9
51190a78a783939dff50faec272158c195badc55
a4def542df9bf4b3443596267df784ca1f460e570d9975ec26c3f21794deefd0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/thefox/js/custom_woo_js.js HTTP/1.1
Host: prgtributaristas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://prgtributaristas.com/documento-soporte-en-adquisiciones-a-no-obligados-a-facturar/
Cookie: pll_language=es
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 29 Sep 2017 22:31:36 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 697
content-type: application/javascript
date: Wed, 30 Nov 2022 03:00:47 GMT
server: Apache
X-Firefox-Spdy: h2
prgtributaristas.com/wp-includes/js/comment-reply.min.js
66.7.203.39200 OK 1.4 kB URL HTTP/2 prgtributaristas.com/wp-includes/js/comment-reply.min.js
IP 66.7.203.39:0
File type ASCII text, with very long lines (2946)
Hash 28214bc78b9edfcfbc9c7b651fb4f56c
fb0847abdb33dd943a2dcda4c4b905fb5cdd116c
11691bc1acc1f3a7ab8ef7c67fb720ca58fb72e52f510009f7b0cbc2589d45e0
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/comment-reply.min.js HTTP/1.1
Host: prgtributaristas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://prgtributaristas.com/documento-soporte-en-adquisiciones-a-no-obligados-a-facturar/
Cookie: pll_language=es
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 26 May 2022 01:08:29 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 1351
content-type: application/javascript
date: Wed, 30 Nov 2022 03:00:47 GMT
server: Apache
X-Firefox-Spdy: h2
prgtributaristas.com/wp-content/plugins/contact-form-7/includes/js/index.js
66.7.203.39200 OK 4.0 kB URL HTTP/2 prgtributaristas.com/wp-content/plugins/contact-form-7/includes/js/index.js
IP 66.7.203.39:0
File type HTML document, ASCII text, with very long lines (12310), with no line terminators
Hash 50bae0240cd1352ca7b7a53be004d415
06dde77024abfa8dc6b356bde65311518f12559b
734737e7482a40d309762f8a01f67ecd22b73163edb53ccdffbda9c0d00d9366
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/contact-form-7/includes/js/index.js HTTP/1.1
Host: prgtributaristas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://prgtributaristas.com/documento-soporte-en-adquisiciones-a-no-obligados-a-facturar/
Cookie: pll_language=es
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 19 Oct 2022 13:14:56 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 3952
content-type: application/javascript
date: Wed, 30 Nov 2022 03:00:47 GMT
server: Apache
X-Firefox-Spdy: h2
prgtributaristas.com/wp-content/themes/thefox/includes/prettyPhoto/css/prettyPhoto.css
66.7.203.39200 OK 3.4 kB URL HTTP/2 prgtributaristas.com/wp-content/themes/thefox/includes/prettyPhoto/css/prettyPhoto.css
IP 66.7.203.39:0
File type ASCII text, with CRLF line terminators
Hash 3aac3f958209e9c813897dc283539e68
2e63f0f6900565df5b3ee30941a3860ed687f6d7
05dc8fcdbfaf2f04430edbc359cdc1de0ddaba7d2e972c26031fb7d653070c0d
GET /wp-content/themes/thefox/includes/prettyPhoto/css/prettyPhoto.css HTTP/1.1
Host: prgtributaristas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://prgtributaristas.com/documento-soporte-en-adquisiciones-a-no-obligados-a-facturar/
Cookie: pll_language=es
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 29 Sep 2017 22:31:34 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 3431
content-type: text/css
date: Wed, 30 Nov 2022 03:00:47 GMT
server: Apache
X-Firefox-Spdy: h2
prgtributaristas.com/wp-includes/js/jquery/jquery.min.js
66.7.203.39200 OK 31 kB URL HTTP/2 prgtributaristas.com/wp-includes/js/jquery/jquery.min.js
IP 66.7.203.39:0
File type ASCII text, with very long lines (65447)
Hash 3817814ad6a4b5ab0fbb9e3e775ea7ea
d435e871daaa241a0853a698a982f71f773aad18
539a5a5edf8c79df18435775d2a17895fda4d439114e46254282e4e89fcf4686
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/jquery.min.js HTTP/1.1
Host: prgtributaristas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://prgtributaristas.com/documento-soporte-en-adquisiciones-a-no-obligados-a-facturar/
Cookie: pll_language=es
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 02 Nov 2022 01:22:31 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 30917
content-type: application/javascript
date: Wed, 30 Nov 2022 03:00:47 GMT
server: Apache
X-Firefox-Spdy: h2
prgtributaristas.com/wp-content/plugins/contact-form-7/includes/swv/js/index.js
66.7.203.39200 OK 2.9 kB URL HTTP/2 prgtributaristas.com/wp-content/plugins/contact-form-7/includes/swv/js/index.js
IP 66.7.203.39:0
File type ASCII text, with very long lines (9937), with no line terminators
Hash d3d37a3b1f254960d76b7437ee979090
9f89e898aeea788823603e31d478871f687411b2
831117b1b9305906d7b3305d643ad82520bcc4d21095cbbda7aef07464b95257
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/contact-form-7/includes/swv/js/index.js HTTP/1.1
Host: prgtributaristas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://prgtributaristas.com/documento-soporte-en-adquisiciones-a-no-obligados-a-facturar/
Cookie: pll_language=es
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 19 Oct 2022 13:14:56 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 2916
content-type: application/javascript
date: Wed, 30 Nov 2022 03:00:47 GMT
server: Apache
X-Firefox-Spdy: h2
prgtributaristas.com/wp-includes/js/wp-emoji-release.min.js
66.7.203.39200 OK 4.9 kB URL HTTP/2 prgtributaristas.com/wp-includes/js/wp-emoji-release.min.js
IP 66.7.203.39:0
File type ASCII text, with very long lines (15660)
Hash 42029f61a2420a40d0d0ed0c815f46cf
070158911465fce01eead299784c05e394136b11
5004e9f2aee15a254c0da7a1d220c6dfc1f6de3322a210fdc67965e808748ff7
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/wp-emoji-release.min.js HTTP/1.1
Host: prgtributaristas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://prgtributaristas.com/documento-soporte-en-adquisiciones-a-no-obligados-a-facturar/
Cookie: pll_language=es
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 26 May 2022 01:08:29 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 4917
content-type: application/javascript
date: Wed, 30 Nov 2022 03:00:47 GMT
server: Apache
X-Firefox-Spdy: h2
prgtributaristas.com/wp-content/themes/thefox/js/smoothscroll.js
66.7.203.39200 OK 2.2 kB URL HTTP/2 prgtributaristas.com/wp-content/themes/thefox/js/smoothscroll.js
IP 66.7.203.39:0
File type ASCII text, with very long lines (4440), with CRLF line terminators
Hash a22f7fe8dedf93aaa60ed74f2cf3cb6e
c19f47aedf2d5d665a2a4dcaae27a4a0c7925124
0350c99863f9e08d4138f966f31b169e92e1dc5b0fa5ee321c64b808cf317cf6
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/thefox/js/smoothscroll.js HTTP/1.1
Host: prgtributaristas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://prgtributaristas.com/documento-soporte-en-adquisiciones-a-no-obligados-a-facturar/
Cookie: pll_language=es
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 29 Sep 2017 22:31:38 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 2157
content-type: application/javascript
date: Wed, 30 Nov 2022 03:00:47 GMT
server: Apache
X-Firefox-Spdy: h2
prgtributaristas.com/wp-content/plugins/revslider/public/assets/js/jquery.themepunch.revolution.min.js
66.7.203.39200 OK 18 kB URL HTTP/2 prgtributaristas.com/wp-content/plugins/revslider/public/assets/js/jquery.themepunch.revolution.min.js
IP 66.7.203.39:0
File type ASCII text, with very long lines (64526), with CRLF line terminators
Hash 6129a379759dff3081a6cccf18e33388
c61835f2a0fe14419055af9210912d8d738f120b
f3c8c4f963eeb821709bceb7ce7b2d18a5a2362c32fbb069a6fb0d7d034953ee
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/revslider/public/assets/js/jquery.themepunch.revolution.min.js HTTP/1.1
Host: prgtributaristas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://prgtributaristas.com/documento-soporte-en-adquisiciones-a-no-obligados-a-facturar/
Cookie: pll_language=es
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 23 Oct 2017 03:16:04 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 17915
content-type: application/javascript
date: Wed, 30 Nov 2022 03:00:47 GMT
server: Apache
X-Firefox-Spdy: h2
prgtributaristas.com/wp-content/themes/thefox/css/thefox_js_composer.css
66.7.203.39200 OK 19 kB URL HTTP/2 prgtributaristas.com/wp-content/themes/thefox/css/thefox_js_composer.css
IP 66.7.203.39:0
File type ASCII text, with very long lines (387), with CRLF line terminators
Hash 08dc479c1f4d8f0992c8cc5ecc926568
a70a42d6669b53c2e8c734c40c4776ac7b1a2483
04c9f5d8564d3d039628d1757080f90bb04330d1092b5c5622967372c23f557b
GET /wp-content/themes/thefox/css/thefox_js_composer.css HTTP/1.1
Host: prgtributaristas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://prgtributaristas.com/documento-soporte-en-adquisiciones-a-no-obligados-a-facturar/
Cookie: pll_language=es
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 29 Sep 2017 22:30:50 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 18944
content-type: text/css
date: Wed, 30 Nov 2022 03:00:47 GMT
server: Apache
X-Firefox-Spdy: h2
prgtributaristas.com/wp-content/themes/thefox/images/loader.gif
66.7.203.39200 OK 1.7 kB URL HTTP/2 prgtributaristas.com/wp-content/themes/thefox/images/loader.gif
IP 66.7.203.39:0
File type GIF image data, version 89a, 16 x 16\012- data
Hash 003f1e3026af87af453b53160e21a7f0
134c28a651412a342b7c393d8347bdba2145a01a
0e795a8587e5b1a2a9ea358cc5589b8efd8edd71b5454bc508d75946baa433e4
GET /wp-content/themes/thefox/images/loader.gif HTTP/1.1
Host: prgtributaristas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://prgtributaristas.com/documento-soporte-en-adquisiciones-a-no-obligados-a-facturar/
Cookie: pll_language=es
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 29 Sep 2017 22:30:58 GMT
accept-ranges: bytes
content-length: 1728
content-type: image/gif
date: Wed, 30 Nov 2022 03:00:47 GMT
server: Apache
X-Firefox-Spdy: h2
prgtributaristas.com/wp-content/uploads/2017/11/favicon_2.png
66.7.203.39200 OK 32 kB URL HTTP/2 prgtributaristas.com/wp-content/uploads/2017/11/favicon_2.png
IP 66.7.203.39:0
File type PNG image data, 512 x 512, 8-bit/color RGBA, non-interlaced\012- data
Hash a1f45fe5d6a39e772b6e4ba68073842f
51a164388c4ac28530aaedee68facae65fecfd51
937085d052769c1b15838668760748e6cb7abbfc17a2b03b2a1d61a2315e1cf4
GET /wp-content/uploads/2017/11/favicon_2.png HTTP/1.1
Host: prgtributaristas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://prgtributaristas.com/documento-soporte-en-adquisiciones-a-no-obligados-a-facturar/
Cookie: pll_language=es
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 19 Nov 2017 19:24:50 GMT
accept-ranges: bytes
content-length: 32427
content-type: image/png
date: Wed, 30 Nov 2022 03:00:47 GMT
server: Apache
X-Firefox-Spdy: h2
prgtributaristas.com/wp-content/themes/thefox/js/scrollmagic.js
66.7.203.39200 OK 46 kB URL HTTP/2 prgtributaristas.com/wp-content/themes/thefox/js/scrollmagic.js
IP 66.7.203.39:0
File type ASCII text, with very long lines (32028), with CRLF line terminators
Hash 00142006f6cf10beb42e7a54bd411f8e
70b5f2d343b77fcddffdb4bb2cc90c98deb26a78
e55dbc8004a89ede1748c244f0bc4441fabad3e342db078c5697147ef0325efb
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/thefox/js/scrollmagic.js HTTP/1.1
Host: prgtributaristas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://prgtributaristas.com/documento-soporte-en-adquisiciones-a-no-obligados-a-facturar/
Cookie: pll_language=es
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 29 Sep 2017 22:31:38 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 46063
content-type: application/javascript
date: Wed, 30 Nov 2022 03:00:47 GMT
server: Apache
X-Firefox-Spdy: h2
prgtributaristas.com/wp-content/plugins/revslider/public/assets/js/jquery.themepunch.tools.min.js
66.7.203.39200 OK 38 kB URL HTTP/2 prgtributaristas.com/wp-content/plugins/revslider/public/assets/js/jquery.themepunch.tools.min.js
IP 66.7.203.39:0
File type ASCII text, with very long lines (27287), with CRLF line terminators
Hash 66ae8d6c45f70f8d1077e3b4fa5c1a5d
8ca0b786e23505f64cf2caf22915ba51a4f5730e
5c35aa37acb5f68a438f1d6d6f9565deaa19402bd18f9e12419fdab9d0e54299
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/revslider/public/assets/js/jquery.themepunch.tools.min.js HTTP/1.1
Host: prgtributaristas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://prgtributaristas.com/documento-soporte-en-adquisiciones-a-no-obligados-a-facturar/
Cookie: pll_language=es
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 23 Oct 2017 03:16:04 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 38251
content-type: application/javascript
date: Wed, 30 Nov 2022 03:00:47 GMT
server: Apache
X-Firefox-Spdy: h2
prgtributaristas.com/wp-content/themes/thefox/css/moon.css
66.7.203.39200 OK 13 kB URL HTTP/2 prgtributaristas.com/wp-content/themes/thefox/css/moon.css
IP 66.7.203.39:0
File type ASCII text, with very long lines (19725), with CRLF line terminators
Hash a55705cf3fef9a5dc8d603a2fccfc737
4fbfcf95c07f89ca0ad6b3a9ca46b26922fae099
58bc42faa09e81aa2e56d463ad398581228eb8b8034a730a4d103b10bc632446
GET /wp-content/themes/thefox/css/moon.css HTTP/1.1
Host: prgtributaristas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://prgtributaristas.com/documento-soporte-en-adquisiciones-a-no-obligados-a-facturar/
Cookie: pll_language=es
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 29 Sep 2017 22:30:50 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 13283
content-type: text/css
date: Wed, 30 Nov 2022 03:00:47 GMT
server: Apache
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 608e4d04a251ebcd51660e801f388303
fcb9aa48fd6ed504a1a9fed7990c5ccde63e6a1d
cc1a34cd0a99e301df97cf184ab0ded2e229659f86f43e4eff479dee221695dc
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 30 Nov 2022 03:00:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 49eee25f3ccd585a29e34e80cf5bb160
73eca8be91deedd049304862759a3d8084c0b07e
531e5685527861b3ed7e8e3865c5a6a40d3f92f5c9d89df3f385dab72406fb56
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 30 Nov 2022 03:00:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/opensans/v34/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsjZ0B4gaVI.woff2
216.58.207.227200 OK 17 kB URL HTTP/2 fonts.gstatic.com/s/opensans/v34/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsjZ0B4gaVI.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 16740, version 1.0\012- data
Hash e43b535855a4ae53bd5b07a6eeb3bf67
6507312d9491156036316484bf8dc41e8b52ddd9
b34551ae25916c460423b82beb8e0675b27f76a9a2908f18286260fbd6de6681
GET /s/opensans/v34/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsjZ0B4gaVI.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://prgtributaristas.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 16740
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 28 Nov 2022 18:52:55 GMT
expires: Tue, 28 Nov 2023 18:52:55 GMT
cache-control: public, max-age=31536000
age: 115672
last-modified: Mon, 15 Aug 2022 18:14:44 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Open+Sans&ver=1653611739
142.250.74.106200 OK 1.1 kB URL HTTP/2 fonts.googleapis.com/css?family=Open+Sans&ver=1653611739
IP 142.250.74.106:0
Hash 5f8c3ada3dc80b6c4377822e737b9ba3
a2640d9ae8bc7806cf7aa0e063c45e7523eaa14a
81d89a91cda72e31faaebe716e528c7d13afdc943f999a1d4f92f816bfc6aaaa
GET /css?family=Open+Sans&ver=1653611739 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://prgtributaristas.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 30 Nov 2022 03:00:47 GMT
date: Wed, 30 Nov 2022 03:00:47 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
216.58.207.227200 OK 45 kB URL HTTP/2 fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 44856, version 1.0\012- data
Hash 565ce506190ad3af920b40baf1794cec
ad3cba5d06100e09449a864d3b5e58403b478b3d
8778e9af2422858d7052ff9a0f3c12c08ae976bdd6e0316db144cd5579cd97db
GET /s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://prgtributaristas.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 44856
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 28 Nov 2022 18:52:41 GMT
expires: Tue, 28 Nov 2023 18:52:41 GMT
cache-control: public, max-age=31536000
age: 115686
last-modified: Mon, 15 Aug 2022 18:20:18 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/lato/v23/S6u9w4BMUTPHh6UVSwiPGQ.woff2
216.58.207.227200 OK 23 kB URL HTTP/2 fonts.gstatic.com/s/lato/v23/S6u9w4BMUTPHh6UVSwiPGQ.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 23040, version 1.0\012- data
Hash de69cf9e514df447d1b0bb16f49d2457
2ac78601179c3a63ba3f3f3081556b12ddcaf655
c447dd7677b419db7b21dbdfc6277c7816a913ffda76fd2e52702df538de0e49
GET /s/lato/v23/S6u9w4BMUTPHh6UVSwiPGQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://prgtributaristas.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 23040
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 24 Nov 2022 12:29:22 GMT
expires: Fri, 24 Nov 2023 12:29:22 GMT
cache-control: public, max-age=31536000
age: 484285
last-modified: Tue, 26 Apr 2022 15:56:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/lato/v23/S6u9w4BMUTPHh50XSwiPGQ.woff2
216.58.207.227200 OK 22 kB URL HTTP/2 fonts.gstatic.com/s/lato/v23/S6u9w4BMUTPHh50XSwiPGQ.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 22504, version 1.0\012- data
Hash 1c6c65523675abc6fcd78e804325bd77
898d9808304dc157f5dcb18ca169ec6e2b96b3d7
08664859baab5ed98f0bf818ed77e38464ff1826dc6406d5ecbd651409afbd92
GET /s/lato/v23/S6u9w4BMUTPHh50XSwiPGQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://prgtributaristas.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 22504
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 29 Nov 2022 17:14:55 GMT
expires: Wed, 29 Nov 2023 17:14:55 GMT
cache-control: public, max-age=31536000
age: 35152
last-modified: Tue, 26 Apr 2022 16:04:16 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 49eee25f3ccd585a29e34e80cf5bb160
73eca8be91deedd049304862759a3d8084c0b07e
531e5685527861b3ed7e8e3865c5a6a40d3f92f5c9d89df3f385dab72406fb56
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 30 Nov 2022 03:00:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
prgtributaristas.com/wp-content/themes/thefox/includes/font/fontawesome-webfont.woff?v=4.1.0
66.7.203.39200 OK 98 kB URL HTTP/2 prgtributaristas.com/wp-content/themes/thefox/includes/font/fontawesome-webfont.woff?v=4.1.0
IP 66.7.203.39:0
File type Web Open Font Format, TrueType, length 98024, version 4.7\012- data
Hash fee66e712a8a08eef5805a46892932ad
28b782240b3e76db824e12c02754a9731a167527
ba0c59deb5450f5cb41b3f93609ee2d0d995415877ddfa223e8a8a7533474f07
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/thefox/includes/font/fontawesome-webfont.woff?v=4.1.0 HTTP/1.1
Host: prgtributaristas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://prgtributaristas.com/wp-content/themes/thefox/css/font-awesome.css
Cookie: pll_language=es
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 29 Sep 2017 22:31:06 GMT
accept-ranges: bytes
content-length: 98024
vary: Accept-Encoding,User-Agent
content-type: font/woff
date: Wed, 30 Nov 2022 03:00:47 GMT
server: Apache
X-Firefox-Spdy: h2
prgtributaristas.com/wp-content/themes/thefox/includes/font/ElegantIcons.woff
66.7.203.39200 OK 64 kB URL HTTP/2 prgtributaristas.com/wp-content/themes/thefox/includes/font/ElegantIcons.woff
IP 66.7.203.39:0
File type Web Open Font Format, CFF, length 63664, version 1.0\012- data
Hash fdd9e757bf61675343dcf55100422b84
f9be87fa2d1d4a95e8305afb51778db4bc759fbc
be1825e52a0dc7df04df9322f62abe2a2f2a25d98aac186de0140dfc7f6bdcae
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/thefox/includes/font/ElegantIcons.woff HTTP/1.1
Host: prgtributaristas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://prgtributaristas.com/wp-content/themes/thefox/css/elegant.css
Cookie: pll_language=es
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 29 Sep 2017 22:31:06 GMT
accept-ranges: bytes
content-length: 63664
vary: Accept-Encoding,User-Agent
content-type: font/woff
date: Wed, 30 Nov 2022 03:00:47 GMT
server: Apache
X-Firefox-Spdy: h2
prgtributaristas.com/wp-content/uploads/2022/08/IMAGEN-CONTRATOS-COLABORACION-EMPRESARIAL-1-1-600x490.jpg
66.7.203.39200 OK 50 kB URL HTTP/2 prgtributaristas.com/wp-content/uploads/2022/08/IMAGEN-CONTRATOS-COLABORACION-EMPRESARIAL-1-1-600x490.jpg
IP 66.7.203.39:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=4], baseline, precision 8, 600x490, components 3\012- data
Hash 1e8f717e1651783ad051cf3dcced22be
580cb655f3e2eb054f86898f0d4659ae9d6849b2
2a89751f85a0dbb998d22491f05152131bfd30dd647cb18f0f53330b3aede21a
GET /wp-content/uploads/2022/08/IMAGEN-CONTRATOS-COLABORACION-EMPRESARIAL-1-1-600x490.jpg HTTP/1.1
Host: prgtributaristas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://prgtributaristas.com/documento-soporte-en-adquisiciones-a-no-obligados-a-facturar/
Cookie: pll_language=es
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 31 Aug 2022 00:49:48 GMT
accept-ranges: bytes
content-length: 50348
content-type: image/jpeg
date: Wed, 30 Nov 2022 03:00:47 GMT
server: Apache
X-Firefox-Spdy: h2
prgtributaristas.com/wp-content/uploads/2022/08/IMAGEN-NUEVA-JORNADA-LABORAL-DE-42-HORAS-600x490.jpg
66.7.203.39200 OK 50 kB URL HTTP/2 prgtributaristas.com/wp-content/uploads/2022/08/IMAGEN-NUEVA-JORNADA-LABORAL-DE-42-HORAS-600x490.jpg
IP 66.7.203.39:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=4], baseline, precision 8, 600x490, components 3\012- data
Hash b75d447ab4f602d91675f89c2b48ca6d
77f8cba04a6c519803bef513feb3cdd40228e86b
6d1b7e0a8fc071c7b75a9ed18ecc8acbb7e7db0869c2af34bf7b166abffd52a0
GET /wp-content/uploads/2022/08/IMAGEN-NUEVA-JORNADA-LABORAL-DE-42-HORAS-600x490.jpg HTTP/1.1
Host: prgtributaristas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://prgtributaristas.com/documento-soporte-en-adquisiciones-a-no-obligados-a-facturar/
Cookie: pll_language=es
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 30 Aug 2022 00:49:16 GMT
accept-ranges: bytes
content-length: 50488
content-type: image/jpeg
date: Wed, 30 Nov 2022 03:00:47 GMT
server: Apache
X-Firefox-Spdy: h2
prgtributaristas.com/wp-content/uploads/2022/08/IMAGEN-DESTACADA-PACTOS-NO-SALARIALES-600x490.jpg
66.7.203.39200 OK 65 kB URL HTTP/2 prgtributaristas.com/wp-content/uploads/2022/08/IMAGEN-DESTACADA-PACTOS-NO-SALARIALES-600x490.jpg
IP 66.7.203.39:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=4], baseline, precision 8, 600x490, components 3\012- data
Hash e1235e92f314c2ce5702e523590f69b7
7c9612c706da292a9145f318e89b3dc253894979
828f31527f42b8fd094bfe359890e6273c2fe039e0f567208e2cc5198f97aed4
GET /wp-content/uploads/2022/08/IMAGEN-DESTACADA-PACTOS-NO-SALARIALES-600x490.jpg HTTP/1.1
Host: prgtributaristas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://prgtributaristas.com/documento-soporte-en-adquisiciones-a-no-obligados-a-facturar/
Cookie: pll_language=es
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 29 Aug 2022 23:56:34 GMT
accept-ranges: bytes
content-length: 65358
content-type: image/jpeg
date: Wed, 30 Nov 2022 03:00:47 GMT
server: Apache
X-Firefox-Spdy: h2
prgtributaristas.com/wp-content/uploads/2021/02/FOTO-OLMEDO-CONFERENCIA-600x490.jpg
66.7.203.39200 OK 36 kB URL HTTP/2 prgtributaristas.com/wp-content/uploads/2021/02/FOTO-OLMEDO-CONFERENCIA-600x490.jpg
IP 66.7.203.39:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 600x490, components 3\012- data
Hash 2dad3bdb8a877b116a1995e01677d68d
c22c763e8355afa86f52a6ce0535ac0171c7851d
ee0fbac1c7e27ac200f8de974bb66608985cd2762e085134ea404da018fafbaa
GET /wp-content/uploads/2021/02/FOTO-OLMEDO-CONFERENCIA-600x490.jpg HTTP/1.1
Host: prgtributaristas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://prgtributaristas.com/documento-soporte-en-adquisiciones-a-no-obligados-a-facturar/
Cookie: pll_language=es
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 13 Nov 2021 00:48:40 GMT
accept-ranges: bytes
content-length: 36408
content-type: image/jpeg
date: Wed, 30 Nov 2022 03:00:47 GMT
server: Apache
X-Firefox-Spdy: h2
prgtributaristas.com/wp-content/uploads/2022/06/GATO-MARCELA-e1654128583319-600x490.jpg
66.7.203.39200 OK 82 kB URL HTTP/2 prgtributaristas.com/wp-content/uploads/2022/06/GATO-MARCELA-e1654128583319-600x490.jpg
IP 66.7.203.39:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=11, manufacturer=Nokia, model=5220 XpressMusic, orientation=upper-left, xresolution=2230, yresolution=2238, resolutionunit=2, software=Microsoft Windows Photo Viewer 6.1.7600.16385, datetime=2010:04:29 13:25:28], baseline, precision 8, 600x490, components 3\012- data
Hash e48cc6bfc91312c03084a08af98c5c20
27f8202a62e85677804ff7fd6eeee44177df3a32
b14edc8552113c443bb43093a255cb117da85b272940c8a9bb694e115da3c08b
GET /wp-content/uploads/2022/06/GATO-MARCELA-e1654128583319-600x490.jpg HTTP/1.1
Host: prgtributaristas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://prgtributaristas.com/documento-soporte-en-adquisiciones-a-no-obligados-a-facturar/
Cookie: pll_language=es
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 02 Jun 2022 00:50:31 GMT
accept-ranges: bytes
content-length: 82548
content-type: image/jpeg
date: Wed, 30 Nov 2022 03:00:47 GMT
server: Apache
X-Firefox-Spdy: h2
prgtributaristas.com/wp-content/uploads/2021/11/ABOGADOS-TRIBUTARISTAS-600x490.png
66.7.203.39200 OK 92 kB URL HTTP/2 prgtributaristas.com/wp-content/uploads/2021/11/ABOGADOS-TRIBUTARISTAS-600x490.png
IP 66.7.203.39:0
File type PNG image data, 600 x 490, 8-bit/color RGBA, non-interlaced\012- data
Hash c81c3c1ada6accb6192c25222c60e0bb
bb813fe5f43db76a6ff26983d3ea5b2664302b16
c0910d700538031bef5970337073f6c96cf8f0cb524d80778a73d5da822c011b
GET /wp-content/uploads/2021/11/ABOGADOS-TRIBUTARISTAS-600x490.png HTTP/1.1
Host: prgtributaristas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://prgtributaristas.com/documento-soporte-en-adquisiciones-a-no-obligados-a-facturar/
Cookie: pll_language=es
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 25 Nov 2021 19:29:30 GMT
accept-ranges: bytes
content-length: 91544
content-type: image/png
date: Wed, 30 Nov 2022 03:00:47 GMT
server: Apache
X-Firefox-Spdy: h2
prgtributaristas.com/wp-content/uploads/2021/11/OUTSOURCING-CONTABLE-600x490.png
66.7.203.39200 OK 100 kB URL HTTP/2 prgtributaristas.com/wp-content/uploads/2021/11/OUTSOURCING-CONTABLE-600x490.png
IP 66.7.203.39:0
File type PNG image data, 600 x 490, 8-bit/color RGBA, non-interlaced\012- data
Hash bb47afd7b48300b620aa8d29c26366f7
e6f8f8fca153989c96be490ff1426e7f2dd81922
7e04d7c18ea3a619424bc3f37040b178d13d6c45a71c749d60cbea9ebad502cc
GET /wp-content/uploads/2021/11/OUTSOURCING-CONTABLE-600x490.png HTTP/1.1
Host: prgtributaristas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://prgtributaristas.com/documento-soporte-en-adquisiciones-a-no-obligados-a-facturar/
Cookie: pll_language=es
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 26 Nov 2021 14:55:14 GMT
accept-ranges: bytes
content-length: 99968
content-type: image/png
date: Wed, 30 Nov 2022 03:00:47 GMT
server: Apache
X-Firefox-Spdy: h2
prgtributaristas.com/wp-content/uploads/2021/12/SERVICIOS-PRG-1A-29-600x490.png
66.7.203.39200 OK 207 kB URL HTTP/2 prgtributaristas.com/wp-content/uploads/2021/12/SERVICIOS-PRG-1A-29-600x490.png
IP 66.7.203.39:0
File type PNG image data, 600 x 490, 8-bit/color RGBA, non-interlaced\012- data
Size 207 kB (207428 bytes)
Hash de246ab9724649feef4aa7dddb9fe5ba
5741799bc2815d49a3be8f4bb063d4ef0f8b0a87
eb76b981a05c08f90158d60afa2ca8f932654eff55206c2feac87fabe4291f71
GET /wp-content/uploads/2021/12/SERVICIOS-PRG-1A-29-600x490.png HTTP/1.1
Host: prgtributaristas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://prgtributaristas.com/documento-soporte-en-adquisiciones-a-no-obligados-a-facturar/
Cookie: pll_language=es
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 10 Jun 2022 16:24:29 GMT
accept-ranges: bytes
content-length: 207428
content-type: image/png
date: Wed, 30 Nov 2022 03:00:47 GMT
server: Apache
X-Firefox-Spdy: h2
prgtributaristas.com/wp-content/uploads/2017/11/cropped-favicon_2-2-32x32.png
66.7.203.39200 OK 1.7 kB URL HTTP/2 prgtributaristas.com/wp-content/uploads/2017/11/cropped-favicon_2-2-32x32.png
IP 66.7.203.39:0
File type PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced\012- data
Hash 184bdb8051b4a5be0a518d56cd0623cc
b5d624604c6e79d1ec4443bf4ea29412a29d5252
27a69c87638595ce3bfd5d6b04b803a8213f05576b7e466ba658e22433c09b32
GET /wp-content/uploads/2017/11/cropped-favicon_2-2-32x32.png HTTP/1.1
Host: prgtributaristas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://prgtributaristas.com/documento-soporte-en-adquisiciones-a-no-obligados-a-facturar/
Cookie: pll_language=es
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 19 Nov 2017 19:26:38 GMT
accept-ranges: bytes
content-length: 1727
content-type: image/png
date: Wed, 30 Nov 2022 03:00:48 GMT
server: Apache
X-Firefox-Spdy: h2
prgtributaristas.com/wp-content/uploads/2017/11/cropped-favicon_2-2-192x192.png
66.7.203.39200 OK 14 kB URL HTTP/2 prgtributaristas.com/wp-content/uploads/2017/11/cropped-favicon_2-2-192x192.png
IP 66.7.203.39:0
File type PNG image data, 192 x 192, 8-bit/color RGBA, non-interlaced\012- data
Hash 8c2ff1a58d98dd0bd3d33f013021c41b
915273b98a32468f2e7c9ed6115f818dab224839
5491ec7a77a919e66a4646f736a32ee0263307e907825a05e602e4daf3adf3dd
GET /wp-content/uploads/2017/11/cropped-favicon_2-2-192x192.png HTTP/1.1
Host: prgtributaristas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://prgtributaristas.com/documento-soporte-en-adquisiciones-a-no-obligados-a-facturar/
Cookie: pll_language=es
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 19 Nov 2017 19:26:38 GMT
accept-ranges: bytes
content-length: 13696
content-type: image/png
date: Wed, 30 Nov 2022 03:00:48 GMT
server: Apache
X-Firefox-Spdy: h2
secure.gravatar.com/avatar/a08f3936be76a01398dc6a4b3636f0d9?s=103&d=mm&r=g
192.0.73.2200 OK 1.6 kB URL HTTP/2 secure.gravatar.com/avatar/a08f3936be76a01398dc6a4b3636f0d9?s=103&d=mm&r=g
IP 192.0.73.2:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 103x103, components 3\012- data
Hash 01a1cf9b90f17c3468ab50302def0411
9e10332e8ea3c5fee209d5f06293cad0e9d1b574
f3c9132bd2d464a24fa1f25b412532024a8113e08e3413a6559e0299743cddc7
GET /avatar/a08f3936be76a01398dc6a4b3636f0d9?s=103&d=mm&r=g HTTP/1.1
Host: secure.gravatar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://prgtributaristas.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 30 Nov 2022 03:00:48 GMT
content-type: image/jpeg
content-length: 1620
last-modified: Wed, 11 Jan 1984 08:00:00 GMT
link: <https://www.gravatar.com/avatar/a08f3936be76a01398dc6a4b3636f0d9?s=103&d=mm&r=g>; rel="canonical"
access-control-allow-origin: *
content-disposition: inline; filename="a08f3936be76a01398dc6a4b3636f0d9.png"
expires: Wed, 30 Nov 2022 03:05:48 GMT
cache-control: max-age=300
x-nc: MISS arn 1
accept-ranges: bytes
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F37883a10-064d-451d-9dd4-bca0a5594e96.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F37883a10-064d-451d-9dd4-bca0a5594e96.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 0c14828912decf19c9d95fee93e92f00
49a82390cbf2139bf681d896f9467ab736e0b337
bbafc9bd160a30c6a31954bdf66655e1decc59dead3bb94c6fa21cad1cd56fe3
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F37883a10-064d-451d-9dd4-bca0a5594e96.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 11466
x-amzn-requestid: 40ae63d3-397e-4118-90b2-d48b1f4014c4
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cYgDaHUxIAMFxWA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63867a15-2b309a0a5e93f68312a26fa1;Sampled=0
x-amzn-remapped-date: Tue, 29 Nov 2022 21:31:01 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: s1eFJ0mtTFv3DFwwZ52JWOCDJWFA9IRiJ54L0JSkxzxFLnFIgts2CA==
via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 7022a5bbf9872d4a09d63e6cdb457dfe.cloudfront.net (CloudFront), 1.1 google
date: Tue, 29 Nov 2022 21:44:35 GMT
etag: "49a82390cbf2139bf681d896f9467ab736e0b337"
content-type: image/jpeg
age: 18974
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Lato%3A100%2C300%2C400%2C600%2C700%2C900%7COpen+Sans%3A700%2C300%2C600%2C400%7CRaleway%3A900%7CPlayfair+Display%7C&ver=6.1.1
142.250.74.106200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Lato%3A100%2C300%2C400%2C600%2C700%2C900%7COpen+Sans%3A700%2C300%2C600%2C400%7CRaleway%3A900%7CPlayfair+Display%7C&ver=6.1.1
IP 142.250.74.106:0
GET /css?family=Lato%3A100%2C300%2C400%2C600%2C700%2C900%7COpen+Sans%3A700%2C300%2C600%2C400%7CRaleway%3A900%7CPlayfair+Display%7C&ver=6.1.1 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://prgtributaristas.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 30 Nov 2022 03:00:47 GMT
date: Wed, 30 Nov 2022 03:00:47 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
prgtributaristas.com/wp-content/themes/thefox/js/customjs.js
66.7.203.39200 OK 0 B URL HTTP/2 prgtributaristas.com/wp-content/themes/thefox/js/customjs.js
IP 66.7.203.39:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/thefox/js/customjs.js HTTP/1.1
Host: prgtributaristas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://prgtributaristas.com/documento-soporte-en-adquisiciones-a-no-obligados-a-facturar/
Cookie: pll_language=es
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 29 Sep 2017 22:31:36 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-type: application/javascript
date: Wed, 30 Nov 2022 03:00:47 GMT
server: Apache
X-Firefox-Spdy: h2