institutogth.edu.ec/
38.242.146.15301 Moved Permanently 236 B IP 38.242.146.15:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash ce013830a88372add5b1137e9c54b588
c71e15d5a35805f80f9dff138c463a236f943332
595e3ac59eabd935fe7cd4520e7ec4b2fbde9acc1611264015c7c61ae2ed4b6d
Analyzer Verdict Alert fortinet Malware
GET / HTTP/1.1
Host: institutogth.edu.ec
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Thu, 01 Dec 2022 20:55:28 GMT
Server: Apache
Location: https://institutogth.edu.ec/
Content-Length: 236
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 3bbb845b153026fc5332dd4506585b57
3cad200fac28fd00f34ce6ef79373e661e188743
6035871c0de6ff2d120921461207cfa32bc286e1fe78849ce74815ffbb9ff950
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6035871C0DE6FF2D120921461207CFA32BC286E1FE78849CE74815FFBB9FF950"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2615
Expires: Thu, 01 Dec 2022 21:39:03 GMT
Date: Thu, 01 Dec 2022 20:55:28 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 0c748388899e8a8d3680355da2ea5020
903c620cd137613daafb0da0508c37b2f4a67212
39eab80e022a9a1732872d9926b0ace80f818ec5c535e36a18b539ea63786fb2
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 804
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 20:55:28 GMT
Last-Modified: Thu, 01 Dec 2022 20:42:04 GMT
Server: ECS (ska/F70D)
X-Cache: HIT
Content-Length: 471
firefox.settings.services.mozilla.com/v1/
34.102.187.140200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 14cd9a0afb6ba9a763651d5112760d1e
75d7b104ab9ab11fbb73c3f348b43b0119b5adfa
4e32a117106be587ffcd63239c16a8117eb7840830d4c9decf6527761967532e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Alert, Backoff, Content-Length, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Thu, 01 Dec 2022 20:19:49 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 2139
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 55b4c61a1e99001307750e3647fe1102
7559f9f6770b7d3f45b723167062096312641e08
39f6bb64420bcfc8f0b010168fd35b67732984cd0698409f04d5ae40410422aa
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "39F6BB64420BCFC8F0B010168FD35B67732984CD0698409F04D5AE40410422AA"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9244
Expires: Thu, 01 Dec 2022 23:29:32 GMT
Date: Thu, 01 Dec 2022 20:55:28 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 9ebddc2b260d081ebbefee47c037cb28
492bad62a7ca6a74738921ef5ae6f0be5edebf39
74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5
GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: i3k/+PyRM+dRLmXB2ZVP0AlfVaTRJnXcZW9teSl720J1s6bEyuTIbRoxROksSUDHx1nr0UWcftc=
x-amz-request-id: WAMKSH64CD5F49NM
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Thu, 01 Dec 2022 20:45:48 GMT
age: 580
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 01 Dec 2022 20:55:28 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
institutogth.edu.ec/
38.242.146.15200 OK 14 kB IP 38.242.146.15:0
Hash ab496731a73c057e7f1e5a9e2c7805dc
ab97674bc87373a8a5c06c422a5da00af7dd2721
5b97acf5f2c33f25eabcc6f61af31ed4e7ce00101aba596a8e028bb33bd7e0f4
Analyzer Verdict Alert fortinet Malware
GET / HTTP/1.1
Host: institutogth.edu.ec
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/1.1 200 OK
Date: Thu, 01 Dec 2022 20:55:28 GMT
Server: Apache
Link: <https://institutogth.edu.ec/wp-json/>; rel="https://api.w.org/", <https://institutogth.edu.ec/wp-json/wp/v2/pages/941>; rel="alternate"; type="application/json", <https://institutogth.edu.ec/>; rel=shortlink
Content-Encoding: gzip
Vary: Accept-Encoding
Set-Cookie: pmpro_visit=1; path=/; secure; HttpOnly
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
institutogth.edu.ec/wp-content/plugins/masterstudy-lms-learning-management-system/_core/assets/vendors/ms-bootstrap-custom.css?ver=2.9.13
38.242.146.15200 OK 1.3 kB URL HTTP/1.1 institutogth.edu.ec/wp-content/plugins/masterstudy-lms-learning-management-system/_core/assets/vendors/ms-bootstrap-custom.css?ver=2.9.13
IP 38.242.146.15:0
Hash ee1d09f5ef31d367cada9bfffa8d633d
acf09879a5ee7036f6c096a6ab8397685a6f45ef
01a9067900452529675c65692677c6f79a969477e914c9c4c9639b0b1c9e10bb
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/masterstudy-lms-learning-management-system/_core/assets/vendors/ms-bootstrap-custom.css?ver=2.9.13 HTTP/1.1
Host: institutogth.edu.ec
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://institutogth.edu.ec/
Cookie: pmpro_visit=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 01 Dec 2022 20:55:28 GMT
Server: Apache
Last-Modified: Thu, 01 Dec 2022 15:18:44 GMT
Accept-Ranges: bytes
Content-Length: 1282
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
institutogth.edu.ec/wp-content/plugins/masterstudy-elementor-widgets/assets/css/accordion.css?ver=1669928128
38.242.146.15200 OK 412 B URL HTTP/1.1 institutogth.edu.ec/wp-content/plugins/masterstudy-elementor-widgets/assets/css/accordion.css?ver=1669928128
IP 38.242.146.15:0
Hash b7983765bc28a9f78965591eb5eeea35
fecd802d23a61212b966065c705acdf4d8b9a311
b1e19545b371aa99653959f50ef6c19348cb35e732add6d2ba415e5bb12cc289
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/masterstudy-elementor-widgets/assets/css/accordion.css?ver=1669928128 HTTP/1.1
Host: institutogth.edu.ec
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://institutogth.edu.ec/
Cookie: pmpro_visit=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 01 Dec 2022 20:55:28 GMT
Server: Apache
Last-Modified: Thu, 01 Dec 2022 15:19:01 GMT
Accept-Ranges: bytes
Content-Length: 412
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
institutogth.edu.ec/wp-content/plugins/masterstudy-elementor-widgets/assets/css/counter.css?ver=1669928128
38.242.146.15200 OK 81 B URL HTTP/1.1 institutogth.edu.ec/wp-content/plugins/masterstudy-elementor-widgets/assets/css/counter.css?ver=1669928128
IP 38.242.146.15:0
Hash 15a8bb56258ccd1c08e26f3cc6d1d722
032e25f6ed960d355429edf98601551a5209b189
fa4f81b28a7ff0515856da8a9e0997f9556cabbd9c820e1182a9909a965b1715
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/masterstudy-elementor-widgets/assets/css/counter.css?ver=1669928128 HTTP/1.1
Host: institutogth.edu.ec
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://institutogth.edu.ec/
Cookie: pmpro_visit=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 01 Dec 2022 20:55:28 GMT
Server: Apache
Last-Modified: Thu, 01 Dec 2022 15:19:01 GMT
Accept-Ranges: bytes
Content-Length: 81
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
institutogth.edu.ec/wp-content/plugins/masterstudy-lms-learning-management-system/_core/assets/vendors/bootstrap.min.css?ver=2.9.13
38.242.146.15200 OK 65 kB URL HTTP/1.1 institutogth.edu.ec/wp-content/plugins/masterstudy-lms-learning-management-system/_core/assets/vendors/bootstrap.min.css?ver=2.9.13
IP 38.242.146.15:0
File type ASCII text, with very long lines (64649)
Hash f5ca0e16d13742b81233bb83a7ba1611
982c6d66cb492dc5b382961f30acc42b7b83eef4
e1926b183feb1afddfbbc5ec5ff4ec244f944872e556d3368a0ce7570ee7a8a7
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/masterstudy-lms-learning-management-system/_core/assets/vendors/bootstrap.min.css?ver=2.9.13 HTTP/1.1
Host: institutogth.edu.ec
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://institutogth.edu.ec/
Cookie: pmpro_visit=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 01 Dec 2022 20:55:28 GMT
Server: Apache
Last-Modified: Thu, 01 Dec 2022 15:18:44 GMT
Accept-Ranges: bytes
Content-Length: 64914
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
institutogth.edu.ec/wp-content/plugins/masterstudy-elementor-widgets/assets/css/navigation-menu.css?ver=1669928128
38.242.146.15200 OK 495 B URL HTTP/1.1 institutogth.edu.ec/wp-content/plugins/masterstudy-elementor-widgets/assets/css/navigation-menu.css?ver=1669928128
IP 38.242.146.15:0
Hash bdd28a33b3fee5ad3871c0c0573ac501
63e3f20708c925470fb478ff68b287026ba12273
c5e96a7045efd939e86d1249db5dd65d55192d16e32469ae994c9377503d8da9
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/masterstudy-elementor-widgets/assets/css/navigation-menu.css?ver=1669928128 HTTP/1.1
Host: institutogth.edu.ec
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://institutogth.edu.ec/
Cookie: pmpro_visit=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 01 Dec 2022 20:55:28 GMT
Server: Apache
Last-Modified: Thu, 01 Dec 2022 15:19:01 GMT
Accept-Ranges: bytes
Content-Length: 495
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
institutogth.edu.ec/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-vendors-style.css?ver=8.7.5
38.242.146.15200 OK 10 kB URL HTTP/1.1 institutogth.edu.ec/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-vendors-style.css?ver=8.7.5
IP 38.242.146.15:0
File type ASCII text, with very long lines (10435), with no line terminators
Hash 27a91498e22d4778e559dd13a12c6ab6
9868807cc628fab1cc5ccb6f6c53934e6e9303b4
4a25eb6972f4a513da7ead5d8c0f74832ed42b1ae5e1f13ed3ea36f0865a59c9
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-vendors-style.css?ver=8.7.5 HTTP/1.1
Host: institutogth.edu.ec
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://institutogth.edu.ec/
Cookie: pmpro_visit=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 01 Dec 2022 20:55:28 GMT
Server: Apache
Last-Modified: Thu, 01 Dec 2022 15:19:37 GMT
Accept-Ranges: bytes
Content-Length: 10435
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
34.102.187.140200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Pragma, Last-Modified, ETag, Alert, Expires, Retry-After, Cache-Control, Backoff, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Thu, 01 Dec 2022 20:11:15 GMT
cache-control: public,max-age=3600
age: 2653
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2
institutogth.edu.ec/wp-includes/css/classic-themes.min.css?ver=1
38.242.146.15200 OK 217 B URL HTTP/1.1 institutogth.edu.ec/wp-includes/css/classic-themes.min.css?ver=1
IP 38.242.146.15:0
Hash 95e891f28e44a9b314c09545d86be2b7
f9b13a8bd47273b086a0a07df15f314e0af0bc3e
5a5f39391fbf5b06db84b8f9716d53de575ee97a627d2c5f12f79a991a671eb5
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/css/classic-themes.min.css?ver=1 HTTP/1.1
Host: institutogth.edu.ec
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://institutogth.edu.ec/
Cookie: pmpro_visit=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 01 Dec 2022 20:55:28 GMT
Server: Apache
Last-Modified: Thu, 03 Nov 2022 02:29:47 GMT
Accept-Ranges: bytes
Content-Length: 217
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
institutogth.edu.ec/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.6.4
38.242.146.15200 OK 2.7 kB URL HTTP/1.1 institutogth.edu.ec/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.6.4
IP 38.242.146.15:0
Hash e6fae855021a88a0067fcc58121c594f
6299ac3987b5e81725781799dad361d19ac3b99d
e50f9ccd2d6582a58ba1879fa578e60d25fea4c5eedc07deafd14482b2403181
GET /wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.6.4 HTTP/1.1
Host: institutogth.edu.ec
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://institutogth.edu.ec/
Cookie: pmpro_visit=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 01 Dec 2022 20:55:28 GMT
Server: Apache
Last-Modified: Thu, 01 Dec 2022 15:19:15 GMT
Accept-Ranges: bytes
Content-Length: 2731
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css
institutogth.edu.ec/wp-content/plugins/masterstudy-lms-learning-management-system/_core/libraries/nuxy/metaboxes/assets/css/linear-icons.css?ver=2.9.13
38.242.146.15200 OK 7.0 kB URL HTTP/1.1 institutogth.edu.ec/wp-content/plugins/masterstudy-lms-learning-management-system/_core/libraries/nuxy/metaboxes/assets/css/linear-icons.css?ver=2.9.13
IP 38.242.146.15:0
File type ASCII text, with very long lines (7046), with no line terminators
Hash 46723d2331b846bca5a4090653eb4fb4
0eb50c4446cf2f52ded85a265fa6be1c4e7689b9
1a866378661181d1e8cf4ae509f1ba3e9d763594e7339f3c5420bb5e8c41b6dd
GET /wp-content/plugins/masterstudy-lms-learning-management-system/_core/libraries/nuxy/metaboxes/assets/css/linear-icons.css?ver=2.9.13 HTTP/1.1
Host: institutogth.edu.ec
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://institutogth.edu.ec/
Cookie: pmpro_visit=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 01 Dec 2022 20:55:28 GMT
Server: Apache
Last-Modified: Thu, 01 Dec 2022 15:18:44 GMT
Accept-Ranges: bytes
Content-Length: 7046
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css
institutogth.edu.ec/wp-content/plugins/masterstudy-lms-learning-management-system/_core/assets/vendors/icomoon.fonts.css?ver=2.9.13
38.242.146.15200 OK 3.8 kB URL HTTP/1.1 institutogth.edu.ec/wp-content/plugins/masterstudy-lms-learning-management-system/_core/assets/vendors/icomoon.fonts.css?ver=2.9.13
IP 38.242.146.15:0
Hash 252275e6d5a722d1fa7a3293a426b8cc
36fc58439c661248f758c0951fff3c8c263d7c57
bd6d62f5590ca1374094e18d24770229389f621903e41c11af13b724384fd2e8
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/masterstudy-lms-learning-management-system/_core/assets/vendors/icomoon.fonts.css?ver=2.9.13 HTTP/1.1
Host: institutogth.edu.ec
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://institutogth.edu.ec/
Cookie: pmpro_visit=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 01 Dec 2022 20:55:28 GMT
Server: Apache
Last-Modified: Thu, 01 Dec 2022 15:18:44 GMT
Accept-Ranges: bytes
Content-Length: 3775
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: text/css
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 3519a58310eefa01756f0440e2acd7dd
50153382830684a6abb653dc7b4e41d7c7e386b5
5f321e771fa62d9f794339006752655316cdb6e8d69bc23e1d0e3c8bc526f12e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 20:55:28 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
institutogth.edu.ec/wp-content/plugins/masterstudy-lms-learning-management-system/_core/assets/icons/style.css?ver=2.9.13
38.242.146.15200 OK 2.7 kB URL HTTP/1.1 institutogth.edu.ec/wp-content/plugins/masterstudy-lms-learning-management-system/_core/assets/icons/style.css?ver=2.9.13
IP 38.242.146.15:0
Hash d1e046337399bf9d8f688c8e0bbf7462
e94d7942200ea7a20630e474c5b6e2a2f4255918
8b5b7b923a9a847048b9cf755d0e8cb6b9af5bdaa5d2037c36770c9cde30599a
GET /wp-content/plugins/masterstudy-lms-learning-management-system/_core/assets/icons/style.css?ver=2.9.13 HTTP/1.1
Host: institutogth.edu.ec
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://institutogth.edu.ec/
Cookie: pmpro_visit=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 01 Dec 2022 20:55:28 GMT
Server: Apache
Last-Modified: Thu, 01 Dec 2022 15:18:44 GMT
Accept-Ranges: bytes
Content-Length: 2741
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: text/css
institutogth.edu.ec/wp-includes/css/dist/block-library/style.min.css?ver=6.1.1
38.242.146.15200 OK 95 kB URL HTTP/1.1 institutogth.edu.ec/wp-includes/css/dist/block-library/style.min.css?ver=6.1.1
IP 38.242.146.15:0
File type ASCII text, with very long lines (47826)
Hash 71d925864153f0edf91037f3d31048e8
cc16a0524ac63b5ce29f703a66412224f0dd771a
c324ef26b20264369e4568dc9ef1c5cb1f325f6bc4e8b7c01f7fe93fa353276a
GET /wp-includes/css/dist/block-library/style.min.css?ver=6.1.1 HTTP/1.1
Host: institutogth.edu.ec
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://institutogth.edu.ec/
Cookie: pmpro_visit=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 01 Dec 2022 20:55:28 GMT
Server: Apache
Last-Modified: Wed, 16 Nov 2022 02:25:40 GMT
Accept-Ranges: bytes
Content-Length: 94889
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
institutogth.edu.ec/wp-content/plugins/masterstudy-lms-learning-management-system/_core/assets/linearicons/linear.css?ver=2.9.13
38.242.146.15200 OK 55 kB URL HTTP/1.1 institutogth.edu.ec/wp-content/plugins/masterstudy-lms-learning-management-system/_core/assets/linearicons/linear.css?ver=2.9.13
IP 38.242.146.15:0
Hash 785b8310f7f6f58eecd1673f0172873a
599088cd23ad10f3a0da3e26bd6469933c352f7c
637af00d0f70214306a61a4bb83566c9dbd2e33cbf9a20503ee215b428daa475
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/masterstudy-lms-learning-management-system/_core/assets/linearicons/linear.css?ver=2.9.13 HTTP/1.1
Host: institutogth.edu.ec
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://institutogth.edu.ec/
Cookie: pmpro_visit=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 01 Dec 2022 20:55:28 GMT
Server: Apache
Last-Modified: Thu, 01 Dec 2022 15:18:44 GMT
Accept-Ranges: bytes
Content-Length: 55068
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
institutogth.edu.ec/wp-content/plugins/masterstudy-lms-learning-management-system/_core/assets/vendors/video-js.min.css?ver=2.9.13
38.242.146.15200 OK 40 kB URL HTTP/1.1 institutogth.edu.ec/wp-content/plugins/masterstudy-lms-learning-management-system/_core/assets/vendors/video-js.min.css?ver=2.9.13
IP 38.242.146.15:0
File type Unicode text, UTF-8 text, with very long lines (40048), with no line terminators
Hash f73663804f2a86a102f0cd4f059e7e79
81cb5cb82ebd621686fc30fd190e7074b4201f49
fdf5dfab742b9d6c8c626174cd7e8899d2350d3ada34202ad6f3e87dadabb36c
GET /wp-content/plugins/masterstudy-lms-learning-management-system/_core/assets/vendors/video-js.min.css?ver=2.9.13 HTTP/1.1
Host: institutogth.edu.ec
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://institutogth.edu.ec/
Cookie: pmpro_visit=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 01 Dec 2022 20:55:28 GMT
Server: Apache
Last-Modified: Thu, 01 Dec 2022 15:18:44 GMT
Accept-Ranges: bytes
Content-Length: 40052
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: text/css
institutogth.edu.ec/wp-content/plugins/masterstudy-lms-learning-management-system/_core/assets/vendors/font-awesome.min.css?ver=2.9.13
38.242.146.15200 OK 72 kB URL HTTP/1.1 institutogth.edu.ec/wp-content/plugins/masterstudy-lms-learning-management-system/_core/assets/vendors/font-awesome.min.css?ver=2.9.13
IP 38.242.146.15:0
Hash 5ddc01852ab52d17d1f43abe6c6c5802
f3a6041e0979d74d24ff1c797953b45c0ce08792
7fdc8a029a464fb7d071ea9fa1887673d7b6d80f2c9415a45327a00c4bf7ea82
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/masterstudy-lms-learning-management-system/_core/assets/vendors/font-awesome.min.css?ver=2.9.13 HTTP/1.1
Host: institutogth.edu.ec
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://institutogth.edu.ec/
Cookie: pmpro_visit=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 01 Dec 2022 20:55:28 GMT
Server: Apache
Last-Modified: Thu, 01 Dec 2022 15:18:44 GMT
Accept-Ranges: bytes
Content-Length: 71787
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 1f88399f3fdd89dbb9ca1229cb67143a
325c9dbfd932cf9a6fb9fab2dd8e27083f55a9a3
831ecd45dcd2d5ae2ae86cd63ea5e94ecd85281b7e51054af5df9a6386fb8d79
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 801
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 20:55:28 GMT
Last-Modified: Thu, 01 Dec 2022 20:42:07 GMT
Server: ECS (ska/F70D)
X-Cache: HIT
Content-Length: 471
institutogth.edu.ec/wp-content/uploads/stm_lms_styles/parts/pmpro.css?ver=16
38.242.146.15200 OK 68 kB URL HTTP/1.1 institutogth.edu.ec/wp-content/uploads/stm_lms_styles/parts/pmpro.css?ver=16
IP 38.242.146.15:0
File type Unicode text, UTF-8 text, with very long lines (65528), with no line terminators
Hash 4a015168e0bc303557e4e4df9d6e5c42
1fdcb37d78e4d331ea00415f75d33b514a02681d
4b89ce0de2577bb140f395037ee2f55ea83f0896a9130007c2702393b979297a
Analyzer Verdict Alert fortinet Malware
GET /wp-content/uploads/stm_lms_styles/parts/pmpro.css?ver=16 HTTP/1.1
Host: institutogth.edu.ec
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://institutogth.edu.ec/
Cookie: pmpro_visit=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 01 Dec 2022 20:55:28 GMT
Server: Apache
Last-Modified: Thu, 01 Dec 2022 15:23:08 GMT
Accept-Ranges: bytes
Content-Length: 67730
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
institutogth.edu.ec/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-style.css?ver=8.7.5
38.242.146.15200 OK 236 kB URL HTTP/1.1 institutogth.edu.ec/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-style.css?ver=8.7.5
IP 38.242.146.15:0
File type Unicode text, UTF-8 text, with very long lines (65527), with no line terminators
Size 236 kB (235926 bytes)
Hash 1f7f24d802dda3c86486d768519911d4
cd5408ee57e21aa1c6cdd92b56ecc27e5ac8e714
ed9766c9f4ce4f6851e3d8416e9bec35b425dfc2b817b7647b1db8ff1a96c731
GET /wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-style.css?ver=8.7.5 HTTP/1.1
Host: institutogth.edu.ec
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://institutogth.edu.ec/
Cookie: pmpro_visit=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 01 Dec 2022 20:55:28 GMT
Server: Apache
Last-Modified: Thu, 01 Dec 2022 15:19:37 GMT
Accept-Ranges: bytes
Content-Length: 235926
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
institutogth.edu.ec/wp-content/plugins/paid-memberships-pro/css/select2.min.css?ver=4.0.3
38.242.146.15200 OK 15 kB URL HTTP/1.1 institutogth.edu.ec/wp-content/plugins/paid-memberships-pro/css/select2.min.css?ver=4.0.3
IP 38.242.146.15:0
File type ASCII text, with very long lines (14965)
Hash 9f54e6414f87e0d14b9e966f19a174f9
ae5735562faabd1a2d9803bbd7bf4c502b5e4f51
15d6ad4dfdb43d0affad683e70029f97a8f8fc8637a28845009ee0542dccdf81
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/paid-memberships-pro/css/select2.min.css?ver=4.0.3 HTTP/1.1
Host: institutogth.edu.ec
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://institutogth.edu.ec/
Cookie: pmpro_visit=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 01 Dec 2022 20:55:28 GMT
Server: Apache
Last-Modified: Thu, 01 Dec 2022 15:19:06 GMT
Accept-Ranges: bytes
Content-Length: 14966
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: text/css
institutogth.edu.ec/wp-content/plugins/paid-memberships-pro/css/frontend.css?ver=2.9.7
38.242.146.15200 OK 20 kB URL HTTP/1.1 institutogth.edu.ec/wp-content/plugins/paid-memberships-pro/css/frontend.css?ver=2.9.7
IP 38.242.146.15:0
File type ASCII text, with CRLF line terminators
Hash c017d154771adde729ced27cafacfeaa
828fd0f5c37ebb9142d6ec92ed833e435a925b0b
203736aa4fdefc2ad333a61b77c692b0a869f15da644eaac99615c571707f247
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/paid-memberships-pro/css/frontend.css?ver=2.9.7 HTTP/1.1
Host: institutogth.edu.ec
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://institutogth.edu.ec/
Cookie: pmpro_visit=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 01 Dec 2022 20:55:28 GMT
Server: Apache
Last-Modified: Thu, 01 Dec 2022 15:19:06 GMT
Accept-Ranges: bytes
Content-Length: 19771
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css
institutogth.edu.ec/wp-content/uploads/stm_lms_styles/stm_lms.css?ver=16
38.242.146.15200 OK 60 kB URL HTTP/1.1 institutogth.edu.ec/wp-content/uploads/stm_lms_styles/stm_lms.css?ver=16
IP 38.242.146.15:0
File type Unicode text, UTF-8 text, with very long lines (59960), with no line terminators
Hash 0ad01f86347222de4a09fb06f080c6b9
412563f16a99e1e14b89244e6c6ca30f490d0442
2c7352d9e091252b076e44469c190755e22a091ae76c0829510f03b0f526a125
GET /wp-content/uploads/stm_lms_styles/stm_lms.css?ver=16 HTTP/1.1
Host: institutogth.edu.ec
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://institutogth.edu.ec/
Cookie: pmpro_visit=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 01 Dec 2022 20:55:28 GMT
Server: Apache
Last-Modified: Thu, 01 Dec 2022 15:23:08 GMT
Accept-Ranges: bytes
Content-Length: 59962
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: text/css
institutogth.edu.ec/wp-content/themes/masterstudy/assets/css/icomoon.fonts.css?ver=3.0
38.242.146.15200 OK 3.3 kB URL HTTP/1.1 institutogth.edu.ec/wp-content/themes/masterstudy/assets/css/icomoon.fonts.css?ver=3.0
IP 38.242.146.15:0
File type ASCII text, with very long lines (3280), with no line terminators
Hash 1ff8f6b91b77873bd30947ddf9382ea4
5f9e39750e0f6faad4982fb6b63e6fe46d45c23b
b9aadaeffd0aeb3499b997305fc4f0b7b7d5076255fa24eb660d7f49ee7d5ddf
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/masterstudy/assets/css/icomoon.fonts.css?ver=3.0 HTTP/1.1
Host: institutogth.edu.ec
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://institutogth.edu.ec/
Cookie: pmpro_visit=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 01 Dec 2022 20:55:28 GMT
Server: Apache
Last-Modified: Thu, 01 Dec 2022 15:14:20 GMT
Accept-Ranges: bytes
Content-Length: 3280
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css
institutogth.edu.ec/wp-content/themes/masterstudy-child/style.css?ver=3.0
38.242.146.15200 OK 6.4 kB URL HTTP/1.1 institutogth.edu.ec/wp-content/themes/masterstudy-child/style.css?ver=3.0
IP 38.242.146.15:0
Hash 4bbe9b2668e18f07305cf40049936faf
44445c4cc57a06012f01c83f4d0f1755c1e88c86
470e265683852f333b94407df0ff2a5c005c12422feb2b1afb2619d8b4103a8d
GET /wp-content/themes/masterstudy-child/style.css?ver=3.0 HTTP/1.1
Host: institutogth.edu.ec
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://institutogth.edu.ec/
Cookie: pmpro_visit=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 01 Dec 2022 20:55:28 GMT
Server: Apache
Last-Modified: Thu, 01 Dec 2022 15:15:02 GMT
Accept-Ranges: bytes
Content-Length: 6377
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css
institutogth.edu.ec/wp-content/plugins/stm-post-type/theme/assets/lazyload.css?ver=false
38.242.146.15200 OK 2.4 kB URL HTTP/1.1 institutogth.edu.ec/wp-content/plugins/stm-post-type/theme/assets/lazyload.css?ver=false
IP 38.242.146.15:0
Hash c2be872a70a9a799994d1ea7b03fd3f0
dfbf695bd99c307cc980552abc87bf13fd24ab3e
7f6d0cba60ccbbb7998e473a687605371e6791c31e901b16c785e9775ced2cdf
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/stm-post-type/theme/assets/lazyload.css?ver=false HTTP/1.1
Host: institutogth.edu.ec
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://institutogth.edu.ec/
Cookie: pmpro_visit=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 01 Dec 2022 20:55:28 GMT
Server: Apache
Last-Modified: Thu, 01 Dec 2022 15:18:40 GMT
Accept-Ranges: bytes
Content-Length: 2424
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: text/css
institutogth.edu.ec/wp-content/themes/masterstudy/assets/vendors/jquery.fancybox.min.css?ver=3.0
38.242.146.15200 OK 13 kB URL HTTP/1.1 institutogth.edu.ec/wp-content/themes/masterstudy/assets/vendors/jquery.fancybox.min.css?ver=3.0
IP 38.242.146.15:0
File type ASCII text, with very long lines (12795), with no line terminators
Hash a2d42584292f64c5827e8b67b1b38726
1be9b79be02a1cfc5d96c4a5e0feb8f472babd95
5736e3eec0c34bfc288854b7b8d2a8f1e22e9e2e7dae3c8d1ad5dfb2d4734ad0
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/masterstudy/assets/vendors/jquery.fancybox.min.css?ver=3.0 HTTP/1.1
Host: institutogth.edu.ec
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://institutogth.edu.ec/
Cookie: pmpro_visit=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 01 Dec 2022 20:55:28 GMT
Server: Apache
Last-Modified: Thu, 01 Dec 2022 15:14:20 GMT
Accept-Ranges: bytes
Content-Length: 12795
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: text/css
institutogth.edu.ec/wp-content/themes/masterstudy/assets/css/rtl_demo/style.css?ver=3.0
38.242.146.15200 OK 1.1 kB URL HTTP/1.1 institutogth.edu.ec/wp-content/themes/masterstudy/assets/css/rtl_demo/style.css?ver=3.0
IP 38.242.146.15:0
File type ASCII text, with very long lines (1081), with no line terminators
Hash 21e2c998f5c39c54b362258c5cf16651
0b09bc7eb2f27e6c7fb2966c996a1cb02c67ad38
06bec184423e2c0ea252d4d1f16eebab850b6429310c32dd24125af25c885915
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/masterstudy/assets/css/rtl_demo/style.css?ver=3.0 HTTP/1.1
Host: institutogth.edu.ec
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://institutogth.edu.ec/
Cookie: pmpro_visit=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 01 Dec 2022 20:55:28 GMT
Server: Apache
Last-Modified: Thu, 01 Dec 2022 15:14:20 GMT
Accept-Ranges: bytes
Content-Length: 1081
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: text/css
institutogth.edu.ec/wp-content/themes/masterstudy/assets/css/animate.css?ver=3.0
38.242.146.15200 OK 58 kB URL HTTP/1.1 institutogth.edu.ec/wp-content/themes/masterstudy/assets/css/animate.css?ver=3.0
IP 38.242.146.15:0
File type ASCII text, with very long lines (57711)
Hash 066b28d73787333323afae12198e1065
480e6e70dd077033775ca9827ca50b1b54029678
f8254198b365e53c9bd5eb130a1c816ddb199e6e406f1d69c4f3060c7aecc39c
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/masterstudy/assets/css/animate.css?ver=3.0 HTTP/1.1
Host: institutogth.edu.ec
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://institutogth.edu.ec/
Cookie: pmpro_visit=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 01 Dec 2022 20:55:28 GMT
Server: Apache
Last-Modified: Thu, 01 Dec 2022 15:14:20 GMT
Accept-Ranges: bytes
Content-Length: 57884
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: text/css
institutogth.edu.ec/wp-content/themes/masterstudy/assets/css/vc_modules/headers_transparent/header_6_transparent.css?ver=3.0
38.242.146.15200 OK 153 B URL HTTP/1.1 institutogth.edu.ec/wp-content/themes/masterstudy/assets/css/vc_modules/headers_transparent/header_6_transparent.css?ver=3.0
IP 38.242.146.15:0
File type ASCII text, with no line terminators
Hash 372197f207256fa4cfced2ee1cb904b5
beb2690d7555c6b5f1b472be613f2a56c0277d27
700b2007fd2b0a9d6207057f103f28be383f587a0d09cb83fd45f8aa60aa510b
GET /wp-content/themes/masterstudy/assets/css/vc_modules/headers_transparent/header_6_transparent.css?ver=3.0 HTTP/1.1
Host: institutogth.edu.ec
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://institutogth.edu.ec/
Cookie: pmpro_visit=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 01 Dec 2022 20:55:28 GMT
Server: Apache
Last-Modified: Thu, 01 Dec 2022 15:14:20 GMT
Accept-Ranges: bytes
Content-Length: 153
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: text/css
institutogth.edu.ec/wp-content/themes/masterstudy/assets/css/styles.css?ver=3.0
38.242.146.15200 OK 153 kB URL HTTP/1.1 institutogth.edu.ec/wp-content/themes/masterstudy/assets/css/styles.css?ver=3.0
IP 38.242.146.15:0
File type ASCII text, with very long lines (65536), with no line terminators
Size 153 kB (153074 bytes)
Hash b29c5a79a9b92566b561b03d085dc31a
4080fcc11d900954c4957a4350868b1e5deaabce
2ecb4daa4e49103dee9c45823681223d89ffe428a7b1051c539e8d3759bacafe
GET /wp-content/themes/masterstudy/assets/css/styles.css?ver=3.0 HTTP/1.1
Host: institutogth.edu.ec
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://institutogth.edu.ec/
Cookie: pmpro_visit=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 01 Dec 2022 20:55:28 GMT
Server: Apache
Last-Modified: Thu, 01 Dec 2022 15:14:20 GMT
Accept-Ranges: bytes
Content-Length: 153074
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: text/css
institutogth.edu.ec/wp-content/themes/masterstudy/assets/css/vc_modules/headers/header_6.css?ver=3.0
38.242.146.15200 OK 3.2 kB URL HTTP/1.1 institutogth.edu.ec/wp-content/themes/masterstudy/assets/css/vc_modules/headers/header_6.css?ver=3.0
IP 38.242.146.15:0
File type ASCII text, with very long lines (3231), with no line terminators
Hash 7bd9ef8ad1e0b73a6c453411aa257670
82cc45c6acaf69fc84da56ea007e5e669b9bede3
f67993562f9254141155f6550b0bb6931442586b08bcc6fb446df4375d045743
GET /wp-content/themes/masterstudy/assets/css/vc_modules/headers/header_6.css?ver=3.0 HTTP/1.1
Host: institutogth.edu.ec
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://institutogth.edu.ec/
Cookie: pmpro_visit=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 01 Dec 2022 20:55:28 GMT
Server: Apache
Last-Modified: Thu, 01 Dec 2022 15:14:20 GMT
Accept-Ranges: bytes
Content-Length: 3231
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: text/css
institutogth.edu.ec/wp-content/themes/masterstudy/assets/css/vc_modules/stm_layout_styles/cooking.css?ver=3.0
38.242.146.15200 OK 8.8 kB URL HTTP/1.1 institutogth.edu.ec/wp-content/themes/masterstudy/assets/css/vc_modules/stm_layout_styles/cooking.css?ver=3.0
IP 38.242.146.15:0
File type ASCII text, with very long lines (8831), with no line terminators
Hash 1627f278a5a9b0cf36b696ead75b78bc
6094a8acab7c42a5f7c2a892c8251af0b75947fe
4ed7675f3b5639f69adcfbc884ad34916b5624a871e471499ab2561cdd853a4a
GET /wp-content/themes/masterstudy/assets/css/vc_modules/stm_layout_styles/cooking.css?ver=3.0 HTTP/1.1
Host: institutogth.edu.ec
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://institutogth.edu.ec/
Cookie: pmpro_visit=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 01 Dec 2022 20:55:28 GMT
Server: Apache
Last-Modified: Thu, 01 Dec 2022 15:14:20 GMT
Accept-Ranges: bytes
Content-Length: 8831
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: text/css
institutogth.edu.ec/wp-content/themes/masterstudy/assets/css/animation.css?ver=3.0
38.242.146.15200 OK 7.9 kB URL HTTP/1.1 institutogth.edu.ec/wp-content/themes/masterstudy/assets/css/animation.css?ver=3.0
IP 38.242.146.15:0
File type ASCII text, with very long lines (7910), with no line terminators
Hash 6f2c8251e298cfde574023e02aff54c3
1c77c48d7e538785d1cc53f68882e79893ce8a52
11c3edf48f8c02ac4f85f1bb760e11b3f5dd04f48a79d1510e80bcbb53d5b9ab
GET /wp-content/themes/masterstudy/assets/css/animation.css?ver=3.0 HTTP/1.1
Host: institutogth.edu.ec
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://institutogth.edu.ec/
Cookie: pmpro_visit=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 01 Dec 2022 20:55:28 GMT
Server: Apache
Last-Modified: Thu, 01 Dec 2022 15:14:20 GMT
Accept-Ranges: bytes
Content-Length: 7910
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: text/css
institutogth.edu.ec/wp-content/themes/masterstudy/assets/css/vc_modules/stm_woo_styles/woocommerce.css?ver=3.0
38.242.146.15200 OK 23 kB URL HTTP/1.1 institutogth.edu.ec/wp-content/themes/masterstudy/assets/css/vc_modules/stm_woo_styles/woocommerce.css?ver=3.0
IP 38.242.146.15:0
File type ASCII text, with very long lines (22855), with no line terminators
Hash 4a2f416eb2bcddfed94f7b8ee9306726
26cdd578e9fd832298e1e31781be858bd8ba7d5b
f1b22518db05627c5336a5ec7dd27e78cbfdc68354817ac9b2337810bd1ed366
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/masterstudy/assets/css/vc_modules/stm_woo_styles/woocommerce.css?ver=3.0 HTTP/1.1
Host: institutogth.edu.ec
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://institutogth.edu.ec/
Cookie: pmpro_visit=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 01 Dec 2022 20:55:29 GMT
Server: Apache
Last-Modified: Thu, 01 Dec 2022 15:14:20 GMT
Accept-Ranges: bytes
Content-Length: 22855
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: text/css
institutogth.edu.ec/wp-content/themes/masterstudy/assets/layout_icons/language_center/style.css?ver=3.0
38.242.146.15200 OK 2.6 kB URL HTTP/1.1 institutogth.edu.ec/wp-content/themes/masterstudy/assets/layout_icons/language_center/style.css?ver=3.0
IP 38.242.146.15:0
Hash 93b61a8cfa914e3c9fd081f6a3146373
a1c7585a7694d717aa79f80b7da6a0dc3b4ef68e
c57fa569a56bb456e28c2b993768e86b4277fe04024037dd8231a455340e582b
GET /wp-content/themes/masterstudy/assets/layout_icons/language_center/style.css?ver=3.0 HTTP/1.1
Host: institutogth.edu.ec
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://institutogth.edu.ec/
Cookie: pmpro_visit=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 01 Dec 2022 20:55:29 GMT
Server: Apache
Last-Modified: Thu, 01 Dec 2022 15:14:20 GMT
Accept-Ranges: bytes
Content-Length: 2571
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: text/css
institutogth.edu.ec/wp-content/uploads/stm_lms_styles/custom_styles.css?ver=3.0
38.242.146.15200 OK 368 B URL HTTP/1.1 institutogth.edu.ec/wp-content/uploads/stm_lms_styles/custom_styles.css?ver=3.0
IP 38.242.146.15:0
File type ASCII text, with very long lines (368), with no line terminators
Hash 6d6bdd62ba43f165976d724fa8653254
c30df31a94325c967eadcfe8b844de7766d854e3
7fd3583c227d515d7caacf8900e1314aeec64aea6bff9da5d96fb1df97c3151d
GET /wp-content/uploads/stm_lms_styles/custom_styles.css?ver=3.0 HTTP/1.1
Host: institutogth.edu.ec
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://institutogth.edu.ec/
Cookie: pmpro_visit=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 01 Dec 2022 20:55:29 GMT
Server: Apache
Last-Modified: Thu, 01 Dec 2022 15:22:53 GMT
Accept-Ranges: bytes
Content-Length: 368
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: text/css
institutogth.edu.ec/wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.16.0
38.242.146.15200 OK 19 kB URL HTTP/1.1 institutogth.edu.ec/wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.16.0
IP 38.242.146.15:0
File type ASCII text, with very long lines (19233)
Hash d183c598fd582fe997f6782afed84f9b
7799820e0e849e8484543c3360a8d8cc62baa32f
83059e4c1a5c210e5585d96779fe655170817193d43e247c78dffaae7b7ba3a9
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.16.0 HTTP/1.1
Host: institutogth.edu.ec
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://institutogth.edu.ec/
Cookie: pmpro_visit=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 01 Dec 2022 20:55:29 GMT
Server: Apache
Last-Modified: Wed, 30 Nov 2022 14:40:54 GMT
Accept-Ranges: bytes
Content-Length: 19279
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: text/css
institutogth.edu.ec/wp-content/plugins/elementor/assets/css/frontend-legacy.min.css?ver=3.8.1
38.242.146.15200 OK 14 kB URL HTTP/1.1 institutogth.edu.ec/wp-content/plugins/elementor/assets/css/frontend-legacy.min.css?ver=3.8.1
IP 38.242.146.15:0
File type ASCII text, with very long lines (13766)
Hash 8c25ee2715b0b06d243e63576b693b6c
63efb31ac938e1f02803ee31ea2f4bfb33d32ca7
fde0d5a578eb6673d38d66dff152e36b610384b19954f0723e07f4302305592f
GET /wp-content/plugins/elementor/assets/css/frontend-legacy.min.css?ver=3.8.1 HTTP/1.1
Host: institutogth.edu.ec
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://institutogth.edu.ec/
Cookie: pmpro_visit=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 01 Dec 2022 20:55:29 GMT
Server: Apache
Last-Modified: Wed, 30 Nov 2022 14:40:54 GMT
Accept-Ranges: bytes
Content-Length: 13805
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: text/css
institutogth.edu.ec/wp-includes/js/wp-emoji-release.min.js?ver=6.1.1
38.242.146.15200 OK 19 kB URL HTTP/1.1 institutogth.edu.ec/wp-includes/js/wp-emoji-release.min.js?ver=6.1.1
IP 38.242.146.15:0
File type ASCII text, with very long lines (15660)
Hash 32beb68a374e3aeac00abdf9e12b84ea
b5d18aa625e8696dd9d07cd0869337717b211ae0
5aad5fbd4238981a9ff5e2772ff1353dfe1a801fb49542fe157418c1438f7782
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/wp-emoji-release.min.js?ver=6.1.1 HTTP/1.1
Host: institutogth.edu.ec
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://institutogth.edu.ec/
Cookie: pmpro_visit=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 01 Dec 2022 20:55:29 GMT
Server: Apache
Last-Modified: Tue, 12 Apr 2022 05:56:23 GMT
Accept-Ranges: bytes
Content-Length: 18617
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: application/javascript
institutogth.edu.ec/wp-content/uploads/elementor/css/post-7.css?ver=1669908187
38.242.146.15200 OK 1.1 kB URL HTTP/1.1 institutogth.edu.ec/wp-content/uploads/elementor/css/post-7.css?ver=1669908187
IP 38.242.146.15:0
File type ASCII text, with very long lines (1105), with no line terminators
Hash 7cd4bbdea8ef7ead71fd9d279ec5baff
66869e4d3ea5c73120bc0a8fb3319e44697cc735
5a691dedd84096e1fb59e8c66f47bcb66127e9aef6a181352aaf27ed9ac1ff71
Analyzer Verdict Alert fortinet Malware
GET /wp-content/uploads/elementor/css/post-7.css?ver=1669908187 HTTP/1.1
Host: institutogth.edu.ec
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://institutogth.edu.ec/
Cookie: pmpro_visit=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 01 Dec 2022 20:55:29 GMT
Server: Apache
Last-Modified: Thu, 01 Dec 2022 15:23:07 GMT
Accept-Ranges: bytes
Content-Length: 1105
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: text/css
institutogth.edu.ec/wp-content/plugins/elementor/assets/css/frontend-lite.min.css?ver=3.8.1
38.242.146.15200 OK 104 kB URL HTTP/1.1 institutogth.edu.ec/wp-content/plugins/elementor/assets/css/frontend-lite.min.css?ver=3.8.1
IP 38.242.146.15:0
File type ASCII text, with very long lines (65497)
Size 104 kB (103736 bytes)
Hash 4b537383067b0dfe61ff78af4bbefa85
aded11dce7b7ae49e731c27520051816141bf36e
68dc20b37b0b7071711805588742ddad6cc6aaac49f319148fb78a648baeaa60
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor/assets/css/frontend-lite.min.css?ver=3.8.1 HTTP/1.1
Host: institutogth.edu.ec
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://institutogth.edu.ec/
Cookie: pmpro_visit=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 01 Dec 2022 20:55:29 GMT
Server: Apache
Last-Modified: Wed, 30 Nov 2022 14:40:54 GMT
Accept-Ranges: bytes
Content-Length: 103736
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: text/css
institutogth.edu.ec/wp-content/plugins/masterstudy-lms-learning-management-system/_core/assets/vendors/owl.carousel.min.css?ver=2.9.13
38.242.146.15200 OK 3.9 kB URL HTTP/1.1 institutogth.edu.ec/wp-content/plugins/masterstudy-lms-learning-management-system/_core/assets/vendors/owl.carousel.min.css?ver=2.9.13
IP 38.242.146.15:0
Hash 66a5123942d78dd8cae79023d205e3d0
6973d7c34dbd247e0bab71de20608eb5c2537874
e24b5e7045172b1c079df650592d5e7db7728b1eefe3958ee4f43762d256879a
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/masterstudy-lms-learning-management-system/_core/assets/vendors/owl.carousel.min.css?ver=2.9.13 HTTP/1.1
Host: institutogth.edu.ec
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://institutogth.edu.ec/
Cookie: pmpro_visit=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 01 Dec 2022 20:55:29 GMT
Server: Apache
Last-Modified: Thu, 01 Dec 2022 15:18:44 GMT
Accept-Ranges: bytes
Content-Length: 3927
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: text/css
institutogth.edu.ec/wp-content/uploads/stm_lms_styles/parts/courses/style_1.css?ver=16
38.242.146.15200 OK 0 B URL HTTP/1.1 institutogth.edu.ec/wp-content/uploads/stm_lms_styles/parts/courses/style_1.css?ver=16
IP 38.242.146.15:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Malware
GET /wp-content/uploads/stm_lms_styles/parts/courses/style_1.css?ver=16 HTTP/1.1
Host: institutogth.edu.ec
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://institutogth.edu.ec/
Cookie: pmpro_visit=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 01 Dec 2022 20:55:29 GMT
Server: Apache
Last-Modified: Thu, 01 Dec 2022 15:23:08 GMT
Accept-Ranges: bytes
Content-Length: 0
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: text/css
institutogth.edu.ec/wp-content/uploads/stm_lms_styles/parts/courses/style_2.css?ver=16
38.242.146.15200 OK 4.1 kB URL HTTP/1.1 institutogth.edu.ec/wp-content/uploads/stm_lms_styles/parts/courses/style_2.css?ver=16
IP 38.242.146.15:0
File type ASCII text, with very long lines (4133), with no line terminators
Hash ab2839fd7c62bff3719741cdab481a17
344fa09b6e1ddac471fc9b0f7d59ccae3d1d5767
8d38f0a1bade373af7789cdc95369cf80ee3efe41877c0cd0db9f847570d9e19
Analyzer Verdict Alert fortinet Malware
GET /wp-content/uploads/stm_lms_styles/parts/courses/style_2.css?ver=16 HTTP/1.1
Host: institutogth.edu.ec
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://institutogth.edu.ec/
Cookie: pmpro_visit=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 01 Dec 2022 20:55:29 GMT
Server: Apache
Last-Modified: Thu, 01 Dec 2022 15:23:08 GMT
Accept-Ranges: bytes
Content-Length: 4133
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: text/css
institutogth.edu.ec/wp-content/uploads/stm_lms_styles/vc_modules/vue-autocomplete/vue2-autocomplete.css?ver=16
38.242.146.15200 OK 979 B URL HTTP/1.1 institutogth.edu.ec/wp-content/uploads/stm_lms_styles/vc_modules/vue-autocomplete/vue2-autocomplete.css?ver=16
IP 38.242.146.15:0
File type ASCII text, with very long lines (979), with no line terminators
Hash 3da5df52a06947c57b59d46c3d2971e7
c121f5233859ae70e2ec5acf8487112fa76f4cc6
41445a4fb5a98b55b8c6bd5695186527e5f60198da92f47f562241eaf88b5d74
Analyzer Verdict Alert fortinet Malware
GET /wp-content/uploads/stm_lms_styles/vc_modules/vue-autocomplete/vue2-autocomplete.css?ver=16 HTTP/1.1
Host: institutogth.edu.ec
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://institutogth.edu.ec/
Cookie: pmpro_visit=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 01 Dec 2022 20:55:29 GMT
Server: Apache
Last-Modified: Thu, 01 Dec 2022 15:23:08 GMT
Accept-Ranges: bytes
Content-Length: 979
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: text/css
institutogth.edu.ec/wp-content/uploads/stm_lms_styles/parts/courses.css?ver=16
38.242.146.15200 OK 20 kB URL HTTP/1.1 institutogth.edu.ec/wp-content/uploads/stm_lms_styles/parts/courses.css?ver=16
IP 38.242.146.15:0
File type ASCII text, with very long lines (19950), with no line terminators
Hash 42959be71bc4f2b961ab1b7edc8ed48d
01e009cf87e00957828af81b71374ac473691830
96cd1d7baaa95b9802748fce624c3e24d2b0ee3c5f0cc6f9e7b18da6f2a1efd6
GET /wp-content/uploads/stm_lms_styles/parts/courses.css?ver=16 HTTP/1.1
Host: institutogth.edu.ec
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://institutogth.edu.ec/
Cookie: pmpro_visit=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 01 Dec 2022 20:55:29 GMT
Server: Apache
Last-Modified: Thu, 01 Dec 2022 15:23:08 GMT
Accept-Ranges: bytes
Content-Length: 19950
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: text/css
institutogth.edu.ec/wp-content/uploads/stm_lms_styles/parts/courses/style_3.css?ver=16
38.242.146.15200 OK 9.1 kB URL HTTP/1.1 institutogth.edu.ec/wp-content/uploads/stm_lms_styles/parts/courses/style_3.css?ver=16
IP 38.242.146.15:0
File type ASCII text, with very long lines (9127), with no line terminators
Hash 164c5b47e06244e4b4c22f519837b3a5
9053c355bc2de7e048ea73174ef04335265437f9
f6a0c72f7fa1b631c64abadda714ad59d0f5dbbf0e05c57e67d85522e234d1d3
Analyzer Verdict Alert fortinet Malware
GET /wp-content/uploads/stm_lms_styles/parts/courses/style_3.css?ver=16 HTTP/1.1
Host: institutogth.edu.ec
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://institutogth.edu.ec/
Cookie: pmpro_visit=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 01 Dec 2022 20:55:29 GMT
Server: Apache
Last-Modified: Thu, 01 Dec 2022 15:23:08 GMT
Accept-Ranges: bytes
Content-Length: 9127
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: text/css
institutogth.edu.ec/wp-content/uploads/stm_lms_styles/parts/course.css?ver=16
38.242.146.15200 OK 7.5 kB URL HTTP/1.1 institutogth.edu.ec/wp-content/uploads/stm_lms_styles/parts/course.css?ver=16
IP 38.242.146.15:0
File type ASCII text, with very long lines (7507), with no line terminators
Hash f0ce9f012553e1e424c810484e901d6e
2ed4e3b580b85bfc9054fee04c90f7a3655be066
8654c2448236c916983fdcdc0bb2c87d7606138865a5d9e65bfd011f61703aad
Analyzer Verdict Alert fortinet Malware
GET /wp-content/uploads/stm_lms_styles/parts/course.css?ver=16 HTTP/1.1
Host: institutogth.edu.ec
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://institutogth.edu.ec/
Cookie: pmpro_visit=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 01 Dec 2022 20:55:29 GMT
Server: Apache
Last-Modified: Thu, 01 Dec 2022 15:23:08 GMT
Accept-Ranges: bytes
Content-Length: 7507
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: text/css
institutogth.edu.ec/wp-content/uploads/stm_lms_styles/vc_modules/single_course_carousel/style_1.css?ver=16
38.242.146.15200 OK 6.9 kB URL HTTP/1.1 institutogth.edu.ec/wp-content/uploads/stm_lms_styles/vc_modules/single_course_carousel/style_1.css?ver=16
IP 38.242.146.15:0
File type ASCII text, with very long lines (6851), with no line terminators
Hash 341bac739af725981220f35dca8d4808
c5ba18a6aba91e6f0c0120b0d7c5b35eb61f87a6
92a005ebd6de5531fc5a11c585bc269924498f20f18dc8cac03d1c71c8bf44bc
Analyzer Verdict Alert fortinet Malware
GET /wp-content/uploads/stm_lms_styles/vc_modules/single_course_carousel/style_1.css?ver=16 HTTP/1.1
Host: institutogth.edu.ec
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://institutogth.edu.ec/
Cookie: pmpro_visit=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 01 Dec 2022 20:55:29 GMT
Server: Apache
Last-Modified: Thu, 01 Dec 2022 15:23:08 GMT
Accept-Ranges: bytes
Content-Length: 6851
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: text/css
institutogth.edu.ec/wp-content/uploads/stm_lms_styles/vc_modules/courses_carousel/style_1.css?ver=16
38.242.146.15200 OK 7.0 kB URL HTTP/1.1 institutogth.edu.ec/wp-content/uploads/stm_lms_styles/vc_modules/courses_carousel/style_1.css?ver=16
IP 38.242.146.15:0
File type ASCII text, with very long lines (7028), with no line terminators
Hash d188958cb93d9bf6e2d889c458b649a9
1777d5633767fe1d230eb2b1ed97854ed7dcb510
91ec35349fd8fe2b8b767a0142d48ebc76698c9182561198e147de201ff9bdf7
Analyzer Verdict Alert fortinet Malware
GET /wp-content/uploads/stm_lms_styles/vc_modules/courses_carousel/style_1.css?ver=16 HTTP/1.1
Host: institutogth.edu.ec
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://institutogth.edu.ec/
Cookie: pmpro_visit=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 01 Dec 2022 20:55:29 GMT
Server: Apache
Last-Modified: Thu, 01 Dec 2022 15:23:08 GMT
Accept-Ranges: bytes
Content-Length: 7028
Keep-Alive: timeout=5, max=90
Connection: Keep-Alive
Content-Type: text/css
institutogth.edu.ec/wp-content/uploads/stm_lms_styles/vc_modules/searchbox/style_1.css?ver=16
38.242.146.15200 OK 1.1 kB URL HTTP/1.1 institutogth.edu.ec/wp-content/uploads/stm_lms_styles/vc_modules/searchbox/style_1.css?ver=16
IP 38.242.146.15:0
File type ASCII text, with very long lines (1118), with no line terminators
Hash b9bee8a15273b54b52da9be4c47e57b2
149f5c7f10acb25f489ab8190e4ed3af6650f29e
770bbc8b72f85e03e86da640f8a6729cb5a8a4037f3aad315d52f7ed347508e4
GET /wp-content/uploads/stm_lms_styles/vc_modules/searchbox/style_1.css?ver=16 HTTP/1.1
Host: institutogth.edu.ec
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://institutogth.edu.ec/
Cookie: pmpro_visit=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 01 Dec 2022 20:55:29 GMT
Server: Apache
Last-Modified: Thu, 01 Dec 2022 15:23:08 GMT
Accept-Ranges: bytes
Content-Length: 1118
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: text/css
institutogth.edu.ec/wp-content/uploads/stm_lms_styles/vc_modules/searchbox/style_2.css?ver=16
38.242.146.15200 OK 2.0 kB URL HTTP/1.1 institutogth.edu.ec/wp-content/uploads/stm_lms_styles/vc_modules/searchbox/style_2.css?ver=16
IP 38.242.146.15:0
File type ASCII text, with very long lines (1968), with no line terminators
Hash cd7107f6b73fbbcd8fc4fc7f7035348a
aa53bffd2a44ebd4e8ff752330a3287aeb6affc3
bddac3ac45acd9f5ea40c220fd81ad6938d4c8dd25eb0f041c78b9ea2bcbd2af
GET /wp-content/uploads/stm_lms_styles/vc_modules/searchbox/style_2.css?ver=16 HTTP/1.1
Host: institutogth.edu.ec
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://institutogth.edu.ec/
Cookie: pmpro_visit=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 01 Dec 2022 20:55:29 GMT
Server: Apache
Last-Modified: Thu, 01 Dec 2022 15:23:08 GMT
Accept-Ranges: bytes
Content-Length: 1968
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: text/css
institutogth.edu.ec/wp-content/uploads/stm_lms_styles/vc_modules/recent_courses/style_1.css?ver=16
38.242.146.15200 OK 1.8 kB URL HTTP/1.1 institutogth.edu.ec/wp-content/uploads/stm_lms_styles/vc_modules/recent_courses/style_1.css?ver=16
IP 38.242.146.15:0
File type ASCII text, with very long lines (1789), with no line terminators
Hash b1f873905de705521c40abb5533b35b8
9c6bedc3f86f7c8e1363f978cac69006f12f1039
ebd3c95623fb7251ed813d1dc243ae9e74df2b238d45ad3f370211f1b747681b
Analyzer Verdict Alert fortinet Malware
GET /wp-content/uploads/stm_lms_styles/vc_modules/recent_courses/style_1.css?ver=16 HTTP/1.1
Host: institutogth.edu.ec
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://institutogth.edu.ec/
Cookie: pmpro_visit=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 01 Dec 2022 20:55:29 GMT
Server: Apache
Last-Modified: Thu, 01 Dec 2022 15:23:08 GMT
Accept-Ranges: bytes
Content-Length: 1789
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: text/css
institutogth.edu.ec/wp-content/uploads/stm_lms_styles/vc_modules/recent_courses/style_2.css?ver=16
38.242.146.15200 OK 1.6 kB URL HTTP/1.1 institutogth.edu.ec/wp-content/uploads/stm_lms_styles/vc_modules/recent_courses/style_2.css?ver=16
IP 38.242.146.15:0
File type ASCII text, with very long lines (1630), with no line terminators
Hash e0de5bd146f133e7d3943501cb337edb
371e77bd8dd471d073a7aebd3fbbce6b376b7ed3
23ba12588ed4fb4ca4848b0957d50899f686342a7e48c41871f0fecdcb092325
Analyzer Verdict Alert fortinet Malware
GET /wp-content/uploads/stm_lms_styles/vc_modules/recent_courses/style_2.css?ver=16 HTTP/1.1
Host: institutogth.edu.ec
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://institutogth.edu.ec/
Cookie: pmpro_visit=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 01 Dec 2022 20:55:29 GMT
Server: Apache
Last-Modified: Thu, 01 Dec 2022 15:23:08 GMT
Accept-Ranges: bytes
Content-Length: 1630
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: text/css
push.services.mozilla.com/
54.186.169.128101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 54.186.169.128:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: nhR4bljOt4KewBR7N8M61g==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: rHsfiH8vMpNBjgsyzRQbiBeMWLk=
institutogth.edu.ec/wp-content/uploads/stm_lms_styles/vc_modules/instructors_carousel/style_2.css?ver=16
38.242.146.15200 OK 6.1 kB URL HTTP/1.1 institutogth.edu.ec/wp-content/uploads/stm_lms_styles/vc_modules/instructors_carousel/style_2.css?ver=16
IP 38.242.146.15:0
File type ASCII text, with very long lines (6114), with no line terminators
Hash 188e250e362f19ba0c2dc0cdedee2f75
f9f893210b0e1936e50b0000e2e4b12f9b79c6da
0f9c7f13d8113860538ee5e16cdf59951ad013a82703a22e86e9015587608759
Analyzer Verdict Alert fortinet Malware
GET /wp-content/uploads/stm_lms_styles/vc_modules/instructors_carousel/style_2.css?ver=16 HTTP/1.1
Host: institutogth.edu.ec
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://institutogth.edu.ec/
Cookie: pmpro_visit=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 01 Dec 2022 20:55:29 GMT
Server: Apache
Last-Modified: Thu, 01 Dec 2022 15:23:08 GMT
Accept-Ranges: bytes
Content-Length: 6114
Keep-Alive: timeout=5, max=90
Connection: Keep-Alive
Content-Type: text/css
institutogth.edu.ec/wp-content/uploads/stm_lms_styles/vc_modules/featured_teacher/style_1.css?ver=16
38.242.146.15200 OK 1.3 kB URL HTTP/1.1 institutogth.edu.ec/wp-content/uploads/stm_lms_styles/vc_modules/featured_teacher/style_1.css?ver=16
IP 38.242.146.15:0
File type ASCII text, with very long lines (1282), with no line terminators
Hash 757c07307b79c6f526fc4ef71d087fb7
68223d7ac4ce466c75ff6ef6f2cfca49f17c5bf4
0b161c7a529cdbf744057333dcfeec2d345e5b2d304fd8bb076c521f205556f2
Analyzer Verdict Alert fortinet Malware
GET /wp-content/uploads/stm_lms_styles/vc_modules/featured_teacher/style_1.css?ver=16 HTTP/1.1
Host: institutogth.edu.ec
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://institutogth.edu.ec/
Cookie: pmpro_visit=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 01 Dec 2022 20:55:29 GMT
Server: Apache
Last-Modified: Thu, 01 Dec 2022 15:23:08 GMT
Accept-Ranges: bytes
Content-Length: 1282
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: text/css
institutogth.edu.ec/wp-content/uploads/stm_lms_styles/parts/user.css?ver=16
38.242.146.15200 OK 7.2 kB URL HTTP/1.1 institutogth.edu.ec/wp-content/uploads/stm_lms_styles/parts/user.css?ver=16
IP 38.242.146.15:0
File type ASCII text, with very long lines (7177), with no line terminators
Hash 613ab2674bce96bb4b7a5c4bfd161d8d
ecb31cd8b6dccb0072595d9b41ddd9f0f95ad88f
72cb14322adaf9b342ea0682c4c27c09386fe665171829f93959a927cd9ab801
GET /wp-content/uploads/stm_lms_styles/parts/user.css?ver=16 HTTP/1.1
Host: institutogth.edu.ec
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://institutogth.edu.ec/
Cookie: pmpro_visit=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 01 Dec 2022 20:55:29 GMT
Server: Apache
Last-Modified: Thu, 01 Dec 2022 15:23:08 GMT
Accept-Ranges: bytes
Content-Length: 7177
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: text/css
institutogth.edu.ec/wp-content/uploads/stm_lms_styles/vc_modules/instructors_carousel/style_1.css?ver=16
38.242.146.15200 OK 2.1 kB URL HTTP/1.1 institutogth.edu.ec/wp-content/uploads/stm_lms_styles/vc_modules/instructors_carousel/style_1.css?ver=16
IP 38.242.146.15:0
File type ASCII text, with very long lines (2070), with no line terminators
Hash 20f306daac9ea5fc883cd160daca0e43
3c576f7b80b3ab0c1b66831fb91e6770b38fa4bd
786363ae4f060d38e3069eb98c752f0be11822d23afcff5a9203e758a6593a20
Analyzer Verdict Alert fortinet Malware
GET /wp-content/uploads/stm_lms_styles/vc_modules/instructors_carousel/style_1.css?ver=16 HTTP/1.1
Host: institutogth.edu.ec
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://institutogth.edu.ec/
Cookie: pmpro_visit=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 01 Dec 2022 20:55:29 GMT
Server: Apache
Last-Modified: Thu, 01 Dec 2022 15:23:08 GMT
Accept-Ranges: bytes
Content-Length: 2070
Keep-Alive: timeout=5, max=89
Connection: Keep-Alive
Content-Type: text/css
institutogth.edu.ec/wp-content/uploads/stm_lms_styles/parts/instructors_grid.css?ver=16
38.242.146.15200 OK 1.1 kB URL HTTP/1.1 institutogth.edu.ec/wp-content/uploads/stm_lms_styles/parts/instructors_grid.css?ver=16
IP 38.242.146.15:0
File type ASCII text, with very long lines (1073), with no line terminators
Hash 16c3248360d58df22ecf038a0aeacecf
757bdfd26a5afd4a9ccfaed50a4ba8b1f9f2a8ef
2ae5dd1e754045e18c4d546363eabd322f39ccf168cbb2f64510b3ef3a02a223
GET /wp-content/uploads/stm_lms_styles/parts/instructors_grid.css?ver=16 HTTP/1.1
Host: institutogth.edu.ec
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://institutogth.edu.ec/
Cookie: pmpro_visit=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 01 Dec 2022 20:55:29 GMT
Server: Apache
Last-Modified: Thu, 01 Dec 2022 15:23:08 GMT
Accept-Ranges: bytes
Content-Length: 1073
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: text/css
institutogth.edu.ec/wp-content/uploads/stm_lms_styles/parts/wishlist.css?ver=16
38.242.146.15200 OK 740 B URL HTTP/1.1 institutogth.edu.ec/wp-content/uploads/stm_lms_styles/parts/wishlist.css?ver=16
IP 38.242.146.15:0
File type ASCII text, with very long lines (740), with no line terminators
Hash cc64de74133438e4e8ee66a613e7644a
b7e118c5b2d4cf9278fe04aa4aef8ef9b1ade751
819f6e0aba057e225325e7a0e892e05264fd5f3eaeaa98069a94903c80203d97
Analyzer Verdict Alert fortinet Malware
GET /wp-content/uploads/stm_lms_styles/parts/wishlist.css?ver=16 HTTP/1.1
Host: institutogth.edu.ec
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://institutogth.edu.ec/
Cookie: pmpro_visit=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 01 Dec 2022 20:55:29 GMT
Server: Apache
Last-Modified: Thu, 01 Dec 2022 15:23:08 GMT
Accept-Ranges: bytes
Content-Length: 740
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: text/css
institutogth.edu.ec/wp-content/uploads/stm_lms_styles/vc_modules/course_category/style_1.css?ver=16
38.242.146.15200 OK 1.7 kB URL HTTP/1.1 institutogth.edu.ec/wp-content/uploads/stm_lms_styles/vc_modules/course_category/style_1.css?ver=16
IP 38.242.146.15:0
File type ASCII text, with very long lines (1741), with no line terminators
Hash f81c25688fdc58342682e13e65a2b1e0
57087263d7fc67b1e4428e4885ea6ed3a8920f4a
80055f17b381b3e19892448ec2e91b72d1fec5b7331c050a3686932812723cbf
GET /wp-content/uploads/stm_lms_styles/vc_modules/course_category/style_1.css?ver=16 HTTP/1.1
Host: institutogth.edu.ec
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://institutogth.edu.ec/
Cookie: pmpro_visit=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 01 Dec 2022 20:55:29 GMT
Server: Apache
Last-Modified: Thu, 01 Dec 2022 15:23:08 GMT
Accept-Ranges: bytes
Content-Length: 1741
Keep-Alive: timeout=5, max=89
Connection: Keep-Alive
Content-Type: text/css
institutogth.edu.ec/wp-content/uploads/stm_lms_styles/vc_modules/course_category/style_3.css?ver=16
38.242.146.15200 OK 1.3 kB URL HTTP/1.1 institutogth.edu.ec/wp-content/uploads/stm_lms_styles/vc_modules/course_category/style_3.css?ver=16
IP 38.242.146.15:0
File type ASCII text, with very long lines (1257), with no line terminators
Hash bbfe49b25c0dd8dc5e512a399c392416
bd7e33b2318a4ef68c329de51ec4a724e01ba76f
a2441c14e84cd88ef6cd8251553942d337feaf36dff51fbcbb8b7263291a1903
GET /wp-content/uploads/stm_lms_styles/vc_modules/course_category/style_3.css?ver=16 HTTP/1.1
Host: institutogth.edu.ec
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://institutogth.edu.ec/
Cookie: pmpro_visit=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 01 Dec 2022 20:55:29 GMT
Server: Apache
Last-Modified: Thu, 01 Dec 2022 15:23:08 GMT
Accept-Ranges: bytes
Content-Length: 1257
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: text/css
institutogth.edu.ec/wp-content/uploads/stm_lms_styles/vc_modules/course_category/style_2.css?ver=16
38.242.146.15200 OK 3.4 kB URL HTTP/1.1 institutogth.edu.ec/wp-content/uploads/stm_lms_styles/vc_modules/course_category/style_2.css?ver=16
IP 38.242.146.15:0
File type ASCII text, with very long lines (3399), with no line terminators
Hash aed012229b5f8919d5aed4fcb7a11cc1
fb9dea8264c7835ef90a5788d7e943b14e966a60
a4529d28568e2780cc85f4eaa9cbc66a6a10c12018560a6559f36dbbbc5cead8
GET /wp-content/uploads/stm_lms_styles/vc_modules/course_category/style_2.css?ver=16 HTTP/1.1
Host: institutogth.edu.ec
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://institutogth.edu.ec/
Cookie: pmpro_visit=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 01 Dec 2022 20:55:29 GMT
Server: Apache
Last-Modified: Thu, 01 Dec 2022 15:23:08 GMT
Accept-Ranges: bytes
Content-Length: 3399
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: text/css
institutogth.edu.ec/wp-content/uploads/stm_lms_styles/vc_modules/course_category/style_4.css?ver=16
38.242.146.15200 OK 1.8 kB URL HTTP/1.1 institutogth.edu.ec/wp-content/uploads/stm_lms_styles/vc_modules/course_category/style_4.css?ver=16
IP 38.242.146.15:0
File type ASCII text, with very long lines (1751), with no line terminators
Hash 49fe69e328e230aba80d5663b979905e
881c55b396d38da6275e75eb92c55b551ef8c8e6
275db2bd769058b053b6ec1b5fb9d8bfbf22dc1f4ca7cc52ff87097ff71ee6c2
GET /wp-content/uploads/stm_lms_styles/vc_modules/course_category/style_4.css?ver=16 HTTP/1.1
Host: institutogth.edu.ec
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://institutogth.edu.ec/
Cookie: pmpro_visit=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 01 Dec 2022 20:55:29 GMT
Server: Apache
Last-Modified: Thu, 01 Dec 2022 15:23:08 GMT
Accept-Ranges: bytes
Content-Length: 1751
Keep-Alive: timeout=5, max=88
Connection: Keep-Alive
Content-Type: text/css
institutogth.edu.ec/wp-content/uploads/stm_lms_styles/vc_modules/course_category/style_5.css?ver=16
38.242.146.15200 OK 2.0 kB URL HTTP/1.1 institutogth.edu.ec/wp-content/uploads/stm_lms_styles/vc_modules/course_category/style_5.css?ver=16
IP 38.242.146.15:0
File type ASCII text, with very long lines (2044), with no line terminators
Hash be910cd8f41e187cc39fda8015919000
4b09c8407f29b69e6d1bae7032e30f0e079908a0
e68ee688c860282bd65d948a715893f917ff72032ebd7560bf8a29385d829a4b
GET /wp-content/uploads/stm_lms_styles/vc_modules/course_category/style_5.css?ver=16 HTTP/1.1
Host: institutogth.edu.ec
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://institutogth.edu.ec/
Cookie: pmpro_visit=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 01 Dec 2022 20:55:29 GMT
Server: Apache
Last-Modified: Thu, 01 Dec 2022 15:23:08 GMT
Accept-Ranges: bytes
Content-Length: 2044
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: text/css
institutogth.edu.ec/wp-content/uploads/stm_lms_styles/vc_modules/course_category/style_6.css?ver=16
38.242.146.15200 OK 1.4 kB URL HTTP/1.1 institutogth.edu.ec/wp-content/uploads/stm_lms_styles/vc_modules/course_category/style_6.css?ver=16
IP 38.242.146.15:0
File type ASCII text, with very long lines (1377), with no line terminators
Hash a81867031c638bfaa1f63376545b3798
ed318c3b0aa5cd82bf7df7e87dd8ae3905b8213e
e3e45112e3deb4b84a48f0844b01d177685746e2fcf88a706ea292cdad51b5b2
GET /wp-content/uploads/stm_lms_styles/vc_modules/course_category/style_6.css?ver=16 HTTP/1.1
Host: institutogth.edu.ec
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://institutogth.edu.ec/
Cookie: pmpro_visit=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 01 Dec 2022 20:55:29 GMT
Server: Apache
Last-Modified: Thu, 01 Dec 2022 15:23:08 GMT
Accept-Ranges: bytes
Content-Length: 1377
Keep-Alive: timeout=5, max=90
Connection: Keep-Alive
Content-Type: text/css
institutogth.edu.ec/wp-content/uploads/stm_lms_styles/parts/certificate_checker.css?ver=16
38.242.146.15200 OK 398 B URL HTTP/1.1 institutogth.edu.ec/wp-content/uploads/stm_lms_styles/parts/certificate_checker.css?ver=16
IP 38.242.146.15:0
File type ASCII text, with very long lines (398), with no line terminators
Hash 4aa986df2d449344ce87e6a6d6daa591
eae9e733c0a0bda92477c5b4854d6ced963c175b
09ca9d054b0ef8fb32ac475a16db64c262eccc5ee06fcb57e8d33b5b37b2bd5e
GET /wp-content/uploads/stm_lms_styles/parts/certificate_checker.css?ver=16 HTTP/1.1
Host: institutogth.edu.ec
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://institutogth.edu.ec/
Cookie: pmpro_visit=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 01 Dec 2022 20:55:29 GMT
Server: Apache
Last-Modified: Thu, 01 Dec 2022 15:23:08 GMT
Accept-Ranges: bytes
Content-Length: 398
Keep-Alive: timeout=5, max=88
Connection: Keep-Alive
Content-Type: text/css
institutogth.edu.ec/wp-content/uploads/stm_lms_styles/parts/bundles/card.css?ver=16
38.242.146.15200 OK 6.9 kB URL HTTP/1.1 institutogth.edu.ec/wp-content/uploads/stm_lms_styles/parts/bundles/card.css?ver=16
IP 38.242.146.15:0
File type Unicode text, UTF-8 text, with very long lines (6931), with no line terminators
Hash f1421b95dce659510c747e399ae2b0b1
2cae8a3e753141527b4d0d4da19e5701d9ca7ea4
d766b7c4c873ed4ab8a842010852af56c903a6be42b457eb9c08f32c31efefb6
Analyzer Verdict Alert fortinet Malware
GET /wp-content/uploads/stm_lms_styles/parts/bundles/card.css?ver=16 HTTP/1.1
Host: institutogth.edu.ec
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://institutogth.edu.ec/
Cookie: pmpro_visit=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 01 Dec 2022 20:55:29 GMT
Server: Apache
Last-Modified: Thu, 01 Dec 2022 15:23:08 GMT
Accept-Ranges: bytes
Content-Length: 6933
Keep-Alive: timeout=5, max=90
Connection: Keep-Alive
Content-Type: text/css
institutogth.edu.ec/wp-content/uploads/stm_lms_styles/parts/google_classroom/module.css?ver=16
38.242.146.15200 OK 3.8 kB URL HTTP/1.1 institutogth.edu.ec/wp-content/uploads/stm_lms_styles/parts/google_classroom/module.css?ver=16
IP 38.242.146.15:0
File type ASCII text, with very long lines (3761), with no line terminators
Hash 65efe5bb65a8a92ed47d38c9835f6a5b
f4694f3d2ff348994f4125532fa95418db68f7cb
4eb2473c61902b0bf4e92a75e7a7175b46d8542de93cce1cb431cf5d8eb499a2
Analyzer Verdict Alert fortinet Malware
GET /wp-content/uploads/stm_lms_styles/parts/google_classroom/module.css?ver=16 HTTP/1.1
Host: institutogth.edu.ec
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://institutogth.edu.ec/
Cookie: pmpro_visit=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 01 Dec 2022 20:55:29 GMT
Server: Apache
Last-Modified: Thu, 01 Dec 2022 15:23:08 GMT
Accept-Ranges: bytes
Content-Length: 3761
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: text/css
institutogth.edu.ec/wp-content/plugins/elementor/assets/lib/font-awesome/css/all.min.css?ver=3.8.1
38.242.146.15200 OK 59 kB URL HTTP/1.1 institutogth.edu.ec/wp-content/plugins/elementor/assets/lib/font-awesome/css/all.min.css?ver=3.8.1
IP 38.242.146.15:0
File type ASCII text, with very long lines (59158)
Hash 74bab4578692993514e7f882cc15c218
b6293bcfd851f963edbe859498570c4c0c7eaae4
d87ddf917b7a1449ab45e2b8e3c98354629bdd65b6659c37e6023bbea1ce1386
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/all.min.css?ver=3.8.1 HTTP/1.1
Host: institutogth.edu.ec
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://institutogth.edu.ec/
Cookie: pmpro_visit=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 01 Dec 2022 20:55:29 GMT
Server: Apache
Last-Modified: Wed, 30 Nov 2022 14:40:54 GMT
Accept-Ranges: bytes
Content-Length: 59344
Keep-Alive: timeout=5, max=90
Connection: Keep-Alive
Content-Type: text/css
institutogth.edu.ec/wp-content/uploads/stm_lms_styles/parts/admin/elementor_preview.css?ver=16
38.242.146.15200 OK 105 B URL HTTP/1.1 institutogth.edu.ec/wp-content/uploads/stm_lms_styles/parts/admin/elementor_preview.css?ver=16
IP 38.242.146.15:0
File type ASCII text, with no line terminators
Hash 51b170435267c414b101dd9567793901
1ff6ecce641ebf3faa2dc032aa892085a7238ebe
880ba2791f6879efad921f6e110bbb34209ff9da0febf3cbf7c7fdfdc58d4a57
Analyzer Verdict Alert fortinet Malware
GET /wp-content/uploads/stm_lms_styles/parts/admin/elementor_preview.css?ver=16 HTTP/1.1
Host: institutogth.edu.ec
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://institutogth.edu.ec/
Cookie: pmpro_visit=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 01 Dec 2022 20:55:29 GMT
Server: Apache
Last-Modified: Thu, 01 Dec 2022 15:23:08 GMT
Accept-Ranges: bytes
Content-Length: 105
Keep-Alive: timeout=5, max=87
Connection: Keep-Alive
Content-Type: text/css
institutogth.edu.ec/wp-content/uploads/elementor/css/post-941.css?ver=1669908187
38.242.146.15200 OK 19 kB URL HTTP/1.1 institutogth.edu.ec/wp-content/uploads/elementor/css/post-941.css?ver=1669908187
IP 38.242.146.15:0
File type ASCII text, with very long lines (19360), with no line terminators
Hash 06464e9de547556be7f903b91be9d526
6c2e4a25d166e87e4cd7356a7f38005416d094b2
81f32d6cf6cd20919ccba5c652eed45a9a71c48e279447ec865625518871abfb
GET /wp-content/uploads/elementor/css/post-941.css?ver=1669908187 HTTP/1.1
Host: institutogth.edu.ec
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://institutogth.edu.ec/
Cookie: pmpro_visit=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 01 Dec 2022 20:55:29 GMT
Server: Apache
Last-Modified: Thu, 01 Dec 2022 15:23:07 GMT
Accept-Ranges: bytes
Content-Length: 19360
Keep-Alive: timeout=5, max=87
Connection: Keep-Alive
Content-Type: text/css
institutogth.edu.ec/wp-includes/js/jquery/jquery.min.js?ver=3.6.1
38.242.146.15200 OK 90 kB URL HTTP/1.1 institutogth.edu.ec/wp-includes/js/jquery/jquery.min.js?ver=3.6.1
IP 38.242.146.15:0
File type ASCII text, with very long lines (65447)
Hash 17738318d61d394f1de8890d589afaec
f6d0c4dc1399cf02d53f5753ad46573a8bbc2ac3
cc7403bab52ed166e24ea9324241045af370be482f5b594468f4a6ac6e7e7981
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.1 HTTP/1.1
Host: institutogth.edu.ec
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://institutogth.edu.ec/
Cookie: pmpro_visit=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 01 Dec 2022 20:55:29 GMT
Server: Apache
Last-Modified: Thu, 03 Nov 2022 02:29:47 GMT
Accept-Ranges: bytes
Content-Length: 89684
Keep-Alive: timeout=5, max=89
Connection: Keep-Alive
Content-Type: application/javascript
institutogth.edu.ec/wp-content/plugins/elementor/assets/lib/font-awesome/css/v4-shims.min.css?ver=3.8.1
38.242.146.15200 OK 27 kB URL HTTP/1.1 institutogth.edu.ec/wp-content/plugins/elementor/assets/lib/font-awesome/css/v4-shims.min.css?ver=3.8.1
IP 38.242.146.15:0
File type ASCII text, with very long lines (26516)
Hash c55205bce667f5d812354fd1353e7389
f22de0af271eba636a022c873c94fbcd81b4c89a
c55902832fb84522d02ea1a60a30747403a140d8651fa748f13ba398b0c0df3a
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/v4-shims.min.css?ver=3.8.1 HTTP/1.1
Host: institutogth.edu.ec
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://institutogth.edu.ec/
Cookie: pmpro_visit=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 01 Dec 2022 20:55:29 GMT
Server: Apache
Last-Modified: Wed, 30 Nov 2022 14:40:54 GMT
Accept-Ranges: bytes
Content-Length: 26702
Keep-Alive: timeout=5, max=89
Connection: Keep-Alive
Content-Type: text/css
institutogth.edu.ec/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
38.242.146.15200 OK 11 kB URL HTTP/1.1 institutogth.edu.ec/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP 38.242.146.15:0
File type ASCII text, with very long lines (11126)
Hash 79b4956b7ec478ec10244b5e2d33ac7d
a46025b9d05e3df30d610a8aef14f392c7058dc9
029e0a2e809fd6b5dbe76abe8b7a74936be306c9a8c27c814c4d44aa54623300
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: institutogth.edu.ec
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://institutogth.edu.ec/
Cookie: pmpro_visit=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 01 Dec 2022 20:55:29 GMT
Server: Apache
Last-Modified: Wed, 18 Nov 2020 09:06:06 GMT
Accept-Ranges: bytes
Content-Length: 11224
Keep-Alive: timeout=5, max=90
Connection: Keep-Alive
Content-Type: application/javascript
institutogth.edu.ec/wp-content/plugins/masterstudy-lms-learning-management-system/_core/libraries/nuxy/metaboxes/assets/js/vue2-datepicker.min.js?ver=2.9.13
38.242.146.15200 OK 32 kB URL HTTP/1.1 institutogth.edu.ec/wp-content/plugins/masterstudy-lms-learning-management-system/_core/libraries/nuxy/metaboxes/assets/js/vue2-datepicker.min.js?ver=2.9.13
IP 38.242.146.15:0
File type Unicode text, UTF-8 text, with very long lines (31591)
Hash c54f2896d3844a1efa1ee98b4ae9be9a
593e9e64ca53475412c0afc7510cad715dfba03b
e23b3c15b53c8b149b7683bf9e0b8078f4578fcd865c34e408dd2456338ce267
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/masterstudy-lms-learning-management-system/_core/libraries/nuxy/metaboxes/assets/js/vue2-datepicker.min.js?ver=2.9.13 HTTP/1.1
Host: institutogth.edu.ec
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://institutogth.edu.ec/
Cookie: pmpro_visit=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 01 Dec 2022 20:55:29 GMT
Server: Apache
Last-Modified: Thu, 01 Dec 2022 15:18:44 GMT
Accept-Ranges: bytes
Content-Length: 31937
Keep-Alive: timeout=5, max=86
Connection: Keep-Alive
Content-Type: application/javascript
institutogth.edu.ec/wp-content/plugins/masterstudy-lms-learning-management-system/_core/assets/js/lms.js?ver=16
38.242.146.15200 OK 6.9 kB URL HTTP/1.1 institutogth.edu.ec/wp-content/plugins/masterstudy-lms-learning-management-system/_core/assets/js/lms.js?ver=16
IP 38.242.146.15:0
Hash 731a01d1e0debf83bbd0ae6f305363ad
c727a5723554a37e9bb3747461dceed77a678522
414a3cbe250cbe36f1add5097790cc3bd326ea7e5af3c7ea31ebce167ecc4c74
GET /wp-content/plugins/masterstudy-lms-learning-management-system/_core/assets/js/lms.js?ver=16 HTTP/1.1
Host: institutogth.edu.ec
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://institutogth.edu.ec/
Cookie: pmpro_visit=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 01 Dec 2022 20:55:29 GMT
Server: Apache
Last-Modified: Thu, 01 Dec 2022 15:18:44 GMT
Accept-Ranges: bytes
Content-Length: 6885
Keep-Alive: timeout=5, max=88
Connection: Keep-Alive
Content-Type: application/javascript
institutogth.edu.ec/wp-content/plugins/masterstudy-lms-learning-management-system/_core/libraries/nuxy/metaboxes/assets/js/vue-resource.min.js?ver=2.9.13
38.242.146.15200 OK 15 kB URL HTTP/1.1 institutogth.edu.ec/wp-content/plugins/masterstudy-lms-learning-management-system/_core/libraries/nuxy/metaboxes/assets/js/vue-resource.min.js?ver=2.9.13
IP 38.242.146.15:0
File type ASCII text, with very long lines (14976)
Hash 80be27de8d432bcbd004e6dfd1b29adc
a691e4dcccfc1ef625d2f6fceaf8c09c11bb9e9c
fcc3a65f2478c5efbfd9724174711939d48560e431604b7b4b9b9b6fdb14d328
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/masterstudy-lms-learning-management-system/_core/libraries/nuxy/metaboxes/assets/js/vue-resource.min.js?ver=2.9.13 HTTP/1.1
Host: institutogth.edu.ec
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://institutogth.edu.ec/
Cookie: pmpro_visit=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 01 Dec 2022 20:55:29 GMT
Server: Apache
Last-Modified: Thu, 01 Dec 2022 15:18:44 GMT
Accept-Ranges: bytes
Content-Length: 15145
Keep-Alive: timeout=5, max=86
Connection: Keep-Alive
Content-Type: application/javascript
institutogth.edu.ec/wp-content/plugins/stm-post-type/theme/assets/stm_lms_lazyload.js?ver=false
38.242.146.15200 OK 195 B URL HTTP/1.1 institutogth.edu.ec/wp-content/plugins/stm-post-type/theme/assets/stm_lms_lazyload.js?ver=false
IP 38.242.146.15:0
Hash 8341b9b2e5b09a7f9cb7cef9dbaa7311
3db39dbe3b7f541ad9708596e40826134602cf07
0e3ab2020798334f21cdc0a16ea2e4a39c56e0e4df3895c9e3c2b25c854acf40
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/stm-post-type/theme/assets/stm_lms_lazyload.js?ver=false HTTP/1.1
Host: institutogth.edu.ec
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://institutogth.edu.ec/
Cookie: pmpro_visit=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 01 Dec 2022 20:55:29 GMT
Server: Apache
Last-Modified: Thu, 01 Dec 2022 15:18:40 GMT
Accept-Ranges: bytes
Content-Length: 195
Keep-Alive: timeout=5, max=89
Connection: Keep-Alive
Content-Type: application/javascript
institutogth.edu.ec/wp-content/plugins/stm-post-type/theme/assets/lazysizes.min.js?ver=false
38.242.146.15200 OK 7.1 kB URL HTTP/1.1 institutogth.edu.ec/wp-content/plugins/stm-post-type/theme/assets/lazysizes.min.js?ver=false
IP 38.242.146.15:0
File type ASCII text, with very long lines (7031)
Hash 149ff45fc6c2f13e892e438a58abb77f
460d0fc31226c9865b16d23b60200ddcd1c3feb4
06821251a29e71f8fd4f60349667c54d163b16d7bc8b1d47144c7f5042683eef
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/stm-post-type/theme/assets/lazysizes.min.js?ver=false HTTP/1.1
Host: institutogth.edu.ec
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://institutogth.edu.ec/
Cookie: pmpro_visit=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 01 Dec 2022 20:55:29 GMT
Server: Apache
Last-Modified: Thu, 01 Dec 2022 15:18:40 GMT
Accept-Ranges: bytes
Content-Length: 7057
Keep-Alive: timeout=5, max=88
Connection: Keep-Alive
Content-Type: application/javascript
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 3519a58310eefa01756f0440e2acd7dd
50153382830684a6abb653dc7b4e41d7c7e386b5
5f321e771fa62d9f794339006752655316cdb6e8d69bc23e1d0e3c8bc526f12e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 20:55:29 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 3519a58310eefa01756f0440e2acd7dd
50153382830684a6abb653dc7b4e41d7c7e386b5
5f321e771fa62d9f794339006752655316cdb6e8d69bc23e1d0e3c8bc526f12e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 20:55:29 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
masterstudy.stylemixthemes.com/cooking-courses/wp-content/uploads/sites/20/2020/11/logo.svg
104.26.13.97301 Moved Permanently 0 B URL HTTP/1.1 masterstudy.stylemixthemes.com/cooking-courses/wp-content/uploads/sites/20/2020/11/logo.svg
IP 104.26.13.97:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cooking-courses/wp-content/uploads/sites/20/2020/11/logo.svg HTTP/1.1
Host: masterstudy.stylemixthemes.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 301 Moved Permanently
Date: Thu, 01 Dec 2022 20:55:29 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=3600
Expires: Thu, 01 Dec 2022 21:55:29 GMT
Location: https://masterstudy.stylemixthemes.com/cooking-courses/wp-content/uploads/sites/20/2020/11/logo.svg
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=OOj%2BhNyJUtXRu9umIdx4vzyl5J8J8A00xxQfd7IT1UiDQr%2FOyABmvAQtGOMfBRftMbUEA%2FEYUV0X5D83G4X7GwBs49Y15q1KpcJIJczskuHNXhFB7lz255B%2FkNvv4mbV%2FyLzhhZlJ7OJabEJK0jHYw%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 772eb958f9f30b45-OSL
alt-svc: h2=":443"; ma=60
institutogth.edu.ec/wp-content/plugins/paid-memberships-pro/css/print.css?ver=2.9.7
38.242.146.15200 OK 86 B URL HTTP/1.1 institutogth.edu.ec/wp-content/plugins/paid-memberships-pro/css/print.css?ver=2.9.7
IP 38.242.146.15:0
Hash e77387958ae617db5ccdb69b2cb54496
a9b4ba56928f44121201c000967e5407425cd844
914cb6fe13efdf97379c1a2910d677144821201ff3f41b67a5a6ddb367e1a27b
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/paid-memberships-pro/css/print.css?ver=2.9.7 HTTP/1.1
Host: institutogth.edu.ec
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://institutogth.edu.ec/
Cookie: pmpro_visit=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 01 Dec 2022 20:55:29 GMT
Server: Apache
Last-Modified: Thu, 01 Dec 2022 15:19:06 GMT
Accept-Ranges: bytes
Content-Length: 86
Keep-Alive: timeout=5, max=87
Connection: Keep-Alive
Content-Type: text/css
institutogth.edu.ec/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-solid-900.woff2
38.242.146.15200 OK 78 kB URL HTTP/1.1 institutogth.edu.ec/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-solid-900.woff2
IP 38.242.146.15:0
File type Web Open Font Format (Version 2), TrueType, length 78196, version 331.-31261\012- data
Hash e8a427e15cc502bef99cfd722b37ea98
a9922842a120a7f1eaced667480c5e185a106d69
d0b4256abed72481585662971262eabee345c19f837af00d7ce24239d3b40eef
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-solid-900.woff2 HTTP/1.1
Host: institutogth.edu.ec
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://institutogth.edu.ec/wp-content/plugins/elementor/assets/lib/font-awesome/css/all.min.css?ver=3.8.1
Cookie: pmpro_visit=1
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 01 Dec 2022 20:55:29 GMT
Server: Apache
Last-Modified: Wed, 30 Nov 2022 14:40:54 GMT
Accept-Ranges: bytes
Content-Length: 78196
Keep-Alive: timeout=5, max=86
Connection: Keep-Alive
Content-Type: font/woff2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 980f31229421fd11df958496bea34502
648e03f048e6741beb1d4e10099b1429b79e4f00
887d1a1020b73fa3221c168713525f99474ac02fa10e251b5b23f6c0c519afce
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 20:55:29 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.googleapis.com/css?family=Kumbh+Sans%3A300%2C400%2C700%7CMontserrat%3A100%2C200%2C300%2C400%2C500%2C600%2C700%2C800%2C900%2C100italic%2C200italic%2C300italic%2C400italic%2C500italic%2C600italic%2C700italic%2C800italic%2C900italic&subset=latin&ver=1669908047
142.250.74.74200 OK 1.6 kB URL HTTP/2 fonts.googleapis.com/css?family=Kumbh+Sans%3A300%2C400%2C700%7CMontserrat%3A100%2C200%2C300%2C400%2C500%2C600%2C700%2C800%2C900%2C100italic%2C200italic%2C300italic%2C400italic%2C500italic%2C600italic%2C700italic%2C800italic%2C900italic&subset=latin&ver=1669908047
IP 142.250.74.74:0
Hash 23bc05eceef81dd55f6210c7181014d5
3c1b1e80077fce3d3150c90da7ccbc0024248cb2
4168feb636c05487e3bb7c9ec1615f05aa4975c1174294f5f18927100f7e9749
GET /css?family=Kumbh+Sans%3A300%2C400%2C700%7CMontserrat%3A100%2C200%2C300%2C400%2C500%2C600%2C700%2C800%2C900%2C100italic%2C200italic%2C300italic%2C400italic%2C500italic%2C600italic%2C700italic%2C800italic%2C900italic&subset=latin&ver=1669908047 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://institutogth.edu.ec/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 01 Dec 2022 20:55:29 GMT
date: Thu, 01 Dec 2022 20:55:29 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/kumbhsans/v12/c4ml1n92AsfhuCq6tVsaioBd-Q.woff2
142.250.74.35200 OK 30 kB URL HTTP/2 fonts.gstatic.com/s/kumbhsans/v12/c4ml1n92AsfhuCq6tVsaioBd-Q.woff2
IP 142.250.74.35:0
File type Web Open Font Format (Version 2), TrueType, length 30224, version 1.0\012- data
Hash 36be22721f29ac75d4342891b79854c3
7e6f3a83742896703841449e462922bfe76224ca
9b2d0cbb68f699b93854f9ecfe945428a66c439340416ee9d7fb8ee465fc727a
GET /s/kumbhsans/v12/c4ml1n92AsfhuCq6tVsaioBd-Q.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://institutogth.edu.ec
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 30224
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 27 Nov 2022 04:39:25 GMT
expires: Mon, 27 Nov 2023 04:39:25 GMT
cache-control: public, max-age=31536000
age: 404164
last-modified: Mon, 11 Jul 2022 19:05:28 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 980f31229421fd11df958496bea34502
648e03f048e6741beb1d4e10099b1429b79e4f00
887d1a1020b73fa3221c168713525f99474ac02fa10e251b5b23f6c0c519afce
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 20:55:29 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
institutogth.edu.ec/wp-content/themes/masterstudy/favicon.ico
38.242.146.15200 OK 1.2 kB URL HTTP/1.1 institutogth.edu.ec/wp-content/themes/masterstudy/favicon.ico
IP 38.242.146.15:0
File type MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel\012- data
Hash 8146b8ed2c508df2cff63f1e4fd87951
87668a5d6cce5fd83becc85ef3c520726d134615
45b0e8ab97a96a21cb24b62d61c13a38f8ba777181bd30594bdb2b5167153057
GET /wp-content/themes/masterstudy/favicon.ico HTTP/1.1
Host: institutogth.edu.ec
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://institutogth.edu.ec/
Cookie: pmpro_visit=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 01 Dec 2022 20:55:29 GMT
Server: Apache
Last-Modified: Thu, 01 Dec 2022 15:14:20 GMT
Accept-Ranges: bytes
Content-Length: 1150
Keep-Alive: timeout=5, max=85
Connection: Keep-Alive
Content-Type: image/x-icon
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash ecab83d593cc540b02689be5be7abc8a
81cda579b7b9b22332b85266b0126585f3d3f73f
d469c5adb69f261084b016f8e24edf8b69b62d9f930ca2d85cf35375e2303ecc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D469C5ADB69F261084B016F8E24EDF8B69B62D9F930CA2D85CF35375E2303ECC"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16859
Expires: Fri, 02 Dec 2022 01:36:29 GMT
Date: Thu, 01 Dec 2022 20:55:30 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash ecab83d593cc540b02689be5be7abc8a
81cda579b7b9b22332b85266b0126585f3d3f73f
d469c5adb69f261084b016f8e24edf8b69b62d9f930ca2d85cf35375e2303ecc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D469C5ADB69F261084B016F8E24EDF8B69B62D9F930CA2D85CF35375E2303ECC"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16859
Expires: Fri, 02 Dec 2022 01:36:29 GMT
Date: Thu, 01 Dec 2022 20:55:30 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash ecab83d593cc540b02689be5be7abc8a
81cda579b7b9b22332b85266b0126585f3d3f73f
d469c5adb69f261084b016f8e24edf8b69b62d9f930ca2d85cf35375e2303ecc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D469C5ADB69F261084B016F8E24EDF8B69B62D9F930CA2D85CF35375E2303ECC"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16859
Expires: Fri, 02 Dec 2022 01:36:29 GMT
Date: Thu, 01 Dec 2022 20:55:30 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash ecab83d593cc540b02689be5be7abc8a
81cda579b7b9b22332b85266b0126585f3d3f73f
d469c5adb69f261084b016f8e24edf8b69b62d9f930ca2d85cf35375e2303ecc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D469C5ADB69F261084B016F8E24EDF8B69B62D9F930CA2D85CF35375E2303ECC"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16859
Expires: Fri, 02 Dec 2022 01:36:29 GMT
Date: Thu, 01 Dec 2022 20:55:30 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F051e025a-c892-4a7d-8a1d-95f6d77ebb3c.jpeg
34.120.237.76200 OK 4.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F051e025a-c892-4a7d-8a1d-95f6d77ebb3c.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d2dd5a4bcfd47db8f38544bf39ce3031
fa2217bae05b7beca2e12597eaad835298276b82
3266004f5e73af5359b71622eea31f1e28abb4bbc443b5f9e481b5a8b2e9249e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F051e025a-c892-4a7d-8a1d-95f6d77ebb3c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4762
x-amzn-requestid: b7c0e28a-de0d-443d-8bf4-900a964bf110
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cP7uSFcMoAMF2CQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63830cc1-7abade3a670201cf1906b79f;Sampled=0
x-amzn-remapped-date: Sun, 27 Nov 2022 07:07:45 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: gZSkafSw8cXo9AChLOTVJW7r_hHLW8kaHlA-ED2_zFJwuUk1uS3VRw==
via: 1.1 0005a84c2971ff4f5bbb79e7ebc622a8.cloudfront.net (CloudFront), 1.1 98aedae6661e3904540676966998ed88.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Dec 2022 13:29:36 GMT
age: 26754
etag: "fa2217bae05b7beca2e12597eaad835298276b82"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F600016d1-5abb-4a6c-996a-933a8d4bc6df.jpeg
34.120.237.76200 OK 8.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F600016d1-5abb-4a6c-996a-933a8d4bc6df.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 26d6dffbf400da4803a2e76e2a8ef2f8
2e62f9ed8f5e7b2f888a73320dd98b0cda9303b8
04c6e31623fe48cbe83dc91635bfa47b337590f18919995b08d5bde27e929e03
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F600016d1-5abb-4a6c-996a-933a8d4bc6df.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8740
x-amzn-requestid: 4823cf63-98eb-40d3-bb8b-e09cd2262f36
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cP7SqHjYIAMF8xw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63830c10-316b213c33ce9bc2355c0900;Sampled=0
x-amzn-remapped-date: Sun, 27 Nov 2022 07:04:48 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: tK4wl-g5kcUhVFE3iZGILhZhZSsaMzQD9JTBHj1JXV95yXs_e3gMGw==
via: 1.1 000f4a2f631bace380a0afa747a82482.cloudfront.net (CloudFront), 1.1 559326ad73233233a9e52cb9e8601ede.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Dec 2022 12:31:43 GMT
age: 30227
etag: "2e62f9ed8f5e7b2f888a73320dd98b0cda9303b8"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdc2b4ec6-0955-4089-983c-0abf7fd13bf2.jpeg
34.120.237.76200 OK 9.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdc2b4ec6-0955-4089-983c-0abf7fd13bf2.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash e1e6b6ba4f82221b41c3d9129008c76d
2f9532d698b4c28df23e18bbb66399ec776d5b9f
218c6f41a16e6087c611d4db5784a7cc1d027084d0bf2bd6dc3843ee5dfd560f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdc2b4ec6-0955-4089-983c-0abf7fd13bf2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9459
x-amzn-requestid: c08f55b2-7ac6-4dec-b53c-fd3f4533f9c9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cMpBiGoHIAMFR2g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6381bba3-69c2c2d05e55fd745caf1dce;Sampled=0
x-amzn-remapped-date: Sat, 26 Nov 2022 07:09:23 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: w_Mb-0pBwp-pUyU2bdJ8MhrGHkk6VQgJmcGV9MfHwj_yGUMIYZkyrg==
via: 1.1 0aebf3fe433ff96e68d785fad4ea4c0e.cloudfront.net (CloudFront), 1.1 61bc723adb3b1884ed759711e84e13a8.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Dec 2022 10:48:24 GMT
age: 36426
etag: "2f9532d698b4c28df23e18bbb66399ec776d5b9f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbcb53953-3f6b-43ee-95d9-fb65d133745f.jpeg
34.120.237.76200 OK 13 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbcb53953-3f6b-43ee-95d9-fb65d133745f.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 328ce221bcf3442f88d09373193ff594
63bfa2ea925aa2c188c664a7bf7af7b0e5417e60
21d5b5ec267430dba91b17f89a557aca5cd2a21535da18eb02ec69ed0e1b7371
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbcb53953-3f6b-43ee-95d9-fb65d133745f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 13411
x-amzn-requestid: 17fcc4e1-76c1-4eca-9235-c1a513bca24a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cbz80FCQoAMFs1A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6387cd1e-26da4f265d74215f31425eb9;Sampled=0
x-amzn-remapped-date: Wed, 30 Nov 2022 21:37:34 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: MttRByNp1C1ZeFFicFVa0w3XRyXJnUycPy2Izk8hzGEgXGdDqD3L3A==
via: 1.1 a20e81b65d2465c729ce2f6bfe539dd0.cloudfront.net (CloudFront), 1.1 12a392bc3a7281f8d5d4591bfadc41fc.cloudfront.net (CloudFront), 1.1 google
date: Wed, 30 Nov 2022 21:48:17 GMT
age: 83233
etag: "63bfa2ea925aa2c188c664a7bf7af7b0e5417e60"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb0e1339e-3c63-4033-8b5b-e21137509777.jpeg
34.120.237.76200 OK 16 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb0e1339e-3c63-4033-8b5b-e21137509777.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ffd12f9c423ffc627d9e3b3145944fe4
5cf9a7a784952e1bb0cbe499104f1774b1269d08
a25f1b752d9af599aefd73073c105853130f1759905269de3d582d2eb35fe167
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb0e1339e-3c63-4033-8b5b-e21137509777.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 16038
x-amzn-requestid: 9d34c42b-ba0c-498f-8f99-d4ab527ffa89
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cbzMdHXNIAMFgaw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6387cbe9-376846f31dc9b995797cbd18;Sampled=0
x-amzn-remapped-date: Wed, 30 Nov 2022 21:32:25 GMT
x-amz-cf-pop: SEA19-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: DngCuOTO9fQAwWe_ip6EtBcgruigZN6Bl1_v5BHM2dsWlhqCXCL3gg==
via: 1.1 efcf7b9d0f917f9ebf314db03e52d9b6.cloudfront.net (CloudFront), 1.1 98aedae6661e3904540676966998ed88.cloudfront.net (CloudFront), 1.1 google
date: Wed, 30 Nov 2022 21:45:33 GMT
age: 83397
etag: "5cf9a7a784952e1bb0cbe499104f1774b1269d08"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F83cd87b8-4041-419b-ab34-9f8e5a326f4b.jpeg
34.120.237.76200 OK 13 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F83cd87b8-4041-419b-ab34-9f8e5a326f4b.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 820cf89fcab8380adff42982c9fb11ed
84241ddddbbfd7de30118307fb1a62800d0a4cb3
0d051495f06ac84de934283b40cbfee7a042d32153a73486dd7c017430e882d8
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F83cd87b8-4041-419b-ab34-9f8e5a326f4b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12898
x-amzn-requestid: 9b594c3c-6b8c-4589-8fcb-b3d7518b46f6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cQZBNFxToAMF_9A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63833ba1-767f510d72eef86d0cc892df;Sampled=0
x-amzn-remapped-date: Sun, 27 Nov 2022 10:27:45 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: gsn5uUFEzDZDOMPTvW9UQxtccvRfJKUM4eJ8U99jvUGzNIKkF9SzeA==
via: 1.1 d1151317ba32afe0e6370fd69fed222e.cloudfront.net (CloudFront), 1.1 4f3feb5c4393987d42d1971d404d7cea.cloudfront.net (CloudFront), 1.1 google
date: Wed, 30 Nov 2022 21:49:20 GMT
age: 83170
etag: "84241ddddbbfd7de30118307fb1a62800d0a4cb3"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Roboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto+Slab%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CKumbh+Sans%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=swap&ver=6.1.1
142.250.74.74200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Roboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto+Slab%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CKumbh+Sans%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=swap&ver=6.1.1
IP 142.250.74.74:0
GET /css?family=Roboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto+Slab%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CKumbh+Sans%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=swap&ver=6.1.1 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://institutogth.edu.ec/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 01 Dec 2022 20:55:28 GMT
date: Thu, 01 Dec 2022 20:55:28 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
masterstudy.stylemixthemes.com/cooking-courses/wp-content/uploads/sites/20/2020/11/logo.svg
104.26.13.97200 OK 0 B URL HTTP/2 masterstudy.stylemixthemes.com/cooking-courses/wp-content/uploads/sites/20/2020/11/logo.svg
IP 104.26.13.97:0
GET /cooking-courses/wp-content/uploads/sites/20/2020/11/logo.svg HTTP/1.1
Host: masterstudy.stylemixthemes.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 01 Dec 2022 20:55:29 GMT
content-type: image/svg+xml
last-modified: Thu, 12 Nov 2020 12:51:35 GMT
vary: Accept-Encoding
etag: W/"5fad2fd7-1049"
x-frame-options: ALLOWALL
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=tVHQfslt1rQHo1dTnG0UXyDlXf0RQGGxfMfXqoI2IiDvBb8AgTuUwZi0ZwBfYcVbBBZkxgE9nO6ALgOeOkPtdaGhoxkGzBOhAPKOpkJik%2B1ZLzxKgnveNf%2FhfBj2Zz6kAxFpM3lsL5fpqdswgT7QUw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 772eb959ff110b02-OSL
content-encoding: br
X-Firefox-Spdy: h2