r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash a2104f935c638b4767ca5ae0d738ef23
85c6af15af749be0ceeae6de17c36925b750f166
5d4789a3696bd7faa9916768cb627bbc89bf70a756d80e53860cbac13c2bc8b1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5D4789A3696BD7FAA9916768CB627BBC89BF70A756D80E53860CBAC13C2BC8B1"
Last-Modified: Fri, 27 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13192
Expires: Sat, 28 Jan 2023 06:04:36 GMT
Date: Sat, 28 Jan 2023 02:24:44 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 81dd5c5cc5b3278876cb44dcb520a60f
c0511a59e9eccdcdda98717b87c89c5d59974808
41736c303afdb3d31e48724b107dcb22883cae02f3562308eb52d9164001a2de
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "41736C303AFDB3D31E48724B107DCB22883CAE02F3562308EB52D9164001A2DE"
Last-Modified: Fri, 27 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=19544
Expires: Sat, 28 Jan 2023 07:50:28 GMT
Date: Sat, 28 Jan 2023 02:24:44 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash dcd75ca6daca51c5e39d431468511793
07f76d3bf23d65c9110d810fa71a994e39e085d3
73672a816da4450fe2c938b08d7ae002d9ca29fdcbd3e29cc97084d826f8b459
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Alert, Retry-After, Content-Type, Content-Length, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sat, 28 Jan 2023 01:43:03 GMT
content-type: application/json
age: 2501
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 03092d1a1bc7ac91ee342a1a7ab2a562
52db06ce1fd2c74ddd36b6a0a7aee1b5c891600a
03b8ff2629abac9fc30ebec059c2e2018fcbc41646ad5f71c965ff630fbf1ffd
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "03B8FF2629ABAC9FC30EBEC059C2E2018FCBC41646AD5F71C965FF630FBF1FFD"
Last-Modified: Fri, 27 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10508
Expires: Sat, 28 Jan 2023 05:19:52 GMT
Date: Sat, 28 Jan 2023 02:24:44 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: Q7hevr+NjpHfC8oReYxiraHxgh4gwmbrDqqW7WAgIjTG+k1tDxLmN7fdC351oD16bLExqgVd/IA=
x-amz-request-id: PK7Z7JSDGF2FB6G1
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sat, 28 Jan 2023 01:49:38 GMT
age: 2106
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 02:24:44 GMT
content-type: application/json
content-length: 12
access-control-allow-credentials: true
access-control-expose-headers: content-type
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
www.agrociencias.com.ec/1/invalid.php?email=
64.15.142.101301 Moved Permanently 260 B URL HTTP/1.1 www.agrociencias.com.ec/1/invalid.php?email=
IP 64.15.142.101:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 8801faaa87709ed324c7d5805b61551e
7c98638472cb1aeaa3d9533f9950a2efabdc538e
07efa52247babb4ff239a2a941c0f7bcd566cd32f199e1d1f1e83a1a0f71aed5
Analyzer Verdict Alert openphish Intuit
fortinet Phishing
GET /1/invalid.php?email= HTTP/1.1
Host: www.agrociencias.com.ec
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Sat, 28 Jan 2023 02:24:44 GMT
Server: Apache
Location: https://www.agrociencias.com.ec/1/invalid.php?email=
Content-Length: 260
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Alert, Last-Modified, Pragma, ETag, Retry-After, Content-Type, Content-Length, Expires, Cache-Control, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sat, 28 Jan 2023 01:41:40 GMT
age: 2584
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 16a7b6a7128312e2f985d30df18c4487
6017bff79ffb525d9c7f9f32b999b74b5dc69602
663fd12209627f08e759c2ed1c76278a5da79dae1e0b46082dd1bb44775f7a16
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "663FD12209627F08E759C2ED1C76278A5DA79DAE1E0B46082DD1BB44775F7A16"
Last-Modified: Fri, 27 Jan 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14065
Expires: Sat, 28 Jan 2023 06:19:10 GMT
Date: Sat, 28 Jan 2023 02:24:45 GMT
Connection: keep-alive
www.agrociencias.com.ec/1/invalid.php?email=
64.15.142.101404 Not Found 30 kB URL HTTP/1.1 www.agrociencias.com.ec/1/invalid.php?email=
IP 64.15.142.101:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1746), with CRLF, LF line terminators
Hash 9ebdeb77d36261fd801f99ee218386b1
faf39414304bec5abe92b80d38e1d5aa585dc094
1fb79ddedaa8ae1a6bbeb2d38e56f60ef066e2f5fe380f1d95b7d4a128abfb93
Analyzer Verdict Alert openphish Intuit
fortinet Phishing
GET /1/invalid.php?email= HTTP/1.1
Host: www.agrociencias.com.ec
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/1.1 404 Not Found
Date: Sat, 28 Jan 2023 02:24:44 GMT
Server: Apache
Pragma: no-cache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Link: <https://www.agrociencias.com.ec/wp-json/>; rel="https://api.w.org/"
Set-Cookie: PHPSESSID=4d4a744a273ebc57dcaf2c71d3213afe; path=/
Vary: Accept-Encoding
Referrer-Policy: no-referrer-when-downgrade
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
push.services.mozilla.com/
44.233.165.74101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 44.233.165.74:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: Uvn+Ck/ZYOSJam+QBlTMCw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: ehfv45Fu/wBP1kVuxO9JE+et0jw=
www.agrociencias.com.ec/wp-content/plugins/easy-bootstrap-shortcodes/styles/font-awesome.min.css?ver=5.0.18
64.15.142.101200 OK 5.0 kB URL HTTP/1.1 www.agrociencias.com.ec/wp-content/plugins/easy-bootstrap-shortcodes/styles/font-awesome.min.css?ver=5.0.18
IP 64.15.142.101:0
File type ASCII text, with very long lines (21822)
Hash 5fc680fa1d13940a1a9cba6f89965f74
98a85daaf67d23ff264953e583c68315f76f5549
0f61bee70c4eca1d92acdfd8ad8285206bced50ef37af0ad2c846d1e5cbc3534
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/easy-bootstrap-shortcodes/styles/font-awesome.min.css?ver=5.0.18 HTTP/1.1
Host: www.agrociencias.com.ec
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.agrociencias.com.ec/1/invalid.php?email=
Connection: keep-alive
Cookie: PHPSESSID=4d4a744a273ebc57dcaf2c71d3213afe
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 28 Jan 2023 02:24:45 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Fri, 06 May 2016 02:30:43 GMT
ETag: "55e0-532233ed5dac0-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=31536000
Expires: Sun, 28 Jan 2024 02:24:45 GMT
Content-Encoding: gzip
Referrer-Policy: no-referrer-when-downgrade
Content-Length: 5042
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
c0.wp.com/p/woocommerce/3.5.10/assets/js/jquery-blockui/jquery.blockUI.min.js
192.0.77.37200 OK 3.8 kB URL HTTP/2 c0.wp.com/p/woocommerce/3.5.10/assets/js/jquery-blockui/jquery.blockUI.min.js
IP 192.0.77.37:0
File type ASCII text, with very long lines (9172)
Hash 5f4f102d567e7688a110574374ed0286
53460889cec169aeb70f0fca8fbcf423fbd0515c
289223105ac50e7bce6189130176e3c658ae27a45970f2ca8f44ca8aa5e1bb71
GET /p/woocommerce/3.5.10/assets/js/jquery-blockui/jquery.blockUI.min.js HTTP/1.1
Host: c0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.agrociencias.com.ec/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 02:24:45 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Tue, 16 Apr 2019 13:21:52 GMT
content-encoding: br
expires: Sun, 28 Jan 2024 02:24:45 GMT
cache-control: max-age=31536000
strict-transport-security: max-age=15552000
x-nc: HIT arn 1
timing-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2
c0.wp.com/p/jetpack/7.2.3/css/jetpack.css
192.0.77.37200 OK 12 kB URL HTTP/2 c0.wp.com/p/jetpack/7.2.3/css/jetpack.css
IP 192.0.77.37:0
File type ASCII text, with very long lines (20168)
Hash aed4b0e52dfe352a24a6a7aae063b339
542416b3ea07d81e8c78fdce006459d4705157a7
ceb006c40ef321db3e33b3e7945cadcbc4a0b8d24750cc7021c41d09aa6446b4
GET /p/jetpack/7.2.3/css/jetpack.css HTTP/1.1
Host: c0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.agrociencias.com.ec/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 02:24:45 GMT
content-type: text/css
vary: Accept-Encoding
last-modified: Tue, 26 Mar 2019 20:17:56 GMT
content-encoding: br
expires: Sun, 28 Jan 2024 02:24:45 GMT
cache-control: max-age=31536000
strict-transport-security: max-age=15552000
x-nc: HIT arn 1
timing-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2
www.agrociencias.com.ec/wp-content/plugins/woo-gutenberg-products-block/build/vendors.css?ver=1.3.0
64.15.142.101200 OK 9.4 kB URL HTTP/1.1 www.agrociencias.com.ec/wp-content/plugins/woo-gutenberg-products-block/build/vendors.css?ver=1.3.0
IP 64.15.142.101:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 3868cec92294fba450a099207d6ee7e1
385d7df56a8ae090d3e0152beb125aed5d9958ae
aadc4f67b798a68784f53dac1b2507ff90292e47c660750b1a4407e348e40041
GET /wp-content/plugins/woo-gutenberg-products-block/build/vendors.css?ver=1.3.0 HTTP/1.1
Host: www.agrociencias.com.ec
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.agrociencias.com.ec/1/invalid.php?email=
Connection: keep-alive
Cookie: PHPSESSID=4d4a744a273ebc57dcaf2c71d3213afe
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 28 Jan 2023 02:24:45 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Tue, 29 Jan 2019 15:12:08 GMT
ETag: "101ce-5809a37867b63-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=31536000
Expires: Sun, 28 Jan 2024 02:24:45 GMT
Content-Encoding: gzip
Referrer-Policy: no-referrer-when-downgrade
Content-Length: 9401
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 7da8f9a23d8c05f64f248e4e3427c76e
e2d001c2909cd9403173cbb0e288d55fbc8e4d0a
db8790004124a0eeb0676860170ad9c37250b2ba697a27dee62c99b64c67b4b8
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 28 Jan 2023 02:24:45 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.agrociencias.com.ec/wp-includes/js/wp-emoji-release.min.js?ver=5.0.18
64.15.142.101200 OK 4.3 kB URL HTTP/1.1 www.agrociencias.com.ec/wp-includes/js/wp-emoji-release.min.js?ver=5.0.18
IP 64.15.142.101:0
File type ASCII text, with very long lines (9063)
Hash bc89387b6a6f886f99511cca233b5071
77c1103c6d84263a73bff007bd635750d5b26296
baf8e3410e57e5650ad72f25eb93d82ea36ac8bd51904948e3d2f2a05faa3e78
GET /wp-includes/js/wp-emoji-release.min.js?ver=5.0.18 HTTP/1.1
Host: www.agrociencias.com.ec
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.agrociencias.com.ec/1/invalid.php?email=
Connection: keep-alive
Cookie: PHPSESSID=4d4a744a273ebc57dcaf2c71d3213afe
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 28 Jan 2023 02:24:45 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Thu, 15 Apr 2021 21:19:23 GMT
ETag: "2ea7-5c0096adab9f3-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=31536000
Expires: Sun, 28 Jan 2024 02:24:45 GMT
Content-Encoding: gzip
Referrer-Policy: no-referrer-when-downgrade
Content-Length: 4347
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: application/x-javascript
www.agrociencias.com.ec/wp-content/plugins/woo-gutenberg-products-block/build/featured-product.css?ver=1.3.0
64.15.142.101200 OK 1.5 kB URL HTTP/1.1 www.agrociencias.com.ec/wp-content/plugins/woo-gutenberg-products-block/build/featured-product.css?ver=1.3.0
IP 64.15.142.101:0
File type Unicode text, UTF-8 text, with very long lines (4962)
Hash ff2903d7da9a4d5a5dfe3541a90b1ce8
946d92a239cab83e1ddad32080629ea56db175cc
401994d53045924826538b2de31a5f4372697029e8cf4247c0ee126a158976d6
GET /wp-content/plugins/woo-gutenberg-products-block/build/featured-product.css?ver=1.3.0 HTTP/1.1
Host: www.agrociencias.com.ec
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.agrociencias.com.ec/1/invalid.php?email=
Connection: keep-alive
Cookie: PHPSESSID=4d4a744a273ebc57dcaf2c71d3213afe
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 28 Jan 2023 02:24:45 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Tue, 29 Jan 2019 15:12:08 GMT
ETag: "2477-5809a37866bc3-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=31536000
Expires: Sun, 28 Jan 2024 02:24:45 GMT
Content-Encoding: gzip
Referrer-Policy: no-referrer-when-downgrade
Content-Length: 1515
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
www.agrociencias.com.ec/wp-content/plugins/photo-gallery/css/styles.min.css?ver=1.5.15
64.15.142.101200 OK 8.9 kB URL HTTP/1.1 www.agrociencias.com.ec/wp-content/plugins/photo-gallery/css/styles.min.css?ver=1.5.15
IP 64.15.142.101:0
File type ASCII text, with very long lines (59516), with no line terminators
Hash 2780f941a93dfc55b9c97b18032219fc
9c31f2788374809e5b6e95905a3c085e97aa6a1d
b199d0b2b7e076e397efd1c30bf1d0c8874156f898a510d4b2187450f1917445
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/photo-gallery/css/styles.min.css?ver=1.5.15 HTTP/1.1
Host: www.agrociencias.com.ec
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.agrociencias.com.ec/1/invalid.php?email=
Connection: keep-alive
Cookie: PHPSESSID=4d4a744a273ebc57dcaf2c71d3213afe
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 28 Jan 2023 02:24:45 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Tue, 29 Jan 2019 15:11:30 GMT
ETag: "e87c-5809a353da0df-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=31536000
Expires: Sun, 28 Jan 2024 02:24:45 GMT
Content-Encoding: gzip
Referrer-Policy: no-referrer-when-downgrade
Content-Length: 8854
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: text/css
www.agrociencias.com.ec/wp-content/plugins/robo-gallery/includes/extensions/block/dist/blocks.style.build.css?ver=2.8.18
64.15.142.101200 OK 0 B URL HTTP/1.1 www.agrociencias.com.ec/wp-content/plugins/robo-gallery/includes/extensions/block/dist/blocks.style.build.css?ver=2.8.18
IP 64.15.142.101:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/robo-gallery/includes/extensions/block/dist/blocks.style.build.css?ver=2.8.18 HTTP/1.1
Host: www.agrociencias.com.ec
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.agrociencias.com.ec/1/invalid.php?email=
Connection: keep-alive
Cookie: PHPSESSID=4d4a744a273ebc57dcaf2c71d3213afe
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 28 Jan 2023 02:24:45 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Tue, 29 Jan 2019 15:11:42 GMT
ETag: "0-5809a35f8887b"
Accept-Ranges: bytes
Content-Length: 0
Cache-Control: max-age=31536000
Expires: Sun, 28 Jan 2024 02:24:45 GMT
Referrer-Policy: no-referrer-when-downgrade
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
c0.wp.com/c/5.0.18/wp-includes/css/dist/block-library/style.min.css
192.0.77.37200 OK 4.5 kB URL HTTP/2 c0.wp.com/c/5.0.18/wp-includes/css/dist/block-library/style.min.css
IP 192.0.77.37:0
File type ASCII text, with very long lines (25658), with no line terminators
Hash b075c478279e809c8f5d21645deb608f
e1e346f2a0989cb803728d5f980355cc270ba0b9
b921baa399070e8a96527df448d2fd29f5713d20227561e142e8f18f917f335f
GET /c/5.0.18/wp-includes/css/dist/block-library/style.min.css HTTP/1.1
Host: c0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.agrociencias.com.ec/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 02:24:45 GMT
content-type: text/css
vary: Accept-Encoding
last-modified: Wed, 04 Sep 2019 22:06:41 GMT
content-encoding: br
expires: Sun, 28 Jan 2024 02:24:45 GMT
cache-control: max-age=31536000
strict-transport-security: max-age=15552000
x-nc: HIT arn 1
timing-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2
www.agrociencias.com.ec/wp-content/plugins/photo-gallery/css/bwg-fonts/fonts.css?ver=0.0.1
64.15.142.101200 OK 890 B URL HTTP/1.1 www.agrociencias.com.ec/wp-content/plugins/photo-gallery/css/bwg-fonts/fonts.css?ver=0.0.1
IP 64.15.142.101:0
Hash 77844a96d72d03c84c5e6970c1fe631b
5f02982c93cf4bf4f70d77ea6dfe04d2efcd9b81
0b5162518ddfdb56914db022a95c1a5eca3271ae2f062cfaa939cc5b7094d63c
GET /wp-content/plugins/photo-gallery/css/bwg-fonts/fonts.css?ver=0.0.1 HTTP/1.1
Host: www.agrociencias.com.ec
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.agrociencias.com.ec/1/invalid.php?email=
Connection: keep-alive
Cookie: PHPSESSID=4d4a744a273ebc57dcaf2c71d3213afe
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 28 Jan 2023 02:24:45 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Tue, 29 Jan 2019 15:11:30 GMT
ETag: "fbc-5809a353d8587-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=31536000
Expires: Sun, 28 Jan 2024 02:24:45 GMT
Content-Encoding: gzip
Referrer-Policy: no-referrer-when-downgrade
Content-Length: 890
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
www.agrociencias.com.ec/wp-content/plugins/easy-bootstrap-shortcodes/styles/ebs_dynamic_css.php?ver=5.0.18
64.15.142.101200 OK 0 B URL HTTP/1.1 www.agrociencias.com.ec/wp-content/plugins/easy-bootstrap-shortcodes/styles/ebs_dynamic_css.php?ver=5.0.18
IP 64.15.142.101:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /wp-content/plugins/easy-bootstrap-shortcodes/styles/ebs_dynamic_css.php?ver=5.0.18 HTTP/1.1
Host: www.agrociencias.com.ec
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.agrociencias.com.ec/1/invalid.php?email=
Connection: keep-alive
Cookie: PHPSESSID=4d4a744a273ebc57dcaf2c71d3213afe
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 28 Jan 2023 02:24:45 GMT
Server: Apache
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
Vary: Accept-Encoding
Referrer-Policy: no-referrer-when-downgrade
Content-Length: 0
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css;charset=UTF-8
www.agrociencias.com.ec/wp-content/plugins/google-analytics-for-wordpress/assets/js/frontend.min.js?ver=7.10.0
64.15.142.101200 OK 2.8 kB URL HTTP/1.1 www.agrociencias.com.ec/wp-content/plugins/google-analytics-for-wordpress/assets/js/frontend.min.js?ver=7.10.0
IP 64.15.142.101:0
File type ASCII text, with very long lines (1022)
Hash 9f61f24536a54c50790e2fd82521fcf5
7b9e613bb71f465acb4e352a550b723780acf1d1
26d678cd29202450e99c8e5cb626015754ef8fccb2f88292fdccda4e7beba128
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/google-analytics-for-wordpress/assets/js/frontend.min.js?ver=7.10.0 HTTP/1.1
Host: www.agrociencias.com.ec
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.agrociencias.com.ec/1/invalid.php?email=
Connection: keep-alive
Cookie: PHPSESSID=4d4a744a273ebc57dcaf2c71d3213afe
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 28 Jan 2023 02:24:45 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Fri, 08 Nov 2019 02:46:57 GMT
ETag: "2452-596cccba48082-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=31536000
Expires: Sun, 28 Jan 2024 02:24:45 GMT
Content-Encoding: gzip
Referrer-Policy: no-referrer-when-downgrade
Content-Length: 2766
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/x-javascript
www.agrociencias.com.ec/wp-content/themes/agrociencias/css/style.css
64.15.142.101200 OK 2.7 kB URL HTTP/1.1 www.agrociencias.com.ec/wp-content/themes/agrociencias/css/style.css
IP 64.15.142.101:0
Hash 3cf1e6bc339c3d99430cf6a9b479e915
b0b589117b8113ba2b257a05d83589e85f654f43
a145ead0cf2a92173afbb938337ed0c4bb805a6d45f61067d720dea321fd2801
GET /wp-content/themes/agrociencias/css/style.css HTTP/1.1
Host: www.agrociencias.com.ec
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.agrociencias.com.ec/1/invalid.php?email=
Connection: keep-alive
Cookie: PHPSESSID=4d4a744a273ebc57dcaf2c71d3213afe
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 28 Jan 2023 02:24:45 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Wed, 24 Apr 2019 23:41:57 GMT
ETag: "2b21-5874f3f4465dc-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=31536000
Expires: Sun, 28 Jan 2024 02:24:45 GMT
Content-Encoding: gzip
Referrer-Policy: no-referrer-when-downgrade
Content-Length: 2696
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
c0.wp.com/c/5.0.18/wp-includes/css/dist/components/style.min.css
192.0.77.37200 OK 18 kB URL HTTP/2 c0.wp.com/c/5.0.18/wp-includes/css/dist/components/style.min.css
IP 192.0.77.37:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 5670ccc795ee397e7dae5764a028256a
66b2ce516b9c8d5cd7a8a74af14315f1e4096089
c8c20865088066c6ce3cad02e5211f22da19a09981246f7adc633f226b8ee9f8
GET /c/5.0.18/wp-includes/css/dist/components/style.min.css HTTP/1.1
Host: c0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.agrociencias.com.ec/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 02:24:45 GMT
content-type: text/css
vary: Accept-Encoding
last-modified: Wed, 08 Sep 2021 23:31:41 GMT
content-encoding: br
expires: Sun, 28 Jan 2024 02:24:45 GMT
cache-control: max-age=31536000
strict-transport-security: max-age=15552000
x-nc: HIT arn 1
timing-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2
www.agrociencias.com.ec/wp-content/plugins/contact-form-7/includes/js/scripts.js?ver=5.1.1
64.15.142.101200 OK 4.0 kB URL HTTP/1.1 www.agrociencias.com.ec/wp-content/plugins/contact-form-7/includes/js/scripts.js?ver=5.1.1
IP 64.15.142.101:0
Hash 179ff7e7ba061cb009f29849fc15f071
f824ebc474c27b208137b68aa51d5d0d2b3a89e9
b889c73e9da05e33847d3ab6f1f98c172204c3e4cb2e4832863695f34e2270de
GET /wp-content/plugins/contact-form-7/includes/js/scripts.js?ver=5.1.1 HTTP/1.1
Host: www.agrociencias.com.ec
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.agrociencias.com.ec/1/invalid.php?email=
Connection: keep-alive
Cookie: PHPSESSID=4d4a744a273ebc57dcaf2c71d3213afe
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 28 Jan 2023 02:24:45 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Tue, 29 Jan 2019 15:11:11 GMT
ETag: "3868-5809a34209448-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=31536000
Expires: Sun, 28 Jan 2024 02:24:45 GMT
Content-Encoding: gzip
Referrer-Policy: no-referrer-when-downgrade
Content-Length: 3993
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/x-javascript
www.agrociencias.com.ec/wp-content/plugins/bootstrap-for-contact-form-7/assets/dist/js/scripts.min.js?ver=1.4.8
64.15.142.101200 OK 1.2 kB URL HTTP/1.1 www.agrociencias.com.ec/wp-content/plugins/bootstrap-for-contact-form-7/assets/dist/js/scripts.min.js?ver=1.4.8
IP 64.15.142.101:0
File type ASCII text, with very long lines (3481)
Hash d4757467df247042c5a2e2e1a2977856
4615ebe14f7ff70bad7d6ffd7bcb15a94f8d51b6
61dbc7c3cb961ea10c366f911c283d2452643718d4b6d1b732dbdc55d95c3a63
GET /wp-content/plugins/bootstrap-for-contact-form-7/assets/dist/js/scripts.min.js?ver=1.4.8 HTTP/1.1
Host: www.agrociencias.com.ec
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.agrociencias.com.ec/1/invalid.php?email=
Connection: keep-alive
Cookie: PHPSESSID=4d4a744a273ebc57dcaf2c71d3213afe
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 28 Jan 2023 02:24:45 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Tue, 09 Oct 2018 00:06:08 GMT
ETag: "e95-577c081339728-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=31536000
Expires: Sun, 28 Jan 2024 02:24:45 GMT
Content-Encoding: gzip
Referrer-Policy: no-referrer-when-downgrade
Content-Length: 1177
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/x-javascript
www.agrociencias.com.ec/wp-content/themes/agrociencias/bootstrap/css/bootstrap.css
64.15.142.101200 OK 22 kB URL HTTP/1.1 www.agrociencias.com.ec/wp-content/themes/agrociencias/bootstrap/css/bootstrap.css
IP 64.15.142.101:0
File type ASCII text, with very long lines (540)
Hash a00ea9374782167b0f85671301252821
cef124f5a318b98705a02c22f46e64697b6e1c84
3619b15652f5c71cc75ad8367da7d24fcbaf661f5c9836e1648e383087f0bf04
GET /wp-content/themes/agrociencias/bootstrap/css/bootstrap.css HTTP/1.1
Host: www.agrociencias.com.ec
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.agrociencias.com.ec/1/invalid.php?email=
Connection: keep-alive
Cookie: PHPSESSID=4d4a744a273ebc57dcaf2c71d3213afe
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 28 Jan 2023 02:24:45 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Tue, 16 Jun 2015 21:12:50 GMT
ETag: "23fe6-518a909697880-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=31536000
Expires: Sun, 28 Jan 2024 02:24:45 GMT
Content-Encoding: gzip
Referrer-Policy: no-referrer-when-downgrade
Content-Length: 21525
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
www.agrociencias.com.ec/wp-content/plugins/photo-gallery/js/scripts.min.js?ver=1.5.15
64.15.142.101200 OK 46 kB URL HTTP/1.1 www.agrociencias.com.ec/wp-content/plugins/photo-gallery/js/scripts.min.js?ver=1.5.15
IP 64.15.142.101:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 7caa74d09d91f12fb2a05d727af44f8f
93901cfae00a139148f7d424debf00446fecb260
568ce191869fac84a07f20e511b6fb496e7071a5c83eb6d78264c856f65cc19b
GET /wp-content/plugins/photo-gallery/js/scripts.min.js?ver=1.5.15 HTTP/1.1
Host: www.agrociencias.com.ec
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.agrociencias.com.ec/1/invalid.php?email=
Connection: keep-alive
Cookie: PHPSESSID=4d4a744a273ebc57dcaf2c71d3213afe
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 28 Jan 2023 02:24:45 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Tue, 29 Jan 2019 15:11:30 GMT
ETag: "380ad-5809a353ea2ae-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=31536000
Expires: Sun, 28 Jan 2024 02:24:45 GMT
Content-Encoding: gzip
Referrer-Policy: no-referrer-when-downgrade
Content-Length: 46319
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/x-javascript
c0.wp.com/c/5.0.18/wp-includes/css/dist/editor/style.min.css
192.0.77.37200 OK 20 kB URL HTTP/2 c0.wp.com/c/5.0.18/wp-includes/css/dist/editor/style.min.css
IP 192.0.77.37:0
File type Unicode text, UTF-8 text, with very long lines (65502), with no line terminators
Hash 99cab8b049c8fda84fd218d777935c12
8f01bd1cc21c0c6becc88ffd2ad5a5bd38920a6c
1cf282489e983303251b87a167d703030f347e0cbfec55b52e1a5b6c2d012118
GET /c/5.0.18/wp-includes/css/dist/editor/style.min.css HTTP/1.1
Host: c0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.agrociencias.com.ec/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 02:24:45 GMT
content-type: text/css
vary: Accept-Encoding
last-modified: Wed, 08 Sep 2021 23:31:41 GMT
content-encoding: br
expires: Sun, 28 Jan 2024 02:24:45 GMT
cache-control: max-age=31536000
strict-transport-security: max-age=15552000
x-nc: HIT arn 1
timing-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2
www.agrociencias.com.ec/wp-content/themes/agrociencias/img/isotipo.jpg
64.15.142.101200 OK 1.5 kB URL HTTP/1.1 www.agrociencias.com.ec/wp-content/themes/agrociencias/img/isotipo.jpg
IP 64.15.142.101:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, progressive, precision 8, 27x21, components 3\012- data
Hash 20788972cfc9ae29020f23bd67d2088f
927de61e2f0eeea255be26d1b8d7098f35adcac7
09ad545ad75361489e2f45a0acf24bcf5181f3abd9491f48eee86267893308b9
GET /wp-content/themes/agrociencias/img/isotipo.jpg HTTP/1.1
Host: www.agrociencias.com.ec
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.agrociencias.com.ec/1/invalid.php?email=
Connection: keep-alive
Cookie: PHPSESSID=4d4a744a273ebc57dcaf2c71d3213afe
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 28 Jan 2023 02:24:46 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Wed, 09 Sep 2015 22:05:10 GMT
ETag: "5aa-51f57ad14f180"
Accept-Ranges: bytes
Content-Length: 1450
Cache-Control: max-age=31536000
Expires: Sun, 28 Jan 2024 02:24:46 GMT
Referrer-Policy: no-referrer-when-downgrade
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: image/jpeg
pixel.wp.com/g.gif?v=ext&j=1%3A7.2.3&blog=161075778&post=0&tz=0&srv=www.agrociencias.com.ec&host=www.agrociencias.com.ec&ref=&fcp=1978&rand=0.9419471708130053
192.0.76.3200 OK 50 B URL HTTP/2 pixel.wp.com/g.gif?v=ext&j=1%3A7.2.3&blog=161075778&post=0&tz=0&srv=www.agrociencias.com.ec&host=www.agrociencias.com.ec&ref=&fcp=1978&rand=0.9419471708130053
IP 192.0.76.3:0
File type GIF image data, version 89a, 6 x 5\012- data
Hash e4d673a55c5656f19ef81563fb10884c
1f2d8ed221d39329251ad3a6ff1edb20b7219443
f3a8992acb9ab911e0fa4ae12f4b85ef8e61008619f13ee51c7a121ff87f63b1
GET /g.gif?v=ext&j=1%3A7.2.3&blog=161075778&post=0&tz=0&srv=www.agrociencias.com.ec&host=www.agrociencias.com.ec&ref=&fcp=1978&rand=0.9419471708130053 HTTP/1.1
Host: pixel.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.agrociencias.com.ec/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 02:24:46 GMT
content-type: image/gif
content-length: 50
cache-control: no-cache
access-control-allow-origin: *
X-Firefox-Spdy: h2
c0.wp.com/p/woocommerce/3.5.10/assets/js/frontend/add-to-cart.min.js
192.0.77.37200 OK 1.3 kB URL HTTP/2 c0.wp.com/p/woocommerce/3.5.10/assets/js/frontend/add-to-cart.min.js
IP 192.0.77.37:0
File type HTML document, ASCII text, with very long lines (2652), with no line terminators
Hash 0f330723a617dc0d74d053bbe32484ae
567c81b6a36359ff6973bdfa95c80d2ba96c42c3
c54e5d79c39b231c5913cc9f3ac9e88135e7857c38bfb95a35f3e75d51305988
GET /p/woocommerce/3.5.10/assets/js/frontend/add-to-cart.min.js HTTP/1.1
Host: c0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.agrociencias.com.ec/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 02:24:45 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Tue, 16 Apr 2019 13:21:52 GMT
content-encoding: br
expires: Sun, 28 Jan 2024 02:24:45 GMT
cache-control: max-age=31536000
strict-transport-security: max-age=15552000
x-nc: HIT arn 1
timing-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2
www.agrociencias.com.ec/wp-content/themes/agrociencias/jquery/jquery-1.11.3.min.js
64.15.142.101200 OK 33 kB URL HTTP/1.1 www.agrociencias.com.ec/wp-content/themes/agrociencias/jquery/jquery-1.11.3.min.js
IP 64.15.142.101:0
File type ASCII text, with very long lines (32038)
Hash 46ed104a51da58b1f8bff2ecab0e898b
3f6098bfd567710a5a5897879b680743d32205ae
7a0cdbe39e6a65c613bdea979908ad28c97eb01c91d576f254fe46ec401c8fd1
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/agrociencias/jquery/jquery-1.11.3.min.js HTTP/1.1
Host: www.agrociencias.com.ec
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.agrociencias.com.ec/1/invalid.php?email=
Connection: keep-alive
Cookie: PHPSESSID=4d4a744a273ebc57dcaf2c71d3213afe
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 28 Jan 2023 02:24:45 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Fri, 11 Sep 2015 07:52:30 GMT
ETag: "176d5-51f73ff640b80-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=31536000
Expires: Sun, 28 Jan 2024 02:24:45 GMT
Content-Encoding: gzip
Referrer-Policy: no-referrer-when-downgrade
Content-Length: 33279
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/x-javascript
fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
142.250.74.67200 OK 45 kB URL HTTP/2 fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
IP 142.250.74.67:0
File type Web Open Font Format (Version 2), TrueType, length 44856, version 1.0\012- data
Hash 565ce506190ad3af920b40baf1794cec
ad3cba5d06100e09449a864d3b5e58403b478b3d
8778e9af2422858d7052ff9a0f3c12c08ae976bdd6e0316db144cd5579cd97db
GET /s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.agrociencias.com.ec
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 44856
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 23 Jan 2023 18:52:41 GMT
expires: Tue, 23 Jan 2024 18:52:41 GMT
cache-control: public, max-age=31536000
age: 372725
last-modified: Mon, 15 Aug 2022 18:20:18 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.agrociencias.com.ec/wp-content/themes/agrociencias/scrollmagic/ScrollMagic.js
64.15.142.101200 OK 25 kB URL HTTP/1.1 www.agrociencias.com.ec/wp-content/themes/agrociencias/scrollmagic/ScrollMagic.js
IP 64.15.142.101:0
File type Unicode text, UTF-8 text, with very long lines (330)
Hash 1f5e2b7b0b17529b063bf27dfc734606
644784f251e9429fa71924ee1ca4eca003abaa52
6b0d290fcda9be119be06150e2dcf4583705468c6157a76173a6566ef1fa43cf
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/agrociencias/scrollmagic/ScrollMagic.js HTTP/1.1
Host: www.agrociencias.com.ec
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.agrociencias.com.ec/1/invalid.php?email=
Connection: keep-alive
Cookie: PHPSESSID=4d4a744a273ebc57dcaf2c71d3213afe
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 28 Jan 2023 02:24:45 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Fri, 17 Jul 2015 06:49:52 GMT
ETag: "19705-51b0c98488400-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=31536000
Expires: Sun, 28 Jan 2024 02:24:45 GMT
Content-Encoding: gzip
Referrer-Policy: no-referrer-when-downgrade
Content-Length: 25156
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/x-javascript
www.agrociencias.com.ec/wp-content/themes/agrociencias/bootstrap/js/bootstrap.js
64.15.142.101200 OK 14 kB URL HTTP/1.1 www.agrociencias.com.ec/wp-content/themes/agrociencias/bootstrap/js/bootstrap.js
IP 64.15.142.101:0
Hash 26f4999e950b1eb56b2eed47daaf2fb8
9c48761bf800b7b9fcc52f77b3676930663d3078
3607fbc04d9ce1c2b4624a92ed4a04a8ed3e30039c410cf7899d3a609dd3e629
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/agrociencias/bootstrap/js/bootstrap.js HTTP/1.1
Host: www.agrociencias.com.ec
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.agrociencias.com.ec/1/invalid.php?email=
Connection: keep-alive
Cookie: PHPSESSID=4d4a744a273ebc57dcaf2c71d3213afe
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 28 Jan 2023 02:24:45 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Tue, 16 Jun 2015 21:12:50 GMT
ETag: "10d1a-518a909697880-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=31536000
Expires: Sun, 28 Jan 2024 02:24:45 GMT
Content-Encoding: gzip
Referrer-Policy: no-referrer-when-downgrade
Content-Length: 14122
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/x-javascript
s0.wp.com/wp-content/js/devicepx-jetpack.js?ver=202304
192.0.77.32200 OK 3.7 kB URL HTTP/2 s0.wp.com/wp-content/js/devicepx-jetpack.js?ver=202304
IP 192.0.77.32:0
File type ASCII text, with very long lines (2788)
Hash 562b629a1abeb7484e1f80148c931c31
aac6c39ea4708eca6917c0c93c6e802d83a1d5ae
28234a97e10ecef4a98ae9a7fcc10be3f84d6de865640675fbba252447286526
GET /wp-content/js/devicepx-jetpack.js?ver=202304 HTTP/1.1
Host: s0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.agrociencias.com.ec/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 02:24:45 GMT
content-type: application/javascript
vary: Accept-Encoding
etag: W/"5c066eb1-52b6"
content-encoding: br
expires: Mon, 22 Jan 2024 23:40:27 GMT
cache-control: max-age=31536000
x-ac: 4.arn _dca MISS
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
timing-allow-origin: *
x-nc: HIT arn 1
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash d859e28e84a09ede309611a2a4b6128a
9b7061e08640648fb82487a90ec8b3bd4bcbb6cd
7c606c353527946b886c868d3153ee2d1e378c8a7756e22d2b0a03c6a97ddb07
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "7C606C353527946B886C868D3153EE2D1E378C8A7756E22D2B0A03C6A97DDB07"
Last-Modified: Fri, 27 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13937
Expires: Sat, 28 Jan 2023 06:17:03 GMT
Date: Sat, 28 Jan 2023 02:24:46 GMT
Connection: keep-alive
c0.wp.com/p/woocommerce/3.5.10/assets/css/woocommerce-smallscreen.css
192.0.77.37200 OK 29 kB URL HTTP/2 c0.wp.com/p/woocommerce/3.5.10/assets/css/woocommerce-smallscreen.css
IP 192.0.77.37:0
File type ASCII text, with very long lines (6758), with no line terminators
Hash 33793ef6b97913009a6694dec66bd40d
1b3fa7366a37a180695ef8d4d9b6518d4966f542
04f48cab94ad6e01df2f65968e1f8bca2ce75a45a65d28311ae68b9db5c45a5e
GET /p/woocommerce/3.5.10/assets/css/woocommerce-smallscreen.css HTTP/1.1
Host: c0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.agrociencias.com.ec/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 02:24:45 GMT
content-type: text/css
vary: Accept-Encoding
last-modified: Tue, 16 Apr 2019 13:21:52 GMT
content-encoding: br
expires: Sun, 28 Jan 2024 02:24:45 GMT
cache-control: max-age=31536000
strict-transport-security: max-age=15552000
x-nc: HIT arn 1
timing-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2
counter7.stat.ovh/private/contadorvisitasgratis.php?c=w8qyef6s7fnjmpf2h41w3xgl6mr9bhrm
37.187.129.45200 OK 1.1 kB URL HTTP/1.1 counter7.stat.ovh/private/contadorvisitasgratis.php?c=w8qyef6s7fnjmpf2h41w3xgl6mr9bhrm
IP 37.187.129.45:0
File type PNG image data, 68 x 26, 8-bit/color RGBA, non-interlaced\012- data
Hash 8fd4ffccd24311f6d3f0fd718ce5d05d
fc188e4341893c03607dab8720cfbc60ff097d4f
276c792e37edb5ff2367a81b5bd828ef961296f3db60de47ca34beb764fd9d08
GET /private/contadorvisitasgratis.php?c=w8qyef6s7fnjmpf2h41w3xgl6mr9bhrm HTTP/1.1
Host: counter7.stat.ovh
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.agrociencias.com.ec/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sat, 28 Jan 2023 02:24:46 GMT
Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips
X-Powered-By: PHP/5.4.16
Connection: close
Transfer-Encoding: chunked
Content-Type: image/png
www.agrociencias.com.ec/wp-content/themes/agrociencias/img/logo.png
64.15.142.101200 OK 8.9 kB URL HTTP/1.1 www.agrociencias.com.ec/wp-content/themes/agrociencias/img/logo.png
IP 64.15.142.101:0
File type PNG image data, 321 x 71, 8-bit/color RGBA, non-interlaced\012- data
Hash 397fb64a6f93b5a7551d8f7ee717b22f
714193f9ae37edd52b612bd417c13f7531465538
28d8622ea351ffd6389345461061e10a9515ce30df0880f726b084fc38fac14d
GET /wp-content/themes/agrociencias/img/logo.png HTTP/1.1
Host: www.agrociencias.com.ec
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.agrociencias.com.ec/1/invalid.php?email=
Connection: keep-alive
Cookie: PHPSESSID=4d4a744a273ebc57dcaf2c71d3213afe
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 28 Jan 2023 02:24:46 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Wed, 09 Sep 2015 19:30:12 GMT
ETag: "22ae-51f5582e0b900"
Accept-Ranges: bytes
Content-Length: 8878
Cache-Control: max-age=31536000
Expires: Sun, 28 Jan 2024 02:24:46 GMT
Referrer-Policy: no-referrer-when-downgrade
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: image/png
c0.wp.com/c/5.0.18/wp-includes/css/dist/nux/style.min.css
192.0.77.37200 OK 2.4 kB URL HTTP/2 c0.wp.com/c/5.0.18/wp-includes/css/dist/nux/style.min.css
IP 192.0.77.37:0
File type ASCII text, with very long lines (2215), with no line terminators
Hash 6c8c1cd8cc8273d4152d6dcab7e3ae16
e662eb06136e310fa67c134b0876bffde3e96d6f
7aa645f5e25173ea5c30b6c85e5297e41ff340f82d907b8dc56e5bc941c5d025
GET /c/5.0.18/wp-includes/css/dist/nux/style.min.css HTTP/1.1
Host: c0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.agrociencias.com.ec/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 02:24:45 GMT
content-type: text/css
vary: Accept-Encoding
last-modified: Wed, 04 Sep 2019 22:06:41 GMT
content-encoding: br
expires: Sun, 28 Jan 2024 02:24:45 GMT
cache-control: max-age=31536000
strict-transport-security: max-age=15552000
x-nc: HIT arn 1
timing-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2
www.agrociencias.com.ec/wp-content/themes/agrociencias/gsap/TweenMax.js
64.15.142.101200 OK 91 kB URL HTTP/1.1 www.agrociencias.com.ec/wp-content/themes/agrociencias/gsap/TweenMax.js
IP 64.15.142.101:0
File type ASCII text, with very long lines (1014)
Hash b197b6250905f44806ac021d4bfd1301
047df93df18f42095e808e4cb9d6508f7a0ceacc
dd9d140dd98c4c0b79023f470f38f4169a7f977d22fa4d7db8b97084e5295166
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/agrociencias/gsap/TweenMax.js HTTP/1.1
Host: www.agrociencias.com.ec
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.agrociencias.com.ec/1/invalid.php?email=
Connection: keep-alive
Cookie: PHPSESSID=4d4a744a273ebc57dcaf2c71d3213afe
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 28 Jan 2023 02:24:45 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Thu, 28 May 2015 16:36:20 GMT
ETag: "51aa1-51726f5960900-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=31536000
Expires: Sun, 28 Jan 2024 02:24:45 GMT
Content-Encoding: gzip
Referrer-Policy: no-referrer-when-downgrade
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: application/x-javascript
www.agrociencias.com.ec/wp-content/themes/agrociencias/fontawesome/fonts/fontawesome-webfont.woff2?v=4.4.0
64.15.142.101200 OK 64 kB URL HTTP/1.1 www.agrociencias.com.ec/wp-content/themes/agrociencias/fontawesome/fonts/fontawesome-webfont.woff2?v=4.4.0
IP 64.15.142.101:0
File type Web Open Font Format (Version 2), TrueType, length 64464, version 4.262\012- data
Hash 4b5a84aaf1c9485e060c503a0ff8cadb
574ea2698c03ae9477db2ea3baf460ee32f1a7ea
3c4a1bb7ce3234407184f0d80cc4dec075e4ad616b44dcc5778e1cfb1bc24019
GET /wp-content/themes/agrociencias/fontawesome/fonts/fontawesome-webfont.woff2?v=4.4.0 HTTP/1.1
Host: www.agrociencias.com.ec
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://www.agrociencias.com.ec/wp-content/themes/agrociencias/fontawesome/css/font-awesome.min.css
Connection: keep-alive
Cookie: PHPSESSID=4d4a744a273ebc57dcaf2c71d3213afe
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 28 Jan 2023 02:24:46 GMT
Server: Apache
ETag: "fbd0-51eb5fb162680"
Accept-Ranges: bytes
Content-Length: 64464
Cache-Control: max-age=31536000
Expires: Sun, 28 Jan 2024 02:24:46 GMT
Vary: Accept-Encoding
Referrer-Policy: no-referrer-when-downgrade
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/font-woff2
c0.wp.com/c/5.0.18/wp-includes/js/jquery/jquery.form.min.js
192.0.77.37200 OK 166 kB URL HTTP/2 c0.wp.com/c/5.0.18/wp-includes/js/jquery/jquery.form.min.js
IP 192.0.77.37:0
File type ASCII text, with very long lines (16256)
Size 166 kB (165877 bytes)
Hash 7fec3cb19af649a23714da8be2c5165b
a839c5730084d276baf04950c8e2de75178d2c67
8046e7f0ae19bcb47880ed0bbc28ef0fbf112c05153d2383743d912ba2a18b33
GET /c/5.0.18/wp-includes/js/jquery/jquery.form.min.js HTTP/1.1
Host: c0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.agrociencias.com.ec/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 02:24:45 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Sat, 05 Aug 2017 13:00:47 GMT
content-encoding: br
expires: Sun, 28 Jan 2024 02:24:45 GMT
cache-control: max-age=31536000
strict-transport-security: max-age=15552000
x-nc: HIT arn 1
timing-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 36147c185553851c38547798733a9fb2
912ec40237eae2ed558d09103c86c41f87896eca
a4fd9090983c75e1b7faf5ea9439532f51d747faf1853138ac13bdaafa490246
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 28 Jan 2023 02:24:46 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google-analytics.com/analytics.js
142.250.74.46200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 142.250.74.46:0
File type ASCII text, with very long lines (1490)
Hash ca7fbbfd120e3e329633044190bbf134
d17f81e03dd827554ddd207ea081fb46b3415445
847004cefb32f85a9cc16b0b1eb77529ff5753680c145bfcb23f651d214737db
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.agrociencias.com.ec/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20085
date: Sat, 28 Jan 2023 01:45:20 GMT
expires: Sat, 28 Jan 2023 03:45:20 GMT
cache-control: public, max-age=7200
age: 2366
last-modified: Tue, 10 Jan 2023 21:29:14 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.google-analytics.com/collect?v=1&_v=j99&a=688346261&t=pageview&_s=1&dl=https%3A%2F%2Fwww.agrociencias.com.ec%2F1%2Finvalid.php%3Femail%3D&dp=%2F404.html%3Fpage%3D%2F1%2Finvalid.php%3Femail%3D%26from%3D&ul=en-us&de=UTF-8&dt=P%C3%A1gina%20no%20encontrada%20-%20Agrociencias%20Ecuador&sd=24-bit&sr=1280x1024&vp=1280x939&je=0&_u=YGBAgUABCAAAAAAAI~&jid=1895371443&gjid=38636585&cid=467790420.1674872687&tid=UA-138286140-1&_gid=65463048.1674872687&z=749207010
142.250.74.46200 OK 35 B URL HTTP/2 www.google-analytics.com/collect?v=1&_v=j99&a=688346261&t=pageview&_s=1&dl=https%3A%2F%2Fwww.agrociencias.com.ec%2F1%2Finvalid.php%3Femail%3D&dp=%2F404.html%3Fpage%3D%2F1%2Finvalid.php%3Femail%3D%26from%3D&ul=en-us&de=UTF-8&dt=P%C3%A1gina%20no%20encontrada%20-%20Agrociencias%20Ecuador&sd=24-bit&sr=1280x1024&vp=1280x939&je=0&_u=YGBAgUABCAAAAAAAI~&jid=1895371443&gjid=38636585&cid=467790420.1674872687&tid=UA-138286140-1&_gid=65463048.1674872687&z=749207010
IP 142.250.74.46:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 28d6814f309ea289f847c69cf91194c6
0f4e929dd5bb2564f7ab9c76338e04e292a42ace
8337212354871836e6763a41e615916c89bac5b3f1f0adf60ba43c7c806e1015
GET /collect?v=1&_v=j99&a=688346261&t=pageview&_s=1&dl=https%3A%2F%2Fwww.agrociencias.com.ec%2F1%2Finvalid.php%3Femail%3D&dp=%2F404.html%3Fpage%3D%2F1%2Finvalid.php%3Femail%3D%26from%3D&ul=en-us&de=UTF-8&dt=P%C3%A1gina%20no%20encontrada%20-%20Agrociencias%20Ecuador&sd=24-bit&sr=1280x1024&vp=1280x939&je=0&_u=YGBAgUABCAAAAAAAI~&jid=1895371443&gjid=38636585&cid=467790420.1674872687&tid=UA-138286140-1&_gid=65463048.1674872687&z=749207010 HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.agrociencias.com.ec/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
pragma: no-cache
x-content-type-options: nosniff
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 35
date: Fri, 27 Jan 2023 10:06:18 GMT
expires: Mon, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
content-type: image/gif
age: 58708
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 36147c185553851c38547798733a9fb2
912ec40237eae2ed558d09103c86c41f87896eca
a4fd9090983c75e1b7faf5ea9439532f51d747faf1853138ac13bdaafa490246
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 28 Jan 2023 02:24:46 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.agrociencias.com.ec/wp-content/themes/agrociencias/favicon.ico
64.15.142.101200 OK 1.3 kB URL HTTP/1.1 www.agrociencias.com.ec/wp-content/themes/agrociencias/favicon.ico
IP 64.15.142.101:0
File type MS Windows icon resource - 2 icons, 16x16, 24 bits/pixel, 32x32, 24 bits/pixel\012- data
Hash a56a5e108984ddb0548192f8866a0298
95d8b0532880d863801bf019927e48fd0d223d06
7a7812f124abc9a6ac21c88e4e98c463bfe853f658fdfbc96bb0e502f9d52858
GET /wp-content/themes/agrociencias/favicon.ico HTTP/1.1
Host: www.agrociencias.com.ec
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.agrociencias.com.ec/1/invalid.php?email=
Connection: keep-alive
Cookie: PHPSESSID=4d4a744a273ebc57dcaf2c71d3213afe; tk_or=%22%22; tk_r3d=%22%22; tk_lr=%22%22
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 28 Jan 2023 02:24:46 GMT
Server: Apache
Vary: Accept-Encoding
ETag: "1036-532eab04b1540-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=31536000
Expires: Sun, 28 Jan 2024 02:24:46 GMT
Content-Encoding: gzip
Referrer-Policy: no-referrer-when-downgrade
Content-Length: 1333
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: image/x-icon
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash e7ebbff54ced2c07469b302fc6d44078
f59983c844c398bd37705051ca685b2d07d85726
04eb3bd7658c1112bfc1d0098e8d7f5fafdb10459e3290c0d4e6a17e65a5494f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 28 Jan 2023 02:24:46 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-138286140-1&cid=467790420.1674872687&jid=1895371443&gjid=38636585&_gid=65463048.1674872687&_u=YGBAgUABCAAAAEAAI~&z=944112524
173.194.221.156200 OK 4 B URL HTTP/2 stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-138286140-1&cid=467790420.1674872687&jid=1895371443&gjid=38636585&_gid=65463048.1674872687&_u=YGBAgUABCAAAAEAAI~&z=944112524
IP 173.194.221.156:0
File type ASCII text, with no line terminators
Hash 48c0473b7821185d937e685216e2168b
3743e47f8a429a5e87b86cb582d78940733d9d2e
570c4d4674fd20602189c548c145ba1f8ac34bc2e4599a71471969028aa1e25a
POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-138286140-1&cid=467790420.1674872687&jid=1895371443&gjid=38636585&_gid=65463048.1674872687&_u=YGBAgUABCAAAAEAAI~&z=944112524 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://www.agrociencias.com.ec
Connection: keep-alive
Referer: https://www.agrociencias.com.ec/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://www.agrociencias.com.ec
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Sat, 28 Jan 2023 02:24:46 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash e7ebbff54ced2c07469b302fc6d44078
f59983c844c398bd37705051ca685b2d07d85726
04eb3bd7658c1112bfc1d0098e8d7f5fafdb10459e3290c0d4e6a17e65a5494f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 28 Jan 2023 02:24:46 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 622311873d3819b9911301b09bc2d43c
9f08d648e40479aa12da033da15b80a15017c739
6138674cec17da8b7bb02bf0686bf3e7aefa2bce6a5f844ebd80e10b665818b8
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 28 Jan 2023 02:24:46 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash c083fb68af37d6c700a3fa4eb04a29cb
9b3ff3c9c0bd7dc448eb18e74ddc029f7c18dc9a
3ea0d4252ad90ee13a6b23ebd1144639f7bb73e4d96ef2590b21a155809e65e2
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 28 Jan 2023 02:24:46 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-138286140-1&cid=467790420.1674872687&jid=1895371443&_u=YGBAgUABCAAAAEAAI~&z=823894509
142.250.74.131200 OK 42 B URL HTTP/2 www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-138286140-1&cid=467790420.1674872687&jid=1895371443&_u=YGBAgUABCAAAAEAAI~&z=823894509
IP 142.250.74.131:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-138286140-1&cid=467790420.1674872687&jid=1895371443&_u=YGBAgUABCAAAAEAAI~&z=823894509 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.agrociencias.com.ec/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sat, 28 Jan 2023 02:24:46 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
secure.gravatar.com/js/gprofiles.js?ver=2023Janaa
192.0.73.2200 OK 7.5 kB URL HTTP/2 secure.gravatar.com/js/gprofiles.js?ver=2023Janaa
IP 192.0.73.2:0
File type ASCII text, with very long lines (24043), with no line terminators
Hash d4a22bd97ddcbd334a8869d799b1fdad
cf6d4b090f9bbd16e51b098d50ce7b7bda216876
988b6f75b4b8b86a23c7ce85511c7a3f9fc2e43da3342284fcc107d4ec58eae4
GET /js/gprofiles.js?ver=2023Janaa HTTP/1.1
Host: secure.gravatar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.agrociencias.com.ec/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 02:24:45 GMT
content-type: application/javascript
last-modified: Thu, 15 Sep 2022 11:48:47 GMT
etag: W/"6323111f-5deb"
content-encoding: br
expires: Sat, 04 Feb 2023 02:24:45 GMT
cache-control: max-age=604800
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash f2a0c2c0f25bdd19baf87cbb3a87dcdb
bc78ca6206ee8cc1cc05ab7778df71c7e6d1182a
c57f26c0c2e439dc2f69181e1b2f6ae371bff9d299af739e0047eabc8bfb5a69
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C57F26C0C2E439DC2F69181E1B2F6AE371BFF9D299AF739E0047EABC8BFB5A69"
Last-Modified: Fri, 27 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5694
Expires: Sat, 28 Jan 2023 03:59:40 GMT
Date: Sat, 28 Jan 2023 02:24:46 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash f2a0c2c0f25bdd19baf87cbb3a87dcdb
bc78ca6206ee8cc1cc05ab7778df71c7e6d1182a
c57f26c0c2e439dc2f69181e1b2f6ae371bff9d299af739e0047eabc8bfb5a69
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C57F26C0C2E439DC2F69181E1B2F6AE371BFF9D299AF739E0047EABC8BFB5A69"
Last-Modified: Fri, 27 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5694
Expires: Sat, 28 Jan 2023 03:59:40 GMT
Date: Sat, 28 Jan 2023 02:24:46 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash f2a0c2c0f25bdd19baf87cbb3a87dcdb
bc78ca6206ee8cc1cc05ab7778df71c7e6d1182a
c57f26c0c2e439dc2f69181e1b2f6ae371bff9d299af739e0047eabc8bfb5a69
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C57F26C0C2E439DC2F69181E1B2F6AE371BFF9D299AF739E0047EABC8BFB5A69"
Last-Modified: Fri, 27 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5694
Expires: Sat, 28 Jan 2023 03:59:40 GMT
Date: Sat, 28 Jan 2023 02:24:46 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash f2a0c2c0f25bdd19baf87cbb3a87dcdb
bc78ca6206ee8cc1cc05ab7778df71c7e6d1182a
c57f26c0c2e439dc2f69181e1b2f6ae371bff9d299af739e0047eabc8bfb5a69
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C57F26C0C2E439DC2F69181E1B2F6AE371BFF9D299AF739E0047EABC8BFB5A69"
Last-Modified: Fri, 27 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5694
Expires: Sat, 28 Jan 2023 03:59:40 GMT
Date: Sat, 28 Jan 2023 02:24:46 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash f2a0c2c0f25bdd19baf87cbb3a87dcdb
bc78ca6206ee8cc1cc05ab7778df71c7e6d1182a
c57f26c0c2e439dc2f69181e1b2f6ae371bff9d299af739e0047eabc8bfb5a69
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C57F26C0C2E439DC2F69181E1B2F6AE371BFF9D299AF739E0047EABC8BFB5A69"
Last-Modified: Fri, 27 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5694
Expires: Sat, 28 Jan 2023 03:59:40 GMT
Date: Sat, 28 Jan 2023 02:24:46 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdfb887e5-87fa-4855-b0ee-712d39779fa0.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdfb887e5-87fa-4855-b0ee-712d39779fa0.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b7a0759c043594fbe85af422b59b8227
a05cfaad16078f42218dae233da38f6f5dff8487
e898d6ef1b3998fb9322a8fc190069ec5f7b3582bfe8397a2367497d84a27549
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdfb887e5-87fa-4855-b0ee-712d39779fa0.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11568
x-amzn-requestid: 79b70f1f-a157-4dd4-8743-825714195b3c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: e9T3UGA3oAMFSlQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c86695-36e60aba09c152c73b8aefcb;Sampled=0
x-amzn-remapped-date: Wed, 18 Jan 2023 21:37:25 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: zt4bgV2C6Wb_Ufa5mZ7-UDTfCvhXJggPJw9668v5DEmyBnWZ-aNrCg==
via: 1.1 49b94a8674d6e86a841d6523f7dbaf14.cloudfront.net (CloudFront), 1.1 943c6a4d4ee43b18ee91634536f53eae.cloudfront.net (CloudFront), 1.1 google
date: Fri, 27 Jan 2023 23:03:41 GMT
age: 12065
etag: "a05cfaad16078f42218dae233da38f6f5dff8487"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1ed7c466-ac98-4e05-89cf-f0abf56e8d98.jpeg
34.120.237.76200 OK 5.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1ed7c466-ac98-4e05-89cf-f0abf56e8d98.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash c982569d070f24dba1259603091c22e3
0f93acb5bee53670cc4ef486922f7333d96a2f4e
9a5a2d8a181a763ee6f60c27b396a0e3d7b1527e5177b2aff8d511db250753ed
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1ed7c466-ac98-4e05-89cf-f0abf56e8d98.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4975
x-amzn-requestid: 633350b7-4686-40d5-8c9d-3c097f8e2d34
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fa-EBGuaoAMFbSw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d443b3-4201212c1a0eb2a65d3f494c;Sampled=0
x-amzn-remapped-date: Fri, 27 Jan 2023 21:35:47 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: M4VR-I89SGD0-FLzHhZ88PJJJmdWTEi0UrBnAmCBCQAdjRsssqnSzw==
via: 1.1 010c0731b9775a983eceaec0f5fa6a2e.cloudfront.net (CloudFront), 1.1 e4d3d5aafc7d7d582423c073065ab562.cloudfront.net (CloudFront), 1.1 google
date: Fri, 27 Jan 2023 21:49:06 GMT
age: 16540
etag: "0f93acb5bee53670cc4ef486922f7333d96a2f4e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F22cc3f55-9811-4ec2-a57e-a3e71a3f0554.jpeg
34.120.237.76200 OK 7.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F22cc3f55-9811-4ec2-a57e-a3e71a3f0554.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ea24bcba583bd8bd139559448a343e68
b9d37c2b14f890d41983a59f352e8f7caa9c94bb
e5ef5975eec964ae1684deb424f00833f2d217bdc7e6c385320ed3adeb6bc1c4
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F22cc3f55-9811-4ec2-a57e-a3e71a3f0554.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7585
x-amzn-requestid: bfb52acb-e0d7-482d-8be9-be5db1c16cac
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fa_vkE5roAMF0Hw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d44663-2d38d314177e0ac40d4c8240;Sampled=0
x-amzn-remapped-date: Fri, 27 Jan 2023 21:47:15 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: K9YWM9eaEc1DQ6wtEEuADnG1U-ahRBXDaiHIAm20dkWMOxPWBlJidw==
via: 1.1 c34da255183aa208dd1c722ff211f9b2.cloudfront.net (CloudFront), 1.1 7022a5bbf9872d4a09d63e6cdb457dfe.cloudfront.net (CloudFront), 1.1 google
date: Fri, 27 Jan 2023 22:46:13 GMT
age: 13113
etag: "b9d37c2b14f890d41983a59f352e8f7caa9c94bb"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5f0097a6-af00-4a1c-8faa-f9516e27b31a.jpeg
34.120.237.76200 OK 4.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5f0097a6-af00-4a1c-8faa-f9516e27b31a.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4205d8106659e00fff1cbe9262918b8c
ab4f6528594a1725934727dc7d834c028a79c609
31f1a28602a194bd0856495d4d81d5c72cd7ff4e5bad6bdd1a31ec3041f4a2cc
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5f0097a6-af00-4a1c-8faa-f9516e27b31a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4475
x-amzn-requestid: b7b272d6-3089-4f33-89b5-5cb388640e10
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fa_e6HsaIAMF5Lg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d445f8-1789f7f4264270916da323db;Sampled=0
x-amzn-remapped-date: Fri, 27 Jan 2023 21:45:28 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: hAzO-IMqc1CFpiBAlRl8seIYL9UonyrBMATibovyFq5kEuaweY_VyA==
via: 1.1 8f22423015641505b8c857a37450d6c0.cloudfront.net (CloudFront), 1.1 112d82578d402a38d8d02e8b857617e0.cloudfront.net (CloudFront), 1.1 google
date: Fri, 27 Jan 2023 21:56:46 GMT
age: 16080
etag: "ab4f6528594a1725934727dc7d834c028a79c609"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F238effff-cb43-479f-8853-06086fff1bd5.jpeg
34.120.237.76200 OK 9.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F238effff-cb43-479f-8853-06086fff1bd5.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash f185f0b4f90d06dbb397b44ed9c73dbe
a48e2c369a048447e0e25e4791eb603859391c1c
b466060fc132cc8d23fcb83001206606e2d5502118c65e9f55795b5adbff2fa6
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F238effff-cb43-479f-8853-06086fff1bd5.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9364
x-amzn-requestid: e556be7b-567a-4c9a-931e-ff6fee42d3a7
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fa_T8GbFoAMFySg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d445b2-6f4476e9388c77a057153277;Sampled=0
x-amzn-remapped-date: Fri, 27 Jan 2023 21:44:18 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: LPkLrx7l9Qf_GKdtJq_77RUkvgnKZlCaDN34xsB5bEO8c9VQEJPAew==
via: 1.1 c34da255183aa208dd1c722ff211f9b2.cloudfront.net (CloudFront), 1.1 6172bb1a5d00a3b06ae3700570ebe116.cloudfront.net (CloudFront), 1.1 google
date: Fri, 27 Jan 2023 21:56:38 GMT
etag: "a48e2c369a048447e0e25e4791eb603859391c1c"
content-type: image/jpeg
age: 16088
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2d9747a7-0b4d-40bd-8d53-7702f8df2966.jpeg
34.120.237.76200 OK 5.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2d9747a7-0b4d-40bd-8d53-7702f8df2966.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 25fd26625a6c5339389faf4f6aa8fc6a
05aed76d3966ea8a02d4bbbeff7b41c8a5aac907
9a29ad65cb7a8632a2c454a4caeb43a10c5152ccf3dbab22d584276bdeeb0dbb
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2d9747a7-0b4d-40bd-8d53-7702f8df2966.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5746
x-amzn-requestid: 8ab00078-cdf9-465a-a493-64a488c9e634
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fa-CwEIJIAMFutA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d443ab-3f9b5f031812e32f6625f1e6;Sampled=0
x-amzn-remapped-date: Fri, 27 Jan 2023 21:35:39 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: jUVP5rlieH6mUh_fgVz4D636AIMAo2JXJqBgzGSI_CyY2-8Pza4IKw==
via: 1.1 4f87745990545c1ac0195c157e1668f8.cloudfront.net (CloudFront), 1.1 324a68a6c25ee50d774953f3e15a611c.cloudfront.net (CloudFront), 1.1 google
date: Fri, 27 Jan 2023 21:48:58 GMT
age: 16548
etag: "05aed76d3966ea8a02d4bbbeff7b41c8a5aac907"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash c083fb68af37d6c700a3fa4eb04a29cb
9b3ff3c9c0bd7dc448eb18e74ddc029f7c18dc9a
3ea0d4252ad90ee13a6b23ebd1144639f7bb73e4d96ef2590b21a155809e65e2
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 28 Jan 2023 02:24:46 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash ab04da9bc46246cc0001464e7f6b5e19
01ce4f7004aec7a24d4545a1e742ab6a1e639b48
22e519a39cb2e7e5f6da23d35f4498aa7a2d00e06613fd3bbf8de8a62ed2d354
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 28 Jan 2023 02:24:46 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
c0.wp.com/c/5.0.18/wp-includes/js/wp-embed.min.js
192.0.77.37200 OK 0 B URL HTTP/2 c0.wp.com/c/5.0.18/wp-includes/js/wp-embed.min.js
IP 192.0.77.37:0
GET /c/5.0.18/wp-includes/js/wp-embed.min.js HTTP/1.1
Host: c0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.agrociencias.com.ec/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 02:24:45 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Fri, 05 Feb 2021 04:05:04 GMT
content-encoding: br
expires: Sun, 28 Jan 2024 02:24:45 GMT
cache-control: max-age=31536000
strict-transport-security: max-age=15552000
x-nc: HIT arn 1
timing-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2
stats.wp.com/s-202304.js
192.0.76.3200 OK 0 B IP 192.0.76.3:0
GET /s-202304.js HTTP/1.1
Host: stats.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.agrociencias.com.ec/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 02:24:45 GMT
content-type: application/javascript
vary: Accept-Encoding
etag: W/"62f6b688-2494"
content-encoding: br
expires: Mon, 22 Jan 2024 15:38:27 GMT
cache-control: max-age=31536000
x-nc: HIT arn
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Open+Sans:400,700
142.250.74.106200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Open+Sans:400,700
IP 142.250.74.106:0
GET /css?family=Open+Sans:400,700 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.agrociencias.com.ec/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sat, 28 Jan 2023 02:24:45 GMT
date: Sat, 28 Jan 2023 02:24:45 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
c0.wp.com/c/5.0.18/wp-includes/js/jquery/jquery-migrate.min.js
192.0.77.37200 OK 0 B URL HTTP/2 c0.wp.com/c/5.0.18/wp-includes/js/jquery/jquery-migrate.min.js
IP 192.0.77.37:0
GET /c/5.0.18/wp-includes/js/jquery/jquery-migrate.min.js HTTP/1.1
Host: c0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.agrociencias.com.ec/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 02:24:45 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Fri, 20 May 2016 06:11:28 GMT
content-encoding: br
expires: Sun, 28 Jan 2024 02:24:45 GMT
cache-control: max-age=31536000
strict-transport-security: max-age=15552000
x-nc: HIT arn 1
timing-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2
c0.wp.com/p/woocommerce/3.5.10/assets/css/woocommerce.css
192.0.77.37200 OK 0 B URL HTTP/2 c0.wp.com/p/woocommerce/3.5.10/assets/css/woocommerce.css
IP 192.0.77.37:0
GET /p/woocommerce/3.5.10/assets/css/woocommerce.css HTTP/1.1
Host: c0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.agrociencias.com.ec/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 02:24:45 GMT
content-type: text/css
vary: Accept-Encoding
last-modified: Tue, 16 Apr 2019 13:21:52 GMT
content-encoding: br
expires: Sun, 28 Jan 2024 02:24:45 GMT
cache-control: max-age=31536000
strict-transport-security: max-age=15552000
x-nc: HIT arn 1
timing-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2
c0.wp.com/c/5.0.18/wp-includes/js/jquery/jquery.js
192.0.77.37200 OK 0 B URL HTTP/2 c0.wp.com/c/5.0.18/wp-includes/js/jquery/jquery.js
IP 192.0.77.37:0
GET /c/5.0.18/wp-includes/js/jquery/jquery.js HTTP/1.1
Host: c0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.agrociencias.com.ec/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 02:24:45 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Wed, 04 Sep 2019 21:44:01 GMT
content-encoding: br
expires: Sun, 28 Jan 2024 02:24:45 GMT
cache-control: max-age=31536000
strict-transport-security: max-age=15552000
x-nc: HIT arn 1
timing-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2
c0.wp.com/p/woocommerce/3.5.10/assets/js/js-cookie/js.cookie.min.js
192.0.77.37200 OK 0 B URL HTTP/2 c0.wp.com/p/woocommerce/3.5.10/assets/js/js-cookie/js.cookie.min.js
IP 192.0.77.37:0
GET /p/woocommerce/3.5.10/assets/js/js-cookie/js.cookie.min.js HTTP/1.1
Host: c0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.agrociencias.com.ec/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 02:24:45 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Tue, 16 Apr 2019 13:21:52 GMT
content-encoding: br
expires: Sun, 28 Jan 2024 02:24:45 GMT
cache-control: max-age=31536000
strict-transport-security: max-age=15552000
x-nc: HIT arn 1
timing-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2
c0.wp.com/p/jetpack/7.2.3/modules/wpgroho.js
192.0.77.37200 OK 0 B URL HTTP/2 c0.wp.com/p/jetpack/7.2.3/modules/wpgroho.js
IP 192.0.77.37:0
GET /p/jetpack/7.2.3/modules/wpgroho.js HTTP/1.1
Host: c0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.agrociencias.com.ec/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 02:24:45 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Thu, 04 Apr 2019 19:37:13 GMT
content-encoding: br
expires: Sun, 28 Jan 2024 02:24:45 GMT
cache-control: max-age=31536000
strict-transport-security: max-age=15552000
x-nc: HIT arn 1
timing-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2
c0.wp.com/p/woocommerce/3.5.10/assets/css/woocommerce-layout.css
192.0.77.37200 OK 0 B URL HTTP/2 c0.wp.com/p/woocommerce/3.5.10/assets/css/woocommerce-layout.css
IP 192.0.77.37:0
GET /p/woocommerce/3.5.10/assets/css/woocommerce-layout.css HTTP/1.1
Host: c0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.agrociencias.com.ec/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 02:24:45 GMT
content-type: text/css
vary: Accept-Encoding
last-modified: Tue, 16 Apr 2019 13:21:52 GMT
content-encoding: br
expires: Sun, 28 Jan 2024 02:24:45 GMT
cache-control: max-age=31536000
strict-transport-security: max-age=15552000
x-nc: HIT arn 1
timing-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2
c0.wp.com/p/woocommerce/3.5.10/assets/js/frontend/woocommerce.min.js
192.0.77.37200 OK 0 B URL HTTP/2 c0.wp.com/p/woocommerce/3.5.10/assets/js/frontend/woocommerce.min.js
IP 192.0.77.37:0
GET /p/woocommerce/3.5.10/assets/js/frontend/woocommerce.min.js HTTP/1.1
Host: c0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.agrociencias.com.ec/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 02:24:45 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Tue, 16 Apr 2019 13:21:52 GMT
content-encoding: br
expires: Sun, 28 Jan 2024 02:24:45 GMT
cache-control: max-age=31536000
strict-transport-security: max-age=15552000
x-nc: HIT arn 1
timing-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2
stats.wp.com/e-202304.js
192.0.76.3200 OK 0 B IP 192.0.76.3:0
GET /e-202304.js HTTP/1.1
Host: stats.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.agrociencias.com.ec/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 02:24:45 GMT
content-type: application/javascript
vary: Accept-Encoding
etag: W/"6197c5cf-3508"
content-encoding: br
expires: Mon, 11 Dec 2023 21:09:59 GMT
cache-control: max-age=31536000
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
x-nc: HIT arn
X-Firefox-Spdy: h2
c0.wp.com/p/woocommerce/3.5.10/assets/js/frontend/cart-fragments.min.js
192.0.77.37200 OK 0 B URL HTTP/2 c0.wp.com/p/woocommerce/3.5.10/assets/js/frontend/cart-fragments.min.js
IP 192.0.77.37:0
GET /p/woocommerce/3.5.10/assets/js/frontend/cart-fragments.min.js HTTP/1.1
Host: c0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.agrociencias.com.ec/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 02:24:45 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Tue, 16 Apr 2019 13:21:52 GMT
content-encoding: br
expires: Sun, 28 Jan 2024 02:24:45 GMT
cache-control: max-age=31536000
strict-transport-security: max-age=15552000
x-nc: HIT arn 1
timing-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Noto+Serif%3A400%2C400i%2C700%2C700i&ver=5.0.18
142.250.74.106200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Noto+Serif%3A400%2C400i%2C700%2C700i&ver=5.0.18
IP 142.250.74.106:0
GET /css?family=Noto+Serif%3A400%2C400i%2C700%2C700i&ver=5.0.18 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.agrociencias.com.ec/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sat, 28 Jan 2023 02:24:45 GMT
date: Sat, 28 Jan 2023 02:24:45 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2