passiefinkomen.nu/personas/209.236.88.2422709/verificando/info/index.html
200 OK 14 kB URL HTTP/1.1 passiefinkomen.nu/personas/209.236.88.2422709/verificando/info/index.html
IP
ASN #206281 Stichting DIGI NL
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ISO-8859 text, with very long lines (15236)
Hash c5a2e61291da99bfb82c53d78c5b0305
6f064de4bb133054354d3234a241ae7c326251e7
d097df0b40d60c15afdc564d90b625397d27ad2c08cfedc521db2eded8c83a8b
GET /personas/209.236.88.2422709/verificando/info/index.html HTTP/1.1
Host: passiefinkomen.nu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
date: Wed, 21 Dec 2022 18:49:01 GMT
server: Apache/2
upgrade: h2,h2c
connection: Upgrade
last-modified: Tue, 20 Dec 2022 23:41:13 GMT
etag: "9b80-5f04af8ab236a-gzip"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 13650
content-type: text/html
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash b8fbcd7ca1a893d05677318a8a198e7a
0851654c21f6e3741887e7deab8098c1dc56f33c
edbade5913ace2fcbb932922e9af69acb2e8759474a2eeaec216307247fea361
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EDBADE5913ACE2FCBB932922E9AF69ACB2E8759474A2EEAEC216307247FEA361"
Last-Modified: Tue, 20 Dec 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13201
Expires: Wed, 21 Dec 2022 22:29:03 GMT
Date: Wed, 21 Dec 2022 18:49:02 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 048cda18c6dbe7c4e4b106f5e1104b0a
1bd6f3367ccf446263b00ad8c1ece15a4164730b
66a680d9b8e454db94e14d2c4a466891e538b2d83ccee0dc65be62163992b4e0
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "66A680D9B8E454DB94E14D2C4A466891E538B2D83CCEE0DC65BE62163992B4E0"
Last-Modified: Tue, 20 Dec 2022 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3742
Expires: Wed, 21 Dec 2022 19:51:24 GMT
Date: Wed, 21 Dec 2022 18:49:02 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash ff250d3ef3fa45322bf05039a0122a9f
b3e7a2c383bce1bab807dbe1a03c375258b51f1d
d07f109a96e0ae6ec7b1d46ce8761b3f06fe845769ce65d69e053dd40aa561ba
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Content-Length, Retry-After, Content-Type, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Wed, 21 Dec 2022 18:45:56 GMT
content-type: application/json
age: 186
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 32167242c3bbe7e45a2a865279df94a6
d03436f418ff77d50a553daa892c05e0725ba908
d5578d537296da18f3f349a98465e9fe930dca60a8ed62c183e9c9f6eb53f493
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D5578D537296DA18F3F349A98465E9FE930DCA60A8ED62C183E9C9F6EB53F493"
Last-Modified: Wed, 21 Dec 2022 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=19769
Expires: Thu, 22 Dec 2022 00:18:31 GMT
Date: Wed, 21 Dec 2022 18:49:02 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-08-14-47-57.chain
200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-08-14-47-57.chain
IP
File type PEM certificate\012- , ASCII text
Hash b1fcd419a4245617397846e8d17233f6
2a037ce244587640b27ead9a0ec2af4f862d91b2
e059b6d834c06e58494c43fb2ff42acbc27c1a1d8f7f30e2f32ca0e167599e2f
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-08-14-47-57.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: LrGE7pEc1ATFmEzOR5KmvWG9f07iZVxOLZauGeuggWZrVoxfqAhNNXoyya2FLGIITY6thSySXq4=
x-amz-request-id: H89K0PGZC5X5G3J2
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Wed, 21 Dec 2022 17:53:18 GMT
age: 3344
last-modified: Tue, 20 Dec 2022 14:47:58 GMT
etag: "b1fcd419a4245617397846e8d17233f6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 21 Dec 2022 18:49:02 GMT
content-type: application/json
content-length: 12
access-control-allow-credentials: true
access-control-expose-headers: content-type
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
passiefinkomen.nu/personas/209.236.88.2422709/verificando/info/Index_files/017cf77fef
200 OK 57 B URL HTTP/1.1 passiefinkomen.nu/personas/209.236.88.2422709/verificando/info/Index_files/017cf77fef
IP
ASN #206281 Stichting DIGI NL
File type ASCII text, with no line terminators
Hash 06dd80aeb628c60dc680bc7a4bee6651
8c86eb7ddff5e1e5d527bd7a41c9d3f6767e23e0
5e864c2e3f674c60970513411eaeeeafd2d615d842e65ec01d09ccfcb4a7b38d
Analyzer Verdict Alert urlquery phishing Phishing - Bancolombia
GET /personas/209.236.88.2422709/verificando/info/Index_files/017cf77fef HTTP/1.1
Host: passiefinkomen.nu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://passiefinkomen.nu/personas/209.236.88.2422709/verificando/info/index.html
HTTP/1.1 200 OK
date: Wed, 21 Dec 2022 18:49:02 GMT
server: Apache/2
upgrade: h2,h2c
connection: Upgrade
last-modified: Tue, 20 Dec 2022 23:41:13 GMT
etag: "39-5f04af8ab3ec2"
accept-ranges: bytes
content-length: 57
vary: User-Agent
passiefinkomen.nu/personas/209.236.88.2422709/verificando/info/Index_files/blockKeys.js
200 OK 117 B URL HTTP/1.1 passiefinkomen.nu/personas/209.236.88.2422709/verificando/info/Index_files/blockKeys.js
IP
ASN #206281 Stichting DIGI NL
Hash 5e8511c97144f62125dff163f5602826
39de3e346fcbc0b8325a159604ddc50cae14dac6
078a085283f978267eeabf828914c6ad036159509bf45e4d024cebc770e62694
Analyzer Verdict Alert urlquery phishing Phishing - Bancolombia
GET /personas/209.236.88.2422709/verificando/info/Index_files/blockKeys.js HTTP/1.1
Host: passiefinkomen.nu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://passiefinkomen.nu/personas/209.236.88.2422709/verificando/info/index.html
HTTP/1.1 200 OK
date: Wed, 21 Dec 2022 18:49:02 GMT
server: Apache/2
upgrade: h2,h2c
connection: Upgrade
last-modified: Tue, 20 Dec 2022 23:41:13 GMT
etag: "9c-5f04af8ab36f2-gzip"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 117
content-type: application/javascript
passiefinkomen.nu/personas/209.236.88.2422709/verificando/info/Index_files/jquery-validations.js
200 OK 269 B URL HTTP/1.1 passiefinkomen.nu/personas/209.236.88.2422709/verificando/info/Index_files/jquery-validations.js
IP
ASN #206281 Stichting DIGI NL
Hash 3cc7eee4a5d1d79f8ce08df701324e59
6ba1230754aa70396ee06646804cb33595b3a2e1
6d5b3aa10010dd8fbbcf7d7c391233f382e3576d682be73ce5af230b8d8ad4f8
Analyzer Verdict Alert urlquery phishing Phishing - Bancolombia
GET /personas/209.236.88.2422709/verificando/info/Index_files/jquery-validations.js HTTP/1.1
Host: passiefinkomen.nu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://passiefinkomen.nu/personas/209.236.88.2422709/verificando/info/index.html
HTTP/1.1 200 OK
date: Wed, 21 Dec 2022 18:49:02 GMT
server: Apache/2
upgrade: h2,h2c
connection: Upgrade
last-modified: Tue, 20 Dec 2022 23:41:13 GMT
etag: "454-5f04af8ab3ec2-gzip"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 269
content-type: application/javascript
passiefinkomen.nu/personas/209.236.88.2422709/verificando/info/Index_files/jquery.validate-1.11.1.js
200 OK 7.0 kB URL HTTP/1.1 passiefinkomen.nu/personas/209.236.88.2422709/verificando/info/Index_files/jquery.validate-1.11.1.js
IP
ASN #206281 Stichting DIGI NL
File type ASCII text, with very long lines (2795)
Hash 279f420c7d0cdc8bdf7b726804196ac5
16ba522e5eb521c3b9f2795638dc1589cb5a4b75
c53e5b4058dc3a2944b29dec9968d4ef908e3fe247d67f108a1f6f93d484e842
Analyzer Verdict Alert urlquery phishing Phishing - Bancolombia
GET /personas/209.236.88.2422709/verificando/info/Index_files/jquery.validate-1.11.1.js HTTP/1.1
Host: passiefinkomen.nu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://passiefinkomen.nu/personas/209.236.88.2422709/verificando/info/index.html
HTTP/1.1 200 OK
date: Wed, 21 Dec 2022 18:49:02 GMT
server: Apache/2
upgrade: h2,h2c
connection: Upgrade
last-modified: Tue, 20 Dec 2022 23:41:13 GMT
etag: "675b-5f04af8ab3ada-gzip"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 7024
content-type: application/javascript
passiefinkomen.nu/personas/209.236.88.2422709/verificando/info/Index_files/swfRSACookieFunc.js
200 OK 266 B URL HTTP/1.1 passiefinkomen.nu/personas/209.236.88.2422709/verificando/info/Index_files/swfRSACookieFunc.js
IP
ASN #206281 Stichting DIGI NL
Hash bb4edcf2cda014c4f17d1eac598d1773
25ec81e99e4b81afa83f28c1f48c24ef0c1b05dd
5fd25695075abbf7c62bdfa6d0d7f4ab32fefb16d0127b280d13522af60c77d2
Analyzer Verdict Alert urlquery phishing Phishing - Bancolombia
GET /personas/209.236.88.2422709/verificando/info/Index_files/swfRSACookieFunc.js HTTP/1.1
Host: passiefinkomen.nu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://passiefinkomen.nu/personas/209.236.88.2422709/verificando/info/index.html
HTTP/1.1 200 OK
date: Wed, 21 Dec 2022 18:49:02 GMT
server: Apache/2
upgrade: h2,h2c
connection: Upgrade
last-modified: Tue, 20 Dec 2022 23:41:13 GMT
etag: "1fb-5f04af8ab3ada-gzip"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 266
content-type: application/javascript
passiefinkomen.nu/personas/209.236.88.2422709/verificando/info/Index_files/jquery-ui.css
200 OK 6.1 kB URL HTTP/1.1 passiefinkomen.nu/personas/209.236.88.2422709/verificando/info/Index_files/jquery-ui.css
IP
ASN #206281 Stichting DIGI NL
File type ASCII text, with very long lines (1363)
Hash bd9a12055e73def4b68b02ff05968453
c9f14ce2da1af9b9bf24e3e28370aa82b737c969
44d53a960eb1f73e758f4346c8c964cb68e04b4852b755c95a3a170384961be0
Analyzer Verdict Alert urlquery phishing Phishing - Bancolombia
GET /personas/209.236.88.2422709/verificando/info/Index_files/jquery-ui.css HTTP/1.1
Host: passiefinkomen.nu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://passiefinkomen.nu/personas/209.236.88.2422709/verificando/info/index.html
HTTP/1.1 200 OK
date: Wed, 21 Dec 2022 18:49:02 GMT
server: Apache/2
upgrade: h2,h2c
connection: Upgrade
last-modified: Tue, 20 Dec 2022 23:41:13 GMT
etag: "7c88-5f04af8ab36f2-gzip"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 6121
content-type: text/css
passiefinkomen.nu/personas/209.236.88.2422709/verificando/info/Index_files/validations.js
200 OK 2.1 kB URL HTTP/1.1 passiefinkomen.nu/personas/209.236.88.2422709/verificando/info/Index_files/validations.js
IP
ASN #206281 Stichting DIGI NL
File type ISO-8859 text, with very long lines (441)
Hash a7a8423aec56fe8e71aee3d7d6487645
fa7a069c4580ac461c1bacd350c37603b258676c
4004f6c2340bd0f5c0cdafaba27fb43e1d6e45c21612d2eacf36c62dc8f35c98
GET /personas/209.236.88.2422709/verificando/info/Index_files/validations.js HTTP/1.1
Host: passiefinkomen.nu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://passiefinkomen.nu/personas/209.236.88.2422709/verificando/info/index.html
HTTP/1.1 200 OK
date: Wed, 21 Dec 2022 18:49:02 GMT
server: Apache/2
upgrade: h2,h2c
connection: Upgrade
last-modified: Tue, 20 Dec 2022 23:41:13 GMT
etag: "1b15-5f04af8ab330a-gzip"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 2058
content-type: application/javascript
passiefinkomen.nu/personas/209.236.88.2422709/verificando/info/Index_files/ui.css
200 OK 3.0 kB URL HTTP/1.1 passiefinkomen.nu/personas/209.236.88.2422709/verificando/info/Index_files/ui.css
IP
ASN #206281 Stichting DIGI NL
Hash f6aa1de37ac453c9f1a9faf0fc8e0629
a31bb4015117faf7a407378b569bec24679cb997
ca7d190319b424f37fc696115785ecd627c544abf67812ea554a821bb30e12f8
Analyzer Verdict Alert urlquery phishing Phishing - Bancolombia
GET /personas/209.236.88.2422709/verificando/info/Index_files/ui.css HTTP/1.1
Host: passiefinkomen.nu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://passiefinkomen.nu/personas/209.236.88.2422709/verificando/info/index.html
HTTP/1.1 200 OK
date: Wed, 21 Dec 2022 18:49:02 GMT
server: Apache/2
upgrade: h2,h2c
connection: Upgrade
last-modified: Tue, 20 Dec 2022 23:41:13 GMT
etag: "34ab-5f04af8ab3ec2-gzip"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 2996
content-type: text/css
passiefinkomen.nu/personas/209.236.88.2422709/verificando/info/Index_files/bootstrap.js
200 OK 8.5 kB URL HTTP/1.1 passiefinkomen.nu/personas/209.236.88.2422709/verificando/info/Index_files/bootstrap.js
IP
ASN #206281 Stichting DIGI NL
File type ASCII text, with very long lines (415)
Hash 23cfec4ec6f4f8691e0b987872419b45
1bbfd843344613878c97f5f28db37014b46a1534
483316db597657235fecf8e8764621f9eeb0d08efe5a5ad914bfa4132e71e3cd
Analyzer Verdict Alert urlquery phishing Phishing - Bancolombia
GET /personas/209.236.88.2422709/verificando/info/Index_files/bootstrap.js HTTP/1.1
Host: passiefinkomen.nu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://passiefinkomen.nu/personas/209.236.88.2422709/verificando/info/index.html
HTTP/1.1 200 OK
date: Wed, 21 Dec 2022 18:49:02 GMT
server: Apache/2
upgrade: h2,h2c
connection: Upgrade
last-modified: Tue, 20 Dec 2022 23:41:13 GMT
etag: "8d9a-5f04af8ab3ec2-gzip"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 8466
content-type: application/javascript
passiefinkomen.nu/personas/209.236.88.2422709/verificando/info/Index_files/jquery.jclock-min.js
200 OK 1.3 kB URL HTTP/1.1 passiefinkomen.nu/personas/209.236.88.2422709/verificando/info/Index_files/jquery.jclock-min.js
IP
ASN #206281 Stichting DIGI NL
File type ASCII text, with very long lines (2957)
Hash 38386ecedb25a2b73fa153a7242af2e8
3771e6f2c812b7af510f5b1d8693986b07b2f04d
c30176f7e71309c513407b9eabf3b97b7fb8a7fc80cadbcecdc47126af8a7c3a
GET /personas/209.236.88.2422709/verificando/info/Index_files/jquery.jclock-min.js HTTP/1.1
Host: passiefinkomen.nu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://passiefinkomen.nu/personas/209.236.88.2422709/verificando/info/index.html
HTTP/1.1 200 OK
date: Wed, 21 Dec 2022 18:49:02 GMT
server: Apache/2
upgrade: h2,h2c
connection: Upgrade
last-modified: Tue, 20 Dec 2022 23:41:13 GMT
etag: "c41-5f04af8ab3ec2-gzip"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 1262
content-type: application/javascript
passiefinkomen.nu/personas/209.236.88.2422709/verificando/info/Index_files/jquery-ui.js
200 OK 61 kB URL HTTP/1.1 passiefinkomen.nu/personas/209.236.88.2422709/verificando/info/Index_files/jquery-ui.js
IP
ASN #206281 Stichting DIGI NL
File type ASCII text, with very long lines (32555)
Hash cdc4ae68b4534fdf8d9e57e08b9b77ff
04879c49839e0aaa3ea4e0a84f0ff3807ce9a9ae
4941ce13706c49ee0ade50c1a7134089a18ce5b1d199814ef11927774ff0600d
Analyzer Verdict Alert urlquery phishing Phishing - Bancolombia
GET /personas/209.236.88.2422709/verificando/info/Index_files/jquery-ui.js HTTP/1.1
Host: passiefinkomen.nu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://passiefinkomen.nu/personas/209.236.88.2422709/verificando/info/index.html
HTTP/1.1 200 OK
date: Wed, 21 Dec 2022 18:49:02 GMT
server: Apache/2
upgrade: h2,h2c
connection: Upgrade
last-modified: Tue, 20 Dec 2022 23:41:13 GMT
etag: "37c7e-5f04af8ab36f2-gzip"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 60862
content-type: application/javascript
passiefinkomen.nu/personas/209.236.88.2422709/verificando/info/Index_files/styles.css
200 OK 16 kB URL HTTP/1.1 passiefinkomen.nu/personas/209.236.88.2422709/verificando/info/Index_files/styles.css
IP
ASN #206281 Stichting DIGI NL
File type ASCII text, with very long lines (360)
Hash 85cacd107ee1303f090d36055d8085c0
ed03975905192e2aff4bcf02c1d0be3000ffc6d0
37c8cc8a3ab8cd4e02032c71fd215f7438d0203f42e663591d1b545fff77dea8
GET /personas/209.236.88.2422709/verificando/info/Index_files/styles.css HTTP/1.1
Host: passiefinkomen.nu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://passiefinkomen.nu/personas/209.236.88.2422709/verificando/info/index.html
HTTP/1.1 200 OK
date: Wed, 21 Dec 2022 18:49:02 GMT
server: Apache/2
upgrade: h2,h2c
connection: Upgrade
last-modified: Tue, 20 Dec 2022 23:41:13 GMT
etag: "1a5c5-5f04af8ab330a-gzip"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 15727
content-type: text/css
passiefinkomen.nu/personas/209.236.88.2422709/verificando/info/Index_files/AC_OETags.js
200 OK 1.6 kB URL HTTP/1.1 passiefinkomen.nu/personas/209.236.88.2422709/verificando/info/Index_files/AC_OETags.js
IP
ASN #206281 Stichting DIGI NL
File type ASCII text, with very long lines (1427)
Hash 97b4f6224d6185f96c89fe0dca6c0359
d2d20e46e7c3059ac7c1541841509e59f192eb3b
81b6cc5f72dfabb009fcd40b02d1fec6d8759e9b5f1e0fc1767b3bcfb3da8a72
Analyzer Verdict Alert urlquery phishing Phishing - Bancolombia
GET /personas/209.236.88.2422709/verificando/info/Index_files/AC_OETags.js HTTP/1.1
Host: passiefinkomen.nu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://passiefinkomen.nu/personas/209.236.88.2422709/verificando/info/index.html
HTTP/1.1 200 OK
date: Wed, 21 Dec 2022 18:49:02 GMT
server: Apache/2
upgrade: h2,h2c
connection: Upgrade
last-modified: Tue, 20 Dec 2022 23:41:13 GMT
etag: "138c-5f04af8ab3ada-gzip"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 1581
content-type: application/javascript
passiefinkomen.nu/personas/209.236.88.2422709/verificando/info/Index_files/hashtable.js
200 OK 3.3 kB URL HTTP/1.1 passiefinkomen.nu/personas/209.236.88.2422709/verificando/info/Index_files/hashtable.js
IP
ASN #206281 Stichting DIGI NL
Hash 380ad80d0aaf5f540be4d916ada06745
ed3bc501c52ab968180877cfdeff5a9d4a4d2209
998a41a64183adf1fb56c07315be41160165fadc713c949d33c8eb9e8e619be2
GET /personas/209.236.88.2422709/verificando/info/Index_files/hashtable.js HTTP/1.1
Host: passiefinkomen.nu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://passiefinkomen.nu/personas/209.236.88.2422709/verificando/info/index.html
HTTP/1.1 200 OK
date: Wed, 21 Dec 2022 18:49:02 GMT
server: Apache/2
upgrade: h2,h2c
connection: Upgrade
last-modified: Tue, 20 Dec 2022 23:41:13 GMT
etag: "3570-5f04af8ab3ada-gzip"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 3326
content-type: application/javascript
passiefinkomen.nu/personas/209.236.88.2422709/verificando/info/Index_files/nr-1071.min.js
200 OK 9.1 kB URL HTTP/1.1 passiefinkomen.nu/personas/209.236.88.2422709/verificando/info/Index_files/nr-1071.min.js
IP
ASN #206281 Stichting DIGI NL
File type ASCII text, with very long lines (23651), with no line terminators
Hash ea7d98da6b8048d3c3905a1c8c7413f1
222c966ad76450aefe8c8e8575678dd7733696bc
1ea4b27f6a8e25490b451cd0f484bb5f7ccf7031175f28f74ee14024461eef6a
GET /personas/209.236.88.2422709/verificando/info/Index_files/nr-1071.min.js HTTP/1.1
Host: passiefinkomen.nu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://passiefinkomen.nu/personas/209.236.88.2422709/verificando/info/index.html
HTTP/1.1 200 OK
date: Wed, 21 Dec 2022 18:49:02 GMT
server: Apache/2
upgrade: h2,h2c
connection: Upgrade
last-modified: Tue, 20 Dec 2022 23:41:13 GMT
etag: "5c63-5f04af8ab3ada-gzip"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 9086
content-type: application/javascript
passiefinkomen.nu/personas/209.236.88.2422709/verificando/info/Index_files/rsa.js
200 OK 10 kB URL HTTP/1.1 passiefinkomen.nu/personas/209.236.88.2422709/verificando/info/Index_files/rsa.js
IP
ASN #206281 Stichting DIGI NL
File type ASCII text, with very long lines (1826)
Hash 8b0503d6766749272510aabccfbbd9c0
09285a200345959982c96713067019876e27f993
ecd43b5c7e5f100d1d5af616fbb931fb5b79b61cee9b16f692c87fb7f6541f83
GET /personas/209.236.88.2422709/verificando/info/Index_files/rsa.js HTTP/1.1
Host: passiefinkomen.nu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://passiefinkomen.nu/personas/209.236.88.2422709/verificando/info/index.html
HTTP/1.1 200 OK
date: Wed, 21 Dec 2022 18:49:02 GMT
server: Apache/2
upgrade: h2,h2c
connection: Upgrade
last-modified: Tue, 20 Dec 2022 23:41:13 GMT
etag: "8821-5f04af8ab42aa-gzip"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 10097
content-type: application/javascript
passiefinkomen.nu/personas/209.236.88.2422709/verificando/info/Index_files/bootstrap.css
200 OK 18 kB URL HTTP/1.1 passiefinkomen.nu/personas/209.236.88.2422709/verificando/info/Index_files/bootstrap.css
IP
ASN #206281 Stichting DIGI NL
File type assembler source, ASCII text, with very long lines (540)
Hash 96ba750c4dbebf63ba9bd3c6e681ea42
8ca052b96a017efad70fb276b0bcdbb9ba87c0a2
ab5995b5dba5f7e558684e193a16bb83ba3ea7044ec277092016788b222df0d8
GET /personas/209.236.88.2422709/verificando/info/Index_files/bootstrap.css HTTP/1.1
Host: passiefinkomen.nu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://passiefinkomen.nu/personas/209.236.88.2422709/verificando/info/index.html
HTTP/1.1 200 OK
date: Wed, 21 Dec 2022 18:49:02 GMT
server: Apache/2
upgrade: h2,h2c
connection: Upgrade
last-modified: Tue, 20 Dec 2022 23:41:13 GMT
etag: "1d9c5-5f04af8ab3ada-gzip"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 18365
content-type: text/css
passiefinkomen.nu/personas/209.236.88.2422709/verificando/info/Index_files/jquery-1.10.1.js
200 OK 41 kB URL HTTP/1.1 passiefinkomen.nu/personas/209.236.88.2422709/verificando/info/Index_files/jquery-1.10.1.js
IP
ASN #206281 Stichting DIGI NL
File type ASCII text, with very long lines (1618)
Hash 4393c7755eaa416193014c23b5e419b2
9efaf24ac90dd5f73a3bb9ebcf0d554541c8b3bf
8ef3f6d167b63ebdf86799fab79153158d7ede1ff63bcc203f047a5d66ef384c
Analyzer Verdict Alert urlquery phishing Phishing - Bancolombia
GET /personas/209.236.88.2422709/verificando/info/Index_files/jquery-1.10.1.js HTTP/1.1
Host: passiefinkomen.nu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://passiefinkomen.nu/personas/209.236.88.2422709/verificando/info/index.html
HTTP/1.1 200 OK
date: Wed, 21 Dec 2022 18:49:02 GMT
server: Apache/2
upgrade: h2,h2c
connection: Upgrade
last-modified: Tue, 20 Dec 2022 23:41:13 GMT
etag: "239c2-5f04af8ab42aa-gzip"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 41423
content-type: application/javascript
passiefinkomen.nu/personas/209.236.88.2422709/verificando/info/Index_files/login_SVP_BC_zonaA.html
200 OK 813 B URL HTTP/1.1 passiefinkomen.nu/personas/209.236.88.2422709/verificando/info/Index_files/login_SVP_BC_zonaA.html
IP
ASN #206281 Stichting DIGI NL
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (338)
Hash d2217e17460d24c89015a19a80761df1
17a4e6b424095771374312c085773aac4909269a
c0f9649936f7692517f256062297921aee312354eb4aa63f5f1a2acb6329fd7f
Analyzer Verdict Alert urlquery phishing Phishing - Bancolombia
GET /personas/209.236.88.2422709/verificando/info/Index_files/login_SVP_BC_zonaA.html HTTP/1.1
Host: passiefinkomen.nu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://passiefinkomen.nu/personas/209.236.88.2422709/verificando/info/index.html
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
date: Wed, 21 Dec 2022 18:49:03 GMT
server: Apache/2
upgrade: h2,h2c
connection: Upgrade
last-modified: Tue, 20 Dec 2022 23:41:13 GMT
etag: "521-5f04af8ab36f2-gzip"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 813
content-type: text/html
passiefinkomen.nu/personas/209.236.88.2422709/verificando/info/fonts/iconfont/icon_font_bc.ttf?61jkgi
200 OK 7.3 kB URL HTTP/1.1 passiefinkomen.nu/personas/209.236.88.2422709/verificando/info/fonts/iconfont/icon_font_bc.ttf?61jkgi
IP
ASN #206281 Stichting DIGI NL
File type TrueType Font data, 11 tables, 1st "OS/2", 14 names, Macintosh, type 1 string, icon_font_bc\012- data
Hash 084c293851b832e4f2c91de139224824
73bf4ed3ecb672c4dbb508ccdf346041e55c37b5
b566b824e0cc8957f98a867bb2bae37871f8d53150c8f7992e2345d6742812f8
GET /personas/209.236.88.2422709/verificando/info/fonts/iconfont/icon_font_bc.ttf?61jkgi HTTP/1.1
Host: passiefinkomen.nu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://passiefinkomen.nu/personas/209.236.88.2422709/verificando/info/Index_files/styles.css
HTTP/1.1 200 OK
date: Wed, 21 Dec 2022 18:49:03 GMT
server: Apache/2
upgrade: h2,h2c
connection: Upgrade
last-modified: Tue, 20 Dec 2022 23:41:13 GMT
etag: "357c-5f04af8ab1b9a-gzip"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
access-control-allow-origin: *
content-length: 7257
content-type: application/x-font-ttf
ocsp.digicert.com/
200 OK 471 B IP
Hash 67c83b1dad822f2562ed4ef488ee875d
8c382e810d8010e89596f064113c6d11cf45d125
7afe1d55719d9d5daf9e28c178b4f82caa808c2881dac89ab0480c1161ac4b5f
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1756
Cache-Control: max-age=110863
Content-Type: application/ocsp-response
Date: Wed, 21 Dec 2022 18:49:03 GMT
Etag: "63a25c52-1d7"
Expires: Fri, 23 Dec 2022 01:36:46 GMT
Last-Modified: Wed, 21 Dec 2022 01:07:30 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 471
monstat.com/BancolombiaPersonas.png?du=http%3A//passiefinkomen.nu/personas/209.236.88.2422709/verificando/info/index.html&dr=&rr=0.5924207930559553
404 Not Found 221 B URL HTTP/1.1 monstat.com/BancolombiaPersonas.png?du=http%3A//passiefinkomen.nu/personas/209.236.88.2422709/verificando/info/index.html&dr=&rr=0.5924207930559553
IP
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 992f1b3807b786dcc4a21068cd9f6e8d
a021904f02a6b2496440a8ba44424866c5647624
cb93a44812e970e7d3344943984006d41a06d0776e8da68a2ca9dfce9c6bf424
GET /BancolombiaPersonas.png?du=http%3A//passiefinkomen.nu/personas/209.236.88.2422709/verificando/info/index.html&dr=&rr=0.5924207930559553 HTTP/1.1
Host: monstat.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://passiefinkomen.nu/
HTTP/1.1 404 Not Found
Date: Wed, 21 Dec 2022 18:49:03 GMT
Server: Apache
X-Frame-Options: DENY
X-Content-Type-Options: nosniff
Content-Length: 221
Connection: close
Content-Type: text/html; charset=iso-8859-1
sucursalpersonas.transaccionesbancolombia.com/mua/static/imgPublicidad.jpg
200 OK 53 kB URL HTTP/2 sucursalpersonas.transaccionesbancolombia.com/mua/static/imgPublicidad.jpg
IP
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 627x327, components 3\012- data
Hash 46ae51e0d163cbd8aa58e4220c486c6a
30ba07fd9a7f783a95aceb698d82798e872fb696
140831642d0b00aca04e0ce36d32207a7fb74ff0c9dcf3a4985acb88c4937a91
GET /mua/static/imgPublicidad.jpg HTTP/1.1
Host: sucursalpersonas.transaccionesbancolombia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://passiefinkomen.nu/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 21 Dec 2022 18:49:03 GMT
content-type: image/jpeg
content-length: 52567
access-control-allow-origin: https://c.na7.visual.fo.todo1.com
cf-bgj: h2pri
content-security-policy: default-src 'self'; script-src 'self' https://cdn.siftscience.com *.medallia.com *.kampyle.com https://checkout.wompi.co https://www.google.com *.googleapis.com api.segment.io *.segment.com *.todo0.com *.cloudbancolombia.com *.newrelic.com bam.nr-data.net *.gstatic.com https://www.google-analytics.com https://tagmanager.google.com https://www.googletagmanager.com/ tagmanager.google.com https://connect.facebook.net https://www.facebook.com https://tags.bkrtx.com *.hotjar.com https://sjs.bizographics.com https://static.ads-twitter.com *.twitter.com https://t.co *.doubleclick.net https://stags.bluekai.com *.linkedin.com *.todo-1.com *.static.browseranalytic.com *.browseranalytic.com https://browseranalytic.com/ https://static.browseranalytic.com/ 'unsafe-inline' 'unsafe-eval'; connect-src https://sessions.bugsnag.com *.medallia.com *.kampyle.com api.segment.io *.segment.com *.todo1.com *.newrelic.com bam.nr-data.net https://www.google-analytics.com www.google-analytics.com tagmanager.google.com *.hotjar.com *.hotjar.io *.todo-1.com *.static.browseranalytic.com *.browseranalytic.com https://browseranalytic.com/ https://static.browseranalytic.com/ 'self'; img-src https://hexagon-analytics.com *.medallia.com *.kampyle.com images-cdn.info https://www.google-analytics.com www.google-analytics.com https://www.google.com *.gstatic.com *.cloudbancolombia.com *.bancolombia.com *.todo1.com https://connect.facebook.net https://www.facebook.com https://tags.bkrtx.com *.hotjar.com https://sjs.bizographics.com https://static.ads-twitter.com *.twitter.com https://t.co *.doubleclick.net https://stags.bluekai.com *.linkedin.com *.todo-1.com *.static.browseranalytic.com *.browseranalytic.com https://browseranalytic.com/ https://static.browseranalytic.com/ 'self' data:; style-src 'self' *.medallia.com *.kampyle.com 'unsafe-inline' 'unsafe-eval' https://tagmanager.google.com https://fonts.googleapis.com/ tagmanager.google.com https://connect.facebook.net https://www.facebook.com https://tags.bkrtx.com *.hotjar.com https://sjs.bizographics.com https://static.ads-twitter.com *.twitter.com https://t.co *.doubleclick.net https://stags.bluekai.com *.linkedin.com; frame-src 'self' https://checkout.wompi.co *.medallia.com *.kampyle.com https://www.google.com/ https://*.googleapis.com https://*.gstatic.com *.salesforce.com *.force.com *.visualforce.com *.cloudbancolombia.com *.bancolombia.corp *.bancolombia.com *.transaccionesbancolombia.com *.hotjar.com https://stags.bluekai.com https://www.facebook.com data: blob:; font-src https://*.gstatic.com 'self' data:
last-modified: Fri, 04 Nov 2022 16:21:57 GMT
strict-transport-security: max-age=31536000; includeSubDomains
x-content-security-policy: default-src 'self';
x-content-type-options: nosniff
x-frame-options: sameorigin, sameorigin, SAMEORIGIN
x-permitted-cross-domain-policies: master-only
x-xss-protection: 1; mode=block
cf-cache-status: HIT
age: 1778
expires: Wed, 21 Dec 2022 22:49:03 GMT
cache-control: public, max-age=14400
accept-ranges: bytes
set-cookie: __cf_bm=awEtbXhIv6cRMOUB88gfO94YWRCvf6TqppGMWvnkCvU-1671648543-0-AaNBs1Wv39coIIs7dYltO1Z01Rv3gQoRR9/dyuST5hfnFg61rPSD2i8D1F8ic5mA//ILn3j01l6bI39kAebZqso=; path=/; expires=Wed, 21-Dec-22 19:19:03 GMT; domain=.transaccionesbancolombia.com; HttpOnly; Secure; SameSite=None
vary: Accept-Encoding
server: cloudflare
cf-ray: 77d2cba4bbf9d180-LHR
X-Firefox-Spdy: h2
passiefinkomen.nu/personas/209.236.88.2422709/verificando/info/Index_files/analytics.js
200 OK 15 kB URL HTTP/1.1 passiefinkomen.nu/personas/209.236.88.2422709/verificando/info/Index_files/analytics.js
IP
ASN #206281 Stichting DIGI NL
File type ASCII text, with very long lines (1952)
Hash 654b8ab88c32ec4828c732ca8b44e07e
71d2dcc42288fbddd9716d06f89845a82764354e
b6b2f9a1476aa28f901dc595eeb7e2978322ce81c4199ffe4df366f315660b09
GET /personas/209.236.88.2422709/verificando/info/Index_files/analytics.js HTTP/1.1
Host: passiefinkomen.nu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://passiefinkomen.nu/personas/209.236.88.2422709/verificando/info/Index_files/login_SVP_BC_zonaA.html
HTTP/1.1 200 OK
date: Wed, 21 Dec 2022 18:49:03 GMT
server: Apache/2
upgrade: h2,h2c
connection: Upgrade
last-modified: Tue, 20 Dec 2022 23:41:13 GMT
etag: "8c67-5f04af8ab3ec2-gzip"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 14619
content-type: application/javascript
ocsp.digicert.com/
200 OK 471 B IP
Hash 67c83b1dad822f2562ed4ef488ee875d
8c382e810d8010e89596f064113c6d11cf45d125
7afe1d55719d9d5daf9e28c178b4f82caa808c2881dac89ab0480c1161ac4b5f
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=109107
Content-Type: application/ocsp-response
Date: Wed, 21 Dec 2022 18:49:03 GMT
Etag: "63a25c52-1d7"
Expires: Fri, 23 Dec 2022 01:07:30 GMT
Last-Modified: Wed, 21 Dec 2022 01:07:30 GMT
Server: nginx
Content-Length: 471
www.google-analytics.com/analytics.js
200 OK 20 kB URL HTTP/1.1 www.google-analytics.com/analytics.js
IP
File type ASCII text, with very long lines (1325)
Hash 47e6f374ca946fddd5b59871b325736c
baa9282efc8785e84d247c3bff518eaa45f101c4
16580b5c87c58e5702e411f1888fdef511094e4cd6d62bb47d16291ffb25985e
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://passiefinkomen.nu/
HTTP/1.1 200 OK
Strict-Transport-Security: max-age=10886400; includeSubDomains; preload
X-Content-Type-Options: nosniff
Vary: Accept-Encoding
Content-Encoding: gzip
Cross-Origin-Resource-Policy: cross-origin
Server: Golfe2
Content-Length: 20039
Date: Wed, 21 Dec 2022 18:14:15 GMT
Expires: Wed, 21 Dec 2022 20:14:15 GMT
Cache-Control: public, max-age=7200
Age: 2088
Last-Modified: Tue, 27 Sep 2022 22:01:05 GMT
Content-Type: text/javascript
sucursalpersonas.transaccionesbancolombia.com/mua/images/icons/icon-user.png
200 OK 447 B URL HTTP/2 sucursalpersonas.transaccionesbancolombia.com/mua/images/icons/icon-user.png
IP
File type PNG image data, 18 x 18, 8-bit/color RGBA, non-interlaced\012- data
Hash 0e3457ed5ea858d1e9287ef66dcbbfe4
006c99b62e141ebbc69f6e06cab757995d3f7417
75d5b455151a3b1a0a5b100041fee37de2daa0b41d1d177deaa863177c5b5b83
GET /mua/images/icons/icon-user.png HTTP/1.1
Host: sucursalpersonas.transaccionesbancolombia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://passiefinkomen.nu/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 21 Dec 2022 18:49:03 GMT
content-type: image/png
content-length: 447
x-frame-options: sameorigin, sameorigin, SAMEORIGIN
strict-transport-security: max-age=31536000; includeSubDomains
last-modified: Thu, 22 Apr 2021 04:33:00 GMT
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-permitted-cross-domain-policies: master-only
x-content-security-policy: default-src 'self';
content-security-policy: default-src 'self'; script-src 'self' https://cdn.siftscience.com *.medallia.com *.kampyle.com https://checkout.wompi.co https://www.google.com *.googleapis.com api.segment.io *.segment.com *.todo0.com *.cloudbancolombia.com *.newrelic.com bam.nr-data.net *.gstatic.com https://www.google-analytics.com https://tagmanager.google.com https://www.googletagmanager.com/ tagmanager.google.com https://connect.facebook.net https://www.facebook.com https://tags.bkrtx.com *.hotjar.com https://sjs.bizographics.com https://static.ads-twitter.com *.twitter.com https://t.co *.doubleclick.net https://stags.bluekai.com *.linkedin.com *.todo-1.com *.static.browseranalytic.com *.browseranalytic.com https://browseranalytic.com/ https://static.browseranalytic.com/ 'unsafe-inline' 'unsafe-eval'; connect-src https://sessions.bugsnag.com *.medallia.com *.kampyle.com api.segment.io *.segment.com *.todo1.com *.newrelic.com bam.nr-data.net https://www.google-analytics.com www.google-analytics.com tagmanager.google.com *.hotjar.com *.hotjar.io *.todo-1.com *.static.browseranalytic.com *.browseranalytic.com https://browseranalytic.com/ https://static.browseranalytic.com/ 'self'; img-src https://hexagon-analytics.com *.medallia.com *.kampyle.com images-cdn.info https://www.google-analytics.com www.google-analytics.com https://www.google.com *.gstatic.com *.cloudbancolombia.com *.bancolombia.com *.todo1.com https://connect.facebook.net https://www.facebook.com https://tags.bkrtx.com *.hotjar.com https://sjs.bizographics.com https://static.ads-twitter.com *.twitter.com https://t.co *.doubleclick.net https://stags.bluekai.com *.linkedin.com *.todo-1.com *.static.browseranalytic.com *.browseranalytic.com https://browseranalytic.com/ https://static.browseranalytic.com/ 'self' data:; style-src 'self' *.medallia.com *.kampyle.com 'unsafe-inline' 'unsafe-eval' https://tagmanager.google.com https://fonts.googleapis.com/ tagmanager.google.com https://connect.facebook.net https://www.facebook.com https://tags.bkrtx.com *.hotjar.com https://sjs.bizographics.com https://static.ads-twitter.com *.twitter.com https://t.co *.doubleclick.net https://stags.bluekai.com *.linkedin.com; frame-src 'self' https://checkout.wompi.co *.medallia.com *.kampyle.com https://www.google.com/ https://*.googleapis.com https://*.gstatic.com *.salesforce.com *.force.com *.visualforce.com *.cloudbancolombia.com *.bancolombia.corp *.bancolombia.com *.transaccionesbancolombia.com *.hotjar.com https://stags.bluekai.com https://www.facebook.com data: blob:; font-src https://*.gstatic.com 'self' data:
access-control-allow-origin: https://c.na7.visual.fo.todo1.com
cf-cache-status: HIT
age: 5584
expires: Wed, 21 Dec 2022 22:49:03 GMT
cache-control: public, max-age=14400
accept-ranges: bytes
set-cookie: __cf_bm=bBw5nR73Iysiowvr_efhpsgMxVdqHwY72ZBvmijrzKE-1671648543-0-ASduG1DIOpy6QF+wTc46Uc7VfCpeuq26yKl2IVv8NP7en0+1+d72a4Ih8Z13B56B+VVZmLNcY+OEKw2svpPqvtg=; path=/; expires=Wed, 21-Dec-22 19:19:03 GMT; domain=.transaccionesbancolombia.com; HttpOnly; Secure; SameSite=None
vary: Accept-Encoding
server: cloudflare
cf-ray: 77d2cba5bdbcd180-LHR
X-Firefox-Spdy: h2
www.google-analytics.com/r/collect?v=1&_v=j66&a=913138342&t=pageview&_s=1&dl=http%3A%2F%2Fpassiefinkomen.nu%2Fpersonas%2F209.236.88.2422709%2Fverificando%2Finfo%2FIndex_files%2Flogin_SVP_BC_zonaA.html&ul=en-us&de=UTF-8&dt=Sucursal%20Virtual%20Personas%20-%20Zona%20A%20-%20Login&sd=24-bit&sr=1280x1024&vp=749x352&je=0&_u=IEBAAEAB~&jid=920502220&gjid=1284770986&cid=365164091.1671648544&tid=UA-65546126-1&_gid=1719824750.1671648544&_r=1&z=1980188756
200 OK 35 B URL HTTP/1.1 www.google-analytics.com/r/collect?v=1&_v=j66&a=913138342&t=pageview&_s=1&dl=http%3A%2F%2Fpassiefinkomen.nu%2Fpersonas%2F209.236.88.2422709%2Fverificando%2Finfo%2FIndex_files%2Flogin_SVP_BC_zonaA.html&ul=en-us&de=UTF-8&dt=Sucursal%20Virtual%20Personas%20-%20Zona%20A%20-%20Login&sd=24-bit&sr=1280x1024&vp=749x352&je=0&_u=IEBAAEAB~&jid=920502220&gjid=1284770986&cid=365164091.1671648544&tid=UA-65546126-1&_gid=1719824750.1671648544&_r=1&z=1980188756
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash 28d6814f309ea289f847c69cf91194c6
0f4e929dd5bb2564f7ab9c76338e04e292a42ace
8337212354871836e6763a41e615916c89bac5b3f1f0adf60ba43c7c806e1015
GET /r/collect?v=1&_v=j66&a=913138342&t=pageview&_s=1&dl=http%3A%2F%2Fpassiefinkomen.nu%2Fpersonas%2F209.236.88.2422709%2Fverificando%2Finfo%2FIndex_files%2Flogin_SVP_BC_zonaA.html&ul=en-us&de=UTF-8&dt=Sucursal%20Virtual%20Personas%20-%20Zona%20A%20-%20Login&sd=24-bit&sr=1280x1024&vp=749x352&je=0&_u=IEBAAEAB~&jid=920502220&gjid=1284770986&cid=365164091.1671648544&tid=UA-65546126-1&_gid=1719824750.1671648544&_r=1&z=1980188756 HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://passiefinkomen.nu/
HTTP/1.1 200 OK
Access-Control-Allow-Origin: *
Date: Wed, 21 Dec 2022 18:49:03 GMT
Pragma: no-cache
Expires: Fri, 01 Jan 1990 00:00:00 GMT
Cache-Control: no-cache, no-store, must-revalidate
Last-Modified: Sun, 17 May 1998 03:00:00 GMT
X-Content-Type-Options: nosniff
Content-Type: image/gif
Cross-Origin-Resource-Policy: cross-origin
Server: Golfe2
Content-Length: 35
ocsp.digicert.com/
200 OK 471 B IP
Hash 859d899d982bb69df5fb16b8393fa119
580215f1d4f81cda04012c0889cfd9b18ba11863
38159dd549e94d45798b614efa5f968de7b74830c845220d1b6c1435f3940a94
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5157
Cache-Control: max-age=143023
Content-Type: application/ocsp-response
Date: Wed, 21 Dec 2022 18:49:04 GMT
Etag: "63a2ccaa-1d7"
Expires: Fri, 23 Dec 2022 10:32:47 GMT
Last-Modified: Wed, 21 Dec 2022 09:06:50 GMT
Server: ECS (ska/F705)
X-Cache: HIT
Content-Length: 471
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, ETag, Pragma, Last-Modified, Expires, Alert, Content-Type, Retry-After, Cache-Control, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Wed, 21 Dec 2022 18:33:24 GMT
age: 940
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
passiefinkomen.nu/personas/209.236.88.2422709/verificando/info/fonts/opensans/CIBFontSans-Light.ttf
301 Moved Permanently 20 B URL HTTP/1.1 passiefinkomen.nu/personas/209.236.88.2422709/verificando/info/fonts/opensans/CIBFontSans-Light.ttf
IP
ASN #206281 Stichting DIGI NL
Hash 7029066c27ac6f5ef18d660d5741979a
46c6643f07aa7f6bfe7118de926b86defc5087c4
59869db34853933b239f1e2219cf7d431da006aa919635478511fabbfc8849d2
GET /personas/209.236.88.2422709/verificando/info/fonts/opensans/CIBFontSans-Light.ttf HTTP/1.1
Host: passiefinkomen.nu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://passiefinkomen.nu/personas/209.236.88.2422709/verificando/info/Index_files/styles.css
HTTP/1.1 301 Moved Permanently
date: Wed, 21 Dec 2022 18:49:03 GMT
server: Apache/2
x-powered-by: PHP/7.4.30
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0, no-store
pragma: no-cache
x-redirect-by: WordPress
content-encoding: gzip
vary: Accept-Encoding,User-Agent
upgrade: h2,h2c
connection: Upgrade
location: https://passiefinkomen.nu/personas/209.236.88.2422709/verificando/info/fonts/opensans/CIBFontSans-Light.ttf
transfer-encoding: chunked
content-type: text/html; charset=UTF-8
push.services.mozilla.com/
101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: PRs6yQ4ZUsEXkRn9ko488g==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: qRLRPcss6fzH3BewUPSc2PtOUhI=
passiefinkomen.nu/personas/209.236.88.2422709/verificando/info/fonts/opensans/OpenSans-Regular.ttf
301 Moved Permanently 20 B URL HTTP/1.1 passiefinkomen.nu/personas/209.236.88.2422709/verificando/info/fonts/opensans/OpenSans-Regular.ttf
IP
ASN #206281 Stichting DIGI NL
Hash 7029066c27ac6f5ef18d660d5741979a
46c6643f07aa7f6bfe7118de926b86defc5087c4
59869db34853933b239f1e2219cf7d431da006aa919635478511fabbfc8849d2
GET /personas/209.236.88.2422709/verificando/info/fonts/opensans/OpenSans-Regular.ttf HTTP/1.1
Host: passiefinkomen.nu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://passiefinkomen.nu/personas/209.236.88.2422709/verificando/info/Index_files/styles.css
HTTP/1.1 301 Moved Permanently
date: Wed, 21 Dec 2022 18:49:03 GMT
server: Apache/2
x-powered-by: PHP/7.4.30
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0, no-store
pragma: no-cache
x-redirect-by: WordPress
content-encoding: gzip
vary: Accept-Encoding,User-Agent
upgrade: h2,h2c
connection: Upgrade
location: https://passiefinkomen.nu/personas/209.236.88.2422709/verificando/info/fonts/opensans/OpenSans-Regular.ttf
transfer-encoding: chunked
content-type: text/html; charset=UTF-8
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash b494029b6dd7a52a57e4cfbe6fc21499
8418395ebf935d462bd9ce746736042d90a23839
33ba9edf4fc47da1b1f0b886a612476ba17cf4ae34cb2316c6fb612caf38d96d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "33BA9EDF4FC47DA1B1F0B886A612476BA17CF4AE34CB2316C6FB612CAF38D96D"
Last-Modified: Wed, 21 Dec 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21568
Expires: Thu, 22 Dec 2022 00:48:32 GMT
Date: Wed, 21 Dec 2022 18:49:04 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash b494029b6dd7a52a57e4cfbe6fc21499
8418395ebf935d462bd9ce746736042d90a23839
33ba9edf4fc47da1b1f0b886a612476ba17cf4ae34cb2316c6fb612caf38d96d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "33BA9EDF4FC47DA1B1F0B886A612476BA17CF4AE34CB2316C6FB612CAF38D96D"
Last-Modified: Wed, 21 Dec 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21558
Expires: Thu, 22 Dec 2022 00:48:22 GMT
Date: Wed, 21 Dec 2022 18:49:04 GMT
Connection: keep-alive
passiefinkomen.nu/favicon.ico
301 Moved Permanently 20 B URL HTTP/1.1 passiefinkomen.nu/favicon.ico
IP
ASN #206281 Stichting DIGI NL
Hash 7029066c27ac6f5ef18d660d5741979a
46c6643f07aa7f6bfe7118de926b86defc5087c4
59869db34853933b239f1e2219cf7d431da006aa919635478511fabbfc8849d2
GET /favicon.ico HTTP/1.1
Host: passiefinkomen.nu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://passiefinkomen.nu/personas/209.236.88.2422709/verificando/info/index.html
Cookie: _ga=GA1.2.365164091.1671648544; _gid=GA1.2.1719824750.1671648544; _gat=1
HTTP/1.1 301 Moved Permanently
date: Wed, 21 Dec 2022 18:49:03 GMT
server: Apache/2
x-powered-by: PHP/7.4.30
x-redirect-by: WordPress
content-encoding: gzip
vary: Accept-Encoding,User-Agent
upgrade: h2,h2c
connection: Upgrade
location: https://passiefinkomen.nu/favicon.ico
transfer-encoding: chunked
content-type: text/html; charset=UTF-8
js-agent.newrelic.com/nr-1071.min.js
200 OK 9.1 kB URL HTTP/2 js-agent.newrelic.com/nr-1071.min.js
IP
File type ASCII text, with very long lines (23651), with no line terminators
Hash ea7d98da6b8048d3c3905a1c8c7413f1
222c966ad76450aefe8c8e8575678dd7733696bc
1ea4b27f6a8e25490b451cd0f484bb5f7ccf7031175f28f74ee14024461eef6a
GET /nr-1071.min.js HTTP/1.1
Host: js-agent.newrelic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://passiefinkomen.nu/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: TDQGaVamYM1k5Ib0WsFvThEc6kO3q23ZYAIRKLHQ8BntWl2VZ63nlTNHRjb2ks000rhVim24M/c=
x-amz-request-id: RRKKTM8ZSEDY9ANS
last-modified: Wed, 28 Feb 2018 23:33:31 GMT
etag: "a1a545c95f313a230157b47dca555c25"
x-amz-version-id: null
content-type: application/javascript
server: AmazonS3
access-control-allow-origin: *
cache-control: public, max-age=7200, stale-if-error=604800
content-encoding: gzip
accept-ranges: bytes
date: Wed, 21 Dec 2022 18:49:06 GMT
via: 1.1 varnish
x-served-by: cache-bma1652-BMA
x-cache: HIT
x-cache-hits: 31
x-timer: S1671648546.064808,VS0,VE0
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
content-length: 9086
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 471 B IP
Hash 6aa627e28c71a3d2789eddf92231471b
11facb6d6c4aff37d4aefe52c3f92bdbfa6d1b88
bea3ba8609e274db498cd9e3abc98f77f4499c20b56083795cce7bc561c62a50
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3219
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 21 Dec 2022 18:49:06 GMT
Last-Modified: Wed, 21 Dec 2022 17:55:28 GMT
Server: ECS (ska/F711)
X-Cache: HIT
Content-Length: 471
passiefinkomen.nu/favicon.ico
302 Found 4.1 kB URL HTTP/2 passiefinkomen.nu/favicon.ico
IP
ASN #206281 Stichting DIGI NL
Hash 89e9c91f76dbe5673d793d215f3e5a47
2f4f01ebef8281b27cf97f2f36d84e1235504ed9
4e2275acdb7e35f98ba3a1b556d2ecb42882837b7ef15595b53f4fc0e5521368
GET /favicon.ico HTTP/1.1
Host: passiefinkomen.nu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://passiefinkomen.nu/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
date: Wed, 21 Dec 2022 18:49:05 GMT
server: Apache/2
x-powered-by: PHP/7.4.30
link: <https://passiefinkomen.nu/wp-json/>; rel="https://api.w.org/"
x-redirect-by: WordPress
content-encoding: gzip
vary: Accept-Encoding,User-Agent
location: https://passiefinkomen.nu/wp-includes/images/w-logo-blue-white-bg.png
content-type: text/html; charset=UTF-8
X-Firefox-Spdy: h2
bam.nr-data.net/1/017cf77fef?a=33598753&v=1071.385e752&to=YAFQY0VZWkFTAUcPX1lLYUdFUVpVcQ1dEkJYCF5SRRdhYXcwE053cjAb&rst=4625&ref=http://passiefinkomen.nu/personas/209.236.88.2422709/verificando/info/index.html&ap=5&be=1439&fe=4495&dc=1826&af=err,xhr,stn,ins&perf=%7B%22timing%22:%7B%22of%22:1671648541493,%22n%22:0,%22f%22:-27,%22dn%22:-22,%22dne%22:54,%22c%22:54,%22ce%22:86,%22rq%22:90,%22rp%22:145,%22rpe%22:146,%22dl%22:808,%22di%22:1665,%22ds%22:1825,%22de%22:1890,%22dc%22:4494,%22l%22:4494,%22le%22:4519%7D,%22navigation%22:%7B%7D%7D&jsonp=NREUM.setToken
200 OK 73 B URL HTTP/1.1 bam.nr-data.net/1/017cf77fef?a=33598753&v=1071.385e752&to=YAFQY0VZWkFTAUcPX1lLYUdFUVpVcQ1dEkJYCF5SRRdhYXcwE053cjAb&rst=4625&ref=http://passiefinkomen.nu/personas/209.236.88.2422709/verificando/info/index.html&ap=5&be=1439&fe=4495&dc=1826&af=err,xhr,stn,ins&perf=%7B%22timing%22:%7B%22of%22:1671648541493,%22n%22:0,%22f%22:-27,%22dn%22:-22,%22dne%22:54,%22c%22:54,%22ce%22:86,%22rq%22:90,%22rp%22:145,%22rpe%22:146,%22dl%22:808,%22di%22:1665,%22ds%22:1825,%22de%22:1890,%22dc%22:4494,%22l%22:4494,%22le%22:4519%7D,%22navigation%22:%7B%7D%7D&jsonp=NREUM.setToken
IP
File type ASCII text, with no line terminators
Hash 814f8120cdf5a972bdb0fd5521a92a5d
47f7b3cd340d1fe91766ff27602e319a79bcd14c
5f520e553ae6a634e84b7c8c8d36908d2efa441d716834fd98c012c402b1c3c8
GET /1/017cf77fef?a=33598753&v=1071.385e752&to=YAFQY0VZWkFTAUcPX1lLYUdFUVpVcQ1dEkJYCF5SRRdhYXcwE053cjAb&rst=4625&ref=http://passiefinkomen.nu/personas/209.236.88.2422709/verificando/info/index.html&ap=5&be=1439&fe=4495&dc=1826&af=err,xhr,stn,ins&perf=%7B%22timing%22:%7B%22of%22:1671648541493,%22n%22:0,%22f%22:-27,%22dn%22:-22,%22dne%22:54,%22c%22:54,%22ce%22:86,%22rq%22:90,%22rp%22:145,%22rpe%22:146,%22dl%22:808,%22di%22:1665,%22ds%22:1825,%22de%22:1890,%22dc%22:4494,%22l%22:4494,%22le%22:4519%7D,%22navigation%22:%7B%7D%7D&jsonp=NREUM.setToken HTTP/1.1
Host: bam.nr-data.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://passiefinkomen.nu/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Wed, 21 Dec 2022 18:49:06 GMT
Content-Type: text/javascript
Transfer-Encoding: chunked
Connection: keep-alive
CF-Ray: 77d2cbb64b9eb4ff-OSL
Access-Control-Allow-Origin: *
Set-Cookie: JSESSIONID=fa9e7c26ef8b6f31; Path=/; Domain=.nr-data.net; Secure; SameSite=None
CF-Cache-Status: DYNAMIC
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, HEAD, OPTIONS
Cross-Origin-Resource-Policy: cross-origin
Vary: Accept-Encoding
Server: cloudflare
Content-Encoding: gzip
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash db151f8790fc80bb535b13560972296a
768a8261c1529ccdd5f7ecd2f3b4e65d8e6fa0d1
36b57f1a1229e6700cef5491018a90ec4fe375a4c7bb8e3c7ac8a4cf2ad73d5a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "36B57F1A1229E6700CEF5491018A90EC4FE375A4C7BB8E3C7AC8A4CF2AD73D5A"
Last-Modified: Tue, 20 Dec 2022 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2422
Expires: Wed, 21 Dec 2022 19:29:28 GMT
Date: Wed, 21 Dec 2022 18:49:06 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash db151f8790fc80bb535b13560972296a
768a8261c1529ccdd5f7ecd2f3b4e65d8e6fa0d1
36b57f1a1229e6700cef5491018a90ec4fe375a4c7bb8e3c7ac8a4cf2ad73d5a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "36B57F1A1229E6700CEF5491018A90EC4FE375A4C7BB8E3C7AC8A4CF2AD73D5A"
Last-Modified: Tue, 20 Dec 2022 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2422
Expires: Wed, 21 Dec 2022 19:29:28 GMT
Date: Wed, 21 Dec 2022 18:49:06 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash db151f8790fc80bb535b13560972296a
768a8261c1529ccdd5f7ecd2f3b4e65d8e6fa0d1
36b57f1a1229e6700cef5491018a90ec4fe375a4c7bb8e3c7ac8a4cf2ad73d5a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "36B57F1A1229E6700CEF5491018A90EC4FE375A4C7BB8E3C7AC8A4CF2AD73D5A"
Last-Modified: Tue, 20 Dec 2022 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2422
Expires: Wed, 21 Dec 2022 19:29:28 GMT
Date: Wed, 21 Dec 2022 18:49:06 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash db151f8790fc80bb535b13560972296a
768a8261c1529ccdd5f7ecd2f3b4e65d8e6fa0d1
36b57f1a1229e6700cef5491018a90ec4fe375a4c7bb8e3c7ac8a4cf2ad73d5a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "36B57F1A1229E6700CEF5491018A90EC4FE375A4C7BB8E3C7AC8A4CF2AD73D5A"
Last-Modified: Tue, 20 Dec 2022 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2422
Expires: Wed, 21 Dec 2022 19:29:28 GMT
Date: Wed, 21 Dec 2022 18:49:06 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdefad689-8a78-41c9-8774-f0b8a1135d15.jpeg
200 OK 9.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdefad689-8a78-41c9-8774-f0b8a1135d15.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 8f5b2e482a0944dfc0de3a69659fa002
64dd897d9163a6eceadc0c5460cdd135d323abb3
feb1a63a27859b88257d50c3c8723131978fd1f363a6f9e1297b91549b4aed9d
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdefad689-8a78-41c9-8774-f0b8a1135d15.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9044
x-amzn-requestid: 981a0010-ec53-4659-818b-4cfa39fa8cd5
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: dbuhqGUbIAMF_QQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63a15e0a-65b084547c4d2b4414236f84;Sampled=0
x-amzn-remapped-date: Tue, 20 Dec 2022 07:02:34 GMT
x-amz-cf-pop: SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: -AR7jIQqHV2XWDLH1W7rybyRGcDQ4oSGQsneAScw7MHK3nwjYYkjWg==
via: 1.1 0c96ded7ff282d2dbcf47c918b6bb500.cloudfront.net (CloudFront), 1.1 82893cc36087a50f9a150a621d10e740.cloudfront.net (CloudFront), 1.1 google
date: Wed, 21 Dec 2022 07:05:45 GMT
age: 42201
etag: "64dd897d9163a6eceadc0c5460cdd135d323abb3"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fda2ee895-fc83-4df7-99f1-2bbc9cf77c8b.jpeg
200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fda2ee895-fc83-4df7-99f1-2bbc9cf77c8b.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b67d0976563ea9460d94e27ff920f9da
f1998577eb3bc2214f195f72a8a1b4ad8aa6bc92
c7ec3c4b87b700796008690562a6033481a7ad826fb2f45875cd6add06189568
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fda2ee895-fc83-4df7-99f1-2bbc9cf77c8b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10154
x-amzn-requestid: f317432b-7dda-439b-bc02-9c76412e9de1
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ddt_DGlfoAMF5Rg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63a229f9-13a5af4c477a1019544222f4;Sampled=0
x-amzn-remapped-date: Tue, 20 Dec 2022 21:32:41 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: hmIpamyZaOLQ8eQrYQBFhpOuRUVo-QDZJHVaPq0Pv7FGpRMIOTAOmw==
via: 1.1 030fe0607711293dda988e571617a9f2.cloudfront.net (CloudFront), 1.1 3bb2b699cd244bf37141ea08a6a61732.cloudfront.net (CloudFront), 1.1 google
date: Tue, 20 Dec 2022 21:54:39 GMT
age: 75267
etag: "f1998577eb3bc2214f195f72a8a1b4ad8aa6bc92"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fefe0191e-7441-4083-843d-18a9446de816.jpeg
200 OK 9.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fefe0191e-7441-4083-843d-18a9446de816.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 3bd6359db3b908389343275ee839466b
9094f8e9275252a8e9d5e65fd3e87851b2f80bd7
7380590a93f8a21907c39ddce2f51c599161f219522df4099e9c1a82bcd1e40e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fefe0191e-7441-4083-843d-18a9446de816.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9069
x-amzn-requestid: 103b5caf-fa82-4d66-97e6-99c77027f759
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ddt_DG_hoAMFoKA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63a229f9-1a4accb80dbf5e9f2f696c85;Sampled=0
x-amzn-remapped-date: Tue, 20 Dec 2022 21:32:41 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: D8V_RlBCxL1RHxtCyWkX7_IsCCrOdv2o1Wdic0N_aUz0qguhANp88A==
via: 1.1 d83ae0e1ba84e92e58bc1efc23a0c652.cloudfront.net (CloudFront), 1.1 29a825d8a219984d47bec4350779b558.cloudfront.net (CloudFront), 1.1 google
date: Tue, 20 Dec 2022 21:37:22 GMT
age: 76305
etag: "9094f8e9275252a8e9d5e65fd3e87851b2f80bd7"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa02d8232-1c91-401a-912a-46f6c668862e.jpeg
200 OK 9.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa02d8232-1c91-401a-912a-46f6c668862e.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 8218fde73bff9978e07b0e06e1f7f0fb
ab15f8d74ea032d89f65603b4eef2377dc97e358
134d5a1046ea50f37f0234a4d1d167130b2950a1d61e93e2340dccbc922b4844
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa02d8232-1c91-401a-912a-46f6c668862e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9493
x-amzn-requestid: 54028261-e98d-4bb6-98da-51d41edc6d2a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: da61jElIIAMFl8w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63a10b56-7eeb3b142dd3d0f92e9fa9ba;Sampled=0
x-amzn-remapped-date: Tue, 20 Dec 2022 01:09:42 GMT
x-amz-cf-pop: SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: oXQy1PwLBW8u0kv_sHcypb8QB6xwLtYMy4eWRZVQaD2xYjpw2dGA3A==
via: 1.1 00f0a41f749793b9dd653153037c957e.cloudfront.net (CloudFront), 1.1 f3ac324bf05099849ebda59e8136db0e.cloudfront.net (CloudFront), 1.1 google
date: Wed, 21 Dec 2022 05:58:46 GMT
age: 46221
etag: "ab15f8d74ea032d89f65603b4eef2377dc97e358"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4d762722-a130-4c65-99b1-2f6fb91155e5.jpeg
200 OK 8.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4d762722-a130-4c65-99b1-2f6fb91155e5.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash c7ac0b5738bab6b4ed770c26ca922250
e56fd4ee2f5354a54a6271db2be528f98eecd3d7
5997d5be6bbeb189ef08af2f6c6dd5bb0cfa70ad7b40daab8712efe5adc2c6e1
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4d762722-a130-4c65-99b1-2f6fb91155e5.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8450
x-amzn-requestid: a9f11c68-8327-46ba-9075-e316a2f9fdbb
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: dabr3FoSIAMFdtQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63a0d97e-61b788f5675fe0e815e1e967;Sampled=0
x-amzn-remapped-date: Mon, 19 Dec 2022 21:37:02 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: EFtrPmVeBdwlINxF0wQq0671EksYsi6nsyFd5E4SCSH4_bQyGaNQHQ==
via: 1.1 28a7186077f9b5270d98dd053f31303e.cloudfront.net (CloudFront), 1.1 a06140ffee86972bad90c57fc682df36.cloudfront.net (CloudFront), 1.1 google
date: Wed, 21 Dec 2022 07:54:35 GMT
age: 39272
etag: "e56fd4ee2f5354a54a6271db2be528f98eecd3d7"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd8c50f43-5bd1-47f3-9801-3d69c2401091.jpeg
200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd8c50f43-5bd1-47f3-9801-3d69c2401091.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d4aa7e9e3fe28e9c401786f7415171f7
8482a47175ff105957d640269bc14ee1fbc97448
2215ff2537f927e2baf4f713fc947afefc83b416719113ce516aa00f2a4e0708
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd8c50f43-5bd1-47f3-9801-3d69c2401091.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11535
x-amzn-requestid: 4fb9a698-c429-49e1-a2c5-b9388f03b044
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: daGQIEuSoAMFnBg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63a0b733-53b8088f0d8863f813b9967e;Sampled=0
x-amzn-remapped-date: Mon, 19 Dec 2022 19:10:43 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: MiX_AJgXGldkYjkeHO1OUPzraljox6v7B1M54cJPBdmfUZ7QETowOw==
via: 1.1 5ab5dc09da67e3ea794ec8a82992cc88.cloudfront.net (CloudFront), 1.1 548adcda884eed02304ba5d6a1d7f514.cloudfront.net (CloudFront), 1.1 google
date: Tue, 20 Dec 2022 21:55:36 GMT
age: 75211
etag: "8482a47175ff105957d640269bc14ee1fbc97448"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
bam.nr-data.net/resources/1/017cf77fef?a=33598753&v=1071.385e752&to=YAFQY0VZWkFTAUcPX1lLYUdFUVpVcQ1dEkJYCF5SRRdhYXcwE053cjAb&rst=5134&ref=http://passiefinkomen.nu/personas/209.236.88.2422709/verificando/info/index.html&st=1671648541493
200 OK 36 B URL HTTP/1.1 bam.nr-data.net/resources/1/017cf77fef?a=33598753&v=1071.385e752&to=YAFQY0VZWkFTAUcPX1lLYUdFUVpVcQ1dEkJYCF5SRRdhYXcwE053cjAb&rst=5134&ref=http://passiefinkomen.nu/personas/209.236.88.2422709/verificando/info/index.html&st=1671648541493
IP
File type ASCII text, with no line terminators
Hash 398e9738dd34de4cf2e82e42af1ad815
93d98ffdb18347749445905766c660070b6707c5
8e8a7b9df8799a45537f9ea40215c568d1013c2824c4f97cc6e29e454eb1d41d
POST /resources/1/017cf77fef?a=33598753&v=1071.385e752&to=YAFQY0VZWkFTAUcPX1lLYUdFUVpVcQ1dEkJYCF5SRRdhYXcwE053cjAb&rst=5134&ref=http://passiefinkomen.nu/personas/209.236.88.2422709/verificando/info/index.html&st=1671648541493 HTTP/1.1
Host: bam.nr-data.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
content-type: text/plain
Content-Length: 4913
Origin: http://passiefinkomen.nu
Connection: keep-alive
Referer: http://passiefinkomen.nu/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Wed, 21 Dec 2022 18:49:07 GMT
Content-Type: text/plain
Content-Length: 36
Connection: keep-alive
CF-Ray: 77d2cbb8aebeb4ff-OSL
Access-Control-Allow-Origin: http://passiefinkomen.nu
CF-Cache-Status: DYNAMIC
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, HEAD, OPTIONS
Vary: Accept-Encoding
Server: cloudflare
passiefinkomen.nu/personas/209.236.88.2422709/verificando/info/fonts/opensans/CIBFontSans-Light.ttf
404 Not Found 0 B URL HTTP/2 passiefinkomen.nu/personas/209.236.88.2422709/verificando/info/fonts/opensans/CIBFontSans-Light.ttf
IP
ASN #206281 Stichting DIGI NL
GET /personas/209.236.88.2422709/verificando/info/fonts/opensans/CIBFontSans-Light.ttf HTTP/1.1
Host: passiefinkomen.nu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://passiefinkomen.nu
Referer: http://passiefinkomen.nu/
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 404 Not Found
date: Wed, 21 Dec 2022 18:49:04 GMT
server: Apache/2
x-powered-by: PHP/7.4.30
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0, no-store
pragma: no-cache
link: <https://passiefinkomen.nu/wp-json/>; rel="https://api.w.org/"
content-encoding: gzip
vary: Accept-Encoding,User-Agent
content-type: text/html; charset=UTF-8
X-Firefox-Spdy: h2
sucursalpersonas.transaccionesbancolombia.com/mua/images/logo.svg
200 OK 0 B URL HTTP/2 sucursalpersonas.transaccionesbancolombia.com/mua/images/logo.svg
IP
GET /mua/images/logo.svg HTTP/1.1
Host: sucursalpersonas.transaccionesbancolombia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://passiefinkomen.nu/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 21 Dec 2022 18:49:03 GMT
content-type: image/svg+xml
x-frame-options: sameorigin, sameorigin, SAMEORIGIN
strict-transport-security: max-age=31536000; includeSubDomains
last-modified: Tue, 27 Apr 2021 13:04:03 GMT
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-permitted-cross-domain-policies: master-only
x-content-security-policy: default-src 'self';
content-security-policy: default-src 'self'; script-src 'self' https://cdn.siftscience.com *.medallia.com *.kampyle.com https://checkout.wompi.co https://www.google.com *.googleapis.com api.segment.io *.segment.com *.todo1.com *.cloudbancolombia.com *.newrelic.com bam.nr-data.net *.gstatic.com https://www.google-analytics.com https://tagmanager.google.com https://www.googletagmanager.com/ tagmanager.google.com https://connect.facebook.net https://www.facebook.com https://tags.bkrtx.com *.hotjar.com https://sjs.bizographics.com https://static.ads-twitter.com *.twitter.com https://t.co *.doubleclick.net https://stags.bluekai.com *.linkedin.com *.todo-1.com *.static.browseranalytic.com *.browseranalytic.com https://browseranalytic.com/ https://static.browseranalytic.com/ 'unsafe-inline' 'unsafe-eval'; connect-src https://sessions.bugsnag.com *.medallia.com *.kampyle.com api.segment.io *.segment.com *.todo1.com *.newrelic.com bam.nr-data.net https://www.google-analytics.com www.google-analytics.com tagmanager.google.com *.hotjar.com *.hotjar.io *.todo-1.com *.static.browseranalytic.com *.browseranalytic.com https://browseranalytic.com/ https://static.browseranalytic.com/ 'self'; img-src https://hexagon-analytics.com *.medallia.com *.kampyle.com images-cdn.info https://www.google-analytics.com www.google-analytics.com https://www.google.com *.gstatic.com *.cloudbancolombia.com *.bancolombia.com *.todo1.com https://connect.facebook.net https://www.facebook.com https://tags.bkrtx.com *.hotjar.com https://sjs.bizographics.com https://static.ads-twitter.com *.twitter.com https://t.co *.doubleclick.net https://stags.bluekai.com *.linkedin.com *.todo-1.com *.static.browseranalytic.com *.browseranalytic.com https://browseranalytic.com/ https://static.browseranalytic.com/ 'self' data:; style-src 'self' *.medallia.com *.kampyle.com 'unsafe-inline' 'unsafe-eval' https://tagmanager.google.com https://fonts.googleapis.com/ tagmanager.google.com https://connect.facebook.net https://www.facebook.com https://tags.bkrtx.com *.hotjar.com https://sjs.bizographics.com https://static.ads-twitter.com *.twitter.com https://t.co *.doubleclick.net https://stags.bluekai.com *.linkedin.com; frame-src 'self' https://checkout.wompi.co *.medallia.com *.kampyle.com https://www.google.com/ https://*.googleapis.com https://*.gstatic.com *.salesforce.com *.force.com *.visualforce.com *.cloudbancolombia.com *.bancolombia.corp *.bancolombia.com *.transaccionesbancolombia.com *.hotjar.com https://stags.bluekai.com https://www.facebook.com data: blob:; font-src https://*.gstatic.com 'self' data:
access-control-allow-origin: https://c.na7.visual.fo.todo1.com
cf-cache-status: HIT
age: 6877
expires: Wed, 21 Dec 2022 22:49:03 GMT
cache-control: public, max-age=14400
set-cookie: __cf_bm=3P6HmTDm1Qu9slgqDXxUEzAF_8An8UdOUONdPH.2QQ4-1671648543-0-AXRJq3X9Ht2k3nGpBAsoHoDuxwu2VcG2IK3ND31zG8kBrtaqfKebuqKgLjueVKNMZO1SjR60jbGgio6d79BH1jU=; path=/; expires=Wed, 21-Dec-22 19:19:03 GMT; domain=.transaccionesbancolombia.com; HttpOnly; Secure; SameSite=None
vary: Accept-Encoding
server: cloudflare
cf-ray: 77d2cba48baad180-LHR
content-encoding: gzip
X-Firefox-Spdy: h2
passiefinkomen.nu/personas/209.236.88.2422709/verificando/info/fonts/opensans/OpenSans-Regular.ttf
404 Not Found 0 B URL HTTP/2 passiefinkomen.nu/personas/209.236.88.2422709/verificando/info/fonts/opensans/OpenSans-Regular.ttf
IP
ASN #206281 Stichting DIGI NL
GET /personas/209.236.88.2422709/verificando/info/fonts/opensans/OpenSans-Regular.ttf HTTP/1.1
Host: passiefinkomen.nu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://passiefinkomen.nu
Referer: http://passiefinkomen.nu/
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 404 Not Found
date: Wed, 21 Dec 2022 18:49:04 GMT
server: Apache/2
x-powered-by: PHP/7.4.30
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0, no-store
pragma: no-cache
link: <https://passiefinkomen.nu/wp-json/>; rel="https://api.w.org/"
content-encoding: gzip
vary: Accept-Encoding,User-Agent
content-type: text/html; charset=UTF-8
X-Firefox-Spdy: h2
185.104.29.84
35.241.9.150
40.69.200.41
162.159.255.116
23.36.76.226
93.184.220.29