ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash fb2c0697c6d9a96a5411dd2952947458
79e57f831ec396bbdaa5bfe9472a05e6c9fb31f4
3fd7edcc349ab4402f62e54a142be6b4cecf0e7ee3f431d3168bdf0643ba4d92
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2281
Cache-Control: max-age=131357
Content-Type: application/ocsp-response
Date: Sun, 04 Dec 2022 22:40:01 GMT
Etag: "638c76f5-1d7"
Expires: Tue, 06 Dec 2022 11:09:18 GMT
Last-Modified: Sun, 04 Dec 2022 10:31:17 GMT
Server: ECS (ska/F715)
X-Cache: HIT
Content-Length: 471
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash cfec3d7283a9b66d2be426ce54d210f3
808c1feb1ba918951d1928c1f6bfc0c253262774
1bad6c06aa3e88dcbc125fc98a6cb753eb2b18d2c8dd61da21d12209aeeda3f9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1BAD6C06AA3E88DCBC125FC98A6CB753EB2B18D2C8DD61DA21D12209AEEDA3F9"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3784
Expires: Sun, 04 Dec 2022 23:43:05 GMT
Date: Sun, 04 Dec 2022 22:40:01 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 1ea206ac3c440825741687351f8c6e4e
2f38dafd8c43dcce2411a0590bc5c02cd6286735
7d7232c8c91bcd18161ba2c9d23e3bff159604e058bd5b3fc1c7fcbcd03a7ee3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "7D7232C8C91BCD18161BA2C9D23E3BFF159604E058BD5B3FC1C7FCBCD03A7EE3"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4303
Expires: Sun, 04 Dec 2022 23:51:44 GMT
Date: Sun, 04 Dec 2022 22:40:01 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
34.102.187.140200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 30db107dcf4380cef05efea409c2e6a3
96e6a306fbc07299aba64e5c14e2bfca35872fa9
b64051a4a8e346e3c72b2aef77f360a5736ab5e16711d8e0bae3876feaa15b6e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Content-Type, Backoff, Content-Length, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sun, 04 Dec 2022 22:18:24 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 1297
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 9ebddc2b260d081ebbefee47c037cb28
492bad62a7ca6a74738921ef5ae6f0be5edebf39
74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5
GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: nDGNjqzSP47A3vsOoa84vD2cBsu+bpzFevxx/VAciBfV8ziJcTDmdvQlbLojY56zn5G6eMC4G9w=
x-amz-request-id: KEV89HDX6VG07XD1
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sun, 04 Dec 2022 21:47:43 GMT
age: 3138
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 04 Dec 2022 22:40:01 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash cdcae5d3f3bbf4ae5ccb002c6d9807e4
ab488b1bcd578233a315550e68a8bca5fd67d5a8
18759a29132986987637dfd6a13318b77abeec81c9fe1dc883399dd251fb0c3b
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "18759A29132986987637DFD6A13318B77ABEEC81C9FE1DC883399DD251FB0C3B"
Last-Modified: Sun, 04 Dec 2022 02:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Mon, 05 Dec 2022 04:40:01 GMT
Date: Sun, 04 Dec 2022 22:40:01 GMT
Connection: keep-alive
cep.com.pe/chame/images/juno/index.html
192.185.165.129200 OK 7.6 kB URL HTTP/2 cep.com.pe/chame/images/juno/index.html
IP 192.185.165.129:0
ASN #46606 UNIFIEDLAYER-AS-1
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (719)
Hash 81611889bbc3c1a7813af52991632aa0
3ab0077f75d117f3cd624e1ba07323afb2d158d6
df2c846dd6c35c6b1b1f5ea4f968a7507edf45fccfaf4657b0cd7ba13992f776
Analyzer Verdict Alert openphish Juno Online Services
fortinet Phishing
GET /chame/images/juno/index.html HTTP/1.1
Host: cep.com.pe
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
last-modified: Mon, 26 Sep 2022 11:27:14 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 7552
content-type: text/html
date: Sun, 04 Dec 2022 22:40:01 GMT
server: Apache
X-Firefox-Spdy: h2
cep.com.pe/chame/images/juno/js/trinity.js
192.185.165.129200 OK 982 B URL HTTP/2 cep.com.pe/chame/images/juno/js/trinity.js
IP 192.185.165.129:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (970)
Hash ee2b99fe190539be8a32fd3d0d644c07
79dd1ce139385a4637316761549cf7d964150756
33d0bf3fbb774711eac46dc0dcd2d84f916902cdd9a5fb26fcd62f6557403003
Analyzer Verdict Alert fortinet Phishing
GET /chame/images/juno/js/trinity.js HTTP/1.1
Host: cep.com.pe
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cep.com.pe/chame/images/juno/index.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 26 Sep 2022 11:27:14 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 982
content-type: application/javascript
date: Sun, 04 Dec 2022 22:40:01 GMT
server: Apache
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
34.102.187.140200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Last-Modified, Retry-After, Cache-Control, Content-Type, Pragma, Backoff, ETag, Expires, Content-Length, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sun, 04 Dec 2022 22:11:19 GMT
cache-control: public,max-age=3600
age: 1722
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2
cep.com.pe/chame/images/juno/js/pageview.js
192.185.165.129200 OK 264 B URL HTTP/2 cep.com.pe/chame/images/juno/js/pageview.js
IP 192.185.165.129:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash 33b4db9b95588a7f829c29586a3743a3
feb361ecc45f55b80ee20e5a5620ba010245ea65
631321062564871717add6bc0a0b4e42544d91d6f4c324f5cc616d24ec123a7f
Analyzer Verdict Alert fortinet Phishing
GET /chame/images/juno/js/pageview.js HTTP/1.1
Host: cep.com.pe
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cep.com.pe/chame/images/juno/index.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 26 Sep 2022 11:27:14 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 264
content-type: application/javascript
date: Sun, 04 Dec 2022 22:40:01 GMT
server: Apache
X-Firefox-Spdy: h2
cep.com.pe/chame/images/juno/css/sic.css
192.185.165.129200 OK 3.2 kB URL HTTP/2 cep.com.pe/chame/images/juno/css/sic.css
IP 192.185.165.129:0
ASN #46606 UNIFIEDLAYER-AS-1
File type Unicode text, UTF-8 text, with very long lines (439)
Hash 249c88901c11ce7cf0a4f51447967027
959b36b08555ad39d9dabd17882d1ca21c1f6b45
c1caf6919a9c6dbd6be8402088b8c7e3d1f5f33d85cb85ca5e6c5a572fcee3b6
GET /chame/images/juno/css/sic.css HTTP/1.1
Host: cep.com.pe
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cep.com.pe/chame/images/juno/index.html
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 26 Sep 2022 11:27:14 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 3240
content-type: text/css
date: Sun, 04 Dec 2022 22:40:01 GMT
server: Apache
X-Firefox-Spdy: h2
cep.com.pe/chame/images/juno/css/common-redesign.css
192.185.165.129200 OK 5.6 kB URL HTTP/2 cep.com.pe/chame/images/juno/css/common-redesign.css
IP 192.185.165.129:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash 8f20a7155ea7c5ea531ce5ec9271dcaa
43e1f2d89708f90fd335fd9176538840bdefbfd5
b7c19fa1d478f1b2f01cbdad4d4413e564a84dd67765e7704f4466ea24b83d7c
GET /chame/images/juno/css/common-redesign.css HTTP/1.1
Host: cep.com.pe
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cep.com.pe/chame/images/juno/index.html
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 26 Sep 2022 11:27:14 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 5587
content-type: text/css
date: Sun, 04 Dec 2022 22:40:01 GMT
server: Apache
X-Firefox-Spdy: h2
cep.com.pe/chame/images/juno/css/sp-redesign.css
192.185.165.129200 OK 11 kB URL HTTP/2 cep.com.pe/chame/images/juno/css/sp-redesign.css
IP 192.185.165.129:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash ff4820b9fecf625652f26b8bc7d1ec54
6b5c6bb96e7f2ca211fab80f1672a5546cd4cdbc
ae4daf486e2a76e0eb4fae2f809f14b2f4ade16f547d8d8a91d4caf7f13c252e
GET /chame/images/juno/css/sp-redesign.css HTTP/1.1
Host: cep.com.pe
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cep.com.pe/chame/images/juno/index.html
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 26 Sep 2022 11:27:14 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 11298
content-type: text/css
date: Sun, 04 Dec 2022 22:40:01 GMT
server: Apache
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 31b129c94a90b1e695b21395cb54e378
a3cae46b48d469cc61ab0581303bcd5f5b654db9
fac3f681be358a20f78958dff10c89b7a91365c5114c81246c1bc34c1362ba1e
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2262
Cache-Control: max-age=126272
Content-Type: application/ocsp-response
Date: Sun, 04 Dec 2022 22:40:01 GMT
Etag: "638c632b-1d7"
Expires: Tue, 06 Dec 2022 09:44:33 GMT
Last-Modified: Sun, 04 Dec 2022 09:06:51 GMT
Server: ECS (ska/F715)
X-Cache: HIT
Content-Length: 471
cep.com.pe/chame/images/juno/js/sovrn_standalone_beacon.js
192.185.165.129200 OK 1.2 kB URL HTTP/2 cep.com.pe/chame/images/juno/js/sovrn_standalone_beacon.js
IP 192.185.165.129:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (2333)
Hash 685ff52a28410b424916b2935314231a
d3b51e891072f94b3db0c971550adceb5a679abb
ff16ea74c3c37569df9061e35da00eb84a1ddca9ae4ce464deb0dabd2df0cb2e
Analyzer Verdict Alert fortinet Phishing
GET /chame/images/juno/js/sovrn_standalone_beacon.js HTTP/1.1
Host: cep.com.pe
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cep.com.pe/chame/images/juno/index.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 26 Sep 2022 11:27:14 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 1179
content-type: application/javascript
date: Sun, 04 Dec 2022 22:40:01 GMT
server: Apache
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 3c4319f54a5675ee9acda96c58f97ac6
210ea86db1836d430b321d59b4bd1b016c914f22
cb20ad3ec895ed3a2ae9b1a90dda6b7cc174d8851f3a15ba054a435746cbdc65
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 04 Dec 2022 22:40:01 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ssl.google-analytics.com/ga.js
142.250.74.40200 OK 17 kB URL HTTP/2 ssl.google-analytics.com/ga.js
IP 142.250.74.40:0
File type ASCII text, with very long lines (1305)
Hash 01d5892e6e243b52998310c2925b9f3a
58180151b6a6ee4af73583a214b68efb9e8844d4
7e90efb4620a78e8869796d256bcddbde90b853c8c15c5cc116cb11d3d17bc4d
GET /ga.js HTTP/1.1
Host: ssl.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cep.com.pe/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 17168
date: Sun, 04 Dec 2022 22:32:37 GMT
expires: Mon, 05 Dec 2022 00:32:37 GMT
cache-control: public, max-age=7200
age: 445
last-modified: Tue, 27 Sep 2022 22:01:05 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 5f16a534222e5749ef240d413826c2f6
11683d84d420dd6f919425094edb8961278f7fed
691ebf7feb1f7d6ae7e5e7efd678626c62042dda520506f262c7d9a67a48e3ed
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 04 Dec 2022 22:40:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
push.services.mozilla.com/
35.160.184.41101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 35.160.184.41:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 5vX9zrPQiFP331uUgVMQuw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: re6leq2uugyMKFSwd2zcnEOseHA=
ocsp.godaddy.com/
192.124.249.24200 OK 1.8 kB IP 192.124.249.24:0
Hash 73126a856c1ea714144d7b6577a49d09
92bfc0aa20322e31dcb78017e3ccdc4f0e59cded
301f00229730ea90fc3a4255180935d681f9e3f03c7810f825175ed2a59f0eb8
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 75
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Sun, 04 Dec 2022 22:40:02 GMT
Content-Type: application/ocsp-response
Content-Length: 1777
Connection: keep-alive
X-Sucuri-ID: 19024
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Sun, 04 Dec 2022 19:34:37 GMT
Expires: Mon, 05 Dec 2022 19:34:37 GMT
ETag: "92bfc0aa20322e31dcb78017e3ccdc4f0e59cded"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
cep.com.pe/chame/images/juno/js/common-redesign.js
192.185.165.129200 OK 2.5 kB URL HTTP/2 cep.com.pe/chame/images/juno/js/common-redesign.js
IP 192.185.165.129:0
ASN #46606 UNIFIEDLAYER-AS-1
File type C source, ASCII text, with very long lines (520)
Hash d71907dd80dc73a284e643e64240aaeb
2a97e9ca4f7c9215274422aaec37fd6bbfb78695
010424778dc4c2ce6da3aa3af103ed5fa8e4b6e6f08de384b9877f0f9d834011
Analyzer Verdict Alert fortinet Phishing
GET /chame/images/juno/js/common-redesign.js HTTP/1.1
Host: cep.com.pe
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cep.com.pe/chame/images/juno/index.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 26 Sep 2022 11:27:14 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 2545
content-type: application/javascript
date: Sun, 04 Dec 2022 22:40:01 GMT
server: Apache
X-Firefox-Spdy: h2
cep.com.pe/chame/images/juno/images/j_logo.png
192.185.165.129200 OK 11 kB URL HTTP/2 cep.com.pe/chame/images/juno/images/j_logo.png
IP 192.185.165.129:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 200 x 68, 8-bit/color RGBA, non-interlaced\012- data
Hash cc953fb1e1dba1d2cafa2ceb44ad981c
25400e7c44e6e1e238a01c44bcb8384e3d646556
a3bd4d5f4d5b6ccc9573c2bdb34fda04e96aff2f99bf162f3784acff5ab0bb32
GET /chame/images/juno/images/j_logo.png HTTP/1.1
Host: cep.com.pe
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cep.com.pe/chame/images/juno/index.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 26 Sep 2022 11:27:14 GMT
accept-ranges: bytes
content-length: 10627
content-type: image/png
date: Sun, 04 Dec 2022 22:40:01 GMT
server: Apache
X-Firefox-Spdy: h2
cep.com.pe/chame/images/juno/js/speed-detector.js
192.185.165.129200 OK 1.4 kB URL HTTP/2 cep.com.pe/chame/images/juno/js/speed-detector.js
IP 192.185.165.129:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (530)
Hash f650119608431583c09c2fcbc9789bbf
2ef9ac095b2c49fa42928de147d076de8d0c5ceb
9c7891845e606f656b97aa88dc0bbb2e9b44a6fa0eb4236b59752bfa1f021de5
Analyzer Verdict Alert fortinet Phishing
GET /chame/images/juno/js/speed-detector.js HTTP/1.1
Host: cep.com.pe
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cep.com.pe/chame/images/juno/index.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 26 Sep 2022 11:27:14 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 1384
content-type: application/javascript
date: Sun, 04 Dec 2022 22:40:01 GMT
server: Apache
X-Firefox-Spdy: h2
cep.com.pe/chame/images/juno/images/pv.gif
192.185.165.129200 OK 43 B URL HTTP/2 cep.com.pe/chame/images/juno/images/pv.gif
IP 192.185.165.129:0
ASN #46606 UNIFIEDLAYER-AS-1
File type GIF image data, version 89a, 1 x 1\012- data
Hash 325472601571f31e1bf00674c368d335
2daeaa8b5f19f0bc209d976c02bd6acb51b00b0a
b1442e85b03bdcaf66dc58c7abb98745dd2687d86350be9a298a1d9382ac849b
GET /chame/images/juno/images/pv.gif HTTP/1.1
Host: cep.com.pe
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cep.com.pe/chame/images/juno/index.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 26 Sep 2022 11:27:14 GMT
accept-ranges: bytes
content-length: 43
content-type: image/gif
date: Sun, 04 Dec 2022 22:40:01 GMT
server: Apache
X-Firefox-Spdy: h2
track.juno.com/s/pv?s=999999&a=logon&p=logon&d=unknown&i=A77414160D3815C887B320B14B2F3346.DCA-AS08&cf=&srt=0&crt=0&
64.136.45.32200 43 B URL HTTP/1.1 track.juno.com/s/pv?s=999999&a=logon&p=logon&d=unknown&i=A77414160D3815C887B320B14B2F3346.DCA-AS08&cf=&srt=0&crt=0&
IP 64.136.45.32:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 325472601571f31e1bf00674c368d335
2daeaa8b5f19f0bc209d976c02bd6acb51b00b0a
b1442e85b03bdcaf66dc58c7abb98745dd2687d86350be9a298a1d9382ac849b
GET /s/pv?s=999999&a=logon&p=logon&d=unknown&i=A77414160D3815C887B320B14B2F3346.DCA-AS08&cf=&srt=0&crt=0& HTTP/1.1
Host: track.juno.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cep.com.pe/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200
Pragma: no-cache
Cache-Control: no-cache,post-check=0,pre-check=0
Expires: 0
P3P: policyref="http://www.juno.com/common/w3c/juno.xml", CP="CAO DSP CURa ADMa DEVa TAIa PSAa PSDa OUR BUS IND PHY ONL UNI FIN COM NAV INT DEM PRE LOC"
X-User:
Set-Cookie: cf=; Domain=juno.com; Path=/
Content-Type: image/gif
Transfer-Encoding: chunked
Date: Sun, 04 Dec 2022 22:40:02 GMT
Keep-Alive: timeout=20
Connection: keep-alive
Server:
cep.com.pe/chame/images/juno/js/mobile-detect.min_001.js
192.185.165.129200 OK 16 kB URL HTTP/2 cep.com.pe/chame/images/juno/js/mobile-detect.min_001.js
IP 192.185.165.129:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (32109)
Hash 7ef3c24530d7473c4210c5fe385b1b3a
21660816541f831e729015bfc9f7321c776ee42f
43fa1cc14314ef647ed67ff8f618f9d67a90fd5bce2a8fe0747af051cdd2179f
Analyzer Verdict Alert fortinet Phishing
GET /chame/images/juno/js/mobile-detect.min_001.js HTTP/1.1
Host: cep.com.pe
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cep.com.pe/chame/images/juno/index.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 26 Sep 2022 11:27:14 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 15478
content-type: application/javascript
date: Sun, 04 Dec 2022 22:40:01 GMT
server: Apache
X-Firefox-Spdy: h2
cep.com.pe/chame/images/juno/css/OmnesBlack-Italic.otf
192.185.165.129200 OK 128 kB URL HTTP/2 cep.com.pe/chame/images/juno/css/OmnesBlack-Italic.otf
IP 192.185.165.129:0
ASN #46606 UNIFIEDLAYER-AS-1
File type OpenType font data\012- data
Size 128 kB (127820 bytes)
Hash bbf8bab1a2462ec5cf5b9254e11be984
4df82138c24ed60d9a0e648cb9d31f03e668f68d
0bcd3810de657ce5ade70c22120cb18341fe1f284c87de6fdf8d1e38a7111ee0
Analyzer Verdict Alert fortinet Phishing
GET /chame/images/juno/css/OmnesBlack-Italic.otf HTTP/1.1
Host: cep.com.pe
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cep.com.pe/chame/images/juno/css/common-redesign.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 26 Sep 2022 11:27:14 GMT
accept-ranges: bytes
content-length: 127820
content-type: font/otf
date: Sun, 04 Dec 2022 22:40:02 GMT
server: Apache
X-Firefox-Spdy: h2
cep.com.pe/chame/images/juno/jpt_003.dat
192.185.165.129200 OK 35 kB URL HTTP/2 cep.com.pe/chame/images/juno/jpt_003.dat
IP 192.185.165.129:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash 5638bc350b7b95bb1b85ee7b1d524098
9bf2f9f10b67efb893f06713e5aa111090107763
b33380aa440b57a22807c074ff83b0569551bccf3a5a7299aa5bc9b4728f7b86
Analyzer Verdict Alert fortinet Phishing
GET /chame/images/juno/jpt_003.dat HTTP/1.1
Host: cep.com.pe
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cep.com.pe/chame/images/juno/index.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
content-type: text/html; charset=UTF-8
date: Sun, 04 Dec 2022 22:40:01 GMT
server: Apache
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 83e0936435ad95a15c9ec5ff9520f4fe
a8225ee0d8ae117f977f7ff817c342c62e91b5a9
ef0f5b2ab2055446d4ea8b738f605c3bf835cf72e872d6a9c9a6c9b2917737e7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EF0F5B2AB2055446D4EA8B738F605C3BF835CF72E872D6A9C9A6C9B2917737E7"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9016
Expires: Mon, 05 Dec 2022 01:10:19 GMT
Date: Sun, 04 Dec 2022 22:40:03 GMT
Connection: keep-alive
cep.com.pe/chame/images/juno/js/pubtaglib-1.x.x.js
192.185.165.129200 OK 22 kB URL HTTP/2 cep.com.pe/chame/images/juno/js/pubtaglib-1.x.x.js
IP 192.185.165.129:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash 15e8555369a13fe2ed9815b60d1dd672
ac172f79cc52d029fa25d6ebb3c68eab43eabd44
8e6788201c9d86d91ec99f14ede153bde7bdf10c90f0f28daba2090bb59fa899
Analyzer Verdict Alert fortinet Phishing
GET /chame/images/juno/js/pubtaglib-1.x.x.js HTTP/1.1
Host: cep.com.pe
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cep.com.pe/chame/images/juno/index.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 26 Sep 2022 11:27:14 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: application/javascript
date: Sun, 04 Dec 2022 22:40:01 GMT
server: Apache
X-Firefox-Spdy: h2
cep.com.pe/static/account/view/img/webicon_j.ico
192.185.165.129200 OK 40 kB URL HTTP/2 cep.com.pe/static/account/view/img/webicon_j.ico
IP 192.185.165.129:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash 7ddbf9ae1838f8366870d0e1a52d5407
6cf44a5a97dc4b35cb13943ae82f4f5a2c40881d
ca1582d8e7c771226d03db3e1e6a77727a8feb3343a69ddceee88a011c039f66
Analyzer Verdict Alert fortinet Phishing
GET /static/account/view/img/webicon_j.ico HTTP/1.1
Host: cep.com.pe
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cep.com.pe/chame/images/juno/index.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
content-type: text/html; charset=UTF-8
date: Sun, 04 Dec 2022 22:40:03 GMT
server: Apache
X-Firefox-Spdy: h2
cep.com.pe/chame/images/juno/headertag.dat
192.185.165.129200 OK 43 kB URL HTTP/2 cep.com.pe/chame/images/juno/headertag.dat
IP 192.185.165.129:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash 3e01a79e0904b30a813adf60acbf8436
9742573fb1ca5252da22f82c140e7fa36085dce5
9fcf7768553fa126856415036660b4c78f6c9f5217af5f79aa6678314026a316
Analyzer Verdict Alert fortinet Phishing
GET /chame/images/juno/headertag.dat HTTP/1.1
Host: cep.com.pe
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cep.com.pe/chame/images/juno/index.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
content-type: text/html; charset=UTF-8
date: Sun, 04 Dec 2022 22:40:01 GMT
server: Apache
X-Firefox-Spdy: h2
cep.com.pe/chame/images/juno/js/publishertag.js
192.185.165.129200 OK 36 kB URL HTTP/2 cep.com.pe/chame/images/juno/js/publishertag.js
IP 192.185.165.129:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash 4d2d411a5828ae778906363591372438
b721717b68d08841bff8d020c51436e13d3f028d
7f8f97424dadadbd928a8aa782f37e016efe2348fb35cbb8fe5b45fdc1583a38
Analyzer Verdict Alert fortinet Phishing
GET /chame/images/juno/js/publishertag.js HTTP/1.1
Host: cep.com.pe
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cep.com.pe/chame/images/juno/index.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 26 Sep 2022 11:27:14 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: application/javascript
date: Sun, 04 Dec 2022 22:40:01 GMT
server: Apache
X-Firefox-Spdy: h2
cep.com.pe/chame/images/juno/jpt_001.dat
192.185.165.129200 OK 41 kB URL HTTP/2 cep.com.pe/chame/images/juno/jpt_001.dat
IP 192.185.165.129:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash 379b0781abaa33eb26b8cee21e5282bc
0029784479fc1e473ed62291ea4d2554ef1b6ef0
0f0661a4a3f5a0526487606f12fcf84fbbe2f9d0f98821d0c3147a86546246d2
Analyzer Verdict Alert fortinet Phishing
GET /chame/images/juno/jpt_001.dat HTTP/1.1
Host: cep.com.pe
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cep.com.pe/chame/images/juno/index.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
content-type: text/html; charset=UTF-8
date: Sun, 04 Dec 2022 22:40:01 GMT
server: Apache
X-Firefox-Spdy: h2
cep.com.pe/chame/images/juno/js/bid.js
192.185.165.129200 OK 41 kB URL HTTP/2 cep.com.pe/chame/images/juno/js/bid.js
IP 192.185.165.129:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash 72e20ec85e6d0435d42bc1854e42d3b9
9b453ff2942d6d364912c4d9fb3b2b7221754169
935cd7f56db1b20efb89cac642a467161a73cd4a9e8a1a5c18f3b2062c8f3364
Analyzer Verdict Alert fortinet Phishing
GET /chame/images/juno/js/bid.js HTTP/1.1
Host: cep.com.pe
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cep.com.pe/chame/images/juno/index.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
content-type: text/html; charset=UTF-8
date: Sun, 04 Dec 2022 22:40:01 GMT
server: Apache
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Feff698a5-ffc4-43ea-b7a3-b681cafeb108.jpeg
34.120.237.76200 OK 13 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Feff698a5-ffc4-43ea-b7a3-b681cafeb108.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 5d72fb8d20c29763234c2817b119d11b
d4924ec714f5157bcb2fddcb5f768188a3dd37dc
e9aa59142e0673ed3f58b36beaca48213c678dbe4655f9c4b64581cb0f6f22f6
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Feff698a5-ffc4-43ea-b7a3-b681cafeb108.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12830
x-amzn-requestid: 66f5f2fa-8472-4484-bbea-20ece7e98b1f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cmcsxGDyIAMFX4Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638c0e51-146167697890d9312ce3dbac;Sampled=0
x-amzn-remapped-date: Sun, 04 Dec 2022 03:04:49 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 2jx-M9MgKrJXU4yYsJzWqNXwruIGhFNWkD7GcPdqddnEzcNgFw2luw==
via: 1.1 5a1753718d8b33365e5f693dd338c510.cloudfront.net (CloudFront), 1.1 112d82578d402a38d8d02e8b857617e0.cloudfront.net (CloudFront), 1.1 google
date: Sun, 04 Dec 2022 03:27:17 GMT
age: 69166
etag: "d4924ec714f5157bcb2fddcb5f768188a3dd37dc"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
cep.com.pe/chame/images/juno/jpt_005.dat
192.185.165.129200 OK 0 B URL HTTP/2 cep.com.pe/chame/images/juno/jpt_005.dat
IP 192.185.165.129:0
ASN #46606 UNIFIEDLAYER-AS-1
Analyzer Verdict Alert fortinet Phishing
GET /chame/images/juno/jpt_005.dat HTTP/1.1
Host: cep.com.pe
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cep.com.pe/chame/images/juno/index.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
content-type: text/html; charset=UTF-8
date: Sun, 04 Dec 2022 22:40:01 GMT
server: Apache
X-Firefox-Spdy: h2
cep.com.pe/chame/images/juno/jpt_007.dat
192.185.165.129200 OK 0 B URL HTTP/2 cep.com.pe/chame/images/juno/jpt_007.dat
IP 192.185.165.129:0
ASN #46606 UNIFIEDLAYER-AS-1
Analyzer Verdict Alert fortinet Phishing
GET /chame/images/juno/jpt_007.dat HTTP/1.1
Host: cep.com.pe
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cep.com.pe/chame/images/juno/index.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
content-type: text/html; charset=UTF-8
date: Sun, 04 Dec 2022 22:40:01 GMT
server: Apache
X-Firefox-Spdy: h2
cep.com.pe/chame/images/juno/jpt_004.dat
192.185.165.129200 OK 0 B URL HTTP/2 cep.com.pe/chame/images/juno/jpt_004.dat
IP 192.185.165.129:0
ASN #46606 UNIFIEDLAYER-AS-1
Analyzer Verdict Alert fortinet Phishing
GET /chame/images/juno/jpt_004.dat HTTP/1.1
Host: cep.com.pe
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cep.com.pe/chame/images/juno/index.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
content-type: text/html; charset=UTF-8
date: Sun, 04 Dec 2022 22:40:01 GMT
server: Apache
X-Firefox-Spdy: h2
cep.com.pe/chame/images/juno/js/ga.js
192.185.165.129200 OK 0 B URL HTTP/2 cep.com.pe/chame/images/juno/js/ga.js
IP 192.185.165.129:0
ASN #46606 UNIFIEDLAYER-AS-1
Analyzer Verdict Alert fortinet Phishing
GET /chame/images/juno/js/ga.js HTTP/1.1
Host: cep.com.pe
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cep.com.pe/chame/images/juno/index.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 26 Sep 2022 11:27:14 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: application/javascript
date: Sun, 04 Dec 2022 22:40:01 GMT
server: Apache
X-Firefox-Spdy: h2
cep.com.pe/chame/images/juno/jpt.dat
192.185.165.129200 OK 0 B URL HTTP/2 cep.com.pe/chame/images/juno/jpt.dat
IP 192.185.165.129:0
ASN #46606 UNIFIEDLAYER-AS-1
Analyzer Verdict Alert fortinet Phishing
GET /chame/images/juno/jpt.dat HTTP/1.1
Host: cep.com.pe
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cep.com.pe/chame/images/juno/index.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
content-type: text/html; charset=UTF-8
date: Sun, 04 Dec 2022 22:40:01 GMT
server: Apache
X-Firefox-Spdy: h2
cep.com.pe/chame/images/juno/js/jquery-1.12.3.min.js
192.185.165.129200 OK 0 B URL HTTP/2 cep.com.pe/chame/images/juno/js/jquery-1.12.3.min.js
IP 192.185.165.129:0
ASN #46606 UNIFIEDLAYER-AS-1
Analyzer Verdict Alert fortinet Phishing
GET /chame/images/juno/js/jquery-1.12.3.min.js HTTP/1.1
Host: cep.com.pe
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cep.com.pe/chame/images/juno/index.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 26 Sep 2022 11:27:14 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: application/javascript
date: Sun, 04 Dec 2022 22:40:01 GMT
server: Apache
X-Firefox-Spdy: h2
cep.com.pe/chame/images/juno/v2.dat
192.185.165.129200 OK 0 B URL HTTP/2 cep.com.pe/chame/images/juno/v2.dat
IP 192.185.165.129:0
ASN #46606 UNIFIEDLAYER-AS-1
Analyzer Verdict Alert fortinet Phishing
GET /chame/images/juno/v2.dat HTTP/1.1
Host: cep.com.pe
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cep.com.pe/chame/images/juno/index.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
content-type: text/html; charset=UTF-8
date: Sun, 04 Dec 2022 22:40:01 GMT
server: Apache
X-Firefox-Spdy: h2
cep.com.pe/chame/images/juno/jpt_006.dat
192.185.165.129200 OK 0 B URL HTTP/2 cep.com.pe/chame/images/juno/jpt_006.dat
IP 192.185.165.129:0
ASN #46606 UNIFIEDLAYER-AS-1
Analyzer Verdict Alert fortinet Phishing
GET /chame/images/juno/jpt_006.dat HTTP/1.1
Host: cep.com.pe
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cep.com.pe/chame/images/juno/index.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
content-type: text/html; charset=UTF-8
date: Sun, 04 Dec 2022 22:40:01 GMT
server: Apache
X-Firefox-Spdy: h2
cep.com.pe/chame/images/juno/css/bootstrap.min.css
192.185.165.129200 OK 0 B URL HTTP/2 cep.com.pe/chame/images/juno/css/bootstrap.min.css
IP 192.185.165.129:0
ASN #46606 UNIFIEDLAYER-AS-1
GET /chame/images/juno/css/bootstrap.min.css HTTP/1.1
Host: cep.com.pe
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cep.com.pe/chame/images/juno/index.html
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 26 Sep 2022 11:27:14 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/css
date: Sun, 04 Dec 2022 22:40:01 GMT
server: Apache
X-Firefox-Spdy: h2
cep.com.pe/chame/images/juno/v2_001.dat
192.185.165.129200 OK 0 B URL HTTP/2 cep.com.pe/chame/images/juno/v2_001.dat
IP 192.185.165.129:0
ASN #46606 UNIFIEDLAYER-AS-1
Analyzer Verdict Alert fortinet Phishing
GET /chame/images/juno/v2_001.dat HTTP/1.1
Host: cep.com.pe
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cep.com.pe/chame/images/juno/index.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
content-type: text/html; charset=UTF-8
date: Sun, 04 Dec 2022 22:40:01 GMT
server: Apache
X-Firefox-Spdy: h2
cep.com.pe/chame/images/juno/jpt_002.dat
192.185.165.129200 OK 0 B URL HTTP/2 cep.com.pe/chame/images/juno/jpt_002.dat
IP 192.185.165.129:0
ASN #46606 UNIFIEDLAYER-AS-1
Analyzer Verdict Alert fortinet Phishing
GET /chame/images/juno/jpt_002.dat HTTP/1.1
Host: cep.com.pe
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cep.com.pe/chame/images/juno/index.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
content-type: text/html; charset=UTF-8
date: Sun, 04 Dec 2022 22:40:01 GMT
server: Apache
X-Firefox-Spdy: h2
cep.com.pe/chame/images/juno/jpt_008.dat
192.185.165.129200 OK 0 B URL HTTP/2 cep.com.pe/chame/images/juno/jpt_008.dat
IP 192.185.165.129:0
ASN #46606 UNIFIEDLAYER-AS-1
Analyzer Verdict Alert fortinet Phishing
GET /chame/images/juno/jpt_008.dat HTTP/1.1
Host: cep.com.pe
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cep.com.pe/chame/images/juno/index.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
content-type: text/html; charset=UTF-8
date: Sun, 04 Dec 2022 22:40:01 GMT
server: Apache
X-Firefox-Spdy: h2