Report - gor.gloryforever.co/wp-content/plugins/royal-elementor-addons/extensions/popular/emailerror.php?cmd=login_submit&id=7a13d5c5f2ae0156b215e54c096d71d67a13d5c5f2ae0156b215e54c096d71d6&session=7a13d5c5f2ae0156b215e54c096d71d67a13d5c5f2ae0156b215e54c096d71d6

Report Overview

Submitted URL
gor.gloryforever.co/wp-content/plugins/royal-elementor-addons/extensions/popular/emailerror.php?cmd=login_submit&id=7a13d5c5f2ae0156b215e54c096d71d67a13d5c5f2ae0156b215e54c096d71d6&session=7a13d5c5f2ae0156b215e54c096d71d67a13d5c5f2ae0156b215e54c096d71d6
IP
104.21.26.38
ASN
#13335 CLOUDFLARENET
Submitted
2024-04-18 00:04:09
Access
public
Website Title
Mi Banco | Verificación de Email
Final URL
gor.gloryforever.co/wp-content/plugins/royal-elementor-addons/extensions/popular/emailerror.php?cmd=login_submit&id=7a13d5c5f2ae0156b215e54c096d71d67a13d5c5f2ae0156b215e54c096d71d6&session=7a13d5c5f2ae0156b215e54c096d71d67a13d5c5f2ae0156b215e54c096d71d6
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
2
Threat Detection Systems
0

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
www.bancopopular.com	307562	1995-09-01	2013-10-22	2024-04-17	4.3 kB	91 kB	66.22.18.146
fonts.gstatic.com	unknown	2008-02-11	2014-09-09	2024-04-17	546 B	49 kB	142.250.74.99
fonts.googleapis.com	8877	2005-01-25	2013-06-10	2024-04-17	472 B	16 kB	142.250.74.106
gor.gloryforever.co	unknown	2017-04-06	2023-11-08	2024-04-16	1.4 kB	18 kB	104.21.26.38

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Timestamp	Severity	Source IP	Destination IP	Alert
2024-04-18 00:03:44	high	Client IP	104.21.26.38	ET PHISHING Generic Phishkit Activity (GET)
2024-04-18 00:03:44	medium	Client IP	104.21.26.38	ET PHISHING Possible Compromised Wordpress - Generic Phishing Landing 2018-01-22

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (7)

	URL	Size	First Seen	Last Seen
	www.bancopopular.com/cibp-web/js/rsa.js	37 kB	2023-03-08	2024-04-27
Pretty URL www.bancopopular.com/cibp-web/js/rsa.js IP 66.22.18.146 ASN #25773 RADWARE-CLOUD-SERVICES Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 08:24:27 Last Seen2024-04-27 20:25:53 Times Seen128 Hash 8c3ebd129f6e98eb8124cd397fd1ca16 a3a66d7f4d2d106e3f78c329d29c4fcbcb5ad28f 82d94151710d799643f5ed16e61c802de5cbadef8d4fce3aee3bb0d95cd65943 Loading...

	gor.gloryforever.co/wp-content/plugins/royal-elementor-addons/extensions/popular/sandbox%20eval%20code	147 B	2023-04-11	2024-05-01
Pretty URL gor.gloryforever.co/wp-content/plugins/royal-elementor-addons/extensions/popular/sandbox%20eval%20code IP 0.0.0.0 ASN #0 Introduced by Embedded in HTML false Observations First Seen2023-04-11 21:07:53 Last Seen2024-05-01 05:07:01 Times Seen343653 Hash 92b651082ce234f66bb544e678befda3 14c21c55ddce43b6f677caadf51d4ab98c6a3df8 25d57d1d97abeb84531d3d3e5754dd5cb19a2c115edfa7cfc7af8247084faded Loading...

	www.google-analytics.com/analytics.js	4.7 kB	2023-04-11	2024-05-01
Pretty URL www.google-analytics.com/analytics.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-11 21:07:53 Last Seen2024-05-01 05:07:01 Times Seen343148 Hash f24128d0c9cba7be2916c693427a3483 1b6397d496ea896ebc2018b01b995cee4f166029 58173de4697da1a218f04c3a783a733bab4e769ceabc37cd42da9dc3e036a7e8 Loading...

	gor.gloryforever.co/wp-content/plugins/royal-elementor-addons/extensions/popular/emailerror.php?cmd=login_submit&id=7a13d5c5f2ae0156b215e54c096d71d67a13d5c5f2ae0156b215e54c096d71d6&session=7a13d5c5f2ae0156b215e54c096d71d67a13d5c5f2ae0156b215e54c096d71d6	34 kB	2023-09-28	2024-04-27
Pretty URL gor.gloryforever.co/wp-content/plugins/royal-elementor-addons/extensions/popular/emailerror.php?cmd=login_submit&id=7a13d5c5f2ae0156b215e54c096d71d67a13d5c5f2ae0156b215e54c096d71d6&session=7a13d5c5f2ae0156b215e54c096d71d67a13d5c5f2ae0156b215e54c096d71d6 IP 104.21.26.38 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-09-28 20:21:32 Last Seen2024-04-27 20:25:52 Times Seen27 Hash 6084a70c57e3536ed73c176a5df220e5 18e080b28a3e15175c49f66d3bcfb0e514628ea9 aa56bb15cd5478b01785d9668b8382e3182eccd372e2656dbe0deb6bc2eb77c0 Loading...

	www.bancopopular.com/cibp-web/js/hashtable.js	14 kB	2023-03-08	2024-04-27
Pretty URL www.bancopopular.com/cibp-web/js/hashtable.js IP 66.22.18.146 ASN #25773 RADWARE-CLOUD-SERVICES Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 08:24:27 Last Seen2024-04-27 20:25:53 Times Seen126 Hash a11eb8f01091b28109c47f9e92a79c26 d476f6f2bcc36425ea6aed930414c67f6136df15 92348aac19ebeadb05087b4606a7e10464d1364bf7973beb5d1a7e1cdebb4abf Loading...

	gor.gloryforever.co/wp-content/plugins/royal-elementor-addons/extensions/popular/emailerror.php?cmd=login_submit&id=7a13d5c5f2ae0156b215e54c096d71d67a13d5c5f2ae0156b215e54c096d71d6&session=7a13d5c5f2ae0156b215e54c096d71d67a13d5c5f2ae0156b215e54c096d71d6	366 B	2023-09-29	2024-04-18
Pretty URL gor.gloryforever.co/wp-content/plugins/royal-elementor-addons/extensions/popular/emailerror.php?cmd=login_submit&id=7a13d5c5f2ae0156b215e54c096d71d67a13d5c5f2ae0156b215e54c096d71d6&session=7a13d5c5f2ae0156b215e54c096d71d67a13d5c5f2ae0156b215e54c096d71d6 IP 104.21.26.38 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-09-29 08:43:07 Last Seen2024-04-18 02:04:09 Times Seen4 Hash 1bdfc76b53682ae48185a354255a6c3b ec6858ec001215bf68ad2a04c50884e670a89492 60cc5c506b85610d21e05fc8fa0f0f99b71ed90865ee9c4de1185567d17b9fe7 Loading...

	gor.gloryforever.co/wp-content/plugins/royal-elementor-addons/extensions/popular/emailerror.php?cmd=login_submit&id=7a13d5c5f2ae0156b215e54c096d71d67a13d5c5f2ae0156b215e54c096d71d6&session=7a13d5c5f2ae0156b215e54c096d71d67a13d5c5f2ae0156b215e54c096d71d6	1.3 kB	2023-09-29	2024-04-18
Pretty URL gor.gloryforever.co/wp-content/plugins/royal-elementor-addons/extensions/popular/emailerror.php?cmd=login_submit&id=7a13d5c5f2ae0156b215e54c096d71d67a13d5c5f2ae0156b215e54c096d71d6&session=7a13d5c5f2ae0156b215e54c096d71d67a13d5c5f2ae0156b215e54c096d71d6 IP 104.21.26.38 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-09-29 08:43:07 Last Seen2024-04-18 02:04:09 Times Seen4 Hash b49651ff5134f28a2c7890de0d66ffe6 2c5a7f52f3eca0bbcd654f3b830bebd42be31e8b e0d67c81ca65d4cc31c6771237f776fafb72c9b735760e21dc1b160c5206d507 Loading...

HTTP Transactions (13)

URL IP Response Size

gor.gloryforever.co/wp-content/plugins/royal-elementor-addons/extensions/popular/emailerror.php?cmd=login_submit&id=7a13d5c5f2ae0156b215e54c096d71d67a13d5c5f2ae0156b215e54c096d71d6&session=7a13d5c5f2ae0156b215e54c096d71d67a13d5c5f2ae0156b215e54c096d71d6

104.21.26.38

301 Moved Permanently

167 B

URL User Request GET HTTP/1.1
gor.gloryforever.co/wp-content/plugins/royal-elementor-addons/extensions/popular/emailerror.php?cmd=login_submit&id=7a13d5c5f2ae0156b215e54c096d71d67a13d5c5f2ae0156b215e54c096d71d6&session=7a13d5c5f2ae0156b215e54c096d71d67a13d5c5f2ae0156b215e54c096d71d6
IP
104.21.26.38:80
ASN
#13335 CLOUDFLARENET

File type
HTML document, ASCII text, with CRLF line terminators
Size
167 B (167 bytes)
Hash
0104c301c5e02bd6148b8703d19b3a73
7436e0b4b1f8c222c38069890b75fa2baf9ca620
446a6087825fa73eadb045e5a2e9e2adf7df241b571228187728191d961dda1f

Detections

NIDS	Severity	Alert
suricata	high	ET PHISHING Generic Phishkit Activity (GET)
suricata	medium	ET PHISHING Possible Compromised Wordpress - Generic Phishing Landing 2018-01-22

HTTP Headers

GET /wp-content/plugins/royal-elementor-addons/extensions/popular/emailerror.php?cmd=login_submit&id=7a13d5c5f2ae0156b215e54c096d71d67a13d5c5f2ae0156b215e54c096d71d6&session=7a13d5c5f2ae0156b215e54c096d71d67a13d5c5f2ae0156b215e54c096d71d6 HTTP/1.1
Host: gor.gloryforever.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Cookie: PHPSESSID=8gruv3re7b8qu68rvue7j09hu0
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 301 Moved Permanently
Date: Thu, 18 Apr 2024 00:03:44 GMT
Content-Type: text/html
Content-Length: 167
Connection: keep-alive
Cache-Control: max-age=3600
Expires: Thu, 18 Apr 2024 01:03:44 GMT
Location: https://gor.gloryforever.co/wp-content/plugins/royal-elementor-addons/extensions/popular/emailerror.php?cmd=login_submit&id=7a13d5c5f2ae0156b215e54c096d71d67a13d5c5f2ae0156b215e54c096d71d6&session=7a13d5c5f2ae0156b215e54c096d71d67a13d5c5f2ae0156b215e54c096d71d6
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=T%2BxR%2Bsei2UmdgciIsP2myHoVcirY3TGOrndNQTdkVnkoV%2BAiMkS3Ii%2Bwr8OMb%2FOOKnHnaTZcdtWvlNxZzRe449mdOpzlt5SBIDuueSTDu6Q1NWVEcNh6RaxfhtiHtk3UD9HZV5Db"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 876064bce95ab4f4-OSL
alt-svc: h2=":443"; ma=60

172.67.135.90

301 Moved Permanently

16 kB

URL User Request GET HTTP/1.1
gor.gloryforever.co/wp-content/plugins/royal-elementor-addons/extensions/popular/emailerror.php?cmd=login_submit&id=7a13d5c5f2ae0156b215e54c096d71d67a13d5c5f2ae0156b215e54c096d71d6&session=7a13d5c5f2ae0156b215e54c096d71d67a13d5c5f2ae0156b215e54c096d71d6
IP
172.67.135.90:80
ASN
#13335 CLOUDFLARENET

File type
HTML document, Unicode text, UTF-8 text, with very long lines (35184), with CRLF line terminators
Size
16 kB (16211 bytes)
Hash
cd8536f40b63a21261bd50772107305f
489f6d1f48c575e7d58d1fbfcf9230d458082d24
ff395b51926e3aae218f0292c5cf07db4bc7514772556ce255ddc5ea64992e40

Detections

NIDS	Severity	Alert
suricata	high	ET PHISHING Generic Phishkit Activity (GET)
suricata	medium	ET PHISHING Possible Compromised Wordpress - Generic Phishing Landing 2018-01-22

HTTP Headers

GET /wp-content/plugins/royal-elementor-addons/extensions/popular/emailerror.php?cmd=login_submit&id=7a13d5c5f2ae0156b215e54c096d71d67a13d5c5f2ae0156b215e54c096d71d6&session=7a13d5c5f2ae0156b215e54c096d71d67a13d5c5f2ae0156b215e54c096d71d6 HTTP/1.1
Host: gor.gloryforever.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: PHPSESSID=8gruv3re7b8qu68rvue7j09hu0
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 404 Not Found
date: Thu, 18 Apr 2024 00:03:45 GMT
content-type: text/html; charset=UTF-8
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=vrKXdv7RUDxDZuTqFJrQBxeTzeEijCpE5UN494fy0fY3toR1EzhKUGQth1ehJF04Kgwe9xTqg7MDX7FQ5Hm8IawcGS5ivYzL%2BEIRZHRCF7kWDUHBaiosoqU9UOf64vSvzkOhSPZO"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 876064bd0fe656af-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

www.bancopopular.com/cibp-web/css/font-opensans.css

66.22.18.146

200

505 B

URL GET HTTP/1.1
www.bancopopular.com/cibp-web/css/font-opensans.css
IP
66.22.18.146:443
ASN
#25773 RADWARE-CLOUD-SERVICES

Requested by
https://gor.gloryforever.co/wp-content/plugins/royal-elementor-addons/extensions/popular/emailerror.php?cmd=login_submit&id=7a13d5c5f2ae0156b215e54c096d71d67a13d5c5f2ae0156b215e54c096d71d6&session=7a13d5c5f2ae0156b215e54c096d71d67a13d5c5f2ae0156b215e54c096d71d6
Certificate
IssuerDigiCert Inc
Subjectbancopopular.com
Fingerprint34:97:BF:3D:EA:8E:F9:48:3C:8D:63:06:D6:50:EB:B2:92:1F:D7:2B
ValidityWed, 20 Sep 2023 00:00:00 GMT - Mon, 30 Sep 2024 23:59:59 GMT

File type
ASCII text
Size
505 B (505 bytes)
Hash
2fa0fd036408f4e92b5a8aa49a47dc99
f87c202ed0a7620b7dfc88b25926773dc2b587c0
2ad94bcd545ad7b8278ad2383c3c3c5fd7641be745000910fd710ff555faa5f5

HTTP Headers

GET /cibp-web/css/font-opensans.css HTTP/1.1
Host: www.bancopopular.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://gor.gloryforever.co/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 
Content-Type: text/css;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Expires: 1729209825951
Cache-Control: max-age=360000, must-revalidate, public
Access-Control-Allow-Credentials: true
ETag: W/"2150-1710529712000"
Last-Modified: Fri, 15 Mar 2024 19:08:32 GMT
Date: Thu, 18 Apr 2024 00:03:45 GMT
Set-Cookie: JSESSIONID=2309219F83893F093DBE5C5BFF118F58.cibp36a; Path=/cibp-web; Secure; HttpOnly
www_bancopopular_com=!FkPGbypjFYUirPV0laUPHYahIO/XdzMKWKuYEMVOCvoP3oEyET30cMcOhYDSC9ht1AoaTxDdHEB/at8hqUfCSEczSdPzwDmDp9UoFc1qOA==; path=/; Httponly; Secure
Content-Security-Policy: script-src 'self' 'unsafe-eval' 'unsafe-inline' 'unsafe-hashes' https://*.bancopopular.com https://ajax.googleapis.com https://*.google-analytics.com https://js-agent.newrelic.com https://bam.nr-data.net; frame-ancestors 'self' https://*.bancopopular.com
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=31536000
Content-Encoding: gzip

www.bancopopular.com/cibp-web/js/hashtable.js

66.22.18.146

200

4.0 kB

URL GET HTTP/1.1
www.bancopopular.com/cibp-web/js/hashtable.js
IP
66.22.18.146:443
ASN
#25773 RADWARE-CLOUD-SERVICES

Requested by
https://gor.gloryforever.co/wp-content/plugins/royal-elementor-addons/extensions/popular/emailerror.php?cmd=login_submit&id=7a13d5c5f2ae0156b215e54c096d71d67a13d5c5f2ae0156b215e54c096d71d6&session=7a13d5c5f2ae0156b215e54c096d71d67a13d5c5f2ae0156b215e54c096d71d6
Certificate
IssuerDigiCert Inc
Subjectbancopopular.com
Fingerprint34:97:BF:3D:EA:8E:F9:48:3C:8D:63:06:D6:50:EB:B2:92:1F:D7:2B
ValidityWed, 20 Sep 2023 00:00:00 GMT - Mon, 30 Sep 2024 23:59:59 GMT

File type
JavaScript source, ASCII text, with CRLF line terminators
Size
4.0 kB (4001 bytes)
Hash
a11eb8f01091b28109c47f9e92a79c26
d476f6f2bcc36425ea6aed930414c67f6136df15
92348aac19ebeadb05087b4606a7e10464d1364bf7973beb5d1a7e1cdebb4abf

HTTP Headers

GET /cibp-web/js/hashtable.js HTTP/1.1
Host: www.bancopopular.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://gor.gloryforever.co/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 
Content-Type: application/javascript;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Credentials: true
ETag: W/"14082-1710530518000"
Last-Modified: Fri, 15 Mar 2024 19:21:58 GMT
Date: Thu, 18 Apr 2024 00:03:45 GMT
Set-Cookie: JSESSIONID=5A15FED299F8E575E5F356CC82C11806.cibp33b; Path=/cibp-web; Secure; HttpOnly
www_bancopopular_com=!Li7cOqlJRJ0pzKB0laUPHYahIO/Xd0xoj47FAqZMFpPlgHK/81txSDJs1UUpIoYD9mkcDxXsRgpmJ7LvHM+2UyY3x4l2bws/0XcEyqCURw==; path=/; Httponly; Secure
Content-Security-Policy: script-src 'self' 'unsafe-eval' 'unsafe-inline' 'unsafe-hashes' https://*.bancopopular.com https://ajax.googleapis.com https://*.google-analytics.com https://js-agent.newrelic.com https://bam.nr-data.net; frame-ancestors 'self' https://*.bancopopular.com
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=31536000
Content-Encoding: gzip

www.bancopopular.com/cibp-web/js/rsa.js

66.22.18.146

200

12 kB

URL GET HTTP/1.1
www.bancopopular.com/cibp-web/js/rsa.js
IP
66.22.18.146:443
ASN
#25773 RADWARE-CLOUD-SERVICES

Requested by
https://gor.gloryforever.co/wp-content/plugins/royal-elementor-addons/extensions/popular/emailerror.php?cmd=login_submit&id=7a13d5c5f2ae0156b215e54c096d71d67a13d5c5f2ae0156b215e54c096d71d6&session=7a13d5c5f2ae0156b215e54c096d71d67a13d5c5f2ae0156b215e54c096d71d6
Certificate
IssuerDigiCert Inc
Subjectbancopopular.com
Fingerprint34:97:BF:3D:EA:8E:F9:48:3C:8D:63:06:D6:50:EB:B2:92:1F:D7:2B
ValidityWed, 20 Sep 2023 00:00:00 GMT - Mon, 30 Sep 2024 23:59:59 GMT

File type
ASCII text, with very long lines (1826), with CRLF line terminators
Size
12 kB (12315 bytes)
Hash
8c3ebd129f6e98eb8124cd397fd1ca16
a3a66d7f4d2d106e3f78c329d29c4fcbcb5ad28f
82d94151710d799643f5ed16e61c802de5cbadef8d4fce3aee3bb0d95cd65943

HTTP Headers

GET /cibp-web/js/rsa.js HTTP/1.1
Host: www.bancopopular.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://gor.gloryforever.co/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 
Content-Type: application/javascript;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Credentials: true
ETag: W/"37142-1710530516000"
Last-Modified: Fri, 15 Mar 2024 19:21:56 GMT
Date: Thu, 18 Apr 2024 00:03:45 GMT
Set-Cookie: JSESSIONID=86A794FAC7A5C08BC62CF26BC892A49F.cibp35a; Path=/cibp-web; Secure; HttpOnly
www_bancopopular_com=!mh6sxltpaOyaX650laUPHYahIO/XdwkGBE8J2Pvfm0Zzj6zvBUA8vNF7FZeQ22rS/OxZC4b1w7Mx7N5B0KwE6TVfzqBMtOdVih4BagbRBA==; path=/; Httponly; Secure
Content-Security-Policy: script-src 'self' 'unsafe-eval' 'unsafe-inline' 'unsafe-hashes' https://*.bancopopular.com https://ajax.googleapis.com https://*.google-analytics.com https://js-agent.newrelic.com https://bam.nr-data.net; frame-ancestors 'self' https://*.bancopopular.com
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=31536000
Content-Encoding: gzip

www.bancopopular.com/cibp-web/img/popular-logo.png

66.22.18.146

200

4.5 kB

URL GET HTTP/1.1
www.bancopopular.com/cibp-web/img/popular-logo.png
IP
66.22.18.146:443
ASN
#25773 RADWARE-CLOUD-SERVICES

Requested by
https://gor.gloryforever.co/wp-content/plugins/royal-elementor-addons/extensions/popular/emailerror.php?cmd=login_submit&id=7a13d5c5f2ae0156b215e54c096d71d67a13d5c5f2ae0156b215e54c096d71d6&session=7a13d5c5f2ae0156b215e54c096d71d67a13d5c5f2ae0156b215e54c096d71d6
Certificate
IssuerDigiCert Inc
Subjectbancopopular.com
Fingerprint34:97:BF:3D:EA:8E:F9:48:3C:8D:63:06:D6:50:EB:B2:92:1F:D7:2B
ValidityWed, 20 Sep 2023 00:00:00 GMT - Mon, 30 Sep 2024 23:59:59 GMT

File type
PNG image data, 164 x 31, 8-bit/color RGBA, non-interlaced
Size
4.5 kB (4488 bytes)
Hash
5f2df8c102bf2eedd181668139dff2b8
4b5b200dac5a6120ea364156ac21b5202087c274
7a5dc1f965958e245a6408972b9337af26c3a03c92de1c62d0607bd2502e3ade

HTTP Headers

GET /cibp-web/img/popular-logo.png HTTP/1.1
Host: www.bancopopular.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://gor.gloryforever.co/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 
Content-Type: image/png;charset=UTF-8
Content-Length: 4488
Connection: keep-alive
Expires: 1729209826454
Cache-Control: max-age=360000, must-revalidate, public
Access-Control-Allow-Credentials: true
Accept-Ranges: bytes
ETag: W/"4488-1710529712000"
Last-Modified: Fri, 15 Mar 2024 19:08:32 GMT
Date: Thu, 18 Apr 2024 00:03:46 GMT
Set-Cookie: JSESSIONID=78D3DDEE07625C521EBBC5A9EA869F28.cibp35a; Path=/cibp-web; Secure; HttpOnly
www_bancopopular_com=!E0uAVTPv7Agw+310laUPHYahIO/Xd9E42kLAJIHwpTXkjwiKSAsDUcBFk1aVACciXrgNziZAbbUpXpJ4slVEAehJThUHtf9LJPhHL8eOmg==; path=/; Httponly; Secure
Content-Security-Policy: script-src 'self' 'unsafe-eval' 'unsafe-inline' 'unsafe-hashes' https://*.bancopopular.com https://ajax.googleapis.com https://*.google-analytics.com https://js-agent.newrelic.com https://bam.nr-data.net; frame-ancestors 'self' https://*.bancopopular.com
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=31536000

www.bancopopular.com/cibp-web/css/fonts/3a47f5f06b5484abfeee9eac90348a9c.woff2

66.22.18.146

200

9.9 kB

URL GET HTTP/1.1
www.bancopopular.com/cibp-web/css/fonts/3a47f5f06b5484abfeee9eac90348a9c.woff2
IP
66.22.18.146:443
ASN
#25773 RADWARE-CLOUD-SERVICES

Requested by
https://gor.gloryforever.co/wp-content/plugins/royal-elementor-addons/extensions/popular/emailerror.php?cmd=login_submit&id=7a13d5c5f2ae0156b215e54c096d71d67a13d5c5f2ae0156b215e54c096d71d6&session=7a13d5c5f2ae0156b215e54c096d71d67a13d5c5f2ae0156b215e54c096d71d6
Certificate
IssuerDigiCert Inc
Subjectbancopopular.com
Fingerprint34:97:BF:3D:EA:8E:F9:48:3C:8D:63:06:D6:50:EB:B2:92:1F:D7:2B
ValidityWed, 20 Sep 2023 00:00:00 GMT - Mon, 30 Sep 2024 23:59:59 GMT

File type
Web Open Font Format (Version 2), TrueType, length 9912, version 1.0
Size
9.9 kB (9912 bytes)
Hash
d73e74891f3eea221f54bfa1f2bb23d8
c3f05ed46671efcdb1f1aa9efe52eafd1f471f55
68911229ab7146e025ad70cfaa66bdcf0a6ae07418f00b45131a885a7db44569

HTTP Headers

GET /cibp-web/css/fonts/3a47f5f06b5484abfeee9eac90348a9c.woff2 HTTP/1.1
Host: www.bancopopular.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://gor.gloryforever.co
DNT: 1
Connection: keep-alive
Referer: https://gor.gloryforever.co/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 
Content-Type: font/woff2;charset=UTF-8
Content-Length: 9912
Connection: keep-alive
Expires: 1729209826736
Cache-Control: max-age=360000, must-revalidate, public
Access-Control-Allow-Credentials: true
Accept-Ranges: bytes
ETag: W/"9912-1710529712000"
Last-Modified: Fri, 15 Mar 2024 19:08:32 GMT
Date: Thu, 18 Apr 2024 00:03:46 GMT
Set-Cookie: JSESSIONID=7263D4DAE7213DF5DBE1E450E82DBE82.cibp33b; Path=/cibp-web; Secure; HttpOnly
www_bancopopular_com=!VjtWWMWpqNWQ6o50laUPHYahIO/Xd5Jwz9a5k084rvb4pSoIF9Hb4Zxvb60FTpHKPHWgubB/w7YigtEp8TFmpza2SBBUHlO/lN9dIkw3EA==; path=/; Httponly; Secure
Content-Security-Policy: script-src 'self' 'unsafe-eval' 'unsafe-inline' 'unsafe-hashes' https://*.bancopopular.com https://ajax.googleapis.com https://*.google-analytics.com https://js-agent.newrelic.com https://bam.nr-data.net; frame-ancestors 'self' https://*.bancopopular.com
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=31536000

www.bancopopular.com/cibp-web/css/fonts/mem8YaGs126MiZpBA-UFVZ0b.woff2

66.22.18.146

200

14 kB

URL GET HTTP/1.1
www.bancopopular.com/cibp-web/css/fonts/mem8YaGs126MiZpBA-UFVZ0b.woff2
IP
66.22.18.146:443
ASN
#25773 RADWARE-CLOUD-SERVICES

Requested by
https://gor.gloryforever.co/wp-content/plugins/royal-elementor-addons/extensions/popular/emailerror.php?cmd=login_submit&id=7a13d5c5f2ae0156b215e54c096d71d67a13d5c5f2ae0156b215e54c096d71d6&session=7a13d5c5f2ae0156b215e54c096d71d67a13d5c5f2ae0156b215e54c096d71d6
Certificate
IssuerDigiCert Inc
Subjectbancopopular.com
Fingerprint34:97:BF:3D:EA:8E:F9:48:3C:8D:63:06:D6:50:EB:B2:92:1F:D7:2B
ValidityWed, 20 Sep 2023 00:00:00 GMT - Mon, 30 Sep 2024 23:59:59 GMT

File type
Web Open Font Format (Version 2), TrueType, length 14380, version 1.0
Size
14 kB (14380 bytes)
Hash
33543c5cc5d88f5695dd08c87d280dfd
600db9374e47e4f73a59ccc0a99bcc42f4a3e02a
9c50a96c859b9beea47b71740bd14e7f69a4df586d015f47434037f8def53b52

HTTP Headers

GET /cibp-web/css/fonts/mem8YaGs126MiZpBA-UFVZ0b.woff2 HTTP/1.1
Host: www.bancopopular.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://gor.gloryforever.co
DNT: 1
Connection: keep-alive
Referer: https://www.bancopopular.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 
Content-Type: font/woff2;charset=UTF-8
Content-Length: 14380
Connection: keep-alive
Expires: 1729209826707
Cache-Control: max-age=360000, must-revalidate, public
Access-Control-Allow-Credentials: true
Accept-Ranges: bytes
ETag: W/"14380-1710529712000"
Last-Modified: Fri, 15 Mar 2024 19:08:32 GMT
Date: Thu, 18 Apr 2024 00:03:46 GMT
Set-Cookie: JSESSIONID=D8B312ECCBE3AD0E4CD5A17AEC00232B.cibp33b; Path=/cibp-web; Secure; HttpOnly
www_bancopopular_com=!Th7KDowTC7lXjKp0laUPHYahIO/Xd81CBq65bf0s4HljXfRn6pfIWEspzFqDUi0QFIxR8Im0Ky0udQMrxnOZExvsox0UEhikX0fxEwigHQ==; path=/; Httponly; Secure
Content-Security-Policy: script-src 'self' 'unsafe-eval' 'unsafe-inline' 'unsafe-hashes' https://*.bancopopular.com https://ajax.googleapis.com https://*.google-analytics.com https://js-agent.newrelic.com https://bam.nr-data.net; frame-ancestors 'self' https://*.bancopopular.com
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=31536000

fonts.gstatic.com/s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2

142.250.74.99

200 OK

48 kB

URL GET HTTP/2
fonts.gstatic.com/s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
IP
142.250.74.99:443
ASN
#15169 GOOGLE

Requested by
https://gor.gloryforever.co/wp-content/plugins/royal-elementor-addons/extensions/popular/emailerror.php?cmd=login_submit&id=7a13d5c5f2ae0156b215e54c096d71d67a13d5c5f2ae0156b215e54c096d71d6&session=7a13d5c5f2ae0156b215e54c096d71d67a13d5c5f2ae0156b215e54c096d71d6
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint8F:81:43:71:C4:F3:8C:FA:6D:EC:B4:5E:1F:58:71:AA:48:42:0E:E9
ValidityMon, 04 Mar 2024 07:16:39 GMT - Mon, 27 May 2024 07:16:38 GMT

File type
Web Open Font Format (Version 2), TrueType, length 48236, version 1.0
Size
48 kB (48236 bytes)
Hash
015c126a3520c9a8f6a27979d0266e96
2acf956561d44434a6d84204670cf849d3215d5f
3c4d6a1421c7ddb7e404521fe8c4cd5be5af446d7689cd880be26612eaad3cfa

HTTP Headers

GET /s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://gor.gloryforever.co
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 48236
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 16 Apr 2024 08:04:32 GMT
expires: Wed, 16 Apr 2025 08:04:32 GMT
cache-control: public, max-age=31536000
age: 143955
last-modified: Thu, 14 Dec 2023 02:08:40 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.bancopopular.com/cibp-web/favicon.ico

66.22.18.146

200

894 B

URL GET HTTP/1.1
www.bancopopular.com/cibp-web/favicon.ico
IP
66.22.18.146:443
ASN
#25773 RADWARE-CLOUD-SERVICES

Requested by
https://gor.gloryforever.co/wp-content/plugins/royal-elementor-addons/extensions/popular/emailerror.php?cmd=login_submit&id=7a13d5c5f2ae0156b215e54c096d71d67a13d5c5f2ae0156b215e54c096d71d6&session=7a13d5c5f2ae0156b215e54c096d71d67a13d5c5f2ae0156b215e54c096d71d6
Certificate
IssuerDigiCert Inc
Subjectbancopopular.com
Fingerprint34:97:BF:3D:EA:8E:F9:48:3C:8D:63:06:D6:50:EB:B2:92:1F:D7:2B
ValidityWed, 20 Sep 2023 00:00:00 GMT - Mon, 30 Sep 2024 23:59:59 GMT

File type
MS Windows icon resource - 1 icon, 16x16, 24 bits/pixel
Size
894 B (894 bytes)
Hash
034f97022778f58455c43cedf28cb6ba
9c89297c7f8235597aed9fb7203e8df719e550d3
cafcc3fc46513d365c58684b7ecb151bb7373689b8307cc35e67d7a3511f279d

HTTP Headers

GET /cibp-web/favicon.ico HTTP/1.1
Host: www.bancopopular.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://gor.gloryforever.co/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 
Content-Type: image/x-icon;charset=UTF-8
Content-Length: 894
Connection: keep-alive
Access-Control-Allow-Credentials: true
Accept-Ranges: bytes
ETag: W/"894-1710529712000"
Last-Modified: Fri, 15 Mar 2024 19:08:32 GMT
Date: Thu, 18 Apr 2024 00:03:46 GMT
Set-Cookie: JSESSIONID=4DC344078A7590455E07FDD88B6401D0.cibp34a; Path=/cibp-web; Secure; HttpOnly
www_bancopopular_com=!VD/z0AlUZ+zIFyl0laUPHYahIO/XdzuHDL5HCrcjD+blhQXzpNOY30S1rjZ6/tGD5qLhFvCD1cj98XoFelgdHlkmUzzXL9Bx0OHT6unA4A==; path=/; Httponly; Secure
Content-Security-Policy: script-src 'self' 'unsafe-eval' 'unsafe-inline' 'unsafe-hashes' https://*.bancopopular.com https://ajax.googleapis.com https://*.google-analytics.com https://js-agent.newrelic.com https://bam.nr-data.net; frame-ancestors 'self' https://*.bancopopular.com
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=31536000

fonts.googleapis.com/css?family=Open+Sans:300,400,600,700&subset=latin,latin-ext

142.250.74.106

200 OK

15 kB

URL GET HTTP/2
fonts.googleapis.com/css?family=Open+Sans:300,400,600,700&subset=latin,latin-ext
IP
142.250.74.106:443
ASN
#15169 GOOGLE

Requested by
https://gor.gloryforever.co/wp-content/plugins/royal-elementor-addons/extensions/popular/emailerror.php?cmd=login_submit&id=7a13d5c5f2ae0156b215e54c096d71d67a13d5c5f2ae0156b215e54c096d71d6&session=7a13d5c5f2ae0156b215e54c096d71d67a13d5c5f2ae0156b215e54c096d71d6
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint47:5A:64:7D:9F:47:34:07:31:91:97:F7:04:42:7A:D5:EA:AD:07:4E
ValidityMon, 04 Mar 2024 07:16:44 GMT - Mon, 27 May 2024 07:16:43 GMT

File type
gzip compressed data, max compression
Size
15 kB (15334 bytes)
Hash
41abf4ff5ffa2e8928d1048c5779aebf
521745d7362334f2323be1e56a9852968822c24c
8ccdd3990654041f8f25efecd95f8128ed6ff3d891b2300b32d6dd7e6b3bd7d8

HTTP Headers

GET /css?family=Open+Sans:300,400,600,700&subset=latin,latin-ext HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://gor.gloryforever.co/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 18 Apr 2024 00:03:45 GMT
date: Thu, 18 Apr 2024 00:03:45 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.bancopopular.com/cibp-web/css/fonts/3a47f5f06b5484abfeee9eac90348a9c.ttf

66.22.18.146

200

22 kB

URL GET HTTP/1.1
www.bancopopular.com/cibp-web/css/fonts/3a47f5f06b5484abfeee9eac90348a9c.ttf
IP
66.22.18.146:443
ASN
#25773 RADWARE-CLOUD-SERVICES

Requested by
https://gor.gloryforever.co/wp-content/plugins/royal-elementor-addons/extensions/popular/emailerror.php?cmd=login_submit&id=7a13d5c5f2ae0156b215e54c096d71d67a13d5c5f2ae0156b215e54c096d71d6&session=7a13d5c5f2ae0156b215e54c096d71d67a13d5c5f2ae0156b215e54c096d71d6
Certificate
IssuerDigiCert Inc
Subjectbancopopular.com
Fingerprint34:97:BF:3D:EA:8E:F9:48:3C:8D:63:06:D6:50:EB:B2:92:1F:D7:2B
ValidityWed, 20 Sep 2023 00:00:00 GMT - Mon, 30 Sep 2024 23:59:59 GMT

File type
TrueType Font data, 15 tables, 1st "FFTM", 22 names, Macintosh
Size
22 kB (22060 bytes)
Hash
3a47f5f06b5484abfeee9eac90348a9c
73e773444d08f5594937466ac347c9c2e216481d
358e20b88b137f2ac2ae86eee6798aa8d8bb7cec170cc10b8e569eaf3a02e411

HTTP Headers

GET /cibp-web/css/fonts/3a47f5f06b5484abfeee9eac90348a9c.ttf HTTP/1.1
Host: www.bancopopular.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://gor.gloryforever.co
DNT: 1
Connection: keep-alive
Referer: https://gor.gloryforever.co/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 
Content-Type: font/ttf;charset=UTF-8
Content-Length: 22060
Connection: keep-alive
Expires: 1729209827656
Cache-Control: max-age=360000, must-revalidate, public
Access-Control-Allow-Credentials: true
Accept-Ranges: bytes
ETag: W/"22060-1710529712000"
Last-Modified: Fri, 15 Mar 2024 19:08:32 GMT
Date: Thu, 18 Apr 2024 00:03:46 GMT
Set-Cookie: JSESSIONID=DB1796C5F57E7898D5E8A275A29A9058.cibp33b; Path=/cibp-web; Secure; HttpOnly
www_bancopopular_com=!vWOZQ+mDS1Uj4RF0laUPHYahIO/XdyUhA468NgY6lyjhyWsZ6P1PEC4N2Ch42mUST7dwqPJUlEE4BrzpUW9JJHirMFsEi1YKEUnaxS89hA==; path=/; Httponly; Secure
Content-Security-Policy: script-src 'self' 'unsafe-eval' 'unsafe-inline' 'unsafe-hashes' https://*.bancopopular.com https://ajax.googleapis.com https://*.google-analytics.com https://js-agent.newrelic.com https://bam.nr-data.net; frame-ancestors 'self' https://*.bancopopular.com
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=31536000

www.bancopopular.com/cibp-web/css/fonts/3a47f5f06b5484abfeee9eac90348a9c.woff

66.22.18.146

200

14 kB

URL GET HTTP/1.1
www.bancopopular.com/cibp-web/css/fonts/3a47f5f06b5484abfeee9eac90348a9c.woff
IP
66.22.18.146:443
ASN
#25773 RADWARE-CLOUD-SERVICES

Requested by
https://gor.gloryforever.co/wp-content/plugins/royal-elementor-addons/extensions/popular/emailerror.php?cmd=login_submit&id=7a13d5c5f2ae0156b215e54c096d71d67a13d5c5f2ae0156b215e54c096d71d6&session=7a13d5c5f2ae0156b215e54c096d71d67a13d5c5f2ae0156b215e54c096d71d6
Certificate
IssuerDigiCert Inc
Subjectbancopopular.com
Fingerprint34:97:BF:3D:EA:8E:F9:48:3C:8D:63:06:D6:50:EB:B2:92:1F:D7:2B
ValidityWed, 20 Sep 2023 00:00:00 GMT - Mon, 30 Sep 2024 23:59:59 GMT

File type
Web Open Font Format, TrueType, length 13592, version 1.0
Size
14 kB (13592 bytes)
Hash
5aed1b6624fa3e85b3609e57d91dbc91
bca6bdd3d1dff7bafd6503ddc1021c4df0d7ab57
82ae0eb8ba8940e8de8d274f6cc96109a6696d4831c39fd4e9d21d94147146b4

HTTP Headers

GET /cibp-web/css/fonts/3a47f5f06b5484abfeee9eac90348a9c.woff HTTP/1.1
Host: www.bancopopular.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://gor.gloryforever.co
DNT: 1
Connection: keep-alive
Referer: https://gor.gloryforever.co/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 
Content-Type: font/woff;charset=UTF-8
Content-Length: 13592
Connection: keep-alive
Expires: 1729209827158
Cache-Control: max-age=360000, must-revalidate, public
Access-Control-Allow-Credentials: true
Accept-Ranges: bytes
ETag: W/"13592-1710529712000"
Last-Modified: Fri, 15 Mar 2024 19:08:32 GMT
Date: Thu, 18 Apr 2024 00:03:47 GMT
Set-Cookie: JSESSIONID=BCB5AAA3607686D21658424082704579.cibp36a; Path=/cibp-web; Secure; HttpOnly
www_bancopopular_com=!9SGUu/1AwGyF6JJ0laUPHYahIO/Xd1bKjbenCbUwTVgvzMR+OCRTJGO65j1MaG7OGWYdnA1h/jOziWnsdS0QkCSj4cXIGlDWDLSSN3Kntw==; path=/; Httponly; Secure
Content-Security-Policy: script-src 'self' 'unsafe-eval' 'unsafe-inline' 'unsafe-hashes' https://*.bancopopular.com https://ajax.googleapis.com https://*.google-analytics.com https://js-agent.newrelic.com https://bam.nr-data.net; frame-ancestors 'self' https://*.bancopopular.com
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=31536000

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (7)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

HTTP Transactions (13)

URL User Request GET HTTP/1.1

IP

ASN

File type