r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 03c3cfc567661cca575e54ad505acd08
e73f7955b0c794a9cf8ff77b3ecaf436354521fe
50017e6eb57c5bcaa8dc74af6e3967362ec6b8f177a5bf722dd2d215698c4fa9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "50017E6EB57C5BCAA8DC74AF6E3967362EC6B8F177A5BF722DD2D215698C4FA9"
Last-Modified: Sun, 09 Oct 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2344
Expires: Mon, 10 Oct 2022 23:16:35 GMT
Date: Mon, 10 Oct 2022 22:37:31 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 3d0ffae9abfdf558a6286013a0201c8b
2dc8ea0000a1b0c0f849611fdd73429bca51bfad
8e19eab9b6d16819f9ef3920971542cbcf5dd18280617e2de1a3827f0c149398
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "8E19EAB9B6D16819F9EF3920971542CBCF5DD18280617E2DE1A3827F0C149398"
Last-Modified: Sun, 09 Oct 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9984
Expires: Tue, 11 Oct 2022 01:23:55 GMT
Date: Mon, 10 Oct 2022 22:37:31 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 67d5a988edcda47bc3b3b3f65d32b4b6
d4f0e0da8b3690cc7da925026d3414b68c7d954f
55e4848e3ec682e808ce7ee70950f86179c43af4f81926d826a95edfda395a78
GET /chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: bDQI37DNX5YMwbScW8r/7N9eb+D0kFU7uZKVs5GJp/oMa73xGGM6ImkIwIBS4f0Dn9XfxJg61oY=
x-amz-request-id: 050SWED84R1T01BX
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Mon, 10 Oct 2022 22:00:35 GMT
age: 2216
last-modified: Fri, 30 Sep 2022 18:50:55 GMT
etag: "67d5a988edcda47bc3b3b3f65d32b4b6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/
18.165.201.103200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 18.165.201.103:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 1aac651ec250c598683dd17ca2002c07
11595ac82e017f95190c2a36dc77323a3fedcbfc
93fa640d042452ae8455d026e30e3b4594c13d4be65f3552a4b5edae027c02f9
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Backoff, Content-Length, Content-Type, Retry-After, Alert
Cache-Control: max-age=3600
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Mon, 10 Oct 2022 22:08:04 GMT
Expires: Mon, 10 Oct 2022 22:28:33 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 835f3c9e7c3bc0e7766edf13dac581de.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: LHR50-P3
X-Amz-Cf-Id: tmmoeYYHYBvQNwuqld27FPJF7gmHTcBjphHAi9t-WjhliAAuolZmYA==
Age: 1767
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Mon, 10 Oct 2022 22:37:31 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
18.165.201.103200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 18.165.201.103:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Pragma, Content-Length, Backoff, Last-Modified, Cache-Control, Content-Type, Retry-After, ETag, Expires, Alert
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600
Date: Mon, 10 Oct 2022 21:41:37 GMT
Expires: Mon, 10 Oct 2022 22:33:38 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 398a51ec785027c0cfb5003d3a46ab0a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: LHR50-P3
X-Amz-Cf-Id: oItAsHW8q7bBLTAdFOuGlVfZH5VO7LIa66NVU-EC_866orypewYkZA==
Age: 3355
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash d545bc725dcd5d6f1dfc10a8b35aeb3a
82d92587953dac8a05d691730b8318719328de6b
9d1e6f1bf4b1c138d9e07e67264cb9ac5090a1c338ff72c87e1758e187cccb24
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1471
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 10 Oct 2022 22:37:32 GMT
Last-Modified: Mon, 10 Oct 2022 22:13:02 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
44.240.140.78101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 44.240.140.78:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: vFzIyX8KekrvaogLuoG+4A==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: dpQjvhKQ0xC5hGHPfzR8UuoCB4Y=
maxibague.com.co/apply/iccu/
147.124.219.17200 OK 59 kB URL HTTP/1.1 maxibague.com.co/apply/iccu/
IP 147.124.219.17:0
ASN #396073 MAJESTIC-HOSTING-01
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (26629), with CRLF line terminators
Hash 2ad849f6f725b8d1e83b6e5d604563ad
49af3c07de2b3e089ded6ee4e4f590197d936281
a56915e0c347bd36d5633051492430b5fe603d8f0a2a6419e26b626ca6840890
Analyzer Verdict Alert openphish Idaho Central Credit Union
fortinet Phishing
GET /apply/iccu/ HTTP/1.1
Host: maxibague.com.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/1.1 200 OK
Date: Mon, 10 Oct 2022 22:37:32 GMT
Server: Apache
Last-Modified: Mon, 14 Mar 2022 20:27:24 GMT
Accept-Ranges: bytes
Content-Length: 58913
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html
maxibague.com.co/apply/iccu/areas/script/style/machine/aec7706684
147.124.219.17200 OK 49 B URL HTTP/1.1 maxibague.com.co/apply/iccu/areas/script/style/machine/aec7706684
IP 147.124.219.17:0
ASN #396073 MAJESTIC-HOSTING-01
File type ASCII text, with no line terminators
Hash ada33e5b8877e743ff658bf4bfa1867c
5a78662243dac43c0ee48bcb7e05a536b84c2e38
dac715f087720dd7ff7067f5d2ec1988851fa93140ae8a9cbfaa15659dd7fd82
Analyzer Verdict Alert fortinet Phishing
GET /apply/iccu/areas/script/style/machine/aec7706684 HTTP/1.1
Host: maxibague.com.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://maxibague.com.co/apply/iccu/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 10 Oct 2022 22:37:33 GMT
Server: Apache
Last-Modified: Mon, 14 Mar 2022 20:27:24 GMT
Accept-Ranges: bytes
Content-Length: 49
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
maxibague.com.co/apply/iccu/areas/script/style/machine/nr-1215.min.js
147.124.219.17200 OK 37 kB URL HTTP/1.1 maxibague.com.co/apply/iccu/areas/script/style/machine/nr-1215.min.js
IP 147.124.219.17:0
ASN #396073 MAJESTIC-HOSTING-01
File type ASCII text, with very long lines (32010)
Hash 615035bb6557b191e767e19087efabaf
c77d04d9fc7d42cf64b4f7a1e9efb8fd0d1ada5e
18395fd1ef75de4f03f701f5a5020563aed55e1539b3200605053f2c924211bb
Analyzer Verdict Alert fortinet Phishing
GET /apply/iccu/areas/script/style/machine/nr-1215.min.js HTTP/1.1
Host: maxibague.com.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://maxibague.com.co/apply/iccu/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 10 Oct 2022 22:37:33 GMT
Server: Apache
Last-Modified: Mon, 14 Mar 2022 20:27:26 GMT
Accept-Ranges: bytes
Content-Length: 36751
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: application/javascript
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash f97cde01f1afd5ed30319169445ec773
1cb25a8da62cdf1f9ab1b2b35d03163037691b33
1db2f13247d84bbebf5221ac7429e9367ee92aa1148b4aa879751e1944766406
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1DB2F13247D84BBEBF5221AC7429E9367EE92AA1148B4AA879751E1944766406"
Last-Modified: Mon, 10 Oct 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8183
Expires: Tue, 11 Oct 2022 00:53:56 GMT
Date: Mon, 10 Oct 2022 22:37:33 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash f97cde01f1afd5ed30319169445ec773
1cb25a8da62cdf1f9ab1b2b35d03163037691b33
1db2f13247d84bbebf5221ac7429e9367ee92aa1148b4aa879751e1944766406
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1DB2F13247D84BBEBF5221AC7429E9367EE92AA1148B4AA879751E1944766406"
Last-Modified: Mon, 10 Oct 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8183
Expires: Tue, 11 Oct 2022 00:53:56 GMT
Date: Mon, 10 Oct 2022 22:37:33 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash f97cde01f1afd5ed30319169445ec773
1cb25a8da62cdf1f9ab1b2b35d03163037691b33
1db2f13247d84bbebf5221ac7429e9367ee92aa1148b4aa879751e1944766406
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1DB2F13247D84BBEBF5221AC7429E9367EE92AA1148B4AA879751E1944766406"
Last-Modified: Mon, 10 Oct 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8183
Expires: Tue, 11 Oct 2022 00:53:56 GMT
Date: Mon, 10 Oct 2022 22:37:33 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash f97cde01f1afd5ed30319169445ec773
1cb25a8da62cdf1f9ab1b2b35d03163037691b33
1db2f13247d84bbebf5221ac7429e9367ee92aa1148b4aa879751e1944766406
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1DB2F13247D84BBEBF5221AC7429E9367EE92AA1148B4AA879751E1944766406"
Last-Modified: Mon, 10 Oct 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8183
Expires: Tue, 11 Oct 2022 00:53:56 GMT
Date: Mon, 10 Oct 2022 22:37:33 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash f97cde01f1afd5ed30319169445ec773
1cb25a8da62cdf1f9ab1b2b35d03163037691b33
1db2f13247d84bbebf5221ac7429e9367ee92aa1148b4aa879751e1944766406
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1DB2F13247D84BBEBF5221AC7429E9367EE92AA1148B4AA879751E1944766406"
Last-Modified: Mon, 10 Oct 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8183
Expires: Tue, 11 Oct 2022 00:53:56 GMT
Date: Mon, 10 Oct 2022 22:37:33 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd01ec14d-f07e-4384-9b59-3bda5a58411c.jpeg
34.120.237.76200 OK 6.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd01ec14d-f07e-4384-9b59-3bda5a58411c.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b4c053b895a9ad451daac9ad8966efe2
d7ba07ca6981902c18ba848a33056d92c090e486
313da2baca74daf2ff4e6e0caaa885dfda4419b97f70ca4a8052ae6dbd5940b3
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd01ec14d-f07e-4384-9b59-3bda5a58411c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6291
x-amzn-requestid: c4033712-d0c9-4554-af0c-e7c2485f6716
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Zzt7lH6OIAMFkPg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63449049-5410402106d85ddd08a91551;Sampled=0
x-amzn-remapped-date: Mon, 10 Oct 2022 21:36:09 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: sZcx2SO994ESMh2v0FekkPbqLtJZoUjX1FmuOU-FaA392OhL64mTHQ==
via: 1.1 010c0731b9775a983eceaec0f5fa6a2e.cloudfront.net (CloudFront), 1.1 b13f158bdf9805ca47e07c0c35870c12.cloudfront.net (CloudFront), 1.1 google
date: Mon, 10 Oct 2022 21:59:17 GMT
age: 2296
etag: "d7ba07ca6981902c18ba848a33056d92c090e486"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0583d755-2f5b-458f-86f0-774b9909eb6f.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0583d755-2f5b-458f-86f0-774b9909eb6f.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 6e9aa9808428e5fd81ac9d61d6f7c708
3a8d76badce50dd98938885082dcb6e30363ae88
d8f7c48a1cbe04af2f7e0455d1ef7af9b63506b9ae343ebf14ece8689bb06bf6
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0583d755-2f5b-458f-86f0-774b9909eb6f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11800
x-amzn-requestid: 94e8e091-1136-41a7-843c-44c4ffe9e688
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZqylGGYwoAMFQIg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6340fe20-60b47aeb3b55af4f755577f4;Sampled=0
x-amzn-remapped-date: Sat, 08 Oct 2022 04:35:44 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: fzfUAL2jahiFgsqMExf1dB_7PFJt9wwO2BDKo3XJHSvk5AeeNP8FQg==
via: 1.1 49b94a8674d6e86a841d6523f7dbaf14.cloudfront.net (CloudFront), 1.1 476c2ba6d9f6cd69dbcedbd65688cbc0.cloudfront.net (CloudFront), 1.1 google
date: Mon, 10 Oct 2022 22:22:13 GMT
age: 920
etag: "3a8d76badce50dd98938885082dcb6e30363ae88"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7abfd93d-a205-46fc-a450-d0de2182b1c7.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7abfd93d-a205-46fc-a450-d0de2182b1c7.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 7c510a5010677fcfa9ee8065c0abc894
5f2cf2a511760f5fd16d5c14a48a1aff185830e0
a07018792c7eb661bfddde47d26d728298c90314e52c96228a91c7d1978fedc6
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7abfd93d-a205-46fc-a450-d0de2182b1c7.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10736
x-amzn-requestid: fb2bd595-cff6-4278-95cb-f42939d91f17
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Zzt85Fd9IAMFQeg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63449052-326c047f01d742353e1891c8;Sampled=0
x-amzn-remapped-date: Mon, 10 Oct 2022 21:36:18 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: u5XxBwVbvOux8Bv_DgbsHjE5KcQE5gy_F2mXDNFfgPxmTfsfwCQS7Q==
via: 1.1 010c0731b9775a983eceaec0f5fa6a2e.cloudfront.net (CloudFront), 1.1 6a9b42e38e76b7d4a4044ebe0e0eca08.cloudfront.net (CloudFront), 1.1 google
date: Mon, 10 Oct 2022 21:55:51 GMT
etag: "5f2cf2a511760f5fd16d5c14a48a1aff185830e0"
content-type: image/jpeg
age: 2502
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F428afbd7-2ec8-4bd9-aa56-aef5bf556934.jpeg
34.120.237.76200 OK 5.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F428afbd7-2ec8-4bd9-aa56-aef5bf556934.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash dcce3576bdd0381adc0b1088eb1648d6
cbe1719f2ad809ccf8d81093842dc43512d53148
087d13ece248b55b5884af970d3d3cc9d347d712d9eee5f9e8211b24dce269c1
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F428afbd7-2ec8-4bd9-aa56-aef5bf556934.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5390
x-amzn-requestid: 032b26d9-1e90-4c6c-861d-212b7da0e589
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Zzt7lGd9oAMFoaA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63449049-0f85ddc34fd723d311911b31;Sampled=0
x-amzn-remapped-date: Mon, 10 Oct 2022 21:36:09 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 8-3wup3iaaU-XF6aVnvEs_xew8WB-j1kX2bm3s0puIP5SM8xB6_Kng==
via: 1.1 4d7fa73f804f1c93f20cfc24c4b1266e.cloudfront.net (CloudFront), 1.1 325ed3ba58a560748d886354beef39c0.cloudfront.net (CloudFront), 1.1 google
date: Mon, 10 Oct 2022 21:56:00 GMT
etag: "cbe1719f2ad809ccf8d81093842dc43512d53148"
content-type: image/jpeg
age: 2493
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe5d6b07c-7001-4ca2-ab1c-063b144b658f.jpeg
34.120.237.76200 OK 4.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe5d6b07c-7001-4ca2-ab1c-063b144b658f.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 6e460080f8474c138e6b75edfffb1874
4013a8691576394d1a2531665b8dc2c4aac60201
3b2f41745b395c9a69f8ad417481c3e0e2c481b29b47465df7d37ce0acbcf54a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe5d6b07c-7001-4ca2-ab1c-063b144b658f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4135
x-amzn-requestid: 2dceb534-dd9e-4a1d-a40e-76719cd736a8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Zzt7lFsJoAMFU5A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63449049-71530e73484316e85d223759;Sampled=0
x-amzn-remapped-date: Mon, 10 Oct 2022 21:36:09 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: EdKGaF2H863CqVQ19Zn3pYjKX1-3jMCvwCgtO9rh2fCieewU8YLCew==
via: 1.1 4f87745990545c1ac0195c157e1668f8.cloudfront.net (CloudFront), 1.1 001e7070d795018d01b93988b9723742.cloudfront.net (CloudFront), 1.1 google
date: Mon, 10 Oct 2022 21:59:17 GMT
age: 2296
etag: "4013a8691576394d1a2531665b8dc2c4aac60201"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd7e4295f-4a0f-41b3-9af0-e389d3d2e3a2.jpeg
34.120.237.76200 OK 4.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd7e4295f-4a0f-41b3-9af0-e389d3d2e3a2.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 5cf3f16ee684e97de9eb2eb3f114dd6c
3ac02a6f6087870a21f9003c9f2518a81a22b278
c427d1f26292d3faee2f75c429e64b7ce21d08215dbb103f6e509c04e56d3e16
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd7e4295f-4a0f-41b3-9af0-e389d3d2e3a2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4413
x-amzn-requestid: dfa638b6-d27f-4597-804a-66161892a5df
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZkjcOH0_IAMFTJw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633e7f81-4da796971b03eb9b585b36d0;Sampled=0
x-amzn-remapped-date: Thu, 06 Oct 2022 07:10:57 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: XiFKCANOZryDyDPAy--tQHsQKHPq1XwGEs75-49pJWmDFjCZWGXN3w==
via: 1.1 00f0a41f749793b9dd653153037c957e.cloudfront.net (CloudFront), 1.1 5fe5f2a3903f1378941d92eceaf3fa16.cloudfront.net (CloudFront), 1.1 google
date: Mon, 10 Oct 2022 14:22:31 GMT
age: 29702
etag: "3ac02a6f6087870a21f9003c9f2518a81a22b278"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
cdnjs.cloudflare.com/ajax/libs/popper.js/1.14.0/umd/popper.min.js
104.17.24.14200 OK 6.5 kB URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/popper.js/1.14.0/umd/popper.min.js
IP 104.17.24.14:0
File type ASCII text, with very long lines (20322)
Hash df9fe6d48e380554eb0ec9687bed3246
207263d754220200c1916edfbda262f62223ecf5
91d57502b7260e6752c2b5f1636d77707929fa9f09da28589691e61816a448f9
GET /ajax/libs/popper.js/1.14.0/umd/popper.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://maxibague.com.co
Connection: keep-alive
Referer: https://maxibague.com.co/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 10 Oct 2022 22:37:33 GMT
content-type: application/javascript; charset=utf-8
content-length: 6458
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03fa9-500f"
last-modified: Mon, 04 May 2020 16:15:37 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
expect-ct: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
vary: Accept-Encoding
cf-cache-status: HIT
age: 8484700
expires: Sat, 30 Sep 2023 22:37:33 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=qiHnrM7wHfPv7u%2F3AxrbRV%2FKO5mIt5ZM2WgibVC8WWOv%2FVgvdTpj%2BwPhlIqQrcaTdr8bp%2BBX%2BVKkRATS2TkHOYIuS18QXaaUF0i6eqShgrerj80pb3YNZzNcxbT7fF6Xu7kt3DU8"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 7582d75d0cd81c02-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdnjs.cloudflare.com/ajax/libs/jquery.mask/1.14.10/jquery.mask.js
104.17.24.14200 OK 4.5 kB URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/jquery.mask/1.14.10/jquery.mask.js
IP 104.17.24.14:0
Hash e40e054c5726f042bad463e3774a2777
5c9413b72837a440b327444104830c35ae3b052c
fcc8a86d2e89e8fbe9815d50c23bf205191ab8a6c0bec67358cd975d94283ff8
GET /ajax/libs/jquery.mask/1.14.10/jquery.mask.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://maxibague.com.co/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 10 Oct 2022 22:37:33 GMT
content-type: application/javascript; charset=utf-8
content-length: 4517
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03ec3-4e98"
last-modified: Mon, 04 May 2020 16:11:47 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
expect-ct: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
vary: Accept-Encoding
cf-cache-status: HIT
age: 4156639
expires: Sat, 30 Sep 2023 22:37:33 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=2uYE%2FeJKsUwK29VbL1ZKzQkqOtVCU8lHOw3Ysp03BQIZlBXl%2FxY8q9gSu%2FCgdQve5NAYovK40%2FrUZ25%2Be4uAsY7OFducgifKr9kMQ%2Flh2tuIPGaK2blX66QwMNRVeH98TshBQ7Ja"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 7582d75d08ebb4f9-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
code.jquery.com/jquery-3.2.1.min.js
69.16.175.10200 OK 30 kB URL HTTP/2 code.jquery.com/jquery-3.2.1.min.js
IP 69.16.175.10:0
File type ASCII text, with very long lines (32058)
Hash 148f8d3ffd9cc02048c5f4d1cc83c407
9f2b89cfd151be6a29b4d43ad64d164fb8471046
4dc681da48ba2b417e613e8e027ff5322963c3a3697a8ba97973cfefb48def5e
GET /jquery-3.2.1.min.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://maxibague.com.co/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 10 Oct 2022 22:37:33 GMT
content-encoding: gzip
content-length: 30125
content-type: application/javascript; charset=utf-8
last-modified: Fri, 20 Aug 2021 17:47:53 GMT
accept-ranges: bytes
server: nginx
etag: W/"611feac9-15283"
cache-control: max-age=315360000, public
access-control-allow-origin: *
vary: Accept-Encoding
x-hw: 1665441453.dop203.sk1.t,1665441453.cds220.sk1.hn,1665441453.cds222.sk1.c
X-Firefox-Spdy: h2
code.jquery.com/jquery-3.3.1.slim.min.js
69.16.175.10200 OK 24 kB URL HTTP/2 code.jquery.com/jquery-3.3.1.slim.min.js
IP 69.16.175.10:0
File type ASCII text, with very long lines (65247)
Hash 0f2e7d37e730fdbb1d8a1e8638529ecb
c21d16978a858baa75be15cb7e799ff000929429
cc938c08b93e67c94c68995709f52133c62cac78991f42058503b9c3d9e4b0b0
GET /jquery-3.3.1.slim.min.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://maxibague.com.co
Connection: keep-alive
Referer: https://maxibague.com.co/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 10 Oct 2022 22:37:33 GMT
content-encoding: gzip
content-length: 24038
content-type: application/javascript; charset=utf-8
last-modified: Fri, 20 Aug 2021 17:47:53 GMT
accept-ranges: bytes
server: nginx
etag: W/"611feac9-1111d"
cache-control: max-age=315360000, public
access-control-allow-origin: *
vary: Accept-Encoding
x-hw: 1665441453.dop207.sk1.t,1665441453.cds220.sk1.hn,1665441453.cds230.sk1.c
X-Firefox-Spdy: h2
ajax.aspnetcdn.com/ajax/jQuery/jquery-3.3.1.min.js
152.199.19.160200 OK 30 kB URL HTTP/2 ajax.aspnetcdn.com/ajax/jQuery/jquery-3.3.1.min.js
IP 152.199.19.160:0
File type ASCII text, with very long lines (65451)
Hash a263be51483c81a54aa8c85104a93e55
555a54a73531c553bd2aede6abc25c128b63312e
b2f13ad730928958c09d89e6e32bb6a227c0260d032a39ca464d998a59e57a66
GET /ajax/jQuery/jquery-3.3.1.min.js HTTP/1.1
Host: ajax.aspnetcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://maxibague.com.co/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-encoding: gzip
accept-ranges: bytes
access-control-allow-origin: *
age: 18442948
cache-control: public,max-age=31536000
content-type: application/javascript
date: Mon, 10 Oct 2022 22:37:33 GMT
etag: "80288516b793d31:0"
last-modified: Mon, 22 Jan 2018 19:27:49 GMT
server: ECAcc (ska/F7A8)
timing-allow-origin: *
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 30394
X-Firefox-Spdy: h2
maxibague.com.co/apply/iccu/areas/script/style/machine/css.css
147.124.219.17200 OK 297 B URL HTTP/1.1 maxibague.com.co/apply/iccu/areas/script/style/machine/css.css
IP 147.124.219.17:0
ASN #396073 MAJESTIC-HOSTING-01
Hash cd765e648a4756c3d2ca7fd363889908
fd4a560834ce0d73ef0f3b1b6ab1f6f27d7dc180
ca7cdea357e0ec0eb39b4df17fe31380629f876cf97844aa4a3013b4e8bfcd61
GET /apply/iccu/areas/script/style/machine/css.css HTTP/1.1
Host: maxibague.com.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://maxibague.com.co/apply/iccu/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 10 Oct 2022 22:37:33 GMT
Server: Apache
Last-Modified: Mon, 14 Mar 2022 20:27:24 GMT
Accept-Ranges: bytes
Content-Length: 297
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
maxibague.com.co/apply/iccu/areas/script/style/machine/vms.js
147.124.219.17200 OK 52 kB URL HTTP/1.1 maxibague.com.co/apply/iccu/areas/script/style/machine/vms.js
IP 147.124.219.17:0
ASN #396073 MAJESTIC-HOSTING-01
File type ASCII text, with very long lines (52293), with no line terminators
Hash b401a6756e724182f017ee006f8e00f7
0c2b11a8b820eb19b39fd5c86fce974c9740b956
ee2ee9385a336aac34b1b6060d64d1096faabe3142579fd76e125439e2eb8f2c
Analyzer Verdict Alert fortinet Phishing
GET /apply/iccu/areas/script/style/machine/vms.js HTTP/1.1
Host: maxibague.com.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://maxibague.com.co/apply/iccu/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 10 Oct 2022 22:37:33 GMT
Server: Apache
Last-Modified: Mon, 14 Mar 2022 20:27:28 GMT
Accept-Ranges: bytes
Content-Length: 52293
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/javascript
maxibague.com.co/apply/iccu/areas/script/style/machine/yui-reset.min.css
147.124.219.17200 OK 793 B URL HTTP/1.1 maxibague.com.co/apply/iccu/areas/script/style/machine/yui-reset.min.css
IP 147.124.219.17:0
ASN #396073 MAJESTIC-HOSTING-01
File type ASCII text, with very long lines (746)
Hash ff296a5a2b2062ce5cbcb0b8cfcca0e4
5477838f625b923e8a18dc2c28a127275132afcf
590fcd2ea2a3de691c86ecf564fff1fcb0982271cf723ae4d6e2453c9e6f5434
GET /apply/iccu/areas/script/style/machine/yui-reset.min.css HTTP/1.1
Host: maxibague.com.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://maxibague.com.co/apply/iccu/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 10 Oct 2022 22:37:33 GMT
Server: Apache
Last-Modified: Mon, 14 Mar 2022 20:27:28 GMT
Accept-Ranges: bytes
Content-Length: 793
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
maxibague.com.co/apply/iccu/areas/script/style/machine/ext-all.min.css
147.124.219.17200 OK 103 kB URL HTTP/1.1 maxibague.com.co/apply/iccu/areas/script/style/machine/ext-all.min.css
IP 147.124.219.17:0
ASN #396073 MAJESTIC-HOSTING-01
File type ASCII text, with very long lines (65414)
Size 103 kB (102927 bytes)
Hash 02fee68b4adab7f46f4d07ae83dc1f24
5717c1993daa6ef53112280ece2922e923daf71c
62bf69c5e3a6e28604d5388ee424752e98ced77c10d571ed1d0f620cb7da4763
GET /apply/iccu/areas/script/style/machine/ext-all.min.css HTTP/1.1
Host: maxibague.com.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://maxibague.com.co/apply/iccu/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 10 Oct 2022 22:37:33 GMT
Server: Apache
Last-Modified: Mon, 14 Mar 2022 20:27:24 GMT
Accept-Ranges: bytes
Content-Length: 102927
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css
maxibague.com.co/apply/iccu/areas/script/style/machine/jquery.daterangepicker.min.css
147.124.219.17200 OK 2.6 kB URL HTTP/1.1 maxibague.com.co/apply/iccu/areas/script/style/machine/jquery.daterangepicker.min.css
IP 147.124.219.17:0
ASN #396073 MAJESTIC-HOSTING-01
File type ASCII text, with very long lines (2577)
Hash 2832b92b9aaa9994685c5c73f85550e7
97fa89b53df09e895f086412781cc98a1ce57935
ab9c55dea4e2d8b7e988cb51b7f82d7dda04336a90e7b9400ac417198590077b
GET /apply/iccu/areas/script/style/machine/jquery.daterangepicker.min.css HTTP/1.1
Host: maxibague.com.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://maxibague.com.co/apply/iccu/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 10 Oct 2022 22:37:33 GMT
Server: Apache
Last-Modified: Mon, 14 Mar 2022 20:27:26 GMT
Accept-Ranges: bytes
Content-Length: 2637
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
maxibague.com.co/apply/iccu/areas/script/style/machine/grid.min.css
147.124.219.17200 OK 5.2 kB URL HTTP/1.1 maxibague.com.co/apply/iccu/areas/script/style/machine/grid.min.css
IP 147.124.219.17:0
ASN #396073 MAJESTIC-HOSTING-01
File type ASCII text, with very long lines (5143)
Hash 2c1caab01f9eba70c931de585b7936a8
8215a993e0717b9e7d3e91aae636ec45a71d980d
78b79736545ee390cd074de666a8a4abc8a2296371c5b0e174fd012c086f5db0
GET /apply/iccu/areas/script/style/machine/grid.min.css HTTP/1.1
Host: maxibague.com.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://maxibague.com.co/apply/iccu/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 10 Oct 2022 22:37:34 GMT
Server: Apache
Last-Modified: Mon, 14 Mar 2022 20:27:26 GMT
Accept-Ranges: bytes
Content-Length: 5185
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
maxibague.com.co/apply/iccu/areas/script/style/machine/jquery-ui.min.css
147.124.219.17200 OK 28 kB URL HTTP/1.1 maxibague.com.co/apply/iccu/areas/script/style/machine/jquery-ui.min.css
IP 147.124.219.17:0
ASN #396073 MAJESTIC-HOSTING-01
File type ASCII text, with very long lines (26298)
Hash 66190a4704d83fef2c9115d62bf7d6a9
12f8f5c9d5ba33bb8fcc007c5bc4654a6bab050a
373d9743eada376837b663266c5ca79eb2f750db86feaf7e4f35b2e11719b116
GET /apply/iccu/areas/script/style/machine/jquery-ui.min.css HTTP/1.1
Host: maxibague.com.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://maxibague.com.co/apply/iccu/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 10 Oct 2022 22:37:33 GMT
Server: Apache
Last-Modified: Mon, 14 Mar 2022 20:27:26 GMT
Accept-Ranges: bytes
Content-Length: 28103
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
maxibague.com.co/apply/iccu/areas/script/style/machine/font-icons.css
147.124.219.17200 OK 114 kB URL HTTP/1.1 maxibague.com.co/apply/iccu/areas/script/style/machine/font-icons.css
IP 147.124.219.17:0
ASN #396073 MAJESTIC-HOSTING-01
Size 114 kB (113638 bytes)
Hash 42e28550ee244dcaf1fda65d826f9eaa
5364367ae417fc73e4dd0fca3851b2b9b427ff53
8cea6396b7555e23a9d65cbb385e453468afb4d26de6b96563d99de09f0f8e49
GET /apply/iccu/areas/script/style/machine/font-icons.css HTTP/1.1
Host: maxibague.com.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://maxibague.com.co/apply/iccu/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 10 Oct 2022 22:37:33 GMT
Server: Apache
Last-Modified: Mon, 14 Mar 2022 20:27:24 GMT
Accept-Ranges: bytes
Content-Length: 113638
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
maxibague.com.co/apply/iccu/areas/script/style/machine/base.min.css
147.124.219.17200 OK 196 kB URL HTTP/1.1 maxibague.com.co/apply/iccu/areas/script/style/machine/base.min.css
IP 147.124.219.17:0
ASN #396073 MAJESTIC-HOSTING-01
File type Unicode text, UTF-8 text, with very long lines (30835)
Size 196 kB (196396 bytes)
Hash b0110ab0102ba3d149f70e7c27468df3
dada47a6320bf1615db37b820f1cd9b87ec63eb0
c1f40a33af1a612971826278da1e4b27e77b7842629520f64c984115c14793a2
GET /apply/iccu/areas/script/style/machine/base.min.css HTTP/1.1
Host: maxibague.com.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://maxibague.com.co/apply/iccu/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 10 Oct 2022 22:37:33 GMT
Server: Apache
Last-Modified: Mon, 14 Mar 2022 20:27:24 GMT
Accept-Ranges: bytes
Content-Length: 196396
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css
maxibague.com.co/apply/iccu/areas/script/style/machine/sidebar.min.css
147.124.219.17200 OK 2.7 kB URL HTTP/1.1 maxibague.com.co/apply/iccu/areas/script/style/machine/sidebar.min.css
IP 147.124.219.17:0
ASN #396073 MAJESTIC-HOSTING-01
File type ASCII text, with very long lines (2616)
Hash 0fb7d6883731cb937b4a21acd12b9d75
33a9340978c94b1310c162892b0fd0000a89b748
fcf788fc779cf3a243ded5706805cf150144797f84a8c25fdc4d99584728bfb7
GET /apply/iccu/areas/script/style/machine/sidebar.min.css HTTP/1.1
Host: maxibague.com.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://maxibague.com.co/apply/iccu/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 10 Oct 2022 22:37:34 GMT
Server: Apache
Last-Modified: Mon, 14 Mar 2022 20:27:28 GMT
Accept-Ranges: bytes
Content-Length: 2661
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: text/css
maxibague.com.co/apply/iccu/areas/script/style/machine/iris.shim.desktop.min.css
147.124.219.17200 OK 673 B URL HTTP/1.1 maxibague.com.co/apply/iccu/areas/script/style/machine/iris.shim.desktop.min.css
IP 147.124.219.17:0
ASN #396073 MAJESTIC-HOSTING-01
File type ASCII text, with very long lines (618)
Hash 59bf2a4ff43b075967d30bf79df13983
19f297362e717cd28ba498e8d3fa32b126fe7e3f
59f12ecd0c381fee3367ffac176a581a966727684a5ce94390b4390b2fc06ca4
GET /apply/iccu/areas/script/style/machine/iris.shim.desktop.min.css HTTP/1.1
Host: maxibague.com.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://maxibague.com.co/apply/iccu/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 10 Oct 2022 22:37:34 GMT
Server: Apache
Last-Modified: Mon, 14 Mar 2022 20:27:26 GMT
Accept-Ranges: bytes
Content-Length: 673
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
maxibague.com.co/apply/iccu/areas/script/style/machine/iris-components.shim.desktop.min.css
147.124.219.17200 OK 1.4 kB URL HTTP/1.1 maxibague.com.co/apply/iccu/areas/script/style/machine/iris-components.shim.desktop.min.css
IP 147.124.219.17:0
ASN #396073 MAJESTIC-HOSTING-01
File type ASCII text, with very long lines (1159)
Hash 3aa8aa487c7deea0f6b8ba1d34be5ab5
c90c912bd90ba26991055d534bf75d7f4009f80c
5f1ac800b30e618e81d92daf6cf789241d30e9c339bbde04423864767985209c
GET /apply/iccu/areas/script/style/machine/iris-components.shim.desktop.min.css HTTP/1.1
Host: maxibague.com.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://maxibague.com.co/apply/iccu/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 10 Oct 2022 22:37:34 GMT
Server: Apache
Last-Modified: Mon, 14 Mar 2022 20:27:26 GMT
Accept-Ranges: bytes
Content-Length: 1386
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css
maxibague.com.co/apply/iccu/areas/script/style/machine/iris-foundation.min.css
147.124.219.17200 OK 51 kB URL HTTP/1.1 maxibague.com.co/apply/iccu/areas/script/style/machine/iris-foundation.min.css
IP 147.124.219.17:0
ASN #396073 MAJESTIC-HOSTING-01
File type ASCII text, with very long lines (50964)
Hash b8c864cda1f61ea4ffc57ba52f038a41
5c8784412d182c24f931531629a9bcf1455e9e76
f6fca06e2aac270b488f73bcf0a10d249e2722a015135e60dbb49360c5335a72
GET /apply/iccu/areas/script/style/machine/iris-foundation.min.css HTTP/1.1
Host: maxibague.com.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://maxibague.com.co/apply/iccu/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 10 Oct 2022 22:37:34 GMT
Server: Apache
Last-Modified: Mon, 14 Mar 2022 20:27:26 GMT
Accept-Ranges: bytes
Content-Length: 51310
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: text/css
maxibague.com.co/apply/iccu/areas/script/style/machine/isotope.1.5.3.min.css
147.124.219.17200 OK 5.1 kB URL HTTP/1.1 maxibague.com.co/apply/iccu/areas/script/style/machine/isotope.1.5.3.min.css
IP 147.124.219.17:0
ASN #396073 MAJESTIC-HOSTING-01
File type ASCII text, with very long lines (2884)
Hash b5560502a47ac17af7a14f280d1fb48d
88b8b2e860c4caa88e0d0b60dc8bc0345b8fec25
bcf82308a4a42f5785de42dda6584b42785e242cc336bd5d8e937b6e2d0d816e
GET /apply/iccu/areas/script/style/machine/isotope.1.5.3.min.css HTTP/1.1
Host: maxibague.com.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://maxibague.com.co/apply/iccu/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 10 Oct 2022 22:37:34 GMT
Server: Apache
Last-Modified: Mon, 14 Mar 2022 20:27:26 GMT
Accept-Ranges: bytes
Content-Length: 5057
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css
maxibague.com.co/apply/iccu/areas/script/style/machine/iris-foundation.min-1.css
147.124.219.17200 OK 51 kB URL HTTP/1.1 maxibague.com.co/apply/iccu/areas/script/style/machine/iris-foundation.min-1.css
IP 147.124.219.17:0
ASN #396073 MAJESTIC-HOSTING-01
File type ASCII text, with very long lines (50964)
Hash b8c864cda1f61ea4ffc57ba52f038a41
5c8784412d182c24f931531629a9bcf1455e9e76
f6fca06e2aac270b488f73bcf0a10d249e2722a015135e60dbb49360c5335a72
GET /apply/iccu/areas/script/style/machine/iris-foundation.min-1.css HTTP/1.1
Host: maxibague.com.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://maxibague.com.co/apply/iccu/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 10 Oct 2022 22:37:34 GMT
Server: Apache
Last-Modified: Mon, 14 Mar 2022 20:27:26 GMT
Accept-Ranges: bytes
Content-Length: 51310
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
maxibague.com.co/apply/iccu/areas/script/style/machine/Authentication-Isotope.min.css
147.124.219.17200 OK 2.3 kB URL HTTP/1.1 maxibague.com.co/apply/iccu/areas/script/style/machine/Authentication-Isotope.min.css
IP 147.124.219.17:0
ASN #396073 MAJESTIC-HOSTING-01
File type ASCII text, with very long lines (2232)
Hash 1670787bdf1b3381408c8aa1111bbd34
60256b6162407fb2ca392932add7ffdd2be2fb0b
e74e5f034f5271bd9b40cd48fefc2ad11e52d6b07f68b68092b15d71952fe955
GET /apply/iccu/areas/script/style/machine/Authentication-Isotope.min.css HTTP/1.1
Host: maxibague.com.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://maxibague.com.co/apply/iccu/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 10 Oct 2022 22:37:34 GMT
Server: Apache
Last-Modified: Mon, 14 Mar 2022 20:27:24 GMT
Accept-Ranges: bytes
Content-Length: 2292
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: text/css
maxibague.com.co/apply/iccu/areas/script/style/machine/iris-components.min.css
147.124.219.17200 OK 175 kB URL HTTP/1.1 maxibague.com.co/apply/iccu/areas/script/style/machine/iris-components.min.css
IP 147.124.219.17:0
ASN #396073 MAJESTIC-HOSTING-01
File type ASCII text, with very long lines (65310)
Size 175 kB (175214 bytes)
Hash a6d84aac4b167eead101b31df440aa02
ebd3b47dcf938b26012e03c2c07399cadb6b4328
ca93a92face85a97a9637a0a5276085830bf4e348a66d89a2537bba257d1255c
GET /apply/iccu/areas/script/style/machine/iris-components.min.css HTTP/1.1
Host: maxibague.com.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://maxibague.com.co/apply/iccu/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 10 Oct 2022 22:37:34 GMT
Server: Apache
Last-Modified: Mon, 14 Mar 2022 20:27:26 GMT
Accept-Ranges: bytes
Content-Length: 175214
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: text/css
maxibague.com.co/apply/iccu/areas/script/style/machine/theme.desktop.min.css
147.124.219.17200 OK 46 kB URL HTTP/1.1 maxibague.com.co/apply/iccu/areas/script/style/machine/theme.desktop.min.css
IP 147.124.219.17:0
ASN #396073 MAJESTIC-HOSTING-01
File type ASCII text, with very long lines (45771)
Hash 6c3c1d30a872611b5eaf9654d7741243
4c94cc40b1208dea31dfbcba9bc8ba1a8327cf35
a84d6e27763c156403ececaeee9e1f53ea08f2c6860338cf13d18a4826a68c5d
GET /apply/iccu/areas/script/style/machine/theme.desktop.min.css HTTP/1.1
Host: maxibague.com.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://maxibague.com.co/apply/iccu/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 10 Oct 2022 22:37:34 GMT
Server: Apache
Last-Modified: Mon, 14 Mar 2022 20:27:28 GMT
Accept-Ranges: bytes
Content-Length: 45823
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: text/css
maxibague.com.co/apply/iccu/isotope/orbital/idaho/central/style.css
147.124.219.17200 OK 414 B URL HTTP/1.1 maxibague.com.co/apply/iccu/isotope/orbital/idaho/central/style.css
IP 147.124.219.17:0
ASN #396073 MAJESTIC-HOSTING-01
File type ASCII text, with CRLF line terminators
Hash f9653fbeecf34b04791fee59eb3e253b
fcbbad7c6616682a22a9d0de09d715c61cb17722
7924e7e8b95825e4cefbfc31444ea9247e1b0d04cb066b56f06addf9cc7c5eaf
GET /apply/iccu/isotope/orbital/idaho/central/style.css HTTP/1.1
Host: maxibague.com.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://maxibague.com.co/apply/iccu/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 10 Oct 2022 22:37:34 GMT
Server: Apache
Last-Modified: Mon, 14 Mar 2022 20:27:32 GMT
Accept-Ranges: bytes
Content-Length: 414
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: text/css
maxibague.com.co/apply/iccu/areas/script/style/machine/iris.min.css
147.124.219.17200 OK 97 kB URL HTTP/1.1 maxibague.com.co/apply/iccu/areas/script/style/machine/iris.min.css
IP 147.124.219.17:0
ASN #396073 MAJESTIC-HOSTING-01
File type ASCII text, with very long lines (65536), with no line terminators
Hash c5e50b525f0263e1ac2cd02cba36ae8b
2e5cb26421eba86ccbe9b9df0e471c539e15f9a0
ff28c9da91ba98b52e06f7560ffc037989d7b00260ecb44210a3f39f4aa90905
GET /apply/iccu/areas/script/style/machine/iris.min.css HTTP/1.1
Host: maxibague.com.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://maxibague.com.co/apply/iccu/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 10 Oct 2022 22:37:34 GMT
Server: Apache
Last-Modified: Mon, 14 Mar 2022 20:27:26 GMT
Accept-Ranges: bytes
Content-Length: 96872
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css
maxibague.com.co/apply/iccu/areas/script/style/machine/fi.desktop.min.css
147.124.219.17200 OK 57 kB URL HTTP/1.1 maxibague.com.co/apply/iccu/areas/script/style/machine/fi.desktop.min.css
IP 147.124.219.17:0
ASN #396073 MAJESTIC-HOSTING-01
File type ASCII text, with very long lines (57049)
Hash 4ab9eab5f2d08c465af9a2062f98b61f
eb16e505592833ff6f369b064c0043c96140100f
2971fd15e4a65ecb5a6e24c13bcc31f5889f6d4161e1500f317b3617d374824c
GET /apply/iccu/areas/script/style/machine/fi.desktop.min.css HTTP/1.1
Host: maxibague.com.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://maxibague.com.co/apply/iccu/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 10 Oct 2022 22:37:34 GMT
Server: Apache
Last-Modified: Mon, 14 Mar 2022 20:27:24 GMT
Accept-Ranges: bytes
Content-Length: 57098
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: text/css
e1.o.lencr.org/
23.36.77.32200 OK 345 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash a3abc563f441bf0a4844da177fe97013
439921485b4173e1ac482e3cf17a244a86c04b8a
3e50874ab6fb572347479a114ffcfce02b9a9aaf79c1e4e76ebf6b3134d6323e
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "3E50874AB6FB572347479A114FFCFCE02B9A9AAF79C1E4E76EBF6B3134D6323E"
Last-Modified: Sun, 09 Oct 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9485
Expires: Tue, 11 Oct 2022 01:15:39 GMT
Date: Mon, 10 Oct 2022 22:37:34 GMT
Connection: keep-alive
maxibague.com.co/apply/iccu/areas/script/style/machine/1ca8ebd0.js
147.124.219.17200 OK 628 kB URL HTTP/1.1 maxibague.com.co/apply/iccu/areas/script/style/machine/1ca8ebd0.js
IP 147.124.219.17:0
ASN #396073 MAJESTIC-HOSTING-01
File type ASCII text, with very long lines (60538), with CRLF, LF line terminators
Size 628 kB (628019 bytes)
Hash 508aa7e5b5b3d2ded5a876cae0e58213
9a6e09fd3e898de27bcbd752d3efc5162c476420
d47c1346c52c0852d822943bfca34fc528d65158de4aec5992b6c5f04b56aeff
Analyzer Verdict Alert fortinet Phishing
GET /apply/iccu/areas/script/style/machine/1ca8ebd0.js HTTP/1.1
Host: maxibague.com.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://maxibague.com.co/apply/iccu/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 10 Oct 2022 22:37:34 GMT
Server: Apache
Last-Modified: Mon, 14 Mar 2022 20:27:24 GMT
Accept-Ranges: bytes
Content-Length: 628019
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript
e1.o.lencr.org/
23.36.77.32200 OK 345 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash a3abc563f441bf0a4844da177fe97013
439921485b4173e1ac482e3cf17a244a86c04b8a
3e50874ab6fb572347479a114ffcfce02b9a9aaf79c1e4e76ebf6b3134d6323e
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "3E50874AB6FB572347479A114FFCFCE02B9A9AAF79C1E4E76EBF6B3134D6323E"
Last-Modified: Sun, 09 Oct 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9485
Expires: Tue, 11 Oct 2022 01:15:39 GMT
Date: Mon, 10 Oct 2022 22:37:34 GMT
Connection: keep-alive
maxibague.com.co/apply/iccu/areas/script/style/machine/Logo.png
147.124.219.17200 OK 6.3 kB URL HTTP/1.1 maxibague.com.co/apply/iccu/areas/script/style/machine/Logo.png
IP 147.124.219.17:0
ASN #396073 MAJESTIC-HOSTING-01
File type PNG image data, 241 x 94, 8-bit/color RGBA, non-interlaced\012- data
Hash 310bf1685719fd8069dc66b522e2a693
5ab5b07dfbfba25a721fb2d8db30251b411dffdd
dc60a0c398660ef4d7941be280289932cbfe8d90d9437de4ad19761d7ae99c2e
GET /apply/iccu/areas/script/style/machine/Logo.png HTTP/1.1
Host: maxibague.com.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://maxibague.com.co/apply/iccu/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 10 Oct 2022 22:37:34 GMT
Server: Apache
Last-Modified: Mon, 14 Mar 2022 20:27:26 GMT
Accept-Ranges: bytes
Content-Length: 6276
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: image/png
maxibague.com.co/apply/iccu/areas/script/style/machine/google-play-badge.svg
147.124.219.17200 OK 9.3 kB URL HTTP/1.1 maxibague.com.co/apply/iccu/areas/script/style/machine/google-play-badge.svg
IP 147.124.219.17:0
ASN #396073 MAJESTIC-HOSTING-01
File type SVG Scalable Vector Graphics image\012- SVG XML document\012- XML 1.0 document text\012- SVG XML document\012- XML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash 5e01637f08de80e8c27c414687738968
2d4fe2500bb550dc45c048e78aa62356fb4cbc2c
2dcf765854f1fe869b1674016feb1638870c1066f156f8d7dfd47b53d0dc093f
Analyzer Verdict Alert fortinet Phishing
GET /apply/iccu/areas/script/style/machine/google-play-badge.svg HTTP/1.1
Host: maxibague.com.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://maxibague.com.co/apply/iccu/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 10 Oct 2022 22:37:34 GMT
Server: Apache
Last-Modified: Mon, 14 Mar 2022 20:27:26 GMT
Accept-Ranges: bytes
Content-Length: 9332
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: image/svg+xml
stackpath.bootstrapcdn.com/bootstrap/4.1.0/js/bootstrap.min.js
104.18.10.207200 OK 22 kB URL HTTP/2 stackpath.bootstrapcdn.com/bootstrap/4.1.0/js/bootstrap.min.js
IP 104.18.10.207:0
File type ASCII text, with very long lines (50395)
Hash 9f5d4983c4d611b177a1f17e1ee00aff
1a42a109078e23cdf57d4af9bf293d0e4b853b5a
f74541d829e146cb2fcfa09c4c1346a1b0b5167b1b624c2bad75c7f30b298779
GET /bootstrap/4.1.0/js/bootstrap.min.js HTTP/1.1
Host: stackpath.bootstrapcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://maxibague.com.co
Connection: keep-alive
Referer: https://maxibague.com.co/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 10 Oct 2022 22:37:33 GMT
content-type: application/javascript; charset=utf-8
vary: Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
access-control-allow-origin: *
cache-control: public, max-age=31919000
etag: W/"ce6e785579ae4cb555c9de311d1b9271"
last-modified: Mon, 25 Jan 2021 22:04:05 GMT
cdn-cachedat: 08/20/2022 03:07:07
cdn-proxyver: 1.02
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 601
cdn-status: 200
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-requestid: 489ca5fc0ad45a185c27935d7afced17
cdn-cache: HIT
cf-cache-status: HIT
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 7582d75d09abb527-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
maxibague.com.co/apply/iccu/areas/script/style/machine/app-store-badge.svg
147.124.219.17200 OK 11 kB URL HTTP/1.1 maxibague.com.co/apply/iccu/areas/script/style/machine/app-store-badge.svg
IP 147.124.219.17:0
ASN #396073 MAJESTIC-HOSTING-01
File type SVG Scalable Vector Graphics image\012- HTML document, ASCII text, with very long lines (1356), with CRLF line terminators
Hash 1b65926236d951b2af57201b275f595b
1ce3e7bf2853a59f0fc9ad064e1fd48260da0f38
86c9954e1457d27db013c1f10a96ffaba845e5af7765c4ef9df4ac1549e47d67
Analyzer Verdict Alert fortinet Phishing
GET /apply/iccu/areas/script/style/machine/app-store-badge.svg HTTP/1.1
Host: maxibague.com.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://maxibague.com.co/apply/iccu/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 10 Oct 2022 22:37:34 GMT
Server: Apache
Last-Modified: Mon, 14 Mar 2022 20:27:24 GMT
Accept-Ranges: bytes
Content-Length: 10850
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: image/svg+xml
maxibague.com.co/apply/iccu/isotope/orbital/idaho/central/loading.gif
147.124.219.17200 OK 39 kB URL HTTP/1.1 maxibague.com.co/apply/iccu/isotope/orbital/idaho/central/loading.gif
IP 147.124.219.17:0
ASN #396073 MAJESTIC-HOSTING-01
File type GIF image data, version 89a, 200 x 200\012- data
Hash d10ef01e81faa2c2d812bdf670b4e072
77d09a57b2091fd7665dff763a5eab23e0ff907e
5e3d5246b17e19e65385092db07554d8e1c5c4a226a6d7f97824b8e1e8571e34
GET /apply/iccu/isotope/orbital/idaho/central/loading.gif HTTP/1.1
Host: maxibague.com.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://maxibague.com.co/apply/iccu/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 10 Oct 2022 22:37:34 GMT
Server: Apache
Last-Modified: Mon, 14 Mar 2022 20:27:32 GMT
Accept-Ranges: bytes
Content-Length: 38636
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: image/gif
maxibague.com.co/apply/iccu/areas/script/style/machine/Alkami.woff2
147.124.219.17200 OK 41 kB URL HTTP/1.1 maxibague.com.co/apply/iccu/areas/script/style/machine/Alkami.woff2
IP 147.124.219.17:0
ASN #396073 MAJESTIC-HOSTING-01
File type Web Open Font Format (Version 2), TrueType, length 41332, version 1.0\012- data
Hash 1d6ac65b22cd20ac675178f288eb5bd7
24d394b28692f029b4c85c9f01f129991318332b
c7bdfce22d332b51991b327d6c85e131e779fe2712cd378aaa1f66d99809c073
Analyzer Verdict Alert fortinet Phishing
GET /apply/iccu/areas/script/style/machine/Alkami.woff2 HTTP/1.1
Host: maxibague.com.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://maxibague.com.co/apply/iccu/areas/script/style/machine/font-icons.css
Cookie: cdContextId=1; bmuid=1665441454905-ED7AFDA4-6AF0-4F01-86E6-8B3DA217BEE5
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 10 Oct 2022 22:37:35 GMT
Server: Apache
Last-Modified: Mon, 14 Mar 2022 20:27:24 GMT
Accept-Ranges: bytes
Content-Length: 41332
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: font/woff2
maxibague.com.co/apply/iccu/areas/script/style/machine/iccu_bg.jpg
147.124.219.17200 OK 1.1 MB URL HTTP/1.1 maxibague.com.co/apply/iccu/areas/script/style/machine/iccu_bg.jpg
IP 147.124.219.17:0
ASN #396073 MAJESTIC-HOSTING-01
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1920x1280, components 3\012- data
Size 1.1 MB (1109718 bytes)
Hash b99b756449d5aa667c9bc3644d44d0ab
b111391935cdd4264415647b46ad09d1f1871ec9
f15e4cb14bc24f8cf63dcd7f1d94808f6f9303126d86df43c4d3c8bca5c52b55
GET /apply/iccu/areas/script/style/machine/iccu_bg.jpg HTTP/1.1
Host: maxibague.com.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://maxibague.com.co/apply/iccu/areas/script/style/machine/theme.desktop.min.css
Cookie: cdContextId=1; bmuid=1665441454905-ED7AFDA4-6AF0-4F01-86E6-8B3DA217BEE5
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 10 Oct 2022 22:37:35 GMT
Server: Apache
Last-Modified: Mon, 14 Mar 2022 20:27:26 GMT
Accept-Ranges: bytes
Content-Length: 1109718
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: image/jpeg
maxibague.com.co/apply/iccu/areas/script/style/machine/android-chrome-192x192.png
147.124.219.17200 OK 1.3 kB URL HTTP/1.1 maxibague.com.co/apply/iccu/areas/script/style/machine/android-chrome-192x192.png
IP 147.124.219.17:0
ASN #396073 MAJESTIC-HOSTING-01
File type PNG image data, 192 x 192, 8-bit colormap, non-interlaced\012- data
Hash 6b67b118fbfba6dfcba13c3399c2785a
5ed584897621e00c19ff2b8b2163e55ddc773ef4
ae2a3cdade7a636fe8798c6115bb5aad21d8ea267c07d36f970e4db445089bd8
GET /apply/iccu/areas/script/style/machine/android-chrome-192x192.png HTTP/1.1
Host: maxibague.com.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://maxibague.com.co/apply/iccu/
Cookie: cdContextId=1; bmuid=1665441454905-ED7AFDA4-6AF0-4F01-86E6-8B3DA217BEE5
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 10 Oct 2022 22:37:35 GMT
Server: Apache
Last-Modified: Mon, 14 Mar 2022 20:27:24 GMT
Accept-Ranges: bytes
Content-Length: 1284
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: image/png
maxibague.com.co/apply/iccu/areas/script/style/machine/favicon-16x16.png
147.124.219.17200 OK 342 B URL HTTP/1.1 maxibague.com.co/apply/iccu/areas/script/style/machine/favicon-16x16.png
IP 147.124.219.17:0
ASN #396073 MAJESTIC-HOSTING-01
File type PNG image data, 16 x 16, 8-bit colormap, non-interlaced\012- data
Hash 553313d2cf760cf8c4bec228a2a34ac0
48609c9c8ec7b062dce1ec1b562e38265dc37a42
251892031689419e0abf81a0a9f215501b8db25a697db488386784447467f815
GET /apply/iccu/areas/script/style/machine/favicon-16x16.png HTTP/1.1
Host: maxibague.com.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://maxibague.com.co/apply/iccu/
Cookie: cdContextId=1; bmuid=1665441454905-ED7AFDA4-6AF0-4F01-86E6-8B3DA217BEE5
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 10 Oct 2022 22:37:35 GMT
Server: Apache
Last-Modified: Mon, 14 Mar 2022 20:27:24 GMT
Accept-Ranges: bytes
Content-Length: 342
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: image/png
ocsp.godaddy.com/
192.124.249.22200 OK 1.8 kB IP 192.124.249.22:0
Hash 73dd38285b2d7f72fbb8630a3b19000b
7eaded8e6fca178d27aa569089c4aee41b2b7643
eab42abcd37a39aff0e38d156628f5c56ed8d32be4172e3ef2bec2cb32e26ee7
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 76
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Mon, 10 Oct 2022 22:37:35 GMT
Content-Type: application/ocsp-response
Content-Length: 1778
Connection: keep-alive
X-Sucuri-ID: 19022
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Mon, 10 Oct 2022 20:14:53 GMT
Expires: Tue, 11 Oct 2022 20:14:53 GMT
ETag: "7eaded8e6fca178d27aa569089c4aee41b2b7643"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
wup-1ca8ebd0.us.v2.we-stats.com/client/v3.1/web/wup?cid=attina
52.141.217.134200 OK 898 B URL HTTP/2 wup-1ca8ebd0.us.v2.we-stats.com/client/v3.1/web/wup?cid=attina
IP 52.141.217.134:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type JSON data\012- , ASCII text, with very long lines (898), with no line terminators
Hash c3139a15bd58872d2e8008adeeeecf42
bc13641dac181516ebcb3fcf5e3f6e47f8b92dfb
9ef674cc7b972afa700430e0d555cd353c62ec1cf3ee7947ddf4da3798eb5012
POST /client/v3.1/web/wup?cid=attina HTTP/1.1
Host: wup-1ca8ebd0.us.v2.we-stats.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 172
Origin: https://maxibague.com.co
Connection: keep-alive
Referer: https://maxibague.com.co/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/json
content-length: 898
date: Mon, 10 Oct 2022 22:37:35 GMT
server: uvicorn
access-control-allow-origin: *
access-control-allow-credentials: true
cache-control: no-cache, no-store
pragma: no-cache
tail-id: be52cbaa-b516-42e9-84fb-533ed928d2de
strict-transport-security: max-age=31536000; includeSubDomains
X-Firefox-Spdy: h2
js-agent.newrelic.com/nr-1215.min.js
151.101.86.137200 OK 14 kB URL HTTP/2 js-agent.newrelic.com/nr-1215.min.js
IP 151.101.86.137:0
File type ASCII text, with very long lines (32010)
Hash a76aa8e77462ba6b2a5e20e40cd5ae7f
34e99447d8cf9955684d03fe7758917fae3cf9ad
4dadae41651f4613ed8ff9723875dabe592ea0426ce17934d04fa5cd08b32b84
GET /nr-1215.min.js HTTP/1.1
Host: js-agent.newrelic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://maxibague.com.co/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: FDsMEePuN+0wmarxjmYDTeBIVH3oM3fS/y86WvvakEQYhOVWOGDsPBKU9j6D7nSF2ydxf3mARlE=
x-amz-request-id: MTV8YD4MK5JFDNCN
last-modified: Mon, 24 Jan 2022 22:13:53 GMT
etag: "615035bb6557b191e767e19087efabaf"
x-amz-version-id: mrZZlI3m.d3cabi4HqLBBkr4pQ2c77UF
content-type: application/javascript
server: AmazonS3
cache-control: public, max-age=7200, stale-if-error=604800
content-encoding: gzip
accept-ranges: bytes
date: Mon, 10 Oct 2022 22:37:35 GMT
via: 1.1 varnish
x-served-by: cache-bma1657-BMA
x-cache: HIT
x-cache-hits: 8
x-timer: S1665441456.785635,VS0,VE0
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
content-length: 13666
X-Firefox-Spdy: h2
1.a79ab95c1589a13f8a4cab612bc71f9f7.com/scripts/prod/crossdomain.html
108.156.46.29200 OK 221 B URL HTTP/2 1.a79ab95c1589a13f8a4cab612bc71f9f7.com/scripts/prod/crossdomain.html
IP 108.156.46.29:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 21e34cf6a03f570df49e212018a567d0
f0be4058936850ae0163f5137600d14b6632bbb3
0a23512ea579554af1f2614d6dea6120d38660028fc7624c71a978478fae0eb6
GET /scripts/prod/crossdomain.html HTTP/1.1
Host: 1.a79ab95c1589a13f8a4cab612bc71f9f7.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://maxibague.com.co/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html
content-length: 221
last-modified: Tue, 13 Oct 2020 12:04:25 GMT
x-amz-version-id: null
accept-ranges: bytes
server: AmazonS3
date: Mon, 10 Oct 2022 21:46:07 GMT
etag: "21e34cf6a03f570df49e212018a567d0"
x-cache: Hit from cloudfront
via: 1.1 40c02fa738be015864080761fca661f6.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR50-P2
x-amz-cf-id: MaIRrY2h6U20S2tV4C1gi7hLg0MMTy6t2W9AhmiuX6rjMjYZzl9Dug==
age: 3089
X-Firefox-Spdy: h2
1.c81358859121583b7adf2ace89cb39f44.com/scripts/prod/crossdomain.html
108.156.46.88200 OK 221 B URL HTTP/2 1.c81358859121583b7adf2ace89cb39f44.com/scripts/prod/crossdomain.html
IP 108.156.46.88:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 21e34cf6a03f570df49e212018a567d0
f0be4058936850ae0163f5137600d14b6632bbb3
0a23512ea579554af1f2614d6dea6120d38660028fc7624c71a978478fae0eb6
GET /scripts/prod/crossdomain.html HTTP/1.1
Host: 1.c81358859121583b7adf2ace89cb39f44.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://maxibague.com.co/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html
content-length: 221
last-modified: Tue, 13 Oct 2020 12:04:25 GMT
x-amz-version-id: null
accept-ranges: bytes
server: AmazonS3
date: Mon, 10 Oct 2022 01:18:48 GMT
etag: "21e34cf6a03f570df49e212018a567d0"
x-cache: Hit from cloudfront
via: 1.1 a80cfefba1e25a9103271d8bd22be77e.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR50-P2
x-amz-cf-id: p6rHO6BKx1FE8u5gvjnPVuRyvJA4p-3Kpr9u-mxD5VUUpSSVQbjyzw==
age: 76728
X-Firefox-Spdy: h2
1.b406929acabac9b095f124c81bdfcf57f.com/scripts/prod/crossdomain.html
18.164.68.120200 OK 221 B URL HTTP/2 1.b406929acabac9b095f124c81bdfcf57f.com/scripts/prod/crossdomain.html
IP 18.164.68.120:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 21e34cf6a03f570df49e212018a567d0
f0be4058936850ae0163f5137600d14b6632bbb3
0a23512ea579554af1f2614d6dea6120d38660028fc7624c71a978478fae0eb6
GET /scripts/prod/crossdomain.html HTTP/1.1
Host: 1.b406929acabac9b095f124c81bdfcf57f.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://maxibague.com.co/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html
content-length: 221
last-modified: Tue, 13 Oct 2020 12:04:25 GMT
x-amz-version-id: null
accept-ranges: bytes
server: AmazonS3
date: Mon, 10 Oct 2022 00:04:22 GMT
etag: "21e34cf6a03f570df49e212018a567d0"
x-cache: Hit from cloudfront
via: 1.1 73afe8565c6794e933a665f6672c4b12.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR50-P4
x-amz-cf-id: 8Kg7GELIXlQ4QjRo9caUMsPT70zG5MZzsQjVxY8AFTK53E4QI8v6sg==
age: 81194
X-Firefox-Spdy: h2
1.a79ab95c1589a13f8a4cab612bc71f9f7.com/scripts/prod/crossdomain2.12.0.5273.b96c35cc.min.js
108.156.46.29200 OK 3.2 kB URL HTTP/2 1.a79ab95c1589a13f8a4cab612bc71f9f7.com/scripts/prod/crossdomain2.12.0.5273.b96c35cc.min.js
IP 108.156.46.29:0
File type ASCII text, with very long lines (3227), with no line terminators
Hash 9ee48a4da9c402e8a23ad085fb71f28f
f0c59306d6313f9bee02b53ca8903991bd24bfd7
9cdad69a4b967c882c3d8e9cb054e7334b7f8870e96427a5d20ae2d17eff2622
GET /scripts/prod/crossdomain2.12.0.5273.b96c35cc.min.js HTTP/1.1
Host: 1.a79ab95c1589a13f8a4cab612bc71f9f7.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://1.a79ab95c1589a13f8a4cab612bc71f9f7.com/scripts/prod/crossdomain.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-length: 3227
last-modified: Tue, 13 Oct 2020 12:04:25 GMT
x-amz-version-id: null
accept-ranges: bytes
server: AmazonS3
date: Mon, 10 Oct 2022 18:18:53 GMT
etag: "9ee48a4da9c402e8a23ad085fb71f28f"
x-cache: Hit from cloudfront
via: 1.1 40c02fa738be015864080761fca661f6.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR50-P2
x-amz-cf-id: QtwZaMhf5pixqZu7PS3K6g4CfzcwDi7oCK3ZbtaHcAI2ZxiJambnxA==
age: 15524
X-Firefox-Spdy: h2
1.c81358859121583b7adf2ace89cb39f44.com/scripts/prod/crossdomain2.12.0.5273.b96c35cc.min.js
108.156.46.88200 OK 3.2 kB URL HTTP/2 1.c81358859121583b7adf2ace89cb39f44.com/scripts/prod/crossdomain2.12.0.5273.b96c35cc.min.js
IP 108.156.46.88:0
File type ASCII text, with very long lines (3227), with no line terminators
Hash 9ee48a4da9c402e8a23ad085fb71f28f
f0c59306d6313f9bee02b53ca8903991bd24bfd7
9cdad69a4b967c882c3d8e9cb054e7334b7f8870e96427a5d20ae2d17eff2622
GET /scripts/prod/crossdomain2.12.0.5273.b96c35cc.min.js HTTP/1.1
Host: 1.c81358859121583b7adf2ace89cb39f44.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://1.c81358859121583b7adf2ace89cb39f44.com/scripts/prod/crossdomain.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-length: 3227
last-modified: Tue, 13 Oct 2020 12:04:25 GMT
x-amz-version-id: null
accept-ranges: bytes
server: AmazonS3
date: Mon, 10 Oct 2022 19:14:59 GMT
etag: "9ee48a4da9c402e8a23ad085fb71f28f"
x-cache: Hit from cloudfront
via: 1.1 a80cfefba1e25a9103271d8bd22be77e.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR50-P2
x-amz-cf-id: JhkAt7rFneQ2oGxBezK1mTIqJdfyZLkdkOSKDg8EakSgj9M5hewKSw==
age: 12158
X-Firefox-Spdy: h2
1.b406929acabac9b095f124c81bdfcf57f.com/scripts/prod/crossdomain2.12.0.5273.b96c35cc.min.js
18.164.68.120200 OK 3.2 kB URL HTTP/2 1.b406929acabac9b095f124c81bdfcf57f.com/scripts/prod/crossdomain2.12.0.5273.b96c35cc.min.js
IP 18.164.68.120:0
File type ASCII text, with very long lines (3227), with no line terminators
Hash 9ee48a4da9c402e8a23ad085fb71f28f
f0c59306d6313f9bee02b53ca8903991bd24bfd7
9cdad69a4b967c882c3d8e9cb054e7334b7f8870e96427a5d20ae2d17eff2622
GET /scripts/prod/crossdomain2.12.0.5273.b96c35cc.min.js HTTP/1.1
Host: 1.b406929acabac9b095f124c81bdfcf57f.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://1.b406929acabac9b095f124c81bdfcf57f.com/scripts/prod/crossdomain.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-length: 3227
last-modified: Tue, 13 Oct 2020 12:04:25 GMT
x-amz-version-id: null
accept-ranges: bytes
server: AmazonS3
date: Mon, 10 Oct 2022 02:15:21 GMT
etag: "9ee48a4da9c402e8a23ad085fb71f28f"
x-cache: Hit from cloudfront
via: 1.1 73afe8565c6794e933a665f6672c4b12.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR50-P4
x-amz-cf-id: 4xv4faFQp2jsPa144ODqcKln8ZLbSFXvJ4Y672STXk5g_rbuKcbs8g==
age: 73336
X-Firefox-Spdy: h2
bam-cell.nr-data.net/1/aec7706684?a=146219323&v=1215.1253ab8&to=MlVRZUoCW0ZZBUdcXAsffmd7THRATA5WW0cMU1JFUQxbdlcIR0dcCVxWQxcqW1FdHg%3D%3D&rst=2336&ck=1&ref=https://maxibague.com.co/apply/iccu/&ap=47&be=86&fe=2262&dc=1633&af=err,xhr,stn,ins&perf=%7B%22timing%22:%7B%22of%22:1665441453440,%22n%22:0,%22u%22:34,%22ue%22:34,%22f%22:0,%22dn%22:0,%22dne%22:0,%22c%22:0,%22s%22:0,%22ce%22:0,%22rq%22:0,%22rp%22:20,%22rpe%22:37,%22dl%22:34,%22di%22:1622,%22ds%22:1633,%22de%22:1634,%22dc%22:2260,%22l%22:2260,%22le%22:2263%7D,%22navigation%22:%7B%22ty%22:1%7D%7D&fcp=1518&jsonp=NREUM.setToken
162.247.241.2200 OK 72 B URL HTTP/1.1 bam-cell.nr-data.net/1/aec7706684?a=146219323&v=1215.1253ab8&to=MlVRZUoCW0ZZBUdcXAsffmd7THRATA5WW0cMU1JFUQxbdlcIR0dcCVxWQxcqW1FdHg%3D%3D&rst=2336&ck=1&ref=https://maxibague.com.co/apply/iccu/&ap=47&be=86&fe=2262&dc=1633&af=err,xhr,stn,ins&perf=%7B%22timing%22:%7B%22of%22:1665441453440,%22n%22:0,%22u%22:34,%22ue%22:34,%22f%22:0,%22dn%22:0,%22dne%22:0,%22c%22:0,%22s%22:0,%22ce%22:0,%22rq%22:0,%22rp%22:20,%22rpe%22:37,%22dl%22:34,%22di%22:1622,%22ds%22:1633,%22de%22:1634,%22dc%22:2260,%22l%22:2260,%22le%22:2263%7D,%22navigation%22:%7B%22ty%22:1%7D%7D&fcp=1518&jsonp=NREUM.setToken
IP 162.247.241.2:0
File type ASCII text, with no line terminators
Hash 107d93e382e2c9b00fbf9fb0edc65d86
77e750e3ebf9706f4f6dd253785602d70be17c6c
a1ee50b689ea433a0acdccbf4ee4629e9ea3f9c4bcdd21effb334359a2f9e937
GET /1/aec7706684?a=146219323&v=1215.1253ab8&to=MlVRZUoCW0ZZBUdcXAsffmd7THRATA5WW0cMU1JFUQxbdlcIR0dcCVxWQxcqW1FdHg%3D%3D&rst=2336&ck=1&ref=https://maxibague.com.co/apply/iccu/&ap=47&be=86&fe=2262&dc=1633&af=err,xhr,stn,ins&perf=%7B%22timing%22:%7B%22of%22:1665441453440,%22n%22:0,%22u%22:34,%22ue%22:34,%22f%22:0,%22dn%22:0,%22dne%22:0,%22c%22:0,%22s%22:0,%22ce%22:0,%22rq%22:0,%22rp%22:20,%22rpe%22:37,%22dl%22:34,%22di%22:1622,%22ds%22:1633,%22de%22:1634,%22dc%22:2260,%22l%22:2260,%22le%22:2263%7D,%22navigation%22:%7B%22ty%22:1%7D%7D&fcp=1518&jsonp=NREUM.setToken HTTP/1.1
Host: bam-cell.nr-data.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://maxibague.com.co/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Mon, 10 Oct 2022 22:37:36 GMT
Content-Type: text/javascript
Transfer-Encoding: chunked
Connection: keep-alive
CF-Ray: 7582d76b38a60b3d-OSL
Access-Control-Allow-Origin: *
Set-Cookie: JSESSIONID=ea07e12bce2c7519; Path=/; Domain=.nr-data.net; Secure; SameSite=None
CF-Cache-Status: DYNAMIC
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, HEAD, OPTIONS
Cross-Origin-Resource-Policy: cross-origin
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=oLbQIYJ0%2B9mxCvnYO3Va94Tdm57kOy1c%2F5IGuwq27bJO3v%2B5zme0fXO11TDEju%2Bf6zwhtjchd%2FERHoEeQwPCmHq0yhleGiaJCk58ZD41Hh7eZKTy2IGZOv5hfXUAurnhny82QBmX"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
Content-Encoding: gzip
wup-1ca8ebd0.us.v2.we-stats.com/client/v3.1/web/wup?cid=attina
52.141.217.134200 OK 557 B URL HTTP/2 wup-1ca8ebd0.us.v2.we-stats.com/client/v3.1/web/wup?cid=attina
IP 52.141.217.134:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type JSON data\012- , ASCII text, with very long lines (557), with no line terminators
Hash d86833f5ff71c45a32ee6dc79cc904b5
071d5c367968b6a6e4a294e8ba8091cf2d44f4fa
cef1ca78f3e1a70483df6b272f4b0c901a7487c1fd18e4076d3c1dd4fea97a60
POST /client/v3.1/web/wup?cid=attina HTTP/1.1
Host: wup-1ca8ebd0.us.v2.we-stats.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 2306
Origin: https://maxibague.com.co
Connection: keep-alive
Referer: https://maxibague.com.co/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json
content-length: 557
date: Mon, 10 Oct 2022 22:37:36 GMT
server: uvicorn
access-control-allow-origin: *
access-control-allow-credentials: true
cache-control: no-cache, no-store
pragma: no-cache
tail-id: 3d458674-3eb3-4397-a14d-831bfb1bb8d2
strict-transport-security: max-age=31536000; includeSubDomains
X-Firefox-Spdy: h2
wup-1ca8ebd0.us.v2.we-stats.com/client/v3.1/web/wup?cid=attina
52.141.217.134200 OK 557 B URL HTTP/2 wup-1ca8ebd0.us.v2.we-stats.com/client/v3.1/web/wup?cid=attina
IP 52.141.217.134:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type JSON data\012- , ASCII text, with very long lines (557), with no line terminators
Hash 37355f67e15f4a12e1c4f5f8c4785292
b3b3ac9cdffbc7470cfb63e5cab6a4683720cf61
c0d7da706deae6a77a3f24a56401e9623e695d7f1377bfbbef3015e29dcb317d
POST /client/v3.1/web/wup?cid=attina HTTP/1.1
Host: wup-1ca8ebd0.us.v2.we-stats.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 1946
Origin: https://maxibague.com.co
Connection: keep-alive
Referer: https://maxibague.com.co/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json
content-length: 557
date: Mon, 10 Oct 2022 22:37:37 GMT
server: uvicorn
access-control-allow-origin: *
access-control-allow-credentials: true
cache-control: no-cache, no-store
pragma: no-cache
tail-id: 8299f8db-f401-4815-9542-28306dc30c5e
strict-transport-security: max-age=31536000; includeSubDomains
X-Firefox-Spdy: h2
log-1ca8ebd0.us.v2.we-stats.com/api/v1/sendLogs?cid=attina&cdsnum=1665441455681-sjn0000486-c2ebcc8f-eb70-476b-8a8c-71cbe2a329cf&csid=null&ds=js&sdkVer=2.21.1.702.b35a966
52.238.253.184204 No Content 0 B URL HTTP/2 log-1ca8ebd0.us.v2.we-stats.com/api/v1/sendLogs?cid=attina&cdsnum=1665441455681-sjn0000486-c2ebcc8f-eb70-476b-8a8c-71cbe2a329cf&csid=null&ds=js&sdkVer=2.21.1.702.b35a966
IP 52.238.253.184:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /api/v1/sendLogs?cid=attina&cdsnum=1665441455681-sjn0000486-c2ebcc8f-eb70-476b-8a8c-71cbe2a329cf&csid=null&ds=js&sdkVer=2.21.1.702.b35a966 HTTP/1.1
Host: log-1ca8ebd0.us.v2.we-stats.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 1296
Origin: https://maxibague.com.co
Connection: keep-alive
Referer: https://maxibague.com.co/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
server: nginx
date: Mon, 10 Oct 2022 22:37:38 GMT
access-control-allow-origin: *
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd7ee5383-8709-4209-8a04-568b60017d86.jpeg
34.120.237.76200 OK 6.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd7ee5383-8709-4209-8a04-568b60017d86.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 680ec1e2b9bafd783ad6c6500e7b8766
a0e93a190fd539c58243b672367b2515eb8cbd58
da14b2b9a5a8d00c30ad3522c9e5a9ab24065a245a9fa0f0fddb6079975b18f3
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd7ee5383-8709-4209-8a04-568b60017d86.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 6852
x-amzn-requestid: 1036d85d-dc5d-436c-91a0-42f5bb0bc372
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Zzt7jGlcIAMFWHA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63449049-0ea6409334b50a8d492e3513;Sampled=0
x-amzn-remapped-date: Mon, 10 Oct 2022 21:36:09 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: -mAQYJEN4b1EG9TBtLempQCrj-W9HuqYv5d6D7w9-dKpklnkcp9Daw==
via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 7eb3b782ab09047ce0d11ee03763894c.cloudfront.net (CloudFront), 1.1 google
date: Mon, 10 Oct 2022 21:55:51 GMT
etag: "a0e93a190fd539c58243b672367b2515eb8cbd58"
content-type: image/jpeg
age: 2509
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
maxibague.com.co/apply/iccu/js/actions.js
147.124.219.17302 Found 0 B URL HTTP/1.1 maxibague.com.co/apply/iccu/js/actions.js
IP 147.124.219.17:0
ASN #396073 MAJESTIC-HOSTING-01
Analyzer Verdict Alert fortinet Phishing
GET /apply/iccu/js/actions.js HTTP/1.1
Host: maxibague.com.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://maxibague.com.co/apply/iccu/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 302 Found
Date: Mon, 10 Oct 2022 22:37:34 GMT
Server: Apache
X-Powered-By: PHP/7.3.33
Location: https://ois.is/images/logo.png
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8