| santanderus.affinities.io/1/affinity/detail?id=f1_19lsj6deEventindex?rurl=aHR0cHM6Ly9zYW50YW5kZXJ1cy5hZmZpbml0aWVzLmlvLzEvYWZmaW5pdHkvZGV0YWlsP2lkPWYxXzE5bHNqNmRlRXZlbnQ-index?rurl=aHR0cHM6Ly9zYW50YW5kZXJ1cy5hZmZpbml0aWVzLmlvLzEvYWZmaW5pdHkvZGV0YWlsP2lkPWYxXzE5bHNqNmRlRXZlbnRpbmRleD9ydXJsPWFIUjBjSE02THk5ellXNTBZVzVrWlhKMWN5NWhabVpwYm1sMGFXVnpMbWx2THpFdllXWm1hVzVwZEhrdlpHVjBZV2xzUDJsa1BXWXhYekU1YkhOcU5tUmxSWFpsYm5RLQ-- | 44.209.173.225 | | 1 B |
URL santanderus.affinities.io/1/affinity/detail?id=f1_19lsj6deEventindex?rurl=aHR0cHM6Ly9zYW50YW5kZXJ1cy5hZmZpbml0aWVzLmlvLzEvYWZmaW5pdHkvZGV0YWlsP2lkPWYxXzE5bHNqNmRlRXZlbnQ-index?rurl=aHR0cHM6Ly9zYW50YW5kZXJ1cy5hZmZpbml0aWVzLmlvLzEvYWZmaW5pdHkvZGV0YWlsP2lkPWYxXzE5bHNqNmRlRXZlbnRpbmRleD9ydXJsPWFIUjBjSE02THk5ellXNTBZVzVrWlhKMWN5NWhabVpwYm1sMGFXVnpMbWx2THpFdllXWm1hVzVwZEhrdlpHVjBZV2xzUDJsa1BXWXhYekU1YkhOcU5tUmxSWFpsYm5RLQ-- IP44.209.173.225:0
File typevery short file (no magic) Hash68b329da9893e34099c7d8ad5cb9c940 adc83b19e793491b1c6ea0fd8b46cd9f32e592fc 01ba4719c80b6fe911b091a7c05124b64eeece964e09c058ef8f9805daca546b
GET /1/affinity/detail?id=f1_19lsj6deEventindex?rurl=aHR0cHM6Ly9zYW50YW5kZXJ1cy5hZmZpbml0aWVzLmlvLzEvYWZmaW5pdHkvZGV0YWlsP2lkPWYxXzE5bHNqNmRlRXZlbnQ-index?rurl=aHR0cHM6Ly9zYW50YW5kZXJ1cy5hZmZpbml0aWVzLmlvLzEvYWZmaW5pdHkvZGV0YWlsP2lkPWYxXzE5bHNqNmRlRXZlbnRpbmRleD9ydXJsPWFIUjBjSE02THk5ellXNTBZVzVrWlhKMWN5NWhabVpwYm1sMGFXVnpMbWx2THpFdllXWm1hVzVwZEhrdlpHVjBZV2xzUDJsa1BXWXhYekU1YkhOcU5tUmxSWFpsYm5RLQ-- HTTP/1.1
Host: santanderus.affinities.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
date: Mon, 06 May 2024 21:52:10 GMT
content-type: text/html; charset=UTF-8
content-length: 1
location: index?rurl=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
set-cookie: AWSALB=vkf9Enh9RcDv1UDaivFOfF7JLiXb+N46N22iJ6AOoxnwQw1k5jnXjPU8peeGiESEP39KfWeb4b51f4MVAl1Mlm1b52JysNQgOwaITni7yeSraOGjoCaCxw7EI3cu; Expires=Mon, 13 May 2024 21:52:10 GMT; Path=/
AWSALBCORS=vkf9Enh9RcDv1UDaivFOfF7JLiXb+N46N22iJ6AOoxnwQw1k5jnXjPU8peeGiESEP39KfWeb4b51f4MVAl1Mlm1b52JysNQgOwaITni7yeSraOGjoCaCxw7EI3cu; Expires=Mon, 13 May 2024 21:52:10 GMT; Path=/; SameSite=None; Secure
__Secure-PHPSESSID=1ou9ed8kct7vbceu8t94dfnhiavq84cq5c1thuje6019rsi6j0fehb1424hg85jk29k44548; path=/; secure; HttpOnly; SameSite=Lax
server: Apache
x-frame-options: SAMEORIGIN
referrer-policy: same-origin
permissions-policy: accelerometer=(),camera=(),geolocation=(),gyroscope=(),magnetometer=(),microphone=(),usb=()
content-security-policy: default-src 'self' 'unsafe-eval' 'unsafe-inline' data: blob: teleskope-prd1.s3.amazonaws.com teleskope-training-videos.s3.amazonaws.com teleskope-album-prd1.s3.amazonaws.com d36987eqsnwlrg.cloudfront.net fonts.gstatic.com www.gstatic.com maps.googleapis.com maps.gstatic.com fonts.googleapis.com https://www.google.com/recaptcha/ https://*.demdex.net https://cm.everesttech.net https://assets.adobedtm.com *.2o7.net;frame-src 'self' blob: *.yammer.com *.microsoftstream.com https://www.google.com/ teleskope-prd1.s3.amazonaws.com *.youtube.com *.vimeo.com https://*.demdex.net;
strict-transport-security: max-age=63072000; includeSubDomains; preload
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate, public
pragma: no-cache
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
X-Firefox-Spdy: h2
|
|
| santanderus.affinities.io/1/affinity/index?rurl=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 | 44.209.173.225 | | 799 B |
URL santanderus.affinities.io/1/affinity/index?rurl=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 IP44.209.173.225:0
File typeJavaScript source, ASCII text Hash7bb5eadb65fecce308d0074b8d4f6fb4 5ef9e377a133ffa76c8511ae4066dc43b54b179a 578c3a35c566bb7939dfa3a5716e42810824f9faa7a0a41f61a5402e9de0f7d6
GET /1/affinity/index?rurl=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 HTTP/1.1
Host: santanderus.affinities.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: AWSALB=vkf9Enh9RcDv1UDaivFOfF7JLiXb+N46N22iJ6AOoxnwQw1k5jnXjPU8peeGiESEP39KfWeb4b51f4MVAl1Mlm1b52JysNQgOwaITni7yeSraOGjoCaCxw7EI3cu; AWSALBCORS=vkf9Enh9RcDv1UDaivFOfF7JLiXb+N46N22iJ6AOoxnwQw1k5jnXjPU8peeGiESEP39KfWeb4b51f4MVAl1Mlm1b52JysNQgOwaITni7yeSraOGjoCaCxw7EI3cu; __Secure-PHPSESSID=1ou9ed8kct7vbceu8t94dfnhiavq84cq5c1thuje6019rsi6j0fehb1424hg85jk29k44548
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Mon, 06 May 2024 21:52:10 GMT
content-type: text/html; charset=UTF-8
content-length: 799
set-cookie: AWSALB=7HAttyW6JjqrNqrzK7GkZmohSUkokHJyQ6zZdavVSKDZ9Ix4wyL1KK5PpKiUHEKvveXXzAms/rd77XHFhulQ6IK0VcSDB00fGOMpV2yhXgdZ9orZJ9gWK0M8FSHm; Expires=Mon, 13 May 2024 21:52:10 GMT; Path=/
AWSALBCORS=7HAttyW6JjqrNqrzK7GkZmohSUkokHJyQ6zZdavVSKDZ9Ix4wyL1KK5PpKiUHEKvveXXzAms/rd77XHFhulQ6IK0VcSDB00fGOMpV2yhXgdZ9orZJ9gWK0M8FSHm; Expires=Mon, 13 May 2024 21:52:10 GMT; Path=/; SameSite=None; Secure
__Secure-PHPSESSID=d39280b0rf860ksf0m51ipmk7vqgb02u6mln2m1a8t9k1jqfp2jdp6ncjb53823pb1o0j1r9; path=/; secure; HttpOnly; SameSite=Lax
server: Apache
x-frame-options: SAMEORIGIN
referrer-policy: same-origin
permissions-policy: accelerometer=(),camera=(),geolocation=(),gyroscope=(),magnetometer=(),microphone=(),usb=()
content-security-policy: default-src 'self' 'unsafe-eval' 'unsafe-inline' data: blob: teleskope-prd1.s3.amazonaws.com teleskope-training-videos.s3.amazonaws.com teleskope-album-prd1.s3.amazonaws.com d36987eqsnwlrg.cloudfront.net fonts.gstatic.com www.gstatic.com maps.googleapis.com maps.gstatic.com fonts.googleapis.com https://www.google.com/recaptcha/ https://*.demdex.net https://cm.everesttech.net https://assets.adobedtm.com *.2o7.net;frame-src 'self' blob: *.yammer.com *.microsoftstream.com https://www.google.com/ teleskope-prd1.s3.amazonaws.com *.youtube.com *.vimeo.com https://*.demdex.net;
strict-transport-security: max-age=63072000; includeSubDomains; preload
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate, public
pragma: no-cache
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
X-Firefox-Spdy: h2
|
|
| d36987eqsnwlrg.cloudfront.net/vendor/js/jquery-3.5.1/dist/jquery.min.js | 54.230.241.65 | | 31 kB |
URL d36987eqsnwlrg.cloudfront.net/vendor/js/jquery-3.5.1/dist/jquery.min.js IP54.230.241.65:0
File typeJavaScript source, ASCII text, with very long lines (65451) Hashdc5e7f18c8d36ac1d3d4753a87c98d0a c8e1c8b386dc5b7a9184c763c88d19a346eb3342 f7f6a5894f1d19ddad6fa392b2ece2c5e578cbf7da4ea805b6885eb6985b6e3d
GET /vendor/js/jquery-3.5.1/dist/jquery.min.js HTTP/1.1
Host: d36987eqsnwlrg.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript
date: Thu, 11 Jan 2024 03:51:13 GMT
last-modified: Wed, 10 Jan 2024 18:34:00 GMT
etag: W/"dc5e7f18c8d36ac1d3d4753a87c98d0a"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=25920000
server: AmazonS3
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 0c35b89cb607eddb1b7cc5d6ada865d6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: jh-HIFreAsDowhSjb3lsYz4K8UJTNgUHqfWG1msjrRw7h-Gimxwrtg==
age: 10087259
X-Firefox-Spdy: h2
|
|
| prd.teleskope.io/1/user/login?rurl=aHR0cHM6Ly9zYW50YW5kZXJ1cy5hZmZpbml0aWVzLmlvLzEvYWZmaW5pdHkvaW5kZXg-&ss=400382160 | 44.209.173.225 | 302 Found | 0 B |
URL User Request GET HTTP/2prd.teleskope.io/1/user/login?rurl=aHR0cHM6Ly9zYW50YW5kZXJ1cy5hZmZpbml0aWVzLmlvLzEvYWZmaW5pdHkvaW5kZXg-&ss=400382160 IP44.209.173.225:443
CertificateIssuerAmazon Subjectprd.teleskope.io FingerprintB2:74:5E:0E:EB:BD:1F:56:A5:D8:FF:0D:09:BB:A3:9C:FC:CB:0F:60 ValidityMon, 31 Jul 2023 00:00:00 GMT - Thu, 29 Aug 2024 23:59:59 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /1/user/login?rurl=aHR0cHM6Ly9zYW50YW5kZXJ1cy5hZmZpbml0aWVzLmlvLzEvYWZmaW5pdHkvaW5kZXg-&ss=400382160 HTTP/1.1
Host: prd.teleskope.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
date: Mon, 06 May 2024 21:52:11 GMT
content-type: text/html; charset=UTF-8
content-length: 0
location: login_re?lm_type=saml2&lm_id=168
set-cookie: AWSALB=ZytKoIctUtB9FmWBeEaldtupkkWynraxcGRrANJdPec50mnhKZVCR7ZRI7P0UU1WNhcZRttfBby+CiNHXxXfPE6cYukvFAldwWQdYewkO6LrdYcpZlG4FdRMeQ/m; Expires=Mon, 13 May 2024 21:52:11 GMT; Path=/
AWSALBCORS=ZytKoIctUtB9FmWBeEaldtupkkWynraxcGRrANJdPec50mnhKZVCR7ZRI7P0UU1WNhcZRttfBby+CiNHXxXfPE6cYukvFAldwWQdYewkO6LrdYcpZlG4FdRMeQ/m; Expires=Mon, 13 May 2024 21:52:11 GMT; Path=/; SameSite=None; Secure
__Secure-PHPSESSID=ookq6mam7vu8qrks0o54pvu9nsmafphk1s2h6cqjub484di69srahim9t5nqvdhh9s6od4t1; path=/; secure; HttpOnly
server: Apache
x-frame-options: SAMEORIGIN
referrer-policy: same-origin
permissions-policy: accelerometer=(),camera=(),geolocation=(),gyroscope=(),magnetometer=(),microphone=(),usb=()
content-security-policy: default-src 'self' 'unsafe-eval' 'unsafe-inline' data: blob: teleskope-prd1.s3.amazonaws.com teleskope-training-videos.s3.amazonaws.com teleskope-album-prd1.s3.amazonaws.com d36987eqsnwlrg.cloudfront.net fonts.gstatic.com www.gstatic.com maps.googleapis.com maps.gstatic.com fonts.googleapis.com https://www.google.com/recaptcha/ https://*.demdex.net https://cm.everesttech.net https://assets.adobedtm.com *.2o7.net;frame-src 'self' blob: *.yammer.com *.microsoftstream.com https://www.google.com/ teleskope-prd1.s3.amazonaws.com *.youtube.com *.vimeo.com https://*.demdex.net;
strict-transport-security: max-age=63072000; includeSubDomains; preload
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate, public
pragma: no-cache
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
X-Firefox-Spdy: h2
|
|
| prd.teleskope.io/1/user/login_re?lm_type=saml2&lm_id=168 | 44.209.173.225 | 302 Found | 0 B |
URL User Request GET HTTP/2prd.teleskope.io/1/user/login_re?lm_type=saml2&lm_id=168 IP44.209.173.225:443
CertificateIssuerAmazon Subjectprd.teleskope.io FingerprintB2:74:5E:0E:EB:BD:1F:56:A5:D8:FF:0D:09:BB:A3:9C:FC:CB:0F:60 ValidityMon, 31 Jul 2023 00:00:00 GMT - Thu, 29 Aug 2024 23:59:59 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /1/user/login_re?lm_type=saml2&lm_id=168 HTTP/1.1
Host: prd.teleskope.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: AWSALB=ZytKoIctUtB9FmWBeEaldtupkkWynraxcGRrANJdPec50mnhKZVCR7ZRI7P0UU1WNhcZRttfBby+CiNHXxXfPE6cYukvFAldwWQdYewkO6LrdYcpZlG4FdRMeQ/m; AWSALBCORS=ZytKoIctUtB9FmWBeEaldtupkkWynraxcGRrANJdPec50mnhKZVCR7ZRI7P0UU1WNhcZRttfBby+CiNHXxXfPE6cYukvFAldwWQdYewkO6LrdYcpZlG4FdRMeQ/m; __Secure-PHPSESSID=ookq6mam7vu8qrks0o54pvu9nsmafphk1s2h6cqjub484di69srahim9t5nqvdhh9s6od4t1
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 302 Found
date: Mon, 06 May 2024 21:52:12 GMT
content-type: text/html; charset=UTF-8
content-length: 0
location: saml2/sso?realm=santanderus.affinities.io
set-cookie: AWSALB=PxmyvnkgzEu7wkp7+ds+ibfAmRwCCrrFZFsoeSYKm6nUcsk2vh8r75rJEQgg60PTmkBeroYymCKz2qXWeOG+2F5D2zwXi6Sn4bnmzDu9ihiMaUX1WCTM0XuRiUrB; Expires=Mon, 13 May 2024 21:52:12 GMT; Path=/
AWSALBCORS=PxmyvnkgzEu7wkp7+ds+ibfAmRwCCrrFZFsoeSYKm6nUcsk2vh8r75rJEQgg60PTmkBeroYymCKz2qXWeOG+2F5D2zwXi6Sn4bnmzDu9ihiMaUX1WCTM0XuRiUrB; Expires=Mon, 13 May 2024 21:52:12 GMT; Path=/; SameSite=None; Secure
server: Apache
x-frame-options: SAMEORIGIN
referrer-policy: same-origin
permissions-policy: accelerometer=(),camera=(),geolocation=(),gyroscope=(),magnetometer=(),microphone=(),usb=()
content-security-policy: default-src 'self' 'unsafe-eval' 'unsafe-inline' data: blob: teleskope-prd1.s3.amazonaws.com teleskope-training-videos.s3.amazonaws.com teleskope-album-prd1.s3.amazonaws.com d36987eqsnwlrg.cloudfront.net fonts.gstatic.com www.gstatic.com maps.googleapis.com maps.gstatic.com fonts.googleapis.com https://www.google.com/recaptcha/ https://*.demdex.net https://cm.everesttech.net https://assets.adobedtm.com *.2o7.net;frame-src 'self' blob: *.yammer.com *.microsoftstream.com https://www.google.com/ teleskope-prd1.s3.amazonaws.com *.youtube.com *.vimeo.com https://*.demdex.net;
strict-transport-security: max-age=63072000; includeSubDomains; preload
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate, public
pragma: no-cache
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
X-Firefox-Spdy: h2
|
|
| prd.teleskope.io/1/user/saml2/sso?realm=santanderus.affinities.io | 44.209.173.225 | 302 Found | 0 B |
URL User Request GET HTTP/2prd.teleskope.io/1/user/saml2/sso?realm=santanderus.affinities.io IP44.209.173.225:443
CertificateIssuerAmazon Subjectprd.teleskope.io FingerprintB2:74:5E:0E:EB:BD:1F:56:A5:D8:FF:0D:09:BB:A3:9C:FC:CB:0F:60 ValidityMon, 31 Jul 2023 00:00:00 GMT - Thu, 29 Aug 2024 23:59:59 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /1/user/saml2/sso?realm=santanderus.affinities.io HTTP/1.1
Host: prd.teleskope.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: AWSALB=PxmyvnkgzEu7wkp7+ds+ibfAmRwCCrrFZFsoeSYKm6nUcsk2vh8r75rJEQgg60PTmkBeroYymCKz2qXWeOG+2F5D2zwXi6Sn4bnmzDu9ihiMaUX1WCTM0XuRiUrB; AWSALBCORS=PxmyvnkgzEu7wkp7+ds+ibfAmRwCCrrFZFsoeSYKm6nUcsk2vh8r75rJEQgg60PTmkBeroYymCKz2qXWeOG+2F5D2zwXi6Sn4bnmzDu9ihiMaUX1WCTM0XuRiUrB; __Secure-PHPSESSID=ookq6mam7vu8qrks0o54pvu9nsmafphk1s2h6cqjub484di69srahim9t5nqvdhh9s6od4t1
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 302 Found
date: Mon, 06 May 2024 21:52:12 GMT
content-type: text/html; charset=UTF-8
content-length: 0
location: https://sso.sov.gs.corp/idp/SSO.saml2?SAMLRequest=jVJLj9MwEL7vr6hypnYSmm1rNUWl5VEptNUmcOCCXHu6a5HYxuMU%2BPe4DrsLSCzMcTzfYz7PAnnXWrbq%2FZ2%2BgS89oL8ahfrWtRpZfCyT3mlmOCpkmneAzAtWr95VLCcps854I0yb%2FAF7GsURwXll9ADbbspkv3tV7d9sd5%2BmhZiJ%2BQzmfCKm06KYZ7LgaZHLVOZ8crw%2Bzmb8eQGTAfoBHAaeMgm0Q%2BfgzFlJcLugWiYNtICfjYVno6pa%2F5RD7GGr0XPtAzDNJ%2BO0GKfXTZ6xImdZ%2FnGY24Q0lOY%2B8t95b5FRimgImjO5RSKMs1RJS%2Bt6Ty5L5w8OYiYvlZZK3z4dxXEYQva2aQ7jw75uBpLVfURro7HvwNXgzkrA%2B5vq0Yx1kvj7DYkyNKN9gNFohnKBLxzwtisxbMp1CKVHwk8npZVXgAGQLKPY4gJgMRe3%2FD%2FyDjyX3PN%2FKSzor9yPapZdPmi7OZhWie%2Bxf6nXxnXc%2Fz2yjGSxo%2BT4FEdZr9GCUCcFMnmgWbWt%2BboO1ny4Ae96SEZ0eTV4%2Bf3clz8A&RelayState=santanderus.affinities.io
set-cookie: AWSALB=YAvIh42Yb5uV/NyaYBH6erClMSkuJAmP3VoP2dGx98jYzs7kxsOXMHetXXTvsccLT/cLU594eV5VOy/+liDTYy6W/2Xu6ZTr9WKx2MuVa7IB/iloB/o7qAw2RKUg; Expires=Mon, 13 May 2024 21:52:12 GMT; Path=/
AWSALBCORS=YAvIh42Yb5uV/NyaYBH6erClMSkuJAmP3VoP2dGx98jYzs7kxsOXMHetXXTvsccLT/cLU594eV5VOy/+liDTYy6W/2Xu6ZTr9WKx2MuVa7IB/iloB/o7qAw2RKUg; Expires=Mon, 13 May 2024 21:52:12 GMT; Path=/; SameSite=None; Secure
server: Apache
x-frame-options: SAMEORIGIN
referrer-policy: same-origin
permissions-policy: accelerometer=(),camera=(),geolocation=(),gyroscope=(),magnetometer=(),microphone=(),usb=()
content-security-policy: default-src 'self' 'unsafe-eval' 'unsafe-inline' data: blob: teleskope-prd1.s3.amazonaws.com teleskope-training-videos.s3.amazonaws.com teleskope-album-prd1.s3.amazonaws.com d36987eqsnwlrg.cloudfront.net fonts.gstatic.com www.gstatic.com maps.googleapis.com maps.gstatic.com fonts.googleapis.com https://www.google.com/recaptcha/ https://*.demdex.net https://cm.everesttech.net https://assets.adobedtm.com *.2o7.net;frame-src 'self' blob: *.yammer.com *.microsoftstream.com https://www.google.com/ teleskope-prd1.s3.amazonaws.com *.youtube.com *.vimeo.com https://*.demdex.net;
strict-transport-security: max-age=63072000; includeSubDomains; preload
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-cache, must-revalidate, public
pragma: no-cache
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
X-Firefox-Spdy: h2
|
|
| santanderus.affinities.io/1/affinity/index?rurl=aHR0cHM6Ly9zYW50YW5kZXJ1cy5hZmZpbml0aWVzLmlvLzEvYWZmaW5pdHkvZGV0YWlsP2lkPWYxXzE5bHNqNmRlRXZlbnRpbmRleD9ydXJsPWFIUjBjSE02THk5ellXNTBZVzVrWlhKMWN5NWhabVpwYm1sMGFXVnpMbWx2THpFdllXWm1hVzVwZEhrdlpHVjBZV2xzUDJsa1BXWXhYekU1YkhOcU5tUmxSWFpsYm5RLWluZGV4P3J1cmw9YUhSMGNITTZMeTl6WVc1MFlXNWtaWEoxY3k1aFptWnBibWwwYVdWekxtbHZMekV2WVdabWFXNXBkSGt2WkdWMFlXbHNQMmxrUFdZeFh6RTViSE5xTm1SbFJYWmxiblJwYm1SbGVEOXlkWEpzUFdGSVVqQmpTRTAyVEhrNWVsbFhOVEJaVnpWcldsaEtNV041TldoYWJWcHdZbTFzTUdGWFZucE1iV3gyVEhwRmRsbFhXbTFoVnpWd1pFaHJkbHBIVmpCWlYyeHpVREpzYTFCWFdYaFlla1UxWWtoT2NVNXRVbXhTV0Zwc1ltNVJMUS0t&timezone=UTC&ie11=false | 44.209.173.225 | 302 Found | 0 B |
URL User Request GET HTTP/2santanderus.affinities.io/1/affinity/index?rurl=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&timezone=UTC&ie11=false IP44.209.173.225:443
CertificateIssuerAmazon Subject*.affinities.io Fingerprint45:83:3A:59:9D:EE:9F:C8:31:66:C5:23:2F:CD:72:C2:5A:F6:11:C9 ValiditySat, 28 Oct 2023 00:00:00 GMT - Tue, 26 Nov 2024 23:59:59 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /1/affinity/index?rurl=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&timezone=UTC&ie11=false HTTP/1.1
Host: santanderus.affinities.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://santanderus.affinities.io/1/affinity/index?rurl=aHR0cHM6Ly9zYW50YW5kZXJ1cy5hZmZpbml0aWVzLmlvLzEvYWZmaW5pdHkvZGV0YWlsP2lkPWYxXzE5bHNqNmRlRXZlbnRpbmRleD9ydXJsPWFIUjBjSE02THk5ellXNTBZVzVrWlhKMWN5NWhabVpwYm1sMGFXVnpMbWx2THpFdllXWm1hVzVwZEhrdlpHVjBZV2xzUDJsa1BXWXhYekU1YkhOcU5tUmxSWFpsYm5RLWluZGV4P3J1cmw9YUhSMGNITTZMeTl6WVc1MFlXNWtaWEoxY3k1aFptWnBibWwwYVdWekxtbHZMekV2WVdabWFXNXBkSGt2WkdWMFlXbHNQMmxrUFdZeFh6RTViSE5xTm1SbFJYWmxiblJwYm1SbGVEOXlkWEpzUFdGSVVqQmpTRTAyVEhrNWVsbFhOVEJaVnpWcldsaEtNV041TldoYWJWcHdZbTFzTUdGWFZucE1iV3gyVEhwRmRsbFhXbTFoVnpWd1pFaHJkbHBIVmpCWlYyeHpVREpzYTFCWFdYaFlla1UxWWtoT2NVNXRVbXhTV0Zwc1ltNVJMUS0t
DNT: 1
Connection: keep-alive
Cookie: AWSALB=7HAttyW6JjqrNqrzK7GkZmohSUkokHJyQ6zZdavVSKDZ9Ix4wyL1KK5PpKiUHEKvveXXzAms/rd77XHFhulQ6IK0VcSDB00fGOMpV2yhXgdZ9orZJ9gWK0M8FSHm; AWSALBCORS=7HAttyW6JjqrNqrzK7GkZmohSUkokHJyQ6zZdavVSKDZ9Ix4wyL1KK5PpKiUHEKvveXXzAms/rd77XHFhulQ6IK0VcSDB00fGOMpV2yhXgdZ9orZJ9gWK0M8FSHm; __Secure-PHPSESSID=d39280b0rf860ksf0m51ipmk7vqgb02u6mln2m1a8t9k1jqfp2jdp6ncjb53823pb1o0j1r9
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
date: Mon, 06 May 2024 21:52:11 GMT
content-type: text/html; charset=UTF-8
content-length: 0
location: https://prd.teleskope.io/1/user/login?rurl=aHR0cHM6Ly9zYW50YW5kZXJ1cy5hZmZpbml0aWVzLmlvLzEvYWZmaW5pdHkvaW5kZXg-&ss=400382160
set-cookie: AWSALB=F8rstB34W5fPs1v9minud8dv8gFDJUhXIkDW1fKKAg3luBkpY7hc9fOlCTL4bpNNNJkuMpdKdkmXhGz43bXJH+bxrT8A9ox6dYqDRaxqH6x78ucVYpT71cWmEA5p; Expires=Mon, 13 May 2024 21:52:11 GMT; Path=/
AWSALBCORS=F8rstB34W5fPs1v9minud8dv8gFDJUhXIkDW1fKKAg3luBkpY7hc9fOlCTL4bpNNNJkuMpdKdkmXhGz43bXJH+bxrT8A9ox6dYqDRaxqH6x78ucVYpT71cWmEA5p; Expires=Mon, 13 May 2024 21:52:11 GMT; Path=/; SameSite=None; Secure
server: Apache
x-frame-options: SAMEORIGIN
referrer-policy: same-origin
permissions-policy: accelerometer=(),camera=(),geolocation=(),gyroscope=(),magnetometer=(),microphone=(),usb=()
content-security-policy: default-src 'self' 'unsafe-eval' 'unsafe-inline' data: blob: teleskope-prd1.s3.amazonaws.com teleskope-training-videos.s3.amazonaws.com teleskope-album-prd1.s3.amazonaws.com d36987eqsnwlrg.cloudfront.net fonts.gstatic.com www.gstatic.com maps.googleapis.com maps.gstatic.com fonts.googleapis.com https://www.google.com/recaptcha/ https://*.demdex.net https://cm.everesttech.net https://assets.adobedtm.com *.2o7.net;frame-src 'self' blob: *.yammer.com *.microsoftstream.com https://www.google.com/ teleskope-prd1.s3.amazonaws.com *.youtube.com *.vimeo.com https://*.demdex.net;
strict-transport-security: max-age=63072000; includeSubDomains; preload
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate, public
pragma: no-cache
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
X-Firefox-Spdy: h2
|
|
| sso.sov.gs.corp/idp/SSO.saml2?SAMLRequest=jVJLj9MwEL7vr6hypnYSmm1rNUWl5VEptNUmcOCCXHu6a5HYxuMU%2BPe4DrsLSCzMcTzfYz7PAnnXWrbq%2FZ2%2BgS89oL8ahfrWtRpZfCyT3mlmOCpkmneAzAtWr95VLCcps854I0yb%2FAF7GsURwXll9ADbbspkv3tV7d9sd5%2BmhZiJ%2BQzmfCKm06KYZ7LgaZHLVOZ8crw%2Bzmb8eQGTAfoBHAaeMgm0Q%2BfgzFlJcLugWiYNtICfjYVno6pa%2F5RD7GGr0XPtAzDNJ%2BO0GKfXTZ6xImdZ%2FnGY24Q0lOY%2B8t95b5FRimgImjO5RSKMs1RJS%2Bt6Ty5L5w8OYiYvlZZK3z4dxXEYQva2aQ7jw75uBpLVfURro7HvwNXgzkrA%2B5vq0Yx1kvj7DYkyNKN9gNFohnKBLxzwtisxbMp1CKVHwk8npZVXgAGQLKPY4gJgMRe3%2FD%2FyDjyX3PN%2FKSzor9yPapZdPmi7OZhWie%2Bxf6nXxnXc%2Fz2yjGSxo%2BT4FEdZr9GCUCcFMnmgWbWt%2BboO1ny4Ae96SEZ0eTV4%2Bf3clz8A&RelayState=santanderus.affinities.io | 0.0.0.0 | | 0 B |
URL User Request GET sso.sov.gs.corp/idp/SSO.saml2?SAMLRequest=jVJLj9MwEL7vr6hypnYSmm1rNUWl5VEptNUmcOCCXHu6a5HYxuMU%2BPe4DrsLSCzMcTzfYz7PAnnXWrbq%2FZ2%2BgS89oL8ahfrWtRpZfCyT3mlmOCpkmneAzAtWr95VLCcps854I0yb%2FAF7GsURwXll9ADbbspkv3tV7d9sd5%2BmhZiJ%2BQzmfCKm06KYZ7LgaZHLVOZ8crw%2Bzmb8eQGTAfoBHAaeMgm0Q%2BfgzFlJcLugWiYNtICfjYVno6pa%2F5RD7GGr0XPtAzDNJ%2BO0GKfXTZ6xImdZ%2FnGY24Q0lOY%2B8t95b5FRimgImjO5RSKMs1RJS%2Bt6Ty5L5w8OYiYvlZZK3z4dxXEYQva2aQ7jw75uBpLVfURro7HvwNXgzkrA%2B5vq0Yx1kvj7DYkyNKN9gNFohnKBLxzwtisxbMp1CKVHwk8npZVXgAGQLKPY4gJgMRe3%2FD%2FyDjyX3PN%2FKSzor9yPapZdPmi7OZhWie%2Bxf6nXxnXc%2Fz2yjGSxo%2BT4FEdZr9GCUCcFMnmgWbWt%2BboO1ny4Ae96SEZ0eTV4%2Bf3clz8A&RelayState=santanderus.affinities.io IP0.0.0.0:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /idp/SSO.saml2?SAMLRequest=jVJLj9MwEL7vr6hypnYSmm1rNUWl5VEptNUmcOCCXHu6a5HYxuMU%2BPe4DrsLSCzMcTzfYz7PAnnXWrbq%2FZ2%2BgS89oL8ahfrWtRpZfCyT3mlmOCpkmneAzAtWr95VLCcps854I0yb%2FAF7GsURwXll9ADbbspkv3tV7d9sd5%2BmhZiJ%2BQzmfCKm06KYZ7LgaZHLVOZ8crw%2Bzmb8eQGTAfoBHAaeMgm0Q%2BfgzFlJcLugWiYNtICfjYVno6pa%2F5RD7GGr0XPtAzDNJ%2BO0GKfXTZ6xImdZ%2FnGY24Q0lOY%2B8t95b5FRimgImjO5RSKMs1RJS%2Bt6Ty5L5w8OYiYvlZZK3z4dxXEYQva2aQ7jw75uBpLVfURro7HvwNXgzkrA%2B5vq0Yx1kvj7DYkyNKN9gNFohnKBLxzwtisxbMp1CKVHwk8npZVXgAGQLKPY4gJgMRe3%2FD%2FyDjyX3PN%2FKSzor9yPapZdPmi7OZhWie%2Bxf6nXxnXc%2Fz2yjGSxo%2BT4FEdZr9GCUCcFMnmgWbWt%2BboO1ny4Ae96SEZ0eTV4%2Bf3clz8A&RelayState=santanderus.affinities.io HTTP/1.1
Host: sso.sov.gs.corp
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
|
|