Report - track.frienciple.com/ofc/4c7a61dc-79e8f0f3-e7aab5f2-3ee1-9199/1854e91f-1663d148-df45fbc1-ed0c-5157

Report Overview

Submitted URL
track.frienciple.com/ofc/4c7a61dc-79e8f0f3-e7aab5f2-3ee1-9199/1854e91f-1663d148-df45fbc1-ed0c-5157
IP
31.170.100.126
ASN
#201942 Soltia Consulting SL
Submitted
2022-09-10 12:51:31
Access
Website Title
Final URL
Tags
None
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
2

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
afffactor.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	401 B	450 B	52.200.110.145
push.services.mozilla.com	2140	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	594 B	127 B	34.214.236.46
content-signature-2.cdn.mozilla.net	1152	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	401 B	5.8 kB	143.204.55.110
contile.services.mozilla.com	1114	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	321 B	229 B	34.117.237.239
affperformance.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	533 B	913 B	35.175.100.170
cotiza-seguro.com	94732	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	23 kB	1.4 MB	66.35.110.90
www.googletagmanager.com	75	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	373 B	47 kB	142.250.74.72
img-getpocket.cdn.mozilla.net	1631	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.7 kB	64 kB	34.120.237.76
r3.o.lencr.org	344	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.3 kB	3.5 kB	23.36.76.226
ocsp.digicert.com	86	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	329 B	737 B	93.184.220.29
googleads.g.doubleclick.net	42	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	818 B	2.0 kB	142.250.74.34
www.google.no	25607	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	802 B	757 B	142.250.74.3
track.frienciple.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	417 B	687 B	31.170.100.126
ocsp.pki.goog	175	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.6 kB	5.6 kB	142.250.74.3
www.google.com	7	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	366 B	16 kB	142.250.74.164
firefox.settings.services.mozilla.com	867	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	758 B	2.7 kB	143.204.55.115
ocsp2.globalsign.com	1544	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	345 B	1.9 kB	104.18.21.226

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

Scan Date	Severity	Indicator	Alert
2022-09-10	medium	track.frienciple.com/ofc/4c7a61dc-79e8f0f3-e7aab5f2-3ee1-9199/1854e91f-1663d148-df45fbc1-ed0c-5157	Phishing

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

JavaScript (28)

	URL	Size	First Seen	Last Seen
	cotiza-seguro.com/js/dnncore.js?cdv=57	8.4 kB	2023-03-07	2024-04-19
Pretty URL cotiza-seguro.com/js/dnncore.js?cdv=57 IP 66.35.110.90 ASN #14955 N-V-C Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:07:18 Last Seen2024-04-19 15:49:50 Times Seen163 Hash 642365aec4fe6599f91831871c9ac963 5a38d946569e24130d9c28349f08701d1375c3d3 6d618705bb99d254e258f29b786aa2ab7f91a18ef9a571921d7b1363cf79abca Loading...

	cotiza-seguro.com/Resources/libraries/jQuery-UI/01_12_01/jquery-ui.js?cdv=57	251 kB	2023-03-07	2023-03-07
Pretty URL cotiza-seguro.com/Resources/libraries/jQuery-UI/01_12_01/jquery-ui.js?cdv=57 IP 66.35.110.90 ASN #14955 N-V-C Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 14:17:07 Last Seen2023-03-07 14:17:07 Times Seen1 Hash 2b06d50bc9068fda47683c0a8dc7d527 4eb52eff5619d530932d036fb98f32578d4ca52d 86a75056f212715a47dd46bed7b1fb463e90e154761dd051bd7f4c5410592f49 Loading...

	cotiza-seguro.com/previsionexequial?subid1=1-cce8gi1knp3c0kg2euag	341 B	2023-03-07	2023-03-07
Pretty URL cotiza-seguro.com/previsionexequial?subid1=1-cce8gi1knp3c0kg2euag IP 66.35.110.90 ASN #14955 N-V-C Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 14:17:07 Last Seen2023-03-07 14:17:07 Times Seen1 Hash 14f82bd32ac3521a451fad62a1435f57 77ef3d1b09a93e4e7e957f1c3954ebc6e7da21d7 ac21881ae7bf9c6a49fbf1152092a8af1da39db556da9fa5dcbe84a8ae573ac6 Loading...

	cotiza-seguro.com/previsionexequial?subid1=1-cce8gi1knp3c0kg2euag	109 B	2023-03-07	2024-04-19
Pretty URL cotiza-seguro.com/previsionexequial?subid1=1-cce8gi1knp3c0kg2euag IP 66.35.110.90 ASN #14955 N-V-C Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:09:53 Last Seen2024-04-19 15:49:50 Times Seen145 Hash aebe5f63922c4c5f014b7b6cbaa73e8a b8eb9802c540f0448288b861dec2fa68e567d7af eb5a6688757e568730e3de573d0f0d65f2f7a153e05844f0c0c62ded8ba296c5 Loading...

	googleads.g.doubleclick.net/pagead/viewthroughconversion/373414897/?random=1662814273208&cv=9&fst=1662814273208&num=1&bg=ffffff&guid=ON&resp=GooglemKTybQhCsO&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&gtm=2oa970&sendb=1&ig=0&data=event%3Dgtag.config&frm=0&url=https%3A%2F%2Fcotiza-seguro.com%2Fprevisionexequial%3Fsubid1%3D1-cce8gi1knp3c0kg2euag&tiba=Previsi%C3%B3n%20Exequial&auid=2097740812.1662814273&hn=www.google.com&async=1&rfmt=3&fmt=4	2.4 kB	2023-03-07	2023-03-07
Pretty URL googleads.g.doubleclick.net/pagead/viewthroughconversion/373414897/?random=1662814273208&cv=9&fst=1662814273208&num=1&bg=ffffff&guid=ON&resp=GooglemKTybQhCsO&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&gtm=2oa970&sendb=1&ig=0&data=event%3Dgtag.config&frm=0&url=https%3A%2F%2Fcotiza-seguro.com%2Fprevisionexequial%3Fsubid1%3D1-cce8gi1knp3c0kg2euag&tiba=Previsi%C3%B3n%20Exequial&auid=2097740812.1662814273&hn=www.google.com&async=1&rfmt=3&fmt=4 IP 142.250.74.34 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 14:17:07 Last Seen2023-03-07 14:17:07 Times Seen1 Hash 2239a0f79291c8c229abd53cea24e6d3 5982892f3dc55c0c50205ed85532b7132b524138 f87efe3832edd09b21138c32ce7e72173425cb799862c26ac218203de6eecfc9 Loading...

	cotiza-seguro.com/ScriptResource.axd?d=nv7asgRUU0sJi38n3eHX6gSZpHXKxcqIpcsuEIdwb2DzBTfvtFURMfeYZaWI-igMANZQQ3v1nQbmjddwV3gstTFfL7EEFpEWwjT3R71LXGpTiyRnBMHGZ6MExYE1&t=ffffffff866f772c	27 kB	2023-03-07	2024-04-19
Pretty URL cotiza-seguro.com/ScriptResource.axd?d=nv7asgRUU0sJi38n3eHX6gSZpHXKxcqIpcsuEIdwb2DzBTfvtFURMfeYZaWI-igMANZQQ3v1nQbmjddwV3gstTFfL7EEFpEWwjT3R71LXGpTiyRnBMHGZ6MExYE1&t=ffffffff866f772c IP 66.35.110.90 ASN #14955 N-V-C Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:28:18 Last Seen2024-04-19 06:51:24 Times Seen15905 Hash b3d7a123be5203a1a3f0f10233ed373f f4c61f321d8f79a805b356c6ec94090c0d96215c ef9453f74b2617d43dcef4242cf5845101fcfb57289c81bceb20042b0023a192 Loading...

	unknown	0 B	2023-03-07	2024-04-19
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:01:59 Last Seen2024-04-19 16:12:43 Times Seen36963172 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	cotiza-seguro.com/js/dnn.modalpopup.js?cdv=57	7.6 kB	2023-03-07	2024-04-19
Pretty URL cotiza-seguro.com/js/dnn.modalpopup.js?cdv=57 IP 66.35.110.90 ASN #14955 N-V-C Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:09:53 Last Seen2024-04-19 15:49:50 Times Seen143 Hash dbe6b9883bb004a24404e33c678f268a 8a9803265c7e000fe9a9fc8aa541f09ea257183e 264a300caab89c920e27c7bd535aff709bd18caf076555dff7533327a9103600 Loading...

	cotiza-seguro.com/js/dnn.js?cdv=57	18 kB	2023-03-07	2024-04-11
Pretty URL cotiza-seguro.com/js/dnn.js?cdv=57 IP 66.35.110.90 ASN #14955 N-V-C Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:07:18 Last Seen2024-04-11 19:47:01 Times Seen143 Hash f00bb400289ad291b239ce7cd55c647c a643ab75e9a878cab5f4f73a1784d8a4f681a7bd 75e237b6a229c7f0315236b1c6439079b8c1941e122cbe15212e848f2150b0a8 Loading...

	cotiza-seguro.com/previsionexequial?subid1=1-cce8gi1knp3c0kg2euag	144 B	2023-03-07	2023-03-07
Pretty URL cotiza-seguro.com/previsionexequial?subid1=1-cce8gi1knp3c0kg2euag IP 66.35.110.90 ASN #14955 N-V-C Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 14:17:07 Last Seen2023-03-07 14:17:07 Times Seen1 Hash ef7d68c44d419cf6961ffb82e1d6c72f ff227bd73364caf717e11e7b25f9ebb49c765ea7 45f6c42ea741722faceaf4c01d0d4f3ed8d78204943f4f19b4c4c26ee1bfeabe Loading...

	www.googletagmanager.com/gtm.js?id=GTM-MKWWP87	98 kB	2023-03-07	2023-03-07
Pretty URL www.googletagmanager.com/gtm.js?id=GTM-MKWWP87 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 14:17:07 Last Seen2023-03-07 14:17:07 Times Seen1 Hash 153bd1f088f55790b6cec4facec836d6 a89cf854b57d906738b5abf1fdf1624d24afe8ec 6fb88de69187fe5a9601258326d9666525bca0d4d8189a76ca4571dc86155dc0 Loading...

	cotiza-seguro.com/previsionexequial?subid1=1-cce8gi1knp3c0kg2euag	1.6 kB	2023-03-07	2023-03-07
Pretty URL cotiza-seguro.com/previsionexequial?subid1=1-cce8gi1knp3c0kg2euag IP 66.35.110.90 ASN #14955 N-V-C Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 14:17:07 Last Seen2023-03-07 14:17:07 Times Seen1 Hash 4501080ba478dbbb187c410cdc63eed3 f386248b838e205fc1ee73afffa80f30b355ead8 b2237fe38d78ff5380c5864b60c85fe351371fd49c73bf18793423d8afe76b4a Loading...

	cotiza-seguro.com/WebResource.axd?d=pynGkmcFUV3AZqFhd5HtBOYEwVnp0Og1A4l5stMjb_WX6I_336uh6VNqsgw1&t=637814444020000000	23 kB	2023-03-07	2024-04-19
Pretty URL cotiza-seguro.com/WebResource.axd?d=pynGkmcFUV3AZqFhd5HtBOYEwVnp0Og1A4l5stMjb_WX6I_336uh6VNqsgw1&t=637814444020000000 IP 66.35.110.90 ASN #14955 N-V-C Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:31 Last Seen2024-04-19 15:49:50 Times Seen41953 Hash 90ea7274f19755002360945d54c2a0d7 647b5d8bf7d119a2c97895363a07a0c6eb8cd284 40732e9dcfa704cf615e4691bb07aecfd1cc5e063220a46e4a7ff6560c77f5db Loading...

	cotiza-seguro.com/ScriptResource.axd?d=NJmAwtEo3IpDpd4wanJJuX6TV3L_k8A98Gc2id17CEJR4UMOwDO3XEngKF_PsEH-1ZrVUrVTA6los450Jbbs4p9ONjIG-uL_lDvEJFFRT3rtY0b42NTQ4dHUZ8v5gdQyuHY9cw2&t=49337fe8	103 kB	2023-03-07	2024-04-19
Pretty URL cotiza-seguro.com/ScriptResource.axd?d=NJmAwtEo3IpDpd4wanJJuX6TV3L_k8A98Gc2id17CEJR4UMOwDO3XEngKF_PsEH-1ZrVUrVTA6los450Jbbs4p9ONjIG-uL_lDvEJFFRT3rtY0b42NTQ4dHUZ8v5gdQyuHY9cw2&t=49337fe8 IP 66.35.110.90 ASN #14955 N-V-C Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:16:14 Last Seen2024-04-19 15:49:50 Times Seen1357 Hash c89eaa5b28df1e17376be71d71649173 2b34df4c66bb57de5a24a2ef0896271dfca4f4cd 66b804e7a96a87c11e1dd74ea04ac2285df5ad9043f48046c3e5000114d39b1c Loading...

	cotiza-seguro.com/ScriptResource.axd?d=dwY9oWetJoJNXVwQaP17wSitswVtyBWQSF_oGgSGl6uVKS3QLClWQp-3BmAiELKIlkkV4w8ZojQaVWQNSThKXEL0r4OUO6Q6if3WZqFZfUaLj1vfFXBrikgBcd66Qz8OFRm7GgBSTxZUAZDP0&t=49337fe8	40 kB	2023-03-07	2024-04-19
Pretty URL cotiza-seguro.com/ScriptResource.axd?d=dwY9oWetJoJNXVwQaP17wSitswVtyBWQSF_oGgSGl6uVKS3QLClWQp-3BmAiELKIlkkV4w8ZojQaVWQNSThKXEL0r4OUO6Q6if3WZqFZfUaLj1vfFXBrikgBcd66Qz8OFRm7GgBSTxZUAZDP0&t=49337fe8 IP 66.35.110.90 ASN #14955 N-V-C Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:16:14 Last Seen2024-04-19 15:49:50 Times Seen1367 Hash da9dc1c32e89c02fc1e9eeb7e5aab91e 3efb110efa6068ce6b586a67f87da5125310bc30 398cdf1b27ef247e5bc77805f266bb441e60355463fc3d1776f41aae58b08cf1 Loading...

	cotiza-seguro.com/Resources/Shared/Scripts/jquery/jquery.hoverIntent.min.js?cdv=57	1.5 kB	2023-03-07	2024-04-08
Pretty URL cotiza-seguro.com/Resources/Shared/Scripts/jquery/jquery.hoverIntent.min.js?cdv=57 IP 66.35.110.90 ASN #14955 N-V-C Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:00:11 Last Seen2024-04-08 13:13:08 Times Seen367 Hash b4cfa1d07f60eebd4746a3941196bd67 942ef6a5cc88258aaeb743a16847f1d09fed0e0e d24a2e5db8c476184f3f4b28fe5be7cfd159c276d1f58af244d72de55d5dee16 Loading...

	www.googletagmanager.com/gtag/js?id=AW-373414897	117 kB	2023-03-07	2023-03-07
Pretty URL www.googletagmanager.com/gtag/js?id=AW-373414897 IP 142.250.74.72 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 14:17:07 Last Seen2023-03-07 14:17:07 Times Seen1 Hash 2ec3dd2e6cbf5dcc937d175d26aec1f7 d9f1f787fc98830bde7077c415d4f8c75096057d f36be9619c2d5c3c00c0fb34dc025757e93643b844f33d5a43f242e9b7e995ff Loading...

	cotiza-seguro.com/previsionexequial?subid1=1-cce8gi1knp3c0kg2euag	159 B	2023-03-07	2023-03-07
Pretty URL cotiza-seguro.com/previsionexequial?subid1=1-cce8gi1knp3c0kg2euag IP 66.35.110.90 ASN #14955 N-V-C Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 14:17:07 Last Seen2023-03-07 14:17:07 Times Seen1 Hash 898ba96de41a5233d24de5cc4c51ffb5 a6cbe03b32348d5c048fc44a2888181846ad5509 023977144ad1a0fca91f790301e5347a39f5b7907af7d3bdc3d8961028c26a20 Loading...

	cotiza-seguro.com/Portals/18/skins/recordar/js/aos.js?cdv=57	14 kB	2023-03-07	2024-04-18
Pretty URL cotiza-seguro.com/Portals/18/skins/recordar/js/aos.js?cdv=57 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:14:45 Last Seen2024-04-18 12:41:14 Times Seen4258 Hash 70b4897108480dbe11c443c2ab7679c9 70dbfd38a0f1fc3b1a7d9fadab58786484c34f17 f268612ba59ead1b24353bb77d66783bcc435aff1c22be5f93c40bac3869968e Loading...

	cotiza-seguro.com/Portals/18/skins/recordar/js/app.js?cdv=57	19 kB	2023-03-07	2023-03-07
Pretty URL cotiza-seguro.com/Portals/18/skins/recordar/js/app.js?cdv=57 IP 66.35.110.90 ASN #14955 N-V-C Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 14:17:07 Last Seen2023-03-07 14:17:07 Times Seen1 Hash c6331b53fcdd826abc993fc64a709186 3987f2913a992069d0f8e8bf8908ab439bfbe637 444055dd4d80ddcde94144034cb47f044a26bb32800e906b80f51b2b670f0637 Loading...

	cotiza-seguro.com/previsionexequial?subid1=1-cce8gi1knp3c0kg2euag	155 B	2023-03-07	2024-04-19
Pretty URL cotiza-seguro.com/previsionexequial?subid1=1-cce8gi1knp3c0kg2euag IP 66.35.110.90 ASN #14955 N-V-C Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:31:06 Last Seen2024-04-19 06:51:24 Times Seen13808 Hash 58ef21b4e22b3b1d9825895968682671 318fc65e9f3be784afbc911a866ac35ae2697f94 79950d3fbd577e33c9db1acc4d5e1f92ba01aaabf38b49c9e50289d7f757c037 Loading...

	cotiza-seguro.com/previsionexequial?subid1=1-cce8gi1knp3c0kg2euag	4.3 kB	2023-03-07	2023-03-07
Pretty URL cotiza-seguro.com/previsionexequial?subid1=1-cce8gi1knp3c0kg2euag IP 66.35.110.90 ASN #14955 N-V-C Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 14:17:07 Last Seen2023-03-07 14:17:07 Times Seen1 Hash 5c3c37fea2c4717ffcf2a7acd429347f 5d7e498c1d5688b7e9074c7cc134cd6a37aeb5f2 34f7d265ad98d21aa5657e72146339cfd3da9f465c0cd5fcc239974af80defee Loading...

	www.google.com/pagead/conversion_async.js	42 kB	2023-03-07	2023-03-17
Pretty URL www.google.com/pagead/conversion_async.js IP 142.250.74.164 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:23:19 Last Seen2023-03-17 12:30:23 Times Seen1 Hash 70049e468e315dbffce0c07753fca6f9 6c1cb5e25675de7746ed7dbb4d103aba9faabea0 94cc0d6d41e4b4bcde2f4f3d6292224215a698f20ffe7915c04cb55146537266 Loading...

	cotiza-seguro.com/previsionexequial?subid1=1-cce8gi1knp3c0kg2euag	293 B	2023-03-07	2023-03-07
Pretty URL cotiza-seguro.com/previsionexequial?subid1=1-cce8gi1knp3c0kg2euag IP 66.35.110.90 ASN #14955 N-V-C Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 14:17:07 Last Seen2023-03-07 14:17:07 Times Seen1 Hash cde2d01f2c391ae5d952997fc20e2ce1 31a50db1f64a9072441146cc4882b76f97edc4a0 504ddfdd6ad1e66f983fab8accc71c19fab043c54bd78ea851714a8f6ae2f23e Loading...

	cotiza-seguro.com/previsionexequial?subid1=1-cce8gi1knp3c0kg2euag	358 B	2023-03-07	2024-04-19
Pretty URL cotiza-seguro.com/previsionexequial?subid1=1-cce8gi1knp3c0kg2euag IP 66.35.110.90 ASN #14955 N-V-C Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:07:18 Last Seen2024-04-19 15:49:50 Times Seen210 Hash 7db287c9f4ba7f91154b9850c7a85dd2 a4f64e370aad828a91e183e3eee2973b52978c2c d65c6424a700a8b7a9f4c427823ad32697e4080e7a1de8c9d2836f3f786ad202 Loading...

	cotiza-seguro.com/previsionexequial?subid1=1-cce8gi1knp3c0kg2euag	513 B	2023-03-07	2023-03-07
Pretty URL cotiza-seguro.com/previsionexequial?subid1=1-cce8gi1knp3c0kg2euag IP 66.35.110.90 ASN #14955 N-V-C Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 14:17:07 Last Seen2023-03-07 14:17:07 Times Seen1 Hash afbe5183fbfd48f16839a97606e6343c 8ac7bbfa674585edade18ea531805cac4bf2b4dd dea56bc8ec8428c78730fdc9f10ab5784b95b5b18b76cf3e0301f36fe22bb960 Loading...

		Size	First Seen	Last Seen
	#1 Eval - eb9e685e178957c1f8a490d1db11ad06	63 B	2023-03-07	2024-04-17
Pretty Observations First Seen2023-03-07 01:28:18 Last Seen2024-04-17 10:47:23 Times Seen1297 Hash eb9e685e178957c1f8a490d1db11ad06 6be51af489f35d43446596aae76fb7d9e7658a1e 928e2ac1c8aab201b95426d675baa335deb6cfd5809e82fbc8ac88886924714c Loading...

	#2 Eval - a48979f7f0be1c1d0fab1adc5c4f7ede	67 B	2023-03-07	2024-04-16
Pretty Observations First Seen2023-03-07 01:28:18 Last Seen2024-04-16 13:22:12 Times Seen1010 Hash a48979f7f0be1c1d0fab1adc5c4f7ede c31ff08c3937293e43e5e78c108b82e07ced461b 68946a0e5e672ac400e85220a6faa5d2b3b3baaa57a0fd3ee83fb82787158831 Loading...

HTTP Transactions (68)

URL IP Response Size

firefox.settings.services.mozilla.com/v1/

143.204.55.115

200 OK

939 B

URL HTTP/1.1
firefox.settings.services.mozilla.com/v1/
IP
143.204.55.115:0
ASN
#16509 AMAZON-02

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
b593eb39329cfe060d55be5e4a5405e2
78e46c1028e9f94f8569303ad2d90d7df13a059a
08a810103557efe55ca4425ff0cf82593f1f54633df899127eaec9bee05d4d04

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Retry-After, Alert, Content-Length, Content-Type, Backoff
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Sat, 10 Sep 2022 12:06:36 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 80d21802b1b80c40e55ccf83433b8eac.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: Wxvo1uZZAzwI8-hrAxmliEc1_ywdPBYzVAWuZELJz3P46AST9sxQjw==
Age: 2683

track.frienciple.com/ofc/4c7a61dc-79e8f0f3-e7aab5f2-3ee1-9199/1854e91f-1663d148-df45fbc1-ed0c-5157

31.170.100.126

303 See Other

256 B

URL HTTP/1.1
track.frienciple.com/ofc/4c7a61dc-79e8f0f3-e7aab5f2-3ee1-9199/1854e91f-1663d148-df45fbc1-ed0c-5157
IP
31.170.100.126:0
ASN
#201942 Soltia Consulting SL

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
256 B (256 bytes)
Hash
253b7157e13fcdb1e3ae37bc42bf258c
d987db1a66e0e17a5d141eeb007be45a67dd775c
4a34b1d997c33b9a366ce3e0300265811fcf35db1ce14ec6b8534e931d2aba7c

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /ofc/4c7a61dc-79e8f0f3-e7aab5f2-3ee1-9199/1854e91f-1663d148-df45fbc1-ed0c-5157 HTTP/1.1
Host: track.frienciple.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 303 See Other
Content-Type: text/html; charset=UTF-8
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: Content-Type
Cache-Control: no-cache, private
Location: http://afffactor.com/?a=83&c=2550&s1=&s2=M2022091012-429681fb05ca5f92438cabc83aacbbe4&s3=
X-Device: desktop
Content-Encoding: gzip
Transfer-Encoding: chunked
Date: Sat, 10 Sep 2022 12:51:19 GMT
Age: 0
Connection: keep-alive
TP-Cache: MISS

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
f55e483f32b3fd50b1a2414aaada9b61
9d6b22edb98866e002e3b1ace44dfb0f8d00935f
4b09e1d2b887ded061e4ec5f82ec70ce699eeed428acc6b4fd3ef10ed9233c89

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4B09E1D2B887DED061E4EC5F82EC70CE699EEED428ACC6B4FD3EF10ED9233C89"
Last-Modified: Thu, 08 Sep 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4605
Expires: Sat, 10 Sep 2022 14:08:04 GMT
Date: Sat, 10 Sep 2022 12:51:19 GMT
Connection: keep-alive

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain

143.204.55.110

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain
IP
143.204.55.110:0
ASN
#16509 AMAZON-02

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
742edb4038f38bc533514982f3d2e861
cc3a20c8dc2a8c632ef9387a2744253f1e3fdef1
b6bfa49d3d135035701231db2fffc0c0643444394009a94c6a1b4d829d6b8345

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 20 Aug 2022 23:18:05 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Sat, 10 Sep 2022 07:17:13 GMT
etag: "742edb4038f38bc533514982f3d2e861"
x-cache: Hit from cloudfront
via: 1.1 a9120cc3ff449047c990e82a4d5566ba.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: haUAVvQjlvOqkdfWIBGs4ggTl4K-hCKPwKDfv06CBV831KmP602V3Q==
age: 20048
X-Firefox-Spdy: h2

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Sat, 10 Sep 2022 12:51:20 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

afffactor.com/?a=83&c=2550&s1=&s2=M2022091012-429681fb05ca5f92438cabc83aacbbe4&s3=

52.200.110.145

302 Found

167 B

URL HTTP/1.1
afffactor.com/?a=83&c=2550&s1=&s2=M2022091012-429681fb05ca5f92438cabc83aacbbe4&s3=
IP
52.200.110.145:0
ASN
#14618 AMAZON-AES

File type
HTML document, ASCII text
Size
167 B (167 bytes)
Hash
0df27a95f92c06cfb645f21326f2450d
791df21449a4c1d42beda9348dbd27aafa4e6a51
a1c4a0f0cad9fa7ff9913cc581e0ebf63bb8f5cd37df077d29328b8ae3991540

HTTP Headers

GET /?a=83&c=2550&s1=&s2=M2022091012-429681fb05ca5f92438cabc83aacbbe4&s3= HTTP/1.1
Host: afffactor.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 302 Found
content-type: text/html; charset=utf-8
date: Sat, 10 Sep 2022 12:51:20 GMT
location: https://affperformance.com/?a=83&c=2550&s1=&s2=M2022091012-429681fb05ca5f92438cabc83aacbbe4&s3=&ckmguid=cce8gi1knp3c0kg2eu90
x-ray: cce8gi1knp3c0kg2eu8g
content-length: 167

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

143.204.55.115

200 OK

329 B

URL HTTP/1.1
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
143.204.55.115:0
ASN
#16509 AMAZON-02

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Date: Sat, 10 Sep 2022 11:56:07 GMT
Cache-Control: max-age=3600
Expires: Sat, 10 Sep 2022 12:55:10 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 6480520a5e02f3163410e3134bd77baa.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: WhJGd756HX5W7qmm12kSnQw29xx3QwNdQ1ngi1Yw7ZkRP0eMnryibw==
Age: 3313

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
36fe04277220227ba5ecfe7d2ff1d9d9
2eb9f6560336248cc45c1cd66d87505b5ebdf5d4
94f8f2f8f3b67db18825ea48740ff0ce218d7156fe851d6b023ef43b6bee4f7f

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5093
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 10 Sep 2022 12:51:20 GMT
Last-Modified: Sat, 10 Sep 2022 11:26:27 GMT
Server: ECS (ska/F706)
X-Cache: HIT
Content-Length: 471

ocsp2.globalsign.com/gsalphasha2g2

104.18.21.226

200 OK

1.4 kB

URL HTTP/1.1
ocsp2.globalsign.com/gsalphasha2g2
IP
104.18.21.226:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
1.4 kB (1423 bytes)
Hash
992ca2fc044034a776e3e8ffd9c1791c
9a123d0b4f0a19a6dbf0b37e371731e8a4f5991c
5c9522d7842ed8da82051abd21618211645114a858a5723c9d777084dc4834dd

HTTP Headers

POST /gsalphasha2g2 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sat, 10 Sep 2022 12:51:20 GMT
Content-Type: application/ocsp-response
Content-Length: 1423
Connection: keep-alive
Expires: Wed, 14 Sep 2022 12:07:03 GMT
ETag: "9a123d0b4f0a19a6dbf0b37e371731e8a4f5991c"
Last-Modified: Sat, 10 Sep 2022 12:07:04 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: MISS
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74884b653cacb4fd-OSL

affperformance.com/?a=83&c=2550&s1=&s2=M2022091012-429681fb05ca5f92438cabc83aacbbe4&s3=&ckmguid=cce8gi1knp3c0kg2eu90

35.175.100.170

302 Found

96 B

URL HTTP/1.1
affperformance.com/?a=83&c=2550&s1=&s2=M2022091012-429681fb05ca5f92438cabc83aacbbe4&s3=&ckmguid=cce8gi1knp3c0kg2eu90
IP
35.175.100.170:0
ASN
#14618 AMAZON-AES

File type
HTML document, ASCII text
Size
96 B (96 bytes)
Hash
758a999476dd00a229060a27655d86a6
878db708fea707efd0f98765b6be9c787ac51de0
a2134121fdb8b8fe1478d0e312e05b9455ff8f789f7f17ec5a941f53c4abfac4

HTTP Headers

GET /?a=83&c=2550&s1=&s2=M2022091012-429681fb05ca5f92438cabc83aacbbe4&s3=&ckmguid=cce8gi1knp3c0kg2eu90 HTTP/1.1
Host: affperformance.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

HTTP/1.1 302 Found
Content-Length: 96
Content-Type: text/html; charset=utf-8
Date: Sat, 10 Sep 2022 12:51:20 GMT
Location: https://cotiza-seguro.com/previsionexequial?subid1=1-cce8gi1knp3c0kg2euag
Set-Cookie: trk=zBcogk4vYnLegdptrAmIb3dA5Wyrf4Y4Nu1Cec73DQ27cDYocPfLFvaCSox8XQ9bLrjujq36bso=; Domain=.affperformance.com; Expires=Mon, 09 Sep 2024 12:51:20 GMT; HttpOnly; Secure; SameSite=None
sid=zBcogk4vYnLegdptrAmIb9ZL+9XzKf6fNu1Cec73DQ39oGXutUt86faCSox8XQ9bDUHjG0drJDY=; Domain=.affperformance.com; HttpOnly; Secure; SameSite=None
c295=zBcogk4vYnLegdptrAmIb7u7wnykhKahYz655TsZU9o0GyDhmy3QmxM/2NxtP5cHA5Crt8NwGhlCBl8J4LMfkj/Un6H3qFrt; Domain=.affperformance.com; Expires=Mon, 10 Oct 2022 12:51:20 GMT; HttpOnly; Secure; SameSite=None
X-Ckt: cce8gi1knp3c0kg2euag
X-Ray: cce8gi5qilrc0kbrgl7g
Connection: close

push.services.mozilla.com/

34.214.236.46

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
34.214.236.46:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: QBFJ1PByZ8L/9d87jw9jlQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: YT+1O0aWEhbElnl6XBnDezj/VEg=

cotiza-seguro.com/previsionexequial?subid1=1-cce8gi1knp3c0kg2euag

66.35.110.90

200 OK

13 kB

URL HTTP/2
cotiza-seguro.com/previsionexequial?subid1=1-cce8gi1knp3c0kg2euag
IP
66.35.110.90:0
ASN
#14955 N-V-C

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (3328), with CRLF, LF line terminators
Size
13 kB (13353 bytes)
Hash
f3a80f95fe0d275726dc4a62c3b6b203
b5a115baa23dc297475f1488a47529f134811b4c
d55b04d5c049c9abcb73b52d08dc55081779a15fb407b861b820885189edc750

HTTP Headers

GET /previsionexequial?subid1=1-cce8gi1knp3c0kg2euag HTTP/1.1
Host: cotiza-seguro.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

HTTP/2 200 OK
cache-control: no-cache
pragma: no-cache
content-type: text/html; charset=utf-8
content-encoding: br
expires: -1
vary: Accept-Encoding
set-cookie: dnn_IsMobile=False; path=/; HttpOnly
language=en-US; path=/; HttpOnly
.ASPXANONYMOUS=PeoI-JRIPxG-ZZZSnPedYHXJZ1m19NbvaUDopmU0BSxyJlnMRXBY8Re8QhXUWoMuV4uUDSOTvmRtBsJZpHimqnCylBoUO77wh2wU5pE3N74SPP5d0; expires=Fri, 18-Nov-2022 23:31:21 GMT; path=/; HttpOnly
dnn_IsMobile=False; path=/; HttpOnly
language=en-US; path=/; HttpOnly
.ASPXANONYMOUS=PeoI-JRIPxG-ZZZSnPedYHXJZ1m19NbvaUDopmU0BSxyJlnMRXBY8Re8QhXUWoMuV4uUDSOTvmRtBsJZpHimqnCylBoUO77wh2wU5pE3N74SPP5d0; expires=Fri, 18-Nov-2022 23:31:21 GMT; path=/; HttpOnly
x-ua-compatible: IE=edge
x-powered-by-plesk: PleskWin
x-xss-protection: 1; mode=block
access-control-allow-origin: *
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Authorization
access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS
date: Sat, 10 Sep 2022 12:51:21 GMT
content-length: 13353
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
a4ae55dbf8e22a357ee36e37fafa37af
18d33f606a8bc692802cfaa3a22ceb4a5eedca8c
8343a46c0a87b15be71cab0ae84912ed07d3104d4b621c55e3cd69367f58ebb6

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 10 Sep 2022 12:51:21 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.googletagmanager.com/gtag/js?id=AW-373414897

142.250.74.72

200 OK

46 kB

URL HTTP/2
www.googletagmanager.com/gtag/js?id=AW-373414897
IP
142.250.74.72:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (1615)
Size
46 kB (46050 bytes)
Hash
818a6199786469ce01508cfe81ad0fec
8b2a474ab7f1699b2d0dd5deb9a30a52ab208689
77fdabec8f7613b5141a686656eef398f2296d420bfde06912cb4ef688c98c23

HTTP Headers

GET /gtag/js?id=AW-373414897 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cotiza-seguro.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sat, 10 Sep 2022 12:51:21 GMT
expires: Sat, 10 Sep 2022 12:51:21 GMT
cache-control: private, max-age=900
last-modified: Sat, 10 Sep 2022 12:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 46050
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
a4ae55dbf8e22a357ee36e37fafa37af
18d33f606a8bc692802cfaa3a22ceb4a5eedca8c
8343a46c0a87b15be71cab0ae84912ed07d3104d4b621c55e3cd69367f58ebb6

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 10 Sep 2022 12:51:21 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

cotiza-seguro.com/DesktopModules/Feedback/module.css?cdv=57

66.35.110.90

200 OK

826 B

URL HTTP/2
cotiza-seguro.com/DesktopModules/Feedback/module.css?cdv=57
IP
66.35.110.90:0
ASN
#14955 N-V-C

File type
Unicode text, UTF-8 (with BOM) text, with CRLF line terminators
Size
826 B (826 bytes)
Hash
b3702742a046d03b5a9ac51c351ed9fa
76164391da521c300afb3019a527f1f8f44c83d2
eb73fb8f042e26c0cee75fd063a34a71a02326cf74d67ad87749204a2bb8b74a

HTTP Headers

GET /DesktopModules/Feedback/module.css?cdv=57 HTTP/1.1
Host: cotiza-seguro.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cotiza-seguro.com/previsionexequial?subid1=1-cce8gi1knp3c0kg2euag
Cookie: dnn_IsMobile=False; language=en-US; .ASPXANONYMOUS=PeoI-JRIPxG-ZZZSnPedYHXJZ1m19NbvaUDopmU0BSxyJlnMRXBY8Re8QhXUWoMuV4uUDSOTvmRtBsJZpHimqnCylBoUO77wh2wU5pE3N74SPP5d0
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public,max-age=31536000
content-type: text/css
content-encoding: br
last-modified: Fri, 23 Nov 2018 20:23:45 GMT
accept-ranges: bytes
etag: "4c78366f6a83d41:0"
vary: Accept-Encoding
server: Microsoft-IIS/10.0
x-powered-by-plesk: PleskWin
x-xss-protection: 1; mode=block
access-control-allow-origin: *
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Authorization
access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS
date: Sat, 10 Sep 2022 12:51:21 GMT
content-length: 826
X-Firefox-Spdy: h2

cotiza-seguro.com/Portals/18/skins/recordar/css/style.css?cdv=57

66.35.110.90

200 OK

4.6 kB

URL HTTP/2
cotiza-seguro.com/Portals/18/skins/recordar/css/style.css?cdv=57
IP
66.35.110.90:0
ASN
#14955 N-V-C

File type
assembler source, ASCII text, with CRLF line terminators
Size
4.6 kB (4603 bytes)
Hash
492594e994d45a6ed5db473fb6e7527a
9b9f52583cc2877dc194e7d2ed079ccae7ecc509
281445e4d670c7b523c6ec209ec56e16b8983ab60b1bb3af16f2aff34c3d0fd2

HTTP Headers

GET /Portals/18/skins/recordar/css/style.css?cdv=57 HTTP/1.1
Host: cotiza-seguro.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cotiza-seguro.com/previsionexequial?subid1=1-cce8gi1knp3c0kg2euag
Cookie: dnn_IsMobile=False; language=en-US; .ASPXANONYMOUS=PeoI-JRIPxG-ZZZSnPedYHXJZ1m19NbvaUDopmU0BSxyJlnMRXBY8Re8QhXUWoMuV4uUDSOTvmRtBsJZpHimqnCylBoUO77wh2wU5pE3N74SPP5d0
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public,max-age=31536000
content-type: text/css
content-encoding: br
last-modified: Wed, 03 Aug 2022 14:59:01 GMT
accept-ranges: bytes
etag: "9c53ea9049a7d81:0"
vary: Accept-Encoding
server: Microsoft-IIS/10.0
x-powered-by-plesk: PleskWin
x-xss-protection: 1; mode=block
access-control-allow-origin: *
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Authorization
access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS
date: Sat, 10 Sep 2022 12:51:21 GMT
content-length: 4603
X-Firefox-Spdy: h2

cotiza-seguro.com/Portals/18/skins/recordar/css/aos.css?cdv=57

66.35.110.90

200 OK

4.2 kB

URL HTTP/2
cotiza-seguro.com/Portals/18/skins/recordar/css/aos.css?cdv=57
IP
66.35.110.90:0
ASN
#14955 N-V-C

File type
ASCII text, with very long lines (26053), with no line terminators
Size
4.2 kB (4197 bytes)
Hash
05629914f96d6c308af8b857e5391731
2fa21aec1f0a5dae6dda9676f5bcdab008037bd5
07d331b6ab1fd00a135b801783fc2b346defff2b756a2d670c7d791d925019e3

HTTP Headers

GET /Portals/18/skins/recordar/css/aos.css?cdv=57 HTTP/1.1
Host: cotiza-seguro.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cotiza-seguro.com/previsionexequial?subid1=1-cce8gi1knp3c0kg2euag
Cookie: dnn_IsMobile=False; language=en-US; .ASPXANONYMOUS=PeoI-JRIPxG-ZZZSnPedYHXJZ1m19NbvaUDopmU0BSxyJlnMRXBY8Re8QhXUWoMuV4uUDSOTvmRtBsJZpHimqnCylBoUO77wh2wU5pE3N74SPP5d0
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public,max-age=31536000
content-type: text/css
content-encoding: br
last-modified: Sat, 14 Nov 2020 19:22:40 GMT
accept-ranges: bytes
etag: "2bf5d284bbbad61:0"
vary: Accept-Encoding
server: Microsoft-IIS/10.0
x-powered-by-plesk: PleskWin
x-xss-protection: 1; mode=block
access-control-allow-origin: *
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Authorization
access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS
date: Sat, 10 Sep 2022 12:51:21 GMT
content-length: 4197
X-Firefox-Spdy: h2

cotiza-seguro.com/WebResource.axd?d=pynGkmcFUV3AZqFhd5HtBOYEwVnp0Og1A4l5stMjb_WX6I_336uh6VNqsgw1&t=637814444020000000

66.35.110.90

200 OK

6.2 kB

URL HTTP/2
cotiza-seguro.com/WebResource.axd?d=pynGkmcFUV3AZqFhd5HtBOYEwVnp0Og1A4l5stMjb_WX6I_336uh6VNqsgw1&t=637814444020000000
IP
66.35.110.90:0
ASN
#14955 N-V-C

File type
ASCII text, with CRLF line terminators
Size
6.2 kB (6198 bytes)
Hash
fd8f081f8107be21c5dd3caf151fd457
3a5301b22728d64f2ba0006197a617b498619322
526c7704763dcea35c3e120605d4c1328f1820b6aa0abfc9da1514f4678efca0

HTTP Headers

GET /WebResource.axd?d=pynGkmcFUV3AZqFhd5HtBOYEwVnp0Og1A4l5stMjb_WX6I_336uh6VNqsgw1&t=637814444020000000 HTTP/1.1
Host: cotiza-seguro.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cotiza-seguro.com/previsionexequial?subid1=1-cce8gi1knp3c0kg2euag
Cookie: dnn_IsMobile=False; language=en-US; .ASPXANONYMOUS=PeoI-JRIPxG-ZZZSnPedYHXJZ1m19NbvaUDopmU0BSxyJlnMRXBY8Re8QhXUWoMuV4uUDSOTvmRtBsJZpHimqnCylBoUO77wh2wU5pE3N74SPP5d0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public
content-type: application/x-javascript
content-encoding: br
expires: Sun, 10 Sep 2023 11:23:29 GMT
last-modified: Sat, 26 Feb 2022 09:53:22 GMT
vary: Accept-Encoding
x-powered-by-plesk: PleskWin
x-xss-protection: 1; mode=block
access-control-allow-origin: *
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Authorization
access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS
date: Sat, 10 Sep 2022 12:51:21 GMT
content-length: 6198
X-Firefox-Spdy: h2

cotiza-seguro.com/ScriptResource.axd?d=nv7asgRUU0sJi38n3eHX6gSZpHXKxcqIpcsuEIdwb2DzBTfvtFURMfeYZaWI-igMANZQQ3v1nQbmjddwV3gstTFfL7EEFpEWwjT3R71LXGpTiyRnBMHGZ6MExYE1&t=ffffffff866f772c

66.35.110.90

200 OK

5.5 kB

URL HTTP/2
cotiza-seguro.com/ScriptResource.axd?d=nv7asgRUU0sJi38n3eHX6gSZpHXKxcqIpcsuEIdwb2DzBTfvtFURMfeYZaWI-igMANZQQ3v1nQbmjddwV3gstTFfL7EEFpEWwjT3R71LXGpTiyRnBMHGZ6MExYE1&t=ffffffff866f772c
IP
66.35.110.90:0
ASN
#14955 N-V-C

File type
Unicode text, UTF-8 (with BOM) text, with CRLF line terminators
Size
5.5 kB (5479 bytes)
Hash
cd81a5effc23af770be1c6ad035a5e4e
ec3cdf31293e2e43fb1f189decc18019cd3d2f23
0bbe6b1d897c994aa54d02d1692b8dd4d64a2f28d809f954ce6ba356c7d16abb

HTTP Headers

GET /ScriptResource.axd?d=nv7asgRUU0sJi38n3eHX6gSZpHXKxcqIpcsuEIdwb2DzBTfvtFURMfeYZaWI-igMANZQQ3v1nQbmjddwV3gstTFfL7EEFpEWwjT3R71LXGpTiyRnBMHGZ6MExYE1&t=ffffffff866f772c HTTP/1.1
Host: cotiza-seguro.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cotiza-seguro.com/previsionexequial?subid1=1-cce8gi1knp3c0kg2euag
Cookie: dnn_IsMobile=False; language=en-US; .ASPXANONYMOUS=PeoI-JRIPxG-ZZZSnPedYHXJZ1m19NbvaUDopmU0BSxyJlnMRXBY8Re8QhXUWoMuV4uUDSOTvmRtBsJZpHimqnCylBoUO77wh2wU5pE3N74SPP5d0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public
content-type: application/x-javascript
content-encoding: gzip
expires: Sun, 10 Sep 2023 11:23:29 GMT
last-modified: Sat, 10 Sep 2022 11:23:29 GMT
x-powered-by-plesk: PleskWin
x-xss-protection: 1; mode=block
access-control-allow-origin: *
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Authorization
access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS
date: Sat, 10 Sep 2022 12:51:21 GMT
content-length: 5479
X-Firefox-Spdy: h2

cotiza-seguro.com/ScriptResource.axd?d=NJmAwtEo3IpDpd4wanJJuX6TV3L_k8A98Gc2id17CEJR4UMOwDO3XEngKF_PsEH-1ZrVUrVTA6los450Jbbs4p9ONjIG-uL_lDvEJFFRT3rtY0b42NTQ4dHUZ8v5gdQyuHY9cw2&t=49337fe8

66.35.110.90

200 OK

26 kB

URL HTTP/2
cotiza-seguro.com/ScriptResource.axd?d=NJmAwtEo3IpDpd4wanJJuX6TV3L_k8A98Gc2id17CEJR4UMOwDO3XEngKF_PsEH-1ZrVUrVTA6los450Jbbs4p9ONjIG-uL_lDvEJFFRT3rtY0b42NTQ4dHUZ8v5gdQyuHY9cw2&t=49337fe8
IP
66.35.110.90:0
ASN
#14955 N-V-C

File type
Unicode text, UTF-8 (with BOM) text, with very long lines (65326), with CRLF line terminators
Size
26 kB (25609 bytes)
Hash
b62553925bd98826c60457d2eb6b9a46
84dbbb6d9b36a587c21b5a56b1d9e587e33ba943
c58166fe4df4ba8f25a960c21451eaf841d97f6f552f104e43431c9db1c2e2cc

HTTP Headers

GET /ScriptResource.axd?d=NJmAwtEo3IpDpd4wanJJuX6TV3L_k8A98Gc2id17CEJR4UMOwDO3XEngKF_PsEH-1ZrVUrVTA6los450Jbbs4p9ONjIG-uL_lDvEJFFRT3rtY0b42NTQ4dHUZ8v5gdQyuHY9cw2&t=49337fe8 HTTP/1.1
Host: cotiza-seguro.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cotiza-seguro.com/previsionexequial?subid1=1-cce8gi1knp3c0kg2euag
Cookie: dnn_IsMobile=False; language=en-US; .ASPXANONYMOUS=PeoI-JRIPxG-ZZZSnPedYHXJZ1m19NbvaUDopmU0BSxyJlnMRXBY8Re8QhXUWoMuV4uUDSOTvmRtBsJZpHimqnCylBoUO77wh2wU5pE3N74SPP5d0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public
content-type: application/x-javascript
content-encoding: gzip
expires: Sun, 10 Sep 2023 11:23:29 GMT
last-modified: Sat, 10 Sep 2022 11:23:29 GMT
x-powered-by-plesk: PleskWin
x-xss-protection: 1; mode=block
access-control-allow-origin: *
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Authorization
access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS
date: Sat, 10 Sep 2022 12:51:21 GMT
content-length: 25609
X-Firefox-Spdy: h2

cotiza-seguro.com/Resources/Shared/stylesheets/dnndefault/7.0.0/default.css?cdv=57

66.35.110.90

200 OK

21 kB

URL HTTP/2
cotiza-seguro.com/Resources/Shared/stylesheets/dnndefault/7.0.0/default.css?cdv=57
IP
66.35.110.90:0
ASN
#14955 N-V-C

File type
Unicode text, UTF-8 text, with very long lines (62832), with no line terminators
Size
21 kB (20795 bytes)
Hash
ec2dfc8a1f5bfba46ee1a224fa36b459
63a02207bff9072b29746841a728b6b81c562754
10380cd346daec6434c6ccc25d47eb9fc8033e27db84baaf5176a249664e3112

HTTP Headers

GET /Resources/Shared/stylesheets/dnndefault/7.0.0/default.css?cdv=57 HTTP/1.1
Host: cotiza-seguro.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cotiza-seguro.com/previsionexequial?subid1=1-cce8gi1knp3c0kg2euag
Cookie: dnn_IsMobile=False; language=en-US; .ASPXANONYMOUS=PeoI-JRIPxG-ZZZSnPedYHXJZ1m19NbvaUDopmU0BSxyJlnMRXBY8Re8QhXUWoMuV4uUDSOTvmRtBsJZpHimqnCylBoUO77wh2wU5pE3N74SPP5d0
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public,max-age=31536000
content-type: text/css
content-encoding: br
last-modified: Mon, 01 Mar 2021 15:51:39 GMT
accept-ranges: bytes
etag: "89d668c4b2ed71:0"
vary: Accept-Encoding
server: Microsoft-IIS/10.0
x-powered-by-plesk: PleskWin
x-xss-protection: 1; mode=block
access-control-allow-origin: *
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Authorization
access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS
date: Sat, 10 Sep 2022 12:51:21 GMT
content-length: 20795
X-Firefox-Spdy: h2

cotiza-seguro.com/Portals/18/skins/recordar/css/bootstrap.min.css?cdv=57

66.35.110.90

200 OK

44 kB

URL HTTP/2
cotiza-seguro.com/Portals/18/skins/recordar/css/bootstrap.min.css?cdv=57
IP
66.35.110.90:0
ASN
#14955 N-V-C

File type
ASCII text, with very long lines (65321), with CRLF line terminators
Size
44 kB (43733 bytes)
Hash
c10106f93db933ea91f5a14bd3421f10
51e0e0be7929dd1edcba154214ac4ef7b5958f88
c20494d78d65fcf17b81f52d53227683d47a35cd91c9eaba0720b4c59470fa5d

HTTP Headers

GET /Portals/18/skins/recordar/css/bootstrap.min.css?cdv=57 HTTP/1.1
Host: cotiza-seguro.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cotiza-seguro.com/previsionexequial?subid1=1-cce8gi1knp3c0kg2euag
Cookie: dnn_IsMobile=False; language=en-US; .ASPXANONYMOUS=PeoI-JRIPxG-ZZZSnPedYHXJZ1m19NbvaUDopmU0BSxyJlnMRXBY8Re8QhXUWoMuV4uUDSOTvmRtBsJZpHimqnCylBoUO77wh2wU5pE3N74SPP5d0
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public,max-age=31536000
content-type: text/css
content-encoding: br
last-modified: Sat, 14 Nov 2020 19:22:41 GMT
accept-ranges: bytes
etag: "63b5b085bbbad61:0"
vary: Accept-Encoding
server: Microsoft-IIS/10.0
x-powered-by-plesk: PleskWin
x-xss-protection: 1; mode=block
access-control-allow-origin: *
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Authorization
access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS
date: Sat, 10 Sep 2022 12:51:21 GMT
content-length: 43733
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
e0fbe5627b19e9ad7ad4d40c96514ae9
d9d361271987c5947d96ddacc67efb3f3a32bbd3
48b4321f3bda8fd67c5bc75f98b0dfe6df2bfda8dcf5e708aecd47270ae03217

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "48B4321F3BDA8FD67C5BC75F98B0DFE6DF2BFDA8DCF5E708AECD47270AE03217"
Last-Modified: Wed, 07 Sep 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2548
Expires: Sat, 10 Sep 2022 13:33:50 GMT
Date: Sat, 10 Sep 2022 12:51:22 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
e0fbe5627b19e9ad7ad4d40c96514ae9
d9d361271987c5947d96ddacc67efb3f3a32bbd3
48b4321f3bda8fd67c5bc75f98b0dfe6df2bfda8dcf5e708aecd47270ae03217

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "48B4321F3BDA8FD67C5BC75F98B0DFE6DF2BFDA8DCF5E708AECD47270AE03217"
Last-Modified: Wed, 07 Sep 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2548
Expires: Sat, 10 Sep 2022 13:33:50 GMT
Date: Sat, 10 Sep 2022 12:51:22 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
e0fbe5627b19e9ad7ad4d40c96514ae9
d9d361271987c5947d96ddacc67efb3f3a32bbd3
48b4321f3bda8fd67c5bc75f98b0dfe6df2bfda8dcf5e708aecd47270ae03217

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "48B4321F3BDA8FD67C5BC75F98B0DFE6DF2BFDA8DCF5E708AECD47270AE03217"
Last-Modified: Wed, 07 Sep 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2548
Expires: Sat, 10 Sep 2022 13:33:50 GMT
Date: Sat, 10 Sep 2022 12:51:22 GMT
Connection: keep-alive

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff87d6b48-0caf-49d8-be21-3ec24e24374f.jpeg

34.120.237.76

200 OK

8.7 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff87d6b48-0caf-49d8-be21-3ec24e24374f.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
8.7 kB (8706 bytes)
Hash
478caf1cbdbafefa1b73c4e1a21e027c
90dd5e86857e7f6313bbb053baa8c1d4784d3089
0c845efdea74e5b1245ca00ea33a0b8220551d156ca34620e3d90ccb4de345dc

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff87d6b48-0caf-49d8-be21-3ec24e24374f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 8706
x-amzn-requestid: 37d04670-7b5a-4cbb-ad4c-46615c604bc2
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YNjzcG2moAMF30g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631bb349-5351f9c15ad587ae3c807d48;Sampled=0
x-amzn-remapped-date: Fri, 09 Sep 2022 21:42:33 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P2
x-cache: Hit from cloudfront
x-amz-cf-id: lcckuCebVvSAYgrOAQaGKSp9Bg7RMpdpgIr_3rlRjKgn6iuIQYDHVg==
via: 1.1 95b0ac620fa3a80ee590ecf1cda1c698.cloudfront.net (CloudFront), 1.1 76dcc62b68091cc715d50b5017be77fc.cloudfront.net (CloudFront), 1.1 google
date: Fri, 09 Sep 2022 22:13:43 GMT
age: 52659
etag: "90dd5e86857e7f6313bbb053baa8c1d4784d3089"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

8.7 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5e72c2e9-6d47-42ac-9514-316cd8f8f6c5.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
8.7 kB (8676 bytes)
Hash
e8f11aeba65478b039cfb4100aa23435
88db17a82ea0207ccb4826c2961875c5106b427a
6f6ec5922ec54d824e7f933de87608c5a763da119ae9461d99c6525649b1a9af

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5e72c2e9-6d47-42ac-9514-316cd8f8f6c5.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 8676
x-amzn-requestid: 64a58aa8-8321-4c91-98fe-dbf97996c513
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YNiuZEjnIAMFRFg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631bb18f-77b635593b202d7d3cd0ac84;Sampled=0
x-amzn-remapped-date: Fri, 09 Sep 2022 21:35:11 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P2
x-cache: Hit from cloudfront
x-amz-cf-id: VWwNSpFvcDq3nrn91QvYjrJX5hLjp96vrKgZzR-pOdrdHx7MlcagGQ==
via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 d1d67b07408bba8c682597d8303642e2.cloudfront.net (CloudFront), 1.1 google
date: Fri, 09 Sep 2022 22:13:43 GMT
age: 52659
etag: "88db17a82ea0207ccb4826c2961875c5106b427a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

6.6 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1b74df88-0b3c-4495-ac87-32b567c99e82.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
6.6 kB (6628 bytes)
Hash
12d95a798c8334bb3bff65feb188205e
466df69c851018063e9a45205d0d8688dbcf1e1c
2481bb0562a647aa22bc56931da8eb433a008fffcad62b51912d32e52616f229

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1b74df88-0b3c-4495-ac87-32b567c99e82.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 6628
x-amzn-requestid: a50790d8-1534-49f7-aec4-79a21d959e16
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YNj5PH91oAMFZSA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631bb36e-670f1e3f185c60ff212fde71;Sampled=0
x-amzn-remapped-date: Fri, 09 Sep 2022 21:43:10 GMT
x-amz-cf-pop: SEA19-C1, SEA73-P2
x-cache: Miss from cloudfront
x-amz-cf-id: yDbg3M_T8LDhrtyx2X-GupahP1h0agvpQXV1FzEqBBAGmIRWeJmRQA==
via: 1.1 995664ee945c06fc706b5cb8e0e650dc.cloudfront.net (CloudFront), 1.1 bd6f70221217681265382902c6157c76.cloudfront.net (CloudFront), 1.1 google
date: Fri, 09 Sep 2022 21:57:00 GMT
age: 53662
etag: "466df69c851018063e9a45205d0d8688dbcf1e1c"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

12 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2e9b3424-a7df-4a41-82c2-4baf4813509c.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
12 kB (11464 bytes)
Hash
fcf56e65178e3bdb802a8215b48d11f0
6ca14b815e1446172a72f28f58fbbf97272a512b
42a88966c46e9670786e171700f403805f1a278aef0edfee233afb8fd5e41e46

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2e9b3424-a7df-4a41-82c2-4baf4813509c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 11464
x-amzn-requestid: 5a4d63f8-dd44-4003-bd90-4ebcdf4517e2
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: XdbBcECroAMFrFA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63087209-22f3a6a174d32fd11f863106;Sampled=0
x-amzn-remapped-date: Fri, 26 Aug 2022 07:11:05 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: hvJEdV6JLI2wSnHo_y3lhjaS0p0-tXpeedn_z3BuRuz7xfqBun_ntw==
via: 1.1 c34da255183aa208dd1c722ff211f9b2.cloudfront.net (CloudFront), 1.1 707e733794d52100fde0ab21bf0b1462.cloudfront.net (CloudFront), 1.1 google
date: Sat, 10 Sep 2022 11:04:35 GMT
age: 6407
etag: "6ca14b815e1446172a72f28f58fbbf97272a512b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

2.5 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbfb49483-577b-4413-86f1-41eeb2d7b540.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
2.5 kB (2524 bytes)
Hash
e3a2c5db656aab4f88ddadd8fa742b4c
78c0d3df42ec5ae34ad62430b6c4794e03fd411e
8818edbe7edbcbc7a46b49d8820851779d4d6c18a1d5cc4fa8234b2ba355a495

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbfb49483-577b-4413-86f1-41eeb2d7b540.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 2524
x-amzn-requestid: 2db0d0d7-4d18-464f-8c23-f12d5448fb47
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YNkCsE7toAMF9xA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631bb3aa-490eb8124b8f16fb747308fa;Sampled=0
x-amzn-remapped-date: Fri, 09 Sep 2022 21:44:10 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: spKSoFyyBJFS0Lchq49Ewa7tnd4CK3b-0a0rSlpDugQMpMkvEYIgrg==
via: 1.1 26ca01ec7377e425b59b6a08cb1ec342.cloudfront.net (CloudFront), 1.1 5565a51537c689d1d16f6b4d41f40082.cloudfront.net (CloudFront), 1.1 google
date: Fri, 09 Sep 2022 22:00:01 GMT
age: 53481
etag: "78c0d3df42ec5ae34ad62430b6c4794e03fd411e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

9.8 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0bedecf7-d9af-4aa7-88b0-94b2a33f9e1a.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
9.8 kB (9766 bytes)
Hash
7ade70e6dbcfb3ca1765f95112671e69
3768753be084c0e0fc268be5b192d02d769114b6
9670a3bf2476ba193cfeb3153c1254bdcfc980a28503dda0d9b398a3a59f53f4

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0bedecf7-d9af-4aa7-88b0-94b2a33f9e1a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 9766
x-amzn-requestid: 720a4111-91de-4672-88c8-f40db517c07d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YHsjRE13oAMFbCA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63195ae1-288f1f5456bf4d146dcf774c;Sampled=0
x-amzn-remapped-date: Thu, 08 Sep 2022 03:00:49 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: HwwG0Hjf8uZn1AtbLU_wKs3w9lict3tRP31XQY6tIxDz9KDNaBMAqw==
via: 1.1 000f4a2f631bace380a0afa747a82482.cloudfront.net (CloudFront), 1.1 4f3feb5c4393987d42d1971d404d7cea.cloudfront.net (CloudFront), 1.1 google
date: Sat, 10 Sep 2022 04:00:05 GMT
age: 31877
etag: "3768753be084c0e0fc268be5b192d02d769114b6"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

cotiza-seguro.com/ScriptResource.axd?d=dwY9oWetJoJNXVwQaP17wSitswVtyBWQSF_oGgSGl6uVKS3QLClWQp-3BmAiELKIlkkV4w8ZojQaVWQNSThKXEL0r4OUO6Q6if3WZqFZfUaLj1vfFXBrikgBcd66Qz8OFRm7GgBSTxZUAZDP0&t=49337fe8

66.35.110.90

200 OK

10 kB

URL HTTP/2
cotiza-seguro.com/ScriptResource.axd?d=dwY9oWetJoJNXVwQaP17wSitswVtyBWQSF_oGgSGl6uVKS3QLClWQp-3BmAiELKIlkkV4w8ZojQaVWQNSThKXEL0r4OUO6Q6if3WZqFZfUaLj1vfFXBrikgBcd66Qz8OFRm7GgBSTxZUAZDP0&t=49337fe8
IP
66.35.110.90:0
ASN
#14955 N-V-C

File type
Unicode text, UTF-8 (with BOM) text, with very long lines (39257), with CRLF line terminators
Size
10 kB (9984 bytes)
Hash
027a7d52e1ceed8aef7dc13505b81d36
33cf0bce6a4c8b44b4a80b3116c978c12ee93fd0
29061464fb6fce2326b952eacaa95c3c6183bfea74c3851390e9838720d372a6

HTTP Headers

GET /ScriptResource.axd?d=dwY9oWetJoJNXVwQaP17wSitswVtyBWQSF_oGgSGl6uVKS3QLClWQp-3BmAiELKIlkkV4w8ZojQaVWQNSThKXEL0r4OUO6Q6if3WZqFZfUaLj1vfFXBrikgBcd66Qz8OFRm7GgBSTxZUAZDP0&t=49337fe8 HTTP/1.1
Host: cotiza-seguro.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cotiza-seguro.com/previsionexequial?subid1=1-cce8gi1knp3c0kg2euag
Cookie: dnn_IsMobile=False; language=en-US; .ASPXANONYMOUS=PeoI-JRIPxG-ZZZSnPedYHXJZ1m19NbvaUDopmU0BSxyJlnMRXBY8Re8QhXUWoMuV4uUDSOTvmRtBsJZpHimqnCylBoUO77wh2wU5pE3N74SPP5d0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public
content-type: application/x-javascript
content-encoding: gzip
expires: Sun, 10 Sep 2023 11:23:29 GMT
last-modified: Sat, 10 Sep 2022 11:23:29 GMT
x-powered-by-plesk: PleskWin
x-xss-protection: 1; mode=block
access-control-allow-origin: *
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Authorization
access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS
date: Sat, 10 Sep 2022 12:51:21 GMT
content-length: 9984
X-Firefox-Spdy: h2

cotiza-seguro.com/js/dnn.js?cdv=57

66.35.110.90

200 OK

7.9 kB

URL HTTP/2
cotiza-seguro.com/js/dnn.js?cdv=57
IP
66.35.110.90:0
ASN
#14955 N-V-C

File type
ASCII text, with very long lines (17948), with no line terminators
Size
7.9 kB (7902 bytes)
Hash
ff0a3b66ce6d57ed5d1ef50fc32be32e
2f9443a5324ded1827805059837f667941122522
55eb1ee863f938357edaf32ae1b7f4b6a5a76ddc880c6a3b676859181812ebb9

HTTP Headers

GET /js/dnn.js?cdv=57 HTTP/1.1
Host: cotiza-seguro.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cotiza-seguro.com/previsionexequial?subid1=1-cce8gi1knp3c0kg2euag
Cookie: dnn_IsMobile=False; language=en-US; .ASPXANONYMOUS=PeoI-JRIPxG-ZZZSnPedYHXJZ1m19NbvaUDopmU0BSxyJlnMRXBY8Re8QhXUWoMuV4uUDSOTvmRtBsJZpHimqnCylBoUO77wh2wU5pE3N74SPP5d0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public,max-age=31536000
content-type: application/javascript
content-encoding: br
last-modified: Fri, 03 Aug 2018 22:31:00 GMT
accept-ranges: bytes
etag: "06a64a7792bd41:0"
vary: Accept-Encoding
server: Microsoft-IIS/10.0
x-powered-by-plesk: PleskWin
x-xss-protection: 1; mode=block
access-control-allow-origin: *
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Authorization
access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS
date: Sat, 10 Sep 2022 12:51:21 GMT
content-length: 7902
X-Firefox-Spdy: h2

cotiza-seguro.com/js/dnn.modalpopup.js?cdv=57

66.35.110.90

200 OK

4.2 kB

URL HTTP/2
cotiza-seguro.com/js/dnn.modalpopup.js?cdv=57
IP
66.35.110.90:0
ASN
#14955 N-V-C

File type
ASCII text, with very long lines (7581), with no line terminators
Size
4.2 kB (4193 bytes)
Hash
507f4be368c16280eab0e6fb2edbf203
f587c2683a2e3d52d6d6623da14e53c4210d60db
730c623067322e5d333eab823b9bbcaf8b1f68150b560c525acf25e341fcac1d

HTTP Headers

GET /js/dnn.modalpopup.js?cdv=57 HTTP/1.1
Host: cotiza-seguro.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cotiza-seguro.com/previsionexequial?subid1=1-cce8gi1knp3c0kg2euag
Cookie: dnn_IsMobile=False; language=en-US; .ASPXANONYMOUS=PeoI-JRIPxG-ZZZSnPedYHXJZ1m19NbvaUDopmU0BSxyJlnMRXBY8Re8QhXUWoMuV4uUDSOTvmRtBsJZpHimqnCylBoUO77wh2wU5pE3N74SPP5d0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public,max-age=31536000
content-type: application/javascript
content-encoding: br
last-modified: Fri, 03 Aug 2018 22:31:00 GMT
accept-ranges: bytes
etag: "06a64a7792bd41:0"
vary: Accept-Encoding
server: Microsoft-IIS/10.0
x-powered-by-plesk: PleskWin
x-xss-protection: 1; mode=block
access-control-allow-origin: *
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Authorization
access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS
date: Sat, 10 Sep 2022 12:51:21 GMT
content-length: 4193
X-Firefox-Spdy: h2

cotiza-seguro.com/Resources/Shared/Scripts/jquery/jquery.hoverIntent.min.js?cdv=57

66.35.110.90

200 OK

730 B

URL HTTP/2
cotiza-seguro.com/Resources/Shared/Scripts/jquery/jquery.hoverIntent.min.js?cdv=57
IP
66.35.110.90:0
ASN
#14955 N-V-C

File type
ASCII text, with very long lines (1140)
Size
730 B (730 bytes)
Hash
a5a43b37d9bc2ae0143a05294ea02797
c61fb635e825a4a86dfd04333ad1f5f30eb0ab9e
cc7a09f16e0b37deda9f6795dea35db3eea1c1041867be9310c4930bcbf741e9

HTTP Headers

GET /Resources/Shared/Scripts/jquery/jquery.hoverIntent.min.js?cdv=57 HTTP/1.1
Host: cotiza-seguro.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cotiza-seguro.com/previsionexequial?subid1=1-cce8gi1knp3c0kg2euag
Cookie: dnn_IsMobile=False; language=en-US; .ASPXANONYMOUS=PeoI-JRIPxG-ZZZSnPedYHXJZ1m19NbvaUDopmU0BSxyJlnMRXBY8Re8QhXUWoMuV4uUDSOTvmRtBsJZpHimqnCylBoUO77wh2wU5pE3N74SPP5d0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public,max-age=31536000
content-type: application/javascript
content-encoding: br
last-modified: Fri, 03 Aug 2018 22:31:02 GMT
accept-ranges: bytes
etag: "09795a8792bd41:0"
vary: Accept-Encoding
server: Microsoft-IIS/10.0
x-powered-by-plesk: PleskWin
x-xss-protection: 1; mode=block
access-control-allow-origin: *
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Authorization
access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS
date: Sat, 10 Sep 2022 12:51:21 GMT
content-length: 730
X-Firefox-Spdy: h2

cotiza-seguro.com/Portals/18/skins/recordar/js/app.js?cdv=57

66.35.110.90

200 OK

6.0 kB

URL HTTP/2
cotiza-seguro.com/Portals/18/skins/recordar/js/app.js?cdv=57
IP
66.35.110.90:0
ASN
#14955 N-V-C

File type
assembler source, Unicode text, UTF-8 text, with CRLF line terminators
Size
6.0 kB (5975 bytes)
Hash
b88dfaf6adb24270f5b92e5ccccfa2d7
b086936d146a3269a8fd2db291e52af06cf1ca76
ce9a4474cabfbb87b66c4e202de977dddf1bdf629c7eda0acd372adaa60cfb7d

HTTP Headers

GET /Portals/18/skins/recordar/js/app.js?cdv=57 HTTP/1.1
Host: cotiza-seguro.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cotiza-seguro.com/previsionexequial?subid1=1-cce8gi1knp3c0kg2euag
Cookie: dnn_IsMobile=False; language=en-US; .ASPXANONYMOUS=PeoI-JRIPxG-ZZZSnPedYHXJZ1m19NbvaUDopmU0BSxyJlnMRXBY8Re8QhXUWoMuV4uUDSOTvmRtBsJZpHimqnCylBoUO77wh2wU5pE3N74SPP5d0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public,max-age=31536000
content-type: application/javascript
content-encoding: br
last-modified: Wed, 24 Aug 2022 12:42:12 GMT
accept-ranges: bytes
etag: "24c9c3eeb6b7d81:0"
vary: Accept-Encoding
server: Microsoft-IIS/10.0
x-powered-by-plesk: PleskWin
x-xss-protection: 1; mode=block
access-control-allow-origin: *
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Authorization
access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS
date: Sat, 10 Sep 2022 12:51:21 GMT
content-length: 5975
X-Firefox-Spdy: h2

cotiza-seguro.com/js/dnncore.js?cdv=57

66.35.110.90

200 OK

3.5 kB

URL HTTP/2
cotiza-seguro.com/js/dnncore.js?cdv=57
IP
66.35.110.90:0
ASN
#14955 N-V-C

File type
ASCII text, with very long lines (8437), with no line terminators
Size
3.5 kB (3500 bytes)
Hash
4a7f7f3c1ded0674ebfd362f5781cd69
403002a68477d8645ae99e710ce08ff59a98c732
514e4ba6b5dc8d2722dd2900172face59b70cd36ada4a70a5b786f0c2d705f1e

HTTP Headers

GET /js/dnncore.js?cdv=57 HTTP/1.1
Host: cotiza-seguro.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cotiza-seguro.com/previsionexequial?subid1=1-cce8gi1knp3c0kg2euag
Cookie: dnn_IsMobile=False; language=en-US; .ASPXANONYMOUS=PeoI-JRIPxG-ZZZSnPedYHXJZ1m19NbvaUDopmU0BSxyJlnMRXBY8Re8QhXUWoMuV4uUDSOTvmRtBsJZpHimqnCylBoUO77wh2wU5pE3N74SPP5d0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public,max-age=31536000
content-type: application/javascript
content-encoding: br
last-modified: Fri, 03 Aug 2018 22:31:00 GMT
accept-ranges: bytes
etag: "06a64a7792bd41:0"
vary: Accept-Encoding
server: Microsoft-IIS/10.0
x-powered-by-plesk: PleskWin
x-xss-protection: 1; mode=block
access-control-allow-origin: *
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Authorization
access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS
date: Sat, 10 Sep 2022 12:51:21 GMT
content-length: 3500
X-Firefox-Spdy: h2

cotiza-seguro.com/Resources/Shared/Scripts/dnn.jquery.js?cdv=57

66.35.110.90

200 OK

56 kB

URL HTTP/2
cotiza-seguro.com/Resources/Shared/Scripts/dnn.jquery.js?cdv=57
IP
66.35.110.90:0
ASN
#14955 N-V-C

File type
Unicode text, UTF-8 (with BOM) text, with very long lines (334), with CRLF line terminators
Size
56 kB (56257 bytes)
Hash
ae259091831b9dd7fc7e2b091ea44503
f84c7eb0b6fda25e0d9f6988513909cd83ef98e5
3ff25a51c121fa2e1f9478214a560d960063f339c557be7dd67cd0acc14b0bbe

HTTP Headers

GET /Resources/Shared/Scripts/dnn.jquery.js?cdv=57 HTTP/1.1
Host: cotiza-seguro.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cotiza-seguro.com/previsionexequial?subid1=1-cce8gi1knp3c0kg2euag
Cookie: dnn_IsMobile=False; language=en-US; .ASPXANONYMOUS=PeoI-JRIPxG-ZZZSnPedYHXJZ1m19NbvaUDopmU0BSxyJlnMRXBY8Re8QhXUWoMuV4uUDSOTvmRtBsJZpHimqnCylBoUO77wh2wU5pE3N74SPP5d0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public,max-age=31536000
content-type: application/javascript
content-encoding: br
last-modified: Fri, 03 Aug 2018 22:31:02 GMT
accept-ranges: bytes
etag: "09795a8792bd41:0"
vary: Accept-Encoding
server: Microsoft-IIS/10.0
x-powered-by-plesk: PleskWin
x-xss-protection: 1; mode=block
access-control-allow-origin: *
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Authorization
access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS
date: Sat, 10 Sep 2022 12:51:21 GMT
content-length: 56257
X-Firefox-Spdy: h2

cotiza-seguro.com/Portals/18/Skins/recordar/img/gruporecordar-logo-white.svg

66.35.110.90

200 OK

13 kB

URL HTTP/2
cotiza-seguro.com/Portals/18/Skins/recordar/img/gruporecordar-logo-white.svg
IP
66.35.110.90:0
ASN
#14955 N-V-C

File type
SVG Scalable Vector Graphics image\012- HTML document, ASCII text, with very long lines (12553), with no line terminators
Size
13 kB (12553 bytes)
Hash
1402f6f4971b5383efe05789cb87e4aa
bd025f2c9d6b3ccab6b021bfdc26b3cb9c7fdcf9
6328f18244125a9e57dd82716985bca0784a60c6801f32855b8ebfdc0039e8fa

HTTP Headers

GET /Portals/18/Skins/recordar/img/gruporecordar-logo-white.svg HTTP/1.1
Host: cotiza-seguro.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cotiza-seguro.com/previsionexequial?subid1=1-cce8gi1knp3c0kg2euag
Cookie: dnn_IsMobile=False; language=en-US; .ASPXANONYMOUS=PeoI-JRIPxG-ZZZSnPedYHXJZ1m19NbvaUDopmU0BSxyJlnMRXBY8Re8QhXUWoMuV4uUDSOTvmRtBsJZpHimqnCylBoUO77wh2wU5pE3N74SPP5d0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public,max-age=31536000
content-type: image/svg+xml
last-modified: Fri, 11 Feb 2022 10:31:49 GMT
accept-ranges: bytes
etag: "626e493321fd81:0"
server: Microsoft-IIS/10.0
x-powered-by-plesk: PleskWin
x-xss-protection: 1; mode=block
access-control-allow-origin: *
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Authorization
access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS
date: Sat, 10 Sep 2022 12:51:21 GMT
content-length: 12553
X-Firefox-Spdy: h2

cotiza-seguro.com/Portals/18/Skins/recordar/img/Icon-1.svg

66.35.110.90

200 OK

1.1 kB

URL HTTP/2
cotiza-seguro.com/Portals/18/Skins/recordar/img/Icon-1.svg
IP
66.35.110.90:0
ASN
#14955 N-V-C

File type
SVG Scalable Vector Graphics image\012- HTML document, ASCII text, with very long lines (1119), with no line terminators
Size
1.1 kB (1119 bytes)
Hash
936a9d1ed7a6dd3e67d33251cc7d066a
c329b3115bc951c6690c5c4d13b5406b83d7959c
efa62d0205fbbef99bb0333045a1012ad750005c38987da2fa80058b9e9defa0

HTTP Headers

GET /Portals/18/Skins/recordar/img/Icon-1.svg HTTP/1.1
Host: cotiza-seguro.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cotiza-seguro.com/previsionexequial?subid1=1-cce8gi1knp3c0kg2euag
Cookie: dnn_IsMobile=False; language=en-US; .ASPXANONYMOUS=PeoI-JRIPxG-ZZZSnPedYHXJZ1m19NbvaUDopmU0BSxyJlnMRXBY8Re8QhXUWoMuV4uUDSOTvmRtBsJZpHimqnCylBoUO77wh2wU5pE3N74SPP5d0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public,max-age=31536000
content-type: image/svg+xml
last-modified: Fri, 11 Feb 2022 16:35:16 GMT
accept-ranges: bytes
etag: "93ccf359651fd81:0"
server: Microsoft-IIS/10.0
x-powered-by-plesk: PleskWin
x-xss-protection: 1; mode=block
access-control-allow-origin: *
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Authorization
access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS
date: Sat, 10 Sep 2022 12:51:21 GMT
content-length: 1119
X-Firefox-Spdy: h2

cotiza-seguro.com/Portals/18/Skins/recordar/img/Icon-2.svg

66.35.110.90

200 OK

2.1 kB

URL HTTP/2
cotiza-seguro.com/Portals/18/Skins/recordar/img/Icon-2.svg
IP
66.35.110.90:0
ASN
#14955 N-V-C

File type
SVG Scalable Vector Graphics image\012- HTML document, ASCII text, with very long lines (2079), with no line terminators
Size
2.1 kB (2079 bytes)
Hash
30596388c9e1bdc6fec6c3a3e1f37b7b
f8d8d8b84ec32f5bcbe189bff748d3414bfd7850
681c2b59351f76c8de7711f8a24f62efc23f5458604ed87f58cf3411d6c67d9c

HTTP Headers

GET /Portals/18/Skins/recordar/img/Icon-2.svg HTTP/1.1
Host: cotiza-seguro.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cotiza-seguro.com/previsionexequial?subid1=1-cce8gi1knp3c0kg2euag
Cookie: dnn_IsMobile=False; language=en-US; .ASPXANONYMOUS=PeoI-JRIPxG-ZZZSnPedYHXJZ1m19NbvaUDopmU0BSxyJlnMRXBY8Re8QhXUWoMuV4uUDSOTvmRtBsJZpHimqnCylBoUO77wh2wU5pE3N74SPP5d0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public,max-age=31536000
content-type: image/svg+xml
last-modified: Fri, 11 Feb 2022 16:35:17 GMT
accept-ranges: bytes
etag: "66561c5a651fd81:0"
server: Microsoft-IIS/10.0
x-powered-by-plesk: PleskWin
x-xss-protection: 1; mode=block
access-control-allow-origin: *
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Authorization
access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS
date: Sat, 10 Sep 2022 12:51:21 GMT
content-length: 2079
X-Firefox-Spdy: h2

cotiza-seguro.com/Portals/18/Skins/recordar/img/Icon-3.svg

66.35.110.90

200 OK

1.6 kB

URL HTTP/2
cotiza-seguro.com/Portals/18/Skins/recordar/img/Icon-3.svg
IP
66.35.110.90:0
ASN
#14955 N-V-C

File type
SVG Scalable Vector Graphics image\012- HTML document, ASCII text, with very long lines (1590), with no line terminators
Size
1.6 kB (1590 bytes)
Hash
0d9e81422ea082fa69342990bdea33c1
b2f00b77e71566c313493de4642d85258ce58df1
6d7518faefe38f6ed042fdf08a72520987e4a06984aac971c61853be23078ff9

HTTP Headers

GET /Portals/18/Skins/recordar/img/Icon-3.svg HTTP/1.1
Host: cotiza-seguro.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cotiza-seguro.com/previsionexequial?subid1=1-cce8gi1knp3c0kg2euag
Cookie: dnn_IsMobile=False; language=en-US; .ASPXANONYMOUS=PeoI-JRIPxG-ZZZSnPedYHXJZ1m19NbvaUDopmU0BSxyJlnMRXBY8Re8QhXUWoMuV4uUDSOTvmRtBsJZpHimqnCylBoUO77wh2wU5pE3N74SPP5d0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public,max-age=31536000
content-type: image/svg+xml
last-modified: Fri, 11 Feb 2022 16:35:17 GMT
accept-ranges: bytes
etag: "54cc5a5a651fd81:0"
server: Microsoft-IIS/10.0
x-powered-by-plesk: PleskWin
x-xss-protection: 1; mode=block
access-control-allow-origin: *
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Authorization
access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS
date: Sat, 10 Sep 2022 12:51:21 GMT
content-length: 1590
X-Firefox-Spdy: h2

cotiza-seguro.com/Portals/18/Skins/recordar/img/Icon-4.svg

66.35.110.90

200 OK

6.9 kB

URL HTTP/2
cotiza-seguro.com/Portals/18/Skins/recordar/img/Icon-4.svg
IP
66.35.110.90:0
ASN
#14955 N-V-C

File type
SVG Scalable Vector Graphics image\012- HTML document, ASCII text, with very long lines (6879), with no line terminators
Size
6.9 kB (6879 bytes)
Hash
5d5e09ce6c7df67d942f309c058cde30
0f16b533c2c24f2350f378c5296efadc83e76423
8d0af1beb398bba98cfd9274f2c2c5e0be4e34958ac3043958e912f88b5a8c64

HTTP Headers

GET /Portals/18/Skins/recordar/img/Icon-4.svg HTTP/1.1
Host: cotiza-seguro.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cotiza-seguro.com/previsionexequial?subid1=1-cce8gi1knp3c0kg2euag
Cookie: dnn_IsMobile=False; language=en-US; .ASPXANONYMOUS=PeoI-JRIPxG-ZZZSnPedYHXJZ1m19NbvaUDopmU0BSxyJlnMRXBY8Re8QhXUWoMuV4uUDSOTvmRtBsJZpHimqnCylBoUO77wh2wU5pE3N74SPP5d0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public,max-age=31536000
content-type: image/svg+xml
last-modified: Fri, 11 Feb 2022 16:35:17 GMT
accept-ranges: bytes
etag: "af7d8a5a651fd81:0"
server: Microsoft-IIS/10.0
x-powered-by-plesk: PleskWin
x-xss-protection: 1; mode=block
access-control-allow-origin: *
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Authorization
access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS
date: Sat, 10 Sep 2022 12:51:21 GMT
content-length: 6879
X-Firefox-Spdy: h2

cotiza-seguro.com/portals/18/Skins/recordar/img/separador-2.svg

66.35.110.90

200 OK

414 B

URL HTTP/2
cotiza-seguro.com/portals/18/Skins/recordar/img/separador-2.svg
IP
66.35.110.90:0
ASN
#14955 N-V-C

File type
SVG Scalable Vector Graphics image\012- HTML document, ASCII text, with very long lines (414), with no line terminators
Size
414 B (414 bytes)
Hash
2e65453aedabf3ce8f5d055e5a56f32d
47189a774f4076b1b149d67fd526b0aa5463c2d9
9d28974dbb2b0b354654680e7d0fbc84ef30c12dca34cae27e4ac0ad1416e2a3

HTTP Headers

GET /portals/18/Skins/recordar/img/separador-2.svg HTTP/1.1
Host: cotiza-seguro.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cotiza-seguro.com/previsionexequial?subid1=1-cce8gi1knp3c0kg2euag
Cookie: dnn_IsMobile=False; language=en-US; .ASPXANONYMOUS=PeoI-JRIPxG-ZZZSnPedYHXJZ1m19NbvaUDopmU0BSxyJlnMRXBY8Re8QhXUWoMuV4uUDSOTvmRtBsJZpHimqnCylBoUO77wh2wU5pE3N74SPP5d0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public,max-age=31536000
content-type: image/svg+xml
last-modified: Fri, 11 Feb 2022 18:05:02 GMT
accept-ranges: bytes
etag: "b69519e4711fd81:0"
server: Microsoft-IIS/10.0
x-powered-by-plesk: PleskWin
x-xss-protection: 1; mode=block
access-control-allow-origin: *
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Authorization
access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS
date: Sat, 10 Sep 2022 12:51:21 GMT
content-length: 414
X-Firefox-Spdy: h2

cotiza-seguro.com/portals/18/Skins/recordar/img/family-V2.png

66.35.110.90

200 OK

190 kB

URL HTTP/2
cotiza-seguro.com/portals/18/Skins/recordar/img/family-V2.png
IP
66.35.110.90:0
ASN
#14955 N-V-C

File type
PNG image data, 1000 x 872, 8-bit colormap, non-interlaced\012- data
Size
190 kB (189787 bytes)
Hash
53f65155a7931affcdd211cd9c0a8486
3bd8525650e01e41efa1b2e8ef16a9b9bbb1f37b
254bc11e905ab5d35b2d5195952a6b2ec22febbb1a79dbf8016eaed505727ed1

HTTP Headers

GET /portals/18/Skins/recordar/img/family-V2.png HTTP/1.1
Host: cotiza-seguro.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cotiza-seguro.com/previsionexequial?subid1=1-cce8gi1knp3c0kg2euag
Cookie: dnn_IsMobile=False; language=en-US; .ASPXANONYMOUS=PeoI-JRIPxG-ZZZSnPedYHXJZ1m19NbvaUDopmU0BSxyJlnMRXBY8Re8QhXUWoMuV4uUDSOTvmRtBsJZpHimqnCylBoUO77wh2wU5pE3N74SPP5d0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public,max-age=31536000
content-type: image/png
last-modified: Fri, 11 Feb 2022 15:20:07 GMT
accept-ranges: bytes
etag: "2e3a4dda5a1fd81:0"
server: Microsoft-IIS/10.0
x-powered-by-plesk: PleskWin
x-xss-protection: 1; mode=block
access-control-allow-origin: *
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Authorization
access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS
date: Sat, 10 Sep 2022 12:51:21 GMT
content-length: 189787
X-Firefox-Spdy: h2

cotiza-seguro.com/portals/18/Skins/recordar/img/girls.png

66.35.110.90

200 OK

192 kB

URL HTTP/2
cotiza-seguro.com/portals/18/Skins/recordar/img/girls.png
IP
66.35.110.90:0
ASN
#14955 N-V-C

File type
PNG image data, 800 x 766, 8-bit colormap, non-interlaced\012- data
Size
192 kB (192196 bytes)
Hash
8ce0187a75d7883c4b698023df9713ba
9400f38a875644ee883644c8203f3cdc56a6d123
832d40790a5c44afd38298887496c90e8b4de4651dd7e8994301a97f5e996668

HTTP Headers

GET /portals/18/Skins/recordar/img/girls.png HTTP/1.1
Host: cotiza-seguro.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cotiza-seguro.com/previsionexequial?subid1=1-cce8gi1knp3c0kg2euag
Cookie: dnn_IsMobile=False; language=en-US; .ASPXANONYMOUS=PeoI-JRIPxG-ZZZSnPedYHXJZ1m19NbvaUDopmU0BSxyJlnMRXBY8Re8QhXUWoMuV4uUDSOTvmRtBsJZpHimqnCylBoUO77wh2wU5pE3N74SPP5d0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public,max-age=31536000
content-type: image/png
last-modified: Fri, 11 Feb 2022 17:49:27 GMT
accept-ranges: bytes
etag: "9593c0b66f1fd81:0"
server: Microsoft-IIS/10.0
x-powered-by-plesk: PleskWin
x-xss-protection: 1; mode=block
access-control-allow-origin: *
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Authorization
access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS
date: Sat, 10 Sep 2022 12:51:21 GMT
content-length: 192196
X-Firefox-Spdy: h2

cotiza-seguro.com/portals/18/Skins/recordar/img/b5129ddd-imagen-banner.jpg

66.35.110.90

200 OK

215 kB

URL HTTP/2
cotiza-seguro.com/portals/18/Skins/recordar/img/b5129ddd-imagen-banner.jpg
IP
66.35.110.90:0
ASN
#14955 N-V-C

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1920x1080, components 3\012- data
Size
215 kB (214972 bytes)
Hash
dd5c69eaa5920b493aad306681e64bfe
b726dd1f54bed159fceb12f17715dca1c3aa2640
62d3d3e3d3539211e98415d711281740e84bfc09de2326ba31f392da27f4a732

HTTP Headers

GET /portals/18/Skins/recordar/img/b5129ddd-imagen-banner.jpg HTTP/1.1
Host: cotiza-seguro.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cotiza-seguro.com/Portals/18/skins/recordar/css/style.css?cdv=57
Cookie: dnn_IsMobile=False; language=en-US; .ASPXANONYMOUS=PeoI-JRIPxG-ZZZSnPedYHXJZ1m19NbvaUDopmU0BSxyJlnMRXBY8Re8QhXUWoMuV4uUDSOTvmRtBsJZpHimqnCylBoUO77wh2wU5pE3N74SPP5d0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public,max-age=31536000
content-type: image/jpeg
last-modified: Wed, 03 Aug 2022 14:11:12 GMT
accept-ranges: bytes
etag: "6b9c9e242a7d81:0"
server: Microsoft-IIS/10.0
x-powered-by-plesk: PleskWin
x-xss-protection: 1; mode=block
access-control-allow-origin: *
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Authorization
access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS
date: Sat, 10 Sep 2022 12:51:22 GMT
content-length: 214972
X-Firefox-Spdy: h2

cotiza-seguro.com/Portals/18/skins/recordar/css/fonts/Roboto-Regular.woff2

66.35.110.90

200 OK

66 kB

URL HTTP/2
cotiza-seguro.com/Portals/18/skins/recordar/css/fonts/Roboto-Regular.woff2
IP
66.35.110.90:0
ASN
#14955 N-V-C

File type
Web Open Font Format (Version 2), TrueType, length 65916, version 1.0\012- data
Size
66 kB (65916 bytes)
Hash
9feb0110b6dff9ee2b9ebd17f7a1aee6
90bbe308a02d7cda492e3beb1a6091809b8f35c8
8cef08634dc57d6519717c5a99a9e502bdc96586fe64770520a4820b0b089920

HTTP Headers

GET /Portals/18/skins/recordar/css/fonts/Roboto-Regular.woff2 HTTP/1.1
Host: cotiza-seguro.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://cotiza-seguro.com/Portals/18/skins/recordar/css/style.css?cdv=57
Cookie: dnn_IsMobile=False; language=en-US; .ASPXANONYMOUS=PeoI-JRIPxG-ZZZSnPedYHXJZ1m19NbvaUDopmU0BSxyJlnMRXBY8Re8QhXUWoMuV4uUDSOTvmRtBsJZpHimqnCylBoUO77wh2wU5pE3N74SPP5d0
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public,max-age=31536000
content-type: font/x-woff2
last-modified: Sat, 14 Nov 2020 19:23:12 GMT
accept-ranges: bytes
etag: "e691f497bbbad61:0"
server: Microsoft-IIS/10.0
x-powered-by-plesk: PleskWin
x-xss-protection: 1; mode=block
access-control-allow-origin: *
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Authorization
access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS
date: Sat, 10 Sep 2022 12:51:22 GMT
content-length: 65916
X-Firefox-Spdy: h2

cotiza-seguro.com/Portals/18/skins/recordar/css/fonts/Montserrat-ExtraBold.woff2

66.35.110.90

200 OK

89 kB

URL HTTP/2
cotiza-seguro.com/Portals/18/skins/recordar/css/fonts/Montserrat-ExtraBold.woff2
IP
66.35.110.90:0
ASN
#14955 N-V-C

File type
Web Open Font Format (Version 2), TrueType, length 88708, version 1.0\012- data
Size
89 kB (88708 bytes)
Hash
69542103c5dd6cd037bea90bfe130577
7ca3bc8612072e04c9ca5121a3049de0eedfe77c
5c4b5c3b1f87da4d41350653aa162ccdca897bba501dd0790bd4591b09759617

HTTP Headers

GET /Portals/18/skins/recordar/css/fonts/Montserrat-ExtraBold.woff2 HTTP/1.1
Host: cotiza-seguro.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://cotiza-seguro.com/Portals/18/skins/recordar/css/style.css?cdv=57
Cookie: dnn_IsMobile=False; language=en-US; .ASPXANONYMOUS=PeoI-JRIPxG-ZZZSnPedYHXJZ1m19NbvaUDopmU0BSxyJlnMRXBY8Re8QhXUWoMuV4uUDSOTvmRtBsJZpHimqnCylBoUO77wh2wU5pE3N74SPP5d0
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public,max-age=31536000
content-type: font/x-woff2
last-modified: Fri, 11 Feb 2022 11:16:55 GMT
accept-ranges: bytes
etag: "1c769de0381fd81:0"
server: Microsoft-IIS/10.0
x-powered-by-plesk: PleskWin
x-xss-protection: 1; mode=block
access-control-allow-origin: *
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Authorization
access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS
date: Sat, 10 Sep 2022 12:51:22 GMT
content-length: 88708
X-Firefox-Spdy: h2

cotiza-seguro.com/Portals/18/skins/recordar/css/fonts/Montserrat-Medium.woff2

66.35.110.90

200 OK

89 kB

URL HTTP/2
cotiza-seguro.com/Portals/18/skins/recordar/css/fonts/Montserrat-Medium.woff2
IP
66.35.110.90:0
ASN
#14955 N-V-C

File type
Web Open Font Format (Version 2), TrueType, length 88596, version 1.0\012- data
Size
89 kB (88596 bytes)
Hash
4193cb373574474bd262f0cada40c68e
269bf2b2b7bd609246c6c6a5cea1f8859ab4db9b
58b7c61e1b6d4cba2e3ccd1bd081481f7d48a1da5b35e47ef029cb6d28ec52b4

HTTP Headers

GET /Portals/18/skins/recordar/css/fonts/Montserrat-Medium.woff2 HTTP/1.1
Host: cotiza-seguro.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://cotiza-seguro.com/Portals/18/skins/recordar/css/style.css?cdv=57
Cookie: dnn_IsMobile=False; language=en-US; .ASPXANONYMOUS=PeoI-JRIPxG-ZZZSnPedYHXJZ1m19NbvaUDopmU0BSxyJlnMRXBY8Re8QhXUWoMuV4uUDSOTvmRtBsJZpHimqnCylBoUO77wh2wU5pE3N74SPP5d0
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public,max-age=31536000
content-type: font/x-woff2
last-modified: Sat, 14 Nov 2020 19:23:03 GMT
accept-ranges: bytes
etag: "8522d592bbbad61:0"
server: Microsoft-IIS/10.0
x-powered-by-plesk: PleskWin
x-xss-protection: 1; mode=block
access-control-allow-origin: *
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Authorization
access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS
date: Sat, 10 Sep 2022 12:51:22 GMT
content-length: 88596
X-Firefox-Spdy: h2

cotiza-seguro.com/Portals/18/skins/recordar/css/fonts/Roboto-Bold.woff2

66.35.110.90

200 OK

66 kB

URL HTTP/2
cotiza-seguro.com/Portals/18/skins/recordar/css/fonts/Roboto-Bold.woff2
IP
66.35.110.90:0
ASN
#14955 N-V-C

File type
Web Open Font Format (Version 2), TrueType, length 65972, version 1.0\012- data
Size
66 kB (65972 bytes)
Hash
f3a02e2578bee50e620e515912278bc9
168e9a9e4690ec3437a6a3087dd2f76fadc47888
4d7dd6e02d849e181e51db84d9d230d369b8ce7412dbcee9d7d1d19ad8a16741

HTTP Headers

GET /Portals/18/skins/recordar/css/fonts/Roboto-Bold.woff2 HTTP/1.1
Host: cotiza-seguro.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://cotiza-seguro.com/Portals/18/skins/recordar/css/style.css?cdv=57
Cookie: dnn_IsMobile=False; language=en-US; .ASPXANONYMOUS=PeoI-JRIPxG-ZZZSnPedYHXJZ1m19NbvaUDopmU0BSxyJlnMRXBY8Re8QhXUWoMuV4uUDSOTvmRtBsJZpHimqnCylBoUO77wh2wU5pE3N74SPP5d0
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public,max-age=31536000
content-type: font/x-woff2
last-modified: Sat, 14 Nov 2020 19:23:08 GMT
accept-ranges: bytes
etag: "fe08b95bbbad61:0"
server: Microsoft-IIS/10.0
x-powered-by-plesk: PleskWin
x-xss-protection: 1; mode=block
access-control-allow-origin: *
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Authorization
access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS
date: Sat, 10 Sep 2022 12:51:22 GMT
content-length: 65972
X-Firefox-Spdy: h2

cotiza-seguro.com/Portals/18/skins/recordar/css/fonts/Montserrat-Bold.woff2

66.35.110.90

200 OK

89 kB

URL HTTP/2
cotiza-seguro.com/Portals/18/skins/recordar/css/fonts/Montserrat-Bold.woff2
IP
66.35.110.90:0
ASN
#14955 N-V-C

File type
Web Open Font Format (Version 2), TrueType, length 88708, version 1.0\012- data
Size
89 kB (88708 bytes)
Hash
1eaf59537a9c317acaa4b2c144cd89d6
c974c955950d5522a66abd7d2e388e03c177dd85
5e2ac34e292b6f15c645dc4e756f01a452cf63dc0817301ad34b1c9bc6a0afa3

HTTP Headers

GET /Portals/18/skins/recordar/css/fonts/Montserrat-Bold.woff2 HTTP/1.1
Host: cotiza-seguro.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://cotiza-seguro.com/Portals/18/skins/recordar/css/style.css?cdv=57
Cookie: dnn_IsMobile=False; language=en-US; .ASPXANONYMOUS=PeoI-JRIPxG-ZZZSnPedYHXJZ1m19NbvaUDopmU0BSxyJlnMRXBY8Re8QhXUWoMuV4uUDSOTvmRtBsJZpHimqnCylBoUO77wh2wU5pE3N74SPP5d0
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public,max-age=31536000
content-type: font/x-woff2
last-modified: Sat, 14 Nov 2020 19:22:50 GMT
accept-ranges: bytes
etag: "54d5e08abbbad61:0"
server: Microsoft-IIS/10.0
x-powered-by-plesk: PleskWin
x-xss-protection: 1; mode=block
access-control-allow-origin: *
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Authorization
access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS
date: Sat, 10 Sep 2022 12:51:22 GMT
content-length: 88708
X-Firefox-Spdy: h2

cotiza-seguro.com/Portals/18/skins/recordar/css/fonts/Montserrat-Light.woff2

66.35.110.90

200 OK

88 kB

URL HTTP/2
cotiza-seguro.com/Portals/18/skins/recordar/css/fonts/Montserrat-Light.woff2
IP
66.35.110.90:0
ASN
#14955 N-V-C

File type
Web Open Font Format (Version 2), TrueType, length 87596, version 1.0\012- data
Size
88 kB (87596 bytes)
Hash
40e31707c08e220773ea4b0bdf4f7919
89c1ac53be47b3c3130393e2c5bc9fe2610247ad
12a76aff22e9d36b99a6273b904c5d2752c3d9ccf1e1ee1e1f304dc0db2aab49

HTTP Headers

GET /Portals/18/skins/recordar/css/fonts/Montserrat-Light.woff2 HTTP/1.1
Host: cotiza-seguro.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://cotiza-seguro.com/Portals/18/skins/recordar/css/style.css?cdv=57
Cookie: dnn_IsMobile=False; language=en-US; .ASPXANONYMOUS=PeoI-JRIPxG-ZZZSnPedYHXJZ1m19NbvaUDopmU0BSxyJlnMRXBY8Re8QhXUWoMuV4uUDSOTvmRtBsJZpHimqnCylBoUO77wh2wU5pE3N74SPP5d0
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public,max-age=31536000
content-type: font/x-woff2
last-modified: Sat, 14 Nov 2020 19:23:01 GMT
accept-ranges: bytes
etag: "c4b46a91bbbad61:0"
server: Microsoft-IIS/10.0
x-powered-by-plesk: PleskWin
x-xss-protection: 1; mode=block
access-control-allow-origin: *
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Authorization
access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS
date: Sat, 10 Sep 2022 12:51:22 GMT
content-length: 87596
X-Firefox-Spdy: h2

cotiza-seguro.com/Portals/18/skins/recordar/css/fonts/Montserrat-Regular.woff2

66.35.110.90

200 OK

89 kB

URL HTTP/2
cotiza-seguro.com/Portals/18/skins/recordar/css/fonts/Montserrat-Regular.woff2
IP
66.35.110.90:0
ASN
#14955 N-V-C

File type
Web Open Font Format (Version 2), TrueType, length 88804, version 1.0\012- data
Size
89 kB (88804 bytes)
Hash
6c8807219b0ecffdf96122b80df3e62c
135edfb07b1d07d329434bcf54bac05adf2599be
e617708035d1a5f61ca23a9efcaa30f7b65649b560a3dd7477282230a8840879

HTTP Headers

GET /Portals/18/skins/recordar/css/fonts/Montserrat-Regular.woff2 HTTP/1.1
Host: cotiza-seguro.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://cotiza-seguro.com/Portals/18/skins/recordar/css/style.css?cdv=57
Cookie: dnn_IsMobile=False; language=en-US; .ASPXANONYMOUS=PeoI-JRIPxG-ZZZSnPedYHXJZ1m19NbvaUDopmU0BSxyJlnMRXBY8Re8QhXUWoMuV4uUDSOTvmRtBsJZpHimqnCylBoUO77wh2wU5pE3N74SPP5d0
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public,max-age=31536000
content-type: font/x-woff2
last-modified: Sat, 14 Nov 2020 19:23:06 GMT
accept-ranges: bytes
etag: "f0df4d94bbbad61:0"
server: Microsoft-IIS/10.0
x-powered-by-plesk: PleskWin
x-xss-protection: 1; mode=block
access-control-allow-origin: *
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Authorization
access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS
date: Sat, 10 Sep 2022 12:51:22 GMT
content-length: 88804
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
e66743a6c60c1181d7f47c7f748ddfa3
97e333fac41fce213aeda4a42c79b0c5077e26c0
498cbdcbc5fed75df7e4974b21f3be66580dd169b8c82e76c69a823567e27ab6

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 10 Sep 2022 12:51:22 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.google.com/pagead/conversion_async.js

142.250.74.164

200 OK

16 kB

URL HTTP/2
www.google.com/pagead/conversion_async.js
IP
142.250.74.164:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (1623)
Size
16 kB (15687 bytes)
Hash
4738d969770682feba80f04bf171d65b
be0e0ceb91bf5ed0c64b0f3f2cc2c99c6d4cd6b7
1daca97cf9e8078299f94c50346e45fead45bf908ca97ded912f26986c1c4e9a

HTTP Headers

GET /pagead/conversion_async.js HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cotiza-seguro.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
date: Sat, 10 Sep 2022 12:51:22 GMT
expires: Sat, 10 Sep 2022 12:51:22 GMT
cache-control: private, max-age=3600
content-type: text/javascript; charset=UTF-8
etag: 15579141248118922429
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
server: cafe
content-length: 15687
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
90af7f9fc306540e02535db3d00dca64
9e05b003b35ed57277b6b295adde93add7c41b0b
64abd990305ef3f25ffb3fb2ccae04b76e178375752ecb2020411df8f7974fcf

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 10 Sep 2022 12:51:23 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
97e5566c275b9fe27464690811145846
fa8973c8004db59d9a8fd46e9743fb6c9a8d3efd
e77cd1a4510c736e628aa10719f7694d7c7fef15adf1a449d800f90cde76fb88

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 10 Sep 2022 12:51:23 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

cotiza-seguro.com/Portals/18/favicons%20(2).ico?ver=2020-11-14-132611-710

66.35.110.90

200 OK

1.2 kB

URL HTTP/2
cotiza-seguro.com/Portals/18/favicons%20(2).ico?ver=2020-11-14-132611-710
IP
66.35.110.90:0
ASN
#14955 N-V-C

File type
MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel\012- data
Size
1.2 kB (1150 bytes)
Hash
0792021302670daa37c8773638034b11
1950184a8a662e18c99b32fc626831cde0bd856a
df5b8223304479c47ccfa49d4aa56d3b3c7cc887f2d137f03381d2abfe7c6ae6

HTTP Headers

GET /Portals/18/favicons%20(2).ico?ver=2020-11-14-132611-710 HTTP/1.1
Host: cotiza-seguro.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cotiza-seguro.com/previsionexequial?subid1=1-cce8gi1knp3c0kg2euag
Cookie: dnn_IsMobile=False; language=en-US; .ASPXANONYMOUS=PeoI-JRIPxG-ZZZSnPedYHXJZ1m19NbvaUDopmU0BSxyJlnMRXBY8Re8QhXUWoMuV4uUDSOTvmRtBsJZpHimqnCylBoUO77wh2wU5pE3N74SPP5d0; _gcl_au=1.1.2097740812.1662814273
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public,max-age=31536000
content-type: image/x-icon
last-modified: Sat, 14 Nov 2020 19:26:11 GMT
accept-ranges: bytes
etag: "7d2cc52bcbad61:0"
server: Microsoft-IIS/10.0
x-powered-by-plesk: PleskWin
x-xss-protection: 1; mode=block
access-control-allow-origin: *
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Authorization
access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS
date: Sat, 10 Sep 2022 12:51:22 GMT
content-length: 1150
X-Firefox-Spdy: h2

googleads.g.doubleclick.net/pagead/viewthroughconversion/373414897/?random=1662814273208&cv=9&fst=1662814273208&num=1&bg=ffffff&guid=ON&resp=GooglemKTybQhCsO&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&gtm=2oa970&sendb=1&ig=0&data=event%3Dgtag.config&frm=0&url=https%3A%2F%2Fcotiza-seguro.com%2Fprevisionexequial%3Fsubid1%3D1-cce8gi1knp3c0kg2euag&tiba=Previsi%C3%B3n%20Exequial&auid=2097740812.1662814273&hn=www.google.com&async=1&rfmt=3&fmt=4

142.250.74.34

200 OK

1.1 kB

URL HTTP/2
googleads.g.doubleclick.net/pagead/viewthroughconversion/373414897/?random=1662814273208&cv=9&fst=1662814273208&num=1&bg=ffffff&guid=ON&resp=GooglemKTybQhCsO&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&gtm=2oa970&sendb=1&ig=0&data=event%3Dgtag.config&frm=0&url=https%3A%2F%2Fcotiza-seguro.com%2Fprevisionexequial%3Fsubid1%3D1-cce8gi1knp3c0kg2euag&tiba=Previsi%C3%B3n%20Exequial&auid=2097740812.1662814273&hn=www.google.com&async=1&rfmt=3&fmt=4
IP
142.250.74.34:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (2352), with no line terminators
Size
1.1 kB (1073 bytes)
Hash
dc194abfec2e1b5d85ab132b0dcbd1e8
f56bf1ffcca7826d0766b3fc273a793e24ebf752
86de1e6c5faa0a91c890b6d642afaa601ce0222ee6531318cb1c24e1cfb8191e

HTTP Headers

GET /pagead/viewthroughconversion/373414897/?random=1662814273208&cv=9&fst=1662814273208&num=1&bg=ffffff&guid=ON&resp=GooglemKTybQhCsO&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&gtm=2oa970&sendb=1&ig=0&data=event%3Dgtag.config&frm=0&url=https%3A%2F%2Fcotiza-seguro.com%2Fprevisionexequial%3Fsubid1%3D1-cce8gi1knp3c0kg2euag&tiba=Previsi%C3%B3n%20Exequial&auid=2097740812.1662814273&hn=www.google.com&async=1&rfmt=3&fmt=4 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cotiza-seguro.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sat, 10 Sep 2022 12:51:23 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
server: cafe
content-length: 1073
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Sat, 10-Sep-2022 13:06:23 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
97e5566c275b9fe27464690811145846
fa8973c8004db59d9a8fd46e9743fb6c9a8d3efd
e77cd1a4510c736e628aa10719f7694d7c7fef15adf1a449d800f90cde76fb88

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 10 Sep 2022 12:51:23 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
18d9c80e93810b52880aab445613e4b7
ca08ea7190fac815eae23eb6022d7f524694a518
6ed2db33b116fbb84b14f8509886515c5b9d8277437c8ac00b5735712f7f662f

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 10 Sep 2022 12:51:23 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.google.no/pagead/1p-user-list/373414897/?random=1662814273208&cv=9&fst=1662811200000&num=1&bg=ffffff&guid=ON&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&gtm=2oa970&sendb=1&data=event%3Dgtag.config&frm=0&url=https%3A%2F%2Fcotiza-seguro.com%2Fprevisionexequial%3Fsubid1%3D1-cce8gi1knp3c0kg2euag&tiba=Previsi%C3%B3n%20Exequial&async=1&fmt=3&is_vtc=1&random=1645973226&resp=GooglemKTybQhCsO&rmt_tld=1&ipr=y

142.250.74.3

200 OK

42 B

URL HTTP/2
www.google.no/pagead/1p-user-list/373414897/?random=1662814273208&cv=9&fst=1662811200000&num=1&bg=ffffff&guid=ON&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&gtm=2oa970&sendb=1&data=event%3Dgtag.config&frm=0&url=https%3A%2F%2Fcotiza-seguro.com%2Fprevisionexequial%3Fsubid1%3D1-cce8gi1knp3c0kg2euag&tiba=Previsi%C3%B3n%20Exequial&async=1&fmt=3&is_vtc=1&random=1645973226&resp=GooglemKTybQhCsO&rmt_tld=1&ipr=y
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
GIF image data, version 89a, 1 x 1\012- data
Size
42 B (42 bytes)
Hash
d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629

HTTP Headers

GET /pagead/1p-user-list/373414897/?random=1662814273208&cv=9&fst=1662811200000&num=1&bg=ffffff&guid=ON&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&gtm=2oa970&sendb=1&data=event%3Dgtag.config&frm=0&url=https%3A%2F%2Fcotiza-seguro.com%2Fprevisionexequial%3Fsubid1%3D1-cce8gi1knp3c0kg2euag&tiba=Previsi%C3%B3n%20Exequial&async=1&fmt=3&is_vtc=1&random=1645973226&resp=GooglemKTybQhCsO&rmt_tld=1&ipr=y HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cotiza-seguro.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sat, 10 Sep 2022 12:51:23 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
18d9c80e93810b52880aab445613e4b7
ca08ea7190fac815eae23eb6022d7f524694a518
6ed2db33b116fbb84b14f8509886515c5b9d8277437c8ac00b5735712f7f662f

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 10 Sep 2022 12:51:23 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

34.120.237.76

200 OK

8.3 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb150ddb5-18a6-405d-8041-cdea0c0e6a85.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
8.3 kB (8266 bytes)
Hash
d21a3e07583d9fad4104b6457f7915e7
fdc9453562f993e2545ca99731a7741e748b6082
8ea38264c82c6b544447079cc92eae70d0968a070ba39022af0e18c498916338

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb150ddb5-18a6-405d-8041-cdea0c0e6a85.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-length: 8266
x-amzn-requestid: 3411ec4b-ac18-4b4e-8876-c99b94d3a4a3
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YNitWEjhIAMFWpw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631bb188-4d9e496e7ff141b46748d850;Sampled=0
x-amzn-remapped-date: Fri, 09 Sep 2022 21:35:04 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P2
x-cache: Hit from cloudfront
x-amz-cf-id: vyV1_onImxuLNGp4UI1W5grcuVW3LHJFJjvmO0VXU-OYorF6RVcoDw==
via: 1.1 4dde8ec6d6c12741888c2d3a059d4a2e.cloudfront.net (CloudFront), 1.1 7d01bcfcfe27ce0b8979cf621dd081de.cloudfront.net (CloudFront), 1.1 google
date: Fri, 09 Sep 2022 21:50:11 GMT
age: 54077
etag: "fdc9453562f993e2545ca99731a7741e748b6082"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

cotiza-seguro.com/Resources/libraries/jQuery-UI/01_12_01/jquery-ui.js?cdv=57

66.35.110.90

200 OK

0 B

URL HTTP/2
cotiza-seguro.com/Resources/libraries/jQuery-UI/01_12_01/jquery-ui.js?cdv=57
IP
66.35.110.90:0
ASN
#14955 N-V-C

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /Resources/libraries/jQuery-UI/01_12_01/jquery-ui.js?cdv=57 HTTP/1.1
Host: cotiza-seguro.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cotiza-seguro.com/previsionexequial?subid1=1-cce8gi1knp3c0kg2euag
Cookie: dnn_IsMobile=False; language=en-US; .ASPXANONYMOUS=PeoI-JRIPxG-ZZZSnPedYHXJZ1m19NbvaUDopmU0BSxyJlnMRXBY8Re8QhXUWoMuV4uUDSOTvmRtBsJZpHimqnCylBoUO77wh2wU5pE3N74SPP5d0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public,max-age=31536000
content-type: application/javascript
content-encoding: br
last-modified: Mon, 01 Mar 2021 15:45:06 GMT
accept-ranges: bytes
etag: "28d55dab1ed71:0"
vary: Accept-Encoding
server: Microsoft-IIS/10.0
x-powered-by-plesk: PleskWin
x-xss-protection: 1; mode=block
access-control-allow-origin: *
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Authorization
access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS
date: Sat, 10 Sep 2022 12:51:21 GMT
X-Firefox-Spdy: h2

cotiza-seguro.com/Resources/libraries/jQuery/03_02_01/jquery.js?cdv=57

66.35.110.90

200 OK

0 B

URL HTTP/2
cotiza-seguro.com/Resources/libraries/jQuery/03_02_01/jquery.js?cdv=57
IP
66.35.110.90:0
ASN
#14955 N-V-C

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /Resources/libraries/jQuery/03_02_01/jquery.js?cdv=57 HTTP/1.1
Host: cotiza-seguro.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cotiza-seguro.com/previsionexequial?subid1=1-cce8gi1knp3c0kg2euag
Cookie: dnn_IsMobile=False; language=en-US; .ASPXANONYMOUS=PeoI-JRIPxG-ZZZSnPedYHXJZ1m19NbvaUDopmU0BSxyJlnMRXBY8Re8QhXUWoMuV4uUDSOTvmRtBsJZpHimqnCylBoUO77wh2wU5pE3N74SPP5d0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public,max-age=31536000
content-type: application/javascript
content-encoding: br
last-modified: Thu, 19 Jul 2018 00:34:46 GMT
accept-ranges: bytes
etag: "01764bf81ed41:0"
vary: Accept-Encoding
server: Microsoft-IIS/10.0
x-powered-by-plesk: PleskWin
x-xss-protection: 1; mode=block
access-control-allow-origin: *
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Authorization
access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS
date: Sat, 10 Sep 2022 12:51:21 GMT
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

JavaScript (28)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP