r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash d27590a1d3cbe1e9632b8ae92aaae3f4
202b34e8a0c3b88c8826fd56c6227b34f2cd6f46
6bcfa518476658128c1fb4ea2435c4e58531454cf97138dce7ece9def589aead
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6BCFA518476658128C1FB4EA2435C4E58531454CF97138DCE7ECE9DEF589AEAD"
Last-Modified: Wed, 16 Nov 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2195
Expires: Fri, 18 Nov 2022 03:54:44 GMT
Date: Fri, 18 Nov 2022 03:18:09 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash be1be806b5dca7facbb45a6c3db44652
7ae9380a2f3eca959fe6ff6b3832a17cffd12cf4
1f3338058f8e9cae5c9fdd733c74564312726b01c6efdcd628d851d0c99876b0
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4452
Cache-Control: max-age=116846
Content-Type: application/ocsp-response
Date: Fri, 18 Nov 2022 03:18:09 GMT
Etag: "63760d7b-1d7"
Expires: Sat, 19 Nov 2022 11:45:35 GMT
Last-Modified: Thu, 17 Nov 2022 10:31:23 GMT
Server: ECS (ska/F719)
X-Cache: HIT
Content-Length: 471
firefox.settings.services.mozilla.com/v1/
34.102.187.140200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 567df7db606cf5d0871aa5bc9311b6da
4263faac7cbab2fcaf6661911dcad5091c06be17
e9650e1fdc46fc8678708ddcc37ab369c7a6d50489a004be896f20c7a3a644b0
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Retry-After, Content-Length, Alert, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Fri, 18 Nov 2022 02:44:46 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 2003
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 4e84f361a3c81abc5d665a5f441452a8
7aa4b9cb0a7ba1daa514dbb48fe8e74fdf09b60d
04d64920cc8e6b096841938b0c1140889f5d7a04eabd440934a31f1c7ab90352
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "04D64920CC8E6B096841938B0C1140889F5D7A04EABD440934A31F1C7AB90352"
Last-Modified: Wed, 16 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8474
Expires: Fri, 18 Nov 2022 05:39:23 GMT
Date: Fri, 18 Nov 2022 03:18:09 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 67d5a988edcda47bc3b3b3f65d32b4b6
d4f0e0da8b3690cc7da925026d3414b68c7d954f
55e4848e3ec682e808ce7ee70950f86179c43af4f81926d826a95edfda395a78
GET /chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: fzgaG3QZ28P1FXKuVzI5supCU6K09+qz1boe1opq8I6qbt+itCPQ7EaDeMFHNRQfc4Ih6bTApmw=
x-amz-request-id: 4R1FFWB5GAYP5ZJW
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Fri, 18 Nov 2022 03:15:25 GMT
age: 164
last-modified: Fri, 30 Sep 2022 18:50:55 GMT
etag: "67d5a988edcda47bc3b3b3f65d32b4b6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
software.saadpetroleum.com/usuario/index.php?asd2assssdsws?
162.244.93.225301 Moved Permanently 707 B URL HTTP/1.1 software.saadpetroleum.com/usuario/index.php?asd2assssdsws?
IP 162.244.93.225:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF, LF line terminators
Hash 1304294c0823ca486542ba408ed761e3
b2a70fb2d810ca13985882e6981f33998823e83e
3bbe72f3baa8ec61de17a1d767fca58704769684b7abe9161d0c4eaf4c8f0982
GET /usuario/index.php?asd2assssdsws? HTTP/1.1
Host: software.saadpetroleum.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
content-type: text/html
content-length: 707
date: Fri, 18 Nov 2022 03:18:09 GMT
server: LiteSpeed
location: https://software.saadpetroleum.com/usuario/index.php?asd2assssdsws?
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 18 Nov 2022 03:18:09 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
34.102.187.140200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Retry-After, Content-Length, Alert, Cache-Control, ETag, Pragma, Expires, Backoff, Last-Modified
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Fri, 18 Nov 2022 02:44:49 GMT
cache-control: public,max-age=3600
age: 2000
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2
software.saadpetroleum.com/usuario/index.php?asd2assssdsws?
162.244.93.225200 OK 260 B URL HTTP/2 software.saadpetroleum.com/usuario/index.php?asd2assssdsws?
IP 162.244.93.225:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash 1c2d338b725a009ddc0a6d0664836002
19a7739583597a8c08e7f3658a8eb5792e2d5a88
bbe8cd076787f41767f5b47e68a1a0297d08b796bd1701e071013110652badb0
GET /usuario/index.php?asd2assssdsws? HTTP/1.1
Host: software.saadpetroleum.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
x-powered-by: PHP/7.3.33
set-cookie: real=OK; secure
content-type: text/html; charset=UTF-8
content-length: 260
content-encoding: br
vary: Accept-Encoding
date: Fri, 18 Nov 2022 03:18:09 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash c10055ce87434f700ff8b20e3be1f919
477b3c9f1da0c464282bb54572737e76b6e346da
4d78eb296876122e5ff40fcd7667adf1bf8a4b1ee4c8203c88a63ce8d7910a57
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5055
Cache-Control: max-age=112380
Content-Type: application/ocsp-response
Date: Fri, 18 Nov 2022 03:18:10 GMT
Etag: "6375f9af-1d7"
Expires: Sat, 19 Nov 2022 10:31:10 GMT
Last-Modified: Thu, 17 Nov 2022 09:06:55 GMT
Server: ECS (ska/F719)
X-Cache: HIT
Content-Length: 471
software.saadpetroleum.com/favicon.ico
162.244.93.225500 Internal Server Error 0 B URL HTTP/2 software.saadpetroleum.com/favicon.ico
IP 162.244.93.225:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /favicon.ico HTTP/1.1
Host: software.saadpetroleum.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://software.saadpetroleum.com/usuario/index.php?asd2assssdsws?
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 500 Internal Server Error
x-powered-by: PHP/7.3.33
content-type: text/html; charset=UTF-8
content-length: 0
date: Fri, 18 Nov 2022 03:18:10 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
push.services.mozilla.com/
35.86.38.2101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 35.86.38.2:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: gZzXC2sniwQbcOewEfZ2cg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: V36uBxujqkDkDQ2eFK3WEWleask=
software.saadpetroleum.com/usuario/erty65ytfhgdfsw45rty34erfd/8356ae4687b73bb37a85dd9bcc5a9b51?asd2assssdsws?
162.244.93.225301 Moved Permanently 707 B URL HTTP/2 software.saadpetroleum.com/usuario/erty65ytfhgdfsw45rty34erfd/8356ae4687b73bb37a85dd9bcc5a9b51?asd2assssdsws?
IP 162.244.93.225:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF, LF line terminators
Hash 1304294c0823ca486542ba408ed761e3
b2a70fb2d810ca13985882e6981f33998823e83e
3bbe72f3baa8ec61de17a1d767fca58704769684b7abe9161d0c4eaf4c8f0982
Analyzer Verdict Alert fortinet Phishing
GET /usuario/erty65ytfhgdfsw45rty34erfd/8356ae4687b73bb37a85dd9bcc5a9b51?asd2assssdsws? HTTP/1.1
Host: software.saadpetroleum.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://software.saadpetroleum.com/usuario/index.php?asd2assssdsws?
Cookie: real=OK
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 301 Moved Permanently
content-type: text/html
content-length: 707
date: Fri, 18 Nov 2022 03:18:11 GMT
server: LiteSpeed
location: https://software.saadpetroleum.com/usuario/erty65ytfhgdfsw45rty34erfd/8356ae4687b73bb37a85dd9bcc5a9b51/?asd2assssdsws?
X-Firefox-Spdy: h2
software.saadpetroleum.com/usuario/erty65ytfhgdfsw45rty34erfd/8356ae4687b73bb37a85dd9bcc5a9b51/?asd2assssdsws?
162.244.93.225302 Found 0 B URL HTTP/2 software.saadpetroleum.com/usuario/erty65ytfhgdfsw45rty34erfd/8356ae4687b73bb37a85dd9bcc5a9b51/?asd2assssdsws?
IP 162.244.93.225:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /usuario/erty65ytfhgdfsw45rty34erfd/8356ae4687b73bb37a85dd9bcc5a9b51/?asd2assssdsws? HTTP/1.1
Host: software.saadpetroleum.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://software.saadpetroleum.com/usuario/index.php?asd2assssdsws?
Connection: keep-alive
Cookie: real=OK
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 302 Found
x-powered-by: PHP/7.3.33
set-cookie: bid=8356ae4687b73bb37a85dd9bcc5a9b51; expires=Sun, 18-Dec-2022 03:18:11 GMT; Max-Age=2592000; path=/; secure
location: login/?asd2assssdsws?
content-type: text/html; charset=UTF-8
content-length: 0
date: Fri, 18 Nov 2022 03:18:11 GMT
server: LiteSpeed
cache-control: no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash f7c5da16d7c4384a4c2454d6b0d84710
69fd80fdf2f1ce27b25617589c867cd1c6e5d2ab
a80d1b813523e44d2e59d7c2edd6919c0354873637bb15bccc88f66f5c24e05d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A80D1B813523E44D2E59D7C2EDD6919C0354873637BB15BCCC88F66F5C24E05D"
Last-Modified: Thu, 17 Nov 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7782
Expires: Fri, 18 Nov 2022 05:27:53 GMT
Date: Fri, 18 Nov 2022 03:18:11 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash f7c5da16d7c4384a4c2454d6b0d84710
69fd80fdf2f1ce27b25617589c867cd1c6e5d2ab
a80d1b813523e44d2e59d7c2edd6919c0354873637bb15bccc88f66f5c24e05d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A80D1B813523E44D2E59D7C2EDD6919C0354873637BB15BCCC88F66F5C24E05D"
Last-Modified: Thu, 17 Nov 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7782
Expires: Fri, 18 Nov 2022 05:27:53 GMT
Date: Fri, 18 Nov 2022 03:18:11 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash f7c5da16d7c4384a4c2454d6b0d84710
69fd80fdf2f1ce27b25617589c867cd1c6e5d2ab
a80d1b813523e44d2e59d7c2edd6919c0354873637bb15bccc88f66f5c24e05d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A80D1B813523E44D2E59D7C2EDD6919C0354873637BB15BCCC88F66F5C24E05D"
Last-Modified: Thu, 17 Nov 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7782
Expires: Fri, 18 Nov 2022 05:27:53 GMT
Date: Fri, 18 Nov 2022 03:18:11 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F92501a28-163f-4c6e-aed7-d31c29354d1e.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F92501a28-163f-4c6e-aed7-d31c29354d1e.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 032386e5c9dffff1ba1ee5e8a322d438
dd4fd6c803a9b333bace9a541c6bd183d0c56bb9
0e9f559a0aa7e114c5810a27ba243c0da7b44dc0bf7aec2b7ab32b8f0e2b536c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F92501a28-163f-4c6e-aed7-d31c29354d1e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11667
x-amzn-requestid: ae092a0a-1709-4497-9f07-0348a28d2491
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bqZOIEN7oAMFlaA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637408c0-5ac595df302a8f1d3703ad8d;Sampled=0
x-amzn-remapped-date: Tue, 15 Nov 2022 21:46:40 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: c_SJMaV3uYSUysTSOFV--jQqDUxw-fBp8cXWWUZw9vUjt0d6PsOpxA==
via: 1.1 0bb842bd5868b86440983b936bb0adee.cloudfront.net (CloudFront), 1.1 cd64decb1403270c914848213601a674.cloudfront.net (CloudFront), 1.1 google
date: Thu, 17 Nov 2022 18:45:44 GMT
age: 30747
etag: "dd4fd6c803a9b333bace9a541c6bd183d0c56bb9"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3007b4f3-f5db-4eb7-b71a-f9f854ae287e.jpeg
34.120.237.76200 OK 7.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3007b4f3-f5db-4eb7-b71a-f9f854ae287e.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b2b393e36ee2c9649d90db136aa49542
e88c5832ff0c49bab181d948c3a510d88343bb6f
8b524701df43bff56ac52a021ff0fbd964e06f00e84b4861aa557ec6ae6b4ffd
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3007b4f3-f5db-4eb7-b71a-f9f854ae287e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7631
x-amzn-requestid: b47e545d-1fb6-4a62-ab45-28cdb9d3f0b6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bw-vQE0XoAMFS3w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6376ab2e-56365eed3d4c082c53b172b3;Sampled=0
x-amzn-remapped-date: Thu, 17 Nov 2022 21:44:14 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: qpoQa1Lhe-h27dGooXDCtujesSTg7Tb0Ov-PNLnUP0288ZofwHxkhQ==
via: 1.1 446313511980eb02f28ff5a9a4147c0a.cloudfront.net (CloudFront), 1.1 b36bf2c460ac693ce304817aed073112.cloudfront.net (CloudFront), 1.1 google
date: Thu, 17 Nov 2022 21:52:40 GMT
age: 19531
etag: "e88c5832ff0c49bab181d948c3a510d88343bb6f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd3a5d24e-84d5-4c9f-9fda-c8fafaeef64c.jpeg
34.120.237.76200 OK 9.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd3a5d24e-84d5-4c9f-9fda-c8fafaeef64c.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 6c07ca17dc4187cb964dcf51c7d4c803
3ab61331361e2755fa8339ac3131eceff4f535c1
5f9262f80a49bf673803568d17a290277d1235efbe7462fea0e6f0d5c1edaf5a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd3a5d24e-84d5-4c9f-9fda-c8fafaeef64c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9345
x-amzn-requestid: 986b938b-2dfa-4777-80c6-819a29b65e3d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bw_FsFSsoAMFmEw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6376abbd-5dc3705f3a14a60d7bd11c35;Sampled=0
x-amzn-remapped-date: Thu, 17 Nov 2022 21:46:37 GMT
x-amz-cf-pop: SFO5-P2, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: u40g9pH7-OUaPF52MPmWuColzfcBybhSdCFY_YxQLnvfW0GzqMd50Q==
via: 1.1 332ef4544bd8b531e8f11abaa4197c08.cloudfront.net (CloudFront), 1.1 32d624dbeb2a8b7f24dbe49007e37c90.cloudfront.net (CloudFront), 1.1 google
date: Thu, 17 Nov 2022 21:52:40 GMT
age: 19531
etag: "3ab61331361e2755fa8339ac3131eceff4f535c1"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F84053cb2-edec-465e-8700-6af61bae8236.jpeg
34.120.237.76200 OK 8.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F84053cb2-edec-465e-8700-6af61bae8236.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 676b1603008690786aa36dc3113b7581
cbdc425467a5d41aba5e8e5c54354b4f03cd194a
7e5e7bf695ff31df6c97e502a44f4fa9197c6579b0c7a7c590457ea067d1cf1e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F84053cb2-edec-465e-8700-6af61bae8236.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8155
x-amzn-requestid: 5650af50-eb93-47d9-8322-8a2e263e12ea
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bw-7vFU5IAMFYGw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6376ab7e-759bbd5b5a22e07c1c181c0a;Sampled=0
x-amzn-remapped-date: Thu, 17 Nov 2022 21:45:34 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: VikBDm5_Bqbs0gLFkhbT6H3i6t57bnC0Xq-gkiJBILQ8Ynw_7RqWNA==
via: 1.1 c34da255183aa208dd1c722ff211f9b2.cloudfront.net (CloudFront), 1.1 5954c6394458ffb44c970b3819d7ff2a.cloudfront.net (CloudFront), 1.1 google
date: Thu, 17 Nov 2022 21:55:43 GMT
etag: "cbdc425467a5d41aba5e8e5c54354b4f03cd194a"
content-type: image/jpeg
age: 19348
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1d9d6315-de31-43b3-8c19-dc3528c7eefe.jpeg
34.120.237.76200 OK 5.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1d9d6315-de31-43b3-8c19-dc3528c7eefe.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 158a07cdb0174c0cf0c2473cb069a459
46753b0476f8a272a047b07070db272a0fd3b42e
40bacc15755d920085e52af0bc9f6e8eac0379a31765f6ba72cf53546e296a2e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1d9d6315-de31-43b3-8c19-dc3528c7eefe.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5917
x-amzn-requestid: 47ec37aa-10ef-4e35-a76c-301d34e4a102
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bw9VaHt9oAMFpIg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6376a8ef-6eb9776b4df9facd0f19c974;Sampled=0
x-amzn-remapped-date: Thu, 17 Nov 2022 21:34:39 GMT
x-amz-cf-pop: SEA73-P2, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: qReov2_mDTOantzcbI8dBALwKBsq58MGL2yHuJwk0DxNL7um6T_M1g==
via: 1.1 76dcc62b68091cc715d50b5017be77fc.cloudfront.net (CloudFront), 1.1 32d624dbeb2a8b7f24dbe49007e37c90.cloudfront.net (CloudFront), 1.1 google
date: Thu, 17 Nov 2022 21:55:57 GMT
age: 19334
etag: "46753b0476f8a272a047b07070db272a0fd3b42e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F44ba3263-9329-4559-836c-276171e025ed.jpeg
34.120.237.76200 OK 6.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F44ba3263-9329-4559-836c-276171e025ed.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 86031fc92c8180ae6e705b264f22a3db
218a3019acb40a251de89c66b42cba265f4554e8
b3f4c1825d35cae0c3a5f4de5ea26a9175a4ae03b16738e909353365acd3a73b
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F44ba3263-9329-4559-836c-276171e025ed.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6637
x-amzn-requestid: b821413a-b325-40bb-9b89-30707f71e661
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bw-7vETlIAMFTMQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6376ab7e-1f1856e545d5c6521385a4de;Sampled=0
x-amzn-remapped-date: Thu, 17 Nov 2022 21:45:34 GMT
x-amz-cf-pop: SFO5-P2, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: xe8OcDgFv6akQwAdoXVtB6Dp288li05jmMJlshlERoQeENkABsmDRQ==
via: 1.1 b04d82bf2bc15ab146955a862be263f0.cloudfront.net (CloudFront), 1.1 cd858042f70b416ca05e042acf3908a4.cloudfront.net (CloudFront), 1.1 google
date: Thu, 17 Nov 2022 21:52:40 GMT
age: 19531
etag: "218a3019acb40a251de89c66b42cba265f4554e8"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
software.saadpetroleum.com/usuario/bower_components/jquery/dist/jquery.min.js
162.244.93.225200 OK 30 kB URL HTTP/2 software.saadpetroleum.com/usuario/bower_components/jquery/dist/jquery.min.js
IP 162.244.93.225:0
File type ASCII text, with very long lines (32058)
Hash 565a9660631a8e6a629374b776b4564e
1ef583810a3b446dbfb2e646c8dd04baada714fc
36b44867606f8e730433691461a559f64238444a406d1c3e078f9336c7314dbe
Analyzer Verdict Alert fortinet Phishing
GET /usuario/bower_components/jquery/dist/jquery.min.js HTTP/1.1
Host: software.saadpetroleum.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://software.saadpetroleum.com/usuario/erty65ytfhgdfsw45rty34erfd/8356ae4687b73bb37a85dd9bcc5a9b51/login/?asd2assssdsws?
Cookie: real=OK; bid=8356ae4687b73bb37a85dd9bcc5a9b51
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 25 Nov 2022 03:18:12 GMT
content-type: application/javascript
last-modified: Mon, 05 Jun 2017 20:55:06 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 29485
date: Fri, 18 Nov 2022 03:18:12 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
software.saadpetroleum.com/usuario/bower_components/ua-parser-js/dist/ua-parser.min.js
162.244.93.225200 OK 6.0 kB URL HTTP/2 software.saadpetroleum.com/usuario/bower_components/ua-parser-js/dist/ua-parser.min.js
IP 162.244.93.225:0
File type Unicode text, UTF-8 text, with very long lines (16817)
Hash 9bec37e7811ee6757a670c22df468bd5
d463c4cd28b1488089d1f1558724cbfc5dca65b4
bd634ca98e7dc66830b1a0a2143beb00e4ec55cc75155d3ed8ee0bd8bf1920c4
Analyzer Verdict Alert fortinet Phishing
GET /usuario/bower_components/ua-parser-js/dist/ua-parser.min.js HTTP/1.1
Host: software.saadpetroleum.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://software.saadpetroleum.com/usuario/erty65ytfhgdfsw45rty34erfd/8356ae4687b73bb37a85dd9bcc5a9b51/login/?asd2assssdsws?
Cookie: real=OK; bid=8356ae4687b73bb37a85dd9bcc5a9b51
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 25 Nov 2022 03:18:12 GMT
content-type: application/javascript
last-modified: Fri, 13 Oct 2017 01:16:24 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 5967
date: Fri, 18 Nov 2022 03:18:12 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
software.saadpetroleum.com/usuario/bower_components/font-awesome/css/font-awesome.min.css
162.244.93.225200 OK 6.7 kB URL HTTP/2 software.saadpetroleum.com/usuario/bower_components/font-awesome/css/font-awesome.min.css
IP 162.244.93.225:0
File type ASCII text, with very long lines (30837)
Hash 97c6ce9b4936f66aa388ad33c39aba2d
3f14a7e78fbb4935cf35c20779dc2035531849a9
1eea453c424793fc56ef14093c10b373e3ca8388a70e847394e8084048c5ce38
GET /usuario/bower_components/font-awesome/css/font-awesome.min.css HTTP/1.1
Host: software.saadpetroleum.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://software.saadpetroleum.com/usuario/erty65ytfhgdfsw45rty34erfd/8356ae4687b73bb37a85dd9bcc5a9b51/login/?asd2assssdsws?
Cookie: real=OK; bid=8356ae4687b73bb37a85dd9bcc5a9b51
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 25 Nov 2022 03:18:12 GMT
content-type: text/css
last-modified: Sun, 09 Apr 2017 21:29:24 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 6658
date: Fri, 18 Nov 2022 03:18:12 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
software.saadpetroleum.com/usuario/core/form/core_form.js
162.244.93.225200 OK 4.1 kB URL HTTP/2 software.saadpetroleum.com/usuario/core/form/core_form.js
IP 162.244.93.225:0
File type Unicode text, UTF-8 text, with CRLF line terminators
Hash f9bbc250963f7ec45a2bdaec70aff29a
311f6b3a7bb6aba2f1d0a12b6198668a4e9423e4
e3d5120a3ed36e93e3580bf959a13cabc1b7117e235228885d37968997192c9d
Analyzer Verdict Alert fortinet Phishing
GET /usuario/core/form/core_form.js HTTP/1.1
Host: software.saadpetroleum.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://software.saadpetroleum.com/usuario/erty65ytfhgdfsw45rty34erfd/8356ae4687b73bb37a85dd9bcc5a9b51/login/?asd2assssdsws?
Cookie: real=OK; bid=8356ae4687b73bb37a85dd9bcc5a9b51
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 25 Nov 2022 03:18:12 GMT
content-type: application/javascript
last-modified: Mon, 30 Aug 2021 20:36:30 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 4118
date: Fri, 18 Nov 2022 03:18:12 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
software.saadpetroleum.com/usuario/core/token/core_token.js
162.244.93.225200 OK 1.6 kB URL HTTP/2 software.saadpetroleum.com/usuario/core/token/core_token.js
IP 162.244.93.225:0
Hash a9a1dc4eaaa4c0299001f2318f3e0e70
91ab9ab3d6cb7e9709a1f37137dba1a0f05bd51e
ab33564696ba1f03955c450504f046dc6d1a86d4d58ac3cbdf0ed9086d10133e
Analyzer Verdict Alert fortinet Phishing
GET /usuario/core/token/core_token.js HTTP/1.1
Host: software.saadpetroleum.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://software.saadpetroleum.com/usuario/erty65ytfhgdfsw45rty34erfd/8356ae4687b73bb37a85dd9bcc5a9b51/login/?asd2assssdsws?
Cookie: real=OK; bid=8356ae4687b73bb37a85dd9bcc5a9b51
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 25 Nov 2022 03:18:12 GMT
content-type: application/javascript
last-modified: Thu, 02 Sep 2021 23:15:14 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1600
date: Fri, 18 Nov 2022 03:18:12 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
software.saadpetroleum.com/usuario/core/form/core_form.css
162.244.93.225200 OK 683 B URL HTTP/2 software.saadpetroleum.com/usuario/core/form/core_form.css
IP 162.244.93.225:0
Hash e9b9ddd679a4cccd0bf47df65c6ad231
0d0f8bf070996fe8c26aa8b9f0fa246179a5ce41
80b62ba008aa8eb29eba5d9d4f381d8c5be6e9e4c153676b7d3bfbfe23ec121c
GET /usuario/core/form/core_form.css HTTP/1.1
Host: software.saadpetroleum.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://software.saadpetroleum.com/usuario/erty65ytfhgdfsw45rty34erfd/8356ae4687b73bb37a85dd9bcc5a9b51/login/?asd2assssdsws?
Cookie: real=OK; bid=8356ae4687b73bb37a85dd9bcc5a9b51
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 25 Nov 2022 03:18:12 GMT
content-type: text/css
last-modified: Mon, 24 Aug 2020 08:52:30 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 683
date: Fri, 18 Nov 2022 03:18:12 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
software.saadpetroleum.com/usuario/login/form/css.css
162.244.93.225200 OK 177 B URL HTTP/2 software.saadpetroleum.com/usuario/login/form/css.css
IP 162.244.93.225:0
Hash e90727acde42ceb4e7babad45aca6b1b
409c8554809353a38cf4f9c216981dfb3509e8ff
4d01bebf1a556a8e0af2c607bc253f62cbab5d2114f7c426ba2b94598ca6d3a1
GET /usuario/login/form/css.css HTTP/1.1
Host: software.saadpetroleum.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://software.saadpetroleum.com/usuario/erty65ytfhgdfsw45rty34erfd/8356ae4687b73bb37a85dd9bcc5a9b51/login/?asd2assssdsws?
Cookie: real=OK; bid=8356ae4687b73bb37a85dd9bcc5a9b51
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 25 Nov 2022 03:18:12 GMT
content-type: text/css
last-modified: Sat, 01 Feb 2020 14:43:46 GMT
accept-ranges: bytes
content-length: 177
date: Fri, 18 Nov 2022 03:18:12 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
software.saadpetroleum.com/usuario/login/bbva.critical.lc-20200115-160521-lc.min.css
162.244.93.225200 OK 3.3 kB URL HTTP/2 software.saadpetroleum.com/usuario/login/bbva.critical.lc-20200115-160521-lc.min.css
IP 162.244.93.225:0
File type ASCII text, with very long lines (645)
Hash 1c913a696ed478263e3a719715d88fda
09b89917b7e6cbcc03e047d6d2848f8fcdee8d68
796c150cee073169f9186dbbb0b18eaf7e21136a7496d320ea631fd7bd8d41f7
GET /usuario/login/bbva.critical.lc-20200115-160521-lc.min.css HTTP/1.1
Host: software.saadpetroleum.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://software.saadpetroleum.com/usuario/erty65ytfhgdfsw45rty34erfd/8356ae4687b73bb37a85dd9bcc5a9b51/login/?asd2assssdsws?
Cookie: real=OK; bid=8356ae4687b73bb37a85dd9bcc5a9b51
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 25 Nov 2022 03:18:12 GMT
content-type: text/css
last-modified: Sat, 01 Feb 2020 13:52:28 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3257
date: Fri, 18 Nov 2022 03:18:12 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
software.saadpetroleum.com/usuario/login/bbva.common.lc-20200115-160521-lc.min.css
162.244.93.225200 OK 1.8 kB URL HTTP/2 software.saadpetroleum.com/usuario/login/bbva.common.lc-20200115-160521-lc.min.css
IP 162.244.93.225:0
Hash f6d0b183e408f1c9c504d0ba6b49b2df
26a8d77fcbe75948f48cb06614b707e293851272
1ed82a37890f63c49905d73920d5b5169673ef4ea10ef06a8143a74bcc4d9067
GET /usuario/login/bbva.common.lc-20200115-160521-lc.min.css HTTP/1.1
Host: software.saadpetroleum.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://software.saadpetroleum.com/usuario/erty65ytfhgdfsw45rty34erfd/8356ae4687b73bb37a85dd9bcc5a9b51/login/?asd2assssdsws?
Cookie: real=OK; bid=8356ae4687b73bb37a85dd9bcc5a9b51
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 25 Nov 2022 03:18:12 GMT
content-type: text/css
last-modified: Sat, 01 Feb 2020 12:13:44 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1839
date: Fri, 18 Nov 2022 03:18:12 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
software.saadpetroleum.com/usuario/login/bbva.fonts.lc-20200115-160521-lc.min.css
162.244.93.225200 OK 1.0 kB URL HTTP/2 software.saadpetroleum.com/usuario/login/bbva.fonts.lc-20200115-160521-lc.min.css
IP 162.244.93.225:0
File type assembler source, ASCII text
Hash 95c91ab26e09b42a420912b6c5583173
b61ebd228ea7d3fa34e0dc01a59efb6b3fa319c7
18c1fdf8591d58b4790732a45b23b5b55549372b45cf5bac88f7d0419a5e4b08
GET /usuario/login/bbva.fonts.lc-20200115-160521-lc.min.css HTTP/1.1
Host: software.saadpetroleum.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://software.saadpetroleum.com/usuario/erty65ytfhgdfsw45rty34erfd/8356ae4687b73bb37a85dd9bcc5a9b51/login/?asd2assssdsws?
Cookie: real=OK; bid=8356ae4687b73bb37a85dd9bcc5a9b51
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 25 Nov 2022 03:18:12 GMT
content-type: text/css
last-modified: Sat, 01 Feb 2020 14:03:56 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1042
date: Fri, 18 Nov 2022 03:18:12 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
software.saadpetroleum.com/usuario/login/bbva.lightbox.lc-20200115-160521-lc.min.css
162.244.93.225200 OK 1.3 kB URL HTTP/2 software.saadpetroleum.com/usuario/login/bbva.lightbox.lc-20200115-160521-lc.min.css
IP 162.244.93.225:0
File type ASCII text, with very long lines (458)
Hash b036ade946f3fc17d5bf5c7289d8b06d
56c039732f08776798f09df58a928376d3c95f0c
88c98abe0ff4c6667ed40205df21a9e8b1b25be469924cb92d46401eaef326a0
GET /usuario/login/bbva.lightbox.lc-20200115-160521-lc.min.css HTTP/1.1
Host: software.saadpetroleum.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://software.saadpetroleum.com/usuario/erty65ytfhgdfsw45rty34erfd/8356ae4687b73bb37a85dd9bcc5a9b51/login/?asd2assssdsws?
Cookie: real=OK; bid=8356ae4687b73bb37a85dd9bcc5a9b51
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 25 Nov 2022 03:18:12 GMT
content-type: text/css
last-modified: Sat, 01 Feb 2020 12:13:44 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1278
date: Fri, 18 Nov 2022 03:18:12 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
software.saadpetroleum.com/usuario/login/bbva.radiobutton.lc-20200115-160521-lc.min.css
162.244.93.225200 OK 293 B URL HTTP/2 software.saadpetroleum.com/usuario/login/bbva.radiobutton.lc-20200115-160521-lc.min.css
IP 162.244.93.225:0
Hash 0e3710fc7f521105b6944bbbde006606
7373afa691d778574a6524d993095b2b547a9a3c
afc4a22680d1a3082e20086aa843507033a2bb2513acb17f8f16c97df5616be8
GET /usuario/login/bbva.radiobutton.lc-20200115-160521-lc.min.css HTTP/1.1
Host: software.saadpetroleum.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://software.saadpetroleum.com/usuario/erty65ytfhgdfsw45rty34erfd/8356ae4687b73bb37a85dd9bcc5a9b51/login/?asd2assssdsws?
Cookie: real=OK; bid=8356ae4687b73bb37a85dd9bcc5a9b51
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 25 Nov 2022 03:18:12 GMT
content-type: text/css
last-modified: Sat, 01 Feb 2020 12:13:44 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 293
date: Fri, 18 Nov 2022 03:18:12 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
software.saadpetroleum.com/usuario/login/bbva.sectionTitle.lc-20200115-160521-lc.min.css
162.244.93.225200 OK 255 B URL HTTP/2 software.saadpetroleum.com/usuario/login/bbva.sectionTitle.lc-20200115-160521-lc.min.css
IP 162.244.93.225:0
Hash 45e82a6d9ea811d03e61f24df3697a88
5996129c028ad2cd93db440d44462783801d03ef
97965ac874170ecf5dfe8374c46d9777779d00645619fd986ec21d4298fe7ba1
GET /usuario/login/bbva.sectionTitle.lc-20200115-160521-lc.min.css HTTP/1.1
Host: software.saadpetroleum.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://software.saadpetroleum.com/usuario/erty65ytfhgdfsw45rty34erfd/8356ae4687b73bb37a85dd9bcc5a9b51/login/?asd2assssdsws?
Cookie: real=OK; bid=8356ae4687b73bb37a85dd9bcc5a9b51
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 25 Nov 2022 03:18:12 GMT
content-type: text/css
last-modified: Sat, 01 Feb 2020 12:13:44 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 255
date: Fri, 18 Nov 2022 03:18:12 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
software.saadpetroleum.com/usuario/login/bbva.videoLink.lc-20200115-160521-lc.min.css
162.244.93.225200 OK 388 B URL HTTP/2 software.saadpetroleum.com/usuario/login/bbva.videoLink.lc-20200115-160521-lc.min.css
IP 162.244.93.225:0
Hash 82d80584d860563fa1090a165c77a68d
34f73f7c36442b64683c2dfeb46b8a8b9220b198
4a6b6689caed0271493ef7bd5bf864d15b76905799859fa550b47ab012b4a04c
GET /usuario/login/bbva.videoLink.lc-20200115-160521-lc.min.css HTTP/1.1
Host: software.saadpetroleum.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://software.saadpetroleum.com/usuario/erty65ytfhgdfsw45rty34erfd/8356ae4687b73bb37a85dd9bcc5a9b51/login/?asd2assssdsws?
Cookie: real=OK; bid=8356ae4687b73bb37a85dd9bcc5a9b51
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 25 Nov 2022 03:18:12 GMT
content-type: text/css
last-modified: Sat, 01 Feb 2020 12:13:44 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 388
date: Fri, 18 Nov 2022 03:18:12 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
software.saadpetroleum.com/usuario/login/bbva.iframe.lc-20200115-160521-lc.min.css
162.244.93.225200 OK 265 B URL HTTP/2 software.saadpetroleum.com/usuario/login/bbva.iframe.lc-20200115-160521-lc.min.css
IP 162.244.93.225:0
Hash 72ec593b0782e2fae13e05e98e41b5a3
09582a87921cc752ef78a872961ff493c5c4e187
04ed14bad5df2a45593a3f46b8f538821f874c119b62c74b3b5cd76ca0a00a0a
GET /usuario/login/bbva.iframe.lc-20200115-160521-lc.min.css HTTP/1.1
Host: software.saadpetroleum.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://software.saadpetroleum.com/usuario/erty65ytfhgdfsw45rty34erfd/8356ae4687b73bb37a85dd9bcc5a9b51/login/?asd2assssdsws?
Cookie: real=OK; bid=8356ae4687b73bb37a85dd9bcc5a9b51
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 25 Nov 2022 03:18:12 GMT
content-type: text/css
last-modified: Sat, 01 Feb 2020 12:13:44 GMT
accept-ranges: bytes
content-length: 265
date: Fri, 18 Nov 2022 03:18:12 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
software.saadpetroleum.com/usuario/erty65ytfhgdfsw45rty34erfd/8356ae4687b73bb37a85dd9bcc5a9b51/login/?asd2assssdsws?
162.244.93.225200 OK 14 kB URL HTTP/2 software.saadpetroleum.com/usuario/erty65ytfhgdfsw45rty34erfd/8356ae4687b73bb37a85dd9bcc5a9b51/login/?asd2assssdsws?
IP 162.244.93.225:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (786)
Hash 4c69a1a9dd8ac2fa1dd84d343f8c9588
d97b8bdcd2e6b898248e76fef0e89a0d7c43c165
b564102e2fe283a30ba6fbc52a075e13d894bd95fd8fd40c98bd94eb1ea712b6
GET /usuario/erty65ytfhgdfsw45rty34erfd/8356ae4687b73bb37a85dd9bcc5a9b51/login/?asd2assssdsws? HTTP/1.1
Host: software.saadpetroleum.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://software.saadpetroleum.com/usuario/index.php?asd2assssdsws?
Connection: keep-alive
Cookie: real=OK; bid=8356ae4687b73bb37a85dd9bcc5a9b51
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
x-powered-by: PHP/7.3.33
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
content-type: text/html; charset=UTF-8
content-encoding: br
vary: Accept-Encoding
date: Fri, 18 Nov 2022 03:18:12 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
software.saadpetroleum.com/usuario/login/bbva.header.lc-20200115-160521-lc.min.css
162.244.93.225200 OK 1.7 kB URL HTTP/2 software.saadpetroleum.com/usuario/login/bbva.header.lc-20200115-160521-lc.min.css
IP 162.244.93.225:0
File type ASCII text, with very long lines (617)
Hash da64b019c9091d4da96b32c0ed506feb
8b28cb6fd7ca3ce12511ef132ff274a1d2944a68
8c8992c43e5cad7ddbff66ca1e64ed1e1730c1498fda89dfe8754652e57b5729
GET /usuario/login/bbva.header.lc-20200115-160521-lc.min.css HTTP/1.1
Host: software.saadpetroleum.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://software.saadpetroleum.com/usuario/erty65ytfhgdfsw45rty34erfd/8356ae4687b73bb37a85dd9bcc5a9b51/login/?asd2assssdsws?
Cookie: real=OK; bid=8356ae4687b73bb37a85dd9bcc5a9b51
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 25 Nov 2022 03:18:12 GMT
content-type: text/css
last-modified: Sat, 01 Feb 2020 12:13:44 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1706
date: Fri, 18 Nov 2022 03:18:12 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
software.saadpetroleum.com/usuario/login/bbva.mainNavigation.lc-20200115-160521-lc.min.css
162.244.93.225200 OK 677 B URL HTTP/2 software.saadpetroleum.com/usuario/login/bbva.mainNavigation.lc-20200115-160521-lc.min.css
IP 162.244.93.225:0
File type ASCII text, with very long lines (339)
Hash eb049ebd609ad40dac53b832b47e76c3
24ac1bc637771249c1732a12321f23b2292b0068
f5cdfa73df6733e26059eb1c7ce3fce65b0eb55f9817b927ad7888d73448c15a
GET /usuario/login/bbva.mainNavigation.lc-20200115-160521-lc.min.css HTTP/1.1
Host: software.saadpetroleum.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://software.saadpetroleum.com/usuario/erty65ytfhgdfsw45rty34erfd/8356ae4687b73bb37a85dd9bcc5a9b51/login/?asd2assssdsws?
Cookie: real=OK; bid=8356ae4687b73bb37a85dd9bcc5a9b51
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 25 Nov 2022 03:18:12 GMT
content-type: text/css
last-modified: Sat, 01 Feb 2020 12:13:44 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 677
date: Fri, 18 Nov 2022 03:18:12 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
software.saadpetroleum.com/usuario/login/bbva.searchbar.lc-20200115-160521-lc.min.css
162.244.93.225200 OK 1.4 kB URL HTTP/2 software.saadpetroleum.com/usuario/login/bbva.searchbar.lc-20200115-160521-lc.min.css
IP 162.244.93.225:0
File type ASCII text, with very long lines (349)
Hash 1367131cbef6f939af00780976f0116b
41076175e7d2aa73037e15c4beeaf1d0fc06be71
75c2b929bc18e90da712d6d69083e741bacc33ca5f84fa340956f01c3b0d4b05
GET /usuario/login/bbva.searchbar.lc-20200115-160521-lc.min.css HTTP/1.1
Host: software.saadpetroleum.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://software.saadpetroleum.com/usuario/erty65ytfhgdfsw45rty34erfd/8356ae4687b73bb37a85dd9bcc5a9b51/login/?asd2assssdsws?
Cookie: real=OK; bid=8356ae4687b73bb37a85dd9bcc5a9b51
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 25 Nov 2022 03:18:12 GMT
content-type: text/css
last-modified: Sat, 01 Feb 2020 12:13:44 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1373
date: Fri, 18 Nov 2022 03:18:12 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
software.saadpetroleum.com/usuario/login/bbva.megamenu.lc-20200115-160521-lc.min.css
162.244.93.225200 OK 1.9 kB URL HTTP/2 software.saadpetroleum.com/usuario/login/bbva.megamenu.lc-20200115-160521-lc.min.css
IP 162.244.93.225:0
File type ASCII text, with very long lines (316)
Hash 28f497f33e9403dc40d102f7c8677cfb
b3dbf1bc7f7b63c2301d61b21b44905317a27476
c1887ef21d586b1eb9a436bbc07546eef7c09c3b2089e29a67fbf476b4d5659a
GET /usuario/login/bbva.megamenu.lc-20200115-160521-lc.min.css HTTP/1.1
Host: software.saadpetroleum.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://software.saadpetroleum.com/usuario/erty65ytfhgdfsw45rty34erfd/8356ae4687b73bb37a85dd9bcc5a9b51/login/?asd2assssdsws?
Cookie: real=OK; bid=8356ae4687b73bb37a85dd9bcc5a9b51
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 25 Nov 2022 03:18:12 GMT
content-type: text/css
last-modified: Sat, 01 Feb 2020 12:13:44 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1912
date: Fri, 18 Nov 2022 03:18:12 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
software.saadpetroleum.com/usuario/login/bbva.accordion.lc-20200115-160521-lc.min.css
162.244.93.225200 OK 1.1 kB URL HTTP/2 software.saadpetroleum.com/usuario/login/bbva.accordion.lc-20200115-160521-lc.min.css
IP 162.244.93.225:0
File type ASCII text, with very long lines (503)
Hash 5b3955e0aa702813cb34c572bc0acf54
32a515109b4c3a52ed73f41d1324e5cc85149ad9
24a2cc0d9b78dffc5b3c74c70659c8fe0d57c9783b668ee2adfa4f98f8d271e7
GET /usuario/login/bbva.accordion.lc-20200115-160521-lc.min.css HTTP/1.1
Host: software.saadpetroleum.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://software.saadpetroleum.com/usuario/erty65ytfhgdfsw45rty34erfd/8356ae4687b73bb37a85dd9bcc5a9b51/login/?asd2assssdsws?
Cookie: real=OK; bid=8356ae4687b73bb37a85dd9bcc5a9b51
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 25 Nov 2022 03:18:12 GMT
content-type: text/css
last-modified: Sat, 01 Feb 2020 12:13:44 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1129
date: Fri, 18 Nov 2022 03:18:12 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
software.saadpetroleum.com/usuario/login/bbva.linkwithicon.lc-20200115-160521-lc.min.css
162.244.93.225200 OK 312 B URL HTTP/2 software.saadpetroleum.com/usuario/login/bbva.linkwithicon.lc-20200115-160521-lc.min.css
IP 162.244.93.225:0
Hash 6c8459fcdee7d4a9788af2d395ebbaad
7b8dde013fcf3802bfc9039cc4332099b445357b
3f3ea200d35bb28cc43c6f8b81386b33df45dcac997c3a4a46de9a52b235853e
GET /usuario/login/bbva.linkwithicon.lc-20200115-160521-lc.min.css HTTP/1.1
Host: software.saadpetroleum.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://software.saadpetroleum.com/usuario/erty65ytfhgdfsw45rty34erfd/8356ae4687b73bb37a85dd9bcc5a9b51/login/?asd2assssdsws?
Cookie: real=OK; bid=8356ae4687b73bb37a85dd9bcc5a9b51
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 25 Nov 2022 03:18:12 GMT
content-type: text/css
last-modified: Sat, 01 Feb 2020 12:13:44 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 312
date: Fri, 18 Nov 2022 03:18:12 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
software.saadpetroleum.com/usuario/login/bbva.promoalert.lc-20200115-160521-lc.min.css
162.244.93.225200 OK 1.2 kB URL HTTP/2 software.saadpetroleum.com/usuario/login/bbva.promoalert.lc-20200115-160521-lc.min.css
IP 162.244.93.225:0
File type ASCII text, with very long lines (308)
Hash 05307e5b4f230f726c7fda2f8db02c61
408f7ce78b0b745e780daee112576c79e7020448
0729fd5481f4b79aa835243de308c5c7851eafdbdee5f1bbbc88e7842f12ba5c
GET /usuario/login/bbva.promoalert.lc-20200115-160521-lc.min.css HTTP/1.1
Host: software.saadpetroleum.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://software.saadpetroleum.com/usuario/erty65ytfhgdfsw45rty34erfd/8356ae4687b73bb37a85dd9bcc5a9b51/login/?asd2assssdsws?
Cookie: real=OK; bid=8356ae4687b73bb37a85dd9bcc5a9b51
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 25 Nov 2022 03:18:12 GMT
content-type: text/css
last-modified: Sat, 01 Feb 2020 12:13:44 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1229
date: Fri, 18 Nov 2022 03:18:12 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
software.saadpetroleum.com/usuario/login/bbva.swiper.lc-20200115-160521-lc.min.css
162.244.93.225200 OK 2.4 kB URL HTTP/2 software.saadpetroleum.com/usuario/login/bbva.swiper.lc-20200115-160521-lc.min.css
IP 162.244.93.225:0
File type ASCII text, with very long lines (367)
Hash d28d5efa948c19d584f5b0b3caaaa8d1
6f6245dc665e6dfceb4e9c57d7fed652cd0c77df
7815bb131a975df48cafb9a5e40af678cdd679be90f676400f6cef173c639588
GET /usuario/login/bbva.swiper.lc-20200115-160521-lc.min.css HTTP/1.1
Host: software.saadpetroleum.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://software.saadpetroleum.com/usuario/erty65ytfhgdfsw45rty34erfd/8356ae4687b73bb37a85dd9bcc5a9b51/login/?asd2assssdsws?
Cookie: real=OK; bid=8356ae4687b73bb37a85dd9bcc5a9b51
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 25 Nov 2022 03:18:12 GMT
content-type: text/css
last-modified: Sat, 01 Feb 2020 12:13:44 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2350
date: Fri, 18 Nov 2022 03:18:12 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
software.saadpetroleum.com/usuario/login/bbva.slider.lc-20200115-160521-lc.min.css
162.244.93.225200 OK 485 B URL HTTP/2 software.saadpetroleum.com/usuario/login/bbva.slider.lc-20200115-160521-lc.min.css
IP 162.244.93.225:0
Hash 2c680f31cbe981d831582c6292d32d1d
df7895ff216a4ed2cce36e085061727b2312c6cf
d358a210e25f3773b83a9dfb32e37a8132ae410741ae3f082faf3751bb85b5c0
GET /usuario/login/bbva.slider.lc-20200115-160521-lc.min.css HTTP/1.1
Host: software.saadpetroleum.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://software.saadpetroleum.com/usuario/erty65ytfhgdfsw45rty34erfd/8356ae4687b73bb37a85dd9bcc5a9b51/login/?asd2assssdsws?
Cookie: real=OK; bid=8356ae4687b73bb37a85dd9bcc5a9b51
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 25 Nov 2022 03:18:12 GMT
content-type: text/css
last-modified: Sat, 01 Feb 2020 12:13:44 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 485
date: Fri, 18 Nov 2022 03:18:12 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
software.saadpetroleum.com/usuario/login/bbva.productslider.lc-20200115-160521-lc.min.css
162.244.93.225200 OK 940 B URL HTTP/2 software.saadpetroleum.com/usuario/login/bbva.productslider.lc-20200115-160521-lc.min.css
IP 162.244.93.225:0
Hash 2bdf0174d597304220a0cda0bc0993d9
ffad6f8be1f29a5325a16f5437f540078a52b78e
cc20730d54f1b6ff8bbcacda561f8f3f66ffae25a8136ee939bd48b28258378e
GET /usuario/login/bbva.productslider.lc-20200115-160521-lc.min.css HTTP/1.1
Host: software.saadpetroleum.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://software.saadpetroleum.com/usuario/erty65ytfhgdfsw45rty34erfd/8356ae4687b73bb37a85dd9bcc5a9b51/login/?asd2assssdsws?
Cookie: real=OK; bid=8356ae4687b73bb37a85dd9bcc5a9b51
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 25 Nov 2022 03:18:12 GMT
content-type: text/css
last-modified: Sat, 01 Feb 2020 12:13:44 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 940
date: Fri, 18 Nov 2022 03:18:12 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
software.saadpetroleum.com/usuario/login/bbva.microillustrationsmodule.lc-20200115-160521-lc.min.css
162.244.93.225200 OK 472 B URL HTTP/2 software.saadpetroleum.com/usuario/login/bbva.microillustrationsmodule.lc-20200115-160521-lc.min.css
IP 162.244.93.225:0
Hash 54eff2168781a6e4dfeaf73cfbb1fc36
622f74d2f599bf9c531a7c49aeacc8542c0d043e
7de933d76a1611021dd165ebe25a03e702b6d5c6bba3de8e2d9e9da386f27fa1
GET /usuario/login/bbva.microillustrationsmodule.lc-20200115-160521-lc.min.css HTTP/1.1
Host: software.saadpetroleum.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://software.saadpetroleum.com/usuario/erty65ytfhgdfsw45rty34erfd/8356ae4687b73bb37a85dd9bcc5a9b51/login/?asd2assssdsws?
Cookie: real=OK; bid=8356ae4687b73bb37a85dd9bcc5a9b51
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 25 Nov 2022 03:18:12 GMT
content-type: text/css
last-modified: Sat, 01 Feb 2020 12:13:44 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 472
date: Fri, 18 Nov 2022 03:18:12 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
software.saadpetroleum.com/usuario/login/bbva.microillustrationcard.lc-20200115-160521-lc.min.css
162.244.93.225200 OK 432 B URL HTTP/2 software.saadpetroleum.com/usuario/login/bbva.microillustrationcard.lc-20200115-160521-lc.min.css
IP 162.244.93.225:0
Hash 6043f37e07dcda05e402e6a21fc8aea4
5889368e2ab15e586f154408c6d6b04500902466
fc90143c095b802dd8d1e57529502053c11540547162d0b7394013630e4ab650
GET /usuario/login/bbva.microillustrationcard.lc-20200115-160521-lc.min.css HTTP/1.1
Host: software.saadpetroleum.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://software.saadpetroleum.com/usuario/erty65ytfhgdfsw45rty34erfd/8356ae4687b73bb37a85dd9bcc5a9b51/login/?asd2assssdsws?
Cookie: real=OK; bid=8356ae4687b73bb37a85dd9bcc5a9b51
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 25 Nov 2022 03:18:12 GMT
content-type: text/css
last-modified: Sat, 01 Feb 2020 12:13:44 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 432
date: Fri, 18 Nov 2022 03:18:12 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
software.saadpetroleum.com/usuario/login/bbva.cta.lc-20200115-160521-lc.min.css
162.244.93.225200 OK 562 B URL HTTP/2 software.saadpetroleum.com/usuario/login/bbva.cta.lc-20200115-160521-lc.min.css
IP 162.244.93.225:0
Hash fcd0c4c2a17ae8d95fe68a8f64f9a57d
704617a4a50cb7b45f41509ee343c6f7974156c0
a1f416863070c7f0704b5184fb82396c4be1fa3c44543f1cabc74d12bda6273c
GET /usuario/login/bbva.cta.lc-20200115-160521-lc.min.css HTTP/1.1
Host: software.saadpetroleum.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://software.saadpetroleum.com/usuario/erty65ytfhgdfsw45rty34erfd/8356ae4687b73bb37a85dd9bcc5a9b51/login/?asd2assssdsws?
Cookie: real=OK; bid=8356ae4687b73bb37a85dd9bcc5a9b51
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 25 Nov 2022 03:18:12 GMT
content-type: text/css
last-modified: Sat, 01 Feb 2020 12:13:44 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 562
date: Fri, 18 Nov 2022 03:18:12 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
software.saadpetroleum.com/usuario/login/bbva.downloadbtns.lc-20200115-160521-lc.min.css
162.244.93.225200 OK 231 B URL HTTP/2 software.saadpetroleum.com/usuario/login/bbva.downloadbtns.lc-20200115-160521-lc.min.css
IP 162.244.93.225:0
Hash 0cd4a32086df2b5cc19e19cb2035ff8d
e8b384dc630c1acb2a2731c5ef8595799f30e227
0100627af04c17ff2e3996099cbc8724f73f7d371dd479356552e2de59ea1b15
GET /usuario/login/bbva.downloadbtns.lc-20200115-160521-lc.min.css HTTP/1.1
Host: software.saadpetroleum.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://software.saadpetroleum.com/usuario/erty65ytfhgdfsw45rty34erfd/8356ae4687b73bb37a85dd9bcc5a9b51/login/?asd2assssdsws?
Cookie: real=OK; bid=8356ae4687b73bb37a85dd9bcc5a9b51
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 25 Nov 2022 03:18:12 GMT
content-type: text/css
last-modified: Sat, 01 Feb 2020 12:13:44 GMT
accept-ranges: bytes
content-length: 231
date: Fri, 18 Nov 2022 03:18:12 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
software.saadpetroleum.com/usuario/login/bbva.godigital.lc-20200115-160521-lc.min.css
162.244.93.225200 OK 1.7 kB URL HTTP/2 software.saadpetroleum.com/usuario/login/bbva.godigital.lc-20200115-160521-lc.min.css
IP 162.244.93.225:0
File type ASCII text, with very long lines (777)
Hash be0cfbc0c8476231f32093f686fa0196
faedfdf04a4006216061bc25c25f7fc0043e0c70
4b041ed7dedb3e22ae1ec5edd6e56bccdbc94469bb2a0a810ebcb4d03226054e
GET /usuario/login/bbva.godigital.lc-20200115-160521-lc.min.css HTTP/1.1
Host: software.saadpetroleum.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://software.saadpetroleum.com/usuario/erty65ytfhgdfsw45rty34erfd/8356ae4687b73bb37a85dd9bcc5a9b51/login/?asd2assssdsws?
Cookie: real=OK; bid=8356ae4687b73bb37a85dd9bcc5a9b51
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 25 Nov 2022 03:18:12 GMT
content-type: text/css
last-modified: Sat, 01 Feb 2020 12:13:44 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1748
date: Fri, 18 Nov 2022 03:18:12 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
software.saadpetroleum.com/usuario/login/bbva.outstandingopportunity.lc-20200115-160521-lc.min.css
162.244.93.225200 OK 840 B URL HTTP/2 software.saadpetroleum.com/usuario/login/bbva.outstandingopportunity.lc-20200115-160521-lc.min.css
IP 162.244.93.225:0
Hash 0d234a1ceb4d73ceb83fd31b6e4b9a38
826dfac292f938188f63428641888a9853dd7cf5
a570403d2964a2468e395f341d0639d3dd2b5268c1ddac23177507b829ba1f57
GET /usuario/login/bbva.outstandingopportunity.lc-20200115-160521-lc.min.css HTTP/1.1
Host: software.saadpetroleum.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://software.saadpetroleum.com/usuario/erty65ytfhgdfsw45rty34erfd/8356ae4687b73bb37a85dd9bcc5a9b51/login/?asd2assssdsws?
Cookie: real=OK; bid=8356ae4687b73bb37a85dd9bcc5a9b51
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 25 Nov 2022 03:18:12 GMT
content-type: text/css
last-modified: Sat, 01 Feb 2020 12:13:44 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 840
date: Fri, 18 Nov 2022 03:18:12 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
software.saadpetroleum.com/usuario/login/bbva.outstandingopportunitycard.lc-20200115-160521-lc.min.css
162.244.93.225200 OK 938 B URL HTTP/2 software.saadpetroleum.com/usuario/login/bbva.outstandingopportunitycard.lc-20200115-160521-lc.min.css
IP 162.244.93.225:0
Hash 78a80c5581c2fe49c230b44db16e78fe
106c5250763e864a1911f5c33dccf1e80995d260
9b7a6d2243ff60c3bf4cc903dad5efb3795b141bb0493c38cd47affa33a601d6
GET /usuario/login/bbva.outstandingopportunitycard.lc-20200115-160521-lc.min.css HTTP/1.1
Host: software.saadpetroleum.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://software.saadpetroleum.com/usuario/erty65ytfhgdfsw45rty34erfd/8356ae4687b73bb37a85dd9bcc5a9b51/login/?asd2assssdsws?
Cookie: real=OK; bid=8356ae4687b73bb37a85dd9bcc5a9b51
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 25 Nov 2022 03:18:12 GMT
content-type: text/css
last-modified: Sat, 01 Feb 2020 12:13:44 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 938
date: Fri, 18 Nov 2022 03:18:12 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
software.saadpetroleum.com/usuario/login/bbva.featuredoutstandingopportunitycard.lc-20200115-160521-lc.min.css
162.244.93.225200 OK 764 B URL HTTP/2 software.saadpetroleum.com/usuario/login/bbva.featuredoutstandingopportunitycard.lc-20200115-160521-lc.min.css
IP 162.244.93.225:0
File type ASCII text, with very long lines (353)
Hash 981d460ce081909a17ed49b81d9271b8
44777031959502db0bedb7ee8353ba42faa8aa95
2b247d2bbcde082c496d5f7939d271913679baeb329e9764a7478c4c84259e13
GET /usuario/login/bbva.featuredoutstandingopportunitycard.lc-20200115-160521-lc.min.css HTTP/1.1
Host: software.saadpetroleum.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://software.saadpetroleum.com/usuario/erty65ytfhgdfsw45rty34erfd/8356ae4687b73bb37a85dd9bcc5a9b51/login/?asd2assssdsws?
Cookie: real=OK; bid=8356ae4687b73bb37a85dd9bcc5a9b51
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 25 Nov 2022 03:18:12 GMT
content-type: text/css
last-modified: Sat, 01 Feb 2020 12:13:44 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 764
date: Fri, 18 Nov 2022 03:18:12 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
software.saadpetroleum.com/usuario/login/bbva.homemicroillustration.lc-20200115-160521-lc.min.css
162.244.93.225200 OK 278 B URL HTTP/2 software.saadpetroleum.com/usuario/login/bbva.homemicroillustration.lc-20200115-160521-lc.min.css
IP 162.244.93.225:0
Hash 1e32786ea37122810308027684b0c627
9c44df9dd6d3b1c0158434ee634237f956a1110a
1f4f9391fb07b116d88c43ba240194632c6db2e0450b51a6c3b71160d4b75ffc
GET /usuario/login/bbva.homemicroillustration.lc-20200115-160521-lc.min.css HTTP/1.1
Host: software.saadpetroleum.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://software.saadpetroleum.com/usuario/erty65ytfhgdfsw45rty34erfd/8356ae4687b73bb37a85dd9bcc5a9b51/login/?asd2assssdsws?
Cookie: real=OK; bid=8356ae4687b73bb37a85dd9bcc5a9b51
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 25 Nov 2022 03:18:12 GMT
content-type: text/css
last-modified: Sat, 01 Feb 2020 12:13:44 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 278
date: Fri, 18 Nov 2022 03:18:12 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
software.saadpetroleum.com/usuario/login/bbva.microillustration.lc-20200115-160521-lc.min.css
162.244.93.225200 OK 751 B URL HTTP/2 software.saadpetroleum.com/usuario/login/bbva.microillustration.lc-20200115-160521-lc.min.css
IP 162.244.93.225:0
File type ASCII text, with very long lines (364)
Hash 68f2d01e06db69ea809555b0d62612b8
72a0d6d4549b57388d8c06597c2561c3f43e73cc
bd58c0a98f7b350c5f4b4e8a5882562cda951576d94fabb6852ada71c7b6c60f
GET /usuario/login/bbva.microillustration.lc-20200115-160521-lc.min.css HTTP/1.1
Host: software.saadpetroleum.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://software.saadpetroleum.com/usuario/erty65ytfhgdfsw45rty34erfd/8356ae4687b73bb37a85dd9bcc5a9b51/login/?asd2assssdsws?
Cookie: real=OK; bid=8356ae4687b73bb37a85dd9bcc5a9b51
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 25 Nov 2022 03:18:12 GMT
content-type: text/css
last-modified: Sat, 01 Feb 2020 12:13:44 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 751
date: Fri, 18 Nov 2022 03:18:12 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
software.saadpetroleum.com/usuario/login/bbva.ctamobilesticky.lc-20200115-160521-lc.min.css
162.244.93.225200 OK 326 B URL HTTP/2 software.saadpetroleum.com/usuario/login/bbva.ctamobilesticky.lc-20200115-160521-lc.min.css
IP 162.244.93.225:0
Hash bf97fb176694ec416d538f72037ce8c1
eba74e6ef04bc34f11790608ddc364edd7d97e6a
3ea2fa7b27fc413d332a219f4e709f93bec9541ed802f086f0bcf145da5acf65
GET /usuario/login/bbva.ctamobilesticky.lc-20200115-160521-lc.min.css HTTP/1.1
Host: software.saadpetroleum.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://software.saadpetroleum.com/usuario/erty65ytfhgdfsw45rty34erfd/8356ae4687b73bb37a85dd9bcc5a9b51/login/?asd2assssdsws?
Cookie: real=OK; bid=8356ae4687b73bb37a85dd9bcc5a9b51
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 25 Nov 2022 03:18:12 GMT
content-type: text/css
last-modified: Sat, 01 Feb 2020 12:13:44 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 326
date: Fri, 18 Nov 2022 03:18:12 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
software.saadpetroleum.com/usuario/login/bbva.stickybanner.lc-20200115-160521-lc.min.css
162.244.93.225200 OK 588 B URL HTTP/2 software.saadpetroleum.com/usuario/login/bbva.stickybanner.lc-20200115-160521-lc.min.css
IP 162.244.93.225:0
File type ASCII text, with very long lines (431)
Hash 7a40d4b8f6f3b7d38806f77e42ddbe7a
867aa46b39d38e1547b5b7fd361ac3873d125953
80064c1996db09faf647a91738e001be33f1e565dbf5762a427465e3587816b7
GET /usuario/login/bbva.stickybanner.lc-20200115-160521-lc.min.css HTTP/1.1
Host: software.saadpetroleum.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://software.saadpetroleum.com/usuario/erty65ytfhgdfsw45rty34erfd/8356ae4687b73bb37a85dd9bcc5a9b51/login/?asd2assssdsws?
Cookie: real=OK; bid=8356ae4687b73bb37a85dd9bcc5a9b51
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 25 Nov 2022 03:18:12 GMT
content-type: text/css
last-modified: Sat, 01 Feb 2020 12:13:44 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 588
date: Fri, 18 Nov 2022 03:18:12 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
software.saadpetroleum.com/usuario/login/bbva.prefooter.lc-20200115-160521-lc.min.css
162.244.93.225200 OK 672 B URL HTTP/2 software.saadpetroleum.com/usuario/login/bbva.prefooter.lc-20200115-160521-lc.min.css
IP 162.244.93.225:0
Hash 11b498cb0b98e36a18aed0dac42d8559
7cf3a964415ef0104792bc1b0ee0d240a9c1026f
5b9f34a8f071b6717640d91ec929d4d2e2e7262716ae77cc9794f9326d6d99e0
GET /usuario/login/bbva.prefooter.lc-20200115-160521-lc.min.css HTTP/1.1
Host: software.saadpetroleum.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://software.saadpetroleum.com/usuario/erty65ytfhgdfsw45rty34erfd/8356ae4687b73bb37a85dd9bcc5a9b51/login/?asd2assssdsws?
Cookie: real=OK; bid=8356ae4687b73bb37a85dd9bcc5a9b51
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 25 Nov 2022 03:18:12 GMT
content-type: text/css
last-modified: Sat, 01 Feb 2020 12:13:44 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 672
date: Fri, 18 Nov 2022 03:18:12 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
software.saadpetroleum.com/usuario/login/bbva.linklistmodule.lc-20200115-160521-lc.min.css
162.244.93.225200 OK 374 B URL HTTP/2 software.saadpetroleum.com/usuario/login/bbva.linklistmodule.lc-20200115-160521-lc.min.css
IP 162.244.93.225:0
Hash 578c2ee8156df0fd63ec1313e7662fd4
faff1afe100877ab0899affb5e33f304c44fbf41
2b0e8f4fbd9b5437e4423dd3511729e527a861726d387b12f5e4485ab2d8a161
GET /usuario/login/bbva.linklistmodule.lc-20200115-160521-lc.min.css HTTP/1.1
Host: software.saadpetroleum.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://software.saadpetroleum.com/usuario/erty65ytfhgdfsw45rty34erfd/8356ae4687b73bb37a85dd9bcc5a9b51/login/?asd2assssdsws?
Cookie: real=OK; bid=8356ae4687b73bb37a85dd9bcc5a9b51
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 25 Nov 2022 03:18:12 GMT
content-type: text/css
last-modified: Sat, 01 Feb 2020 12:13:44 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 374
date: Fri, 18 Nov 2022 03:18:12 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
software.saadpetroleum.com/usuario/login/bbva.link.lc-20200115-160521-lc.min.css
162.244.93.225200 OK 252 B URL HTTP/2 software.saadpetroleum.com/usuario/login/bbva.link.lc-20200115-160521-lc.min.css
IP 162.244.93.225:0
Hash 8e52f4ce427e0a60dc2ee0da7f96adf6
2ddf5bb5ce49d9afa6a061e705e5e88161c3ad68
b6617158628a815c524fe0e194bd022a2e1807a9a7394541889677fc0ac4da54
GET /usuario/login/bbva.link.lc-20200115-160521-lc.min.css HTTP/1.1
Host: software.saadpetroleum.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://software.saadpetroleum.com/usuario/erty65ytfhgdfsw45rty34erfd/8356ae4687b73bb37a85dd9bcc5a9b51/login/?asd2assssdsws?
Cookie: real=OK; bid=8356ae4687b73bb37a85dd9bcc5a9b51
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 25 Nov 2022 03:18:12 GMT
content-type: text/css
last-modified: Sat, 01 Feb 2020 12:13:44 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 252
date: Fri, 18 Nov 2022 03:18:12 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
software.saadpetroleum.com/usuario/login/bbva.helpsticky.lc-20200115-160521-lc.min.css
162.244.93.225200 OK 975 B URL HTTP/2 software.saadpetroleum.com/usuario/login/bbva.helpsticky.lc-20200115-160521-lc.min.css
IP 162.244.93.225:0
File type ASCII text, with very long lines (371)
Hash 28fdb9f6d5d3e7e0e4cbd55af8e92efa
3303514881b7482b0b45fc3089f403fb3aaab8f3
9bb2145fbb0a1719a20679fcaad8ec5101db40244b13218997d0960e30c69515
GET /usuario/login/bbva.helpsticky.lc-20200115-160521-lc.min.css HTTP/1.1
Host: software.saadpetroleum.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://software.saadpetroleum.com/usuario/erty65ytfhgdfsw45rty34erfd/8356ae4687b73bb37a85dd9bcc5a9b51/login/?asd2assssdsws?
Cookie: real=OK; bid=8356ae4687b73bb37a85dd9bcc5a9b51
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 25 Nov 2022 03:18:12 GMT
content-type: text/css
last-modified: Sat, 01 Feb 2020 12:13:44 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 975
date: Fri, 18 Nov 2022 03:18:12 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
software.saadpetroleum.com/usuario/login/bbva.stickyalert.lc-20200115-160521-lc.min.css
162.244.93.225200 OK 446 B URL HTTP/2 software.saadpetroleum.com/usuario/login/bbva.stickyalert.lc-20200115-160521-lc.min.css
IP 162.244.93.225:0
Hash ecfc5671139c2af699ad03f9931f67a5
101ff1bffd54520ea1264e41f62ef8a567b7e5b7
ddd6b34e78ad5c35f7e9c473e9e7f56d87983dd901c06e476e13f62b3d666822
GET /usuario/login/bbva.stickyalert.lc-20200115-160521-lc.min.css HTTP/1.1
Host: software.saadpetroleum.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://software.saadpetroleum.com/usuario/erty65ytfhgdfsw45rty34erfd/8356ae4687b73bb37a85dd9bcc5a9b51/login/?asd2assssdsws?
Cookie: real=OK; bid=8356ae4687b73bb37a85dd9bcc5a9b51
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 25 Nov 2022 03:18:12 GMT
content-type: text/css
last-modified: Sat, 01 Feb 2020 12:13:44 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 446
date: Fri, 18 Nov 2022 03:18:12 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
software.saadpetroleum.com/usuario/login/form/form.js?v=6376f9742ba7a
162.244.93.225200 OK 674 B URL HTTP/2 software.saadpetroleum.com/usuario/login/form/form.js?v=6376f9742ba7a
IP 162.244.93.225:0
Hash 71125abf7b28cf917d549c12a911af90
66e79e98c1459bc95d535a05a863153fb70a9118
3d0f8a39ed4a75fb5028b16e0e27be841e097eed485165b8d0d56188f53e8201
GET /usuario/login/form/form.js?v=6376f9742ba7a HTTP/1.1
Host: software.saadpetroleum.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://software.saadpetroleum.com/usuario/erty65ytfhgdfsw45rty34erfd/8356ae4687b73bb37a85dd9bcc5a9b51/login/?asd2assssdsws?
Cookie: real=OK; bid=8356ae4687b73bb37a85dd9bcc5a9b51
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 25 Nov 2022 03:18:12 GMT
content-type: application/javascript
last-modified: Sun, 02 Feb 2020 11:57:12 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 674
date: Fri, 18 Nov 2022 03:18:12 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
software.saadpetroleum.com/usuario/login/logo_bbva_blanco.svg
162.244.93.225200 OK 810 B URL HTTP/2 software.saadpetroleum.com/usuario/login/logo_bbva_blanco.svg
IP 162.244.93.225:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash f36c4f1a5999856c41994bef2effa075
7e4d98836233427f1cce1724a0691dd3ae126037
06bc0ab3589bb8a0ca07084560905b38a0efe09b1d9cb2c9656a81081055ccd0
Analyzer Verdict Alert fortinet Phishing
GET /usuario/login/logo_bbva_blanco.svg HTTP/1.1
Host: software.saadpetroleum.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://software.saadpetroleum.com/usuario/erty65ytfhgdfsw45rty34erfd/8356ae4687b73bb37a85dd9bcc5a9b51/login/?asd2assssdsws?
Cookie: real=OK; bid=8356ae4687b73bb37a85dd9bcc5a9b51
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 25 Nov 2022 03:18:12 GMT
content-type: image/svg+xml
last-modified: Sat, 01 Feb 2020 12:13:44 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 810
date: Fri, 18 Nov 2022 03:18:12 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
software.saadpetroleum.com/usuario/login/Home_Euro.png.img.320.1579263321777.png
162.244.93.225200 OK 11 kB URL HTTP/2 software.saadpetroleum.com/usuario/login/Home_Euro.png.img.320.1579263321777.png
IP 162.244.93.225:0
File type PNG image data, 320 x 320, 8-bit/color RGBA, non-interlaced\012- data
Hash 252fbccddbcbfb36a8f93b91146a1c9b
a75bfca35fc8179e6cb5884915ce12067dd3ef9b
d8c4fa85962b026f621fbf9c93c7f37eb07d78fc66c11f81f70b40ef1828a7a0
GET /usuario/login/Home_Euro.png.img.320.1579263321777.png HTTP/1.1
Host: software.saadpetroleum.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://software.saadpetroleum.com/usuario/erty65ytfhgdfsw45rty34erfd/8356ae4687b73bb37a85dd9bcc5a9b51/login/?asd2assssdsws?
Cookie: real=OK; bid=8356ae4687b73bb37a85dd9bcc5a9b51
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 25 Nov 2022 03:18:12 GMT
content-type: image/png
last-modified: Sat, 01 Feb 2020 12:13:44 GMT
accept-ranges: bytes
content-length: 11133
date: Fri, 18 Nov 2022 03:18:12 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
software.saadpetroleum.com/usuario/login/ATM_Locate.png.img.320.1564483879680.png
162.244.93.225200 OK 9.6 kB URL HTTP/2 software.saadpetroleum.com/usuario/login/ATM_Locate.png.img.320.1564483879680.png
IP 162.244.93.225:0
File type PNG image data, 320 x 320, 8-bit/color RGBA, non-interlaced\012- data
Hash 76e4c1efdf89b6f2a8a332a63ed5f57a
6ad8f9d3e83491e5fd6a8c474d1387fb91a83677
00fc58ff1764bf1faadb2126ae30940d43181e63efae51b59ff67d706998aae7
GET /usuario/login/ATM_Locate.png.img.320.1564483879680.png HTTP/1.1
Host: software.saadpetroleum.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://software.saadpetroleum.com/usuario/erty65ytfhgdfsw45rty34erfd/8356ae4687b73bb37a85dd9bcc5a9b51/login/?asd2assssdsws?
Cookie: real=OK; bid=8356ae4687b73bb37a85dd9bcc5a9b51
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 25 Nov 2022 03:18:12 GMT
content-type: image/png
last-modified: Sat, 01 Feb 2020 12:13:44 GMT
accept-ranges: bytes
content-length: 9566
date: Fri, 18 Nov 2022 03:18:12 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
software.saadpetroleum.com/usuario/login/600x600-forrester-color.png.img.320.1570518350529.png
162.244.93.225200 OK 14 kB URL HTTP/2 software.saadpetroleum.com/usuario/login/600x600-forrester-color.png.img.320.1570518350529.png
IP 162.244.93.225:0
File type PNG image data, 320 x 320, 8-bit/color RGBA, non-interlaced\012- data
Hash 552ad20d62a7e532825c120976ede0be
fa399db2561d70a59d19114563443f88408cf855
4a235caf702d13bd1e07228dfd89a61ff68a379ebcc55aa09b5f37d948a2134c
GET /usuario/login/600x600-forrester-color.png.img.320.1570518350529.png HTTP/1.1
Host: software.saadpetroleum.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://software.saadpetroleum.com/usuario/erty65ytfhgdfsw45rty34erfd/8356ae4687b73bb37a85dd9bcc5a9b51/login/?asd2assssdsws?
Cookie: real=OK; bid=8356ae4687b73bb37a85dd9bcc5a9b51
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 25 Nov 2022 03:18:12 GMT
content-type: image/png
last-modified: Sat, 01 Feb 2020 12:13:44 GMT
accept-ranges: bytes
content-length: 13645
date: Fri, 18 Nov 2022 03:18:12 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
software.saadpetroleum.com/usuario/login/Security_Access_Mobile.png.img.320.1564484197651.png
162.244.93.225200 OK 10 kB URL HTTP/2 software.saadpetroleum.com/usuario/login/Security_Access_Mobile.png.img.320.1564484197651.png
IP 162.244.93.225:0
File type PNG image data, 320 x 320, 8-bit/color RGBA, non-interlaced\012- data
Hash fe040653e3cd22e4828de1c8249704ff
2efece53499aadc72b70721aef7841d35e683a75
5841b571a77de7c977ec76b5e60cc71b6445a8779e11867bdecdf09b130b7f32
GET /usuario/login/Security_Access_Mobile.png.img.320.1564484197651.png HTTP/1.1
Host: software.saadpetroleum.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://software.saadpetroleum.com/usuario/erty65ytfhgdfsw45rty34erfd/8356ae4687b73bb37a85dd9bcc5a9b51/login/?asd2assssdsws?
Cookie: real=OK; bid=8356ae4687b73bb37a85dd9bcc5a9b51
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 25 Nov 2022 03:18:12 GMT
content-type: image/png
last-modified: Sat, 01 Feb 2020 12:13:44 GMT
accept-ranges: bytes
content-length: 10435
date: Fri, 18 Nov 2022 03:18:12 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
software.saadpetroleum.com/usuario/login/d5fceb6532643d0d84ffe09c40c481ecdf59e15a.gif
162.244.93.225200 OK 42 B URL HTTP/2 software.saadpetroleum.com/usuario/login/d5fceb6532643d0d84ffe09c40c481ecdf59e15a.gif
IP 162.244.93.225:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /usuario/login/d5fceb6532643d0d84ffe09c40c481ecdf59e15a.gif HTTP/1.1
Host: software.saadpetroleum.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://software.saadpetroleum.com/usuario/erty65ytfhgdfsw45rty34erfd/8356ae4687b73bb37a85dd9bcc5a9b51/login/?asd2assssdsws?
Cookie: real=OK; bid=8356ae4687b73bb37a85dd9bcc5a9b51
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 25 Nov 2022 03:18:12 GMT
content-type: image/gif
last-modified: Sat, 01 Feb 2020 12:13:44 GMT
accept-ranges: bytes
content-length: 42
date: Fri, 18 Nov 2022 03:18:12 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
i.imgur.com/E6A3i5P.png
151.101.84.193200 OK 16 kB IP 151.101.84.193:0
File type PNG image data, 300 x 97, 8-bit/color RGBA, interlaced\012- data
Hash 08faf643a1aa87497264011c6cc7e3ee
cf40c809aa7a7cf5d7d4ac2ba904dbdecb61d5ac
29c35819c2f32468157612162354fe1cf260aaf45ca113435ef06a5144343571
GET /E6A3i5P.png HTTP/1.1
Host: i.imgur.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://software.saadpetroleum.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
last-modified: Fri, 31 Jan 2020 20:48:31 GMT
etag: "08faf643a1aa87497264011c6cc7e3ee"
content-type: image/png
cache-control: public, max-age=31536000
accept-ranges: bytes
date: Fri, 18 Nov 2022 03:18:13 GMT
age: 1967781
x-served-by: cache-iad-kiad7000178-IAD, cache-bma1622-BMA
x-cache: HIT, HIT
x-cache-hits: 389, 1
x-timer: S1668741493.041081,VS0,VE1
strict-transport-security: max-age=300
access-control-allow-methods: GET, OPTIONS
access-control-allow-origin: *
server: cat factory 1.0
x-content-type-options: nosniff
content-length: 15600
X-Firefox-Spdy: h2
software.saadpetroleum.com/usuario/login/HomeBackCampana2360.png
162.244.93.225200 OK 145 kB URL HTTP/2 software.saadpetroleum.com/usuario/login/HomeBackCampana2360.png
IP 162.244.93.225:0
File type PNG image data, 912 x 538, 8-bit colormap, non-interlaced\012- data
Size 145 kB (144568 bytes)
Hash 3c88de04fcee0252da4d570f4417d24d
ab9df42b435d2643d2fc9600864b5d087caeb42c
6d7672eb039b45759d4d23cde169f7d30255153071250740be1c9c8cbca8968a
GET /usuario/login/HomeBackCampana2360.png HTTP/1.1
Host: software.saadpetroleum.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://software.saadpetroleum.com/usuario/login/index.css
Cookie: real=OK; bid=8356ae4687b73bb37a85dd9bcc5a9b51
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 25 Nov 2022 03:18:12 GMT
content-type: image/png
last-modified: Sat, 01 Feb 2020 12:13:44 GMT
accept-ranges: bytes
content-length: 144568
date: Fri, 18 Nov 2022 03:18:12 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
software.saadpetroleum.com/usuario/login/BentonSansBBVA-Medium.woff2
162.244.93.225200 OK 54 kB URL HTTP/2 software.saadpetroleum.com/usuario/login/BentonSansBBVA-Medium.woff2
IP 162.244.93.225:0
File type Web Open Font Format (Version 2), TrueType, length 54240, version 0.0\012- data
Hash 9008adfae2be2cc606e6d08c1317ddad
387051408ea047d01e0ddb4d23647e0b40e54f15
c22b599398a1008cfff047a39d1aca99d8124e6fd3973c68aa6c246504fcfb62
Analyzer Verdict Alert fortinet Phishing
GET /usuario/login/BentonSansBBVA-Medium.woff2 HTTP/1.1
Host: software.saadpetroleum.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://software.saadpetroleum.com/usuario/login/bbva.fonts.lc-20200115-160521-lc.min.css
Cookie: real=OK; bid=8356ae4687b73bb37a85dd9bcc5a9b51
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: font/woff2
last-modified: Sat, 01 Feb 2020 12:13:44 GMT
accept-ranges: bytes
content-length: 54240
date: Fri, 18 Nov 2022 03:18:12 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
software.saadpetroleum.com/usuario/login/BentonSansBBVA-Book.woff2
162.244.93.225200 OK 53 kB URL HTTP/2 software.saadpetroleum.com/usuario/login/BentonSansBBVA-Book.woff2
IP 162.244.93.225:0
File type Web Open Font Format (Version 2), TrueType, length 52648, version 0.0\012- data
Hash e65584acf8afac18b2cd796b5d87a26a
14e2d4f852451934f50802f3e2dd8cdc3d954232
5ad9905e946ca98b15a519996a8f675f31a421ed56a526a4212a8af6b4e79432
Analyzer Verdict Alert fortinet Phishing
GET /usuario/login/BentonSansBBVA-Book.woff2 HTTP/1.1
Host: software.saadpetroleum.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://software.saadpetroleum.com/usuario/login/bbva.fonts.lc-20200115-160521-lc.min.css
Cookie: real=OK; bid=8356ae4687b73bb37a85dd9bcc5a9b51
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: font/woff2
last-modified: Sat, 01 Feb 2020 12:13:44 GMT
accept-ranges: bytes
content-length: 52648
date: Fri, 18 Nov 2022 03:18:12 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
software.saadpetroleum.com/usuario/login/BentonSansBBVA-Bold.woff2
162.244.93.225200 OK 55 kB URL HTTP/2 software.saadpetroleum.com/usuario/login/BentonSansBBVA-Bold.woff2
IP 162.244.93.225:0
File type Web Open Font Format (Version 2), TrueType, length 55096, version 0.0\012- data
Hash 52d716835b248a63614d87f7df580ff1
1a270ecf4506183eb667a8daec38dff75ec8e273
2a316c5ee76b98cb86cae648e3f33f3f6f424ecc0dc0afa714f5e17e699e7fe8
Analyzer Verdict Alert fortinet Phishing
GET /usuario/login/BentonSansBBVA-Bold.woff2 HTTP/1.1
Host: software.saadpetroleum.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://software.saadpetroleum.com/usuario/login/bbva.fonts.lc-20200115-160521-lc.min.css
Cookie: real=OK; bid=8356ae4687b73bb37a85dd9bcc5a9b51
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: font/woff2
last-modified: Sat, 01 Feb 2020 12:13:44 GMT
accept-ranges: bytes
content-length: 55096
date: Fri, 18 Nov 2022 03:18:12 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
software.saadpetroleum.com/usuario/login/BentonSansBBVA-Light.woff2
162.244.93.225200 OK 47 kB URL HTTP/2 software.saadpetroleum.com/usuario/login/BentonSansBBVA-Light.woff2
IP 162.244.93.225:0
File type Web Open Font Format (Version 2), TrueType, length 47212, version 0.0\012- data
Hash 381d8503fd307606a8d6eba836479d50
cd07c60f9aac3833cc924f512328800017c4231b
fe9478c3062c20141118549db658dc3bab2be67b26677b30ae71c4672e608d3c
Analyzer Verdict Alert fortinet Phishing
GET /usuario/login/BentonSansBBVA-Light.woff2 HTTP/1.1
Host: software.saadpetroleum.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://software.saadpetroleum.com/usuario/login/bbva.fonts.lc-20200115-160521-lc.min.css
Cookie: real=OK; bid=8356ae4687b73bb37a85dd9bcc5a9b51
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: font/woff2
last-modified: Sat, 01 Feb 2020 12:13:44 GMT
accept-ranges: bytes
content-length: 47212
date: Fri, 18 Nov 2022 03:18:12 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
software.saadpetroleum.com/usuario/erty65ytfhgdfsw45rty34erfd/8356ae4687b73bb37a85dd9bcc5a9b51/login/index_1.php
162.244.93.225200 OK 2.0 kB URL HTTP/2 software.saadpetroleum.com/usuario/erty65ytfhgdfsw45rty34erfd/8356ae4687b73bb37a85dd9bcc5a9b51/login/index_1.php
IP 162.244.93.225:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (472)
Hash a9f9087b0d0755f3c4345fb3fd6cea33
c3c046de8f3c9db6af834f448d5110329b20fa23
58e242714c387c8df89765710f355be3ab61342872a769d1eb7e59aecf37baa0
Analyzer Verdict Alert fortinet Phishing
GET /usuario/erty65ytfhgdfsw45rty34erfd/8356ae4687b73bb37a85dd9bcc5a9b51/login/index_1.php HTTP/1.1
Host: software.saadpetroleum.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://software.saadpetroleum.com/usuario/erty65ytfhgdfsw45rty34erfd/8356ae4687b73bb37a85dd9bcc5a9b51/login/?asd2assssdsws?
Cookie: real=OK; bid=8356ae4687b73bb37a85dd9bcc5a9b51
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
x-powered-by: PHP/7.3.33
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
content-type: text/html; charset=UTF-8
content-length: 2001
content-encoding: br
vary: Accept-Encoding
date: Fri, 18 Nov 2022 03:18:13 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
software.saadpetroleum.com/usuario/login/form/newloader.gif
162.244.93.225200 OK 557 kB URL HTTP/2 software.saadpetroleum.com/usuario/login/form/newloader.gif
IP 162.244.93.225:0
File type GIF image data, version 89a, 480 x 480\012- data
Size 557 kB (557122 bytes)
Hash ef8d4e6b20b0cf0d68713fb2f6069042
d62bb4b1a169c88879de3bd2f5c4292b6259a952
32bfc673211421c1a5a33acc98291840183582f11d15490954b42a81d79d4630
GET /usuario/login/form/newloader.gif HTTP/1.1
Host: software.saadpetroleum.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://software.saadpetroleum.com/usuario/erty65ytfhgdfsw45rty34erfd/8356ae4687b73bb37a85dd9bcc5a9b51/login/?asd2assssdsws?
Cookie: real=OK; bid=8356ae4687b73bb37a85dd9bcc5a9b51
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 25 Nov 2022 03:18:13 GMT
content-type: image/gif
last-modified: Mon, 16 Sep 2019 23:51:56 GMT
accept-ranges: bytes
content-length: 557122
date: Fri, 18 Nov 2022 03:18:13 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
software.saadpetroleum.com/usuario/bower_components/angular/angular.min.js
162.244.93.225200 OK 57 kB URL HTTP/2 software.saadpetroleum.com/usuario/bower_components/angular/angular.min.js
IP 162.244.93.225:0
File type ASCII text, with very long lines (552)
Hash 3934836b0c31a7b3a4901f0e47f8656d
0cd567c0a34e060542cf47d118279234f9704ab4
58c971e2cc426b83d6932dcee204c74ec79b84c89ddbf1bba12a044bb9738c54
Analyzer Verdict Alert fortinet Phishing
GET /usuario/bower_components/angular/angular.min.js HTTP/1.1
Host: software.saadpetroleum.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://software.saadpetroleum.com/usuario/erty65ytfhgdfsw45rty34erfd/8356ae4687b73bb37a85dd9bcc5a9b51/login/index_1.php
Cookie: real=OK; bid=8356ae4687b73bb37a85dd9bcc5a9b51
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 25 Nov 2022 03:18:13 GMT
content-type: application/javascript
last-modified: Sat, 19 Aug 2017 07:37:28 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 57245
date: Fri, 18 Nov 2022 03:18:13 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
software.saadpetroleum.com/usuario/login/login.css
162.244.93.225200 OK 3.1 kB URL HTTP/2 software.saadpetroleum.com/usuario/login/login.css
IP 162.244.93.225:0
File type ASCII text, with very long lines (15119)
Hash 9db41d084f5603ab569cbd7ddd216d29
196e93c678b00a94f13c8a41eecb7850f3fe4031
63e9df5af87f589ae78738ce66d9faa13957bf123f309cc64630bc957894add5
GET /usuario/login/login.css HTTP/1.1
Host: software.saadpetroleum.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://software.saadpetroleum.com/usuario/erty65ytfhgdfsw45rty34erfd/8356ae4687b73bb37a85dd9bcc5a9b51/login/index_1.php
Cookie: real=OK; bid=8356ae4687b73bb37a85dd9bcc5a9b51
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 25 Nov 2022 03:18:13 GMT
content-type: text/css
last-modified: Sat, 01 Feb 2020 14:03:56 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3138
date: Fri, 18 Nov 2022 03:18:13 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
software.saadpetroleum.com/usuario/login/form/form.js?v=6376f97512273
162.244.93.225200 OK 674 B URL HTTP/2 software.saadpetroleum.com/usuario/login/form/form.js?v=6376f97512273
IP 162.244.93.225:0
Hash 71125abf7b28cf917d549c12a911af90
66e79e98c1459bc95d535a05a863153fb70a9118
3d0f8a39ed4a75fb5028b16e0e27be841e097eed485165b8d0d56188f53e8201
GET /usuario/login/form/form.js?v=6376f97512273 HTTP/1.1
Host: software.saadpetroleum.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://software.saadpetroleum.com/usuario/erty65ytfhgdfsw45rty34erfd/8356ae4687b73bb37a85dd9bcc5a9b51/login/index_1.php
Cookie: real=OK; bid=8356ae4687b73bb37a85dd9bcc5a9b51
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 25 Nov 2022 03:18:13 GMT
content-type: application/javascript
last-modified: Sun, 02 Feb 2020 11:57:12 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 674
date: Fri, 18 Nov 2022 03:18:13 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
software.saadpetroleum.com/usuario/login/ng/ng.js?v=6376f97512276
162.244.93.225200 OK 1.3 kB URL HTTP/2 software.saadpetroleum.com/usuario/login/ng/ng.js?v=6376f97512276
IP 162.244.93.225:0
Hash 733cf3537f379b7d688bf4f10e1d1f9c
dd7310003eb0e6e7f1ed46647245dba88d34e337
bd9a6cd34d1989cd4d85d16cb05f3f9826db26760d0604bf93394c6df7254c85
Analyzer Verdict Alert fortinet Phishing
GET /usuario/login/ng/ng.js?v=6376f97512276 HTTP/1.1
Host: software.saadpetroleum.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://software.saadpetroleum.com/usuario/erty65ytfhgdfsw45rty34erfd/8356ae4687b73bb37a85dd9bcc5a9b51/login/index_1.php
Cookie: real=OK; bid=8356ae4687b73bb37a85dd9bcc5a9b51
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 25 Nov 2022 03:18:13 GMT
content-type: application/javascript
last-modified: Fri, 06 Dec 2019 05:24:30 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1305
date: Fri, 18 Nov 2022 03:18:13 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
software.saadpetroleum.com/usuario/login/token/token.js?v=6376f97512277
162.244.93.225200 OK 468 B URL HTTP/2 software.saadpetroleum.com/usuario/login/token/token.js?v=6376f97512277
IP 162.244.93.225:0
Hash 9416d31a1846f61b8d606dfc2f1b7d8b
a507952d8d0dbd5748f8a90bd4d8c201969d1e8e
e44edd9e178233a5682149cea87aea6e74ebab0b71d9abf844b5b9fa8688c5f3
Analyzer Verdict Alert fortinet Phishing
GET /usuario/login/token/token.js?v=6376f97512277 HTTP/1.1
Host: software.saadpetroleum.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://software.saadpetroleum.com/usuario/erty65ytfhgdfsw45rty34erfd/8356ae4687b73bb37a85dd9bcc5a9b51/login/index_1.php
Cookie: real=OK; bid=8356ae4687b73bb37a85dd9bcc5a9b51
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 25 Nov 2022 03:18:13 GMT
content-type: application/javascript
last-modified: Sun, 02 Feb 2020 11:55:50 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 468
date: Fri, 18 Nov 2022 03:18:13 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
software.saadpetroleum.com/usuario/home.php?pl=token&link=bbva.es&bid=8356ae4687b73bb37a85dd9bcc5a9b51&callback=jQuery321029624872836844685_1668741491758&data=%7B%22mes%22%3A%22User%20on%20login%20page%22%7D&_=1668741491759
162.244.93.225200 OK 0 B URL HTTP/2 software.saadpetroleum.com/usuario/home.php?pl=token&link=bbva.es&bid=8356ae4687b73bb37a85dd9bcc5a9b51&callback=jQuery321029624872836844685_1668741491758&data=%7B%22mes%22%3A%22User%20on%20login%20page%22%7D&_=1668741491759
IP 162.244.93.225:0
GET /usuario/home.php?pl=token&link=bbva.es&bid=8356ae4687b73bb37a85dd9bcc5a9b51&callback=jQuery321029624872836844685_1668741491758&data=%7B%22mes%22%3A%22User%20on%20login%20page%22%7D&_=1668741491759 HTTP/1.1
Host: software.saadpetroleum.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/javascript, application/javascript, application/ecmascript, application/x-ecmascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Referer: https://software.saadpetroleum.com/usuario/erty65ytfhgdfsw45rty34erfd/8356ae4687b73bb37a85dd9bcc5a9b51/login/index_1.php
Cookie: real=OK; bid=8356ae4687b73bb37a85dd9bcc5a9b51; lng=es
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
x-powered-by: PHP/7.3.33
content-type: application/json
date: Fri, 18 Nov 2022 03:18:13 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
software.saadpetroleum.com/usuario/home.php?pl=token&link=bbva.es&bid=8356ae4687b73bb37a85dd9bcc5a9b51&callback=jQuery321029624872836844685_1668741491756&data=%7B%22online_bider%22%3A1%2C%22w%22%3A0%2C%22dev%22%3A3%7D&_=1668741491757
162.244.93.225200 OK 0 B URL HTTP/2 software.saadpetroleum.com/usuario/home.php?pl=token&link=bbva.es&bid=8356ae4687b73bb37a85dd9bcc5a9b51&callback=jQuery321029624872836844685_1668741491756&data=%7B%22online_bider%22%3A1%2C%22w%22%3A0%2C%22dev%22%3A3%7D&_=1668741491757
IP 162.244.93.225:0
GET /usuario/home.php?pl=token&link=bbva.es&bid=8356ae4687b73bb37a85dd9bcc5a9b51&callback=jQuery321029624872836844685_1668741491756&data=%7B%22online_bider%22%3A1%2C%22w%22%3A0%2C%22dev%22%3A3%7D&_=1668741491757 HTTP/1.1
Host: software.saadpetroleum.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/javascript, application/javascript, application/ecmascript, application/x-ecmascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Referer: https://software.saadpetroleum.com/usuario/erty65ytfhgdfsw45rty34erfd/8356ae4687b73bb37a85dd9bcc5a9b51/login/index_1.php
Cookie: real=OK; bid=8356ae4687b73bb37a85dd9bcc5a9b51; lng=es
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
x-powered-by: PHP/7.3.33
content-type: application/json
date: Fri, 18 Nov 2022 03:18:13 GMT
server: LiteSpeed
X-Firefox-Spdy: h2