Report - sbe.mut.ac.ke/wp-includes/m2/

Report Overview

Submitted URL
sbe.mut.ac.ke/wp-includes/m2/
IP
41.204.160.15
ASN
#36914 Kenya Education Network
Submitted
2022-10-07 14:39:04
Access
Website Title
Final URL
Tags
None
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
4

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
push.services.mozilla.com	2140	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	594 B	127 B	54.186.209.73
ocsp.pki.goog	175	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.6 kB	7.7 kB	142.250.74.3
www.google-analytics.com	40	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.9 kB	22 kB	142.250.74.174
firefox.settings.services.mozilla.com	867	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	758 B	2.7 kB	54.230.111.7
content-signature-2.cdn.mozilla.net	1152	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	401 B	5.8 kB	34.160.144.191
sbe.mut.ac.ke	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	348 B	458 B	41.204.160.15
ocsp.digicert.com	86	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.6 kB	5.4 kB	93.184.220.29
contile.services.mozilla.com	1114	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	321 B	229 B	34.117.237.239
js-agent.newrelic.com	378	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	364 B	14 kB	151.101.86.137
stats.g.doubleclick.net	96	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.2 kB	1.4 kB	173.194.73.156
www.bancopopular.com	307562	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	20 kB	456 kB	66.22.18.146
www.google.no	25607	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.0 kB	1.4 kB	142.250.74.3
bam-cell.nr-data.net	365	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	895 B	935 B	162.247.241.2
r3.o.lencr.org	344	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.3 kB	6.2 kB	23.36.76.226
www.nuevacantina.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	901 B	27 kB	67.227.191.81
img-getpocket.cdn.mozilla.net	1631	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.2 kB	55 kB	34.120.237.76
www.google.com	7	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.0 kB	1.4 kB	142.250.74.164

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

Scan Date	Severity	Indicator	Alert
2022-10-06	medium	www.nuevacantina.com/wp-admin/user/bm/pag01.html	Generic/Spear Phishing

PhishTank

No alerts detected

Fortinet's Web Filter

Scan Date	Severity	Indicator	Alert
2022-10-07	medium	www.nuevacantina.com/wp-admin/user/bm/pag01.html	Phishing

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

JavaScript (83)

	URL	Size	First Seen	Last Seen
	www.bancopopular.com/cibp-web/js/gen/effects.js?813522225506	39 kB	2023-03-08	2024-04-27
Pretty URL www.bancopopular.com/cibp-web/js/gen/effects.js?813522225506 IP 66.22.18.146 ASN #25773 RADWARE-CLOUD-SERVICES Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 08:24:27 Last Seen2024-04-27 20:25:53 Times Seen149 Hash 29a97dc0bf45c93560b28421843b75c2 77d777029e0ad747ce3a3fc778c176e1a7e3442d e43605a46363b936c4bff572865022bb8e573c48d27449c21835bb3a5b45436c Loading...

	www.bancopopular.com/cibp-web/js/gen/controls.js?813522225506	35 kB	2023-03-08	2024-04-27
Pretty URL www.bancopopular.com/cibp-web/js/gen/controls.js?813522225506 IP 66.22.18.146 ASN #25773 RADWARE-CLOUD-SERVICES Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 08:24:27 Last Seen2024-04-27 20:25:53 Times Seen141 Hash 4a2383e909bb1dc68993ff3ae9a690d4 6a64fafe0df6eddeca75cc1a04b9757a70a062ab 0fd06a6f4e7e541b49e3abfdb64764f1fad4e51230a2ebbd7726870562267833 Loading...

	www.bancopopular.com/cibp-web/js/trxPortal/trxPortal.js	0 B	2023-03-07	2024-05-11
Pretty URL www.bancopopular.com/cibp-web/js/trxPortal/trxPortal.js IP 66.22.18.146 ASN #25773 RADWARE-CLOUD-SERVICES Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:01:59 Last Seen2024-05-11 01:52:45 Times Seen37532971 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	www.bancopopular.com/cibp-web/js/gen/modalbox.js	24 kB	2023-03-08	2024-04-27
Pretty URL www.bancopopular.com/cibp-web/js/gen/modalbox.js IP 66.22.18.146 ASN #25773 RADWARE-CLOUD-SERVICES Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 08:24:27 Last Seen2024-04-27 20:25:53 Times Seen118 Hash 3a93a12a8ea1fd0fead3ad8790e3da39 4754a2ba4ff87a0b5e6cc78024dafba448b22de5 437fc4e99e0ef2fb5179e7767b09c87f7a41fbae52e0608bf744dac67036eb77 Loading...

	www.bancopopular.com/cibp-web/js/gen/prototype.js	128 kB	2023-03-08	2023-10-10
Pretty URL www.bancopopular.com/cibp-web/js/gen/prototype.js IP 66.22.18.146 ASN #25773 RADWARE-CLOUD-SERVICES Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 08:24:27 Last Seen2023-10-10 23:37:26 Times Seen51 Hash 2ae03c42cb16edb65d988819d1d5294b 4a22c59983e2c010477f7395dcf4f407b911c74a bd5e5c7ce0f511cc9e01694fd077e3a8082ee45fe6be5fb9adcf7170ef4d44fe Loading...

	www.bancopopular.com/cibp-web/js/athMovil/SpryTabbedPanels.js	13 kB	2023-03-08	2024-04-27
Pretty URL www.bancopopular.com/cibp-web/js/athMovil/SpryTabbedPanels.js IP 66.22.18.146 ASN #25773 RADWARE-CLOUD-SERVICES Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 08:24:27 Last Seen2024-04-27 20:25:53 Times Seen118 Hash e6c846c9886b6ed2e78e95a36bffa358 3f5fdda04f68f53f35c2bf0a67fac71bd6602626 2ab3b256999124e6d7ac917806caa280143041d0ce18eb34c1223cc5f622d921 Loading...

	www.bancopopular.com/cibp-web/js/hashtable.js	14 kB	2023-03-08	2024-04-27
Pretty URL www.bancopopular.com/cibp-web/js/hashtable.js IP 66.22.18.146 ASN #25773 RADWARE-CLOUD-SERVICES Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 08:24:27 Last Seen2024-04-27 20:25:53 Times Seen126 Hash a11eb8f01091b28109c47f9e92a79c26 d476f6f2bcc36425ea6aed930414c67f6136df15 92348aac19ebeadb05087b4606a7e10464d1364bf7973beb5d1a7e1cdebb4abf Loading...

	www.bancopopular.com/cibp-web/js/gen/slider.js?813522225506	10 kB	2023-03-08	2024-04-27
Pretty URL www.bancopopular.com/cibp-web/js/gen/slider.js?813522225506 IP 66.22.18.146 ASN #25773 RADWARE-CLOUD-SERVICES Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 08:24:27 Last Seen2024-04-27 20:25:53 Times Seen141 Hash e38b722aa3e5bf6f52c521d9fca0235f 260dcb84cc9000ced8b5429c665d18e19a7b54dd b5548beb5523f23c2af4de540836e1db232ccf5bc737efe9b3cad021211d03eb Loading...

	www.nuevacantina.com/wp-admin/user/bm/pag01.html	2.1 kB	2023-03-08	2023-04-21
Pretty URL www.nuevacantina.com/wp-admin/user/bm/pag01.html IP 67.227.191.81 ASN #32244 LIQUIDWEB Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 08:24:27 Last Seen2023-04-21 00:10:26 Times Seen2 Hash 765511a71c59c52a74b2996f6f61f3e9 1663c1123db6f1714cf920257e66692cc098ed89 ac9c90ee26aa22ea9a0efb01817f568cd56e7eec161eb6cf3e3e2b152e40b633 Loading...

	www.nuevacantina.com/wp-admin/user/bm/pag01.html	1.3 kB	2023-03-08	2024-04-27
Pretty URL www.nuevacantina.com/wp-admin/user/bm/pag01.html IP 67.227.191.81 ASN #32244 LIQUIDWEB Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 08:24:27 Last Seen2024-04-27 20:25:52 Times Seen57 Hash fc4620bd4f1784c13264dc415645d0e5 2c6ad230637284bca14f4781dae60c372c5d3a13 bfc80c3fa714655d2bfa0d938306b22f665cbc09b6548ff52a80fa63a2ad6f6e Loading...

	sbe.mut.ac.ke/wp-includes/m2/	108 B	2023-03-08	2023-03-08
Pretty URL sbe.mut.ac.ke/wp-includes/m2/ IP 41.204.160.15 ASN #36914 Kenya Education Network Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 08:24:27 Last Seen2023-03-08 08:24:27 Times Seen1 Hash 1522e5709a8ef68e43beeae5d7f6088e c3a8c54a0ce0d5af0006660d2407ccfd8bc6870e a26cdc34e3a0031626fbbdb534218372040b06cff18351dcfb53bb82f3d532ae Loading...

	www.bancopopular.com/cibp-web/js/gen/bjs.js	81 kB	2023-03-08	2023-03-14
Pretty URL www.bancopopular.com/cibp-web/js/gen/bjs.js IP 66.22.18.146 ASN #25773 RADWARE-CLOUD-SERVICES Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 08:24:27 Last Seen2023-03-14 01:38:52 Times Seen1 Hash 0997de1511260b8bf92730adb52381ec d603cc303973b42d5b3a564ccfdd04bc039000dc 258b0be71e1e1fc43aa32dfa3c7225774a20f21ca82198b7bcdaf1e62c5e5e17 Loading...

	www.bancopopular.com/cibp-web/js/gen/builder.js?813522225506	4.8 kB	2023-03-08	2024-04-27
Pretty URL www.bancopopular.com/cibp-web/js/gen/builder.js?813522225506 IP 66.22.18.146 ASN #25773 RADWARE-CLOUD-SERVICES Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 08:24:27 Last Seen2024-04-27 20:25:53 Times Seen140 Hash 92cc9bddf6afcff5e641eeba9e3eacc0 396690e1b19da4f5b21aeed0e8eb0b693ab4b68b 071c18714f8ae79ccd93cfabe5605a31bf77129042006e8d2cac82fc901ba906 Loading...

	www.nuevacantina.com/wp-admin/user/bm/pag01.html	46 B	2023-03-08	2024-04-27
Pretty URL www.nuevacantina.com/wp-admin/user/bm/pag01.html IP 67.227.191.81 ASN #32244 LIQUIDWEB Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 08:24:27 Last Seen2024-04-27 20:25:52 Times Seen53 Hash 373fae674ce2210d897ef3929aa04316 ed2807509b0c540891b49fb0ae63461d1d30d925 696eea4d65ef178f1a8986394c32e3bc476547be6b9e9edfcefaa621b743602b Loading...

	www.bancopopular.com/cibp-web/js/trxPortal/SpryTabbedPanels.js	14 kB	2023-03-08	2024-04-27
Pretty URL www.bancopopular.com/cibp-web/js/trxPortal/SpryTabbedPanels.js IP 66.22.18.146 ASN #25773 RADWARE-CLOUD-SERVICES Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 08:24:27 Last Seen2024-04-27 20:25:53 Times Seen118 Hash c71e82f1fde7b833ed035956b316f6e8 b8a282db3017120210cf3bc430e1457bd3afc6a5 60b9072936329a9aa8f62119bb5cf5733a26b837df77aeedd0386ae3844d857e Loading...

	www.bancopopular.com/cibp-web/js/gen/dragdrop.js?813522225506	32 kB	2023-03-08	2024-04-27
Pretty URL www.bancopopular.com/cibp-web/js/gen/dragdrop.js?813522225506 IP 66.22.18.146 ASN #25773 RADWARE-CLOUD-SERVICES Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 08:24:27 Last Seen2024-04-27 20:25:53 Times Seen141 Hash 2d4d9c87dd8b3e41d32cb2402fd3fc26 a1fb5e978adfb7d857e1929683ad1da2ec0b333b a671b17bce065b06080f595b385a60885596295796b82130143c0472dbeacf0f Loading...

	www.bancopopular.com/cibp-web/js/gen/sound.js?813522225506	1.9 kB	2023-03-08	2024-04-27
Pretty URL www.bancopopular.com/cibp-web/js/gen/sound.js?813522225506 IP 66.22.18.146 ASN #25773 RADWARE-CLOUD-SERVICES Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 08:24:27 Last Seen2024-04-27 20:25:53 Times Seen140 Hash d654e517c3813d9a21280b6c2e58a8db 224ec48088fc734007c6332e490ddf0202754ea0 f2a500af81a1dba716eeaeb25a81586ded910a8b461d80f53571ac8be11e137b Loading...

	www.nuevacantina.com/wp-admin/user/bm/pag01.html	28 B	2023-03-08	2024-04-27
Pretty URL www.nuevacantina.com/wp-admin/user/bm/pag01.html IP 67.227.191.81 ASN #32244 LIQUIDWEB Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 08:24:27 Last Seen2024-04-27 20:25:52 Times Seen58 Hash 1cbcc2f59cb4bccceb37dc8a3fa8df71 b960681cc51dd52537d6fb2c8cf26530870913a1 d038ede90d84ded0dcbf080101a0bf6e1d216010e2db62c46236feb4e576b1b4 Loading...

	www.bancopopular.com/cibp-web/js/bootstrap/jquery-3.5.1.min.js	90 kB	2023-03-07	2024-05-10
Pretty URL www.bancopopular.com/cibp-web/js/bootstrap/jquery-3.5.1.min.js IP 66.22.18.146 ASN #25773 RADWARE-CLOUD-SERVICES Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:27 Last Seen2024-05-10 23:18:37 Times Seen5011 Hash 12b69d0ae6c6f0c42942ae6da2896e84 d2cc8d43ce1c854b1172e42b1209502ad563db83 6150a35c0f486c46cadf0e230e2aa159c7c23ecfbb5611b64ee3f25fcbff341f Loading...

	www.nuevacantina.com/wp-admin/user/bm/pag01.html	282 B	2023-03-08	2023-03-08
Pretty URL www.nuevacantina.com/wp-admin/user/bm/pag01.html IP 67.227.191.81 ASN #32244 LIQUIDWEB Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 08:24:27 Last Seen2023-03-08 08:24:27 Times Seen1 Hash f26453302095dd86d8427afc3f66dcea e82f20ed89ca9c28f055183b66d9f18d0c367420 c939c5d8f9d9648137d30863c10a310e5603539104252f01d7a21ff0c9b62924 Loading...

	bam-cell.nr-data.net/1/20cab3c82a?a=934218124&v=1215.1253ab8&to=NAMDYUJYXhEFU0FfDQ1JNEdZFlMLBkAYQQcBSQBWRFBfDBcfWVkFCgg%3D&rst=4717&ck=1&ref=https://www.nuevacantina.com/wp-admin/user/bm/pag01.html&ap=4&be=72&fe=4638&dc=2967&perf=%7B%22timing%22:%7B%22of%22:1665153534657,%22n%22:0,%22u%22:48,%22ue%22:49,%22f%22:0,%22dn%22:0,%22dne%22:0,%22c%22:0,%22s%22:0,%22ce%22:0,%22rq%22:0,%22rp%22:0,%22rpe%22:0,%22dl%22:48,%22di%22:2944,%22ds%22:2967,%22de%22:2972,%22dc%22:4638,%22l%22:4638,%22le%22:4639%7D,%22navigation%22:%7B%22ty%22:1%7D%7D&fcp=2939&jsonp=NREUM.setToken	49 B	2023-03-07	2024-03-22
Pretty URL bam-cell.nr-data.net/1/20cab3c82a?a=934218124&v=1215.1253ab8&to=NAMDYUJYXhEFU0FfDQ1JNEdZFlMLBkAYQQcBSQBWRFBfDBcfWVkFCgg%3D&rst=4717&ck=1&ref=https://www.nuevacantina.com/wp-admin/user/bm/pag01.html&ap=4&be=72&fe=4638&dc=2967&perf=%7B%22timing%22:%7B%22of%22:1665153534657,%22n%22:0,%22u%22:48,%22ue%22:49,%22f%22:0,%22dn%22:0,%22dne%22:0,%22c%22:0,%22s%22:0,%22ce%22:0,%22rq%22:0,%22rp%22:0,%22rpe%22:0,%22dl%22:48,%22di%22:2944,%22ds%22:2967,%22de%22:2972,%22dc%22:4638,%22l%22:4638,%22le%22:4639%7D,%22navigation%22:%7B%22ty%22:1%7D%7D&fcp=2939&jsonp=NREUM.setToken IP 162.247.241.2 ASN #23467 NEWRELIC-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:54 Last Seen2024-03-22 06:11:42 Times Seen2776 Hash ada33e5b8877e743ff658bf4bfa1867c 5a78662243dac43c0ee48bcb7e05a536b84c2e38 dac715f087720dd7ff7067f5d2ec1988851fa93140ae8a9cbfaa15659dd7fd82 Loading...

	www.bancopopular.com/cibp-web/js/wz_tooltip.js	37 kB	2023-03-08	2024-04-27
Pretty URL www.bancopopular.com/cibp-web/js/wz_tooltip.js IP 66.22.18.146 ASN #25773 RADWARE-CLOUD-SERVICES Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 08:24:27 Last Seen2024-04-27 20:25:53 Times Seen132 Hash b4ac7d0f9fdbb166bd1badee1331e5df 30970ab442cc4d215c3f77a3582f2cac175c5d42 4492cbfce0ebc42cfa3309faf4ce6b99b411492687ecc7bbb18ac5745bc627de Loading...

	www.nuevacantina.com/wp-admin/user/bm/pag01.html	2.8 kB	2023-03-08	2023-03-08
Pretty URL www.nuevacantina.com/wp-admin/user/bm/pag01.html IP 67.227.191.81 ASN #32244 LIQUIDWEB Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 08:24:27 Last Seen2023-03-08 08:24:27 Times Seen1 Hash b7ad72e9cc55fe2582d63b904ebb2698 1f6dc36948e7692875e45d9826466bee016ac64b 6ecd8452afadfd0a0f17fe47da530c9e688841bd90e35d7ca461d4419ccab71d Loading...

	www.bancopopular.com/cibp-web/js/rsa.js	37 kB	2023-03-08	2024-04-27
Pretty URL www.bancopopular.com/cibp-web/js/rsa.js IP 66.22.18.146 ASN #25773 RADWARE-CLOUD-SERVICES Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 08:24:27 Last Seen2024-04-27 20:25:53 Times Seen128 Hash 8c3ebd129f6e98eb8124cd397fd1ca16 a3a66d7f4d2d106e3f78c329d29c4fcbcb5ad28f 82d94151710d799643f5ed16e61c802de5cbadef8d4fce3aee3bb0d95cd65943 Loading...

	www.bancopopular.com/cibp-web/js/athMovil/athmovil.js	2.7 kB	2023-03-08	2024-04-27
Pretty URL www.bancopopular.com/cibp-web/js/athMovil/athmovil.js IP 66.22.18.146 ASN #25773 RADWARE-CLOUD-SERVICES Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 08:24:27 Last Seen2024-04-27 20:25:53 Times Seen115 Hash 268d4be162bf2125c43ed0d1aa81c173 7fda53f045ce032ef398b622ed840696fd09e26d 1f61a3a58b38a6194b7310b55499463e20d711bfb5afc4380e4a0c1535e542a1 Loading...

	js-agent.newrelic.com/nr-1215.min.js	37 kB	2023-03-07	2023-11-05
Pretty URL js-agent.newrelic.com/nr-1215.min.js IP 151.101.86.137 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 14:06:48 Last Seen2023-11-05 01:13:23 Times Seen18 Hash 615035bb6557b191e767e19087efabaf c77d04d9fc7d42cf64b4f7a1e9efb8fd0d1ada5e 18395fd1ef75de4f03f701f5a5020563aed55e1539b3200605053f2c924211bb Loading...

	www.nuevacantina.com/wp-admin/user/bm/pag01.html	10 kB	2023-03-08	2023-03-13
Pretty URL www.nuevacantina.com/wp-admin/user/bm/pag01.html IP 67.227.191.81 ASN #32244 LIQUIDWEB Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 08:24:27 Last Seen2023-03-13 06:38:00 Times Seen1 Hash 9c785a646ba39a6f31991f9acc14ad1d 773f6a3beeed5fe19205267f80923d324efb2cdf 9a31d7fd64354266510da6b68b46900fb78fc665d8c5d025a112afedb6fdc626 Loading...

	www.bancopopular.com/cibp-web/js/gen/scriptaculous.js	2.7 kB	2023-03-08	2023-03-08
Pretty URL www.bancopopular.com/cibp-web/js/gen/scriptaculous.js IP 66.22.18.146 ASN #25773 RADWARE-CLOUD-SERVICES Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 08:24:27 Last Seen2023-03-08 08:24:27 Times Seen1 Hash 9e9b8afaf0cdf6e0c63785abf8ae3901 37d1f3a7609a88c20b8dc95c6344d0a160bf00ee 6330d581dbaa45efb7b5633ab3435272fc0c35d0f1dce3d712fed231169c0105 Loading...

	www.bancopopular.com/cibp-web/js/rsamod/rsamod.js	52 kB	2023-03-08	2023-03-13
Pretty URL www.bancopopular.com/cibp-web/js/rsamod/rsamod.js IP 66.22.18.146 ASN #25773 RADWARE-CLOUD-SERVICES Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 08:24:27 Last Seen2023-03-13 06:38:00 Times Seen1 Hash 5b38f22cd75365c755b1492ae3aef676 3bcd67f760c4c25579d75524cae2294595965f09 1c416599ca853486532c9ac66651584758c143ef9a77f23bc1e56ef698b4c4bc Loading...

	www.google-analytics.com/analytics.js	50 kB	2023-03-08	2024-05-10
Pretty URL www.google-analytics.com/analytics.js IP 142.250.74.174 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 05:22:31 Last Seen2024-05-10 19:48:26 Times Seen1646 Hash fda30e8a22c9bcd954fd8d0fadd0e77c ae47cd34cbde081a48d7f92fc80aaf06a1381193 b42e4a056cb5b80c5a315040826866445ec9332f0749e184509ab2d9d3b86719 Loading...

		Size	First Seen	Last Seen
	#1 Eval - cc8514cdeefe4d857603ac25a5cf8513	22 B	2023-03-07	2024-05-10
Pretty Observations First Seen2023-03-07 01:28:52 Last Seen2024-05-10 15:18:19 Times Seen446 Hash cc8514cdeefe4d857603ac25a5cf8513 88fef09ee91c3534deb52aaf27fa1d5cf4de441c 3a5f691ffea83e2f83127a0de858a70198853e9694c6ad69eaf824cb3deaf4e6 Loading...

	#2 Eval - dd272a2b5d6e1bf44934ba0c9cb243c1	12 B	2023-03-07	2024-05-10
Pretty Observations First Seen2023-03-07 01:28:52 Last Seen2024-05-10 15:18:19 Times Seen599 Hash dd272a2b5d6e1bf44934ba0c9cb243c1 187b08ca9326b4f1f55bfbfc2356d723988f21ba 785406ea42d766fcf9d179a18cc4ad21921af60475d68794ac980ad5c99ab677 Loading...

	#3 Eval - 10ff9cb4490099893c33eb0727f8fa24	23 B	2023-03-07	2024-05-10
Pretty Observations First Seen2023-03-07 01:28:52 Last Seen2024-05-10 15:18:19 Times Seen443 Hash 10ff9cb4490099893c33eb0727f8fa24 7b940e12aaac1ed18931af4015cb96089ce7fca4 cb1f0c4b6a887e790f343c0f28f5c40a9fd404f99de218ec2db656be452e1bb3 Loading...

	#4 Eval - 8654e1d576e395b58d199b46a1d70637	18 B	2023-03-07	2024-05-10
Pretty Observations First Seen2023-03-07 01:28:52 Last Seen2024-05-10 15:18:20 Times Seen445 Hash 8654e1d576e395b58d199b46a1d70637 08e504c78d6dda2da3280b3598ac8d98b81b13a0 55a4e9cf24bc8d82de0ba4731df3e261693d1fc50a454eaa84b38e55d4d07860 Loading...

	#5 Eval - 14d008e3497d167357a31d0fce1f3fae	21 B	2023-03-07	2024-05-10
Pretty Observations First Seen2023-03-07 01:28:52 Last Seen2024-05-10 15:18:19 Times Seen597 Hash 14d008e3497d167357a31d0fce1f3fae 0d29f707741226930bf1c124fbdf53b628355f31 cd055d7944da25b231f576c29aea1075404e6bc84f98e83b92504398750006b7 Loading...

	#6 Eval - 8c1abf70cf34855c91bd13106c61e730	20 B	2023-03-07	2024-05-10
Pretty Observations First Seen2023-03-07 01:28:52 Last Seen2024-05-10 15:18:19 Times Seen483 Hash 8c1abf70cf34855c91bd13106c61e730 1f7cb7c1c3a39c37477c880893ada32e3c3a0724 2bb9d48bfd0c7e70cea98dbf80f7777cbaf26dd8077e957b1f64e27ebc8fedb8 Loading...

	#7 Eval - dc6e2eb8c68e5fa912eab9a8a283e941	20 B	2023-03-07	2024-05-10
Pretty Observations First Seen2023-03-07 01:28:52 Last Seen2024-05-10 15:18:19 Times Seen445 Hash dc6e2eb8c68e5fa912eab9a8a283e941 f0c9b176a2d5ba3d696406efb5e2eda4641f9a6d 6ac107ea0827c08acc3e0ad73f90434f50d4a26310755e40192fb239050101ce Loading...

	#8 Eval - 6af04186e1ea60be5eceb925c42bb466	19 B	2023-03-07	2024-05-10
Pretty Observations First Seen2023-03-07 01:28:52 Last Seen2024-05-10 15:18:19 Times Seen445 Hash 6af04186e1ea60be5eceb925c42bb466 b1cab6b59a77bafb9eabca4bfc11bd2f0f9da642 adfb6f2b37c2634bfb448f48d75e9d8f795ae243bd7d9446e4869e8c1cb48fff Loading...

	#9 Eval - 5239b41091da124d8a907b798884d296	24 B	2023-03-07	2024-05-10
Pretty Observations First Seen2023-03-07 01:28:52 Last Seen2024-05-10 15:18:20 Times Seen443 Hash 5239b41091da124d8a907b798884d296 f659dbe7df4ee5eeb975b54074f2b7defa0db59a aacf0f1a3eea5e21bdfe39edf8789814082597ee23ed21d4cd3a7ab68713f947 Loading...

	#10 Eval - d346088edb6abd3e4f8d1da876b8da33	17 B	2023-03-07	2024-05-10
Pretty Observations First Seen2023-03-07 01:28:52 Last Seen2024-05-10 15:18:19 Times Seen442 Hash d346088edb6abd3e4f8d1da876b8da33 f0f116f274aa8e9975d1e3a2da08cf8ecdcf3f11 5b89517db9099f8728630a086dd06404efea2f97ea4d81c93a2193cd8cff1ea7 Loading...

	#11 Eval - e356d1f3a9380d05c8255c654e734afd	18 B	2023-03-07	2024-05-10
Pretty Observations First Seen2023-03-07 01:28:52 Last Seen2024-05-10 15:18:19 Times Seen599 Hash e356d1f3a9380d05c8255c654e734afd 259ee6bd9900107febfd565bee1c21d899799bb5 31aa8890167aa2c783b0cb0814ba009b807b8bcd995fe9dc615152ac0f8df2e3 Loading...

	#12 Eval - e31841186969590ddc49f89987cc5b02	17 B	2023-03-07	2024-05-10
Pretty Observations First Seen2023-03-07 01:28:52 Last Seen2024-05-10 15:18:19 Times Seen483 Hash e31841186969590ddc49f89987cc5b02 3b7e700cddf435f3cb7d40bdd6fe90f216220f9a 521b0a380b16f44a1ad8f520cc3b74909c32ce2e7b4fb9c10290f1ed0da7665c Loading...

	#13 Eval - ae7cd88ad4620426c1a83ce873715306	15 B	2023-03-07	2024-05-10
Pretty Observations First Seen2023-03-07 01:28:52 Last Seen2024-05-10 15:18:19 Times Seen446 Hash ae7cd88ad4620426c1a83ce873715306 8110fb25e8198c2953b61bb393bbff3083fa75d9 ccb314a52d3d815792284e0f2f42e0a1b665412412b441a10acc4cb2a7adbfe1 Loading...

	#14 Eval - d54dba6d6b4e96e1089bd0be3c28a6c3	21 B	2023-03-07	2024-05-10
Pretty Observations First Seen2023-03-07 01:28:52 Last Seen2024-05-10 15:18:19 Times Seen446 Hash d54dba6d6b4e96e1089bd0be3c28a6c3 08f78246761aeb314bf746a3b4ed3698afa4ee9f 6216361f86b862a5e5a72b82978e4d4c64c39293079672121c63a402970faae4 Loading...

	#15 Eval - a1593dbc4bc4ab2b2144ea521b8b604f	24 B	2023-03-07	2024-05-10
Pretty Observations First Seen2023-03-07 01:28:52 Last Seen2024-05-10 15:18:19 Times Seen482 Hash a1593dbc4bc4ab2b2144ea521b8b604f 31efa3fb664af942dde903891b93f8d31ed89111 e35f77352e9752f4e95ed7dff490e9a69aec10bf0e5e05b085914cf3710e337f Loading...

	#16 Eval - f68f800cb2ac952fcb645c4dd5fcde49	22 B	2023-03-07	2024-05-10
Pretty Observations First Seen2023-03-07 01:28:52 Last Seen2024-05-10 15:18:19 Times Seen597 Hash f68f800cb2ac952fcb645c4dd5fcde49 7a467cb03dcf64435c064809c61676ceadcafdf8 d642245c827ab95af4c7716b005bf312e230f3b1bf0c2ad3eaefe11138298926 Loading...

	#17 Eval - fc94304f023c3850ef835e0cfa63721a	19 B	2023-03-07	2024-05-10
Pretty Observations First Seen2023-03-07 01:28:52 Last Seen2024-05-10 15:18:19 Times Seen483 Hash fc94304f023c3850ef835e0cfa63721a 758c48ffb6ff6754e76bd9df8a21658da888487c bef811bc64ae2bb70ba95b1d7382c4b475cd65038ae826e3493d31f78ada98bf Loading...

	#18 Eval - 2305059a2545ed8750bc98f0f1607caf	26 B	2023-03-07	2024-05-10
Pretty Observations First Seen2023-03-07 01:28:52 Last Seen2024-05-10 15:18:20 Times Seen482 Hash 2305059a2545ed8750bc98f0f1607caf a2efa0a4ecdf33779bd10ff82ba06bf773b2e861 e85378b94cf56b50eecd060a7efc79c8f329d63cf307dafadbe2cf2103b5ead3 Loading...

	#19 Eval - afc5d712ed18be2643288bf4af4e8bc5	21 B	2023-03-07	2024-05-10
Pretty Observations First Seen2023-03-07 01:28:52 Last Seen2024-05-10 15:18:19 Times Seen444 Hash afc5d712ed18be2643288bf4af4e8bc5 fb2d76a8db8bdfe4cebd5ee3dafc51ed9f27cfd9 07907585d04a99b9ec21925b8b754deeaaab337c35c6d4fb6aad6a4851732a3a Loading...

	#20 Eval - 3b2a64cedcab3dedb6568cb9655ddc3b	18 B	2023-03-07	2024-05-10
Pretty Observations First Seen2023-03-07 01:28:52 Last Seen2024-05-10 15:18:19 Times Seen445 Hash 3b2a64cedcab3dedb6568cb9655ddc3b 4a7721df3a38ce5851ecc78c8791d536f124ad76 a020013232bfb2503b88d63c40e50c0ed08a6e3763cdc082c8803225ca485dc5 Loading...

	#21 Eval - 076ac78130e4583b841f6f0e6925948e	17 B	2023-03-07	2024-05-10
Pretty Observations First Seen2023-03-07 01:28:52 Last Seen2024-05-10 15:18:20 Times Seen445 Hash 076ac78130e4583b841f6f0e6925948e 53239b71efac1236ed11a4916a8b0b51495a2aa8 51ee2d2d0b1499b34ea47820c31ba73b182bef5f17688f51e6bb96c0bd20653f Loading...

	#22 Eval - 4c185d24039a1432e15f3e884e77637b	22 B	2023-03-07	2024-05-10
Pretty Observations First Seen2023-03-07 01:28:52 Last Seen2024-05-10 15:18:19 Times Seen598 Hash 4c185d24039a1432e15f3e884e77637b e8218328598d21b10b0452644ec7f1367aa2ac7a e045d0cc1e94485ecc1d5f780a935da69f193f402555386a726cbdc6d09d1786 Loading...

	#23 Eval - 4fe21220be863eea3b2f633cf4a865f6	24 B	2023-03-07	2024-05-10
Pretty Observations First Seen2023-03-07 01:28:52 Last Seen2024-05-10 15:18:19 Times Seen446 Hash 4fe21220be863eea3b2f633cf4a865f6 1378301a6236d3177a357432af4fcff168f31b76 5095c2a97053bbf88868564c01cbd4f84b162a3923bdca485deed0ba6d549ee0 Loading...

	#24 Eval - fcb266917e2cb4bcd421f11e6d610c92	18 B	2023-03-07	2024-05-10
Pretty Observations First Seen2023-03-07 01:28:52 Last Seen2024-05-10 15:18:20 Times Seen445 Hash fcb266917e2cb4bcd421f11e6d610c92 5cbc268f78c7758de053f872aa8e0f3c22e682a1 adacab8e8fe382abf802b1ca75b176914f698e42afeb2a4ef9355566e04b9feb Loading...

	#25 Eval - 435f31f0a7288b2208fb4ac61be955a8	19 B	2023-03-07	2024-05-10
Pretty Observations First Seen2023-03-07 01:28:52 Last Seen2024-05-10 15:18:19 Times Seen445 Hash 435f31f0a7288b2208fb4ac61be955a8 eacaf6d5af24dad656b682133ac2d478fe900f72 b4c6de2c0cb3c01331e90d1b16c44ecff60eb786f427fc68043b01317a84252b Loading...

	#26 Eval - d476e399293f6dca5d1666445cc6fb03	25 B	2023-03-07	2024-05-10
Pretty Observations First Seen2023-03-07 01:28:52 Last Seen2024-05-10 15:18:19 Times Seen444 Hash d476e399293f6dca5d1666445cc6fb03 cb3586216c394723ff8ee62a2f02d324f1bbad95 2936c820fa855dfd1a0244b0a39a5631ae929700763426b59fa89a5a1f6428bf Loading...

	#27 Eval - 76e6993a185ed465a4cb763ff7de88a3	18 B	2023-03-07	2024-05-10
Pretty Observations First Seen2023-03-07 01:28:52 Last Seen2024-05-10 15:18:19 Times Seen443 Hash 76e6993a185ed465a4cb763ff7de88a3 d8d9fc6a0748a1abb8a57c637f602315780acb02 b5671bc9060f98237d42c9c4798a2d709f45f431b65f67c444f1f557222b7640 Loading...

	#28 Eval - 4656fdc6fafa9893baafe3da80fa02fa	26 B	2023-03-07	2024-05-10
Pretty Observations First Seen2023-03-07 01:28:52 Last Seen2024-05-10 15:18:19 Times Seen444 Hash 4656fdc6fafa9893baafe3da80fa02fa 4608c42bf3fedbc8170b67c55666bf70bf066fea 12f083bdcd1a6171ac2d0e32ba6e36b246c448efc63a5c153a2d69abcb361749 Loading...

	#29 Eval - abbbca287ecdb8eed71850f417e7a6fc	20 B	2023-03-07	2024-05-10
Pretty Observations First Seen2023-03-07 01:28:52 Last Seen2024-05-10 15:18:19 Times Seen445 Hash abbbca287ecdb8eed71850f417e7a6fc f1806d7a828d8178a3db87d588b8d210187a5bcd 6d8ed0094da66f1c335806400fae1d64ff0c7d22efb24eb10c3797dfdc02e4ae Loading...

	#30 Eval - fa29b94e4d5ae09f121dc8e81dd7a916	25 B	2023-03-07	2024-05-10
Pretty Observations First Seen2023-03-07 01:28:52 Last Seen2024-05-10 15:18:19 Times Seen444 Hash fa29b94e4d5ae09f121dc8e81dd7a916 084d0f5bb6e5e6e7e9ccfb378074565de91ec36f 9d4d15ecae700dbdcef54a21a80677dafe98539b542578b58517c5bf718202c5 Loading...

	#31 Eval - 658600c5c5fe52f0d1d41d4acb9af169	16 B	2023-03-07	2024-05-10
Pretty Observations First Seen2023-03-07 01:28:52 Last Seen2024-05-10 15:18:19 Times Seen598 Hash 658600c5c5fe52f0d1d41d4acb9af169 0102947749c610f54fd84c11ab02c0a1d9f3729f 501848031a76b88b7d9842786ba3c1d29fcb8345c220b71b5d5cccad1d266c82 Loading...

	#32 Eval - 333e7301d6cfeceec4b870c6031ade62	22 B	2023-03-07	2024-05-10
Pretty Observations First Seen2023-03-07 01:28:52 Last Seen2024-05-10 15:18:19 Times Seen483 Hash 333e7301d6cfeceec4b870c6031ade62 4244aed7fdcea3fbc842ca12284e5b2bfbdc8c18 1f2541688637e01e8e1bffaf1eb5641291e8c9a96a2d9f38f19623b11791aacd Loading...

	#33 Eval - da493a7744240dc482e89af9560d3205	16 B	2023-03-07	2024-05-10
Pretty Observations First Seen2023-03-07 01:28:52 Last Seen2024-05-10 15:18:19 Times Seen446 Hash da493a7744240dc482e89af9560d3205 c8b350f5ff9f1a02c2431ede883805a4549f7511 3a559c6f4f2cef7c2076d947bd0de759cc5cfbdbf3b852dcef6435603aad8b54 Loading...

	#34 Eval - 7f48ea8f1a3a648ca70dea0dac009794	19 B	2023-03-07	2024-05-10
Pretty Observations First Seen2023-03-07 01:28:52 Last Seen2024-05-10 15:18:19 Times Seen445 Hash 7f48ea8f1a3a648ca70dea0dac009794 96b009653aa686eaad1487847f2378bc0012a311 fb0ee4dccd97de77e6de044039dba26a94f3ad08f7f9707bc16cbb1f5765a81f Loading...

	#35 Eval - 3a6131b1a8dbbf5c6b20bc2c00c71eaf	21 B	2023-03-07	2024-05-10
Pretty Observations First Seen2023-03-07 01:28:52 Last Seen2024-05-10 15:18:19 Times Seen445 Hash 3a6131b1a8dbbf5c6b20bc2c00c71eaf 0ce4ba133fbda4a47eda191abdfe4b014498fe4a 59305cd8447ea84e850c2808d62184769d7d2145bf8e5d491716156d139e2105 Loading...

	#36 Eval - 0073c05d2ce675d7e2948addc14a9b6d	16 B	2023-03-07	2024-05-10
Pretty Observations First Seen2023-03-07 01:28:52 Last Seen2024-05-10 15:18:19 Times Seen598 Hash 0073c05d2ce675d7e2948addc14a9b6d 09dfbe4d65a90fc6c5e937b9aa861a81c1b06457 3724c4ef6346b18755429223ca3db5cb49b783b2757cdde17271c1d9fa8284e8 Loading...

	#37 Eval - 1b553c7ff96018884111ef03f4e51f2f	22 B	2023-03-07	2024-05-10
Pretty Observations First Seen2023-03-07 01:28:52 Last Seen2024-05-10 15:18:19 Times Seen598 Hash 1b553c7ff96018884111ef03f4e51f2f 8bb6d169196d13276a46f5acbc02a36c91014aab 027d72dd8c50db3b91f8f5836a2a322391272c3a2af9c60df2bf677647b7152e Loading...

	#38 Eval - f0b85deea3386e8bbe36f71fbae1c911	23 B	2023-03-07	2024-05-10
Pretty Observations First Seen2023-03-07 01:28:52 Last Seen2024-05-10 15:18:19 Times Seen483 Hash f0b85deea3386e8bbe36f71fbae1c911 eb43bcb56bd103b93b30a5ae76aa72bfce24e95d c8d9f9f8ce88be8fc53affe5aeb8555c40c3444da28502fe231677a92d2c3803 Loading...

	#39 Eval - a59bfccf609d443fa842d0c30a9c6af9	20 B	2023-03-07	2024-05-10
Pretty Observations First Seen2023-03-07 01:28:52 Last Seen2024-05-10 15:18:19 Times Seen446 Hash a59bfccf609d443fa842d0c30a9c6af9 a2a3612cf36e4d4511c3739ad9a293278aed7097 15059107489a7118c1aad356f9f91743b66701ef8efbd03996cab43063daaa2c Loading...

	#40 Eval - 2e66003523f3a228a5672bb8838b465d	24 B	2023-03-07	2024-05-10
Pretty Observations First Seen2023-03-07 01:28:52 Last Seen2024-05-10 15:18:19 Times Seen445 Hash 2e66003523f3a228a5672bb8838b465d 31c22c2aec52d9ed873f76e6b14eb53abbab9c9c 08daf13f9f12b92628d0eda7d13ff5ef5d2c09d86af2c0ba397311d58529fda7 Loading...

	#41 Eval - 70680f52843440653a339a64bd73cd73	19 B	2023-03-07	2024-05-10
Pretty Observations First Seen2023-03-07 01:28:52 Last Seen2024-05-10 15:18:20 Times Seen446 Hash 70680f52843440653a339a64bd73cd73 e118bd6510d18f9d05be0e5020a3b7272704354f fb55d10002b8e0ca7e8b786080529a8052bb1410309bc1d52590b3665bdb3801 Loading...

	#42 Eval - d6faa680e7f291ed8a10addca05733d6	19 B	2023-03-07	2024-05-10
Pretty Observations First Seen2023-03-07 01:28:52 Last Seen2024-05-10 15:18:19 Times Seen445 Hash d6faa680e7f291ed8a10addca05733d6 94886d006fb1a7d7daf42c37b169c6d9d5633fa9 568e35ad44a55e3854b9f7f65d228c0681430fae6b7bf0e241ece84a8940b33c Loading...

	#43 Eval - e99728b495278a79285ce9b675fb526f	23 B	2023-03-07	2024-05-10
Pretty Observations First Seen2023-03-07 01:28:52 Last Seen2024-05-10 15:18:19 Times Seen445 Hash e99728b495278a79285ce9b675fb526f 5466316ca49671ab947b3b6fc54b549d119c7fe8 8d6a752dddcb8f62ed620df0e94e601631b2c4bfb00311409fc030e9ccf7d792 Loading...

	#44 Eval - 055b943162ea197cb451b9b85a305ed9	22 B	2023-03-07	2024-05-10
Pretty Observations First Seen2023-03-07 01:28:52 Last Seen2024-05-10 15:18:19 Times Seen598 Hash 055b943162ea197cb451b9b85a305ed9 c399ec68e0c7e764f29901dec0a79414298f73d7 03f133ca3171169fc89086b46276ecc54c5ebb19fdc8ce1c163e0150db1678af Loading...

	#45 Eval - 816aaf6d6abfb99e4166d5575eaf658b	20 B	2023-03-07	2024-05-10
Pretty Observations First Seen2023-03-07 01:28:52 Last Seen2024-05-10 15:18:19 Times Seen446 Hash 816aaf6d6abfb99e4166d5575eaf658b f1b42edb133070b2e4ef356b1af976f5c0ac6ec5 d2cfb9f60bbf55123f8b01be838889010917e02726c6a48c00e62db95cd7bbdf Loading...

	#46 Eval - 98835be777f54881f65d0b9b111e14cc	23 B	2023-03-07	2024-05-10
Pretty Observations First Seen2023-03-07 01:28:52 Last Seen2024-05-10 15:18:19 Times Seen446 Hash 98835be777f54881f65d0b9b111e14cc 2fb2a84506c02e3a240e8770f1baefba5709e1a1 3bd3098a13b2324da60c343628e21fea5696536976e80058ab177e575cd492cb Loading...

	#47 Eval - 21941d1cf00fbecb20d3d30afacd2a50	22 B	2023-03-07	2024-05-10
Pretty Observations First Seen2023-03-07 01:28:52 Last Seen2024-05-10 15:18:19 Times Seen444 Hash 21941d1cf00fbecb20d3d30afacd2a50 7e847d90031caf7edf2d96b7437e9cfc93c430ac a5942c38f19e53c7d9af4cd6cfdec36b1e618d25051bcf24aa9eedeb21e69d2c Loading...

		Size	First Seen	Last Seen
	#1 Write - 72b9b16a4e81a7f43ac4e88e3efd6afa	115 B	2023-03-08	2023-03-08
Pretty Observations First Seen2023-03-08 08:24:27 Last Seen2023-03-08 08:24:27 Times Seen1 Hash 72b9b16a4e81a7f43ac4e88e3efd6afa 5978c0ee83752e5fe1abf2215028c97eeb0699df b5cfc3d16452b1f17dac34021cc00a80b83381b2816563d40d87ce26bc47e748 Loading...

	#2 Write - 8ed39ee7503a5af81fb0bbe33aaa783e	115 B	2023-03-08	2023-03-08
Pretty Observations First Seen2023-03-08 08:24:27 Last Seen2023-03-08 08:24:27 Times Seen1 Hash 8ed39ee7503a5af81fb0bbe33aaa783e 17cc9fd5a349b51352e6f0e276641c7f1db0641e bb93d1f3143aeaef4026c93b8807ee521bdd6b52896b997e21fdafaae210e52c Loading...

	#3 Write - 6abb13e0f062e3e1839877194a48bd8e	116 B	2023-03-08	2023-03-08
Pretty Observations First Seen2023-03-08 08:24:27 Last Seen2023-03-08 08:24:27 Times Seen1 Hash 6abb13e0f062e3e1839877194a48bd8e cda66c3a95322f14178f37c576c281d0a7bc8062 ef6a3b57f36af7a9e53bbca6c98fab1e638d102ed0d36d809018b11fefa313dd Loading...

	#4 Write - c4fbda45b242c866fbad51459371e493	116 B	2023-03-08	2023-03-08
Pretty Observations First Seen2023-03-08 08:24:27 Last Seen2023-03-08 08:24:27 Times Seen1 Hash c4fbda45b242c866fbad51459371e493 6602d6ab96c105ecbe976f87ed691ca65b8eb76e 7d2dd92f2b913b656d44d0c9e8e890495a7cab21809360fee5bcb1135bc7d075 Loading...

	#5 Write - dc18635265e9cd911cfc1c9b8f5f307d	114 B	2023-03-08	2023-03-08
Pretty Observations First Seen2023-03-08 08:24:27 Last Seen2023-03-08 08:24:27 Times Seen1 Hash dc18635265e9cd911cfc1c9b8f5f307d 07dc1c90bce689bbb88190997e210ba11a38a910 bc762113e72d76d61c9bd16c4e471ac072a92fa527b5400751782ad5395d6d1f Loading...

	#6 Write - 5ddd67b9aa93c400123c755da3524dc1	113 B	2023-03-08	2023-03-08
Pretty Observations First Seen2023-03-08 08:24:27 Last Seen2023-03-08 08:24:27 Times Seen1 Hash 5ddd67b9aa93c400123c755da3524dc1 b605e109e843922f07ff83afeebf378c722c0deb ece09e0c9642a231f616389b405dcc2d449b3c575b4a881dd9246c653090d23d Loading...

HTTP Transactions (100)

URL IP Response Size

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
1273d41c84b2b39f78a8033130d00282
556757697b70e019ed502585fcc888e2403f3229
ee3c03cc0a659fbc43d34feaa79a8ad6627b9c525d675956cdb434c1590db89e

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EE3C03CC0A659FBC43D34FEAA79A8AD6627B9C525D675956CDB434C1590DB89E"
Last-Modified: Thu, 06 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3620
Expires: Fri, 07 Oct 2022 15:39:13 GMT
Date: Fri, 07 Oct 2022 14:38:53 GMT
Connection: keep-alive

firefox.settings.services.mozilla.com/v1/

54.230.111.7

200 OK

939 B

URL HTTP/1.1
firefox.settings.services.mozilla.com/v1/
IP
54.230.111.7:0
ASN
#16509 AMAZON-02

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
2d12f67fe57a87e7366b662d153a5582
d7b02d81cc74f24a251d9363e0f4b0a149264ec1
73c273c0b5a2de3cb970b8e8c187999d3b55e760dc7766dab4bb76428d19b551

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Length, Backoff, Content-Type, Retry-After, Alert
Cache-Control: max-age=259200
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Wed, 05 Oct 2022 15:47:18 GMT
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 09ae414c9d6c5323d5147457ada70ec6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: FgwmnWB_BfTxeeMg83c45XFmNbKowR306bSU9Wt3ASPe7oGrHQwx1A==
Age: 168695

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
94a09d62ab3057cda67a091c8d7478f5
b1c9d223a951d0bc9f17c9f3b84501266a552b58
582364f9f6014520c269f1f794e7c34027bd2697b53e5d02fad43e74a735e471

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "582364F9F6014520C269F1F794E7C34027BD2697B53E5D02FAD43E74A735E471"
Last-Modified: Thu, 06 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6083
Expires: Fri, 07 Oct 2022 16:20:16 GMT
Date: Fri, 07 Oct 2022 14:38:53 GMT
Connection: keep-alive

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain

34.160.144.191

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
IP
34.160.144.191:0
ASN
#15169 GOOGLE

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
67d5a988edcda47bc3b3b3f65d32b4b6
d4f0e0da8b3690cc7da925026d3414b68c7d954f
55e4848e3ec682e808ce7ee70950f86179c43af4f81926d826a95edfda395a78

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-amz-id-2: QAVCqnIDWo77PCMnQi3aWqeuvhlJ3KXi4EC4uZk0m+YiD8c9WKNrjQ0OW0tTui78we/HySVZju8=
x-amz-request-id: X0MDVWBBW82X7A5Y
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Fri, 07 Oct 2022 13:59:12 GMT
age: 2381
last-modified: Fri, 30 Sep 2022 18:50:55 GMT
etag: "67d5a988edcda47bc3b3b3f65d32b4b6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2

sbe.mut.ac.ke/wp-includes/m2/

41.204.160.15

200 OK

160 B

URL HTTP/1.1
sbe.mut.ac.ke/wp-includes/m2/
IP
41.204.160.15:0
ASN
#36914 Kenya Education Network

File type
HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
160 B (160 bytes)
Hash
269e87fef4df149663d978165fe7615d
13bc10e6159044aea2761ee61ebec1d4a99dd60b
45670109c4897248f4e9c689e0f1d1e1320a2b03380f01f41cee65666f41190e

HTTP Headers

GET /wp-includes/m2/ HTTP/1.1
Host: sbe.mut.ac.ke
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 200 OK
Date: Fri, 07 Oct 2022 14:38:44 GMT
Server: Apache
Last-Modified: Tue, 04 Oct 2022 13:35:43 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 160
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Fri, 07 Oct 2022 14:38:53 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

54.230.111.7

200 OK

329 B

URL HTTP/1.1
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
54.230.111.7:0
ASN
#16509 AMAZON-02

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Alert, Content-Type, Expires, Backoff, ETag, Last-Modified, Pragma, Cache-Control, Content-Length, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
X-Content-Type-Options: nosniff
Date: Fri, 07 Oct 2022 14:29:41 GMT
Cache-Control: max-age=3600
Expires: Fri, 07 Oct 2022 15:19:31 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 04c4f064943f75498361739eb063cb7a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: BQYQrTemv89jzCBWAXA7iI_mDrsLdPxSP-McsF2WFQLvfyxHrxQvlQ==
Age: 553

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
d6c404502c7987174a84d8f0a3efab23
fc3a3f6d63acab3f659fb3536b65fd8564ec8628
94b5693df873bd923ffbf31f576fff01d2628e5796af4c6b91306a743e27d19b

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 431
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 07 Oct 2022 14:38:54 GMT
Last-Modified: Fri, 07 Oct 2022 14:31:43 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 471

www.nuevacantina.com/wp-admin/user/bm/pag01.html

67.227.191.81

200 OK

10 kB

URL HTTP/1.1
www.nuevacantina.com/wp-admin/user/bm/pag01.html
IP
67.227.191.81:0
ASN
#32244 LIQUIDWEB

File type
HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (10334), with CRLF line terminators
Size
10 kB (10089 bytes)
Hash
b175f5beb4294c965882ea6dfef66c90
119353ee7b39763ed732b23b21d4c89e3e75c255
5884ea84e6a23db276f43f8f59dac7933ac4737bdb4110a433c2740fd57872c4

Detections

Analyzer	Verdict	Alert
openphish	Generic/Spear Phishing
fortinet	Phishing

HTTP Headers

GET /wp-admin/user/bm/pag01.html HTTP/1.1
Host: www.nuevacantina.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://sbe.mut.ac.ke/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Date: Fri, 07 Oct 2022 14:38:55 GMT
Server: Apache
Last-Modified: Wed, 05 Oct 2022 09:02:20 GMT
Accept-Ranges: bytes
Cache-Control: max-age=600
Expires: Fri, 07 Oct 2022 14:48:55 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 10089
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html

push.services.mozilla.com/

54.186.209.73

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
54.186.209.73:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: mmeFrQ2zE+S9us3FB70QpA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 9plZ4mEauCWIcBV0Fsxo0NIjV3s=

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
1dd4de14a3a5f743638ee4e61073a07d
0d160cc29fea2fd703a84b139a6a5127e26cee90
3921a345ec4ffef87303d17d0755864ee05e7031c9f17c9e8256f7dfe38e78cd

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1037
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 07 Oct 2022 14:38:55 GMT
Last-Modified: Fri, 07 Oct 2022 14:21:38 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 471

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
1dd4de14a3a5f743638ee4e61073a07d
0d160cc29fea2fd703a84b139a6a5127e26cee90
3921a345ec4ffef87303d17d0755864ee05e7031c9f17c9e8256f7dfe38e78cd

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1037
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 07 Oct 2022 14:38:55 GMT
Last-Modified: Fri, 07 Oct 2022 14:21:38 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 471

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
914e1e4e522cf37670b1eb0e3fdcdee6
dd23659bbb030905242e35de82289184793d9951
09cee9e966f71d02f28d41824499b272f544bca3800155a506f0452754fd8c05

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 07 Oct 2022 14:38:55 GMT
Server: ECS (amb/6BBF)
Content-Length: 471

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
914e1e4e522cf37670b1eb0e3fdcdee6
dd23659bbb030905242e35de82289184793d9951
09cee9e966f71d02f28d41824499b272f544bca3800155a506f0452754fd8c05

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 07 Oct 2022 14:38:55 GMT
Server: ECS (amb/6BBB)
Content-Length: 471

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
914e1e4e522cf37670b1eb0e3fdcdee6
dd23659bbb030905242e35de82289184793d9951
09cee9e966f71d02f28d41824499b272f544bca3800155a506f0452754fd8c05

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 07 Oct 2022 14:38:55 GMT
Server: ECS (amb/6B9F)
Content-Length: 471

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
914e1e4e522cf37670b1eb0e3fdcdee6
dd23659bbb030905242e35de82289184793d9951
09cee9e966f71d02f28d41824499b272f544bca3800155a506f0452754fd8c05

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 07 Oct 2022 14:38:55 GMT
Server: ECS (amb/6B83)
Content-Length: 471

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
914e1e4e522cf37670b1eb0e3fdcdee6
dd23659bbb030905242e35de82289184793d9951
09cee9e966f71d02f28d41824499b272f544bca3800155a506f0452754fd8c05

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 07 Oct 2022 14:38:55 GMT
Server: ECS (amb/6B97)
Content-Length: 471

www.bancopopular.com/cibp-web/js/gen/scriptaculous.js

66.22.18.146

200

1.4 kB

URL HTTP/1.1
www.bancopopular.com/cibp-web/js/gen/scriptaculous.js
IP
66.22.18.146:0
ASN
#25773 RADWARE-CLOUD-SERVICES

File type
HTML document, ASCII text, with CRLF line terminators
Size
1.4 kB (1418 bytes)
Hash
c9806c1a759d2586acc4d0323332c35c
2301780a246138a4e26f16100a0644801a09bcef
20d5776be34be71c7990cdc5640f99672df7039e163bbe04eae4684571fe92f0

HTTP Headers

GET /cibp-web/js/gen/scriptaculous.js HTTP/1.1
Host: www.bancopopular.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.nuevacantina.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 
Content-Type: application/javascript;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"2724-1663008762000"
Last-Modified: Mon, 12 Sep 2022 18:52:42 GMT
Date: Fri, 07 Oct 2022 14:38:54 GMT
Set-Cookie: JSESSIONID=9741178A9FC02E343B4FB21C2141FF9E.cibp35b; Path=/cibp-web; Secure; HttpOnly
www_bancopopular_com=!AnA7m0BDMoUcFLuQ3+KE2Exr7NxXsXJuGwTR/Vqh24G8qbWfugS6FyuFkyT3P0uDC8kuIIamkJkVRPOQcDVL3l1PxJKlHH8xDJKEVMjqsg==; path=/; Httponly; Secure
TS013a3153=012f116564629f681c041fd02f176cf2489f10af2b2c5a40d3c2db6bad263a46be09a16be5b34d31a47e8a894c03d7d6215aeb964cd9f9218ccb0c05c305ff006f4b4a91fc; Path=/; Secure; HTTPOnly
TS0125e8e4=012f116564ab66ebcfd27ba91040a8b42712043a682c5a40d3c2db6bad263a46be09a16be57be8b1ff3afb06aa7f55cc5c9973bf6e8b0d31ecc9d1d8fb301b724c7316209d; path=/cibp-web; HTTPonly; Secure
TS062d44df027=08d456d3fbab2000244bb73881c9400b77bf5573ecbeddc7af7837f2cb7b0678b762907cc6aa08c5082de15fe011300089fa293075731b682072d05bfc0e7f3c82c87d7541d78483158c16e93179aaa507970e428ff9d3824d4e0f5174696daf; Path=/
Content-Security-Policy: script-src 'self' 'unsafe-eval' 'unsafe-inline' 'unsafe-hashes' https://*.bancopopular.com https://ajax.googleapis.com https://*.google-analytics.com https://js-agent.newrelic.com https://bam.nr-data.net; frame-ancestors 'self' https://*.bancopopular.com
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=31536000
Content-Encoding: gzip

www.bancopopular.com/cibp-web/js/trxPortal/SpryTabbedPanels.js

66.22.18.146

200

4.0 kB

URL HTTP/1.1
www.bancopopular.com/cibp-web/js/trxPortal/SpryTabbedPanels.js
IP
66.22.18.146:0
ASN
#25773 RADWARE-CLOUD-SERVICES

File type
ASCII text, with CRLF line terminators
Size
4.0 kB (4026 bytes)
Hash
d2e3afef7cf1042604c64754d8858f24
272ee2244376e70b0eac01be8d53c6b95bfe67ec
4e20ee79699c59cd3de5ccf091ccf2eb601de4dad1681119e53a50c82eb62bec

HTTP Headers

GET /cibp-web/js/trxPortal/SpryTabbedPanels.js HTTP/1.1
Host: www.bancopopular.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.nuevacantina.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 
Content-Type: application/javascript;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"13459-1663008762000"
Last-Modified: Mon, 12 Sep 2022 18:52:42 GMT
Date: Fri, 07 Oct 2022 14:38:54 GMT
Set-Cookie: JSESSIONID=F6016ABBF15E2973C0F828D99679CB27.cibp36b; Path=/cibp-web; Secure; HttpOnly
www_bancopopular_com=!rrHaf41iqxxDtEKQ3+KE2Exr7NxXsSHSU6dmVGFXdhOyh85NndBoUrW2hzeMbDYf170X3AMdxxpHGVLhgZ7xlhkgZulHKHFvEOaSMCAdMg==; path=/; Httponly; Secure
TS013a3153=012f116564a9b93fb5b04cd6cadb89b01d837b449aca4bc6822176db4f56460c25576901ea8ae8d32c3583b7c9378c857724844094788d4080e92bc2dc6146ab71b4b5584a; Path=/; Secure; HTTPOnly
TS0125e8e4=012f116564072a2a35fc431d8d72200383d1493997ca4bc6822176db4f56460c25576901eade52a8406e7e8175c8f3216754084d23af8be6dcd22c73ea6ec668ef405c0225; path=/cibp-web; HTTPonly; Secure
TS062d44df027=08d456d3fbab200061561144db47f41364b9bbdeaabb30690be525031102a1a07ab67d07a7c58ea208364248bc113000afaae466a0ddb18c2072d05bfc0e7f3c881884fe8f5a9a0ab0030337d70445876a95d8ef7cc740ec8f25ae5993c3b8a1; Path=/
Content-Security-Policy: script-src 'self' 'unsafe-eval' 'unsafe-inline' 'unsafe-hashes' https://*.bancopopular.com https://ajax.googleapis.com https://*.google-analytics.com https://js-agent.newrelic.com https://bam.nr-data.net; frame-ancestors 'self' https://*.bancopopular.com
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=31536000
Content-Encoding: gzip

www.bancopopular.com/cibp-web/js/gen/modalbox.js

66.22.18.146

200

7.9 kB

URL HTTP/1.1
www.bancopopular.com/cibp-web/js/gen/modalbox.js
IP
66.22.18.146:0
ASN
#25773 RADWARE-CLOUD-SERVICES

File type
ASCII text, with CRLF line terminators
Size
7.9 kB (7902 bytes)
Hash
5a9781ff3e27cb35af0b9b993181ab86
0ad55b4d1723a4d748bfb41ffe6b698a572f9d4e
c4607acc95b3cc4457b12c375c6630a61fed67d840b1135166728c992a626fb6

HTTP Headers

GET /cibp-web/js/gen/modalbox.js HTTP/1.1
Host: www.bancopopular.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.nuevacantina.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 
Content-Type: application/javascript;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"23494-1663008762000"
Last-Modified: Mon, 12 Sep 2022 18:52:42 GMT
Date: Fri, 07 Oct 2022 14:38:55 GMT
Set-Cookie: JSESSIONID=CE2DCE90A2B57641D19005E38E27B85E.cibp34a; Path=/cibp-web; Secure; HttpOnly
www_bancopopular_com=!q1HU0yi1zhAFVc+Q3+KE2Exr7NxXsbTUH4FSR57ctTfM7bWk5k1NXlC0VNHGzmZLjFQKE/uoWyKiJM0mw+dLp8dIMRyVdGYD4DJl9C4g2A==; path=/; Httponly; Secure
TS013a3153=012f116564cb362430fe27a630177957ce2abb6317e1d680c2ed0475dc3bcf13e0db8c3cecc3952d0bc40c1470c4859607b3a3079dafafce5d3e5107671a6edcbe9dd9a0a5; Path=/; Secure; HTTPOnly
TS0125e8e4=012f116564a3e58ebd080d407fcd4e7e08aadd5a1ae1d680c2ed0475dc3bcf13e0db8c3cece0d90f7f39c9ce77866e9533c1d5ffe92176b3e2b91760234ad1169fc1abe63c; path=/cibp-web; HTTPonly; Secure
TS062d44df027=08d456d3fbab2000e053d1069657ffc6d74d1304e0599a1625111de9f86487054a6bbc7a6de15e1308eb0bb2811130001413f60fd94185c62072d05bfc0e7f3c4b83a77909f72eebb3fc699ba0819ed98f8c5dab3bf31e750a5d8442c332a48c; Path=/
Content-Security-Policy: script-src 'self' 'unsafe-eval' 'unsafe-inline' 'unsafe-hashes' https://*.bancopopular.com https://ajax.googleapis.com https://*.google-analytics.com https://js-agent.newrelic.com https://bam.nr-data.net; frame-ancestors 'self' https://*.bancopopular.com
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=31536000
Content-Encoding: gzip

www.bancopopular.com/cibp-web/js/gen/prototype.js

66.22.18.146

200

38 kB

URL HTTP/1.1
www.bancopopular.com/cibp-web/js/gen/prototype.js
IP
66.22.18.146:0
ASN
#25773 RADWARE-CLOUD-SERVICES

File type
ASCII text
Size
38 kB (37587 bytes)
Hash
48c14bc1ac9e06a7aef2093a8d889cc0
47b0f1d23ce50307b79450625697cfee688823f6
13b440d7cb00d4488efb610f63a9e3f8ac24f9f69415373bc811e3fe14cdc291

HTTP Headers

GET /cibp-web/js/gen/prototype.js HTTP/1.1
Host: www.bancopopular.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.nuevacantina.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 
Content-Type: application/javascript;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"127971-1663008762000"
Last-Modified: Mon, 12 Sep 2022 18:52:42 GMT
Date: Fri, 07 Oct 2022 14:38:55 GMT
Set-Cookie: JSESSIONID=7FBE19B95FF87CF03CB56CD8A9715AEB.cibp34b; Path=/cibp-web; Secure; HttpOnly
www_bancopopular_com=!F/pkaOypno+4gGOQ3+KE2Exr7NxXsWcGnv3Zl2yg2fYbtWyhOYcFbHvBNE2S8NdHrUKehkZGOX1BaOg0GxIgxcUT8StDuGbM/WvIDvfiuQ==; path=/; Httponly; Secure
TS013a3153=012f1165640030c06a96222af588833d5b56c78a42aa7a00774a3a84d2ee1ae6cb380f31a5f6dce12367fd3d3ee9b1c8fa01b2883e582c173464d1a3e8d54be8ec8593293a; Path=/; Secure; HTTPOnly
TS0125e8e4=012f116564b9243b0becf139bc814bb6f9ed175f3caa7a00774a3a84d2ee1ae6cb380f31a537827d4d113701ef5730ee5ca968f5cbfc406bd4906c2de9ef1e48ec703e7484; path=/cibp-web; HTTPonly; Secure
TS062d44df027=08d456d3fbab20002dc38d08d260fe9150ed044b1b92558c79a4efe4733b43478aff7028729cabb008b0568ba611300089e17bbd244bd2222072d05bfc0e7f3cbfd95a247620a3e1bf7e0aad5d9295f0b64223ba322c50f1fc7ea5ae66dc7adf; Path=/
Content-Security-Policy: script-src 'self' 'unsafe-eval' 'unsafe-inline' 'unsafe-hashes' https://*.bancopopular.com https://ajax.googleapis.com https://*.google-analytics.com https://js-agent.newrelic.com https://bam.nr-data.net; frame-ancestors 'self' https://*.bancopopular.com
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=31536000
Content-Encoding: gzip

www.bancopopular.com/cibp-web/js/trxPortal/trxPortal.js

66.22.18.146

200

0 B

URL HTTP/1.1
www.bancopopular.com/cibp-web/js/trxPortal/trxPortal.js
IP
66.22.18.146:0
ASN
#25773 RADWARE-CLOUD-SERVICES

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /cibp-web/js/trxPortal/trxPortal.js HTTP/1.1
Host: www.bancopopular.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.nuevacantina.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 
Content-Type: application/javascript;charset=UTF-8
Content-Length: 0
Connection: keep-alive
Accept-Ranges: bytes
ETag: W/"0-1663008762000"
Last-Modified: Mon, 12 Sep 2022 18:52:42 GMT
Date: Fri, 07 Oct 2022 14:38:55 GMT
Set-Cookie: JSESSIONID=8D34155BB3016336F689F5FB7AA26FC0.cibp36b; Path=/cibp-web; Secure; HttpOnly
www_bancopopular_com=!GGJwXRUZPNzE5jWQ3+KE2Exr7NxXsaLAr0/rCWvT6qaSQivZhGG1a3sboz5IZvwbgpGqFyk0hv0wHjerwwyqPCtP4mmJsLIjfEtrCOprYg==; path=/; Httponly; Secure
TS013a3153=012f116564c0542363d860be4404aa997ac0ea1347eb3b04898ac59b7c7a818184de38eecfe4175abbc3b632ea7b856a6a963795a0e7cfed3ccb39e6124c0262677e2eb8da; Path=/; Secure; HTTPOnly
TS0125e8e4=012f116564673cd1b0390a64d6deb5641ca21c4018eb3b04898ac59b7c7a818184de38eecfed77931f00f500b3698fd6b3b1f3b417b11cdc1bcad444fa589d6fe0be0d5d1c; path=/cibp-web; HTTPonly; Secure
TS062d44df027=08d456d3fbab2000eace4b77086116945437b3694f7f4f933b22254f14a2fa8150da851e3405fa3108a4276594113000313359c72767288e2072d05bfc0e7f3ce7b7cf33d02eecb226103d36d7c1daf52dcad0f5eafb4cbe824f090753b6cd43; Path=/
Content-Security-Policy: script-src 'self' 'unsafe-eval' 'unsafe-inline' 'unsafe-hashes' https://*.bancopopular.com https://ajax.googleapis.com https://*.google-analytics.com https://js-agent.newrelic.com https://bam.nr-data.net; frame-ancestors 'self' https://*.bancopopular.com
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=31536000

www.bancopopular.com/cibp-web/js/bootstrap/jquery-3.5.1.min.js

66.22.18.146

200

36 kB

URL HTTP/1.1
www.bancopopular.com/cibp-web/js/bootstrap/jquery-3.5.1.min.js
IP
66.22.18.146:0
ASN
#25773 RADWARE-CLOUD-SERVICES

File type
ASCII text, with very long lines (65451)
Size
36 kB (36063 bytes)
Hash
d51a0f70e2cb437167461d41f3e5c8e6
fb5460f394efca0cc4f6d987bbc2d6233255e92d
3a7b406af2f152af40591451f2d94e7aa8e7fa4f94470c3275928c2f9e7562eb

HTTP Headers

GET /cibp-web/js/bootstrap/jquery-3.5.1.min.js HTTP/1.1
Host: www.bancopopular.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.nuevacantina.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 
Content-Type: application/javascript;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"89475-1663008762000"
Last-Modified: Mon, 12 Sep 2022 18:52:42 GMT
Date: Fri, 07 Oct 2022 14:38:55 GMT
Set-Cookie: JSESSIONID=08A632CBEFFC37DC4882C756135D9926.cibp34b; Path=/cibp-web; Secure; HttpOnly
www_bancopopular_com=!0604M/OGfFSUGrGQ3+KE2Exr7NxXsZ6zYt13ZclP5okfFAWdK+nrkYaSr4hu4w14UNn0wdI0FQUJ8/QyjfrCk1sBdryNtLo/xq0Ebi3byQ==; path=/; Httponly; Secure
TS013a3153=012f1165645cd8f60e0408962bb1e69b32d1fc3b5074acd190cf16d7e39a27fb3083136b96acfacb0db2b2c8c0ce45d5e861e35ff4fa56bc077c073a7022b914701446823a; Path=/; Secure; HTTPOnly
TS0125e8e4=012f11656491aa239e54c15e3623d82a6c05abd6f974acd190cf16d7e39a27fb3083136b967f06c75f6ed6b15bf832b50dbc769013a268b5044a4f6fb44e4ee7b2b4774578; path=/cibp-web; HTTPonly; Secure
TS062d44df027=08d456d3fbab2000b4fd84a0e906f55930e0da649593dbf551ee84e59d49fe7458fe04061f08fe3608da6712d61130003292587042ac17552072d05bfc0e7f3c20bc38b4fe5ba25345fa64379966be9c99bbca8d98b177ddb4d004ccebab515f; Path=/
Content-Security-Policy: script-src 'self' 'unsafe-eval' 'unsafe-inline' 'unsafe-hashes' https://*.bancopopular.com https://ajax.googleapis.com https://*.google-analytics.com https://js-agent.newrelic.com https://bam.nr-data.net; frame-ancestors 'self' https://*.bancopopular.com
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=31536000
Content-Encoding: gzip

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
31e440ccd993c4ee793f50511c2ac7c4
4380327d50b7001d158aee05a57c6078e57c94e4
65d8a97f6df1e110333a01d1f6dcb4982db7bb4b1c5f3f1498fafa716e250c0f

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "65D8A97F6DF1E110333A01D1F6DCB4982DB7BB4B1C5F3F1498FAFA716E250C0F"
Last-Modified: Thu, 06 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5834
Expires: Fri, 07 Oct 2022 16:16:10 GMT
Date: Fri, 07 Oct 2022 14:38:56 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
31e440ccd993c4ee793f50511c2ac7c4
4380327d50b7001d158aee05a57c6078e57c94e4
65d8a97f6df1e110333a01d1f6dcb4982db7bb4b1c5f3f1498fafa716e250c0f

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "65D8A97F6DF1E110333A01D1F6DCB4982DB7BB4B1C5F3F1498FAFA716E250C0F"
Last-Modified: Thu, 06 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5834
Expires: Fri, 07 Oct 2022 16:16:10 GMT
Date: Fri, 07 Oct 2022 14:38:56 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
31e440ccd993c4ee793f50511c2ac7c4
4380327d50b7001d158aee05a57c6078e57c94e4
65d8a97f6df1e110333a01d1f6dcb4982db7bb4b1c5f3f1498fafa716e250c0f

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "65D8A97F6DF1E110333A01D1F6DCB4982DB7BB4B1C5F3F1498FAFA716E250C0F"
Last-Modified: Thu, 06 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5834
Expires: Fri, 07 Oct 2022 16:16:10 GMT
Date: Fri, 07 Oct 2022 14:38:56 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
31e440ccd993c4ee793f50511c2ac7c4
4380327d50b7001d158aee05a57c6078e57c94e4
65d8a97f6df1e110333a01d1f6dcb4982db7bb4b1c5f3f1498fafa716e250c0f

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "65D8A97F6DF1E110333A01D1F6DCB4982DB7BB4B1C5F3F1498FAFA716E250C0F"
Last-Modified: Thu, 06 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5834
Expires: Fri, 07 Oct 2022 16:16:10 GMT
Date: Fri, 07 Oct 2022 14:38:56 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
31e440ccd993c4ee793f50511c2ac7c4
4380327d50b7001d158aee05a57c6078e57c94e4
65d8a97f6df1e110333a01d1f6dcb4982db7bb4b1c5f3f1498fafa716e250c0f

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "65D8A97F6DF1E110333A01D1F6DCB4982DB7BB4B1C5F3F1498FAFA716E250C0F"
Last-Modified: Thu, 06 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5834
Expires: Fri, 07 Oct 2022 16:16:10 GMT
Date: Fri, 07 Oct 2022 14:38:56 GMT
Connection: keep-alive

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff2da6f7a-675a-45e2-af30-4afd851d825d.jpeg

34.120.237.76

200 OK

2.5 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff2da6f7a-675a-45e2-af30-4afd851d825d.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
2.5 kB (2478 bytes)
Hash
17df62c3e2ed48ba9c788f5e1b3b702f
854c326016059d67fae42cc34905d0feb58cb6fc
d0bee7a7e629f6594a79bad563bb91c71a17768c2f347fd4a366f7f0daf94fda

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff2da6f7a-675a-45e2-af30-4afd851d825d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 2478
x-amzn-requestid: ed2a2dca-5367-42c1-b982-07a39762063e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZmigWFvGIAMF9CQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633f4ace-6fabb7845e4d04613897a866;Sampled=0
x-amzn-remapped-date: Thu, 06 Oct 2022 21:38:22 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P2
x-cache: Miss from cloudfront
x-amz-cf-id: GFxAiO1AQfV1-pVy0NBmc9VoQoxBuBeOWsbPkVpOuT06D8Tw_YuZfA==
via: 1.1 446313511980eb02f28ff5a9a4147c0a.cloudfront.net (CloudFront), 1.1 de8fc80b494d3d381f7e006918dcc588.cloudfront.net (CloudFront), 1.1 google
date: Thu, 06 Oct 2022 22:18:30 GMT
age: 58826
etag: "854c326016059d67fae42cc34905d0feb58cb6fc"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

13 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9ca4df15-4ecd-467c-a658-2352fca9a8ff.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
13 kB (13437 bytes)
Hash
16339989f5c6c229a3dcc0ed1e52032f
a1ea26d6e4eb4a72cc8c87100b40035dab69d285
16703f888ee6f974bb89e1c4c16a75186b31b64130abcd1a3bcd3741159d912c

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9ca4df15-4ecd-467c-a658-2352fca9a8ff.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 13437
x-amzn-requestid: ec801fbc-c339-46ce-ac5f-18d064e5ef21
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Zmhi_HdeoAMFyOQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633f4946-02b52b770e6e76cf52b26e47;Sampled=0
x-amzn-remapped-date: Thu, 06 Oct 2022 21:31:50 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P2
x-cache: Miss from cloudfront
x-amz-cf-id: Iesqk_XbGiZE-n3mTa1_1WtlXiyEqz-4qfyt3_609O1eujdLcFu3zA==
via: 1.1 1b0911478686968732f973d6e5e31d10.cloudfront.net (CloudFront), 1.1 ece5d4a731ece5ff46c564ab2b946ede.cloudfront.net (CloudFront), 1.1 google
date: Thu, 06 Oct 2022 21:47:25 GMT
age: 60691
etag: "a1ea26d6e4eb4a72cc8c87100b40035dab69d285"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

7.3 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F38d969a0-82cd-4d27-8f25-f1b95cacc89f.webp
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
7.3 kB (7261 bytes)
Hash
ed3fa86bbe319c9a2f81ff625e677cb0
e3d5210207f6ff922bc28e328285059c19a523a4
5919694bd942a4f25d5b7ffc3f8aee1af6cdb8461d4ba3dba9a2e72cf19164c8

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F38d969a0-82cd-4d27-8f25-f1b95cacc89f.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 7261
x-amzn-requestid: e1bdf299-b29e-4f58-9c8a-33f5dacdb081
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZmirBELYoAMFfgA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633f4b13-1969b32c6f4f7e5749e7caa0;Sampled=0
x-amzn-remapped-date: Thu, 06 Oct 2022 21:39:31 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P2
x-cache: Hit from cloudfront
x-amz-cf-id: FO5iGJFmDfdklhzIVOxp4x3AV7ltFqBDDlYBz39Zzx99t7oykNR2WQ==
via: 1.1 00f0a41f749793b9dd653153037c957e.cloudfront.net (CloudFront), 1.1 a4479a6315f90864adc6175b280f8f44.cloudfront.net (CloudFront), 1.1 google
date: Thu, 06 Oct 2022 21:43:40 GMT
age: 60916
etag: "e3d5210207f6ff922bc28e328285059c19a523a4"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

11 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa0b7bc4b-b79a-4bab-9bec-87695d757b08.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
11 kB (10987 bytes)
Hash
53b7ffdc3799e0ac7a225145242579ef
c47f0525fe5354ee13fe63c0ec31f0f826a58005
4bb518afc9b3e7bfb976d343e46b306155834adbe71fa35b0d6f509959f78aca

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa0b7bc4b-b79a-4bab-9bec-87695d757b08.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 10987
x-amzn-requestid: c2ab1012-1afd-4d74-8114-97977b43da24
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZgCHwGdGoAMFvyg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633cb097-3237927a0c1e081d22c902f7;Sampled=0
x-amzn-remapped-date: Tue, 04 Oct 2022 22:15:51 GMT
x-amz-cf-pop: SEA73-P2
x-cache: Hit from cloudfront
x-amz-cf-id: JYDg0-KelCPr__4bKtpARLrwiE1CHGICcFI6I9_TFCMcmESbykNhXQ==
via: 1.1 3dde68f1f52282c9e1ee336d97233b0a.cloudfront.net (CloudFront), 1.1 27f6faf9790b5a2877fb528fa31f7922.cloudfront.net (CloudFront), 1.1 google
date: Thu, 06 Oct 2022 22:08:50 GMT
age: 59406
etag: "c47f0525fe5354ee13fe63c0ec31f0f826a58005"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

6.1 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4cfb29b1-34eb-4ec3-8390-1145a644534c.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
6.1 kB (6052 bytes)
Hash
06283ec49d3981b60b28731fd8a9940d
10c0d991f7ad234557792c175fdbf81e3356416a
0d8d932cd46fa377ce3dfe5fe1287ab1cd0daad0ef52a42baad2462d10e5a80f

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4cfb29b1-34eb-4ec3-8390-1145a644534c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 6052
x-amzn-requestid: 6c8abd32-7499-4636-bf8a-3baaa88bf1ff
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Zmhi-HWOoAMFalA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633f4946-464364630dd2dbfa0d69f6f5;Sampled=0
x-amzn-remapped-date: Thu, 06 Oct 2022 21:31:50 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P2
x-cache: Hit from cloudfront
x-amz-cf-id: 4EEoZVMtDaWUiCVvGW_0w4BSa1f1KDudnzPEoSIVF_ckE9MdhiflOw==
via: 1.1 2afae0d44e2540f472c0635ab62c232a.cloudfront.net (CloudFront), 1.1 bd6f70221217681265382902c6157c76.cloudfront.net (CloudFront), 1.1 google
date: Thu, 06 Oct 2022 21:45:54 GMT
age: 60782
etag: "10c0d991f7ad234557792c175fdbf81e3356416a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

8.4 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7758caee-c969-46dd-96d0-b4402437781d.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
8.4 kB (8445 bytes)
Hash
4572451a09430ca7a9203f14ddc035ba
46e17c44fba23988d7a9d9832c411ba2810136c3
fa54e73c4b32d8e109504ebcd46e4316de8143f44b7eae20a44ba63d14a6f24b

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7758caee-c969-46dd-96d0-b4402437781d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 8445
x-amzn-requestid: 7d295b3b-29d6-4b2e-8314-c9055d1def80
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Zmju5FxwoAMFeQw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633f4cc5-3f58c18b1159ad512c60422b;Sampled=0
x-amzn-remapped-date: Thu, 06 Oct 2022 21:46:45 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P2
x-cache: Miss from cloudfront
x-amz-cf-id: DC1ECXhkAhfdrU8ZyMhhDdwydsq4PQfzzGOPd-REjCkCsDbXQLnLiA==
via: 1.1 d1151317ba32afe0e6370fd69fed222e.cloudfront.net (CloudFront), 1.1 34c44cb7892e57a3b6c51812bcf68ee4.cloudfront.net (CloudFront), 1.1 google
date: Thu, 06 Oct 2022 22:08:57 GMT
etag: "46e17c44fba23988d7a9d9832c411ba2810136c3"
content-type: image/jpeg
age: 59399
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

www.bancopopular.com/cibp-web/js/athMovil/SpryTabbedPanels.js

66.22.18.146

200

3.9 kB

URL HTTP/1.1
www.bancopopular.com/cibp-web/js/athMovil/SpryTabbedPanels.js
IP
66.22.18.146:0
ASN
#25773 RADWARE-CLOUD-SERVICES

File type
ASCII text, with CRLF line terminators
Size
3.9 kB (3862 bytes)
Hash
4c33c5d9f1fe9be30cef1167cbf8c267
88a52a146f2aa045e14b7b409368d43047bd976c
212eb767cb2f28019fb25742a57bf384d918d93abed4739bd2f1e440e5b18f09

HTTP Headers

GET /cibp-web/js/athMovil/SpryTabbedPanels.js HTTP/1.1
Host: www.bancopopular.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.nuevacantina.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 
Content-Type: application/javascript;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"12558-1663008762000"
Last-Modified: Mon, 12 Sep 2022 18:52:42 GMT
Date: Fri, 07 Oct 2022 14:38:55 GMT
Set-Cookie: JSESSIONID=5AC4EDA2EDBAB4B30DC9F3FC29D60F07.cibp34a; Path=/cibp-web; Secure; HttpOnly
www_bancopopular_com=!6mbeU9CQEkp9zVKQ3+KE2Exr7NxXsSf/twgH6Aag6FhaRTlcgfbZarcz5zrPjOZ87+G9heKtefchnN0bST+Iymmghtg0m1Z8S6tsqZpdcw==; path=/; Httponly; Secure
TS013a3153=012f116564295cbb5501cfda6c63bbfe7bf45b94103c7e23c1a825adfaf257c17add255464187012b90cfc0144a17aff880b2b536abf0822789d9235d32117e05b60bf15c4; Path=/; Secure; HTTPOnly
TS0125e8e4=012f1165647e390e83e2f814ed9ab83f56973eba553c7e23c1a825adfaf257c17add255464b8af61bc0e778fdd409ae735de1cf8780fcde1ae519e7de4f636225930b92949; path=/cibp-web; HTTPonly; Secure
TS062d44df027=08d456d3fbab2000d0ddf2f31b33dd48be89431c531f472d749dfa0b2165bd5cb1a46a5b18b54ca80842cd5ecb1130002ac581e18cdc37d97c4fe4d81018335e44f87d752b41f73ff44903440d30dcd6dc43ee1d502ebf6fd25235b232cda291; Path=/
Content-Security-Policy: script-src 'self' 'unsafe-eval' 'unsafe-inline' 'unsafe-hashes' https://*.bancopopular.com https://ajax.googleapis.com https://*.google-analytics.com https://js-agent.newrelic.com https://bam.nr-data.net; frame-ancestors 'self' https://*.bancopopular.com
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=31536000
Content-Encoding: gzip

www.bancopopular.com/cibp-web/js/athMovil/athmovil.js

66.22.18.146

200

725 B

URL HTTP/1.1
www.bancopopular.com/cibp-web/js/athMovil/athmovil.js
IP
66.22.18.146:0
ASN
#25773 RADWARE-CLOUD-SERVICES

File type
ASCII text
Size
725 B (725 bytes)
Hash
b68a0e9bf05cadfcdf7dd694183abb54
11cffc735619b19e036f59731d764f1239e9792f
9cba9999d2762cc368fee500fc67c36ed673d046703f261d06d853bc65a6183c

HTTP Headers

GET /cibp-web/js/athMovil/athmovil.js HTTP/1.1
Host: www.bancopopular.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.nuevacantina.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 
Content-Type: application/javascript;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"2682-1663008762000"
Last-Modified: Mon, 12 Sep 2022 18:52:42 GMT
Date: Fri, 07 Oct 2022 14:38:55 GMT
Set-Cookie: JSESSIONID=2CA6984318F72159D54B0505A44B0962.cibp35a; Path=/cibp-web; Secure; HttpOnly
www_bancopopular_com=!mNc7nvhK6o3ycS2Q3+KE2Exr7NxXseDHUxjm5baKtlEN2Wtsum84zLESza31kZGiKnTej7cdM+UJavds04dlbeHAAy9ihR3bTg9GRhDa7Q==; path=/; Httponly; Secure
TS013a3153=012f116564034b5d8fda98c35146de11e9187e9cd9279dd18f7d4e49532df5249ef77662d31fc89f7913645f29e6f2b08237ced665ab3f7fa8674c062f4ee92fe89aa2fa6f; Path=/; Secure; HTTPOnly
TS0125e8e4=012f116564404672ebce4c7415699a6c32cd6a4d35279dd18f7d4e49532df5249ef77662d3dd9efa077e4c0222ce6561bca173d3543b03b726888d0c5c74e381e110120b9a; path=/cibp-web; HTTPonly; Secure
TS062d44df027=08d456d3fbab20005bd4f226f9d05b1ed3b1c75db425d8640b72f87b5aa6e1f48cc9b386d1cbe68808f5be08e0113000c1b267ab8c74590d7c4fe4d81018335e701fe67baa9707974ade71e1c6b88ac434f4e929f292db7a666794e55240a56e; Path=/
Content-Security-Policy: script-src 'self' 'unsafe-eval' 'unsafe-inline' 'unsafe-hashes' https://*.bancopopular.com https://ajax.googleapis.com https://*.google-analytics.com https://js-agent.newrelic.com https://bam.nr-data.net; frame-ancestors 'self' https://*.bancopopular.com
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=31536000
Content-Encoding: gzip

www.bancopopular.com/cibp-web/js/hashtable.js

66.22.18.146

200

4.0 kB

URL HTTP/1.1
www.bancopopular.com/cibp-web/js/hashtable.js
IP
66.22.18.146:0
ASN
#25773 RADWARE-CLOUD-SERVICES

File type
ASCII text, with CRLF line terminators
Size
4.0 kB (4001 bytes)
Hash
778f3267a27c3f9d19ed14ad18dad64b
692df4db3546b565580eb78c5a2d7ddcf79c0a15
eba4ba80b26e70eee93a69445dfeb0c7c67e5baaf5e999f97f37b6a636841f53

HTTP Headers

GET /cibp-web/js/hashtable.js HTTP/1.1
Host: www.bancopopular.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.nuevacantina.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 
Content-Type: application/javascript;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"14082-1663008762000"
Last-Modified: Mon, 12 Sep 2022 18:52:42 GMT
Date: Fri, 07 Oct 2022 14:38:55 GMT
Set-Cookie: JSESSIONID=8F6EE3725827C214C4A311541EDB5C9D.cibp35a; Path=/cibp-web; Secure; HttpOnly
www_bancopopular_com=!truw/O2qokWq4eqQ3+KE2Exr7NxXseA8d8QFopElI19f+BeMOyZkon7f2XjGvVj8ZQ3YVQqMriwI5QLerEQJGHfJv76Xb303HmWN2RkuWA==; path=/; Httponly; Secure
TS013a3153=012f1165645f0f00457ff311529773fa634f1900033e59dce808559b900161cbf26c0e780c4657201e017d159557ac49a7040d96350998c12c17a9c8eeff0ea458835e5c44; Path=/; Secure; HTTPOnly
TS0125e8e4=012f1165649053e955e7342c69e38ce1b416d4b9673e59dce808559b900161cbf26c0e780caa5665a451f4adcc85e849be9d937022ba4951056a0ad382478a42ba5320c455; path=/cibp-web; HTTPonly; Secure
TS062d44df027=08d456d3fbab20001e657cbaae1427068bdd3b8df99a4c24e7d9151cc1771201ad9821c5132c116008f647f2e71130007f4f7edd6e726d157c4fe4d81018335e6131ccd2f1e3ee4daf1e14443b2a051a316fcdbab7087d126833afb0eb2f21e4; Path=/
Content-Security-Policy: script-src 'self' 'unsafe-eval' 'unsafe-inline' 'unsafe-hashes' https://*.bancopopular.com https://ajax.googleapis.com https://*.google-analytics.com https://js-agent.newrelic.com https://bam.nr-data.net; frame-ancestors 'self' https://*.bancopopular.com
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=31536000
Content-Encoding: gzip

www.bancopopular.com/cibp-web/js/gen/bjs.js

66.22.18.146

200

25 kB

URL HTTP/1.1
www.bancopopular.com/cibp-web/js/gen/bjs.js
IP
66.22.18.146:0
ASN
#25773 RADWARE-CLOUD-SERVICES

File type
ASCII text, with CRLF line terminators
Size
25 kB (25264 bytes)
Hash
32158743270041f4751acaabef16c790
41534625bf13cd35d4685f56865510c20a73a59c
c6932f15d6afce09760dd20de9f18555d1fd4f0eb1fbb491594a56dbc60bdb0c

HTTP Headers

GET /cibp-web/js/gen/bjs.js HTTP/1.1
Host: www.bancopopular.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.nuevacantina.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 
Content-Type: application/javascript;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"81374-1663008762000"
Last-Modified: Mon, 12 Sep 2022 18:52:42 GMT
Date: Fri, 07 Oct 2022 14:38:55 GMT
Set-Cookie: JSESSIONID=B3ABCCAEF530422D1DAC0DEBA867F235.cibp36a; Path=/cibp-web; Secure; HttpOnly
www_bancopopular_com=!z8q6gPNir9TShqCQ3+KE2Exr7NxXsSJsJwasDI4v811G+DYRojTkm0aAnHbDmORyT8TCEEsFXZ4sP4l2Jp60Dr37tlLxiVw6Asu3Jn4t2w==; path=/; Httponly; Secure
TS013a3153=012f11656471f26d69009e6f805549b0b1827ba44c47c0feb3966fac1f28a4227a485385667f91ca7658ed3da422cdd38797fc19ff55a9b175a917e49bc01e3200b6f2fbd8; Path=/; Secure; HTTPOnly
TS0125e8e4=012f11656497d53574f0990b93776e2c95b797eca747c0feb3966fac1f28a4227a48538566e81bb3409ab4e0a7b40598894dc3b607217deb44f8691d77c2ad466cd517507d; path=/cibp-web; HTTPonly; Secure
TS062d44df027=08d456d3fbab20005aade27be03baf10d38a1e2b19621141f2bf842c4e137b0ea44502b092e0d3d108cfc5197b1130005e2999fb982ae7db7c4fe4d81018335ef30a367abdd98575db3836bc76693bd839d71c97c68a25eca301a35988225331; Path=/
Content-Security-Policy: script-src 'self' 'unsafe-eval' 'unsafe-inline' 'unsafe-hashes' https://*.bancopopular.com https://ajax.googleapis.com https://*.google-analytics.com https://js-agent.newrelic.com https://bam.nr-data.net; frame-ancestors 'self' https://*.bancopopular.com
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=31536000
Content-Encoding: gzip

www.bancopopular.com/cibp-web/css/modalbox.css

66.22.18.146

200

692 B

URL HTTP/1.1
www.bancopopular.com/cibp-web/css/modalbox.css
IP
66.22.18.146:0
ASN
#25773 RADWARE-CLOUD-SERVICES

File type
ASCII text, with CRLF line terminators
Size
692 B (692 bytes)
Hash
7e0c3782aa7fc44ecdbb21b55bd20322
b3eaccb1b736f020d6b12692c8dc07119973102b
883258de05cfb56c533ac6000f9ab5960cffd7d092812ae888a827b708e88aea

HTTP Headers

GET /cibp-web/css/modalbox.css HTTP/1.1
Host: www.bancopopular.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.nuevacantina.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 
Content-Type: text/css;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Expires: 1680878336424
Cache-Control: max-age=360000, must-revalidate, public
ETag: W/"1520-1663007698000"
Last-Modified: Mon, 12 Sep 2022 18:34:58 GMT
Date: Fri, 07 Oct 2022 14:38:55 GMT
Set-Cookie: JSESSIONID=5AAB1A00C50683BE7A8C662F9B0D4611.cibp36b; Path=/cibp-web; Secure; HttpOnly
www_bancopopular_com=!fJBBtsc3n/mjGvSQ3+KE2Exr7NxXsQNrYJqMLeGCU2r9kbV9iVwG4fxmfPxUJhWn5IAcKof6fbDisQDy0o2RDmAf83XZ5x/OoCX0YPOYIg==; path=/; Httponly; Secure
TS013a3153=012f116564dfc963e05de2f829a1de0a1d45da2f0ad6eed8c61ed2e0eee9d4d25dca1bf80e9cc668f4c32f58fa45cf19557558403cbe2543c51165692713de06c3fdfd76b2; Path=/; Secure; HTTPOnly
TS0125e8e4=012f1165641bd3e6175615d49dd44c8196ddff55acd6eed8c61ed2e0eee9d4d25dca1bf80e06bf5f537a3a2d77a8ec023cb64634128a8aa924c2c8265db263f24785d8c667; path=/cibp-web; HTTPonly; Secure
TS062d44df027=08d456d3fbab2000c5ffabb6fbfb5a2445392ce11ff949567350fc490564fff7821a69f91e94b45508078e8e9911300018753a4a0bbad3e27c4fe4d81018335eb0a62a304047860b75332f219ae181673b7157a3885add9f1ba15108dccf78c5; Path=/
Content-Security-Policy: script-src 'self' 'unsafe-eval' 'unsafe-inline' 'unsafe-hashes' https://*.bancopopular.com https://ajax.googleapis.com https://*.google-analytics.com https://js-agent.newrelic.com https://bam.nr-data.net; frame-ancestors 'self' https://*.bancopopular.com
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=31536000
Content-Encoding: gzip

www.bancopopular.com/cibp-web/js/rsamod/rsamod.js

66.22.18.146

200

13 kB

URL HTTP/1.1
www.bancopopular.com/cibp-web/js/rsamod/rsamod.js
IP
66.22.18.146:0
ASN
#25773 RADWARE-CLOUD-SERVICES

File type
ASCII text, with CRLF line terminators
Size
13 kB (13146 bytes)
Hash
23c96c479a99b3d8bc23049cc16ec5ce
05c8857199c7320f3bbd5f43a388a4ee45dcea84
ab390a2aa60df4d7888d0891cd3f52cc6ff137ed6168a8aba25358e310b79605

HTTP Headers

GET /cibp-web/js/rsamod/rsamod.js HTTP/1.1
Host: www.bancopopular.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.nuevacantina.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 
Content-Type: application/javascript;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"52473-1663008762000"
Last-Modified: Mon, 12 Sep 2022 18:52:42 GMT
Date: Fri, 07 Oct 2022 14:38:56 GMT
Set-Cookie: JSESSIONID=D6747A0C9D2EDAA27D972307F5B98C18.cibp34b; Path=/cibp-web; Secure; HttpOnly
www_bancopopular_com=!rtMvWv8KyAlupZKQ3+KE2Exr7NxXsakv+cMwBSgdF7nQ20azxUJEUnLztP2URblgyd4Msl4ltE+SOQ6Dfii2P6LAWZiAtx7CAWcsIvBhZg==; path=/; Httponly; Secure
TS013a3153=012f116564582f55e9e26d6c8c5c1909c4150a9ec052be9a58c0855907dd07d2514b0b97f4d5ee450d99772c4c77bdba0e98b12130ed39da2387bd934290e918f920dc6333; Path=/; Secure; HTTPOnly
TS0125e8e4=012f116564d3a7edf3b1e731cc08892a10ae1ad57652be9a58c0855907dd07d2514b0b97f4f55ae683552790046c2cb7eb3accecf715c4735448021f155d9a3a4cd85903b7; path=/cibp-web; HTTPonly; Secure
TS062d44df027=08d456d3fbab2000fddc02b88496928b84c47ccfc547a561175dfbc0d3f4290f008bc04b47f451a408fbfea5681130004dab59f8f6b793207c4fe4d81018335e29434292c1fd5429d9e8e23df21874bb268394781a909d0f5d2f708299d95a50; Path=/
Content-Security-Policy: script-src 'self' 'unsafe-eval' 'unsafe-inline' 'unsafe-hashes' https://*.bancopopular.com https://ajax.googleapis.com https://*.google-analytics.com https://js-agent.newrelic.com https://bam.nr-data.net; frame-ancestors 'self' https://*.bancopopular.com
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=31536000
Content-Encoding: gzip

www.bancopopular.com/cibp-web/css/trxPortal/trxPortal.css

66.22.18.146

200

2.8 kB

URL HTTP/1.1
www.bancopopular.com/cibp-web/css/trxPortal/trxPortal.css
IP
66.22.18.146:0
ASN
#25773 RADWARE-CLOUD-SERVICES

File type
ASCII text, with CRLF line terminators
Size
2.8 kB (2778 bytes)
Hash
d254f3cc19f1e4a75b6e5a9e6d51c11e
e0b00bab93c1636448656db1a0dbab1dbf54ed68
d603c86934c53eaeea2a3aa4aca84037cf28069e0f0623387993746695a2c5cb

HTTP Headers

GET /cibp-web/css/trxPortal/trxPortal.css HTTP/1.1
Host: www.bancopopular.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.nuevacantina.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 
Content-Type: text/css;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Expires: 1680878336434
Cache-Control: max-age=360000, must-revalidate, public
ETag: W/"16212-1663007698000"
Last-Modified: Mon, 12 Sep 2022 18:34:58 GMT
Date: Fri, 07 Oct 2022 14:38:56 GMT
Set-Cookie: JSESSIONID=EF5FD5341382CC45573E80148A6CCDCE.cibp34a; Path=/cibp-web; Secure; HttpOnly
www_bancopopular_com=!6VijJM6N4r7HvtmQ3+KE2Exr7NxXsdGuGJ5cIf/dVSCazQQ6Yn9dnIgtdzWjqq5mYmzxRI53oDeTmcdXWS/E35k2eLqvkG2az2jn/XJKdQ==; path=/; Httponly; Secure
TS013a3153=012f1165645ac57a64d940f56645cd92a1ea2f0e7ca4a4081d919faf86e15d53b8b1b76bf70dc0e65c514c4e992b833b28e1259060740ba64ab2d8dba263b29c1f44fd5df5; Path=/; Secure; HTTPOnly
TS0125e8e4=012f1165643710d306b9c2c1199938bbb067025448a4a4081d919faf86e15d53b8b1b76bf7eae182621d655662948847ee6c1f635e171b7ca65c045c9bdfdd098651555316; path=/cibp-web; HTTPonly; Secure
TS062d44df027=08d456d3fbab2000c079d752342f235a1fd84ae3d512a9494380e168484293a02c76271bd0095f310897f837ff113000e4466556df4e009a7c4fe4d81018335e9a0045bd66966ce5d2f5a4871e940b4eb1f940654243a7184d3d90680b05c1c8; Path=/
Content-Security-Policy: script-src 'self' 'unsafe-eval' 'unsafe-inline' 'unsafe-hashes' https://*.bancopopular.com https://ajax.googleapis.com https://*.google-analytics.com https://js-agent.newrelic.com https://bam.nr-data.net; frame-ancestors 'self' https://*.bancopopular.com
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=31536000
Content-Encoding: gzip

www.bancopopular.com/cibp-web/js/rsa.js

66.22.18.146

200

12 kB

URL HTTP/1.1
www.bancopopular.com/cibp-web/js/rsa.js
IP
66.22.18.146:0
ASN
#25773 RADWARE-CLOUD-SERVICES

File type
ASCII text, with very long lines (1826), with CRLF line terminators
Size
12 kB (12315 bytes)
Hash
4b8b391532941956e69edd3edbb29613
6b6dc023d3ec6a4388c130b5e211185cfc2afcaf
2d6ff0fde313e86ab5db3e5e7e9abece7d7eab84c87a7aaa5b49cc25d9ebc7fe

HTTP Headers

GET /cibp-web/js/rsa.js HTTP/1.1
Host: www.bancopopular.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.nuevacantina.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 
Content-Type: application/javascript;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"37142-1663008762000"
Last-Modified: Mon, 12 Sep 2022 18:52:42 GMT
Date: Fri, 07 Oct 2022 14:38:55 GMT
Set-Cookie: JSESSIONID=518C6676177E3C816C4A6573B4968344.cibp35a; Path=/cibp-web; Secure; HttpOnly
www_bancopopular_com=!7ijqwGvmIW4PaK+Q3+KE2Exr7NxXsWQF3Yc7AwOV5raEEj2je0ER1BKffl40rdG8SSA1jxkpMOiG5yDp49o6dbO7UznCEj5lTAYutRqozw==; path=/; Httponly; Secure
TS013a3153=012f116564abd052d70f5f06f2b9e89db08b204cb82af1cb661a0d5e9574059ef583dc09c5ab03f803b9c0958584ac18445c1f3c6e17d80586674b95a577388fcfdd1c29c8; Path=/; Secure; HTTPOnly
TS0125e8e4=012f116564efe5225ec2c1d02808bf4f8c72bae89c2af1cb661a0d5e9574059ef583dc09c53a9b1ec184c1b0b7cd72b09ec4cbce7609758a8fc31509a59bc3228d18457417; path=/cibp-web; HTTPonly; Secure
TS062d44df027=08d456d3fbab200017ec76c8584e3a1003f2f6798451e6f7f97cda3f15015f5e33e64b9410f3b24108cd1a37b8113000dabca98e5cd22a197c4fe4d81018335e20632cbbd8deb73d80905d55179050ea541a425757155a2875f090f64610151f; Path=/
Content-Security-Policy: script-src 'self' 'unsafe-eval' 'unsafe-inline' 'unsafe-hashes' https://*.bancopopular.com https://ajax.googleapis.com https://*.google-analytics.com https://js-agent.newrelic.com https://bam.nr-data.net; frame-ancestors 'self' https://*.bancopopular.com
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=31536000
Content-Encoding: gzip

www.bancopopular.com/cibp-web/css/trxPortal/SpryTabbedPanels.css

66.22.18.146

200

3.4 kB

URL HTTP/1.1
www.bancopopular.com/cibp-web/css/trxPortal/SpryTabbedPanels.css
IP
66.22.18.146:0
ASN
#25773 RADWARE-CLOUD-SERVICES

File type
ASCII text, with CRLF, LF line terminators
Size
3.4 kB (3360 bytes)
Hash
e4df901ada6c0c3cadcafe86648013e3
5a990528744f84612fa36a3d45f8be397a6f609b
4d5182fc7c2f6f5b65c328e6f7318c8e3af71f7d6995c5eca4c0af9e1fdedca1

HTTP Headers

GET /cibp-web/css/trxPortal/SpryTabbedPanels.css HTTP/1.1
Host: www.bancopopular.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.nuevacantina.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 
Content-Type: text/css;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Expires: 1680878336639
Cache-Control: max-age=360000, must-revalidate, public
ETag: W/"15101-1663007698000"
Last-Modified: Mon, 12 Sep 2022 18:34:58 GMT
Date: Fri, 07 Oct 2022 14:38:55 GMT
Set-Cookie: JSESSIONID=C038DE53BAA676C2863BC316A2B95D2C.cibp35b; Path=/cibp-web; Secure; HttpOnly
www_bancopopular_com=!aDLK2oljOSWvYdKQ3+KE2Exr7NxXsQJxFQ3iiD5lg+6rCc+8dWsv2cZhDfX8YPAu0zMjkfYjyLiWQSdOx1U9HJoNZq2pGoAK3EB1whCJgQ==; path=/; Httponly; Secure
TS013a3153=012f116564de485d923e3e44ab611cead02c1e74d5d4e991a4cf240b679a133425b4c12c6d53f4864200471fed1cde61c456cfa8840201e645ab58b34b3f64078a955cf7a6; Path=/; Secure; HTTPOnly
TS0125e8e4=012f116564306cc4bdbb9c3a7a47432eda64fd33cad4e991a4cf240b679a133425b4c12c6de27707ab2406148007e1ff300d90663a7d24520076cee62d3a456235127a6943; path=/cibp-web; HTTPonly; Secure
TS062d44df027=08d456d3fbab20005a7dd5859aa922d6cf8885fc0d5cf6ce77d9cf83f60c6f93184a1000d0e4e8660826efc770113000f38bfa5e36fec8557c4fe4d81018335ef60e16501a0d3ad6e6c44f903bb6ad7ca7d7277b8d21a4aefd59e0a8ab25e253; Path=/
Content-Security-Policy: script-src 'self' 'unsafe-eval' 'unsafe-inline' 'unsafe-hashes' https://*.bancopopular.com https://ajax.googleapis.com https://*.google-analytics.com https://js-agent.newrelic.com https://bam.nr-data.net; frame-ancestors 'self' https://*.bancopopular.com
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=31536000
Content-Encoding: gzip

www.bancopopular.com/cibp-web/css/athMovil/athm.css

66.22.18.146

200

1.2 kB

URL HTTP/1.1
www.bancopopular.com/cibp-web/css/athMovil/athm.css
IP
66.22.18.146:0
ASN
#25773 RADWARE-CLOUD-SERVICES

File type
ASCII text, with very long lines (338), with CRLF line terminators
Size
1.2 kB (1175 bytes)
Hash
4d3322f2db95eb2c3040c28f9d7ff08b
8c97fe42ed043fd30c31dd649ecc2f4d137a13a1
3591411169d527a544f671246eb5ee1bbd07432992801380da65519a9d983836

HTTP Headers

GET /cibp-web/css/athMovil/athm.css HTTP/1.1
Host: www.bancopopular.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.nuevacantina.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 
Content-Type: text/css;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Expires: 1680878336731
Cache-Control: max-age=360000, must-revalidate, public
ETag: W/"4853-1663007698000"
Last-Modified: Mon, 12 Sep 2022 18:34:58 GMT
Date: Fri, 07 Oct 2022 14:38:56 GMT
Set-Cookie: JSESSIONID=8B7B75C6D53C09475C0747BE8170CD6E.cibp34a; Path=/cibp-web; Secure; HttpOnly
www_bancopopular_com=!pUv4+Z9jdNau3WWQ3+KE2Exr7NxXsWqFL0ZEFMRmSce0PO5UVXn9v4SkbVxcVVRPEQmRXFP2i+PzMaoJR1o4ZpG55KvRXaY7CPKw6X123A==; path=/; Httponly; Secure
TS013a3153=012f1165643ebfba36ddbb18accc6814060e3251e418761037430dc42ca90bfd03509f42d25b5fe6588a84205827669cd9735769ea8f30a5da02ff098b4f80e983cc16af10; Path=/; Secure; HTTPOnly
TS0125e8e4=012f1165640a6e87b29d887bdb8fd5206c93cdb3d618761037430dc42ca90bfd03509f42d2e60c74f8f287a850eaf67094a894d605657a0da108203d5be9b02512f1015936; path=/cibp-web; HTTPonly; Secure
TS062d44df027=08d456d3fbab20001f78e19401bcfbd0831c004bf20b03cfd2ae68c715547c682a9ea439790ef07608ba7723261130000fb7ea3193c826097c4fe4d81018335ebfd36fbae7adf99d158c091a50990ae5b3867cdfdd005e34e41ccfd5b191060c; Path=/
Content-Security-Policy: script-src 'self' 'unsafe-eval' 'unsafe-inline' 'unsafe-hashes' https://*.bancopopular.com https://ajax.googleapis.com https://*.google-analytics.com https://js-agent.newrelic.com https://bam.nr-data.net; frame-ancestors 'self' https://*.bancopopular.com
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=31536000
Content-Encoding: gzip

www.bancopopular.com/cibp-web/css/athMovil/SpryTabbedPanels.css

66.22.18.146

200

3.0 kB

URL HTTP/1.1
www.bancopopular.com/cibp-web/css/athMovil/SpryTabbedPanels.css
IP
66.22.18.146:0
ASN
#25773 RADWARE-CLOUD-SERVICES

File type
ASCII text, with CRLF line terminators
Size
3.0 kB (2980 bytes)
Hash
75d31add8973aeecee3fd82d85e61fe2
51d8d87df4381cd8ef3a43de6c682c3081175c25
0425d10233b7ca5968c412ccc528feac6f9795bc609feb744f97d05cca6576a1

HTTP Headers

GET /cibp-web/css/athMovil/SpryTabbedPanels.css HTTP/1.1
Host: www.bancopopular.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.nuevacantina.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 
Content-Type: text/css;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Expires: 1680878336765
Cache-Control: max-age=360000, must-revalidate, public
ETag: W/"10972-1663007698000"
Last-Modified: Mon, 12 Sep 2022 18:34:58 GMT
Date: Fri, 07 Oct 2022 14:38:55 GMT
Set-Cookie: JSESSIONID=B813796448A4224B814B8F05BBA45B27.cibp36a; Path=/cibp-web; Secure; HttpOnly
www_bancopopular_com=!qKHXP+WM7YrnodKQ3+KE2Exr7NxXscHhaJxdTB821M5MeRXPfSP5NjdQHZUVGNXvhfcyYIq/MjGOGdXJo52fPe49I2GDscDeTFS1I6USAg==; path=/; Httponly; Secure
TS013a3153=012f116564c3cead2b0b56c9ffa1a29a8e81d017301e20a6a024ae992891cec798284f2ecd2d0e309d5a9a405a62d5240f6931f6d1a8f502d5a97a0896862968be0eac0ebc; Path=/; Secure; HTTPOnly
TS0125e8e4=012f116564abb0272042719f0e8900c39748d4af501e20a6a024ae992891cec798284f2ecde094761e4f501f5e1489c75308a0f46a989c07433929d9aec17f8569526108c5; path=/cibp-web; HTTPonly; Secure
TS062d44df027=08d456d3fbab200062d70127903446273e9cec426e5fcfc3106ee69ee4760c754a20a0ac457f6778086467e0d011300000cf5a6cb7dce9097c4fe4d81018335ef327505936cc7b7ea3cca0ff7f368a1f4ad631456052808e9701fd17e33ddb1b; Path=/
Content-Security-Policy: script-src 'self' 'unsafe-eval' 'unsafe-inline' 'unsafe-hashes' https://*.bancopopular.com https://ajax.googleapis.com https://*.google-analytics.com https://js-agent.newrelic.com https://bam.nr-data.net; frame-ancestors 'self' https://*.bancopopular.com
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=31536000
Content-Encoding: gzip

www.bancopopular.com/cibp-web/css/portal/portal.css

66.22.18.146

200

2.7 kB

URL HTTP/1.1
www.bancopopular.com/cibp-web/css/portal/portal.css
IP
66.22.18.146:0
ASN
#25773 RADWARE-CLOUD-SERVICES

File type
ASCII text, with CRLF line terminators
Size
2.7 kB (2745 bytes)
Hash
8090aa5d1143b79295ff0100de409a44
122da4705beccae5799930be065d6f043e9fe078
c6f04c53e928ddc86c0ec3e7400c00bf6844695c08b723befab2d51a8eaf822d

HTTP Headers

GET /cibp-web/css/portal/portal.css HTTP/1.1
Host: www.bancopopular.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.nuevacantina.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 
Content-Type: text/css;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Expires: 1680878336835
Cache-Control: max-age=360000, must-revalidate, public
ETag: W/"13678-1663007698000"
Last-Modified: Mon, 12 Sep 2022 18:34:58 GMT
Date: Fri, 07 Oct 2022 14:38:56 GMT
Set-Cookie: JSESSIONID=F8D870DC99F7EA4D6DD645FEB2AF84CA.cibp36b; Path=/cibp-web; Secure; HttpOnly
www_bancopopular_com=!pjaTHaBdT+I0CISQ3+KE2Exr7NxXsVgFhkcSS05QOZDToHT3Tm9Na5aqrflcXfGiH3sI8/MwBQppp/2trfbBMzQuH3iaSfzK9csoev0Cjw==; path=/; Httponly; Secure
TS013a3153=012f1165647a12718d23644c3cfd26105df62c4d4db4792056d1fd3713412879f6067cb0bb724f1e7f37a927b3aa1d76daecf523c656fc35570a62fc926818a4af095f4098; Path=/; Secure; HTTPOnly
TS0125e8e4=012f116564c2af565c9554a11594efdeabf50f02deb4792056d1fd3713412879f6067cb0bb60f501a107b33e69a9c98c5ea6d051ff67efcc88d817875c6f1dd54b7f942f29; path=/cibp-web; HTTPonly; Secure
TS062d44df027=08d456d3fbab20008ce7652c70b610e2fbe05d88a8ac6aac84061e27cded783798bf3132d9d25ff108743768a11130009f04cf020ce725377c4fe4d81018335eb588df2c10299ebe665b8f7f3e3df0017bbb0e2e55071f94a38b34c7eeedf6ef; Path=/
Content-Security-Policy: script-src 'self' 'unsafe-eval' 'unsafe-inline' 'unsafe-hashes' https://*.bancopopular.com https://ajax.googleapis.com https://*.google-analytics.com https://js-agent.newrelic.com https://bam.nr-data.net; frame-ancestors 'self' https://*.bancopopular.com
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=31536000
Content-Encoding: gzip

www.bancopopular.com/cibp-web/css/stylemain.css

66.22.18.146

200

13 kB

URL HTTP/1.1
www.bancopopular.com/cibp-web/css/stylemain.css
IP
66.22.18.146:0
ASN
#25773 RADWARE-CLOUD-SERVICES

File type
ASCII text
Size
13 kB (12889 bytes)
Hash
7cd040d1f172660e45998ba1cbc10029
ef1be29b22412b499e15f24ed563d692939cdfd6
b47cf5a2b8c889e0f1dd98812d550de03ece8cd0b4050ec108f1d8b4c2cff0cf

HTTP Headers

GET /cibp-web/css/stylemain.css HTTP/1.1
Host: www.bancopopular.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.nuevacantina.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 
Content-Type: text/css;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Expires: 1680878336790
Cache-Control: max-age=360000, must-revalidate, public
ETag: W/"63228-1663007698000"
Last-Modified: Mon, 12 Sep 2022 18:34:58 GMT
Date: Fri, 07 Oct 2022 14:38:56 GMT
Set-Cookie: JSESSIONID=69FFCDA66DAF520A58F5B9444362AFDF.cibp36b; Path=/cibp-web; Secure; HttpOnly
www_bancopopular_com=!mVNJlIX9iL++k7KQ3+KE2Exr7NxXsUu64nZNmhRSCaWNqi68LlBWg1kYPd1ff5g01nupW443+M0TOojb2D/FWOO0voh/eK6z2vHNc/h/Lg==; path=/; Httponly; Secure
TS013a3153=012f1165649dd6784dd33cc7b9b17553f5134132a4c394d27b7dada6636f28fa572ac0368ea9f14f461b67d539cf319fa3c7ce58b10062b797d64144d84f372849dd880f32; Path=/; Secure; HTTPOnly
TS0125e8e4=012f11656462f2389236cde774f89a1b8a3c3927a9c394d27b7dada6636f28fa572ac0368e0d1832812fb6fc94ab69bc89d3b6b726b985016e6d1e70764c7c266fd4f6dca0; path=/cibp-web; HTTPonly; Secure
TS062d44df027=08d456d3fbab200078a4d52ff7117ebc61e5dc5c10faea65444259a9a0d788bf36ab21494270d56d0886b185f51130002874b4091ef1c8c37c4fe4d81018335e3aad46bc03501754fd44975c04b69c8c814ff6f2c57e32c338109f9247d8130a; Path=/
Content-Security-Policy: script-src 'self' 'unsafe-eval' 'unsafe-inline' 'unsafe-hashes' https://*.bancopopular.com https://ajax.googleapis.com https://*.google-analytics.com https://js-agent.newrelic.com https://bam.nr-data.net; frame-ancestors 'self' https://*.bancopopular.com
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=31536000
Content-Encoding: gzip

www.bancopopular.com/cibp-web/css/mibanco-default-scheme.css

66.22.18.146

200

7.4 kB

URL HTTP/1.1
www.bancopopular.com/cibp-web/css/mibanco-default-scheme.css
IP
66.22.18.146:0
ASN
#25773 RADWARE-CLOUD-SERVICES

File type
ASCII text, with very long lines (869)
Size
7.4 kB (7360 bytes)
Hash
ea952acdf45772f59537c4b3afb130a6
751368fb31f3bd7ed6a9688068ebaef01306524a
075ef1bcdfdf7ec8da2a97459fda369683ce6bd4a7da75568490337a897546e7

HTTP Headers

GET /cibp-web/css/mibanco-default-scheme.css HTTP/1.1
Host: www.bancopopular.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.nuevacantina.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 
Content-Type: text/css;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Expires: 1680878336899
Cache-Control: max-age=360000, must-revalidate, public
ETag: W/"30132-1663007698000"
Last-Modified: Mon, 12 Sep 2022 18:34:58 GMT
Date: Fri, 07 Oct 2022 14:38:55 GMT
Set-Cookie: JSESSIONID=FA90413B0E2DD55B087DC4AF8D556EB8.cibp36a; Path=/cibp-web; Secure; HttpOnly
www_bancopopular_com=!iYlXeMgyTThftKiQ3+KE2Exr7NxXsSSd7tCiCAfuKGFwxjYUEc4Ys3YtdtPSpITDOpuRBaw+5ejWc+tmZ5UlZJO/+ccoUASO25mxwybqiA==; path=/; Httponly; Secure
TS013a3153=012f116564742bcea45c332959dff9e5e63dd7d3974f1eda47ac6d4948f6fd4a61742e153ef55259ae1b0b137e32411e1b767abcbb3339c65d10ba6eeb12b90ecf7f08b9d1; Path=/; Secure; HTTPOnly
TS0125e8e4=012f116564b696367311366272c7ea1d8ab9ac157a4f1eda47ac6d4948f6fd4a61742e153ef7014db7596d7fe518c507110afcc4a588ef39f830ee38c884fe8a23101c4ef4; path=/cibp-web; HTTPonly; Secure
TS062d44df027=08d456d3fbab2000434f01a3ca18559a5bdee2363b8f1c56d6cbae89cdcda476d95dec02bf1f61c60852e36f6c11300035cc5e70767486417c4fe4d81018335e03d715a475566bcbc36703f9447ab084d5144623c1650c505c7a5e454bebc763; Path=/
Content-Security-Policy: script-src 'self' 'unsafe-eval' 'unsafe-inline' 'unsafe-hashes' https://*.bancopopular.com https://ajax.googleapis.com https://*.google-analytics.com https://js-agent.newrelic.com https://bam.nr-data.net; frame-ancestors 'self' https://*.bancopopular.com
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=31536000
Content-Encoding: gzip

www.bancopopular.com/cibp-web/js/gen/builder.js?813522225506

66.22.18.146

200

2.0 kB

URL HTTP/1.1
www.bancopopular.com/cibp-web/js/gen/builder.js?813522225506
IP
66.22.18.146:0
ASN
#25773 RADWARE-CLOUD-SERVICES

File type
ASCII text
Size
2.0 kB (2003 bytes)
Hash
7e494b16f240285b234a3db9b76599cd
af560f6cf67918a12e0591ec6625be5d01991b58
7ccea581064caeca08c76fa62a5c046ad32f6e86699c1cd0d0ccfa56404c52cd

HTTP Headers

GET /cibp-web/js/gen/builder.js?813522225506 HTTP/1.1
Host: www.bancopopular.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.nuevacantina.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 
Content-Type: application/javascript;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"4770-1663008762000"
Last-Modified: Mon, 12 Sep 2022 18:52:42 GMT
Date: Fri, 07 Oct 2022 14:38:56 GMT
Set-Cookie: JSESSIONID=2F097E53CDE3306F4A5713221581962D.cibp36b; Path=/cibp-web; Secure; HttpOnly
www_bancopopular_com=!z4QCVJSM9Nu61DSQ3+KE2Exr7NxXsXLccp29kynre2tfpIrqGqZRDU8hE9mt7n417QU2VNLd1QW9NCGzRUadqV+q4SyQsZJHs4UYhNZ0TA==; path=/; Httponly; Secure
TS013a3153=012f11656430a377ff328beb68177777866182a1f3237650a5212905ffac7e6852b868652b040dcdf860507f1f17fae4c518669dd3a7f788b99c481cdc0fa31250736915b5; Path=/; Secure; HTTPOnly
TS0125e8e4=012f116564d3f0dcddafda6cfe22fd5850f49cab48237650a5212905ffac7e6852b868652baaf5e3c5a5f7e48adf115f8a4e967d5ce0e65539b597f50e2c255a4c5d54bda7; path=/cibp-web; HTTPonly; Secure
TS062d44df027=08d456d3fbab2000ea9904bf17b4cfef93974887c359135eb90aa6a5d7f7f8373376b2d67b11a73608ab64fee2113000673083a0e79cf6f04b5dc6a285dd63f7939a7f9ce446336ad948f4d7543679fe19cb6b9f0248cbcde0ace588e1cc4236; Path=/
Content-Security-Policy: script-src 'self' 'unsafe-eval' 'unsafe-inline' 'unsafe-hashes' https://*.bancopopular.com https://ajax.googleapis.com https://*.google-analytics.com https://js-agent.newrelic.com https://bam.nr-data.net; frame-ancestors 'self' https://*.bancopopular.com
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=31536000
Content-Encoding: gzip

www.bancopopular.com/cibp-web/js/gen/dragdrop.js?813522225506

66.22.18.146

200

9.4 kB

URL HTTP/1.1
www.bancopopular.com/cibp-web/js/gen/dragdrop.js?813522225506
IP
66.22.18.146:0
ASN
#25773 RADWARE-CLOUD-SERVICES

File type
ASCII text
Size
9.4 kB (9395 bytes)
Hash
4f5ceac129187110534227592a4293df
63f82d51c94d5bc437f377d2f9d319a1b40be0d4
da9b8dbe2723d338035a753fb06a3197f6711e72855c75e876d4a079857a1ee7

HTTP Headers

GET /cibp-web/js/gen/dragdrop.js?813522225506 HTTP/1.1
Host: www.bancopopular.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.nuevacantina.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 
Content-Type: application/javascript;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"31811-1663008762000"
Last-Modified: Mon, 12 Sep 2022 18:52:42 GMT
Date: Fri, 07 Oct 2022 14:38:57 GMT
Set-Cookie: JSESSIONID=F754FC5C8D3C78582687FEDC0FFCA475.cibp34a; Path=/cibp-web; Secure; HttpOnly
www_bancopopular_com=!yubxmjHarppdXX6Q3+KE2Exr7NxXsVB99sadZFNdc/emSILFo5H7QXYlJ1dIQ/nWl2xurnLZF2aLkItdMdzaihrJovho94DywilTicfcGg==; path=/; Httponly; Secure
TS013a3153=012f116564b5c222d5e3072d401d2c4a392830794d23f01d6d60c97f6ea971ba0079ce43628a42c0d7253c64b9ead96f23d542f276cf73b9e8113ecf50e439cbf549445851; Path=/; Secure; HTTPOnly
TS0125e8e4=012f11656490c6106f91c19b6bcc18e110df10cc8923f01d6d60c97f6ea971ba0079ce436235e12800bfe25b2b42ca255d4a96148aca4c235ca64b1a0ffa1d42bbd18f55c7; path=/cibp-web; HTTPonly; Secure
TS062d44df027=08d456d3fbab20007a904d3f316446b2f93aaf016be9ff915eb2e53c5b23af984a45c6a711eacfa8089a90fbb0113000e081a9c240c972014b5dc6a285dd63f78964f3e01704c5d4ccbc47316f387b1c935d5539f7bd7d9a77ee7a6c416966dd; Path=/
Content-Security-Policy: script-src 'self' 'unsafe-eval' 'unsafe-inline' 'unsafe-hashes' https://*.bancopopular.com https://ajax.googleapis.com https://*.google-analytics.com https://js-agent.newrelic.com https://bam.nr-data.net; frame-ancestors 'self' https://*.bancopopular.com
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=31536000
Content-Encoding: gzip

www.bancopopular.com/cibp-web/js/wz_tooltip.js

66.22.18.146

200

14 kB

URL HTTP/1.1
www.bancopopular.com/cibp-web/js/wz_tooltip.js
IP
66.22.18.146:0
ASN
#25773 RADWARE-CLOUD-SERVICES

File type
ASCII text, with very long lines (309)
Size
14 kB (14494 bytes)
Hash
3a66d46e9940492c3969fc3281ec573d
2a6c20d42bbd0ea4bff22114a7761d8346b39369
3215ecb06b8f9affcf31cb68252d7e4e96b760b1430afdb6be40a0b967b0fe0c

HTTP Headers

GET /cibp-web/js/wz_tooltip.js HTTP/1.1
Host: www.bancopopular.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.nuevacantina.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 
Content-Type: application/javascript;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"36551-1663008762000"
Last-Modified: Mon, 12 Sep 2022 18:52:42 GMT
Date: Fri, 07 Oct 2022 14:38:56 GMT
Set-Cookie: JSESSIONID=D5985564A118312AE6942B4733E40F0F.cibp34a; Path=/cibp-web; Secure; HttpOnly
www_bancopopular_com=!nJjM06kc3mRxKx6Q3+KE2Exr7NxXsa+4Cd4Pl5hDbaEn5qFaoFkUGt+IDsth3xpT4K2ptnAkz7kxzag9nIse1Y1FAr0n4+Prlu5qBio4sg==; path=/; Httponly; Secure
TS013a3153=012f116564cffb9d8b44be58c02661687b68c1ddf74bbbe17ec4e5753dfb9714da0f37b83db6416f32922bf62477912248601cdac901af5a924776f579ca57336949039cb5; Path=/; Secure; HTTPOnly
TS0125e8e4=012f1165646b038ae5d69f26b71337fe5d1562a9294bbbe17ec4e5753dfb9714da0f37b83d678b732ee76c49b2c2e56ffe57981fb6d6ffca6caf970775305d37693902ca2d; path=/cibp-web; HTTPonly; Secure
TS062d44df027=08d456d3fbab20001ed28707a69d044fa170d5b6f0ff585b15ff3bdddd42fd73f81e127df68981de08720aadb9113000c43e75813f38f2e74b5dc6a285dd63f7179888e1c196257698f7dce8c659dfee8b627854c5b46061d91585edf4f77066; Path=/
Content-Security-Policy: script-src 'self' 'unsafe-eval' 'unsafe-inline' 'unsafe-hashes' https://*.bancopopular.com https://ajax.googleapis.com https://*.google-analytics.com https://js-agent.newrelic.com https://bam.nr-data.net; frame-ancestors 'self' https://*.bancopopular.com
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=31536000
Content-Encoding: gzip

www.bancopopular.com/cibp-web/js/gen/slider.js?813522225506

66.22.18.146

200

3.2 kB

URL HTTP/1.1
www.bancopopular.com/cibp-web/js/gen/slider.js?813522225506
IP
66.22.18.146:0
ASN
#25773 RADWARE-CLOUD-SERVICES

File type
ASCII text
Size
3.2 kB (3186 bytes)
Hash
cb5fda3557dcf9438e04561c4b1125d6
ae5bd3bde30a99ba72a18a7308209b657285cf13
b2439910e20a7a5e86b86327e69f0ef70216d842947a64aa9ae859061da42e4d

HTTP Headers

GET /cibp-web/js/gen/slider.js?813522225506 HTTP/1.1
Host: www.bancopopular.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.nuevacantina.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 
Content-Type: application/javascript;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"10296-1663008762000"
Last-Modified: Mon, 12 Sep 2022 18:52:42 GMT
Date: Fri, 07 Oct 2022 14:38:56 GMT
Set-Cookie: JSESSIONID=C2997B10247C452B958763A8F16C48D9.cibp35a; Path=/cibp-web; Secure; HttpOnly
www_bancopopular_com=!zjxupmdR7I9wsdCQ3+KE2Exr7NxXsXTQSpOMWlzWPd0cKD/vyrFCi5uw3PGY4Fmi3VNc7SG+SCMqFVOjRZcC2BNiq6Z/kTrEchpwtXFT4Q==; path=/; Httponly; Secure
TS013a3153=012f11656481f5f66c2aaa52848043dbe083d6947b05ae828352596b33c3b97a84f98ebe45fcb38b548ceaa73850f7ce2c557132c517126223f6916ea6057526da7f2442a3; Path=/; Secure; HTTPOnly
TS0125e8e4=012f116564e75e874f20a9c8b6fa5ccd8a2fa9ab3405ae828352596b33c3b97a84f98ebe45eba97b169b5d97acbb2321601b33faad5b12733ed428946021dac2624658a651; path=/cibp-web; HTTPonly; Secure
TS062d44df027=08d456d3fbab200013dce15a4446690edfa5c42832d3c76e0cf62a6359d3d762dd563c916d35502008b40664fd113000ecc51c371267e2e04b5dc6a285dd63f752a50e65ae52dc9f42949819ef2265138bb46d42a2dd846ac77be0a698fd48ad; Path=/
Content-Security-Policy: script-src 'self' 'unsafe-eval' 'unsafe-inline' 'unsafe-hashes' https://*.bancopopular.com https://ajax.googleapis.com https://*.google-analytics.com https://js-agent.newrelic.com https://bam.nr-data.net; frame-ancestors 'self' https://*.bancopopular.com
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=31536000
Content-Encoding: gzip

www.bancopopular.com/cibp-web/js/gen/effects.js?813522225506

66.22.18.146

200

11 kB

URL HTTP/1.1
www.bancopopular.com/cibp-web/js/gen/effects.js?813522225506
IP
66.22.18.146:0
ASN
#25773 RADWARE-CLOUD-SERVICES

File type
ASCII text
Size
11 kB (11075 bytes)
Hash
e39ee18de408bd04916ce49fdf6997e9
f616d4732e4963dfd01e526cdbdc87904c915156
be7d313e4f6b59a30b4c05b1133a74f98db075b44fdf78e4ca5be9a7cc47c667

HTTP Headers

GET /cibp-web/js/gen/effects.js?813522225506 HTTP/1.1
Host: www.bancopopular.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.nuevacantina.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 
Content-Type: application/javascript;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"38986-1663008762000"
Last-Modified: Mon, 12 Sep 2022 18:52:42 GMT
Date: Fri, 07 Oct 2022 14:38:56 GMT
Set-Cookie: JSESSIONID=EAF4C3E2EC24DF3BD818F77B856E1A93.cibp35a; Path=/cibp-web; Secure; HttpOnly
www_bancopopular_com=!M6SsurOr6l58xOmQ3+KE2Exr7NxXsRvqXcE2Yhx9yFEmzON9SLKoZhYqwki829ccpSCE4hdFa9sddev1sSdoGKnysHMcR53WoYhVPZsQ1g==; path=/; Httponly; Secure
TS013a3153=012f1165643d23c39d6aa7ac291a8902decdf6a78dd90a8b6cd8fcec39efaaaab4b650663ffa880f3e0adcc9b195ee7720a4599d299f69223b1a4613036fee1202cfb9bd6c; Path=/; Secure; HTTPOnly
TS0125e8e4=012f1165649dba270957e0cf91be34f6e95e8c5748d90a8b6cd8fcec39efaaaab4b650663ffb462176943394bfaf0a43a7e02b45f413ff58a2ec98f603a582e8c48c77fade; path=/cibp-web; HTTPonly; Secure
TS062d44df027=08d456d3fbab20003502e5a864068d3addfc707c0f95e10295a16bcb2b65d66976fcec6bc75aecf3083af4bd3b113000b6ff1481c0d46ee34b5dc6a285dd63f7f63af422cde427ad8bd8d7b554a8e246f6ae31f5fb946cca728175c21039fc0e; Path=/
Content-Security-Policy: script-src 'self' 'unsafe-eval' 'unsafe-inline' 'unsafe-hashes' https://*.bancopopular.com https://ajax.googleapis.com https://*.google-analytics.com https://js-agent.newrelic.com https://bam.nr-data.net; frame-ancestors 'self' https://*.bancopopular.com
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=31536000
Content-Encoding: gzip

www.bancopopular.com/cibp-web/js/gen/controls.js?813522225506

66.22.18.146

200

11 kB

URL HTTP/1.1
www.bancopopular.com/cibp-web/js/gen/controls.js?813522225506
IP
66.22.18.146:0
ASN
#25773 RADWARE-CLOUD-SERVICES

File type
ASCII text
Size
11 kB (11030 bytes)
Hash
8227fe81aee4f09dd4c897c0df9804c0
b7bd208a71d26f24d53c6f49e31983fbd882aaac
8bcb3a167bbec859b0349a3be651ca3973d60dfcf5dd5a1306d4ee5cde29ac26

HTTP Headers

GET /cibp-web/js/gen/controls.js?813522225506 HTTP/1.1
Host: www.bancopopular.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.nuevacantina.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 
Content-Type: application/javascript;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"35196-1663008762000"
Last-Modified: Mon, 12 Sep 2022 18:52:42 GMT
Date: Fri, 07 Oct 2022 14:38:57 GMT
Set-Cookie: JSESSIONID=3ED29786783D4BDA609AFABE1CC097C2.cibp34a; Path=/cibp-web; Secure; HttpOnly
www_bancopopular_com=!Qik1mbH0vNqvUwaQ3+KE2Exr7NxXsTOX2d7Ts1GpyeJ0G7R0O9sopIytajW30BxctZ0DuI7+/WsTZ/Te15T/4ksFI/MtHADvtjiEnQWiWA==; path=/; Httponly; Secure
TS013a3153=012f1165647157dc05d061e20e82cd58c586856a221b0e6bbc693da8c15f940ff56e2387c3ee913d52ae6e442cc88f76383703cb83949392b46428d093aab2eed811c33878; Path=/; Secure; HTTPOnly
TS0125e8e4=012f116564246becef0a1ab71b89a486bca623630a1b0e6bbc693da8c15f940ff56e2387c378faad5f44117858ba68a512514c602aeffb60c8a6317b8ec6e3546b14a84f76; path=/cibp-web; HTTPonly; Secure
TS062d44df027=08d456d3fbab200066b903fe963c2d6c8928d8131720c2c82933cfdfb251a05cf8b5defb6af0c934089423eb731130005debe41f624157914b5dc6a285dd63f76215a4283e7744f32cf25262d951c0b6be8442f3514eaca0edec95427af17d85; Path=/
Content-Security-Policy: script-src 'self' 'unsafe-eval' 'unsafe-inline' 'unsafe-hashes' https://*.bancopopular.com https://ajax.googleapis.com https://*.google-analytics.com https://js-agent.newrelic.com https://bam.nr-data.net; frame-ancestors 'self' https://*.bancopopular.com
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=31536000
Content-Encoding: gzip

www.bancopopular.com/cibp-web/js/gen/sound.js?813522225506

66.22.18.146

200

929 B

URL HTTP/1.1
www.bancopopular.com/cibp-web/js/gen/sound.js?813522225506
IP
66.22.18.146:0
ASN
#25773 RADWARE-CLOUD-SERVICES

File type
ASCII text
Size
929 B (929 bytes)
Hash
3fdea6fbe2053cd60f286a3a2b914db4
2bd70c6653b27c761dd81247823910b58aa28b4d
b7b8565daeb6d43758efd7b6e40382e1e91057f8f90455e6c5ed4b1290f9fc04

HTTP Headers

GET /cibp-web/js/gen/sound.js?813522225506 HTTP/1.1
Host: www.bancopopular.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.nuevacantina.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 
Content-Type: application/javascript;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"1920-1663008762000"
Last-Modified: Mon, 12 Sep 2022 18:52:42 GMT
Date: Fri, 07 Oct 2022 14:38:56 GMT
Set-Cookie: JSESSIONID=2EDBFB4A821269975B49A813FB0C2B68.cibp35b; Path=/cibp-web; Secure; HttpOnly
www_bancopopular_com=!oQCTBxxq0tacD/SQ3+KE2Exr7NxXsTHlxUmqTQcOvAOVGfX8k5zbW1D0OOkqcK/M5RxUDt9RgBvTNhajsHZ0A+so7STO6Dd1Cx00l4AMvQ==; path=/; Httponly; Secure
TS013a3153=012f116564a09bbb30d6f403dac5da7a12e333016f1b9ec0da6091025408af234effb81cf9a434b964d4b1eaf80cf5f859d2aaa242858d868bfe1b2334eb4442ec4c1db91b; Path=/; Secure; HTTPOnly
TS0125e8e4=012f1165643d9d271ac6131c7d90db82b6a3deb6121b9ec0da6091025408af234effb81cf9bcf853168c526df641eeb0e3df0229ed9d397e2707bd8a5c6952cf5a0615f91b; path=/cibp-web; HTTPonly; Secure
TS062d44df027=08d456d3fbab2000c351bb3227b37c4861e5ef30e21c85d582935bb0ecbf4783de699b92866d1c7608d07ffe4c113000064f897a1a72074e4b5dc6a285dd63f70b2d215e504374139d0e7236bf04a1164ac5cfb489d303ad1a2f86871be62a1c; Path=/
Content-Security-Policy: script-src 'self' 'unsafe-eval' 'unsafe-inline' 'unsafe-hashes' https://*.bancopopular.com https://ajax.googleapis.com https://*.google-analytics.com https://js-agent.newrelic.com https://bam.nr-data.net; frame-ancestors 'self' https://*.bancopopular.com
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=31536000
Content-Encoding: gzip

www.bancopopular.com/cibp-web/img/cm/imgWantToDo.png

66.22.18.146

200

731 B

URL HTTP/1.1
www.bancopopular.com/cibp-web/img/cm/imgWantToDo.png
IP
66.22.18.146:0
ASN
#25773 RADWARE-CLOUD-SERVICES

File type
PNG image data, 30 x 30, 8-bit/color RGBA, non-interlaced\012- data
Size
731 B (731 bytes)
Hash
7af2a3ab2f9c403cf8702a1d4334f109
cdb1c9276fb81ad26e15c375a122d7d5195d4337
f6c44e4557a066659e82b47fbc2a1112c15d7028a28f91d11d01502acbb243a9

HTTP Headers

GET /cibp-web/img/cm/imgWantToDo.png HTTP/1.1
Host: www.bancopopular.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.nuevacantina.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 
Content-Type: image/png;charset=UTF-8
Content-Length: 731
Connection: keep-alive
Expires: 1680878337815
Cache-Control: max-age=360000, must-revalidate, public
Accept-Ranges: bytes
ETag: W/"731-1665136800033"
Last-Modified: Fri, 07 Oct 2022 10:00:00 GMT
Date: Fri, 07 Oct 2022 14:38:56 GMT
Set-Cookie: JSESSIONID=FBD3E17C62FFA7F1EA4CE0C292169EC0.cibp35a; Path=/cibp-web; Secure; HttpOnly
www_bancopopular_com=!m1l6glgTweTyCSaQ3+KE2Exr7NxXsZOTvpJGBE141bzKpG7RTMZ5dQrXYKbC8R/k+XjHtSNyKoXzBQLHaSOIT1CcehPA9bMb/S54cgkxYQ==; path=/; Httponly; Secure
TS013a3153=012f116564bc26e6015e3cb49418f93c823cd60f96cd073e838f3ae7d9b957540f1279a3bceefcd58d02268413da989c5fa0a244b3630d8524619645ed2c9bed61f0f4d217; Path=/; Secure; HTTPOnly
TS0125e8e4=012f116564b7d8de856f1af17714fd4404a81175d7cd073e838f3ae7d9b957540f1279a3bced762f3025512585942f7f4fbb44b1026d08a5cbf6dda4dc1b7c3b3a03c3eb0a; path=/cibp-web; HTTPonly; Secure
TS062d44df027=08d456d3fbab200061ed6fdd7bba376045098613aec56283edd40154b8d17d907cfd07a9c781a96e08b1a6a4861130002623d9a46d3095af4b5dc6a285dd63f75bab9e50d472902b90aa4d085c235bec40419df8f1874ae40de080d154a116d1; Path=/
Content-Security-Policy: script-src 'self' 'unsafe-eval' 'unsafe-inline' 'unsafe-hashes' https://*.bancopopular.com https://ajax.googleapis.com https://*.google-analytics.com https://js-agent.newrelic.com https://bam.nr-data.net; frame-ancestors 'self' https://*.bancopopular.com
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=31536000

www.bancopopular.com/cibp-web/img/icnLinkedIn.gif

66.22.18.146

200

429 B

URL HTTP/1.1
www.bancopopular.com/cibp-web/img/icnLinkedIn.gif
IP
66.22.18.146:0
ASN
#25773 RADWARE-CLOUD-SERVICES

File type
GIF image data, version 89a, 17 x 17\012- data
Size
429 B (429 bytes)
Hash
586bacaf21193b990a7c6368a5cc7041
2e619e1b78b7816264d9819d92c2523a6a9ff0cd
0725ce374fae0f71fb192c5893d6dff8cd62bbdd52c42c46105453534ae96bc2

HTTP Headers

GET /cibp-web/img/icnLinkedIn.gif HTTP/1.1
Host: www.bancopopular.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.nuevacantina.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 
Content-Type: image/gif;charset=UTF-8
Content-Length: 429
Connection: keep-alive
Expires: 1680878337820
Cache-Control: max-age=360000, must-revalidate, public
Accept-Ranges: bytes
ETag: W/"429-1663007698000"
Last-Modified: Mon, 12 Sep 2022 18:34:58 GMT
Date: Fri, 07 Oct 2022 14:38:57 GMT
Set-Cookie: JSESSIONID=691F507A0DFD031474DCC20EF3B0B11B.cibp34b; Path=/cibp-web; Secure; HttpOnly
www_bancopopular_com=!9OuGMR76ydccixGQ3+KE2Exr7NxXsTLGJjDkFTfv0pmVm7Y8uSiWM5GJxejS7teVud4QiDClTQXlsmzLrbhBbVgXUpJlYPivAyn+mr2uKg==; path=/; Httponly; Secure
TS013a3153=012f116564e0cd499e1033b281f7d59b0b436d7b5a968bade18118e047d8fcb60383938cd0a785f43eab882acf24be6826ceeda5649e0ad8a83b82a48b71aa52260fd50ddc; Path=/; Secure; HTTPOnly
TS0125e8e4=012f11656479f76c9645e15c9dae9db141c4fe701c968bade18118e047d8fcb60383938cd016c29f156f4f57748a13d9506bd8d3f11ebd6d42e6020c4e3d9a3bf0d97d8614; path=/cibp-web; HTTPonly; Secure
TS062d44df027=08d456d3fbab20001e096ed057ce6a5f4659b9ba3c34b5613916f6c8210d5699e8092c9107dc88d60834927d501130002030c03935375c434b5dc6a285dd63f7c9f33658ef464a07c2e0abf59ec0381d708035a5c59d747e2007c736dd6e00d1; Path=/
Content-Security-Policy: script-src 'self' 'unsafe-eval' 'unsafe-inline' 'unsafe-hashes' https://*.bancopopular.com https://ajax.googleapis.com https://*.google-analytics.com https://js-agent.newrelic.com https://bam.nr-data.net; frame-ancestors 'self' https://*.bancopopular.com
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=31536000

www.bancopopular.com/cibp-web/img/imgArrowRight.gif

66.22.18.146

200

348 B

URL HTTP/1.1
www.bancopopular.com/cibp-web/img/imgArrowRight.gif
IP
66.22.18.146:0
ASN
#25773 RADWARE-CLOUD-SERVICES

File type
GIF image data, version 89a, 15 x 39\012- data
Size
348 B (348 bytes)
Hash
36f702eef0e57f9fd6d8ffc6f57a8389
c30cb41abdf4dee3f3855981baf0954a23cfae87
df9094c21dd612584d5c7fe7bc357a204a88202ee8f1e046adbdff673700cd78

HTTP Headers

GET /cibp-web/img/imgArrowRight.gif HTTP/1.1
Host: www.bancopopular.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.nuevacantina.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 
Content-Type: image/gif;charset=UTF-8
Content-Length: 348
Connection: keep-alive
Expires: 1680878337821
Cache-Control: max-age=360000, must-revalidate, public
Accept-Ranges: bytes
ETag: W/"348-1663007698000"
Last-Modified: Mon, 12 Sep 2022 18:34:58 GMT
Date: Fri, 07 Oct 2022 14:38:56 GMT
Set-Cookie: JSESSIONID=5258F02A5BB10C0B53C010D3453E3ABD.cibp35a; Path=/cibp-web; Secure; HttpOnly
www_bancopopular_com=!zjW/hhFh+n6qxvyQ3+KE2Exr7NxXsZEBNkiBsyGxwXy9SW0fXI3IRVBd96piQ2kdxTscIXwfuwwZrf3laJFHclwEhzb57HDALRCwp2fQMg==; path=/; Httponly; Secure
TS013a3153=012f116564116e32bed838d5a3e27036957bce66aa0bab3cf89bcf68c50f5c13a851d98bb2822d7429f44473935bffea3472d21da85f13a4b123876372d79e91efdf6151ea; Path=/; Secure; HTTPOnly
TS0125e8e4=012f116564e507176e5028fae351a92c2d32ad24220bab3cf89bcf68c50f5c13a851d98bb2fd5530ed1b7f8be4d9fb1d15287b3581f43c4329ce26c5d01a8f05b4393ea6bb; path=/cibp-web; HTTPonly; Secure
TS062d44df027=08d456d3fbab20002d70dd21cb39f21ead66501d49d25b0a943ace6da28dbb9359effc0193fdcd24081042bcb711300019b3bc2fafc47bbe4b5dc6a285dd63f7654475de70535938b7d7115f2f0a4ce900b3e5cc417d1dee99f9e2d2b808a3f4; Path=/
Content-Security-Policy: script-src 'self' 'unsafe-eval' 'unsafe-inline' 'unsafe-hashes' https://*.bancopopular.com https://ajax.googleapis.com https://*.google-analytics.com https://js-agent.newrelic.com https://bam.nr-data.net; frame-ancestors 'self' https://*.bancopopular.com
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=31536000

www.bancopopular.com/cibp-web/img/imgArrowLeft.gif

66.22.18.146

200

346 B

URL HTTP/1.1
www.bancopopular.com/cibp-web/img/imgArrowLeft.gif
IP
66.22.18.146:0
ASN
#25773 RADWARE-CLOUD-SERVICES

File type
GIF image data, version 89a, 15 x 39\012- data
Size
346 B (346 bytes)
Hash
57294bb8f186c85fe08d570f87047cab
16b383a29b9e709fb35a400cb18f4a02c8d117c1
c4d03e9cf0a1e3ea090870da4ed1bcc922b11e81e895c761ab38cd1c5d67bae2

HTTP Headers

GET /cibp-web/img/imgArrowLeft.gif HTTP/1.1
Host: www.bancopopular.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.nuevacantina.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 
Content-Type: image/gif;charset=UTF-8
Content-Length: 346
Connection: keep-alive
Expires: 1680878337848
Cache-Control: max-age=360000, must-revalidate, public
Accept-Ranges: bytes
ETag: W/"346-1663007698000"
Last-Modified: Mon, 12 Sep 2022 18:34:58 GMT
Date: Fri, 07 Oct 2022 14:38:56 GMT
Set-Cookie: JSESSIONID=B4C913615456820AB19EFB5A6DEBB067.cibp35a; Path=/cibp-web; Secure; HttpOnly
www_bancopopular_com=!FIYmRoOuj4MFFyiQ3+KE2Exr7NxXscLiecs2O2n0F5C5ngwHostgqWfDEwYYX7tBc+EaOy51pb1qJErZiRjnIDzzcsCtlochN/yS4TSnJQ==; path=/; Httponly; Secure
TS013a3153=012f1165646996047df1c2611e36a320eb16a1cc2631ab22568346e6e0f626aabe64928070eb87e0b4f5251d6e9fdd07265281b813482fb9e9e79dc74a7907208519d0d09f; Path=/; Secure; HTTPOnly
TS0125e8e4=012f116564e6a963a15156a4f0ff42c6a58ab88bcf31ab22568346e6e0f626aabe64928070a9208fbc102e487a5dc8e03572fe32fd85e37c1f77891e134ca80f0ec8a89fd4; path=/cibp-web; HTTPonly; Secure
TS062d44df027=08d456d3fbab20007dad2c91e1c68ba5aee825357b4d654599a64ef64a6807480c242d79aa6ac61708ff11d528113000c4f3abff7c17d7384b5dc6a285dd63f715351c4521bd56db5bb67f8798882d870cfc74056297271bcc46f6662edfd54d; Path=/
Content-Security-Policy: script-src 'self' 'unsafe-eval' 'unsafe-inline' 'unsafe-hashes' https://*.bancopopular.com https://ajax.googleapis.com https://*.google-analytics.com https://js-agent.newrelic.com https://bam.nr-data.net; frame-ancestors 'self' https://*.bancopopular.com
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=31536000

www.bancopopular.com/cibp-web/img/imglogoPop.gif

66.22.18.146

200

1.5 kB

URL HTTP/1.1
www.bancopopular.com/cibp-web/img/imglogoPop.gif
IP
66.22.18.146:0
ASN
#25773 RADWARE-CLOUD-SERVICES

File type
GIF image data, version 89a, 171 x 31\012- data
Size
1.5 kB (1473 bytes)
Hash
cb101ee0d7a064fe3aa10bf59d003532
4f9fd28cd1237299ab0639ed70e0138d0da11cc0
5d2d660e3f2814e0b8f4bffd0c762be929d14beb9ec960a813f225de3973d5cb

HTTP Headers

GET /cibp-web/img/imglogoPop.gif HTTP/1.1
Host: www.bancopopular.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.nuevacantina.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 
Content-Type: image/gif;charset=UTF-8
Content-Length: 1473
Connection: keep-alive
Expires: 1680878337845
Cache-Control: max-age=360000, must-revalidate, public
Accept-Ranges: bytes
ETag: W/"1473-1663007698000"
Last-Modified: Mon, 12 Sep 2022 18:34:58 GMT
Date: Fri, 07 Oct 2022 14:38:57 GMT
Set-Cookie: JSESSIONID=41C4E002356F576950FD6C94FA486FA7.cibp36b; Path=/cibp-web; Secure; HttpOnly
www_bancopopular_com=!U4+B6LMUYLLqpSWQ3+KE2Exr7NxXsY0kISUWm71zdaz5AxCr2Wr/84QaFE7JgYm8qylqFmv6SXocHFxERp+MfymGsdkpDAnwHaqk18r85w==; path=/; Httponly; Secure
TS013a3153=012f116564768f719b24d9fe070e071b338a9f4676b3a4339426cd7da8dc8de5c78986c985852d54c4a98ac3cf120d8c00233040d259516e152cb05e14980f78200ebfcced; Path=/; Secure; HTTPOnly
TS0125e8e4=012f11656407fc12c298c20edc9becf1d5c5186900b3a4339426cd7da8dc8de5c78986c985b346202d8337ec30a442bf9e5b66adf66b4f8643f90cb233937569680c15964f; path=/cibp-web; HTTPonly; Secure
TS062d44df027=08d456d3fbab2000c5f7bcfca6cbd0b0057d18c74267e4ecad858930563820469f561800f0ce557608c243a5ff1130009de9269dbb16abff4b5dc6a285dd63f73bf7ecce98f6ca68c86c7c34835cf5e32360a32e19c4927add73f38362a39a0f; Path=/
Content-Security-Policy: script-src 'self' 'unsafe-eval' 'unsafe-inline' 'unsafe-hashes' https://*.bancopopular.com https://ajax.googleapis.com https://*.google-analytics.com https://js-agent.newrelic.com https://bam.nr-data.net; frame-ancestors 'self' https://*.bancopopular.com
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=31536000

www.bancopopular.com/cibp-web/img/cm/8a81a4537dc1457f017ea218e8dc2348.jpg

66.22.18.146

404

437 B

URL HTTP/1.1
www.bancopopular.com/cibp-web/img/cm/8a81a4537dc1457f017ea218e8dc2348.jpg
IP
66.22.18.146:0
ASN
#25773 RADWARE-CLOUD-SERVICES

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
437 B (437 bytes)
Hash
d5b2b7fccfae17e4ea49d679a7decb33
97d560d3f86c15b4dd95df37ddc64b566627a9d4
1e2e8c8b0a0e5bd7223439fb1a78039643bc4100f13bf52cfce5ad5bca635a09

HTTP Headers

GET /cibp-web/img/cm/8a81a4537dc1457f017ea218e8dc2348.jpg HTTP/1.1
Host: www.bancopopular.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.nuevacantina.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 404 
Content-Type: text/html;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Pragma: no-cache
Cache-Control: no-cache, no-store
P3P: CP="NOI DSP COR NID CURa TAIa PSAa OUR STP UNI PRE" policyref="/w3c/p3p.xml"
Content-Language: en-US
Date: Fri, 07 Oct 2022 14:38:57 GMT
Set-Cookie: JSESSIONID=00712849A326AB42A8A19DFA86CA767F.cibp35b; Path=/cibp-web; Secure; HttpOnly
www_bancopopular_com=!KTUqylRWyFlU8MSQ3+KE2Exr7NxXsYERzS5o8N/1rWhtz6EJ1Elqk4UzhnZsntMg6fA4mEIdGX98wXwSDLPvPfWW1Ift4idvVp44ytC7qQ==; path=/; Httponly; Secure
TS013a3153=012f1165641a3f41a418ebf247035daa17a986d02596f2fa153c32f515eebecabcf622336e94b258a7ba2de093b1bb4a8bade6a8eb8c681190bafee7a14af0c26f3265cadf; Path=/; Secure; HTTPOnly
TS0125e8e4=012f116564315f8f1f6e95d9fc0075ebcc70d1399e96f2fa153c32f515eebecabcf622336e9c983fe33cc3e22d23501b250464948e2fc169b1e92356c7a2801c66e8c8f348; path=/cibp-web; HTTPonly; Secure
TS062d44df027=08d456d3fbab200068fefe64fa6f8573684a59c726bcabc3a96b14d72730e07c22744b9105c63fb0088849b8951130008988c3a42e6adc164b5dc6a285dd63f7d87a9d0b4ab38d96c6f52adc80093a211cde639052ea444430693f161f198bf4; Path=/
Content-Security-Policy: script-src 'self' 'unsafe-eval' 'unsafe-inline' 'unsafe-hashes' https://*.bancopopular.com https://ajax.googleapis.com https://*.google-analytics.com https://js-agent.newrelic.com https://bam.nr-data.net; frame-ancestors 'self' https://*.bancopopular.com
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=31536000
Content-Encoding: gzip

www.bancopopular.com/cibp-web/img/default-images.gif

66.22.18.146

200

4.2 kB

URL HTTP/1.1
www.bancopopular.com/cibp-web/img/default-images.gif
IP
66.22.18.146:0
ASN
#25773 RADWARE-CLOUD-SERVICES

File type
GIF image data, version 89a, 200 x 400\012- data
Size
4.2 kB (4153 bytes)
Hash
82139b1a8be77869d2303828b72b23ac
0a26f9dd4cbf19c73df924050ad849e4800d2369
50c7708eddbcbb71cbb50746ef6b60f85a7cc5ea034bd67f54af2fa08c8d7c68

HTTP Headers

GET /cibp-web/img/default-images.gif HTTP/1.1
Host: www.bancopopular.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bancopopular.com/cibp-web/css/mibanco-default-scheme.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 
Content-Type: image/gif;charset=UTF-8
Content-Length: 4153
Connection: keep-alive
Expires: 1680878338185
Cache-Control: max-age=360000, must-revalidate, public
Accept-Ranges: bytes
ETag: W/"4153-1663007698000"
Last-Modified: Mon, 12 Sep 2022 18:34:58 GMT
Date: Fri, 07 Oct 2022 14:38:58 GMT
Set-Cookie: JSESSIONID=CB909F078727ED594C8118751BFFB807.cibp34b; Path=/cibp-web; Secure; HttpOnly
www_bancopopular_com=!j9h2FfxSfy6hsjmQ3+KE2Exr7NxXsYg3gbWWUPp9GtMxM8SM/DxqTMVyvTKA8by+5Dt9gqkbxOCXgIv07SSMAcBn0RXXGtwq+SEfrd0Ebw==; path=/; Httponly; Secure
TS013a3153=012f1165640f39027c6ddb214e8d5b9d1555b1f796241085b3227c400e1c7f613a0ee42d7882b929b06a5d78843e35c5c8fd094bca1a88de7637d80798ecd27fe0b422eb82; Path=/; Secure; HTTPOnly
TS0125e8e4=012f1165648d7c5e2c3a9593b5b8713a6898286c07241085b3227c400e1c7f613a0ee42d784ef5cbcd337c2626681cf3c57c912bdf9f5570875767ef1b112b4ff57e8f8e3d; path=/cibp-web; HTTPonly; Secure
TS062d44df027=08d456d3fbab2000311665b4d5db058b3a45f36a6a4e68ce81e9b432e48245fe2ea76423b2caf9d2080cc649671130002fbbfd90373cfe49dcbc1f8113420123f2603f18b59b21991b5ad58dfdfcc4e3ddc330d97df2ffc639f792fa3c8dff26; Path=/
Content-Security-Policy: script-src 'self' 'unsafe-eval' 'unsafe-inline' 'unsafe-hashes' https://*.bancopopular.com https://ajax.googleapis.com https://*.google-analytics.com https://js-agent.newrelic.com https://bam.nr-data.net; frame-ancestors 'self' https://*.bancopopular.com
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=31536000

www.bancopopular.com/cibp-web/img/login-background.gif

66.22.18.146

200

1.9 kB

URL HTTP/1.1
www.bancopopular.com/cibp-web/img/login-background.gif
IP
66.22.18.146:0
ASN
#25773 RADWARE-CLOUD-SERVICES

File type
GIF image data, version 89a, 200 x 116\012- data
Size
1.9 kB (1909 bytes)
Hash
c78bcb1a577666e22cd6c417e20f01d3
84677899bc265c4ad87b799b0a3d52a63a4f8402
a3c4055616c6012404c320c73dee70c1bd091161c609b03c6724e26d13175d72

HTTP Headers

GET /cibp-web/img/login-background.gif HTTP/1.1
Host: www.bancopopular.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bancopopular.com/cibp-web/css/mibanco-default-scheme.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 
Content-Type: image/gif;charset=UTF-8
Content-Length: 1909
Connection: keep-alive
Expires: 1680878338282
Cache-Control: max-age=360000, must-revalidate, public
Accept-Ranges: bytes
ETag: W/"1909-1663007698000"
Last-Modified: Mon, 12 Sep 2022 18:34:58 GMT
Date: Fri, 07 Oct 2022 14:38:58 GMT
Set-Cookie: JSESSIONID=2D907E1D5E125BEC03B82B1E0CFB1688.cibp34a; Path=/cibp-web; Secure; HttpOnly
www_bancopopular_com=!R0lY80+CxAon+GuQ3+KE2Exr7NxXsSJUfWBP8t7UMgKJE8pILJ+O0Gl6yEDPq5qVxVE46kxPKhdl23RJtqNO86ElH5aKtMcDqp1FEQzK/Q==; path=/; Httponly; Secure
TS013a3153=012f1165644dd5ebaab673b81f704527c5df177c27f1bcc4f741abef03eb763776ebe8c2f09e9228c0393c02e04a935f8bca214a71ad5e680c98374a7bca98c24649817aaa; Path=/; Secure; HTTPOnly
TS0125e8e4=012f11656485b292bc90069917efd0bdfbcf4a1594f1bcc4f741abef03eb763776ebe8c2f08be3bc1071400d5658e35ab452e8de7120a633b459f3ebeaf22cdcc73ad83768; path=/cibp-web; HTTPonly; Secure
TS062d44df027=08d456d3fbab200066fe3618ed972ad291e57671dfeb2f71169b6421f4d0187851a93d1c27f54cee082a8e9557113000502cb02c51f9d531dcbc1f8113420123f8d48e75fda1a7389aea4d2f30a65af70746abb7969dc71860341a8c85a0551a; Path=/
Content-Security-Policy: script-src 'self' 'unsafe-eval' 'unsafe-inline' 'unsafe-hashes' https://*.bancopopular.com https://ajax.googleapis.com https://*.google-analytics.com https://js-agent.newrelic.com https://bam.nr-data.net; frame-ancestors 'self' https://*.bancopopular.com
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=31536000

www.bancopopular.com/cibp-web/img/popular-logo.png

66.22.18.146

200

4.5 kB

URL HTTP/1.1
www.bancopopular.com/cibp-web/img/popular-logo.png
IP
66.22.18.146:0
ASN
#25773 RADWARE-CLOUD-SERVICES

File type
PNG image data, 164 x 31, 8-bit/color RGBA, non-interlaced\012- data
Size
4.5 kB (4488 bytes)
Hash
5f2df8c102bf2eedd181668139dff2b8
4b5b200dac5a6120ea364156ac21b5202087c274
7a5dc1f965958e245a6408972b9337af26c3a03c92de1c62d0607bd2502e3ade

HTTP Headers

GET /cibp-web/img/popular-logo.png HTTP/1.1
Host: www.bancopopular.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bancopopular.com/cibp-web/css/mibanco-default-scheme.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 
Content-Type: image/png;charset=UTF-8
Content-Length: 4488
Connection: keep-alive
Expires: 1680878338282
Cache-Control: max-age=360000, must-revalidate, public
Accept-Ranges: bytes
ETag: W/"4488-1663007698000"
Last-Modified: Mon, 12 Sep 2022 18:34:58 GMT
Date: Fri, 07 Oct 2022 14:38:57 GMT
Set-Cookie: JSESSIONID=690A2CA0587E048C6F14EAE9F70855BD.cibp36b; Path=/cibp-web; Secure; HttpOnly
www_bancopopular_com=!KajSS2tzS0ZsEZCQ3+KE2Exr7NxXsVyLF2kQesoKNvi3ifqqAHHOUafVIf1LgjOxpp4U4/6c/EeMwlbs28CaL/koPhFaVnk9c7Uoy4JbGg==; path=/; Httponly; Secure
TS013a3153=012f11656463291ecd4c2750305c6135ee80cb0abeb14069b7a7c90e14768bb1829a3c5b18987b87763a3815ce10c5f9a10e19a415ff1bd94b48d9ba892c93116be45a439a; Path=/; Secure; HTTPOnly
TS0125e8e4=012f116564e5c25d9bfdcbda46e65c974f49e7768cb14069b7a7c90e14768bb1829a3c5b18b28cd7e3c3895687ca62a854951bca37cb5685307b04bd2251e5ef2067661efc; path=/cibp-web; HTTPonly; Secure
TS062d44df027=08d456d3fbab2000e8792c156d2ac5a152d5de38e4a1b6a314a6c91afed7382e088b5d4ccaf0fdcb08e3618621113000697d635380269babdcbc1f811342012343ae4fe17535a6d94b643724105c8f715da490b2d35e285dc7537ab30768d7c7; Path=/
Content-Security-Policy: script-src 'self' 'unsafe-eval' 'unsafe-inline' 'unsafe-hashes' https://*.bancopopular.com https://ajax.googleapis.com https://*.google-analytics.com https://js-agent.newrelic.com https://bam.nr-data.net; frame-ancestors 'self' https://*.bancopopular.com
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=31536000

www.bancopopular.com/cibp-web/img/imgsignOnMidstep1.png

66.22.18.146

200

16 kB

URL HTTP/1.1
www.bancopopular.com/cibp-web/img/imgsignOnMidstep1.png
IP
66.22.18.146:0
ASN
#25773 RADWARE-CLOUD-SERVICES

File type
PNG image data, 216 x 167, 8-bit/color RGBA, non-interlaced\012- data
Size
16 kB (15468 bytes)
Hash
ca41d3925c112eaae79c49a48d664e87
198380c4c90baaa50cd775e5cc1dbf907814f24b
c8b9062128477f8bc8d038f434d30be8306fad073e5058ca2ab1a7ad19808c3a

HTTP Headers

GET /cibp-web/img/imgsignOnMidstep1.png HTTP/1.1
Host: www.bancopopular.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bancopopular.com/cibp-web/css/stylemain.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 
Content-Type: image/png;charset=UTF-8
Content-Length: 15468
Connection: keep-alive
Expires: 1680878338199
Cache-Control: max-age=360000, must-revalidate, public
Accept-Ranges: bytes
ETag: W/"15468-1663007698000"
Last-Modified: Mon, 12 Sep 2022 18:34:58 GMT
Date: Fri, 07 Oct 2022 14:38:57 GMT
Set-Cookie: JSESSIONID=5D502572D960379C8AFCF9EEA02E4B24.cibp36b; Path=/cibp-web; Secure; HttpOnly
www_bancopopular_com=!lYFOp8FhhIs8fxaQ3+KE2Exr7NxXsYQ/CBsGAqsjMxlEOXQvAqVDfcKpsGtGjflPg/3lm6dcYLFTtG7roWMG0EUleJeXJP86f4+unHyhSA==; path=/; Httponly; Secure
TS013a3153=012f11656479741613aef34236a50163536ab81c88d40d3c9a937462d8b99622396ccc53dd4e66c8b391fa78483fd9f0891eca399b1ff744041b9a7540827c9de6ad238d8e; Path=/; Secure; HTTPOnly
TS0125e8e4=012f1165649ae92443bea0575c1ff109aa65f26a97d40d3c9a937462d8b99622396ccc53dd264f54b2f98e813c784d5f1d6a390f421610a0c6e45a788f00ed6d2054d187ad; path=/cibp-web; HTTPonly; Secure
TS062d44df027=08d456d3fbab2000e2535d5a2496c304fc98f54d6baea1dcf603361f553b3414ce1804187aa4b74108173b493b113000d0dfee2185ab8726dcbc1f8113420123930f43ad94524a7bd4c5b63f4bc59b34cbafabe63d7fd4b862598cc60513ef37; Path=/
Content-Security-Policy: script-src 'self' 'unsafe-eval' 'unsafe-inline' 'unsafe-hashes' https://*.bancopopular.com https://ajax.googleapis.com https://*.google-analytics.com https://js-agent.newrelic.com https://bam.nr-data.net; frame-ancestors 'self' https://*.bancopopular.com
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=31536000

www.bancopopular.com/cibp-web/img/imgsignOnBoxTop.png

66.22.18.146

200

693 B

URL HTTP/1.1
www.bancopopular.com/cibp-web/img/imgsignOnBoxTop.png
IP
66.22.18.146:0
ASN
#25773 RADWARE-CLOUD-SERVICES

File type
PNG image data, 216 x 35, 8-bit/color RGBA, non-interlaced\012- data
Size
693 B (693 bytes)
Hash
3d22f428c169344280711c0556cf49e3
cb269d89388b1a4d9a9703785299872e62df2668
e4f47ef557c35e4ce236c9f166c8972e73fab8b515e6d84cd968c81a986d6fb9

HTTP Headers

GET /cibp-web/img/imgsignOnBoxTop.png HTTP/1.1
Host: www.bancopopular.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bancopopular.com/cibp-web/css/stylemain.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 
Content-Type: image/png;charset=UTF-8
Content-Length: 693
Connection: keep-alive
Expires: 1680878338310
Cache-Control: max-age=360000, must-revalidate, public
Accept-Ranges: bytes
ETag: W/"693-1663007698000"
Last-Modified: Mon, 12 Sep 2022 18:34:58 GMT
Date: Fri, 07 Oct 2022 14:38:58 GMT
Set-Cookie: JSESSIONID=93DB011FC632EDC9EB17A1B3CDAD1E67.cibp36a; Path=/cibp-web; Secure; HttpOnly
www_bancopopular_com=!1IjCueRlx86vW1WQ3+KE2Exr7NxXsXM3B6c12zmS8dQ38U2qZHJ4VCu0LihXm/1NexuJLA8x47ZLxcSkNOv1LA+JLR+5wkDqvtvFPQa7UA==; path=/; Httponly; Secure
TS013a3153=012f1165647c8e1a080fa4eca2c8b99e997ea3270f5a049ace5aafd8a3592f9775119580a64fe9e78a792c41a198dd5b7ff8e62ec240c07e673dc7cde081e728c98e9cbbd4; Path=/; Secure; HTTPOnly
TS0125e8e4=012f1165642bc7729bbfb3614c525caf198e9f42d55a049ace5aafd8a3592f9775119580a611e7a294813322c090cc6406ff5d8c80ed94e7462e93a7dad73a1cf5a8edd47a; path=/cibp-web; HTTPonly; Secure
TS062d44df027=08d456d3fbab20005199b231b0b5b8a947521a5de77bd8a8e83d25b704ceec6082ba8bd9406a9747086d1526bc1130001d467654631d7382dcbc1f8113420123dd87853634cbdde6f2f693d4c304437dc2f38790da96fd3efcc8b5a49a1606d7; Path=/
Content-Security-Policy: script-src 'self' 'unsafe-eval' 'unsafe-inline' 'unsafe-hashes' https://*.bancopopular.com https://ajax.googleapis.com https://*.google-analytics.com https://js-agent.newrelic.com https://bam.nr-data.net; frame-ancestors 'self' https://*.bancopopular.com
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=31536000

www.bancopopular.com/cibp-web/img/adSpacewithLine.jpg

66.22.18.146

200

669 B

URL HTTP/1.1
www.bancopopular.com/cibp-web/img/adSpacewithLine.jpg
IP
66.22.18.146:0
ASN
#25773 RADWARE-CLOUD-SERVICES

File type
JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 205x100, components 3\012- data
Size
669 B (669 bytes)
Hash
43a3461275b224004864881ecfd71477
de1fc00457dec17a2bc8fddc10e995d452bbf211
e536a7dd5054e8be755c577f601da02e05884f44567673f816d43ab39c910f54

HTTP Headers

GET /cibp-web/img/adSpacewithLine.jpg HTTP/1.1
Host: www.bancopopular.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.nuevacantina.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 
Content-Type: image/jpeg;charset=UTF-8
Content-Length: 669
Connection: keep-alive
Expires: 1680878338630
Cache-Control: max-age=360000, must-revalidate, public
Accept-Ranges: bytes
ETag: W/"669-1663007698000"
Last-Modified: Mon, 12 Sep 2022 18:34:58 GMT
Date: Fri, 07 Oct 2022 14:38:58 GMT
Set-Cookie: JSESSIONID=B8121C6822B7C6235F4F6D7CD410D344.cibp34a; Path=/cibp-web; Secure; HttpOnly
www_bancopopular_com=!JxFTVqRFRtd2FdqQ3+KE2Exr7NxXsYTmtrhKBrfxx740GOxlRYtojJ5y46orxno+OvEu+7vAAmI/7/eIPj8XI3RK4Y24pVE1t7OebkhYVw==; path=/; Httponly; Secure
TS013a3153=012f116564d6226efd465dc608adce7d824d0575d13a48eee6f82bc7dd121c566bcb013fe252d01f7dc82da3b75843d5534dd12a5d9aaa228ea962539ff76b6158b0687172; Path=/; Secure; HTTPOnly
TS0125e8e4=012f1165642569dc6b82cf09400d3c3bec532208f63a48eee6f82bc7dd121c566bcb013fe26c8c38c64d676efa7ac484c225f91843b84347b826bec20b241e8fdacd722046; path=/cibp-web; HTTPonly; Secure
TS062d44df027=08d456d3fbab2000272e7defb562592d34c3e0f26a80f519772dc65452183a8ff15939eba1256a5008423e951d11300014e7c59d57588f1bdcbc1f81134201231e2879fd9fcd7cbaf208ed553cfb00c8693ba98fb594937fc235ab37462d4b1f; Path=/
Content-Security-Policy: script-src 'self' 'unsafe-eval' 'unsafe-inline' 'unsafe-hashes' https://*.bancopopular.com https://ajax.googleapis.com https://*.google-analytics.com https://js-agent.newrelic.com https://bam.nr-data.net; frame-ancestors 'self' https://*.bancopopular.com
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=31536000

www.bancopopular.com/cibp-web/img/imgLoginGrayBox.gif

66.22.18.146

200

1.5 kB

URL HTTP/1.1
www.bancopopular.com/cibp-web/img/imgLoginGrayBox.gif
IP
66.22.18.146:0
ASN
#25773 RADWARE-CLOUD-SERVICES

File type
GIF image data, version 89a, 456 x 120\012- data
Size
1.5 kB (1484 bytes)
Hash
f1e6bb227339dd0ad9c154e265718adf
49b80864265b71cf3aad2a6507eeb8fdad9a0213
b00889dee6f1935f07c4f5030632c857f78676751f1a601e596af90f712be4f4

HTTP Headers

GET /cibp-web/img/imgLoginGrayBox.gif HTTP/1.1
Host: www.bancopopular.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.nuevacantina.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 
Content-Type: image/gif;charset=UTF-8
Content-Length: 1484
Connection: keep-alive
Expires: 1680878338671
Cache-Control: max-age=360000, must-revalidate, public
Accept-Ranges: bytes
ETag: W/"1484-1663007698000"
Last-Modified: Mon, 12 Sep 2022 18:34:58 GMT
Date: Fri, 07 Oct 2022 14:38:58 GMT
Set-Cookie: JSESSIONID=1410BCE88D0FE7F1F9B607609737E31E.cibp34b; Path=/cibp-web; Secure; HttpOnly
www_bancopopular_com=!UtKFpiEpVNQOBwiQ3+KE2Exr7NxXsck8PSlXoWXiGi2Dqy+7paReIoL5HYgQ0DhT0kNI8EObxyq/RKtv5ZCVhaHYFUViJy8s92/6p9FXwg==; path=/; Httponly; Secure
TS013a3153=012f11656481fc4f50cbf518757f209c6c7245ebf336356f32624f438eb82c06d9175de4fbbb4f94908f4f83cd3d69e12225a2e72a61dd8b8cf5463e487f8815d0c844badc; Path=/; Secure; HTTPOnly
TS0125e8e4=012f11656471dfd7fa94d8da7ffde05322ffe0a6f436356f32624f438eb82c06d9175de4fb173fb146298ff2049394bed2bff2362591fa1b7c1cea6d377739ad17542dd802; path=/cibp-web; HTTPonly; Secure
TS062d44df027=08d456d3fbab2000b03bae07c3f3a127d70b467eb80c967a9ac6fa753b8ecc316c0fa12351a258e2085f9bc107113000889f6348738d73d5dcbc1f8113420123d68cc4e65b4b523ad545e3efb158b9e118a481382f4fc7e4644947922d91997e; Path=/
Content-Security-Policy: script-src 'self' 'unsafe-eval' 'unsafe-inline' 'unsafe-hashes' https://*.bancopopular.com https://ajax.googleapis.com https://*.google-analytics.com https://js-agent.newrelic.com https://bam.nr-data.net; frame-ancestors 'self' https://*.bancopopular.com
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=31536000

www.bancopopular.com/cibp-web/img/cm/8a81a4537dc1457f017ea2155c1e2336.jpg

66.22.18.146

404

437 B

URL HTTP/1.1
www.bancopopular.com/cibp-web/img/cm/8a81a4537dc1457f017ea2155c1e2336.jpg
IP
66.22.18.146:0
ASN
#25773 RADWARE-CLOUD-SERVICES

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
437 B (437 bytes)
Hash
d5b2b7fccfae17e4ea49d679a7decb33
97d560d3f86c15b4dd95df37ddc64b566627a9d4
1e2e8c8b0a0e5bd7223439fb1a78039643bc4100f13bf52cfce5ad5bca635a09

HTTP Headers

GET /cibp-web/img/cm/8a81a4537dc1457f017ea2155c1e2336.jpg HTTP/1.1
Host: www.bancopopular.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.nuevacantina.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 404 
Content-Type: text/html;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Pragma: no-cache
Cache-Control: no-cache, no-store
P3P: CP="NOI DSP COR NID CURa TAIa PSAa OUR STP UNI PRE" policyref="/w3c/p3p.xml"
Content-Language: en-US
Date: Fri, 07 Oct 2022 14:38:58 GMT
Set-Cookie: JSESSIONID=B21C7F6D790F992BFC06C13EF20BC0BE.cibp34a; Path=/cibp-web; Secure; HttpOnly
www_bancopopular_com=!3x/JR7n/7kPOYNCQ3+KE2Exr7NxXsYnbsCOQAffNokITsg+dlxo6+g9LWzWX682pYjjIhyelaeBXnx2WyeP2SlnPo6Zb1sxzuOITiUjHgg==; path=/; Httponly; Secure
TS013a3153=012f116564bbb1e1f8743e6080191e3bc7005dd9ad09d127059e4a0940273986678c2c22099e9eff45dd13b38d727a55e53163e873c8d07758f79c414f30e6a2ca4c48ef40; Path=/; Secure; HTTPOnly
TS0125e8e4=012f116564adde2ba9196d0f7c5184c61839e1546d09d127059e4a0940273986678c2c220984f17464fbd6a87f28d8a943cd4d895936a437925ddf35c0c1f04129e1361007; path=/cibp-web; HTTPonly; Secure
TS062d44df027=08d456d3fbab2000d675adb6a1dc1046f2db72d03cd0ebe746ede1eec11d80e505ba975832ec0def083868d106113000b86c612fba45d2f1dcbc1f81134201231c53ca7039e82d11de9553ccf3a42116962df6a6ce0000bfd8001a918e713e20; Path=/
Content-Security-Policy: script-src 'self' 'unsafe-eval' 'unsafe-inline' 'unsafe-hashes' https://*.bancopopular.com https://ajax.googleapis.com https://*.google-analytics.com https://js-agent.newrelic.com https://bam.nr-data.net; frame-ancestors 'self' https://*.bancopopular.com
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=31536000
Content-Encoding: gzip

www.bancopopular.com/cibp-web/css/styleprint.css

66.22.18.146

200

227 B

URL HTTP/1.1
www.bancopopular.com/cibp-web/css/styleprint.css
IP
66.22.18.146:0
ASN
#25773 RADWARE-CLOUD-SERVICES

File type
ASCII text, with CRLF, LF line terminators
Size
227 B (227 bytes)
Hash
463c659597fc0baa0d81c7aa2a59f6b8
fc545e4d27d825662ee80de7d1dbd836399aaef8
2e76e103232e2464b090f87ed6de791057684c6cc84d9b2ab127702b58279e81

HTTP Headers

GET /cibp-web/css/styleprint.css HTTP/1.1
Host: www.bancopopular.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.nuevacantina.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 
Content-Type: text/css;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Expires: 1680878338720
Cache-Control: max-age=360000, must-revalidate, public
ETag: W/"398-1663007698000"
Last-Modified: Mon, 12 Sep 2022 18:34:58 GMT
Date: Fri, 07 Oct 2022 14:38:58 GMT
Set-Cookie: JSESSIONID=D7DAB68C1417A4644082D9695B70F589.cibp34a; Path=/cibp-web; Secure; HttpOnly
www_bancopopular_com=!TrpfMbzqkPRK5LKQ3+KE2Exr7NxXscwyahh5/KuUQ6EseyAb6fL8hRWO4YlRvftDslRJb0zhsCZYaAJxKFaBj4sJEWkuVW7J7HznTmeLDw==; path=/; Httponly; Secure
TS013a3153=012f1165640e84b7df2cffdde5afc74fa66110044fd71179bb29ae3703119360784ba8ac40f8d3c7f107035bbfc0e70c4eeaa7734c8bb129c3ebb83523946b79fa5305ff06; Path=/; Secure; HTTPOnly
TS0125e8e4=012f116564a52b668c970f1ff485e2ef85527a09d3d71179bb29ae3703119360784ba8ac400e8d093641074faef1b0b056855c72db8d3a44ad58e9adf5ad575e652db954f8; path=/cibp-web; HTTPonly; Secure
TS062d44df027=08d456d3fbab2000d2180a878ff6fcd4a2ca4c8ad22e9dc82105a4e571fa33d12c6058b5f0556afc0827f3e4b31130000cd7f33fb3953bdedcbc1f81134201239249f97962a9f400300e4157294e58ea997f391d35081a43cf3b791276d1718c; Path=/
Content-Security-Policy: script-src 'self' 'unsafe-eval' 'unsafe-inline' 'unsafe-hashes' https://*.bancopopular.com https://ajax.googleapis.com https://*.google-analytics.com https://js-agent.newrelic.com https://bam.nr-data.net; frame-ancestors 'self' https://*.bancopopular.com
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=31536000
Content-Encoding: gzip

www.bancopopular.com/cibp-web/img/ContactUsBox2.jpg

66.22.18.146

200

3.5 kB

URL HTTP/1.1
www.bancopopular.com/cibp-web/img/ContactUsBox2.jpg
IP
66.22.18.146:0
ASN
#25773 RADWARE-CLOUD-SERVICES

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 225x120, components 3\012- data
Size
3.5 kB (3467 bytes)
Hash
698dd7cc96e0b0cf7fe113a180f5d6b7
f4ce1cba051e1d340a5e89383c02cf1979994f63
d731577f06d055eaf18243c9f105b700ace4b03efdba91c7c1a3d9bad33bce8f

HTTP Headers

GET /cibp-web/img/ContactUsBox2.jpg HTTP/1.1
Host: www.bancopopular.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bancopopular.com/cibp-web/css/stylemain.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 
Content-Type: image/jpeg;charset=UTF-8
Content-Length: 3467
Connection: keep-alive
Expires: 1680878338713
Cache-Control: max-age=360000, must-revalidate, public
Accept-Ranges: bytes
ETag: W/"3467-1663007698000"
Last-Modified: Mon, 12 Sep 2022 18:34:58 GMT
Date: Fri, 07 Oct 2022 14:38:57 GMT
Set-Cookie: JSESSIONID=4ED402C1ECB58F1D1BBF98933BC07030.cibp35b; Path=/cibp-web; Secure; HttpOnly
www_bancopopular_com=!Wqd32PgcW4/oapyQ3+KE2Exr7NxXseaz88qq2dEZ0V7XXfTkPl1uTjj/ys81+N/P1ASWdJb9ECHNk5H+A4JnCe/4TzcUi1BGt6GEo3Q0bw==; path=/; Httponly; Secure
TS013a3153=012f116564d268135f60405ba05abc03ef45a8e90776b06e4ad552bbe7d151661fc068022f12d427430de93931bf6f2fc92c3e924511278c9d0a19c737bf42752af7ce3fcf; Path=/; Secure; HTTPOnly
TS0125e8e4=012f1165640f07f3ed20e2a545e56b77efa02c5e5176b06e4ad552bbe7d151661fc068022f252929026706e296fb898586dd47dd54e099013360de45ab38a7ac65f16d7ec9; path=/cibp-web; HTTPonly; Secure
TS062d44df027=08d456d3fbab2000aa0ea7b3e84fa940d13f6cb8946aac3b5c67bd5d55bd08edf5a6d0e34a25c84c0899534aba113000be148bb238f72f4bdcbc1f81134201230805fa4df85b22504d9ed6d4f5bfd42bad4b865a06c0702aa8e4aaa1fd97f342; Path=/
Content-Security-Policy: script-src 'self' 'unsafe-eval' 'unsafe-inline' 'unsafe-hashes' https://*.bancopopular.com https://ajax.googleapis.com https://*.google-analytics.com https://js-agent.newrelic.com https://bam.nr-data.net; frame-ancestors 'self' https://*.bancopopular.com
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=31536000

www.bancopopular.com/cibp-web/img/cm/imgLoginVI.jpg?97102226711

66.22.18.146

200

100 kB

URL HTTP/1.1
www.bancopopular.com/cibp-web/img/cm/imgLoginVI.jpg?97102226711
IP
66.22.18.146:0
ASN
#25773 RADWARE-CLOUD-SERVICES

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 680x340, components 3\012- data
Size
100 kB (100331 bytes)
Hash
d5c2b33a75a48609a43650a9403376fd
de47ea4ff9a8662ed1e4ca761521824e196ace87
f5e6d77acd23e8f3a82e85270a4a88ffd3d233010e24d43cd63471449c8f45cb

HTTP Headers

GET /cibp-web/img/cm/imgLoginVI.jpg?97102226711 HTTP/1.1
Host: www.bancopopular.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.nuevacantina.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 
Content-Type: image/jpeg;charset=UTF-8
Content-Length: 100331
Connection: keep-alive
Expires: 1680878338292
Cache-Control: max-age=360000, must-revalidate, public
Accept-Ranges: bytes
ETag: W/"100331-1665136800034"
Last-Modified: Fri, 07 Oct 2022 10:00:00 GMT
Date: Fri, 07 Oct 2022 14:38:57 GMT
Set-Cookie: JSESSIONID=84F9019CD7D53515722D4DB39E065278.cibp35a; Path=/cibp-web; Secure; HttpOnly
www_bancopopular_com=!mjyY/jiz33pgsN2Q3+KE2Exr7NxXsbfmWZdFxgRGnBdZRXcnQgtyISbDQm/rRc+uR8BG3HHolp1DM5Zkkq1c3P9lMz3HnNflhO2vJhM0bg==; path=/; Httponly; Secure
TS013a3153=012f116564ea9072cb10ee2b84fb83fe9d9febad962ed95d2d2c23a2fe2653f44e42fb75c202bd340ed896dd98ad4c49abb2ed2422cceccf7e4bb08a6147cba617d42cdcc6; Path=/; Secure; HTTPOnly
TS0125e8e4=012f1165641d4f4c134b4034e2497e857203bf57322ed95d2d2c23a2fe2653f44e42fb75c29b71b9e7a34f67fef6da87656d8fdc5cf45ad6de6185e7cafbacba2c7357aa37; path=/cibp-web; HTTPonly; Secure
TS062d44df027=08d456d3fbab2000203f510020369e39914e664cbdeed1bfa371f9e3a90db9e89d65b70d680da908084bad8e88113000cdfcd41909b1f4c8dcbc1f8113420123977b51b406b9921a7c41b21ab14fd785cf5f5423b826de030458e65d5b32f165; Path=/
Content-Security-Policy: script-src 'self' 'unsafe-eval' 'unsafe-inline' 'unsafe-hashes' https://*.bancopopular.com https://ajax.googleapis.com https://*.google-analytics.com https://js-agent.newrelic.com https://bam.nr-data.net; frame-ancestors 'self' https://*.bancopopular.com
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=31536000

www.bancopopular.com/cibp-web/img/cm/img2WantToDo.png

66.22.18.146

200

711 B

URL HTTP/1.1
www.bancopopular.com/cibp-web/img/cm/img2WantToDo.png
IP
66.22.18.146:0
ASN
#25773 RADWARE-CLOUD-SERVICES

File type
PNG image data, 30 x 30, 8-bit/color RGBA, non-interlaced\012- data
Size
711 B (711 bytes)
Hash
4b8a4aed377814ff6454a1ba241c654f
834792736ca20ba1cf5c1aac7c514dca00343af2
f744a5b7166843cccc4e398e83250fac198921f4bd5d14d7ca3684542679eb2d

HTTP Headers

GET /cibp-web/img/cm/img2WantToDo.png HTTP/1.1
Host: www.bancopopular.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.nuevacantina.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 
Content-Type: image/png;charset=UTF-8
Content-Length: 711
Connection: keep-alive
Expires: 1680878338976
Cache-Control: max-age=360000, must-revalidate, public
Accept-Ranges: bytes
ETag: W/"711-1665136800036"
Last-Modified: Fri, 07 Oct 2022 10:00:00 GMT
Date: Fri, 07 Oct 2022 14:38:58 GMT
Set-Cookie: JSESSIONID=24C795EE13B97354F00B1BA4CC41A913.cibp34a; Path=/cibp-web; Secure; HttpOnly
www_bancopopular_com=!3CjOHgmTNVsbRFuQ3+KE2Exr7NxXsVG13Zo5k9f4DlPOYRTZZLJeEmNoL57yRdQAgUWsqXA04nPYhC1hm1Vo26rhWJF/8Q3Wv1yXnzWd4A==; path=/; Httponly; Secure
TS013a3153=012f116564fe0e1ba799ac61f6fc2cf8a5dd06eae844c6802312311a90e7f2127831bfbecb8b6856f8a38ee80fe32728e6bea1487ced3599c7e6c5f6e50b158c77ad7fcf57; Path=/; Secure; HTTPOnly
TS0125e8e4=012f116564195b4b60091e9ea473d1314742d85a7f44c6802312311a90e7f2127831bfbecbb1f2e8e02bec933030af6d64c349ed5b76505372a4aef2f92313b5a3c78bc6a9; path=/cibp-web; HTTPonly; Secure
TS062d44df027=08d456d3fbab2000359ae49c00ad3bb1e77f197273533472827d48adc5f48538ebe3db7d6bbccbfd08e75a79da1130004f7e1e3ff7938d57dcbc1f811342012336ec9d2f3a77e4f08902f83bd0524f33904f27a2164385482193f2d79a4aa06d; Path=/
Content-Security-Policy: script-src 'self' 'unsafe-eval' 'unsafe-inline' 'unsafe-hashes' https://*.bancopopular.com https://ajax.googleapis.com https://*.google-analytics.com https://js-agent.newrelic.com https://bam.nr-data.net; frame-ancestors 'self' https://*.bancopopular.com
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=31536000

www.bancopopular.com/cibp-web/img/icnTwitter.gif

66.22.18.146

200

420 B

URL HTTP/1.1
www.bancopopular.com/cibp-web/img/icnTwitter.gif
IP
66.22.18.146:0
ASN
#25773 RADWARE-CLOUD-SERVICES

File type
GIF image data, version 89a, 17 x 17\012- data
Size
420 B (420 bytes)
Hash
99ea54514dea220d8d6ffd823a4afc52
dd54eb792f279291caae904c5632343e10063a37
3f87ff5615365689f1a122f902c789aa15ba570156eb254d8a0a880f20103090

HTTP Headers

GET /cibp-web/img/icnTwitter.gif HTTP/1.1
Host: www.bancopopular.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.nuevacantina.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 
Content-Type: image/gif;charset=UTF-8
Content-Length: 420
Connection: keep-alive
Expires: 1680878339019
Cache-Control: max-age=360000, must-revalidate, public
Accept-Ranges: bytes
ETag: W/"420-1663007698000"
Last-Modified: Mon, 12 Sep 2022 18:34:58 GMT
Date: Fri, 07 Oct 2022 14:38:59 GMT
Set-Cookie: JSESSIONID=14BF6F4CCBD55D568E3A74CC32DA63A7.cibp35a; Path=/cibp-web; Secure; HttpOnly
www_bancopopular_com=!yhJF0qtC0pHKXD6Q3+KE2Exr7NxXsQB8e9A/wuvGLK7WRx/ptDRIDJrClXVeAjOs7kYI1OnCH+Cfqcg9ySFgj9jDI0PJaLKqkWCUo5drng==; path=/; Httponly; Secure
TS013a3153=012f116564d7a9e1642a0316caccb259c67ba787a27b7b571868ce9355edbabfa3612a5778c6108db2572bc255499f24b3c09ad07f629ac8d9e32a1caef2477f4dc50e394b; Path=/; Secure; HTTPOnly
TS0125e8e4=012f116564026c4c256a82af7a607259207d4e9fd07b7b571868ce9355edbabfa3612a577808b03e068d586cb073a0ec495648e2c8775dd849ac2a0568792e38c5be88d6ac; path=/cibp-web; HTTPonly; Secure
TS062d44df027=08d456d3fbab200005b783d75f84a426a7cc1e48a3803c01e39defbbceb4288a29dce12e46a1c6ef08909838241130007c730e6be6b668899f058f74770fbb9be75ab9d8d04fc7959ca69949be92f0a245a0ea30b00a430f85699a02442e3813; Path=/
Content-Security-Policy: script-src 'self' 'unsafe-eval' 'unsafe-inline' 'unsafe-hashes' https://*.bancopopular.com https://ajax.googleapis.com https://*.google-analytics.com https://js-agent.newrelic.com https://bam.nr-data.net; frame-ancestors 'self' https://*.bancopopular.com
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=31536000

www.bancopopular.com/cibp-web/img/icnFeedback.gif

66.22.18.146

200

1.9 kB

URL HTTP/1.1
www.bancopopular.com/cibp-web/img/icnFeedback.gif
IP
66.22.18.146:0
ASN
#25773 RADWARE-CLOUD-SERVICES

File type
GIF image data, version 87a, 19 x 17\012- data
Size
1.9 kB (1893 bytes)
Hash
a34e87675791ac967f7e78e4888a33d4
9b1bd3616c87a27ada8967db658b625d4364b414
5e58b199e0363629d3826770e5655101efeff2ae7379fcb64c9d6ff773e72944

HTTP Headers

GET /cibp-web/img/icnFeedback.gif HTTP/1.1
Host: www.bancopopular.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.nuevacantina.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 
Content-Type: image/gif;charset=UTF-8
Content-Length: 1893
Connection: keep-alive
Expires: 1680878339066
Cache-Control: max-age=360000, must-revalidate, public
Accept-Ranges: bytes
ETag: W/"1893-1663007698000"
Last-Modified: Mon, 12 Sep 2022 18:34:58 GMT
Date: Fri, 07 Oct 2022 14:38:59 GMT
Set-Cookie: JSESSIONID=5B04FB1D5A4A02AD8500904CD22985E7.cibp36b; Path=/cibp-web; Secure; HttpOnly
www_bancopopular_com=!vwgwciZQMUEYKSaQ3+KE2Exr7NxXsbqm/RhyK2abhRr4oY58WwuWzLkfERtPkc01cGDitH8pgcvxTP1APJ37SbxZWO6XCl7YQ1xofOhV7A==; path=/; Httponly; Secure
TS013a3153=012f1165647a3507f9d88ca5a552b30f6529ef197bafb01d0f3c62829f2e371228029a77903515a02e513d2a89247184ea31b78b3201673259a5677cc1682fd704fc8ec9ec; Path=/; Secure; HTTPOnly
TS0125e8e4=012f116564c8918a3f161e9d1574a5f3f714e8e61aafb01d0f3c62829f2e371228029a779089c41382d5fa12efb3c59f6fd7035974d602f6a01f62eb107ced310e6ae9f65e; path=/cibp-web; HTTPonly; Secure
TS062d44df027=08d456d3fbab2000a5699433edd8bd9d17476829e46ca923cd91665c5742a61a3e8fe254d0b2e0ab089b4420eb113000c2fee5a4c93f58079f058f74770fbb9bea3a7bdb9d3cc603e3bb7fe932094b74fda19e19331e8814e0f6b63f22b6b904; Path=/
Content-Security-Policy: script-src 'self' 'unsafe-eval' 'unsafe-inline' 'unsafe-hashes' https://*.bancopopular.com https://ajax.googleapis.com https://*.google-analytics.com https://js-agent.newrelic.com https://bam.nr-data.net; frame-ancestors 'self' https://*.bancopopular.com
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=31536000

www.bancopopular.com/cibp-web/img/icnRSS.gif

66.22.18.146

200

463 B

URL HTTP/1.1
www.bancopopular.com/cibp-web/img/icnRSS.gif
IP
66.22.18.146:0
ASN
#25773 RADWARE-CLOUD-SERVICES

File type
GIF image data, version 89a, 18 x 17\012- data
Size
463 B (463 bytes)
Hash
e46dd1cd68546a00aca3059d4ce041a7
c373c0639795e560242fb268d273c4004ec6c0ec
42138187734c77aa634f48d67b55b0ec9ac207615f8824a6a0e41e5131e00bff

HTTP Headers

GET /cibp-web/img/icnRSS.gif HTTP/1.1
Host: www.bancopopular.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.nuevacantina.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 
Content-Type: image/gif;charset=UTF-8
Content-Length: 463
Connection: keep-alive
Expires: 1680878339096
Cache-Control: max-age=360000, must-revalidate, public
Accept-Ranges: bytes
ETag: W/"463-1663007698000"
Last-Modified: Mon, 12 Sep 2022 18:34:58 GMT
Date: Fri, 07 Oct 2022 14:38:58 GMT
Set-Cookie: JSESSIONID=C716AF4C73141E48AD6590C9F889FB50.cibp35b; Path=/cibp-web; Secure; HttpOnly
www_bancopopular_com=!pKyfQiCzELILWT2Q3+KE2Exr7NxXsUv7cCibPuVF5iJxVVv3j9IKWLEkwICqv0QbG/rZJ9Olhz2eMvpafUxF53EKoG3xj8jSDAOlXcdhjw==; path=/; Httponly; Secure
TS013a3153=012f11656442c9ef5a86d87a12cd068f7727d9513d5960cfe035aed5b107de794174a2f205b308ca91f638666c7d94beadafdfdc3b77fc5c0b8af7269c5eae4311c4b1f3ba; Path=/; Secure; HTTPOnly
TS0125e8e4=012f11656483e697138562a0ace9ad75dfc75a8ee95960cfe035aed5b107de794174a2f2059ed808c8b5f32d28b352c902258b9e1245860d674cd02897b37602ce6e5ce617; path=/cibp-web; HTTPonly; Secure
TS062d44df027=08d456d3fbab2000f2b89765b833c4982b1a0cab8dcf2f336edb0b94bb2865c988b522caf32d6a3908a5d8a8621130002bb7dc7c0093c20a9f058f74770fbb9b404f6871d2c6291962424528d146865db738b97cb0d45aea98636ab89a76defe; Path=/
Content-Security-Policy: script-src 'self' 'unsafe-eval' 'unsafe-inline' 'unsafe-hashes' https://*.bancopopular.com https://ajax.googleapis.com https://*.google-analytics.com https://js-agent.newrelic.com https://bam.nr-data.net; frame-ancestors 'self' https://*.bancopopular.com
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=31536000

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
00776157dc98913405595c4b126e9ee2
8ee3950fa60340b03e0c53c8e5e07d18321a69f0
daa313ad6f0cb705d8a4fdb55aa65ffd6c1695326409c2ccf378e3c7e36de35c

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 07 Oct 2022 14:38:59 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.google-analytics.com/analytics.js

142.250.74.174

200 OK

20 kB

URL HTTP/2
www.google-analytics.com/analytics.js
IP
142.250.74.174:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (1325)
Size
20 kB (20039 bytes)
Hash
47e6f374ca946fddd5b59871b325736c
baa9282efc8785e84d247c3bff518eaa45f101c4
16580b5c87c58e5702e411f1888fdef511094e4cd6d62bb47d16291ffb25985e

HTTP Headers

GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.nuevacantina.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20039
date: Fri, 07 Oct 2022 12:41:09 GMT
expires: Fri, 07 Oct 2022 14:41:09 GMT
cache-control: public, max-age=7200
age: 7070
last-modified: Tue, 27 Sep 2022 22:01:05 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

www.google-analytics.com/collect?v=1&_v=j98&a=1334420228&t=pageview&_s=1&dl=https%3A%2F%2Fwww.nuevacantina.com%2Fwp-admin%2Fuser%2Fbm%2Fpag01.html&dr=http%3A%2F%2Fsbe.mut.ac.ke%2F&ul=en-us&de=UTF-8&dt=Mi%20Banco%20%7C%20Login&sd=24-bit&sr=1280x1024&vp=1280x939&je=0&_u=IGBAiAABBAAAAAAAI~&jid=684435138&gjid=1759950832&cid=888565054.1665153539&tid=UA-52271388-4&_gid=1923830083.1665153539&z=1828854883

142.250.74.174

200 OK

35 B

URL HTTP/2
www.google-analytics.com/collect?v=1&_v=j98&a=1334420228&t=pageview&_s=1&dl=https%3A%2F%2Fwww.nuevacantina.com%2Fwp-admin%2Fuser%2Fbm%2Fpag01.html&dr=http%3A%2F%2Fsbe.mut.ac.ke%2F&ul=en-us&de=UTF-8&dt=Mi%20Banco%20%7C%20Login&sd=24-bit&sr=1280x1024&vp=1280x939&je=0&_u=IGBAiAABBAAAAAAAI~&jid=684435138&gjid=1759950832&cid=888565054.1665153539&tid=UA-52271388-4&_gid=1923830083.1665153539&z=1828854883
IP
142.250.74.174:0
ASN
#15169 GOOGLE

File type
GIF image data, version 89a, 1 x 1\012- data
Size
35 B (35 bytes)
Hash
28d6814f309ea289f847c69cf91194c6
0f4e929dd5bb2564f7ab9c76338e04e292a42ace
8337212354871836e6763a41e615916c89bac5b3f1f0adf60ba43c7c806e1015

HTTP Headers

GET /collect?v=1&_v=j98&a=1334420228&t=pageview&_s=1&dl=https%3A%2F%2Fwww.nuevacantina.com%2Fwp-admin%2Fuser%2Fbm%2Fpag01.html&dr=http%3A%2F%2Fsbe.mut.ac.ke%2F&ul=en-us&de=UTF-8&dt=Mi%20Banco%20%7C%20Login&sd=24-bit&sr=1280x1024&vp=1280x939&je=0&_u=IGBAiAABBAAAAAAAI~&jid=684435138&gjid=1759950832&cid=888565054.1665153539&tid=UA-52271388-4&_gid=1923830083.1665153539&z=1828854883 HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.nuevacantina.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
access-control-allow-origin: *
pragma: no-cache
x-content-type-options: nosniff
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 35
date: Thu, 06 Oct 2022 23:30:57 GMT
expires: Mon, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
age: 54482
last-modified: Sun, 17 May 1998 03:00:00 GMT
content-type: image/gif
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

www.google-analytics.com/collect?v=1&_v=j98&a=1334420228&t=pageview&_s=1&dl=https%3A%2F%2Fwww.nuevacantina.com%2Fwp-admin%2Fuser%2Fbm%2Fpag01.html&dr=http%3A%2F%2Fsbe.mut.ac.ke%2F&ul=en-us&de=UTF-8&dt=Mi%20Banco%20%7C%20Login&sd=24-bit&sr=1280x1024&vp=1280x939&je=0&_u=IGDAiAABBAAAAEAAI~&jid=1644291125&gjid=877268380&cid=888565054.1665153539&tid=UA-52271388-1&_gid=1923830083.1665153539&z=890295950

142.250.74.174

200 OK

35 B

URL HTTP/2
www.google-analytics.com/collect?v=1&_v=j98&a=1334420228&t=pageview&_s=1&dl=https%3A%2F%2Fwww.nuevacantina.com%2Fwp-admin%2Fuser%2Fbm%2Fpag01.html&dr=http%3A%2F%2Fsbe.mut.ac.ke%2F&ul=en-us&de=UTF-8&dt=Mi%20Banco%20%7C%20Login&sd=24-bit&sr=1280x1024&vp=1280x939&je=0&_u=IGDAiAABBAAAAEAAI~&jid=1644291125&gjid=877268380&cid=888565054.1665153539&tid=UA-52271388-1&_gid=1923830083.1665153539&z=890295950
IP
142.250.74.174:0
ASN
#15169 GOOGLE

File type
GIF image data, version 89a, 1 x 1\012- data
Size
35 B (35 bytes)
Hash
28d6814f309ea289f847c69cf91194c6
0f4e929dd5bb2564f7ab9c76338e04e292a42ace
8337212354871836e6763a41e615916c89bac5b3f1f0adf60ba43c7c806e1015

HTTP Headers

GET /collect?v=1&_v=j98&a=1334420228&t=pageview&_s=1&dl=https%3A%2F%2Fwww.nuevacantina.com%2Fwp-admin%2Fuser%2Fbm%2Fpag01.html&dr=http%3A%2F%2Fsbe.mut.ac.ke%2F&ul=en-us&de=UTF-8&dt=Mi%20Banco%20%7C%20Login&sd=24-bit&sr=1280x1024&vp=1280x939&je=0&_u=IGDAiAABBAAAAEAAI~&jid=1644291125&gjid=877268380&cid=888565054.1665153539&tid=UA-52271388-1&_gid=1923830083.1665153539&z=890295950 HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.nuevacantina.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
access-control-allow-origin: *
pragma: no-cache
x-content-type-options: nosniff
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 35
date: Thu, 06 Oct 2022 23:30:57 GMT
expires: Mon, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
age: 54482
last-modified: Sun, 17 May 1998 03:00:00 GMT
content-type: image/gif
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
5eee2baed68ec922370bd283860860fd
7d1e7dfdb9577dcd11587bb162e17c56eaf8e4c4
7931afabb9286276c385564aa73ed67927d31e12ab35eb92da84048a7896f27d

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 07 Oct 2022 14:38:59 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
05cdf02bcbbeed0122679c1118a350ce
b5311d6866b69206bec8f67a19cfeeefed233ef1
4b7235ec2ca2295957e75e79fdc718fbacc13bfd5674d1aeb7cbe5bed9fe9ead

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 07 Oct 2022 14:38:59 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
05cdf02bcbbeed0122679c1118a350ce
b5311d6866b69206bec8f67a19cfeeefed233ef1
4b7235ec2ca2295957e75e79fdc718fbacc13bfd5674d1aeb7cbe5bed9fe9ead

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 07 Oct 2022 14:38:59 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

js-agent.newrelic.com/nr-1215.min.js

151.101.86.137

200 OK

14 kB

URL HTTP/2
js-agent.newrelic.com/nr-1215.min.js
IP
151.101.86.137:0
ASN
#54113 FASTLY

File type
ASCII text, with very long lines (32010)
Size
14 kB (13666 bytes)
Hash
a76aa8e77462ba6b2a5e20e40cd5ae7f
34e99447d8cf9955684d03fe7758917fae3cf9ad
4dadae41651f4613ed8ff9723875dabe592ea0426ce17934d04fa5cd08b32b84

HTTP Headers

GET /nr-1215.min.js HTTP/1.1
Host: js-agent.newrelic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.nuevacantina.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-amz-id-2: FDsMEePuN+0wmarxjmYDTeBIVH3oM3fS/y86WvvakEQYhOVWOGDsPBKU9j6D7nSF2ydxf3mARlE=
x-amz-request-id: MTV8YD4MK5JFDNCN
last-modified: Mon, 24 Jan 2022 22:13:53 GMT
etag: "615035bb6557b191e767e19087efabaf"
x-amz-version-id: mrZZlI3m.d3cabi4HqLBBkr4pQ2c77UF
content-type: application/javascript
server: AmazonS3
cache-control: public, max-age=7200, stale-if-error=604800
content-encoding: gzip
accept-ranges: bytes
date: Fri, 07 Oct 2022 14:38:59 GMT
via: 1.1 varnish
x-served-by: cache-bma1628-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1665153539.371799,VS0,VE1
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
content-length: 13666
X-Firefox-Spdy: h2

stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-52271388-4&cid=888565054.1665153539&jid=684435138&gjid=1759950832&_gid=1923830083.1665153539&_u=IGBAiAABBAAAAEAAI~&z=552624508

173.194.73.156

200 OK

4 B

URL HTTP/2
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-52271388-4&cid=888565054.1665153539&jid=684435138&gjid=1759950832&_gid=1923830083.1665153539&_u=IGBAiAABBAAAAEAAI~&z=552624508
IP
173.194.73.156:0
ASN
#15169 GOOGLE

File type
ASCII text, with no line terminators
Size
4 B (4 bytes)
Hash
48c0473b7821185d937e685216e2168b
3743e47f8a429a5e87b86cb582d78940733d9d2e
570c4d4674fd20602189c548c145ba1f8ac34bc2e4599a71471969028aa1e25a

HTTP Headers

POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-52271388-4&cid=888565054.1665153539&jid=684435138&gjid=1759950832&_gid=1923830083.1665153539&_u=IGBAiAABBAAAAEAAI~&z=552624508 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://www.nuevacantina.com
Connection: keep-alive
Referer: https://www.nuevacantina.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: https://www.nuevacantina.com
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Fri, 07 Oct 2022 14:38:59 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-52271388-1&cid=888565054.1665153539&jid=1644291125&gjid=877268380&_gid=1923830083.1665153539&_u=IGDAiAABBAAAAEAAI~&z=1319406095

173.194.73.156

200 OK

4 B

URL HTTP/2
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-52271388-1&cid=888565054.1665153539&jid=1644291125&gjid=877268380&_gid=1923830083.1665153539&_u=IGDAiAABBAAAAEAAI~&z=1319406095
IP
173.194.73.156:0
ASN
#15169 GOOGLE

File type
ASCII text, with no line terminators
Size
4 B (4 bytes)
Hash
48c0473b7821185d937e685216e2168b
3743e47f8a429a5e87b86cb582d78940733d9d2e
570c4d4674fd20602189c548c145ba1f8ac34bc2e4599a71471969028aa1e25a

HTTP Headers

POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-52271388-1&cid=888565054.1665153539&jid=1644291125&gjid=877268380&_gid=1923830083.1665153539&_u=IGDAiAABBAAAAEAAI~&z=1319406095 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://www.nuevacantina.com
Connection: keep-alive
Referer: https://www.nuevacantina.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: https://www.nuevacantina.com
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Fri, 07 Oct 2022 14:38:59 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
38c8ed81c69d2af0003394c9fb9274c5
a71c6fb6d685275f8a8c7d9d87860df08a450038
fdff30d374603ecd62c6d244a1175731787725dba48777122802055969be28f4

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 07 Oct 2022 14:38:59 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
05cdf02bcbbeed0122679c1118a350ce
b5311d6866b69206bec8f67a19cfeeefed233ef1
4b7235ec2ca2295957e75e79fdc718fbacc13bfd5674d1aeb7cbe5bed9fe9ead

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 07 Oct 2022 14:38:59 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
da5f54e2d234b159e435039798b4f58c
115cbe08795735df780e8d1a5fb31141187c074e
20fefe2ac7fcd44ae4d6714ff2148b54810a8e7b7f66103e4bbe9c0156b7b2fa

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 07 Oct 2022 14:38:59 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
38c8ed81c69d2af0003394c9fb9274c5
a71c6fb6d685275f8a8c7d9d87860df08a450038
fdff30d374603ecd62c6d244a1175731787725dba48777122802055969be28f4

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 07 Oct 2022 14:38:59 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
1cecd042e106c70af7e8f0d9863ca3d9
fa94604e9e99c752d18708abcec8584a5eee66ea
3525f542ce5a72795646c2bba144333920f67f3e9938748f9d3bd3aff9ac496e

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 07 Oct 2022 14:38:59 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-52271388-4&cid=888565054.1665153539&jid=684435138&_u=IGBAiAABBAAAAEAAI~&z=1085568340

142.250.74.164

200 OK

42 B

URL HTTP/2
www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-52271388-4&cid=888565054.1665153539&jid=684435138&_u=IGBAiAABBAAAAEAAI~&z=1085568340
IP
142.250.74.164:0
ASN
#15169 GOOGLE

File type
GIF image data, version 89a, 1 x 1\012- data
Size
42 B (42 bytes)
Hash
d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629

HTTP Headers

GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-52271388-4&cid=888565054.1665153539&jid=684435138&_u=IGBAiAABBAAAAEAAI~&z=1085568340 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.nuevacantina.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Fri, 07 Oct 2022 14:38:59 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-52271388-4&cid=888565054.1665153539&jid=684435138&_u=IGBAiAABBAAAAEAAI~&z=1085568340

142.250.74.3

200 OK

42 B

URL HTTP/2
www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-52271388-4&cid=888565054.1665153539&jid=684435138&_u=IGBAiAABBAAAAEAAI~&z=1085568340
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
GIF image data, version 89a, 1 x 1\012- data
Size
42 B (42 bytes)
Hash
d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629

HTTP Headers

GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-52271388-4&cid=888565054.1665153539&jid=684435138&_u=IGBAiAABBAAAAEAAI~&z=1085568340 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.nuevacantina.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Fri, 07 Oct 2022 14:38:59 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-52271388-1&cid=888565054.1665153539&jid=1644291125&_u=IGDAiAABBAAAAEAAI~&z=1340900202

142.250.74.164

200 OK

42 B

URL HTTP/2
www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-52271388-1&cid=888565054.1665153539&jid=1644291125&_u=IGDAiAABBAAAAEAAI~&z=1340900202
IP
142.250.74.164:0
ASN
#15169 GOOGLE

File type
GIF image data, version 89a, 1 x 1\012- data
Size
42 B (42 bytes)
Hash
d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629

HTTP Headers

GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-52271388-1&cid=888565054.1665153539&jid=1644291125&_u=IGDAiAABBAAAAEAAI~&z=1340900202 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.nuevacantina.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Fri, 07 Oct 2022 14:38:59 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-52271388-1&cid=888565054.1665153539&jid=1644291125&_u=IGDAiAABBAAAAEAAI~&z=1340900202

142.250.74.3

200 OK

42 B

URL HTTP/2
www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-52271388-1&cid=888565054.1665153539&jid=1644291125&_u=IGDAiAABBAAAAEAAI~&z=1340900202
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
GIF image data, version 89a, 1 x 1\012- data
Size
42 B (42 bytes)
Hash
d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629

HTTP Headers

GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-52271388-1&cid=888565054.1665153539&jid=1644291125&_u=IGDAiAABBAAAAEAAI~&z=1340900202 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.nuevacantina.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Fri, 07 Oct 2022 14:38:59 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
74b63831a0a449c3e37b584db0009072
929f9f036c4a6a078c51c3b3dc2a7f902c9ee9ac
686845b4cf9a67078f03cb221ce13175a72074f6aa3804ba4fa06623ab856bae

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 07 Oct 2022 14:38:59 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
1cecd042e106c70af7e8f0d9863ca3d9
fa94604e9e99c752d18708abcec8584a5eee66ea
3525f542ce5a72795646c2bba144333920f67f3e9938748f9d3bd3aff9ac496e

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 07 Oct 2022 14:38:59 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.bancopopular.com/cibp-web/img/iphone/touch-icon-iphone4.png

66.22.18.146

200

8.8 kB

URL HTTP/1.1
www.bancopopular.com/cibp-web/img/iphone/touch-icon-iphone4.png
IP
66.22.18.146:0
ASN
#25773 RADWARE-CLOUD-SERVICES

File type
PNG image data, 114 x 114, 8-bit/color RGB, non-interlaced\012- data
Size
8.8 kB (8821 bytes)
Hash
1ba3b2b0ae78ecba6ab54be94ae4acde
dc4c54d09834e35938cf9013b68c1f7b46784860
61d2b62c52a45a9981266ef8bf32b86ff0b89867175feb5b07562cd9ab660de9

HTTP Headers

GET /cibp-web/img/iphone/touch-icon-iphone4.png HTTP/1.1
Host: www.bancopopular.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.nuevacantina.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 
Content-Type: image/png;charset=UTF-8
Content-Length: 8821
Connection: keep-alive
Expires: 1680878339453
Cache-Control: max-age=360000, must-revalidate, public
Accept-Ranges: bytes
ETag: W/"8821-1663007698000"
Last-Modified: Mon, 12 Sep 2022 18:34:58 GMT
Date: Fri, 07 Oct 2022 14:38:59 GMT
Set-Cookie: JSESSIONID=EB2D648CF5FDB6C3DBF1C9ED9CAC3A7B.cibp34b; Path=/cibp-web; Secure; HttpOnly
www_bancopopular_com=!qab/4zKw9R/DqcmQ3+KE2Exr7NxXsWm4BOjt8//+F50+19CVV33AcmJJhkPhKKYJJ9xQds5B0NKzt5yVm4ee70R91FzxFBU4sux5LjXWKw==; path=/; Httponly; Secure
TS013a3153=012f1165645507f4f7cde388252adb122dff0dd688d871b87e73d7ed8fceeb8a2c7122a7996256bb472aadd777f069d5abe3c6c01b56b0f858dbbaf6ba82459625f4898553; Path=/; Secure; HTTPOnly
TS0125e8e4=012f1165647339862b4f6010aa5f3afe1d0e4dcd1cd871b87e73d7ed8fceeb8a2c7122a7992d6220c0e9fbd676ba4f1f9881a8750af4e07cdb323600366cec93d13d5d8fea; path=/cibp-web; HTTPonly; Secure
TS062d44df027=08d456d3fbab2000b31b2030ac37d4c1868e1215993dd073483eae3642324ed9c8bbc59a4ec85888088d13b467113000ec2766d6406ad1ce9f058f74770fbb9bf8ab33f8f78d138ce5e7fcd903c27445bd3814184d71d0db7882ae967b304d15; Path=/
Content-Security-Policy: script-src 'self' 'unsafe-eval' 'unsafe-inline' 'unsafe-hashes' https://*.bancopopular.com https://ajax.googleapis.com https://*.google-analytics.com https://js-agent.newrelic.com https://bam.nr-data.net; frame-ancestors 'self' https://*.bancopopular.com
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=31536000

bam-cell.nr-data.net/1/20cab3c82a?a=934218124&v=1215.1253ab8&to=NAMDYUJYXhEFU0FfDQ1JNEdZFlMLBkAYQQcBSQBWRFBfDBcfWVkFCgg%3D&rst=4717&ck=1&ref=https://www.nuevacantina.com/wp-admin/user/bm/pag01.html&ap=4&be=72&fe=4638&dc=2967&perf=%7B%22timing%22:%7B%22of%22:1665153534657,%22n%22:0,%22u%22:48,%22ue%22:49,%22f%22:0,%22dn%22:0,%22dne%22:0,%22c%22:0,%22s%22:0,%22ce%22:0,%22rq%22:0,%22rp%22:0,%22rpe%22:0,%22dl%22:48,%22di%22:2944,%22ds%22:2967,%22de%22:2972,%22dc%22:4638,%22l%22:4638,%22le%22:4639%7D,%22navigation%22:%7B%22ty%22:1%7D%7D&fcp=2939&jsonp=NREUM.setToken

162.247.241.2

200 OK

77 B

URL HTTP/1.1
bam-cell.nr-data.net/1/20cab3c82a?a=934218124&v=1215.1253ab8&to=NAMDYUJYXhEFU0FfDQ1JNEdZFlMLBkAYQQcBSQBWRFBfDBcfWVkFCgg%3D&rst=4717&ck=1&ref=https://www.nuevacantina.com/wp-admin/user/bm/pag01.html&ap=4&be=72&fe=4638&dc=2967&perf=%7B%22timing%22:%7B%22of%22:1665153534657,%22n%22:0,%22u%22:48,%22ue%22:49,%22f%22:0,%22dn%22:0,%22dne%22:0,%22c%22:0,%22s%22:0,%22ce%22:0,%22rq%22:0,%22rp%22:0,%22rpe%22:0,%22dl%22:48,%22di%22:2944,%22ds%22:2967,%22de%22:2972,%22dc%22:4638,%22l%22:4638,%22le%22:4639%7D,%22navigation%22:%7B%22ty%22:1%7D%7D&fcp=2939&jsonp=NREUM.setToken
IP
162.247.241.2:0
ASN
#23467 NEWRELIC-AS-1

File type
ASCII text, with no line terminators
Size
77 B (77 bytes)
Hash
f1442f5831dbbe0210da2d7a4180d6b8
2ade23c6c7a001c66f0c0a9a101ec152747b434e
c6acf9fb2ecc1b144c51bd0337bbf1c26db3df2f649ac2da5c56db20d93eb3ef

HTTP Headers

GET /1/20cab3c82a?a=934218124&v=1215.1253ab8&to=NAMDYUJYXhEFU0FfDQ1JNEdZFlMLBkAYQQcBSQBWRFBfDBcfWVkFCgg%3D&rst=4717&ck=1&ref=https://www.nuevacantina.com/wp-admin/user/bm/pag01.html&ap=4&be=72&fe=4638&dc=2967&perf=%7B%22timing%22:%7B%22of%22:1665153534657,%22n%22:0,%22u%22:48,%22ue%22:49,%22f%22:0,%22dn%22:0,%22dne%22:0,%22c%22:0,%22s%22:0,%22ce%22:0,%22rq%22:0,%22rp%22:0,%22rpe%22:0,%22dl%22:48,%22di%22:2944,%22ds%22:2967,%22de%22:2972,%22dc%22:4638,%22l%22:4638,%22le%22:4639%7D,%22navigation%22:%7B%22ty%22:1%7D%7D&fcp=2939&jsonp=NREUM.setToken HTTP/1.1
Host: bam-cell.nr-data.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.nuevacantina.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Date: Fri, 07 Oct 2022 14:38:59 GMT
Content-Type: text/javascript
Transfer-Encoding: chunked
Connection: keep-alive
CF-Ray: 75676235987ab4f9-OSL
Access-Control-Allow-Origin: *
Set-Cookie: JSESSIONID=2d6aa320130daabb; Path=/; Domain=.nr-data.net; Secure; SameSite=None
CF-Cache-Status: DYNAMIC
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, HEAD, OPTIONS
Cross-Origin-Resource-Policy: cross-origin
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=asqCbcZR7HpOnNKiZJBgcU4KSjLbkd%2BQ7l0ngB67R1yPMwH2CrxLRzWMUmL0pNI%2BIbUIxJQD63zR0ui1MIXCMnIvLSDUFfsU6RhfSDkgM5Kj9kj2hKWegEdmLRjpKHW4DiKD7WLh"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
Content-Encoding: gzip

www.nuevacantina.com/cibp-web/favicon.ico

67.227.191.81

404 Not Found

16 kB

URL HTTP/1.1
www.nuevacantina.com/cibp-web/favicon.ico
IP
67.227.191.81:0
ASN
#32244 LIQUIDWEB

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (15448), with CRLF, LF line terminators
Size
16 kB (16015 bytes)
Hash
c32aca8c7050f19ffa37da74ae390d53
b6798195e382b7104be61537cd95a8e9bd94c562
cc2aaa1ba4a49718d014c2a88e754e6c2a3518732221ba49e7eccd9e8c5b380d

HTTP Headers

GET /cibp-web/favicon.ico HTTP/1.1
Host: www.nuevacantina.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.nuevacantina.com/wp-admin/user/bm/pag01.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 404 Not Found
Date: Fri, 07 Oct 2022 14:38:59 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Link: <https://www.nuevacantina.com/wp-json/>; rel="https://api.w.org/"
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 16015
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

JavaScript (83)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations