Overview

URL alicebluecookedminimalsystem.hmtlsfsf.repl.co/
IP34.149.204.188
ASNGOOGLE
Location United States
Report completed2022-09-28 08:14:00 UTC
StatusLoading report..
urlquery Alerts No alerts detected


Settings

UserAgentMozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Referer


Intrusion Detection Systems

Suricata /w Emerging Threats Pro  No alerts detected


Blocklists

OpenPhish
Scan Date Severity Indicator Comment
2022-09-27 2 alicebluecookedminimalsystem.hmtlsfsf.repl.co/ Banco Galicia
2022-09-27 2 alicebluecookedminimalsystem.hmtlsfsf.repl.co/ Banco Galicia
2022-09-27 2 alicebluecookedminimalsystem.hmtlsfsf.repl.co/ Banco Galicia
2022-09-27 2 alicebluecookedminimalsystem.hmtlsfsf.repl.co/ Banco Galicia
2022-09-27 2 alicebluecookedminimalsystem.hmtlsfsf.repl.co/ Banco Galicia
2022-09-27 2 alicebluecookedminimalsystem.hmtlsfsf.repl.co/ Banco Galicia
2022-09-27 2 alicebluecookedminimalsystem.hmtlsfsf.repl.co/ Banco Galicia
2022-09-27 2 alicebluecookedminimalsystem.hmtlsfsf.repl.co/ Banco Galicia
2022-09-27 2 alicebluecookedminimalsystem.hmtlsfsf.repl.co/ Banco Galicia
2022-09-27 2 alicebluecookedminimalsystem.hmtlsfsf.repl.co/ Banco Galicia
2022-09-27 2 alicebluecookedminimalsystem.hmtlsfsf.repl.co/ Banco Galicia
2022-09-27 2 alicebluecookedminimalsystem.hmtlsfsf.repl.co/ Banco Galicia
2022-09-27 2 alicebluecookedminimalsystem.hmtlsfsf.repl.co/ Banco Galicia
2022-09-27 2 alicebluecookedminimalsystem.hmtlsfsf.repl.co/ Banco Galicia
2022-09-27 2 alicebluecookedminimalsystem.hmtlsfsf.repl.co/ Banco Galicia
2022-09-27 2 alicebluecookedminimalsystem.hmtlsfsf.repl.co/ Banco Galicia
2022-09-27 2 alicebluecookedminimalsystem.hmtlsfsf.repl.co/ Banco Galicia
2022-09-27 2 alicebluecookedminimalsystem.hmtlsfsf.repl.co/ Banco Galicia
2022-09-27 2 alicebluecookedminimalsystem.hmtlsfsf.repl.co/ Banco Galicia
2022-09-27 2 alicebluecookedminimalsystem.hmtlsfsf.repl.co/ Banco Galicia
2022-09-27 2 alicebluecookedminimalsystem.hmtlsfsf.repl.co/ Banco Galicia
2022-09-27 2 alicebluecookedminimalsystem.hmtlsfsf.repl.co/ Banco Galicia
2022-09-27 2 alicebluecookedminimalsystem.hmtlsfsf.repl.co/ Banco Galicia
2022-09-27 2 alicebluecookedminimalsystem.hmtlsfsf.repl.co/ Banco Galicia
2022-09-27 2 alicebluecookedminimalsystem.hmtlsfsf.repl.co/ Banco Galicia
2022-09-27 2 alicebluecookedminimalsystem.hmtlsfsf.repl.co/ Banco Galicia
2022-09-27 2 alicebluecookedminimalsystem.hmtlsfsf.repl.co/ Banco Galicia
2022-09-27 2 alicebluecookedminimalsystem.hmtlsfsf.repl.co/ Banco Galicia
PhishTank  No alerts detected
Fortinet's Web Filter
Scan Date Severity Indicator Comment
2022-09-28 2 alicebluecookedminimalsystem.hmtlsfsf.repl.co/ Phishing
2022-09-28 2 alicebluecookedminimalsystem.hmtlsfsf.repl.co/ Phishing
2022-09-28 2 alicebluecookedminimalsystem.hmtlsfsf.repl.co/js/jquery-ui-1.10.3.custom.min.js Phishing
2022-09-28 2 alicebluecookedminimalsystem.hmtlsfsf.repl.co/js/jquery-1.7.2.min.js Phishing
2022-09-28 2 alicebluecookedminimalsystem.hmtlsfsf.repl.co/js/sessvars.js Phishing
2022-09-28 2 alicebluecookedminimalsystem.hmtlsfsf.repl.co/js/SideBar.js Phishing
2022-09-28 2 alicebluecookedminimalsystem.hmtlsfsf.repl.co/js/Barrett.js Phishing
2022-09-28 2 alicebluecookedminimalsystem.hmtlsfsf.repl.co/js/RsaWPadding.js Phishing
2022-09-28 2 alicebluecookedminimalsystem.hmtlsfsf.repl.co/js/BigInt.js Phishing
2022-09-28 2 alicebluecookedminimalsystem.hmtlsfsf.repl.co/js/hashtable.js Phishing
2022-09-28 2 alicebluecookedminimalsystem.hmtlsfsf.repl.co/js/rsa.js Phishing
2022-09-28 2 alicebluecookedminimalsystem.hmtlsfsf.repl.co/js/Keyboard/polyfill.js Phishing
2022-09-28 2 alicebluecookedminimalsystem.hmtlsfsf.repl.co/js/GOPrototypes.js Phishing
2022-09-28 2 alicebluecookedminimalsystem.hmtlsfsf.repl.co/js/Core.js Phishing
2022-09-28 2 alicebluecookedminimalsystem.hmtlsfsf.repl.co/js/borders.js Phishing
2022-09-28 2 alicebluecookedminimalsystem.hmtlsfsf.repl.co/js/Keyboard/keyboard.js Phishing
2022-09-28 2 alicebluecookedminimalsystem.hmtlsfsf.repl.co/js/jquery-ui-1.10.3.custom.min.js Phishing
2022-09-28 2 alicebluecookedminimalsystem.hmtlsfsf.repl.co/js/Keyboard/polyfill.js Phishing
2022-09-28 2 alicebluecookedminimalsystem.hmtlsfsf.repl.co/js/Keyboard/keyboard.js Phishing
mnemonic secure dns  No alerts detected
Quad9 DNS  No alerts detected


Files

No files detected



Passive DNS (21)

Passive DNS Source Fully Qualifying Domain Name Rank First Seen Last Seen IP Comment
mnemonic passive DNS ocsp.digicert.com (4) 86 2012-05-21 07:02:23 UTC 2022-09-28 04:19:13 UTC 93.184.220.29
mnemonic passive DNS push.services.mozilla.com (1) 2140 2015-09-03 10:29:36 UTC 2022-09-27 05:14:54 UTC 52.35.74.102
mnemonic passive DNS sifo.bancogalicia.com.ar (4) 778628 2017-06-08 06:32:18 UTC 2022-09-14 23:50:46 UTC 34.196.56.54
mnemonic passive DNS www.google-analytics.com (2) 40 2012-10-03 01:04:21 UTC 2022-09-28 07:47:41 UTC 142.250.74.174
mnemonic passive DNS ocsp.sca1b.amazontrust.com (1) 1015 2017-03-03 15:20:51 UTC 2019-03-27 04:05:54 UTC 143.204.42.88
mnemonic passive DNS region1.google-analytics.com (1) 0 2022-03-17 11:26:33 UTC 2022-09-27 05:12:42 UTC 216.239.32.36 Domain (google-analytics.com) ranked at: 8401
mnemonic passive DNS firefox.settings.services.mozilla.com (2) 867 2020-05-28 17:26:30 UTC 2022-09-28 05:04:09 UTC 143.204.55.27
mnemonic passive DNS r3.o.lencr.org (6) 344 2020-12-02 08:52:13 UTC 2022-09-28 04:06:48 UTC 23.36.76.226
mnemonic passive DNS content-signature-2.cdn.mozilla.net (1) 1152 2020-11-03 12:26:46 UTC 2022-09-27 05:14:54 UTC 143.204.55.35
mnemonic passive DNS assets.adobedtm.com (5) 512 2014-01-28 04:51:35 UTC 2022-09-28 04:36:34 UTC 23.38.200.237
mnemonic passive DNS galiciabanco.demdex.net (2) 580522 2020-06-10 13:34:41 UTC 2022-09-02 13:58:18 UTC 3.250.251.255
mnemonic passive DNS ocsp.pki.goog (4) 175 2017-06-14 07:23:31 UTC 2022-09-28 04:36:20 UTC 142.250.74.3
mnemonic passive DNS dpm.demdex.net (4) 204 2017-01-30 04:59:39 UTC 2022-09-28 04:40:34 UTC 54.77.35.16
mnemonic passive DNS img-getpocket.cdn.mozilla.net (5) 1631 2017-09-01 03:40:57 UTC 2022-09-27 13:22:33 UTC 34.120.237.76
mnemonic passive DNS gal.bgsensors.co (1) 0 2022-08-23 14:58:41 UTC 2022-08-23 14:58:41 UTC 172.67.134.168 Unknown ranking
mnemonic passive DNS use.fontawesome.com (1) 942 2017-01-30 04:43:25 UTC 2022-09-28 04:57:19 UTC 172.64.132.15
mnemonic passive DNS alicebluecookedminimalsystem.hmtlsfsf.repl.co (28) 0 2022-09-27 20:34:46 UTC 2022-09-28 01:43:07 UTC 34.149.204.188 Unknown ranking
mnemonic passive DNS contile.services.mozilla.com (1) 1114 2021-05-27 18:32:35 UTC 2022-09-27 04:52:33 UTC 34.117.237.239
mnemonic passive DNS www.googletagmanager.com (1) 75 2012-12-25 14:52:06 UTC 2022-09-28 04:42:17 UTC 142.250.74.72
mnemonic passive DNS stats.g.doubleclick.net (1) 96 2013-06-02 22:47:44 UTC 2022-09-28 04:39:06 UTC 64.233.165.156
mnemonic passive DNS cm.everesttech.net (1) 996 2017-01-30 04:59:57 UTC 2022-09-28 04:52:52 UTC 52.215.56.149


Recent reports on same IP/ASN/Domain/Screenshot

Last 5 reports on IP: 34.149.204.188

Date UQ / IDS / BL URL IP
2022-11-26 22:36:21 +0000
0 - 0 - 12 cajarsocial.sumaconosotros.repl.co/ 34.149.204.188
2022-11-26 20:55:05 +0000
0 - 0 - 5 test1234.3p4r4.repl.co/ 34.149.204.188
2022-11-26 18:32:45 +0000
0 - 0 - 7 pa-s-s.fiohkajbdmasd.repl.co/ 34.149.204.188
2022-11-26 17:50:45 +0000
0 - 0 - 5 c25fb524-9055-4d33-869b-94cd7d51717e.id.repl. (...) 34.149.204.188
2022-11-26 17:50:24 +0000
0 - 0 - 7 c25fb524-9055-4d33-869b-94cd7d51717e.id.repl.co/ 34.149.204.188

Last 5 reports on ASN: GOOGLE

Date UQ / IDS / BL URL IP
2022-11-26 22:52:38 +0000
0 - 0 - 2 xu6ff61ebl7.xyz/ 34.98.99.30
2022-11-26 22:51:35 +0000
0 - 0 - 2 nathanccrocker.com/ 23.236.62.147
2022-11-26 22:51:13 +0000
0 - 0 - 2 civilwaponline.blogspot.com/p/sitemap.html 142.250.74.161
2022-11-26 22:50:09 +0000
0 - 0 - 6 www.frecombo.com/2021/10/linkedin-extream-pre (...) 142.250.74.179
2022-11-26 22:45:14 +0000
0 - 0 - 1 kingthearema.blogspot.com/2013/06/keren-pemai (...) 142.250.74.161

Last 3 reports on domain: hmtlsfsf.repl.co

Date UQ / IDS / BL URL IP
2022-10-04 10:57:06 +0000
0 - 0 - 1 hmtlsfsf.repl.co/ 34.149.204.188
2022-09-28 08:14:00 +0000
0 - 0 - 47 alicebluecookedminimalsystem.hmtlsfsf.repl.co/ 34.149.204.188
2022-09-15 09:03:19 +0000
0 - 0 - 15 everyoilydrivers.hmtlsfsf.repl.co/ 34.149.204.188

No other reports with similar screenshot



JavaScript

Executed Scripts (33)


Executed Evals (13)

#1 JavaScript::Eval (size: 121, repeated: 1) - SHA256: 4514b35ddf615a27863e08d7dcc51c5655467a9341016076f740063c15b3687b

                                        (function() {
    return function(a) {
        try {
            google_tag_manager["GTM-P8BC6QW"].macro(16) && console.error(a, a.stack)
        } catch (b) {}
    }
})();
                                    

#2 JavaScript::Eval (size: 102, repeated: 1) - SHA256: 90c3ee356906c5f64bcedc7328ec0145c22f59fdbc00a86985e615e4a2c04490

                                        (function() {
    try {
        return (new Date).getTime() + "." + Math.random().toString(36).substring(5)
    } catch (a) {}
})();
                                    

#3 JavaScript::Eval (size: 132, repeated: 1) - SHA256: 392d4d21b216ccaac18fc518bbc57c530195680882ae68fa5baf98f928ff76d3

                                        (function() {
    try {
        if ("undefined" != sessionStorage.getItem("lastReferrer")) return sessionStorage.getItem("lastReferrer")
    } catch (a) {}
})();
                                    

#4 JavaScript::Eval (size: 38, repeated: 1) - SHA256: 21e1463f2dbdf773d27eb5b59524062b4aedb68414d396e65bb440516cdeae44

                                        (function() {
    return document.title
})();
                                    

#5 JavaScript::Eval (size: 202, repeated: 1) - SHA256: ec3008997c08e573ea970215ad5c41f8dee911f86fc4d546001aab9ccca2a0e6

                                        (function() {
    return function(b) {
        try {
            var a = google_tag_manager["GTM-P8BC6QW"].macro(22);
            void 0 != a && b.set("dimension" + a, b.get("clientId"));
            a = google_tag_manager["GTM-P8BC6QW"].macro(23);
            a(b)
        } catch (c) {}
    }
})();
                                    

#6 JavaScript::Eval (size: 46, repeated: 1) - SHA256: 440fa8b7ebd592133f264e34e97aaef2de6c839f9a3b623d58119c80c7a8bd31

                                        (function() {
    return document.location.href
})();
                                    

#7 JavaScript::Eval (size: 92, repeated: 1) - SHA256: 2a967b9ccbab6ad1d3eed94b9157cb3dd9cbb57286e20a481d5a5c62a11fd8ca

                                        (function() {
    return window.location.pathname + window.location.search + window.location.hash
})();
                                    

#8 JavaScript::Eval (size: 530, repeated: 1) - SHA256: 3b0dc303790cfc8c8fdbda5e2a226fd8e7d8da2a3c766a3b340bb59f8c83c369

                                        (function() {
    try {
        var currentHostname = google_tag_manager["GTM-P8BC6QW"].macro(4);
        var trackingHostnames = google_tag_manager["GTM-P8BC6QW"].macro(5);
        var testEnvironment = "Test";
        var isDebugMode = google_tag_manager["GTM-P8BC6QW"].macro(6);
        var isLocalHost = currentHostname.indexOf("localhost") > -1;
        var isTestEnvironment = google_tag_manager["GTM-P8BC6QW"].macro(7) == testEnvironment;
        var isNotTrackingHost = !(new RegExp(trackingHostnames, "i")).test(currentHostname);
        if (isDebugMode || isLocalHost) return "test";
        return "live"
    } catch (e) {
        return "live"
    }
})();
                                    

#9 JavaScript::Eval (size: 534, repeated: 1) - SHA256: a3527640421e93fee7b2c18cd44f4d30808c042d3bb04b5274e9cbdfa78e2bbd

                                        (function() {
    try {
        var currentHostname = google_tag_manager["GTM-P8BC6QW"].macro(24);
        var trackingHostnames = google_tag_manager["GTM-P8BC6QW"].macro(25);
        var testEnvironment = "Test";
        var isDebugMode = google_tag_manager["GTM-P8BC6QW"].macro(26);
        var isLocalHost = currentHostname.indexOf("localhost") > -1;
        var isTestEnvironment = google_tag_manager["GTM-P8BC6QW"].macro(27) == testEnvironment;
        var isNotTrackingHost = !(new RegExp(trackingHostnames, "i")).test(currentHostname);
        if (isDebugMode || isLocalHost) return "test";
        return "live"
    } catch (e) {
        return "live"
    }
})();
                                    

#10 JavaScript::Eval (size: 1133, repeated: 1) - SHA256: 425b5958dd29abf65efe6ef7edd244384f8b9011f395bb0442434980e4d1b027

                                        (function() {
    return function(g) {
        try {
            var h = [{
                    name: "[EMAIL]",
                    regex: /^[\w-\.]+@([\w-]+\.)+[\w-]{2,4}$/g
                }, {
                    name: "\x3d[EMAIL]",
                    regex: /=(([^<>=()\[\]\.,;:\s@"]+(\.[^<>()\[\]\.,;:\s@"]+)*)|(".+"))@((\[[0-9]{1,3}\.[0-9]{1,3}\.[0-9]{1,3}\.[0-9]{1,3}\])|(([a-zA-Z\-0-9]+\.)+[a-zA-Z]{2,}))/g
                }, {
                    name: "CBU\x3d[CBU]",
                    regex: /CBU=[^&]*/i
                }, {
                    name: "AliasCBU\x3d[AliasCBU]",
                    regex: /AliasCBU=[^&]*/i
                }, {
                    name: "Account\x3d[Account]",
                    regex: /Account=[^&]*/i
                }, {
                    name: "idRegistroNomina\x3d[idRegistroNomina]",
                    regex: /idRegistroNomina=[^&]*/i
                }, {
                    name: "id\x3d[id]",
                    regex: /id=[^&]*/i
                }, {
                    name: "NumeroBoleta\x3d[NumeroBoleta]",
                    regex: /NumeroBoleta=[^&]*/i
                }, {
                    name: "NroCuenta\x3d[NroCuenta]",
                    regex: /NroCuenta=[^&]*/i
                }],
                k = "_" + g.get("trackingId") + "_sendHitTask",
                l = window[k] = window[k] || g.get("sendHitTask"),
                a, b, c, d;
            g.set("sendHitTask", function(e) {
                try {
                    b = e.get("hitPayload").split("\x26");
                    for (a = 0; a < b.length; a++) try {
                        c = b[a].split("\x3d");
                        d = decodeURIComponent(decodeURIComponent(c[1]));
                        for (var f = 0, m = h.length; f < m; f++) d = d.replace(h[f].regex, h[f].name);
                        c[1] = encodeURIComponent(d);
                        b[a] = c.join("\x3d")
                    } catch (n) {}
                    e.set("hitPayload", b.join("\x26"), !0);
                    l(e)
                } catch (n) {}
            })
        } catch (e) {}
    }
})();
                                    

#11 JavaScript::Eval (size: 200, repeated: 1) - SHA256: 115454db58c7a1eab57c0cd30fbb1165cf9a62908575c703aa8e4d3dd10aff77

                                        (function() {
    return function(b) {
        try {
            var a = google_tag_manager["GTM-P8BC6QW"].macro(2);
            void 0 != a && b.set("dimension" + a, b.get("clientId"));
            a = google_tag_manager["GTM-P8BC6QW"].macro(3);
            a(b)
        } catch (c) {}
    }
})();
                                    

#12 JavaScript::Eval (size: 121, repeated: 1) - SHA256: 43ba4ff9950c9a0dcb98fdc9e8c43b4ac2695422660867078165eaa1be011d49

                                        (function() {
    return function(a) {
        try {
            google_tag_manager["GTM-P8BC6QW"].macro(18) && console.error(a, a.stack)
        } catch (b) {}
    }
})();
                                    

#13 JavaScript::Eval (size: 121, repeated: 1) - SHA256: ad97a4bbfec36352352d527bf4f1caece25675438834a97bae3ef6a877303e68

                                        (function() {
    return function(a) {
        try {
            google_tag_manager["GTM-P8BC6QW"].macro(20) && console.error(a, a.stack)
        } catch (b) {}
    }
})();
                                    

Executed Writes (0)



HTTP Transactions (76)


Request Response
                                        
                                            GET /v1/ HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.27
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Type, Alert, Backoff, Retry-After, Content-Length
Cache-Control: max-age=3600
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Wed, 28 Sep 2022 07:15:39 GMT
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 dac7cf040932e0c072eeed10afdd7b3e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 30KoVueE7EmZZZxqLIIvK1oUBEq8TSl5IXQako3oa-D8mKeCGqD81Q==
Age: 3490


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size:   939
Md5:    2d12f67fe57a87e7366b662d153a5582
Sha1:   d7b02d81cc74f24a251d9363e0f4b0a149264ec1
Sha256: 73c273c0b5a2de3cb970b8e8c187999d3b55e760dc7766dab4bb76428d19b551
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "2A40F957A6B1734AA3F87CFF51B673F0536732DB15B09033DD604879692DF349"
Last-Modified: Tue, 27 Sep 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4493
Expires: Wed, 28 Sep 2022 09:28:42 GMT
Date: Wed, 28 Sep 2022 08:13:49 GMT
Connection: keep-alive

                                        
                                            GET /chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain HTTP/1.1 
Host: content-signature-2.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.35
HTTP/2 200 OK
content-type: binary/octet-stream
                                        
content-length: 5348
last-modified: Sat, 10 Sep 2022 18:47:45 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Tue, 27 Sep 2022 09:24:14 GMT
etag: "6113f8408c59aebe188d6af273b90743"
x-cache: Hit from cloudfront
via: 1.1 f66e3db0f0449307dba3fbf72bbf3bac.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: qSJp5rjgBEnlmpdZY0VAQCslXnSUn0ZMaNkdJmDu6BqzXBouKSdspA==
age: 82176
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PEM certificate\012- , ASCII text
Size:   5348
Md5:    6113f8408c59aebe188d6af273b90743
Sha1:   7398873bf00f99944eaa77ad3ebc0d43c23dba6b
Sha256: b6e0cc9ad68306208a160f3835fb8da76acc5a82d8fde1da5a98e1de1c11a770
                                        
                                            GET / HTTP/1.1 
Host: alicebluecookedminimalsystem.hmtlsfsf.repl.co
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

                                         
                                         34.149.204.188
HTTP/1.1 308 Permanent Redirect
Content-Type: text/html; charset=utf-8
                                        
Location: https://alicebluecookedminimalsystem.hmtlsfsf.repl.co/
Replit-Cluster: global
Date: Wed, 28 Sep 2022 08:13:49 GMT
Content-Length: 90
Via: 1.1 google


--- Additional Info ---
Magic:  HTML document, ASCII text
Size:   90
Md5:    064fdb760ee33ac5bf0547565dce9867
Sha1:   07ab00baf2dd97d201d651f5abd1450f55a4ee35
Sha256: a156ada9f562ea5a795a46cf89dfd2a8767fccec51e1ecea8b19904d25181f8b

Alerts:
  Blocklists:
    - openphish: Banco Galicia
    - fortinet: Phishing
                                        
                                            GET /v1/tiles HTTP/1.1 
Host: contile.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.117.237.239
HTTP/2 200 OK
content-type: application/json
                                        
server: nginx
date: Wed, 28 Sep 2022 08:13:49 GMT
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   12
Md5:    23e88fb7b99543fb33315b29b1fad9d6
Sha1:   a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
Sha256: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
                                        
                                            GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.27
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Date: Wed, 28 Sep 2022 07:29:33 GMT
Cache-Control: max-age=3600, max-age=3600
Expires: Wed, 28 Sep 2022 08:18:59 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 aa34a836095df9de9d246a53dd63f1d6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: UIRSaNE-iB5JLe2Qw86Uzacwrt5UuPyTQb7kKiUIus5Co1hYMaRYwQ==
Age: 2657


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size:   329
Md5:    0333b0655111aa68de771adfcc4db243
Sha1:   63f295a144ac87a7c8e23417626724eeca68a7eb
Sha256: 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "F51A2B43272B65BC126A0CA13ED7AE81C44E1B5CD9D612BA7BCD4B5F10B5DC5A"
Last-Modified: Tue, 27 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15519
Expires: Wed, 28 Sep 2022 12:32:29 GMT
Date: Wed, 28 Sep 2022 08:13:50 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 5746
Cache-Control: 'max-age=158059'
Date: Wed, 28 Sep 2022 08:13:50 GMT
Last-Modified: Wed, 28 Sep 2022 06:38:04 GMT
Server: ECS (ska/F711)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET / HTTP/1.1 
Host: alicebluecookedminimalsystem.hmtlsfsf.repl.co
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

                                         
                                         34.149.204.188
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
                                        
date: Wed, 28 Sep 2022 08:13:50 GMT
expect-ct: max-age=2592000, report-uri="https://sentry.repl.it/api/10/security/?sentry_key=615192fd532445bfbbbe966cd7131791"
replit-cluster: global
strict-transport-security: max-age=4472938; includeSubDomains
content-length: 26680
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1787), with CRLF, LF line terminators
Size:   26680
Md5:    f80a9261b41459d454b2a56001f8cd52
Sha1:   3a789971877afe3b06f98ec69bf1435f850f8038
Sha256: 55aca485ff747a4d22b0bb26e141ab3cf5a76133fe739a3516bac6968389e353

Alerts:
  Blocklists:
    - openphish: Banco Galicia
    - fortinet: Phishing
                                        
                                            GET /87fc8b53a8b1/29b0bfbb2495/launch-de55e9a10fa1.min.js HTTP/1.1 
Host: assets.adobedtm.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alicebluecookedminimalsystem.hmtlsfsf.repl.co/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         23.38.200.237
HTTP/2 200 OK
content-type: application/x-javascript
                                        
accept-ranges: bytes
etag: "5cdca6be9497ac8ecaaebae14769a4d0:1660839980.479989"
last-modified: Thu, 18 Aug 2022 16:26:20 GMT
server: AkamaiNetStorage
vary: Accept-Encoding
content-encoding: gzip
content-length: 88311
cache-control: max-age=3600
expires: Wed, 28 Sep 2022 09:13:50 GMT
date: Wed, 28 Sep 2022 08:13:50 GMT
access-control-allow-origin: https://alicebluecookedminimalsystem.hmtlsfsf.repl.co
timing-allow-origin: *
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (32757)
Size:   88311
Md5:    34d8834a710ca78e723645b0aafcf8a0
Sha1:   f3131e90a7e69db7ae39f1512fc54d1c0a696043
Sha256: 94bcfc933d6905dfee3b693507c28c0bf28f47ad54e9eba49c56df8ecc7cc5d7
                                        
                                            GET / HTTP/1.1 
Host: push.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: dREqMzzwKL0QIXk+ukrUEA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

                                         
                                         52.35.74.102
HTTP/1.1 101 Switching Protocols
                                        
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: vFFZx/ZPrtUeQRRBlEQbWgRVEbQ=

                                        
                                            GET /css/keyboard.css HTTP/1.1 
Host: alicebluecookedminimalsystem.hmtlsfsf.repl.co
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alicebluecookedminimalsystem.hmtlsfsf.repl.co/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         34.149.204.188
HTTP/2 200 OK
content-type: text/css; charset=UTF-8
                                        
date: Wed, 28 Sep 2022 08:13:50 GMT
expect-ct: max-age=2592000, report-uri="https://sentry.repl.it/api/10/security/?sentry_key=615192fd532445bfbbbe966cd7131791"
replit-cluster: global
strict-transport-security: max-age=4472938; includeSubDomains
content-length: 472
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text
Size:   472
Md5:    4aa19106cde3313774605c75dbe98b85
Sha1:   47cae9343ed026c7874406757259c74bc3327193
Sha256: ccd87373ffa473e7d0a22a9a776e0985e7988a25b07b870c6e4dab2b11d2f743

Alerts:
  Blocklists:
    - openphish: Banco Galicia
                                        
                                            GET /css/simple-keyboard.css HTTP/1.1 
Host: alicebluecookedminimalsystem.hmtlsfsf.repl.co
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alicebluecookedminimalsystem.hmtlsfsf.repl.co/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         34.149.204.188
HTTP/2 200 OK
content-type: text/css; charset=UTF-8
                                        
date: Wed, 28 Sep 2022 08:13:50 GMT
expect-ct: max-age=2592000, report-uri="https://sentry.repl.it/api/10/security/?sentry_key=615192fd532445bfbbbe966cd7131791"
replit-cluster: global
strict-transport-security: max-age=4472938; includeSubDomains
content-length: 2790
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text
Size:   2790
Md5:    7ac8b1ce1d4560506b4ddaace5546637
Sha1:   ec9cf772f643b3583aa07012f94715a4c55c22ed
Sha256: c46e9d5b86e7a9c0405f4edb56d1f7f8a4a463dca80ff9b99b916da39064a233

Alerts:
  Blocklists:
    - openphish: Banco Galicia
                                        
                                            GET /css/SiderBar.css HTTP/1.1 
Host: alicebluecookedminimalsystem.hmtlsfsf.repl.co
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alicebluecookedminimalsystem.hmtlsfsf.repl.co/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         34.149.204.188
HTTP/2 200 OK
content-type: text/css; charset=UTF-8
                                        
date: Wed, 28 Sep 2022 08:13:50 GMT
expect-ct: max-age=2592000, report-uri="https://sentry.repl.it/api/10/security/?sentry_key=615192fd532445bfbbbe966cd7131791"
replit-cluster: global
strict-transport-security: max-age=4472938; includeSubDomains
content-length: 3384
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (359)
Size:   3384
Md5:    092636c896e04544edc554f90d1337ee
Sha1:   86fa2eb175347a23e9ad977b341c8efae853fc81
Sha256: 8575175059ce32bbdf6c096c2e161cc1db18266c5a317a6bceb0ff9c39706aed

Alerts:
  Blocklists:
    - openphish: Banco Galicia
                                        
                                            GET /js/jquery-ui-1.10.3.custom.min.js HTTP/1.1 
Host: alicebluecookedminimalsystem.hmtlsfsf.repl.co
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alicebluecookedminimalsystem.hmtlsfsf.repl.co/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         34.149.204.188
HTTP/2 404 Not Found
content-type: text/html; charset=UTF-8
                                        
date: Wed, 28 Sep 2022 08:13:50 GMT
expect-ct: max-age=2592000, report-uri="https://sentry.repl.it/api/10/security/?sentry_key=615192fd532445bfbbbe966cd7131791"
replit-cluster: global
strict-transport-security: max-age=4472938; includeSubDomains
content-length: 566
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size:   566
Md5:    613675fc5830db5907dec82ffe67b3f1
Sha1:   ce521571cb7e6220e25d55687c51b0cf17f17335
Sha256: fa4de168b8cec1c2a9db622faca84a550ef158191ae49dabd4a1c7468ca3be14

Alerts:
  Blocklists:
    - openphish: Banco Galicia
    - fortinet: Phishing
                                        
                                            GET /js/jquery-1.7.2.min.js HTTP/1.1 
Host: alicebluecookedminimalsystem.hmtlsfsf.repl.co
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alicebluecookedminimalsystem.hmtlsfsf.repl.co/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         34.149.204.188
HTTP/2 404 Not Found
content-type: text/html; charset=UTF-8
                                        
date: Wed, 28 Sep 2022 08:13:50 GMT
expect-ct: max-age=2592000, report-uri="https://sentry.repl.it/api/10/security/?sentry_key=615192fd532445bfbbbe966cd7131791"
replit-cluster: global
strict-transport-security: max-age=4472938; includeSubDomains
content-length: 555
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size:   555
Md5:    cdb171c45682010e43ae3092b64a12ad
Sha1:   d17491356b3ff99f43f2db1d3bfe91bf710a8201
Sha256: fb8891446752a4fe0660084bd0ba4588a1fc29132ce4705ce1e612bbb602a5c7

Alerts:
  Blocklists:
    - openphish: Banco Galicia
    - fortinet: Phishing
                                        
                                            GET /js/sessvars.js HTTP/1.1 
Host: alicebluecookedminimalsystem.hmtlsfsf.repl.co
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alicebluecookedminimalsystem.hmtlsfsf.repl.co/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         34.149.204.188
HTTP/2 200 OK
content-type: application/javascript
                                        
date: Wed, 28 Sep 2022 08:13:50 GMT
expect-ct: max-age=2592000, report-uri="https://sentry.repl.it/api/10/security/?sentry_key=615192fd532445bfbbbe966cd7131791"
replit-cluster: global
strict-transport-security: max-age=4472938; includeSubDomains
content-length: 6712
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  C source, ASCII text, with very long lines (365)
Size:   6712
Md5:    3afab9dda3d9648d2d1a7c37beadff0f
Sha1:   735b2e229b541e72fa6b4e95b09a4e5072c7e0b7
Sha256: e66eb8549129b2610bcec5dca2b68b529c571ea7578c67d1358e1596e87a3ba1

Alerts:
  Blocklists:
    - openphish: Banco Galicia
    - fortinet: Phishing
                                        
                                            GET /js/SideBar.js HTTP/1.1 
Host: alicebluecookedminimalsystem.hmtlsfsf.repl.co
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alicebluecookedminimalsystem.hmtlsfsf.repl.co/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         34.149.204.188
HTTP/2 200 OK
content-type: application/javascript
                                        
date: Wed, 28 Sep 2022 08:13:50 GMT
expect-ct: max-age=2592000, report-uri="https://sentry.repl.it/api/10/security/?sentry_key=615192fd532445bfbbbe966cd7131791"
replit-cluster: global
strict-transport-security: max-age=4472938; includeSubDomains
content-length: 998
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text
Size:   998
Md5:    e07d648a591683ffaca67f7d5a4235ef
Sha1:   ae3758dabc7b5413fac966ce266f9e7945cf4f33
Sha256: 48987cd6905721dd54e9f2fb140faf7145a12144bd1c5c9357573b7276d1198f

Alerts:
  Blocklists:
    - openphish: Banco Galicia
    - fortinet: Phishing
                                        
                                            GET /js/Barrett.js HTTP/1.1 
Host: alicebluecookedminimalsystem.hmtlsfsf.repl.co
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alicebluecookedminimalsystem.hmtlsfsf.repl.co/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         34.149.204.188
HTTP/2 200 OK
content-type: application/javascript
                                        
date: Wed, 28 Sep 2022 08:13:50 GMT
expect-ct: max-age=2592000, report-uri="https://sentry.repl.it/api/10/security/?sentry_key=615192fd532445bfbbbe966cd7131791"
replit-cluster: global
strict-transport-security: max-age=4472938; includeSubDomains
content-length: 1738
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text
Size:   1738
Md5:    a8509a0f21314e5ae285e22f1f5e5afc
Sha1:   34ed6d477e46bb7487e00a1cf7fd8dbaf9e39f6c
Sha256: ca4ae828f026ad5e587bb3937c612b2b1a93d1ef7341368a5a1d03695757074f

Alerts:
  Blocklists:
    - openphish: Banco Galicia
    - fortinet: Phishing
                                        
                                            GET /js/RsaWPadding.js HTTP/1.1 
Host: alicebluecookedminimalsystem.hmtlsfsf.repl.co
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alicebluecookedminimalsystem.hmtlsfsf.repl.co/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         34.149.204.188
HTTP/2 200 OK
content-type: application/javascript
                                        
date: Wed, 28 Sep 2022 08:13:50 GMT
expect-ct: max-age=2592000, report-uri="https://sentry.repl.it/api/10/security/?sentry_key=615192fd532445bfbbbe966cd7131791"
replit-cluster: global
strict-transport-security: max-age=4472938; includeSubDomains
content-length: 3876
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text
Size:   3876
Md5:    eb01074bd67a00f6ed86fc8e6a0f9d8d
Sha1:   1325ad5c63718b56c84fce39c6beb5a5a980185a
Sha256: 7d7a36194ab804556373ae9a24d748f6b8bf0ec603d56f9ef0f46e2e25bb6065

Alerts:
  Blocklists:
    - openphish: Banco Galicia
    - fortinet: Phishing
                                        
                                            GET /css/jquery-ui-1.10.3.custom.css HTTP/1.1 
Host: alicebluecookedminimalsystem.hmtlsfsf.repl.co
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alicebluecookedminimalsystem.hmtlsfsf.repl.co/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         34.149.204.188
HTTP/2 200 OK
content-type: text/css; charset=UTF-8
                                        
date: Wed, 28 Sep 2022 08:13:50 GMT
expect-ct: max-age=2592000, report-uri="https://sentry.repl.it/api/10/security/?sentry_key=615192fd532445bfbbbe966cd7131791"
replit-cluster: global
strict-transport-security: max-age=4472938; includeSubDomains
content-length: 32139
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (1339)
Size:   32139
Md5:    9440f848b756cad2795099ee25822e1c
Sha1:   06c957d53ca10a34129bc52c44a8a7dbfd9c361c
Sha256: 48687754f2a88133bc8d04181e9a37e90a39341ed9559733ccba19a31dbcf8b6

Alerts:
  Blocklists:
    - openphish: Banco Galicia
                                        
                                            GET /images/logo-galicia-new.png HTTP/1.1 
Host: alicebluecookedminimalsystem.hmtlsfsf.repl.co
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alicebluecookedminimalsystem.hmtlsfsf.repl.co/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         34.149.204.188
HTTP/2 200 OK
content-type: image/png
                                        
date: Wed, 28 Sep 2022 08:13:50 GMT
expect-ct: max-age=2592000, report-uri="https://sentry.repl.it/api/10/security/?sentry_key=615192fd532445bfbbbe966cd7131791"
replit-cluster: global
strict-transport-security: max-age=4472938; includeSubDomains
content-length: 3589
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 148 x 39, 8-bit/color RGBA, non-interlaced\012- data
Size:   3589
Md5:    3529d3d714f5550a9f669230656f925b
Sha1:   01d37bd9daa559ba7eeb3441c810a4faf96c417c
Sha256: c1ac115788f922e9bb68fc1e4710ed077bcae6e5014bc163c434b598e1e17ec9

Alerts:
  Blocklists:
    - openphish: Banco Galicia
                                        
                                            GET /js/BigInt.js HTTP/1.1 
Host: alicebluecookedminimalsystem.hmtlsfsf.repl.co
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alicebluecookedminimalsystem.hmtlsfsf.repl.co/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         34.149.204.188
HTTP/2 200 OK
content-type: application/javascript
                                        
date: Wed, 28 Sep 2022 08:13:50 GMT
expect-ct: max-age=2592000, report-uri="https://sentry.repl.it/api/10/security/?sentry_key=615192fd532445bfbbbe966cd7131791"
replit-cluster: global
strict-transport-security: max-age=4472938; includeSubDomains
content-length: 15102
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text
Size:   15102
Md5:    77fb083872b2eca7d5eaa6e00795b242
Sha1:   5d1d7c71f2e757f58a97ea05432215cee9c6498d
Sha256: 07d7769a2e1268069c4fc156f0470a45e638fcfba024df1828a2cad2f3680e33

Alerts:
  Blocklists:
    - openphish: Banco Galicia
    - fortinet: Phishing
                                        
                                            GET /js/hashtable.js HTTP/1.1 
Host: alicebluecookedminimalsystem.hmtlsfsf.repl.co
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alicebluecookedminimalsystem.hmtlsfsf.repl.co/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         34.149.204.188
HTTP/2 200 OK
content-type: application/javascript
                                        
date: Wed, 28 Sep 2022 08:13:50 GMT
expect-ct: max-age=2592000, report-uri="https://sentry.repl.it/api/10/security/?sentry_key=615192fd532445bfbbbe966cd7131791"
replit-cluster: global
strict-transport-security: max-age=4472938; includeSubDomains
content-length: 14081
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with CRLF line terminators
Size:   14081
Md5:    f47c9a2aad50eddc384597280522f86a
Sha1:   73500eb3a7b9c96d0b6f075bc7a742dfe014a2a1
Sha256: 138143108101149f64bcda5fe38cdd2f3f2139cc957b45949e71fac33ea94482

Alerts:
  Blocklists:
    - openphish: Banco Galicia
    - fortinet: Phishing
                                        
                                            GET /js/rsa.js HTTP/1.1 
Host: alicebluecookedminimalsystem.hmtlsfsf.repl.co
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alicebluecookedminimalsystem.hmtlsfsf.repl.co/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         34.149.204.188
HTTP/2 200 OK
content-type: application/javascript
                                        
date: Wed, 28 Sep 2022 08:13:50 GMT
expect-ct: max-age=2592000, report-uri="https://sentry.repl.it/api/10/security/?sentry_key=615192fd532445bfbbbe966cd7131791"
replit-cluster: global
strict-transport-security: max-age=4472938; includeSubDomains
content-length: 36427
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (1738)
Size:   36427
Md5:    3a519a2366a74f9911376111bec06e23
Sha1:   8166b3c85c0bd9a79d1dbf1b8d858fa840283b41
Sha256: e152f4ad95537e33f934c037bb9406ffde8a5582c524443eb4a9a5cff008c073

Alerts:
  Blocklists:
    - openphish: Banco Galicia
    - fortinet: Phishing
                                        
                                            GET /js/Keyboard/polyfill.js HTTP/1.1 
Host: alicebluecookedminimalsystem.hmtlsfsf.repl.co
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alicebluecookedminimalsystem.hmtlsfsf.repl.co/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         34.149.204.188
HTTP/2 404 Not Found
content-type: text/html; charset=UTF-8
                                        
date: Wed, 28 Sep 2022 08:13:50 GMT
expect-ct: max-age=2592000, report-uri="https://sentry.repl.it/api/10/security/?sentry_key=615192fd532445bfbbbe966cd7131791"
replit-cluster: global
strict-transport-security: max-age=4472938; includeSubDomains
content-length: 556
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size:   556
Md5:    feaed46f607de5ddccaf1f0f04ab8fac
Sha1:   52ef42e2b81d03a11cfe116c61fbc3d534650760
Sha256: d849595cbb51d296a7c1ef91ec0fdf2e4b4664cee8b0d949ce7b4d9f4dc6df40

Alerts:
  Blocklists:
    - openphish: Banco Galicia
    - fortinet: Phishing
                                        
                                            GET /js/GOPrototypes.js HTTP/1.1 
Host: alicebluecookedminimalsystem.hmtlsfsf.repl.co
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alicebluecookedminimalsystem.hmtlsfsf.repl.co/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         34.149.204.188
HTTP/2 200 OK
content-type: application/javascript
                                        
date: Wed, 28 Sep 2022 08:13:50 GMT
expect-ct: max-age=2592000, report-uri="https://sentry.repl.it/api/10/security/?sentry_key=615192fd532445bfbbbe966cd7131791"
replit-cluster: global
strict-transport-security: max-age=4472938; includeSubDomains
content-length: 50668
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 text
Size:   50668
Md5:    624d7a2b130d110850b99c2dcdf4e112
Sha1:   584faae746b6783261fa8468db54cb0d1ada6d0d
Sha256: 5e87f4ac4888bc19eeab5a0865d8a35c16bd4bb27e0bbf305cad8c8d17d1db77

Alerts:
  Blocklists:
    - openphish: Banco Galicia
    - fortinet: Phishing
                                        
                                            GET /js/Core.js HTTP/1.1 
Host: alicebluecookedminimalsystem.hmtlsfsf.repl.co
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alicebluecookedminimalsystem.hmtlsfsf.repl.co/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         34.149.204.188
HTTP/2 200 OK
content-type: application/javascript
                                        
date: Wed, 28 Sep 2022 08:13:50 GMT
expect-ct: max-age=2592000, report-uri="https://sentry.repl.it/api/10/security/?sentry_key=615192fd532445bfbbbe966cd7131791"
replit-cluster: global
strict-transport-security: max-age=4472938; includeSubDomains
content-length: 85941
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (312)
Size:   85941
Md5:    59d647edf7449dbe546954aa0acb4298
Sha1:   0f8ee1b19b49ddddee39621d1b3fc20afbd828b3
Sha256: ae1f8ac91b5bf36321bf99a9865ab09b3fcb812f5578d698d67d31b7fa07c62b

Alerts:
  Blocklists:
    - openphish: Banco Galicia
    - fortinet: Phishing
                                        
                                            GET /images/login-banner-06.jpg HTTP/1.1 
Host: alicebluecookedminimalsystem.hmtlsfsf.repl.co
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alicebluecookedminimalsystem.hmtlsfsf.repl.co/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         34.149.204.188
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Wed, 28 Sep 2022 08:13:50 GMT
expect-ct: max-age=2592000, report-uri="https://sentry.repl.it/api/10/security/?sentry_key=615192fd532445bfbbbe966cd7131791"
replit-cluster: global
strict-transport-security: max-age=4472938; includeSubDomains
content-length: 41496
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 566x380, components 3\012- data
Size:   41496
Md5:    8d791f047f14ec3e25243638e03edde2
Sha1:   15df35f8c442ad6014ec80778d48f2e925bd17ee
Sha256: a8c0f36ef76f159a9597ea44e00019d19577db7a5d447f057c7e9a6dc2c539d5

Alerts:
  Blocklists:
    - openphish: Banco Galicia
                                        
                                            GET /images/logo-ob.png HTTP/1.1 
Host: alicebluecookedminimalsystem.hmtlsfsf.repl.co
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alicebluecookedminimalsystem.hmtlsfsf.repl.co/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         34.149.204.188
HTTP/2 200 OK
content-type: image/png
                                        
date: Wed, 28 Sep 2022 08:13:50 GMT
expect-ct: max-age=2592000, report-uri="https://sentry.repl.it/api/10/security/?sentry_key=615192fd532445bfbbbe966cd7131791"
replit-cluster: global
strict-transport-security: max-age=4472938; includeSubDomains
content-length: 41250
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 155 x 37, 8-bit/color RGBA, non-interlaced\012- data
Size:   41250
Md5:    c851c4526ba661d60b4b762e3f08a0cd
Sha1:   64cee333c93089d045001c0f6130448b9e9312b5
Sha256: 8ba5487a3441be54f0d77878bdde04863c7918e7551eae45e7d4d039d701d313

Alerts:
  Blocklists:
    - openphish: Banco Galicia
                                        
                                            GET /js/borders.js HTTP/1.1 
Host: alicebluecookedminimalsystem.hmtlsfsf.repl.co
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alicebluecookedminimalsystem.hmtlsfsf.repl.co/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         34.149.204.188
HTTP/2 200 OK
content-type: application/javascript
                                        
date: Wed, 28 Sep 2022 08:13:50 GMT
expect-ct: max-age=2592000, report-uri="https://sentry.repl.it/api/10/security/?sentry_key=615192fd532445bfbbbe966cd7131791"
replit-cluster: global
strict-transport-security: max-age=4472938; includeSubDomains
content-length: 1304
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (1304), with no line terminators
Size:   1304
Md5:    8f9711bc7c8c8cca533c0075adc63b7e
Sha1:   6f01383ae67b44e473e156f22d7b80afa263a0fe
Sha256: 165992ed1571fdd547d4375190ec1fa7dcdcd852a84a0f1002ab6d977331417f

Alerts:
  Blocklists:
    - openphish: Banco Galicia
    - fortinet: Phishing
                                        
                                            GET /js/Keyboard/keyboard.js HTTP/1.1 
Host: alicebluecookedminimalsystem.hmtlsfsf.repl.co
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alicebluecookedminimalsystem.hmtlsfsf.repl.co/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         34.149.204.188
HTTP/2 404 Not Found
content-type: text/html; charset=UTF-8
                                        
date: Wed, 28 Sep 2022 08:13:50 GMT
expect-ct: max-age=2592000, report-uri="https://sentry.repl.it/api/10/security/?sentry_key=615192fd532445bfbbbe966cd7131791"
replit-cluster: global
strict-transport-security: max-age=4472938; includeSubDomains
content-length: 556
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size:   556
Md5:    45c481fd244d125df4b3c660c63bbe54
Sha1:   d393fd62982d1aecd46532a1880cf10c8eec488f
Sha256: 7c41491b28ec06e6ba357a18f634643949091e94d9f4b06b2ad5b7ef23080157

Alerts:
  Blocklists:
    - openphish: Banco Galicia
    - fortinet: Phishing
                                        
                                            GET /images/logo-norton-secured.png HTTP/1.1 
Host: alicebluecookedminimalsystem.hmtlsfsf.repl.co
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alicebluecookedminimalsystem.hmtlsfsf.repl.co/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         34.149.204.188
HTTP/2 200 OK
content-type: image/png
                                        
date: Wed, 28 Sep 2022 08:13:50 GMT
expect-ct: max-age=2592000, report-uri="https://sentry.repl.it/api/10/security/?sentry_key=615192fd532445bfbbbe966cd7131791"
replit-cluster: global
strict-transport-security: max-age=4472938; includeSubDomains
content-length: 54637
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 83 x 41, 8-bit/color RGBA, non-interlaced\012- data
Size:   54637
Md5:    c775ec4a1ad4351e8aa7eddc2749d027
Sha1:   d5110d97f622fc23a512f4622d631ee67319d21d
Sha256: 35cb5eab45d68fb30d35b279656e72d0d55c16a133b194aaa0282b9ee053a8a6

Alerts:
  Blocklists:
    - openphish: Banco Galicia
                                        
                                            GET /css/styles.css HTTP/1.1 
Host: alicebluecookedminimalsystem.hmtlsfsf.repl.co
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alicebluecookedminimalsystem.hmtlsfsf.repl.co/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         34.149.204.188
HTTP/2 200 OK
content-type: text/css; charset=UTF-8
                                        
date: Wed, 28 Sep 2022 08:13:50 GMT
expect-ct: max-age=2592000, report-uri="https://sentry.repl.it/api/10/security/?sentry_key=615192fd532445bfbbbe966cd7131791"
replit-cluster: global
strict-transport-security: max-age=4472938; includeSubDomains
content-length: 254361
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (418)
Size:   254361
Md5:    60474bdccdeb15449dd33d685b428bd1
Sha1:   b28283fdccec822e95259c158141bf8fd02365ff
Sha256: cba5c3154f2b8cd1f55faaf3e7edbc07d64d946127e2581da603570473724b46

Alerts:
  Blocklists:
    - openphish: Banco Galicia
                                        
                                            GET /js/jquery-ui-1.10.3.custom.min.js HTTP/1.1 
Host: alicebluecookedminimalsystem.hmtlsfsf.repl.co
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alicebluecookedminimalsystem.hmtlsfsf.repl.co/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         34.149.204.188
HTTP/2 404 Not Found
content-type: text/html; charset=UTF-8
                                        
date: Wed, 28 Sep 2022 08:13:50 GMT
expect-ct: max-age=2592000, report-uri="https://sentry.repl.it/api/10/security/?sentry_key=615192fd532445bfbbbe966cd7131791"
replit-cluster: global
strict-transport-security: max-age=4472938; includeSubDomains
content-length: 566
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size:   566
Md5:    613675fc5830db5907dec82ffe67b3f1
Sha1:   ce521571cb7e6220e25d55687c51b0cf17f17335
Sha256: fa4de168b8cec1c2a9db622faca84a550ef158191ae49dabd4a1c7468ca3be14

Alerts:
  Blocklists:
    - openphish: Banco Galicia
    - fortinet: Phishing
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 28 Sep 2022 08:13:51 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /gtm.js?id=GTM-P8BC6QW HTTP/1.1 
Host: www.googletagmanager.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alicebluecookedminimalsystem.hmtlsfsf.repl.co/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.72
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
                                        
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Wed, 28 Sep 2022 08:13:51 GMT
expires: Wed, 28 Sep 2022 08:13:51 GMT
cache-control: private, max-age=900
last-modified: Wed, 28 Sep 2022 06:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 75290
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (45362)
Size:   75290
Md5:    de0c04a2af4f7fca24bd7924b3178de8
Sha1:   8596e20e0672626dae187d39530ad2f2a9c55a42
Sha256: 23e0c0f51eb93f2d78136d436d7de53acd0343fa36bfedac509b320f858427f2
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 28 Sep 2022 08:13:51 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 4601
Cache-Control: 'max-age=158059'
Date: Wed, 28 Sep 2022 08:13:51 GMT
Last-Modified: Wed, 28 Sep 2022 06:57:10 GMT
Server: ECS (ska/F711)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET /id?d_visid_ver=5.4.0&d_fieldgroup=MC&d_rtbd=json&d_ver=2&d_orgid=DF3360B65E15FFB70A495C4A%40AdobeOrg&d_nsid=0&ts=1664352828967 HTTP/1.1 
Host: dpm.demdex.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Origin: https://alicebluecookedminimalsystem.hmtlsfsf.repl.co
Connection: keep-alive
Referer: https://alicebluecookedminimalsystem.hmtlsfsf.repl.co/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         54.77.35.16
HTTP/1.1 200 OK
Content-Type: application/json;charset=utf-8
                                        
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://alicebluecookedminimalsystem.hmtlsfsf.repl.co
Cache-Control: no-cache,no-store,must-revalidate,max-age=0,proxy-revalidate,no-transform,private
content-encoding: gzip
DCS: dcs-prod-irl1-1-v043-062c31a18.edge-irl1.demdex.com 5 ms
Expires: Thu, 01 Jan 1970 00:00:00 UTC
P3P: policyref="/w3c/p3p.xml", CP="NOI NID CURa ADMa DEVa PSAa PSDa OUR SAMa BUS PUR COM NAV INT"
Pragma: no-cache
set-cookie: demdex=14521436849653217411995862997699875479; Max-Age=15552000; Expires=Mon, 27 Mar 2023 08:13:51 GMT; Path=/; Domain=.demdex.net; Secure; SameSite=None
Strict-Transport-Security: max-age=31536000; includeSubDomains
Vary: Origin
X-TID: GYEc76EQQ14=
Content-Length: 568
Connection: keep-alive


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (1006), with no line terminators
Size:   568
Md5:    4099458182061ea2097c77b5e2ad91ad
Sha1:   2bde831d52e19d97161e39ff790de76608b80336
Sha256: 0e0879103c5e1146eb0ba9ae57e73fa82f62c8d6744735f40733b47a52fb3b75
                                        
                                            GET /js/Keyboard/polyfill.js HTTP/1.1 
Host: alicebluecookedminimalsystem.hmtlsfsf.repl.co
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alicebluecookedminimalsystem.hmtlsfsf.repl.co/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         34.149.204.188
HTTP/2 404 Not Found
content-type: text/html; charset=UTF-8
                                        
date: Wed, 28 Sep 2022 08:13:51 GMT
expect-ct: max-age=2592000, report-uri="https://sentry.repl.it/api/10/security/?sentry_key=615192fd532445bfbbbe966cd7131791"
replit-cluster: global
strict-transport-security: max-age=4472937; includeSubDomains
content-length: 556
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size:   556
Md5:    feaed46f607de5ddccaf1f0f04ab8fac
Sha1:   52ef42e2b81d03a11cfe116c61fbc3d534650760
Sha256: d849595cbb51d296a7c1ef91ec0fdf2e4b4664cee8b0d949ce7b4d9f4dc6df40

Alerts:
  Blocklists:
    - openphish: Banco Galicia
    - fortinet: Phishing
                                        
                                            GET /id?d_visid_ver=5.4.0&d_fieldgroup=AAM&d_rtbd=json&d_ver=2&d_orgid=DF3360B65E15FFB70A495C4A%40AdobeOrg&d_nsid=0&d_mid=21119751121230579961358547779837729238&d_blob=6G1ynYcLPuiQxYZrsz_pkqfLG9yMXBpb2zX5dvJdYQJzPXImdj0y&d_cid_ic=bg_sync_uid%01NaN%012&d_cid_ic=AdobeCampaignID%01NaN%012&ts=1664352829127 HTTP/1.1 
Host: dpm.demdex.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Origin: https://alicebluecookedminimalsystem.hmtlsfsf.repl.co
Connection: keep-alive
Referer: https://alicebluecookedminimalsystem.hmtlsfsf.repl.co/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         54.77.35.16
HTTP/1.1 200 OK
Content-Type: application/json;charset=utf-8
                                        
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://alicebluecookedminimalsystem.hmtlsfsf.repl.co
Cache-Control: no-cache,no-store,must-revalidate,max-age=0,proxy-revalidate,no-transform,private
content-encoding: gzip
DCS: dcs-prod-irl1-2-v043-08c097a9b.edge-irl1.demdex.com 2 ms
Expires: Thu, 01 Jan 1970 00:00:00 UTC
P3P: policyref="/w3c/p3p.xml", CP="NOI NID CURa ADMa DEVa PSAa PSDa OUR SAMa BUS PUR COM NAV INT"
Pragma: no-cache
set-cookie: demdex=84606582247699448901193261755079119797; Max-Age=15552000; Expires=Mon, 27 Mar 2023 08:13:51 GMT; Path=/; Domain=.demdex.net; Secure; SameSite=None
Strict-Transport-Security: max-age=31536000; includeSubDomains
Vary: Origin
X-TID: FsMRcTHMT1c=
Content-Length: 568
Connection: keep-alive


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (1006), with no line terminators
Size:   568
Md5:    2f55aeddf9809ca7356669dfb7630d1e
Sha1:   d19ada20bcd2559205eee8f3774224548868af6f
Sha256: 2248f22286797672f9d977eb85bb2cd178ee556dfcdb766f79282d0044a205ef
                                        
                                            GET /dest5.html?d_nsid=0 HTTP/1.1 
Host: galiciabanco.demdex.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alicebluecookedminimalsystem.hmtlsfsf.repl.co/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

                                         
                                         3.250.251.255
HTTP/1.1 200 OK
Content-Type: text/html;charset=UTF-8
                                        
Accept-Ranges: bytes
Cache-Control: no-cache,no-store,must-revalidate,max-age=0,proxy-revalidate,no-transform,private
content-encoding: gzip
date: Wed, 28 Sep 2022 08:13:51 GMT
DCS: dcs-prod-irl1-1-v043-046b498da.edge-irl1.demdex.com 0 ms
Expires: Thu, 01 Jan 1970 00:00:00 UTC
last-modified: Mon, 26 Sep 2022 13:36:37 GMT
P3P: policyref="/w3c/p3p.xml", CP="NOI NID CURa ADMa DEVa PSAa PSDa OUR SAMa BUS PUR COM NAV INT"
Pragma: no-cache
Strict-Transport-Security: max-age=31536000; includeSubDomains
vary: accept-encoding
X-TID: DSla0pR7Tqw=
Content-Length: 2791
Connection: keep-alive


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (550)
Size:   2791
Md5:    ccbdcb1e84c241950763ec4cd516cdfc
Sha1:   55dfa8d4b09c5c3a80fcd101152f6ebed3d27a2c
Sha256: de9ccb9b168945a24f20edc28c39be4135b328129ba8ee378401a7aedc925d12
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "A37AFAFC8EE712AE7AE935D3ED564F3CF46DD09005DEBBC5E2650F8B434D1E00"
Last-Modified: Tue, 27 Sep 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12648
Expires: Wed, 28 Sep 2022 11:44:39 GMT
Date: Wed, 28 Sep 2022 08:13:51 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "A37AFAFC8EE712AE7AE935D3ED564F3CF46DD09005DEBBC5E2650F8B434D1E00"
Last-Modified: Tue, 27 Sep 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12648
Expires: Wed, 28 Sep 2022 11:44:39 GMT
Date: Wed, 28 Sep 2022 08:13:51 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "A37AFAFC8EE712AE7AE935D3ED564F3CF46DD09005DEBBC5E2650F8B434D1E00"
Last-Modified: Tue, 27 Sep 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12648
Expires: Wed, 28 Sep 2022 11:44:39 GMT
Date: Wed, 28 Sep 2022 08:13:51 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "A37AFAFC8EE712AE7AE935D3ED564F3CF46DD09005DEBBC5E2650F8B434D1E00"
Last-Modified: Tue, 27 Sep 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12648
Expires: Wed, 28 Sep 2022 11:44:39 GMT
Date: Wed, 28 Sep 2022 08:13:51 GMT
Connection: keep-alive

                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F838bed0c-c665-42d6-8c20-1decd709953c.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 9314
x-amzn-requestid: ed84d0e5-30c5-4841-ba9d-3626234b2056
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZI3VbFqBoAMFy-Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63336c22-5d0ccbc31fb085be45ef947b;Sampled=0
x-amzn-remapped-date: Tue, 27 Sep 2022 21:33:22 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: yBDUlVwqRnXuJKsaz3vbFNhtNvihQMuk5wX5y4UmEKm1D21wSVdJHQ==
via: 1.1 9b311162717b41c968f6f00426d88aaa.cloudfront.net (CloudFront), 1.1 b8c4a4ca04bb1976e020396d211bc8dc.cloudfront.net (CloudFront), 1.1 google
date: Tue, 27 Sep 2022 21:48:58 GMT
etag: "60c873f097c85376797fed366804119f7e9c445e"
age: 37493
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   9314
Md5:    3c58fdf09a7d552be0c8666522a29de7
Sha1:   60c873f097c85376797fed366804119f7e9c445e
Sha256: 24569f084d3fd428526503bde8b3da64152911934cd5e0e9140c06d954e4bcd9
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8ffa6dde-b51e-43f8-bfcb-3f442d674928.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 8500
x-amzn-requestid: 626c21ec-f29b-4b69-b275-c22c864c2409
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZI3VmENnIAMFeTQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63336c23-75eccc381fbd6e5d4ff59c06;Sampled=0
x-amzn-remapped-date: Tue, 27 Sep 2022 21:33:23 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: Eyy8qoYVCJbt6b6hTGJ-rOrYex9RuX1InyZbpHkeu9yQqPUEvowKcw==
via: 1.1 da5952aa802df39905ceb16592e9698a.cloudfront.net (CloudFront), 1.1 09331f0822fc98eebaf04130a83dbd44.cloudfront.net (CloudFront), 1.1 google
date: Tue, 27 Sep 2022 21:48:58 GMT
etag: "9c4692ea64832895fbd107d91f879728b6a440c7"
age: 37493
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   8500
Md5:    6139c878a7d2bd32c61fc8287996eb5b
Sha1:   9c4692ea64832895fbd107d91f879728b6a440c7
Sha256: 3839df92f0a10c1433d5b576df50c9f7953912ae4f425012262f08ee8a59ce2e
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff14e2acf-9d43-48bc-ab80-1dc73fa7dfc8.webp HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 5377
x-amzn-requestid: 28ddd5cd-c299-4b36-98be-b6dbeaadc1ac
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZI4KRGo7oAMFUiQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63336d74-27ebe6e974ee5b7d06227fca;Sampled=0
x-amzn-remapped-date: Tue, 27 Sep 2022 21:39:00 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: TEv_Z7_1FsPBC2ugxBvTbts1ubHFeZjRhrSFAGt2liOt-Z5GQhmu-g==
via: 1.1 5a1753718d8b33365e5f693dd338c510.cloudfront.net (CloudFront), 1.1 32d624dbeb2a8b7f24dbe49007e37c90.cloudfront.net (CloudFront), 1.1 google
date: Tue, 27 Sep 2022 22:28:53 GMT
age: 35098
etag: "2afdfb716192540a61327137706462c53588bf23"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   5377
Md5:    c301dff6ddda16fd64692c19173cfa8c
Sha1:   2afdfb716192540a61327137706462c53588bf23
Sha256: fd0f33a778fec87dbfa323ffa6b24ca5f94aa16d102e62683ad54b759208058b
                                        
                                            GET /api/bgsensor/ccfac30f-772d-4a29-a82d-798db50348bb/f1192f0f-5749-4cea-8568-14c0bae9b5f0/ HTTP/1.1 
Host: gal.bgsensors.co
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alicebluecookedminimalsystem.hmtlsfsf.repl.co/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         172.67.134.168
HTTP/2 200 OK
content-type: text/html; charset=utf-8
                                        
date: Wed, 28 Sep 2022 08:13:50 GMT
x-frame-options: SAMEORIGIN
vary: Origin,Accept-Encoding
access-control-allow-origin: *
last-modified: Tue, 27 Sep 2022 20:34:30 GMT
cache-control: max-age=86400
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=1WpbkCvru%2F9S9419o8WVVBWat1sP8q%2FVrpnLdzO05S%2FpeBOlwdX8Wgw05A03FUrNsN6lE5qCF9SykUmju%2FLwOacSStM3idJvxEqjH25XBuxYZpUJ5aFr9okczdPQLMRq6QOo"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 751b05a6e812b505-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (959), with no line terminators
Size:   11897
Md5:    1c5b8c03b0fbe4b495e3e5bd80d03ed3
Sha1:   88ff79760d022a2c9449c46acb9c4b8b78d78f2a
Sha256: cbdcabcb478e4decb8ad8ac1641680c1bc47608914d0f8e97a1df27d872378bb
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F52d10f53-5e95-4bc8-aa34-09983b7221cd.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 6721
x-amzn-requestid: ea4416a4-ffbe-4006-bb09-aa0a70763ab2
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZI3xTGNOoAMFXeQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63336cd4-6634cd372bd677227f755769;Sampled=0
x-amzn-remapped-date: Tue, 27 Sep 2022 21:36:20 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: EbkbN72NJbDqfnJjnaUcitG0W6yk8vR__5zLvdidXuWqh7VQK2O8OA==
via: 1.1 7f5e0d3b9ea85d0d75063a66c0ebc840.cloudfront.net (CloudFront), 1.1 567b44ed19c8caed2570b7bcd8c70034.cloudfront.net (CloudFront), 1.1 google
date: Tue, 27 Sep 2022 22:18:40 GMT
age: 35711
etag: "e951f6b11e473b68d2fdd95b822cef120d37b1eb"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   6721
Md5:    c4a66beda24621e812a929933c52025d
Sha1:   e951f6b11e473b68d2fdd95b822cef120d37b1eb
Sha256: 28efb1495fdb363cea9ccc6c38f84b2731dbd44dd4dbbe42996fa6fab74e1ce6
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fae0951d3-44e9-49d3-9232-f4151ef59735.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 6157
x-amzn-requestid: a51846e4-4e25-455f-885b-acf2567f2e1c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZDlObH7XIAMFw6A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63314f28-4e6a68a74edb1ad850e17dac;Sampled=0
x-amzn-remapped-date: Mon, 26 Sep 2022 07:05:12 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: 2g98EnyiFhkZTsqis2_ASfjM-YTJmcUJ-Mwcl1dWlruzrWDuojPA0w==
via: 1.1 49b94a8674d6e86a841d6523f7dbaf14.cloudfront.net (CloudFront), 1.1 02d90bf99fd6253b329a53c82f19e224.cloudfront.net (CloudFront), 1.1 google
date: Wed, 28 Sep 2022 07:08:22 GMT
age: 3929
etag: "a6b1c3e0d506ac1c66405e061e9910fafb176a7d"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   6157
Md5:    b255b252ceed088d6f505e7e9acfcb55
Sha1:   a6b1c3e0d506ac1c66405e061e9910fafb176a7d
Sha256: b796a98834c7ecf220d13bfba61e81a9b90d472d2aa725ff66888cbddad731e7
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 4385
Cache-Control: 'max-age=158059'
Date: Wed, 28 Sep 2022 08:13:51 GMT
Last-Modified: Wed, 28 Sep 2022 07:00:46 GMT
Server: ECS (ska/F711)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET /js/Keyboard/keyboard.js HTTP/1.1 
Host: alicebluecookedminimalsystem.hmtlsfsf.repl.co
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alicebluecookedminimalsystem.hmtlsfsf.repl.co/
Cookie: AMCV_DF3360B65E15FFB70A495C4A%40AdobeOrg=1176715910%7CMCIDTS%7C19264%7CMCMID%7C21119751121230579961358547779837729238%7CMCAAMLH-1664957629%7C6%7CMCAAMB-1664352828%7C6G1ynYcLPuiQxYZrsz_pkqfLG9yMXBpb2zX5dvJdYQJzPXImdj0y%7CMCCIDH%7C-1372941528%7CMCOPTOUT-1664360029s%7CNONE%7CvVersion%7C5.4.0; AMCVS_DF3360B65E15FFB70A495C4A%40AdobeOrg=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         34.149.204.188
HTTP/2 404 Not Found
content-type: text/html; charset=UTF-8
                                        
date: Wed, 28 Sep 2022 08:13:51 GMT
expect-ct: max-age=2592000, report-uri="https://sentry.repl.it/api/10/security/?sentry_key=615192fd532445bfbbbe966cd7131791"
replit-cluster: global
strict-transport-security: max-age=4472937; includeSubDomains
content-length: 556
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size:   556
Md5:    45c481fd244d125df4b3c660c63bbe54
Sha1:   d393fd62982d1aecd46532a1880cf10c8eec488f
Sha256: 7c41491b28ec06e6ba357a18f634643949091e94d9f4b06b2ad5b7ef23080157

Alerts:
  Blocklists:
    - openphish: Banco Galicia
    - fortinet: Phishing
                                        
                                            GET /87fc8b53a8b1/29b0bfbb2495/de062f2272b6/RCd84c87781a1e4f56b2d7503e75dca0e1-source.min.js HTTP/1.1 
Host: assets.adobedtm.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alicebluecookedminimalsystem.hmtlsfsf.repl.co/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         23.38.200.237
HTTP/2 200 OK
content-type: application/x-javascript
                                        
accept-ranges: bytes
etag: "55789e130669f0dcb2ccd3c45c6c5c5f:1660839981.667994"
last-modified: Thu, 18 Aug 2022 16:26:21 GMT
server: AkamaiNetStorage
vary: Accept-Encoding
content-encoding: gzip
content-length: 182
cache-control: max-age=3600
expires: Wed, 28 Sep 2022 09:13:51 GMT
date: Wed, 28 Sep 2022 08:13:51 GMT
access-control-allow-origin: https://alicebluecookedminimalsystem.hmtlsfsf.repl.co
timing-allow-origin: *
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text
Size:   182
Md5:    88b92c59054114ed6b17f367349e1f8f
Sha1:   8a395d70ff4263e6c9f79d72b97d6b6a98342c12
Sha256: ca3d375cb5472a323ec74c0a521491115548d8135c8c54b5d23ba4ccb3481092
                                        
                                            GET /87fc8b53a8b1/29b0bfbb2495/de062f2272b6/RC481bf03631ae4030b1278aa70a9aed09-source.min.js HTTP/1.1 
Host: assets.adobedtm.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alicebluecookedminimalsystem.hmtlsfsf.repl.co/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         23.38.200.237
HTTP/2 200 OK
content-type: application/x-javascript
                                        
accept-ranges: bytes
etag: "55789e130669f0dcb2ccd3c45c6c5c5f:1660839981.667994"
last-modified: Thu, 18 Aug 2022 16:26:21 GMT
server: AkamaiNetStorage
vary: Accept-Encoding
content-encoding: gzip
content-length: 544
cache-control: max-age=3600
expires: Wed, 28 Sep 2022 09:13:51 GMT
date: Wed, 28 Sep 2022 08:13:51 GMT
access-control-allow-origin: https://alicebluecookedminimalsystem.hmtlsfsf.repl.co
timing-allow-origin: *
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (864)
Size:   544
Md5:    e375f0e8c5bce96f37c7167824ad17a7
Sha1:   4d9c8ba8a48bd0ac6b22ec4ca70f2726648fbf72
Sha256: 157293820af50823a11ec3db79f849121620b5b72b1775b9e20eb72368c58aa6
                                        
                                            GET /87fc8b53a8b1/29b0bfbb2495/de062f2272b6/RC8a5e36366f5548968f10795c1e3490a3-source.min.js HTTP/1.1 
Host: assets.adobedtm.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alicebluecookedminimalsystem.hmtlsfsf.repl.co/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         23.38.200.237
HTTP/2 200 OK
content-type: application/x-javascript
                                        
accept-ranges: bytes
etag: "55789e130669f0dcb2ccd3c45c6c5c5f:1660839981.667994"
last-modified: Thu, 18 Aug 2022 16:26:21 GMT
server: AkamaiNetStorage
vary: Accept-Encoding
content-encoding: gzip
content-length: 393
cache-control: max-age=3600
expires: Wed, 28 Sep 2022 09:13:51 GMT
date: Wed, 28 Sep 2022 08:13:51 GMT
access-control-allow-origin: https://alicebluecookedminimalsystem.hmtlsfsf.repl.co
timing-allow-origin: *
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (514)
Size:   393
Md5:    e10a8e2efb92a64fa79010f2aed4ab89
Sha1:   1906bc184b65a9aaa9c12f4136cad1217e0550eb
Sha256: 42a865e903d0f0c3b3b422738d6572e2e3ce75d3183a0069513a9a52f6758ff1
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Cache-Control: 'max-age=158059'
Date: Wed, 28 Sep 2022 08:13:51 GMT
Server: ECS (amb/6BB8)
Content-Length: 471

                                        
                                            GET /analytics.js HTTP/1.1 
Host: www.google-analytics.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alicebluecookedminimalsystem.hmtlsfsf.repl.co/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.174
HTTP/2 200 OK
content-type: text/javascript
                                        
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 19826
date: Wed, 28 Sep 2022 06:41:09 GMT
expires: Wed, 28 Sep 2022 08:41:09 GMT
cache-control: public, max-age=7200
age: 5563
last-modified: Sun, 11 Sep 2022 13:50:09 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (1325)
Size:   19826
Md5:    cae538dcce82598fbe43c0bf443e62dd
Sha1:   cc68ac6be9c5e0087a0000e5735b83270ace30f5
Sha256: 954b9e9d9744e1319c51760780a35de2dec353afffac705c2cca6d836a5e056d
                                        
                                            GET /gtm/optimize.js?id=GTM-T4S93XP HTTP/1.1 
Host: www.google-analytics.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alicebluecookedminimalsystem.hmtlsfsf.repl.co/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.174
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
                                        
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Wed, 28 Sep 2022 08:13:52 GMT
expires: Wed, 28 Sep 2022 08:13:52 GMT
cache-control: private, max-age=900
last-modified: Wed, 28 Sep 2022 06:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 41660
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (2039)
Size:   41660
Md5:    6dba25cdb5ecedabcb60573a030ce9a2
Sha1:   60dda1b42954e091717966878d19e1e87e000f41
Sha256: 36646ad497f8c1be3f5530c712ab554a8e13b492fff1cec075a3155d21281b19
                                        
                                            POST / HTTP/1.1 
Host: ocsp.sca1b.amazontrust.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         143.204.42.88
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=105874
Date: Wed, 28 Sep 2022 08:13:52 GMT
Etag: "6332f40b-1d7"
Expires: Thu, 29 Sep 2022 13:38:26 GMT
Last-Modified: Tue, 27 Sep 2022 13:00:59 GMT
Server: ECS (nyb/1D1F)
X-Cache: Miss from cloudfront
Via: 1.1 5de23153ac267c206221751e1cccb6e8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: zYpxK4unxGeu2daHTNCZfDGTkM-FBmn7vRMLJ0pCrouCzEE4Ke-DTg==
Age: 2247

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 28 Sep 2022 08:13:52 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j97&tid=UA-62726172-35&cid=162315115.1664352829&jid=730225715&gjid=1635892284&_gid=900221577.1664352830&_u=aCDAgEABQAAAAE~&z=267699260 HTTP/1.1 
Host: stats.g.doubleclick.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://alicebluecookedminimalsystem.hmtlsfsf.repl.co
Connection: keep-alive
Referer: https://alicebluecookedminimalsystem.hmtlsfsf.repl.co/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         64.233.165.156
HTTP/2 200 OK
content-type: text/plain
                                        
access-control-allow-origin: https://alicebluecookedminimalsystem.hmtlsfsf.repl.co
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Wed, 28 Sep 2022 08:13:52 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 1
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  very short file (no magic)
Size:   1
Md5:    c4ca4238a0b923820dcc509a6f75849b
Sha1:   356a192b7913b04c54574d18c28d46e6395428ab
Sha256: 6b86b273ff34fce19d6b804eff5a3f5747ada4eaa22f1d49c01e52ddb7875b4b
                                        
                                            GET /cm/dd?d_uuid=14521436849653217411995862997699875479 HTTP/1.1 
Host: cm.everesttech.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alicebluecookedminimalsystem.hmtlsfsf.repl.co/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         52.215.56.149
HTTP/1.1 302
                                        
Date: Wed, 28 Sep 2022 08:13:52 GMT
Content-Length: 0
Connection: keep-alive
Set-Cookie: everest_g_v2=g_surferid~YzQCQAAAADdnDANe; Domain=.everesttech.net; Expires=Thu, 28-Sep-2023 08:13:52 GMT; Path=/ everest_session_v2=YzQCQAAAADdnDQNe; Domain=.everesttech.net; Path=/
P3P: CP="NOI NID DEVa PSAa PSDa OUR IND PUR COM NAV INT DEM"
Cache-Control: no-cache
Location: https://dpm.demdex.net/ibs:dpid=411&dpuuid=YzQCQAAAADdnDANe
Server: AMO-cookiemap/1.1

                                        
                                            GET /ibs:dpid=411&dpuuid=YzQCQAAAADdnDANe HTTP/1.1 
Host: dpm.demdex.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://alicebluecookedminimalsystem.hmtlsfsf.repl.co/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         54.77.35.16
HTTP/1.1 302 Found
                                        
Cache-Control: no-cache,no-store,must-revalidate,max-age=0,proxy-revalidate,no-transform,private
DCS: dcs-prod-irl1-1-v043-0732d87d8.edge-irl1.demdex.com 0 ms
Expires: Thu, 01 Jan 1970 00:00:00 UTC
Location: https://dpm.demdex.net/demconf.jpg?et:ibs%7cdata:dpid=411&dpuuid=YzQCQAAAADdnDANe
P3P: policyref="/w3c/p3p.xml", CP="NOI NID CURa ADMa DEVa PSAa PSDa OUR SAMa BUS PUR COM NAV INT"
Pragma: no-cache
set-cookie: demdex=65805759691271212831833651773858525189; Max-Age=15552000; Expires=Mon, 27 Mar 2023 08:13:52 GMT; Path=/; Domain=.demdex.net; Secure; SameSite=None
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-TID: okcCM/kVQ4g=
Content-Length: 0
Connection: keep-alive

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 28 Sep 2022 08:13:52 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /demconf.jpg?et:ibs%7cdata:dpid=411&dpuuid=YzQCQAAAADdnDANe HTTP/1.1 
Host: dpm.demdex.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://alicebluecookedminimalsystem.hmtlsfsf.repl.co/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         54.77.35.16
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Cache-Control: no-cache,no-store,must-revalidate,max-age=0,proxy-revalidate,no-transform,private
content-encoding: gzip
DCS: dcs-prod-irl1-2-v043-001036e69.edge-irl1.demdex.com 0 ms
Expires: Thu, 01 Jan 1970 00:00:00 UTC
P3P: policyref="/w3c/p3p.xml", CP="NOI NID CURa ADMa DEVa PSAa PSDa OUR SAMa BUS PUR COM NAV INT"
Pragma: no-cache
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
X-TID: qODQHidtTgY=
Content-Length: 59
Connection: keep-alive


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   59
Md5:    1251cd5e5c2def4c046309375f87c1c1
Sha1:   e02d6b0c6a5c495c15985e2832e335eda8528c80
Sha256: 4e7010cc46fa361c88e57e3346d27421cf3b8a8bf5f39b43fc45997c60cb1c13
                                        
                                            POST /g/collect?v=2&tid=G-23D1JFWMP9&gtm=2oe9q0&_p=737910992&cid=162315115.1664352829&ul=en-us&sr=1280x1024&_z=ccd.v9B&_s=1&dt=Home&dl=https%3A%2F%2Falicebluecookedminimalsystem.hmtlsfsf.repl.co%2F&sid=1664352829&sct=1&seg=0&en=page_view&_fv=1&_nsi=1&_ss=1&ep.page_path=%2F HTTP/1.1 
Host: region1.google-analytics.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://alicebluecookedminimalsystem.hmtlsfsf.repl.co
Connection: keep-alive
Referer: https://alicebluecookedminimalsystem.hmtlsfsf.repl.co/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0

                                         
                                         216.239.32.36
HTTP/2 204 No Content
content-type: text/plain
                                        
access-control-allow-origin: https://alicebluecookedminimalsystem.hmtlsfsf.repl.co
date: Wed, 28 Sep 2022 08:13:52 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

                                        
                                            GET /scriptdealer/script/v1/tpa4sc/login.js?clientId=4f610b72-bc0d-4cb6-9bca-9142006dfa61&websiteId=633 HTTP/1.1 
Host: sifo.bancogalicia.com.ar
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alicebluecookedminimalsystem.hmtlsfsf.repl.co/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         34.196.56.54
HTTP/1.1 200
Content-Type: application/javascript
                                        
Date: Wed, 28 Sep 2022 08:13:52 GMT
Content-Length: 144628
Connection: keep-alive
strict-transport-security: max-age=31536000; includeSubDomains; preload
referrer-policy: no-referrer-when-downgrade
content-security-policy: script-src 'self'
permissions-policy: fullscreen=();microphone=();camera=();speaker=();
x-xss-protection: 1;mode=block
x-frame-options: DENY
x-content-type-options: nosniff


--- Additional Info ---
Magic:  Algol 68 source text\012- Pascal source, ASCII text, with very long lines (958)
Size:   144628
Md5:    b5f5e3a8990476f5b163e4024bbd1d7d
Sha1:   001e9a0471468592b13b5a0cc71d2a1a3508af45
Sha256: 6043c7d83446e719fea85a5eb6218d56563d2728b6a2c416f2890ba05b7c4288
                                        
                                            OPTIONS /requestserver/rest/v1/pageFeatures?sessionId=x&clientId=4f610b72-bc0d-4cb6-9bca-9142006dfa61 HTTP/1.1 
Host: sifo.bancogalicia.com.ar
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://alicebluecookedminimalsystem.hmtlsfsf.repl.co/
Origin: https://alicebluecookedminimalsystem.hmtlsfsf.repl.co
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.196.56.54
HTTP/1.1 200
                                        
Date: Wed, 28 Sep 2022 08:13:52 GMT
Content-Length: 0
Connection: keep-alive
access-control-allow-credentials: true
access-control-allow-origin: https://alicebluecookedminimalsystem.hmtlsfsf.repl.co
access-control-allow-methods: POST, OPTIONS
access-control-max-age: 3600
access-control-allow-headers: x-requested-with, content-type
allow: GET, HEAD, POST, PUT, DELETE, OPTIONS, PATCH
strict-transport-security: max-age=31536000; includeSubDomains; preload
referrer-policy: no-referrer-when-downgrade
content-security-policy: script-src 'self'
permissions-policy: fullscreen=();microphone=();camera=();speaker=();
x-xss-protection: 1;mode=block
x-frame-options: DENY
x-content-type-options: nosniff

                                        
                                            POST /requestserver/rest/v1/pageFeatures?sessionId=x&clientId=4f610b72-bc0d-4cb6-9bca-9142006dfa61 HTTP/1.1 
Host: sifo.bancogalicia.com.ar
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 12455
Origin: https://alicebluecookedminimalsystem.hmtlsfsf.repl.co
Connection: keep-alive
Referer: https://alicebluecookedminimalsystem.hmtlsfsf.repl.co/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.196.56.54
HTTP/1.1 200
Content-Type: application/json
                                        
Date: Wed, 28 Sep 2022 08:13:52 GMT
Transfer-Encoding: chunked
Connection: keep-alive
access-control-allow-credentials: true
access-control-allow-origin: https://alicebluecookedminimalsystem.hmtlsfsf.repl.co
access-control-allow-methods: POST, OPTIONS
access-control-max-age: 3600
access-control-allow-headers: x-requested-with, content-type
p3p: CP='IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT'
set-cookie: herok=2886860803DiUNwwFFKEHmohf3HY33LYtxqdiVlA; Expires=Wed, 28-Sep-2022 08:43:52 GMT; SameSite=None; Secure kirby=2886860803DiUNwwFFKEHmohf3HY33LYtxqdiVlA; SameSite=None; Secure
strict-transport-security: max-age=31536000; includeSubDomains; preload
referrer-policy: no-referrer-when-downgrade
content-security-policy: script-src 'self'
permissions-policy: fullscreen=();microphone=();camera=();speaker=();
x-xss-protection: 1;mode=block
x-frame-options: DENY
x-content-type-options: nosniff


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   115
Md5:    9624c759a52cbf1409ca8aa4fe4bf5ae
Sha1:   e729e931af122e1d4839208ffe8186fcf1ed469e
Sha256: 22e3b226c5ac7534c365d2beb452ba523fcecd5c8bc9baec2c70dee265bf1659
                                        
                                            POST /event?d_dil_ver=9.5&_ts=1664352830484 HTTP/1.1 
Host: galiciabanco.demdex.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 247
Origin: https://alicebluecookedminimalsystem.hmtlsfsf.repl.co
Connection: keep-alive
Referer: https://alicebluecookedminimalsystem.hmtlsfsf.repl.co/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         3.250.251.255
HTTP/1.1 200 OK
Content-Type: application/json;charset=utf-8
                                        
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://alicebluecookedminimalsystem.hmtlsfsf.repl.co
Cache-Control: no-cache,no-store,must-revalidate,max-age=0,proxy-revalidate,no-transform,private
content-encoding: gzip
DCS: dcs-prod-irl1-2-v043-0e015fa3e.edge-irl1.demdex.com 10 ms
Expires: Thu, 01 Jan 1970 00:00:00 UTC
P3P: policyref="/w3c/p3p.xml", CP="NOI NID CURa ADMa DEVa PSAa PSDa OUR SAMa BUS PUR COM NAV INT"
Pragma: no-cache
set-cookie: demdex=14521436849653217411995862997699875479; Max-Age=15552000; Expires=Mon, 27 Mar 2023 08:13:52 GMT; Path=/; Domain=.demdex.net; Secure; SameSite=None
Strict-Transport-Security: max-age=31536000; includeSubDomains
Vary: Origin
X-TID: zTCy5n0FT1U=
Content-Length: 436
Connection: keep-alive


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (752), with no line terminators
Size:   436
Md5:    aaaaedad8d3a9f2add02321435280ee2
Sha1:   a781d1e9c4067dba7a77a667624863fb244dfe1e
Sha256: 530bb095c325132bcaf01e32dbffab5d79a832002ca74b40ed49ffeab7ec85db
                                        
                                            POST /requestserver/rest/v1/screenshot?sessionId=x&clientId=4f610b72-bc0d-4cb6-9bca-9142006dfa61 HTTP/1.1 
Host: sifo.bancogalicia.com.ar
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: multipart/form-data; boundary=---------------------------248400123421287727123103887447
Content-Length: 32492
Origin: https://alicebluecookedminimalsystem.hmtlsfsf.repl.co
Connection: keep-alive
Referer: https://alicebluecookedminimalsystem.hmtlsfsf.repl.co/
Cookie: herok=2886860803DiUNwwFFKEHmohf3HY33LYtxqdiVlA; kirby=2886860803DiUNwwFFKEHmohf3HY33LYtxqdiVlA
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.196.56.54
HTTP/1.1 200
                                        
Date: Wed, 28 Sep 2022 08:13:53 GMT
Content-Length: 0
Connection: keep-alive
access-control-allow-credentials: true
access-control-allow-origin: https://alicebluecookedminimalsystem.hmtlsfsf.repl.co
access-control-allow-methods: POST, OPTIONS
access-control-max-age: 3600
access-control-allow-headers: x-requested-with, content-type
strict-transport-security: max-age=31536000; includeSubDomains; preload
referrer-policy: no-referrer-when-downgrade
content-security-policy: script-src 'self'
permissions-policy: fullscreen=();microphone=();camera=();speaker=();
x-xss-protection: 1;mode=block
x-frame-options: DENY
x-content-type-options: nosniff

                                        
                                            GET /87fc8b53a8b1/29b0bfbb2495/de062f2272b6/RC5939c17eca934334a8c9d502f0fd8856-source.min.js HTTP/1.1 
Host: assets.adobedtm.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alicebluecookedminimalsystem.hmtlsfsf.repl.co/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         23.38.200.237
HTTP/2 200 OK
content-type: application/x-javascript
                                        
accept-ranges: bytes
etag: "55789e130669f0dcb2ccd3c45c6c5c5f:1660839981.667994"
last-modified: Thu, 18 Aug 2022 16:26:21 GMT
server: AkamaiNetStorage
vary: Accept-Encoding
content-encoding: gzip
content-length: 221
cache-control: max-age=3600
expires: Wed, 28 Sep 2022 09:13:58 GMT
date: Wed, 28 Sep 2022 08:13:58 GMT
access-control-allow-origin: https://alicebluecookedminimalsystem.hmtlsfsf.repl.co
timing-allow-origin: *
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text
Size:   221
Md5:    c42687630065fee04769eeec07aae95a
Sha1:   a8192f7eb53dbc1b2d4570f22c3af8cd2d6ba648
Sha256: 2013f456bbcb3a3fb34e53ff91c48057a61a35913937711ac03c3ba743e48a12
                                        
                                            GET /releases/v5.5.0/css/all.css HTTP/1.1 
Host: use.fontawesome.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://alicebluecookedminimalsystem.hmtlsfsf.repl.co
Connection: keep-alive
Referer: https://alicebluecookedminimalsystem.hmtlsfsf.repl.co/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         172.64.132.15
HTTP/2 200 OK
content-type: text/css
                                        
date: Wed, 28 Sep 2022 08:13:50 GMT
x-amz-id-2: HCN5gygbPs5anG0Whh9w22F1Xgx/H65lVNj9sPAAk2gTIydgyJyP9SqflK0z0R+v+jkkCj8OMco=
x-amz-request-id: B8MZQVV49GZKJRZR
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding
last-modified: Wed, 30 Jun 2021 15:43:32 GMT
etag: W/"1cc6c92172d124fbd305ba3d8e263333"
cache-control: max-age=31556926
cf-cache-status: HIT
age: 41863
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=aKBj%2BgNYPxmR%2FKxJHXj9WGgDabJfbgk0rUOr34Ye1YWPxny0souAQPE%2BAeXZC8L8bHn%2FTZZo1C1oyjsdxvGO31w1LUQZYCxpGUeCNlafsp7almPFFbwy%2BKUoMloZLdc%2FK14lbsyI"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 751b05a6fbd6777d-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---