Overview

URL uservalidacion.usuariovalida11.repl.co/
IP34.149.204.188
ASNGOOGLE
Location United States
Report completed2022-09-23 22:26:57 UTC
StatusLoading report..
urlquery Alerts No alerts detected


Settings

UserAgentMozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Referer


Intrusion Detection Systems

Suricata /w Emerging Threats Pro  No alerts detected


Blocklists

OpenPhish
Scan Date Severity Indicator Comment
2022-09-23 2 uservalidacion.usuariovalida11.repl.co/ Bancolombia
2022-09-23 2 uservalidacion.usuariovalida11.repl.co/ Bancolombia
2022-09-23 2 uservalidacion.usuariovalida11.repl.co/ Bancolombia
2022-09-23 2 uservalidacion.usuariovalida11.repl.co/ Bancolombia
2022-09-23 2 uservalidacion.usuariovalida11.repl.co/ Bancolombia
2022-09-23 2 uservalidacion.usuariovalida11.repl.co/ Bancolombia
2022-09-23 2 uservalidacion.usuariovalida11.repl.co/ Bancolombia
2022-09-23 2 uservalidacion.usuariovalida11.repl.co/ Bancolombia
2022-09-23 2 uservalidacion.usuariovalida11.repl.co/ Bancolombia
2022-09-23 2 uservalidacion.usuariovalida11.repl.co/ Bancolombia
2022-09-23 2 uservalidacion.usuariovalida11.repl.co/ Bancolombia
2022-09-23 2 uservalidacion.usuariovalida11.repl.co/ Bancolombia
2022-09-23 2 uservalidacion.usuariovalida11.repl.co/ Bancolombia
2022-09-23 2 uservalidacion.usuariovalida11.repl.co/ Bancolombia
2022-09-23 2 uservalidacion.usuariovalida11.repl.co/ Bancolombia
2022-09-23 2 uservalidacion.usuariovalida11.repl.co/ Bancolombia
2022-09-23 2 uservalidacion.usuariovalida11.repl.co/ Bancolombia
2022-09-23 2 uservalidacion.usuariovalida11.repl.co/ Bancolombia
2022-09-23 2 uservalidacion.usuariovalida11.repl.co/ Bancolombia
2022-09-23 2 uservalidacion.usuariovalida11.repl.co/ Bancolombia
PhishTank  No alerts detected
Fortinet's Web Filter
Scan Date Severity Indicator Comment
2022-09-23 2 uservalidacion.usuariovalida11.repl.co/ Phishing
2022-09-23 2 uservalidacion.usuariovalida11.repl.co/ Phishing
2022-09-23 2 uservalidacion.usuariovalida11.repl.co/js/sax.js Phishing
2022-09-23 2 uservalidacion.usuariovalida11.repl.co/js/jquery.validate-1.11.1.js.descarga Phishing
2022-09-23 2 uservalidacion.usuariovalida11.repl.co/js/jquery.jclockNew.js.descarga Phishing
2022-09-23 2 uservalidacion.usuariovalida11.repl.co/js/bootstrap.js.descarga Phishing
2022-09-23 2 uservalidacion.usuariovalida11.repl.co/js/jquery-ui.js.descarga Phishing
2022-09-23 2 uservalidacion.usuariovalida11.repl.co/js/bluebird.min.js.descarga Phishing
2022-09-23 2 uservalidacion.usuariovalida11.repl.co/login_SVP_BC_zonaA.html Phishing
2022-09-23 2 uservalidacion.usuariovalida11.repl.co/img/logo.svg Phishing
2022-09-23 2 uservalidacion.usuariovalida11.repl.co/css/OpenSans-Regular.ttf Phishing
2022-09-23 2 uservalidacion.usuariovalida11.repl.co/css/CIBFontSans-Light.ttf Phishing
2022-09-23 2 uservalidacion.usuariovalida11.repl.co/js/jquery-1.10.1.js.descarga Phishing
mnemonic secure dns  No alerts detected
Quad9 DNS  No alerts detected


Files

No files detected



Passive DNS (13)

Passive DNS Source Fully Qualifying Domain Name Rank First Seen Last Seen IP Comment
mnemonic passive DNS ocsp.sectigo.com (1) 487 2018-12-17 11:31:55 UTC 2022-09-23 18:47:46 UTC 104.18.32.68
mnemonic passive DNS ipinfo.io (1) 8136 2015-02-06 06:58:53 UTC 2022-09-23 16:36:28 UTC 34.117.59.81
mnemonic passive DNS uservalidacion.usuariovalida11.repl.co (21) 0 2022-09-23 01:09:31 UTC 2022-09-23 15:35:54 UTC 34.149.204.188 Unknown ranking
mnemonic passive DNS content-signature-2.cdn.mozilla.net (1) 1152 2020-11-03 12:26:46 UTC 2022-09-23 04:49:01 UTC 108.156.28.102
mnemonic passive DNS contile.services.mozilla.com (1) 1114 2021-05-27 18:32:35 UTC 2022-09-23 04:33:41 UTC 34.117.237.239
mnemonic passive DNS ocsp.digicert.com (1) 86 2012-05-21 07:02:23 UTC 2022-09-23 22:01:35 UTC 93.184.220.29
mnemonic passive DNS ajax.googleapis.com (1) 12905 2014-10-18 20:16:48 UTC 2022-09-23 16:01:59 UTC 142.250.74.74
mnemonic passive DNS push.services.mozilla.com (1) 2140 2015-09-03 10:29:36 UTC 2022-09-23 05:02:25 UTC 35.80.131.74
mnemonic passive DNS img-getpocket.cdn.mozilla.net (6) 1631 2017-09-01 03:40:57 UTC 2022-09-23 12:37:00 UTC 34.120.237.76
mnemonic passive DNS firefox.settings.services.mozilla.com (2) 867 2020-06-04 20:08:41 UTC 2022-09-23 16:32:04 UTC 18.165.201.80
mnemonic passive DNS r3.o.lencr.org (4) 344 2020-12-02 08:52:13 UTC 2022-09-23 04:34:39 UTC 23.36.76.226
mnemonic passive DNS ocsp.pki.goog (4) 175 2017-06-14 07:23:31 UTC 2022-09-23 04:33:33 UTC 142.250.74.3
mnemonic passive DNS api.ipify.org (1) 3267 2014-10-27 13:09:35 UTC 2022-09-23 15:04:54 UTC 3.220.57.224


Recent reports on same IP/ASN/Domain/Screenshot

Last 5 reports on IP: 34.149.204.188

Date UQ / IDS / BL URL IP
2022-11-29 21:53:38 +0000
1 - 0 - 0 craftyhardtofindmedia.rgerbancolombia.repl.co/ 34.149.204.188
2022-11-29 20:15:03 +0000
0 - 0 - 24 9ea7c835-4a67-4ec3-a4e5-3a76594c84b5.id.repl.co/ 34.149.204.188
2022-11-29 17:28:22 +0000
0 - 0 - 23 9ea7c835-4a67-4ec3-a4e5-3a76594c84b5.id.repl.co/ 34.149.204.188
2022-11-29 17:23:59 +0000
79 - 0 - 0 bancolombiasegur.idaddinamica.repl.co/ 34.149.204.188
2022-11-29 15:10:32 +0000
0 - 0 - 23 9ea7c835-4a67-4ec3-a4e5-3a76594c84b5.id.repl.co/ 34.149.204.188

Last 5 reports on ASN: GOOGLE

Date UQ / IDS / BL URL IP
2022-11-30 04:43:43 +0000
0 - 0 - 1 bianca-balti-candids1007.blogspot.com/2011/10 (...) 172.217.21.161
2022-11-30 04:41:30 +0000
0 - 0 - 1 nightproduce.net/ 34.98.99.30
2022-11-30 04:34:05 +0000
0 - 0 - 3 sdfgsdfgsdfgsdgf.blogspot.se/search/label/Ele (...) 172.217.21.161
2022-11-30 04:23:33 +0000
0 - 0 - 0 docs.google.com/forms/d/e/1FAIpQLSfmZCuXVt68i (...) 216.58.207.206
2022-11-30 04:20:33 +0000
0 - 0 - 2 eideneurolearningblog.blogspot.com/2006/03/in (...) 172.217.21.161

Last 1 reports on domain: usuariovalida11.repl.co

Date UQ / IDS / BL URL IP
2022-09-23 22:26:57 +0000
0 - 0 - 33 uservalidacion.usuariovalida11.repl.co/ 34.149.204.188

Last 5 reports with similar screenshot

Date UQ / IDS / BL URL IP
2022-11-22 02:23:30 +0000
19 - 0 - 0 officialburlywoodlifecycle.agdf262asdfas.repl.co/ 34.149.204.188
2022-11-20 00:43:00 +0000
17 - 0 - 0 seashellpleasantbacktick.alehuofb.repl.co/ 34.149.204.188
2022-11-16 14:54:58 +0000
20 - 0 - 31 sucursalvirtualban.bancolombia928.repl.co/ 34.149.204.188
2022-11-16 14:16:18 +0000
21 - 0 - 31 bancolombiasucursalvirtualpersona.bancolombia (...) 34.149.204.188
2022-11-15 20:47:49 +0000
21 - 0 - 31 sucursalvirtualpersonas.bancolombia2227.repl.co/ 34.149.204.188


JavaScript

Executed Scripts (15)


Executed Evals (0)


Executed Writes (0)



HTTP Transactions (45)


Request Response
                                        
                                            GET / HTTP/1.1 
Host: uservalidacion.usuariovalida11.repl.co
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

                                         
                                         34.149.204.188
HTTP/1.1 308 Permanent Redirect
Content-Type: text/html; charset=utf-8
                                        
Location: https://uservalidacion.usuariovalida11.repl.co/
Replit-Cluster: global
Date: Fri, 23 Sep 2022 22:26:46 GMT
Content-Length: 83
Via: 1.1 google


--- Additional Info ---
Magic:  HTML document, ASCII text
Size:   83
Md5:    6278deebee5c75543c4ef99accb01c67
Sha1:   6f16cf1ad2cf37484ae6fdacd3ee5322cb7bd3fb
Sha256: 900a3e63eb53c57bcfb0780d2a5547475a04a6ec77c5d6d3bfe669f77bff1194

Alerts:
  Blocklists:
    - openphish: Bancolombia
    - fortinet: Phishing
                                        
                                            GET /v1/ HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         18.165.201.80
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Type, Alert, Backoff, Retry-After, Content-Length
Cache-Control: max-age=3600
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Fri, 23 Sep 2022 22:05:16 GMT
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 182a59e089d675b68d266c3e1c14253c.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: LHR50-P3
X-Amz-Cf-Id: ONk2KGFOsU17o6nsEh75iXpS0kZKBQO-wxWMPwVXeCuuzH7UqqB0zg==
Age: 1290


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size:   939
Md5:    2d12f67fe57a87e7366b662d153a5582
Sha1:   d7b02d81cc74f24a251d9363e0f4b0a149264ec1
Sha256: 73c273c0b5a2de3cb970b8e8c187999d3b55e760dc7766dab4bb76428d19b551
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "E82CA5F310E37267FBF792427747E65C2BB35E684D3F629C0AA302F688BC4F80"
Last-Modified: Fri, 23 Sep 2022 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7002
Expires: Sat, 24 Sep 2022 00:23:28 GMT
Date: Fri, 23 Sep 2022 22:26:46 GMT
Connection: keep-alive

                                        
                                            GET /chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain HTTP/1.1 
Host: content-signature-2.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         108.156.28.102
HTTP/2 200 OK
content-type: binary/octet-stream
                                        
content-length: 5348
last-modified: Sat, 10 Sep 2022 18:47:45 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Fri, 23 Sep 2022 04:13:03 GMT
etag: "6113f8408c59aebe188d6af273b90743"
x-cache: Hit from cloudfront
via: 1.1 17a77a72dc1e9981253a822e540e37c2.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR50-P1
x-amz-cf-id: szCf0CcMjp5a0FizRGVVS9vk4eDQ_TJNe567JzTcpJylK8LzaZ-DTA==
age: 65624
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PEM certificate\012- , ASCII text
Size:   5348
Md5:    6113f8408c59aebe188d6af273b90743
Sha1:   7398873bf00f99944eaa77ad3ebc0d43c23dba6b
Sha256: b6e0cc9ad68306208a160f3835fb8da76acc5a82d8fde1da5a98e1de1c11a770
                                        
                                            GET /v1/tiles HTTP/1.1 
Host: contile.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.117.237.239
HTTP/2 200 OK
content-type: application/json
                                        
server: nginx
date: Fri, 23 Sep 2022 22:26:46 GMT
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   12
Md5:    23e88fb7b99543fb33315b29b1fad9d6
Sha1:   a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
Sha256: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "4D1B58770F20176B5BDE097B35DAAB3891A9C26BFB92354D9A32C8D3260A59C9"
Last-Modified: Thu, 22 Sep 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Sat, 24 Sep 2022 04:26:47 GMT
Date: Fri, 23 Sep 2022 22:26:47 GMT
Connection: keep-alive

                                        
                                            GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         18.165.201.80
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600, max-age=3600
Date: Fri, 23 Sep 2022 21:33:00 GMT
Expires: Fri, 23 Sep 2022 21:34:05 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 17d60a367e7e38c01f5a3242a9a3e784.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: LHR50-P3
X-Amz-Cf-Id: GmZNNZFfMQMmGDI-rHA6mZTdNkNPk32cmZ9FGdkX8_kg3Auz-LQVIg==
Age: 3227


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size:   329
Md5:    0333b0655111aa68de771adfcc4db243
Sha1:   63f295a144ac87a7c8e23417626724eeca68a7eb
Sha256: 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 4793
Cache-Control: 'max-age=158059'
Date: Fri, 23 Sep 2022 22:26:47 GMT
Last-Modified: Fri, 23 Sep 2022 21:06:54 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET / HTTP/1.1 
Host: uservalidacion.usuariovalida11.repl.co
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

                                         
                                         34.149.204.188
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
                                        
date: Fri, 23 Sep 2022 22:26:47 GMT
expect-ct: max-age=2592000, report-uri="https://sentry.repl.it/api/10/security/?sentry_key=615192fd532445bfbbbe966cd7131791"
replit-cluster: global
strict-transport-security: max-age=7680466; includeSubDomains
content-length: 15198
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (412)
Size:   15198
Md5:    9ce673485f88a7c5aa8557f9befa0a5b
Sha1:   033a8abc728623ba05f3bbe09eb911f201d7d5c7
Sha256: ba2aa33b55767eb30254012bc128baaa6e46b6b82441d4fce26b9563175c7a3f

Alerts:
  Blocklists:
    - openphish: Bancolombia
    - fortinet: Phishing
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Fri, 23 Sep 2022 22:26:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /ajax/libs/jquery/3.5.1/jquery.min.js HTTP/1.1 
Host: ajax.googleapis.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uservalidacion.usuariovalida11.repl.co/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.74
HTTP/2 200 OK
content-type: text/javascript; charset=UTF-8
                                        
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 31021
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 22 Sep 2022 13:30:59 GMT
expires: Fri, 22 Sep 2023 13:30:59 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
age: 118548
last-modified: Fri, 08 May 2020 07:05:03 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (65451)
Size:   31021
Md5:    903bc7a7e510f87aa5d0201eb59a0832
Sha1:   ac9aa4dd94cde1bcba9037e94087138b127e41fc
Sha256: 41a7ac8150cc9f38421451d5143c1ffec7a1f1fafbf7a7fc0f51b98ad699cf8f
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Fri, 23 Sep 2022 22:26:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET / HTTP/1.1 
Host: push.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: dLrtH3I03fW3FjyzDWWj8Q==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

                                         
                                         35.80.131.74
HTTP/1.1 101 Switching Protocols
                                        
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: mjNflzOtZ6/5G+k5uB/w0qg3X/o=

                                        
                                            GET /css/styles.css HTTP/1.1 
Host: uservalidacion.usuariovalida11.repl.co
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uservalidacion.usuariovalida11.repl.co/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         34.149.204.188
HTTP/2 200 OK
content-type: text/css; charset=UTF-8
                                        
date: Fri, 23 Sep 2022 22:26:47 GMT
expect-ct: max-age=2592000, report-uri="https://sentry.repl.it/api/10/security/?sentry_key=615192fd532445bfbbbe966cd7131791"
replit-cluster: global
strict-transport-security: max-age=7680466; includeSubDomains
content-length: 107183
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (360)
Size:   107183
Md5:    6294f17112e15fd32e7de5b41c38d820
Sha1:   395091333aa8b811e38558065dffe38c8ae89455
Sha256: e7d6f96db1d2dc802487291efac1742134517cdf56a7121ab0dd38dbe3a2195d

Alerts:
  Blocklists:
    - openphish: Bancolombia
                                        
                                            GET /js/sax.js HTTP/1.1 
Host: uservalidacion.usuariovalida11.repl.co
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uservalidacion.usuariovalida11.repl.co/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         34.149.204.188
HTTP/2 200 OK
content-type: application/javascript
                                        
date: Fri, 23 Sep 2022 22:26:47 GMT
expect-ct: max-age=2592000, report-uri="https://sentry.repl.it/api/10/security/?sentry_key=615192fd532445bfbbbe966cd7131791"
replit-cluster: global
strict-transport-security: max-age=7680466; includeSubDomains
content-length: 1056
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with CRLF line terminators
Size:   1056
Md5:    768c49e5ed143bfd1a962623cfd7f996
Sha1:   4a883ca5e681801db7064a53d9391d0b348fd0d9
Sha256: 6f8f1c90c2a46da51875f3ab89194adfbe441281b2c5af2570d9c9ca6f3804d7

Alerts:
  Blocklists:
    - openphish: Bancolombia
    - fortinet: Phishing
                                        
                                            GET /js/jquery.validate-1.11.1.js.descarga HTTP/1.1 
Host: uservalidacion.usuariovalida11.repl.co
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uservalidacion.usuariovalida11.repl.co/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         34.149.204.188
HTTP/2 200 OK
content-type: text/plain; charset=utf-8
                                        
date: Fri, 23 Sep 2022 22:26:47 GMT
expect-ct: max-age=2592000, report-uri="https://sentry.repl.it/api/10/security/?sentry_key=615192fd532445bfbbbe966cd7131791"
replit-cluster: global
strict-transport-security: max-age=7680466; includeSubDomains
content-length: 26459
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (2795)
Size:   26459
Md5:    ea15990a79091cfec6b371194c3d26dc
Sha1:   a5790e56d3ea1fb17ccc4d069dbba0781b35f055
Sha256: 23df149b107329b3e406b0f70b5e1bdf2455f7f4ee4e90b00e0dbfcf773e98a1

Alerts:
  Blocklists:
    - openphish: Bancolombia
    - fortinet: Phishing
                                        
                                            GET /js/jquery.jclockNew.js.descarga HTTP/1.1 
Host: uservalidacion.usuariovalida11.repl.co
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uservalidacion.usuariovalida11.repl.co/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         34.149.204.188
HTTP/2 200 OK
content-type: text/plain; charset=utf-8
                                        
date: Fri, 23 Sep 2022 22:26:47 GMT
expect-ct: max-age=2592000, report-uri="https://sentry.repl.it/api/10/security/?sentry_key=615192fd532445bfbbbe966cd7131791"
replit-cluster: global
strict-transport-security: max-age=7680466; includeSubDomains
content-length: 7794
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text
Size:   7794
Md5:    d5bd855b1a1ae610dab2f426107bc101
Sha1:   f3172d1d3ce6a90da44554d3c0d7bbc9910134a0
Sha256: c6abf874d8228e1e37ece02cbd25c86ac1d64200331f7b91b085885eaa5e3074

Alerts:
  Blocklists:
    - openphish: Bancolombia
    - fortinet: Phishing
                                        
                                            GET /css/ui.css HTTP/1.1 
Host: uservalidacion.usuariovalida11.repl.co
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uservalidacion.usuariovalida11.repl.co/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         34.149.204.188
HTTP/2 200 OK
content-type: text/css; charset=UTF-8
                                        
date: Fri, 23 Sep 2022 22:26:47 GMT
expect-ct: max-age=2592000, report-uri="https://sentry.repl.it/api/10/security/?sentry_key=615192fd532445bfbbbe966cd7131791"
replit-cluster: global
strict-transport-security: max-age=7680466; includeSubDomains
content-length: 13483
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text
Size:   13483
Md5:    fc4114c8fc5f70052eb79403116ba4c1
Sha1:   803d15f0eeb878417048c8fc28db4c53bec0f2ed
Sha256: 0265a31c7bea01a32328e09245aad8cf38ba3316a13e93080697b35e338f35b4

Alerts:
  Blocklists:
    - openphish: Bancolombia
                                        
                                            GET /css/jquery-ui.css HTTP/1.1 
Host: uservalidacion.usuariovalida11.repl.co
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uservalidacion.usuariovalida11.repl.co/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         34.149.204.188
HTTP/2 200 OK
content-type: text/css; charset=UTF-8
                                        
date: Fri, 23 Sep 2022 22:26:47 GMT
expect-ct: max-age=2592000, report-uri="https://sentry.repl.it/api/10/security/?sentry_key=615192fd532445bfbbbe966cd7131791"
replit-cluster: global
strict-transport-security: max-age=7680466; includeSubDomains
content-length: 31880
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (1363)
Size:   31880
Md5:    2b936d08a6d742e862a089716f02d90d
Sha1:   6afd4058ec593fbca3c56a423c24a3c47eb87171
Sha256: c9eeb55f7cf16683b871600ce998b61b1031629097be96069d5741f33adaf6d1

Alerts:
  Blocklists:
    - openphish: Bancolombia
                                        
                                            GET /js/bootstrap.js.descarga HTTP/1.1 
Host: uservalidacion.usuariovalida11.repl.co
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uservalidacion.usuariovalida11.repl.co/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         34.149.204.188
HTTP/2 200 OK
content-type: text/plain; charset=utf-8
                                        
date: Fri, 23 Sep 2022 22:26:47 GMT
expect-ct: max-age=2592000, report-uri="https://sentry.repl.it/api/10/security/?sentry_key=615192fd532445bfbbbe966cd7131791"
replit-cluster: global
strict-transport-security: max-age=7680466; includeSubDomains
content-length: 36250
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (415)
Size:   36250
Md5:    ac685232d37fd9ea8e5adec8ea2964e0
Sha1:   4a60cb8af1fc731ef2f578773ae67aaaac959a7f
Sha256: a678fbd5d6c7dbad7ec89b486ad1baf3323296c8dde801141955969fe5026a73

Alerts:
  Blocklists:
    - openphish: Bancolombia
    - fortinet: Phishing
                                        
                                            GET /css/bootstrap.css HTTP/1.1 
Host: uservalidacion.usuariovalida11.repl.co
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uservalidacion.usuariovalida11.repl.co/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         34.149.204.188
HTTP/2 200 OK
content-type: text/css; charset=UTF-8
                                        
date: Fri, 23 Sep 2022 22:26:47 GMT
expect-ct: max-age=2592000, report-uri="https://sentry.repl.it/api/10/security/?sentry_key=615192fd532445bfbbbe966cd7131791"
replit-cluster: global
strict-transport-security: max-age=7680466; includeSubDomains
content-length: 121294
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  assembler source, ASCII text, with very long lines (540)
Size:   121294
Md5:    7fd1c4d3b601350f212dfa209134f45c
Sha1:   06a81c158674832ff7b0a377f83d48360a6c3dcf
Sha256: 40bbcf961798bbca588379db5479b0f1ca48f252e37c7b1c255736849859eb9a

Alerts:
  Blocklists:
    - openphish: Bancolombia
                                        
                                            GET /js/jquery-ui.js.descarga HTTP/1.1 
Host: uservalidacion.usuariovalida11.repl.co
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uservalidacion.usuariovalida11.repl.co/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         34.149.204.188
HTTP/2 200 OK
content-type: text/plain; charset=utf-8
                                        
date: Fri, 23 Sep 2022 22:26:47 GMT
expect-ct: max-age=2592000, report-uri="https://sentry.repl.it/api/10/security/?sentry_key=615192fd532445bfbbbe966cd7131791"
replit-cluster: global
strict-transport-security: max-age=7680466; includeSubDomains
content-length: 228478
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (32555)
Size:   228478
Md5:    12a65fcb49c314e8dbbcf8d090d26b8a
Sha1:   679dc5cc110ee2c7b083cf52541544c01efea018
Sha256: 8072615124c5bc2634fdecc09485c8b645c78ea27c212c3d61b80c26112bdcb8

Alerts:
  Blocklists:
    - openphish: Bancolombia
    - fortinet: Phishing
                                        
                                            GET /js/bluebird.min.js.descarga HTTP/1.1 
Host: uservalidacion.usuariovalida11.repl.co
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uservalidacion.usuariovalida11.repl.co/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         34.149.204.188
HTTP/2 200 OK
content-type: text/plain; charset=utf-8
                                        
date: Fri, 23 Sep 2022 22:26:47 GMT
expect-ct: max-age=2592000, report-uri="https://sentry.repl.it/api/10/security/?sentry_key=615192fd532445bfbbbe966cd7131791"
replit-cluster: global
strict-transport-security: max-age=7680466; includeSubDomains
content-length: 79546
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (32137), with escape sequences
Size:   79546
Md5:    5f381fc63d93a438adaca9c43041efb6
Sha1:   3d186ac6d244691754303d3153839bf42b57f7d1
Sha256: fe5edd66777d896e48c3d3f6427ff48210727850ca9c870f7780d3a6d0da2b6d

Alerts:
  Blocklists:
    - openphish: Bancolombia
    - fortinet: Phishing
                                        
                                            GET /login_SVP_BC_zonaA.html HTTP/1.1 
Host: uservalidacion.usuariovalida11.repl.co
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uservalidacion.usuariovalida11.repl.co/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         34.149.204.188
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
                                        
date: Fri, 23 Sep 2022 22:26:47 GMT
expect-ct: max-age=2592000, report-uri="https://sentry.repl.it/api/10/security/?sentry_key=615192fd532445bfbbbe966cd7131791"
replit-cluster: global
strict-transport-security: max-age=7680466; includeSubDomains
content-length: 249
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size:   249
Md5:    d0a1f34c3f8293fad9b7e17979426429
Sha1:   a5103466544c36f3afea8c76d10a332f54c9d217
Sha256: 9e9d9a915dbcbc56387a8cccd4e33a8b52ab110d1d3c5e91b194aadaff9b88e8

Alerts:
  Blocklists:
    - openphish: Bancolombia
    - fortinet: Phishing
                                        
                                            GET /img/logo.svg HTTP/1.1 
Host: uservalidacion.usuariovalida11.repl.co
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uservalidacion.usuariovalida11.repl.co/css/styles.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         34.149.204.188
HTTP/2 200 OK
content-type: image/svg+xml
                                        
date: Fri, 23 Sep 2022 22:26:47 GMT
expect-ct: max-age=2592000, report-uri="https://sentry.repl.it/api/10/security/?sentry_key=615192fd532445bfbbbe966cd7131791"
replit-cluster: global
strict-transport-security: max-age=7680466; includeSubDomains
content-length: 7020
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (667)
Size:   7020
Md5:    c049dccd21049cb237daabdb645ec648
Sha1:   e29af3f65a8312efd3ea4c3b66d4bd86657dde1b
Sha256: 2c7a6ea74a49a6adc3fad622078895e9b2589448214913d8c035764148aca7d0

Alerts:
  Blocklists:
    - openphish: Bancolombia
    - fortinet: Phishing
                                        
                                            GET /img/icon-user.png HTTP/1.1 
Host: uservalidacion.usuariovalida11.repl.co
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uservalidacion.usuariovalida11.repl.co/css/styles.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         34.149.204.188
HTTP/2 200 OK
content-type: image/png
                                        
date: Fri, 23 Sep 2022 22:26:47 GMT
expect-ct: max-age=2592000, report-uri="https://sentry.repl.it/api/10/security/?sentry_key=615192fd532445bfbbbe966cd7131791"
replit-cluster: global
strict-transport-security: max-age=7680466; includeSubDomains
content-length: 447
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 18 x 18, 8-bit/color RGBA, non-interlaced\012- data
Size:   447
Md5:    0e3457ed5ea858d1e9287ef66dcbbfe4
Sha1:   006c99b62e141ebbc69f6e06cab757995d3f7417
Sha256: 75d5b455151a3b1a0a5b100041fee37de2daa0b41d1d177deaa863177c5b5b83

Alerts:
  Blocklists:
    - openphish: Bancolombia
                                        
                                            GET /css/OpenSans-Regular.ttf HTTP/1.1 
Host: uservalidacion.usuariovalida11.repl.co
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uservalidacion.usuariovalida11.repl.co/css/styles.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         34.149.204.188
HTTP/2 200 OK
content-type: font/ttf
                                        
date: Fri, 23 Sep 2022 22:26:47 GMT
expect-ct: max-age=2592000, report-uri="https://sentry.repl.it/api/10/security/?sentry_key=615192fd532445bfbbbe966cd7131791"
replit-cluster: global
strict-transport-security: max-age=7680466; includeSubDomains
content-length: 217276
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  TrueType Font data, digitally signed, 19 tables, 1st "DSIG", 26 names, Macintosh, Digitized data copyright \251 2010-2011, Google Corporation.Open SansRegular1.10;1ASC;OpenSans-R\012- data
Size:   217276
Md5:    d7d5d4588a9f50c99264bc12e4892a7c
Sha1:   513966e260bb7610d47b2329dba194143831893e
Sha256: 13c03e22a633919beb2847c58c8285fb8a735ee97097d7c48fd403f8294b05f8

Alerts:
  Blocklists:
    - openphish: Bancolombia
    - fortinet: Phishing
                                        
                                            GET /css/icon_font_bc.ttf?61jkgi HTTP/1.1 
Host: uservalidacion.usuariovalida11.repl.co
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uservalidacion.usuariovalida11.repl.co/css/styles.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         34.149.204.188
HTTP/2 200 OK
content-type: font/ttf
                                        
date: Fri, 23 Sep 2022 22:26:47 GMT
expect-ct: max-age=2592000, report-uri="https://sentry.repl.it/api/10/security/?sentry_key=615192fd532445bfbbbe966cd7131791"
replit-cluster: global
strict-transport-security: max-age=7680466; includeSubDomains
content-length: 31976
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  TrueType Font data, 11 tables, 1st "OS/2", 14 names, Macintosh, type 1 string, icon_font_bc\012- data
Size:   31976
Md5:    8c9559a3d94688605d1d5e1cf68d5ae0
Sha1:   5c2b8fb865aefcc42f119542faa12bcaeaefbb3a
Sha256: ad0f43b7fd52d2f1574ba930c85ce401f95d69e21ad997ffe8e7ad98fec2ffda
                                        
                                            GET /css/CIBFontSans-Light.ttf HTTP/1.1 
Host: uservalidacion.usuariovalida11.repl.co
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uservalidacion.usuariovalida11.repl.co/css/styles.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         34.149.204.188
HTTP/2 200 OK
content-type: font/ttf
                                        
date: Fri, 23 Sep 2022 22:26:47 GMT
expect-ct: max-age=2592000, report-uri="https://sentry.repl.it/api/10/security/?sentry_key=615192fd532445bfbbbe966cd7131791"
replit-cluster: global
strict-transport-security: max-age=7680466; includeSubDomains
content-length: 110612
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  TrueType Font data, digitally signed, 18 tables, 1st "DSIG", 33 names, Macintosh, Copyright (c) 2019 by Vasava Studio. All rights reserved.\011CIBFont SansLight1.300;UKWN;CIBFont\012- data
Size:   110612
Md5:    69096387df83ff65381f8ee25006b0aa
Sha1:   89689ed7f7547a3815d9fa2d0a2c11513480086e
Sha256: decf1c3cb09b3e38d867e0d5cf648220584404c9cf8d18a6c51bdfa2af5047cc

Alerts:
  Blocklists:
    - openphish: Bancolombia
    - fortinet: Phishing
                                        
                                            POST /s/gts1d4/5QlTZKzjgCw HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Fri, 23 Sep 2022 22:26:48 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /img/imgPublicidad.png HTTP/1.1 
Host: uservalidacion.usuariovalida11.repl.co
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uservalidacion.usuariovalida11.repl.co/login_SVP_BC_zonaA.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         34.149.204.188
HTTP/2 200 OK
content-type: image/png
                                        
date: Fri, 23 Sep 2022 22:26:48 GMT
expect-ct: max-age=2592000, report-uri="https://sentry.repl.it/api/10/security/?sentry_key=615192fd532445bfbbbe966cd7131791"
replit-cluster: global
strict-transport-security: max-age=7680465; includeSubDomains
content-length: 48266
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 627 x 327, 8-bit colormap, non-interlaced\012- data
Size:   48266
Md5:    855d465dd78b97b629cb716e2249b0af
Sha1:   32839205ed2ec2901b5a0ebcc6560774ad10114d
Sha256: d02b76ee6198664bc9217a1bd9e08541a05ff4ce35509c1b15130c84bd391edd

Alerts:
  Blocklists:
    - openphish: Bancolombia
                                        
                                            GET /img/favicon.ico HTTP/1.1 
Host: uservalidacion.usuariovalida11.repl.co
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uservalidacion.usuariovalida11.repl.co/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         34.149.204.188
HTTP/2 200 OK
content-type: image/x-icon
                                        
date: Fri, 23 Sep 2022 22:26:48 GMT
expect-ct: max-age=2592000, report-uri="https://sentry.repl.it/api/10/security/?sentry_key=615192fd532445bfbbbe966cd7131791"
replit-cluster: global
strict-transport-security: max-age=7680465; includeSubDomains
content-length: 4286
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  MS Windows icon resource - 1 icon, 32x32, 32 bits/pixel\012- data
Size:   4286
Md5:    ffa4717e6a1e77411c637682fafb79d2
Sha1:   05bdd644d747fedee3bf37fe38facd6a66263468
Sha256: a7e42a9339ffbd5cad9f2d63bbd050fc3c518219117b7852153c165e246eb406

Alerts:
  Blocklists:
    - openphish: Bancolombia
                                        
                                            POST /s/gts1d4/5QlTZKzjgCw HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Fri, 23 Sep 2022 22:26:48 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST / HTTP/1.1 
Host: ocsp.sectigo.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         104.18.32.68
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Fri, 23 Sep 2022 22:26:48 GMT
Content-Length: 472
Connection: keep-alive
Last-Modified: Wed, 21 Sep 2022 21:46:10 GMT
Expires: Wed, 28 Sep 2022 21:46:09 GMT
Etag: "2dd1d1e635c734e8e0b14ae38e06299562edb36c"
Cache-Control: max-age=428960,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 74f6b43c9a1f1c16-OSL

                                        
                                            GET /?format=json HTTP/1.1 
Host: api.ipify.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://uservalidacion.usuariovalida11.repl.co
Connection: keep-alive
Referer: https://uservalidacion.usuariovalida11.repl.co/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         3.220.57.224
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Server: Cowboy
Connection: keep-alive
Access-Control-Allow-Origin: https://uservalidacion.usuariovalida11.repl.co
Vary: Origin
Date: Fri, 23 Sep 2022 22:26:48 GMT
Content-Length: 21
Via: 1.1 vegur


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   21
Md5:    7d69c71af0f191e9a72db6153f8018d1
Sha1:   f67c5f2887bc05654b47f76e9621e53a4091aed1
Sha256: 5bac6e06cf0e1ad38c55f9f9d12122272bf4b8157877629fe68cd33fe2133c65
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "0FC47DBA3F2789B7C509A4916B1FE3C7B6B30C6778E5354742256125730310F3"
Last-Modified: Fri, 23 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3486
Expires: Fri, 23 Sep 2022 23:24:54 GMT
Date: Fri, 23 Sep 2022 22:26:48 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "0FC47DBA3F2789B7C509A4916B1FE3C7B6B30C6778E5354742256125730310F3"
Last-Modified: Fri, 23 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3486
Expires: Fri, 23 Sep 2022 23:24:54 GMT
Date: Fri, 23 Sep 2022 22:26:48 GMT
Connection: keep-alive

                                        
                                            GET / HTTP/1.1 
Host: ipinfo.io
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://uservalidacion.usuariovalida11.repl.co
Connection: keep-alive
Referer: https://uservalidacion.usuariovalida11.repl.co/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.117.59.81
HTTP/2 200 OK
content-type: application/json; charset=utf-8
                                        
access-control-allow-origin: *
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: strict-origin-when-cross-origin
date: Fri, 23 Sep 2022 22:26:48 GMT
x-envoy-upstream-service-time: 2
strict-transport-security: max-age=2592000; includeSubDomains
vary: Accept-Encoding
content-encoding: gzip
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd5039669-74cb-4d54-9208-94257c765b35.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 9935
x-amzn-requestid: 9eb8463d-172a-40a2-8eed-3c97b1260afe
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y7sQ5FARoAMFXQQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632e2738-3709a2f22ecc033532223b26;Sampled=0
x-amzn-remapped-date: Fri, 23 Sep 2022 21:38:00 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: e5eETCL5yFnoG4HPx0Qv8hjGnlXx5vOL4syMx9uato8nuIHkSvMezg==
via: 1.1 8f22423015641505b8c857a37450d6c0.cloudfront.net (CloudFront), 1.1 35575576af8067e30cfb17c6b9fde8e2.cloudfront.net (CloudFront), 1.1 google
date: Fri, 23 Sep 2022 21:53:50 GMT
age: 1978
etag: "a30f9044330824e70dde0dcc785890d981e6fdf5"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   9935
Md5:    55d224ac83a417772c98bc5080fb6689
Sha1:   a30f9044330824e70dde0dcc785890d981e6fdf5
Sha256: b2ea4dea200109019a65834b98e31e8fac718a199513810a2819858be2b4470a
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F860e3a33-2946-4ad5-9687-6cc6953b920d.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 5179
x-amzn-requestid: 57451c31-0b96-4aa5-ae63-54f949ab3d68
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y7sQlGrRIAMFklA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632e2736-0bd483e47d880a837c7316ce;Sampled=0
x-amzn-remapped-date: Fri, 23 Sep 2022 21:37:58 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: TQgpwEIMFlVt6yJS-eljAzOaRYHVLm6ONuvtQsPM-TQITDxp8_AZxA==
via: 1.1 26ca01ec7377e425b59b6a08cb1ec342.cloudfront.net (CloudFront), 1.1 2f7934de1dfe281c3e4446892eab6462.cloudfront.net (CloudFront), 1.1 google
date: Fri, 23 Sep 2022 21:47:49 GMT
age: 2339
etag: "a7a6043178f05f547a08808ea8b34a6703154b42"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   5179
Md5:    b4a034f8a3f2e69e852a69075d20b0e3
Sha1:   a7a6043178f05f547a08808ea8b34a6703154b42
Sha256: 8f1a045214d7049cb9f9a1ab2c55b6753907741b7cbfcb2e02f916f95a56ddcc
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd1500786-3bbf-46d0-b16e-4aff6d48a585.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 14579
x-amzn-requestid: bce2c126-0883-4255-9246-d8055860f898
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YcCj6FYCoAMF9Yw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63217e18-66ba2e5d64b6a5b32b7ab36b;Sampled=0
x-amzn-remapped-date: Wed, 14 Sep 2022 07:09:12 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 92Pj9IQp3mBJQOW-XuHSK8laPqXOSBOmNbYcm4hSFzc1xqYscQKxMA==
via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 cd858042f70b416ca05e042acf3908a4.cloudfront.net (CloudFront), 1.1 google
date: Fri, 23 Sep 2022 22:05:15 GMT
age: 1293
etag: "16e42ba7b20555bf5a8615e5f4bb561204aeeb5a"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   14579
Md5:    f10a12719b387d176497669ba75f0acc
Sha1:   16e42ba7b20555bf5a8615e5f4bb561204aeeb5a
Sha256: 0cb2231817387d43a490565b61e24ea7a3cfcff3281f4ab4379a882cc5c3173f
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F993a9251-cb79-4060-b043-aacb127c6565.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 8907
x-amzn-requestid: 974b20af-4775-45bd-9e3f-55e5aa363c2d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y7sQRGPtIAMFZCw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632e2734-18aebf577efb8aaa0182aeed;Sampled=0
x-amzn-remapped-date: Fri, 23 Sep 2022 21:37:56 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: ANAYROIRBWe_Y5TxqYp9IDnqnuOHQGjvyj1K8Z85m7C9DGCXXuQ-Cw==
via: 1.1 ddd913fbbe7367d44af4ac06097e7a2a.cloudfront.net (CloudFront), 1.1 01147dcc35d57fc0238a3c1700c13f16.cloudfront.net (CloudFront), 1.1 google
date: Fri, 23 Sep 2022 21:47:49 GMT
age: 2339
etag: "24d4dcad1590e79e89a1ffe343bd7fe616528c5a"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   8907
Md5:    f727cc665bfa383779422949037a83a7
Sha1:   24d4dcad1590e79e89a1ffe343bd7fe616528c5a
Sha256: 72dc66286d9ea7b71b6c9a116ff69380a97253c73f1ba2a5b3da34790e321e05
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3cb80186-265b-4b0a-a4b1-38aef341bfc9.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 8557
x-amzn-requestid: 51f41597-b094-47d7-b372-4c4c0236577f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y7tAXEO3oAMFTWQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632e2868-30ad6e877ee82fcc4d17a7e6;Sampled=0
x-amzn-remapped-date: Fri, 23 Sep 2022 21:43:04 GMT
x-amz-cf-pop: SEA73-P2, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: KfRlAHaZjrBNyxoYsUtQZ0TgMGD99mnrC3GViYCTRcHPtDfgYbLczg==
via: 1.1 bd6f70221217681265382902c6157c76.cloudfront.net (CloudFront), 1.1 e95ec8f1dc02e32f0cb9e113963ceb4e.cloudfront.net (CloudFront), 1.1 google
date: Fri, 23 Sep 2022 22:02:30 GMT
age: 1458
etag: "9fa34e0e3d456ed38d6e94911bf24990ed33ab0c"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   8557
Md5:    33edd8fdf7032227386d1514f99b2c4a
Sha1:   9fa34e0e3d456ed38d6e94911bf24990ed33ab0c
Sha256: 1d8ebbea41da3fbb5bd6784635f176bce0697a290635808166d269202bd3defa
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd09db434-67f2-44ab-86f2-081df7e6af92.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 8208
x-amzn-requestid: 0fd39a74-3b99-41d6-ba1c-87cb53d8a03b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y7shFFwQoAMFfvQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632e27a0-5774d24f791810730183da18;Sampled=0
x-amzn-remapped-date: Fri, 23 Sep 2022 21:39:44 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: xnh0Z31k7bB0YOTDFrGKElc7qZjiNxIEpl_Vl8i8jn7GUDLE31Azxg==
via: 1.1 000f4a2f631bace380a0afa747a82482.cloudfront.net (CloudFront), 1.1 476c2ba6d9f6cd69dbcedbd65688cbc0.cloudfront.net (CloudFront), 1.1 google
date: Fri, 23 Sep 2022 21:55:51 GMT
age: 1857
etag: "e2e1b87dc1e205d437648f89cd6d0ad21019d662"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   8208
Md5:    57b0e3ac4e16f6dc66a26a4389761d0a
Sha1:   e2e1b87dc1e205d437648f89cd6d0ad21019d662
Sha256: 1e2cd2c842e3aea339ba0c18267af45fd110e70d6e86ad1dab7b65b007afcc16
                                        
                                            GET /js/jquery-1.10.1.js.descarga HTTP/1.1 
Host: uservalidacion.usuariovalida11.repl.co
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uservalidacion.usuariovalida11.repl.co/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         34.149.204.188
HTTP/2 200 OK
content-type: text/plain; charset=utf-8
                                        
date: Fri, 23 Sep 2022 22:26:47 GMT
expect-ct: max-age=2592000, report-uri="https://sentry.repl.it/api/10/security/?sentry_key=615192fd532445bfbbbe966cd7131791"
replit-cluster: global
strict-transport-security: max-age=7680466; includeSubDomains
content-length: 145858
X-Firefox-Spdy: h2


--- Additional Info ---

Alerts:
  Blocklists:
    - openphish: Bancolombia
    - fortinet: Phishing