r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 3bbb845b153026fc5332dd4506585b57
3cad200fac28fd00f34ce6ef79373e661e188743
6035871c0de6ff2d120921461207cfa32bc286e1fe78849ce74815ffbb9ff950
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6035871C0DE6FF2D120921461207CFA32BC286E1FE78849CE74815FFBB9FF950"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18528
Expires: Fri, 02 Dec 2022 19:15:48 GMT
Date: Fri, 02 Dec 2022 14:07:00 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 7439fb99a444b66db1e68ffbfaa38451
4b7742d7956485906f1c392c478515ff89a46184
636327ce88f733e5a1d39af212f97242717a39ce20edaef330fafea238e3a309
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3305
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 14:07:00 GMT
Etag: "6389d3f3-1d7"
Last-Modified: Fri, 02 Dec 2022 13:11:55 GMT
Server: ECS (ska/F6FC)
X-Cache: HIT
Content-Length: 471
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 55b4c61a1e99001307750e3647fe1102
7559f9f6770b7d3f45b723167062096312641e08
39f6bb64420bcfc8f0b010168fd35b67732984cd0698409f04d5ae40410422aa
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "39F6BB64420BCFC8F0B010168FD35B67732984CD0698409F04D5AE40410422AA"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4376
Expires: Fri, 02 Dec 2022 15:19:56 GMT
Date: Fri, 02 Dec 2022 14:07:00 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
34.102.187.140200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 14cd9a0afb6ba9a763651d5112760d1e
75d7b104ab9ab11fbb73c3f348b43b0119b5adfa
4e32a117106be587ffcd63239c16a8117eb7840830d4c9decf6527761967532e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Alert, Retry-After, Backoff, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Fri, 02 Dec 2022 13:19:56 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 2824
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 9ebddc2b260d081ebbefee47c037cb28
492bad62a7ca6a74738921ef5ae6f0be5edebf39
74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5
GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: +svQyx6lgLVW9DSDjwF9oS84d2JUPuY314zt4WgI4n71E8ZJKVOdgjnNKvWMMmRNCxwQmZHsoA8=
x-amz-request-id: MP2CZXSXN64KZHK6
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Fri, 02 Dec 2022 13:46:08 GMT
age: 1252
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 02 Dec 2022 14:07:00 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
www.scotiabank.com.mx/
104.110.14.233301 Moved Permanently 151 B IP 104.110.14.233:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 9371bbbf058e69ee9f74ceb6d247892c
423640e9e779d4d1b461f681ef200fb0fe9fbf21
716c180a11adbb612720d35a45bc40a08bd8a7587b253aa4d0636e73d86c6066
GET / HTTP/1.1
Host: www.scotiabank.com.mx
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Cache-Control: no-cache
Pragma: no-cache
Content-Type: text/html; charset=utf-8
Expires: -1
Location: https://www.scotiabank.com.mx:443/
Content-Security-Policy: default-src 'self' https: 'unsafe-inline' 'unsafe-eval' ;frame-ancestors 'self' https://manager.agilitycms.com *.scotiabank.com https://1.a79ab95c1589a13f8a4cab612bc71f9f7.com https://1.b406929acabac9b095f124c81bdfcf57f.com https://1.c81358859121583b7adf2ace89cb39f44.com;script-src 'self' 'unsafe-eval' 'unsafe-inline' googletagmanager.com facebook.net google-analytics.com *.googleapis.com licdn.com cloudflare.com Youtube.com Azureedge.net Doubleclick.net Clicktale.net Demdex.net Amazon-adsystem.com c.amazon-adsystem.com https://connect.facebook.net https://p.adsymptotic.com https://static.hotjar.com https://www.google-analytics.com cdnssl.clicktale.net https://script.hotjar.com jquery.com agilitycms.com *.msecnd.net aspnetcdn.com assets.adobedtm.com www.googletagmanager.com scotiabankfiles.azureedge.net snap.licdn.com *.google.com *.google.com.mx *.google.ca *.gstatic.com *.pages09.net *.scotiabank.com *.contentsquare.net *.contentsquare.com *.we-stats.com googleoptimize.com www.scotiabank.com.mx;worker-src blob: 'self';img-src 'self' *.clicktale.net *.agilitycms.com *.azureedge.net *.google.com googletagmanager.com facebook.net google-analytics.com *.googleapis.com licdn.com cloudflare.com Youtube.com Azureedge.net Doubleclick.net Clicktale.net Demdex.net Amazon-adsystem.com Hotjar.com jquery.com agilitycms.com *.msecnd.net aspnetcdn.com assets.adobedtm.com cm.everesttech.net somniture.scotiabank.com dpm.demdex.net www.google-analytics.com www.facebook.com https://www.google.com.br https://px.ads.linkedin.com stats.g.doubleclick.net https://p.adsymptotic.com *.google.com *.google.com.mx *.google.ca *.gstatic.com *.pages09.net *.scotiabank.com *.contentsquare.net *.contentsquare.com googleoptimize.com www.scotiabank.com.mx;connect-src 'self' https: wss: 'unsafe-inline' 'unsafe-eval' googletagmanager.com facebook.net google-analytics.com *.googleapis.com licdn.com cloudflare.com Youtube.com Azureedge.net Doubleclick.net Clicktale.net Demdex.net Amazon-adsystem.com Hotjar.com jquery.com agilitycms.com *.msecnd.net aspnetcdn.com *.google.com *.google.com.mx *.google.ca *.gstatic.com *.pages09.net *.scotiabank.com *.contentsquare.net *.contentsquare.com googleoptimize.com www.scotiabank.com.mx;
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
referrer-policy: no-referrer-when-downgrade
strict-transport-security: max-age=31536000
x-xss-protection: 1;mode=block
x-permitted-cross-domain-policies: master-only
X-Powered-By: ASP.NET
Content-Length: 151
Date: Fri, 02 Dec 2022 14:07:00 GMT
Connection: keep-alive
Set-Cookie: Scotiabank Mexico_Language=es-mx; expires=Mon, 02-Jan-2023 14:07:00 GMT; path=/; secure; HttpOnly
Scotiabank Mexico_Language=es-mx; path=/; secure; HttpOnly
ApplicationGatewayAffinity=d9afa725ceaabc6cc4f452ba6d90bc22886c2feeab70355aeb532e611327fc68;Path=/;Domain=www.scotiabank.com.mx
ApplicationGatewayAffinityCORS=d9afa725ceaabc6cc4f452ba6d90bc22886c2feeab70355aeb532e611327fc68;Path=/;Domain=www.scotiabank.com.mx;SameSite=None;Secure
ak_bmsc=50AAF4B8B9FA62D911F8E790C86377AC~000000000000000000000000000000~YAAQzE0kFyAvO3WEAQAAZ3Yp0xHv2cZcP2ND7Mhv6BFLzbbtKnFOwzxrWQIdrhwO9gCxMLdvQyAr2NJ/rCbf/ia4JhW+/bwf0tlsAZDMzdcq23XiSu6bSQ8LOKqagQ/MZtwgXH93lMph4qAVlPNMNvamRPzZpB0vKs53LLaaVfuDLHR/Pjy5o2tyhdhJgPLzXiDDM+7P9OggjUrjIJXarH1ZLdtt9/kQHtefa6T5KCL5cGirEjKFqCR1Id1D2CNx2zioGqx+t5iP4GFAQ/blgRvzi0zTGRck8fHLAnaX0zBWCqy+w2JmGLzg35oG9/BT+T7PXTlUKtkosr5h; Domain=.scotiabank.com.mx; Path=/; Expires=Fri, 02 Dec 2022 16:07:00 GMT; Max-Age=7200; HttpOnly
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
34.102.187.140200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Pragma, Last-Modified, ETag, Alert, Expires, Retry-After, Cache-Control, Backoff, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Fri, 02 Dec 2022 13:11:15 GMT
cache-control: public,max-age=3600
age: 3345
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.entrust.net/
104.110.10.32200 OK 1.6 kB IP 104.110.10.32:0
Hash f425e5b2f8bee4650156f08a5954d107
cfbee10ed0f0af78c59d75d3dc9302c26362bfb4
d1dee781cc5c01cfbca9202acc362150c537d5ff1c845394351779fe4247c9d3
POST / HTTP/1.1
Host: ocsp.entrust.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
ETag: "D1DEE781CC5C01CFBCA9202ACC362150C537D5FF1C845394351779FE4247C9D3"
Last-Modified: Fri, 02 Dec 2022 11:00:00 UTC
Content-Length: 1588
Cache-Control: public, no-transform, must-revalidate, max-age=2856
Expires: Fri, 02 Dec 2022 14:54:36 GMT
Date: Fri, 02 Dec 2022 14:07:00 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 7f1f8fc556d1f7e0aea3e1208ee2fd1c
09c341a56ff876479cfc8a0505a5fef4a5d110f1
65adcf58887bcc23f73379f74ab19a61cfbb93285c95c64b44a6716eeacc1482
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3307
Cache-Control: max-age=158100
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 14:07:01 GMT
Etag: "6389c02e-1d7"
Expires: Sun, 04 Dec 2022 10:02:01 GMT
Last-Modified: Fri, 02 Dec 2022 09:06:54 GMT
Server: ECS (ska/F6FC)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
34.216.88.5101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 34.216.88.5:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: wM0bE1OUDY4vNfhcBgNjmg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: EmsHj3Lq6OOcu0Mo4Rh5VxO6Frg=
www.scotiabank.com.mx/
104.110.14.233200 OK 17 kB IP 104.110.14.233:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 (with BOM) text, with very long lines (775), with CRLF, LF line terminators
Hash ec0876f9452489745dea336f7cc09d1b
b02b9beab1ce279035d7841eb0cd4025f943edbb
0d43ddd99cf1c926d17e72d606a173b0a5ba7c76fb7fefd2d490656a82351f85
GET / HTTP/1.1
Host: www.scotiabank.com.mx
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/1.1 200 OK
Cache-Control: no-cache
Pragma: no-cache
Content-Type: text/html; charset=utf-8
Expires: -1
Content-Security-Policy: default-src 'self' https: 'unsafe-inline' 'unsafe-eval' ;frame-ancestors 'self' https://manager.agilitycms.com *.scotiabank.com https://1.a79ab95c1589a13f8a4cab612bc71f9f7.com https://1.b406929acabac9b095f124c81bdfcf57f.com https://1.c81358859121583b7adf2ace89cb39f44.com;script-src 'self' 'unsafe-eval' 'unsafe-inline' googletagmanager.com facebook.net google-analytics.com *.googleapis.com licdn.com cloudflare.com Youtube.com Azureedge.net Doubleclick.net Clicktale.net Demdex.net Amazon-adsystem.com c.amazon-adsystem.com https://connect.facebook.net https://p.adsymptotic.com https://static.hotjar.com https://www.google-analytics.com cdnssl.clicktale.net https://script.hotjar.com jquery.com agilitycms.com *.msecnd.net aspnetcdn.com assets.adobedtm.com www.googletagmanager.com scotiabankfiles.azureedge.net snap.licdn.com *.google.com *.google.com.mx *.google.ca *.gstatic.com *.pages09.net *.scotiabank.com *.contentsquare.net *.contentsquare.com *.we-stats.com googleoptimize.com www.scotiabank.com.mx;worker-src blob: 'self';img-src 'self' *.clicktale.net *.agilitycms.com *.azureedge.net *.google.com googletagmanager.com facebook.net google-analytics.com *.googleapis.com licdn.com cloudflare.com Youtube.com Azureedge.net Doubleclick.net Clicktale.net Demdex.net Amazon-adsystem.com Hotjar.com jquery.com agilitycms.com *.msecnd.net aspnetcdn.com assets.adobedtm.com cm.everesttech.net somniture.scotiabank.com dpm.demdex.net www.google-analytics.com www.facebook.com https://www.google.com.br https://px.ads.linkedin.com stats.g.doubleclick.net https://p.adsymptotic.com *.google.com *.google.com.mx *.google.ca *.gstatic.com *.pages09.net *.scotiabank.com *.contentsquare.net *.contentsquare.com googleoptimize.com www.scotiabank.com.mx;connect-src 'self' https: wss: 'unsafe-inline' 'unsafe-eval' googletagmanager.com facebook.net google-analytics.com *.googleapis.com licdn.com cloudflare.com Youtube.com Azureedge.net Doubleclick.net Clicktale.net Demdex.net Amazon-adsystem.com Hotjar.com jquery.com agilitycms.com *.msecnd.net aspnetcdn.com *.google.com *.google.com.mx *.google.ca *.gstatic.com *.pages09.net *.scotiabank.com *.contentsquare.net *.contentsquare.com googleoptimize.com www.scotiabank.com.mx;
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
referrer-policy: no-referrer-when-downgrade
strict-transport-security: max-age=31536000
x-xss-protection: 1;mode=block
x-permitted-cross-domain-policies: master-only
X-Powered-By: ASP.NET
X-Akamai-Transformed: 9 107960 0 pmb=mTOE,2
Vary: Accept-Encoding
Content-Encoding: gzip
Date: Fri, 02 Dec 2022 14:07:01 GMT
Content-Length: 16618
Connection: keep-alive
Set-Cookie: Scotiabank Mexico_Language=es-mx; expires=Mon, 02-Jan-2023 14:07:01 GMT; path=/; secure; HttpOnly
ASP.NET_SessionId=23mn1eqqbwlm3fcsfhs01qss; path=/; secure; HttpOnly; SameSite=Lax
Scotiabank Mexico_Language=es-mx; path=/; secure; HttpOnly
ApplicationGatewayAffinity=c9114da36b3f1ca57d40b29b616f184186872e7d7bf6f7a051b8769fabfdfee4;Path=/;Domain=www.scotiabank.com.mx
ApplicationGatewayAffinityCORS=c9114da36b3f1ca57d40b29b616f184186872e7d7bf6f7a051b8769fabfdfee4;Path=/;Domain=www.scotiabank.com.mx;SameSite=None;Secure
ak_bmsc=4B911A640E49A10E2B3C2D84C9D733EF~000000000000000000000000000000~YAAQzE0kFyIvO3WEAQAA/3kp0xE6ON6PvPaaunfcJ7aOKgICr9Y/TC6s+wCJK47D/W+H/Jw/KtAv9/8zumzPK2OPXPyJluYRjWiecg4iVCcC3QYEgA/EvmU1yJiJ/aPKRoBcs9F3gH6lTeOzRjdUla5GuTL/YJYKBKIW8UvIOcGeGl5S57OhfqnOt17GFPGJkd1TEEBsBWf2hajYvbYlE+Gk9znqwH0A+oqL+jZqhGp/WTN7CI1jC0KsOlpuWx8DXaaq5uB+PdLuovEFI6JbczKHnJWSqM6QlSs1Lvg1zh5r+PbzNZZS71oKQxBtEy+jrTYJ/RaiO0/H1XjS32ujY2VkLI/duTX43LIIg7jx9p2IxLJnNtyOCzSr1OTXzQfR56wUcahD; Domain=.scotiabank.com.mx; Path=/; Expires=Fri, 02 Dec 2022 16:07:00 GMT; Max-Age=7199; HttpOnly
bm_mi=8AB531ABFBE3F46041E1846A8C05AF5C~YAAQzE0kFyMvO3WEAQAA/3kp0xGwJ1p9NLTcD9c5QDca0EcQQRPSxIfqndKVfpk1/tRgFDOe1qKDdrMeGekDPXX8zF53eTPb3+PGt6TZvpyO1STvVbU+nBaT+oBexouTA2M8SA5FD0PCEccqV6GnZWhbz8bVJRjMJNXvBvyo0URWtIjiFTXqnvgCCUeEA/RIBOkjwJIGy5D8IPsKyRqUWtvREjJiHZQKZmFAjS/WdPe+dijp109r84PEtsZv7+fDDyb5kTb7nKh1OTqwghD5DhVdJvIsjeSeEMd3UQCJ0uLtgmFCQUPvodX7bGLPMKT4im6xJQ==~1; Domain=.scotiabank.com.mx; Path=/; Expires=Fri, 02 Dec 2022 14:07:01 GMT; Max-Age=0; Secure
cdnjs.cloudflare.com/ajax/libs/font-awesome/5.11.2/css/all.min.css
104.17.25.14200 OK 10 kB URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/font-awesome/5.11.2/css/all.min.css
IP 104.17.25.14:0
File type ASCII text, with very long lines (56656)
Hash 5c32368e2726220885c82f35b6fb4e78
bb3909d2aaca84d895296187aeaea024c76f46ec
53ceda316a9da4b956909214bb1bdaf76d2b2e3d2037614a13b6749e1e5c9e17
GET /ajax/libs/font-awesome/5.11.2/css/all.min.css HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.scotiabank.com.mx/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 02 Dec 2022 14:07:01 GMT
content-type: text/css; charset=utf-8
content-length: 10022
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03e60-de0a"
last-modified: Mon, 04 May 2020 16:10:08 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 2581476
expires: Wed, 22 Nov 2023 14:07:01 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=iMyqhbPqK51h85RpXE1%2Bnz8i7IqrddfmOYVojWAAFAQZ%2BL1eoExBkeDmHLF1jCwUi%2Fw%2FWhhW2B2H9wyLzgD8Mlyz5V2Oh5wwOmwGi6gRyMZWT67i0VJ7WFn8yVi0VLl1y7XNrar6"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 7734a0642bb30afe-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.scotiabank.com.mx/Styles/Build/desktop.css
104.110.14.233200 OK 25 kB URL HTTP/1.1 www.scotiabank.com.mx/Styles/Build/desktop.css
IP 104.110.14.233:0
File type Unicode text, UTF-8 (with BOM) text, with very long lines (302), with CRLF line terminators
Hash d17d85888c06ede935421fc214622964
24ba4f169eff11e0aed9aa8e54719316bb8d0a45
699a79c0cb94a49ad45f16776d868be4522ecd4dfd42aa8f5ca0a461e994eb73
GET /Styles/Build/desktop.css HTTP/1.1
Host: www.scotiabank.com.mx
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.scotiabank.com.mx/
Connection: keep-alive
Cookie: ApplicationGatewayAffinity=c9114da36b3f1ca57d40b29b616f184186872e7d7bf6f7a051b8769fabfdfee4; ak_bmsc=4B911A640E49A10E2B3C2D84C9D733EF~000000000000000000000000000000~YAAQzE0kFyIvO3WEAQAA/3kp0xE6ON6PvPaaunfcJ7aOKgICr9Y/TC6s+wCJK47D/W+H/Jw/KtAv9/8zumzPK2OPXPyJluYRjWiecg4iVCcC3QYEgA/EvmU1yJiJ/aPKRoBcs9F3gH6lTeOzRjdUla5GuTL/YJYKBKIW8UvIOcGeGl5S57OhfqnOt17GFPGJkd1TEEBsBWf2hajYvbYlE+Gk9znqwH0A+oqL+jZqhGp/WTN7CI1jC0KsOlpuWx8DXaaq5uB+PdLuovEFI6JbczKHnJWSqM6QlSs1Lvg1zh5r+PbzNZZS71oKQxBtEy+jrTYJ/RaiO0/H1XjS32ujY2VkLI/duTX43LIIg7jx9p2IxLJnNtyOCzSr1OTXzQfR56wUcahD; Scotiabank Mexico_Language=es-mx; ASP.NET_SessionId=23mn1eqqbwlm3fcsfhs01qss; ApplicationGatewayAffinityCORS=c9114da36b3f1ca57d40b29b616f184186872e7d7bf6f7a051b8769fabfdfee4
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Cache-Control: private
Content-Type: text/css
Last-Modified: Fri, 06 May 2022 13:30:34 GMT
Accept-Ranges: bytes
ETag: "2461e7764d61d81:0"
Content-Security-Policy: default-src 'self' https: 'unsafe-inline' 'unsafe-eval' ;frame-ancestors 'self' https://manager.agilitycms.com *.scotiabank.com https://1.a79ab95c1589a13f8a4cab612bc71f9f7.com https://1.b406929acabac9b095f124c81bdfcf57f.com https://1.c81358859121583b7adf2ace89cb39f44.com;script-src 'self' 'unsafe-eval' 'unsafe-inline' googletagmanager.com facebook.net google-analytics.com *.googleapis.com licdn.com cloudflare.com Youtube.com Azureedge.net Doubleclick.net Clicktale.net Demdex.net Amazon-adsystem.com c.amazon-adsystem.com https://connect.facebook.net https://p.adsymptotic.com https://static.hotjar.com https://www.google-analytics.com cdnssl.clicktale.net https://script.hotjar.com jquery.com agilitycms.com *.msecnd.net aspnetcdn.com assets.adobedtm.com www.googletagmanager.com scotiabankfiles.azureedge.net snap.licdn.com *.google.com *.google.com.mx *.google.ca *.gstatic.com *.pages09.net *.scotiabank.com *.contentsquare.net *.contentsquare.com *.we-stats.com googleoptimize.com www.scotiabank.com.mx;worker-src blob: 'self';img-src 'self' *.clicktale.net *.agilitycms.com *.azureedge.net *.google.com googletagmanager.com facebook.net google-analytics.com *.googleapis.com licdn.com cloudflare.com Youtube.com Azureedge.net Doubleclick.net Clicktale.net Demdex.net Amazon-adsystem.com Hotjar.com jquery.com agilitycms.com *.msecnd.net aspnetcdn.com assets.adobedtm.com cm.everesttech.net somniture.scotiabank.com dpm.demdex.net www.google-analytics.com www.facebook.com https://www.google.com.br https://px.ads.linkedin.com stats.g.doubleclick.net https://p.adsymptotic.com *.google.com *.google.com.mx *.google.ca *.gstatic.com *.pages09.net *.scotiabank.com *.contentsquare.net *.contentsquare.com googleoptimize.com www.scotiabank.com.mx;connect-src 'self' https: wss: 'unsafe-inline' 'unsafe-eval' googletagmanager.com facebook.net google-analytics.com *.googleapis.com licdn.com cloudflare.com Youtube.com Azureedge.net Doubleclick.net Clicktale.net Demdex.net Amazon-adsystem.com Hotjar.com jquery.com agilitycms.com *.msecnd.net aspnetcdn.com *.google.com *.google.com.mx *.google.ca *.gstatic.com *.pages09.net *.scotiabank.com *.contentsquare.net *.contentsquare.com googleoptimize.com www.scotiabank.com.mx;
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
strict-transport-security: max-age=31536000
x-xss-protection: 1;mode=block
x-permitted-cross-domain-policies: master-only
X-Powered-By: ASP.NET
Vary: Accept-Encoding
Content-Encoding: gzip
Date: Fri, 02 Dec 2022 14:07:02 GMT
Content-Length: 24981
Connection: keep-alive
Set-Cookie: Scotiabank Mexico_Language=es-mx; path=/; secure; HttpOnly
www.scotiabank.com.mx/Scripts/plugins/lity-2.3.1/lity.min.css
104.110.14.233200 OK 921 B URL HTTP/1.1 www.scotiabank.com.mx/Scripts/plugins/lity-2.3.1/lity.min.css
IP 104.110.14.233:0
File type ASCII text, with very long lines (2275), with CRLF line terminators
Hash 0ddef3320c03d05b0aab92c98b6f76b2
e0d140ac823738dfcdb5649ad05750081cd5b30f
faaa7e14a8c052c36395458b50b1d6db23370860983d2705ef76e2cab6c2749b
GET /Scripts/plugins/lity-2.3.1/lity.min.css HTTP/1.1
Host: www.scotiabank.com.mx
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.scotiabank.com.mx/
Connection: keep-alive
Cookie: ApplicationGatewayAffinity=c9114da36b3f1ca57d40b29b616f184186872e7d7bf6f7a051b8769fabfdfee4; ak_bmsc=4B911A640E49A10E2B3C2D84C9D733EF~000000000000000000000000000000~YAAQzE0kFyIvO3WEAQAA/3kp0xE6ON6PvPaaunfcJ7aOKgICr9Y/TC6s+wCJK47D/W+H/Jw/KtAv9/8zumzPK2OPXPyJluYRjWiecg4iVCcC3QYEgA/EvmU1yJiJ/aPKRoBcs9F3gH6lTeOzRjdUla5GuTL/YJYKBKIW8UvIOcGeGl5S57OhfqnOt17GFPGJkd1TEEBsBWf2hajYvbYlE+Gk9znqwH0A+oqL+jZqhGp/WTN7CI1jC0KsOlpuWx8DXaaq5uB+PdLuovEFI6JbczKHnJWSqM6QlSs1Lvg1zh5r+PbzNZZS71oKQxBtEy+jrTYJ/RaiO0/H1XjS32ujY2VkLI/duTX43LIIg7jx9p2IxLJnNtyOCzSr1OTXzQfR56wUcahD; Scotiabank Mexico_Language=es-mx; ASP.NET_SessionId=23mn1eqqbwlm3fcsfhs01qss; ApplicationGatewayAffinityCORS=c9114da36b3f1ca57d40b29b616f184186872e7d7bf6f7a051b8769fabfdfee4
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Cache-Control: private
Content-Type: text/css
Last-Modified: Wed, 16 Mar 2022 16:28:14 GMT
Accept-Ranges: bytes
ETag: "67b3bad55239d81:0"
Content-Security-Policy: default-src 'self' https: 'unsafe-inline' 'unsafe-eval' ;frame-ancestors 'self' https://manager.agilitycms.com *.scotiabank.com https://1.a79ab95c1589a13f8a4cab612bc71f9f7.com https://1.b406929acabac9b095f124c81bdfcf57f.com https://1.c81358859121583b7adf2ace89cb39f44.com;script-src 'self' 'unsafe-eval' 'unsafe-inline' googletagmanager.com facebook.net google-analytics.com *.googleapis.com licdn.com cloudflare.com Youtube.com Azureedge.net Doubleclick.net Clicktale.net Demdex.net Amazon-adsystem.com c.amazon-adsystem.com https://connect.facebook.net https://p.adsymptotic.com https://static.hotjar.com https://www.google-analytics.com cdnssl.clicktale.net https://script.hotjar.com jquery.com agilitycms.com *.msecnd.net aspnetcdn.com assets.adobedtm.com www.googletagmanager.com scotiabankfiles.azureedge.net snap.licdn.com *.google.com *.google.com.mx *.google.ca *.gstatic.com *.pages09.net *.scotiabank.com *.contentsquare.net *.contentsquare.com *.we-stats.com googleoptimize.com www.scotiabank.com.mx;worker-src blob: 'self';img-src 'self' *.clicktale.net *.agilitycms.com *.azureedge.net *.google.com googletagmanager.com facebook.net google-analytics.com *.googleapis.com licdn.com cloudflare.com Youtube.com Azureedge.net Doubleclick.net Clicktale.net Demdex.net Amazon-adsystem.com Hotjar.com jquery.com agilitycms.com *.msecnd.net aspnetcdn.com assets.adobedtm.com cm.everesttech.net somniture.scotiabank.com dpm.demdex.net www.google-analytics.com www.facebook.com https://www.google.com.br https://px.ads.linkedin.com stats.g.doubleclick.net https://p.adsymptotic.com *.google.com *.google.com.mx *.google.ca *.gstatic.com *.pages09.net *.scotiabank.com *.contentsquare.net *.contentsquare.com googleoptimize.com www.scotiabank.com.mx;connect-src 'self' https: wss: 'unsafe-inline' 'unsafe-eval' googletagmanager.com facebook.net google-analytics.com *.googleapis.com licdn.com cloudflare.com Youtube.com Azureedge.net Doubleclick.net Clicktale.net Demdex.net Amazon-adsystem.com Hotjar.com jquery.com agilitycms.com *.msecnd.net aspnetcdn.com *.google.com *.google.com.mx *.google.ca *.gstatic.com *.pages09.net *.scotiabank.com *.contentsquare.net *.contentsquare.com googleoptimize.com www.scotiabank.com.mx;
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
strict-transport-security: max-age=31536000
x-xss-protection: 1;mode=block
x-permitted-cross-domain-policies: master-only
X-Powered-By: ASP.NET
Vary: Accept-Encoding
Content-Encoding: gzip
Date: Fri, 02 Dec 2022 14:07:02 GMT
Content-Length: 921
Connection: keep-alive
Set-Cookie: Scotiabank Mexico_Language=es-mx; path=/; secure; HttpOnly
www.scotiabank.com.mx/Common/Fonts/Scotia_W_Lt.woff
104.110.14.233200 OK 14 kB URL HTTP/1.1 www.scotiabank.com.mx/Common/Fonts/Scotia_W_Lt.woff
IP 104.110.14.233:0
File type Web Open Font Format, TrueType, length 13876, version 1.0\012- data
Hash babf9ba79b2883462e10f49e5ed10b62
8e914d66f60acc1b8f18c6c0fc08c800d08f6eb1
98f471fec18979b7c8ace1832d360cdb9b5ffabc943476baac50610f64d855d9
GET /Common/Fonts/Scotia_W_Lt.woff HTTP/1.1
Host: www.scotiabank.com.mx
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.scotiabank.com.mx/
Connection: keep-alive
Cookie: ApplicationGatewayAffinity=c9114da36b3f1ca57d40b29b616f184186872e7d7bf6f7a051b8769fabfdfee4; ak_bmsc=4B911A640E49A10E2B3C2D84C9D733EF~000000000000000000000000000000~YAAQzE0kFyIvO3WEAQAA/3kp0xE6ON6PvPaaunfcJ7aOKgICr9Y/TC6s+wCJK47D/W+H/Jw/KtAv9/8zumzPK2OPXPyJluYRjWiecg4iVCcC3QYEgA/EvmU1yJiJ/aPKRoBcs9F3gH6lTeOzRjdUla5GuTL/YJYKBKIW8UvIOcGeGl5S57OhfqnOt17GFPGJkd1TEEBsBWf2hajYvbYlE+Gk9znqwH0A+oqL+jZqhGp/WTN7CI1jC0KsOlpuWx8DXaaq5uB+PdLuovEFI6JbczKHnJWSqM6QlSs1Lvg1zh5r+PbzNZZS71oKQxBtEy+jrTYJ/RaiO0/H1XjS32ujY2VkLI/duTX43LIIg7jx9p2IxLJnNtyOCzSr1OTXzQfR56wUcahD; Scotiabank Mexico_Language=es-mx; ASP.NET_SessionId=23mn1eqqbwlm3fcsfhs01qss; ApplicationGatewayAffinityCORS=c9114da36b3f1ca57d40b29b616f184186872e7d7bf6f7a051b8769fabfdfee4
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Cache-Control: private
Content-Type: font/x-woff
Last-Modified: Wed, 16 Mar 2022 16:28:13 GMT
Accept-Ranges: bytes
ETag: "13c70d55239d81:0"
Content-Security-Policy: default-src 'self' https: 'unsafe-inline' 'unsafe-eval' ;frame-ancestors 'self' https://manager.agilitycms.com *.scotiabank.com https://1.a79ab95c1589a13f8a4cab612bc71f9f7.com https://1.b406929acabac9b095f124c81bdfcf57f.com https://1.c81358859121583b7adf2ace89cb39f44.com;script-src 'self' 'unsafe-eval' 'unsafe-inline' googletagmanager.com facebook.net google-analytics.com *.googleapis.com licdn.com cloudflare.com Youtube.com Azureedge.net Doubleclick.net Clicktale.net Demdex.net Amazon-adsystem.com c.amazon-adsystem.com https://connect.facebook.net https://p.adsymptotic.com https://static.hotjar.com https://www.google-analytics.com cdnssl.clicktale.net https://script.hotjar.com jquery.com agilitycms.com *.msecnd.net aspnetcdn.com assets.adobedtm.com www.googletagmanager.com scotiabankfiles.azureedge.net snap.licdn.com *.google.com *.google.com.mx *.google.ca *.gstatic.com *.pages09.net *.scotiabank.com *.contentsquare.net *.contentsquare.com *.we-stats.com googleoptimize.com www.scotiabank.com.mx;worker-src blob: 'self';img-src 'self' *.clicktale.net *.agilitycms.com *.azureedge.net *.google.com googletagmanager.com facebook.net google-analytics.com *.googleapis.com licdn.com cloudflare.com Youtube.com Azureedge.net Doubleclick.net Clicktale.net Demdex.net Amazon-adsystem.com Hotjar.com jquery.com agilitycms.com *.msecnd.net aspnetcdn.com assets.adobedtm.com cm.everesttech.net somniture.scotiabank.com dpm.demdex.net www.google-analytics.com www.facebook.com https://www.google.com.br https://px.ads.linkedin.com stats.g.doubleclick.net https://p.adsymptotic.com *.google.com *.google.com.mx *.google.ca *.gstatic.com *.pages09.net *.scotiabank.com *.contentsquare.net *.contentsquare.com googleoptimize.com www.scotiabank.com.mx;connect-src 'self' https: wss: 'unsafe-inline' 'unsafe-eval' googletagmanager.com facebook.net google-analytics.com *.googleapis.com licdn.com cloudflare.com Youtube.com Azureedge.net Doubleclick.net Clicktale.net Demdex.net Amazon-adsystem.com Hotjar.com jquery.com agilitycms.com *.msecnd.net aspnetcdn.com *.google.com *.google.com.mx *.google.ca *.gstatic.com *.pages09.net *.scotiabank.com *.contentsquare.net *.contentsquare.com googleoptimize.com www.scotiabank.com.mx;
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
strict-transport-security: max-age=31536000
x-xss-protection: 1;mode=block
x-permitted-cross-domain-policies: master-only
X-Powered-By: ASP.NET
Content-Length: 13876
Date: Fri, 02 Dec 2022 14:07:02 GMT
Connection: keep-alive
Set-Cookie: Scotiabank Mexico_Language=es-mx; path=/; secure; HttpOnly
www.scotiabank.com.mx/Common/Fonts/icomoon.woff
104.110.14.233200 OK 73 kB URL HTTP/1.1 www.scotiabank.com.mx/Common/Fonts/icomoon.woff
IP 104.110.14.233:0
File type Web Open Font Format, TrueType, length 72844, version 0.0\012- data
Hash 07ec4f71021d81ed5ecc652d7c1ed547
9f70bf40e39c0f545ec0dbbeeac841afe254a7a8
b38f47fae3ba95e89890779c5d982bfa9eb8001a6900f24a6b27eb3f4af64a49
Analyzer Verdict Alert urlquery Phishing - Scotiabank
GET /Common/Fonts/icomoon.woff HTTP/1.1
Host: www.scotiabank.com.mx
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.scotiabank.com.mx/
Connection: keep-alive
Cookie: ApplicationGatewayAffinity=c9114da36b3f1ca57d40b29b616f184186872e7d7bf6f7a051b8769fabfdfee4; ak_bmsc=4B911A640E49A10E2B3C2D84C9D733EF~000000000000000000000000000000~YAAQzE0kFyIvO3WEAQAA/3kp0xE6ON6PvPaaunfcJ7aOKgICr9Y/TC6s+wCJK47D/W+H/Jw/KtAv9/8zumzPK2OPXPyJluYRjWiecg4iVCcC3QYEgA/EvmU1yJiJ/aPKRoBcs9F3gH6lTeOzRjdUla5GuTL/YJYKBKIW8UvIOcGeGl5S57OhfqnOt17GFPGJkd1TEEBsBWf2hajYvbYlE+Gk9znqwH0A+oqL+jZqhGp/WTN7CI1jC0KsOlpuWx8DXaaq5uB+PdLuovEFI6JbczKHnJWSqM6QlSs1Lvg1zh5r+PbzNZZS71oKQxBtEy+jrTYJ/RaiO0/H1XjS32ujY2VkLI/duTX43LIIg7jx9p2IxLJnNtyOCzSr1OTXzQfR56wUcahD; Scotiabank Mexico_Language=es-mx; ASP.NET_SessionId=23mn1eqqbwlm3fcsfhs01qss; ApplicationGatewayAffinityCORS=c9114da36b3f1ca57d40b29b616f184186872e7d7bf6f7a051b8769fabfdfee4
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Cache-Control: private
Content-Type: font/x-woff
Last-Modified: Wed, 16 Mar 2022 16:28:13 GMT
Accept-Ranges: bytes
ETag: "99cf70d55239d81:0"
Content-Security-Policy: default-src 'self' https: 'unsafe-inline' 'unsafe-eval' ;frame-ancestors 'self' https://manager.agilitycms.com *.scotiabank.com https://1.a79ab95c1589a13f8a4cab612bc71f9f7.com https://1.b406929acabac9b095f124c81bdfcf57f.com https://1.c81358859121583b7adf2ace89cb39f44.com;script-src 'self' 'unsafe-eval' 'unsafe-inline' googletagmanager.com facebook.net google-analytics.com *.googleapis.com licdn.com cloudflare.com Youtube.com Azureedge.net Doubleclick.net Clicktale.net Demdex.net Amazon-adsystem.com c.amazon-adsystem.com https://connect.facebook.net https://p.adsymptotic.com https://static.hotjar.com https://www.google-analytics.com cdnssl.clicktale.net https://script.hotjar.com jquery.com agilitycms.com *.msecnd.net aspnetcdn.com assets.adobedtm.com www.googletagmanager.com scotiabankfiles.azureedge.net snap.licdn.com *.google.com *.google.com.mx *.google.ca *.gstatic.com *.pages09.net *.scotiabank.com *.contentsquare.net *.contentsquare.com *.we-stats.com googleoptimize.com www.scotiabank.com.mx;worker-src blob: 'self';img-src 'self' *.clicktale.net *.agilitycms.com *.azureedge.net *.google.com googletagmanager.com facebook.net google-analytics.com *.googleapis.com licdn.com cloudflare.com Youtube.com Azureedge.net Doubleclick.net Clicktale.net Demdex.net Amazon-adsystem.com Hotjar.com jquery.com agilitycms.com *.msecnd.net aspnetcdn.com assets.adobedtm.com cm.everesttech.net somniture.scotiabank.com dpm.demdex.net www.google-analytics.com www.facebook.com https://www.google.com.br https://px.ads.linkedin.com stats.g.doubleclick.net https://p.adsymptotic.com *.google.com *.google.com.mx *.google.ca *.gstatic.com *.pages09.net *.scotiabank.com *.contentsquare.net *.contentsquare.com googleoptimize.com www.scotiabank.com.mx;connect-src 'self' https: wss: 'unsafe-inline' 'unsafe-eval' googletagmanager.com facebook.net google-analytics.com *.googleapis.com licdn.com cloudflare.com Youtube.com Azureedge.net Doubleclick.net Clicktale.net Demdex.net Amazon-adsystem.com Hotjar.com jquery.com agilitycms.com *.msecnd.net aspnetcdn.com *.google.com *.google.com.mx *.google.ca *.gstatic.com *.pages09.net *.scotiabank.com *.contentsquare.net *.contentsquare.com googleoptimize.com www.scotiabank.com.mx;
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
strict-transport-security: max-age=31536000
x-xss-protection: 1;mode=block
x-permitted-cross-domain-policies: master-only
X-Powered-By: ASP.NET
Content-Length: 72844
Date: Fri, 02 Dec 2022 14:07:02 GMT
Connection: keep-alive
Set-Cookie: Scotiabank Mexico_Language=es-mx; path=/; secure; HttpOnly
www.scotiabank.com.mx/Common/Fonts/Scotia_W_Rg.woff
104.110.14.233200 OK 14 kB URL HTTP/1.1 www.scotiabank.com.mx/Common/Fonts/Scotia_W_Rg.woff
IP 104.110.14.233:0
File type Web Open Font Format, TrueType, length 13920, version 1.0\012- data
Hash 554fc89ffae388cadee5ea499784a9fa
8a306196497f64df9aa648e104dd464b32c1d2e9
ddff7291f55ccc4df541ec758c3024cb7d3942289495fbc740e6fc80ff831377
Analyzer Verdict Alert urlquery Phishing - Scotiabank
GET /Common/Fonts/Scotia_W_Rg.woff HTTP/1.1
Host: www.scotiabank.com.mx
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.scotiabank.com.mx/
Connection: keep-alive
Cookie: ApplicationGatewayAffinity=c9114da36b3f1ca57d40b29b616f184186872e7d7bf6f7a051b8769fabfdfee4; ak_bmsc=4B911A640E49A10E2B3C2D84C9D733EF~000000000000000000000000000000~YAAQzE0kFyIvO3WEAQAA/3kp0xE6ON6PvPaaunfcJ7aOKgICr9Y/TC6s+wCJK47D/W+H/Jw/KtAv9/8zumzPK2OPXPyJluYRjWiecg4iVCcC3QYEgA/EvmU1yJiJ/aPKRoBcs9F3gH6lTeOzRjdUla5GuTL/YJYKBKIW8UvIOcGeGl5S57OhfqnOt17GFPGJkd1TEEBsBWf2hajYvbYlE+Gk9znqwH0A+oqL+jZqhGp/WTN7CI1jC0KsOlpuWx8DXaaq5uB+PdLuovEFI6JbczKHnJWSqM6QlSs1Lvg1zh5r+PbzNZZS71oKQxBtEy+jrTYJ/RaiO0/H1XjS32ujY2VkLI/duTX43LIIg7jx9p2IxLJnNtyOCzSr1OTXzQfR56wUcahD; Scotiabank Mexico_Language=es-mx; ASP.NET_SessionId=23mn1eqqbwlm3fcsfhs01qss; ApplicationGatewayAffinityCORS=c9114da36b3f1ca57d40b29b616f184186872e7d7bf6f7a051b8769fabfdfee4
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Cache-Control: private
Content-Type: font/x-woff
Last-Modified: Wed, 16 Mar 2022 16:28:13 GMT
Accept-Ranges: bytes
ETag: "693370d55239d81:0"
Content-Security-Policy: default-src 'self' https: 'unsafe-inline' 'unsafe-eval' ;frame-ancestors 'self' https://manager.agilitycms.com *.scotiabank.com https://1.a79ab95c1589a13f8a4cab612bc71f9f7.com https://1.b406929acabac9b095f124c81bdfcf57f.com https://1.c81358859121583b7adf2ace89cb39f44.com;script-src 'self' 'unsafe-eval' 'unsafe-inline' googletagmanager.com facebook.net google-analytics.com *.googleapis.com licdn.com cloudflare.com Youtube.com Azureedge.net Doubleclick.net Clicktale.net Demdex.net Amazon-adsystem.com c.amazon-adsystem.com https://connect.facebook.net https://p.adsymptotic.com https://static.hotjar.com https://www.google-analytics.com cdnssl.clicktale.net https://script.hotjar.com jquery.com agilitycms.com *.msecnd.net aspnetcdn.com assets.adobedtm.com www.googletagmanager.com scotiabankfiles.azureedge.net snap.licdn.com *.google.com *.google.com.mx *.google.ca *.gstatic.com *.pages09.net *.scotiabank.com *.contentsquare.net *.contentsquare.com *.we-stats.com googleoptimize.com www.scotiabank.com.mx;worker-src blob: 'self';img-src 'self' *.clicktale.net *.agilitycms.com *.azureedge.net *.google.com googletagmanager.com facebook.net google-analytics.com *.googleapis.com licdn.com cloudflare.com Youtube.com Azureedge.net Doubleclick.net Clicktale.net Demdex.net Amazon-adsystem.com Hotjar.com jquery.com agilitycms.com *.msecnd.net aspnetcdn.com assets.adobedtm.com cm.everesttech.net somniture.scotiabank.com dpm.demdex.net www.google-analytics.com www.facebook.com https://www.google.com.br https://px.ads.linkedin.com stats.g.doubleclick.net https://p.adsymptotic.com *.google.com *.google.com.mx *.google.ca *.gstatic.com *.pages09.net *.scotiabank.com *.contentsquare.net *.contentsquare.com googleoptimize.com www.scotiabank.com.mx;connect-src 'self' https: wss: 'unsafe-inline' 'unsafe-eval' googletagmanager.com facebook.net google-analytics.com *.googleapis.com licdn.com cloudflare.com Youtube.com Azureedge.net Doubleclick.net Clicktale.net Demdex.net Amazon-adsystem.com Hotjar.com jquery.com agilitycms.com *.msecnd.net aspnetcdn.com *.google.com *.google.com.mx *.google.ca *.gstatic.com *.pages09.net *.scotiabank.com *.contentsquare.net *.contentsquare.com googleoptimize.com www.scotiabank.com.mx;
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
strict-transport-security: max-age=31536000
x-xss-protection: 1;mode=block
x-permitted-cross-domain-policies: master-only
X-Powered-By: ASP.NET
Content-Length: 13920
Date: Fri, 02 Dec 2022 14:07:02 GMT
Connection: keep-alive
Set-Cookie: Scotiabank Mexico_Language=es-mx; path=/; secure; HttpOnly
ApplicationGatewayAffinity=f1b9e12dc673414574b20afe9568b696905fe1fcf9fa7024ec6e7de7d750a7f2;Path=/;Domain=www.scotiabank.com.mx
ApplicationGatewayAffinityCORS=f1b9e12dc673414574b20afe9568b696905fe1fcf9fa7024ec6e7de7d750a7f2;Path=/;Domain=www.scotiabank.com.mx;SameSite=None;Secure
www.scotiabank.com.mx/Common/Fonts/Scotia_W_Bd.woff
104.110.14.233200 OK 14 kB URL HTTP/1.1 www.scotiabank.com.mx/Common/Fonts/Scotia_W_Bd.woff
IP 104.110.14.233:0
File type Web Open Font Format, TrueType, length 14172, version 1.0\012- data
Hash ce3923f43563a0bbe4914bcf5d36fcb5
8807c3bff85696ac831ab5d8a1be6b6854411d4d
e37584e9b32f0299ea0e9997ca2faf5199658dfc23a97e6b451a9dccacb680a9
Analyzer Verdict Alert urlquery Phishing - Scotiabank
GET /Common/Fonts/Scotia_W_Bd.woff HTTP/1.1
Host: www.scotiabank.com.mx
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.scotiabank.com.mx/
Connection: keep-alive
Cookie: ApplicationGatewayAffinity=c9114da36b3f1ca57d40b29b616f184186872e7d7bf6f7a051b8769fabfdfee4; ak_bmsc=4B911A640E49A10E2B3C2D84C9D733EF~000000000000000000000000000000~YAAQzE0kFyIvO3WEAQAA/3kp0xE6ON6PvPaaunfcJ7aOKgICr9Y/TC6s+wCJK47D/W+H/Jw/KtAv9/8zumzPK2OPXPyJluYRjWiecg4iVCcC3QYEgA/EvmU1yJiJ/aPKRoBcs9F3gH6lTeOzRjdUla5GuTL/YJYKBKIW8UvIOcGeGl5S57OhfqnOt17GFPGJkd1TEEBsBWf2hajYvbYlE+Gk9znqwH0A+oqL+jZqhGp/WTN7CI1jC0KsOlpuWx8DXaaq5uB+PdLuovEFI6JbczKHnJWSqM6QlSs1Lvg1zh5r+PbzNZZS71oKQxBtEy+jrTYJ/RaiO0/H1XjS32ujY2VkLI/duTX43LIIg7jx9p2IxLJnNtyOCzSr1OTXzQfR56wUcahD; Scotiabank Mexico_Language=es-mx; ASP.NET_SessionId=23mn1eqqbwlm3fcsfhs01qss; ApplicationGatewayAffinityCORS=c9114da36b3f1ca57d40b29b616f184186872e7d7bf6f7a051b8769fabfdfee4
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Cache-Control: private
Content-Type: font/x-woff
Last-Modified: Wed, 16 Mar 2022 16:28:13 GMT
Accept-Ranges: bytes
ETag: "32bd6fd55239d81:0"
Content-Security-Policy: default-src 'self' https: 'unsafe-inline' 'unsafe-eval' ;frame-ancestors 'self' https://manager.agilitycms.com *.scotiabank.com https://1.a79ab95c1589a13f8a4cab612bc71f9f7.com https://1.b406929acabac9b095f124c81bdfcf57f.com https://1.c81358859121583b7adf2ace89cb39f44.com;script-src 'self' 'unsafe-eval' 'unsafe-inline' googletagmanager.com facebook.net google-analytics.com *.googleapis.com licdn.com cloudflare.com Youtube.com Azureedge.net Doubleclick.net Clicktale.net Demdex.net Amazon-adsystem.com c.amazon-adsystem.com https://connect.facebook.net https://p.adsymptotic.com https://static.hotjar.com https://www.google-analytics.com cdnssl.clicktale.net https://script.hotjar.com jquery.com agilitycms.com *.msecnd.net aspnetcdn.com assets.adobedtm.com www.googletagmanager.com scotiabankfiles.azureedge.net snap.licdn.com *.google.com *.google.com.mx *.google.ca *.gstatic.com *.pages09.net *.scotiabank.com *.contentsquare.net *.contentsquare.com *.we-stats.com googleoptimize.com www.scotiabank.com.mx;worker-src blob: 'self';img-src 'self' *.clicktale.net *.agilitycms.com *.azureedge.net *.google.com googletagmanager.com facebook.net google-analytics.com *.googleapis.com licdn.com cloudflare.com Youtube.com Azureedge.net Doubleclick.net Clicktale.net Demdex.net Amazon-adsystem.com Hotjar.com jquery.com agilitycms.com *.msecnd.net aspnetcdn.com assets.adobedtm.com cm.everesttech.net somniture.scotiabank.com dpm.demdex.net www.google-analytics.com www.facebook.com https://www.google.com.br https://px.ads.linkedin.com stats.g.doubleclick.net https://p.adsymptotic.com *.google.com *.google.com.mx *.google.ca *.gstatic.com *.pages09.net *.scotiabank.com *.contentsquare.net *.contentsquare.com googleoptimize.com www.scotiabank.com.mx;connect-src 'self' https: wss: 'unsafe-inline' 'unsafe-eval' googletagmanager.com facebook.net google-analytics.com *.googleapis.com licdn.com cloudflare.com Youtube.com Azureedge.net Doubleclick.net Clicktale.net Demdex.net Amazon-adsystem.com Hotjar.com jquery.com agilitycms.com *.msecnd.net aspnetcdn.com *.google.com *.google.com.mx *.google.ca *.gstatic.com *.pages09.net *.scotiabank.com *.contentsquare.net *.contentsquare.com googleoptimize.com www.scotiabank.com.mx;
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
strict-transport-security: max-age=31536000
x-xss-protection: 1;mode=block
x-permitted-cross-domain-policies: master-only
X-Powered-By: ASP.NET
Content-Length: 14172
Date: Fri, 02 Dec 2022 14:07:02 GMT
Connection: keep-alive
Set-Cookie: Scotiabank Mexico_Language=es-mx; path=/; secure; HttpOnly
ApplicationGatewayAffinity=c28c12eba52fb03f677b1fa90653301608371c336781d725ecd7a09111ecd389;Path=/;Domain=www.scotiabank.com.mx
ApplicationGatewayAffinityCORS=c28c12eba52fb03f677b1fa90653301608371c336781d725ecd7a09111ecd389;Path=/;Domain=www.scotiabank.com.mx;SameSite=None;Secure
www.scotiabank.com.mx/Styles/Redesign/icons.css
104.110.14.233200 OK 2.0 kB URL HTTP/1.1 www.scotiabank.com.mx/Styles/Redesign/icons.css
IP 104.110.14.233:0
File type Unicode text, UTF-8 (with BOM) text, with very long lines (337), with CRLF line terminators
Hash e833f0f1a7a5871c3e188c2d6fa1c541
f2c6d630ed1f8568a99277b96c34b5eb0de52670
3a6681de0343f3af1f5f3942ffefe4c4a7bfbef3621cce28aaaeb653120744d3
GET /Styles/Redesign/icons.css HTTP/1.1
Host: www.scotiabank.com.mx
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.scotiabank.com.mx/
Connection: keep-alive
Cookie: ApplicationGatewayAffinity=c9114da36b3f1ca57d40b29b616f184186872e7d7bf6f7a051b8769fabfdfee4; ak_bmsc=4B911A640E49A10E2B3C2D84C9D733EF~000000000000000000000000000000~YAAQzE0kFyIvO3WEAQAA/3kp0xE6ON6PvPaaunfcJ7aOKgICr9Y/TC6s+wCJK47D/W+H/Jw/KtAv9/8zumzPK2OPXPyJluYRjWiecg4iVCcC3QYEgA/EvmU1yJiJ/aPKRoBcs9F3gH6lTeOzRjdUla5GuTL/YJYKBKIW8UvIOcGeGl5S57OhfqnOt17GFPGJkd1TEEBsBWf2hajYvbYlE+Gk9znqwH0A+oqL+jZqhGp/WTN7CI1jC0KsOlpuWx8DXaaq5uB+PdLuovEFI6JbczKHnJWSqM6QlSs1Lvg1zh5r+PbzNZZS71oKQxBtEy+jrTYJ/RaiO0/H1XjS32ujY2VkLI/duTX43LIIg7jx9p2IxLJnNtyOCzSr1OTXzQfR56wUcahD; Scotiabank Mexico_Language=es-mx; ASP.NET_SessionId=23mn1eqqbwlm3fcsfhs01qss; ApplicationGatewayAffinityCORS=c9114da36b3f1ca57d40b29b616f184186872e7d7bf6f7a051b8769fabfdfee4
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Cache-Control: private
Content-Type: text/css
Last-Modified: Wed, 16 Mar 2022 16:28:14 GMT
Accept-Ranges: bytes
ETag: "3f90c1d55239d81:0"
Content-Security-Policy: default-src 'self' https: 'unsafe-inline' 'unsafe-eval' ;frame-ancestors 'self' https://manager.agilitycms.com *.scotiabank.com https://1.a79ab95c1589a13f8a4cab612bc71f9f7.com https://1.b406929acabac9b095f124c81bdfcf57f.com https://1.c81358859121583b7adf2ace89cb39f44.com;script-src 'self' 'unsafe-eval' 'unsafe-inline' googletagmanager.com facebook.net google-analytics.com *.googleapis.com licdn.com cloudflare.com Youtube.com Azureedge.net Doubleclick.net Clicktale.net Demdex.net Amazon-adsystem.com c.amazon-adsystem.com https://connect.facebook.net https://p.adsymptotic.com https://static.hotjar.com https://www.google-analytics.com cdnssl.clicktale.net https://script.hotjar.com jquery.com agilitycms.com *.msecnd.net aspnetcdn.com assets.adobedtm.com www.googletagmanager.com scotiabankfiles.azureedge.net snap.licdn.com *.google.com *.google.com.mx *.google.ca *.gstatic.com *.pages09.net *.scotiabank.com *.contentsquare.net *.contentsquare.com *.we-stats.com googleoptimize.com www.scotiabank.com.mx;worker-src blob: 'self';img-src 'self' *.clicktale.net *.agilitycms.com *.azureedge.net *.google.com googletagmanager.com facebook.net google-analytics.com *.googleapis.com licdn.com cloudflare.com Youtube.com Azureedge.net Doubleclick.net Clicktale.net Demdex.net Amazon-adsystem.com Hotjar.com jquery.com agilitycms.com *.msecnd.net aspnetcdn.com assets.adobedtm.com cm.everesttech.net somniture.scotiabank.com dpm.demdex.net www.google-analytics.com www.facebook.com https://www.google.com.br https://px.ads.linkedin.com stats.g.doubleclick.net https://p.adsymptotic.com *.google.com *.google.com.mx *.google.ca *.gstatic.com *.pages09.net *.scotiabank.com *.contentsquare.net *.contentsquare.com googleoptimize.com www.scotiabank.com.mx;connect-src 'self' https: wss: 'unsafe-inline' 'unsafe-eval' googletagmanager.com facebook.net google-analytics.com *.googleapis.com licdn.com cloudflare.com Youtube.com Azureedge.net Doubleclick.net Clicktale.net Demdex.net Amazon-adsystem.com Hotjar.com jquery.com agilitycms.com *.msecnd.net aspnetcdn.com *.google.com *.google.com.mx *.google.ca *.gstatic.com *.pages09.net *.scotiabank.com *.contentsquare.net *.contentsquare.com googleoptimize.com www.scotiabank.com.mx;
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
strict-transport-security: max-age=31536000
x-xss-protection: 1;mode=block
x-permitted-cross-domain-policies: master-only
X-Powered-By: ASP.NET
Vary: Accept-Encoding
Content-Encoding: gzip
Date: Fri, 02 Dec 2022 14:07:02 GMT
Content-Length: 1973
Connection: keep-alive
Set-Cookie: Scotiabank Mexico_Language=es-mx; path=/; secure; HttpOnly
www.scotiabank.com.mx/Common/Fonts/Frutiger-Roman.woff
104.110.14.233200 OK 14 kB URL HTTP/1.1 www.scotiabank.com.mx/Common/Fonts/Frutiger-Roman.woff
IP 104.110.14.233:0
File type Web Open Font Format, CFF, length 14036, version 0.0\012- data
Hash 937cf27679cc71aeed96922893cd91d1
e4524a99598630ef64389bd3d1f1629352d1142b
8b0c8084ec9ac519b94d1bade184fe31be15115b88a8cdb9d46db01aa81cbdb1
Analyzer Verdict Alert urlquery Phishing - Scotiabank
GET /Common/Fonts/Frutiger-Roman.woff HTTP/1.1
Host: www.scotiabank.com.mx
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.scotiabank.com.mx/
Connection: keep-alive
Cookie: ApplicationGatewayAffinity=c9114da36b3f1ca57d40b29b616f184186872e7d7bf6f7a051b8769fabfdfee4; ak_bmsc=4B911A640E49A10E2B3C2D84C9D733EF~000000000000000000000000000000~YAAQzE0kFyIvO3WEAQAA/3kp0xE6ON6PvPaaunfcJ7aOKgICr9Y/TC6s+wCJK47D/W+H/Jw/KtAv9/8zumzPK2OPXPyJluYRjWiecg4iVCcC3QYEgA/EvmU1yJiJ/aPKRoBcs9F3gH6lTeOzRjdUla5GuTL/YJYKBKIW8UvIOcGeGl5S57OhfqnOt17GFPGJkd1TEEBsBWf2hajYvbYlE+Gk9znqwH0A+oqL+jZqhGp/WTN7CI1jC0KsOlpuWx8DXaaq5uB+PdLuovEFI6JbczKHnJWSqM6QlSs1Lvg1zh5r+PbzNZZS71oKQxBtEy+jrTYJ/RaiO0/H1XjS32ujY2VkLI/duTX43LIIg7jx9p2IxLJnNtyOCzSr1OTXzQfR56wUcahD; Scotiabank Mexico_Language=es-mx; ASP.NET_SessionId=23mn1eqqbwlm3fcsfhs01qss; ApplicationGatewayAffinityCORS=c9114da36b3f1ca57d40b29b616f184186872e7d7bf6f7a051b8769fabfdfee4
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Cache-Control: private
Content-Type: font/x-woff
Last-Modified: Wed, 16 Mar 2022 16:28:13 GMT
Accept-Ranges: bytes
ETag: "32bd6fd55239d81:0"
Content-Security-Policy: default-src 'self' https: 'unsafe-inline' 'unsafe-eval' ;frame-ancestors 'self' https://manager.agilitycms.com *.scotiabank.com https://1.a79ab95c1589a13f8a4cab612bc71f9f7.com https://1.b406929acabac9b095f124c81bdfcf57f.com https://1.c81358859121583b7adf2ace89cb39f44.com;script-src 'self' 'unsafe-eval' 'unsafe-inline' googletagmanager.com facebook.net google-analytics.com *.googleapis.com licdn.com cloudflare.com Youtube.com Azureedge.net Doubleclick.net Clicktale.net Demdex.net Amazon-adsystem.com c.amazon-adsystem.com https://connect.facebook.net https://p.adsymptotic.com https://static.hotjar.com https://www.google-analytics.com cdnssl.clicktale.net https://script.hotjar.com jquery.com agilitycms.com *.msecnd.net aspnetcdn.com assets.adobedtm.com www.googletagmanager.com scotiabankfiles.azureedge.net snap.licdn.com *.google.com *.google.com.mx *.google.ca *.gstatic.com *.pages09.net *.scotiabank.com *.contentsquare.net *.contentsquare.com *.we-stats.com googleoptimize.com www.scotiabank.com.mx;worker-src blob: 'self';img-src 'self' *.clicktale.net *.agilitycms.com *.azureedge.net *.google.com googletagmanager.com facebook.net google-analytics.com *.googleapis.com licdn.com cloudflare.com Youtube.com Azureedge.net Doubleclick.net Clicktale.net Demdex.net Amazon-adsystem.com Hotjar.com jquery.com agilitycms.com *.msecnd.net aspnetcdn.com assets.adobedtm.com cm.everesttech.net somniture.scotiabank.com dpm.demdex.net www.google-analytics.com www.facebook.com https://www.google.com.br https://px.ads.linkedin.com stats.g.doubleclick.net https://p.adsymptotic.com *.google.com *.google.com.mx *.google.ca *.gstatic.com *.pages09.net *.scotiabank.com *.contentsquare.net *.contentsquare.com googleoptimize.com www.scotiabank.com.mx;connect-src 'self' https: wss: 'unsafe-inline' 'unsafe-eval' googletagmanager.com facebook.net google-analytics.com *.googleapis.com licdn.com cloudflare.com Youtube.com Azureedge.net Doubleclick.net Clicktale.net Demdex.net Amazon-adsystem.com Hotjar.com jquery.com agilitycms.com *.msecnd.net aspnetcdn.com *.google.com *.google.com.mx *.google.ca *.gstatic.com *.pages09.net *.scotiabank.com *.contentsquare.net *.contentsquare.com googleoptimize.com www.scotiabank.com.mx;
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
strict-transport-security: max-age=31536000
x-xss-protection: 1;mode=block
x-permitted-cross-domain-policies: master-only
X-Powered-By: ASP.NET
Content-Length: 14036
Date: Fri, 02 Dec 2022 14:07:02 GMT
Connection: keep-alive
Set-Cookie: Scotiabank Mexico_Language=es-mx; path=/; secure; HttpOnly
ApplicationGatewayAffinity=c28c12eba52fb03f677b1fa90653301608371c336781d725ecd7a09111ecd389;Path=/;Domain=www.scotiabank.com.mx
ApplicationGatewayAffinityCORS=c28c12eba52fb03f677b1fa90653301608371c336781d725ecd7a09111ecd389;Path=/;Domain=www.scotiabank.com.mx;SameSite=None;Secure
scotiabankfiles.azureedge.net/scotia-bank-mexico/digital-factory/main.css
152.199.19.161200 OK 9.3 kB URL HTTP/2 scotiabankfiles.azureedge.net/scotia-bank-mexico/digital-factory/main.css
IP 152.199.19.161:0
File type ASCII text, with CRLF line terminators
Hash 780958e0724f41dd5361b4f74c6555a8
65b78cc0bda5c4df7b95ff160fd751ddca8e5253
74f87ed5206fa81d64d20cfe2a446139b6cecb230155d722eb452a08fbace17a
GET /scotia-bank-mexico/digital-factory/main.css HTTP/1.1
Host: scotiabankfiles.azureedge.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.scotiabank.com.mx/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-encoding: gzip
accept-ranges: bytes
access-control-allow-origin: *
access-control-expose-headers: Request-Context
cache-control: public, max-age=1800, s-maxage=1800
content-security-policy: default-src https: wss: data: blob: 'unsafe-eval' 'unsafe-inline' *; object-src 'none';
content-type: text/css
date: Fri, 02 Dec 2022 14:07:01 GMT
expires: Fri, 02 Dec 2022 14:37:03 GMT
last-modified: Thu, 10 Nov 2022 20:58:57 GMT
request-context: appId=cid-v1:b6356dc1-e87f-411b-9bf6-6a5f0308e7de
server: Microsoft-IIS/10.0
surrogate-key: scotia-bank-mexico scotia-bank-mexico-digital-factory-main.css
vary: Accept-Encoding
x-aspnetmvc-version: 5.2
x-content-type-options: nosniff
x-frame-options: SELF
x-ms-blob-cache-control: public, max-age=1800, s-maxage=1800
x-xss-protection: 1; mode=block
content-length: 9274
X-Firefox-Spdy: h2
scotiabankfiles.azureedge.net/scotia-bank-mexico/digital-factory/aam/dil.js
152.199.19.161200 OK 11 kB URL HTTP/2 scotiabankfiles.azureedge.net/scotia-bank-mexico/digital-factory/aam/dil.js
IP 152.199.19.161:0
File type ASCII text, with very long lines (34055)
Hash 38bbde4eb68b6a5b30ac48dfd5cc6c13
eaeabc279467b6bafcdc6d95c8ead2553a258be5
0a44cfb80a06939106016508ea747e2987cc2915d2208e072a913b52f2d2fc43
GET /scotia-bank-mexico/digital-factory/aam/dil.js HTTP/1.1
Host: scotiabankfiles.azureedge.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.scotiabank.com.mx/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-encoding: gzip
accept-ranges: bytes
access-control-allow-origin: *
access-control-expose-headers: Request-Context
cache-control: public, max-age=1800, s-maxage=1800
content-security-policy: default-src https: wss: data: blob: 'unsafe-eval' 'unsafe-inline' *; object-src 'none';
content-type: text/javascript
date: Fri, 02 Dec 2022 14:07:02 GMT
expires: Fri, 02 Dec 2022 14:37:02 GMT
last-modified: Fri, 04 Oct 2019 15:35:08 GMT
request-context: appId=cid-v1:b6356dc1-e87f-411b-9bf6-6a5f0308e7de
server: Microsoft-IIS/10.0
surrogate-key: scotia-bank-mexico scotia-bank-mexico-digital-factory-aam-dil.js
vary: Accept-Encoding
x-aspnet-version: 4.0.30319
x-aspnetmvc-version: 5.2
x-content-type-options: nosniff
x-frame-options: SELF
x-ms-blob-cache-control: public, max-age=1800, s-maxage=1800
x-xss-protection: 1; mode=block
content-length: 11395
X-Firefox-Spdy: h2
scotiabankfiles.azureedge.net/scotia-bank-mexico/GlobalStyles.css
152.199.19.161200 OK 1.2 kB URL HTTP/2 scotiabankfiles.azureedge.net/scotia-bank-mexico/GlobalStyles.css
IP 152.199.19.161:0
File type Unicode text, UTF-8 text, with CRLF line terminators
Hash 015bb7e22337f495f53c79537a18b408
fc8ce9ea0551cf0d7fa05f4ca15256817cece284
fba5f6ff1d9cfa3c7bde86fb644ba9f541c5f395fb27ebffadf81548b784c66c
GET /scotia-bank-mexico/GlobalStyles.css HTTP/1.1
Host: scotiabankfiles.azureedge.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.scotiabank.com.mx/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-encoding: gzip
accept-ranges: bytes
access-control-allow-origin: *
access-control-expose-headers: Request-Context
cache-control: public, max-age=1800, s-maxage=1800
content-security-policy: default-src https: wss: data: blob: 'unsafe-eval' 'unsafe-inline' *; object-src 'none';
content-type: text/css
date: Fri, 02 Dec 2022 14:07:01 GMT
expires: Fri, 02 Dec 2022 14:37:03 GMT
last-modified: Thu, 02 Jun 2016 15:45:56 GMT
request-context: appId=cid-v1:b6356dc1-e87f-411b-9bf6-6a5f0308e7de
server: Microsoft-IIS/10.0
surrogate-key: scotia-bank-mexico scotia-bank-mexico-globalstyles.css
vary: Accept-Encoding
x-aspnet-version: 4.0.30319
x-aspnetmvc-version: 5.2
x-content-type-options: nosniff
x-frame-options: SELF
x-ms-blob-cache-control: public, max-age=1800, s-maxage=1800
x-xss-protection: 1; mode=block
content-length: 1199
X-Firefox-Spdy: h2
scotiabankfiles.azureedge.net/scotia-bank-mexico/arrow_r.svg
152.199.19.161200 OK 258 B URL HTTP/2 scotiabankfiles.azureedge.net/scotia-bank-mexico/arrow_r.svg
IP 152.199.19.161:0
File type SVG Scalable Vector Graphics image\012- , ASCII text
Hash ea9d51c441c03b187de5a647c570dc99
aa718f89419064f06d25df05b5ada617f179ef26
c94b623045b728dd9cd603736c120a8c48ccf9dbf0ca61b9272686f4697a2876
Analyzer Verdict Alert urlquery Phishing - Scotiabank
GET /scotia-bank-mexico/arrow_r.svg HTTP/1.1
Host: scotiabankfiles.azureedge.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.scotiabank.com.mx/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
access-control-expose-headers: Request-Context
cache-control: public, max-age=1800, s-maxage=1800
content-security-policy: default-src https: wss: data: blob: 'unsafe-eval' 'unsafe-inline' *; object-src 'none';
content-type: image/svg+xml
date: Fri, 02 Dec 2022 14:07:02 GMT
expires: Fri, 02 Dec 2022 14:37:02 GMT
last-modified: Thu, 11 Jul 2019 23:22:21 GMT
request-context: appId=cid-v1:b6356dc1-e87f-411b-9bf6-6a5f0308e7de
server: Microsoft-IIS/10.0
surrogate-key: scotia-bank-mexico scotia-bank-mexico-arrow_r.svg
x-aspnet-version: 4.0.30319
x-aspnetmvc-version: 5.2
x-content-type-options: nosniff
x-frame-options: SELF
x-ms-blob-cache-control: public, max-age=1800, s-maxage=1800
x-xss-protection: 1; mode=block
content-length: 258
X-Firefox-Spdy: h2
scotiabankfiles.azureedge.net/scotia-bank-mexico/Attachments/NewItems/logo_flying_s_20210630220618_0.png
152.199.19.161200 OK 8.6 kB URL HTTP/2 scotiabankfiles.azureedge.net/scotia-bank-mexico/Attachments/NewItems/logo_flying_s_20210630220618_0.png
IP 152.199.19.161:0
File type PNG image data, 93 x 103, 8-bit/color RGBA, non-interlaced\012- data
Hash 87e1c1b3f9c16b4e040f2b6b7883f728
c999e8fb4ce879ca3d2cee017e9c19d85574516e
49ab465ef1abd2cadc1570b1ac7af333a4c04933be9aefbc06cc9aecb1586526
Analyzer Verdict Alert urlquery Phishing - Scotiabank
GET /scotia-bank-mexico/Attachments/NewItems/logo_flying_s_20210630220618_0.png HTTP/1.1
Host: scotiabankfiles.azureedge.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.scotiabank.com.mx/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
access-control-expose-headers: Request-Context
cache-control: public, max-age=1800, s-maxage=1800
content-security-policy: default-src https: wss: data: blob: 'unsafe-eval' 'unsafe-inline' *; object-src 'none';
content-type: image/png
date: Fri, 02 Dec 2022 14:07:01 GMT
expires: Fri, 02 Dec 2022 14:37:03 GMT
last-modified: Wed, 30 Jun 2021 22:06:19 GMT
request-context: appId=cid-v1:b6356dc1-e87f-411b-9bf6-6a5f0308e7de
server: Microsoft-IIS/10.0
surrogate-key: scotia-bank-mexico scotia-bank-mexico-attachments-newitems-logo_flying_s_20210630220618_0.png
x-aspnet-version: 4.0.30319
x-aspnetmvc-version: 5.2
x-content-type-options: nosniff
x-frame-options: SELF
x-ms-blob-cache-control: public, max-age=1800, s-maxage=1800
x-xss-protection: 1; mode=block
content-length: 8584
X-Firefox-Spdy: h2
www.scotiabank.com.mx/akam/13/220d86df
104.110.14.233200 OK 8.8 kB URL HTTP/1.1 www.scotiabank.com.mx/akam/13/220d86df
IP 104.110.14.233:0
File type ASCII text, with very long lines (14360)
Hash 588eceedff69ec3710898b61378ce880
d1cc92f8181b106986f2f48059765da0743c765d
712a7f4026a6deb6d58be5b8a62aec75785b68db2f1c6b2f15f12e4c2668501b
GET /akam/13/220d86df HTTP/1.1
Host: www.scotiabank.com.mx
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.scotiabank.com.mx/
Connection: keep-alive
Cookie: ApplicationGatewayAffinity=c9114da36b3f1ca57d40b29b616f184186872e7d7bf6f7a051b8769fabfdfee4; ak_bmsc=4B911A640E49A10E2B3C2D84C9D733EF~000000000000000000000000000000~YAAQzE0kFyIvO3WEAQAA/3kp0xE6ON6PvPaaunfcJ7aOKgICr9Y/TC6s+wCJK47D/W+H/Jw/KtAv9/8zumzPK2OPXPyJluYRjWiecg4iVCcC3QYEgA/EvmU1yJiJ/aPKRoBcs9F3gH6lTeOzRjdUla5GuTL/YJYKBKIW8UvIOcGeGl5S57OhfqnOt17GFPGJkd1TEEBsBWf2hajYvbYlE+Gk9znqwH0A+oqL+jZqhGp/WTN7CI1jC0KsOlpuWx8DXaaq5uB+PdLuovEFI6JbczKHnJWSqM6QlSs1Lvg1zh5r+PbzNZZS71oKQxBtEy+jrTYJ/RaiO0/H1XjS32ujY2VkLI/duTX43LIIg7jx9p2IxLJnNtyOCzSr1OTXzQfR56wUcahD; Scotiabank Mexico_Language=es-mx; ASP.NET_SessionId=23mn1eqqbwlm3fcsfhs01qss; ApplicationGatewayAffinityCORS=c9114da36b3f1ca57d40b29b616f184186872e7d7bf6f7a051b8769fabfdfee4
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Last-Modified: Wed, 09 Feb 2022 15:07:46 GMT
ETag: "ef559da08d5bc9a4e50569c3431a6a79af898857b60fead9ce13c52a198e76f3"
Content-Type: application/javascript
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 8796
Expires: Fri, 02 Dec 2022 14:07:02 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Fri, 02 Dec 2022 14:07:02 GMT
Connection: keep-alive
Set-Cookie: ak_bmsc=4B911A640E49A10E2B3C2D84C9D733EF~000000000000000000000000000000~YAAQzE0kFyovO3WEAQAABn0p0xEF/TpnmQLp+Z8Cy/XVOLiPYkFGlqZpNXAh25m6wkwaKT8QJRI65Lil4n40F6uzP81kFlXhjuGMpg0gllFB4QXBIHvr1eqYsj93JnCiXiX6mstm6IiO6pgRTzVotrfiPbpYAToEYSlBv+kgoIpgCvz5MqfH4Fg78T5QTfwB1c8j9piRnaECIkL/iY1Hz5SyQasJa2qoA+0gXic+r2tFd7XuW8JCkqzaGAK5sju4Dff7z5so7u6Qo27IGFwYJOXENYt4KIxDNjx1lSsjxlfhAon+ROMjhnrSLAeZ5XHMBVTTor0SoMFUVTHNprq0X4F2DkBuozW6uRI8bHpJc3ORlkLIeNqjCN5421DPJla4KoDjntF7y+MJXnlCTjwfa7UiLv+SvM8jB9z51S7k8XsvsIPCZN7xRqCU3RjbyRNw8LtE8YAm4g0ABs5yEdu+MLjJG5va3iSI6eU=; Domain=.scotiabank.com.mx; Path=/; Expires=Fri, 02 Dec 2022 16:07:00 GMT; Max-Age=7198; HttpOnly
scotiabankfiles.azureedge.net/scotia-bank-mexico/digital-factory/aam/visitorapi.min.js
152.199.19.161200 OK 20 kB URL HTTP/2 scotiabankfiles.azureedge.net/scotia-bank-mexico/digital-factory/aam/visitorapi.min.js
IP 152.199.19.161:0
File type Unicode text, UTF-8 text, with very long lines (31996)
Hash 586b0397f7c67d8b7ec691f21d474ac7
3371beee3fd311e3c67103383e33481c95599cb0
35952367e13281dcd91919f219d93aa58eccedce76929799422fea80748c6b30
GET /scotia-bank-mexico/digital-factory/aam/visitorapi.min.js HTTP/1.1
Host: scotiabankfiles.azureedge.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.scotiabank.com.mx/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-encoding: gzip
accept-ranges: bytes
access-control-allow-origin: *
access-control-expose-headers: Request-Context
cache-control: public, max-age=1800, s-maxage=1800
content-security-policy: default-src https: wss: data: blob: 'unsafe-eval' 'unsafe-inline' *; object-src 'none';
content-type: text/javascript
date: Fri, 02 Dec 2022 14:07:02 GMT
expires: Fri, 02 Dec 2022 14:37:02 GMT
last-modified: Fri, 04 Oct 2019 15:35:09 GMT
request-context: appId=cid-v1:b6356dc1-e87f-411b-9bf6-6a5f0308e7de
server: Microsoft-IIS/10.0
surrogate-key: scotia-bank-mexico scotia-bank-mexico-digital-factory-aam-visitorapi.min.js
vary: Accept-Encoding
x-aspnetmvc-version: 5.2
x-content-type-options: nosniff
x-frame-options: SELF
x-ms-blob-cache-control: public, max-age=1800, s-maxage=1800
x-xss-protection: 1; mode=block
content-length: 19562
X-Firefox-Spdy: h2
scotiabankfiles.azureedge.net/scotia-bank-mexico/Attachments/NewItems/LogoSBD_20210701043427_0.png
152.199.19.161200 OK 50 kB URL HTTP/2 scotiabankfiles.azureedge.net/scotia-bank-mexico/Attachments/NewItems/LogoSBD_20210701043427_0.png
IP 152.199.19.161:0
File type PNG image data, 3288 x 1060, 8-bit/color RGBA, non-interlaced\012- data
Hash 3f201f69d40922ebe0083c8d3057358b
e2d42c436a518aeb2c3a979bc6afbf31c5c737e2
19ea3b3091c459ae14e2f703d1a77345f55bf7cd3fb8aa463698da4b2040720b
GET /scotia-bank-mexico/Attachments/NewItems/LogoSBD_20210701043427_0.png HTTP/1.1
Host: scotiabankfiles.azureedge.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.scotiabank.com.mx/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
access-control-expose-headers: Request-Context
cache-control: public, max-age=1800, s-maxage=1800
content-security-policy: default-src https: wss: data: blob: 'unsafe-eval' 'unsafe-inline' *; object-src 'none';
content-type: image/png
date: Fri, 02 Dec 2022 14:07:01 GMT
expires: Fri, 02 Dec 2022 14:37:03 GMT
last-modified: Thu, 01 Jul 2021 04:34:27 GMT
request-context: appId=cid-v1:b6356dc1-e87f-411b-9bf6-6a5f0308e7de
server: Microsoft-IIS/10.0
surrogate-key: scotia-bank-mexico scotia-bank-mexico-attachments-newitems-logosbd_20210701043427_0.png
x-aspnet-version: 4.0.30319
x-aspnetmvc-version: 5.2
x-content-type-options: nosniff
x-frame-options: SELF
x-ms-blob-cache-control: public, max-age=1800, s-maxage=1800
x-xss-protection: 1; mode=block
content-length: 49652
X-Firefox-Spdy: h2
www.scotiabank.com.mx/bundles/JqueryJswipeJs?v=LlODGJrfR4NpavRuY2NOZR9t7Q92tmbwyHH1K1F-Pi81
104.110.14.233200 OK 20 kB URL HTTP/1.1 www.scotiabank.com.mx/bundles/JqueryJswipeJs?v=LlODGJrfR4NpavRuY2NOZR9t7Q92tmbwyHH1K1F-Pi81
IP 104.110.14.233:0
File type Unicode text, UTF-8 (with BOM) text, with very long lines (20342), with no line terminators
Hash 88ff3e7b91f7e79495bae0862c30615a
a35ab41c66293928742ba16d44dc49de70937e82
99731cc00b6e1b5cb7baa355eed3e0d8e21c3075cad12e0dff868cbce28f989c
Analyzer Verdict Alert urlquery Phishing - Scotiabank
GET /bundles/JqueryJswipeJs?v=LlODGJrfR4NpavRuY2NOZR9t7Q92tmbwyHH1K1F-Pi81 HTTP/1.1
Host: www.scotiabank.com.mx
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.scotiabank.com.mx/
Connection: keep-alive
Cookie: ApplicationGatewayAffinity=c9114da36b3f1ca57d40b29b616f184186872e7d7bf6f7a051b8769fabfdfee4; ak_bmsc=4B911A640E49A10E2B3C2D84C9D733EF~000000000000000000000000000000~YAAQzE0kFyIvO3WEAQAA/3kp0xE6ON6PvPaaunfcJ7aOKgICr9Y/TC6s+wCJK47D/W+H/Jw/KtAv9/8zumzPK2OPXPyJluYRjWiecg4iVCcC3QYEgA/EvmU1yJiJ/aPKRoBcs9F3gH6lTeOzRjdUla5GuTL/YJYKBKIW8UvIOcGeGl5S57OhfqnOt17GFPGJkd1TEEBsBWf2hajYvbYlE+Gk9znqwH0A+oqL+jZqhGp/WTN7CI1jC0KsOlpuWx8DXaaq5uB+PdLuovEFI6JbczKHnJWSqM6QlSs1Lvg1zh5r+PbzNZZS71oKQxBtEy+jrTYJ/RaiO0/H1XjS32ujY2VkLI/duTX43LIIg7jx9p2IxLJnNtyOCzSr1OTXzQfR56wUcahD; Scotiabank Mexico_Language=es-mx; ASP.NET_SessionId=23mn1eqqbwlm3fcsfhs01qss; ApplicationGatewayAffinityCORS=c9114da36b3f1ca57d40b29b616f184186872e7d7bf6f7a051b8769fabfdfee4
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Cache-Control: public, no-cache="Set-Cookie"
Content-Type: text/javascript; charset=utf-8
Expires: Sat, 02 Dec 2023 14:07:02 GMT
Last-Modified: Fri, 02 Dec 2022 14:07:02 GMT
Vary: User-Agent
Content-Security-Policy: default-src 'self' https: 'unsafe-inline' 'unsafe-eval' ;frame-ancestors 'self' https://manager.agilitycms.com *.scotiabank.com https://1.a79ab95c1589a13f8a4cab612bc71f9f7.com https://1.b406929acabac9b095f124c81bdfcf57f.com https://1.c81358859121583b7adf2ace89cb39f44.com;script-src 'self' 'unsafe-eval' 'unsafe-inline' googletagmanager.com facebook.net google-analytics.com *.googleapis.com licdn.com cloudflare.com Youtube.com Azureedge.net Doubleclick.net Clicktale.net Demdex.net Amazon-adsystem.com c.amazon-adsystem.com https://connect.facebook.net https://p.adsymptotic.com https://static.hotjar.com https://www.google-analytics.com cdnssl.clicktale.net https://script.hotjar.com jquery.com agilitycms.com *.msecnd.net aspnetcdn.com assets.adobedtm.com www.googletagmanager.com scotiabankfiles.azureedge.net snap.licdn.com *.google.com *.google.com.mx *.google.ca *.gstatic.com *.pages09.net *.scotiabank.com *.contentsquare.net *.contentsquare.com *.we-stats.com googleoptimize.com www.scotiabank.com.mx;worker-src blob: 'self';img-src 'self' *.clicktale.net *.agilitycms.com *.azureedge.net *.google.com googletagmanager.com facebook.net google-analytics.com *.googleapis.com licdn.com cloudflare.com Youtube.com Azureedge.net Doubleclick.net Clicktale.net Demdex.net Amazon-adsystem.com Hotjar.com jquery.com agilitycms.com *.msecnd.net aspnetcdn.com assets.adobedtm.com cm.everesttech.net somniture.scotiabank.com dpm.demdex.net www.google-analytics.com www.facebook.com https://www.google.com.br https://px.ads.linkedin.com stats.g.doubleclick.net https://p.adsymptotic.com *.google.com *.google.com.mx *.google.ca *.gstatic.com *.pages09.net *.scotiabank.com *.contentsquare.net *.contentsquare.com googleoptimize.com www.scotiabank.com.mx;connect-src 'self' https: wss: 'unsafe-inline' 'unsafe-eval' googletagmanager.com facebook.net google-analytics.com *.googleapis.com licdn.com cloudflare.com Youtube.com Azureedge.net Doubleclick.net Clicktale.net Demdex.net Amazon-adsystem.com Hotjar.com jquery.com agilitycms.com *.msecnd.net aspnetcdn.com *.google.com *.google.com.mx *.google.ca *.gstatic.com *.pages09.net *.scotiabank.com *.contentsquare.net *.contentsquare.com googleoptimize.com www.scotiabank.com.mx;
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
strict-transport-security: max-age=31536000
x-xss-protection: 1;mode=block
x-permitted-cross-domain-policies: master-only
X-Powered-By: ASP.NET
Content-Length: 20345
Date: Fri, 02 Dec 2022 14:07:02 GMT
Connection: keep-alive
Set-Cookie: Scotiabank Mexico_Language=es-mx; path=/; secure; HttpOnly
ApplicationGatewayAffinity=d9c98492d428103dcd9c3a1735b7bc3cedd679c8aa01e71ee0f81a95ebb53daf;Path=/;Domain=www.scotiabank.com.mx
ApplicationGatewayAffinityCORS=d9c98492d428103dcd9c3a1735b7bc3cedd679c8aa01e71ee0f81a95ebb53daf;Path=/;Domain=www.scotiabank.com.mx;SameSite=None;Secure
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash ecab83d593cc540b02689be5be7abc8a
81cda579b7b9b22332b85266b0126585f3d3f73f
d469c5adb69f261084b016f8e24edf8b69b62d9f930ca2d85cf35375e2303ecc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D469C5ADB69F261084B016F8E24EDF8B69B62D9F930CA2D85CF35375E2303ECC"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13218
Expires: Fri, 02 Dec 2022 17:47:20 GMT
Date: Fri, 02 Dec 2022 14:07:02 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash ecab83d593cc540b02689be5be7abc8a
81cda579b7b9b22332b85266b0126585f3d3f73f
d469c5adb69f261084b016f8e24edf8b69b62d9f930ca2d85cf35375e2303ecc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D469C5ADB69F261084B016F8E24EDF8B69B62D9F930CA2D85CF35375E2303ECC"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13218
Expires: Fri, 02 Dec 2022 17:47:20 GMT
Date: Fri, 02 Dec 2022 14:07:02 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash ecab83d593cc540b02689be5be7abc8a
81cda579b7b9b22332b85266b0126585f3d3f73f
d469c5adb69f261084b016f8e24edf8b69b62d9f930ca2d85cf35375e2303ecc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D469C5ADB69F261084B016F8E24EDF8B69B62D9F930CA2D85CF35375E2303ECC"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13218
Expires: Fri, 02 Dec 2022 17:47:20 GMT
Date: Fri, 02 Dec 2022 14:07:02 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash ecab83d593cc540b02689be5be7abc8a
81cda579b7b9b22332b85266b0126585f3d3f73f
d469c5adb69f261084b016f8e24edf8b69b62d9f930ca2d85cf35375e2303ecc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D469C5ADB69F261084B016F8E24EDF8B69B62D9F930CA2D85CF35375E2303ECC"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13218
Expires: Fri, 02 Dec 2022 17:47:20 GMT
Date: Fri, 02 Dec 2022 14:07:02 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash ecab83d593cc540b02689be5be7abc8a
81cda579b7b9b22332b85266b0126585f3d3f73f
d469c5adb69f261084b016f8e24edf8b69b62d9f930ca2d85cf35375e2303ecc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D469C5ADB69F261084B016F8E24EDF8B69B62D9F930CA2D85CF35375E2303ECC"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13218
Expires: Fri, 02 Dec 2022 17:47:20 GMT
Date: Fri, 02 Dec 2022 14:07:02 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F881a33ae-e81b-4603-85d9-a2242b17be66.jpeg
34.120.237.76200 OK 4.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F881a33ae-e81b-4603-85d9-a2242b17be66.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash cc0a257323f882caff067adb86d906e4
cedf2f21be7cd366bd46055b62b5513db3011dfc
c16a9296d5e840a468fef7fb2764b9f7d4b3131d7ade2ce4999de1eead5469e0
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F881a33ae-e81b-4603-85d9-a2242b17be66.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4803
x-amzn-requestid: ad2d9243-5e32-4faf-8ff3-b9abd3af1e89
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cb1_hEJJIAMF4Vg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6387d063-596f5833509112ee6cbedf54;Sampled=0
x-amzn-remapped-date: Wed, 30 Nov 2022 21:51:31 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: jM-fTqLsmU3c_gc9Wle-lvCwXelA9Sid9axtzJQDsfOHv23yUbKsBw==
via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 943c6a4d4ee43b18ee91634536f53eae.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Dec 2022 23:43:28 GMT
age: 51814
etag: "cedf2f21be7cd366bd46055b62b5513db3011dfc"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb582f62c-d1ce-4054-b87e-36be40dadfa4.jpeg
34.120.237.76200 OK 8.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb582f62c-d1ce-4054-b87e-36be40dadfa4.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 156e9ea97b774cbd8361072e4041b6c8
fc71ae3cae92ed6011904bb2367f23bf4e69fab4
58d953c19ebbbdfc3965bbe3f52308d4702deaf4d0c029f4674bcb862da138af
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb582f62c-d1ce-4054-b87e-36be40dadfa4.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8863
x-amzn-requestid: 798d014b-0f9c-4787-a676-8f5e8fae3d11
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cdG14HBNIAMFdWg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638851bf-7549feac6d476a8512676412;Sampled=0
x-amzn-remapped-date: Thu, 01 Dec 2022 07:03:27 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: cgj3fw3lpngosMNOK7cZUZO94T__4RTy_p7wa6rI62OOvhI5E9wMSw==
via: 1.1 2afae0d44e2540f472c0635ab62c232a.cloudfront.net (CloudFront), 1.1 324a68a6c25ee50d774953f3e15a611c.cloudfront.net (CloudFront), 1.1 google
date: Fri, 02 Dec 2022 13:09:50 GMT
age: 3432
etag: "fc71ae3cae92ed6011904bb2367f23bf4e69fab4"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F40b76495-d9ea-430e-9b62-92b639b122e0.jpeg
34.120.237.76200 OK 6.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F40b76495-d9ea-430e-9b62-92b639b122e0.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 58a28fc1cbcacdb07b3ca175281982b5
9bc47ee49fc070d0997e49a719bd9758685ad583
d3bfcf749c4652cb29f7c82a5d7ba940bd607f9060e49c1c40a112eb3e625bd9
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F40b76495-d9ea-430e-9b62-92b639b122e0.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6564
x-amzn-requestid: e2875cf3-3915-43a5-a724-4de2ca03de56
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cfGepHOiIAMFTFQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63891df7-5f7e2a3f609d54a609a12670;Sampled=0
x-amzn-remapped-date: Thu, 01 Dec 2022 21:34:47 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: mwGAEu-gPXY5Opwd972VbBA6l33dNk7bPFSyZmciaplQKj2ZuTkQSg==
via: 1.1 030fe0607711293dda988e571617a9f2.cloudfront.net (CloudFront), 1.1 d8792dbd3191bbe722eba5b536b979c8.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Dec 2022 21:47:56 GMT
age: 58746
etag: "9bc47ee49fc070d0997e49a719bd9758685ad583"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6edb00ee-3888-4974-ae1a-52ef18e62d0d.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6edb00ee-3888-4974-ae1a-52ef18e62d0d.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 1c80b8025242ddfcc816ec612456b99e
aa944d10fe4a44b790b01ef62edc0f85a6d558e3
a9f060bc15738a3fe257e0c81a29e4611a89c273bcbb2765ce856d4e854a5f1f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6edb00ee-3888-4974-ae1a-52ef18e62d0d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11402
x-amzn-requestid: 20c2c359-1e43-40c0-885d-1c90e76ea12b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cfGzJHu-IAMFbYA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63891e7a-1d89722e767daa014b174a39;Sampled=0
x-amzn-remapped-date: Thu, 01 Dec 2022 21:36:58 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: OJBnbjJB_kvPuJcePGnno3zI0CTWAzV-Osb2L1hPZZhlNYhFHWmLsA==
via: 1.1 f13aef0c4b52f6f681401f232d03eb68.cloudfront.net (CloudFront), 1.1 7e87179efaa9e3c316bd3d3a74cfded8.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Dec 2022 21:51:33 GMT
etag: "aa944d10fe4a44b790b01ef62edc0f85a6d558e3"
content-type: image/jpeg
age: 58529
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F683f066f-699d-4765-8f4f-33c72e1672e2.jpeg
34.120.237.76200 OK 6.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F683f066f-699d-4765-8f4f-33c72e1672e2.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b986f9fcbeca91ed5c8d58fbfaf47d19
6e6c8bd2bce144cc4da1cd7be375b046b60dca79
07a8938d2841f8c13bd646f4e79e41e46acd6463aa019cd70871b3741f12bb4f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F683f066f-699d-4765-8f4f-33c72e1672e2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6174
x-amzn-requestid: f78f1e9d-8c0c-495d-a862-61838f8297e8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cZ0iyH2WoAMFQdg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63870144-45442a8544259930564f685b;Sampled=0
x-amzn-remapped-date: Wed, 30 Nov 2022 07:07:48 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: QIOz71_Kr08pIIwOm2GUkWr421fO7-UyUI7LYld0JBaGnYQ0j3IDFg==
via: 1.1 eece508272520f70691e4eebdc5a6dea.cloudfront.net (CloudFront), 1.1 d6a002c70d55f415107618b0750d493c.cloudfront.net (CloudFront), 1.1 google
date: Fri, 02 Dec 2022 00:54:54 GMT
age: 47528
etag: "6e6c8bd2bce144cc4da1cd7be375b046b60dca79"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbb30f254-1327-487b-a297-00361bfd5c02.jpeg
34.120.237.76200 OK 7.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbb30f254-1327-487b-a297-00361bfd5c02.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash cd78aa69439c995167f32b8a41a1f4f6
d07d6145182f312f3ed86ecf96b4ffa175416fa0
3b08cf3fad31ee0cf3ee25abc2484fb4283543865a42dfc568b14f9856fd3bb5
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbb30f254-1327-487b-a297-00361bfd5c02.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7722
x-amzn-requestid: 8d7c4800-6c06-43ed-afa1-94840d42f591
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cfGy2Gr1IAMFWeQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63891e78-429ae3135d47e3b020c4c7a1;Sampled=0
x-amzn-remapped-date: Thu, 01 Dec 2022 21:36:56 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: Z8thSamrCRejcAcQEGAp4WpSMzMEvstuZtVpKAjiCH4dyJyf1yihBA==
via: 1.1 4f87745990545c1ac0195c157e1668f8.cloudfront.net (CloudFront), 1.1 f9d716a351f14a0ac1fac2449734849a.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Dec 2022 21:50:11 GMT
age: 58611
etag: "d07d6145182f312f3ed86ecf96b4ffa175416fa0"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
www.scotiabank.com.mx/Scripts/Redesign/Rotator.js
104.110.14.233200 OK 8.9 kB URL HTTP/1.1 www.scotiabank.com.mx/Scripts/Redesign/Rotator.js
IP 104.110.14.233:0
File type Unicode text, UTF-8 (with BOM) text, with CRLF line terminators
Hash cbe091c1e6fe3432c8bc66e1a514175c
3fcc42b019e7a564a82ca71c70822e3790b637f9
502a61f55aa8905978b29f9874b2fb7a4d6f0e7e739c8ee942171a87862b09c8
GET /Scripts/Redesign/Rotator.js HTTP/1.1
Host: www.scotiabank.com.mx
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.scotiabank.com.mx/
Connection: keep-alive
Cookie: ApplicationGatewayAffinity=c9114da36b3f1ca57d40b29b616f184186872e7d7bf6f7a051b8769fabfdfee4; ak_bmsc=4B911A640E49A10E2B3C2D84C9D733EF~000000000000000000000000000000~YAAQzE0kFyIvO3WEAQAA/3kp0xE6ON6PvPaaunfcJ7aOKgICr9Y/TC6s+wCJK47D/W+H/Jw/KtAv9/8zumzPK2OPXPyJluYRjWiecg4iVCcC3QYEgA/EvmU1yJiJ/aPKRoBcs9F3gH6lTeOzRjdUla5GuTL/YJYKBKIW8UvIOcGeGl5S57OhfqnOt17GFPGJkd1TEEBsBWf2hajYvbYlE+Gk9znqwH0A+oqL+jZqhGp/WTN7CI1jC0KsOlpuWx8DXaaq5uB+PdLuovEFI6JbczKHnJWSqM6QlSs1Lvg1zh5r+PbzNZZS71oKQxBtEy+jrTYJ/RaiO0/H1XjS32ujY2VkLI/duTX43LIIg7jx9p2IxLJnNtyOCzSr1OTXzQfR56wUcahD; Scotiabank Mexico_Language=es-mx; ASP.NET_SessionId=23mn1eqqbwlm3fcsfhs01qss; ApplicationGatewayAffinityCORS=c9114da36b3f1ca57d40b29b616f184186872e7d7bf6f7a051b8769fabfdfee4
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Cache-Control: private
Content-Type: application/javascript
Last-Modified: Wed, 16 Mar 2022 16:28:14 GMT
Accept-Ranges: bytes
ETag: "7296b6d55239d81:0"
Content-Security-Policy: default-src 'self' https: 'unsafe-inline' 'unsafe-eval' ;frame-ancestors 'self' https://manager.agilitycms.com *.scotiabank.com https://1.a79ab95c1589a13f8a4cab612bc71f9f7.com https://1.b406929acabac9b095f124c81bdfcf57f.com https://1.c81358859121583b7adf2ace89cb39f44.com;script-src 'self' 'unsafe-eval' 'unsafe-inline' googletagmanager.com facebook.net google-analytics.com *.googleapis.com licdn.com cloudflare.com Youtube.com Azureedge.net Doubleclick.net Clicktale.net Demdex.net Amazon-adsystem.com c.amazon-adsystem.com https://connect.facebook.net https://p.adsymptotic.com https://static.hotjar.com https://www.google-analytics.com cdnssl.clicktale.net https://script.hotjar.com jquery.com agilitycms.com *.msecnd.net aspnetcdn.com assets.adobedtm.com www.googletagmanager.com scotiabankfiles.azureedge.net snap.licdn.com *.google.com *.google.com.mx *.google.ca *.gstatic.com *.pages09.net *.scotiabank.com *.contentsquare.net *.contentsquare.com *.we-stats.com googleoptimize.com www.scotiabank.com.mx;worker-src blob: 'self';img-src 'self' *.clicktale.net *.agilitycms.com *.azureedge.net *.google.com googletagmanager.com facebook.net google-analytics.com *.googleapis.com licdn.com cloudflare.com Youtube.com Azureedge.net Doubleclick.net Clicktale.net Demdex.net Amazon-adsystem.com Hotjar.com jquery.com agilitycms.com *.msecnd.net aspnetcdn.com assets.adobedtm.com cm.everesttech.net somniture.scotiabank.com dpm.demdex.net www.google-analytics.com www.facebook.com https://www.google.com.br https://px.ads.linkedin.com stats.g.doubleclick.net https://p.adsymptotic.com *.google.com *.google.com.mx *.google.ca *.gstatic.com *.pages09.net *.scotiabank.com *.contentsquare.net *.contentsquare.com googleoptimize.com www.scotiabank.com.mx;connect-src 'self' https: wss: 'unsafe-inline' 'unsafe-eval' googletagmanager.com facebook.net google-analytics.com *.googleapis.com licdn.com cloudflare.com Youtube.com Azureedge.net Doubleclick.net Clicktale.net Demdex.net Amazon-adsystem.com Hotjar.com jquery.com agilitycms.com *.msecnd.net aspnetcdn.com *.google.com *.google.com.mx *.google.ca *.gstatic.com *.pages09.net *.scotiabank.com *.contentsquare.net *.contentsquare.com googleoptimize.com www.scotiabank.com.mx;
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
strict-transport-security: max-age=31536000
x-xss-protection: 1;mode=block
x-permitted-cross-domain-policies: master-only
X-Powered-By: ASP.NET
Content-Length: 8882
Date: Fri, 02 Dec 2022 14:07:02 GMT
Connection: keep-alive
Set-Cookie: Scotiabank Mexico_Language=es-mx; path=/; secure; HttpOnly
ApplicationGatewayAffinity=6bdd0c1d14605ee0d1a2402b64b2e5286242c84f352b12c939fbee8cd39772d8;Path=/;Domain=www.scotiabank.com.mx
ApplicationGatewayAffinityCORS=6bdd0c1d14605ee0d1a2402b64b2e5286242c84f352b12c939fbee8cd39772d8;Path=/;Domain=www.scotiabank.com.mx;SameSite=None;Secure
www.scotiabank.com.mx/Scripts/Redesign/TouchRotatorComponent.js
104.110.14.233200 OK 8.0 kB URL HTTP/1.1 www.scotiabank.com.mx/Scripts/Redesign/TouchRotatorComponent.js
IP 104.110.14.233:0
File type Unicode text, UTF-8 (with BOM) text, with CRLF line terminators
Hash 9513927a720e0cbe51f6221fb9beff93
c54d288f8e05ee425addef77be99ef6eeed99b4b
c93449a3bd09ea46f25e7a28235865e96e799a7aedd037160697a4c75f8c9afa
GET /Scripts/Redesign/TouchRotatorComponent.js HTTP/1.1
Host: www.scotiabank.com.mx
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.scotiabank.com.mx/
Connection: keep-alive
Cookie: ApplicationGatewayAffinity=c9114da36b3f1ca57d40b29b616f184186872e7d7bf6f7a051b8769fabfdfee4; ak_bmsc=4B911A640E49A10E2B3C2D84C9D733EF~000000000000000000000000000000~YAAQzE0kFyIvO3WEAQAA/3kp0xE6ON6PvPaaunfcJ7aOKgICr9Y/TC6s+wCJK47D/W+H/Jw/KtAv9/8zumzPK2OPXPyJluYRjWiecg4iVCcC3QYEgA/EvmU1yJiJ/aPKRoBcs9F3gH6lTeOzRjdUla5GuTL/YJYKBKIW8UvIOcGeGl5S57OhfqnOt17GFPGJkd1TEEBsBWf2hajYvbYlE+Gk9znqwH0A+oqL+jZqhGp/WTN7CI1jC0KsOlpuWx8DXaaq5uB+PdLuovEFI6JbczKHnJWSqM6QlSs1Lvg1zh5r+PbzNZZS71oKQxBtEy+jrTYJ/RaiO0/H1XjS32ujY2VkLI/duTX43LIIg7jx9p2IxLJnNtyOCzSr1OTXzQfR56wUcahD; Scotiabank Mexico_Language=es-mx; ASP.NET_SessionId=23mn1eqqbwlm3fcsfhs01qss; ApplicationGatewayAffinityCORS=c9114da36b3f1ca57d40b29b616f184186872e7d7bf6f7a051b8769fabfdfee4
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Cache-Control: private
Content-Type: application/javascript
Last-Modified: Wed, 16 Mar 2022 16:28:14 GMT
Accept-Ranges: bytes
ETag: "9beb6d55239d81:0"
Content-Security-Policy: default-src 'self' https: 'unsafe-inline' 'unsafe-eval' ;frame-ancestors 'self' https://manager.agilitycms.com *.scotiabank.com https://1.a79ab95c1589a13f8a4cab612bc71f9f7.com https://1.b406929acabac9b095f124c81bdfcf57f.com https://1.c81358859121583b7adf2ace89cb39f44.com;script-src 'self' 'unsafe-eval' 'unsafe-inline' googletagmanager.com facebook.net google-analytics.com *.googleapis.com licdn.com cloudflare.com Youtube.com Azureedge.net Doubleclick.net Clicktale.net Demdex.net Amazon-adsystem.com c.amazon-adsystem.com https://connect.facebook.net https://p.adsymptotic.com https://static.hotjar.com https://www.google-analytics.com cdnssl.clicktale.net https://script.hotjar.com jquery.com agilitycms.com *.msecnd.net aspnetcdn.com assets.adobedtm.com www.googletagmanager.com scotiabankfiles.azureedge.net snap.licdn.com *.google.com *.google.com.mx *.google.ca *.gstatic.com *.pages09.net *.scotiabank.com *.contentsquare.net *.contentsquare.com *.we-stats.com googleoptimize.com www.scotiabank.com.mx;worker-src blob: 'self';img-src 'self' *.clicktale.net *.agilitycms.com *.azureedge.net *.google.com googletagmanager.com facebook.net google-analytics.com *.googleapis.com licdn.com cloudflare.com Youtube.com Azureedge.net Doubleclick.net Clicktale.net Demdex.net Amazon-adsystem.com Hotjar.com jquery.com agilitycms.com *.msecnd.net aspnetcdn.com assets.adobedtm.com cm.everesttech.net somniture.scotiabank.com dpm.demdex.net www.google-analytics.com www.facebook.com https://www.google.com.br https://px.ads.linkedin.com stats.g.doubleclick.net https://p.adsymptotic.com *.google.com *.google.com.mx *.google.ca *.gstatic.com *.pages09.net *.scotiabank.com *.contentsquare.net *.contentsquare.com googleoptimize.com www.scotiabank.com.mx;connect-src 'self' https: wss: 'unsafe-inline' 'unsafe-eval' googletagmanager.com facebook.net google-analytics.com *.googleapis.com licdn.com cloudflare.com Youtube.com Azureedge.net Doubleclick.net Clicktale.net Demdex.net Amazon-adsystem.com Hotjar.com jquery.com agilitycms.com *.msecnd.net aspnetcdn.com *.google.com *.google.com.mx *.google.ca *.gstatic.com *.pages09.net *.scotiabank.com *.contentsquare.net *.contentsquare.com googleoptimize.com www.scotiabank.com.mx;
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
strict-transport-security: max-age=31536000
x-xss-protection: 1;mode=block
x-permitted-cross-domain-policies: master-only
X-Powered-By: ASP.NET
Content-Length: 7995
Date: Fri, 02 Dec 2022 14:07:02 GMT
Connection: keep-alive
Set-Cookie: Scotiabank Mexico_Language=es-mx; path=/; secure; HttpOnly
ApplicationGatewayAffinity=f1b9e12dc673414574b20afe9568b696905fe1fcf9fa7024ec6e7de7d750a7f2;Path=/;Domain=www.scotiabank.com.mx
ApplicationGatewayAffinityCORS=f1b9e12dc673414574b20afe9568b696905fe1fcf9fa7024ec6e7de7d750a7f2;Path=/;Domain=www.scotiabank.com.mx;SameSite=None;Secure
www.scotiabank.com.mx/Common/Fonts/Scotia_W_Headline.woff
104.110.14.233200 OK 15 kB URL HTTP/1.1 www.scotiabank.com.mx/Common/Fonts/Scotia_W_Headline.woff
IP 104.110.14.233:0
File type Web Open Font Format, TrueType, length 15280, version 1.0\012- data
Hash 030ed80bd7a8a10e687f26de5976b8b9
2ff9e05cf5d7cf05e31d69c33f12ba93f7d687d1
877b3784517bcd06618ed594e1bc7fad996065f92c5bd0caa2f5fdfa24f3bc6a
Analyzer Verdict Alert urlquery Phishing - Scotiabank
GET /Common/Fonts/Scotia_W_Headline.woff HTTP/1.1
Host: www.scotiabank.com.mx
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.scotiabank.com.mx/
Connection: keep-alive
Cookie: ApplicationGatewayAffinity=c9114da36b3f1ca57d40b29b616f184186872e7d7bf6f7a051b8769fabfdfee4; ak_bmsc=4B911A640E49A10E2B3C2D84C9D733EF~000000000000000000000000000000~YAAQzE0kFyIvO3WEAQAA/3kp0xE6ON6PvPaaunfcJ7aOKgICr9Y/TC6s+wCJK47D/W+H/Jw/KtAv9/8zumzPK2OPXPyJluYRjWiecg4iVCcC3QYEgA/EvmU1yJiJ/aPKRoBcs9F3gH6lTeOzRjdUla5GuTL/YJYKBKIW8UvIOcGeGl5S57OhfqnOt17GFPGJkd1TEEBsBWf2hajYvbYlE+Gk9znqwH0A+oqL+jZqhGp/WTN7CI1jC0KsOlpuWx8DXaaq5uB+PdLuovEFI6JbczKHnJWSqM6QlSs1Lvg1zh5r+PbzNZZS71oKQxBtEy+jrTYJ/RaiO0/H1XjS32ujY2VkLI/duTX43LIIg7jx9p2IxLJnNtyOCzSr1OTXzQfR56wUcahD; Scotiabank Mexico_Language=es-mx; ASP.NET_SessionId=23mn1eqqbwlm3fcsfhs01qss; ApplicationGatewayAffinityCORS=c9114da36b3f1ca57d40b29b616f184186872e7d7bf6f7a051b8769fabfdfee4
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Cache-Control: private
Content-Type: font/x-woff
Last-Modified: Wed, 16 Mar 2022 16:28:13 GMT
Accept-Ranges: bytes
ETag: "aee46fd55239d81:0"
Content-Security-Policy: default-src 'self' https: 'unsafe-inline' 'unsafe-eval' ;frame-ancestors 'self' https://manager.agilitycms.com *.scotiabank.com https://1.a79ab95c1589a13f8a4cab612bc71f9f7.com https://1.b406929acabac9b095f124c81bdfcf57f.com https://1.c81358859121583b7adf2ace89cb39f44.com;script-src 'self' 'unsafe-eval' 'unsafe-inline' googletagmanager.com facebook.net google-analytics.com *.googleapis.com licdn.com cloudflare.com Youtube.com Azureedge.net Doubleclick.net Clicktale.net Demdex.net Amazon-adsystem.com c.amazon-adsystem.com https://connect.facebook.net https://p.adsymptotic.com https://static.hotjar.com https://www.google-analytics.com cdnssl.clicktale.net https://script.hotjar.com jquery.com agilitycms.com *.msecnd.net aspnetcdn.com assets.adobedtm.com www.googletagmanager.com scotiabankfiles.azureedge.net snap.licdn.com *.google.com *.google.com.mx *.google.ca *.gstatic.com *.pages09.net *.scotiabank.com *.contentsquare.net *.contentsquare.com *.we-stats.com googleoptimize.com www.scotiabank.com.mx;worker-src blob: 'self';img-src 'self' *.clicktale.net *.agilitycms.com *.azureedge.net *.google.com googletagmanager.com facebook.net google-analytics.com *.googleapis.com licdn.com cloudflare.com Youtube.com Azureedge.net Doubleclick.net Clicktale.net Demdex.net Amazon-adsystem.com Hotjar.com jquery.com agilitycms.com *.msecnd.net aspnetcdn.com assets.adobedtm.com cm.everesttech.net somniture.scotiabank.com dpm.demdex.net www.google-analytics.com www.facebook.com https://www.google.com.br https://px.ads.linkedin.com stats.g.doubleclick.net https://p.adsymptotic.com *.google.com *.google.com.mx *.google.ca *.gstatic.com *.pages09.net *.scotiabank.com *.contentsquare.net *.contentsquare.com googleoptimize.com www.scotiabank.com.mx;connect-src 'self' https: wss: 'unsafe-inline' 'unsafe-eval' googletagmanager.com facebook.net google-analytics.com *.googleapis.com licdn.com cloudflare.com Youtube.com Azureedge.net Doubleclick.net Clicktale.net Demdex.net Amazon-adsystem.com Hotjar.com jquery.com agilitycms.com *.msecnd.net aspnetcdn.com *.google.com *.google.com.mx *.google.ca *.gstatic.com *.pages09.net *.scotiabank.com *.contentsquare.net *.contentsquare.com googleoptimize.com www.scotiabank.com.mx;
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
strict-transport-security: max-age=31536000
x-xss-protection: 1;mode=block
x-permitted-cross-domain-policies: master-only
X-Powered-By: ASP.NET
Content-Length: 15280
Date: Fri, 02 Dec 2022 14:07:02 GMT
Connection: keep-alive
Set-Cookie: Scotiabank Mexico_Language=es-mx; path=/; secure; HttpOnly
ApplicationGatewayAffinity=c28c12eba52fb03f677b1fa90653301608371c336781d725ecd7a09111ecd389;Path=/;Domain=www.scotiabank.com.mx
ApplicationGatewayAffinityCORS=c28c12eba52fb03f677b1fa90653301608371c336781d725ecd7a09111ecd389;Path=/;Domain=www.scotiabank.com.mx;SameSite=None;Secure
www.scotiabank.com.mx/bundles/RedesignTilesJs?v=
104.110.14.233200 OK 0 B URL HTTP/1.1 www.scotiabank.com.mx/bundles/RedesignTilesJs?v=
IP 104.110.14.233:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert urlquery Phishing - Scotiabank
GET /bundles/RedesignTilesJs?v= HTTP/1.1
Host: www.scotiabank.com.mx
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.scotiabank.com.mx/
Connection: keep-alive
Cookie: ApplicationGatewayAffinity=c9114da36b3f1ca57d40b29b616f184186872e7d7bf6f7a051b8769fabfdfee4; ak_bmsc=4B911A640E49A10E2B3C2D84C9D733EF~000000000000000000000000000000~YAAQzE0kFyIvO3WEAQAA/3kp0xE6ON6PvPaaunfcJ7aOKgICr9Y/TC6s+wCJK47D/W+H/Jw/KtAv9/8zumzPK2OPXPyJluYRjWiecg4iVCcC3QYEgA/EvmU1yJiJ/aPKRoBcs9F3gH6lTeOzRjdUla5GuTL/YJYKBKIW8UvIOcGeGl5S57OhfqnOt17GFPGJkd1TEEBsBWf2hajYvbYlE+Gk9znqwH0A+oqL+jZqhGp/WTN7CI1jC0KsOlpuWx8DXaaq5uB+PdLuovEFI6JbczKHnJWSqM6QlSs1Lvg1zh5r+PbzNZZS71oKQxBtEy+jrTYJ/RaiO0/H1XjS32ujY2VkLI/duTX43LIIg7jx9p2IxLJnNtyOCzSr1OTXzQfR56wUcahD; Scotiabank Mexico_Language=es-mx; ASP.NET_SessionId=23mn1eqqbwlm3fcsfhs01qss; ApplicationGatewayAffinityCORS=c9114da36b3f1ca57d40b29b616f184186872e7d7bf6f7a051b8769fabfdfee4
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Cache-Control: public, no-cache="Set-Cookie"
Content-Type: text/javascript
Expires: Sat, 02 Dec 2023 14:07:03 GMT
Last-Modified: Fri, 02 Dec 2022 14:07:03 GMT
Vary: User-Agent
Content-Security-Policy: default-src 'self' https: 'unsafe-inline' 'unsafe-eval' ;frame-ancestors 'self' https://manager.agilitycms.com *.scotiabank.com https://1.a79ab95c1589a13f8a4cab612bc71f9f7.com https://1.b406929acabac9b095f124c81bdfcf57f.com https://1.c81358859121583b7adf2ace89cb39f44.com;script-src 'self' 'unsafe-eval' 'unsafe-inline' googletagmanager.com facebook.net google-analytics.com *.googleapis.com licdn.com cloudflare.com Youtube.com Azureedge.net Doubleclick.net Clicktale.net Demdex.net Amazon-adsystem.com c.amazon-adsystem.com https://connect.facebook.net https://p.adsymptotic.com https://static.hotjar.com https://www.google-analytics.com cdnssl.clicktale.net https://script.hotjar.com jquery.com agilitycms.com *.msecnd.net aspnetcdn.com assets.adobedtm.com www.googletagmanager.com scotiabankfiles.azureedge.net snap.licdn.com *.google.com *.google.com.mx *.google.ca *.gstatic.com *.pages09.net *.scotiabank.com *.contentsquare.net *.contentsquare.com *.we-stats.com googleoptimize.com www.scotiabank.com.mx;worker-src blob: 'self';img-src 'self' *.clicktale.net *.agilitycms.com *.azureedge.net *.google.com googletagmanager.com facebook.net google-analytics.com *.googleapis.com licdn.com cloudflare.com Youtube.com Azureedge.net Doubleclick.net Clicktale.net Demdex.net Amazon-adsystem.com Hotjar.com jquery.com agilitycms.com *.msecnd.net aspnetcdn.com assets.adobedtm.com cm.everesttech.net somniture.scotiabank.com dpm.demdex.net www.google-analytics.com www.facebook.com https://www.google.com.br https://px.ads.linkedin.com stats.g.doubleclick.net https://p.adsymptotic.com *.google.com *.google.com.mx *.google.ca *.gstatic.com *.pages09.net *.scotiabank.com *.contentsquare.net *.contentsquare.com googleoptimize.com www.scotiabank.com.mx;connect-src 'self' https: wss: 'unsafe-inline' 'unsafe-eval' googletagmanager.com facebook.net google-analytics.com *.googleapis.com licdn.com cloudflare.com Youtube.com Azureedge.net Doubleclick.net Clicktale.net Demdex.net Amazon-adsystem.com Hotjar.com jquery.com agilitycms.com *.msecnd.net aspnetcdn.com *.google.com *.google.com.mx *.google.ca *.gstatic.com *.pages09.net *.scotiabank.com *.contentsquare.net *.contentsquare.com googleoptimize.com www.scotiabank.com.mx;
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
strict-transport-security: max-age=31536000
x-xss-protection: 1;mode=block
x-permitted-cross-domain-policies: master-only
X-Powered-By: ASP.NET
Content-Length: 0
Date: Fri, 02 Dec 2022 14:07:02 GMT
Connection: keep-alive
Set-Cookie: Scotiabank Mexico_Language=es-mx; path=/; secure; HttpOnly
ApplicationGatewayAffinity=6bdd0c1d14605ee0d1a2402b64b2e5286242c84f352b12c939fbee8cd39772d8;Path=/;Domain=www.scotiabank.com.mx
ApplicationGatewayAffinityCORS=6bdd0c1d14605ee0d1a2402b64b2e5286242c84f352b12c939fbee8cd39772d8;Path=/;Domain=www.scotiabank.com.mx;SameSite=None;Secure
www.scotiabank.com.mx/bundles/RedesignSBJs?v=WahtxhictWtQXtJLZBd_QtkTnuZ5H40_dq0QBMttMKw1
104.110.14.233200 OK 120 kB URL HTTP/1.1 www.scotiabank.com.mx/bundles/RedesignSBJs?v=WahtxhictWtQXtJLZBd_QtkTnuZ5H40_dq0QBMttMKw1
IP 104.110.14.233:0
File type Unicode text, UTF-8 (with BOM) text, with very long lines (65531), with no line terminators
Size 120 kB (120530 bytes)
Hash 38c6f3ab4fc8aeece8c8e5662b5ec0ea
1fa301a72856c665ecf6d4ebe1e66d11d4669ad9
b201139b93e63b772fc2983329147c7697bb9c33f633260c1e37c9884ecf442a
Analyzer Verdict Alert urlquery Phishing - Scotiabank
GET /bundles/RedesignSBJs?v=WahtxhictWtQXtJLZBd_QtkTnuZ5H40_dq0QBMttMKw1 HTTP/1.1
Host: www.scotiabank.com.mx
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.scotiabank.com.mx/
Connection: keep-alive
Cookie: ApplicationGatewayAffinity=c9114da36b3f1ca57d40b29b616f184186872e7d7bf6f7a051b8769fabfdfee4; ak_bmsc=4B911A640E49A10E2B3C2D84C9D733EF~000000000000000000000000000000~YAAQzE0kFyIvO3WEAQAA/3kp0xE6ON6PvPaaunfcJ7aOKgICr9Y/TC6s+wCJK47D/W+H/Jw/KtAv9/8zumzPK2OPXPyJluYRjWiecg4iVCcC3QYEgA/EvmU1yJiJ/aPKRoBcs9F3gH6lTeOzRjdUla5GuTL/YJYKBKIW8UvIOcGeGl5S57OhfqnOt17GFPGJkd1TEEBsBWf2hajYvbYlE+Gk9znqwH0A+oqL+jZqhGp/WTN7CI1jC0KsOlpuWx8DXaaq5uB+PdLuovEFI6JbczKHnJWSqM6QlSs1Lvg1zh5r+PbzNZZS71oKQxBtEy+jrTYJ/RaiO0/H1XjS32ujY2VkLI/duTX43LIIg7jx9p2IxLJnNtyOCzSr1OTXzQfR56wUcahD; Scotiabank Mexico_Language=es-mx; ASP.NET_SessionId=23mn1eqqbwlm3fcsfhs01qss; ApplicationGatewayAffinityCORS=c9114da36b3f1ca57d40b29b616f184186872e7d7bf6f7a051b8769fabfdfee4
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Cache-Control: public, no-cache="Set-Cookie"
Content-Type: text/javascript; charset=utf-8
Expires: Sat, 02 Dec 2023 14:07:03 GMT
Last-Modified: Fri, 02 Dec 2022 14:07:03 GMT
Vary: User-Agent
Content-Security-Policy: default-src 'self' https: 'unsafe-inline' 'unsafe-eval' ;frame-ancestors 'self' https://manager.agilitycms.com *.scotiabank.com https://1.a79ab95c1589a13f8a4cab612bc71f9f7.com https://1.b406929acabac9b095f124c81bdfcf57f.com https://1.c81358859121583b7adf2ace89cb39f44.com;script-src 'self' 'unsafe-eval' 'unsafe-inline' googletagmanager.com facebook.net google-analytics.com *.googleapis.com licdn.com cloudflare.com Youtube.com Azureedge.net Doubleclick.net Clicktale.net Demdex.net Amazon-adsystem.com c.amazon-adsystem.com https://connect.facebook.net https://p.adsymptotic.com https://static.hotjar.com https://www.google-analytics.com cdnssl.clicktale.net https://script.hotjar.com jquery.com agilitycms.com *.msecnd.net aspnetcdn.com assets.adobedtm.com www.googletagmanager.com scotiabankfiles.azureedge.net snap.licdn.com *.google.com *.google.com.mx *.google.ca *.gstatic.com *.pages09.net *.scotiabank.com *.contentsquare.net *.contentsquare.com *.we-stats.com googleoptimize.com www.scotiabank.com.mx;worker-src blob: 'self';img-src 'self' *.clicktale.net *.agilitycms.com *.azureedge.net *.google.com googletagmanager.com facebook.net google-analytics.com *.googleapis.com licdn.com cloudflare.com Youtube.com Azureedge.net Doubleclick.net Clicktale.net Demdex.net Amazon-adsystem.com Hotjar.com jquery.com agilitycms.com *.msecnd.net aspnetcdn.com assets.adobedtm.com cm.everesttech.net somniture.scotiabank.com dpm.demdex.net www.google-analytics.com www.facebook.com https://www.google.com.br https://px.ads.linkedin.com stats.g.doubleclick.net https://p.adsymptotic.com *.google.com *.google.com.mx *.google.ca *.gstatic.com *.pages09.net *.scotiabank.com *.contentsquare.net *.contentsquare.com googleoptimize.com www.scotiabank.com.mx;connect-src 'self' https: wss: 'unsafe-inline' 'unsafe-eval' googletagmanager.com facebook.net google-analytics.com *.googleapis.com licdn.com cloudflare.com Youtube.com Azureedge.net Doubleclick.net Clicktale.net Demdex.net Amazon-adsystem.com Hotjar.com jquery.com agilitycms.com *.msecnd.net aspnetcdn.com *.google.com *.google.com.mx *.google.ca *.gstatic.com *.pages09.net *.scotiabank.com *.contentsquare.net *.contentsquare.com googleoptimize.com www.scotiabank.com.mx;
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
strict-transport-security: max-age=31536000
x-xss-protection: 1;mode=block
x-permitted-cross-domain-policies: master-only
X-Powered-By: ASP.NET
Content-Length: 120530
Date: Fri, 02 Dec 2022 14:07:02 GMT
Connection: keep-alive
Set-Cookie: Scotiabank Mexico_Language=es-mx; path=/; secure; HttpOnly
ApplicationGatewayAffinity=6bdd0c1d14605ee0d1a2402b64b2e5286242c84f352b12c939fbee8cd39772d8;Path=/;Domain=www.scotiabank.com.mx
ApplicationGatewayAffinityCORS=6bdd0c1d14605ee0d1a2402b64b2e5286242c84f352b12c939fbee8cd39772d8;Path=/;Domain=www.scotiabank.com.mx;SameSite=None;Secure
www.scotiabank.com.mx/Styles/Build/redesign_desktop.css
104.110.14.233200 OK 8.4 kB URL HTTP/1.1 www.scotiabank.com.mx/Styles/Build/redesign_desktop.css
IP 104.110.14.233:0
File type Unicode text, UTF-8 (with BOM) text, with CRLF line terminators
Hash 75daf6f6f90fb54cd53fc5b26e617695
a5aba825bf83e3b75f9281ba3e120f7de8fc3616
d6129f80ffcab29d6b14037fe826f51b1b67f326fbce6aa2ca90d06c686e33aa
GET /Styles/Build/redesign_desktop.css HTTP/1.1
Host: www.scotiabank.com.mx
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.scotiabank.com.mx/
Connection: keep-alive
Cookie: ApplicationGatewayAffinity=c9114da36b3f1ca57d40b29b616f184186872e7d7bf6f7a051b8769fabfdfee4; ak_bmsc=4B911A640E49A10E2B3C2D84C9D733EF~000000000000000000000000000000~YAAQzE0kFyIvO3WEAQAA/3kp0xE6ON6PvPaaunfcJ7aOKgICr9Y/TC6s+wCJK47D/W+H/Jw/KtAv9/8zumzPK2OPXPyJluYRjWiecg4iVCcC3QYEgA/EvmU1yJiJ/aPKRoBcs9F3gH6lTeOzRjdUla5GuTL/YJYKBKIW8UvIOcGeGl5S57OhfqnOt17GFPGJkd1TEEBsBWf2hajYvbYlE+Gk9znqwH0A+oqL+jZqhGp/WTN7CI1jC0KsOlpuWx8DXaaq5uB+PdLuovEFI6JbczKHnJWSqM6QlSs1Lvg1zh5r+PbzNZZS71oKQxBtEy+jrTYJ/RaiO0/H1XjS32ujY2VkLI/duTX43LIIg7jx9p2IxLJnNtyOCzSr1OTXzQfR56wUcahD; Scotiabank Mexico_Language=es-mx; ASP.NET_SessionId=23mn1eqqbwlm3fcsfhs01qss; ApplicationGatewayAffinityCORS=c9114da36b3f1ca57d40b29b616f184186872e7d7bf6f7a051b8769fabfdfee4
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Cache-Control: private
Content-Type: text/css
Last-Modified: Fri, 06 May 2022 13:30:34 GMT
Accept-Ranges: bytes
ETag: "b69ce7764d61d81:0"
Content-Security-Policy: default-src 'self' https: 'unsafe-inline' 'unsafe-eval' ;frame-ancestors 'self' https://manager.agilitycms.com *.scotiabank.com https://1.a79ab95c1589a13f8a4cab612bc71f9f7.com https://1.b406929acabac9b095f124c81bdfcf57f.com https://1.c81358859121583b7adf2ace89cb39f44.com;script-src 'self' 'unsafe-eval' 'unsafe-inline' googletagmanager.com facebook.net google-analytics.com *.googleapis.com licdn.com cloudflare.com Youtube.com Azureedge.net Doubleclick.net Clicktale.net Demdex.net Amazon-adsystem.com c.amazon-adsystem.com https://connect.facebook.net https://p.adsymptotic.com https://static.hotjar.com https://www.google-analytics.com cdnssl.clicktale.net https://script.hotjar.com jquery.com agilitycms.com *.msecnd.net aspnetcdn.com assets.adobedtm.com www.googletagmanager.com scotiabankfiles.azureedge.net snap.licdn.com *.google.com *.google.com.mx *.google.ca *.gstatic.com *.pages09.net *.scotiabank.com *.contentsquare.net *.contentsquare.com *.we-stats.com googleoptimize.com www.scotiabank.com.mx;worker-src blob: 'self';img-src 'self' *.clicktale.net *.agilitycms.com *.azureedge.net *.google.com googletagmanager.com facebook.net google-analytics.com *.googleapis.com licdn.com cloudflare.com Youtube.com Azureedge.net Doubleclick.net Clicktale.net Demdex.net Amazon-adsystem.com Hotjar.com jquery.com agilitycms.com *.msecnd.net aspnetcdn.com assets.adobedtm.com cm.everesttech.net somniture.scotiabank.com dpm.demdex.net www.google-analytics.com www.facebook.com https://www.google.com.br https://px.ads.linkedin.com stats.g.doubleclick.net https://p.adsymptotic.com *.google.com *.google.com.mx *.google.ca *.gstatic.com *.pages09.net *.scotiabank.com *.contentsquare.net *.contentsquare.com googleoptimize.com www.scotiabank.com.mx;connect-src 'self' https: wss: 'unsafe-inline' 'unsafe-eval' googletagmanager.com facebook.net google-analytics.com *.googleapis.com licdn.com cloudflare.com Youtube.com Azureedge.net Doubleclick.net Clicktale.net Demdex.net Amazon-adsystem.com Hotjar.com jquery.com agilitycms.com *.msecnd.net aspnetcdn.com *.google.com *.google.com.mx *.google.ca *.gstatic.com *.pages09.net *.scotiabank.com *.contentsquare.net *.contentsquare.com googleoptimize.com www.scotiabank.com.mx;
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
strict-transport-security: max-age=31536000
x-xss-protection: 1;mode=block
x-permitted-cross-domain-policies: master-only
X-Powered-By: ASP.NET
Vary: Accept-Encoding
Content-Encoding: gzip
Date: Fri, 02 Dec 2022 14:07:02 GMT
Content-Length: 8439
Connection: keep-alive
Set-Cookie: Scotiabank Mexico_Language=es-mx; path=/; secure; HttpOnly
ApplicationGatewayAffinity=c28c12eba52fb03f677b1fa90653301608371c336781d725ecd7a09111ecd389;Path=/;Domain=www.scotiabank.com.mx
ApplicationGatewayAffinityCORS=c28c12eba52fb03f677b1fa90653301608371c336781d725ecd7a09111ecd389;Path=/;Domain=www.scotiabank.com.mx;SameSite=None;Secure
az416426.vo.msecnd.net/scripts/a/ai.0.js
152.199.19.161200 OK 22 kB URL HTTP/2 az416426.vo.msecnd.net/scripts/a/ai.0.js
IP 152.199.19.161:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash affc2b93a9fc23bbba65931b19b1e12c
a175097d2aa7ffb4b54193f197f296ab57967308
1c383d5958a56ed0858150b049c83da4d4b31a4ac05314ae9a4f623933a3df25
GET /scripts/a/ai.0.js HTTP/1.1
Host: az416426.vo.msecnd.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.scotiabank.com.mx/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: gzip
access-control-allow-origin: *
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Length,Date,Transfer-Encoding
age: 175
cache-control: public, max-age=1800
content-md5: HdY95yzx9wIyQkVEGES+Ew==
content-type: application/x-javascript
date: Fri, 02 Dec 2022 14:07:02 GMT
etag: 0x8D8E461DA1A5889
expires: Fri, 02 Dec 2022 14:37:02 GMT
last-modified: Thu, 11 Mar 2021 07:46:59 GMT
server: ECAcc (ska/F773)
vary: Accept-Encoding
x-cache: HIT
x-ms-blob-type: BlockBlob
x-ms-lease-status: unlocked
x-ms-meta-lastmodified: 2020-10-01 19:31:04
x-ms-request-id: c532b614-501e-0097-7856-06aef2000000
x-ms-version: 2009-09-19
content-length: 22495
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 8cd876589951719c94a6d49d1494bdbd
01600c8bb95fac543696e509b3e452b90d844572
e03942321526a2303220b1abd51f82f1d4cf80e0dd22a2582cf809b8bd729521
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 14:07:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 8cd876589951719c94a6d49d1494bdbd
01600c8bb95fac543696e509b3e452b90d844572
e03942321526a2303220b1abd51f82f1d4cf80e0dd22a2582cf809b8bd729521
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 14:07:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.googletagmanager.com/gtm.js?id=GTM-KLGNJ4R
142.250.74.168200 OK 39 kB URL HTTP/2 www.googletagmanager.com/gtm.js?id=GTM-KLGNJ4R
IP 142.250.74.168:0
File type ASCII text, with very long lines (1921)
Hash 1ebd18f76ee0dadd11a7e9a8cf233688
ee1e9d05c2050a117cc89b6bfbaf53184f3e6067
c47d440a027641154f56d2626691694e69a674d2b37eb732eada0d372c782b34
GET /gtm.js?id=GTM-KLGNJ4R HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.scotiabank.com.mx/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Fri, 02 Dec 2022 14:07:02 GMT
expires: Fri, 02 Dec 2022 14:07:02 GMT
cache-control: private, max-age=900
last-modified: Fri, 02 Dec 2022 12:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 38635
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.scotiabank.com.mx/bundles/RedesignTilesJs?v=
104.110.14.233200 OK 0 B URL HTTP/1.1 www.scotiabank.com.mx/bundles/RedesignTilesJs?v=
IP 104.110.14.233:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert urlquery Phishing - Scotiabank
GET /bundles/RedesignTilesJs?v= HTTP/1.1
Host: www.scotiabank.com.mx
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.scotiabank.com.mx/
Connection: keep-alive
Cookie: ApplicationGatewayAffinity=c28c12eba52fb03f677b1fa90653301608371c336781d725ecd7a09111ecd389; ak_bmsc=4B911A640E49A10E2B3C2D84C9D733EF~000000000000000000000000000000~YAAQzE0kFyovO3WEAQAABn0p0xEF/TpnmQLp+Z8Cy/XVOLiPYkFGlqZpNXAh25m6wkwaKT8QJRI65Lil4n40F6uzP81kFlXhjuGMpg0gllFB4QXBIHvr1eqYsj93JnCiXiX6mstm6IiO6pgRTzVotrfiPbpYAToEYSlBv+kgoIpgCvz5MqfH4Fg78T5QTfwB1c8j9piRnaECIkL/iY1Hz5SyQasJa2qoA+0gXic+r2tFd7XuW8JCkqzaGAK5sju4Dff7z5so7u6Qo27IGFwYJOXENYt4KIxDNjx1lSsjxlfhAon+ROMjhnrSLAeZ5XHMBVTTor0SoMFUVTHNprq0X4F2DkBuozW6uRI8bHpJc3ORlkLIeNqjCN5421DPJla4KoDjntF7y+MJXnlCTjwfa7UiLv+SvM8jB9z51S7k8XsvsIPCZN7xRqCU3RjbyRNw8LtE8YAm4g0ABs5yEdu+MLjJG5va3iSI6eU=; Scotiabank Mexico_Language=es-mx; ASP.NET_SessionId=23mn1eqqbwlm3fcsfhs01qss; ApplicationGatewayAffinityCORS=c28c12eba52fb03f677b1fa90653301608371c336781d725ecd7a09111ecd389; AMCV_0AAF22CE52827A080A490D4D%40AdobeOrg=1075005958%7CMCIDTS%7C19329%7CvVersion%7C4.4.1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
If-Modified-Since: Fri, 02 Dec 2022 14:07:03 GMT
HTTP/1.1 200 OK
Cache-Control: public, no-cache="Set-Cookie"
Content-Type: text/javascript
Expires: Sat, 02 Dec 2023 14:07:02 GMT
Last-Modified: Fri, 02 Dec 2022 14:07:02 GMT
Vary: User-Agent
Content-Security-Policy: default-src 'self' https: 'unsafe-inline' 'unsafe-eval' ;frame-ancestors 'self' https://manager.agilitycms.com *.scotiabank.com https://1.a79ab95c1589a13f8a4cab612bc71f9f7.com https://1.b406929acabac9b095f124c81bdfcf57f.com https://1.c81358859121583b7adf2ace89cb39f44.com;script-src 'self' 'unsafe-eval' 'unsafe-inline' googletagmanager.com facebook.net google-analytics.com *.googleapis.com licdn.com cloudflare.com Youtube.com Azureedge.net Doubleclick.net Clicktale.net Demdex.net Amazon-adsystem.com c.amazon-adsystem.com https://connect.facebook.net https://p.adsymptotic.com https://static.hotjar.com https://www.google-analytics.com cdnssl.clicktale.net https://script.hotjar.com jquery.com agilitycms.com *.msecnd.net aspnetcdn.com assets.adobedtm.com www.googletagmanager.com scotiabankfiles.azureedge.net snap.licdn.com *.google.com *.google.com.mx *.google.ca *.gstatic.com *.pages09.net *.scotiabank.com *.contentsquare.net *.contentsquare.com *.we-stats.com googleoptimize.com www.scotiabank.com.mx;worker-src blob: 'self';img-src 'self' *.clicktale.net *.agilitycms.com *.azureedge.net *.google.com googletagmanager.com facebook.net google-analytics.com *.googleapis.com licdn.com cloudflare.com Youtube.com Azureedge.net Doubleclick.net Clicktale.net Demdex.net Amazon-adsystem.com Hotjar.com jquery.com agilitycms.com *.msecnd.net aspnetcdn.com assets.adobedtm.com cm.everesttech.net somniture.scotiabank.com dpm.demdex.net www.google-analytics.com www.facebook.com https://www.google.com.br https://px.ads.linkedin.com stats.g.doubleclick.net https://p.adsymptotic.com *.google.com *.google.com.mx *.google.ca *.gstatic.com *.pages09.net *.scotiabank.com *.contentsquare.net *.contentsquare.com googleoptimize.com www.scotiabank.com.mx;connect-src 'self' https: wss: 'unsafe-inline' 'unsafe-eval' googletagmanager.com facebook.net google-analytics.com *.googleapis.com licdn.com cloudflare.com Youtube.com Azureedge.net Doubleclick.net Clicktale.net Demdex.net Amazon-adsystem.com Hotjar.com jquery.com agilitycms.com *.msecnd.net aspnetcdn.com *.google.com *.google.com.mx *.google.ca *.gstatic.com *.pages09.net *.scotiabank.com *.contentsquare.net *.contentsquare.com googleoptimize.com www.scotiabank.com.mx;
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
strict-transport-security: max-age=31536000
x-xss-protection: 1;mode=block
x-permitted-cross-domain-policies: master-only
X-Powered-By: ASP.NET
Content-Length: 0
Date: Fri, 02 Dec 2022 14:07:03 GMT
Connection: keep-alive
Set-Cookie: Scotiabank Mexico_Language=es-mx; path=/; secure; HttpOnly
www.googletagmanager.com/gtm.js?id=GTM-PW4F7T
142.250.74.168200 OK 143 kB URL HTTP/2 www.googletagmanager.com/gtm.js?id=GTM-PW4F7T
IP 142.250.74.168:0
File type Unicode text, UTF-8 text, with very long lines (44078)
Size 143 kB (143146 bytes)
Hash 9a1ab115522dbe02137add0fdaee7370
82dd6adca997a0928f346fb5a443188cdcb4b1ef
1266b8e40f98429ed6083b3888ec03a8a8b81780af22de7852de6c4fa781d521
GET /gtm.js?id=GTM-PW4F7T HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.scotiabank.com.mx/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Fri, 02 Dec 2022 14:07:03 GMT
expires: Fri, 02 Dec 2022 14:07:03 GMT
cache-control: private, max-age=900
last-modified: Fri, 02 Dec 2022 12:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 143146
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.scotiabank.com.mx/Styles/Build/redesign_mobile.css
104.110.14.233200 OK 8.3 kB URL HTTP/1.1 www.scotiabank.com.mx/Styles/Build/redesign_mobile.css
IP 104.110.14.233:0
File type Unicode text, UTF-8 (with BOM) text
Hash 5e075994b3e49fa2a17f417339a5a37d
3b0d549510b119cd735968948cf6b9195bdc8c4c
2808353f2f6f567252610819bc46cdedb99026140ddf2a303d29206b816fa850
GET /Styles/Build/redesign_mobile.css HTTP/1.1
Host: www.scotiabank.com.mx
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.scotiabank.com.mx/
Connection: keep-alive
Cookie: ApplicationGatewayAffinity=c28c12eba52fb03f677b1fa90653301608371c336781d725ecd7a09111ecd389; ak_bmsc=4B911A640E49A10E2B3C2D84C9D733EF~000000000000000000000000000000~YAAQzE0kFyovO3WEAQAABn0p0xEF/TpnmQLp+Z8Cy/XVOLiPYkFGlqZpNXAh25m6wkwaKT8QJRI65Lil4n40F6uzP81kFlXhjuGMpg0gllFB4QXBIHvr1eqYsj93JnCiXiX6mstm6IiO6pgRTzVotrfiPbpYAToEYSlBv+kgoIpgCvz5MqfH4Fg78T5QTfwB1c8j9piRnaECIkL/iY1Hz5SyQasJa2qoA+0gXic+r2tFd7XuW8JCkqzaGAK5sju4Dff7z5so7u6Qo27IGFwYJOXENYt4KIxDNjx1lSsjxlfhAon+ROMjhnrSLAeZ5XHMBVTTor0SoMFUVTHNprq0X4F2DkBuozW6uRI8bHpJc3ORlkLIeNqjCN5421DPJla4KoDjntF7y+MJXnlCTjwfa7UiLv+SvM8jB9z51S7k8XsvsIPCZN7xRqCU3RjbyRNw8LtE8YAm4g0ABs5yEdu+MLjJG5va3iSI6eU=; Scotiabank Mexico_Language=es-mx; ASP.NET_SessionId=23mn1eqqbwlm3fcsfhs01qss; ApplicationGatewayAffinityCORS=c28c12eba52fb03f677b1fa90653301608371c336781d725ecd7a09111ecd389
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Cache-Control: private
Content-Type: text/css
Last-Modified: Fri, 06 May 2022 13:33:20 GMT
Accept-Ranges: bytes
ETag: "5a10cbd94d61d81:0"
Content-Security-Policy: default-src 'self' https: 'unsafe-inline' 'unsafe-eval' ;frame-ancestors 'self' https://manager.agilitycms.com *.scotiabank.com https://1.a79ab95c1589a13f8a4cab612bc71f9f7.com https://1.b406929acabac9b095f124c81bdfcf57f.com https://1.c81358859121583b7adf2ace89cb39f44.com;script-src 'self' 'unsafe-eval' 'unsafe-inline' googletagmanager.com facebook.net google-analytics.com *.googleapis.com licdn.com cloudflare.com Youtube.com Azureedge.net Doubleclick.net Clicktale.net Demdex.net Amazon-adsystem.com c.amazon-adsystem.com https://connect.facebook.net https://p.adsymptotic.com https://static.hotjar.com https://www.google-analytics.com cdnssl.clicktale.net https://script.hotjar.com jquery.com agilitycms.com *.msecnd.net aspnetcdn.com assets.adobedtm.com www.googletagmanager.com scotiabankfiles.azureedge.net snap.licdn.com *.google.com *.google.com.mx *.google.ca *.gstatic.com *.pages09.net *.scotiabank.com *.contentsquare.net *.contentsquare.com *.we-stats.com googleoptimize.com www.scotiabank.com.mx;worker-src blob: 'self';img-src 'self' *.clicktale.net *.agilitycms.com *.azureedge.net *.google.com googletagmanager.com facebook.net google-analytics.com *.googleapis.com licdn.com cloudflare.com Youtube.com Azureedge.net Doubleclick.net Clicktale.net Demdex.net Amazon-adsystem.com Hotjar.com jquery.com agilitycms.com *.msecnd.net aspnetcdn.com assets.adobedtm.com cm.everesttech.net somniture.scotiabank.com dpm.demdex.net www.google-analytics.com www.facebook.com https://www.google.com.br https://px.ads.linkedin.com stats.g.doubleclick.net https://p.adsymptotic.com *.google.com *.google.com.mx *.google.ca *.gstatic.com *.pages09.net *.scotiabank.com *.contentsquare.net *.contentsquare.com googleoptimize.com www.scotiabank.com.mx;connect-src 'self' https: wss: 'unsafe-inline' 'unsafe-eval' googletagmanager.com facebook.net google-analytics.com *.googleapis.com licdn.com cloudflare.com Youtube.com Azureedge.net Doubleclick.net Clicktale.net Demdex.net Amazon-adsystem.com Hotjar.com jquery.com agilitycms.com *.msecnd.net aspnetcdn.com *.google.com *.google.com.mx *.google.ca *.gstatic.com *.pages09.net *.scotiabank.com *.contentsquare.net *.contentsquare.com googleoptimize.com www.scotiabank.com.mx;
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
strict-transport-security: max-age=31536000
x-xss-protection: 1;mode=block
x-permitted-cross-domain-policies: master-only
X-Powered-By: ASP.NET
Vary: Accept-Encoding
Content-Encoding: gzip
Date: Fri, 02 Dec 2022 14:07:03 GMT
Content-Length: 8320
Connection: keep-alive
Set-Cookie: Scotiabank Mexico_Language=es-mx; path=/; secure; HttpOnly
ApplicationGatewayAffinity=425c6c3932f4859ddc06000036a568dbd48227599eccd581768cd588b5012e21;Path=/;Domain=www.scotiabank.com.mx
ApplicationGatewayAffinityCORS=425c6c3932f4859ddc06000036a568dbd48227599eccd581768cd588b5012e21;Path=/;Domain=www.scotiabank.com.mx;SameSite=None;Secure
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash a38fe499fbc9d7b6560e992b497afb28
a3e542e6ca157422916ed33bb58e756e31381ac2
f7a4731734b5145ca3fc3d39b043e8c0fd75fab059f8bb24151438e06dfa7658
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3214
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 14:07:03 GMT
Last-Modified: Fri, 02 Dec 2022 13:13:29 GMT
Server: ECS (ska/F6FC)
X-Cache: HIT
Content-Length: 471
www.scotiabank.com.mx/Styles/Build/mobile.css
104.110.14.233200 OK 17 kB URL HTTP/1.1 www.scotiabank.com.mx/Styles/Build/mobile.css
IP 104.110.14.233:0
File type Unicode text, UTF-8 (with BOM) text, with very long lines (302), with CRLF line terminators
Hash 6554db32470f0383ee4183255ab6c713
066fb6feb0345109d20c2a23d429b59c7e3ef92b
d8dbdf302de089a5b69cf72173691ef5dcff97c4cb1c74c1dcb5f332ec1a10a0
GET /Styles/Build/mobile.css HTTP/1.1
Host: www.scotiabank.com.mx
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.scotiabank.com.mx/
Connection: keep-alive
Cookie: ApplicationGatewayAffinity=c28c12eba52fb03f677b1fa90653301608371c336781d725ecd7a09111ecd389; ak_bmsc=4B911A640E49A10E2B3C2D84C9D733EF~000000000000000000000000000000~YAAQzE0kFyovO3WEAQAABn0p0xEF/TpnmQLp+Z8Cy/XVOLiPYkFGlqZpNXAh25m6wkwaKT8QJRI65Lil4n40F6uzP81kFlXhjuGMpg0gllFB4QXBIHvr1eqYsj93JnCiXiX6mstm6IiO6pgRTzVotrfiPbpYAToEYSlBv+kgoIpgCvz5MqfH4Fg78T5QTfwB1c8j9piRnaECIkL/iY1Hz5SyQasJa2qoA+0gXic+r2tFd7XuW8JCkqzaGAK5sju4Dff7z5so7u6Qo27IGFwYJOXENYt4KIxDNjx1lSsjxlfhAon+ROMjhnrSLAeZ5XHMBVTTor0SoMFUVTHNprq0X4F2DkBuozW6uRI8bHpJc3ORlkLIeNqjCN5421DPJla4KoDjntF7y+MJXnlCTjwfa7UiLv+SvM8jB9z51S7k8XsvsIPCZN7xRqCU3RjbyRNw8LtE8YAm4g0ABs5yEdu+MLjJG5va3iSI6eU=; Scotiabank Mexico_Language=es-mx; ASP.NET_SessionId=23mn1eqqbwlm3fcsfhs01qss; ApplicationGatewayAffinityCORS=c28c12eba52fb03f677b1fa90653301608371c336781d725ecd7a09111ecd389
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Cache-Control: private
Content-Type: text/css
Last-Modified: Thu, 05 May 2022 14:22:15 GMT
Accept-Ranges: bytes
ETag: "fe2725858b60d81:0"
Content-Security-Policy: default-src 'self' https: 'unsafe-inline' 'unsafe-eval' ;frame-ancestors 'self' https://manager.agilitycms.com *.scotiabank.com https://1.a79ab95c1589a13f8a4cab612bc71f9f7.com https://1.b406929acabac9b095f124c81bdfcf57f.com https://1.c81358859121583b7adf2ace89cb39f44.com;script-src 'self' 'unsafe-eval' 'unsafe-inline' googletagmanager.com facebook.net google-analytics.com *.googleapis.com licdn.com cloudflare.com Youtube.com Azureedge.net Doubleclick.net Clicktale.net Demdex.net Amazon-adsystem.com c.amazon-adsystem.com https://connect.facebook.net https://p.adsymptotic.com https://static.hotjar.com https://www.google-analytics.com cdnssl.clicktale.net https://script.hotjar.com jquery.com agilitycms.com *.msecnd.net aspnetcdn.com assets.adobedtm.com www.googletagmanager.com scotiabankfiles.azureedge.net snap.licdn.com *.google.com *.google.com.mx *.google.ca *.gstatic.com *.pages09.net *.scotiabank.com *.contentsquare.net *.contentsquare.com *.we-stats.com googleoptimize.com www.scotiabank.com.mx;worker-src blob: 'self';img-src 'self' *.clicktale.net *.agilitycms.com *.azureedge.net *.google.com googletagmanager.com facebook.net google-analytics.com *.googleapis.com licdn.com cloudflare.com Youtube.com Azureedge.net Doubleclick.net Clicktale.net Demdex.net Amazon-adsystem.com Hotjar.com jquery.com agilitycms.com *.msecnd.net aspnetcdn.com assets.adobedtm.com cm.everesttech.net somniture.scotiabank.com dpm.demdex.net www.google-analytics.com www.facebook.com https://www.google.com.br https://px.ads.linkedin.com stats.g.doubleclick.net https://p.adsymptotic.com *.google.com *.google.com.mx *.google.ca *.gstatic.com *.pages09.net *.scotiabank.com *.contentsquare.net *.contentsquare.com googleoptimize.com www.scotiabank.com.mx;connect-src 'self' https: wss: 'unsafe-inline' 'unsafe-eval' googletagmanager.com facebook.net google-analytics.com *.googleapis.com licdn.com cloudflare.com Youtube.com Azureedge.net Doubleclick.net Clicktale.net Demdex.net Amazon-adsystem.com Hotjar.com jquery.com agilitycms.com *.msecnd.net aspnetcdn.com *.google.com *.google.com.mx *.google.ca *.gstatic.com *.pages09.net *.scotiabank.com *.contentsquare.net *.contentsquare.com googleoptimize.com www.scotiabank.com.mx;
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
strict-transport-security: max-age=31536000
x-xss-protection: 1;mode=block
x-permitted-cross-domain-policies: master-only
X-Powered-By: ASP.NET
Vary: Accept-Encoding
Content-Encoding: gzip
Date: Fri, 02 Dec 2022 14:07:03 GMT
Content-Length: 17036
Connection: keep-alive
Set-Cookie: Scotiabank Mexico_Language=es-mx; path=/; secure; HttpOnly
ApplicationGatewayAffinity=c9114da36b3f1ca57d40b29b616f184186872e7d7bf6f7a051b8769fabfdfee4;Path=/;Domain=www.scotiabank.com.mx
ApplicationGatewayAffinityCORS=c9114da36b3f1ca57d40b29b616f184186872e7d7bf6f7a051b8769fabfdfee4;Path=/;Domain=www.scotiabank.com.mx;SameSite=None;Secure
dpm.demdex.net/id?d_visid_ver=4.4.1&d_fieldgroup=MC&d_rtbd=json&d_ver=2&d_orgid=0AAF22CE52827A080A490D4D%40AdobeOrg&d_nsid=0&ts=1669990021117
34.241.92.229200 OK 1.7 kB URL HTTP/1.1 dpm.demdex.net/id?d_visid_ver=4.4.1&d_fieldgroup=MC&d_rtbd=json&d_ver=2&d_orgid=0AAF22CE52827A080A490D4D%40AdobeOrg&d_nsid=0&ts=1669990021117
IP 34.241.92.229:0
File type JSON data\012- , ASCII text, with very long lines (5519), with no line terminators
Hash 400b972330685e3f8b64c14f4b034c0b
98b90cdc945c8714c81e5967f66e49195f412f1e
51391b3d6cc45f10d9044257b3bf4c6faada4e4a18787f00fc0ea2dddb68ac82
GET /id?d_visid_ver=4.4.1&d_fieldgroup=MC&d_rtbd=json&d_ver=2&d_orgid=0AAF22CE52827A080A490D4D%40AdobeOrg&d_nsid=0&ts=1669990021117 HTTP/1.1
Host: dpm.demdex.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Origin: https://www.scotiabank.com.mx
Connection: keep-alive
Referer: https://www.scotiabank.com.mx/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://www.scotiabank.com.mx
Cache-Control: no-cache,no-store,must-revalidate,max-age=0,proxy-revalidate,no-transform,private
content-encoding: gzip
Content-Type: application/json;charset=utf-8
DCS: dcs-prod-irl1-1-v045-06cd512cb.edge-irl1.demdex.com 3 ms
Expires: Thu, 01 Jan 1970 00:00:00 UTC
P3P: policyref="/w3c/p3p.xml", CP="NOI NID CURa ADMa DEVa PSAa PSDa OUR SAMa BUS PUR COM NAV INT"
Pragma: no-cache
set-cookie: demdex=09880677399323126920398646790475766584; Max-Age=15552000; Expires=Wed, 31 May 2023 14:07:03 GMT; Path=/; Domain=.demdex.net; Secure; SameSite=None
Strict-Transport-Security: max-age=31536000; includeSubDomains
Vary: Origin
X-TID: 3nfcUpGgSFY=
Content-Length: 1710
Connection: keep-alive
www.scotiabank.com.mx/bundles/RedesignTilesJs?v=
104.110.14.233304 Not Modified 0 B URL HTTP/1.1 www.scotiabank.com.mx/bundles/RedesignTilesJs?v=
IP 104.110.14.233:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert urlquery Phishing - Scotiabank
GET /bundles/RedesignTilesJs?v= HTTP/1.1
Host: www.scotiabank.com.mx
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.scotiabank.com.mx/
Connection: keep-alive
Cookie: ApplicationGatewayAffinity=c28c12eba52fb03f677b1fa90653301608371c336781d725ecd7a09111ecd389; ak_bmsc=4B911A640E49A10E2B3C2D84C9D733EF~000000000000000000000000000000~YAAQzE0kFyovO3WEAQAABn0p0xEF/TpnmQLp+Z8Cy/XVOLiPYkFGlqZpNXAh25m6wkwaKT8QJRI65Lil4n40F6uzP81kFlXhjuGMpg0gllFB4QXBIHvr1eqYsj93JnCiXiX6mstm6IiO6pgRTzVotrfiPbpYAToEYSlBv+kgoIpgCvz5MqfH4Fg78T5QTfwB1c8j9piRnaECIkL/iY1Hz5SyQasJa2qoA+0gXic+r2tFd7XuW8JCkqzaGAK5sju4Dff7z5so7u6Qo27IGFwYJOXENYt4KIxDNjx1lSsjxlfhAon+ROMjhnrSLAeZ5XHMBVTTor0SoMFUVTHNprq0X4F2DkBuozW6uRI8bHpJc3ORlkLIeNqjCN5421DPJla4KoDjntF7y+MJXnlCTjwfa7UiLv+SvM8jB9z51S7k8XsvsIPCZN7xRqCU3RjbyRNw8LtE8YAm4g0ABs5yEdu+MLjJG5va3iSI6eU=; Scotiabank Mexico_Language=es-mx; ASP.NET_SessionId=23mn1eqqbwlm3fcsfhs01qss; ApplicationGatewayAffinityCORS=c28c12eba52fb03f677b1fa90653301608371c336781d725ecd7a09111ecd389; AMCV_0AAF22CE52827A080A490D4D%40AdobeOrg=1075005958%7CMCIDTS%7C19329%7CvVersion%7C4.4.1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
If-Modified-Since: Fri, 02 Dec 2022 14:07:02 GMT
HTTP/1.1 304 Not Modified
Cache-Control: private
Content-Security-Policy: default-src 'self' https: 'unsafe-inline' 'unsafe-eval' ;frame-ancestors 'self' https://manager.agilitycms.com *.scotiabank.com https://1.a79ab95c1589a13f8a4cab612bc71f9f7.com https://1.b406929acabac9b095f124c81bdfcf57f.com https://1.c81358859121583b7adf2ace89cb39f44.com;script-src 'self' 'unsafe-eval' 'unsafe-inline' googletagmanager.com facebook.net google-analytics.com *.googleapis.com licdn.com cloudflare.com Youtube.com Azureedge.net Doubleclick.net Clicktale.net Demdex.net Amazon-adsystem.com c.amazon-adsystem.com https://connect.facebook.net https://p.adsymptotic.com https://static.hotjar.com https://www.google-analytics.com cdnssl.clicktale.net https://script.hotjar.com jquery.com agilitycms.com *.msecnd.net aspnetcdn.com assets.adobedtm.com www.googletagmanager.com scotiabankfiles.azureedge.net snap.licdn.com *.google.com *.google.com.mx *.google.ca *.gstatic.com *.pages09.net *.scotiabank.com *.contentsquare.net *.contentsquare.com *.we-stats.com googleoptimize.com www.scotiabank.com.mx;worker-src blob: 'self';img-src 'self' *.clicktale.net *.agilitycms.com *.azureedge.net *.google.com googletagmanager.com facebook.net google-analytics.com *.googleapis.com licdn.com cloudflare.com Youtube.com Azureedge.net Doubleclick.net Clicktale.net Demdex.net Amazon-adsystem.com Hotjar.com jquery.com agilitycms.com *.msecnd.net aspnetcdn.com assets.adobedtm.com cm.everesttech.net somniture.scotiabank.com dpm.demdex.net www.google-analytics.com www.facebook.com https://www.google.com.br https://px.ads.linkedin.com stats.g.doubleclick.net https://p.adsymptotic.com *.google.com *.google.com.mx *.google.ca *.gstatic.com *.pages09.net *.scotiabank.com *.contentsquare.net *.contentsquare.com googleoptimize.com www.scotiabank.com.mx;connect-src 'self' https: wss: 'unsafe-inline' 'unsafe-eval' googletagmanager.com facebook.net google-analytics.com *.googleapis.com licdn.com cloudflare.com Youtube.com Azureedge.net Doubleclick.net Clicktale.net Demdex.net Amazon-adsystem.com Hotjar.com jquery.com agilitycms.com *.msecnd.net aspnetcdn.com *.google.com *.google.com.mx *.google.ca *.gstatic.com *.pages09.net *.scotiabank.com *.contentsquare.net *.contentsquare.com googleoptimize.com www.scotiabank.com.mx;
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
strict-transport-security: max-age=31536000
x-xss-protection: 1;mode=block
x-permitted-cross-domain-policies: master-only
X-Powered-By: ASP.NET
Date: Fri, 02 Dec 2022 14:07:03 GMT
Connection: keep-alive
Set-Cookie: Scotiabank Mexico_Language=es-mx; path=/; secure; HttpOnly
scotiabankfiles.azureedge.net/scotia-bank-mexico/2019-global-rebrand/icon_search.svg
152.199.19.161200 OK 833 B URL HTTP/2 scotiabankfiles.azureedge.net/scotia-bank-mexico/2019-global-rebrand/icon_search.svg
IP 152.199.19.161:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (833), with no line terminators
Hash 91a9745cd62191ac761af06df9247fd6
97beb0704e700dd15fb6ab914f507eb876ae1408
5ce597a9cdeadfa8903c317475be5651834d5352ea4ea15a76f4d4f6f13585bf
Analyzer Verdict Alert urlquery Phishing - Scotiabank
GET /scotia-bank-mexico/2019-global-rebrand/icon_search.svg HTTP/1.1
Host: scotiabankfiles.azureedge.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.scotiabank.com.mx/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
access-control-expose-headers: Request-Context
cache-control: public, max-age=1800, s-maxage=1800
content-security-policy: default-src https: wss: data: blob: 'unsafe-eval' 'unsafe-inline' *; object-src 'none';
content-type: image/svg+xml
date: Fri, 02 Dec 2022 14:07:02 GMT
expires: Fri, 02 Dec 2022 14:37:04 GMT
last-modified: Thu, 03 Oct 2019 21:50:33 GMT
request-context: appId=cid-v1:b6356dc1-e87f-411b-9bf6-6a5f0308e7de
server: Microsoft-IIS/10.0
surrogate-key: scotia-bank-mexico scotia-bank-mexico-2019-global-rebrand-icon_search.svg
x-aspnet-version: 4.0.30319
x-aspnetmvc-version: 5.2
x-content-type-options: nosniff
x-frame-options: SELF
x-ms-blob-cache-control: public, max-age=1800, s-maxage=1800
x-xss-protection: 1; mode=block
content-length: 833
X-Firefox-Spdy: h2
scotiabankfiles.azureedge.net/scotia-bank-mexico/images/redesign/slides/2x-bah01-10-22.gif
152.199.19.161200 OK 222 kB URL HTTP/2 scotiabankfiles.azureedge.net/scotia-bank-mexico/images/redesign/slides/2x-bah01-10-22.gif
IP 152.199.19.161:0
File type GIF image data, version 89a, 3840 x 900\012- data
Size 222 kB (222190 bytes)
Hash 3e3dd739ffd7ec949717fd459ff0fa2a
a193a0374a15cd9146e1fdde0a0bebf376cdcb6c
b6e09e36e7ed73d307dcb1465fb37a28bfdf68aeef5a8e6ed2022d68eeff8fef
GET /scotia-bank-mexico/images/redesign/slides/2x-bah01-10-22.gif HTTP/1.1
Host: scotiabankfiles.azureedge.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.scotiabank.com.mx/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
access-control-expose-headers: Request-Context
cache-control: public, max-age=1800, s-maxage=1800
content-security-policy: default-src https: wss: data: blob: 'unsafe-eval' 'unsafe-inline' *; object-src 'none';
content-type: image/gif
date: Fri, 02 Dec 2022 14:07:03 GMT
expires: Fri, 02 Dec 2022 14:37:03 GMT
last-modified: Tue, 01 Nov 2022 05:03:34 GMT
request-context: appId=cid-v1:b6356dc1-e87f-411b-9bf6-6a5f0308e7de
server: Microsoft-IIS/10.0
surrogate-key: scotia-bank-mexico scotia-bank-mexico-images-redesign-slides-2x-bah01-10-22.gif
x-aspnetmvc-version: 5.2
x-content-type-options: nosniff
x-frame-options: SELF
x-ms-blob-cache-control: public, max-age=1800, s-maxage=1800
x-xss-protection: 1; mode=block
content-length: 222190
X-Firefox-Spdy: h2
scotiabankfiles.azureedge.net/scotia-bank-mexico/2019-global-rebrand/arrow-backToTop.svg
152.199.19.161200 OK 502 B URL HTTP/2 scotiabankfiles.azureedge.net/scotia-bank-mexico/2019-global-rebrand/arrow-backToTop.svg
IP 152.199.19.161:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document, ASCII text, with very long lines (502), with no line terminators
Hash a5f2abe0aa9f36311ec86c323cf0ac34
af1b517f2f4025691824a892747b6fedb6872a6f
5aac17ce5a596d58c1444b90ef3c63f82dd90571f30cb952b4ffbd83015ac261
GET /scotia-bank-mexico/2019-global-rebrand/arrow-backToTop.svg HTTP/1.1
Host: scotiabankfiles.azureedge.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.scotiabank.com.mx/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
access-control-expose-headers: Request-Context
cache-control: public, max-age=1800, s-maxage=1800
content-security-policy: default-src https: wss: data: blob: 'unsafe-eval' 'unsafe-inline' *; object-src 'none';
content-type: image/svg+xml
date: Fri, 02 Dec 2022 14:07:03 GMT
expires: Fri, 02 Dec 2022 14:37:03 GMT
last-modified: Thu, 03 Oct 2019 21:51:17 GMT
request-context: appId=cid-v1:b6356dc1-e87f-411b-9bf6-6a5f0308e7de
server: Microsoft-IIS/10.0
surrogate-key: scotia-bank-mexico scotia-bank-mexico-2019-global-rebrand-arrow-backtotop.svg
x-aspnet-version: 4.0.30319
x-aspnetmvc-version: 5.2
x-content-type-options: nosniff
x-frame-options: SELF
x-ms-blob-cache-control: public, max-age=1800, s-maxage=1800
x-xss-protection: 1; mode=block
content-length: 502
X-Firefox-Spdy: h2
scotiabankfiles.azureedge.net/scotia-bank-mexico/images/redesign/tiles/2x-tile03-11-22-2.png
152.199.19.161200 OK 237 kB URL HTTP/2 scotiabankfiles.azureedge.net/scotia-bank-mexico/images/redesign/tiles/2x-tile03-11-22-2.png
IP 152.199.19.161:0
File type PNG image data, 696 x 386, 8-bit/color RGBA, non-interlaced\012- data
Size 237 kB (237448 bytes)
Hash b50f5a5075b1e3a05b7fc0ade6037f8f
49c7a2a0dda6eec3de4232874eff02a64e4ff03e
9048a71c980d6ed5e842e3c2905c5b4993b229f5c46bac181dd5012ea4070a0c
GET /scotia-bank-mexico/images/redesign/tiles/2x-tile03-11-22-2.png HTTP/1.1
Host: scotiabankfiles.azureedge.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.scotiabank.com.mx/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
access-control-expose-headers: Request-Context
cache-control: public, max-age=1800, s-maxage=1800
content-security-policy: default-src https: wss: data: blob: 'unsafe-eval' 'unsafe-inline' *; object-src 'none';
content-type: image/png
date: Fri, 02 Dec 2022 14:07:03 GMT
expires: Fri, 02 Dec 2022 14:37:03 GMT
last-modified: Tue, 01 Nov 2022 15:08:18 GMT
request-context: appId=cid-v1:b6356dc1-e87f-411b-9bf6-6a5f0308e7de
server: Microsoft-IIS/10.0
surrogate-key: scotia-bank-mexico scotia-bank-mexico-images-redesign-tiles-2x-tile03-11-22-2.png
x-aspnetmvc-version: 5.2
x-content-type-options: nosniff
x-frame-options: SELF
x-ms-blob-cache-control: public, max-age=1800, s-maxage=1800
x-xss-protection: 1; mode=block
content-length: 237448
X-Firefox-Spdy: h2
scotiabankfiles.azureedge.net/scotia-bank-mexico/images/redesign/tiles/2x-tile06-11-22.png
152.199.19.161200 OK 115 kB URL HTTP/2 scotiabankfiles.azureedge.net/scotia-bank-mexico/images/redesign/tiles/2x-tile06-11-22.png
IP 152.199.19.161:0
File type PNG image data, 696 x 386, 8-bit/color RGBA, non-interlaced\012- data
Size 115 kB (115341 bytes)
Hash 673c6ec0022451688d944d2512f102b0
06a76456e131a5a0db361fe2565b4a6ee537ae9e
78b01b00d0940e795c7bdbc04945ff18f65d633e9910cccde77e04f043fff4c8
GET /scotia-bank-mexico/images/redesign/tiles/2x-tile06-11-22.png HTTP/1.1
Host: scotiabankfiles.azureedge.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.scotiabank.com.mx/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
access-control-expose-headers: Request-Context
cache-control: public, max-age=1800, s-maxage=1800
content-security-policy: default-src https: wss: data: blob: 'unsafe-eval' 'unsafe-inline' *; object-src 'none';
content-type: image/png
date: Fri, 02 Dec 2022 14:07:02 GMT
expires: Fri, 02 Dec 2022 14:37:04 GMT
last-modified: Tue, 01 Nov 2022 14:54:37 GMT
request-context: appId=cid-v1:b6356dc1-e87f-411b-9bf6-6a5f0308e7de
server: Microsoft-IIS/10.0
surrogate-key: scotia-bank-mexico scotia-bank-mexico-images-redesign-tiles-2x-tile06-11-22.png
x-aspnetmvc-version: 5.2
x-content-type-options: nosniff
x-frame-options: SELF
x-ms-blob-cache-control: public, max-age=1800, s-maxage=1800
x-xss-protection: 1; mode=block
content-length: 115341
X-Firefox-Spdy: h2
scotiabankfiles.azureedge.net/scotia-bank-mexico/images/redesign/tiles/2x-tile05-11-22.png
152.199.19.161200 OK 203 kB URL HTTP/2 scotiabankfiles.azureedge.net/scotia-bank-mexico/images/redesign/tiles/2x-tile05-11-22.png
IP 152.199.19.161:0
File type PNG image data, 696 x 386, 8-bit/color RGBA, non-interlaced\012- data
Size 203 kB (203419 bytes)
Hash eaa1b7ad245650bb4f13b9878404d475
e4cd7417dbec0e27acdedec7b0facb53bfb2b4e4
71c232ed519bba8556289c8411534babc614c268898c3087e6b36fc4b05b02a0
GET /scotia-bank-mexico/images/redesign/tiles/2x-tile05-11-22.png HTTP/1.1
Host: scotiabankfiles.azureedge.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.scotiabank.com.mx/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
access-control-expose-headers: Request-Context
cache-control: public, max-age=1800, s-maxage=1800
content-security-policy: default-src https: wss: data: blob: 'unsafe-eval' 'unsafe-inline' *; object-src 'none';
content-type: image/png
date: Fri, 02 Dec 2022 14:07:02 GMT
expires: Fri, 02 Dec 2022 14:37:04 GMT
last-modified: Tue, 01 Nov 2022 05:29:49 GMT
request-context: appId=cid-v1:b6356dc1-e87f-411b-9bf6-6a5f0308e7de
server: Microsoft-IIS/10.0
surrogate-key: scotia-bank-mexico scotia-bank-mexico-images-redesign-tiles-2x-tile05-11-22.png
x-aspnetmvc-version: 5.2
x-content-type-options: nosniff
x-frame-options: SELF
x-ms-blob-cache-control: public, max-age=1800, s-maxage=1800
x-xss-protection: 1; mode=block
content-length: 203419
X-Firefox-Spdy: h2
scotiabankfiles.azureedge.net/scotia-bank-mexico/images/redesign/tiles/2x-tile04-11-22.png
152.199.19.161200 OK 261 kB URL HTTP/2 scotiabankfiles.azureedge.net/scotia-bank-mexico/images/redesign/tiles/2x-tile04-11-22.png
IP 152.199.19.161:0
File type PNG image data, 696 x 386, 8-bit/color RGBA, non-interlaced\012- data
Size 261 kB (261046 bytes)
Hash 0dabe11a07f4cfbb4833f63228e88928
58bd5df04b47c2e7f5f21cef76bd2d95271b9034
6e86272388121fc4f89af891114019a1b9198e1ea563e4ee84cf8d5c2cfb1f45
GET /scotia-bank-mexico/images/redesign/tiles/2x-tile04-11-22.png HTTP/1.1
Host: scotiabankfiles.azureedge.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.scotiabank.com.mx/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
access-control-expose-headers: Request-Context
cache-control: public, max-age=1800, s-maxage=1800
content-security-policy: default-src https: wss: data: blob: 'unsafe-eval' 'unsafe-inline' *; object-src 'none';
content-type: image/png
date: Fri, 02 Dec 2022 14:07:02 GMT
expires: Fri, 02 Dec 2022 14:37:04 GMT
last-modified: Tue, 01 Nov 2022 05:26:42 GMT
request-context: appId=cid-v1:b6356dc1-e87f-411b-9bf6-6a5f0308e7de
server: Microsoft-IIS/10.0
surrogate-key: scotia-bank-mexico scotia-bank-mexico-images-redesign-tiles-2x-tile04-11-22.png
x-aspnetmvc-version: 5.2
x-content-type-options: nosniff
x-frame-options: SELF
x-ms-blob-cache-control: public, max-age=1800, s-maxage=1800
x-xss-protection: 1; mode=block
content-length: 261046
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash da32e4b24f4f95e4e807cff2459f54c3
02db1c6d628b2f51fa0b46fcb79a71178780bc47
4d6ff368a64dc83f4a637fbf44b2256523ca7c43b824022f8f6428de6cfae368
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 14:07:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.scotiabank.com.mx/akam/13/pixel_220d86df
104.110.14.233200 OK 0 B URL HTTP/1.1 www.scotiabank.com.mx/akam/13/pixel_220d86df
IP 104.110.14.233:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert urlquery Phishing - Scotiabank
POST /akam/13/pixel_220d86df HTTP/1.1
Host: www.scotiabank.com.mx
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.scotiabank.com.mx/
Content-Type: application/x-www-form-urlencoded
Request-Id: |O41Um.NT5DV
Content-Length: 2629
Origin: https://www.scotiabank.com.mx
Connection: keep-alive
Cookie: ApplicationGatewayAffinity=c9114da36b3f1ca57d40b29b616f184186872e7d7bf6f7a051b8769fabfdfee4; ak_bmsc=4B911A640E49A10E2B3C2D84C9D733EF~000000000000000000000000000000~YAAQzE0kFyovO3WEAQAABn0p0xEF/TpnmQLp+Z8Cy/XVOLiPYkFGlqZpNXAh25m6wkwaKT8QJRI65Lil4n40F6uzP81kFlXhjuGMpg0gllFB4QXBIHvr1eqYsj93JnCiXiX6mstm6IiO6pgRTzVotrfiPbpYAToEYSlBv+kgoIpgCvz5MqfH4Fg78T5QTfwB1c8j9piRnaECIkL/iY1Hz5SyQasJa2qoA+0gXic+r2tFd7XuW8JCkqzaGAK5sju4Dff7z5so7u6Qo27IGFwYJOXENYt4KIxDNjx1lSsjxlfhAon+ROMjhnrSLAeZ5XHMBVTTor0SoMFUVTHNprq0X4F2DkBuozW6uRI8bHpJc3ORlkLIeNqjCN5421DPJla4KoDjntF7y+MJXnlCTjwfa7UiLv+SvM8jB9z51S7k8XsvsIPCZN7xRqCU3RjbyRNw8LtE8YAm4g0ABs5yEdu+MLjJG5va3iSI6eU=; Scotiabank Mexico_Language=es-mx; ASP.NET_SessionId=23mn1eqqbwlm3fcsfhs01qss; ApplicationGatewayAffinityCORS=c9114da36b3f1ca57d40b29b616f184186872e7d7bf6f7a051b8769fabfdfee4; AMCV_0AAF22CE52827A080A490D4D%40AdobeOrg=1075005958%7CMCIDTS%7C19329%7CvVersion%7C4.4.1; ai_user=vWNBK|2022-12-02T14:07:01.391Z; ai_session=xIpW0|1669990021393|1669990021393; _gcl_au=1.1.1039347691.1669990022; at_check=true; mbox=session#27ea95bbfc2d49a69c8d840380c2be85#1669991882; _ga_S2C51LC0B8=GS1.1.1669990021.1.0.1669990021.0.0.0; _ga=GA1.1.1321391226.1669990022; _ga_3W0XVGF5BR=GS1.1.1669990021.1.0.1669990021.0.0.0
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Content-Type: text/html
Content-Length: 0
Date: Fri, 02 Dec 2022 14:07:03 GMT
Connection: keep-alive
Set-Cookie: ak_bmsc=4B911A640E49A10E2B3C2D84C9D733EF~000000000000000000000000000000~YAAQzE0kFzYvO3WEAQAAB4Ip0xGHXPRJxwz7sV1yivdOglQMvD/6jpBui54FtI29E0Vt9cpo4e9kDGbxNw1xuXeY+U2Gcnhnq/Lor9Xkfrj1EUpLbY96gxoVJM0/SBJSjsKGjITu8reahE1fultnx3RHiqRJJn6pOGYpKNgGzMZixPyrWtZjm2VF5tJb1QPPCUPUHXSVj/6bzihTNTM/CSgjExaYJl9swmgh4DX5cEH/D2DAvklIq2aXzQkVqEV81T47VO8wQC4buKjdGxIo8iI9ISkH1JsZTCydBPl2hePvjzhibkX6ybQ4hm7VBy6xTfKrjcrCP00MHzysVUG0dEUFDUW0jCrhyQw49eOYPj2R1na1WPtZVJD5a1iEnDzTKYll8ny/dl6mMTv9n9AVJsa6iVTGOAbzE1a0RkFM1eUEDrF/mZTObE5ZORKiG9IGKb/5c1HN+ad1MmBbXVmnyMe7HaX+x5swbZEPV8I4+qSAZS7qP/U=; Domain=.scotiabank.com.mx; Path=/; Expires=Fri, 02 Dec 2022 16:07:00 GMT; Max-Age=7197; HttpOnly
cdn.agilitycms.com/scotiabank-costa-rica/2019-global-rebrand/icon_chevron-white-down.svg
152.199.21.175200 OK 312 B URL HTTP/2 cdn.agilitycms.com/scotiabank-costa-rica/2019-global-rebrand/icon_chevron-white-down.svg
IP 152.199.21.175:0
File type SVG Scalable Vector Graphics image\012- HTML document, ASCII text, with very long lines (312), with no line terminators
Hash 25fa73a325550ab8946f5ef8721ab510
6e684018abdb75e24a75f5dacef4459d405d113d
ec89fdf53a67c1531cd1b45a2c6b9b10f3a7ca1ae4f5b898f15009a59aa41946
GET /scotiabank-costa-rica/2019-global-rebrand/icon_chevron-white-down.svg HTTP/1.1
Host: cdn.agilitycms.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.scotiabank.com.mx/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
access-control-expose-headers: Request-Context
cache-control: public, max-age=1800, s-maxage=1800
content-security-policy: default-src https: wss: data: blob: 'unsafe-eval' 'unsafe-inline' *; object-src 'none';
content-type: image/svg+xml
date: Fri, 02 Dec 2022 14:07:02 GMT
expires: Fri, 02 Dec 2022 14:37:04 GMT
last-modified: Fri, 14 Feb 2020 15:20:25 GMT
request-context: appId=cid-v1:b6356dc1-e87f-411b-9bf6-6a5f0308e7de
server: Microsoft-IIS/10.0
surrogate-key: scotiabank-costa-rica scotiabank-costa-rica-2019-global-rebrand-icon_chevron-white-down.svg
x-aspnetmvc-version: 5.2
x-content-type-options: nosniff
x-frame-options: SELF
x-ms-blob-cache-control: public, max-age=1800, s-maxage=1800
x-xss-protection: 1; mode=block
content-length: 312
X-Firefox-Spdy: h2
9050316.fls.doubleclick.net/activityi;src=9050316;type=rmktw0;cat=scoti0;ord=5914626271221;gtm=2wgbu0;auiddc=1039347691.1669990022;~oref=https%3A%2F%2Fwww.scotiabank.com.mx%2F?
142.250.74.38200 OK 234 B URL HTTP/2 9050316.fls.doubleclick.net/activityi;src=9050316;type=rmktw0;cat=scoti0;ord=5914626271221;gtm=2wgbu0;auiddc=1039347691.1669990022;~oref=https%3A%2F%2Fwww.scotiabank.com.mx%2F?
IP 142.250.74.38:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (452), with no line terminators
Hash a884b296384a0e32d0fb00db182a95fe
f09297a47948ccd906a0a305c46d1bb16f21865f
d3815de908530e231a18b0e87d1f96579d25bca215a85fab42874720d06fe24d
GET /activityi;src=9050316;type=rmktw0;cat=scoti0;ord=5914626271221;gtm=2wgbu0;auiddc=1039347691.1669990022;~oref=https%3A%2F%2Fwww.scotiabank.com.mx%2F? HTTP/1.1
Host: 9050316.fls.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.scotiabank.com.mx/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Fri, 02 Dec 2022 14:07:03 GMT
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
strict-transport-security: max-age=21600
content-type: text/html; charset=UTF-8
pragma: no-cache
x-content-type-options: nosniff
content-encoding: br
server: cafe
content-length: 234
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Fri, 02-Dec-2022 14:22:03 GMT; path=/; domain=.doubleclick.net; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
dmtags.scotiabank.com/contentsquare/mexico/fadf0ee4518a1.js
104.110.7.118200 OK 67 kB URL HTTP/1.1 dmtags.scotiabank.com/contentsquare/mexico/fadf0ee4518a1.js
IP 104.110.7.118:0
File type Unicode text, UTF-8 text, with very long lines (64160)
Hash 0abd796755a5530c2a17e97badfee39b
7a9ac9008d642b48f865b0f22e29b39d943ef4c4
bb649874febab22e5732248641f7f712671bced29a9c11aabd39da1a9afab864
GET /contentsquare/mexico/fadf0ee4518a1.js HTTP/1.1
Host: dmtags.scotiabank.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.scotiabank.com.mx/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Accept-Ranges: bytes
Content-Security-Policy: default-src https: data: 'unsafe-inline' 'unsafe-eval'; child-src 'self' *.scotiabank.com *.scotiabankchile.cl *.scotiabank.cl *.scotiabank.com.pe *.scotiabank.com.mx *.scotiabankcr.com *.scotiabankcolpatria.com *.colpatria.com.co *.bns; frame-ancestors *.scotiabank.com *.scointnet.net *.bns
Content-Type: application/x-javascript
ETag: "62ffac59-4d969"
Last-Modified: Fri, 19 Aug 2022 15:29:29 GMT
Server: nginx/1.21.6
X-Frame-Options: SAMEORIGIN
X-Vcap-Request-Id: 59c2e884-1894-4d2e-4749-620940259c1d
X-Xss-Protection: 1; mode=block
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 66563
Date: Fri, 02 Dec 2022 14:07:03 GMT
Connection: keep-alive
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash da32e4b24f4f95e4e807cff2459f54c3
02db1c6d628b2f51fa0b46fcb79a71178780bc47
4d6ff368a64dc83f4a637fbf44b2256523ca7c43b824022f8f6428de6cfae368
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 14:07:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash a6ad57d839c4b452d7118cf2052f9d35
50afdbe46f04c7611c1a0111bce3a76775e50272
4c5c20573601bde0f5c3567e02d02d74ab22d4ffe12f632e1def1b87dc86ad3d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 14:07:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 6b92fa3d26161bb28a6aa03057053c01
a593ba19430239adaf46334f157b190c7d58fa71
6bf556adb0abf8ed27f02713b09de3585284f3758881e643dd6fdf64444aace8
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2539
Cache-Control: max-age=101546
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 14:07:03 GMT
Etag: "6388e646-1d7"
Expires: Sat, 03 Dec 2022 18:19:29 GMT
Last-Modified: Thu, 01 Dec 2022 17:37:10 GMT
Server: ECS (ska/F70C)
X-Cache: HIT
Content-Length: 471
scotiabank.demdex.net/event?d_dil_ver=9.3&_ts=1669990021118
54.76.43.74200 OK 1.6 kB URL HTTP/1.1 scotiabank.demdex.net/event?d_dil_ver=9.3&_ts=1669990021118
IP 54.76.43.74:0
File type JSON data\012- , ASCII text, with very long lines (5418), with no line terminators
Hash 40e3c7edc6c29e6b7c30a2eba874c926
e708ef136bd5fc4f94e489d7bf0f18cf701967cc
0f3299799f4783792fe21394aaabe03683b197f6b55f435686321f9b2b318dbb
POST /event?d_dil_ver=9.3&_ts=1669990021118 HTTP/1.1
Host: scotiabank.demdex.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 169
Origin: https://www.scotiabank.com.mx
Connection: keep-alive
Referer: https://www.scotiabank.com.mx/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://www.scotiabank.com.mx
Cache-Control: no-cache,no-store,must-revalidate,max-age=0,proxy-revalidate,no-transform,private
content-encoding: gzip
Content-Type: application/json;charset=utf-8
DCS: dcs-prod-irl1-1-v045-0ba8f5f7e.edge-irl1.demdex.com 5 ms
Expires: Thu, 01 Jan 1970 00:00:00 UTC
P3P: policyref="/w3c/p3p.xml", CP="NOI NID CURa ADMa DEVa PSAa PSDa OUR SAMa BUS PUR COM NAV INT"
Pragma: no-cache
set-cookie: demdex=09880677399323126920398646790475766584; Max-Age=15552000; Expires=Wed, 31 May 2023 14:07:03 GMT; Path=/; Domain=.demdex.net; Secure; SameSite=None
Strict-Transport-Security: max-age=31536000; includeSubDomains
Vary: Origin
X-TID: J66lGmEBTUc=
Content-Length: 1619
Connection: keep-alive
scotiabank.demdex.net/dest5.html?d_nsid=0
54.76.43.74200 OK 2.8 kB URL HTTP/1.1 scotiabank.demdex.net/dest5.html?d_nsid=0
IP 54.76.43.74:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (550)
Hash ccbdcb1e84c241950763ec4cd516cdfc
55dfa8d4b09c5c3a80fcd101152f6ebed3d27a2c
de9ccb9b168945a24f20edc28c39be4135b328129ba8ee378401a7aedc925d12
GET /dest5.html?d_nsid=0 HTTP/1.1
Host: scotiabank.demdex.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.scotiabank.com.mx/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: no-cache,no-store,must-revalidate,max-age=0,proxy-revalidate,no-transform,private
content-encoding: gzip
Content-Type: text/html;charset=UTF-8
date: Fri, 2 Dec 2022 14:07:03 GMT
DCS: dcs-prod-irl1-1-v045-09f6df340.edge-irl1.demdex.com 0 ms
Expires: Thu, 01 Jan 1970 00:00:00 UTC
last-modified: Fri, 28 Oct 2022 11:02:58 GMT
P3P: policyref="/w3c/p3p.xml", CP="NOI NID CURa ADMa DEVa PSAa PSDa OUR SAMa BUS PUR COM NAV INT"
Pragma: no-cache
Strict-Transport-Security: max-age=31536000; includeSubDomains
vary: accept-encoding
X-TID: LUQ396jvTAM=
Content-Length: 2791
Connection: keep-alive
scotiabank.tt.omtrdc.net/m2/scotiabank/mbox/json?mbox=target-global-mbox&mboxSession=27ea95bbfc2d49a69c8d840380c2be85&mboxPC=&mboxPage=11bb8f2c24934d81a7e560f5c7c01030&mboxRid=6038686558d54ab68f09737406d0fd2e&mboxVersion=1.8.1&mboxCount=1&mboxTime=1669990021660&mboxHost=www.scotiabank.com.mx&mboxURL=https%3A%2F%2Fwww.scotiabank.com.mx%2F&mboxReferrer=&browserHeight=939&browserWidth=1268&browserTimeOffset=0&screenHeight=1024&screenWidth=1280&colorDepth=24&devicePixelRatio=1&screenOrientation=landscape&mboxMCSDID=7A8F8C58A00EDFE9-51BD4499AA87A049&mboxMCGVID=00463064252925484540619972867403642410&mboxAAMB=6G1ynYcLPuiQxYZrsz_pkqfLG9yMXBpb2zX5dvJdYQJzPXImdj0y&mboxMCGLH=6
54.74.22.74200 OK 96 B URL HTTP/2 scotiabank.tt.omtrdc.net/m2/scotiabank/mbox/json?mbox=target-global-mbox&mboxSession=27ea95bbfc2d49a69c8d840380c2be85&mboxPC=&mboxPage=11bb8f2c24934d81a7e560f5c7c01030&mboxRid=6038686558d54ab68f09737406d0fd2e&mboxVersion=1.8.1&mboxCount=1&mboxTime=1669990021660&mboxHost=www.scotiabank.com.mx&mboxURL=https%3A%2F%2Fwww.scotiabank.com.mx%2F&mboxReferrer=&browserHeight=939&browserWidth=1268&browserTimeOffset=0&screenHeight=1024&screenWidth=1280&colorDepth=24&devicePixelRatio=1&screenOrientation=landscape&mboxMCSDID=7A8F8C58A00EDFE9-51BD4499AA87A049&mboxMCGVID=00463064252925484540619972867403642410&mboxAAMB=6G1ynYcLPuiQxYZrsz_pkqfLG9yMXBpb2zX5dvJdYQJzPXImdj0y&mboxMCGLH=6
IP 54.74.22.74:0
File type JSON data\012- , ASCII text, with no line terminators
Hash a8f4512ac5d3737412f3631cd3b0d431
61ea28398cf34a7f0b42c4ee4b508a7e0e7ef648
301c025ec4ccfc7f6c5080446b12d6fa64e0df4f42869881d7acffd03149ca29
GET /m2/scotiabank/mbox/json?mbox=target-global-mbox&mboxSession=27ea95bbfc2d49a69c8d840380c2be85&mboxPC=&mboxPage=11bb8f2c24934d81a7e560f5c7c01030&mboxRid=6038686558d54ab68f09737406d0fd2e&mboxVersion=1.8.1&mboxCount=1&mboxTime=1669990021660&mboxHost=www.scotiabank.com.mx&mboxURL=https%3A%2F%2Fwww.scotiabank.com.mx%2F&mboxReferrer=&browserHeight=939&browserWidth=1268&browserTimeOffset=0&screenHeight=1024&screenWidth=1280&colorDepth=24&devicePixelRatio=1&screenOrientation=landscape&mboxMCSDID=7A8F8C58A00EDFE9-51BD4499AA87A049&mboxMCGVID=00463064252925484540619972867403642410&mboxAAMB=6G1ynYcLPuiQxYZrsz_pkqfLG9yMXBpb2zX5dvJdYQJzPXImdj0y&mboxMCGLH=6 HTTP/1.1
Host: scotiabank.tt.omtrdc.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.scotiabank.com.mx
Connection: keep-alive
Referer: https://www.scotiabank.com.mx/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 02 Dec 2022 14:07:03 GMT
content-type: application/json;charset=UTF-8
content-length: 96
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-origin: https://www.scotiabank.com.mx
access-control-allow-credentials: true
x-request-id: 6038686558d54ab68f09737406d0fd2e
pragma: no-cache
cache-control: no-cache
timing-allow-origin: *
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 994e0ee542549b6ac6e8243c199e6816
38136c025e288c0e71acc63a860b6d458438fa7a
ae4eda019bd3bf1413a1045994c2b774815c7f68302524348678d089fb4c836f
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 14:07:03 GMT
Etag: "638830e9-1d7"
Server: ECS (amb/6B71)
Content-Length: 471
adservice.google.com/ddm/fls/i/src=9050316;type=rmktw0;cat=scoti0;ord=5914626271221;gtm=2wgbu0;auiddc=1039347691.1669990022;~oref=https%3A%2F%2Fwww.scotiabank.com.mx%2F
142.250.74.2200 OK 234 B URL HTTP/2 adservice.google.com/ddm/fls/i/src=9050316;type=rmktw0;cat=scoti0;ord=5914626271221;gtm=2wgbu0;auiddc=1039347691.1669990022;~oref=https%3A%2F%2Fwww.scotiabank.com.mx%2F
IP 142.250.74.2:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (451), with no line terminators
Hash 28895fb665e546076a8cf6992a9f87a1
2818ac68f6075fc92691331207f1bb606f12deda
58ff5b9c4dd5e3bb106a003c31f37d4dac8c9ad061506f3d1236d6db54d61ed0
GET /ddm/fls/i/src=9050316;type=rmktw0;cat=scoti0;ord=5914626271221;gtm=2wgbu0;auiddc=1039347691.1669990022;~oref=https%3A%2F%2Fwww.scotiabank.com.mx%2F HTTP/1.1
Host: adservice.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://9050316.fls.doubleclick.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Fri, 02 Dec 2022 14:07:03 GMT
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/html; charset=UTF-8
pragma: no-cache
x-content-type-options: nosniff
content-encoding: br
server: cafe
content-length: 234
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash a6ad57d839c4b452d7118cf2052f9d35
50afdbe46f04c7611c1a0111bce3a76775e50272
4c5c20573601bde0f5c3567e02d02d74ab22d4ffe12f632e1def1b87dc86ad3d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 14:07:04 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 59ccaf5f1bf1101f3d43ae777be4f6a9
2740c2403e005eac512a829e64de6a03a65fcbb6
1c6da1c071531cd11b32e943b42798202de1a80882e067773ed4d6147094587f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 14:07:04 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
scotiabankfiles.azureedge.net/scotia-bank-mexico/images/redesign/tiles/2x-tile02-11-22.png
152.199.19.161200 OK 5.1 kB URL HTTP/2 scotiabankfiles.azureedge.net/scotia-bank-mexico/images/redesign/tiles/2x-tile02-11-22.png
IP 152.199.19.161:0
File type gzip compressed data, from Unix\012- data
Hash d67c446c2cab982c70305d63c3ff9015
08741352ebaae78ddabfbac3ba30888b13ea14ff
b4842a6a73b1be94b6a5205776640c7af585e90daffa09db234c3bf553fa5e7d
GET /scotia-bank-mexico/images/redesign/tiles/2x-tile02-11-22.png HTTP/1.1
Host: scotiabankfiles.azureedge.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.scotiabank.com.mx/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
access-control-expose-headers: Request-Context
cache-control: public, max-age=1800, s-maxage=1800
content-security-policy: default-src https: wss: data: blob: 'unsafe-eval' 'unsafe-inline' *; object-src 'none';
content-type: image/png
date: Fri, 02 Dec 2022 14:07:03 GMT
expires: Fri, 02 Dec 2022 14:37:03 GMT
last-modified: Tue, 01 Nov 2022 05:22:12 GMT
request-context: appId=cid-v1:b6356dc1-e87f-411b-9bf6-6a5f0308e7de
server: Microsoft-IIS/10.0
surrogate-key: scotia-bank-mexico scotia-bank-mexico-images-redesign-tiles-2x-tile02-11-22.png
x-aspnetmvc-version: 5.2
x-content-type-options: nosniff
x-frame-options: SELF
x-ms-blob-cache-control: public, max-age=1800, s-maxage=1800
x-xss-protection: 1; mode=block
content-length: 240371
X-Firefox-Spdy: h2
ocsp.r2m02.amazontrust.com/
54.230.80.227200 OK 471 B URL HTTP/1.1 ocsp.r2m02.amazontrust.com/
IP 54.230.80.227:0
Hash 15463e6ddc9d81fa082e6a85c7b08d47
13357eda19c900121343930933fd7eff6e300d50
caf04d09fbe707a20a1b609481d628bbb4def75a88208179c3c3722bcda5f9d6
POST / HTTP/1.1
Host: ocsp.r2m02.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=85967
Date: Fri, 02 Dec 2022 14:07:04 GMT
Etag: "6388a70c-1d7"
Expires: Sat, 03 Dec 2022 13:59:51 GMT
Last-Modified: Thu, 01 Dec 2022 13:07:24 GMT
Server: ECS (nyb/1D1E)
X-Cache: Miss from cloudfront
Via: 1.1 15d199af49035dc206cb81292fd87de2.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: h-dUbYEJq_LOh5cjBuM74kfeb-JmAOGusCkmgDW0zYLxE5sJjWwzRw==
Age: 3147
c.contentsquare.net/pageview?pid=3931&uu=daae1c63-64b6-a411-c6cf-68fe08676a35&sn=1&lv=1669990022&lhd=1669990022&hd=1669990022&pn=1&dw=1268&dh=2261&ww=1280&wh=939&sw=1280&sh=1024&dr=&url=https%3A%2F%2Fwww.scotiabank.com.mx%2F&uc=0&la=en-US&v=11.9.6&r=536908
63.32.142.75204 No Content 0 B URL HTTP/2 c.contentsquare.net/pageview?pid=3931&uu=daae1c63-64b6-a411-c6cf-68fe08676a35&sn=1&lv=1669990022&lhd=1669990022&hd=1669990022&pn=1&dw=1268&dh=2261&ww=1280&wh=939&sw=1280&sh=1024&dr=&url=https%3A%2F%2Fwww.scotiabank.com.mx%2F&uc=0&la=en-US&v=11.9.6&r=536908
IP 63.32.142.75:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pageview?pid=3931&uu=daae1c63-64b6-a411-c6cf-68fe08676a35&sn=1&lv=1669990022&lhd=1669990022&hd=1669990022&pn=1&dw=1268&dh=2261&ww=1280&wh=939&sw=1280&sh=1024&dr=&url=https%3A%2F%2Fwww.scotiabank.com.mx%2F&uc=0&la=en-US&v=11.9.6&r=536908 HTTP/1.1
Host: c.contentsquare.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.scotiabank.com.mx/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
date: Fri, 02 Dec 2022 14:07:04 GMT
timing-allow-origin: *
cache-control: no-cache, no-store, must-revalidate, pre-check=0, post-check=0
pragma: no-cache
expires: Sun, 24 Oct 1982 23:00:00 GMT
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Access-Control-Expose-Headers, Content-Type, Content-Compression, X-Requested-With
content-disposition: inline
X-Firefox-Spdy: h2
scotiabank.demdex.net/event?d_dil_ver=9.3&_ts=1669990021118
54.76.43.74200 OK 1.6 kB URL HTTP/1.1 scotiabank.demdex.net/event?d_dil_ver=9.3&_ts=1669990021118
IP 54.76.43.74:0
File type JSON data\012- , ASCII text, with very long lines (5418), with no line terminators
Hash daf0226325436529ba9efdb17632d598
3871c0edeef78e23808329a21afa4b0b3ce1ac17
5023614d82d18e5abc46ca3907b382671eeb543233e9a06a40ebad019c9c8d72
POST /event?d_dil_ver=9.3&_ts=1669990021118 HTTP/1.1
Host: scotiabank.demdex.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 254
Origin: https://www.scotiabank.com.mx
Connection: keep-alive
Referer: https://www.scotiabank.com.mx/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://www.scotiabank.com.mx
Cache-Control: no-cache,no-store,must-revalidate,max-age=0,proxy-revalidate,no-transform,private
content-encoding: gzip
Content-Type: application/json;charset=utf-8
DCS: dcs-prod-irl1-2-v045-00d737c39.edge-irl1.demdex.com 5 ms
Expires: Thu, 01 Jan 1970 00:00:00 UTC
P3P: policyref="/w3c/p3p.xml", CP="NOI NID CURa ADMa DEVa PSAa PSDa OUR SAMa BUS PUR COM NAV INT"
Pragma: no-cache
set-cookie: demdex=09880677399323126920398646790475766584; Max-Age=15552000; Expires=Wed, 31 May 2023 14:07:04 GMT; Path=/; Domain=.demdex.net; Secure; SameSite=None
Strict-Transport-Security: max-age=31536000; includeSubDomains
Vary: Origin
X-TID: gDXHNM0yR3M=
Content-Length: 1620
Connection: keep-alive
ocsp.sca1b.amazontrust.com/
143.204.42.88200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.88:0
Hash 7293e8442f690d1ddb540d9efe7ebe43
0683bfe3970e95977f91711779925f367e1b9dfa
00c43ea3dcae08bab7dbb73ec68c50d23bbfb75c0f11dcc2abde123765de0500
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=103285
Date: Fri, 02 Dec 2022 14:07:04 GMT
Etag: "6388ed4c-1d7"
Expires: Sat, 03 Dec 2022 18:48:29 GMT
Last-Modified: Thu, 01 Dec 2022 18:07:08 GMT
Server: ECS (nyb/1D34)
X-Cache: Miss from cloudfront
Via: 1.1 50584ad285d5f627ddebae74efdd0770.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: QK-lgJpZgD8relNbf2Qic1SutybT7Dx4tacMNUhZDLMHeqhpRYEFHg==
Age: 2481
ocsp.sca1b.amazontrust.com/
143.204.42.88200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.88:0
Hash 7293e8442f690d1ddb540d9efe7ebe43
0683bfe3970e95977f91711779925f367e1b9dfa
00c43ea3dcae08bab7dbb73ec68c50d23bbfb75c0f11dcc2abde123765de0500
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=103365
Date: Fri, 02 Dec 2022 14:07:04 GMT
Etag: "6388ed4c-1d7"
Expires: Sat, 03 Dec 2022 18:49:49 GMT
Last-Modified: Thu, 01 Dec 2022 18:07:08 GMT
Server: ECS (nyb/1D08)
X-Cache: Miss from cloudfront
Via: 1.1 dbfaae0db03f11cf713bbcbdb25be4a2.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: s5wK9IYvzIuxCGFdJ6MBCn3O0XHUS1yoLxf-pD78Jo3WNuiOodW_9Q==
Age: 2561
region1.google-analytics.com/g/collect?v=2&tid=G-S2C51LC0B8>m=2oebu0&_p=560236646&cid=1321391226.1669990022&ul=en-us&sr=1280x1024&_s=1&sid=1669990021&sct=1&seg=0&dl=https%3A%2F%2Fwww.scotiabank.com.mx%2F&dt=Scotiabank%20M%C3%A9xico%20%7C%20T%C3%BA%20decides%2C%20Nosotros%20te%20Asesoramos&en=page_view&_fv=1&_nsi=1&_ss=1
216.239.32.36204 No Content 0 B URL HTTP/2 region1.google-analytics.com/g/collect?v=2&tid=G-S2C51LC0B8>m=2oebu0&_p=560236646&cid=1321391226.1669990022&ul=en-us&sr=1280x1024&_s=1&sid=1669990021&sct=1&seg=0&dl=https%3A%2F%2Fwww.scotiabank.com.mx%2F&dt=Scotiabank%20M%C3%A9xico%20%7C%20T%C3%BA%20decides%2C%20Nosotros%20te%20Asesoramos&en=page_view&_fv=1&_nsi=1&_ss=1
IP 216.239.32.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-S2C51LC0B8>m=2oebu0&_p=560236646&cid=1321391226.1669990022&ul=en-us&sr=1280x1024&_s=1&sid=1669990021&sct=1&seg=0&dl=https%3A%2F%2Fwww.scotiabank.com.mx%2F&dt=Scotiabank%20M%C3%A9xico%20%7C%20T%C3%BA%20decides%2C%20Nosotros%20te%20Asesoramos&en=page_view&_fv=1&_nsi=1&_ss=1 HTTP/1.1
Host: region1.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.scotiabank.com.mx
Connection: keep-alive
Referer: https://www.scotiabank.com.mx/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://www.scotiabank.com.mx
date: Fri, 02 Dec 2022 14:07:04 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
region1.google-analytics.com/g/collect?v=2&tid=G-3W0XVGF5BR>m=2oebu0&_p=560236646&cid=1321391226.1669990022&ul=en-us&sr=1280x1024&_s=1&sid=1669990021&sct=1&seg=0&dl=https%3A%2F%2Fwww.scotiabank.com.mx%2F&dt=Scotiabank%20M%C3%A9xico%20%7C%20T%C3%BA%20decides%2C%20Nosotros%20te%20Asesoramos&en=page_view&_fv=1&_ss=1
216.239.32.36204 No Content 0 B URL HTTP/2 region1.google-analytics.com/g/collect?v=2&tid=G-3W0XVGF5BR>m=2oebu0&_p=560236646&cid=1321391226.1669990022&ul=en-us&sr=1280x1024&_s=1&sid=1669990021&sct=1&seg=0&dl=https%3A%2F%2Fwww.scotiabank.com.mx%2F&dt=Scotiabank%20M%C3%A9xico%20%7C%20T%C3%BA%20decides%2C%20Nosotros%20te%20Asesoramos&en=page_view&_fv=1&_ss=1
IP 216.239.32.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-3W0XVGF5BR>m=2oebu0&_p=560236646&cid=1321391226.1669990022&ul=en-us&sr=1280x1024&_s=1&sid=1669990021&sct=1&seg=0&dl=https%3A%2F%2Fwww.scotiabank.com.mx%2F&dt=Scotiabank%20M%C3%A9xico%20%7C%20T%C3%BA%20decides%2C%20Nosotros%20te%20Asesoramos&en=page_view&_fv=1&_ss=1 HTTP/1.1
Host: region1.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.scotiabank.com.mx
Connection: keep-alive
Referer: https://www.scotiabank.com.mx/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
TE: trailers
HTTP/2 204 No Content
access-control-allow-origin: https://www.scotiabank.com.mx
date: Fri, 02 Dec 2022 14:07:04 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
scotiabank.demdex.net/event?d_dil_ver=9.3&_ts=1669990021807
54.76.43.74200 OK 1.6 kB URL HTTP/1.1 scotiabank.demdex.net/event?d_dil_ver=9.3&_ts=1669990021807
IP 54.76.43.74:0
File type JSON data\012- , ASCII text, with very long lines (5418), with no line terminators
Hash 41a3fbea16f31dc6d343ab6139c19781
f28228e1911f245908bb6671111d186c7bc23035
6cd77450859f18601b954e4f4f9f6873e6e41f51aa33410bedcb98bb949573fa
POST /event?d_dil_ver=9.3&_ts=1669990021807 HTTP/1.1
Host: scotiabank.demdex.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 169
Origin: https://www.scotiabank.com.mx
Connection: keep-alive
Referer: https://www.scotiabank.com.mx/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://www.scotiabank.com.mx
Cache-Control: no-cache,no-store,must-revalidate,max-age=0,proxy-revalidate,no-transform,private
content-encoding: gzip
Content-Type: application/json;charset=utf-8
DCS: dcs-prod-irl1-1-v045-04c35fc5e.edge-irl1.demdex.com 5 ms
Expires: Thu, 01 Jan 1970 00:00:00 UTC
P3P: policyref="/w3c/p3p.xml", CP="NOI NID CURa ADMa DEVa PSAa PSDa OUR SAMa BUS PUR COM NAV INT"
Pragma: no-cache
set-cookie: demdex=09880677399323126920398646790475766584; Max-Age=15552000; Expires=Wed, 31 May 2023 14:07:04 GMT; Path=/; Domain=.demdex.net; Secure; SameSite=None
Strict-Transport-Security: max-age=31536000; includeSubDomains
Vary: Origin
X-TID: b197FJ8LQZ8=
Content-Length: 1619
Connection: keep-alive
q-aus1.contentsquare.net/quota?
52.45.126.133200 OK 0 B URL HTTP/2 q-aus1.contentsquare.net/quota?
IP 52.45.126.133:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /quota? HTTP/1.1
Host: q-aus1.contentsquare.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://www.scotiabank.com.mx/
Origin: https://www.scotiabank.com.mx
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 02 Dec 2022 14:07:04 GMT
content-length: 0
timing-allow-origin: *
access-control-allow-origin: *
access-control-allow-methods: POST, OPTIONS
cache-control: no-cache, no-store, must-revalidate, pre-check=0, post-check=0
pragma: no-cache
expires: Sat, 01 Jan 2000 00:00:00 GMT
access-control-allow-headers: Access-Control-Expose-Headers, Content-Type, Content-Compression, X-Requested-With
X-Firefox-Spdy: h2
adservice.google.no/ddm/fls/i/src=9050316;type=rmktw0;cat=scoti0;ord=5914626271221;gtm=2wgbu0;auiddc=1039347691.1669990022;~oref=https%3A%2F%2Fwww.scotiabank.com.mx%2F
142.250.74.162200 OK 85 B URL HTTP/2 adservice.google.no/ddm/fls/i/src=9050316;type=rmktw0;cat=scoti0;ord=5914626271221;gtm=2wgbu0;auiddc=1039347691.1669990022;~oref=https%3A%2F%2Fwww.scotiabank.com.mx%2F
IP 142.250.74.162:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with no line terminators
Hash 4a3b3637744caa4a0b08fabbd76cc830
755e5626762ecf38f55012da892a227bf50f15f1
6a12009f3d99f10dd5acb27389beefed79eddd7fa55ddcc591baf92861d51bfb
GET /ddm/fls/i/src=9050316;type=rmktw0;cat=scoti0;ord=5914626271221;gtm=2wgbu0;auiddc=1039347691.1669990022;~oref=https%3A%2F%2Fwww.scotiabank.com.mx%2F HTTP/1.1
Host: adservice.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://adservice.google.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Fri, 02 Dec 2022 14:07:04 GMT
expires: Fri, 02 Dec 2022 14:07:04 GMT
cache-control: private, max-age=0
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
content-encoding: br
server: cafe
content-length: 85
x-xss-protection: 0
alt-svc: h3="googleads.g.doubleclick.net:443"; ma=2592000,h3=":443"; ma=2592000,h3-29="googleads.g.doubleclick.net:443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic="googleads.g.doubleclick.net:443"; ma=2592000; v="46,43",quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
scotiabank.demdex.net/event?d_dil_ver=9.3&_ts=1669990021809
54.76.43.74200 OK 1.6 kB URL HTTP/1.1 scotiabank.demdex.net/event?d_dil_ver=9.3&_ts=1669990021809
IP 54.76.43.74:0
File type JSON data\012- , ASCII text, with very long lines (5418), with no line terminators
Hash cecee948bfdab195aaa0b60eaea85f8c
42ec0bb62bef4d37ed9895df9d9fcc7030b80c68
14983c3806acefddaef63b76a7352a0011930d008df98ef677e8836d40575ddf
POST /event?d_dil_ver=9.3&_ts=1669990021809 HTTP/1.1
Host: scotiabank.demdex.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 197
Origin: https://www.scotiabank.com.mx
Connection: keep-alive
Referer: https://www.scotiabank.com.mx/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://www.scotiabank.com.mx
Cache-Control: no-cache,no-store,must-revalidate,max-age=0,proxy-revalidate,no-transform,private
content-encoding: gzip
Content-Type: application/json;charset=utf-8
DCS: dcs-prod-irl1-1-v045-04c35fc5e.edge-irl1.demdex.com 5 ms
Expires: Thu, 01 Jan 1970 00:00:00 UTC
P3P: policyref="/w3c/p3p.xml", CP="NOI NID CURa ADMa DEVa PSAa PSDa OUR SAMa BUS PUR COM NAV INT"
Pragma: no-cache
set-cookie: demdex=09880677399323126920398646790475766584; Max-Age=15552000; Expires=Wed, 31 May 2023 14:07:04 GMT; Path=/; Domain=.demdex.net; Secure; SameSite=None
Strict-Transport-Security: max-age=31536000; includeSubDomains
Vary: Origin
X-TID: eiSo3yMFSqM=
Content-Length: 1618
Connection: keep-alive
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 59ccaf5f1bf1101f3d43ae777be4f6a9
2740c2403e005eac512a829e64de6a03a65fcbb6
1c6da1c071531cd11b32e943b42798202de1a80882e067773ed4d6147094587f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 14:07:04 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
q-aus1.contentsquare.net/quota?
52.45.126.133200 OK 29 B URL HTTP/2 q-aus1.contentsquare.net/quota?
IP 52.45.126.133:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 460c4cf5b933fb9fa62230636f6a31c4
220d84f0e1fc99eb4b1ea56ff6839dcb80f5f382
70c705d49e04d07b8353972235ca2f2f7f48c1ddbb671829a282558b991a8fa1
POST /quota? HTTP/1.1
Host: q-aus1.contentsquare.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 136
Origin: https://www.scotiabank.com.mx
Connection: keep-alive
Referer: https://www.scotiabank.com.mx/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 02 Dec 2022 14:07:04 GMT
content-type: application/json
content-length: 29
timing-allow-origin: *
access-control-allow-origin: *
access-control-allow-methods: POST, OPTIONS
access-control-allow-headers: Access-Control-Expose-Headers, Content-Type, Content-Compression
X-Firefox-Spdy: h2
c.amazon-adsystem.com/aat/amzn.js
143.204.46.73200 OK 6.7 kB URL HTTP/2 c.amazon-adsystem.com/aat/amzn.js
IP 143.204.46.73:0
File type ASCII text, with very long lines (6557)
Hash 4e42700e21a922978b72507ad18a7fea
3c98e940b9a4bc6ec04f9d4f8ff1c8a0ca19cb60
45153d776213fa86c1ef7dca51e36d669e1b697b53907f3bf7cd3ee706edbaec
GET /aat/amzn.js HTTP/1.1
Host: c.amazon-adsystem.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.scotiabank.com.mx/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/javascript
content-length: 6674
last-modified: Thu, 11 Nov 2021 17:52:19 GMT
x-amz-version-id: RCjAxJ8CrRqbtKQCS4KIrWhcLcYrBklc
accept-ranges: bytes
server: AmazonS3
date: Fri, 02 Dec 2022 02:24:00 GMT
etag: "4e42700e21a922978b72507ad18a7fea"
x-cache: Hit from cloudfront
via: 1.1 6480520a5e02f3163410e3134bd77baa.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: zV_3g7tMCbn8cEJj5YZgxDlouu9Y2MqKa8K6hJVksiN6JBAAbPIPCg==
age: 42185
X-Firefox-Spdy: h2
snap.licdn.com/li.lms-analytics/insight.min.js
23.36.76.210200 OK 4.6 kB URL HTTP/2 snap.licdn.com/li.lms-analytics/insight.min.js
IP 23.36.76.210:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (12961)
Hash c1a25b303b61b25e995516f5559bcdea
3c16a6fa3a2a6dc59d57a9ea1588c4f259884688
2063d2d1415ce9437e9331cb9a798714a5b2e106a65d6dc0ef0d426a5a4c30f2
GET /li.lms-analytics/insight.min.js HTTP/1.1
Host: snap.licdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.scotiabank.com.mx/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
last-modified: Thu, 17 Nov 2022 18:52:45 GMT
accept-ranges: bytes
content-type: application/x-javascript;charset=utf-8
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=65642
date: Fri, 02 Dec 2022 14:07:04 GMT
content-length: 4581
x-cdn: AKAM
X-Firefox-Spdy: h2
www.google-analytics.com/analytics.js
142.250.74.46200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 142.250.74.46:0
File type ASCII text, with very long lines (1325)
Hash 47e6f374ca946fddd5b59871b325736c
baa9282efc8785e84d247c3bff518eaa45f101c4
16580b5c87c58e5702e411f1888fdef511094e4cd6d62bb47d16291ffb25985e
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.scotiabank.com.mx/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20039
date: Fri, 02 Dec 2022 12:46:55 GMT
expires: Fri, 02 Dec 2022 14:46:55 GMT
cache-control: public, max-age=7200
age: 4809
last-modified: Tue, 27 Sep 2022 22:01:05 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash a11a991958dbd78dfb3392214590ef38
c5fb54ce1ad1c51598623b66827af482c565e0d5
01d67dc39941deea93712fa87453fd27679357916ab856358e0bda7a63b2624d
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2668
Cache-Control: max-age=123638
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 14:07:04 GMT
Etag: "63893c12-1d7"
Expires: Sun, 04 Dec 2022 00:27:42 GMT
Last-Modified: Thu, 01 Dec 2022 23:43:14 GMT
Server: ECS (ska/F70C)
X-Cache: HIT
Content-Length: 471
connect.facebook.net/en_US/fbevents.js
157.240.240.1200 OK 27 kB URL HTTP/2 connect.facebook.net/en_US/fbevents.js
IP 157.240.240.1:0
File type ASCII text, with very long lines (64348)
Hash 44ecaa3c2a4929a40141edc4540aaf84
f29a573182333b2500d41bfc389d6c5232dfb348
6589fe14578dedd4df678a909afadd7e5bc7f57c7e3e24518a7f5faac7383396
GET /en_US/fbevents.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.scotiabank.com.mx/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
content-type: application/x-javascript; charset=utf-8
content-security-policy: default-src facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com data: blob: 'self';script-src *.fbcdn.net *.facebook.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src data: blob: 'unsafe-inline' facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com;connect-src *.fbcdn.net *.facebook.net wss://*.fbcdn.net attachment.fbsbx.com blob: 'self';block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
pragma: public
cache-control: public, max-age=1200
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
x-fb-debug: 77obLM6heiw4TXJ7ovCJjXPgVv0gkIqBVDBLMscj8t8bqzdOVlQ6l0UlECUHUG5Y+VdCe7Xru1bab4sH0dQjYg==
content-length: 27340
x-fb-trip-id: 1679558926
date: Fri, 02 Dec 2022 14:07:04 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.linkedin.oribi.io/partner/31046/domain/scotiabank.com.mx/token
143.204.55.87200 OK 0 B URL HTTP/2 cdn.linkedin.oribi.io/partner/31046/domain/scotiabank.com.mx/token
IP 143.204.55.87:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert urlquery Phishing - Scotiabank
OPTIONS /partner/31046/domain/scotiabank.com.mx/token HTTP/1.1
Host: cdn.linkedin.oribi.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: content-type
Referer: https://www.scotiabank.com.mx/
Origin: https://www.scotiabank.com.mx
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-length: 0
date: Fri, 02 Dec 2022 02:58:42 GMT
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-allow-headers: content-type
access-control-max-age: 1800
allow: GET, HEAD, POST, PUT, DELETE, OPTIONS, PATCH
x-cache: Hit from cloudfront
via: 1.1 96c778ce6156d12f24b8b6cdaa0cbf66.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: x9oR3c4WThzStGlpum3JemXq7UHJ7Q9fbeXGsshPvcF-L21uU_55Uw==
age: 40101
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash a11a991958dbd78dfb3392214590ef38
c5fb54ce1ad1c51598623b66827af482c565e0d5
01d67dc39941deea93712fa87453fd27679357916ab856358e0bda7a63b2624d
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5474
Cache-Control: max-age=126444
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 14:07:04 GMT
Etag: "63893c12-1d7"
Expires: Sun, 04 Dec 2022 01:14:28 GMT
Last-Modified: Thu, 01 Dec 2022 23:43:14 GMT
Server: ECS (ska/F6FC)
X-Cache: HIT
Content-Length: 471
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 49a9684674e0f1b3974c6427c5354fe4
c201e61bcda9cc91369f0c57f8236fcdd3db26c6
27b8d50242836a45aca1fcd0cb58e7f685011c1f93b57d0e3ea9a02400f8d801
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 14:07:04 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-16719465-8&cid=1321391226.1669990022&jid=1834554044&gjid=1798772566&_gid=459747396.1669990023&_u=aCDAiEAjRAAAAEAAI~&z=673050034
64.233.165.154200 OK 4 B URL HTTP/2 stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-16719465-8&cid=1321391226.1669990022&jid=1834554044&gjid=1798772566&_gid=459747396.1669990023&_u=aCDAiEAjRAAAAEAAI~&z=673050034
IP 64.233.165.154:0
File type ASCII text, with no line terminators
Hash 48c0473b7821185d937e685216e2168b
3743e47f8a429a5e87b86cb582d78940733d9d2e
570c4d4674fd20602189c548c145ba1f8ac34bc2e4599a71471969028aa1e25a
POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-16719465-8&cid=1321391226.1669990022&jid=1834554044&gjid=1798772566&_gid=459747396.1669990023&_u=aCDAiEAjRAAAAEAAI~&z=673050034 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://www.scotiabank.com.mx
Connection: keep-alive
Referer: https://www.scotiabank.com.mx/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://www.scotiabank.com.mx
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Fri, 02 Dec 2022 14:07:04 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
px.ads.linkedin.com/collect?v=2&fmt=js&pid=31046&time=1669990022751&url=https%3A%2F%2Fwww.scotiabank.com.mx%2F
13.107.42.14302 Found 0 B URL HTTP/2 px.ads.linkedin.com/collect?v=2&fmt=js&pid=31046&time=1669990022751&url=https%3A%2F%2Fwww.scotiabank.com.mx%2F
IP 13.107.42.14:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /collect?v=2&fmt=js&pid=31046&time=1669990022751&url=https%3A%2F%2Fwww.scotiabank.com.mx%2F HTTP/1.1
Host: px.ads.linkedin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.scotiabank.com.mx/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
location: https://www.linkedin.com/px/li_sync?redirect=https%3A%2F%2Fpx.ads.linkedin.com%2Fcollect%3Fv%3D2%26fmt%3Djs%26pid%3D31046%26time%3D1669990022751%26url%3Dhttps%253A%252F%252Fwww.scotiabank.com.mx%252F%26liSync%3Dtrue
set-cookie: UserMatchHistory=AQI4pIyUfphJFQAAAYTTKYYg3iyzR2NExW40W62hefba6GE6wS_Ur4wepo3Z6UELKg0RW1E-TaPJRA; Max-Age=2592000; Expires=Sun, 01 Jan 2023 14:07:04 GMT; SameSite=None; Path=/; Domain=.linkedin.com; Secure
AnalyticsSyncHistory=AQLQQW0323eHIwAAAYTTKYYgXijD3MkkPL2XygWgBQAYbbcGu6Bn8DwIIJQjsu8-BHRMfjd5twvo4IV94WFekQ; Max-Age=2592000; Expires=Sun, 01 Jan 2023 14:07:04 GMT; SameSite=None; Path=/; Domain=.linkedin.com; Secure
lang=v=2&lang=en-us; SameSite=None; Path=/; Domain=ads.linkedin.com; Secure
bcookie="v=2&a440ce04-97d9-4140-8cc2-95490141b30a"; domain=.linkedin.com; Path=/; Secure; Expires=Sat, 02-Dec-2023 14:07:04 GMT; SameSite=None
lidc="b=VGST09:s=V:r=V:a=V:p=V:g=2441:u=1:x=1:i=1669990024:t=1670076424:v=2:sig=AQHHtjuShNQrMO6VGBJqW6P9HLNXjxGa"; Expires=Sat, 03 Dec 2022 14:07:04 GMT; domain=.linkedin.com; Path=/; SameSite=None; Secure
linkedin-action: 1
x-li-fabric: prod-lva1
x-li-pop: afd-prod-lva1-x
x-li-proto: http/2
x-li-uuid: AAXu2NozycyOgVUNKf/FMA==
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: 7DF9045621A04B6AB26374397B3B536A Ref B: OSL30EDGE0209 Ref C: 2022-12-02T14:07:04Z
date: Fri, 02 Dec 2022 14:07:04 GMT
content-length: 0
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 49a9684674e0f1b3974c6427c5354fe4
c201e61bcda9cc91369f0c57f8236fcdd3db26c6
27b8d50242836a45aca1fcd0cb58e7f685011c1f93b57d0e3ea9a02400f8d801
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 14:07:04 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 315873c315af2be891e63f8b421bae65
5277bb0c4fea2b036c6faf28d66395c96166ffd2
3f6657d352a42f8257409f2ed365a3fb928ac3eb74a34a2c74a433290182cc92
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 14:07:04 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-16719465-8&cid=1321391226.1669990022&jid=1834554044&_u=aCDAiEAjRAAAAEAAI~&z=1075276086
216.58.207.228200 OK 42 B URL HTTP/2 www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-16719465-8&cid=1321391226.1669990022&jid=1834554044&_u=aCDAiEAjRAAAAEAAI~&z=1075276086
IP 216.58.207.228:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-16719465-8&cid=1321391226.1669990022&jid=1834554044&_u=aCDAiEAjRAAAAEAAI~&z=1075276086 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.scotiabank.com.mx/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Fri, 02 Dec 2022 14:07:04 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
s.amazon-adsystem.com/iu3?pid=fdfe8adf-c6ba-4122-b40f-7729ea0697ae&event=PageView&page=/&ts=1669990021733
52.46.130.91302 Found 0 B URL HTTP/1.1 s.amazon-adsystem.com/iu3?pid=fdfe8adf-c6ba-4122-b40f-7729ea0697ae&event=PageView&page=/&ts=1669990021733
IP 52.46.130.91:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /iu3?pid=fdfe8adf-c6ba-4122-b40f-7729ea0697ae&event=PageView&page=/&ts=1669990021733 HTTP/1.1
Host: s.amazon-adsystem.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.scotiabank.com.mx/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Server: Server
Date: Fri, 02 Dec 2022 14:07:04 GMT
Content-Length: 0
Connection: keep-alive
x-amz-rid: X0EEQ4K2PTFD19WMWN0X
Set-Cookie: ad-id=AxzDh6cs8kY3qMqM6Zl6n5M|t; Domain=.amazon-adsystem.com; Expires=Sat, 01-Jul-2023 14:07:04 GMT; Path=/; Secure; HttpOnly; SameSite=None
Cache-Control: max-age=0, no-cache, no-store, private, must-revalidate, s-maxage=0
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
p3p: policyref="https://www.amazon.com/w3c/p3p.xml", CP="PSAo PSDo OUR SAM OTR DSP COR"
Location: https://s.amazon-adsystem.com/iu3?pid=fdfe8adf-c6ba-4122-b40f-7729ea0697ae&event=PageView&page=/&ts=1669990021733&dcc=t
Vary: Content-Type,Accept-Encoding,User-Agent
Strict-Transport-Security: max-age=47474747; includeSubDomains; preload
s.amazon-adsystem.com/iu3?pid=fdfe8adf-c6ba-4122-b40f-7729ea0697ae&event=PageView&ts=1669990021731
52.46.130.91302 Found 0 B URL HTTP/1.1 s.amazon-adsystem.com/iu3?pid=fdfe8adf-c6ba-4122-b40f-7729ea0697ae&event=PageView&ts=1669990021731
IP 52.46.130.91:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /iu3?pid=fdfe8adf-c6ba-4122-b40f-7729ea0697ae&event=PageView&ts=1669990021731 HTTP/1.1
Host: s.amazon-adsystem.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.scotiabank.com.mx/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Server: Server
Date: Fri, 02 Dec 2022 14:07:04 GMT
Content-Length: 0
Connection: keep-alive
x-amz-rid: 39Y48TCXYGYBSE71XDC0
Set-Cookie: ad-id=A9ZmY7wuAEIpm8L0YvJWDzw|t; Domain=.amazon-adsystem.com; Expires=Sat, 01-Jul-2023 14:07:04 GMT; Path=/; Secure; HttpOnly; SameSite=None
Cache-Control: max-age=0, no-cache, no-store, private, must-revalidate, s-maxage=0
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
p3p: policyref="https://www.amazon.com/w3c/p3p.xml", CP="PSAo PSDo OUR SAM OTR DSP COR"
Location: https://s.amazon-adsystem.com/iu3?pid=fdfe8adf-c6ba-4122-b40f-7729ea0697ae&event=PageView&ts=1669990021731&dcc=t
Vary: Content-Type,Accept-Encoding,User-Agent
Strict-Transport-Security: max-age=47474747; includeSubDomains; preload
ocsp.sca1b.amazontrust.com/
143.204.42.88200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.88:0
Hash b40e46c36a76b63011dd0b0e054773a1
754ff815bb8e94423cd4b5016d0bc4ea7c457ef9
fe0cc26a447d9c46e21cbe67832fbaa1abf29c7a4b51d56def0a485067eb2a13
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=136586
Date: Fri, 02 Dec 2022 14:07:04 GMT
Etag: "63896095-1d7"
Expires: Sun, 04 Dec 2022 04:03:30 GMT
Last-Modified: Fri, 02 Dec 2022 02:19:01 GMT
Server: ECS (bsa/EB23)
X-Cache: Miss from cloudfront
Via: 1.1 50584ad285d5f627ddebae74efdd0770.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 5FqVeJsHZKuw8hHuxdZEb_noxisACbqrGZZgj1zsHDkKFRjTYnVsIQ==
Age: 6269
scotiabankfiles.azureedge.net/scotia-bank-mexico/spanish/icons/favicons/favicon.ico
152.199.19.161200 OK 106 kB URL HTTP/2 scotiabankfiles.azureedge.net/scotia-bank-mexico/spanish/icons/favicons/favicon.ico
IP 152.199.19.161:0
File type MS Windows icon resource - 6 icons, 256x256 with PNG image data, 256 x 256, 8-bit/color RGBA, non-interlaced, 32 bits/pixel, -128x-128, 32 bits/pixel\012- data
Size 106 kB (105478 bytes)
Hash ed8b3cd1a615763b903ea57abf205014
e532d216da1b348f6e2bd754db27c541d9d6bc8e
6c8ea55292a15447c9b962c7ff19ec93454f0668352feb305a1c50c3e8c90fc5
GET /scotia-bank-mexico/spanish/icons/favicons/favicon.ico HTTP/1.1
Host: scotiabankfiles.azureedge.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.scotiabank.com.mx/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
access-control-expose-headers: Request-Context
cache-control: public, max-age=1800, s-maxage=1800
content-security-policy: default-src https: wss: data: blob: 'unsafe-eval' 'unsafe-inline' *; object-src 'none';
content-type: image/x-icon
date: Fri, 02 Dec 2022 14:07:04 GMT
expires: Fri, 02 Dec 2022 14:37:04 GMT
last-modified: Wed, 19 Oct 2022 19:36:58 GMT
request-context: appId=cid-v1:b6356dc1-e87f-411b-9bf6-6a5f0308e7de
server: Microsoft-IIS/10.0
surrogate-key: scotia-bank-mexico scotia-bank-mexico-spanish-icons-favicons-favicon.ico
x-aspnetmvc-version: 5.2
x-content-type-options: nosniff
x-frame-options: SELF
x-ms-blob-cache-control: public, max-age=1800, s-maxage=1800
x-xss-protection: 1; mode=block
content-length: 105478
X-Firefox-Spdy: h2
s.amazon-adsystem.com/iu3?pid=fdfe8adf-c6ba-4122-b40f-7729ea0697ae&event=PageView&page=/&ts=1669990021733&dcc=t
52.46.130.91200 OK 65 B URL HTTP/1.1 s.amazon-adsystem.com/iu3?pid=fdfe8adf-c6ba-4122-b40f-7729ea0697ae&event=PageView&page=/&ts=1669990021733&dcc=t
IP 52.46.130.91:0
File type HTML document, ASCII text
Hash 22fdf49482d8200e8f305bbe262eff14
f254bd4053267c2cf46675613e689016d8b7f775
115d83ece49fd1c5769409aab9d78572eed86cd38a0556b4cdeeac82c83091d3
GET /iu3?pid=fdfe8adf-c6ba-4122-b40f-7729ea0697ae&event=PageView&page=/&ts=1669990021733&dcc=t HTTP/1.1
Host: s.amazon-adsystem.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.scotiabank.com.mx/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Server
Date: Fri, 02 Dec 2022 14:07:04 GMT
Content-Type: text/html;charset=ISO-8859-1
Content-Length: 65
Connection: keep-alive
x-amz-rid: 4Q0B2WKY5KY6C4BR1B3P
Cache-Control: max-age=0, no-cache, no-store, private, must-revalidate, s-maxage=0
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
p3p: policyref="https://www.amazon.com/w3c/p3p.xml", CP="PSAo PSDo OUR SAM OTR DSP COR"
Vary: Content-Type,Accept-Encoding,User-Agent
Strict-Transport-Security: max-age=47474747; includeSubDomains; preload
s.amazon-adsystem.com/iu3?pid=fdfe8adf-c6ba-4122-b40f-7729ea0697ae&event=PageView&ts=1669990021731&dcc=t
52.46.130.91200 OK 65 B URL HTTP/1.1 s.amazon-adsystem.com/iu3?pid=fdfe8adf-c6ba-4122-b40f-7729ea0697ae&event=PageView&ts=1669990021731&dcc=t
IP 52.46.130.91:0
File type HTML document, ASCII text
Hash 22fdf49482d8200e8f305bbe262eff14
f254bd4053267c2cf46675613e689016d8b7f775
115d83ece49fd1c5769409aab9d78572eed86cd38a0556b4cdeeac82c83091d3
GET /iu3?pid=fdfe8adf-c6ba-4122-b40f-7729ea0697ae&event=PageView&ts=1669990021731&dcc=t HTTP/1.1
Host: s.amazon-adsystem.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.scotiabank.com.mx/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Server
Date: Fri, 02 Dec 2022 14:07:04 GMT
Content-Type: text/html;charset=ISO-8859-1
Content-Length: 65
Connection: keep-alive
x-amz-rid: B9E0X2CF6PD4GBNJ2K2P
Cache-Control: max-age=0, no-cache, no-store, private, must-revalidate, s-maxage=0
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
p3p: policyref="https://www.amazon.com/w3c/p3p.xml", CP="PSAo PSDo OUR SAM OTR DSP COR"
Vary: Content-Type,Accept-Encoding,User-Agent
Strict-Transport-Security: max-age=47474747; includeSubDomains; preload
www.facebook.com/tr/?id=201874380363725&ev=PageView&dl=https%3A%2F%2Fwww.scotiabank.com.mx%2F&rl=&if=false&ts=1669990023185&sw=1280&sh=1024&v=2.9.89&r=stable&ec=0&o=28&fbp=fb.2.1669990023183.108507728&it=1669990022899&coo=false&rqm=GET
157.240.240.35200 OK 0 B URL HTTP/2 www.facebook.com/tr/?id=201874380363725&ev=PageView&dl=https%3A%2F%2Fwww.scotiabank.com.mx%2F&rl=&if=false&ts=1669990023185&sw=1280&sh=1024&v=2.9.89&r=stable&ec=0&o=28&fbp=fb.2.1669990023183.108507728&it=1669990022899&coo=false&rqm=GET
IP 157.240.240.35:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tr/?id=201874380363725&ev=PageView&dl=https%3A%2F%2Fwww.scotiabank.com.mx%2F&rl=&if=false&ts=1669990023185&sw=1280&sh=1024&v=2.9.89&r=stable&ec=0&o=28&fbp=fb.2.1669990023183.108507728&it=1669990022899&coo=false&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.scotiabank.com.mx/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin:
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400
date: Fri, 02 Dec 2022 14:07:05 GMT
X-Firefox-Spdy: h2
cm.everesttech.net/cm/dd?d_uuid=09880677399323126920398646790475766584
44.231.148.234302 0 B URL HTTP/1.1 cm.everesttech.net/cm/dd?d_uuid=09880677399323126920398646790475766584
IP 44.231.148.234:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cm/dd?d_uuid=09880677399323126920398646790475766584 HTTP/1.1
Host: cm.everesttech.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.scotiabank.com.mx/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302
Date: Fri, 02 Dec 2022 14:07:05 GMT
Content-Length: 0
Connection: keep-alive
Set-Cookie: everest_g_v2=g_surferid~Y4oGiQAAAG4cAAOF; Domain=.everesttech.net; Expires=Sat, 02-Dec-2023 14:07:05 GMT; Path=/
everest_session_v2=Y4oGiQAAAG4cAQOF; Domain=.everesttech.net; Path=/
P3P: CP="NOI NID DEVa PSAa PSDa OUR IND PUR COM NAV INT DEM"
Cache-Control: no-cache
Location: https://dpm.demdex.net/ibs:dpid=411&dpuuid=Y4oGiQAAAG4cAAOF
Server: AMO-cookiemap/1.1
dpm.demdex.net/ibs:dpid=411&dpuuid=Y4oGiQAAAG4cAAOF
34.241.92.229302 Found 0 B URL HTTP/1.1 dpm.demdex.net/ibs:dpid=411&dpuuid=Y4oGiQAAAG4cAAOF
IP 34.241.92.229:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ibs:dpid=411&dpuuid=Y4oGiQAAAG4cAAOF HTTP/1.1
Host: dpm.demdex.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.scotiabank.com.mx/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Cache-Control: no-cache,no-store,must-revalidate,max-age=0,proxy-revalidate,no-transform,private
DCS: dcs-prod-irl1-1-v045-0650109c9.edge-irl1.demdex.com 0 ms
Expires: Thu, 01 Jan 1970 00:00:00 UTC
Location: https://dpm.demdex.net/demconf.jpg?et:ibs%7cdata:dpid=411&dpuuid=Y4oGiQAAAG4cAAOF
P3P: policyref="/w3c/p3p.xml", CP="NOI NID CURa ADMa DEVa PSAa PSDa OUR SAMa BUS PUR COM NAV INT"
Pragma: no-cache
set-cookie: demdex=68665274820275932991272708255255133635; Max-Age=15552000; Expires=Wed, 31 May 2023 14:07:05 GMT; Path=/; Domain=.demdex.net; Secure; SameSite=None
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-TID: 5m4V+Bs/SWA=
Content-Length: 0
Connection: keep-alive
dpm.demdex.net/demconf.jpg?et:ibs%7cdata:dpid=411&dpuuid=Y4oGiQAAAG4cAAOF
34.241.92.229200 OK 59 B URL HTTP/1.1 dpm.demdex.net/demconf.jpg?et:ibs%7cdata:dpid=411&dpuuid=Y4oGiQAAAG4cAAOF
IP 34.241.92.229:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 1251cd5e5c2def4c046309375f87c1c1
e02d6b0c6a5c495c15985e2832e335eda8528c80
4e7010cc46fa361c88e57e3346d27421cf3b8a8bf5f39b43fc45997c60cb1c13
GET /demconf.jpg?et:ibs%7cdata:dpid=411&dpuuid=Y4oGiQAAAG4cAAOF HTTP/1.1
Host: dpm.demdex.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.scotiabank.com.mx/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: no-cache,no-store,must-revalidate,max-age=0,proxy-revalidate,no-transform,private
content-encoding: gzip
Content-Type: image/gif
DCS: dcs-prod-irl1-1-v045-06d6ad95b.edge-irl1.demdex.com 0 ms
Expires: Thu, 01 Jan 1970 00:00:00 UTC
P3P: policyref="/w3c/p3p.xml", CP="NOI NID CURa ADMa DEVa PSAa PSDa OUR SAMa BUS PUR COM NAV INT"
Pragma: no-cache
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
X-TID: 7W/jcGX+Q2Y=
Content-Length: 59
Connection: keep-alive
ocsp.sca1b.amazontrust.com/
143.204.42.88200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.88:0
Hash 8d65baea5c2379c47b822fc9db6335a9
dc26f848ded400dc19486b0846025a0198160574
79a2a435553d5ef5e8745854ac25f169a02c0593604193203a70bbc466a650a2
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=121307
Date: Fri, 02 Dec 2022 14:07:05 GMT
Etag: "6389320e-1d7"
Expires: Sat, 03 Dec 2022 23:48:52 GMT
Last-Modified: Thu, 01 Dec 2022 23:00:30 GMT
Server: ECS (nyb/1D04)
X-Cache: Miss from cloudfront
Via: 1.1 dbfaae0db03f11cf713bbcbdb25be4a2.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 7xBB1h2t8duel7ZKFBjT_cUUcLFzAZA77tyK3dFV5a-AmUws6dEucA==
Age: 2902
dc.services.visualstudio.com/v2/track
13.69.106.89200 OK 0 B URL HTTP/2 dc.services.visualstudio.com/v2/track
IP 13.69.106.89:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /v2/track HTTP/1.1
Host: dc.services.visualstudio.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,sdk-context
Referer: https://www.scotiabank.com.mx/
Origin: https://www.scotiabank.com.mx
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-methods: POST
access-control-allow-headers: Origin, X-Requested-With, Content-Name, Content-Type, Accept, Sdk-Context
access-control-allow-origin: *
access-control-max-age: 3600
x-content-type-options: nosniff
date: Fri, 02 Dec 2022 14:07:05 GMT
content-length: 0
X-Firefox-Spdy: h2
k-aus1.contentsquare.net/v2/recording?rt=5&v=11.9.6&pid=3931&uu=daae1c63-64b6-a411-c6cf-68fe08676a35&sn=1&pn=1&ri=1
35.174.85.194200 OK 0 B URL HTTP/2 k-aus1.contentsquare.net/v2/recording?rt=5&v=11.9.6&pid=3931&uu=daae1c63-64b6-a411-c6cf-68fe08676a35&sn=1&pn=1&ri=1
IP 35.174.85.194:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /v2/recording?rt=5&v=11.9.6&pid=3931&uu=daae1c63-64b6-a411-c6cf-68fe08676a35&sn=1&pn=1&ri=1 HTTP/1.1
Host: k-aus1.contentsquare.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Length: 57468
Origin: https://www.scotiabank.com.mx
Connection: keep-alive
Referer: https://www.scotiabank.com.mx/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 02 Dec 2022 14:07:05 GMT
content-length: 0
timing-allow-origin: *
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Access-Control-Expose-Headers, Content-Type, Content-Compression
X-Firefox-Spdy: h2
dc.services.visualstudio.com/v2/track
13.69.106.89200 OK 98 B URL HTTP/2 dc.services.visualstudio.com/v2/track
IP 13.69.106.89:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type JSON data\012- , ASCII text, with no line terminators
Hash 5575e52eba597ac5be0544b5c06c10e0
77c5fb080a6cbbb1560483d85ac3660cb1962508
5d00f2d6caf547c6b0ba1f4b70fc2fcb7aece770f595c5e66dbfacb2e637c62b
POST /v2/track HTTP/1.1
Host: dc.services.visualstudio.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/json
Sdk-Context: appId
Content-Length: 9201
Origin: https://www.scotiabank.com.mx
Connection: keep-alive
Referer: https://www.scotiabank.com.mx/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json; charset=utf-8
x-ms-session-id: 927CE6BC-AA11-465B-9C0B-34DE665CD032
strict-transport-security: max-age=31536000
access-control-allow-headers: Origin, X-Requested-With, Content-Name, Content-Type, Accept, Cache-Control, Sdk-Context
access-control-allow-origin: *
access-control-max-age: 3600
x-content-type-options: nosniff
date: Fri, 02 Dec 2022 14:07:05 GMT
content-length: 98
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 75f38a9e06c3a06587de3994fbb504cd
af4024a4ae3c6d982b499c28c16725652ce4827f
e5e22c3a210bacc99ade3b350a7a33f701f67d44108409d301df3ca7807985e6
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=142203
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 14:07:05 GMT
Etag: "63898f04-1d7"
Expires: Sun, 04 Dec 2022 05:37:08 GMT
Last-Modified: Fri, 02 Dec 2022 05:37:08 GMT
Server: nginx
Content-Length: 471
www.pages09.net/WTS/event.jpeg?accesskey=53a7b4e2-174743290f6-2baacb7739ee1c16a824f9d47c8a8b8b&v=1.31&isNewSession=1&type=pageview&isNewVisitor=1&sessionGUID=26484b8e-4c94-e6ac-386d-b79002071e17&webSyncID=2d001c10-da2e-5087-1b8c-de206dac91d3&url=https%3A%2F%2Fwww.scotiabank.com.mx%2F&newSiteVisit=1&hostname=www.scotiabank.com.mx&pathname=%2F&newPageVisit=1&eventKey=b041c901-0ab2-9a43-6c95-c6477e09c8e3
184.73.166.45200 OK 0 B URL HTTP/1.1 www.pages09.net/WTS/event.jpeg?accesskey=53a7b4e2-174743290f6-2baacb7739ee1c16a824f9d47c8a8b8b&v=1.31&isNewSession=1&type=pageview&isNewVisitor=1&sessionGUID=26484b8e-4c94-e6ac-386d-b79002071e17&webSyncID=2d001c10-da2e-5087-1b8c-de206dac91d3&url=https%3A%2F%2Fwww.scotiabank.com.mx%2F&newSiteVisit=1&hostname=www.scotiabank.com.mx&pathname=%2F&newPageVisit=1&eventKey=b041c901-0ab2-9a43-6c95-c6477e09c8e3
IP 184.73.166.45:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert urlquery Phishing - Scotiabank
GET /WTS/event.jpeg?accesskey=53a7b4e2-174743290f6-2baacb7739ee1c16a824f9d47c8a8b8b&v=1.31&isNewSession=1&type=pageview&isNewVisitor=1&sessionGUID=26484b8e-4c94-e6ac-386d-b79002071e17&webSyncID=2d001c10-da2e-5087-1b8c-de206dac91d3&url=https%3A%2F%2Fwww.scotiabank.com.mx%2F&newSiteVisit=1&hostname=www.scotiabank.com.mx&pathname=%2F&newPageVisit=1&eventKey=b041c901-0ab2-9a43-6c95-c6477e09c8e3 HTTP/1.1
Host: www.pages09.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.scotiabank.com.mx/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Fri, 02 Dec 2022 14:07:05 GMT
Server: Apache
p3p: CP="CAO PSA OUR"
Cache-Control: no-cache, no-store, must-revalidate, max-age=0, proxy-revalidate, s-maxage=0
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Length: 0
Connection: close
Content-Type: image/jpeg
Set-Cookie: Silverpop_cookie=1469046794.4525.0000; path=/; Httponly; Secure;SameSite=None
Strict-Transport-Security: max-age=16070400; includeSubDomains; preload
c.contentsquare.net/v2/events?v=11.9.6&sr=42&mdh=2261&pn=1&uu=daae1c63-64b6-a411-c6cf-68fe08676a35&sn=1&lv=1669990022&lhd=1669990022&hd=1669990022&pid=3931&str=804&di=2058&dc=4400&fl=4414&ct=0
63.32.142.75204 No Content 0 B URL HTTP/2 c.contentsquare.net/v2/events?v=11.9.6&sr=42&mdh=2261&pn=1&uu=daae1c63-64b6-a411-c6cf-68fe08676a35&sn=1&lv=1669990022&lhd=1669990022&hd=1669990022&pid=3931&str=804&di=2058&dc=4400&fl=4414&ct=0
IP 63.32.142.75:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /v2/events?v=11.9.6&sr=42&mdh=2261&pn=1&uu=daae1c63-64b6-a411-c6cf-68fe08676a35&sn=1&lv=1669990022&lhd=1669990022&hd=1669990022&pid=3931&str=804&di=2058&dc=4400&fl=4414&ct=0 HTTP/1.1
Host: c.contentsquare.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 36
Origin: https://www.scotiabank.com.mx
Connection: keep-alive
Referer: https://www.scotiabank.com.mx/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
date: Fri, 02 Dec 2022 14:07:09 GMT
timing-allow-origin: *
cache-control: no-cache, no-store, must-revalidate, pre-check=0, post-check=0
pragma: no-cache
expires: Sun, 24 Oct 1982 23:00:00 GMT
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Access-Control-Expose-Headers, Content-Type, Content-Compression, X-Requested-With
content-disposition: inline
X-Firefox-Spdy: h2
cdn.linkedin.oribi.io/partner/31046/domain/scotiabank.com.mx/token
143.204.55.87200 OK 0 B URL HTTP/2 cdn.linkedin.oribi.io/partner/31046/domain/scotiabank.com.mx/token
IP 143.204.55.87:0
GET /partner/31046/domain/scotiabank.com.mx/token HTTP/1.1
Host: cdn.linkedin.oribi.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: *
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Origin: https://www.scotiabank.com.mx
Connection: keep-alive
Referer: https://www.scotiabank.com.mx/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json
date: Fri, 02 Dec 2022 12:21:54 GMT
access-control-allow-origin: *
cache-control: public, max-age=17389
content-encoding: gzip
vary: accept-encoding
x-cache: Hit from cloudfront
via: 1.1 96c778ce6156d12f24b8b6cdaa0cbf66.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: MLsCTTTueYTAtWirQSPUgdXSgwNiLPufSAW7XlY9MzoITCB8jm8iSQ==
age: 6309
X-Firefox-Spdy: h2
scotiabankfiles.azureedge.net/scotia-bank-mexico/images/redesign/tiles/2x-tile01-11-22.png
152.199.19.161200 OK 0 B URL HTTP/2 scotiabankfiles.azureedge.net/scotia-bank-mexico/images/redesign/tiles/2x-tile01-11-22.png
IP 152.199.19.161:0
GET /scotia-bank-mexico/images/redesign/tiles/2x-tile01-11-22.png HTTP/1.1
Host: scotiabankfiles.azureedge.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.scotiabank.com.mx/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
access-control-expose-headers: Request-Context
cache-control: public, max-age=1800, s-maxage=1800
content-security-policy: default-src https: wss: data: blob: 'unsafe-eval' 'unsafe-inline' *; object-src 'none';
content-type: image/png
date: Fri, 02 Dec 2022 14:07:03 GMT
expires: Fri, 02 Dec 2022 14:37:03 GMT
last-modified: Tue, 01 Nov 2022 05:17:36 GMT
request-context: appId=cid-v1:b6356dc1-e87f-411b-9bf6-6a5f0308e7de
server: Microsoft-IIS/10.0
surrogate-key: scotia-bank-mexico scotia-bank-mexico-images-redesign-tiles-2x-tile01-11-22.png
x-aspnetmvc-version: 5.2
x-content-type-options: nosniff
x-frame-options: SELF
x-ms-blob-cache-control: public, max-age=1800, s-maxage=1800
x-xss-protection: 1; mode=block
content-length: 281336
X-Firefox-Spdy: h2