firefox.settings.services.mozilla.com/v1/
54.230.111.65200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 54.230.111.65:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 1aac651ec250c598683dd17ca2002c07
11595ac82e017f95190c2a36dc77323a3fedcbfc
93fa640d042452ae8455d026e30e3b4594c13d4be65f3552a4b5edae027c02f9
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Backoff, Content-Length, Content-Type, Retry-After, Alert
Cache-Control: max-age=3600
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Sat, 08 Oct 2022 19:38:24 GMT
Expires: Sat, 08 Oct 2022 20:23:37 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 c2b101e67ac25a2f0013450d56ecac38.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: UyQq57z0Fpo82q6fcj4SrBcG3XNAtJdjxeEfl4y2xNNvKeNwfyP1zQ==
Age: 1939
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 1273d41c84b2b39f78a8033130d00282
556757697b70e019ed502585fcc888e2403f3229
ee3c03cc0a659fbc43d34feaa79a8ad6627b9c525d675956cdb434c1590db89e
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EE3C03CC0A659FBC43D34FEAA79A8AD6627B9C525D675956CDB434C1590DB89E"
Last-Modified: Thu, 06 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2554
Expires: Sat, 08 Oct 2022 20:53:17 GMT
Date: Sat, 08 Oct 2022 20:10:43 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 7cba6aada5c0a04c1c0644769c09f64e
ed02f174a9b718951911343af8ec181c6d205b1d
ba863e734d5d38ed160758ab0b09d1b0f44fc795dcbcee4199329b011fcd1bd1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BA863E734D5D38ED160758AB0B09D1B0F44FC795DCBCEE4199329B011FCD1BD1"
Last-Modified: Fri, 07 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2492
Expires: Sat, 08 Oct 2022 20:52:15 GMT
Date: Sat, 08 Oct 2022 20:10:43 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 67d5a988edcda47bc3b3b3f65d32b4b6
d4f0e0da8b3690cc7da925026d3414b68c7d954f
55e4848e3ec682e808ce7ee70950f86179c43af4f81926d826a95edfda395a78
GET /chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: 0+goCWafTCgqe29e5XsYJUg0mN76YNnIZXUivro+02rSShL0rZnVtTz0kBOpTKXLFrEQRzgrchk=
x-amz-request-id: JYP211PQFGFMH0MR
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sat, 08 Oct 2022 19:31:46 GMT
age: 2337
last-modified: Fri, 30 Sep 2022 18:50:55 GMT
etag: "67d5a988edcda47bc3b3b3f65d32b4b6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 08 Oct 2022 20:10:44 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
54.230.111.65200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 54.230.111.65:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Alert, Content-Type, Expires, Backoff, ETag, Last-Modified, Pragma, Cache-Control, Content-Length, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
X-Content-Type-Options: nosniff
Date: Sat, 08 Oct 2022 19:29:41 GMT
Cache-Control: max-age=3600
Expires: Sat, 08 Oct 2022 20:23:31 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 4bbc14b5834fc74ccd249b954b43a08c.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: QSn1lkUZM2CN1WQRATUY64wolSEYq6qCKvsY4LkPTzodnDjDq-QGQw==
Age: 2463
virtual.labdigbdbqapb.com/
54.230.111.115200 OK 1.4 kB URL HTTP/1.1 virtual.labdigbdbqapb.com/
IP 54.230.111.115:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (730)
Hash dff8c8c4d88ca656619c6423a21de33e
e469cc20e05edb01fd6680b0dc284d25962e0150
4bcdcbc6ecbf3082351dc6759ecf70c67e290a4c30c5996523b2f59c3342153f
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: virtual.labdigbdbqapb.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Date: Sat, 08 Oct 2022 20:10:45 GMT
Last-Modified: Wed, 28 Sep 2022 01:58:41 GMT
ETag: W/"80ed3c6743d73e519bc64c32ac2bb330"
x-amz-version-id: null
Server: AmazonS3
Content-Security-Policy: default-src 'self' blob: https://*.bancodebogota.co https://*.bancodebogota.com.co https://*.bancodebogota.com https://*.labdigbdbqapb.com https://*.amazonaws.com https://*.amazonaws.com/* https://tags.bkrtx.com https://*.bluekai.com https://*.doubleclick.net https://*.maxymiser.net https://*.maxymiser.com https://*.oracleinfinity.io ; worker-src 'self' https://*.bancodebogota.co https://*.bancodebogota.com.co https://*.bancodebogota.com https://*.labdigbdbqapb.com https://*.google.com https://*.google.com.co https://*.hotjar.io https://*.hotjar.com:* wss://*.hotjar.com ; frame-ancestors https://*.bancodebogota.co https://*.bancodebogota.com.co https://*.bancodebogota.com https://*.labdigbdbqapb.com https://*.bluekai.com https://*.maxymiser.net https://*.maxymiser.com https://*.oracleinfinity.io ; connect-src 'self' https://*.avaldigitallabs.com https://*.google.com https://*.google.com.co https://*.cloudfront.net https://www.avvillas.com.co https://*.doubleclick.net https://*.maxymiser.net https://*.maxymiser.com https://*.bluekai.com https://*.oracleinfinity.io https://*.googletagmanager.com https://*.google-analytics.com https://*.amazonaws.com https://*.amazonaws.com/* https://tags.bkrtx.com https://*.hotjar.io https://*.hotjar.com:* wss://*.hotjar.com https://cdn.appdynamics.com https://*.gstatic.com https://tags.tiqcdn.com https://*.tealiumiq.com https://col.eum-appdynamics.com https://*.labdigbdbqacad.com https://*.labdigbdbdevcd.com https://*.bancodebogota.co https://*.bancodebogota.com.co https://*.bancodebogota.com https://*.labdigbdbqapb.com https://*.labdigitalbdbtvsqa.com ; img-src 'self' data: blob: https://*.bancodebogota.co https://*.bancodebogota.com.co https://*.bancodebogota.com https://*.labdigbdbqapb.com https://*.avaldigitallabs.com https://*.google.com https://*.google.com.co https://*.googletagmanager.com https://*.google-analytics.com https://*.doubleclick.net https://www.avvillas.com.co https://*.oracleinfinity.io https://*.hotjar.io https://*.hotjar.com:* wss://*.hotjar.com https://*.bluekai.com https://*.gstatic.com https://*.labdigbdbqacad.com https://*.tealiumiq.com https://*.maxymiser.net https://*.maxymiser.com https://*.mathilde-ads.com https://*.sitescout.com https://www.facebook.com/ https://cdnjs.cloudflare.com https://*.ytimg.com https://*.labdigitalbdbtvsqa.com ; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://*.bancodebogota.co https://*.bancodebogota.com.co https://*.bancodebogota.com https://*.labdigbdbqapb.com https://cdn.appdynamics.com https://*.gstatic.com https://*.maxymiser.net https://*.maxymiser.com https://tags.bkrtx.com https://*.bluekai.com https://*.google.com https://*.google.com.co https://*.googletagmanager.com https://*.google-analytics.com https://fonts.googleapis.com https://*.hotjar.io https://*.hotjar.com:* wss://*.hotjar.com https://tags.tiqcdn.com https://*.tealiumiq.com https://www.facebook.com/ https://*.doubleclick.net https://*.oracleinfinity.io https://*.mathilde-ads.com https://*.sitescout.com https://*.amazonaws.com https://*.amazonaws.com/* https://cdnjs.cloudflare.com https://*.cloudfront.net ; font-src 'self' data: https://*.google.com https://*.google.com.co https://*.hotjar.io https://*.hotjar.com:* wss://*.hotjar.com https://*.bluekai.com https://*.gstatic.com ; frame-src 'self' https://*.bancodebogota.co https://*.bancodebogota.com.co https://*.bancodebogota.com https://*.labdigbdbqapb.com https://cdn.appdynamics.com https://*.bluekai.com https://*.google.com https://*.google.com.co https://*.hotjar.io https://*.hotjar.com:* wss://*.hotjar.com https://*.maxymiser.net https://*.maxymiser.com https://*.tealiumiq.com https://*.mathilde-ads.com https://*.sitescout.com https://*.youtube.com ; style-src 'self' 'unsafe-inline' https://*.bluekai.com https://tags.bkrtx.com https://*.maxymiser.net https://*.maxymiser.com https://*.google.com https://*.google.com.co https://fonts.googleapis.com https://*.googletagmanager.com https://*.oracleinfinity.io
Cache-Control: no-store
Strict-Transport-Security: max-age=31536000; includeSubdomains; preload
Service-Worker-Allowed: /
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Referrer-Policy: same-origin
X-Frame-Options: SAMEORIGIN
Permissions-Policy: geolocation=()
X-Permitted-Cross-Domain-Policies: none
Content-Encoding: gzip
Vary: Accept-Encoding
X-Cache: Error from cloudfront
Via: 1.1 e2f427863e6bdb72ad8bed72b596d81e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: fOBy9TYrFE_9bxQpfZRKZIWSDQCmyYBcuhH6JmSRW3tQhHd-Iq-6hA==
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 5479444ef227af03029fbb9d154f0107
0563678ec07ab3707b716ca4c638ece4c8ad7de4
4850d49786a140003b90ae108104ffbfe80a6e0d9f584656a09f0fff11dc9d0d
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1857
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 08 Oct 2022 20:10:44 GMT
Last-Modified: Sat, 08 Oct 2022 19:39:47 GMT
Server: ECS (ska/F70B)
X-Cache: HIT
Content-Length: 471
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 89a17c02cdf926b852220408f32d6ad4
c22fb94c77a74cfc00d6b2cc88643afa0563abbe
2a4d9286d35271838cb99d265e2c8dbb851fa80ac2ca293571125188e684a7e3
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 08 Oct 2022 20:10:44 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.com/recaptcha/api.js?render=6Ler_fwUAAAAAM2zBK_y1jFCjwok-xCGySLncLoA
142.250.74.164200 OK 584 B URL HTTP/2 www.google.com/recaptcha/api.js?render=6Ler_fwUAAAAAM2zBK_y1jFCjwok-xCGySLncLoA
IP 142.250.74.164:0
File type ASCII text, with very long lines (884), with no line terminators
Hash 45ffeba4d61dc94c04c2a590a89b31f1
2041b0b0cb4db5a28e1c87682a7669e3894db096
f16a90c1deb09e45b30a95f66ccf3365e0be9c6a6e9aef1d55e8697902f00e31
GET /recaptcha/api.js?render=6Ler_fwUAAAAAM2zBK_y1jFCjwok-xCGySLncLoA HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
expires: Sat, 08 Oct 2022 20:10:44 GMT
date: Sat, 08 Oct 2022 20:10:44 GMT
cache-control: private, max-age=300
content-type: text/javascript; charset=UTF-8
cross-origin-resource-policy: cross-origin
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 584
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 74b63831a0a449c3e37b584db0009072
929f9f036c4a6a078c51c3b3dc2a7f902c9ee9ac
686845b4cf9a67078f03cb221ce13175a72074f6aa3804ba4fa06623ab856bae
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 08 Oct 2022 20:10:44 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
push.services.mozilla.com/
54.189.35.180101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 54.189.35.180:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: /1P20o75gGPNcSJtiNFIfw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: O/fsINdS6JN86b29qz8zzwVUJs4=
virtual.labdigbdbqapb.com/container/main.js
54.230.111.115200 OK 1.4 kB URL HTTP/1.1 virtual.labdigbdbqapb.com/container/main.js
IP 54.230.111.115:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (730)
Hash dff8c8c4d88ca656619c6423a21de33e
e469cc20e05edb01fd6680b0dc284d25962e0150
4bcdcbc6ecbf3082351dc6759ecf70c67e290a4c30c5996523b2f59c3342153f
Analyzer Verdict Alert fortinet Phishing
GET /container/main.js HTTP/1.1
Host: virtual.labdigbdbqapb.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://virtual.labdigbdbqapb.com/
Connection: keep-alive
HTTP/1.1 200 OK
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Date: Sat, 08 Oct 2022 20:10:45 GMT
Last-Modified: Wed, 28 Sep 2022 01:58:41 GMT
ETag: W/"80ed3c6743d73e519bc64c32ac2bb330"
x-amz-version-id: null
Server: AmazonS3
Content-Security-Policy: default-src 'self' blob: https://*.bancodebogota.co https://*.bancodebogota.com.co https://*.bancodebogota.com https://*.labdigbdbqapb.com https://*.amazonaws.com https://*.amazonaws.com/* https://tags.bkrtx.com https://*.bluekai.com https://*.doubleclick.net https://*.maxymiser.net https://*.maxymiser.com https://*.oracleinfinity.io ; worker-src 'self' https://*.bancodebogota.co https://*.bancodebogota.com.co https://*.bancodebogota.com https://*.labdigbdbqapb.com https://*.google.com https://*.google.com.co https://*.hotjar.io https://*.hotjar.com:* wss://*.hotjar.com ; frame-ancestors https://*.bancodebogota.co https://*.bancodebogota.com.co https://*.bancodebogota.com https://*.labdigbdbqapb.com https://*.bluekai.com https://*.maxymiser.net https://*.maxymiser.com https://*.oracleinfinity.io ; connect-src 'self' https://*.avaldigitallabs.com https://*.google.com https://*.google.com.co https://*.cloudfront.net https://www.avvillas.com.co https://*.doubleclick.net https://*.maxymiser.net https://*.maxymiser.com https://*.bluekai.com https://*.oracleinfinity.io https://*.googletagmanager.com https://*.google-analytics.com https://*.amazonaws.com https://*.amazonaws.com/* https://tags.bkrtx.com https://*.hotjar.io https://*.hotjar.com:* wss://*.hotjar.com https://cdn.appdynamics.com https://*.gstatic.com https://tags.tiqcdn.com https://*.tealiumiq.com https://col.eum-appdynamics.com https://*.labdigbdbqacad.com https://*.labdigbdbdevcd.com https://*.bancodebogota.co https://*.bancodebogota.com.co https://*.bancodebogota.com https://*.labdigbdbqapb.com https://*.labdigitalbdbtvsqa.com ; img-src 'self' data: blob: https://*.bancodebogota.co https://*.bancodebogota.com.co https://*.bancodebogota.com https://*.labdigbdbqapb.com https://*.avaldigitallabs.com https://*.google.com https://*.google.com.co https://*.googletagmanager.com https://*.google-analytics.com https://*.doubleclick.net https://www.avvillas.com.co https://*.oracleinfinity.io https://*.hotjar.io https://*.hotjar.com:* wss://*.hotjar.com https://*.bluekai.com https://*.gstatic.com https://*.labdigbdbqacad.com https://*.tealiumiq.com https://*.maxymiser.net https://*.maxymiser.com https://*.mathilde-ads.com https://*.sitescout.com https://www.facebook.com/ https://cdnjs.cloudflare.com https://*.ytimg.com https://*.labdigitalbdbtvsqa.com ; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://*.bancodebogota.co https://*.bancodebogota.com.co https://*.bancodebogota.com https://*.labdigbdbqapb.com https://cdn.appdynamics.com https://*.gstatic.com https://*.maxymiser.net https://*.maxymiser.com https://tags.bkrtx.com https://*.bluekai.com https://*.google.com https://*.google.com.co https://*.googletagmanager.com https://*.google-analytics.com https://fonts.googleapis.com https://*.hotjar.io https://*.hotjar.com:* wss://*.hotjar.com https://tags.tiqcdn.com https://*.tealiumiq.com https://www.facebook.com/ https://*.doubleclick.net https://*.oracleinfinity.io https://*.mathilde-ads.com https://*.sitescout.com https://*.amazonaws.com https://*.amazonaws.com/* https://cdnjs.cloudflare.com https://*.cloudfront.net ; font-src 'self' data: https://*.google.com https://*.google.com.co https://*.hotjar.io https://*.hotjar.com:* wss://*.hotjar.com https://*.bluekai.com https://*.gstatic.com ; frame-src 'self' https://*.bancodebogota.co https://*.bancodebogota.com.co https://*.bancodebogota.com https://*.labdigbdbqapb.com https://cdn.appdynamics.com https://*.bluekai.com https://*.google.com https://*.google.com.co https://*.hotjar.io https://*.hotjar.com:* wss://*.hotjar.com https://*.maxymiser.net https://*.maxymiser.com https://*.tealiumiq.com https://*.mathilde-ads.com https://*.sitescout.com https://*.youtube.com ; style-src 'self' 'unsafe-inline' https://*.bluekai.com https://tags.bkrtx.com https://*.maxymiser.net https://*.maxymiser.com https://*.google.com https://*.google.com.co https://fonts.googleapis.com https://*.googletagmanager.com https://*.oracleinfinity.io
Cache-Control: no-store
Strict-Transport-Security: max-age=31536000; includeSubdomains; preload
Service-Worker-Allowed: /
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Referrer-Policy: same-origin
X-Frame-Options: SAMEORIGIN
Permissions-Policy: geolocation=()
X-Permitted-Cross-Domain-Policies: none
Content-Encoding: gzip
Vary: Accept-Encoding
X-Cache: Error from cloudfront
Via: 1.1 e2f427863e6bdb72ad8bed72b596d81e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: 4Hz4vvkTGJhucZp4vLNdQS6V6et5IzxNFcOLxyq63wHvVDjQG31u0w==
ocsp.sca1b.amazontrust.com/
54.230.245.110200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.110:0
Hash 6e9a92568e304c4a1cafad797248e231
fd29b19f78fb8057c30111faaf255e55976b981f
a00fb3eed9e1f4666e5de9afc576a97ac3a4d2b0aa25eecd08ec721dff76e9d9
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Sat, 08 Oct 2022 20:10:45 GMT
Last-Modified: Sat, 08 Oct 2022 18:48:49 GMT
Server: ECS (bsa/EB22)
X-Cache: Miss from cloudfront
Via: 1.1 0c35b89cb607eddb1b7cc5d6ada865d6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: jXOZo9159R4i3zrnFsEFJ_07qKKAwg71odvyIEb4VAdOVb2B1b9rzg==
Age: 4916
ocsp.sca1b.amazontrust.com/
54.230.245.110200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.110:0
Hash 6e9a92568e304c4a1cafad797248e231
fd29b19f78fb8057c30111faaf255e55976b981f
a00fb3eed9e1f4666e5de9afc576a97ac3a4d2b0aa25eecd08ec721dff76e9d9
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Sat, 08 Oct 2022 20:10:45 GMT
Last-Modified: Sat, 08 Oct 2022 18:26:19 GMT
Server: ECS (nyb/1D27)
X-Cache: Miss from cloudfront
Via: 1.1 d9fb4c3794a085bb4ee2c5798c2cb1b8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: xNUYzCE_Nq05IDYnRtGRLjrHRx_MzdwbyUOMNbk8D-9rJIEVOelmOg==
Age: 6266
cognito-identity.us-east-1.amazonaws.com/
54.210.145.10200 OK 0 B URL HTTP/2 cognito-identity.us-east-1.amazonaws.com/
IP 54.210.145.10:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS / HTTP/1.1
Host: cognito-identity.us-east-1.amazonaws.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-amz-target
Origin: http://virtual.labdigbdbqapb.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 08 Oct 2022 20:10:45 GMT
content-length: 0
x-amzn-requestid: 5394d3aa-eb7e-472d-a61a-e6a185f4b00f
access-control-allow-origin: *
access-control-allow-headers: content-type,x-amz-target
access-control-allow-methods: POST
access-control-expose-headers: x-amzn-RequestId,x-amzn-ErrorType,x-amzn-ErrorMessage,Date
access-control-max-age: 172800
X-Firefox-Spdy: h2
cognito-identity.us-east-1.amazonaws.com/
54.210.145.10200 OK 63 B URL HTTP/2 cognito-identity.us-east-1.amazonaws.com/
IP 54.210.145.10:0
File type JSON data\012- , ASCII text, with no line terminators
Hash a6c014681dd4ec495f29f961787cea5c
d4a4d007a75900a60424220a5d3e504ad632e0c9
723711ed382c5fd969819dd94a072df7387d8946f41de91421284dfdd221e883
POST / HTTP/1.1
Host: cognito-identity.us-east-1.amazonaws.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
content-type: application/x-amz-json-1.1
x-amz-target: AWSCognitoIdentityService.GetId
Origin: http://virtual.labdigbdbqapb.com
Content-Length: 67
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 08 Oct 2022 20:10:45 GMT
content-type: application/x-amz-json-1.1
content-length: 63
x-amzn-requestid: ecebd165-e21a-49c6-92d1-23ac885e8e74
access-control-allow-origin: *
access-control-expose-headers: x-amzn-RequestId,x-amzn-ErrorType,x-amzn-ErrorMessage,Date
X-Firefox-Spdy: h2
tags.tiqcdn.com/utag/adl/bdbogota/dev/utag.js
23.38.200.249200 OK 17 kB URL HTTP/2 tags.tiqcdn.com/utag/adl/bdbogota/dev/utag.js
IP 23.38.200.249:0
File type HTML document, Unicode text, UTF-8 text, with very long lines (7273)
Hash 2ae3ace2c153488b8e2d011af500625e
9165b47854a190e272b5b7e5d3f43924b9a9e71b
8136af5f351608f052bcd9395aeb76bf25ac3105fb4e91e3bd2ac712da8b5fd4
GET /utag/adl/bdbogota/dev/utag.js HTTP/1.1
Host: tags.tiqcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
content-type: application/x-javascript
etag: "86df1f2f37df6c7a0c95564a1475aca1:1665161824.077876"
last-modified: Fri, 07 Oct 2022 16:57:04 GMT
server: AkamaiNetStorage
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=300
expires: Sat, 08 Oct 2022 20:15:45 GMT
date: Sat, 08 Oct 2022 20:10:45 GMT
content-length: 16865
X-Firefox-Spdy: h2
virtual.labdigbdbqapb.com/container/deleteLegacyPWA.js
54.230.111.115200 OK 1.4 kB URL HTTP/1.1 virtual.labdigbdbqapb.com/container/deleteLegacyPWA.js
IP 54.230.111.115:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (730)
Hash dff8c8c4d88ca656619c6423a21de33e
e469cc20e05edb01fd6680b0dc284d25962e0150
4bcdcbc6ecbf3082351dc6759ecf70c67e290a4c30c5996523b2f59c3342153f
Analyzer Verdict Alert fortinet Phishing
GET /container/deleteLegacyPWA.js HTTP/1.1
Host: virtual.labdigbdbqapb.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://virtual.labdigbdbqapb.com/
Connection: keep-alive
HTTP/1.1 200 OK
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 28 Sep 2022 01:58:41 GMT
x-amz-version-id: null
Server: AmazonS3
Content-Security-Policy: default-src 'self' blob: https://*.bancodebogota.co https://*.bancodebogota.com.co https://*.bancodebogota.com https://*.labdigbdbqapb.com https://*.amazonaws.com https://*.amazonaws.com/* https://tags.bkrtx.com https://*.bluekai.com https://*.doubleclick.net https://*.maxymiser.net https://*.maxymiser.com https://*.oracleinfinity.io ; worker-src 'self' https://*.bancodebogota.co https://*.bancodebogota.com.co https://*.bancodebogota.com https://*.labdigbdbqapb.com https://*.google.com https://*.google.com.co https://*.hotjar.io https://*.hotjar.com:* wss://*.hotjar.com ; frame-ancestors https://*.bancodebogota.co https://*.bancodebogota.com.co https://*.bancodebogota.com https://*.labdigbdbqapb.com https://*.bluekai.com https://*.maxymiser.net https://*.maxymiser.com https://*.oracleinfinity.io ; connect-src 'self' https://*.avaldigitallabs.com https://*.google.com https://*.google.com.co https://*.cloudfront.net https://www.avvillas.com.co https://*.doubleclick.net https://*.maxymiser.net https://*.maxymiser.com https://*.bluekai.com https://*.oracleinfinity.io https://*.googletagmanager.com https://*.google-analytics.com https://*.amazonaws.com https://*.amazonaws.com/* https://tags.bkrtx.com https://*.hotjar.io https://*.hotjar.com:* wss://*.hotjar.com https://cdn.appdynamics.com https://*.gstatic.com https://tags.tiqcdn.com https://*.tealiumiq.com https://col.eum-appdynamics.com https://*.labdigbdbqacad.com https://*.labdigbdbdevcd.com https://*.bancodebogota.co https://*.bancodebogota.com.co https://*.bancodebogota.com https://*.labdigbdbqapb.com https://*.labdigitalbdbtvsqa.com ; img-src 'self' data: blob: https://*.bancodebogota.co https://*.bancodebogota.com.co https://*.bancodebogota.com https://*.labdigbdbqapb.com https://*.avaldigitallabs.com https://*.google.com https://*.google.com.co https://*.googletagmanager.com https://*.google-analytics.com https://*.doubleclick.net https://www.avvillas.com.co https://*.oracleinfinity.io https://*.hotjar.io https://*.hotjar.com:* wss://*.hotjar.com https://*.bluekai.com https://*.gstatic.com https://*.labdigbdbqacad.com https://*.tealiumiq.com https://*.maxymiser.net https://*.maxymiser.com https://*.mathilde-ads.com https://*.sitescout.com https://www.facebook.com/ https://cdnjs.cloudflare.com https://*.ytimg.com https://*.labdigitalbdbtvsqa.com ; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://*.bancodebogota.co https://*.bancodebogota.com.co https://*.bancodebogota.com https://*.labdigbdbqapb.com https://cdn.appdynamics.com https://*.gstatic.com https://*.maxymiser.net https://*.maxymiser.com https://tags.bkrtx.com https://*.bluekai.com https://*.google.com https://*.google.com.co https://*.googletagmanager.com https://*.google-analytics.com https://fonts.googleapis.com https://*.hotjar.io https://*.hotjar.com:* wss://*.hotjar.com https://tags.tiqcdn.com https://*.tealiumiq.com https://www.facebook.com/ https://*.doubleclick.net https://*.oracleinfinity.io https://*.mathilde-ads.com https://*.sitescout.com https://*.amazonaws.com https://*.amazonaws.com/* https://cdnjs.cloudflare.com https://*.cloudfront.net ; font-src 'self' data: https://*.google.com https://*.google.com.co https://*.hotjar.io https://*.hotjar.com:* wss://*.hotjar.com https://*.bluekai.com https://*.gstatic.com ; frame-src 'self' https://*.bancodebogota.co https://*.bancodebogota.com.co https://*.bancodebogota.com https://*.labdigbdbqapb.com https://cdn.appdynamics.com https://*.bluekai.com https://*.google.com https://*.google.com.co https://*.hotjar.io https://*.hotjar.com:* wss://*.hotjar.com https://*.maxymiser.net https://*.maxymiser.com https://*.tealiumiq.com https://*.mathilde-ads.com https://*.sitescout.com https://*.youtube.com ; style-src 'self' 'unsafe-inline' https://*.bluekai.com https://tags.bkrtx.com https://*.maxymiser.net https://*.maxymiser.com https://*.google.com https://*.google.com.co https://fonts.googleapis.com https://*.googletagmanager.com https://*.oracleinfinity.io
Strict-Transport-Security: max-age=31536000; includeSubdomains; preload
Service-Worker-Allowed: /
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Referrer-Policy: same-origin
X-Frame-Options: SAMEORIGIN
Permissions-Policy: geolocation=()
X-Permitted-Cross-Domain-Policies: none
Content-Encoding: gzip
Date: Sat, 08 Oct 2022 20:10:46 GMT
Cache-Control: no-store
ETag: W/"80ed3c6743d73e519bc64c32ac2bb330"
Vary: Accept-Encoding
X-Cache: Error from cloudfront
Via: 1.1 0c35b89cb607eddb1b7cc5d6ada865d6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: 45wOmDf96gmp6wgVmGPB80FEgcclaVabAOYzEWb0iYMluBmJN3v-Xg==
cognito-identity.us-east-1.amazonaws.com/
54.210.145.10200 OK 771 B URL HTTP/2 cognito-identity.us-east-1.amazonaws.com/
IP 54.210.145.10:0
File type JSON data\012- , ASCII text, with very long lines (771), with no line terminators
Hash dace3c0798adb4196c61e036389e1e64
026ad83afdaf81a9d79aab79d6fdf9eab31b6e0e
fe875f325f2147612cc7132ac2735459dd5bc3526a53d8dddf3f640d6beb1763
POST / HTTP/1.1
Host: cognito-identity.us-east-1.amazonaws.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
content-type: application/x-amz-json-1.1
x-amz-target: AWSCognitoIdentityService.GetOpenIdToken
Origin: http://virtual.labdigbdbqapb.com
Content-Length: 63
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 08 Oct 2022 20:10:45 GMT
content-type: application/x-amz-json-1.1
content-length: 771
x-amzn-requestid: 0c37c9d3-d03f-4a06-9c06-e66b122dfcad
access-control-allow-origin: *
access-control-expose-headers: x-amzn-RequestId,x-amzn-ErrorType,x-amzn-ErrorMessage,Date
X-Firefox-Spdy: h2
tags.tiqcdn.com/utag/adl/bdbogota/dev/utag.sync.js
23.38.200.249200 OK 5.8 kB URL HTTP/2 tags.tiqcdn.com/utag/adl/bdbogota/dev/utag.sync.js
IP 23.38.200.249:0
File type ASCII text, with very long lines (6349)
Hash e68566af5231b4d896055e7537bf49af
afca79bcd4715df4f4a8fbbdcad1c4a74584d50b
7dd5b02653a9efa1d15c01879d8f5a74712c7021f1184358ede7e6b2fd722520
GET /utag/adl/bdbogota/dev/utag.sync.js HTTP/1.1
Host: tags.tiqcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
content-type: application/x-javascript
etag: "f1245e76b029a1a7795f7c25b8485f9e:1665161823.542381"
last-modified: Fri, 07 Oct 2022 16:57:03 GMT
server: AkamaiNetStorage
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=300
expires: Sat, 08 Oct 2022 20:15:45 GMT
date: Sat, 08 Oct 2022 20:10:45 GMT
content-length: 5809
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
54.230.245.110200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.110:0
Hash 417b0dc533df091f7a53544a3f6875c7
d7cc743ef003962dbd0a6165a831febba14fa1f3
0462cd73228f76554aab16f6708c585747875c8d17493b33edb243c5be8675f2
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Sat, 08 Oct 2022 20:10:45 GMT
Last-Modified: Sat, 08 Oct 2022 18:28:09 GMT
Server: ECS (nyb/1D0D)
X-Cache: Miss from cloudfront
Via: 1.1 0c35b89cb607eddb1b7cc5d6ada865d6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: g7VV9YMPSLcE_aQbBI2MPzUNGn-ZrT80VgR0QXCOUWzFSfW16TPzYw==
Age: 6156
sts.us-east-1.amazonaws.com/
54.239.24.200200 OK 2.0 kB URL HTTP/1.1 sts.us-east-1.amazonaws.com/
IP 54.239.24.200:0
File type ASCII text, with very long lines (1051)
Hash d10ff97db5398d78101462b41c06f822
1357ef0a7680c0689be6dabd7422491dcef574a3
af04644a187861fa1bf2896f6ca9c0dbebe49d187ecb3315353f93d0d5b68aa4
POST / HTTP/1.1
Host: sts.us-east-1.amazonaws.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
content-type: application/x-www-form-urlencoded
Origin: http://virtual.labdigbdbqapb.com
Content-Length: 893
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amzn-RequestId: 3ce65bfd-4cd1-4bae-b721-48a1e93f74c1
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: x-amzn-RequestId,x-amzn-ErrorType,x-amzn-ErrorMessage,Date
Content-Type: text/xml
Content-Length: 2042
Date: Sat, 08 Oct 2022 20:10:45 GMT
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 31e440ccd993c4ee793f50511c2ac7c4
4380327d50b7001d158aee05a57c6078e57c94e4
65d8a97f6df1e110333a01d1f6dcb4982db7bb4b1c5f3f1498fafa716e250c0f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "65D8A97F6DF1E110333A01D1F6DCB4982DB7BB4B1C5F3F1498FAFA716E250C0F"
Last-Modified: Thu, 06 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2543
Expires: Sat, 08 Oct 2022 20:53:09 GMT
Date: Sat, 08 Oct 2022 20:10:46 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 31e440ccd993c4ee793f50511c2ac7c4
4380327d50b7001d158aee05a57c6078e57c94e4
65d8a97f6df1e110333a01d1f6dcb4982db7bb4b1c5f3f1498fafa716e250c0f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "65D8A97F6DF1E110333A01D1F6DCB4982DB7BB4B1C5F3F1498FAFA716E250C0F"
Last-Modified: Thu, 06 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2543
Expires: Sat, 08 Oct 2022 20:53:09 GMT
Date: Sat, 08 Oct 2022 20:10:46 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 31e440ccd993c4ee793f50511c2ac7c4
4380327d50b7001d158aee05a57c6078e57c94e4
65d8a97f6df1e110333a01d1f6dcb4982db7bb4b1c5f3f1498fafa716e250c0f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "65D8A97F6DF1E110333A01D1F6DCB4982DB7BB4B1C5F3F1498FAFA716E250C0F"
Last-Modified: Thu, 06 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2543
Expires: Sat, 08 Oct 2022 20:53:09 GMT
Date: Sat, 08 Oct 2022 20:10:46 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 31e440ccd993c4ee793f50511c2ac7c4
4380327d50b7001d158aee05a57c6078e57c94e4
65d8a97f6df1e110333a01d1f6dcb4982db7bb4b1c5f3f1498fafa716e250c0f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "65D8A97F6DF1E110333A01D1F6DCB4982DB7BB4B1C5F3F1498FAFA716E250C0F"
Last-Modified: Thu, 06 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2543
Expires: Sat, 08 Oct 2022 20:53:09 GMT
Date: Sat, 08 Oct 2022 20:10:46 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 31e440ccd993c4ee793f50511c2ac7c4
4380327d50b7001d158aee05a57c6078e57c94e4
65d8a97f6df1e110333a01d1f6dcb4982db7bb4b1c5f3f1498fafa716e250c0f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "65D8A97F6DF1E110333A01D1F6DCB4982DB7BB4B1C5F3F1498FAFA716E250C0F"
Last-Modified: Thu, 06 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2543
Expires: Sat, 08 Oct 2022 20:53:09 GMT
Date: Sat, 08 Oct 2022 20:10:46 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcff4d93b-bc27-41dd-ad6a-5d295cfb6472.jpeg
34.120.237.76200 OK 4.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcff4d93b-bc27-41dd-ad6a-5d295cfb6472.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 7dcf23b32642f7a82a0a7d734a631bca
9dc8bd1a00dcb896fade6d3112ef53439ecb8fe7
add9aab4427819610f8d693758a752910cf314346e974b7636a82381ab9daa4d
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcff4d93b-bc27-41dd-ad6a-5d295cfb6472.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4252
x-amzn-requestid: 8d6a225c-6389-4f20-9b90-494841f47c99
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Zp1R4GjCIAMFX-Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63409c0b-4076dc933185d9fd6b68e802;Sampled=0
x-amzn-remapped-date: Fri, 07 Oct 2022 21:37:15 GMT
x-amz-cf-pop: SEA73-P2, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: Wb1JAlWtR9sSEi_KuYZivvMivSxZjo92LGpWgFppol5zgapK6eQ-dg==
via: 1.1 c21a0d27ceec21e266c9f962d0349438.cloudfront.net (CloudFront), 1.1 6396e88c437c096ef98930ce29f731a2.cloudfront.net (CloudFront), 1.1 google
date: Fri, 07 Oct 2022 21:37:16 GMT
etag: "9dc8bd1a00dcb896fade6d3112ef53439ecb8fe7"
content-type: image/jpeg
age: 81210
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd0135ba0-9033-445f-8155-a6c093862ccb.jpeg
34.120.237.76200 OK 9.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd0135ba0-9033-445f-8155-a6c093862ccb.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 7e30ca5022768294665070cafc9d489c
c6ebf53c21206cfcf8e70279d3ae43f0170ade3a
6b834cdae692318a114c0d82ebff4fa8f4e65526983758e08ffb130d4d86020f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd0135ba0-9033-445f-8155-a6c093862ccb.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9046
x-amzn-requestid: d560c8ba-6e81-46f7-a451-30c40fbfce6f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Zmhi_F7qIAMFkQg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633f4946-012e65d675558ec8544a1f30;Sampled=0
x-amzn-remapped-date: Thu, 06 Oct 2022 21:31:50 GMT
x-amz-cf-pop: SEA73-P2
x-cache: Hit from cloudfront
x-amz-cf-id: Y_VpleudG3M2sQd7mFGVhPvfULiNQl3YY8xuhiTnTE5VIC64O8vqMA==
via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 583992e175976bd59a21b4416890271e.cloudfront.net (CloudFront), 1.1 google
date: Fri, 07 Oct 2022 21:44:19 GMT
age: 80787
etag: "c6ebf53c21206cfcf8e70279d3ae43f0170ade3a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F56d7dd70-3706-4d51-94da-88fa19a58ad8.jpeg
34.120.237.76200 OK 5.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F56d7dd70-3706-4d51-94da-88fa19a58ad8.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash e5c4757ceb6dce32d0f9d26d5b3df038
d8209d82f61c7a09e00756e5dd32c99bc61af4a8
6aa007279ba4cdea3f772e0601e4082d40ee947ef8cc1201ce0009fb42ca9885
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F56d7dd70-3706-4d51-94da-88fa19a58ad8.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5185
x-amzn-requestid: 3c3ff89f-8a8c-44ae-981a-0e9adaf7d959
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Zj_dSEs8IAMFqFA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633e45ee-6c97b82d137c2f1951270b82;Sampled=0
x-amzn-remapped-date: Thu, 06 Oct 2022 03:05:18 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 6wWlD3C6HI9oxa0VAYA6N5afAcUDTQXdO8X31eZUglfdC6jSQo_gew==
via: 1.1 8dbfaf7df256a75768461d934659b6b2.cloudfront.net (CloudFront), 1.1 476c2ba6d9f6cd69dbcedbd65688cbc0.cloudfront.net (CloudFront), 1.1 google
date: Sat, 08 Oct 2022 03:29:14 GMT
age: 60092
etag: "d8209d82f61c7a09e00756e5dd32c99bc61af4a8"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5e9e3511-179a-47a1-a41a-7b5f6ecbf14f.jpeg
34.120.237.76200 OK 5.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5e9e3511-179a-47a1-a41a-7b5f6ecbf14f.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash a6207431ae268d805fb92237925c8fc0
075b576b0d47e0f6cbbb9dc85f87e8ca4e8eca87
bb8966bd5b80f1ba6c974925df0610e0a219759ab92df062e135baae02fa0071
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5e9e3511-179a-47a1-a41a-7b5f6ecbf14f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5440
x-amzn-requestid: c9408e3c-29f6-4a53-b09d-0c3f49e99287
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Zp3AzFQ3oAMF_Ow=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63409ed1-1da6e8c500879b080c66fdfe;Sampled=0
x-amzn-remapped-date: Fri, 07 Oct 2022 21:49:05 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: bpAfspjZlm1y-CxYtXbhfwPHzcNxLJGVh_j685Z-TvTV-kdRttBjhg==
via: 1.1 2afae0d44e2540f472c0635ab62c232a.cloudfront.net (CloudFront), 1.1 324a68a6c25ee50d774953f3e15a611c.cloudfront.net (CloudFront), 1.1 google
date: Fri, 07 Oct 2022 22:11:50 GMT
etag: "075b576b0d47e0f6cbbb9dc85f87e8ca4e8eca87"
content-type: image/jpeg
age: 79136
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc8d22189-9354-45d8-a562-99fb9adeda28.jpeg
34.120.237.76200 OK 9.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc8d22189-9354-45d8-a562-99fb9adeda28.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d67e1b7a9224fb617581c14af1e369ac
941b8fdd8736691d796738233681f12900af92c4
ed88575e76e6919ab4702bb29db5c48c5bd250ad2a89047d4d8a31cf3c77f12e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc8d22189-9354-45d8-a562-99fb9adeda28.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9112
x-amzn-requestid: 94c5c303-a221-4b00-9d01-95607233fbc4
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Zp2PxHXuoAMFZzg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63409d97-5080b3765b6cd57c64e36e80;Sampled=0
x-amzn-remapped-date: Fri, 07 Oct 2022 21:43:51 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: caUfhYpcvVq0JjR0INv3aPuCZDq50dJg9p7Wjlz6TcJaX7kU3OIHDA==
via: 1.1 000f4a2f631bace380a0afa747a82482.cloudfront.net (CloudFront), 1.1 a3bd0eb50c22e4d5fbda56a30b96002c.cloudfront.net (CloudFront), 1.1 google
date: Fri, 07 Oct 2022 21:50:09 GMT
age: 80437
etag: "941b8fdd8736691d796738233681f12900af92c4"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa57a0ead-deef-46c2-985b-fb7ba539285b.jpeg
34.120.237.76200 OK 6.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa57a0ead-deef-46c2-985b-fb7ba539285b.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 9bc50d1380ae8fc980ae1cc38f2371c7
be79aecfd7eefa89c409ed743402a292ff0ce6c0
43e015802ba453d4cd79984b53efa8a529ece62760f6693f9daeb2388179201f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa57a0ead-deef-46c2-985b-fb7ba539285b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6366
x-amzn-requestid: ddcd915d-2606-4243-969e-19fb02b5b6d1
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Zp1EJGoSIAMFcSw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63409bb3-1c7bd17a2dcdd25e4da6d346;Sampled=0
x-amzn-remapped-date: Fri, 07 Oct 2022 21:35:47 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: Cm4uaStVKEsemoOHrc04J9qNysQJoMB7-R8LEzmlRXt47mpXi2NRPA==
via: 1.1 4dde8ec6d6c12741888c2d3a059d4a2e.cloudfront.net (CloudFront), 1.1 9046e5a276a05e60ee34c8475e92b8e6.cloudfront.net (CloudFront), 1.1 google
date: Fri, 07 Oct 2022 21:50:12 GMT
age: 80434
etag: "be79aecfd7eefa89c409ed743402a292ff0ce6c0"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
virtual.labdigbdbqapb.com/container/main.js
54.230.111.115200 OK 1.4 kB URL HTTP/1.1 virtual.labdigbdbqapb.com/container/main.js
IP 54.230.111.115:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (730)
Hash dff8c8c4d88ca656619c6423a21de33e
e469cc20e05edb01fd6680b0dc284d25962e0150
4bcdcbc6ecbf3082351dc6759ecf70c67e290a4c30c5996523b2f59c3342153f
Analyzer Verdict Alert fortinet Phishing
GET /container/main.js HTTP/1.1
Host: virtual.labdigbdbqapb.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://virtual.labdigbdbqapb.com/
Connection: keep-alive
Cookie: utag_main=v_id:0183b938b7540016c2a2565921e600044002100900918$_sn:1$_se:1$_ss:1$_st:1665261645461$ses_id:1665259845461%3Bexp-session$_pn:1%3Bexp-session
HTTP/1.1 200 OK
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Date: Sat, 08 Oct 2022 20:10:46 GMT
Last-Modified: Wed, 28 Sep 2022 01:58:41 GMT
ETag: W/"80ed3c6743d73e519bc64c32ac2bb330"
x-amz-version-id: null
Server: AmazonS3
Content-Security-Policy: default-src 'self' blob: https://*.bancodebogota.co https://*.bancodebogota.com.co https://*.bancodebogota.com https://*.labdigbdbqapb.com https://*.amazonaws.com https://*.amazonaws.com/* https://tags.bkrtx.com https://*.bluekai.com https://*.doubleclick.net https://*.maxymiser.net https://*.maxymiser.com https://*.oracleinfinity.io ; worker-src 'self' https://*.bancodebogota.co https://*.bancodebogota.com.co https://*.bancodebogota.com https://*.labdigbdbqapb.com https://*.google.com https://*.google.com.co https://*.hotjar.io https://*.hotjar.com:* wss://*.hotjar.com ; frame-ancestors https://*.bancodebogota.co https://*.bancodebogota.com.co https://*.bancodebogota.com https://*.labdigbdbqapb.com https://*.bluekai.com https://*.maxymiser.net https://*.maxymiser.com https://*.oracleinfinity.io ; connect-src 'self' https://*.avaldigitallabs.com https://*.google.com https://*.google.com.co https://*.cloudfront.net https://www.avvillas.com.co https://*.doubleclick.net https://*.maxymiser.net https://*.maxymiser.com https://*.bluekai.com https://*.oracleinfinity.io https://*.googletagmanager.com https://*.google-analytics.com https://*.amazonaws.com https://*.amazonaws.com/* https://tags.bkrtx.com https://*.hotjar.io https://*.hotjar.com:* wss://*.hotjar.com https://cdn.appdynamics.com https://*.gstatic.com https://tags.tiqcdn.com https://*.tealiumiq.com https://col.eum-appdynamics.com https://*.labdigbdbqacad.com https://*.labdigbdbdevcd.com https://*.bancodebogota.co https://*.bancodebogota.com.co https://*.bancodebogota.com https://*.labdigbdbqapb.com https://*.labdigitalbdbtvsqa.com ; img-src 'self' data: blob: https://*.bancodebogota.co https://*.bancodebogota.com.co https://*.bancodebogota.com https://*.labdigbdbqapb.com https://*.avaldigitallabs.com https://*.google.com https://*.google.com.co https://*.googletagmanager.com https://*.google-analytics.com https://*.doubleclick.net https://www.avvillas.com.co https://*.oracleinfinity.io https://*.hotjar.io https://*.hotjar.com:* wss://*.hotjar.com https://*.bluekai.com https://*.gstatic.com https://*.labdigbdbqacad.com https://*.tealiumiq.com https://*.maxymiser.net https://*.maxymiser.com https://*.mathilde-ads.com https://*.sitescout.com https://www.facebook.com/ https://cdnjs.cloudflare.com https://*.ytimg.com https://*.labdigitalbdbtvsqa.com ; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://*.bancodebogota.co https://*.bancodebogota.com.co https://*.bancodebogota.com https://*.labdigbdbqapb.com https://cdn.appdynamics.com https://*.gstatic.com https://*.maxymiser.net https://*.maxymiser.com https://tags.bkrtx.com https://*.bluekai.com https://*.google.com https://*.google.com.co https://*.googletagmanager.com https://*.google-analytics.com https://fonts.googleapis.com https://*.hotjar.io https://*.hotjar.com:* wss://*.hotjar.com https://tags.tiqcdn.com https://*.tealiumiq.com https://www.facebook.com/ https://*.doubleclick.net https://*.oracleinfinity.io https://*.mathilde-ads.com https://*.sitescout.com https://*.amazonaws.com https://*.amazonaws.com/* https://cdnjs.cloudflare.com https://*.cloudfront.net ; font-src 'self' data: https://*.google.com https://*.google.com.co https://*.hotjar.io https://*.hotjar.com:* wss://*.hotjar.com https://*.bluekai.com https://*.gstatic.com ; frame-src 'self' https://*.bancodebogota.co https://*.bancodebogota.com.co https://*.bancodebogota.com https://*.labdigbdbqapb.com https://cdn.appdynamics.com https://*.bluekai.com https://*.google.com https://*.google.com.co https://*.hotjar.io https://*.hotjar.com:* wss://*.hotjar.com https://*.maxymiser.net https://*.maxymiser.com https://*.tealiumiq.com https://*.mathilde-ads.com https://*.sitescout.com https://*.youtube.com ; style-src 'self' 'unsafe-inline' https://*.bluekai.com https://tags.bkrtx.com https://*.maxymiser.net https://*.maxymiser.com https://*.google.com https://*.google.com.co https://fonts.googleapis.com https://*.googletagmanager.com https://*.oracleinfinity.io
Cache-Control: no-store
Strict-Transport-Security: max-age=31536000; includeSubdomains; preload
Service-Worker-Allowed: /
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Referrer-Policy: same-origin
X-Frame-Options: SAMEORIGIN
Permissions-Policy: geolocation=()
X-Permitted-Cross-Domain-Policies: none
Content-Encoding: gzip
Vary: Accept-Encoding
X-Cache: Error from cloudfront
Via: 1.1 0c35b89cb607eddb1b7cc5d6ada865d6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: hVy3IIKvXj5RjQFCIeklkREYGFVuTfQrVgTTLcIOtbabs395bh4GwA==
virtual.labdigbdbqapb.com/container/deleteLegacyPWA.js
54.230.111.115200 OK 1.4 kB URL HTTP/1.1 virtual.labdigbdbqapb.com/container/deleteLegacyPWA.js
IP 54.230.111.115:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (730)
Hash dff8c8c4d88ca656619c6423a21de33e
e469cc20e05edb01fd6680b0dc284d25962e0150
4bcdcbc6ecbf3082351dc6759ecf70c67e290a4c30c5996523b2f59c3342153f
Analyzer Verdict Alert fortinet Phishing
GET /container/deleteLegacyPWA.js HTTP/1.1
Host: virtual.labdigbdbqapb.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://virtual.labdigbdbqapb.com/
Connection: keep-alive
Cookie: utag_main=v_id:0183b938b7540016c2a2565921e600044002100900918$_sn:1$_se:1$_ss:1$_st:1665261645461$ses_id:1665259845461%3Bexp-session$_pn:1%3Bexp-session
HTTP/1.1 200 OK
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 28 Sep 2022 01:58:41 GMT
x-amz-version-id: null
Server: AmazonS3
Content-Security-Policy: default-src 'self' blob: https://*.bancodebogota.co https://*.bancodebogota.com.co https://*.bancodebogota.com https://*.labdigbdbqapb.com https://*.amazonaws.com https://*.amazonaws.com/* https://tags.bkrtx.com https://*.bluekai.com https://*.doubleclick.net https://*.maxymiser.net https://*.maxymiser.com https://*.oracleinfinity.io ; worker-src 'self' https://*.bancodebogota.co https://*.bancodebogota.com.co https://*.bancodebogota.com https://*.labdigbdbqapb.com https://*.google.com https://*.google.com.co https://*.hotjar.io https://*.hotjar.com:* wss://*.hotjar.com ; frame-ancestors https://*.bancodebogota.co https://*.bancodebogota.com.co https://*.bancodebogota.com https://*.labdigbdbqapb.com https://*.bluekai.com https://*.maxymiser.net https://*.maxymiser.com https://*.oracleinfinity.io ; connect-src 'self' https://*.avaldigitallabs.com https://*.google.com https://*.google.com.co https://*.cloudfront.net https://www.avvillas.com.co https://*.doubleclick.net https://*.maxymiser.net https://*.maxymiser.com https://*.bluekai.com https://*.oracleinfinity.io https://*.googletagmanager.com https://*.google-analytics.com https://*.amazonaws.com https://*.amazonaws.com/* https://tags.bkrtx.com https://*.hotjar.io https://*.hotjar.com:* wss://*.hotjar.com https://cdn.appdynamics.com https://*.gstatic.com https://tags.tiqcdn.com https://*.tealiumiq.com https://col.eum-appdynamics.com https://*.labdigbdbqacad.com https://*.labdigbdbdevcd.com https://*.bancodebogota.co https://*.bancodebogota.com.co https://*.bancodebogota.com https://*.labdigbdbqapb.com https://*.labdigitalbdbtvsqa.com ; img-src 'self' data: blob: https://*.bancodebogota.co https://*.bancodebogota.com.co https://*.bancodebogota.com https://*.labdigbdbqapb.com https://*.avaldigitallabs.com https://*.google.com https://*.google.com.co https://*.googletagmanager.com https://*.google-analytics.com https://*.doubleclick.net https://www.avvillas.com.co https://*.oracleinfinity.io https://*.hotjar.io https://*.hotjar.com:* wss://*.hotjar.com https://*.bluekai.com https://*.gstatic.com https://*.labdigbdbqacad.com https://*.tealiumiq.com https://*.maxymiser.net https://*.maxymiser.com https://*.mathilde-ads.com https://*.sitescout.com https://www.facebook.com/ https://cdnjs.cloudflare.com https://*.ytimg.com https://*.labdigitalbdbtvsqa.com ; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://*.bancodebogota.co https://*.bancodebogota.com.co https://*.bancodebogota.com https://*.labdigbdbqapb.com https://cdn.appdynamics.com https://*.gstatic.com https://*.maxymiser.net https://*.maxymiser.com https://tags.bkrtx.com https://*.bluekai.com https://*.google.com https://*.google.com.co https://*.googletagmanager.com https://*.google-analytics.com https://fonts.googleapis.com https://*.hotjar.io https://*.hotjar.com:* wss://*.hotjar.com https://tags.tiqcdn.com https://*.tealiumiq.com https://www.facebook.com/ https://*.doubleclick.net https://*.oracleinfinity.io https://*.mathilde-ads.com https://*.sitescout.com https://*.amazonaws.com https://*.amazonaws.com/* https://cdnjs.cloudflare.com https://*.cloudfront.net ; font-src 'self' data: https://*.google.com https://*.google.com.co https://*.hotjar.io https://*.hotjar.com:* wss://*.hotjar.com https://*.bluekai.com https://*.gstatic.com ; frame-src 'self' https://*.bancodebogota.co https://*.bancodebogota.com.co https://*.bancodebogota.com https://*.labdigbdbqapb.com https://cdn.appdynamics.com https://*.bluekai.com https://*.google.com https://*.google.com.co https://*.hotjar.io https://*.hotjar.com:* wss://*.hotjar.com https://*.maxymiser.net https://*.maxymiser.com https://*.tealiumiq.com https://*.mathilde-ads.com https://*.sitescout.com https://*.youtube.com ; style-src 'self' 'unsafe-inline' https://*.bluekai.com https://tags.bkrtx.com https://*.maxymiser.net https://*.maxymiser.com https://*.google.com https://*.google.com.co https://fonts.googleapis.com https://*.googletagmanager.com https://*.oracleinfinity.io
Strict-Transport-Security: max-age=31536000; includeSubdomains; preload
Service-Worker-Allowed: /
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Referrer-Policy: same-origin
X-Frame-Options: SAMEORIGIN
Permissions-Policy: geolocation=()
X-Permitted-Cross-Domain-Policies: none
Content-Encoding: gzip
Date: Sat, 08 Oct 2022 20:10:47 GMT
Cache-Control: no-store
ETag: W/"80ed3c6743d73e519bc64c32ac2bb330"
Vary: Accept-Encoding
X-Cache: Error from cloudfront
Via: 1.1 e2f427863e6bdb72ad8bed72b596d81e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: PMOxgJCIkKZ8qO8hN7A2GFBEBxOE0iw8ga6XTfVpDdszTEi5gy5pnA==
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 8a2449aeb44e755b2e6897d30993dda0
16cd83b0e0975ebf09e7035c26bbda168af42ac8
fd80527f810be13b70107c447b6f6f226c6145fbcc3b5446f9c834bca2f1597b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 08 Oct 2022 20:10:46 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.gstatic.com/recaptcha/releases/a9s0j4pCVT6gaTEkLiFbtZPH/recaptcha__en.js
142.250.74.163200 OK 159 kB URL HTTP/2 www.gstatic.com/recaptcha/releases/a9s0j4pCVT6gaTEkLiFbtZPH/recaptcha__en.js
IP 142.250.74.163:0
File type ASCII text, with very long lines (711)
Size 159 kB (158844 bytes)
Hash b4ed95d4318e3b78b936c9c0f1ffa96e
b53c9376b1459afb07fb4b5c2e8d8dad776d3a02
3c21880cb7be6bec40f9d40c23ad39c9758999cf950cec07b86c83b21fde175f
GET /recaptcha/releases/a9s0j4pCVT6gaTEkLiFbtZPH/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://virtual.labdigbdbqapb.com
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 158844
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 05 Oct 2022 21:02:07 GMT
expires: Thu, 05 Oct 2023 21:02:07 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 26 Sep 2022 04:02:34 GMT
content-type: text/javascript
age: 256119
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
virtual.labdigbdbqapb.com/container/assets/favicon.ico
54.230.111.115200 OK 1.4 kB URL HTTP/1.1 virtual.labdigbdbqapb.com/container/assets/favicon.ico
IP 54.230.111.115:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (730)
Hash dff8c8c4d88ca656619c6423a21de33e
e469cc20e05edb01fd6680b0dc284d25962e0150
4bcdcbc6ecbf3082351dc6759ecf70c67e290a4c30c5996523b2f59c3342153f
GET /container/assets/favicon.ico HTTP/1.1
Host: virtual.labdigbdbqapb.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://virtual.labdigbdbqapb.com/
Connection: keep-alive
Cookie: utag_main=v_id:0183b938b7540016c2a2565921e600044002100900918$_sn:1$_se:1$_ss:1$_st:1665261645461$ses_id:1665259845461%3Bexp-session$_pn:1%3Bexp-session
HTTP/1.1 200 OK
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Date: Sat, 08 Oct 2022 20:10:47 GMT
Last-Modified: Wed, 28 Sep 2022 01:58:41 GMT
ETag: W/"80ed3c6743d73e519bc64c32ac2bb330"
x-amz-version-id: null
Server: AmazonS3
Content-Security-Policy: default-src 'self' blob: https://*.bancodebogota.co https://*.bancodebogota.com.co https://*.bancodebogota.com https://*.labdigbdbqapb.com https://*.amazonaws.com https://*.amazonaws.com/* https://tags.bkrtx.com https://*.bluekai.com https://*.doubleclick.net https://*.maxymiser.net https://*.maxymiser.com https://*.oracleinfinity.io ; worker-src 'self' https://*.bancodebogota.co https://*.bancodebogota.com.co https://*.bancodebogota.com https://*.labdigbdbqapb.com https://*.google.com https://*.google.com.co https://*.hotjar.io https://*.hotjar.com:* wss://*.hotjar.com ; frame-ancestors https://*.bancodebogota.co https://*.bancodebogota.com.co https://*.bancodebogota.com https://*.labdigbdbqapb.com https://*.bluekai.com https://*.maxymiser.net https://*.maxymiser.com https://*.oracleinfinity.io ; connect-src 'self' https://*.avaldigitallabs.com https://*.google.com https://*.google.com.co https://*.cloudfront.net https://www.avvillas.com.co https://*.doubleclick.net https://*.maxymiser.net https://*.maxymiser.com https://*.bluekai.com https://*.oracleinfinity.io https://*.googletagmanager.com https://*.google-analytics.com https://*.amazonaws.com https://*.amazonaws.com/* https://tags.bkrtx.com https://*.hotjar.io https://*.hotjar.com:* wss://*.hotjar.com https://cdn.appdynamics.com https://*.gstatic.com https://tags.tiqcdn.com https://*.tealiumiq.com https://col.eum-appdynamics.com https://*.labdigbdbqacad.com https://*.labdigbdbdevcd.com https://*.bancodebogota.co https://*.bancodebogota.com.co https://*.bancodebogota.com https://*.labdigbdbqapb.com https://*.labdigitalbdbtvsqa.com ; img-src 'self' data: blob: https://*.bancodebogota.co https://*.bancodebogota.com.co https://*.bancodebogota.com https://*.labdigbdbqapb.com https://*.avaldigitallabs.com https://*.google.com https://*.google.com.co https://*.googletagmanager.com https://*.google-analytics.com https://*.doubleclick.net https://www.avvillas.com.co https://*.oracleinfinity.io https://*.hotjar.io https://*.hotjar.com:* wss://*.hotjar.com https://*.bluekai.com https://*.gstatic.com https://*.labdigbdbqacad.com https://*.tealiumiq.com https://*.maxymiser.net https://*.maxymiser.com https://*.mathilde-ads.com https://*.sitescout.com https://www.facebook.com/ https://cdnjs.cloudflare.com https://*.ytimg.com https://*.labdigitalbdbtvsqa.com ; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://*.bancodebogota.co https://*.bancodebogota.com.co https://*.bancodebogota.com https://*.labdigbdbqapb.com https://cdn.appdynamics.com https://*.gstatic.com https://*.maxymiser.net https://*.maxymiser.com https://tags.bkrtx.com https://*.bluekai.com https://*.google.com https://*.google.com.co https://*.googletagmanager.com https://*.google-analytics.com https://fonts.googleapis.com https://*.hotjar.io https://*.hotjar.com:* wss://*.hotjar.com https://tags.tiqcdn.com https://*.tealiumiq.com https://www.facebook.com/ https://*.doubleclick.net https://*.oracleinfinity.io https://*.mathilde-ads.com https://*.sitescout.com https://*.amazonaws.com https://*.amazonaws.com/* https://cdnjs.cloudflare.com https://*.cloudfront.net ; font-src 'self' data: https://*.google.com https://*.google.com.co https://*.hotjar.io https://*.hotjar.com:* wss://*.hotjar.com https://*.bluekai.com https://*.gstatic.com ; frame-src 'self' https://*.bancodebogota.co https://*.bancodebogota.com.co https://*.bancodebogota.com https://*.labdigbdbqapb.com https://cdn.appdynamics.com https://*.bluekai.com https://*.google.com https://*.google.com.co https://*.hotjar.io https://*.hotjar.com:* wss://*.hotjar.com https://*.maxymiser.net https://*.maxymiser.com https://*.tealiumiq.com https://*.mathilde-ads.com https://*.sitescout.com https://*.youtube.com ; style-src 'self' 'unsafe-inline' https://*.bluekai.com https://tags.bkrtx.com https://*.maxymiser.net https://*.maxymiser.com https://*.google.com https://*.google.com.co https://fonts.googleapis.com https://*.googletagmanager.com https://*.oracleinfinity.io
Cache-Control: no-store
Strict-Transport-Security: max-age=31536000; includeSubdomains; preload
Service-Worker-Allowed: /
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Referrer-Policy: same-origin
X-Frame-Options: SAMEORIGIN
Permissions-Policy: geolocation=()
X-Permitted-Cross-Domain-Policies: none
Content-Encoding: gzip
Vary: Accept-Encoding
X-Cache: Error from cloudfront
Via: 1.1 0c35b89cb607eddb1b7cc5d6ada865d6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: dkSW8-IVJJOP-jJiisAAdesEi8qMOzLIrQ9HAbRvGgYMyPzVkUQjmw==
fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
216.58.207.195200 OK 15 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 15344, version 1.0\012- data
Hash 5d4aeb4e5f5ef754e307d7ffaef688bd
06db651cdf354c64a7383ea9c77024ef4fb4cef8
3e253b66056519aa065b00a453bac37ac5ed8f3e6fe7b542e93a9dcdcc11d0bc
GET /s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15344
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 08 Oct 2022 12:31:58 GMT
expires: Sun, 08 Oct 2023 12:31:58 GMT
cache-control: public, max-age=31536000
age: 27528
last-modified: Mon, 16 Oct 2017 17:32:55 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
216.58.207.195200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 15552, version 1.0\012- data
Hash 285467176f7fe6bb6a9c6873b3dad2cc
ea04e4ff5142ddd69307c183def721a160e0a64e
5a8c1e7681318caa29e9f44e8a6e271f6a4067a2703e9916dfd4fe9099241db7
GET /s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15552
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 07 Oct 2022 00:48:31 GMT
expires: Sat, 07 Oct 2023 00:48:31 GMT
cache-control: public, max-age=31536000
age: 156135
last-modified: Mon, 16 Oct 2017 17:33:02 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
client.rum.us-east-1.amazonaws.com/1.2.1/cwr.js
54.230.111.9200 OK 0 B URL HTTP/2 client.rum.us-east-1.amazonaws.com/1.2.1/cwr.js
IP 54.230.111.9:0
GET /1.2.1/cwr.js HTTP/1.1
Host: client.rum.us-east-1.amazonaws.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/javascript
last-modified: Thu, 17 Mar 2022 20:19:41 GMT
x-amz-version-id: .4K5CfpXnO4JYWpB.0XU4z1pqhcxZqEe
server: AmazonS3
content-encoding: br
date: Sat, 08 Oct 2022 02:33:12 GMT
cache-control: max-age=604800
etag: W/"22408e37866ef0d296d8a35f95078b0f"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 784cb0c259a6d79800d037bda4e7de86.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: WFF2pQ9VflJVtY7ab1asz7WcqVCUHmdfhYPikbA9cL-IJeqky-Mfqw==
age: 369890
X-Firefox-Spdy: h2
static.hotjar.com/c/hotjar-946288.js?sv=6
54.230.111.8200 OK 0 B URL HTTP/2 static.hotjar.com/c/hotjar-946288.js?sv=6
IP 54.230.111.8:0
GET /c/hotjar-946288.js?sv=6 HTTP/1.1
Host: static.hotjar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
date: Sat, 08 Oct 2022 20:10:46 GMT
access-control-allow-origin: *
cache-control: max-age=60
content-encoding: br
cross-origin-resource-policy: cross-origin
strict-transport-security: max-age=2592000; includeSubDomains
x-cache-hit: 1
x-content-type-options: nosniff
etag: W/062d258fa7fb92e3aaa0a007f7273f76
vary: Accept-Encoding
x-cache: Miss from cloudfront
via: 1.1 ee04daa979e7a02cc5ca472521bc18a6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: xA821AdNUNzLI3YT4oFgAlXbGS4HyAqAZEt2CeK-xY8d6JRuvjHQ_A==
X-Firefox-Spdy: h2