app.trazapms.com/
72.44.54.24301 Moved Permanently 162 B IP 72.44.54.24:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: app.trazapms.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Mon, 28 Nov 2022 04:02:29 GMT
Content-Type: text/html
Content-Length: 162
Connection: keep-alive
Location: https://app.trazapms.com/
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 150792cfc458af013998f4ef6bdf5f74
d5179b2dcb11d06f82606bf6eb6648319998d63e
72937c756d3feeae6d04a6f445398b0436bdf559f8c7437e3a3233263943900e
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "72937C756D3FEEAE6D04A6F445398B0436BDF559F8C7437E3A3233263943900E"
Last-Modified: Sat, 26 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6619
Expires: Mon, 28 Nov 2022 05:52:48 GMT
Date: Mon, 28 Nov 2022 04:02:29 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 64b2a23eab6e5ae8c010ec7242be930c
0673e4385ba01a5a245711bab96cafc34f765793
64751d193f7af72431e9689581faffcae1a30ff50ea425697b2b80ff61c87909
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1775
Cache-Control: max-age=111499
Content-Type: application/ocsp-response
Date: Mon, 28 Nov 2022 04:02:29 GMT
Etag: "63833c71-1d7"
Expires: Tue, 29 Nov 2022 11:00:48 GMT
Last-Modified: Sun, 27 Nov 2022 10:31:13 GMT
Server: ECS (ska/F71C)
X-Cache: HIT
Content-Length: 471
firefox.settings.services.mozilla.com/v1/
34.102.187.140200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 567df7db606cf5d0871aa5bc9311b6da
4263faac7cbab2fcaf6661911dcad5091c06be17
e9650e1fdc46fc8678708ddcc37ab369c7a6d50489a004be896f20c7a3a644b0
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Retry-After, Content-Length, Alert, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Mon, 28 Nov 2022 03:19:31 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 2578
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 3b56944f0e5716fd4fad2ec18994d4be
61cafa4de31ba960d1145ec37272f6f6b6944e0c
4fd46b0b6a2ea24f5ce175985a3933c04b4c01bd3e32bee2e50a61a65eef7af4
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4FD46B0B6A2EA24F5CE175985A3933C04B4C01BD3E32BEE2E50A61A65EEF7AF4"
Last-Modified: Sat, 26 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9284
Expires: Mon, 28 Nov 2022 06:37:13 GMT
Date: Mon, 28 Nov 2022 04:02:29 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 9ebddc2b260d081ebbefee47c037cb28
492bad62a7ca6a74738921ef5ae6f0be5edebf39
74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5
GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: RrbG4zuI/0TOuLG1vzNy2bzEWnCGludbbKpGAnqQwsiyhzhQnIAPlu/s4PWImC2LqvlrUAjtDnk=
x-amz-request-id: 7C73XB1FR51QSSFV
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Mon, 28 Nov 2022 03:44:53 GMT
age: 1056
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Mon, 28 Nov 2022 04:02:30 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
34.102.187.140200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: ETag, Content-Type, Content-Length, Last-Modified, Alert, Backoff, Pragma, Expires, Retry-After, Cache-Control
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Mon, 28 Nov 2022 03:08:55 GMT
cache-control: public,max-age=3600
age: 3215
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2
app.trazapms.com/
72.44.54.24302 Found 0 B IP 72.44.54.24:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: app.trazapms.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 302 Found
server: nginx
date: Mon, 28 Nov 2022 04:02:30 GMT
content-type: text/html; charset=UTF-8
content-length: 0
location: app_Login
strict-transport-security: max-age=15768000; includeSubDomains
x-powered-by: PHP/7.3.27, PleskLin
X-Firefox-Spdy: h2
app.trazapms.com/app_Login
72.44.54.24301 Moved Permanently 310 B URL HTTP/2 app.trazapms.com/app_Login
IP 72.44.54.24:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 2d29d6ea525d81bf919f2286e02ca083
6ae80f32ff8131bfe105af83fd3f1406b73f877e
43c3e6ff3feba461bfe4ce1e10a7a113d06b7b07e5e4dedc387d5531aad488fa
Analyzer Verdict Alert fortinet Phishing
GET /app_Login HTTP/1.1
Host: app.trazapms.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
TE: trailers
HTTP/2 301 Moved Permanently
server: nginx
date: Mon, 28 Nov 2022 04:02:30 GMT
content-type: text/html; charset=iso-8859-1
content-length: 310
location: https://app.trazapms.com/app_Login/
strict-transport-security: max-age=15768000; includeSubDomains
x-powered-by: PleskLin
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash a6fee11dfe1b88cd768a0ca3e2bd0c89
59cec9a44a4a92467678afe65f347f68641a2174
50870c499aae4d5dfd6df25a36cd04b6d185b66ef0590e46933984bf52e2483f
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4591
Cache-Control: max-age=109253
Content-Type: application/ocsp-response
Date: Mon, 28 Nov 2022 04:02:30 GMT
Etag: "638328ac-1d7"
Expires: Tue, 29 Nov 2022 10:23:23 GMT
Last-Modified: Sun, 27 Nov 2022 09:06:52 GMT
Server: ECS (ska/F71C)
X-Cache: HIT
Content-Length: 471
app.trazapms.com/app_Login/
72.44.54.24200 OK 29 kB URL HTTP/2 app.trazapms.com/app_Login/
IP 72.44.54.24:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (718), with CRLF, LF line terminators
Hash 544b789d6a5c391563670c16bd24839a
5721be7e1947f3b2e0dff059ae916fdfbc764357
3e6618725c1416d0dcc031b8ddab937a0a335873eac0cc8f69f6874fb16b7533
Analyzer Verdict Alert fortinet Phishing
GET /app_Login/ HTTP/1.1
Host: app.trazapms.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 28 Nov 2022 04:02:30 GMT
content-type: text/html; charset=UTF-8
content-length: 28551
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
set-cookie: PHPSESSID=41stec7tplhji0806b0gbb6kt6; path=/; HttpOnly
sc_actual_lang_traza=es; path=/
vary: Accept-Encoding
content-encoding: gzip
strict-transport-security: max-age=15768000; includeSubDomains
x-powered-by: PHP/7.3.27, PleskLin
X-Firefox-Spdy: h2
app.trazapms.com/_lib/libraries/grp/traza_login/login/img/logoTraza3.png
72.44.54.24200 OK 2.8 kB URL HTTP/2 app.trazapms.com/_lib/libraries/grp/traza_login/login/img/logoTraza3.png
IP 72.44.54.24:0
File type PNG image data, 167 x 81, 8-bit/color RGBA, non-interlaced\012- data
Hash 6bef11d6c8178570c2862defe7a1099e
4160579a26397dcaee4d66a9111e86bb32661108
0706b1eecededb7304c9bb5e6d38396a4f5f7c6177dee111048e78bf1e1840cc
GET /_lib/libraries/grp/traza_login/login/img/logoTraza3.png HTTP/1.1
Host: app.trazapms.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app.trazapms.com/app_Login/
Cookie: PHPSESSID=41stec7tplhji0806b0gbb6kt6; sc_actual_lang_traza=es
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 28 Nov 2022 04:02:30 GMT
content-type: image/png
content-length: 2782
last-modified: Sun, 27 Nov 2022 19:14:48 GMT
etag: "6383b728-ade"
strict-transport-security: max-age=15768000; includeSubDomains
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
app.trazapms.com/_lib/libraries/grp/traza_login/libs/css/styles.css
72.44.54.24200 OK 672 B URL HTTP/2 app.trazapms.com/_lib/libraries/grp/traza_login/libs/css/styles.css
IP 72.44.54.24:0
File type ASCII text, with CRLF line terminators
Hash 2424945f139623fd3152bd204778fb94
9f45b39f520543a8703cd584ab98983d8956aeb7
73a228ce176d4a2fb4dd436b979e3f4fbc6701dd46029c375ec907997c8c7851
GET /_lib/libraries/grp/traza_login/libs/css/styles.css HTTP/1.1
Host: app.trazapms.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app.trazapms.com/app_Login/
Cookie: PHPSESSID=41stec7tplhji0806b0gbb6kt6; sc_actual_lang_traza=es
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 28 Nov 2022 04:02:30 GMT
content-type: text/css
last-modified: Sun, 27 Nov 2022 19:14:48 GMT
etag: W/"6383b728-42d"
strict-transport-security: max-age=15768000; includeSubDomains
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
push.services.mozilla.com/
35.163.1.35101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 35.163.1.35:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: s64MYJBEtWm2uausQjWlRA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 2nZvHptfm6Gzahgb1KXjBrqVwuw=
app.trazapms.com/_lib/libraries/grp/traza_login/login/img/logoInstagram.png
72.44.54.24200 OK 48 kB URL HTTP/2 app.trazapms.com/_lib/libraries/grp/traza_login/login/img/logoInstagram.png
IP 72.44.54.24:0
File type PNG image data, 256 x 256, 8-bit/color RGBA, non-interlaced\012- data
Hash 01c947118516e52c101acefd381a58d0
fce4aa1992248bad4b9dcaac4377a4ea8a1c9bbd
e0434e193a9e8439d2fa57aba2ef02dbcfc3d123b7fd5bd6916014dbfc97421f
GET /_lib/libraries/grp/traza_login/login/img/logoInstagram.png HTTP/1.1
Host: app.trazapms.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app.trazapms.com/app_Login/
Cookie: PHPSESSID=41stec7tplhji0806b0gbb6kt6; sc_actual_lang_traza=es
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 28 Nov 2022 04:02:30 GMT
content-type: image/png
content-length: 47829
last-modified: Sun, 27 Nov 2022 19:14:48 GMT
etag: "6383b728-bad5"
strict-transport-security: max-age=15768000; includeSubDomains
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
app.trazapms.com/_lib/libraries/grp/traza_login/login/img/logoTwitter.png
72.44.54.24200 OK 81 kB URL HTTP/2 app.trazapms.com/_lib/libraries/grp/traza_login/login/img/logoTwitter.png
IP 72.44.54.24:0
File type PNG image data, 1890 x 1417, 8-bit/color RGBA, non-interlaced\012- data
Hash ecf17f4f95f7ad59ded2008b8f0a6861
cfd826b6f9f67695169ac26dd783321de3176c12
0582b5ea88412ef7780cbcb2673cbf2438eb7126747f287dedd173e40fced5db
GET /_lib/libraries/grp/traza_login/login/img/logoTwitter.png HTTP/1.1
Host: app.trazapms.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app.trazapms.com/app_Login/
Cookie: PHPSESSID=41stec7tplhji0806b0gbb6kt6; sc_actual_lang_traza=es
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 28 Nov 2022 04:02:30 GMT
content-type: image/png
content-length: 81086
last-modified: Sun, 27 Nov 2022 19:14:48 GMT
etag: "6383b728-13cbe"
strict-transport-security: max-age=15768000; includeSubDomains
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
app.trazapms.com/_lib/img/scriptcase__NM__ajax_load.gif
72.44.54.24200 OK 2.5 kB URL HTTP/2 app.trazapms.com/_lib/img/scriptcase__NM__ajax_load.gif
IP 72.44.54.24:0
File type GIF image data, version 89a, 20 x 20\012- data
Hash de73c65b34853b5a0eb3c9340b7cca33
6d25e977b25a87fb4eec411b9c8d8cdc50391d8d
d07f11030bdbfe92bbc887be4717fd5e7bfd229e8010e379804f3c45ef9aef1a
GET /_lib/img/scriptcase__NM__ajax_load.gif HTTP/1.1
Host: app.trazapms.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app.trazapms.com/app_Login/
Cookie: PHPSESSID=41stec7tplhji0806b0gbb6kt6; sc_actual_lang_traza=es
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 28 Nov 2022 04:02:30 GMT
content-type: image/gif
content-length: 2544
last-modified: Sun, 27 Nov 2022 19:12:44 GMT
etag: "6383b6ac-9f0"
strict-transport-security: max-age=15768000; includeSubDomains
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
app.trazapms.com/_lib/libraries/grp/traza_login/libs/js/error.js
72.44.54.24200 OK 250 B URL HTTP/2 app.trazapms.com/_lib/libraries/grp/traza_login/libs/js/error.js
IP 72.44.54.24:0
File type ASCII text, with CRLF line terminators
Hash d0698048e6c7234d2aa4c0a3aadcbb60
0e3f5534b5396ad7e62b1fde77912f8b2d2ad2e9
cb12b5a3c5e3d0250e957df2a9c0f85381c26893cab663dcb656ecc4ee558065
Analyzer Verdict Alert fortinet Phishing
GET /_lib/libraries/grp/traza_login/libs/js/error.js HTTP/1.1
Host: app.trazapms.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app.trazapms.com/app_Login/
Cookie: PHPSESSID=41stec7tplhji0806b0gbb6kt6; sc_actual_lang_traza=es
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 28 Nov 2022 04:02:30 GMT
content-type: application/javascript
content-length: 250
x-accel-version: 0.01
last-modified: Sun, 27 Nov 2022 19:14:48 GMT
etag: "27c-5ee78918abf13-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
strict-transport-security: max-age=15768000; includeSubDomains
x-powered-by: PleskLin
X-Firefox-Spdy: h2
app.trazapms.com/_lib/libraries/grp/traza_login/login/img/banner3.png
72.44.54.24200 OK 261 kB URL HTTP/2 app.trazapms.com/_lib/libraries/grp/traza_login/login/img/banner3.png
IP 72.44.54.24:0
File type PNG image data, 2598 x 472, 8-bit/color RGBA, interlaced\012- data
Size 261 kB (261151 bytes)
Hash 8959de946151227570ed25ec78e68c22
ece6b32bb590ef77b48db13c83d88be784267709
feb1ab55808b3912e52999994b84cc64f609e3ac8d3663ed9e4e15e07df5da20
GET /_lib/libraries/grp/traza_login/login/img/banner3.png HTTP/1.1
Host: app.trazapms.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app.trazapms.com/app_Login/
Cookie: PHPSESSID=41stec7tplhji0806b0gbb6kt6; sc_actual_lang_traza=es
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 28 Nov 2022 04:02:30 GMT
content-type: image/png
content-length: 261151
last-modified: Sun, 27 Nov 2022 19:14:48 GMT
etag: "6383b728-3fc1f"
strict-transport-security: max-age=15768000; includeSubDomains
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
app.trazapms.com/_lib/prod/third/jquery_plugin/thickbox/images/loadingAnimation.gif
72.44.54.24200 OK 5.9 kB URL HTTP/2 app.trazapms.com/_lib/prod/third/jquery_plugin/thickbox/images/loadingAnimation.gif
IP 72.44.54.24:0
File type GIF image data, version 89a, 208 x 13\012- data
Hash c33734a1bf58bec328ffa27872e96ae1
2bb50e01775289c24bf71d4f3e696b46925f20a3
e69abd7e0cc82f336e61fea889e406ecbbeb7ece1df960231b7a9ba0d1dd1676
GET /_lib/prod/third/jquery_plugin/thickbox/images/loadingAnimation.gif HTTP/1.1
Host: app.trazapms.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app.trazapms.com/app_Login/
Cookie: PHPSESSID=41stec7tplhji0806b0gbb6kt6; sc_actual_lang_traza=es
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 28 Nov 2022 04:02:31 GMT
content-type: image/gif
content-length: 5886
last-modified: Wed, 08 Jun 2022 19:08:35 GMT
etag: "62a0f3b3-16fe"
strict-transport-security: max-age=15768000; includeSubDomains
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
app.trazapms.com/_lib/prod/third/font-awesome/webfonts/fa-solid-900.woff2
72.44.54.24200 OK 75 kB URL HTTP/2 app.trazapms.com/_lib/prod/third/font-awesome/webfonts/fa-solid-900.woff2
IP 72.44.54.24:0
File type Web Open Font Format (Version 2), TrueType, length 75440, version 329.-1049\012- data
Hash b5cf8ae26748570d8fb95a47f46b69e1
07bed153d47f9129a944ee54dd72952deed074c8
cd398be1a91817126cef10224738e624358edf6f08043abad7e60c1aaeccc8d0
Analyzer Verdict Alert fortinet Phishing
GET /_lib/prod/third/font-awesome/webfonts/fa-solid-900.woff2 HTTP/1.1
Host: app.trazapms.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://app.trazapms.com/_lib/prod/third/font-awesome/css/all.min.css
Cookie: PHPSESSID=41stec7tplhji0806b0gbb6kt6; sc_actual_lang_traza=es
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 28 Nov 2022 04:02:31 GMT
content-type: font/woff2
content-length: 75440
last-modified: Wed, 08 Jun 2022 19:08:42 GMT
etag: "62a0f3ba-126b0"
strict-transport-security: max-age=15768000; includeSubDomains
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 170f26c41a344e9edc979fef500f67de
1e97a237a7137599fc6c98b8ccae2c561836a993
05c95a602d46084b242ea195a183bdbc989b7cc19bc83774f9cf1865a89f1579
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4040
Cache-Control: max-age=131408
Content-Type: application/ocsp-response
Date: Mon, 28 Nov 2022 04:02:31 GMT
Etag: "6383815f-117"
Expires: Tue, 29 Nov 2022 16:32:39 GMT
Last-Modified: Sun, 27 Nov 2022 15:25:19 GMT
Server: ECS (ska/F71C)
X-Cache: HIT
Content-Length: 279
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 8bb181e3f5ca898c6e31a8efc2e28291
eda3a91f8e2cbc5467da08ad85e6f6a30702b66c
0e943aacb4a46480ab031ef294a0e089976ec125c331c15116b6c79f6b0f2ff0
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E943AACB4A46480AB031EF294A0E089976EC125C331C15116B6C79F6B0F2FF0"
Last-Modified: Sat, 26 Nov 2022 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4060
Expires: Mon, 28 Nov 2022 05:10:11 GMT
Date: Mon, 28 Nov 2022 04:02:31 GMT
Connection: keep-alive
embed.tawk.to/_s/v4/app/637ddf31c8f/js/twk-main.js
104.22.25.131200 OK 41 kB URL HTTP/2 embed.tawk.to/_s/v4/app/637ddf31c8f/js/twk-main.js
IP 104.22.25.131:0
File type ASCII text, with no line terminators
Hash 9449b209190b0995924c358d8c49e077
fd38c7a93c911d9b2faaad0faa8a83ba3367d5fe
910b026741fce815bace239d3157028711c1a23287351da65585fa789c8d83b5
GET /_s/v4/app/637ddf31c8f/js/twk-main.js HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://app.trazapms.com
Connection: keep-alive
Referer: https://app.trazapms.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 28 Nov 2022 04:02:31 GMT
content-type: application/javascript
age: 78116
last-modified: Wed, 23 Nov 2022 08:52:37 GMT
etag: W/"da5bb1dc647470204df0e49f5afac2de"
access-control-allow-origin: *
cache-control: public, max-age=2592000, immutable
x-cache-status: HIT
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: HIT
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 77103563087eb4eb-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F165667de-df17-4cc6-832c-94f49703bdf2.jpeg
34.120.237.76200 OK 9.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F165667de-df17-4cc6-832c-94f49703bdf2.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 1f434933b5bd6377d299ada22d1ae7ef
075531f525e625b117b2497f31139c9824d0e9c5
b587a3249e4f20112088608e3651c2ccbc44225a5c9d88d3bf5884d7f0e9029c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F165667de-df17-4cc6-832c-94f49703bdf2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9430
x-amzn-requestid: 454ca8bd-a256-45f2-8b41-feee86c5af82
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cR7wyGCIIAMFhgw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6383d99e-1488f8ce71a91ebc3ad6b7e0;Sampled=0
x-amzn-remapped-date: Sun, 27 Nov 2022 21:41:50 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: NMMuQ1NNks65LJK_HDAK69MfCJ3pS0Y6VzBs8_5Oku64v4FSWADCdw==
via: 1.1 8f22423015641505b8c857a37450d6c0.cloudfront.net (CloudFront), 1.1 476c2ba6d9f6cd69dbcedbd65688cbc0.cloudfront.net (CloudFront), 1.1 google
date: Sun, 27 Nov 2022 22:01:46 GMT
age: 21645
etag: "075531f525e625b117b2497f31139c9824d0e9c5"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbfe1c9b5-b323-496c-a65c-09c1511f882f.jpeg
34.120.237.76200 OK 13 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbfe1c9b5-b323-496c-a65c-09c1511f882f.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash f20d5c4b208740dd4c737b9d95c0e1d0
c843c5422499736a83a80c2b07475a8dbbb8860f
f8d048a2c911aaedfa53b7d6e134638e8c36db0700a874fe99e0d8f847970a1b
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbfe1c9b5-b323-496c-a65c-09c1511f882f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12555
x-amzn-requestid: 2d9827ba-fc88-4deb-9844-f5b42764b2e9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cR6_MHPWIAMFQMg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6383d861-42986aeb284115943c849306;Sampled=0
x-amzn-remapped-date: Sun, 27 Nov 2022 21:36:33 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: up0DWugUp4S0jAtsA-KBRapBAHtcHCdTwWJock-y22fqyL6_YVFeqg==
via: 1.1 9c60d6224ac0b44e908b5c9dcf70e9a4.cloudfront.net (CloudFront), 1.1 d8792dbd3191bbe722eba5b536b979c8.cloudfront.net (CloudFront), 1.1 google
date: Sun, 27 Nov 2022 21:51:09 GMT
age: 22282
etag: "c843c5422499736a83a80c2b07475a8dbbb8860f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff1f41832-bc78-4527-a3e7-8099266ecb52.jpeg
34.120.237.76200 OK 8.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff1f41832-bc78-4527-a3e7-8099266ecb52.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 577b69fd08ad8368ea5a94fe41476c1c
9442f111d329f721ddc55100cd246586d8204048
bdafc5068032dcf5e207cf2685a1b9350dbe8d990ba181520ff47889524532f2
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff1f41832-bc78-4527-a3e7-8099266ecb52.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8517
x-amzn-requestid: 12456791-0e7f-45d7-97ae-d663c8fa841d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cMozvHHLoAMFVqQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6381bb4a-54ed1ec101789247052c9ec8;Sampled=0
x-amzn-remapped-date: Sat, 26 Nov 2022 07:07:54 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: UzzTPZIBjoow9PK-oM9rfGh5HkrivyPDofbTXy-I-9e4_baQnyKVhQ==
via: 1.1 8f22423015641505b8c857a37450d6c0.cloudfront.net (CloudFront), 1.1 be082a2326b7d49643607b097f1e7180.cloudfront.net (CloudFront), 1.1 google
date: Sun, 27 Nov 2022 05:55:42 GMT
age: 79609
etag: "9442f111d329f721ddc55100cd246586d8204048"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
embed.tawk.to/_s/v4/app/637ddf31c8f/js/twk-runtime.js
104.22.25.131200 OK 7.5 kB URL HTTP/2 embed.tawk.to/_s/v4/app/637ddf31c8f/js/twk-runtime.js
IP 104.22.25.131:0
File type ASCII text, with very long lines (2306), with no line terminators
Hash 34724f92e16df7f6e89355f18252717e
f938b53a6cba8b11307c4c1904bd7318477b4e6f
85e3787c2c04c6944fba074bac7802356282b3bbea48bac23ffb6d8d54b33f01
GET /_s/v4/app/637ddf31c8f/js/twk-runtime.js HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://app.trazapms.com
Connection: keep-alive
Referer: https://app.trazapms.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 28 Nov 2022 04:02:31 GMT
content-type: application/javascript
age: 78116
last-modified: Wed, 23 Nov 2022 08:52:37 GMT
etag: W/"9075c2f5460b2832318d3c7217cc68cb"
access-control-allow-origin: *
cache-control: public, max-age=2592000, immutable
x-cache-status: HIT
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: HIT
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 771035631886b4eb-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd18bfa3f-3214-4f84-8a7e-d219428f5242.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd18bfa3f-3214-4f84-8a7e-d219428f5242.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 005e5ba3c9588cf389a58195001b64e3
238a7439d887fb3aa7f1302eeb43fce62f08441a
d75dd5b6f57d9c9290725c5be76cc7d7a39682ca569bea18eceb9bdc13d444f9
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd18bfa3f-3214-4f84-8a7e-d219428f5242.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10813
x-amzn-requestid: 5a3c9584-1389-45ac-968d-0a2301f82eda
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cR6_KG00oAMFpig=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6383d860-6ffc3ff67f7f7e75399834e8;Sampled=0
x-amzn-remapped-date: Sun, 27 Nov 2022 21:36:32 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 3ggibSv4guzAQjW77yMg7HTp5JCBi1B9dxXi-Zy_-Vw0b6lP1PAGyQ==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 1b74ccf4cb51eacf97a0e6d60ae46a3e.cloudfront.net (CloudFront), 1.1 google
date: Sun, 27 Nov 2022 21:51:09 GMT
age: 22282
etag: "238a7439d887fb3aa7f1302eeb43fce62f08441a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F887b04ff-c782-4045-b122-5f0fda800771.jpeg
34.120.237.76200 OK 5.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F887b04ff-c782-4045-b122-5f0fda800771.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d407d1a700a02f6422a0415be9648354
e9a69711e04e8028f11082285a405bafc61c5b20
dfc27a9aea46df1e218ee485296392c5a6c03756e91487f37212c69d4b30a418
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F887b04ff-c782-4045-b122-5f0fda800771.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5652
x-amzn-requestid: 24915481-2902-4776-b489-7741957424f8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cMozvEfioAMFUJg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6381bb4a-7846a98a5fb3d0786cb84130;Sampled=0
x-amzn-remapped-date: Sat, 26 Nov 2022 07:07:54 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 2YLb6Et3z5MS3x4qk32fUeOCzFeofTOiHbTH2dGaQbGe_e8yMedqqw==
via: 1.1 2e20768704c71ff3ce2e677251d27f3c.cloudfront.net (CloudFront), 1.1 476c2ba6d9f6cd69dbcedbd65688cbc0.cloudfront.net (CloudFront), 1.1 google
date: Sun, 27 Nov 2022 08:11:10 GMT
age: 71481
etag: "e9a69711e04e8028f11082285a405bafc61c5b20"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
cdn.jsdelivr.net/emojione/2.2.7/lib/js/emojione.min.js
151.101.85.229200 OK 68 kB URL HTTP/2 cdn.jsdelivr.net/emojione/2.2.7/lib/js/emojione.min.js
IP 151.101.85.229:0
Hash 9709862b236604c8a78e95a47afe5820
e177b8c9d13f5cbd115855fbed4fbb195692077b
ad80ebad2d5cf3124940fc726428ff9ac95939ef0d5fa099a173f1b67eeeba08
GET /emojione/2.2.7/lib/js/emojione.min.js HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app.trazapms.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: application/javascript; charset=utf-8
etag: W/"49dda-cp9vjKV4fYl0Ow7X6yf9dkBr+YU"
content-encoding: gzip
accept-ranges: bytes
date: Mon, 28 Nov 2022 04:02:32 GMT
age: 21754509
x-served-by: cache-fra19156-FRA, cache-bma1620-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 53889
X-Firefox-Spdy: h2
ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q1
104.18.20.226200 OK 1.5 kB URL HTTP/1.1 ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q1
IP 104.18.20.226:0
Hash 5a8022b8c7d994fcd2adf1e990ead2df
8e27318b487f8f41949003ee4991eed53fc89096
254400aa804cec02449244d131fe37ac6d869518740b2cfc4bb4bd969cbfbac0
POST /ca/gsatlasr3dvtlsca2022q1 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 04:02:32 GMT
Content-Type: application/ocsp-response
Transfer-Encoding: chunked
Connection: keep-alive
Etag: "85D6A528C60AEBA063C611C333AFD95AFA6EC52C"
Expires: Mon, 28 Nov 2022 14:00:00 GMT
Last-Modified: Mon, 28 Nov 2022 02:00:00 UTC
Cache-Control: s-maxage=3600, public, no-transform, must-revalidate
CF-Cache-Status: HIT
Age: 3295
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7710356a4e990b4d-OSL
vsb52.tawk.to/s/?k=638432d80b1cb1cc364f9ba9&cver=0&pop=false&asver=76&tkn=eyJhbGciOiJFUzI1NiIsInR5cCI6IkpXVCIsImtpZCI6InZpc2l0b3ItYXBwbGljYXRpb24tc2VydmVyLTIwMjEwMjIifQ.eyJwaWQiOiI1ZGE1MTU4NDExZjI5MDBiZjQ0NzFjNmIiLCJ2aWQiOiI1ZGE1MTU4NDExZjI5MDBiZjQ0NzFjNmItZEQxNkdBZ3pKTVJGYmt0VGxzcGxGIiwic2lkIjoiNjM4NDMyZDgwYjFjYjFjYzM2NGY5YmE5IiwiaWF0IjoxNjY5NjA4MTUyLCJleHAiOjE2Njk2MDk5NTIsImp0aSI6IlpNS1k3V0hCMDlQei03WHdGNm5aRiJ9.UzGq0PkleBTWYuQiQm60OmUX0mrszIdXoa55c5knVcI9n-ahaKwAeIaAeHAE5XkcAnswTpnKUi7BbdTu8LIOaQ&EIO=3&transport=websocket&__t=OIyPfkB
104.22.25.131101 Switching Protocols 0 B URL HTTP/1.1 vsb52.tawk.to/s/?k=638432d80b1cb1cc364f9ba9&cver=0&pop=false&asver=76&tkn=eyJhbGciOiJFUzI1NiIsInR5cCI6IkpXVCIsImtpZCI6InZpc2l0b3ItYXBwbGljYXRpb24tc2VydmVyLTIwMjEwMjIifQ.eyJwaWQiOiI1ZGE1MTU4NDExZjI5MDBiZjQ0NzFjNmIiLCJ2aWQiOiI1ZGE1MTU4NDExZjI5MDBiZjQ0NzFjNmItZEQxNkdBZ3pKTVJGYmt0VGxzcGxGIiwic2lkIjoiNjM4NDMyZDgwYjFjYjFjYzM2NGY5YmE5IiwiaWF0IjoxNjY5NjA4MTUyLCJleHAiOjE2Njk2MDk5NTIsImp0aSI6IlpNS1k3V0hCMDlQei03WHdGNm5aRiJ9.UzGq0PkleBTWYuQiQm60OmUX0mrszIdXoa55c5knVcI9n-ahaKwAeIaAeHAE5XkcAnswTpnKUi7BbdTu8LIOaQ&EIO=3&transport=websocket&__t=OIyPfkB
IP 104.22.25.131:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /s/?k=638432d80b1cb1cc364f9ba9&cver=0&pop=false&asver=76&tkn=eyJhbGciOiJFUzI1NiIsInR5cCI6IkpXVCIsImtpZCI6InZpc2l0b3ItYXBwbGljYXRpb24tc2VydmVyLTIwMjEwMjIifQ.eyJwaWQiOiI1ZGE1MTU4NDExZjI5MDBiZjQ0NzFjNmIiLCJ2aWQiOiI1ZGE1MTU4NDExZjI5MDBiZjQ0NzFjNmItZEQxNkdBZ3pKTVJGYmt0VGxzcGxGIiwic2lkIjoiNjM4NDMyZDgwYjFjYjFjYzM2NGY5YmE5IiwiaWF0IjoxNjY5NjA4MTUyLCJleHAiOjE2Njk2MDk5NTIsImp0aSI6IlpNS1k3V0hCMDlQei03WHdGNm5aRiJ9.UzGq0PkleBTWYuQiQm60OmUX0mrszIdXoa55c5knVcI9n-ahaKwAeIaAeHAE5XkcAnswTpnKUi7BbdTu8LIOaQ&EIO=3&transport=websocket&__t=OIyPfkB HTTP/1.1
Host: vsb52.tawk.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: https://app.trazapms.com
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: Jtv+NyiCn0711xSXPTgzFQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Date: Mon, 28 Nov 2022 04:02:33 GMT
Connection: upgrade
upgrade: websocket
sec-websocket-accept: bOivD0OKW8c53zgD0FmoLDH0ghQ=
sec-websocket-extensions: permessage-deflate
strict-transport-security: max-age=0; includeSubDomains; preload
CF-Cache-Status: DYNAMIC
X-Content-Type-Options: nosniff
Server: cloudflare
CF-RAY: 77103568d8c0b4ee-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
va.tawk.to/v1/session/start
104.22.25.131200 OK 0 B URL HTTP/2 va.tawk.to/v1/session/start
IP 104.22.25.131:0
OPTIONS /v1/session/start HTTP/1.1
Host: va.tawk.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://app.trazapms.com/
Origin: https://app.trazapms.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 28 Nov 2022 04:02:31 GMT
x-served-by: visitor-application-preemptive-p36t
access-control-allow-origin: https://app.trazapms.com
access-control-allow-credentials: true
access-control-allow-methods: POST,OPTIONS
access-control-allow-headers: content-type,x-tawk-token
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: DYNAMIC
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7710356408edb4eb-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
app.trazapms.com/_lib/prod/third/sweetalert/polyfill.min.js
72.44.54.24200 OK 0 B URL HTTP/2 app.trazapms.com/_lib/prod/third/sweetalert/polyfill.min.js
IP 72.44.54.24:0
Analyzer Verdict Alert fortinet Phishing
GET /_lib/prod/third/sweetalert/polyfill.min.js HTTP/1.1
Host: app.trazapms.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app.trazapms.com/app_Login/
Cookie: PHPSESSID=41stec7tplhji0806b0gbb6kt6; sc_actual_lang_traza=es
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 28 Nov 2022 04:02:30 GMT
content-type: application/javascript
last-modified: Wed, 08 Jun 2022 19:08:39 GMT
etag: W/"62a0f3b7-bfa"
strict-transport-security: max-age=15768000; includeSubDomains
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
app.trazapms.com/_lib/prod/third/jquery_plugin/select2/js/select2.full.min.js
72.44.54.24200 OK 0 B URL HTTP/2 app.trazapms.com/_lib/prod/third/jquery_plugin/select2/js/select2.full.min.js
IP 72.44.54.24:0
Analyzer Verdict Alert fortinet Phishing
GET /_lib/prod/third/jquery_plugin/select2/js/select2.full.min.js HTTP/1.1
Host: app.trazapms.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app.trazapms.com/app_Login/
Cookie: PHPSESSID=41stec7tplhji0806b0gbb6kt6; sc_actual_lang_traza=es
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 28 Nov 2022 04:02:30 GMT
content-type: application/javascript
last-modified: Wed, 08 Jun 2022 19:08:36 GMT
etag: W/"62a0f3b4-12d32"
strict-transport-security: max-age=15768000; includeSubDomains
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
app.trazapms.com/_lib/prod/third/jquery_plugin/select2/css/select2.min.css
72.44.54.24200 OK 0 B URL HTTP/2 app.trazapms.com/_lib/prod/third/jquery_plugin/select2/css/select2.min.css
IP 72.44.54.24:0
GET /_lib/prod/third/jquery_plugin/select2/css/select2.min.css HTTP/1.1
Host: app.trazapms.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app.trazapms.com/app_Login/
Cookie: PHPSESSID=41stec7tplhji0806b0gbb6kt6; sc_actual_lang_traza=es
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 28 Nov 2022 04:02:30 GMT
content-type: text/css
last-modified: Wed, 08 Jun 2022 19:08:36 GMT
etag: W/"62a0f3b4-3b4c"
strict-transport-security: max-age=15768000; includeSubDomains
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
app.trazapms.com/_lib/lib/js/jquery.scInput.js
72.44.54.24200 OK 0 B URL HTTP/2 app.trazapms.com/_lib/lib/js/jquery.scInput.js
IP 72.44.54.24:0
Analyzer Verdict Alert fortinet Phishing
GET /_lib/lib/js/jquery.scInput.js HTTP/1.1
Host: app.trazapms.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app.trazapms.com/app_Login/
Cookie: PHPSESSID=41stec7tplhji0806b0gbb6kt6; sc_actual_lang_traza=es
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 28 Nov 2022 04:02:30 GMT
content-type: application/javascript
last-modified: Sun, 27 Nov 2022 19:12:44 GMT
etag: W/"6383b6ac-c384"
strict-transport-security: max-age=15768000; includeSubDomains
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
app.trazapms.com/_lib/lib/js/jquery.fieldSelection.js
72.44.54.24200 OK 0 B URL HTTP/2 app.trazapms.com/_lib/lib/js/jquery.fieldSelection.js
IP 72.44.54.24:0
Analyzer Verdict Alert fortinet Phishing
GET /_lib/lib/js/jquery.fieldSelection.js HTTP/1.1
Host: app.trazapms.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app.trazapms.com/app_Login/
Cookie: PHPSESSID=41stec7tplhji0806b0gbb6kt6; sc_actual_lang_traza=es
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 28 Nov 2022 04:02:30 GMT
content-type: application/javascript
last-modified: Sun, 27 Nov 2022 19:12:44 GMT
etag: W/"6383b6ac-10d3"
strict-transport-security: max-age=15768000; includeSubDomains
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
va.tawk.to/log-performance/v3
104.22.25.131200 OK 0 B URL HTTP/2 va.tawk.to/log-performance/v3
IP 104.22.25.131:0
OPTIONS /log-performance/v3 HTTP/1.1
Host: va.tawk.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://app.trazapms.com/
Origin: https://app.trazapms.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 28 Nov 2022 04:02:33 GMT
x-served-by: visitor-application-preemptive-jxb6
access-control-allow-origin: https://app.trazapms.com
access-control-allow-credentials: true
access-control-allow-methods: POST,OPTIONS
access-control-allow-headers: content-type,x-tawk-token
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: DYNAMIC
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7710356cdc52b4eb-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
app.trazapms.com/_lib/lib/js/jquery-3.6.0.min.js
72.44.54.24200 OK 0 B URL HTTP/2 app.trazapms.com/_lib/lib/js/jquery-3.6.0.min.js
IP 72.44.54.24:0
Analyzer Verdict Alert fortinet Phishing
GET /_lib/lib/js/jquery-3.6.0.min.js HTTP/1.1
Host: app.trazapms.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app.trazapms.com/app_Login/
Cookie: PHPSESSID=41stec7tplhji0806b0gbb6kt6; sc_actual_lang_traza=es
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 28 Nov 2022 04:02:30 GMT
content-type: application/javascript
last-modified: Sun, 27 Nov 2022 19:12:44 GMT
etag: W/"6383b6ac-16710"
strict-transport-security: max-age=15768000; includeSubDomains
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
app.trazapms.com/_lib/lib/js/scInput.js
72.44.54.24200 OK 0 B URL HTTP/2 app.trazapms.com/_lib/lib/js/scInput.js
IP 72.44.54.24:0
Analyzer Verdict Alert fortinet Phishing
GET /_lib/lib/js/scInput.js HTTP/1.1
Host: app.trazapms.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app.trazapms.com/app_Login/
Cookie: PHPSESSID=41stec7tplhji0806b0gbb6kt6; sc_actual_lang_traza=es
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 28 Nov 2022 04:02:30 GMT
content-type: application/javascript
last-modified: Sun, 27 Nov 2022 19:12:44 GMT
etag: W/"6383b6ac-6fe"
strict-transport-security: max-age=15768000; includeSubDomains
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
app.trazapms.com/_lib/prod/third/jquery_plugin/thickbox/thickbox.css
72.44.54.24200 OK 0 B URL HTTP/2 app.trazapms.com/_lib/prod/third/jquery_plugin/thickbox/thickbox.css
IP 72.44.54.24:0
GET /_lib/prod/third/jquery_plugin/thickbox/thickbox.css HTTP/1.1
Host: app.trazapms.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app.trazapms.com/app_Login/
Cookie: PHPSESSID=41stec7tplhji0806b0gbb6kt6; sc_actual_lang_traza=es
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 28 Nov 2022 04:02:30 GMT
content-type: text/css
last-modified: Wed, 08 Jun 2022 19:08:35 GMT
etag: W/"62a0f3b3-1055"
strict-transport-security: max-age=15768000; includeSubDomains
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
app.trazapms.com/_lib/prod/third/jquery_plugin/viewerjs/viewer.js
72.44.54.24200 OK 0 B URL HTTP/2 app.trazapms.com/_lib/prod/third/jquery_plugin/viewerjs/viewer.js
IP 72.44.54.24:0
Analyzer Verdict Alert fortinet Phishing
GET /_lib/prod/third/jquery_plugin/viewerjs/viewer.js HTTP/1.1
Host: app.trazapms.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app.trazapms.com/app_Login/
Cookie: PHPSESSID=41stec7tplhji0806b0gbb6kt6; sc_actual_lang_traza=es
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 28 Nov 2022 04:02:30 GMT
content-type: application/javascript
last-modified: Wed, 08 Jun 2022 19:08:35 GMT
etag: W/"62a0f3b3-1970b"
strict-transport-security: max-age=15768000; includeSubDomains
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
va.tawk.to/v1/widget-settings?propertyId=5da5158411f2900bf4471c6b&widgetId=default&sv=undefined
104.22.25.131200 OK 0 B URL HTTP/2 va.tawk.to/v1/widget-settings?propertyId=5da5158411f2900bf4471c6b&widgetId=default&sv=undefined
IP 104.22.25.131:0
GET /v1/widget-settings?propertyId=5da5158411f2900bf4471c6b&widgetId=default&sv=undefined HTTP/1.1
Host: va.tawk.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app.trazapms.com/
Origin: https://app.trazapms.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 28 Nov 2022 04:02:32 GMT
content-type: application/json
x-served-by: visitor-application-preemptive-fdfk
access-control-allow-origin: *
access-control-allow-methods: GET,OPTIONS
access-control-allow-headers: content-type,x-tawk-token
cache-control: public, max-age=7200, s-maxage=1800
etag: W/"2-18-0"
vary: Accept-Encoding
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: REVALIDATED
x-content-type-options: nosniff
server: cloudflare
cf-ray: 77103563f8ebb4eb-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
embed.tawk.to/_s/v4/app/637ddf31c8f/js/twk-vendor.js
104.22.25.131200 OK 0 B URL HTTP/2 embed.tawk.to/_s/v4/app/637ddf31c8f/js/twk-vendor.js
IP 104.22.25.131:0
GET /_s/v4/app/637ddf31c8f/js/twk-vendor.js HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://app.trazapms.com
Connection: keep-alive
Referer: https://app.trazapms.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 28 Nov 2022 04:02:31 GMT
content-type: application/javascript
age: 78116
last-modified: Wed, 23 Nov 2022 08:52:37 GMT
etag: W/"7dcb496e4882926f93f2e73fa87062c0"
access-control-allow-origin: *
cache-control: public, max-age=2592000, immutable
x-cache-status: HIT
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: HIT
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 771035631880b4eb-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
app.trazapms.com/favicon.ico
72.44.54.24404 Not Found 0 B URL HTTP/2 app.trazapms.com/favicon.ico
IP 72.44.54.24:0
GET /favicon.ico HTTP/1.1
Host: app.trazapms.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app.trazapms.com/app_Login/
Cookie: PHPSESSID=41stec7tplhji0806b0gbb6kt6; sc_actual_lang_traza=es
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
server: nginx
date: Mon, 28 Nov 2022 04:02:31 GMT
content-type: text/html
last-modified: Thu, 28 Mar 2019 19:55:23 GMT
etag: W/"328-5852cef46c0c0"
strict-transport-security: max-age=15768000; includeSubDomains
content-encoding: br
X-Firefox-Spdy: h2
embed.tawk.to/_s/v4/app/637ddf31c8f/js/twk-chunk-vendors.js
104.22.25.131200 OK 0 B URL HTTP/2 embed.tawk.to/_s/v4/app/637ddf31c8f/js/twk-chunk-vendors.js
IP 104.22.25.131:0
GET /_s/v4/app/637ddf31c8f/js/twk-chunk-vendors.js HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://app.trazapms.com
Connection: keep-alive
Referer: https://app.trazapms.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 28 Nov 2022 04:02:31 GMT
content-type: application/javascript
age: 78116
last-modified: Wed, 23 Nov 2022 08:52:37 GMT
etag: W/"70dac54eca3bb2143032bc4db3237623"
access-control-allow-origin: *
cache-control: public, max-age=2592000, immutable
x-cache-status: HIT
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: HIT
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 771035631884b4eb-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
app.trazapms.com/_lib/libraries/grp/traza_login/login/css/loginTraza.css
72.44.54.24200 OK 0 B URL HTTP/2 app.trazapms.com/_lib/libraries/grp/traza_login/login/css/loginTraza.css
IP 72.44.54.24:0
GET /_lib/libraries/grp/traza_login/login/css/loginTraza.css HTTP/1.1
Host: app.trazapms.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app.trazapms.com/app_Login/
Cookie: PHPSESSID=41stec7tplhji0806b0gbb6kt6; sc_actual_lang_traza=es
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 28 Nov 2022 04:02:30 GMT
content-type: text/css
last-modified: Sun, 27 Nov 2022 19:14:48 GMT
etag: W/"6383b728-5d9d"
strict-transport-security: max-age=15768000; includeSubDomains
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
app.trazapms.com/_lib/prod/third/jquery/css/smoothness/jquery-ui.css
72.44.54.24200 OK 0 B URL HTTP/2 app.trazapms.com/_lib/prod/third/jquery/css/smoothness/jquery-ui.css
IP 72.44.54.24:0
GET /_lib/prod/third/jquery/css/smoothness/jquery-ui.css HTTP/1.1
Host: app.trazapms.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app.trazapms.com/app_Login/
Cookie: PHPSESSID=41stec7tplhji0806b0gbb6kt6; sc_actual_lang_traza=es
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 28 Nov 2022 04:02:30 GMT
content-type: text/css
last-modified: Wed, 08 Jun 2022 19:08:13 GMT
etag: W/"62a0f39d-8ed6"
strict-transport-security: max-age=15768000; includeSubDomains
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
app.trazapms.com/_lib/prod/third/jquery_plugin/viewerjs/viewer.css
72.44.54.24200 OK 0 B URL HTTP/2 app.trazapms.com/_lib/prod/third/jquery_plugin/viewerjs/viewer.css
IP 72.44.54.24:0
GET /_lib/prod/third/jquery_plugin/viewerjs/viewer.css HTTP/1.1
Host: app.trazapms.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app.trazapms.com/app_Login/
Cookie: PHPSESSID=41stec7tplhji0806b0gbb6kt6; sc_actual_lang_traza=es
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 28 Nov 2022 04:02:30 GMT
content-type: text/css
last-modified: Wed, 08 Jun 2022 19:08:35 GMT
etag: W/"62a0f3b3-2441"
strict-transport-security: max-age=15768000; includeSubDomains
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
app.trazapms.com/_lib/prod/third/sweetalert/sweetalert2.all.min.js
72.44.54.24200 OK 0 B URL HTTP/2 app.trazapms.com/_lib/prod/third/sweetalert/sweetalert2.all.min.js
IP 72.44.54.24:0
Analyzer Verdict Alert fortinet Phishing
GET /_lib/prod/third/sweetalert/sweetalert2.all.min.js HTTP/1.1
Host: app.trazapms.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app.trazapms.com/app_Login/
Cookie: PHPSESSID=41stec7tplhji0806b0gbb6kt6; sc_actual_lang_traza=es
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 28 Nov 2022 04:02:30 GMT
content-type: application/javascript
last-modified: Wed, 08 Jun 2022 19:08:39 GMT
etag: W/"62a0f3b7-fe68"
strict-transport-security: max-age=15768000; includeSubDomains
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
app.trazapms.com/_lib/prod/third/jquery_plugin/thickbox/thickbox-compressed.js
72.44.54.24200 OK 0 B URL HTTP/2 app.trazapms.com/_lib/prod/third/jquery_plugin/thickbox/thickbox-compressed.js
IP 72.44.54.24:0
Analyzer Verdict Alert fortinet Phishing
GET /_lib/prod/third/jquery_plugin/thickbox/thickbox-compressed.js HTTP/1.1
Host: app.trazapms.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app.trazapms.com/app_Login/
Cookie: PHPSESSID=41stec7tplhji0806b0gbb6kt6; sc_actual_lang_traza=es
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 28 Nov 2022 04:02:30 GMT
content-type: application/javascript
last-modified: Wed, 08 Jun 2022 19:08:35 GMT
etag: W/"62a0f3b3-30f1"
strict-transport-security: max-age=15768000; includeSubDomains
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
app.trazapms.com/_lib/lib/js/jquery.scInput2.js
72.44.54.24200 OK 0 B URL HTTP/2 app.trazapms.com/_lib/lib/js/jquery.scInput2.js
IP 72.44.54.24:0
Analyzer Verdict Alert fortinet Phishing
GET /_lib/lib/js/jquery.scInput2.js HTTP/1.1
Host: app.trazapms.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app.trazapms.com/app_Login/
Cookie: PHPSESSID=41stec7tplhji0806b0gbb6kt6; sc_actual_lang_traza=es
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 28 Nov 2022 04:02:30 GMT
content-type: application/javascript
last-modified: Sun, 27 Nov 2022 19:12:44 GMT
etag: W/"6383b6ac-a63c"
strict-transport-security: max-age=15768000; includeSubDomains
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
app.trazapms.com/_lib/prod/third/font-awesome/css/all.min.css
72.44.54.24200 OK 0 B URL HTTP/2 app.trazapms.com/_lib/prod/third/font-awesome/css/all.min.css
IP 72.44.54.24:0
GET /_lib/prod/third/font-awesome/css/all.min.css HTTP/1.1
Host: app.trazapms.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app.trazapms.com/app_Login/
Cookie: PHPSESSID=41stec7tplhji0806b0gbb6kt6; sc_actual_lang_traza=es
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 28 Nov 2022 04:02:30 GMT
content-type: text/css
last-modified: Wed, 08 Jun 2022 19:08:42 GMT
etag: W/"62a0f3ba-da9f"
strict-transport-security: max-age=15768000; includeSubDomains
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
embed.tawk.to/_s/v4/app/637ddf31c8f/js/twk-app.js
104.22.25.131200 OK 0 B URL HTTP/2 embed.tawk.to/_s/v4/app/637ddf31c8f/js/twk-app.js
IP 104.22.25.131:0
GET /_s/v4/app/637ddf31c8f/js/twk-app.js HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://app.trazapms.com
Connection: keep-alive
Referer: https://app.trazapms.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 28 Nov 2022 04:02:31 GMT
content-type: application/javascript
age: 78116
last-modified: Wed, 23 Nov 2022 08:52:37 GMT
etag: W/"e736e189edb5d0d9d5b8e7f23dd9114a"
access-control-allow-origin: *
cache-control: public, max-age=2592000, immutable
x-cache-status: HIT
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: HIT
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 771035631888b4eb-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
app.trazapms.com/_lib/prod/third/jquery/js/jquery-ui.js
72.44.54.24200 OK 0 B URL HTTP/2 app.trazapms.com/_lib/prod/third/jquery/js/jquery-ui.js
IP 72.44.54.24:0
Analyzer Verdict Alert fortinet Phishing
GET /_lib/prod/third/jquery/js/jquery-ui.js HTTP/1.1
Host: app.trazapms.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app.trazapms.com/app_Login/
Cookie: PHPSESSID=41stec7tplhji0806b0gbb6kt6; sc_actual_lang_traza=es
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 28 Nov 2022 04:02:30 GMT
content-type: application/javascript
last-modified: Wed, 08 Jun 2022 19:08:13 GMT
etag: W/"62a0f39d-3defb"
strict-transport-security: max-age=15768000; includeSubDomains
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
app.trazapms.com/_lib/css/TRAZApms/TRAZApms_sweetalert.css
72.44.54.24200 OK 0 B URL HTTP/2 app.trazapms.com/_lib/css/TRAZApms/TRAZApms_sweetalert.css
IP 72.44.54.24:0
GET /_lib/css/TRAZApms/TRAZApms_sweetalert.css HTTP/1.1
Host: app.trazapms.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app.trazapms.com/app_Login/
Cookie: PHPSESSID=41stec7tplhji0806b0gbb6kt6; sc_actual_lang_traza=es
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 28 Nov 2022 04:02:30 GMT
content-type: text/css
last-modified: Sun, 27 Nov 2022 19:12:55 GMT
etag: W/"6383b6b7-454"
strict-transport-security: max-age=15768000; includeSubDomains
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
va.tawk.to/log-performance/v3
104.22.25.131200 OK 0 B URL HTTP/2 va.tawk.to/log-performance/v3
IP 104.22.25.131:0
POST /log-performance/v3 HTTP/1.1
Host: va.tawk.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app.trazapms.com/
Content-Type: application/json; charset=utf-8
Origin: https://app.trazapms.com
Content-Length: 94
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 28 Nov 2022 04:02:33 GMT
content-type: text/html; charset=utf-8
x-served-by: visitor-application-preemptive-p36t
access-control-allow-origin: https://app.trazapms.com
access-control-allow-credentials: true
access-control-allow-methods: POST,OPTIONS
access-control-allow-headers: content-type,x-tawk-token
vary: Accept-Encoding
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: DYNAMIC
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7710356ddcb3b4eb-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2