Overview

URL new.laposadadelch.repl.co/
IP34.149.204.188
ASNGOOGLE
Location United States
Report completed2022-09-23 10:14:19 UTC
StatusLoading report..
urlquery Alerts No alerts detected


Settings

UserAgentMozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Referer


Intrusion Detection Systems

Suricata /w Emerging Threats Pro  No alerts detected


Blocklists

OpenPhish
Scan Date Severity Indicator Comment
2022-09-22 2 new.laposadadelch.repl.co/ Banco Macro S.A.
2022-09-22 2 trusting.ayomatos.repl.co/ Banco Macro S.A.
2022-09-22 2 trusting.ayomatos.repl.co/ Banco Macro S.A.
2022-09-22 2 trusting.ayomatos.repl.co/ Banco Macro S.A.
2022-09-22 2 trusting.ayomatos.repl.co/ Banco Macro S.A.
2022-09-22 2 trusting.ayomatos.repl.co/ Banco Macro S.A.
2022-09-22 2 trusting.ayomatos.repl.co/ Banco Macro S.A.
2022-09-22 2 trusting.ayomatos.repl.co/ Banco Macro S.A.
2022-09-22 2 trusting.ayomatos.repl.co/ Banco Macro S.A.
2022-09-22 2 trusting.ayomatos.repl.co/ Banco Macro S.A.
2022-09-22 2 trusting.ayomatos.repl.co/ Banco Macro S.A.
2022-09-22 2 trusting.ayomatos.repl.co/ Banco Macro S.A.
2022-09-22 2 trusting.ayomatos.repl.co/ Banco Macro S.A.
2022-09-22 2 trusting.ayomatos.repl.co/ Banco Macro S.A.
2022-09-22 2 trusting.ayomatos.repl.co/ Banco Macro S.A.
2022-09-22 2 trusting.ayomatos.repl.co/ Banco Macro S.A.
2022-09-22 2 trusting.ayomatos.repl.co/ Banco Macro S.A.
2022-09-22 2 trusting.ayomatos.repl.co/ Banco Macro S.A.
2022-09-22 2 trusting.ayomatos.repl.co/ Banco Macro S.A.
2022-09-22 2 trusting.ayomatos.repl.co/ Banco Macro S.A.
2022-09-22 2 trusting.ayomatos.repl.co/ Banco Macro S.A.
2022-09-22 2 trusting.ayomatos.repl.co/ Banco Macro S.A.
2022-09-22 2 trusting.ayomatos.repl.co/ Banco Macro S.A.
2022-09-22 2 trusting.ayomatos.repl.co/ Banco Macro S.A.
2022-09-22 2 trusting.ayomatos.repl.co/ Banco Macro S.A.
2022-09-22 2 trusting.ayomatos.repl.co/ Banco Macro S.A.
2022-09-22 2 trusting.ayomatos.repl.co/ Banco Macro S.A.
2022-09-22 2 trusting.ayomatos.repl.co/ Banco Macro S.A.
2022-09-22 2 trusting.ayomatos.repl.co/ Banco Macro S.A.
2022-09-22 2 trusting.ayomatos.repl.co/ Banco Macro S.A.
2022-09-22 2 trusting.ayomatos.repl.co/ Banco Macro S.A.
PhishTank  No alerts detected
Fortinet's Web Filter
Scan Date Severity Indicator Comment
2022-09-23 2 new.laposadadelch.repl.co/ Phishing
2022-09-23 2 trusting.ayomatos.repl.co/ Phishing
2022-09-23 2 trusting.ayomatos.repl.co/assets/css/loadingbox.css?187089568 Phishing
2022-09-23 2 trusting.ayomatos.repl.co/assets/css/product/themes/jquery-ui.structure.css (...) Phishing
2022-09-23 2 trusting.ayomatos.repl.co/assets/css/textCapitalize.css?187089568 Phishing
2022-09-23 2 trusting.ayomatos.repl.co/assets/css/plugins/ui.multiselect.css?187089568 Phishing
2022-09-23 2 trusting.ayomatos.repl.co/assets/css/plugins/jquery.bxslider.css?187089568 Phishing
2022-09-23 2 trusting.ayomatos.repl.co/assets/css/plugins/searchFilter.css?187089568 Phishing
2022-09-23 2 trusting.ayomatos.repl.co/assets/css/externalFonts/fonts.css?187089568 Phishing
2022-09-23 2 trusting.ayomatos.repl.co/assets/css/file-slider-style.css?187089568 Phishing
2022-09-23 2 trusting.ayomatos.repl.co/assets/css/jqModal.css?187089568 Phishing
2022-09-23 2 trusting.ayomatos.repl.co/assets/css/style.css?187089568 Phishing
2022-09-23 2 trusting.ayomatos.repl.co/assets/css/jquery.jqplot.min.css?187089568 Phishing
2022-09-23 2 trusting.ayomatos.repl.co/assets/css/medidor.css?187089568 Phishing
2022-09-23 2 trusting.ayomatos.repl.co/assets/css/product/themes/menu-dys.css?187089568 Phishing
2022-09-23 2 trusting.ayomatos.repl.co/assets/css/fullpage/menu.fullPage.css?187089568 Phishing
2022-09-23 2 trusting.ayomatos.repl.co/assets/css/jquery.ui.core.css?187089568 Phishing
2022-09-23 2 trusting.ayomatos.repl.co/assets/css/jquery.ui.datepicker.css?187089568 Phishing
2022-09-23 2 trusting.ayomatos.repl.co/assets/css/grid-cyberbank.css?187089568 Phishing
2022-09-23 2 trusting.ayomatos.repl.co/assets/css/datepicker.css?187089568 Phishing
2022-09-23 2 trusting.ayomatos.repl.co/static/js/main.4e7c02be.js Phishing
2022-09-23 2 trusting.ayomatos.repl.co/assets/css/fonts/PublicSans-Regular.ttf Phishing
2022-09-23 2 trusting.ayomatos.repl.co/assets/css/fonts/TitilliumWeb-Bold.ttf Phishing
mnemonic secure dns  No alerts detected
Quad9 DNS  No alerts detected


Files

No files detected



Passive DNS (9)

Passive DNS Source Fully Qualifying Domain Name Rank First Seen Last Seen IP Comment
mnemonic passive DNS new.laposadadelch.repl.co (1) 0 2022-09-21 22:32:15 UTC 2022-09-23 01:34:26 UTC 34.149.204.188 Unknown ranking
mnemonic passive DNS ocsp.digicert.com (1) 86 2012-05-21 07:02:23 UTC 2022-09-23 04:04:38 UTC 93.184.220.29
mnemonic passive DNS trusting.ayomatos.repl.co (40) 0 2022-09-21 22:33:20 UTC 2022-09-23 08:12:59 UTC 34.149.204.188 Unknown ranking
mnemonic passive DNS r3.o.lencr.org (8) 344 2020-12-02 08:52:13 UTC 2022-09-23 04:34:39 UTC 23.36.77.32
mnemonic passive DNS contile.services.mozilla.com (1) 1114 2021-05-27 18:32:35 UTC 2022-09-23 04:33:41 UTC 34.117.237.239
mnemonic passive DNS push.services.mozilla.com (1) 2140 2015-09-03 10:29:36 UTC 2022-09-23 05:02:25 UTC 35.161.231.36
mnemonic passive DNS img-getpocket.cdn.mozilla.net (7) 1631 2017-09-01 03:40:57 UTC 2022-09-23 04:02:43 UTC 34.120.237.76
mnemonic passive DNS firefox.settings.services.mozilla.com (2) 867 2020-06-04 20:08:41 UTC 2022-09-23 05:06:00 UTC 143.204.55.35
mnemonic passive DNS content-signature-2.cdn.mozilla.net (1) 1152 2020-11-03 12:26:46 UTC 2022-09-23 04:02:41 UTC 143.204.55.25


Recent reports on same IP/ASN/Domain/Screenshot

Last 5 reports on IP: 34.149.204.188

Date UQ / IDS / BL URL IP
2022-10-04 15:03:53 +0000
0 - 0 - 1 2433546576.repl.co/ 34.149.204.188
2022-10-04 14:18:30 +0000
0 - 0 - 1 80509.repl.co/ 34.149.204.188
2022-10-04 13:57:58 +0000
0 - 0 - 1 userenline.repl.co/ 34.149.204.188
2022-10-04 10:57:06 +0000
0 - 0 - 1 hmtlsfsf.repl.co/ 34.149.204.188
2022-10-04 10:37:34 +0000
0 - 0 - 2 asesorvirtualnew.549662.repl.co/ 34.149.204.188

Last 5 reports on ASN: GOOGLE

Date UQ / IDS / BL URL IP
2022-10-04 15:56:08 +0000
0 - 0 - 2 idobeamolax.com/groups/index.php/ 34.102.136.180
2022-10-04 15:53:19 +0000
0 - 0 - 1 trichyexpress.com/admin/pages/tables/includes (...) 34.102.136.180
2022-10-04 15:46:48 +0000
0 - 0 - 0 gcdn.2mdn.net 142.250.74.14
2022-10-04 15:42:27 +0000
0 - 0 - 5 onyxfilmes.blogspot.com/search/label/internet (...) 142.250.74.161
2022-10-04 15:41:51 +0000
0 - 0 - 1 1b5622c7-2ce6-4cef-b1cd-19325efd8f45.usrfiles (...) 34.102.176.152

Last 1 reports on domain: laposadadelch.repl.co

Date UQ / IDS / BL URL IP
2022-09-23 10:14:19 +0000
0 - 0 - 54 new.laposadadelch.repl.co/ 34.149.204.188

No other reports with similar screenshot



JavaScript

Executed Scripts (1)


Executed Evals (0)


Executed Writes (0)



HTTP Transactions (62)


Request Response
                                        
                                            GET /v1/ HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.35
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Type, Alert, Backoff, Retry-After, Content-Length
Cache-Control: max-stale=0
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Fri, 23 Sep 2022 09:14:07 GMT
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 4f01f770085624552bc30a98954f963a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: IBZO3RzZ0uCROcmEM7lzWQAjseyiM-OOkuUJ_qLbeGu38ZnYS8R5sw==
Age: 3600


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size:   939
Md5:    2d12f67fe57a87e7366b662d153a5582
Sha1:   d7b02d81cc74f24a251d9363e0f4b0a149264ec1
Sha256: 73c273c0b5a2de3cb970b8e8c187999d3b55e760dc7766dab4bb76428d19b551
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "E82CA5F310E37267FBF792427747E65C2BB35E684D3F629C0AA302F688BC4F80"
Last-Modified: Fri, 23 Sep 2022 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18003
Expires: Fri, 23 Sep 2022 15:14:10 GMT
Date: Fri, 23 Sep 2022 10:14:07 GMT
Connection: keep-alive

                                        
                                            GET /chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain HTTP/1.1 
Host: content-signature-2.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.25
HTTP/2 200 OK
                                        
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 10 Sep 2022 18:47:45 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Fri, 23 Sep 2022 04:35:15 GMT
etag: "6113f8408c59aebe188d6af273b90743"
x-cache: Hit from cloudfront
via: 1.1 a7d2a4ec2f50830f128dc406960aef9a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: yTz57t5pnUZM6RVM4o6F_3v688kitzzIjPVUw0m6VIItLCQPv0do9g==
age: 20333
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PEM certificate\012- , ASCII text
Size:   5348
Md5:    6113f8408c59aebe188d6af273b90743
Sha1:   7398873bf00f99944eaa77ad3ebc0d43c23dba6b
Sha256: b6e0cc9ad68306208a160f3835fb8da76acc5a82d8fde1da5a98e1de1c11a770
                                        
                                            GET /v1/tiles HTTP/1.1 
Host: contile.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.117.237.239
HTTP/2 200 OK
                                        
server: nginx
date: Fri, 23 Sep 2022 10:14:07 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   12
Md5:    23e88fb7b99543fb33315b29b1fad9d6
Sha1:   a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
Sha256: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "463307989FAEF80A86D70C9A18B259C28DB40EBDB549232994DC07C748885F56"
Last-Modified: Thu, 22 Sep 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Fri, 23 Sep 2022 16:14:08 GMT
Date: Fri, 23 Sep 2022 10:14:08 GMT
Connection: keep-alive

                                        
                                            GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.35
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600, max-age=3600
Date: Fri, 23 Sep 2022 10:03:22 GMT
Expires: Fri, 23 Sep 2022 10:23:11 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 f46f7100ad6fc83a021f62212f945830.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: Uk1rdxRQnxv0kb97S2GNjhoa0fWtLfdLwfRuvjXRtwe7e6YPgXaHVg==
Age: 646


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size:   329
Md5:    0333b0655111aa68de771adfcc4db243
Sha1:   63f295a144ac87a7c8e23417626724eeca68a7eb
Sha256: 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
                                        
                                            GET / HTTP/1.1 
Host: new.laposadadelch.repl.co
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

                                         
                                         34.149.204.188
HTTP/2 200 OK
                                        
access-control-allow-origin: *
content-type: text/html; charset=utf-8
expect-ct: max-age=2592000, report-uri="https://sentry.repl.it/api/10/security/?sentry_key=615192fd532445bfbbbe966cd7131791"
replit-cluster: global
strict-transport-security: max-age=7466104; includeSubDomains
content-length: 78
date: Fri, 23 Sep 2022 10:14:08 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with no line terminators
Size:   78
Md5:    f7f98b8a93cfcea0fbb096bd2f558012
Sha1:   e1aa3898a8d73ae0733ff44908dd29b844bfa9f1
Sha256: 23f461c65b10b5dd750983c1b59bbf4635c98390150e4303b26f103e46eff5ab

Alerts:
  Blocklists:
    - openphish: Banco Macro S.A.
    - fortinet: Phishing
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 3368
Cache-Control: 'max-age=158059'
Date: Fri, 23 Sep 2022 10:14:08 GMT
Last-Modified: Fri, 23 Sep 2022 09:18:00 GMT
Server: ECS (ska/F710)
X-Cache: HIT
Content-Length: 471

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "AD7F06C8DCFCD6604BF07B2ED0F0D6F31CD51616800940AF957AB1D053DE93A3"
Last-Modified: Wed, 21 Sep 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18524
Expires: Fri, 23 Sep 2022 15:22:52 GMT
Date: Fri, 23 Sep 2022 10:14:08 GMT
Connection: keep-alive

                                        
                                            GET / HTTP/1.1 
Host: push.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 4/72gMXDtXgD/cWRaZgwlg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

                                         
                                         35.161.231.36
HTTP/1.1 101 Switching Protocols
                                        
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: j2MfYrcItqjbjz9krWc9qC1vJ4g=

                                        
                                            GET / HTTP/1.1 
Host: trusting.ayomatos.repl.co
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

                                         
                                         34.149.204.188
HTTP/2 200 OK
                                        
content-type: text/html; charset=UTF-8
date: Fri, 23 Sep 2022 10:14:08 GMT
expect-ct: max-age=2592000, report-uri="https://sentry.repl.it/api/10/security/?sentry_key=615192fd532445bfbbbe966cd7131791"
replit-cluster: global
strict-transport-security: max-age=6593875; includeSubDomains
content-length: 3877
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (3873), with no line terminators
Size:   3877
Md5:    26a61dab4862280339e8116e928f6ae1
Sha1:   4c3bd96411deb41fb2b1210691025592a1d5595b
Sha256: d2ee5f4585c3e75fe44d333a071c79648a0af3181b957a164a37700a4ae661c5

Alerts:
  Blocklists:
    - openphish: Banco Macro S.A.
    - fortinet: Phishing
                                        
                                            GET /assets/css/loadingbox.css?187089568 HTTP/1.1 
Host: trusting.ayomatos.repl.co
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://trusting.ayomatos.repl.co/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         34.149.204.188
HTTP/2 200 OK
                                        
content-type: text/css; charset=UTF-8
date: Fri, 23 Sep 2022 10:14:09 GMT
expect-ct: max-age=2592000, report-uri="https://sentry.repl.it/api/10/security/?sentry_key=615192fd532445bfbbbe966cd7131791"
replit-cluster: global
strict-transport-security: max-age=6593874; includeSubDomains
content-length: 187
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with no line terminators
Size:   187
Md5:    7d893b99a20a99d7b4d4a40b22e46c83
Sha1:   c4382d8dad1c3c1b9c9e5b57b2f3fd52693315a7
Sha256: 0783854f6445da90427e7f7e7c63167a1309d99cc7369643f537e02df72635cb

Alerts:
  Blocklists:
    - openphish: Banco Macro S.A.
    - fortinet: Phishing
                                        
                                            GET /assets/css/fullpage/jquery.fullPage.css?187089568 HTTP/1.1 
Host: trusting.ayomatos.repl.co
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://trusting.ayomatos.repl.co/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         34.149.204.188
HTTP/2 404 Not Found
                                        
content-type: text/html; charset=UTF-8
date: Fri, 23 Sep 2022 10:14:09 GMT
expect-ct: max-age=2592000, report-uri="https://sentry.repl.it/api/10/security/?sentry_key=615192fd532445bfbbbe966cd7131791"
replit-cluster: global
strict-transport-security: max-age=6593874; includeSubDomains
content-length: 582
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size:   582
Md5:    59f95d91a9378b0b31e50a71258f6da7
Sha1:   dca48d1b758809583df89eb99bf860255f45df36
Sha256: bf14f6b5707e3eea25d9e3be3d257aed2c8a45c8052df96516abd89d7fdddcc3
                                        
                                            GET /assets/css/slider-style.css?187089568 HTTP/1.1 
Host: trusting.ayomatos.repl.co
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://trusting.ayomatos.repl.co/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         34.149.204.188
HTTP/2 200 OK
                                        
content-type: text/css; charset=UTF-8
date: Fri, 23 Sep 2022 10:14:09 GMT
expect-ct: max-age=2592000, report-uri="https://sentry.repl.it/api/10/security/?sentry_key=615192fd532445bfbbbe966cd7131791"
replit-cluster: global
strict-transport-security: max-age=6593874; includeSubDomains
content-length: 1732
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (1732), with no line terminators
Size:   1732
Md5:    0fc950f0a5693950995c54ffd20d30e9
Sha1:   04d4b43aad693bb19660c32bc1327f2dbddcb1bf
Sha256: 966784f154d6575b135b1d693e821a4be8db4405148289f22a58e1d3717b1db3
                                        
                                            GET /assets/css/product/themes/jquery-ui.theme.css?187089568 HTTP/1.1 
Host: trusting.ayomatos.repl.co
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://trusting.ayomatos.repl.co/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         34.149.204.188
HTTP/2 404 Not Found
                                        
content-type: text/html; charset=UTF-8
date: Fri, 23 Sep 2022 10:14:09 GMT
expect-ct: max-age=2592000, report-uri="https://sentry.repl.it/api/10/security/?sentry_key=615192fd532445bfbbbe966cd7131791"
replit-cluster: global
strict-transport-security: max-age=6593874; includeSubDomains
content-length: 588
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size:   588
Md5:    36b437ee87488fbd0f35da3c4b5d1d33
Sha1:   8e420005a3e66bc7f2fd4effcec76d97154e917f
Sha256: 442e35928e4d7e8487fce788a12371eb107e52d4a635f235213f8468c9be2b61
                                        
                                            GET /assets/css/product/themes/jquery-ui.structure.css?187089568 HTTP/1.1 
Host: trusting.ayomatos.repl.co
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://trusting.ayomatos.repl.co/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         34.149.204.188
HTTP/2 404 Not Found
                                        
content-type: text/html; charset=UTF-8
date: Fri, 23 Sep 2022 10:14:09 GMT
expect-ct: max-age=2592000, report-uri="https://sentry.repl.it/api/10/security/?sentry_key=615192fd532445bfbbbe966cd7131791"
replit-cluster: global
strict-transport-security: max-age=6593874; includeSubDomains
content-length: 592
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size:   592
Md5:    0b15f290fcd08ae89741a03737bff9cc
Sha1:   17b6195ca709e5a216193deed5738620915b93e4
Sha256: 87a2e2a054d1788c3a0bc7706b318e2e25c2131829245688eeb2f22d756b05f9

Alerts:
  Blocklists:
    - openphish: Banco Macro S.A.
    - fortinet: Phishing
                                        
                                            GET /assets/css/textCapitalize.css?187089568 HTTP/1.1 
Host: trusting.ayomatos.repl.co
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://trusting.ayomatos.repl.co/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         34.149.204.188
HTTP/2 200 OK
                                        
content-type: text/css; charset=UTF-8
date: Fri, 23 Sep 2022 10:14:09 GMT
expect-ct: max-age=2592000, report-uri="https://sentry.repl.it/api/10/security/?sentry_key=615192fd532445bfbbbe966cd7131791"
replit-cluster: global
strict-transport-security: max-age=6593874; includeSubDomains
content-length: 85
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with no line terminators
Size:   85
Md5:    61562bd3d4fa79a63699fe5816027bc0
Sha1:   b0e86fba7260839a2ceb9761fd97f8d9c18f0509
Sha256: b513cdf725546f667f830cc5bbb3503816613f08ae6f85ecc1352915e41a7c84

Alerts:
  Blocklists:
    - openphish: Banco Macro S.A.
    - fortinet: Phishing
                                        
                                            GET /assets/css/plugins/ui.multiselect.css?187089568 HTTP/1.1 
Host: trusting.ayomatos.repl.co
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://trusting.ayomatos.repl.co/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         34.149.204.188
HTTP/2 404 Not Found
                                        
content-type: text/html; charset=UTF-8
date: Fri, 23 Sep 2022 10:14:09 GMT
expect-ct: max-age=2592000, report-uri="https://sentry.repl.it/api/10/security/?sentry_key=615192fd532445bfbbbe966cd7131791"
replit-cluster: global
strict-transport-security: max-age=6593874; includeSubDomains
content-length: 580
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size:   580
Md5:    29e2bf6eef437e14937648ea006a2bf4
Sha1:   11c0f7befcc3c660a0fa1b1662ae3f7ed228fafb
Sha256: 70bdda503f9e9ae384df82fd4ac2a51b9c8d0182d48d1896e57e618fff5ff14d

Alerts:
  Blocklists:
    - openphish: Banco Macro S.A.
    - fortinet: Phishing
                                        
                                            GET /assets/css/plugins/jquery.bxslider.css?187089568 HTTP/1.1 
Host: trusting.ayomatos.repl.co
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://trusting.ayomatos.repl.co/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         34.149.204.188
HTTP/2 404 Not Found
                                        
content-type: text/html; charset=UTF-8
date: Fri, 23 Sep 2022 10:14:09 GMT
expect-ct: max-age=2592000, report-uri="https://sentry.repl.it/api/10/security/?sentry_key=615192fd532445bfbbbe966cd7131791"
replit-cluster: global
strict-transport-security: max-age=6593874; includeSubDomains
content-length: 581
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size:   581
Md5:    9217057011afeda2479539c645ab2325
Sha1:   fbeb70421d906b32c075f8264e3f807cbf95f2af
Sha256: df5b6305fdb1967c20b4931db6855cdb48a4ba6a70ff15f6a88e881999038b1c

Alerts:
  Blocklists:
    - openphish: Banco Macro S.A.
    - fortinet: Phishing
                                        
                                            GET /assets/css/plugins/searchFilter.css?187089568 HTTP/1.1 
Host: trusting.ayomatos.repl.co
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://trusting.ayomatos.repl.co/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         34.149.204.188
HTTP/2 404 Not Found
                                        
content-type: text/html; charset=UTF-8
date: Fri, 23 Sep 2022 10:14:09 GMT
expect-ct: max-age=2592000, report-uri="https://sentry.repl.it/api/10/security/?sentry_key=615192fd532445bfbbbe966cd7131791"
replit-cluster: global
strict-transport-security: max-age=6593874; includeSubDomains
content-length: 578
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size:   578
Md5:    6491be1f97d0c05b9ada9ea9c7c61052
Sha1:   476579cd3bbdf68eed3235a2e2b77b4fe683000a
Sha256: ad24197d9a3b48bfa6807e285d2deadba0a9002c5a499cf2b250c8564a028dd2

Alerts:
  Blocklists:
    - openphish: Banco Macro S.A.
    - fortinet: Phishing
                                        
                                            GET /assets/css/fliphover.css?187089568 HTTP/1.1 
Host: trusting.ayomatos.repl.co
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://trusting.ayomatos.repl.co/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         34.149.204.188
HTTP/2 200 OK
                                        
content-type: text/css; charset=UTF-8
date: Fri, 23 Sep 2022 10:14:09 GMT
expect-ct: max-age=2592000, report-uri="https://sentry.repl.it/api/10/security/?sentry_key=615192fd532445bfbbbe966cd7131791"
replit-cluster: global
strict-transport-security: max-age=6593874; includeSubDomains
content-length: 426
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (426), with no line terminators
Size:   426
Md5:    b9314a263765e51019d8b4aa4354a8da
Sha1:   dce050a4cb7c6f9b18e80e42df33405612b495a9
Sha256: 37adb860dd9bccdc5f767269a699e17472693c85d6a1397271f2516ba2a6d290
                                        
                                            GET /assets/css/externalFonts/fonts.css?187089568 HTTP/1.1 
Host: trusting.ayomatos.repl.co
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://trusting.ayomatos.repl.co/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         34.149.204.188
HTTP/2 404 Not Found
                                        
content-type: text/html; charset=UTF-8
date: Fri, 23 Sep 2022 10:14:09 GMT
expect-ct: max-age=2592000, report-uri="https://sentry.repl.it/api/10/security/?sentry_key=615192fd532445bfbbbe966cd7131791"
replit-cluster: global
strict-transport-security: max-age=6593874; includeSubDomains
content-length: 577
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size:   577
Md5:    5add0599a2599f507ac425f0384cfd69
Sha1:   c0687c7a7559711e3047ab0b0635d4103abcf828
Sha256: 3e86e8611022f718bf110a1c77bab6a1b30b7097b017a8e9906696ff252703b3

Alerts:
  Blocklists:
    - openphish: Banco Macro S.A.
    - fortinet: Phishing
                                        
                                            GET /assets/css/file-slider-style.css?187089568 HTTP/1.1 
Host: trusting.ayomatos.repl.co
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://trusting.ayomatos.repl.co/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         34.149.204.188
HTTP/2 200 OK
                                        
content-type: text/css; charset=UTF-8
date: Fri, 23 Sep 2022 10:14:09 GMT
expect-ct: max-age=2592000, report-uri="https://sentry.repl.it/api/10/security/?sentry_key=615192fd532445bfbbbe966cd7131791"
replit-cluster: global
strict-transport-security: max-age=6593874; includeSubDomains
content-length: 977
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (977), with no line terminators
Size:   977
Md5:    66e53f6e28dccd872b82159ffb4edde9
Sha1:   06ee97393292362429fc51fbb73ba44dcb18d39c
Sha256: aa804723002288dcd4d5d42e6ce8e97f4cfb095db63ddab0ed1e3022cbd5fa66

Alerts:
  Blocklists:
    - openphish: Banco Macro S.A.
    - fortinet: Phishing
                                        
                                            GET /assets/css/jqModal.css?187089568 HTTP/1.1 
Host: trusting.ayomatos.repl.co
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://trusting.ayomatos.repl.co/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         34.149.204.188
HTTP/2 200 OK
                                        
content-type: text/css; charset=UTF-8
date: Fri, 23 Sep 2022 10:14:09 GMT
expect-ct: max-age=2592000, report-uri="https://sentry.repl.it/api/10/security/?sentry_key=615192fd532445bfbbbe966cd7131791"
replit-cluster: global
strict-transport-security: max-age=6593874; includeSubDomains
content-length: 751
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (751), with no line terminators
Size:   751
Md5:    c41fa4f6fe69636d297987f89d8e4d6a
Sha1:   24e1f1851304b573f46d0b88dcd991cd36600ab6
Sha256: 0c788d54f1e47614e71d2340af915405d5df5c2ca716a14a770732cffda996c2

Alerts:
  Blocklists:
    - openphish: Banco Macro S.A.
    - fortinet: Phishing
                                        
                                            GET /assets/css/jquery.keyboard.css?187089568 HTTP/1.1 
Host: trusting.ayomatos.repl.co
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://trusting.ayomatos.repl.co/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         34.149.204.188
HTTP/2 200 OK
                                        
content-type: text/css; charset=UTF-8
date: Fri, 23 Sep 2022 10:14:09 GMT
expect-ct: max-age=2592000, report-uri="https://sentry.repl.it/api/10/security/?sentry_key=615192fd532445bfbbbe966cd7131791"
replit-cluster: global
strict-transport-security: max-age=6593874; includeSubDomains
content-length: 6662
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (6662), with no line terminators
Size:   6662
Md5:    109c3c32009f4c8480d894bbed84e1a1
Sha1:   6fcb73ad15cfd097ef3361e620744382f197d7a1
Sha256: ecac2ce1a36498df5e0251efb6778d045821369a124588770063ea9fef3e78f9
                                        
                                            GET /assets/css/style.css?187089568 HTTP/1.1 
Host: trusting.ayomatos.repl.co
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://trusting.ayomatos.repl.co/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         34.149.204.188
HTTP/2 200 OK
                                        
content-type: text/css; charset=UTF-8
date: Fri, 23 Sep 2022 10:14:09 GMT
expect-ct: max-age=2592000, report-uri="https://sentry.repl.it/api/10/security/?sentry_key=615192fd532445bfbbbe966cd7131791"
replit-cluster: global
strict-transport-security: max-age=6593874; includeSubDomains
content-length: 2015
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (2015), with no line terminators
Size:   2015
Md5:    03b1746bc6da3b2eb1b9933ebf58f5a5
Sha1:   567a5ea915894e3972b6f99b84b1d3eab6df34bf
Sha256: 286fcafa402a59a2170c8e497bed5f67368325d043e413b97cdbeb7b4bef9b62

Alerts:
  Blocklists:
    - openphish: Banco Macro S.A.
    - fortinet: Phishing
                                        
                                            GET /assets/css/tree/mootree.css?187089568 HTTP/1.1 
Host: trusting.ayomatos.repl.co
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://trusting.ayomatos.repl.co/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         34.149.204.188
HTTP/2 404 Not Found
                                        
content-type: text/html; charset=UTF-8
date: Fri, 23 Sep 2022 10:14:09 GMT
expect-ct: max-age=2592000, report-uri="https://sentry.repl.it/api/10/security/?sentry_key=615192fd532445bfbbbe966cd7131791"
replit-cluster: global
strict-transport-security: max-age=6593874; includeSubDomains
content-length: 570
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size:   570
Md5:    dc1cac3c454e9f97d7ddff3a472f324a
Sha1:   4eb0417665777a9110aecd45975d66664cac0731
Sha256: 7fac7b7bc3c382bc1004be196a99ed109340c18b104da51ab410a857d5d225fd
                                        
                                            GET /assets/css/jquery.jqplot.min.css?187089568 HTTP/1.1 
Host: trusting.ayomatos.repl.co
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://trusting.ayomatos.repl.co/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         34.149.204.188
HTTP/2 200 OK
                                        
content-type: text/css; charset=UTF-8
date: Fri, 23 Sep 2022 10:14:09 GMT
expect-ct: max-age=2592000, report-uri="https://sentry.repl.it/api/10/security/?sentry_key=615192fd532445bfbbbe966cd7131791"
replit-cluster: global
strict-transport-security: max-age=6593874; includeSubDomains
content-length: 3522
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (3522), with no line terminators
Size:   3522
Md5:    342e0312e9d353b3f19dbd50c28cd084
Sha1:   fd1920d72cc236fa1128b5bbd4f9e527bb4d87c6
Sha256: 2eb3b837a4e3ecb73de5a872cdc5cf0516b47aa991519e92acebe6c178b23316

Alerts:
  Blocklists:
    - openphish: Banco Macro S.A.
    - fortinet: Phishing
                                        
                                            GET /assets/css/product/themes/jquery-ui.css?187089568 HTTP/1.1 
Host: trusting.ayomatos.repl.co
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://trusting.ayomatos.repl.co/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         34.149.204.188
HTTP/2 404 Not Found
                                        
content-type: text/html; charset=UTF-8
date: Fri, 23 Sep 2022 10:14:09 GMT
expect-ct: max-age=2592000, report-uri="https://sentry.repl.it/api/10/security/?sentry_key=615192fd532445bfbbbe966cd7131791"
replit-cluster: global
strict-transport-security: max-age=6593874; includeSubDomains
content-length: 582
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size:   582
Md5:    7171a8b80ec6d896bea5e32b21bf8126
Sha1:   af7a6b2fdb7d74e5a37bef768ca900525842697d
Sha256: e55d42f69fbb089c20365e8a4b10d0ad6cc0db650e76c37d7d74baf9d47907ed
                                        
                                            GET /assets/css/product/themes/tabs-mouseover2.css?187089568 HTTP/1.1 
Host: trusting.ayomatos.repl.co
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://trusting.ayomatos.repl.co/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         34.149.204.188
HTTP/2 404 Not Found
                                        
content-type: text/html; charset=UTF-8
date: Fri, 23 Sep 2022 10:14:09 GMT
expect-ct: max-age=2592000, report-uri="https://sentry.repl.it/api/10/security/?sentry_key=615192fd532445bfbbbe966cd7131791"
replit-cluster: global
strict-transport-security: max-age=6593874; includeSubDomains
content-length: 588
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size:   588
Md5:    a183645c0f289f0f5089a951e4e8d6ce
Sha1:   77e853956e51fa69e42441010320b19e37b8054e
Sha256: 5356411de14706641f464ab1b2e86810164f6571a5397f886cc11f899e763ff6
                                        
                                            GET /assets/css/medidor.css?187089568 HTTP/1.1 
Host: trusting.ayomatos.repl.co
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://trusting.ayomatos.repl.co/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         34.149.204.188
HTTP/2 200 OK
                                        
content-type: text/css; charset=UTF-8
date: Fri, 23 Sep 2022 10:14:09 GMT
expect-ct: max-age=2592000, report-uri="https://sentry.repl.it/api/10/security/?sentry_key=615192fd532445bfbbbe966cd7131791"
replit-cluster: global
strict-transport-security: max-age=6593874; includeSubDomains
content-length: 493
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (493), with no line terminators
Size:   493
Md5:    e22ff2c0a9e210275e1ef433f554ba95
Sha1:   4638bf821564f28618681b621a70b571c920927b
Sha256: c37889c5068e5ac84361baa92631643b36ecc6130763480e545abe6d6036136f

Alerts:
  Blocklists:
    - openphish: Banco Macro S.A.
    - fortinet: Phishing
                                        
                                            GET /assets/css/product/themes/menu-dys.css?187089568 HTTP/1.1 
Host: trusting.ayomatos.repl.co
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://trusting.ayomatos.repl.co/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         34.149.204.188
HTTP/2 404 Not Found
                                        
content-type: text/html; charset=UTF-8
date: Fri, 23 Sep 2022 10:14:09 GMT
expect-ct: max-age=2592000, report-uri="https://sentry.repl.it/api/10/security/?sentry_key=615192fd532445bfbbbe966cd7131791"
replit-cluster: global
strict-transport-security: max-age=6593874; includeSubDomains
content-length: 581
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size:   581
Md5:    fc128b1ff39caa7cd54c76ef488e4b66
Sha1:   09eaf01de71123d885641858850c60e4d66f46de
Sha256: e6816f199dfb39c9394a750a0f7fbb1c57d75e2b0331a157a5333fc3958661ca

Alerts:
  Blocklists:
    - openphish: Banco Macro S.A.
    - fortinet: Phishing
                                        
                                            GET /assets/css/fullpage/menu.fullPage.css?187089568 HTTP/1.1 
Host: trusting.ayomatos.repl.co
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://trusting.ayomatos.repl.co/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         34.149.204.188
HTTP/2 404 Not Found
                                        
content-type: text/html; charset=UTF-8
date: Fri, 23 Sep 2022 10:14:09 GMT
expect-ct: max-age=2592000, report-uri="https://sentry.repl.it/api/10/security/?sentry_key=615192fd532445bfbbbe966cd7131791"
replit-cluster: global
strict-transport-security: max-age=6593874; includeSubDomains
content-length: 580
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size:   580
Md5:    ad31e9efc97e27a3c4d5a6308b7bf8a3
Sha1:   0364032cc4050f1aeb64a5242abd17d3db3d718c
Sha256: 0f65d98be3e36922da2bb606906c01a89bfc6ac18fdd010d9a4fb98f620a4c06

Alerts:
  Blocklists:
    - openphish: Banco Macro S.A.
    - fortinet: Phishing
                                        
                                            GET /assets/css/jquery.ui.core.css?187089568 HTTP/1.1 
Host: trusting.ayomatos.repl.co
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://trusting.ayomatos.repl.co/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         34.149.204.188
HTTP/2 200 OK
                                        
content-type: text/css; charset=UTF-8
date: Fri, 23 Sep 2022 10:14:09 GMT
expect-ct: max-age=2592000, report-uri="https://sentry.repl.it/api/10/security/?sentry_key=615192fd532445bfbbbe966cd7131791"
replit-cluster: global
strict-transport-security: max-age=6593874; includeSubDomains
content-length: 950
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (719)
Size:   950
Md5:    db7fa53f12e5f03948b6739fa84e00c6
Sha1:   4a9662877d8a8d0d771bb1cd599c10fac03fdd16
Sha256: 51688b4cbac6b66e56b33330aa4107f1ff95e4de508922c775c4074b0b1e40b0

Alerts:
  Blocklists:
    - openphish: Banco Macro S.A.
    - fortinet: Phishing
                                        
                                            GET /assets/css/jquery.ui.datepicker.css?187089568 HTTP/1.1 
Host: trusting.ayomatos.repl.co
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://trusting.ayomatos.repl.co/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         34.149.204.188
HTTP/2 200 OK
                                        
content-type: text/css; charset=UTF-8
date: Fri, 23 Sep 2022 10:14:09 GMT
expect-ct: max-age=2592000, report-uri="https://sentry.repl.it/api/10/security/?sentry_key=615192fd532445bfbbbe966cd7131791"
replit-cluster: global
strict-transport-security: max-age=6593874; includeSubDomains
content-length: 3634
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (3399)
Size:   3634
Md5:    45cb933760a479394425731e662f90bf
Sha1:   cf0fb53772f02f1e7dbf6f7f1820a3bd5f47bfc5
Sha256: 8adc8a7f3cddcf9ef50c8caa863bb1e7fbf83403057b65b0610018a201ccaba3

Alerts:
  Blocklists:
    - openphish: Banco Macro S.A.
    - fortinet: Phishing
                                        
                                            GET /assets/css/grid-cyberbank.css?187089568 HTTP/1.1 
Host: trusting.ayomatos.repl.co
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://trusting.ayomatos.repl.co/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         34.149.204.188
HTTP/2 200 OK
                                        
content-type: text/css; charset=UTF-8
date: Fri, 23 Sep 2022 10:14:09 GMT
expect-ct: max-age=2592000, report-uri="https://sentry.repl.it/api/10/security/?sentry_key=615192fd532445bfbbbe966cd7131791"
replit-cluster: global
strict-transport-security: max-age=6593874; includeSubDomains
content-length: 416
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (416), with no line terminators
Size:   416
Md5:    b6a2956cf1177645e6ff62f466c90c1b
Sha1:   1e4d218939874bb0201b91ac183e0891d8828f1f
Sha256: e7c216a9448a67ca99a6cf213a92ea4b8e703067e7b563d45c8b67efbf50a350

Alerts:
  Blocklists:
    - openphish: Banco Macro S.A.
    - fortinet: Phishing
                                        
                                            GET /assets/css/ui.jqgrid.css?187089568 HTTP/1.1 
Host: trusting.ayomatos.repl.co
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://trusting.ayomatos.repl.co/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         34.149.204.188
HTTP/2 200 OK
                                        
content-type: text/css; charset=UTF-8
date: Fri, 23 Sep 2022 10:14:09 GMT
expect-ct: max-age=2592000, report-uri="https://sentry.repl.it/api/10/security/?sentry_key=615192fd532445bfbbbe966cd7131791"
replit-cluster: global
strict-transport-security: max-age=6593874; includeSubDomains
content-length: 11403
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (11403), with no line terminators
Size:   11403
Md5:    606a2eb8674377644e8ce7f40233f99e
Sha1:   976ac07497799f3e5953e4dbb9191c335978e977
Sha256: 812520ed5d7ee1c61d37c55d91f1247f202562cdebd6667e2977284fd3faad4c
                                        
                                            GET /static/css/main.3d0f9e59.css HTTP/1.1 
Host: trusting.ayomatos.repl.co
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://trusting.ayomatos.repl.co/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         34.149.204.188
HTTP/2 200 OK
                                        
content-type: text/css; charset=UTF-8
date: Fri, 23 Sep 2022 10:14:09 GMT
expect-ct: max-age=2592000, report-uri="https://sentry.repl.it/api/10/security/?sentry_key=615192fd532445bfbbbe966cd7131791"
replit-cluster: global
strict-transport-security: max-age=6593874; includeSubDomains
content-length: 2476
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (2431)
Size:   2476
Md5:    c59c48c642a7922114e7f6429cb02456
Sha1:   63cf6df9368cf61f3cc8d3f5b4e58ff15dc1ba2a
Sha256: e2a0cd5eba253d984641ed60db35cc2bf22dab24fc4943a8aaa5dc16bf695791

Alerts:
  Blocklists:
    - openphish: Banco Macro S.A.
                                        
                                            GET /assets/css/datepicker.css?187089568 HTTP/1.1 
Host: trusting.ayomatos.repl.co
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://trusting.ayomatos.repl.co/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         34.149.204.188
HTTP/2 200 OK
                                        
content-type: text/css; charset=UTF-8
date: Fri, 23 Sep 2022 10:14:09 GMT
expect-ct: max-age=2592000, report-uri="https://sentry.repl.it/api/10/security/?sentry_key=615192fd532445bfbbbe966cd7131791"
replit-cluster: global
strict-transport-security: max-age=6593874; includeSubDomains
content-length: 16711
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (16711), with no line terminators
Size:   16711
Md5:    35aa657c9f645e4c05a56c1338985f54
Sha1:   d7a53df306e3f9e3516ce5d41ca49aa88895c1ff
Sha256: 3a79cdd037e46dd6edc7b58af8d43863ce5ceb767fa0790fd4cff09aa24d11ec

Alerts:
  Blocklists:
    - openphish: Banco Macro S.A.
    - fortinet: Phishing
                                        
                                            GET /assets/css/styleFromDB1111.css?1944978327 HTTP/1.1 
Host: trusting.ayomatos.repl.co
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://trusting.ayomatos.repl.co/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         34.149.204.188
HTTP/2 200 OK
                                        
content-type: text/css; charset=UTF-8
date: Fri, 23 Sep 2022 10:14:09 GMT
expect-ct: max-age=2592000, report-uri="https://sentry.repl.it/api/10/security/?sentry_key=615192fd532445bfbbbe966cd7131791"
replit-cluster: global
strict-transport-security: max-age=6593874; includeSubDomains
content-length: 327774
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text
Size:   327774
Md5:    a30a7d391e9ee11e90050acfd8d3f257
Sha1:   9f1bea9a1a6e43f0385dcb7bad1d2984fcd0f8e5
Sha256: f9a870984a7fc25b0865f13b52300fbe1781b083030f7a9efe3284ac4c206c1a
                                        
                                            GET /static/js/main.4e7c02be.js HTTP/1.1 
Host: trusting.ayomatos.repl.co
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://trusting.ayomatos.repl.co/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         34.149.204.188
HTTP/2 200 OK
                                        
content-type: application/javascript
date: Fri, 23 Sep 2022 10:14:09 GMT
expect-ct: max-age=2592000, report-uri="https://sentry.repl.it/api/10/security/?sentry_key=615192fd532445bfbbbe966cd7131791"
replit-cluster: global
strict-transport-security: max-age=6593874; includeSubDomains
content-length: 479879
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (65465)
Size:   479879
Md5:    f86a405b88245dcceab821d77e3e688e
Sha1:   108f17285562b17647b0315aeb041a8d29222cad
Sha256: 23e84f814793660910c31853f3382861e2880d39d29746347d399b4fcff087ee

Alerts:
  Blocklists:
    - openphish: Banco Macro S.A.
    - fortinet: Phishing
                                        
                                            GET /assets/css/fonts/PublicSans-Regular.ttf HTTP/1.1 
Host: trusting.ayomatos.repl.co
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://trusting.ayomatos.repl.co/assets/css/styleFromDB1111.css?1944978327
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         34.149.204.188
HTTP/2 200 OK
                                        
content-type: font/ttf
date: Fri, 23 Sep 2022 10:14:09 GMT
expect-ct: max-age=2592000, report-uri="https://sentry.repl.it/api/10/security/?sentry_key=615192fd532445bfbbbe966cd7131791"
replit-cluster: global
strict-transport-security: max-age=6593874; includeSubDomains
content-length: 56424
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  TrueType Font data, 16 tables, 1st "GDEF", 13 names, Microsoft, language 0x409, Copyright (c) 2015, Impallari Type (www.impallari.com)Public SansRegular1.007;NONE;PublicSans-Re\012- data
Size:   56424
Md5:    2ae2eb250f2d7264c3db2a7aadb47f1f
Sha1:   1fc453569359125a2a6ad60dd0289a468895972e
Sha256: e10a00a863fcfffe936af8d54684e6acea97e5e91d0733696eccac6bd1fff134

Alerts:
  Blocklists:
    - openphish: Banco Macro S.A.
    - fortinet: Phishing
                                        
                                            GET /assets/img/icono-login_a.png HTTP/1.1 
Host: trusting.ayomatos.repl.co
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://trusting.ayomatos.repl.co/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         34.149.204.188
HTTP/2 200 OK
                                        
content-type: image/png
date: Fri, 23 Sep 2022 10:14:09 GMT
expect-ct: max-age=2592000, report-uri="https://sentry.repl.it/api/10/security/?sentry_key=615192fd532445bfbbbe966cd7131791"
replit-cluster: global
strict-transport-security: max-age=6593874; includeSubDomains
content-length: 5588
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 70 x 70, 8-bit/color RGBA, non-interlaced\012- data
Size:   5588
Md5:    7a643af247242e9e8062b9c39cc96eef
Sha1:   840389cb5cd72c4d465213d765f4f88407bfa0ba
Sha256: 8484b328fc04f3cdc671c631a70b06f24aa895b1b84811cee8f5c3831adba791

Alerts:
  Blocklists:
    - openphish: Banco Macro S.A.
                                        
                                            GET /assets/img/logo_a.png HTTP/1.1 
Host: trusting.ayomatos.repl.co
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://trusting.ayomatos.repl.co/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         34.149.204.188
HTTP/2 200 OK
                                        
content-type: image/png
date: Fri, 23 Sep 2022 10:14:09 GMT
expect-ct: max-age=2592000, report-uri="https://sentry.repl.it/api/10/security/?sentry_key=615192fd532445bfbbbe966cd7131791"
replit-cluster: global
strict-transport-security: max-age=6593874; includeSubDomains
content-length: 2608
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 144 x 39, 8-bit/color RGBA, non-interlaced\012- data
Size:   2608
Md5:    aac7660dcdf847b1244ff9834b541fc4
Sha1:   cc10344abec5698b874f6e15ba5525ca236ae75a
Sha256: 8d0f1da7133db362a89c93d9895a0275687cdd2c5ccae1d5fae9525545de6116

Alerts:
  Blocklists:
    - openphish: Banco Macro S.A.
                                        
                                            GET /assets/img/tecladoVirtual_icn.png HTTP/1.1 
Host: trusting.ayomatos.repl.co
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://trusting.ayomatos.repl.co/assets/css/styleFromDB1111.css?1944978327
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         34.149.204.188
HTTP/2 200 OK
                                        
content-type: image/png
date: Fri, 23 Sep 2022 10:14:09 GMT
expect-ct: max-age=2592000, report-uri="https://sentry.repl.it/api/10/security/?sentry_key=615192fd532445bfbbbe966cd7131791"
replit-cluster: global
strict-transport-security: max-age=6593874; includeSubDomains
content-length: 429
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 30 x 30, 8-bit/color RGBA, non-interlaced\012- data
Size:   429
Md5:    97986ea1c94dc384cb971d6b177274a3
Sha1:   cd2d4c47e3eb33855c2844fa91b14fb0b313f0c7
Sha256: eed4061f372a1bcc210815e404932bd3ce61eea96f2950ad152ea301851f24a1

Alerts:
  Blocklists:
    - openphish: Banco Macro S.A.
                                        
                                            GET /assets/css/fonts/TitilliumWeb-Bold.ttf HTTP/1.1 
Host: trusting.ayomatos.repl.co
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://trusting.ayomatos.repl.co/assets/css/styleFromDB1111.css?1944978327
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         34.149.204.188
HTTP/2 200 OK
                                        
content-type: font/ttf
date: Fri, 23 Sep 2022 10:14:09 GMT
expect-ct: max-age=2592000, report-uri="https://sentry.repl.it/api/10/security/?sentry_key=615192fd532445bfbbbe966cd7131791"
replit-cluster: global
strict-transport-security: max-age=6593874; includeSubDomains
content-length: 53896
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  TrueType Font data, 15 tables, 1st "GDEF", 9 names, Microsoft, language 0x409\012- data
Size:   53896
Md5:    d49a8ee8f1baee082909ab2e7c4062d1
Sha1:   1de05d92173edf1cf44696d3c8a5842ebbf1e75f
Sha256: fe3d6895510631f14e0bff85e487b32be20972364a457e7df4047b58f41559c2

Alerts:
  Blocklists:
    - openphish: Banco Macro S.A.
    - fortinet: Phishing
                                        
                                            GET /assets/img/icn-ver-clave_a.png HTTP/1.1 
Host: trusting.ayomatos.repl.co
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://trusting.ayomatos.repl.co/assets/css/styleFromDB1111.css?1944978327
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         34.149.204.188
HTTP/2 200 OK
                                        
content-type: image/png
date: Fri, 23 Sep 2022 10:14:09 GMT
expect-ct: max-age=2592000, report-uri="https://sentry.repl.it/api/10/security/?sentry_key=615192fd532445bfbbbe966cd7131791"
replit-cluster: global
strict-transport-security: max-age=6593874; includeSubDomains
content-length: 3951
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 24 x 24, 8-bit/color RGBA, non-interlaced\012- data
Size:   3951
Md5:    36c489a64d35dfc2467d2aa86f327cfa
Sha1:   f34f01f77d38fa983314480e1f8ca09e7fc1b904
Sha256: 0cb0eb524079bee000d3b5511bb02d2f514a1afe4f124c91db5d6642be94dc56

Alerts:
  Blocklists:
    - openphish: Banco Macro S.A.
                                        
                                            GET /assets/img/BG-blue02.jpg HTTP/1.1 
Host: trusting.ayomatos.repl.co
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://trusting.ayomatos.repl.co/assets/css/styleFromDB1111.css?1944978327
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         34.149.204.188
HTTP/2 200 OK
                                        
content-type: image/jpeg
date: Fri, 23 Sep 2022 10:14:09 GMT
expect-ct: max-age=2592000, report-uri="https://sentry.repl.it/api/10/security/?sentry_key=615192fd532445bfbbbe966cd7131791"
replit-cluster: global
strict-transport-security: max-age=6593874; includeSubDomains
content-length: 473897
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1969x1312, components 3\012- data
Size:   473897
Md5:    e6fa134964df328843d12f26d2119965
Sha1:   00599d66f4cf7b500512fe152ad10c19afea78b3
Sha256: 1e26eb2549b5211e806bd4e4c70b96b8501928c815e6ece436a97077985d8f8c

Alerts:
  Blocklists:
    - openphish: Banco Macro S.A.
                                        
                                            GET /assets/img/warningWhite.png HTTP/1.1 
Host: trusting.ayomatos.repl.co
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://trusting.ayomatos.repl.co/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         34.149.204.188
HTTP/2 200 OK
                                        
content-type: image/png
date: Fri, 23 Sep 2022 10:14:09 GMT
expect-ct: max-age=2592000, report-uri="https://sentry.repl.it/api/10/security/?sentry_key=615192fd532445bfbbbe966cd7131791"
replit-cluster: global
strict-transport-security: max-age=6593874; includeSubDomains
content-length: 465
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced\012- data
Size:   465
Md5:    c70daa7bf22a23761c40276b99b82b46
Sha1:   d98b722ae5cac3ba972682b743f05422d0334b86
Sha256: 622e8bb777ed193db8cbadbff4867bf11076274d2bd823d5ea76318aa8f033e3

Alerts:
  Blocklists:
    - openphish: Banco Macro S.A.
                                        
                                            GET /favicon.ico HTTP/1.1 
Host: trusting.ayomatos.repl.co
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://trusting.ayomatos.repl.co/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         34.149.204.188
HTTP/2 200 OK
                                        
content-type: image/x-icon
date: Fri, 23 Sep 2022 10:14:09 GMT
expect-ct: max-age=2592000, report-uri="https://sentry.repl.it/api/10/security/?sentry_key=615192fd532445bfbbbe966cd7131791"
replit-cluster: global
strict-transport-security: max-age=6593874; includeSubDomains
content-length: 1150
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel\012- data
Size:   1150
Md5:    84609b52a2b7c10970502c8a1f3db2d2
Sha1:   9c8786d36222fc5cbb172c104c482f9965b24786
Sha256: ec5060e577eda0a7b51da147a15859c205a0e22721b69412bfc94837eafbc8a3

Alerts:
  Blocklists:
    - openphish: Banco Macro S.A.
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "4AC5AA5B4FB4A85282B825C5C0ED7B1AAF2B39FFE77D69DEC5123A84709F3FE2"
Last-Modified: Tue, 20 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15084
Expires: Fri, 23 Sep 2022 14:25:33 GMT
Date: Fri, 23 Sep 2022 10:14:09 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "4AC5AA5B4FB4A85282B825C5C0ED7B1AAF2B39FFE77D69DEC5123A84709F3FE2"
Last-Modified: Tue, 20 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15084
Expires: Fri, 23 Sep 2022 14:25:33 GMT
Date: Fri, 23 Sep 2022 10:14:09 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "4AC5AA5B4FB4A85282B825C5C0ED7B1AAF2B39FFE77D69DEC5123A84709F3FE2"
Last-Modified: Tue, 20 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15084
Expires: Fri, 23 Sep 2022 14:25:33 GMT
Date: Fri, 23 Sep 2022 10:14:09 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "4AC5AA5B4FB4A85282B825C5C0ED7B1AAF2B39FFE77D69DEC5123A84709F3FE2"
Last-Modified: Tue, 20 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15084
Expires: Fri, 23 Sep 2022 14:25:33 GMT
Date: Fri, 23 Sep 2022 10:14:09 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "4AC5AA5B4FB4A85282B825C5C0ED7B1AAF2B39FFE77D69DEC5123A84709F3FE2"
Last-Modified: Tue, 20 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15084
Expires: Fri, 23 Sep 2022 14:25:33 GMT
Date: Fri, 23 Sep 2022 10:14:09 GMT
Connection: keep-alive

                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F98db69a9-8416-4b0b-b1b4-1ed196b985e5.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
                                        
server: nginx
content-length: 5340
x-amzn-requestid: b13bc974-e15d-43a4-a918-fbc35b09a36f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y4Y19HljIAMFY8w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632cd4f2-2cb226ba4bd7c7e74d9ab2db;Sampled=0
x-amzn-remapped-date: Thu, 22 Sep 2022 21:34:42 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 8DCVWC4Ihr4R21i3ySyiWdUK0aGymTE22B842ZKolG-ZThiKSMX-uQ==
via: 1.1 446313511980eb02f28ff5a9a4147c0a.cloudfront.net (CloudFront), 1.1 32d624dbeb2a8b7f24dbe49007e37c90.cloudfront.net (CloudFront), 1.1 google
date: Thu, 22 Sep 2022 22:04:45 GMT
age: 43764
etag: "0264e73c4cfff0bb255757c7e1c760a5ad3ece80"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   5340
Md5:    3b318ea5c36d2b22b925f7dfe382df5f
Sha1:   0264e73c4cfff0bb255757c7e1c760a5ad3ece80
Sha256: 0c2f58ea4f5f32bb327f292e1b8fb5a4a60230bffc3abc440a624df27ec0d6bc
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6ac88c56-4515-47b4-9c1e-7745782bd306.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
                                        
server: nginx
content-length: 10127
x-amzn-requestid: 456e3c6a-e173-433e-8d54-d787cb50b7e8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y4Y0sHmCoAMFVSg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632cd4ea-7a07b336571396533e48b4cb;Sampled=0
x-amzn-remapped-date: Thu, 22 Sep 2022 21:34:34 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: KKYAef15NoI3It5UfVcqhPx50Fr6IK7O2VFasuAILVN9PP8CH1_7Ng==
via: 1.1 5a1753718d8b33365e5f693dd338c510.cloudfront.net (CloudFront), 1.1 cd858042f70b416ca05e042acf3908a4.cloudfront.net (CloudFront), 1.1 google
date: Thu, 22 Sep 2022 21:58:25 GMT
age: 44144
etag: "48c10714503e8dfdd3e3c3d39b919ef2792f0d15"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   10127
Md5:    b877ead4a15221fdd278ef27f281a7ec
Sha1:   48c10714503e8dfdd3e3c3d39b919ef2792f0d15
Sha256: f4a1d5abcfa4092828e004b6c0605a7a24e4133d275312f613dceff875971daf
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0ac33f06-9198-44a5-b43b-9cbcc092cf52.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
                                        
server: nginx
content-length: 9481
x-amzn-requestid: d527d22a-6822-4b90-b9cb-034f58f73c24
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y4Y0IGl7oAMFSKg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632cd4e7-13a676d9596cbd20663d2d8f;Sampled=0
x-amzn-remapped-date: Thu, 22 Sep 2022 21:34:31 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: V8vtLV7n0bPpR5xQtqcH6WK7uBV4ObaMdy_9qN_TtISqAozEwPe0hA==
via: 1.1 5a1753718d8b33365e5f693dd338c510.cloudfront.net (CloudFront), 1.1 1508efc4152aa1778ed4adecb328b374.cloudfront.net (CloudFront), 1.1 google
date: Thu, 22 Sep 2022 22:12:22 GMT
age: 43307
etag: "4156c37b612d5fb99c6b061187a3cb0b314ae4a8"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   9481
Md5:    1eab8da8cc1495a0221efadddd1a0bcc
Sha1:   4156c37b612d5fb99c6b061187a3cb0b314ae4a8
Sha256: 2fc5dbd9216f775cd305de80d17db2e6c74abcb1e30bfa7065c4d763a7345026
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffccf6ade-04f7-4d15-943c-bde343725d94.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
                                        
server: nginx
content-length: 8029
x-amzn-requestid: 2fc5c63d-5cef-42f4-a6d2-b55f51c57af6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y4Y0tHjGoAMFcFw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632cd4ea-73f2f78a2d1ca8fc666d2571;Sampled=0
x-amzn-remapped-date: Thu, 22 Sep 2022 21:34:34 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 5ur411n5hU7eWb68iExZCUrhpCybRyTBHCi72ra8dS2kd3UhW8sb1A==
via: 1.1 0aebf3fe433ff96e68d785fad4ea4c0e.cloudfront.net (CloudFront), 1.1 1481cc55c02c3a782ad420b6bac2cb32.cloudfront.net (CloudFront), 1.1 google
date: Thu, 22 Sep 2022 21:59:00 GMT
age: 44109
etag: "1d7f7b4cfdd7425213a21afdd1d5a5d8d11d0e54"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   8029
Md5:    02a682b4703bb9d6381c762726c05531
Sha1:   1d7f7b4cfdd7425213a21afdd1d5a5d8d11d0e54
Sha256: fb672de67420a239fe5d7e2588f640150ed29883fe2a46ded160385e3265004c
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F56c6b5fd-d351-45b8-9f62-d5052869881a.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
                                        
server: nginx
content-length: 10822
x-amzn-requestid: 0cec2f7d-e906-4f5f-baa7-5d8a1a7c6820
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y2P7bEeQoAMFhGQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632bf9e2-5bdf18be72eed24028034edb;Sampled=0
x-amzn-remapped-date: Thu, 22 Sep 2022 06:00:02 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: Pj5hSr5LtIWPRDYjHxp8-K8gVghjf8GlO-FnXDvxscJqdygfZH8hIA==
via: 1.1 c34da255183aa208dd1c722ff211f9b2.cloudfront.net (CloudFront), 1.1 1481cc55c02c3a782ad420b6bac2cb32.cloudfront.net (CloudFront), 1.1 google
date: Thu, 22 Sep 2022 19:36:01 GMT
age: 52688
etag: "dd94d525ad264856a0fdcb7a4b1faa2d68c3f68b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   10822
Md5:    948abf9bedd1bd67010284080ba06d01
Sha1:   dd94d525ad264856a0fdcb7a4b1faa2d68c3f68b
Sha256: 236639cc2279c6f269dd521796a087a40b43b252cb55faf3e4214cbdc8369a62
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb77ad616-c829-40b4-8b70-2be46252d64c.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
                                        
server: nginx
content-length: 10279
x-amzn-requestid: 2ff2c324-51c5-484d-b049-3eacbdc1024a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Yyj8THHdoAMF44g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632a804e-0f4da4ba2a84679b3fd297fc;Sampled=0
x-amzn-remapped-date: Wed, 21 Sep 2022 03:09:02 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: 6uqNnpll2kgC_0_t5e9yp0AgFAvprQq_GF_jgwj2sX2TE9S1l023Aw==
via: 1.1 c21a0d27ceec21e266c9f962d0349438.cloudfront.net (CloudFront), 1.1 989017835f43d594873bde5a7ee7fe5e.cloudfront.net (CloudFront), 1.1 google
date: Fri, 23 Sep 2022 03:58:47 GMT
age: 22522
etag: "60a83a1618ffae06e49ca3002bac1db9980dcfe8"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   10279
Md5:    8ea5f06ad31f0cedd2cb5c6df82f35f4
Sha1:   60a83a1618ffae06e49ca3002bac1db9980dcfe8
Sha256: 5f6a4cb92c016ef0f229b11d727e9680a15b10782b5bfe9e66ad9d100b458d8d
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0ea09a2e-db97-4846-b5c4-9bc0e69977bc.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         34.120.237.76
HTTP/2 200 OK
                                        
server: nginx
content-length: 13000
x-amzn-requestid: 7b2f1a90-cedc-403b-bdb0-f763b5bef824
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y2VOWGHXIAMFzXw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632c025b-74a08e472ef8b1227c0447e3;Sampled=0
x-amzn-remapped-date: Thu, 22 Sep 2022 06:36:11 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: l_CJpV9GPUzzbt8msOu-qQdwK9-vP5S-nHsgRPpwbue0Mf6FiBrEQA==
via: 1.1 a4fe306096165bb1e86e69365dc8fac2.cloudfront.net (CloudFront), 1.1 2ab6211e66998c8b58132661a7e3cade.cloudfront.net (CloudFront), 1.1 google
date: Thu, 22 Sep 2022 19:36:01 GMT
etag: "06f5f63e681d711bd68626805c5dd2b902ebf9cf"
content-type: image/jpeg
age: 52695
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   13000
Md5:    634db5bfe2b27e608c3f3518b0c44ebb
Sha1:   06f5f63e681d711bd68626805c5dd2b902ebf9cf
Sha256: 935d3442ed37fe78df5fe40fac87ca00466a3e19ef3c72a80dae17ffbcacd45d