Overview

URL 18c34ac2-fa7a-4b78-b7ff-ef204b07e192.id.repl.co/
IP34.149.204.188
ASNGOOGLE
Location United States
Report completed2022-09-26 19:48:33 UTC
StatusLoading report..
urlquery Alerts No alerts detected


Settings

UserAgentMozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Referer


Intrusion Detection Systems

Suricata /w Emerging Threats Pro  No alerts detected


Blocklists

OpenPhish
Scan Date Severity Indicator Comment
2022-09-24 2 18c34ac2-fa7a-4b78-b7ff-ef204b07e192.id.repl.co/ Banco Falabella
2022-09-24 2 18c34ac2-fa7a-4b78-b7ff-ef204b07e192.id.repl.co/ Banco Falabella
2022-09-24 2 18c34ac2-fa7a-4b78-b7ff-ef204b07e192.id.repl.co/ Banco Falabella
2022-09-24 2 18c34ac2-fa7a-4b78-b7ff-ef204b07e192.id.repl.co/ Banco Falabella
2022-09-24 2 18c34ac2-fa7a-4b78-b7ff-ef204b07e192.id.repl.co/ Banco Falabella
2022-09-24 2 18c34ac2-fa7a-4b78-b7ff-ef204b07e192.id.repl.co/ Banco Falabella
2022-09-24 2 18c34ac2-fa7a-4b78-b7ff-ef204b07e192.id.repl.co/ Banco Falabella
2022-09-24 2 18c34ac2-fa7a-4b78-b7ff-ef204b07e192.id.repl.co/ Banco Falabella
2022-09-24 2 18c34ac2-fa7a-4b78-b7ff-ef204b07e192.id.repl.co/ Banco Falabella
2022-09-24 2 18c34ac2-fa7a-4b78-b7ff-ef204b07e192.id.repl.co/ Banco Falabella
2022-09-24 2 18c34ac2-fa7a-4b78-b7ff-ef204b07e192.id.repl.co/ Banco Falabella
2022-09-24 2 18c34ac2-fa7a-4b78-b7ff-ef204b07e192.id.repl.co/ Banco Falabella
2022-09-24 2 18c34ac2-fa7a-4b78-b7ff-ef204b07e192.id.repl.co/ Banco Falabella
2022-09-24 2 18c34ac2-fa7a-4b78-b7ff-ef204b07e192.id.repl.co/ Banco Falabella
2022-09-24 2 18c34ac2-fa7a-4b78-b7ff-ef204b07e192.id.repl.co/ Banco Falabella
2022-09-24 2 18c34ac2-fa7a-4b78-b7ff-ef204b07e192.id.repl.co/ Banco Falabella
2022-09-24 2 18c34ac2-fa7a-4b78-b7ff-ef204b07e192.id.repl.co/ Banco Falabella
2022-09-24 2 18c34ac2-fa7a-4b78-b7ff-ef204b07e192.id.repl.co/ Banco Falabella
2022-09-24 2 18c34ac2-fa7a-4b78-b7ff-ef204b07e192.id.repl.co/ Banco Falabella
PhishTank  No alerts detected
Fortinet's Web Filter  No alerts detected
mnemonic secure dns  No alerts detected
Quad9 DNS  No alerts detected


Files

No files detected



Passive DNS (16)

Passive DNS Source Fully Qualifying Domain Name Rank First Seen Last Seen IP Comment
mnemonic passive DNS ocsp.godaddy.com (1) 698 2012-05-20 19:28:57 UTC 2022-09-26 04:29:02 UTC 192.124.249.23
mnemonic passive DNS r3.o.lencr.org (6) 344 2020-12-02 08:52:13 UTC 2022-09-26 04:35:11 UTC 23.36.77.32
mnemonic passive DNS content-signature-2.cdn.mozilla.net (1) 1152 2020-11-03 12:26:46 UTC 2022-09-26 04:26:56 UTC 143.204.55.110
mnemonic passive DNS contile.services.mozilla.com (1) 1114 2021-05-27 18:32:35 UTC 2022-09-26 04:28:07 UTC 34.117.237.239
mnemonic passive DNS push.services.mozilla.com (1) 2140 2015-09-03 10:29:36 UTC 2022-09-26 05:45:55 UTC 52.41.252.32
mnemonic passive DNS images.ctfassets.net (3) 4623 2018-01-04 15:32:22 UTC 2022-09-26 11:38:45 UTC 54.230.111.77
mnemonic passive DNS bfaf6gq7.staticmon.com (1) 849999 2021-09-03 11:13:24 UTC 2022-09-25 09:03:11 UTC 52.17.223.25
mnemonic passive DNS ocsp.pki.goog (4) 175 2017-06-14 07:23:31 UTC 2022-09-26 04:27:13 UTC 142.250.74.3
mnemonic passive DNS 18c34ac2-fa7a-4b78-b7ff-ef204b07e192.id.repl.co (19) 0 2022-09-24 19:48:51 UTC 2022-09-25 09:03:22 UTC 34.149.204.188 Unknown ranking
mnemonic passive DNS www.google.co.ve (1) 19466 2016-04-09 15:43:57 UTC 2022-09-26 13:00:46 UTC 142.250.74.35
mnemonic passive DNS firefox.settings.services.mozilla.com (2) 867 2020-05-28 17:26:30 UTC 2022-09-26 12:59:20 UTC 143.204.55.36
mnemonic passive DNS ocsp.digicert.com (3) 86 2012-05-21 07:02:23 UTC 2022-09-26 16:08:16 UTC 93.184.220.29
mnemonic passive DNS www.google.com (1) 7 2016-08-04 12:36:31 UTC 2022-09-26 14:57:55 UTC 142.250.74.164
mnemonic passive DNS www.bancofalabella.com.co (2) 554292 2012-11-28 17:08:14 UTC 2022-09-25 09:03:12 UTC 104.19.219.14
mnemonic passive DNS img-getpocket.cdn.mozilla.net (6) 1631 2017-09-01 03:40:57 UTC 2022-09-26 12:15:18 UTC 34.120.237.76
mnemonic passive DNS cdn.dynamicyield.com (1) 9074 2012-09-23 05:24:10 UTC 2022-09-26 16:37:50 UTC 143.204.55.117


Recent reports on same IP/ASN/Domain/Screenshot

Last 5 reports on IP: 34.149.204.188

Date UQ / IDS / BL URL IP
2022-11-30 09:49:02 +0000
6 - 0 - 7 cancelarsolicitudoutlook.canceel.repl.co/ 34.149.204.188
2022-11-30 08:28:41 +0000
0 - 0 - 2 zigzagdownrightclicks.htmlmicrosft.repl.co/ 34.149.204.188
2022-11-30 08:15:43 +0000
0 - 0 - 3 769d9a27-3fce-409e-9de7-2d84ae6bcd4d.id.repl.co/ 34.149.204.188
2022-11-30 08:12:24 +0000
0 - 0 - 4 cc1c84b8-2509-42ce-a011-8b2fa4158633.id.repl.co/ 34.149.204.188
2022-11-29 21:53:38 +0000
1 - 0 - 0 craftyhardtofindmedia.rgerbancolombia.repl.co/ 34.149.204.188

Last 5 reports on ASN: GOOGLE

Date UQ / IDS / BL URL IP
2022-11-30 15:08:58 +0000
0 - 0 - 1 alphaskyfx.com/ablative.php 34.102.136.180
2022-11-30 15:08:54 +0000
0 - 0 - 1 alphaskyfx.com/subtitled.php 34.102.136.180
2022-11-30 15:08:54 +0000
0 - 0 - 1 alphaskyfx.com/unsophisticated.php 34.102.136.180
2022-11-30 15:00:55 +0000
0 - 0 - 2 imagehouchens.blogspot.com/2022/03/cookworks- (...) 142.250.74.33
2022-11-30 14:56:03 +0000
1 - 0 - 0 console.cloud.google.com/logs/query;storageSc (...) 142.250.74.110

Last 2 reports on domain: 18c34ac2-fa7a-4b78-b7ff-ef204b07e192.id.repl.co

Date UQ / IDS / BL URL IP
2022-09-26 19:48:33 +0000
0 - 0 - 19 18c34ac2-fa7a-4b78-b7ff-ef204b07e192.id.repl.co/ 34.149.204.188
2022-09-25 09:03:20 +0000
0 - 0 - 19 18c34ac2-fa7a-4b78-b7ff-ef204b07e192.id.repl.co/ 34.149.204.188

Last 5 reports with similar screenshot

Date UQ / IDS / BL URL IP
2022-11-07 13:18:24 +0000
0 - 0 - 37 lightgreenselfassuredoutlier.fheea.repl.co/ 34.149.204.188
2022-11-07 11:47:22 +0000
0 - 0 - 37 lightgreenselfassuredoutlier.fheea.repl.co/rw (...) 34.149.204.188
2022-11-07 09:50:28 +0000
0 - 0 - 35 lightgreenselfassuredoutlier.fheea.repl.co/ 34.149.204.188
2022-11-07 08:19:27 +0000
0 - 0 - 35 lightgreenselfassuredoutlier.fheea.repl.co/rw (...) 34.149.204.188
2022-11-06 20:48:11 +0000
0 - 0 - 33 lightgreenselfassuredoutlier.fheea.repl.co/Rw (...) 34.149.204.188


JavaScript

Executed Scripts (4)


Executed Evals (0)


Executed Writes (0)



HTTP Transactions (53)


Request Response
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "4397E6B45B5822FBAB9B83ABE0B96EE70EFBA7CD2160B51936159865EDE5FDB1"
Last-Modified: Sun, 25 Sep 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10556
Expires: Mon, 26 Sep 2022 22:44:18 GMT
Date: Mon, 26 Sep 2022 19:48:22 GMT
Connection: keep-alive

                                        
                                            GET /v1/ HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.36
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Alert, Content-Type, Backoff, Content-Length, Retry-After
Cache-Control: max-age=3600
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Mon, 26 Sep 2022 19:15:19 GMT
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 6cb1d4b545e7beb4ead790454f4807c6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: Y3pVPjtXlvjZ2fBcl1oTePdXUGwj4KkWvc4jR-fwlJ2cYqQ52_VV1A==
Age: 1983


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size:   939
Md5:    1b3053fa528e28810f8a2cc9284cc921
Sha1:   cca9eb471d941881a6b9a1793aecb6c281908f6a
Sha256: a2427848ba35575dda8a82cf88f104978234c05389deebc3fc8279d9075eff45
                                        
                                            GET / HTTP/1.1 
Host: 18c34ac2-fa7a-4b78-b7ff-ef204b07e192.id.repl.co
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

                                         
                                         34.149.204.188
HTTP/1.1 308 Permanent Redirect
Content-Type: text/html; charset=utf-8
                                        
Location: https://18c34ac2-fa7a-4b78-b7ff-ef204b07e192.id.repl.co/
Replit-Cluster: global
Date: Mon, 26 Sep 2022 19:48:22 GMT
Content-Length: 92
Via: 1.1 google


--- Additional Info ---
Magic:  HTML document, ASCII text
Size:   92
Md5:    f7ed6436fe0a415f5718d3bc1a9732df
Sha1:   0f86f56f2d8675eaa60cd3709afb53ac869bed49
Sha256: f9e10e0e2dc3233ea7365959bc8781cd1fbae10ed4c005c27baf8f47ba363a08

Alerts:
  Blocklists:
    - openphish: Banco Falabella
                                        
                                            GET /chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain HTTP/1.1 
Host: content-signature-2.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.110
HTTP/2 200 OK
content-type: binary/octet-stream
                                        
content-length: 5348
last-modified: Sat, 10 Sep 2022 18:47:45 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Mon, 26 Sep 2022 04:35:16 GMT
etag: "6113f8408c59aebe188d6af273b90743"
x-cache: Hit from cloudfront
via: 1.1 e49f22f18c16784c0f42291e768d1daa.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: kgQtCaLIrNYB3yP3-NswzASt6wrSByJV8sjRj6CaQ16OG9VY2KZChA==
age: 54787
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PEM certificate\012- , ASCII text
Size:   5348
Md5:    6113f8408c59aebe188d6af273b90743
Sha1:   7398873bf00f99944eaa77ad3ebc0d43c23dba6b
Sha256: b6e0cc9ad68306208a160f3835fb8da76acc5a82d8fde1da5a98e1de1c11a770
                                        
                                            GET /v1/tiles HTTP/1.1 
Host: contile.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.117.237.239
HTTP/2 200 OK
content-type: application/json
                                        
server: nginx
date: Mon, 26 Sep 2022 19:48:23 GMT
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   12
Md5:    23e88fb7b99543fb33315b29b1fad9d6
Sha1:   a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
Sha256: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "561D20268ECC44329B33145C7668E15EE3B354CA83FF06BA6246E58304B101C4"
Last-Modified: Sat, 24 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10452
Expires: Mon, 26 Sep 2022 22:42:35 GMT
Date: Mon, 26 Sep 2022 19:48:23 GMT
Connection: keep-alive

                                        
                                            GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.36
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Date: Mon, 26 Sep 2022 19:10:46 GMT
Cache-Control: max-age=3600, max-age=3600
Expires: Mon, 26 Sep 2022 19:26:17 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 e49f22f18c16784c0f42291e768d1daa.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: sKZlW7QJL99d2ON2Go8XOozYLv0SyclmEKaehpC7o0ehuxbtY5LqRg==
Age: 2257


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size:   329
Md5:    0333b0655111aa68de771adfcc4db243
Sha1:   63f295a144ac87a7c8e23417626724eeca68a7eb
Sha256: 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 5590
Cache-Control: 'max-age=158059'
Date: Mon, 26 Sep 2022 19:48:23 GMT
Last-Modified: Mon, 26 Sep 2022 18:15:13 GMT
Server: ECS (ska/F6FE)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET / HTTP/1.1 
Host: 18c34ac2-fa7a-4b78-b7ff-ef204b07e192.id.repl.co
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

                                         
                                         34.149.204.188
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
                                        
date: Mon, 26 Sep 2022 19:48:23 GMT
expect-ct: max-age=2592000, report-uri="https://sentry.repl.it/api/10/security/?sentry_key=615192fd532445bfbbbe966cd7131791"
replit-cluster: global
strict-transport-security: max-age=5110616; includeSubDomains
content-length: 118153
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (35891)
Size:   118153
Md5:    506c5e2f9738ce565afbf36a115c840c
Sha1:   56b9195f4f29e4346e3e5ad3762c426da6c90e51
Sha256: 47cb306eded2cab614391cba7171e5df2e8163d3584c88e439b23c273e1bbc30

Alerts:
  Blocklists:
    - openphish: Banco Falabella
                                        
                                            GET /assets/fonts/password.ttf HTTP/1.1 
Host: 18c34ac2-fa7a-4b78-b7ff-ef204b07e192.id.repl.co
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://18c34ac2-fa7a-4b78-b7ff-ef204b07e192.id.repl.co/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         34.149.204.188
HTTP/2 200 OK
content-type: font/ttf
                                        
date: Mon, 26 Sep 2022 19:48:23 GMT
expect-ct: max-age=2592000, report-uri="https://sentry.repl.it/api/10/security/?sentry_key=615192fd532445bfbbbe966cd7131791"
replit-cluster: global
strict-transport-security: max-age=5110616; includeSubDomains
content-length: 127740
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  TrueType Font data, digitally signed, 20 tables, 1st "DSIG", 67 names, Unicode, type 1 string\012- data
Size:   127740
Md5:    0bf6c6d477f09bc6c4fb1c371f760b58
Sha1:   6caf2339fb3f4ceecae4481b8aab0418463133ae
Sha256: 5585d482c2eee6acbeca5fe3d9ffaad32b15c5b26995ee345b0208f557571155

Alerts:
  Blocklists:
    - openphish: Banco Falabella
                                        
                                            GET /Banco%20Falabella,%20Tarjeta%20CMR,%20Cuenta%20de%20Ahorros%20Costo%20$0_files/st HTTP/1.1 
Host: 18c34ac2-fa7a-4b78-b7ff-ef204b07e192.id.repl.co
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://18c34ac2-fa7a-4b78-b7ff-ef204b07e192.id.repl.co/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         34.149.204.188
HTTP/2 200 OK
content-type: text/plain; charset=utf-8
                                        
date: Mon, 26 Sep 2022 19:48:23 GMT
expect-ct: max-age=2592000, report-uri="https://sentry.repl.it/api/10/security/?sentry_key=615192fd532445bfbbbe966cd7131791"
replit-cluster: global
strict-transport-security: max-age=5110616; includeSubDomains
content-length: 8769
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (8769), with no line terminators
Size:   8769
Md5:    48df46be6c0290d0fee296682a783ede
Sha1:   7000d088636e1cb01afa10e8e953d5881d82bae0
Sha256: 81750a7182b313d6d90815a3d1a4c7e6926e5ad86034f8bdf9691855597bea22

Alerts:
  Blocklists:
    - openphish: Banco Falabella
                                        
                                            GET /Banco%20Falabella,%20Tarjeta%20CMR,%20Cuenta%20de%20Ahorros%20Costo%20$0_files/f(1).txt HTTP/1.1 
Host: 18c34ac2-fa7a-4b78-b7ff-ef204b07e192.id.repl.co
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://18c34ac2-fa7a-4b78-b7ff-ef204b07e192.id.repl.co/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         34.149.204.188
HTTP/2 200 OK
content-type: text/plain; charset=UTF-8
                                        
date: Mon, 26 Sep 2022 19:48:23 GMT
expect-ct: max-age=2592000, report-uri="https://sentry.repl.it/api/10/security/?sentry_key=615192fd532445bfbbbe966cd7131791"
replit-cluster: global
strict-transport-security: max-age=5110616; includeSubDomains
content-length: 2315
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (2315), with no line terminators
Size:   2315
Md5:    faedd52d99168ebbb4f2be34450197d1
Sha1:   a91a0cf91f22c49fb177a757407edeb2f2ad103b
Sha256: e3f8b5e72903834f16f2dea272bda37b2845eeb125475bbadc13cff764c4cff7

Alerts:
  Blocklists:
    - openphish: Banco Falabella
                                        
                                            GET /Banco%20Falabella,%20Tarjeta%20CMR,%20Cuenta%20de%20Ahorros%20Costo%20$0_files/styles.5fed61739512ab770c56.css HTTP/1.1 
Host: 18c34ac2-fa7a-4b78-b7ff-ef204b07e192.id.repl.co
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://18c34ac2-fa7a-4b78-b7ff-ef204b07e192.id.repl.co/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         34.149.204.188
HTTP/2 200 OK
content-type: text/css; charset=UTF-8
                                        
date: Mon, 26 Sep 2022 19:48:23 GMT
expect-ct: max-age=2592000, report-uri="https://sentry.repl.it/api/10/security/?sentry_key=615192fd532445bfbbbe966cd7131791"
replit-cluster: global
strict-transport-security: max-age=5110616; includeSubDomains
content-length: 166444
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (65407)
Size:   166444
Md5:    ddabf9edc2826067252f1579bee38eda
Sha1:   01e6db5d24f63e74c82800567d0d578c958d6b7c
Sha256: d75f2ffc1d0ba6dc3a4e1111a01feb6c96a00558c7330e91c0dd3ccdec08d59e

Alerts:
  Blocklists:
    - openphish: Banco Falabella
                                        
                                            GET /Banco%20Falabella,%20Tarjeta%20CMR,%20Cuenta%20de%20Ahorros%20Costo%20$0_files/bfaf6gq7.js.descarga HTTP/1.1 
Host: 18c34ac2-fa7a-4b78-b7ff-ef204b07e192.id.repl.co
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://18c34ac2-fa7a-4b78-b7ff-ef204b07e192.id.repl.co/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         34.149.204.188
HTTP/2 200 OK
content-type: text/plain; charset=utf-8
                                        
date: Mon, 26 Sep 2022 19:48:23 GMT
expect-ct: max-age=2592000, report-uri="https://sentry.repl.it/api/10/security/?sentry_key=615192fd532445bfbbbe966cd7131791"
replit-cluster: global
strict-transport-security: max-age=5110616; includeSubDomains
content-length: 16284
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (16284), with no line terminators
Size:   16284
Md5:    407a14fa5cd19acb7bead7f2e1104d63
Sha1:   dfdb2303ad58d0a640a8cbc5231ec2c2833b3964
Sha256: ffd9a0c0f246e33d6485c6b3c0705166ff97a73c27e4c790cf0ed6c86c4e05ba

Alerts:
  Blocklists:
    - openphish: Banco Falabella
                                        
                                            GET /Banco%20Falabella,%20Tarjeta%20CMR,%20Cuenta%20de%20Ahorros%20Costo%20$0_files/logo.svg HTTP/1.1 
Host: 18c34ac2-fa7a-4b78-b7ff-ef204b07e192.id.repl.co
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://18c34ac2-fa7a-4b78-b7ff-ef204b07e192.id.repl.co/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         34.149.204.188
HTTP/2 200 OK
content-type: image/svg+xml
                                        
date: Mon, 26 Sep 2022 19:48:23 GMT
expect-ct: max-age=2592000, report-uri="https://sentry.repl.it/api/10/security/?sentry_key=615192fd532445bfbbbe966cd7131791"
replit-cluster: global
strict-transport-security: max-age=5110616; includeSubDomains
content-length: 14134
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (14134), with no line terminators
Size:   14134
Md5:    ae57d4ed522e81642dfd5da04223e8de
Sha1:   8e602f5be54860ce3905996f056ca7c3ad3a0108
Sha256: d6e474f99f171f367379f5e9e528c7f6a1c52bd2b034ac04990f640c996b64b3

Alerts:
  Blocklists:
    - openphish: Banco Falabella
                                        
                                            GET /Banco%20Falabella,%20Tarjeta%20CMR,%20Cuenta%20de%20Ahorros%20Costo%20$0_files/ic-prev-slide.svg HTTP/1.1 
Host: 18c34ac2-fa7a-4b78-b7ff-ef204b07e192.id.repl.co
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://18c34ac2-fa7a-4b78-b7ff-ef204b07e192.id.repl.co/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         34.149.204.188
HTTP/2 200 OK
content-type: image/svg+xml
                                        
date: Mon, 26 Sep 2022 19:48:23 GMT
expect-ct: max-age=2592000, report-uri="https://sentry.repl.it/api/10/security/?sentry_key=615192fd532445bfbbbe966cd7131791"
replit-cluster: global
strict-transport-security: max-age=5110616; includeSubDomains
content-length: 1215
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text
Size:   1215
Md5:    939e8121c2ba4bdf0b09641b2c130c38
Sha1:   33f1c398054de67474bb48bc0b24ac2718dd5393
Sha256: bde84a8c07da51bb491e6cdfd6ca6db2876f2096e42855f3c5790d929252e148

Alerts:
  Blocklists:
    - openphish: Banco Falabella
                                        
                                            GET /Banco%20Falabella,%20Tarjeta%20CMR,%20Cuenta%20de%20Ahorros%20Costo%20$0_files/ic-next-slide.svg HTTP/1.1 
Host: 18c34ac2-fa7a-4b78-b7ff-ef204b07e192.id.repl.co
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://18c34ac2-fa7a-4b78-b7ff-ef204b07e192.id.repl.co/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         34.149.204.188
HTTP/2 200 OK
content-type: image/svg+xml
                                        
date: Mon, 26 Sep 2022 19:48:23 GMT
expect-ct: max-age=2592000, report-uri="https://sentry.repl.it/api/10/security/?sentry_key=615192fd532445bfbbbe966cd7131791"
replit-cluster: global
strict-transport-security: max-age=5110616; includeSubDomains
content-length: 1314
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text
Size:   1314
Md5:    a2a8f31b5ed6aed564fe86da601fa7cd
Sha1:   33ca8eed97e9d6aa782a50e4313a051fac2a259f
Sha256: 32ee1cf6e5b75b35f10347c3e6908d33ab484b94464d69e36e95e24286723594

Alerts:
  Blocklists:
    - openphish: Banco Falabella
                                        
                                            GET / HTTP/1.1 
Host: push.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: zh6cuvDx0kY5hT7QCZFoPA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

                                         
                                         52.41.252.32
HTTP/1.1 101 Switching Protocols
                                        
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: kq9X6HmSlnv+NImoYR1eVRZPjC4=

                                        
                                            GET /ex6ts2p2j0ib/BWQZAdt5dgnRSsY54tEst/a4f33f3247182ff00a70345ddfffb09d/Banner-deskt-Credito-Consumo.jpg?fm=webp&q=70 HTTP/1.1 
Host: images.ctfassets.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://18c34ac2-fa7a-4b78-b7ff-ef204b07e192.id.repl.co/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         54.230.111.77
HTTP/2 200 OK
content-type: image/webp
                                        
content-length: 28456
etag: "65a26c4b62e34e03d8a2b8109d0e7993"
last-modified: Tue, 20 Sep 2022 23:45:21 GMT
date: Mon, 26 Sep 2022 03:55:59 GMT
cache-control: max-age=31536000
server: Contentful Images API
access-control-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 b053873243f91b1bb6dc406ce0c67db4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: obY1eM8kp_TL8nYnEgmMksEQ5ikpwRI9SshqV4NgWjmpedioTwYFeQ==
age: 57145
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image, VP8 encoding, 1812x643, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size:   28456
Md5:    65a26c4b62e34e03d8a2b8109d0e7993
Sha1:   706b443f70ba83552f6ad59dbd04eb36acad415b
Sha256: 52e85802c5f8d9f799ed84b0e2e820678a4bf0b4961ba3dde4b518bce8d0a513
                                        
                                            GET /ex6ts2p2j0ib/wYMSzUZKwWO15IHmhvwmN/f17e4b63897070b96bbebc126690a82f/banner-carrousel-principal2-mobile.jpg?fm=webp&q=70 HTTP/1.1 
Host: images.ctfassets.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://18c34ac2-fa7a-4b78-b7ff-ef204b07e192.id.repl.co/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         54.230.111.77
HTTP/2 200 OK
content-type: image/webp
                                        
content-length: 9892
last-modified: Mon, 05 Sep 2022 12:06:49 GMT
server: Contentful Images API
access-control-allow-origin: *
date: Mon, 26 Sep 2022 19:48:24 GMT
cache-control: max-age=31536000
etag: "8210a843b31d81f738b4d46a4deff14f"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 b053873243f91b1bb6dc406ce0c67db4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: kKgHhuxeOLYbTMudm30hdddWv-svL0U5MyWKdizl6HVtInPjBsm0AA==
age: 72955
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image, VP8 encoding, 736x414, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size:   9892
Md5:    8210a843b31d81f738b4d46a4deff14f
Sha1:   07c48c549b167b030301bc5bb204908ee2f36d6b
Sha256: 240c72bbe684ecf46e9d12b700657497d5bd31f600159661542b2e7768649b9f
                                        
                                            GET /ex6ts2p2j0ib/4dF9AevtXDlSkur99Nz33Y/b0ec1104149ceaa2dd48f72ab59163a8/banner-home-desk-entretenimiento.jpg?fm=webp&q=70 HTTP/1.1 
Host: images.ctfassets.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://18c34ac2-fa7a-4b78-b7ff-ef204b07e192.id.repl.co/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         54.230.111.77
HTTP/2 200 OK
content-type: image/webp
                                        
content-length: 48776
last-modified: Mon, 12 Sep 2022 14:51:35 GMT
server: Contentful Images API
access-control-allow-origin: *
date: Mon, 26 Sep 2022 19:48:24 GMT
cache-control: max-age=31536000
etag: "a2f7837e098721238f81c03c5249a2f4"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 b053873243f91b1bb6dc406ce0c67db4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: Il4ppeF_uejWbiiaSVh9m36cw8nL5FiHooyOkhi6DX4NP4pNDPqpcQ==
age: 57145
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image, VP8 encoding, 1812x643, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size:   48776
Md5:    a2f7837e098721238f81c03c5249a2f4
Sha1:   783a2bf78a479b6cd1c7eccacf0e2e8669630a9b
Sha256: 714df50f467dab0dae6a632a1cef3c2218f876dbc5491f5c7ca8af6944ccaa9a
                                        
                                            GET /Banco%20Falabella,%20Tarjeta%20CMR,%20Cuenta%20de%20Ahorros%20Costo%20$0_files/ic-select.b33b90cf591d757f1509.svg HTTP/1.1 
Host: 18c34ac2-fa7a-4b78-b7ff-ef204b07e192.id.repl.co
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://18c34ac2-fa7a-4b78-b7ff-ef204b07e192.id.repl.co/Banco%20Falabella,%20Tarjeta%20CMR,%20Cuenta%20de%20Ahorros%20Costo%20$0_files/styles.5fed61739512ab770c56.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         34.149.204.188
HTTP/2 404 Not Found
content-type: text/html; charset=UTF-8
                                        
date: Mon, 26 Sep 2022 19:48:24 GMT
expect-ct: max-age=2592000, report-uri="https://sentry.repl.it/api/10/security/?sentry_key=615192fd532445bfbbbe966cd7131791"
replit-cluster: global
strict-transport-security: max-age=5110615; includeSubDomains
content-length: 646
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size:   646
Md5:    befb1d85a4c4ad344523e80289d4448b
Sha1:   3ec17fe9d6e278de33b2ab7c90915a31ece53d89
Sha256: 98f2a4af4c917f534e96ef047e56347c2dd4fbaf5db0dc805e9ac949cbc608aa

Alerts:
  Blocklists:
    - openphish: Banco Falabella
                                        
                                            GET /IC-ActivaTarjeta.webp HTTP/1.1 
Host: 18c34ac2-fa7a-4b78-b7ff-ef204b07e192.id.repl.co
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://18c34ac2-fa7a-4b78-b7ff-ef204b07e192.id.repl.co/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         34.149.204.188
HTTP/2 200 OK
content-type: image/webp
                                        
date: Mon, 26 Sep 2022 19:48:24 GMT
expect-ct: max-age=2592000, report-uri="https://sentry.repl.it/api/10/security/?sentry_key=615192fd532445bfbbbe966cd7131791"
replit-cluster: global
strict-transport-security: max-age=5110615; includeSubDomains
content-length: 3998
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image, VP8 encoding, 388x260, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size:   3998
Md5:    37cbf80c9c6f834a664d08c45e561c24
Sha1:   36f5d4ca31596dd3bcd6dc781f21e2c7a322105c
Sha256: 711113c1e1896a7fbe3a3278b196f707c1e061c3c0fe791b5cba0167a7cdaeea

Alerts:
  Blocklists:
    - openphish: Banco Falabella
                                        
                                            GET /Banco%20Falabella,%20Tarjeta%20CMR,%20Cuenta%20de%20Ahorros%20Costo%20$0_files/pfbeausanspro-bold-webfont.4870f99dd015ac639421.woff2 HTTP/1.1 
Host: 18c34ac2-fa7a-4b78-b7ff-ef204b07e192.id.repl.co
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://18c34ac2-fa7a-4b78-b7ff-ef204b07e192.id.repl.co/Banco%20Falabella,%20Tarjeta%20CMR,%20Cuenta%20de%20Ahorros%20Costo%20$0_files/styles.5fed61739512ab770c56.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         34.149.204.188
HTTP/2 200 OK
content-type: font/woff2
                                        
date: Mon, 26 Sep 2022 19:48:24 GMT
expect-ct: max-age=2592000, report-uri="https://sentry.repl.it/api/10/security/?sentry_key=615192fd532445bfbbbe966cd7131791"
replit-cluster: global
strict-transport-security: max-age=5110615; includeSubDomains
content-length: 25236
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 25236, version 3.0\012- data
Size:   25236
Md5:    4870f99dd015ac6394213e096f02a5b7
Sha1:   7468af0258d6b0668563d9d952563f8a262b2881
Sha256: a502c4b365f644f6eb498cd67d459c11dbab6d5b024f58b86218ecee7258e5c7

Alerts:
  Blocklists:
    - openphish: Banco Falabella
                                        
                                            GET /Banco%20Falabella,%20Tarjeta%20CMR,%20Cuenta%20de%20Ahorros%20Costo%20$0_files/pfbeausanspro-reg-webfont.be8262f6f93a8b345acd.woff2 HTTP/1.1 
Host: 18c34ac2-fa7a-4b78-b7ff-ef204b07e192.id.repl.co
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://18c34ac2-fa7a-4b78-b7ff-ef204b07e192.id.repl.co/Banco%20Falabella,%20Tarjeta%20CMR,%20Cuenta%20de%20Ahorros%20Costo%20$0_files/styles.5fed61739512ab770c56.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         34.149.204.188
HTTP/2 200 OK
content-type: font/woff2
                                        
date: Mon, 26 Sep 2022 19:48:24 GMT
expect-ct: max-age=2592000, report-uri="https://sentry.repl.it/api/10/security/?sentry_key=615192fd532445bfbbbe966cd7131791"
replit-cluster: global
strict-transport-security: max-age=5110615; includeSubDomains
content-length: 25216
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 25216, version 3.0\012- data
Size:   25216
Md5:    be8262f6f93a8b345acd8d4c104eb0cb
Sha1:   78ff6990a20ce88fc324e1b175fa0cc2a5d6cf47
Sha256: cf7de9e7a9d927da32a7c521e6a78e574468867277676591bdf6d0cf38a0dac7

Alerts:
  Blocklists:
    - openphish: Banco Falabella
                                        
                                            GET /ic-whatsapp-logo.3865b18c3f6fb79ecee1.svg HTTP/1.1 
Host: 18c34ac2-fa7a-4b78-b7ff-ef204b07e192.id.repl.co
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://18c34ac2-fa7a-4b78-b7ff-ef204b07e192.id.repl.co/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         34.149.204.188
HTTP/2 200 OK
content-type: image/svg+xml
                                        
date: Mon, 26 Sep 2022 19:48:24 GMT
expect-ct: max-age=2592000, report-uri="https://sentry.repl.it/api/10/security/?sentry_key=615192fd532445bfbbbe966cd7131791"
replit-cluster: global
strict-transport-security: max-age=5110615; includeSubDomains
content-length: 3901
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text
Size:   3901
Md5:    3865b18c3f6fb79ecee1f4d2a6e4c50b
Sha1:   fec3076259104fa79b8ecd9e74b48f9a7ebc6f97
Sha256: a9cb2f9cbcfb2fb1337b91afe317f9022044103a33eaa28d0bff8749c63b7321

Alerts:
  Blocklists:
    - openphish: Banco Falabella
                                        
                                            GET /Banco%20Falabella,%20Tarjeta%20CMR,%20Cuenta%20de%20Ahorros%20Costo%20$0_files/pfbeausanspro-thin-webfont.78b53d9b7ecdf6e3ae35.woff2 HTTP/1.1 
Host: 18c34ac2-fa7a-4b78-b7ff-ef204b07e192.id.repl.co
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://18c34ac2-fa7a-4b78-b7ff-ef204b07e192.id.repl.co/Banco%20Falabella,%20Tarjeta%20CMR,%20Cuenta%20de%20Ahorros%20Costo%20$0_files/styles.5fed61739512ab770c56.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         34.149.204.188
HTTP/2 200 OK
content-type: font/woff2
                                        
date: Mon, 26 Sep 2022 19:48:24 GMT
expect-ct: max-age=2592000, report-uri="https://sentry.repl.it/api/10/security/?sentry_key=615192fd532445bfbbbe966cd7131791"
replit-cluster: global
strict-transport-security: max-age=5110615; includeSubDomains
content-length: 24492
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 24492, version 3.0\012- data
Size:   24492
Md5:    78b53d9b7ecdf6e3ae359adcca858279
Sha1:   cc871f60ea83660ae164636bc69d190ccf7dec48
Sha256: ba8806694863df8a5f69887588ade5670433c22271ed26a7fbc29b09dc143d63

Alerts:
  Blocklists:
    - openphish: Banco Falabella
                                        
                                            GET /IC-PSE.webp HTTP/1.1 
Host: 18c34ac2-fa7a-4b78-b7ff-ef204b07e192.id.repl.co
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://18c34ac2-fa7a-4b78-b7ff-ef204b07e192.id.repl.co/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         34.149.204.188
HTTP/2 200 OK
content-type: image/webp
                                        
date: Mon, 26 Sep 2022 19:48:24 GMT
expect-ct: max-age=2592000, report-uri="https://sentry.repl.it/api/10/security/?sentry_key=615192fd532445bfbbbe966cd7131791"
replit-cluster: global
strict-transport-security: max-age=5110615; includeSubDomains
content-length: 3784
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image, VP8 encoding, 388x260, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size:   3784
Md5:    dcddd2ed86d1a29bbd3f7dd3e6de8770
Sha1:   005e2a66003b5c8a45677ad8459011d806194bff
Sha256: 4fd50100f827bf84e508d8cf13b836eb5529582e3ffc6c5f7f4d30eb5e7e6226

Alerts:
  Blocklists:
    - openphish: Banco Falabella
                                        
                                            GET /IC-DescargaApp.webp HTTP/1.1 
Host: 18c34ac2-fa7a-4b78-b7ff-ef204b07e192.id.repl.co
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://18c34ac2-fa7a-4b78-b7ff-ef204b07e192.id.repl.co/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         34.149.204.188
HTTP/2 200 OK
content-type: image/webp
                                        
date: Mon, 26 Sep 2022 19:48:24 GMT
expect-ct: max-age=2592000, report-uri="https://sentry.repl.it/api/10/security/?sentry_key=615192fd532445bfbbbe966cd7131791"
replit-cluster: global
strict-transport-security: max-age=5110615; includeSubDomains
content-length: 4662
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image, VP8 encoding, 388x260, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size:   4662
Md5:    611f98736cecaf0222fb5a67a9c02690
Sha1:   a1f9cdafdd1d861fd682cfffeb9b3f1d894a1674
Sha256: d359998ad4fe10466d7819ce15d4f76a91cd277b8576ade68f0c2f65e73c7af4

Alerts:
  Blocklists:
    - openphish: Banco Falabella
                                        
                                            GET /AON_Canales_App.webp HTTP/1.1 
Host: 18c34ac2-fa7a-4b78-b7ff-ef204b07e192.id.repl.co
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://18c34ac2-fa7a-4b78-b7ff-ef204b07e192.id.repl.co/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         34.149.204.188
HTTP/2 200 OK
content-type: image/webp
                                        
date: Mon, 26 Sep 2022 19:48:24 GMT
expect-ct: max-age=2592000, report-uri="https://sentry.repl.it/api/10/security/?sentry_key=615192fd532445bfbbbe966cd7131791"
replit-cluster: global
strict-transport-security: max-age=5110615; includeSubDomains
content-length: 23152
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image\012- data
Size:   23152
Md5:    f85ce62959a04df1f398e14440eec68f
Sha1:   19223cbe624226a00d17273c02073cbe7d7a12e2
Sha256: 6e9e0ccf447a7979ab875346da5464b112b157517864745d153b329b76eb9283

Alerts:
  Blocklists:
    - openphish: Banco Falabella
                                        
                                            POST / HTTP/1.1 
Host: ocsp.godaddy.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 76
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         192.124.249.23
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: Sucuri/Cloudproxy
Date: Mon, 26 Sep 2022 19:48:24 GMT
Content-Length: 1778
Connection: keep-alive
X-Sucuri-ID: 19023
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Mon, 26 Sep 2022 16:36:44 GMT
Expires: Tue, 27 Sep 2022 16:36:44 GMT
ETag: "fece3ad9a6dc2c8060c54a0c8046b8402d28354d"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"


--- Additional Info ---
Magic:  data
Size:   1778
Md5:    8ac5313e42d256466a5f9ca086305391
Sha1:   fece3ad9a6dc2c8060c54a0c8046b8402d28354d
Sha256: d3e7f1f2b55db148884280b7eb757bccd364e8211ea2b0edebe58804d3bb7841
                                        
                                            POST /tun/bfaf6gq7/input/ HTTP/1.1 
Host: bfaf6gq7.staticmon.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: text/plain
Content-Length: 228
Origin: https://18c34ac2-fa7a-4b78-b7ff-ef204b07e192.id.repl.co
Connection: keep-alive
Referer: https://18c34ac2-fa7a-4b78-b7ff-ef204b07e192.id.repl.co/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         52.17.223.25
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Server: nginx/1.19.7
Date: Mon, 26 Sep 2022 19:48:24 GMT
Content-Length: 16
Connection: keep-alive
Allow: POST, OPTIONS
X-Frame-Options: DENY
Vary: Cookie
Strict-Transport-Security: max-age=60; includeSubDomains; preload
X-XSS-Protection: 1; mode=block
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS, HEAD
Access-Control-Allow-Headers: Authorization, Origin, X-Requested-With, Content-Type, Accept


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   16
Md5:    7363e85fe9edee6f053a4b319588c086
Sha1:   a15e2127145548437173fc17f3e980e3f3dee2d0
Sha256: c955e57777ec0d73639dca6748560d00aa5eb8e12f13ebb2ed9656add3908f97
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Mon, 26 Sep 2022 19:48:24 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Mon, 26 Sep 2022 19:48:24 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /pagead/1p-user-list/991630305/?random=1650924402590&cv=9&fst=1650924000000&num=1&bg=ffffff&guid=ON&u_h=800&u_w=1280&u_ah=760&u_aw=1280&u_cd=24&u_his=5&u_tz=-300&u_java=false&u_nplug=5&u_nmime=2&gtm=2wg4k0&sendb=1&frm=0&url=https%3A%2F%2Fwww.bancofalabella.com.co%2F&tiba=Banco%20Falabella%2C%20Tarjeta%20CMR%2C%20Cuenta%20de%20Ahorros%20Costo%20%240&async=1&fmt=3&is_vtc=1&random=3375799888&resp=GooglemKTybQhCsO&rmt_tld=1&ipr=y HTTP/1.1 
Host: www.google.co.ve
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://18c34ac2-fa7a-4b78-b7ff-ef204b07e192.id.repl.co/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.35
HTTP/2 200 OK
content-type: image/gif
                                        
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Mon, 26 Sep 2022 19:48:24 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   42
Md5:    d89746888da2d9510b64a9f031eaecd5
Sha1:   d5fceb6532643d0d84ffe09c40c481ecdf59e15a
Sha256: ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
                                        
                                            GET /pagead/1p-user-list/991630305/?random=1650924402590&cv=9&fst=1650924000000&num=1&bg=ffffff&guid=ON&u_h=800&u_w=1280&u_ah=760&u_aw=1280&u_cd=24&u_his=5&u_tz=-300&u_java=false&u_nplug=5&u_nmime=2&gtm=2wg4k0&sendb=1&frm=0&url=https%3A%2F%2Fwww.bancofalabella.com.co%2F&tiba=Banco%20Falabella%2C%20Tarjeta%20CMR%2C%20Cuenta%20de%20Ahorros%20Costo%20%240&async=1&fmt=3&is_vtc=1&random=3375799888&resp=GooglemKTybQhCsO&rmt_tld=0&ipr=y HTTP/1.1 
Host: www.google.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://18c34ac2-fa7a-4b78-b7ff-ef204b07e192.id.repl.co/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.164
HTTP/2 200 OK
content-type: image/gif
                                        
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Mon, 26 Sep 2022 19:48:24 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   42
Md5:    d89746888da2d9510b64a9f031eaecd5
Sha1:   d5fceb6532643d0d84ffe09c40c481ecdf59e15a
Sha256: ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Mon, 26 Sep 2022 19:48:24 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Mon, 26 Sep 2022 19:48:24 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Cache-Control: 'max-age=158059'
Date: Mon, 26 Sep 2022 19:48:24 GMT
Server: ECS (amb/6B9B)
Content-Length: 279

                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Cache-Control: 'max-age=158059'
Date: Mon, 26 Sep 2022 19:48:24 GMT
Server: ECS (amb/6BB5)
Content-Length: 279

                                        
                                            GET /apple-touch-icon.png HTTP/1.1 
Host: www.bancofalabella.com.co
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://18c34ac2-fa7a-4b78-b7ff-ef204b07e192.id.repl.co/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         104.19.219.14
HTTP/2 200 OK
content-type: image/webp
                                        
date: Mon, 26 Sep 2022 19:48:24 GMT
content-length: 3430
cache-control: max-age=315360000
cf-bgj: imgq:100,h2pri
cf-polished: origFmt=png, origSize=6089
content-disposition: inline; filename="apple-touch-icon.webp"
content-security-policy: frame-ancestors 'self'
etag: "63090183-17c9"
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Fri, 26 Aug 2022 17:23:15 GMT
referrer-policy: no-referrer
strict-transport-security: max-age=15552000; includeSubDomains
vary: Accept
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
cf-cache-status: HIT
age: 170970
accept-ranges: bytes
set-cookie: __cf_bm=y4XdpRLphWkJQy66da6K2dcQTKIfPRNAcQrG1QWLL5Y-1664221704-0-AY1+m/+0fcbLq4GTE7MJUZzL1B+YnkM8oSkC4zRgoeDke2839puVzNfK12EUQ6OaBE2BQtpLmnxwnd/FGqL+4BXzD8bAlrFNllFTp/mFQlzv; path=/; expires=Mon, 26-Sep-22 20:18:24 GMT; domain=.bancofalabella.com.co; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 750e84579b89b4eb-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image\012- data
Size:   3430
Md5:    2f66a5b5db9d5ab699049a98d03313df
Sha1:   e1380e55af124bccab2e7873e10611cf80ddd6b7
Sha256: 9a033b60bbe541894b47aaf8bd0efb6e6e4b5a579e2edee43ff35eaab22a10f0
                                        
                                            GET /assets/favicons/android-chrome-256x256.png HTTP/1.1 
Host: www.bancofalabella.com.co
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://18c34ac2-fa7a-4b78-b7ff-ef204b07e192.id.repl.co/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         104.19.219.14
HTTP/2 200 OK
content-type: image/webp
                                        
date: Mon, 26 Sep 2022 19:48:24 GMT
content-length: 10110
cache-control: max-age=315360000
cf-bgj: imgq:100,h2pri
cf-polished: origFmt=png, origSize=15826
content-disposition: inline; filename="android-chrome-256x256.webp"
content-security-policy: frame-ancestors 'self'
etag: "63090183-3d79"
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Fri, 26 Aug 2022 17:23:15 GMT
referrer-policy: no-referrer
strict-transport-security: max-age=15552000; includeSubDomains
vary: Accept
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
cf-cache-status: HIT
age: 170970
accept-ranges: bytes
set-cookie: __cf_bm=1ql4KUbIvC9mIt.lfozh0CDeJaChxSUXKzu.TX6Q5Ak-1664221704-0-AYboeAzPI2miBFteDGAG1ALC30NioHjrjTMRPAZMpi4YOmcFBBaTTt+jmPxdUwmnDbw07HVCwRDwTzbqzKw2/QPkrdzjUdHnyPFhxvXFkqe5; path=/; expires=Mon, 26-Sep-22 20:18:24 GMT; domain=.bancofalabella.com.co; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 750e8457abb4b4eb-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image\012- data
Size:   10110
Md5:    436d8de32f634cd202a6fed9ef0bbd7d
Sha1:   4c10d28530ec54a5ed230add399ee2fbbfb96292
Sha256: a629fab391a920340b267d4c73df5ea8e38665e47658ded4a897d97e23210f45
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "0E47D6E33FE9F6E588D308B62FA059C960A000C56651713E30BAF6CD09B7DE41"
Last-Modified: Sun, 25 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13373
Expires: Mon, 26 Sep 2022 23:31:18 GMT
Date: Mon, 26 Sep 2022 19:48:25 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "0E47D6E33FE9F6E588D308B62FA059C960A000C56651713E30BAF6CD09B7DE41"
Last-Modified: Sun, 25 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13373
Expires: Mon, 26 Sep 2022 23:31:18 GMT
Date: Mon, 26 Sep 2022 19:48:25 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "0E47D6E33FE9F6E588D308B62FA059C960A000C56651713E30BAF6CD09B7DE41"
Last-Modified: Sun, 25 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13373
Expires: Mon, 26 Sep 2022 23:31:18 GMT
Date: Mon, 26 Sep 2022 19:48:25 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "0E47D6E33FE9F6E588D308B62FA059C960A000C56651713E30BAF6CD09B7DE41"
Last-Modified: Sun, 25 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13373
Expires: Mon, 26 Sep 2022 23:31:18 GMT
Date: Mon, 26 Sep 2022 19:48:25 GMT
Connection: keep-alive

                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9723d426-a6ee-4860-8067-0b8d98143233.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 8637
x-amzn-requestid: 07dc23e0-000f-4f6c-8d2b-0e65d88be270
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZCSvvEenoAMFr0Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6330cb31-520803124760abc216152d7b;Sampled=0
x-amzn-remapped-date: Sun, 25 Sep 2022 21:42:09 GMT
x-amz-cf-pop: SEA19-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: mToVKJcSAtJB1AOuQ-Y9o_EZzyhUuZJivVa3DLql5FwzK4NC82kh5Q==
via: 1.1 27a84054de24e45f952ea4056a821764.cloudfront.net (CloudFront), 1.1 0d4ebcaa87ba94709def0eaac9371e5a.cloudfront.net (CloudFront), 1.1 google
date: Sun, 25 Sep 2022 22:06:17 GMT
age: 78128
etag: "e49306a3713cb724be024a4ddb5e90645718a718"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   8637
Md5:    d02ede0c964f3346fd53ae2950bf2a62
Sha1:   e49306a3713cb724be024a4ddb5e90645718a718
Sha256: c0e653d89656016c55aca9b198b9191620f1ae9a3c45742a90744bd74c4f9505
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1deb918e-bcb0-4629-aaa7-0ae0322969be.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 12826
x-amzn-requestid: f075cf62-acfc-4bc1-be14-7c3dafb7aaed
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YfVRNFP-oAMFgrA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6322cf3a-184b678042d64ac9266b1128;Sampled=0
x-amzn-remapped-date: Thu, 15 Sep 2022 07:07:38 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: W6ZD1652Yn1xqZG7ehDcirlYoG8Hcsrdj11Fzfgj7zb-OiU8xHj1gw==
via: 1.1 7f5e0d3b9ea85d0d75063a66c0ebc840.cloudfront.net (CloudFront), 1.1 91356d2137f5a7345e93da4516c49ec4.cloudfront.net (CloudFront), 1.1 google
date: Sun, 25 Sep 2022 21:37:19 GMT
age: 79866
etag: "b6d56333d7f1ea7ddc8838d84de498ff913c5464"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3 DIY-Thermocam raw data\012- (Lepton 2.x), scale 3-257, spot sensor temperature 0.000000, unit celsius, color scheme 0, show scale bar, calibration: offset 0.000000, slope 241253891388563521536.000000\012- data
Size:   12826
Md5:    b3a72e81317074689a71dac7059e4b6a
Sha1:   b6d56333d7f1ea7ddc8838d84de498ff913c5464
Sha256: e665a8821b5e7b2e78787647a08d629bf70cbf4cbfee2057c8601cf0565154a1
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff3689ec8-63b4-42ae-b7d5-a9b4b63af788.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 5980
x-amzn-requestid: fbf0c390-da24-49e2-8492-43e29e5d4bb3
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZCTHCGJVoAMFgxA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6330cbc6-1f9b1b7d63467c58702e6d7e;Sampled=0
x-amzn-remapped-date: Sun, 25 Sep 2022 21:44:38 GMT
x-amz-cf-pop: SEA19-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: pt7rJi8EIQFBk0gHQZ1WnjvThPba86XZCGFs83l1ZW2dj-_6bZprAA==
via: 1.1 ec2a2c75c16156e4d43504606c118b90.cloudfront.net (CloudFront), 1.1 31119c39c5a6dc62dfa1fe940afd7be2.cloudfront.net (CloudFront), 1.1 google
date: Sun, 25 Sep 2022 21:49:56 GMT
age: 79109
etag: "12aac1bd22e675f09a220de08b4656e801c2e647"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   5980
Md5:    ef17205adb2b478d3bff54b048208d22
Sha1:   12aac1bd22e675f09a220de08b4656e801c2e647
Sha256: 620fe39cf421ed3a21e968570f7e863d69224113be867ec2457ed3850ea113f6
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Febd85aa2-fe15-49c2-aa3e-38b97cb99849.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 5157
x-amzn-requestid: b5748f49-693f-4bc3-a850-cb68e770de24
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZCUG9GUHIAMF7pw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6330cd5f-5d2aaa212cf1be2506593746;Sampled=0
x-amzn-remapped-date: Sun, 25 Sep 2022 21:51:27 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: 4h9lb_7egxb2hBbxjcS_cpZ5lDq6Lx-c_WUZyRHdUA0YTwr6kgDuiQ==
via: 1.1 86b676273517904f44af31586adb06ae.cloudfront.net (CloudFront), 1.1 5fe5f2a3903f1378941d92eceaf3fa16.cloudfront.net (CloudFront), 1.1 google
date: Sun, 25 Sep 2022 22:10:16 GMT
age: 77889
etag: "85e378d0fff856832a8dd01743516b9476fed8c6"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   5157
Md5:    2fe8c4f0c70fb6c1f4259eabedc7015e
Sha1:   85e378d0fff856832a8dd01743516b9476fed8c6
Sha256: 508a1c7d350fcf82d1ece0b99f8557b2f300c7c1148f28c3ae9fece20530e4b6
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdc9985e6-5fe2-4d64-8060-3ea9e7ea528d.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 10318
x-amzn-requestid: 6a205445-8a9e-4f25-b144-ba6e6934d383
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZCSlhFNAIAMFmBA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6330caef-61ecbf9154cd56131b940ac0;Sampled=0
x-amzn-remapped-date: Sun, 25 Sep 2022 21:41:04 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: qP5-TglQAoTGc78-rIK27mKRTS_WthN0OpiiMqSF-y2rmWxVOyfNVw==
via: 1.1 d83ae0e1ba84e92e58bc1efc23a0c652.cloudfront.net (CloudFront), 1.1 5fe5f2a3903f1378941d92eceaf3fa16.cloudfront.net (CloudFront), 1.1 google
date: Sun, 25 Sep 2022 21:57:14 GMT
age: 78671
etag: "cde7845f38c4c077f1f1cfda1d1e3b00065d3ac3"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   10318
Md5:    a90590f26bae9ad9e95ffdfbfb7dd21d
Sha1:   cde7845f38c4c077f1f1cfda1d1e3b00065d3ac3
Sha256: 33fe3394213e01d11c3e005cb5a678ba74511704d4132fc2bd9f7ad4e1b7dbfc
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7838a122-2b2e-4e4c-9bcc-7c6b46a93b1e.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 11728
x-amzn-requestid: bf60e58f-c4f4-45c7-923b-0d1539f720f5
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZCUCGGw7oAMF3wQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6330cd40-32043c1b1411544f5d00edc0;Sampled=0
x-amzn-remapped-date: Sun, 25 Sep 2022 21:50:56 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: ZRG0Axnhc5RY5rDbnnbauco9dpPeFdkP01UxkpNYI5pgSbfGKWcikw==
via: 1.1 26ca01ec7377e425b59b6a08cb1ec342.cloudfront.net (CloudFront), 1.1 73cb83fe6699afc2791b5c690c1ff8c6.cloudfront.net (CloudFront), 1.1 google
date: Sun, 25 Sep 2022 22:16:26 GMT
age: 77519
etag: "9660bb2d38079182efbd11d7a687bfc7f9d30751"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   11728
Md5:    968b9c138702fb5994d1d9eab1a697fa
Sha1:   9660bb2d38079182efbd11d7a687bfc7f9d30751
Sha256: 5ba74820ad451747c8ed25529f06b037bebf4c0616a1f2165c9197c1171db7a6
                                        
                                            GET /scripts/1.103.0/dy-coll-nojq-min.js HTTP/1.1 
Host: cdn.dynamicyield.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://18c34ac2-fa7a-4b78-b7ff-ef204b07e192.id.repl.co/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.117
HTTP/2 200 OK
content-type: application/javascript
                                        
date: Thu, 25 Aug 2022 04:46:48 GMT
last-modified: Sun, 27 Mar 2022 14:57:57 GMT
etag: W/"00e53d582396c64a4c87362475cb6e63"
cache-control: max-age=31536000
server: DYCDN
content-encoding: gzip
vary: Accept-Encoding
via: 1.1 277d0e3af1ffdcb1ee40b7dc9f040146.cloudfront.net (CloudFront)
age: 2818897
link: <//st.dynamicyield.com>; rel="dns-prefetch", <//st.dynamicyield.com>; rel="preconnect", <//rcom.dynamicyield.com>; rel="dns-prefetch", <//rcom.dynamicyield.com>; rel="preconnect", <//async-px.dynamicyield.com>; rel="dns-prefetch", <//async-px.dynamicyield.com>; rel="preconnect"
x-cache: Hit from cloudfront
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: HXRD0mS5fvodLtqY5cvdBxzSDi4Rg0YSSs2DuElNK-URgXn-QOV1hw==
X-Firefox-Spdy: h2


--- Additional Info ---