r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 7c60904d097cde276e4e5632cef1b9f1
4f805026462589345d85e8df2d18eafba6237504
12af026999398f4976749e320667d43da3f99b7a2e8254aca7a410a964a106aa
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "12AF026999398F4976749E320667D43DA3F99B7A2E8254ACA7A410A964A106AA"
Last-Modified: Thu, 24 Nov 2022 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5056
Expires: Fri, 25 Nov 2022 00:08:20 GMT
Date: Thu, 24 Nov 2022 22:44:04 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 8c63b226725ca6e92e3ef586ac19e603
d21ae42a1927501e5293ff3564f52b49f6b0decc
141ac47acc3800e5d35a82012fa4b044277abad3a95dc24415f66fb72c972ae6
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "141AC47ACC3800E5D35A82012FA4B044277ABAD3A95DC24415F66FB72C972AE6"
Last-Modified: Wed, 23 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2618
Expires: Thu, 24 Nov 2022 23:27:42 GMT
Date: Thu, 24 Nov 2022 22:44:04 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash af40a2fcf8debb90c3608002da6c907a
3c75d6c0b557a3bd8d5db50155b8d896e852c145
555617a51ee3077552545a29a3baf0b43e8a82367e4c08110ee480ebedc8b523
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1811
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 22:44:04 GMT
Last-Modified: Thu, 24 Nov 2022 22:13:53 GMT
Server: ECS (ska/F713)
X-Cache: HIT
Content-Length: 471
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 9ebddc2b260d081ebbefee47c037cb28
492bad62a7ca6a74738921ef5ae6f0be5edebf39
74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5
GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: K9fPuJv4EVqhNlEY0O0Kcm1gnKKazOHDnzpSf8bBGbW2QNDwE1jU8ErHfMRJhBUrORKfhjHD78Q=
x-amz-request-id: Y4RB32TGXC6RZQ36
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Thu, 24 Nov 2022 22:43:35 GMT
age: 29
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/
34.102.187.140200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 4d7e4eed097b9c4e5d509419f1cfc85a
290bb3d428a7c6330e2e3d73a952b16f820896c8
0dc9ca0f57af15adcd416035e92794711434e3d53a1feff21d8481d6d500986c
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Content-Length, Alert, Backoff, Retry-After
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Thu, 24 Nov 2022 22:17:20 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 1604
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 24 Nov 2022 22:44:04 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
sahraaljazeerah.com/asistenciaruralgtgt/
96.127.183.234200 OK 16 kB URL HTTP/1.1 sahraaljazeerah.com/asistenciaruralgtgt/
IP 96.127.183.234:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (3529), with CRLF line terminators
Hash 1b360f6fcf4b680167e893e6c39c515e
b1155212f5f70c1ffbb6766c7c486ad5aa199ed4
c5489ff7fb731456776c7744535f43f2617b45f17bef5ceb5b602d6e679d1ced
Analyzer Verdict Alert fortinet Phishing
GET /asistenciaruralgtgt/ HTTP/1.1
Host: sahraaljazeerah.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Thu, 24 Nov 2022 22:44:06 GMT
Server: Apache
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
Set-Cookie: PHPSESSID=ae3f1876ad51df4003aee26482cfbf0c; path=/
Connection: close
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
stats.banrural.com.gt/individual/analytics-v4.1.js
45.60.47.11200 OK 331 kB URL HTTP/2 stats.banrural.com.gt/individual/analytics-v4.1.js
IP 45.60.47.11:0
File type ASCII text, with very long lines (65536), with no line terminators
Size 331 kB (331158 bytes)
Hash 3bd2050c48eec1e76869aa80cdd605b1
4100a8f71b062dfca6a701c4947a69900bdbe17f
69851314248be42391ab9cc6d99984835445a18afc0364c914cb9500ee312cb1
GET /individual/analytics-v4.1.js HTTP/1.1
Host: stats.banrural.com.gt
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://sahraaljazeerah.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
etag: W/"13ef96-jfRQBXY4xcQ94N/HXQepcvu4szA"
content-type: application/javascript; charset=utf-8
content-length: 331158
content-encoding: gzip
cache-control: max-age=28056, public, must-revalidate
expires: Fri, 25 Nov 2022 06:31:40 GMT
date: Thu, 24 Nov 2022 22:44:04 GMT
set-cookie: visid_incap_2815094=cmUJiNzmSYaAXLhYWMyUWrTzf2MAAAAAQUIPAAAAAABXsRKEUS5eGQDYs75c+rhU; expires=Fri, 24 Nov 2023 22:16:27 GMT; HttpOnly; path=/; Domain=.banrural.com.gt
incap_ses_722_2815094=na0sHXojzTr5zuvmFxAFCrTzf2MAAAAAG2V3qN1ZRTC5Cgb6e5og3w==; path=/; Domain=.banrural.com.gt
x-cdn: Imperva
x-iinfo: 12-30587146-30587131 2CNN RT(1669329844906 23) q(0 0 0 3) r(0 0)
X-Firefox-Spdy: h2
stats.banrural.com.gt//img/files/0/656b66335a792b593734744250367276614d30486e6136573445786a3662725378335a75654f36457869564a4f4c78494433396f55514333535373302b333956683768794464424f546334673649436861784d6756454b306a4442754d5665454875713261337272464b54483174754850313356736353393174305537783775505750476b706c6f7950647752704a4632675866586a584d75654f5a6a7853564b537677474645357a37343d7c48306e5a64574875646f6f61354b653941314861644a65307646305547356150593151594a326a7a6b57384343337169364641376b586f784d2b54302b487a54763944556f4858714653785859794c7069754450774b6b5530384f39724159384c2b7579657a5146426d47357a2b7475304d6d56517558454c6b7746624d306251335236394564676d4c4d3578705a7661446872795231474847714567506d797261332f6839715a4250453d7c5945792f362b5645595769556f69502f38424a6d3870576c5648706f597a554f5452427534756c70533969334e64473750687574654f417466396d43696b4b626e7933332b3268577a756d4b50565773784f666d5979386c395767684b487a56497636316864325a392b4f7974386937566e7a37585a456b5639425a47502b487236314149365968734173384e6e5968765875755a4a562f39716e564a73726434634471516663362f73513d7c68617a554d50754e39495237687839494e2b2b4c4b7a635652714b467776534e31564f4543697666746b3963333658536a315a4d6f7646654d38623150706f4f685355727a374a476c4d6c61314557347033446163786d3869347476534b773251505464434f33674f6934792b575351526442436b39754c4d766f787a744d6c4c3630733377314f343838706a7131737568325558384567567a4e4c6d763273694c4531717a4f665165633d7c4c634b4958626d2b4c5a355559314f78627758655855494861746b505935714147742f77624b4c2f656d4e2b6363344665417a50346f6d546639747656733138532b39696d474b645766446562577a71536a703554433039316943317745613237697576717531754971354e37733642444c77463750786a4a327a3355553646676f697853316774754a492b6c576c56517069694c6a6b52506b64433067735066475151307150654e524d3d7c64674276682b67576832454d554c2f516c414d46506536756a6e504b477264494d782f41754c7a715071386a526b41517933746f6633306a45756c4e67524278736a56374e2f5058504d74735239644c7374516b4e442f51354e79304170776b35347330324d44665041505850516a646d4a3734324d6d7138754b476239567830534854614d3042722b32544a6845347573323635434976477637784f31686439584e59467734434d61593d/logo.png
45.60.47.11200 OK 2 B URL HTTP/2 stats.banrural.com.gt//img/files/0/656b66335a792b593734744250367276614d30486e6136573445786a3662725378335a75654f36457869564a4f4c78494433396f55514333535373302b333956683768794464424f546334673649436861784d6756454b306a4442754d5665454875713261337272464b54483174754850313356736353393174305537783775505750476b706c6f7950647752704a4632675866586a584d75654f5a6a7853564b537677474645357a37343d7c48306e5a64574875646f6f61354b653941314861644a65307646305547356150593151594a326a7a6b57384343337169364641376b586f784d2b54302b487a54763944556f4858714653785859794c7069754450774b6b5530384f39724159384c2b7579657a5146426d47357a2b7475304d6d56517558454c6b7746624d306251335236394564676d4c4d3578705a7661446872795231474847714567506d797261332f6839715a4250453d7c5945792f362b5645595769556f69502f38424a6d3870576c5648706f597a554f5452427534756c70533969334e64473750687574654f417466396d43696b4b626e7933332b3268577a756d4b50565773784f666d5979386c395767684b487a56497636316864325a392b4f7974386937566e7a37585a456b5639425a47502b487236314149365968734173384e6e5968765875755a4a562f39716e564a73726434634471516663362f73513d7c68617a554d50754e39495237687839494e2b2b4c4b7a635652714b467776534e31564f4543697666746b3963333658536a315a4d6f7646654d38623150706f4f685355727a374a476c4d6c61314557347033446163786d3869347476534b773251505464434f33674f6934792b575351526442436b39754c4d766f787a744d6c4c3630733377314f343838706a7131737568325558384567567a4e4c6d763273694c4531717a4f665165633d7c4c634b4958626d2b4c5a355559314f78627758655855494861746b505935714147742f77624b4c2f656d4e2b6363344665417a50346f6d546639747656733138532b39696d474b645766446562577a71536a703554433039316943317745613237697576717531754971354e37733642444c77463750786a4a327a3355553646676f697853316774754a492b6c576c56517069694c6a6b52506b64433067735066475151307150654e524d3d7c64674276682b67576832454d554c2f516c414d46506536756a6e504b477264494d782f41754c7a715071386a526b41517933746f6633306a45756c4e67524278736a56374e2f5058504d74735239644c7374516b4e442f51354e79304170776b35347330324d44665041505850516a646d4a3734324d6d7138754b476239567830534854614d3042722b32544a6845347573323635434976477637784f31686439584e59467734434d61593d/logo.png
IP 45.60.47.11:0
File type ASCII text, with no line terminators
Hash e0aa021e21dddbd6d8cecec71e9cf564
9ce3bd4224c8c1780db56b4125ecf3f24bf748b7
565339bc4d33d72817b583024112eb7f5cdf3e5eef0252d6ec1b9c9a94e12bb3
GET //img/files/0/656b66335a792b593734744250367276614d30486e6136573445786a3662725378335a75654f36457869564a4f4c78494433396f55514333535373302b333956683768794464424f546334673649436861784d6756454b306a4442754d5665454875713261337272464b54483174754850313356736353393174305537783775505750476b706c6f7950647752704a4632675866586a584d75654f5a6a7853564b537677474645357a37343d7c48306e5a64574875646f6f61354b653941314861644a65307646305547356150593151594a326a7a6b57384343337169364641376b586f784d2b54302b487a54763944556f4858714653785859794c7069754450774b6b5530384f39724159384c2b7579657a5146426d47357a2b7475304d6d56517558454c6b7746624d306251335236394564676d4c4d3578705a7661446872795231474847714567506d797261332f6839715a4250453d7c5945792f362b5645595769556f69502f38424a6d3870576c5648706f597a554f5452427534756c70533969334e64473750687574654f417466396d43696b4b626e7933332b3268577a756d4b50565773784f666d5979386c395767684b487a56497636316864325a392b4f7974386937566e7a37585a456b5639425a47502b487236314149365968734173384e6e5968765875755a4a562f39716e564a73726434634471516663362f73513d7c68617a554d50754e39495237687839494e2b2b4c4b7a635652714b467776534e31564f4543697666746b3963333658536a315a4d6f7646654d38623150706f4f685355727a374a476c4d6c61314557347033446163786d3869347476534b773251505464434f33674f6934792b575351526442436b39754c4d766f787a744d6c4c3630733377314f343838706a7131737568325558384567567a4e4c6d763273694c4531717a4f665165633d7c4c634b4958626d2b4c5a355559314f78627758655855494861746b505935714147742f77624b4c2f656d4e2b6363344665417a50346f6d546639747656733138532b39696d474b645766446562577a71536a703554433039316943317745613237697576717531754971354e37733642444c77463750786a4a327a3355553646676f697853316774754a492b6c576c56517069694c6a6b52506b64433067735066475151307150654e524d3d7c64674276682b67576832454d554c2f516c414d46506536756a6e504b477264494d782f41754c7a715071386a526b41517933746f6633306a45756c4e67524278736a56374e2f5058504d74735239644c7374516b4e442f51354e79304170776b35347330324d44665041505850516a646d4a3734324d6d7138754b476239567830534854614d3042722b32544a6845347573323635434976477637784f31686439584e59467734434d61593d/logo.png HTTP/1.1
Host: stats.banrural.com.gt
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://sahraaljazeerah.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Nov 2022 22:44:05 GMT
content-type: text/plain; charset=utf-8
content-length: 2
x-powered-by: Express
etag: W/"2-nOO9QiTIwXgNtWtBJezz8kv3SLc"
strict-transport-security: max-age=15724800; includeSubDomains
set-cookie: visid_incap_2815094=cmUJiNzmSYaAXLhYWMyUWrTzf2MAAAAAQUIPAAAAAABXsRKEUS5eGQDYs75c+rhU; expires=Fri, 24 Nov 2023 22:16:27 GMT; HttpOnly; path=/; Domain=.banrural.com.gt
incap_ses_722_2815094=a1/9A6Ty6yL5zuvmFxAFCrXzf2MAAAAAPYhV9DmFCN5mvLeWD84oTg==; path=/; Domain=.banrural.com.gt
x-cdn: Imperva
x-iinfo: 12-30587146-30568295 3NNN RT(1669329844906 22) q(0 0 0 1) r(0 1) U12
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash e82bac439b4e05b63bd8049769218cb8
fe8c2994c00b1d8c6212d9a7006ff58498375575
5b905305e33eb7e21beb21216242ed0af8a4288b3a36c6aa278755244e57c373
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5351
Cache-Control: max-age=101072
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 22:44:05 GMT
Etag: "637ec69e-1d7"
Expires: Sat, 26 Nov 2022 02:48:37 GMT
Last-Modified: Thu, 24 Nov 2022 01:19:26 GMT
Server: ECS (ska/F713)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash e82bac439b4e05b63bd8049769218cb8
fe8c2994c00b1d8c6212d9a7006ff58498375575
5b905305e33eb7e21beb21216242ed0af8a4288b3a36c6aa278755244e57c373
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5351
Cache-Control: max-age=101072
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 22:44:05 GMT
Etag: "637ec69e-1d7"
Expires: Sat, 26 Nov 2022 02:48:37 GMT
Last-Modified: Thu, 24 Nov 2022 01:19:26 GMT
Server: ECS (ska/F713)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash e82bac439b4e05b63bd8049769218cb8
fe8c2994c00b1d8c6212d9a7006ff58498375575
5b905305e33eb7e21beb21216242ed0af8a4288b3a36c6aa278755244e57c373
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3856
Cache-Control: max-age=99577
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 22:44:05 GMT
Etag: "637ec69e-1d7"
Expires: Sat, 26 Nov 2022 02:23:42 GMT
Last-Modified: Thu, 24 Nov 2022 01:19:26 GMT
Server: ECS (ska/F71C)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash e82bac439b4e05b63bd8049769218cb8
fe8c2994c00b1d8c6212d9a7006ff58498375575
5b905305e33eb7e21beb21216242ed0af8a4288b3a36c6aa278755244e57c373
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3856
Cache-Control: max-age=99577
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 22:44:05 GMT
Etag: "637ec69e-1d7"
Expires: Sat, 26 Nov 2022 02:23:42 GMT
Last-Modified: Thu, 24 Nov 2022 01:19:26 GMT
Server: ECS (ska/F71C)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash caa31ebffdb12ba3ac50381675207ee4
b2a7fe42059b377592cd2598e0ee73527544ee04
dd73a651eb476943132fbc6287ca10a173ecb3bbcc4fa7b55c4068d0dd5c19f9
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=129543
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 22:44:05 GMT
Etag: "637f4abc-1d7"
Expires: Sat, 26 Nov 2022 10:43:08 GMT
Last-Modified: Thu, 24 Nov 2022 10:43:08 GMT
Server: nginx
Content-Length: 471
ocsp.godaddy.com/
192.124.249.41200 OK 1.8 kB IP 192.124.249.41:0
Hash 7ed26f773b888c721733f3f297ecf5ac
444daeb3818ca5eac83586c839a973e30d9ac1d0
6305b64aa3c967c29105de897055665d9bad500b094dfbb5231d8c28dc741bde
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 76
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Thu, 24 Nov 2022 22:44:05 GMT
Content-Type: application/ocsp-response
Content-Length: 1778
Connection: keep-alive
X-Sucuri-ID: 19041
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Thu, 24 Nov 2022 20:21:20 GMT
Expires: Fri, 25 Nov 2022 20:21:20 GMT
ETag: "444daeb3818ca5eac83586c839a973e30d9ac1d0"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
cdn.perfdrive.com/aperture/aperture.js
130.211.29.114200 OK 14 kB URL HTTP/2 cdn.perfdrive.com/aperture/aperture.js
IP 130.211.29.114:0
File type ASCII text, with very long lines (566)
Hash 9b690590c9a694107d7c7cfa0b731b68
c95e502d5d2d5437e168ae55af0439beef69d370
1b07b11a98a6e988acd3bc823b64b353702411709d8ef871e393dee1866d7cda
GET /aperture/aperture.js HTTP/1.1
Host: cdn.perfdrive.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://sahraaljazeerah.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx/1.22.1
vary: Accept-Encoding
access-control-allow-origin: *
content-encoding: gzip
via: 1.1 google
content-length: 13453
date: Thu, 24 Nov 2022 22:04:15 GMT
cache-control: max-age=3600,public
age: 2390
last-modified: Thu, 06 Oct 2022 10:44:59 GMT
etag: W/"633eb1ab-ae3a"
content-type: application/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash caa31ebffdb12ba3ac50381675207ee4
b2a7fe42059b377592cd2598e0ee73527544ee04
dd73a651eb476943132fbc6287ca10a173ecb3bbcc4fa7b55c4068d0dd5c19f9
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 0
Cache-Control: max-age=129543
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 22:44:05 GMT
Etag: "637f4abc-1d7"
Expires: Sat, 26 Nov 2022 10:43:08 GMT
Last-Modified: Thu, 24 Nov 2022 10:43:08 GMT
Server: ECS (ska/F713)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash caa31ebffdb12ba3ac50381675207ee4
b2a7fe42059b377592cd2598e0ee73527544ee04
dd73a651eb476943132fbc6287ca10a173ecb3bbcc4fa7b55c4068d0dd5c19f9
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=129543
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 22:44:05 GMT
Etag: "637f4abc-1d7"
Expires: Sat, 26 Nov 2022 10:43:08 GMT
Last-Modified: Thu, 24 Nov 2022 10:43:08 GMT
Server: nginx
Content-Length: 471
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash caa31ebffdb12ba3ac50381675207ee4
b2a7fe42059b377592cd2598e0ee73527544ee04
dd73a651eb476943132fbc6287ca10a173ecb3bbcc4fa7b55c4068d0dd5c19f9
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2880
Cache-Control: max-age=132423
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 22:44:05 GMT
Etag: "637f4abc-1d7"
Expires: Sat, 26 Nov 2022 11:31:08 GMT
Last-Modified: Thu, 24 Nov 2022 10:43:08 GMT
Server: ECS (amb/6BC7)
X-Cache: HIT
Content-Length: 471
ocsp.godaddy.com/
192.124.249.41200 OK 1.8 kB IP 192.124.249.41:0
Hash 7ed26f773b888c721733f3f297ecf5ac
444daeb3818ca5eac83586c839a973e30d9ac1d0
6305b64aa3c967c29105de897055665d9bad500b094dfbb5231d8c28dc741bde
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 76
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Thu, 24 Nov 2022 22:44:06 GMT
Content-Type: application/ocsp-response
Content-Length: 1778
Connection: keep-alive
X-Sucuri-ID: 19041
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Thu, 24 Nov 2022 20:21:20 GMT
Expires: Fri, 25 Nov 2022 20:21:20 GMT
ETag: "444daeb3818ca5eac83586c839a973e30d9ac1d0"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
34.102.187.140200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Retry-After, Content-Length, Alert, Cache-Control, ETag, Pragma, Expires, Backoff, Last-Modified
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Thu, 24 Nov 2022 22:08:53 GMT
cache-control: public,max-age=3600
age: 2112
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2
bancavirtual.banrural.com.gt/cb/web/grafx/banklogos/logo_bdr2.png
66.22.18.176200 OK 2.7 kB URL HTTP/2 bancavirtual.banrural.com.gt/cb/web/grafx/banklogos/logo_bdr2.png
IP 66.22.18.176:0
ASN #25773 RADWARE-CLOUD-SERVICES
File type PNG image data, 135 x 70, 8-bit/color RGBA, non-interlaced\012- data
Hash a7b05c2ccefe4b2a1f4d726e1003fd93
457d7076600f1e1b964d1268953e6435de1c70d0
a6fe470e9b113281c6a7288dd3fe1798e02044344844162226c530efc3696bdd
GET /cb/web/grafx/banklogos/logo_bdr2.png HTTP/1.1
Host: bancavirtual.banrural.com.gt
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://sahraaljazeerah.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 2743
date: Thu, 24 Nov 2022 22:44:13 GMT
x-frame-options: SAMEORIGIN
cache-control: private, max-age=3600, must-revalidate
last-modified: Mon, 03 Oct 2022 16:41:06 GMT
expires: Fri, 25 Nov 2022 22:45:12 GMT
retry-after: Fri, 25 Nov 2022 22:45:12 GMT
content-language: en-US
set-cookie: NSC_MC_QsQspe_CW_IUUQ=ffffffff09a8d60745525d5f4f58455e445a4a42378b;expires=Thu, 24-Nov-2022 22:46:05 GMT;path=/;secure;httponly
X-Firefox-Spdy: h2
bancavirtual.banrural.com.gt/cb/web/images/banrural-virtual.png
66.22.18.176200 OK 5.3 kB URL HTTP/2 bancavirtual.banrural.com.gt/cb/web/images/banrural-virtual.png
IP 66.22.18.176:0
ASN #25773 RADWARE-CLOUD-SERVICES
File type PNG image data, 215 x 56, 8-bit/color RGBA, non-interlaced\012- data
Hash 6236d9a09e7bd5c28e9f5831437370fa
7a226b41712d63473f3562d71687ab031bb4627c
5fc0d5c960ca212b704d31a451fc2aea06a4a7b53ead3ef98ab7b1a3a21b1eb1
GET /cb/web/images/banrural-virtual.png HTTP/1.1
Host: bancavirtual.banrural.com.gt
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://sahraaljazeerah.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 5328
date: Thu, 24 Nov 2022 22:45:17 GMT
x-frame-options: SAMEORIGIN
cache-control: private, max-age=3600, must-revalidate
last-modified: Mon, 03 Oct 2022 16:41:18 GMT
expires: Fri, 25 Nov 2022 22:45:16 GMT
retry-after: Fri, 25 Nov 2022 22:45:16 GMT
content-language: en-US
set-cookie: NSC_MC_QsQspe_CW_IUUQ=ffffffff09a8d60445525d5f4f58455e445a4a42378b;expires=Thu, 24-Nov-2022 22:46:05 GMT;path=/;secure;httponly
X-Firefox-Spdy: h2
bancavirtual.banrural.com.gt/cb/web/css/FF.min.css
66.22.18.176200 OK 3.0 kB URL HTTP/2 bancavirtual.banrural.com.gt/cb/web/css/FF.min.css
IP 66.22.18.176:0
ASN #25773 RADWARE-CLOUD-SERVICES
Hash 17481d91d515d6ebd84388b3711d7f70
01c504d00ee66b270ffc2326768f572f07c9ca49
1bb361365c6f63d643664c834700358a839bb6f92921bc681bf2f24507edfe15
GET /cb/web/css/FF.min.css HTTP/1.1
Host: bancavirtual.banrural.com.gt
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://sahraaljazeerah.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/css
date: Thu, 24 Nov 2022 22:45:17 GMT
x-frame-options: SAMEORIGIN
cache-control: private, max-age=3600, must-revalidate
last-modified: Mon, 03 Oct 2022 16:41:56 GMT
expires: Fri, 25 Nov 2022 22:45:16 GMT
retry-after: Fri, 25 Nov 2022 22:45:16 GMT
content-language: en-US
set-cookie: NSC_MC_QsQspe_CW_IUUQ=ffffffff09a8d60445525d5f4f58455e445a4a42378b;expires=Thu, 24-Nov-2022 22:46:05 GMT;path=/;secure;httponly
content-encoding: gzip
X-Firefox-Spdy: h2
push.services.mozilla.com/
52.41.252.32101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.41.252.32:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: sc3Bxa7fE1sc3ZL55XtejA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: lj2HKoKQipixCS5nrxccJ7AOFvQ=
bancavirtual.banrural.com.gt/cb/web/css/SAP/jquery-ui.css
66.22.18.176200 OK 12 kB URL HTTP/2 bancavirtual.banrural.com.gt/cb/web/css/SAP/jquery-ui.css
IP 66.22.18.176:0
ASN #25773 RADWARE-CLOUD-SERVICES
Hash 16e463465cb8a5314e2b912a5f8c404b
58ac6145364bbab43d8207eb1fea34b22cf3a62f
92c20ad20be574c8300ca6ed36a353fba951c99ff3b1c0b69953d05ab5256290
GET /cb/web/css/SAP/jquery-ui.css HTTP/1.1
Host: bancavirtual.banrural.com.gt
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://sahraaljazeerah.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css
date: Thu, 24 Nov 2022 22:45:17 GMT
x-frame-options: SAMEORIGIN
cache-control: private, max-age=3600, must-revalidate
last-modified: Mon, 03 Oct 2022 16:41:06 GMT
expires: Fri, 25 Nov 2022 22:45:16 GMT
retry-after: Fri, 25 Nov 2022 22:45:16 GMT
content-language: en-US
set-cookie: NSC_MC_QsQspe_CW_IUUQ=ffffffff09a8d60445525d5f4f58455e445a4a42378b;expires=Thu, 24-Nov-2022 22:46:05 GMT;path=/;secure;httponly
content-encoding: gzip
X-Firefox-Spdy: h2
bancavirtual.banrural.com.gt/cb/struts/js/plugins/jquery.subscribe.min.js
66.22.18.176200 OK 1.9 kB URL HTTP/2 bancavirtual.banrural.com.gt/cb/struts/js/plugins/jquery.subscribe.min.js
IP 66.22.18.176:0
ASN #25773 RADWARE-CLOUD-SERVICES
Hash f47196cf0e6679cf764a9ae8227c3561
bd0ca4a395963674b42f9592bf806fd7e60a985b
3fa2071820c32e9642ccf7e38066e57d8b3eb09d36701475bd927b55e992c358
GET /cb/struts/js/plugins/jquery.subscribe.min.js HTTP/1.1
Host: bancavirtual.banrural.com.gt
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://sahraaljazeerah.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/javascript
date: Thu, 24 Nov 2022 22:44:13 GMT
x-frame-options: SAMEORIGIN
expires: -1
retry-after: Fri, 25 Nov 2022 22:44:05 GMT
pragma: no-cache
last-modified: Thu, 24 Nov 2022 21:06:26 GMT
cache-control: private, must-revalidate, max-age=3600, no-cache=set-cookie
content-language: en-US
set-cookie: JSESSIONID=0001YuJASsUMG3ccGD1YLpX_3QZ:-1O02SCI; Path=/cb; Domain=bancavirtual.banrural.com.gt; Secure; HttpOnly
NSC_MC_QsQspe_CW_IUUQ=ffffffff09a8d60745525d5f4f58455e445a4a42378b;expires=Thu, 24-Nov-2022 22:46:05 GMT;path=/;secure;httponly
content-encoding: gzip
X-Firefox-Spdy: h2
sahraaljazeerah.com/cb/struts/js/base/jquery-1.4.2.min.js
96.127.183.234404 Not Found 31 kB URL HTTP/1.1 sahraaljazeerah.com/cb/struts/js/base/jquery-1.4.2.min.js
IP 96.127.183.234:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (9381)
Hash fef4bfa02b16f8094691c046ab63e4b0
e0e2afd5abd59dd4059ab5ce81caf5e6c7c55c04
20b05cef6db18e067641871129c9cb152341632cf01376dae16b7a5105ad4c8f
Analyzer Verdict Alert fortinet Phishing
GET /cb/struts/js/base/jquery-1.4.2.min.js HTTP/1.1
Host: sahraaljazeerah.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sahraaljazeerah.com/asistenciaruralgtgt/
Cookie: PHPSESSID=ae3f1876ad51df4003aee26482cfbf0c
HTTP/1.1 404 Not Found
Date: Thu, 24 Nov 2022 22:44:06 GMT
Server: Apache
X-Powered-By: PHP/7.3.33
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
X-UA-Compatible: IE=edge
Link: <https://sahraaljazeerah.com/wp-json/>; rel="https://api.w.org/"
Connection: close
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F25123759-9d71-477d-9857-9cc07cc12173.jpeg
34.120.237.76200 OK 6.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F25123759-9d71-477d-9857-9cc07cc12173.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 92171fa8fbc051aefeb8ceb6072848de
377775b7c7b085efa6dd653d285ba3a52af6a549
537c4d5cc3ef2e60c3d0171ac31c1dba4ab2ff340108015787a9dd20dc76b7ed
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F25123759-9d71-477d-9857-9cc07cc12173.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6891
x-amzn-requestid: 6da0ae90-c3cc-4e9c-9a0e-3c72b4eb7605
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: b7m2NGsvoAMF_fQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637aeb5a-1ed2badf0e84d40e6a052f7a;Sampled=0
x-amzn-remapped-date: Mon, 21 Nov 2022 03:07:06 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: OTpJ5Qu_Ttq5se4SrZIAEiNVm6mqrrUq_0TmMJ4vldeuzMuCSxxUtA==
via: 1.1 1cc6ed0d2d3dd9529ce544f9dfe61a52.cloudfront.net (CloudFront), 1.1 d8792dbd3191bbe722eba5b536b979c8.cloudfront.net (CloudFront), 1.1 google
date: Thu, 24 Nov 2022 06:37:07 GMT
age: 58020
etag: "377775b7c7b085efa6dd653d285ba3a52af6a549"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1abe4f62-70d8-471a-89fc-79dd854e637c.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1abe4f62-70d8-471a-89fc-79dd854e637c.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 7e97ba6c4c94a299553238e643a3acc7
9be5a5497a8566ea66e81765ef8566e6b716ab5b
bda1bb57f0198e711c3018417513237b9533cfe2e5856ada5383f7461090f40a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1abe4f62-70d8-471a-89fc-79dd854e637c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10955
x-amzn-requestid: efabf5fa-f031-4249-8a2c-01dd55c11d32
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: b8JuxFj5oAMFvSw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637b232b-1a6f713b0674035c1a1b925a;Sampled=0
x-amzn-remapped-date: Mon, 21 Nov 2022 07:05:15 GMT
x-amz-cf-pop: SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: DLb4iXB5DlHVAliRxEaxufYLLVzNI44YLc7WqL0D5B062j53nTKo9A==
via: 1.1 010c0731b9775a983eceaec0f5fa6a2e.cloudfront.net (CloudFront), 1.1 31dfa94142c6eaf975b0e5454c00340a.cloudfront.net (CloudFront), 1.1 google
date: Thu, 24 Nov 2022 13:42:52 GMT
age: 32475
etag: "9be5a5497a8566ea66e81765ef8566e6b716ab5b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F216636c8-4200-4f0d-83d2-8579be32f1ac.jpeg
34.120.237.76200 OK 4.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F216636c8-4200-4f0d-83d2-8579be32f1ac.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 648677a7e7bab1896a190d2e5fb7243c
6217a262002244ef3f2e8034076a735cafd9888a
72f2913f7c0770ebab0f2683bdc1ec5a5db8872e8f2c62a8fd5c9178b95dbb06
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F216636c8-4200-4f0d-83d2-8579be32f1ac.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4270
x-amzn-requestid: 7327f8fb-804b-4d09-83dc-628e35ffa74b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cIB8xFwXoAMFkqQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637fe384-33f83cea2c585279140f4f59;Sampled=0
x-amzn-remapped-date: Thu, 24 Nov 2022 21:35:00 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: NLXTbS53l_c-lByM8Ym4_tfOlgP2lB-F1dYxOSfdeEfBSM41X0Cpug==
via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 d8792dbd3191bbe722eba5b536b979c8.cloudfront.net (CloudFront), 1.1 google
date: Thu, 24 Nov 2022 21:35:01 GMT
etag: "6217a262002244ef3f2e8034076a735cafd9888a"
content-type: image/jpeg
age: 4146
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
bancavirtual.banrural.com.gt/cb/struts/js/plugins/jquery.form.min.js
66.22.18.176200 OK 16 kB URL HTTP/2 bancavirtual.banrural.com.gt/cb/struts/js/plugins/jquery.form.min.js
IP 66.22.18.176:0
ASN #25773 RADWARE-CLOUD-SERVICES
Hash 767c545d195f8e4f10083bd9e3cdbc45
2e20db7432a1412d337718492c59899fab7b4bd4
dfa5e7dffdbf3891046b2851eae3bbfc7fa2ec92fc4c65ecd96c9cce57bc96c7
GET /cb/struts/js/plugins/jquery.form.min.js HTTP/1.1
Host: bancavirtual.banrural.com.gt
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://sahraaljazeerah.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/javascript
date: Thu, 24 Nov 2022 22:45:17 GMT
x-frame-options: SAMEORIGIN
expires: -1
retry-after: Fri, 25 Nov 2022 22:45:17 GMT
pragma: no-cache
last-modified: Thu, 24 Nov 2022 22:06:42 GMT
cache-control: private, must-revalidate, max-age=3600, no-cache=set-cookie
content-language: en-US
set-cookie: JSESSIONID=0001WMH55DgXlK2JDRAUAV9KuZ_:1N44VVQB6S; Path=/cb; Domain=bancavirtual.banrural.com.gt; Secure; HttpOnly
NSC_MC_QsQspe_CW_IUUQ=ffffffff09a8d60445525d5f4f58455e445a4a42378b;expires=Thu, 24-Nov-2022 22:46:05 GMT;path=/;secure;httponly
content-encoding: gzip
X-Firefox-Spdy: h2
bancavirtual.banrural.com.gt/cb/struts/js/base/jquery-ui.min.js
66.22.18.176200 OK 65 kB URL HTTP/2 bancavirtual.banrural.com.gt/cb/struts/js/base/jquery-ui.min.js
IP 66.22.18.176:0
ASN #25773 RADWARE-CLOUD-SERVICES
Hash f104dd45d799003bece3b202723396be
e2579eaf873300808c4bd0dc91e7afcf0ecf7432
913c35f0151f34c261f48b609ddd4a181b5a57d2db35d48a56c4ea3a93c419a7
GET /cb/struts/js/base/jquery-ui.min.js HTTP/1.1
Host: bancavirtual.banrural.com.gt
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://sahraaljazeerah.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/javascript
date: Thu, 24 Nov 2022 22:44:13 GMT
x-frame-options: SAMEORIGIN
expires: -1
retry-after: Fri, 25 Nov 2022 22:44:05 GMT
pragma: no-cache
last-modified: Thu, 24 Nov 2022 21:17:19 GMT
cache-control: private, must-revalidate, max-age=3600, no-cache=set-cookie
content-language: en-US
set-cookie: JSESSIONID=0001a3Ugyi79lV2p8YioxtMfdNI:-10IGK99; Path=/cb; Domain=bancavirtual.banrural.com.gt; Secure; HttpOnly
NSC_MC_QsQspe_CW_IUUQ=ffffffff09a8d60745525d5f4f58455e445a4a42378b;expires=Thu, 24-Nov-2022 22:46:05 GMT;path=/;secure;httponly
content-encoding: gzip
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F012ad1d7-e278-4523-b537-853fcf51e3c0.jpeg
34.120.237.76200 OK 15 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F012ad1d7-e278-4523-b537-853fcf51e3c0.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 58d104a028a45c82a7310de66477b256
e94f119e32bcff525f9b1a1c239e77747b6fc101
84d79596f4a2c255d1ecb98f557cfa4a2a42230eb92228122df7db6662140250
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F012ad1d7-e278-4523-b537-853fcf51e3c0.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 15116
x-amzn-requestid: fda2f125-032c-47b6-b089-fa24112fbc37
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bujXQG9YIAMFq1Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6375b294-3db431e479f33dae20a54124;Sampled=0
x-amzn-remapped-date: Thu, 17 Nov 2022 04:03:32 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 16F1xBlJu8h6NhDqMDYk_irlTyBNBDKiiChhEiyXWksmr2iGoNWBXA==
via: 1.1 86b676273517904f44af31586adb06ae.cloudfront.net (CloudFront), 1.1 325ed3ba58a560748d886354beef39c0.cloudfront.net (CloudFront), 1.1 google
date: Thu, 24 Nov 2022 05:15:46 GMT
age: 62901
etag: "e94f119e32bcff525f9b1a1c239e77747b6fc101"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
sahraaljazeerah.com/cb/web/js/jquery.showLoading.min.js
96.127.183.234404 Not Found 31 kB URL HTTP/1.1 sahraaljazeerah.com/cb/web/js/jquery.showLoading.min.js
IP 96.127.183.234:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (9381)
Hash fef4bfa02b16f8094691c046ab63e4b0
e0e2afd5abd59dd4059ab5ce81caf5e6c7c55c04
20b05cef6db18e067641871129c9cb152341632cf01376dae16b7a5105ad4c8f
Analyzer Verdict Alert fortinet Phishing
GET /cb/web/js/jquery.showLoading.min.js HTTP/1.1
Host: sahraaljazeerah.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sahraaljazeerah.com/asistenciaruralgtgt/
Cookie: PHPSESSID=ae3f1876ad51df4003aee26482cfbf0c
HTTP/1.1 404 Not Found
Date: Thu, 24 Nov 2022 22:44:07 GMT
Server: Apache
X-Powered-By: PHP/7.3.33
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
X-UA-Compatible: IE=edge
Link: <https://sahraaljazeerah.com/wp-json/>; rel="https://api.w.org/"
Connection: close
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
sahraaljazeerah.com/cb/web/js/jsp-ns/login.js
96.127.183.234404 Not Found 31 kB URL HTTP/1.1 sahraaljazeerah.com/cb/web/js/jsp-ns/login.js
IP 96.127.183.234:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (9381)
Hash fef4bfa02b16f8094691c046ab63e4b0
e0e2afd5abd59dd4059ab5ce81caf5e6c7c55c04
20b05cef6db18e067641871129c9cb152341632cf01376dae16b7a5105ad4c8f
Analyzer Verdict Alert fortinet Phishing
GET /cb/web/js/jsp-ns/login.js HTTP/1.1
Host: sahraaljazeerah.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sahraaljazeerah.com/asistenciaruralgtgt/
Cookie: PHPSESSID=ae3f1876ad51df4003aee26482cfbf0c
HTTP/1.1 404 Not Found
Date: Thu, 24 Nov 2022 22:44:08 GMT
Server: Apache
X-Powered-By: PHP/7.3.33
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
X-UA-Compatible: IE=edge
Link: <https://sahraaljazeerah.com/wp-json/>; rel="https://api.w.org/"
Connection: close
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
sahraaljazeerah.com/cb/web/js/utils.min.js
96.127.183.234404 Not Found 31 kB URL HTTP/1.1 sahraaljazeerah.com/cb/web/js/utils.min.js
IP 96.127.183.234:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (9381)
Hash fef4bfa02b16f8094691c046ab63e4b0
e0e2afd5abd59dd4059ab5ce81caf5e6c7c55c04
20b05cef6db18e067641871129c9cb152341632cf01376dae16b7a5105ad4c8f
Analyzer Verdict Alert fortinet Phishing
GET /cb/web/js/utils.min.js HTTP/1.1
Host: sahraaljazeerah.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sahraaljazeerah.com/asistenciaruralgtgt/
Cookie: PHPSESSID=ae3f1876ad51df4003aee26482cfbf0c
HTTP/1.1 404 Not Found
Date: Thu, 24 Nov 2022 22:44:08 GMT
Server: Apache
X-Powered-By: PHP/7.3.33
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
X-UA-Compatible: IE=edge
Link: <https://sahraaljazeerah.com/wp-json/>; rel="https://api.w.org/"
Connection: close
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
sahraaljazeerah.com/cb/struts/js/base/jquery-ui.min.js
96.127.183.234404 Not Found 31 kB URL HTTP/1.1 sahraaljazeerah.com/cb/struts/js/base/jquery-ui.min.js
IP 96.127.183.234:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (9381)
Hash fef4bfa02b16f8094691c046ab63e4b0
e0e2afd5abd59dd4059ab5ce81caf5e6c7c55c04
20b05cef6db18e067641871129c9cb152341632cf01376dae16b7a5105ad4c8f
Analyzer Verdict Alert fortinet Phishing
GET /cb/struts/js/base/jquery-ui.min.js HTTP/1.1
Host: sahraaljazeerah.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sahraaljazeerah.com/asistenciaruralgtgt/
Cookie: PHPSESSID=ae3f1876ad51df4003aee26482cfbf0c
HTTP/1.1 404 Not Found
Date: Thu, 24 Nov 2022 22:44:08 GMT
Server: Apache
X-Powered-By: PHP/7.3.33
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
X-UA-Compatible: IE=edge
Link: <https://sahraaljazeerah.com/wp-json/>; rel="https://api.w.org/"
Connection: close
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
sahraaljazeerah.com/cb/web/js/jsp-ns/jquery.pwdstrength.min.js
96.127.183.234404 Not Found 31 kB URL HTTP/1.1 sahraaljazeerah.com/cb/web/js/jsp-ns/jquery.pwdstrength.min.js
IP 96.127.183.234:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (9381)
Hash fef4bfa02b16f8094691c046ab63e4b0
e0e2afd5abd59dd4059ab5ce81caf5e6c7c55c04
20b05cef6db18e067641871129c9cb152341632cf01376dae16b7a5105ad4c8f
Analyzer Verdict Alert fortinet Phishing
GET /cb/web/js/jsp-ns/jquery.pwdstrength.min.js HTTP/1.1
Host: sahraaljazeerah.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sahraaljazeerah.com/asistenciaruralgtgt/
Cookie: PHPSESSID=ae3f1876ad51df4003aee26482cfbf0c
HTTP/1.1 404 Not Found
Date: Thu, 24 Nov 2022 22:44:08 GMT
Server: Apache
X-Powered-By: PHP/7.3.33
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
X-UA-Compatible: IE=edge
Link: <https://sahraaljazeerah.com/wp-json/>; rel="https://api.w.org/"
Connection: close
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
sahraaljazeerah.com/cb/web/js/custom.validation.js
96.127.183.234404 Not Found 31 kB URL HTTP/1.1 sahraaljazeerah.com/cb/web/js/custom.validation.js
IP 96.127.183.234:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (9381)
Hash fef4bfa02b16f8094691c046ab63e4b0
e0e2afd5abd59dd4059ab5ce81caf5e6c7c55c04
20b05cef6db18e067641871129c9cb152341632cf01376dae16b7a5105ad4c8f
Analyzer Verdict Alert fortinet Phishing
GET /cb/web/js/custom.validation.js HTTP/1.1
Host: sahraaljazeerah.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sahraaljazeerah.com/asistenciaruralgtgt/
Cookie: PHPSESSID=ae3f1876ad51df4003aee26482cfbf0c
HTTP/1.1 404 Not Found
Date: Thu, 24 Nov 2022 22:44:09 GMT
Server: Apache
X-Powered-By: PHP/7.3.33
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
X-UA-Compatible: IE=edge
Link: <https://sahraaljazeerah.com/wp-json/>; rel="https://api.w.org/"
Connection: close
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
sahraaljazeerah.com/cb/web/js/jquery.ui.selectmenu.min.js
96.127.183.234404 Not Found 31 kB URL HTTP/1.1 sahraaljazeerah.com/cb/web/js/jquery.ui.selectmenu.min.js
IP 96.127.183.234:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (9381)
Hash fef4bfa02b16f8094691c046ab63e4b0
e0e2afd5abd59dd4059ab5ce81caf5e6c7c55c04
20b05cef6db18e067641871129c9cb152341632cf01376dae16b7a5105ad4c8f
Analyzer Verdict Alert fortinet Phishing
GET /cb/web/js/jquery.ui.selectmenu.min.js HTTP/1.1
Host: sahraaljazeerah.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sahraaljazeerah.com/asistenciaruralgtgt/
Cookie: PHPSESSID=ae3f1876ad51df4003aee26482cfbf0c
HTTP/1.1 404 Not Found
Date: Thu, 24 Nov 2022 22:44:09 GMT
Server: Apache
X-Powered-By: PHP/7.3.33
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
X-UA-Compatible: IE=edge
Link: <https://sahraaljazeerah.com/wp-json/>; rel="https://api.w.org/"
Connection: close
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
sahraaljazeerah.com/cb/web/js/jquery.ui.pane.min.js
96.127.183.234404 Not Found 31 kB URL HTTP/1.1 sahraaljazeerah.com/cb/web/js/jquery.ui.pane.min.js
IP 96.127.183.234:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (9381)
Hash fef4bfa02b16f8094691c046ab63e4b0
e0e2afd5abd59dd4059ab5ce81caf5e6c7c55c04
20b05cef6db18e067641871129c9cb152341632cf01376dae16b7a5105ad4c8f
Analyzer Verdict Alert fortinet Phishing
GET /cb/web/js/jquery.ui.pane.min.js HTTP/1.1
Host: sahraaljazeerah.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sahraaljazeerah.com/asistenciaruralgtgt/
Cookie: PHPSESSID=ae3f1876ad51df4003aee26482cfbf0c
HTTP/1.1 404 Not Found
Date: Thu, 24 Nov 2022 22:44:09 GMT
Server: Apache
X-Powered-By: PHP/7.3.33
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
X-UA-Compatible: IE=edge
Link: <https://sahraaljazeerah.com/wp-json/>; rel="https://api.w.org/"
Connection: close
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
sahraaljazeerah.com/cb/web/js/jquery.browser.min.js
96.127.183.234404 Not Found 31 kB URL HTTP/1.1 sahraaljazeerah.com/cb/web/js/jquery.browser.min.js
IP 96.127.183.234:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (9381)
Hash fef4bfa02b16f8094691c046ab63e4b0
e0e2afd5abd59dd4059ab5ce81caf5e6c7c55c04
20b05cef6db18e067641871129c9cb152341632cf01376dae16b7a5105ad4c8f
Analyzer Verdict Alert fortinet Phishing
GET /cb/web/js/jquery.browser.min.js HTTP/1.1
Host: sahraaljazeerah.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sahraaljazeerah.com/asistenciaruralgtgt/
Cookie: PHPSESSID=ae3f1876ad51df4003aee26482cfbf0c
HTTP/1.1 404 Not Found
Date: Thu, 24 Nov 2022 22:44:10 GMT
Server: Apache
X-Powered-By: PHP/7.3.33
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
X-UA-Compatible: IE=edge
Link: <https://sahraaljazeerah.com/wp-json/>; rel="https://api.w.org/"
Connection: close
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
sahraaljazeerah.com/cb/web/jquery/home/layout.latest.min.js
96.127.183.234404 Not Found 31 kB URL HTTP/1.1 sahraaljazeerah.com/cb/web/jquery/home/layout.latest.min.js
IP 96.127.183.234:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (9381)
Hash fef4bfa02b16f8094691c046ab63e4b0
e0e2afd5abd59dd4059ab5ce81caf5e6c7c55c04
20b05cef6db18e067641871129c9cb152341632cf01376dae16b7a5105ad4c8f
Analyzer Verdict Alert fortinet Phishing
GET /cb/web/jquery/home/layout.latest.min.js HTTP/1.1
Host: sahraaljazeerah.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sahraaljazeerah.com/asistenciaruralgtgt/
Cookie: PHPSESSID=ae3f1876ad51df4003aee26482cfbf0c
HTTP/1.1 404 Not Found
Date: Thu, 24 Nov 2022 22:44:10 GMT
Server: Apache
X-Powered-By: PHP/7.3.33
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
X-UA-Compatible: IE=edge
Link: <https://sahraaljazeerah.com/wp-json/>; rel="https://api.w.org/"
Connection: close
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
sahraaljazeerah.com/cb/web/js/namespace.min.js
96.127.183.234404 Not Found 31 kB URL HTTP/1.1 sahraaljazeerah.com/cb/web/js/namespace.min.js
IP 96.127.183.234:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (9381)
Hash fef4bfa02b16f8094691c046ab63e4b0
e0e2afd5abd59dd4059ab5ce81caf5e6c7c55c04
20b05cef6db18e067641871129c9cb152341632cf01376dae16b7a5105ad4c8f
Analyzer Verdict Alert fortinet Phishing
GET /cb/web/js/namespace.min.js HTTP/1.1
Host: sahraaljazeerah.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sahraaljazeerah.com/asistenciaruralgtgt/
Cookie: PHPSESSID=ae3f1876ad51df4003aee26482cfbf0c
HTTP/1.1 404 Not Found
Date: Thu, 24 Nov 2022 22:44:10 GMT
Server: Apache
X-Powered-By: PHP/7.3.33
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
X-UA-Compatible: IE=edge
Link: <https://sahraaljazeerah.com/wp-json/>; rel="https://api.w.org/"
Connection: close
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
sahraaljazeerah.com/cb/struts/js/base/jquery-ui.min.js
96.127.183.234404 Not Found 31 kB URL HTTP/1.1 sahraaljazeerah.com/cb/struts/js/base/jquery-ui.min.js
IP 96.127.183.234:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (9381)
Hash fef4bfa02b16f8094691c046ab63e4b0
e0e2afd5abd59dd4059ab5ce81caf5e6c7c55c04
20b05cef6db18e067641871129c9cb152341632cf01376dae16b7a5105ad4c8f
Analyzer Verdict Alert fortinet Phishing
GET /cb/struts/js/base/jquery-ui.min.js HTTP/1.1
Host: sahraaljazeerah.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sahraaljazeerah.com/asistenciaruralgtgt/
Cookie: PHPSESSID=ae3f1876ad51df4003aee26482cfbf0c; __ssds=2; __ssuzjsr2=a9be0cd8e
HTTP/1.1 404 Not Found
Date: Thu, 24 Nov 2022 22:44:11 GMT
Server: Apache
X-Powered-By: PHP/7.3.33
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
X-UA-Compatible: IE=edge
Link: <https://sahraaljazeerah.com/wp-json/>; rel="https://api.w.org/"
Connection: close
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
sahraaljazeerah.com/cb/web/js/jquery.i18n.properties.min.js
96.127.183.234404 Not Found 31 kB URL HTTP/1.1 sahraaljazeerah.com/cb/web/js/jquery.i18n.properties.min.js
IP 96.127.183.234:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (9381)
Hash fef4bfa02b16f8094691c046ab63e4b0
e0e2afd5abd59dd4059ab5ce81caf5e6c7c55c04
20b05cef6db18e067641871129c9cb152341632cf01376dae16b7a5105ad4c8f
Analyzer Verdict Alert fortinet Phishing
GET /cb/web/js/jquery.i18n.properties.min.js HTTP/1.1
Host: sahraaljazeerah.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sahraaljazeerah.com/asistenciaruralgtgt/
Cookie: PHPSESSID=ae3f1876ad51df4003aee26482cfbf0c
HTTP/1.1 404 Not Found
Date: Thu, 24 Nov 2022 22:44:11 GMT
Server: Apache
X-Powered-By: PHP/7.3.33
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
X-UA-Compatible: IE=edge
Link: <https://sahraaljazeerah.com/wp-json/>; rel="https://api.w.org/"
Connection: close
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
sahraaljazeerah.com/cb/web/js/jquery.showLoading.min.js
96.127.183.234404 Not Found 31 kB URL HTTP/1.1 sahraaljazeerah.com/cb/web/js/jquery.showLoading.min.js
IP 96.127.183.234:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (9381)
Hash fef4bfa02b16f8094691c046ab63e4b0
e0e2afd5abd59dd4059ab5ce81caf5e6c7c55c04
20b05cef6db18e067641871129c9cb152341632cf01376dae16b7a5105ad4c8f
Analyzer Verdict Alert fortinet Phishing
GET /cb/web/js/jquery.showLoading.min.js HTTP/1.1
Host: sahraaljazeerah.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sahraaljazeerah.com/asistenciaruralgtgt/
Cookie: PHPSESSID=ae3f1876ad51df4003aee26482cfbf0c; __ssds=2; __ssuzjsr2=a9be0cd8e
HTTP/1.1 404 Not Found
Date: Thu, 24 Nov 2022 22:44:12 GMT
Server: Apache
X-Powered-By: PHP/7.3.33
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
X-UA-Compatible: IE=edge
Link: <https://sahraaljazeerah.com/wp-json/>; rel="https://api.w.org/"
Connection: close
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
sahraaljazeerah.com/cb/web/js/utils.min.js
96.127.183.234404 Not Found 31 kB URL HTTP/1.1 sahraaljazeerah.com/cb/web/js/utils.min.js
IP 96.127.183.234:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (9381)
Hash fef4bfa02b16f8094691c046ab63e4b0
e0e2afd5abd59dd4059ab5ce81caf5e6c7c55c04
20b05cef6db18e067641871129c9cb152341632cf01376dae16b7a5105ad4c8f
Analyzer Verdict Alert fortinet Phishing
GET /cb/web/js/utils.min.js HTTP/1.1
Host: sahraaljazeerah.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sahraaljazeerah.com/asistenciaruralgtgt/
Cookie: PHPSESSID=ae3f1876ad51df4003aee26482cfbf0c; __ssds=2; __ssuzjsr2=a9be0cd8e
HTTP/1.1 404 Not Found
Date: Thu, 24 Nov 2022 22:44:13 GMT
Server: Apache
X-Powered-By: PHP/7.3.33
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
X-UA-Compatible: IE=edge
Link: <https://sahraaljazeerah.com/wp-json/>; rel="https://api.w.org/"
Connection: close
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
bancavirtual.banrural.com.gt/cb/web/css/font-futura.css
66.22.18.176200 OK 0 B URL HTTP/2 bancavirtual.banrural.com.gt/cb/web/css/font-futura.css
IP 66.22.18.176:0
ASN #25773 RADWARE-CLOUD-SERVICES
GET /cb/web/css/font-futura.css HTTP/1.1
Host: bancavirtual.banrural.com.gt
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://sahraaljazeerah.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/css
date: Thu, 24 Nov 2022 22:45:17 GMT
x-frame-options: SAMEORIGIN
cache-control: private, max-age=3600, must-revalidate
last-modified: Mon, 03 Oct 2022 16:41:06 GMT
expires: Fri, 25 Nov 2022 22:45:16 GMT
retry-after: Fri, 25 Nov 2022 22:45:16 GMT
content-language: en-US
set-cookie: NSC_MC_QsQspe_CW_IUUQ=ffffffff09a8d60445525d5f4f58455e445a4a42378b;expires=Thu, 24-Nov-2022 22:46:05 GMT;path=/;secure;httponly
content-encoding: gzip
X-Firefox-Spdy: h2
bancavirtual.banrural.com.gt/cb/web/css/showLoading.min.css
66.22.18.176200 OK 0 B URL HTTP/2 bancavirtual.banrural.com.gt/cb/web/css/showLoading.min.css
IP 66.22.18.176:0
ASN #25773 RADWARE-CLOUD-SERVICES
GET /cb/web/css/showLoading.min.css HTTP/1.1
Host: bancavirtual.banrural.com.gt
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://sahraaljazeerah.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/css
date: Thu, 24 Nov 2022 22:45:17 GMT
x-frame-options: SAMEORIGIN
cache-control: private, max-age=3600, must-revalidate
last-modified: Mon, 03 Oct 2022 16:41:58 GMT
expires: Fri, 25 Nov 2022 22:45:16 GMT
retry-after: Fri, 25 Nov 2022 22:45:16 GMT
content-language: en-US
set-cookie: NSC_MC_QsQspe_CW_IUUQ=ffffffff09a8d60445525d5f4f58455e445a4a42378b;expires=Thu, 24-Nov-2022 22:46:05 GMT;path=/;secure;httponly
content-encoding: gzip
X-Firefox-Spdy: h2
bancavirtual.banrural.com.gt/cb/web/css/normalize.css
66.22.18.176200 OK 0 B URL HTTP/2 bancavirtual.banrural.com.gt/cb/web/css/normalize.css
IP 66.22.18.176:0
ASN #25773 RADWARE-CLOUD-SERVICES
GET /cb/web/css/normalize.css HTTP/1.1
Host: bancavirtual.banrural.com.gt
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://sahraaljazeerah.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css
date: Thu, 24 Nov 2022 22:44:13 GMT
x-frame-options: SAMEORIGIN
cache-control: private, max-age=3600, must-revalidate
last-modified: Mon, 03 Oct 2022 16:41:06 GMT
expires: Fri, 25 Nov 2022 22:45:11 GMT
retry-after: Fri, 25 Nov 2022 22:45:11 GMT
content-language: en-US
set-cookie: NSC_MC_QsQspe_CW_IUUQ=ffffffff09a8d60745525d5f4f58455e445a4a42378b;expires=Thu, 24-Nov-2022 22:46:05 GMT;path=/;secure;httponly
content-encoding: gzip
X-Firefox-Spdy: h2
bancavirtual.banrural.com.gt/cb/struts/js/struts2/jquery.struts2.min.js
66.22.18.176200 OK 0 B URL HTTP/2 bancavirtual.banrural.com.gt/cb/struts/js/struts2/jquery.struts2.min.js
IP 66.22.18.176:0
ASN #25773 RADWARE-CLOUD-SERVICES
GET /cb/struts/js/struts2/jquery.struts2.min.js HTTP/1.1
Host: bancavirtual.banrural.com.gt
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://sahraaljazeerah.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/javascript
date: Thu, 24 Nov 2022 22:45:17 GMT
x-frame-options: SAMEORIGIN
expires: -1
retry-after: Fri, 25 Nov 2022 22:44:05 GMT
pragma: no-cache
last-modified: Thu, 24 Nov 2022 21:06:26 GMT
cache-control: private, must-revalidate, max-age=3600, no-cache=set-cookie
content-language: en-US
set-cookie: JSESSIONID=00014WenmSlbBsG2v_661EGxZKe:-1O02SCI; Path=/cb; Domain=bancavirtual.banrural.com.gt; Secure; HttpOnly
NSC_MC_QsQspe_CW_IUUQ=ffffffff09a8d60445525d5f4f58455e445a4a42378b;expires=Thu, 24-Nov-2022 22:46:05 GMT;path=/;secure;httponly
content-encoding: gzip
X-Firefox-Spdy: h2
bancavirtual.banrural.com.gt/cb/web/css/banrural/forms.css
66.22.18.176200 OK 0 B URL HTTP/2 bancavirtual.banrural.com.gt/cb/web/css/banrural/forms.css
IP 66.22.18.176:0
ASN #25773 RADWARE-CLOUD-SERVICES
GET /cb/web/css/banrural/forms.css HTTP/1.1
Host: bancavirtual.banrural.com.gt
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bancavirtual.banrural.com.gt/cb/web/css/login.css
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/css
date: Thu, 24 Nov 2022 22:44:13 GMT
x-frame-options: SAMEORIGIN
cache-control: private, max-age=3600, must-revalidate
last-modified: Mon, 03 Oct 2022 16:41:06 GMT
expires: Fri, 25 Nov 2022 22:45:12 GMT
retry-after: Fri, 25 Nov 2022 22:45:12 GMT
content-language: en-US
set-cookie: NSC_MC_QsQspe_CW_IUUQ=ffffffff09a8d60745525d5f4f58455e445a4a42378b;expires=Thu, 24-Nov-2022 22:46:05 GMT;path=/;secure;httponly
content-encoding: gzip
X-Firefox-Spdy: h2
bancavirtual.banrural.com.gt/cb/web/css/banrural/commons.css
66.22.18.176200 OK 0 B URL HTTP/2 bancavirtual.banrural.com.gt/cb/web/css/banrural/commons.css
IP 66.22.18.176:0
ASN #25773 RADWARE-CLOUD-SERVICES
GET /cb/web/css/banrural/commons.css HTTP/1.1
Host: bancavirtual.banrural.com.gt
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bancavirtual.banrural.com.gt/cb/web/css/login.css
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/css
date: Thu, 24 Nov 2022 22:45:17 GMT
x-frame-options: SAMEORIGIN
cache-control: private, max-age=3600, must-revalidate
last-modified: Mon, 03 Oct 2022 16:41:06 GMT
expires: Fri, 25 Nov 2022 22:45:16 GMT
retry-after: Fri, 25 Nov 2022 22:45:16 GMT
content-language: en-US
set-cookie: NSC_MC_QsQspe_CW_IUUQ=ffffffff09a8d60445525d5f4f58455e445a4a42378b;expires=Thu, 24-Nov-2022 22:46:05 GMT;path=/;secure;httponly
content-encoding: gzip
X-Firefox-Spdy: h2
bancavirtual.banrural.com.gt/cb/web/css/banrural/icons.css
66.22.18.176200 OK 0 B URL HTTP/2 bancavirtual.banrural.com.gt/cb/web/css/banrural/icons.css
IP 66.22.18.176:0
ASN #25773 RADWARE-CLOUD-SERVICES
GET /cb/web/css/banrural/icons.css HTTP/1.1
Host: bancavirtual.banrural.com.gt
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bancavirtual.banrural.com.gt/cb/web/css/login.css
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/css
date: Thu, 24 Nov 2022 22:45:17 GMT
x-frame-options: SAMEORIGIN
cache-control: private, max-age=3600, must-revalidate
last-modified: Mon, 03 Oct 2022 16:41:48 GMT
expires: Fri, 25 Nov 2022 22:45:16 GMT
retry-after: Fri, 25 Nov 2022 22:45:16 GMT
content-language: en-US
set-cookie: NSC_MC_QsQspe_CW_IUUQ=ffffffff09a8d60445525d5f4f58455e445a4a42378b;expires=Thu, 24-Nov-2022 22:46:05 GMT;path=/;secure;httponly
content-encoding: gzip
X-Firefox-Spdy: h2
stats.banrural.com.gt/jquery-ui-css.min.js
45.60.47.11200 OK 0 B URL HTTP/2 stats.banrural.com.gt/jquery-ui-css.min.js
IP 45.60.47.11:0
GET /jquery-ui-css.min.js HTTP/1.1
Host: stats.banrural.com.gt
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://sahraaljazeerah.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
etag: W/"13d3d7-Yaa+EY2be64xeLWhrjQ23YnhNoo"
content-type: application/javascript; charset=utf-8
content-length: 330441
content-encoding: gzip
cache-control: max-age=27959, public, must-revalidate
expires: Fri, 25 Nov 2022 06:30:03 GMT
date: Thu, 24 Nov 2022 22:44:04 GMT
set-cookie: visid_incap_2815094=cmUJiNzmSYaAXLhYWMyUWrTzf2MAAAAAQUIPAAAAAABXsRKEUS5eGQDYs75c+rhU; expires=Fri, 24 Nov 2023 22:16:27 GMT; HttpOnly; path=/; Domain=.banrural.com.gt
incap_ses_722_2815094=kPyhbaYNMW/5zuvmFxAFCrTzf2MAAAAAXgdfnxErsNkzq82dYoBr9A==; path=/; Domain=.banrural.com.gt
x-cdn: Imperva
x-iinfo: 12-30587146-30585849 2CNN RT(1669329844906 22) q(0 0 0 0) r(0 0)
X-Firefox-Spdy: h2
sahraaljazeerah.com/cb/web/js/custom.validation.js
96.127.183.234404 Not Found 0 B URL HTTP/1.1 sahraaljazeerah.com/cb/web/js/custom.validation.js
IP 96.127.183.234:0
Analyzer Verdict Alert fortinet Phishing
GET /cb/web/js/custom.validation.js HTTP/1.1
Host: sahraaljazeerah.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sahraaljazeerah.com/asistenciaruralgtgt/
Cookie: PHPSESSID=ae3f1876ad51df4003aee26482cfbf0c; __ssds=2; __ssuzjsr2=a9be0cd8e; dvsst=null; dvssv=null; igfvalue=null
HTTP/1.1 404 Not Found
Date: Thu, 24 Nov 2022 22:44:14 GMT
Server: Apache
X-Powered-By: PHP/7.3.33
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
X-UA-Compatible: IE=edge
Link: <https://sahraaljazeerah.com/wp-json/>; rel="https://api.w.org/"
Connection: close
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
bancavirtual.banrural.com.gt/cb/web/css/home/jquery/layout.css
66.22.18.176200 OK 0 B URL HTTP/2 bancavirtual.banrural.com.gt/cb/web/css/home/jquery/layout.css
IP 66.22.18.176:0
ASN #25773 RADWARE-CLOUD-SERVICES
GET /cb/web/css/home/jquery/layout.css HTTP/1.1
Host: bancavirtual.banrural.com.gt
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://sahraaljazeerah.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/css
date: Thu, 24 Nov 2022 22:45:17 GMT
x-frame-options: SAMEORIGIN
cache-control: private, max-age=3600, must-revalidate
last-modified: Mon, 03 Oct 2022 16:41:06 GMT
expires: Fri, 25 Nov 2022 22:45:16 GMT
retry-after: Fri, 25 Nov 2022 22:45:16 GMT
content-language: en-US
set-cookie: NSC_MC_QsQspe_CW_IUUQ=ffffffff09a8d60445525d5f4f58455e445a4a42378b;expires=Thu, 24-Nov-2022 22:46:05 GMT;path=/;secure;httponly
content-encoding: gzip
X-Firefox-Spdy: h2
bancavirtual.banrural.com.gt/cb/web/css/ui.selectmenu.min.css
66.22.18.176200 OK 0 B URL HTTP/2 bancavirtual.banrural.com.gt/cb/web/css/ui.selectmenu.min.css
IP 66.22.18.176:0
ASN #25773 RADWARE-CLOUD-SERVICES
GET /cb/web/css/ui.selectmenu.min.css HTTP/1.1
Host: bancavirtual.banrural.com.gt
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://sahraaljazeerah.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/css
date: Thu, 24 Nov 2022 22:44:13 GMT
x-frame-options: SAMEORIGIN
cache-control: private, max-age=3600, must-revalidate
last-modified: Mon, 03 Oct 2022 16:41:58 GMT
expires: Fri, 25 Nov 2022 22:45:11 GMT
retry-after: Fri, 25 Nov 2022 22:45:11 GMT
content-language: en-US
set-cookie: NSC_MC_QsQspe_CW_IUUQ=ffffffff09a8d60745525d5f4f58455e445a4a42378b;expires=Thu, 24-Nov-2022 22:46:05 GMT;path=/;secure;httponly
content-encoding: gzip
X-Firefox-Spdy: h2
bancavirtual.banrural.com.gt/cb/web/css/login.css
66.22.18.176200 OK 0 B URL HTTP/2 bancavirtual.banrural.com.gt/cb/web/css/login.css
IP 66.22.18.176:0
ASN #25773 RADWARE-CLOUD-SERVICES
GET /cb/web/css/login.css HTTP/1.1
Host: bancavirtual.banrural.com.gt
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://sahraaljazeerah.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/css
date: Thu, 24 Nov 2022 22:44:13 GMT
x-frame-options: SAMEORIGIN
cache-control: private, max-age=3600, must-revalidate
last-modified: Mon, 03 Oct 2022 16:41:06 GMT
expires: Fri, 25 Nov 2022 22:45:11 GMT
retry-after: Fri, 25 Nov 2022 22:45:11 GMT
content-language: en-US
set-cookie: NSC_MC_QsQspe_CW_IUUQ=ffffffff09a8d60745525d5f4f58455e445a4a42378b;expires=Thu, 24-Nov-2022 22:46:05 GMT;path=/;secure;httponly
content-encoding: gzip
X-Firefox-Spdy: h2
bancavirtual.banrural.com.gt/cb/web/css/font-awesome.css
66.22.18.176200 OK 0 B URL HTTP/2 bancavirtual.banrural.com.gt/cb/web/css/font-awesome.css
IP 66.22.18.176:0
ASN #25773 RADWARE-CLOUD-SERVICES
GET /cb/web/css/font-awesome.css HTTP/1.1
Host: bancavirtual.banrural.com.gt
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://sahraaljazeerah.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/css
date: Thu, 24 Nov 2022 22:45:17 GMT
x-frame-options: SAMEORIGIN
cache-control: private, max-age=3600, must-revalidate
last-modified: Mon, 03 Oct 2022 16:41:06 GMT
expires: Fri, 25 Nov 2022 22:45:16 GMT
retry-after: Fri, 25 Nov 2022 22:45:16 GMT
content-language: en-US
set-cookie: NSC_MC_QsQspe_CW_IUUQ=ffffffff09a8d60445525d5f4f58455e445a4a42378b;expires=Thu, 24-Nov-2022 22:46:05 GMT;path=/;secure;httponly
content-encoding: gzip
X-Firefox-Spdy: h2