r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 3bbb845b153026fc5332dd4506585b57
3cad200fac28fd00f34ce6ef79373e661e188743
6035871c0de6ff2d120921461207cfa32bc286e1fe78849ce74815ffbb9ff950
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6035871C0DE6FF2D120921461207CFA32BC286E1FE78849CE74815FFBB9FF950"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13036
Expires: Sun, 04 Dec 2022 01:33:53 GMT
Date: Sat, 03 Dec 2022 21:56:37 GMT
Connection: keep-alive
itau.clienteseguridadcl.com/App7f4f5a2/index.php
20.163.177.109301 Moved Permanently 341 B URL HTTP/1.1 itau.clienteseguridadcl.com/App7f4f5a2/index.php
IP 20.163.177.109:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 19400f72a0251cb1cd26fc67d217eb3b
b66835d83f49e3d71e06a8e51da60a4ec8073a07
7244afbb6734aa0c9f3f2bc1b3b2798d6817d6e91a6fc051249210cce8d3d0f3
Analyzer Verdict Alert fortinet Phishing
GET /App7f4f5a2/index.php HTTP/1.1
Host: itau.clienteseguridadcl.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Sat, 03 Dec 2022 21:56:37 GMT
Server: Apache
Location: https://itau.clienteseguridadcl.com/App7f4f5a2/index.php
Content-Length: 341
Connection: close
Content-Type: text/html; charset=iso-8859-1
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 67e9370f1bf3e4946a01f346eeae8966
aaab391d1134302d718de7a0d5edbedf884633e6
27a8654fb14db88d4b2bb3b45c1b197fc498cd94143d4a68687742fa48a41358
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5689
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 21:56:37 GMT
Etag: "638b2570-1d7"
Last-Modified: Sat, 03 Dec 2022 20:21:48 GMT
Server: ECS (ska/F710)
X-Cache: HIT
Content-Length: 471
firefox.settings.services.mozilla.com/v1/
34.102.187.140200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 30db107dcf4380cef05efea409c2e6a3
96e6a306fbc07299aba64e5c14e2bfca35872fa9
b64051a4a8e346e3c72b2aef77f360a5736ab5e16711d8e0bae3876feaa15b6e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Content-Type, Backoff, Content-Length, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sat, 03 Dec 2022 21:18:17 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 2300
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 55b4c61a1e99001307750e3647fe1102
7559f9f6770b7d3f45b723167062096312641e08
39f6bb64420bcfc8f0b010168fd35b67732984cd0698409f04d5ae40410422aa
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "39F6BB64420BCFC8F0B010168FD35B67732984CD0698409F04D5AE40410422AA"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14683
Expires: Sun, 04 Dec 2022 02:01:20 GMT
Date: Sat, 03 Dec 2022 21:56:37 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 9ebddc2b260d081ebbefee47c037cb28
492bad62a7ca6a74738921ef5ae6f0be5edebf39
74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5
GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: aeqWkvvEd1SMDLIIjEkBwFdYtUKQnnz0+ZrXCt133DMGI6gAKTTt2jia6E1kT4zll20o6Z4MZnk=
x-amz-request-id: ZQNWVHNS2J0RA3S8
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sat, 03 Dec 2022 21:46:43 GMT
age: 594
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 03 Dec 2022 21:56:37 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
34.102.187.140200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, ETag, Alert, Expires, Cache-Control, Backoff, Content-Length, Content-Type, Pragma, Last-Modified
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sat, 03 Dec 2022 21:08:58 GMT
cache-control: public,max-age=3600
age: 2859
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 902efa19b78487efaef77806b73a7696
f06aba3ac9f21637b8bd91922f54211f830a8007
bb7383e6fd711ed58d21a0aaeba6d19de010a435a5a7d68fe09e25dc905b8b6b
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BB7383E6FD711ED58D21A0AAEBA6D19DE010A435A5A7D68FE09E25DC905B8B6B"
Last-Modified: Fri, 02 Dec 2022 15:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21595
Expires: Sun, 04 Dec 2022 03:56:32 GMT
Date: Sat, 03 Dec 2022 21:56:37 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash a151c326c67e1abb747847c1427db76f
80885d30ef8ba867bf33c40b861976958a27493a
de2b573ee1c8af980e593352e0c331b2595f62bd4499300ace30821d20814760
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5676
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 21:56:38 GMT
Last-Modified: Sat, 03 Dec 2022 20:22:02 GMT
Server: ECS (ska/F710)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
52.39.96.8101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.39.96.8:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: yZtUoflKwjXVw38McwOknA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: yT1S5vVTlPvSU7UYAfUh6CWh6Bs=
itau.clienteseguridadcl.com/App7f4f5a2/index.php
20.163.177.109302 Found 0 B URL HTTP/2 itau.clienteseguridadcl.com/App7f4f5a2/index.php
IP 20.163.177.109:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Phishing
GET /App7f4f5a2/index.php HTTP/1.1
Host: itau.clienteseguridadcl.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 302 Found
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
set-cookie: PHPSESSID=q8r1mi0ag7p7irqa8pj4l24rnl; path=/
location: access.php
content-length: 0
content-type: text/html; charset=UTF-8
date: Sat, 03 Dec 2022 21:56:38 GMT
server: Apache
X-Firefox-Spdy: h2
itau.clienteseguridadcl.com/App7f4f5a2/access.php
20.163.177.109200 OK 2.1 kB URL HTTP/2 itau.clienteseguridadcl.com/App7f4f5a2/access.php
IP 20.163.177.109:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with CRLF line terminators
Hash d450eb1afd111a3c0e685aec935bf183
6bd10c4982ae56070d0ab37f56bbe816ca7bf9f3
0f7bf377b1c2fb1ff3fc2a5aa4bb6acb6b18688a06f45d10b1a2acd86997f902
Analyzer Verdict Alert fortinet Phishing
GET /App7f4f5a2/access.php HTTP/1.1
Host: itau.clienteseguridadcl.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: PHPSESSID=q8r1mi0ag7p7irqa8pj4l24rnl
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
TE: trailers
HTTP/2 200 OK
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
vary: Accept-Encoding
content-encoding: gzip
content-length: 2057
content-type: text/html; charset=UTF-8
date: Sat, 03 Dec 2022 21:56:39 GMT
server: Apache
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 53e1c8e61a54ff0513756ab2affd2a1b
8c056a5eb93b355e9848402451fa0efebecd224e
52d7b496948fa4627f3dce5c6102e9233fb4b794d3d31e36bca7d18d4e53bda8
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4810
Cache-Control: max-age=142224
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 21:56:39 GMT
Etag: "638b3bdd-1d7"
Expires: Mon, 05 Dec 2022 13:27:03 GMT
Last-Modified: Sat, 03 Dec 2022 12:06:53 GMT
Server: ECS (ska/F710)
X-Cache: HIT
Content-Length: 471
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash ecab83d593cc540b02689be5be7abc8a
81cda579b7b9b22332b85266b0126585f3d3f73f
d469c5adb69f261084b016f8e24edf8b69b62d9f930ca2d85cf35375e2303ecc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D469C5ADB69F261084B016F8E24EDF8B69B62D9F930CA2D85CF35375E2303ECC"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15576
Expires: Sun, 04 Dec 2022 02:16:15 GMT
Date: Sat, 03 Dec 2022 21:56:39 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash ecab83d593cc540b02689be5be7abc8a
81cda579b7b9b22332b85266b0126585f3d3f73f
d469c5adb69f261084b016f8e24edf8b69b62d9f930ca2d85cf35375e2303ecc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D469C5ADB69F261084B016F8E24EDF8B69B62D9F930CA2D85CF35375E2303ECC"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15576
Expires: Sun, 04 Dec 2022 02:16:15 GMT
Date: Sat, 03 Dec 2022 21:56:39 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F73b53015-e415-4fff-9252-8a16bbe000f5.jpeg
34.120.237.76200 OK 9.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F73b53015-e415-4fff-9252-8a16bbe000f5.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 45182367fd4f8b6dd234eef1022acdb1
d4b3052021ff3ad1dc4134fa25eb12a98e7c17da
a57fadaf74db2fb457cfe761314d56f021d22146f5bdb6a8bf11b6519e8a558d
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F73b53015-e415-4fff-9252-8a16bbe000f5.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9715
x-amzn-requestid: c8102cfa-78dc-4d81-ad6a-e16b9132e238
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ciZO2HQKIAMF8IA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638a6f2b-350c586b568e6565763376bd;Sampled=0
x-amzn-remapped-date: Fri, 02 Dec 2022 21:33:31 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 0QkVKyYm9UwlF5FEeli9UsRAQwEi3-c3bMR-QSJxIKRQe7WWT76dGQ==
via: 1.1 030fe0607711293dda988e571617a9f2.cloudfront.net (CloudFront), 1.1 d6b180eb367f7de26d67a9f3901b96a6.cloudfront.net (CloudFront), 1.1 google
date: Sat, 03 Dec 2022 21:37:54 GMT
age: 1125
etag: "d4b3052021ff3ad1dc4134fa25eb12a98e7c17da"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F683f066f-699d-4765-8f4f-33c72e1672e2.jpeg
34.120.237.76200 OK 6.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F683f066f-699d-4765-8f4f-33c72e1672e2.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b986f9fcbeca91ed5c8d58fbfaf47d19
6e6c8bd2bce144cc4da1cd7be375b046b60dca79
07a8938d2841f8c13bd646f4e79e41e46acd6463aa019cd70871b3741f12bb4f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F683f066f-699d-4765-8f4f-33c72e1672e2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6174
x-amzn-requestid: f78f1e9d-8c0c-495d-a862-61838f8297e8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cZ0iyH2WoAMFQdg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63870144-45442a8544259930564f685b;Sampled=0
x-amzn-remapped-date: Wed, 30 Nov 2022 07:07:48 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: QIOz71_Kr08pIIwOm2GUkWr421fO7-UyUI7LYld0JBaGnYQ0j3IDFg==
via: 1.1 eece508272520f70691e4eebdc5a6dea.cloudfront.net (CloudFront), 1.1 d6a002c70d55f415107618b0750d493c.cloudfront.net (CloudFront), 1.1 google
date: Sat, 03 Dec 2022 06:00:50 GMT
age: 57349
etag: "6e6c8bd2bce144cc4da1cd7be375b046b60dca79"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcca8556b-b044-489f-bc74-086aad62b062.webp
34.120.237.76200 OK 7.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcca8556b-b044-489f-bc74-086aad62b062.webp
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d147ccb10bda82b153a596c3c967cd6a
ffd0763f997e71a8c1458523fc17cafe8849dfdf
1cfeb90a4ba027195f903d938d4a0aac418a1c2f0b52215ec023263f15905971
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcca8556b-b044-489f-bc74-086aad62b062.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7591
x-amzn-requestid: e179862e-f840-4e50-a9dc-09f325479b9a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cfGgMFRZIAMFl7g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63891e01-676a1571459f2d83488f2765;Sampled=0
x-amzn-remapped-date: Thu, 01 Dec 2022 21:34:57 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 2pD4fv8j-zQzBZ9Pubo1-6UbvQpWMBb26ft_bn1pq9cWSCXsPXPW3g==
via: 1.1 5ab5dc09da67e3ea794ec8a82992cc88.cloudfront.net (CloudFront), 1.1 760139201585481b26f947c5f776103a.cloudfront.net (CloudFront), 1.1 google
date: Sat, 03 Dec 2022 21:53:25 GMT
age: 194
etag: "ffd0763f997e71a8c1458523fc17cafe8849dfdf"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd7dc00fa-a8d3-44bf-ba84-1998d8dd7c5a.jpeg
34.120.237.76200 OK 4.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd7dc00fa-a8d3-44bf-ba84-1998d8dd7c5a.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash fcb89ca25035b2bbb71ae5dd175fcd40
544428cdad754b1bb7be3cd46a79bf078fd5b450
36dcbbe6cd2710ee502776b4bcf32053e92b750a55e2bd4cdeadbc694c7c2699
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd7dc00fa-a8d3-44bf-ba84-1998d8dd7c5a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4309
x-amzn-requestid: c824c317-e6e3-4006-9f9d-ea54e8170a4c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cf2_tGErIAMF8_A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63896b97-7fc523296afea4dd4b5d1de8;Sampled=0
x-amzn-remapped-date: Fri, 02 Dec 2022 03:05:59 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: tp50A9LYeT1RvSPImBUoQNKtarPryKb8Zacm_nxqDh-gegwdQov7Nw==
via: 1.1 40b967aa4aa18637c4b91214147f3cb4.cloudfront.net (CloudFront), 1.1 943c6a4d4ee43b18ee91634536f53eae.cloudfront.net (CloudFront), 1.1 google
date: Sat, 03 Dec 2022 03:50:52 GMT
age: 65147
etag: "544428cdad754b1bb7be3cd46a79bf078fd5b450"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6b6b798b-d396-454d-9d5b-17b47827e4ad.jpeg
34.120.237.76200 OK 2.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6b6b798b-d396-454d-9d5b-17b47827e4ad.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b47431190f34eccf0a6efb98e2a32b7d
9fc7ab3a4eb2d36fd6df7e0267a26a47627d1704
08d3b6be354cafb70c20e6865788cb375adbf88d47711651fe1a3b855094daf2
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6b6b798b-d396-454d-9d5b-17b47827e4ad.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 2942
x-amzn-requestid: ed26679f-cd56-477f-9914-f9afbcaaeea6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cfGeoGFYoAMFWgA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63891df7-4ec6bebe21656d5026456994;Sampled=0
x-amzn-remapped-date: Thu, 01 Dec 2022 21:34:47 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: XvG2dAUeB914GQ1qJwQRHovAtra8OSjG-CsXeR8UOBq5r8qVjEbPBQ==
via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 57a21088b36c69a83578b5a5579df58e.cloudfront.net (CloudFront), 1.1 google
date: Fri, 02 Dec 2022 22:39:04 GMT
age: 83855
etag: "9fc7ab3a4eb2d36fd6df7e0267a26a47627d1704"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F627a3f86-b7fa-44c4-a119-2e3d23eb8b6a.jpeg
34.120.237.76200 OK 5.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F627a3f86-b7fa-44c4-a119-2e3d23eb8b6a.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 1e74254b3fdce7d6b84a71a7aff43789
65c8b4abf957f9b54d99d0f78559e639adb29efb
f278c3cc6734da7188862a8c651c803e7ac1fda82234e191761453cb1359d3ee
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F627a3f86-b7fa-44c4-a119-2e3d23eb8b6a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5354
x-amzn-requestid: 3d58ffea-3433-4c5c-a60b-17f6de3a33e5
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cSsnvG44oAMFfyQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638427ca-63b375f04189b7ce7d84cd5d;Sampled=0
x-amzn-remapped-date: Mon, 28 Nov 2022 03:15:22 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: GBhAilKMKo9RvIzqzF9V4jTZbvpa2rPZeoy6Jy8fMc1-JO078OAYzQ==
via: 1.1 0c96ded7ff282d2dbcf47c918b6bb500.cloudfront.net (CloudFront), 1.1 9046e5a276a05e60ee34c8475e92b8e6.cloudfront.net (CloudFront), 1.1 google
date: Sat, 03 Dec 2022 05:53:40 GMT
age: 57779
etag: "65c8b4abf957f9b54d99d0f78559e639adb29efb"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
itau.clienteseguridadcl.com/public/styles/reset.css
20.163.177.109200 OK 769 B URL HTTP/2 itau.clienteseguridadcl.com/public/styles/reset.css
IP 20.163.177.109:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type ASCII text, with CRLF line terminators
Hash dc97d71499538173ca2e1a73ca7002ef
c05d5dc684c6bf364c80a2cb42196d4603d4717e
a1b9526d7a84917c12f615264bae43078341d24bf59d8ba9175b0cc71645e058
GET /public/styles/reset.css HTTP/1.1
Host: itau.clienteseguridadcl.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://itau.clienteseguridadcl.com/App7f4f5a2/access.php
Cookie: PHPSESSID=q8r1mi0ag7p7irqa8pj4l24rnl
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 20 Jan 2022 19:49:48 GMT
etag: "6b6-5d608ce03ef00-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 769
content-type: text/css
date: Sat, 03 Dec 2022 21:56:39 GMT
server: Apache
X-Firefox-Spdy: h2
itau.clienteseguridadcl.com/public/images/icon_back.png
20.163.177.109200 OK 605 B URL HTTP/2 itau.clienteseguridadcl.com/public/images/icon_back.png
IP 20.163.177.109:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type PNG image data, 15 x 15, 8-bit/color RGBA, non-interlaced\012- data
Hash c9094b02912aa7eef4b4d6fc4af47b90
73eac9e2b536fb949a34f8776c3ad2c31cceca80
831123fa9246bf5ba5a439c54d860e54ca120b9cc8a0a9cd67d06ca5eaf619c0
GET /public/images/icon_back.png HTTP/1.1
Host: itau.clienteseguridadcl.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://itau.clienteseguridadcl.com/App7f4f5a2/access.php
Cookie: PHPSESSID=q8r1mi0ag7p7irqa8pj4l24rnl
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 28 Sep 2021 17:05:36 GMT
etag: "25d-5cd1138e19800"
accept-ranges: bytes
content-length: 605
content-type: image/png
date: Sat, 03 Dec 2022 21:56:39 GMT
server: Apache
X-Firefox-Spdy: h2
itau.clienteseguridadcl.com/public/images/icon_lock.png
20.163.177.109200 OK 581 B URL HTTP/2 itau.clienteseguridadcl.com/public/images/icon_lock.png
IP 20.163.177.109:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type PNG image data, 15 x 15, 8-bit/color RGBA, non-interlaced\012- data
Hash d3f35d4440b1c71519f00752f80638f6
f53b0689c07347932a4d724c31fc90efe0fba456
c25112e81acf9a71bed2d4403356fc006cda1c8dee7bd2a090c72ac382913581
GET /public/images/icon_lock.png HTTP/1.1
Host: itau.clienteseguridadcl.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://itau.clienteseguridadcl.com/App7f4f5a2/access.php
Cookie: PHPSESSID=q8r1mi0ag7p7irqa8pj4l24rnl
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 28 Sep 2021 18:09:24 GMT
etag: "245-5cd121d0c3d00"
accept-ranges: bytes
content-length: 581
content-type: image/png
date: Sat, 03 Dec 2022 21:56:39 GMT
server: Apache
X-Firefox-Spdy: h2
itau.clienteseguridadcl.com/public/images/icon_rec_1.png
20.163.177.109200 OK 601 B URL HTTP/2 itau.clienteseguridadcl.com/public/images/icon_rec_1.png
IP 20.163.177.109:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type PNG image data, 24 x 20, 8-bit/color RGBA, non-interlaced\012- data
Hash 800754bd405263cb61c15d511f9833c2
5d7928b6aab3d0ac43339fc9d1acf73fdd8efb59
026246d59baa670144c9867ecf74adb03019597cfe3c3be4f0a25b58220e72c5
GET /public/images/icon_rec_1.png HTTP/1.1
Host: itau.clienteseguridadcl.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://itau.clienteseguridadcl.com/App7f4f5a2/access.php
Cookie: PHPSESSID=q8r1mi0ag7p7irqa8pj4l24rnl
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 28 Sep 2021 17:20:50 GMT
etag: "259-5cd116f5c2080"
accept-ranges: bytes
content-length: 601
content-type: image/png
date: Sat, 03 Dec 2022 21:56:39 GMT
server: Apache
X-Firefox-Spdy: h2
itau.clienteseguridadcl.com/public/images/icon_rec_2.png
20.163.177.109200 OK 804 B URL HTTP/2 itau.clienteseguridadcl.com/public/images/icon_rec_2.png
IP 20.163.177.109:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type PNG image data, 24 x 20, 8-bit/color RGBA, non-interlaced\012- data
Hash bfaa91e19f357ae9f631d461e93cd15b
a73bd46b96f38226cdedc0ce6ea7d761303f6f31
64e9069db08075ad828fa7a6399fdf557b369890a912df781534c2f69075c4f8
GET /public/images/icon_rec_2.png HTTP/1.1
Host: itau.clienteseguridadcl.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://itau.clienteseguridadcl.com/App7f4f5a2/access.php
Cookie: PHPSESSID=q8r1mi0ag7p7irqa8pj4l24rnl
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 28 Sep 2021 17:21:00 GMT
etag: "324-5cd116ff4b700"
accept-ranges: bytes
content-length: 804
content-type: image/png
date: Sat, 03 Dec 2022 21:56:39 GMT
server: Apache
X-Firefox-Spdy: h2
itau.clienteseguridadcl.com/public/images/icon_rec_3.png
20.163.177.109200 OK 683 B URL HTTP/2 itau.clienteseguridadcl.com/public/images/icon_rec_3.png
IP 20.163.177.109:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type PNG image data, 24 x 23, 8-bit/color RGB, non-interlaced\012- data
Hash 88c928921cf8da2f6a4a371f4e83a8e6
313076344cb4bc2a193106cde646866460772906
ecb0722b625a146f6ef3ea2a502affd78e27d6f8c3b965811a0e03ce20353117
GET /public/images/icon_rec_3.png HTTP/1.1
Host: itau.clienteseguridadcl.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://itau.clienteseguridadcl.com/App7f4f5a2/access.php
Cookie: PHPSESSID=q8r1mi0ag7p7irqa8pj4l24rnl
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 28 Sep 2021 17:21:24 GMT
etag: "2ab-5cd117162ed00"
accept-ranges: bytes
content-length: 683
content-type: image/png
date: Sat, 03 Dec 2022 21:56:39 GMT
server: Apache
X-Firefox-Spdy: h2
itau.clienteseguridadcl.com/public/images/icon_help.png
20.163.177.109200 OK 738 B URL HTTP/2 itau.clienteseguridadcl.com/public/images/icon_help.png
IP 20.163.177.109:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type PNG image data, 20 x 20, 8-bit/color RGB, non-interlaced\012- data
Hash 077b3611426a9edf4fe99fca774d0a50
56173892d4b90057810d5ec6d3edc542bf751216
cc92667feb9bd6c882ae05668324e21099930721bdb7660f3449511455aa2703
GET /public/images/icon_help.png HTTP/1.1
Host: itau.clienteseguridadcl.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://itau.clienteseguridadcl.com/App7f4f5a2/access.php
Cookie: PHPSESSID=q8r1mi0ag7p7irqa8pj4l24rnl
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 28 Sep 2021 17:26:52 GMT
etag: "2e2-5cd1184efcf00"
accept-ranges: bytes
content-length: 738
content-type: image/png
date: Sat, 03 Dec 2022 21:56:39 GMT
server: Apache
X-Firefox-Spdy: h2
itau.clienteseguridadcl.com/public/images/logo.png
20.163.177.109200 OK 3.9 kB URL HTTP/2 itau.clienteseguridadcl.com/public/images/logo.png
IP 20.163.177.109:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type PNG image data, 45 x 45, 8-bit/color RGBA, non-interlaced\012- data
Hash 19ad64f1cd518083c3c63dd2c11b92c4
d115daf163552e12190951d66a1a1818b342d9a0
ebb81553415bb0eabd6ebbfec35d9faca5caf60c7d5ce5a699bb126b3fecc196
GET /public/images/logo.png HTTP/1.1
Host: itau.clienteseguridadcl.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://itau.clienteseguridadcl.com/App7f4f5a2/access.php
Cookie: PHPSESSID=q8r1mi0ag7p7irqa8pj4l24rnl
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 28 Sep 2021 17:07:16 GMT
etag: "f49-5cd113ed77900"
accept-ranges: bytes
content-length: 3913
content-type: image/png
date: Sat, 03 Dec 2022 21:56:39 GMT
server: Apache
X-Firefox-Spdy: h2
itau.clienteseguridadcl.com/public/images/icon_rec_4.png
20.163.177.109200 OK 947 B URL HTTP/2 itau.clienteseguridadcl.com/public/images/icon_rec_4.png
IP 20.163.177.109:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type PNG image data, 24 x 23, 8-bit/color RGB, non-interlaced\012- data
Hash 2693d9476e77b3f9b7dd7efccf521d9a
95c6c759e7af8bfe324f22a0eb58bf2d52e7bb5b
bbb9c603f57acbe11a14d84ccdf066dff2c04186baa4e6e1c069a40c496f2200
GET /public/images/icon_rec_4.png HTTP/1.1
Host: itau.clienteseguridadcl.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://itau.clienteseguridadcl.com/App7f4f5a2/access.php
Cookie: PHPSESSID=q8r1mi0ag7p7irqa8pj4l24rnl
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 28 Sep 2021 17:21:44 GMT
etag: "3b3-5cd1172941a00"
accept-ranges: bytes
content-length: 947
content-type: image/png
date: Sat, 03 Dec 2022 21:56:39 GMT
server: Apache
X-Firefox-Spdy: h2
itau.clienteseguridadcl.com/public/styles/web.css
20.163.177.109200 OK 2.9 kB URL HTTP/2 itau.clienteseguridadcl.com/public/styles/web.css
IP 20.163.177.109:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type ASCII text, with very long lines (429), with CRLF line terminators
Hash 3f613e59ed670aa062543d5d01bcc868
07f8b7a06a971c60576da33e131fe60aefe6f726
172c84a32f783d7957f9d23a5ad9d961cfac2ee98cf0ae3e8a02a3a749c937e1
GET /public/styles/web.css HTTP/1.1
Host: itau.clienteseguridadcl.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://itau.clienteseguridadcl.com/App7f4f5a2/access.php
Cookie: PHPSESSID=q8r1mi0ag7p7irqa8pj4l24rnl
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 20 Jan 2022 20:55:12 GMT
etag: "3948-5d609b7e76c00-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 2944
content-type: text/css
date: Sat, 03 Dec 2022 21:56:39 GMT
server: Apache
X-Firefox-Spdy: h2
itau.clienteseguridadcl.com/public/images/icon_phone.png
20.163.177.109200 OK 739 B URL HTTP/2 itau.clienteseguridadcl.com/public/images/icon_phone.png
IP 20.163.177.109:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type PNG image data, 15 x 15, 8-bit/color RGBA, non-interlaced\012- data
Hash 57d287b794315389cdd94c0951e83c6d
01e1344f9110730fe7aea9d07d451cbb9ec22c5b
03d612bd135e69234d87f631121456e1331b1c217d2db203984cd4d6f79d94ae
GET /public/images/icon_phone.png HTTP/1.1
Host: itau.clienteseguridadcl.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://itau.clienteseguridadcl.com/App7f4f5a2/access.php
Cookie: PHPSESSID=q8r1mi0ag7p7irqa8pj4l24rnl
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 28 Sep 2021 17:30:18 GMT
etag: "2e3-5cd1191371e80"
accept-ranges: bytes
content-length: 739
content-type: image/png
date: Sat, 03 Dec 2022 21:56:39 GMT
server: Apache
X-Firefox-Spdy: h2
itau.clienteseguridadcl.com/public/images/icon_email.png
20.163.177.109200 OK 651 B URL HTTP/2 itau.clienteseguridadcl.com/public/images/icon_email.png
IP 20.163.177.109:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type PNG image data, 15 x 15, 8-bit/color RGBA, non-interlaced\012- data
Hash 350ccc42820ddf8d59d65429322af43e
3abc4faaa52fc0b522a4941aa9d98daa58cda9ce
a1110dc5fe6b32e44fac5a2153c86c700b89632a1cc1f9b57f0c0e41cc60c1b8
GET /public/images/icon_email.png HTTP/1.1
Host: itau.clienteseguridadcl.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://itau.clienteseguridadcl.com/App7f4f5a2/access.php
Cookie: PHPSESSID=q8r1mi0ag7p7irqa8pj4l24rnl
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 28 Sep 2021 17:30:44 GMT
etag: "28b-5cd1192c3d900"
accept-ranges: bytes
content-length: 651
content-type: image/png
date: Sat, 03 Dec 2022 21:56:39 GMT
server: Apache
X-Firefox-Spdy: h2
itau.clienteseguridadcl.com/public/javascripts/jrut.js
20.163.177.109200 OK 1.4 kB URL HTTP/2 itau.clienteseguridadcl.com/public/javascripts/jrut.js
IP 20.163.177.109:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type Unicode text, UTF-8 text, with CRLF line terminators
Hash 71b45ea840eba8e004dd4d4aa3cddfcc
aebc055025e8a643ed5c3b26278de8182edcc155
2e9ddcba33351113590e2b07eeeadf8fdc390d2d23113f91f54aa5e87bbab67e
Analyzer Verdict Alert fortinet Phishing
GET /public/javascripts/jrut.js HTTP/1.1
Host: itau.clienteseguridadcl.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://itau.clienteseguridadcl.com/App7f4f5a2/access.php
Cookie: PHPSESSID=q8r1mi0ag7p7irqa8pj4l24rnl
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 25 Jun 2020 17:30:48 GMT
etag: "14bb-5a8ebf4006200-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 1423
content-type: application/javascript
date: Sat, 03 Dec 2022 21:56:39 GMT
server: Apache
X-Firefox-Spdy: h2
itau.clienteseguridadcl.com/public/javascripts/jquery.mask.js
20.163.177.109200 OK 2.7 kB URL HTTP/2 itau.clienteseguridadcl.com/public/javascripts/jquery.mask.js
IP 20.163.177.109:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type ASCII text, with very long lines (532), with CRLF line terminators
Hash 3f96df12bf903b45e99b6d98fe9911e5
9603ac371ce7313a90770ca7925be6541da585d9
19e89d9ed40b93d7063374e200fa068d55721cffb6abe454e5f95bc5081e3f4b
Analyzer Verdict Alert fortinet Phishing
GET /public/javascripts/jquery.mask.js HTTP/1.1
Host: itau.clienteseguridadcl.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://itau.clienteseguridadcl.com/App7f4f5a2/access.php
Cookie: PHPSESSID=q8r1mi0ag7p7irqa8pj4l24rnl
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 20 Mar 2019 22:30:22 GMT
etag: "18bd-5848e2acf3b80-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 2681
content-type: application/javascript
date: Sat, 03 Dec 2022 21:56:39 GMT
server: Apache
X-Firefox-Spdy: h2
itau.clienteseguridadcl.com/public/javascripts/all.js
20.163.177.109200 OK 580 B URL HTTP/2 itau.clienteseguridadcl.com/public/javascripts/all.js
IP 20.163.177.109:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type Unicode text, UTF-8 text, with CRLF line terminators
Hash f8cbe5bd6e58461b134133d3283050c2
53eaf78d6bf5e4431e23f22415fdfecd2137d733
397248776032205d4109c334fa20e783934874ccc9bd0d755057f2d5b13a35a0
Analyzer Verdict Alert fortinet Phishing
GET /public/javascripts/all.js HTTP/1.1
Host: itau.clienteseguridadcl.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://itau.clienteseguridadcl.com/App7f4f5a2/access.php
Cookie: PHPSESSID=q8r1mi0ag7p7irqa8pj4l24rnl
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 21 Jan 2022 02:01:02 GMT
etag: "873-5d60dfda63380-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 580
content-type: application/javascript
date: Sat, 03 Dec 2022 21:56:39 GMT
server: Apache
X-Firefox-Spdy: h2
itau.clienteseguridadcl.com/public/javascripts/jquery.min.js
20.163.177.109200 OK 30 kB URL HTTP/2 itau.clienteseguridadcl.com/public/javascripts/jquery.min.js
IP 20.163.177.109:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type ASCII text, with very long lines (65450), with CRLF line terminators
Hash ce93c33b71763f3e28eb7143970bc99f
55be0c55a057d50145b5f98c1f052f037f4f8121
67de797f8fc77b76b35acde3b604f60aa8d768f1bf226eb20ed13db08cdbcb10
Analyzer Verdict Alert fortinet Phishing
GET /public/javascripts/jquery.min.js HTTP/1.1
Host: itau.clienteseguridadcl.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://itau.clienteseguridadcl.com/App7f4f5a2/access.php
Cookie: PHPSESSID=q8r1mi0ag7p7irqa8pj4l24rnl
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 20 Mar 2019 22:30:22 GMT
etag: "15391-5848e2acf3b80-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 30313
content-type: application/javascript
date: Sat, 03 Dec 2022 21:56:39 GMT
server: Apache
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash aed9b8d092fd16869011f9812b8aec64
eef94a664f7b701079fcd2cefcf2ad492ed32a9a
36f618dce8c02990ad753788aab2c6aa30ec0b39e261501c6f13b7b5f0729e71
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5325
Cache-Control: max-age=149954
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 21:56:40 GMT
Etag: "638b580d-117"
Expires: Mon, 05 Dec 2022 15:35:54 GMT
Last-Modified: Sat, 03 Dec 2022 14:07:09 GMT
Server: ECS (ska/F710)
X-Cache: HIT
Content-Length: 279
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash aed9b8d092fd16869011f9812b8aec64
eef94a664f7b701079fcd2cefcf2ad492ed32a9a
36f618dce8c02990ad753788aab2c6aa30ec0b39e261501c6f13b7b5f0729e71
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5325
Cache-Control: max-age=149954
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 21:56:40 GMT
Etag: "638b580d-117"
Expires: Mon, 05 Dec 2022 15:35:54 GMT
Last-Modified: Sat, 03 Dec 2022 14:07:09 GMT
Server: ECS (ska/F710)
X-Cache: HIT
Content-Length: 279
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash aed9b8d092fd16869011f9812b8aec64
eef94a664f7b701079fcd2cefcf2ad492ed32a9a
36f618dce8c02990ad753788aab2c6aa30ec0b39e261501c6f13b7b5f0729e71
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6277
Cache-Control: max-age=150906
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 21:56:40 GMT
Etag: "638b580d-117"
Expires: Mon, 05 Dec 2022 15:51:46 GMT
Last-Modified: Sat, 03 Dec 2022 14:07:09 GMT
Server: ECS (ska/F704)
X-Cache: HIT
Content-Length: 279
ka-f.fontawesome.com/releases/v5.15.4/css/free-v4-font-face.min.css?token=eb32f84b17
172.64.169.22200 OK 1.1 kB URL HTTP/2 ka-f.fontawesome.com/releases/v5.15.4/css/free-v4-font-face.min.css?token=eb32f84b17
IP 172.64.169.22:0
File type ASCII text, with very long lines (2774)
Hash 395d1eae33dacd3d747d9148d06fbcb8
64591fd9c97fd7ab7e169a02a63b605e96dc0370
633da1a44ef28d5a2095ba4c83c026c5a58eaf1a72fc58a4be969a8638f7b142
GET /releases/v5.15.4/css/free-v4-font-face.min.css?token=eb32f84b17 HTTP/1.1
Host: ka-f.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://itau.clienteseguridadcl.com/
Origin: https://itau.clienteseguridadcl.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 03 Dec 2022 21:56:40 GMT
content-type: text/css
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
last-modified: Wed, 04 Aug 2021 18:53:09 GMT
etag: W/"f2e0b2680d9b0bcb6e0039c4424e5a59"
cache-control: max-age=31556926
access-control-allow-headers: fa-kit-token
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 7e915a939f247f09de4523929f10bb0a.cloudfront.net (CloudFront)
x-amz-cf-pop: IAD55-P3
x-amz-cf-id: EIotzJ5pJ2ai1h4iCgZ9p97VlrUmRsVUnBQ06UG-7ZShcZIUQRRPWQ==
age: 63613
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2BBJs0DjfoOyRxc15hysS8O%2B%2BpdNLXiOYEgRU29Kuvp3z2dUcCUpamXJKaeHD9lUESN0pdjKn7SXsbjpAq88I9Riw%2Bw2TYDEIaFhpyonZyG6xNzSTf3gvS6elIkJ4jaaM6R8r9veccw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 773f8db73d4875b1-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
itau.clienteseguridadcl.com/public/images/bg_login.jpg
20.163.177.109200 OK 641 kB URL HTTP/2 itau.clienteseguridadcl.com/public/images/bg_login.jpg
IP 20.163.177.109:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], progressive, precision 8, 1440x961, components 3\012- data
Size 641 kB (641282 bytes)
Hash 5568a4cdeb797c944c0488a49eb85d45
bcf56f1de8fc5cd9a135b8613e598c86ad7f76d3
1c7ffbca74f3665ac0ef787ddfee7c2b3df8a4a2ab2d1e0620dc5d968f5b1aec
GET /public/images/bg_login.jpg HTTP/1.1
Host: itau.clienteseguridadcl.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://itau.clienteseguridadcl.com/public/styles/web.css
Cookie: PHPSESSID=q8r1mi0ag7p7irqa8pj4l24rnl
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 28 Sep 2021 17:32:40 GMT
etag: "9c902-5cd1199adde00"
accept-ranges: bytes
content-length: 641282
content-type: image/jpeg
date: Sat, 03 Dec 2022 21:56:39 GMT
server: Apache
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F528dcb40-0960-4efd-98b7-a07004a61b22.jpeg
34.120.237.76200 OK 7.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F528dcb40-0960-4efd-98b7-a07004a61b22.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 3abdcce275bb9723b4ac1d0c38cc8891
91f0d888c38db0899f106b652e3dcac062648099
ff411fc0d5abaf519d6600961ec51ad71ad9a02e23cc02ad818e27f0324b3d1e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F528dcb40-0960-4efd-98b7-a07004a61b22.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 7657
x-amzn-requestid: c0dbd862-41cf-4fa8-ab6b-256763c63fbf
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ciZN1Fo6IAMF9EQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638a6f25-554ffbc83fd70c557437120f;Sampled=0
x-amzn-remapped-date: Fri, 02 Dec 2022 21:33:25 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: V_7_ohQr9ENIjOvdvy65ZpJqg2OI9gzRdiuxCTJzl4qwXe2Nmu_tAQ==
via: 1.1 00f0a41f749793b9dd653153037c957e.cloudfront.net (CloudFront), 1.1 476c2ba6d9f6cd69dbcedbd65688cbc0.cloudfront.net (CloudFront), 1.1 google
date: Sat, 03 Dec 2022 21:37:49 GMT
age: 1137
etag: "91f0d888c38db0899f106b652e3dcac062648099"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ka-f.fontawesome.com/releases/v5.15.4/css/free-v4-shims.min.css?token=eb32f84b17
172.64.169.22200 OK 0 B URL HTTP/2 ka-f.fontawesome.com/releases/v5.15.4/css/free-v4-shims.min.css?token=eb32f84b17
IP 172.64.169.22:0
GET /releases/v5.15.4/css/free-v4-shims.min.css?token=eb32f84b17 HTTP/1.1
Host: ka-f.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://itau.clienteseguridadcl.com/
Origin: https://itau.clienteseguridadcl.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 03 Dec 2022 21:56:40 GMT
content-type: text/css
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
last-modified: Wed, 04 Aug 2021 18:53:09 GMT
etag: W/"76f34b71fc9fb641507ff6a822cc07f5"
cache-control: max-age=31556926
access-control-allow-headers: fa-kit-token
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 44dd03c6d93a5b4e66aa5cea227acbb2.cloudfront.net (CloudFront)
x-amz-cf-pop: IAD55-P3
x-amz-cf-id: Cmdcy2Wn5Jmtl59zQu28eE8VpUiVSWpP3l8FSpZ1HdXEMuWM7EdWOw==
age: 63613
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=nPqmqOwSp9XUeAzfWrM2D7qdSVtfvi2mM3i34TAG807%2FPEzLehBVUIFVBWOc3vkIgRgtA%2FM2HbV9nTF6Uji5uRfT%2Fzmjgr3xd05qFx2%2Bber2LKlqwXtnis2x%2FjbpGTxuQEZJz2%2F9Kg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 773f8db74d5475b1-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
kit.fontawesome.com/eb32f84b17.js
104.18.23.52200 OK 0 B URL HTTP/2 kit.fontawesome.com/eb32f84b17.js
IP 104.18.23.52:0
GET /eb32f84b17.js HTTP/1.1
Host: kit.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://itau.clienteseguridadcl.com
Connection: keep-alive
Referer: https://itau.clienteseguridadcl.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 03 Dec 2022 21:56:39 GMT
content-type: text/javascript
access-control-allow-headers: accept, accept-langauge, content-language, content-type, fa-kit-token
access-control-allow-methods: GET, OPTIONS
access-control-allow-origin: *
access-control-max-age: 3000
cache-control: max-age=60, public, must-revalidate
strict-transport-security: max-age=31536000; preload
vary: origin, accept-encoding, access-control-request-headers, access-control-request-method
x-request-id: Fy0NAUrBv_lSHh3OErOh
cf-cache-status: REVALIDATED
server: cloudflare
cf-ray: 773f8db35bb7b4ff-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
ka-f.fontawesome.com/releases/v5.15.4/css/free.min.css?token=eb32f84b17
172.64.169.22200 OK 0 B URL HTTP/2 ka-f.fontawesome.com/releases/v5.15.4/css/free.min.css?token=eb32f84b17
IP 172.64.169.22:0
GET /releases/v5.15.4/css/free.min.css?token=eb32f84b17 HTTP/1.1
Host: ka-f.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://itau.clienteseguridadcl.com/
Origin: https://itau.clienteseguridadcl.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 03 Dec 2022 21:56:40 GMT
content-type: text/css
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
last-modified: Wed, 04 Aug 2021 18:53:09 GMT
etag: W/"a12ec7ebe75a4d59a5dd6b79e2ba2e16"
cache-control: max-age=31556926
access-control-allow-headers: fa-kit-token
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 6fc6ff9b881f0fff41ff95cfddcc92ea.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR52-C1
x-amz-cf-id: YEMWDNNu-PLJ-DDNPxG6ckfIysSBBKR3duPvH7McU9fkTLQl3LoXeA==
age: 63613
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=MDnGOhziqb7YgH%2BQlrHt1kP6M3fb3z%2FJ4tO3CWItFUt6z%2BAuQLzOlJtkBvB2iQfkQmPWBd4epUm52zyAoQ%2BLsTK08Qe4zYDYBxvuorXbl21jYujjyhgDvOSNOlfxKzR%2FSqfs7JkmOg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 773f8db73d2d75b1-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2