r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 04512fea22644dc0d22c3f3a665f6645
0e213646abfc6d9560ba562362fd9e9115be8354
124d9534f75506b8e8c7535ee7295ac4e6cf5a8249a0edac6940839e56043181
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "124D9534F75506B8E8C7535EE7295AC4E6CF5A8249A0EDAC6940839E56043181"
Last-Modified: Mon, 23 Jan 2023 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7095
Expires: Wed, 25 Jan 2023 08:16:23 GMT
Date: Wed, 25 Jan 2023 06:18:08 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash f416977a8d6dfaafb2dbfd0e68b871f8
dfa97bd829b03162de91c80133f2fde69b58a8d2
2c4d0fd1b7a6d398026a4817267adce203429acdd3defa44a879f0d945f392d5
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "2C4D0FD1B7A6D398026A4817267ADCE203429ACDD3DEFA44A879F0D945F392D5"
Last-Modified: Sun, 22 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4779
Expires: Wed, 25 Jan 2023 07:37:47 GMT
Date: Wed, 25 Jan 2023 06:18:08 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash bf0c602d32b3c14606f22a86183b5e3c
6eabd8d83475eba731968abe1a05a8bfd272f160
6c6a7c519a9e950c2445ed874a25211a94dd4d3cf3afb0103af9dcd1dbd5ff9e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Content-Length, Retry-After, Content-Type, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Wed, 25 Jan 2023 05:35:11 GMT
content-type: application/json
age: 2577
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 31c8743c2b5202ce0228bac5aad7229b
4b5eee8e1ecbfc992505003be58e265ff3a0ee0a
8b3b47ea29fc02b8a08ee2a340a05ab23e391f0eb3b8d6beb17516706bb2e94d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "8B3B47EA29FC02B8A08EE2A340A05AB23E391F0EB3B8D6BEB17516706BB2E94D"
Last-Modified: Sun, 22 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2745
Expires: Wed, 25 Jan 2023 07:03:53 GMT
Date: Wed, 25 Jan 2023 06:18:08 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: SKQ03Ikgbu3tFnNeNuo3xCuaE/G04B0VvK02hS3fT0E8uL+Kw958gDWZ95PfKjAg8ftC0PzpqNA=
x-amz-request-id: BEKNNYSC04VNBPYA
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Wed, 25 Jan 2023 05:48:27 GMT
age: 1781
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
www.americanexpressseguros.com/
151.101.1.124200 OK 12 kB URL HTTP/2 www.americanexpressseguros.com/
IP 151.101.1.124:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (36138), with no line terminators
Hash 93fcb0a91daa0ec530f1601593d58340
526efeb7c4249f9b11b59246af20b3a295d13438
c553226642832c41c0712c701bb963e637b341701adf7536dfec94205166aac4
Analyzer Verdict Alert openphish American Express
fortinet Phishing
quad9 Sinkholed
GET / HTTP/1.1
Host: www.americanexpressseguros.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
cache-control: s-maxage=60
content-security-policy: *.google.com script-src http: https: https://www.americanexpress.com/es-mx/seguros/ 'nonce-bmd9T6yr409wV9S1z841SP85bJxezAi8fJbbuBUmYJijm' ; style-src 'self' blob: https: 'unsafe-inline' https://www.americanexpress.com/es-mx/seguros/; img-src data: http: https:; object-src 'none'; base-uri 'none'; child-src 'self'; font-src 'self' fonts.gstatic.com *.aexp-static.com; frame-src assets.braintreegateway.com *.youtube.com *.youtu.be *.vimeo.com *.hotjar.com *.cliengo.com
content-type: text/html;charset=UTF-8
x-content-type-options: nosniff
x-debug-info: eyJyZXRyaWVzIjowfQ==
x-frame-options: SAMEORIGIN
x-platform-server: i-0129d32895ff95045, i-0129d32895ff95045
x-xss-protection: 1; mode=block
traceresponse: 00-173d78d1333bd7cf3c6b4b3c1696b5b9-58043cd9518a4d73-00
content-encoding: gzip
accept-ranges: bytes
date: Wed, 25 Jan 2023 06:18:08 GMT
age: 12
x-served-by: cache-bfi-kbfi7400056-BFI, cache-bma1626-BMA
x-cache: HIT, MISS
x-cache-hits: 1, 0
strict-transport-security: max-age=31536000
vary: Accept-Encoding,Cookie
content-length: 11765
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 25 Jan 2023 06:18:08 GMT
content-type: application/json
content-length: 12
access-control-expose-headers: content-type
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
www.americanexpressseguros.com/es-mx/seguros/static/pwa/vendors.b78aaba4372251235594.js
151.101.1.124200 OK 107 kB URL HTTP/2 www.americanexpressseguros.com/es-mx/seguros/static/pwa/vendors.b78aaba4372251235594.js
IP 151.101.1.124:0
File type ASCII text, with very long lines (2188)
Size 107 kB (107228 bytes)
Hash ebf6f7f89300ba83235b6ef4b27876d5
ad6f2f5f737de2673b6591630b584cd04404012f
3b357e143353de51f389dfa074617afe914e7bef708cdefd2d7345d6c410d4ca
Analyzer Verdict Alert openphish American Express
fortinet Phishing
quad9 Sinkholed
GET /es-mx/seguros/static/pwa/vendors.b78aaba4372251235594.js HTTP/1.1
Host: www.americanexpressseguros.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.americanexpressseguros.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=31536000
content-type: application/javascript
etag: W/"63cf705f-61662"
expires: Wed, 24 Jan 2024 22:46:24 GMT
last-modified: Tue, 24 Jan 2023 05:45:03 GMT
x-debug-info: eyJyZXRyaWVzIjowfQ==
x-platform-server: i-0eceb7d9e8ebf109e, i-0eceb7d9e8ebf109e
traceresponse: 00-173d602d4be93cd8a581cdb159c1ed37-e3b9c38152b7fb4c-00
content-encoding: gzip
accept-ranges: bytes
date: Wed, 25 Jan 2023 06:18:09 GMT
age: 27105
x-served-by: cache-bfi-krnt7300052-BFI, cache-bma1626-BMA
x-cache: HIT, HIT
x-cache-hits: 15, 1
strict-transport-security: max-age=31536000
vary: Accept-Encoding
content-length: 107228
X-Firefox-Spdy: h2
www.americanexpressseguros.com/es-mx/seguros/static/pwa/runtime.2aa906305af3147cdbe8.js
151.101.1.124200 OK 2.2 kB URL HTTP/2 www.americanexpressseguros.com/es-mx/seguros/static/pwa/runtime.2aa906305af3147cdbe8.js
IP 151.101.1.124:0
File type ASCII text, with very long lines (1693)
Hash 3055ac200ac4a3a4da70a52021ad5fb7
f97191539d8c264bb10fbf6e70b06a4171dd024c
b7b95446764826f4a36245ad6a1039759f194c4d65d09ba0818fc4749281e769
Analyzer Verdict Alert openphish American Express
fortinet Phishing
quad9 Sinkholed
GET /es-mx/seguros/static/pwa/runtime.2aa906305af3147cdbe8.js HTTP/1.1
Host: www.americanexpressseguros.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.americanexpressseguros.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=31536000
content-type: application/javascript
etag: W/"63c0a993-1137"
expires: Wed, 17 Jan 2024 18:04:54 GMT
last-modified: Fri, 13 Jan 2023 00:45:07 GMT
x-debug-info: eyJyZXRyaWVzIjowfQ==
x-platform-server: i-022f454a7b3fd63c5, i-022f454a7b3fd63c5
traceresponse: 00-173b2ac0ede7af2f5c7d333599063faf-793f60c5f2d74359-00
content-encoding: gzip
accept-ranges: bytes
date: Wed, 25 Jan 2023 06:18:09 GMT
age: 648794
x-served-by: cache-bfi-kbfi7400022-BFI, cache-bma1626-BMA
x-cache: HIT, HIT
x-cache-hits: 20, 1
strict-transport-security: max-age=31536000
vary: Accept-Encoding
content-length: 2246
X-Firefox-Spdy: h2
www.americanexpressseguros.com/es-mx/seguros/static/pwa/client.5e9ea3458bca3cc5d1b3.js
151.101.1.124200 OK 717 kB URL HTTP/2 www.americanexpressseguros.com/es-mx/seguros/static/pwa/client.5e9ea3458bca3cc5d1b3.js
IP 151.101.1.124:0
File type Unicode text, UTF-8 text, with very long lines (10062)
Size 717 kB (717353 bytes)
Hash b495b6426fd9e66e1e83cf939ab19481
0ef3f763506d07ee6f99902a58bb2a9264851aab
ed34f48a65be58c46766f15c5966834b49e16f3079ae92eab8f861343a2aadd0
Analyzer Verdict Alert openphish American Express
fortinet Phishing
quad9 Sinkholed
GET /es-mx/seguros/static/pwa/client.5e9ea3458bca3cc5d1b3.js HTTP/1.1
Host: www.americanexpressseguros.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.americanexpressseguros.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=31536000
content-type: application/javascript
etag: W/"63c9d4bd-29f0d0"
expires: Tue, 23 Jan 2024 14:09:14 GMT
last-modified: Thu, 19 Jan 2023 23:39:41 GMT
x-debug-info: eyJyZXRyaWVzIjowfQ==
x-platform-server: i-0129d32895ff95045, i-0129d32895ff95045
traceresponse: 00-173cf5601d66173b123f9d4291e713fc-046dbdc6059990b1-00
content-encoding: gzip
accept-ranges: bytes
date: Wed, 25 Jan 2023 06:18:09 GMT
age: 144534
x-served-by: cache-bfi-kbfi7400023-BFI, cache-bma1626-BMA
x-cache: HIT, HIT
x-cache-hits: 21, 1
strict-transport-security: max-age=31536000
vary: Accept-Encoding
content-length: 717353
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Last-Modified, ETag, Expires, Backoff, Content-Length, Cache-Control, Alert, Retry-After, Pragma
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Wed, 25 Jan 2023 05:48:59 GMT
age: 1750
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash c398b6b39d11d25b8ae9bc5cd94a1c98
640aa8c399ced71d0c2a9f5a90fbaf091b01d642
a6f07f7c6a4746acc25457c726701df33120628dfb578bc4982448d8efee5855
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A6F07F7C6A4746ACC25457C726701DF33120628DFB578BC4982448D8EFEE5855"
Last-Modified: Tue, 24 Jan 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6504
Expires: Wed, 25 Jan 2023 08:06:33 GMT
Date: Wed, 25 Jan 2023 06:18:09 GMT
Connection: keep-alive
www.americanexpressseguros.com/%3C%=%20process.env.MAGENTO_BACKEND_URL%20%%3ERootCmp_CMS_PAGE__default.a9b3eff45d1e2551d014.js
151.101.1.124400 Bad Request 15 B URL HTTP/2 www.americanexpressseguros.com/%3C%=%20process.env.MAGENTO_BACKEND_URL%20%%3ERootCmp_CMS_PAGE__default.a9b3eff45d1e2551d014.js
IP 151.101.1.124:0
File type ASCII text, with no line terminators
Hash 6196dba52703776af2e6593f772ed7ce
fd78bb053b4bd423260212d1fe5bd7bc7750efce
19b843cc92cb12aa314bb3c3913b2feeb852e85969bf06cb9d096931bfda34ba
Analyzer Verdict Alert openphish American Express
fortinet Phishing
quad9 Sinkholed
GET /%3C%=%20process.env.MAGENTO_BACKEND_URL%20%%3ERootCmp_CMS_PAGE__default.a9b3eff45d1e2551d014.js HTTP/1.1
Host: www.americanexpressseguros.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.americanexpressseguros.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 400 Bad Request
content-type: text/plain; charset=utf-8
accept-ranges: bytes
date: Wed, 25 Jan 2023 06:18:09 GMT
x-served-by: cache-bfi-krnt7300039-BFI, cache-bma1626-BMA
x-cache: MISS, MISS
x-cache-hits: 0, 0
strict-transport-security: max-age=31536000
vary:
X-Firefox-Spdy: h2
www.americanexpressseguros.com/favicon.ico
151.101.1.124200 OK 3.8 kB URL HTTP/2 www.americanexpressseguros.com/favicon.ico
IP 151.101.1.124:0
File type MS Windows icon resource - 1 icon, 125x-128, 32 bits/pixel\012- data
Hash b5f25fd01edc1079513da1c4cc6d766c
bc057ac9bd788cb01ce38f0fd225cf7c48980100
b052901135644909e559777cab89a9df3d3f513638018de70d13eb5edda693d2
Analyzer Verdict Alert openphish American Express
quad9 Sinkholed
GET /favicon.ico HTTP/1.1
Host: www.americanexpressseguros.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.americanexpressseguros.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=604800, public
content-type: image/x-icon
x-debug-info: eyJyZXRyaWVzIjowfQ==
x-platform-server: i-0129d32895ff95045, i-0129d32895ff95045
traceresponse: 00-173c12510eb639786644f934d6878862-f72beef07ffc31b3-00
content-encoding: gzip
accept-ranges: bytes
date: Wed, 25 Jan 2023 06:18:10 GMT
age: 394189
x-served-by: cache-bfi-kbfi7400043-BFI, cache-bma1626-BMA
x-cache: HIT, MISS
x-cache-hits: 6, 0
strict-transport-security: max-age=31536000
vary: Accept-Encoding
content-length: 3816
X-Firefox-Spdy: h2
www.americanexpressseguros.com/%3C%=%20process.env.MAGENTO_BACKEND_URL%20%%3Evenia-ui/venia-static/IOS/Icon-83.5@2x.png
151.101.1.124503 Service Unavailable 476 B URL HTTP/2 www.americanexpressseguros.com/%3C%=%20process.env.MAGENTO_BACKEND_URL%20%%3Evenia-ui/venia-static/IOS/Icon-83.5@2x.png
IP 151.101.1.124:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 7bf483b6195fc8821d78a91039ead2d4
a658bce09e5b228539bf332a76559e1d009ef631
919ee96d8ee0f52eb08908a7a23486cfdd9188d283ff4a19c099ef72eed97ff5
Analyzer Verdict Alert openphish American Express
GET /%3C%=%20process.env.MAGENTO_BACKEND_URL%20%%3Evenia-ui/venia-static/IOS/Icon-83.5@2x.png HTTP/1.1
Host: www.americanexpressseguros.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.americanexpressseguros.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 503 Service Unavailable
retry-after: 0
content-type: text/html; charset=utf-8
accept-ranges: bytes
date: Wed, 25 Jan 2023 06:18:10 GMT
x-served-by: cache-bfi-krnt7300030-BFI, cache-bma1626-BMA
x-cache: MISS, MISS
x-cache-hits: 0, 0
strict-transport-security: max-age=31536000
vary: Accept
content-length: 476
X-Firefox-Spdy: h2
www.americanexpressseguros.com/es-mx/seguros/static/pwa/sw.js
151.101.1.124200 OK 14 kB URL HTTP/2 www.americanexpressseguros.com/es-mx/seguros/static/pwa/sw.js
IP 151.101.1.124:0
File type ASCII text, with very long lines (5171)
Hash 7fd77171c7943e007641ab3c457ad500
4a302519042b049a683f3330fbe434eac23aa91d
be91a5c813648507b15304dcd2a549c8cc2f414f277462197cdcfc4cdbe5d6dd
Analyzer Verdict Alert openphish American Express
fortinet Phishing
quad9 Sinkholed
GET /es-mx/seguros/static/pwa/sw.js HTTP/1.1
Host: www.americanexpressseguros.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Service-Worker: script
Connection: keep-alive
Sec-Fetch-Dest: serviceworker
Sec-Fetch-Mode: same-origin
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: max-age=31536000
content-type: application/javascript
etag: W/"63bc4490-b28f"
expires: Tue, 09 Jan 2024 16:52:24 GMT
last-modified: Mon, 09 Jan 2023 16:45:04 GMT
x-debug-info: eyJyZXRyaWVzIjowfQ==
x-platform-server: i-0129d32895ff95045, i-0129d32895ff95045
traceresponse: 00-1738b227983cdf7c06d7b88c14634367-5a99823ec56e9583-00
content-encoding: gzip
accept-ranges: bytes
date: Wed, 25 Jan 2023 06:18:10 GMT
age: 1344346
x-served-by: cache-bfi-kbfi7400027-BFI, cache-bma1626-BMA
x-cache: HIT, HIT
x-cache-hits: 21, 1
strict-transport-security: max-age=31536000
vary: Accept-Encoding
content-length: 14217
X-Firefox-Spdy: h2
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 176ab888cb4eeee86431993b3ef960e2
0eb79ca64f0f6b29837d1d7dfe12d38a3d5c3822
47984ce01d5a6281b9f2841cb119d3623e0d4202602f354628469e9158a2d6fa
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "47984CE01D5A6281B9F2841CB119D3623E0D4202602F354628469E9158A2D6FA"
Last-Modified: Tue, 24 Jan 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13798
Expires: Wed, 25 Jan 2023 10:08:09 GMT
Date: Wed, 25 Jan 2023 06:18:11 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 176ab888cb4eeee86431993b3ef960e2
0eb79ca64f0f6b29837d1d7dfe12d38a3d5c3822
47984ce01d5a6281b9f2841cb119d3623e0d4202602f354628469e9158a2d6fa
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "47984CE01D5A6281B9F2841CB119D3623E0D4202602F354628469E9158A2D6FA"
Last-Modified: Tue, 24 Jan 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13798
Expires: Wed, 25 Jan 2023 10:08:09 GMT
Date: Wed, 25 Jan 2023 06:18:11 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3f7aba17-803f-412c-8ef7-0959b52f87cc.jpeg
34.120.237.76200 OK 9.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3f7aba17-803f-412c-8ef7-0959b52f87cc.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 13891ffe8a0cc240be63b7945e4b7688
958b50e9e7e5e02882d55612a5d6d2402e225390
1570d69731ba13051454a048ac85bde7c1de8e39dea0fd78e7e5c3f2be122cb6
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3f7aba17-803f-412c-8ef7-0959b52f87cc.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9650
x-amzn-requestid: 3b968ee5-c941-4305-9f06-01e646deef15
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fH88wEUmoAMFerw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63cca851-061f65177f36420a4685f372;Sampled=0
x-amzn-remapped-date: Sun, 22 Jan 2023 03:06:57 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: xfiiS5M5j8iYKMyopaVqwYV6KKB1VIWT_yQbEKZ9G1wuq2QUEyDBpA==
via: 1.1 9b311162717b41c968f6f00426d88aaa.cloudfront.net (CloudFront), 1.1 e66162aafd55b64ba1478ff7105150fa.cloudfront.net (CloudFront), 1.1 google
date: Wed, 25 Jan 2023 03:16:15 GMT
age: 10916
etag: "958b50e9e7e5e02882d55612a5d6d2402e225390"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F409361f2-a546-44d7-82d6-d496f6ee134d.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F409361f2-a546-44d7-82d6-d496f6ee134d.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4cb7be12333fa7ea3353901b4b3215af
4b758cc432874384f330568177eef5a328d7e69a
d6f86c0ddbabd5c4fd7cee72ce4da62ccddd9d29139c9ab033bb1ab8425bae22
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F409361f2-a546-44d7-82d6-d496f6ee134d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11918
x-amzn-requestid: df7df0ae-d70e-4b80-9483-2ecd5c8ee4a7
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fEqvPEXMoAMF5Aw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63cb57fa-04193e0514c1c1e85d9d023b;Sampled=0
x-amzn-remapped-date: Sat, 21 Jan 2023 03:11:55 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: fznabMNG3n9Uo4L1jrrewtL_hJnQv8oR2qggeZtruvOLVzpUpcs7Tw==
via: 1.1 0c96ded7ff282d2dbcf47c918b6bb500.cloudfront.net (CloudFront), 1.1 591683988172c7980c4ebb318cbf18a8.cloudfront.net (CloudFront), 1.1 google
date: Wed, 25 Jan 2023 03:28:51 GMT
age: 10160
etag: "4b758cc432874384f330568177eef5a328d7e69a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F46e473b9-0adb-4371-8146-b148ce85cdec.jpeg
34.120.237.76200 OK 8.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F46e473b9-0adb-4371-8146-b148ce85cdec.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d10114508bd40d76f497fc5b9c064350
c9b86b2b27063e0a58b0f237d451f9cf05b2122d
a156bd21bee2fca1d82940fb172a695044321ed432786ae100a7baf3b5e12b3f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F46e473b9-0adb-4371-8146-b148ce85cdec.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8252
x-amzn-requestid: c7064a36-7bb0-42c7-9ee8-9ee798ce8cbf
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fEq3UEjVoAMFipg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63cb582e-5be2ad2a217f9b4b6834a278;Sampled=0
x-amzn-remapped-date: Sat, 21 Jan 2023 03:12:46 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: b4EbiS-go4Yy-UcA4CbKj10TbS6qKgQd6ZgqB3XVyd9ieBPszfx_jw==
via: 1.1 8dbfaf7df256a75768461d934659b6b2.cloudfront.net (CloudFront), 1.1 be082a2326b7d49643607b097f1e7180.cloudfront.net (CloudFront), 1.1 google
date: Tue, 24 Jan 2023 21:47:57 GMT
age: 30614
etag: "c9b86b2b27063e0a58b0f237d451f9cf05b2122d"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2972ed07-7fe0-4c0a-99f8-993c3f6e55c2.jpeg
34.120.237.76200 OK 4.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2972ed07-7fe0-4c0a-99f8-993c3f6e55c2.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash a625c16030b935ba09ec63cb2d6e1525
1a1ebddb1ee9cf3c2445d29a85127134a0a5db01
ab6dd4aec486677bd68826e4f01dd36b005d46d521611dc271406a57a64ac615
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2972ed07-7fe0-4c0a-99f8-993c3f6e55c2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4831
x-amzn-requestid: 585cf8dd-27e2-4f57-964c-9f5c5975cd30
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fKmd9Gh8oAMF25Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63cdb78c-474af4932439a7b75e55031b;Sampled=0
x-amzn-remapped-date: Sun, 22 Jan 2023 22:24:12 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 0eET1YmQZzrOOhm_z29dbcFRLkupqzuzv3EHSsVMHzu_yqxZfsqcog==
via: 1.1 01c28b52813cd0e82f810c492808b142.cloudfront.net (CloudFront), 1.1 9046e5a276a05e60ee34c8475e92b8e6.cloudfront.net (CloudFront), 1.1 google
date: Tue, 24 Jan 2023 10:50:42 GMT
age: 70049
etag: "1a1ebddb1ee9cf3c2445d29a85127134a0a5db01"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd57136f3-3a32-4cb9-be6a-29e47e59a6f9.jpeg
34.120.237.76200 OK 5.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd57136f3-3a32-4cb9-be6a-29e47e59a6f9.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 24a73392615d623dc852bdab43c9f133
3a5ac9f9831aa4c735d335e7d24e9ccc5e1ee0d4
edc11bdc8b40a513dc62b32f7eff0ba1f80db27208bd80bd16235da3c369157b
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd57136f3-3a32-4cb9-be6a-29e47e59a6f9.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5732
x-amzn-requestid: 779904e5-f2c8-4d10-a3bf-0ed43b9ca019
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: e7ULOFf3oAMFfUg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c79a47-22f5fe110d67b7d8215368d4;Sampled=0
x-amzn-remapped-date: Wed, 18 Jan 2023 07:05:43 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: kYNlMFpl4zmNWdYW1WatxKIqjZw4lWONAX0uXKBi0mfwzND1kTeLOg==
via: 1.1 000f4a2f631bace380a0afa747a82482.cloudfront.net (CloudFront), 1.1 7e87179efaa9e3c316bd3d3a74cfded8.cloudfront.net (CloudFront), 1.1 google
date: Tue, 24 Jan 2023 13:55:37 GMT
age: 58954
etag: "3a5ac9f9831aa4c735d335e7d24e9ccc5e1ee0d4"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9192d2a7-4090-4a55-b72e-388ceb1f506d.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9192d2a7-4090-4a55-b72e-388ceb1f506d.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 1d76c1b1126a3e1b51dcca652cb6727b
b199a381ccac4628f2bfa626b44c71954713ca98
3a34f2b7f79cb925c73d2c17197418004e4acf63a6eb69e471320069978f8282
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9192d2a7-4090-4a55-b72e-388ceb1f506d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10921
x-amzn-requestid: 7b8849e6-b52d-4165-b456-b200ddbb993b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fEqtkGThIAMFb7g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63cb57f0-1ed4803112d97956419b299e;Sampled=0
x-amzn-remapped-date: Sat, 21 Jan 2023 03:11:44 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: FUbNMfYy8ci6d78p6LCu0Gxs3jw824ZzVp6drAbl8HCDBpghlZFP7g==
via: 1.1 4dde8ec6d6c12741888c2d3a059d4a2e.cloudfront.net (CloudFront), 1.1 82ea95080f526df99896343fb7269b06.cloudfront.net (CloudFront), 1.1 google
date: Wed, 25 Jan 2023 04:19:27 GMT
age: 7124
etag: "b199a381ccac4628f2bfa626b44c71954713ca98"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
www.americanexpressseguros.com/es-mx/seguros/static/pwa/RootCmp_CMS_PAGE__default.a9b3eff45d1e2551d014.js
151.101.1.124200 OK 3.1 kB URL HTTP/2 www.americanexpressseguros.com/es-mx/seguros/static/pwa/RootCmp_CMS_PAGE__default.a9b3eff45d1e2551d014.js
IP 151.101.1.124:0
File type ASCII text, with very long lines (1883)
Hash a6c54de679521d37dbb1d62f15bbb4ec
5471e885f25240685e9ee22fe92bed86d57c6fb4
f99a62afbe9bee728c135bb313830d7b4a0fac0d3a5de0d81899b3028eb50b8e
Analyzer Verdict Alert openphish American Express
fortinet Phishing
quad9 Sinkholed
GET /es-mx/seguros/static/pwa/RootCmp_CMS_PAGE__default.a9b3eff45d1e2551d014.js HTTP/1.1
Host: www.americanexpressseguros.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.americanexpressseguros.com/es-mx/seguros/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=31536000
content-type: application/javascript
etag: W/"6390bbf0-23aa"
expires: Fri, 08 Dec 2023 00:11:30 GMT
last-modified: Wed, 07 Dec 2022 16:14:40 GMT
x-debug-info: eyJyZXRyaWVzIjowfQ==
x-platform-server: i-022f454a7b3fd63c5, i-022f454a7b3fd63c5
traceresponse: 00-172ea8f7148a8022da136c529dfbe8c2-fe313ebb1edd816b-00
content-encoding: gzip
accept-ranges: bytes
date: Wed, 25 Jan 2023 06:18:11 GMT
age: 4169200
x-served-by: cache-bfi-krnt7300064-BFI, cache-bma1626-BMA
x-cache: HIT, HIT
x-cache-hits: 65, 1
strict-transport-security: max-age=31536000
vary: Accept-Encoding
content-length: 3120
X-Firefox-Spdy: h2
www.americanexpressseguros.com/es-mx/seguros/static/pwa/i18n-es_MX.716841a24137e1ddb96a.js
151.101.1.124200 OK 38 kB URL HTTP/2 www.americanexpressseguros.com/es-mx/seguros/static/pwa/i18n-es_MX.716841a24137e1ddb96a.js
IP 151.101.1.124:0
File type Unicode text, UTF-8 text, with very long lines (64772)
Hash 06d800e1ce9a8181559208a6bad5157f
8001c34ff6d04f6b7b1addc3956b624c28d55bad
a713aa1c84a157f72c95824f14ed51ca233a8ed16377c0691a4f49243f1cce44
Analyzer Verdict Alert openphish American Express
fortinet Phishing
quad9 Sinkholed
GET /es-mx/seguros/static/pwa/i18n-es_MX.716841a24137e1ddb96a.js HTTP/1.1
Host: www.americanexpressseguros.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.americanexpressseguros.com/es-mx/seguros/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=31536000
content-type: application/javascript
etag: W/"63b331a0-2349d"
expires: Wed, 03 Jan 2024 12:04:32 GMT
last-modified: Mon, 02 Jan 2023 19:33:52 GMT
x-debug-info: eyJyZXRyaWVzIjowfQ==
x-platform-server: i-022f454a7b3fd63c5, i-022f454a7b3fd63c5
traceresponse: 00-1736caf6c63c5257ed4c7beb108e2bb6-835edca350b16835-00
content-encoding: gzip
accept-ranges: bytes
date: Wed, 25 Jan 2023 06:18:11 GMT
age: 1880019
x-served-by: cache-bfi-krnt7300075-BFI, cache-bma1626-BMA
x-cache: HIT, HIT
x-cache-hits: 28, 1
strict-transport-security: max-age=31536000
vary: Accept-Encoding
content-length: 37751
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash 78ed7b7d814d987601b30851546309b5
12a653dabfd738fef99fad2295eec55e4651bc7c
a55164c954f0255d6d360ac0fac8b4598f8e0e01ec646105eed2e9b0abf5e2bd
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 25 Jan 2023 06:18:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.googletagmanager.com/gtm.js?id=GTM-W4L298B>m_auth=>m_preview=>m_cookies_win=x
216.58.207.200200 OK 94 kB URL HTTP/2 www.googletagmanager.com/gtm.js?id=GTM-W4L298B>m_auth=>m_preview=>m_cookies_win=x
IP 216.58.207.200:0
File type ASCII text, with very long lines (36871)
Hash 48981ef119538627670c4db23109e70b
60d56a772050d2856f02a89c5e6f4a12a37194e9
bcbe83ea1d64a187255bd7f5f7c78b803cdf8af9a154ceec12f36b16ee112d48
GET /gtm.js?id=GTM-W4L298B>m_auth=>m_preview=>m_cookies_win=x HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.americanexpressseguros.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Wed, 25 Jan 2023 06:18:11 GMT
expires: Wed, 25 Jan 2023 06:18:11 GMT
cache-control: private, max-age=900
last-modified: Wed, 25 Jan 2023 06:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 94364
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash 78ed7b7d814d987601b30851546309b5
12a653dabfd738fef99fad2295eec55e4651bc7c
a55164c954f0255d6d360ac0fac8b4598f8e0e01ec646105eed2e9b0abf5e2bd
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 25 Jan 2023 06:18:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.americanexpressseguros.com/es-mx/seguros/graphql?query=query+getLocale%7BstoreConfig%7Bid+locale+__typename%7D%7D&operationName=getLocale&variables=%7B%7D
151.101.1.124200 OK 77 B URL HTTP/2 www.americanexpressseguros.com/es-mx/seguros/graphql?query=query+getLocale%7BstoreConfig%7Bid+locale+__typename%7D%7D&operationName=getLocale&variables=%7B%7D
IP 151.101.1.124:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 5525895891cafefe53ff7eb922b6ccd0
8e352a716bcfb4207cb20c55e52d7dbd7859a930
9daf5a703910734e4cb98603e48d4af39be1e26d70600488a8aab3448dcafefe
Analyzer Verdict Alert openphish American Express
quad9 Sinkholed
GET /es-mx/seguros/graphql?query=query+getLocale%7BstoreConfig%7Bid+locale+__typename%7D%7D&operationName=getLocale&variables=%7B%7D HTTP/1.1
Host: www.americanexpressseguros.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.americanexpressseguros.com/es-mx/seguros/
content-type: application/json
authorization:
x-magento-cache-id: null
store: default
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=0, must-revalidate, no-cache, no-store
content-type: application/json
expires: Tue, 25 Jan 2022 06:18:11 GMT
pragma: no-cache
set-cookie: PHPSESSID=6f07d7977fa109cde886cd9ab7748617; expires=Wed, 25-Jan-2023 07:18:11 GMT; Max-Age=3600; path=/es-mx/seguros; domain=americanexpress.com; HttpOnly; SameSite=Lax
x-content-type-options: nosniff
x-debug-info: eyJyZXRyaWVzIjowfQ==
x-frame-options: SAMEORIGIN
x-platform-server: i-022f454a7b3fd63c5, i-022f454a7b3fd63c5
x-xss-protection: 1; mode=block
traceresponse: 00-173d78d4b3bb69280b225c01d5bbae8a-a359b899961e18ec-00
accept-ranges: bytes
date: Wed, 25 Jan 2023 06:18:11 GMT
x-served-by: cache-bfi-krnt7300079-BFI, cache-bma1626-BMA
x-cache: MISS, MISS
x-cache-hits: 0, 0
strict-transport-security: max-age=31536000
vary: Accept-Encoding,Store,Content-Currency,Authorization
content-length: 77
X-Firefox-Spdy: h2
www.americanexpressseguros.com/es-mx/seguros/graphql?query=query+getStoreName%7BstoreConfig%7Bid+store_name+base_url+__typename%7D%7D&operationName=getStoreName&variables=%7B%7D
151.101.1.124200 OK 160 B URL HTTP/2 www.americanexpressseguros.com/es-mx/seguros/graphql?query=query+getStoreName%7BstoreConfig%7Bid+store_name+base_url+__typename%7D%7D&operationName=getStoreName&variables=%7B%7D
IP 151.101.1.124:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 77cdb478c99b921e07ef59b4ad4a983d
ca5b8338b5567e9e49265d35607742b709350d52
151adadfec032bb1564f7d182be6b598d05d91772dec84006f8bd1002d26caed
Analyzer Verdict Alert openphish American Express
quad9 Sinkholed
GET /es-mx/seguros/graphql?query=query+getStoreName%7BstoreConfig%7Bid+store_name+base_url+__typename%7D%7D&operationName=getStoreName&variables=%7B%7D HTTP/1.1
Host: www.americanexpressseguros.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.americanexpressseguros.com/es-mx/seguros/
content-type: application/json
authorization:
x-magento-cache-id: null
store: default
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=0, must-revalidate, no-cache, no-store
content-type: application/json
expires: Tue, 25 Jan 2022 06:18:11 GMT
pragma: no-cache
set-cookie: PHPSESSID=d3304086ba8cf751467563b981790f6d; expires=Wed, 25-Jan-2023 07:18:11 GMT; Max-Age=3600; path=/es-mx/seguros; domain=americanexpress.com; HttpOnly; SameSite=Lax
x-content-type-options: nosniff
x-debug-info: eyJyZXRyaWVzIjowfQ==
x-frame-options: SAMEORIGIN
x-platform-server: i-022f454a7b3fd63c5, i-022f454a7b3fd63c5
x-xss-protection: 1; mode=block
traceresponse: 00-173d78d4b44440a3685d704ce22bb248-262139ce9057ea59-00
accept-ranges: bytes
date: Wed, 25 Jan 2023 06:18:11 GMT
x-served-by: cache-bfi-kbfi7400068-BFI, cache-bma1626-BMA
x-cache: MISS, MISS
x-cache-hits: 0, 0
strict-transport-security: max-age=31536000
vary: Accept-Encoding,Store,Content-Currency,Authorization
content-length: 160
X-Firefox-Spdy: h2
vars.hotjar.com/box-ff00c703c3bbdf54ae44ee858d64f69e.html
54.230.111.94200 OK 1.0 kB URL HTTP/2 vars.hotjar.com/box-ff00c703c3bbdf54ae44ee858d64f69e.html
IP 54.230.111.94:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2368), with no line terminators
Hash 730971b89ffa8b99e4157f49a4275594
7041ce872cc30e32c6b04a958b0cf810e5fc5651
da09da5b55ce65cdb58f29842d654aa637580d8c4d5d3cddfa08de6d866dcf65
GET /box-ff00c703c3bbdf54ae44ee858d64f69e.html HTTP/1.1
Host: vars.hotjar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.americanexpressseguros.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html
content-length: 1035
date: Wed, 18 Jan 2023 10:13:06 GMT
accept-ranges: bytes
cache-control: max-age=31536000
content-encoding: br
cross-origin-embedder-policy: require-corp
cross-origin-resource-policy: cross-origin
etag: "730971b89ffa8b99e4157f49a4275594"
last-modified: Wed, 18 Jan 2023 10:12:30 GMT
strict-transport-security: max-age=2592000; includeSubDomains
x-robots-tag: none
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 f46773a8236e136c4f6648dd79a7af8e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: xaLnfHK5XeBWEgkcfyF2OrNM-ZPHVe3Jj47UuRSd7ovOhUnncQTE8g==
age: 590705
X-Firefox-Spdy: h2
www.americanexpressseguros.com/es-mx/seguros/graphql
151.101.1.124200 OK 54 B URL HTTP/2 www.americanexpressseguros.com/es-mx/seguros/graphql
IP 151.101.1.124:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 89afeb5e54a495e1cbf6ac394301728e
2c9924bd89f6b370eed6110c42b0aa1fe584890a
79b4c61488aa19b138e56294b190c039689d9856a354153fd7f8270d318faf31
Analyzer Verdict Alert openphish American Express
fortinet Phishing
quad9 Sinkholed
POST /es-mx/seguros/graphql HTTP/1.1
Host: www.americanexpressseguros.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.americanexpressseguros.com/es-mx/seguros/
content-type: application/json
authorization:
x-magento-cache-id: null
store: default
Origin: https://www.americanexpressseguros.com
Content-Length: 109
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=0, must-revalidate, no-cache, no-store
content-type: application/json
expires: Tue, 25 Jan 2022 06:18:11 GMT
pragma: no-cache
set-cookie: PHPSESSID=396a4d91fb47215bc77525d77701633f; expires=Wed, 25-Jan-2023 07:18:11 GMT; Max-Age=3600; path=/es-mx/seguros; domain=americanexpress.com; HttpOnly; SameSite=Lax
private_content_version=abdb1a302d76cc42a04bd5168bf44c73; expires=Sat, 22-Jan-2033 06:18:11 GMT; Max-Age=315360000; path=/; secure; SameSite=Lax
private_content_version=2f345754ccc9bc1af162c7d57de77de3; expires=Sat, 22-Jan-2033 06:18:11 GMT; Max-Age=315360000; path=/; secure; SameSite=Lax
private_content_version=3a9d7dbca61a0f4fe629013cbe052e75; expires=Sat, 22-Jan-2033 06:18:11 GMT; Max-Age=315360000; path=/; secure; SameSite=Lax
x-content-type-options: nosniff
x-debug-info: eyJyZXRyaWVzIjowfQ==
x-frame-options: SAMEORIGIN
x-platform-server: i-0eceb7d9e8ebf109e, i-0eceb7d9e8ebf109e
x-xss-protection: 1; mode=block
traceresponse: 00-173d78d4b498fb3701617d0d551d369a-7194a9e67cbfa367-00
accept-ranges: bytes
date: Wed, 25 Jan 2023 06:18:11 GMT
x-served-by: cache-bfi-krnt7300107-BFI, cache-bma1626-BMA
x-cache: MISS, MISS
x-cache-hits: 0, 0
access-control-allow-origin: mcprod.americanexpressseguros.com
access-control-allow-methods: GET,HEAD,POST,PUT
strict-transport-security: max-age=31536000
vary: Accept-Encoding,Origin
content-length: 54
X-Firefox-Spdy: h2
www.americanexpressseguros.com/es-mx/seguros/graphql?query=query+cmsBlocks%28%24identifiers%3A%5BString%5D%21%29%7BcmsBlocks%28identifiers%3A%24identifiers%29%7Bitems%7Bcontent+identifier+__typename%7D__typename%7D%7D&operationName=cmsBlocks&variables=%7B%22identifiers%22%3A%22sub_header%22%7D
151.101.1.124200 OK 84 kB URL HTTP/2 www.americanexpressseguros.com/es-mx/seguros/graphql?query=query+cmsBlocks%28%24identifiers%3A%5BString%5D%21%29%7BcmsBlocks%28identifiers%3A%24identifiers%29%7Bitems%7Bcontent+identifier+__typename%7D__typename%7D%7D&operationName=cmsBlocks&variables=%7B%22identifiers%22%3A%22sub_header%22%7D
IP 151.101.1.124:0
Hash 9844a198210d588d1d651563d5e6decf
61db8b7e0c7a27b0f4498b6e969c00ff1074082a
5f226d5969c5584c2ed02247412b4551f530a7ac2ba7764c6cd99a62a5a71b69
Analyzer Verdict Alert openphish American Express
quad9 Sinkholed
GET /es-mx/seguros/graphql?query=query+cmsBlocks%28%24identifiers%3A%5BString%5D%21%29%7BcmsBlocks%28identifiers%3A%24identifiers%29%7Bitems%7Bcontent+identifier+__typename%7D__typename%7D%7D&operationName=cmsBlocks&variables=%7B%22identifiers%22%3A%22sub_header%22%7D HTTP/1.1
Host: www.americanexpressseguros.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.americanexpressseguros.com/es-mx/seguros/
content-type: application/json
authorization:
x-magento-cache-id: null
store: default
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/json
expires: Thu, 26 Jan 2023 06:18:11 GMT
pragma: cache
x-content-type-options: nosniff
x-debug-info: eyJyZXRyaWVzIjowfQ==
x-frame-options: SAMEORIGIN
x-platform-server: i-022f454a7b3fd63c5, i-022f454a7b3fd63c5
x-xss-protection: 1; mode=block
traceresponse: 00-173d78d4b4354316ba72b343bbc4f71f-f4734c8d67e7f265-00
accept-ranges: bytes
date: Wed, 25 Jan 2023 06:18:11 GMT
x-served-by: cache-bfi-krnt7300036-BFI, cache-bma1626-BMA
x-cache: MISS, MISS
x-cache-hits: 0, 0
strict-transport-security: max-age=31536000
cache-control: no-store, no-cache, must-revalidate, max-age=0
vary: Accept-Encoding,Store,Content-Currency,Authorization
X-Firefox-Spdy: h2
www.americanexpressseguros.com/es-mx/seguros/graphql?query=query+getRootCategoryId%7BstoreConfig%7Bid+root_category_id+__typename%7D%7D&operationName=getRootCategoryId&variables=%7B%7D
151.101.1.124200 OK 81 B URL HTTP/2 www.americanexpressseguros.com/es-mx/seguros/graphql?query=query+getRootCategoryId%7BstoreConfig%7Bid+root_category_id+__typename%7D%7D&operationName=getRootCategoryId&variables=%7B%7D
IP 151.101.1.124:0
File type JSON data\012- , ASCII text, with no line terminators
Hash f246a5f113ab0f7e0effabaeac46fd3b
c4f343e4d877acf9327c64dd3b531d49c1768a31
691de7035fc5668a436b44106398822771e1594b586e3b98581f7ce73294b4f7
Analyzer Verdict Alert openphish American Express
quad9 Sinkholed
GET /es-mx/seguros/graphql?query=query+getRootCategoryId%7BstoreConfig%7Bid+root_category_id+__typename%7D%7D&operationName=getRootCategoryId&variables=%7B%7D HTTP/1.1
Host: www.americanexpressseguros.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.americanexpressseguros.com/es-mx/seguros/
content-type: application/json
authorization:
x-magento-cache-id: null
store: default
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=0, must-revalidate, no-cache, no-store
content-type: application/json
expires: Tue, 25 Jan 2022 06:18:11 GMT
pragma: no-cache
set-cookie: PHPSESSID=117cb85ba91d70f7fc52d8a302be3005; expires=Wed, 25-Jan-2023 07:18:11 GMT; Max-Age=3600; path=/es-mx/seguros; domain=americanexpress.com; HttpOnly; SameSite=Lax
x-content-type-options: nosniff
x-debug-info: eyJyZXRyaWVzIjowfQ==
x-frame-options: SAMEORIGIN
x-platform-server: i-022f454a7b3fd63c5, i-022f454a7b3fd63c5
x-xss-protection: 1; mode=block
traceresponse: 00-173d78d4b4c7f7e69dcb212f74ad6b06-b01899822b4124e2-00
accept-ranges: bytes
date: Wed, 25 Jan 2023 06:18:11 GMT
x-served-by: cache-bfi-kbfi7400091-BFI, cache-bma1626-BMA
x-cache: MISS, MISS
x-cache-hits: 0, 0
strict-transport-security: max-age=31536000
vary: Accept-Encoding,Store,Content-Currency,Authorization
content-length: 81
X-Firefox-Spdy: h2
www.americanexpressseguros.com/es-mx/seguros/graphql?query=query+ResolveURL%28%24url%3AString%21%29%7Broute%28url%3A%24url%29%7Brelative_url+redirect_code+type+...on+CmsPage%7Bidentifier+__typename%7D...on+ProductInterface%7Bid+__typename%7D...on+CategoryInterface%7Bid+__typename%7D__typename%7D%7D&operationName=ResolveURL&variables=%7B%22url%22%3A%22%2F%22%7D
151.101.1.124200 OK 121 B URL HTTP/2 www.americanexpressseguros.com/es-mx/seguros/graphql?query=query+ResolveURL%28%24url%3AString%21%29%7Broute%28url%3A%24url%29%7Brelative_url+redirect_code+type+...on+CmsPage%7Bidentifier+__typename%7D...on+ProductInterface%7Bid+__typename%7D...on+CategoryInterface%7Bid+__typename%7D__typename%7D%7D&operationName=ResolveURL&variables=%7B%22url%22%3A%22%2F%22%7D
IP 151.101.1.124:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 5f161022389e1730a20cc5d3385e69ee
7291476bc380fbb4b7384a4452e3491ddedafa00
fdd4a140c31d78559f40ffab1b38731f1d7fb3d815b98f76329fc4f1e1cbbda0
Analyzer Verdict Alert openphish American Express
quad9 Sinkholed
GET /es-mx/seguros/graphql?query=query+ResolveURL%28%24url%3AString%21%29%7Broute%28url%3A%24url%29%7Brelative_url+redirect_code+type+...on+CmsPage%7Bidentifier+__typename%7D...on+ProductInterface%7Bid+__typename%7D...on+CategoryInterface%7Bid+__typename%7D__typename%7D%7D&operationName=ResolveURL&variables=%7B%22url%22%3A%22%2F%22%7D HTTP/1.1
Host: www.americanexpressseguros.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.americanexpressseguros.com/es-mx/seguros/
content-type: application/json
authorization:
x-magento-cache-id: null
store: default
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=0, must-revalidate, no-cache, no-store
content-type: application/json
expires: Tue, 25 Jan 2022 06:18:11 GMT
pragma: no-cache
set-cookie: PHPSESSID=e64db3db49e7581a4b6bd004e1ef4fbd; expires=Wed, 25-Jan-2023 07:18:11 GMT; Max-Age=3600; path=/es-mx/seguros; domain=americanexpress.com; HttpOnly; SameSite=Lax
x-content-type-options: nosniff
x-debug-info: eyJyZXRyaWVzIjowfQ==
x-frame-options: SAMEORIGIN
x-platform-server: i-022f454a7b3fd63c5, i-022f454a7b3fd63c5
x-xss-protection: 1; mode=block
traceresponse: 00-173d78d4b594069a36ed36291f40dad0-5d61a242acc7733f-00
accept-ranges: bytes
date: Wed, 25 Jan 2023 06:18:11 GMT
x-served-by: cache-bfi-krnt7300083-BFI, cache-bma1626-BMA
x-cache: MISS, MISS
x-cache-hits: 0, 0
strict-transport-security: max-age=31536000
vary: Accept-Encoding,Store,Content-Currency,Authorization
content-length: 121
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 0286dd2c1dbad14c3d3843f2be2f306b
6d4ef81fed91c5139d8baf5947fcc366667a498e
05de9ed5577bf075cb1ad0a1b96672d758924cb7e475aca7d101b9ccfcc26c60
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4231
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 25 Jan 2023 06:18:11 GMT
Last-Modified: Wed, 25 Jan 2023 05:07:40 GMT
Server: ECS (ska/F713)
X-Cache: HIT
Content-Length: 471
www.americanexpress.com/es-mx/seguros/media/wysiwyg/escudo-de-amex-subHeader.png
104.110.26.196200 OK 264 B URL HTTP/2 www.americanexpress.com/es-mx/seguros/media/wysiwyg/escudo-de-amex-subHeader.png
IP 104.110.26.196:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash f55e3ddafab3e67633f3f6552d381c93
a19f647ab49652884aa65013cfb801b98c360a10
e63b45bd0e04ec7ea8006f3f26e098753a96d0005cc4c37fcc064f63cf4b0874
GET /es-mx/seguros/media/wysiwyg/escudo-de-amex-subHeader.png HTTP/1.1
Host: www.americanexpress.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.americanexpressseguros.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-length: 264
cache-control: max-age=31536000
content-type: image/webp
etag: "VL8kMgNqXAzD0dA2qRLS1czBZX4F9z6dI4YSz8blmmY"
expires: Sat, 30 Dec 2023 09:03:22 GMT
fastly-io-info: ifsz=1088 idim=24x24 ifmt=png ofsz=264 odim=24x24 ofmt=webp
fastly-stats: io=1
traceresponse: 00-173586c192a74111986eb0ec7577ba93-e10a7c1b0c3a3b23-00
x-debug-info: eyJyZXRyaWVzIjowfQ==
x-platform-server: i-0eceb7d9e8ebf109e, i-0eceb7d9e8ebf109e
accept-ranges: bytes
x-served-by: cache-bfi-kbfi7400021-BFI, cache-iad-kjyo7100176-IAD
x-cache-hits: 3, 1
strict-transport-security: max-age=31536000
vary: Accept
date: Wed, 25 Jan 2023 06:18:11 GMT
set-cookie: agent-id=d2006d04-5d87-4ca8-a85a-7d9f90b2abc1; expires=Thu, 25-Jan-2024 06:18:11 GMT; path=/; domain=.americanexpress.com; secure; HttpOnly
x-frame-options: SAMEORIGIN
X-Firefox-Spdy: h2
www.aexp-static.com/cdaas/one/statics/axp-static-assets/2.14.2/package/dist/img/flags/dls-flag-mx.svg
104.110.6.135200 OK 7.9 kB URL HTTP/2 www.aexp-static.com/cdaas/one/statics/axp-static-assets/2.14.2/package/dist/img/flags/dls-flag-mx.svg
IP 104.110.6.135:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (18924), with no line terminators
Hash 31ba54c9cbf82aa1a754eb3104e322fe
1bc5fef89d5644a16eac34f57f53f11567e22cfb
9a2ebfa2f6f6161222a064e91aa7ff4118f4802cc4478c7b1b221ee75c9bcb61
GET /cdaas/one/statics/axp-static-assets/2.14.2/package/dist/img/flags/dls-flag-mx.svg HTTP/1.1
Host: www.aexp-static.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.americanexpressseguros.com
Connection: keep-alive
Referer: https://www.americanexpressseguros.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/svg+xml
last-modified: Fri, 04 Sep 2020 17:15:25 GMT
etag: W/"5f52762d-49ec"
expires: Sat, 17 Apr 2021 23:30:55 GMT
cache-control: max-age=15552000
timing-allow-origin: *
content-encoding: gzip
content-length: 7851
date: Wed, 25 Jan 2023 06:18:11 GMT
vary: Origin, Accept-Encoding
access-control-allow-origin: https://www.americanexpressseguros.com
X-Firefox-Spdy: h2
www.aexp-static.com/cdaas/one/statics/axp-static-assets/1.7.1/package/dist/img/logos/dls-logo-line.svg
104.110.6.135200 OK 712 B URL HTTP/2 www.aexp-static.com/cdaas/one/statics/axp-static-assets/1.7.1/package/dist/img/logos/dls-logo-line.svg
IP 104.110.6.135:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1683), with no line terminators
Hash d3134926f93a64dd8bf01bc781933ccf
0c9e110f87db9495291f724a214e5f2e8391dace
9209524801a255d8be738b04ac1831938a0215852e5bae9db9da54dc6034d70f
GET /cdaas/one/statics/axp-static-assets/1.7.1/package/dist/img/logos/dls-logo-line.svg HTTP/1.1
Host: www.aexp-static.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.americanexpressseguros.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/svg+xml
last-modified: Fri, 18 Oct 2019 19:50:49 GMT
etag: W/"5daa1799-693"
expires: Tue, 02 Mar 2021 18:54:37 GMT
cache-control: max-age=15552000
timing-allow-origin: *
content-encoding: gzip
content-length: 712
date: Wed, 25 Jan 2023 06:18:11 GMT
vary: Origin, Accept-Encoding
access-control-allow-origin: https://www.americanexpressseguros.com
X-Firefox-Spdy: h2
www.americanexpressseguros.com/es-mx/seguros/static/pwa/38.12d8114a4aef0d2754eb.js
151.101.1.124200 OK 2.0 kB URL HTTP/2 www.americanexpressseguros.com/es-mx/seguros/static/pwa/38.12d8114a4aef0d2754eb.js
IP 151.101.1.124:0
File type ASCII text, with very long lines (638)
Hash b34ea76a13c8d129447de99845a1e750
f0f173217de0ddd4ab8fa5161459370a4e0e623f
8e38155fca8cc2807f32339b1f7fe03912a0e5a3f3419ac0cd772a6e2eb76423
Analyzer Verdict Alert openphish American Express
fortinet Phishing
quad9 Sinkholed
GET /es-mx/seguros/static/pwa/38.12d8114a4aef0d2754eb.js HTTP/1.1
Host: www.americanexpressseguros.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.americanexpressseguros.com/es-mx/seguros/
Cookie: _gcl_au=1.1.782004452.1674627490; private_content_version=7b4cbf57746914521bdfb3464e26b5d1; _ga_X20CXLNMV9=GS1.1.1674627489.1.0.1674627489.60.0.0; _ga=GA1.1.2138569223.1674627490
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=31536000
content-type: application/javascript
etag: W/"63b331a0-1147"
expires: Fri, 05 Jan 2024 01:31:46 GMT
last-modified: Mon, 02 Jan 2023 19:33:52 GMT
x-debug-info: eyJyZXRyaWVzIjowfQ==
x-platform-server: i-0eceb7d9e8ebf109e, i-0eceb7d9e8ebf109e
traceresponse: 00-17374598173a75b9c1270e8b508dd6dc-84b15ae17def4880-00
content-encoding: gzip
accept-ranges: bytes
date: Wed, 25 Jan 2023 06:18:11 GMT
age: 1745185
x-served-by: cache-bfi-krnt7300089-BFI, cache-bma1626-BMA
x-cache: HIT, HIT
x-cache-hits: 30, 1
strict-transport-security: max-age=31536000
vary: Accept-Encoding
content-length: 2043
X-Firefox-Spdy: h2
www.americanexpressseguros.com/es-mx/seguros/static/pwa/37.a18a19c9cc06233dfed5.js
151.101.1.124200 OK 3.4 kB URL HTTP/2 www.americanexpressseguros.com/es-mx/seguros/static/pwa/37.a18a19c9cc06233dfed5.js
IP 151.101.1.124:0
File type ASCII text, with very long lines (684)
Hash 1b36fe9795379c80810a50a535316f7a
2ca221268f21e31fceb234e4e3c5c7ec8ba6dd48
daa82d5a92670bf0a3641af5bfca270b8614f2762040463b5a5a1f32e6b450ab
Analyzer Verdict Alert openphish American Express
fortinet Phishing
quad9 Sinkholed
GET /es-mx/seguros/static/pwa/37.a18a19c9cc06233dfed5.js HTTP/1.1
Host: www.americanexpressseguros.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.americanexpressseguros.com/es-mx/seguros/
Cookie: _gcl_au=1.1.782004452.1674627490; private_content_version=7b4cbf57746914521bdfb3464e26b5d1; _ga_X20CXLNMV9=GS1.1.1674627489.1.0.1674627489.60.0.0; _ga=GA1.1.2138569223.1674627490
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=31536000
content-type: application/javascript
etag: W/"63bc4490-2ff5"
expires: Tue, 09 Jan 2024 16:52:26 GMT
last-modified: Mon, 09 Jan 2023 16:45:04 GMT
x-debug-info: eyJyZXRyaWVzIjowfQ==
x-platform-server: i-022f454a7b3fd63c5, i-022f454a7b3fd63c5
traceresponse: 00-1738b22806f90c34db09cf42ed490cea-20f991939ed2b959-00
content-encoding: gzip
accept-ranges: bytes
date: Wed, 25 Jan 2023 06:18:11 GMT
age: 1344345
x-served-by: cache-bfi-kbfi7400051-BFI, cache-bma1626-BMA
x-cache: HIT, HIT
x-cache-hits: 26, 1
strict-transport-security: max-age=31536000
vary: Accept-Encoding
content-length: 3445
X-Firefox-Spdy: h2
www.americanexpressseguros.com/es-mx/seguros/static/pwa/43.5864957f680df0f8a22b.js
151.101.1.124200 OK 2.8 kB URL HTTP/2 www.americanexpressseguros.com/es-mx/seguros/static/pwa/43.5864957f680df0f8a22b.js
IP 151.101.1.124:0
File type ASCII text, with very long lines (4949)
Hash 6a5b66eb3607772578879554c0a68bfa
51e30d25f62ab754cf9cc4fb4b4f66a589bdcbfb
e235ed77641927fff24dd850085f99385df5a1a60c69219c6a51bf49af34f11b
Analyzer Verdict Alert openphish American Express
fortinet Phishing
quad9 Sinkholed
GET /es-mx/seguros/static/pwa/43.5864957f680df0f8a22b.js HTTP/1.1
Host: www.americanexpressseguros.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.americanexpressseguros.com/es-mx/seguros/
Cookie: _gcl_au=1.1.782004452.1674627490; private_content_version=7b4cbf57746914521bdfb3464e26b5d1; _ga_X20CXLNMV9=GS1.1.1674627489.1.0.1674627489.60.0.0; _ga=GA1.1.2138569223.1674627490
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=31536000
content-type: application/javascript
etag: W/"63c0a993-21a9"
expires: Wed, 17 Jan 2024 18:04:56 GMT
last-modified: Fri, 13 Jan 2023 00:45:07 GMT
x-debug-info: eyJyZXRyaWVzIjowfQ==
x-platform-server: i-0eceb7d9e8ebf109e, i-0eceb7d9e8ebf109e
traceresponse: 00-173b2ac1507f66010d5a3e9dc01323fd-b009b427dbc161fa-00
content-encoding: gzip
accept-ranges: bytes
date: Wed, 25 Jan 2023 06:18:11 GMT
age: 648796
x-served-by: cache-bfi-kbfi7400062-BFI, cache-bma1626-BMA
x-cache: HIT, HIT
x-cache-hits: 14, 1
strict-transport-security: max-age=31536000
vary: Accept-Encoding
content-length: 2750
X-Firefox-Spdy: h2
m.exactag.com/pi.aspx?campaign=09912eb0a46fb62e4c35ec25651c5853&pitype=Content&convtype=&rnd=vyjqnQcqQWbr&retmode=J&items=%7B%22type%22%3A%22Content%22%2C%22conversiontype%22%3A%22%22%2C%22referrer%22%3A%22%22%2C%22host%22%3A%22www.americanexpressseguros.com%22%2C%22site%22%3A%22%2Fes-mx%2Fseguros%2F%22%2C%22search%22%3A%22%3Fundefined%22%2C%22protocol%22%3A%22https%3A%22%2C%22campaign%22%3A%2209912eb0a46fb62e4c35ec25651c5853%22%2C%22pitype%22%3A%22%22%2C%22uk%22%3A%22%22%2C%22gk%22%3A%22%22%2C%22trackingURL%22%3A%22https%3A%2F%2Fm.exactag.com%22%2C%22cdnURL%22%3A%22https%3A%2F%2Fcdn.exactag.com%2Fjs%22%2C%22sitegroup%22%3A%22generic%22%2C%22optout%22%3A%22false%22%7D
85.14.248.91200 OK 335 B URL HTTP/1.1 m.exactag.com/pi.aspx?campaign=09912eb0a46fb62e4c35ec25651c5853&pitype=Content&convtype=&rnd=vyjqnQcqQWbr&retmode=J&items=%7B%22type%22%3A%22Content%22%2C%22conversiontype%22%3A%22%22%2C%22referrer%22%3A%22%22%2C%22host%22%3A%22www.americanexpressseguros.com%22%2C%22site%22%3A%22%2Fes-mx%2Fseguros%2F%22%2C%22search%22%3A%22%3Fundefined%22%2C%22protocol%22%3A%22https%3A%22%2C%22campaign%22%3A%2209912eb0a46fb62e4c35ec25651c5853%22%2C%22pitype%22%3A%22%22%2C%22uk%22%3A%22%22%2C%22gk%22%3A%22%22%2C%22trackingURL%22%3A%22https%3A%2F%2Fm.exactag.com%22%2C%22cdnURL%22%3A%22https%3A%2F%2Fcdn.exactag.com%2Fjs%22%2C%22sitegroup%22%3A%22generic%22%2C%22optout%22%3A%22false%22%7D
IP 85.14.248.91:0
ASN #24961 myLoc managed IT AG
File type JSON data\012- , ASCII text, with very long lines (335), with no line terminators
Hash 1d2adc46bec5a7210f360d23128fc08a
3334d9023d18b5d2309095d55a3968c07028eeff
3f2cf80becec8283e15188a94bbfcf554c945e48e5d7b43d20441648503fa549
GET /pi.aspx?campaign=09912eb0a46fb62e4c35ec25651c5853&pitype=Content&convtype=&rnd=vyjqnQcqQWbr&retmode=J&items=%7B%22type%22%3A%22Content%22%2C%22conversiontype%22%3A%22%22%2C%22referrer%22%3A%22%22%2C%22host%22%3A%22www.americanexpressseguros.com%22%2C%22site%22%3A%22%2Fes-mx%2Fseguros%2F%22%2C%22search%22%3A%22%3Fundefined%22%2C%22protocol%22%3A%22https%3A%22%2C%22campaign%22%3A%2209912eb0a46fb62e4c35ec25651c5853%22%2C%22pitype%22%3A%22%22%2C%22uk%22%3A%22%22%2C%22gk%22%3A%22%22%2C%22trackingURL%22%3A%22https%3A%2F%2Fm.exactag.com%22%2C%22cdnURL%22%3A%22https%3A%2F%2Fcdn.exactag.com%2Fjs%22%2C%22sitegroup%22%3A%22generic%22%2C%22optout%22%3A%22false%22%7D HTTP/1.1
Host: m.exactag.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.americanexpressseguros.com/
Origin: https://www.americanexpressseguros.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: no-cache
Pragma: no-cache
Content-Type: application/json; charset=utf-8
Expires: -1
Last-Modified: Mi, 25 Jan 2023 06:18:11 GMT
P3P: policyref="https://m.exactag.com/w3c/p3p.xml", CP="NOI NID STP STA CUR OUR"
Access-Control-Allow-Origin: https://www.americanexpressseguros.com
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: POST, GET, OPTIONS
Access-Control-Max-Age: 1000
Access-Control-Allow-Headers: *
X-ET-Code: 0
X-ET-Camp: 1913
X-ET-Monitoring: 1
Accept-CH: sec-ch-ua-platform-version,sec-ch-ua-full-version,sec-ch-ua-full-version-list,sec-ch-ua-model,sec-ch-ua-arch,sec-ch-ua-bitness,sec-ch-ua-wow64
Strict-Transport-Security: max-age=31536000
Set-Cookie: exactag_new_gk=35deae3be7f34b13a4b63768547e8171%7c26.03.2023+06%3a18%3a11; expires=Tue, 25-Apr-2023 06:18:11 GMT; path=/; secure; HttpOnly; SameSite=None
exactag_new_uk=d9131712ba9d477fa2674398e7bfbef8%7c; expires=Mon, 24-Jul-2023 06:18:11 GMT; path=/; secure; HttpOnly; SameSite=None
session_session=abdfe0c5947c49e89b306a29; path=/; secure; HttpOnly; SameSite=None
exactag_new_user=1913%7c1%7cabdfe0c5947c49e89b306a29%7c01.01.0001+00%3a00%3a00%7c25.01.2023+06%3a18%3a11%7cabdfe0c5947c49e89b306a29%7c2687701%7c1753%7cFalse; expires=Mon, 24-Jul-2023 06:18:11 GMT; path=/; secure; HttpOnly; SameSite=None
Date: Wed, 25 Jan 2023 06:18:11 GMT
Connection: close
Content-Length: 335
cross-origin-resource-policy: cross-origin
X-Xss-Protection: 0
X-Content-Type-Options: nosniff
www.americanexpressseguros.com/es-mx/seguros/graphql?query=query+checkUserIsAuthed%28%24cartId%3AString%21%29%7Bcart%28cart_id%3A%24cartId%29%7Bid+__typename%7D%7D&operationName=checkUserIsAuthed&variables=%7B%22cartId%22%3A%22WNJljvoqoOJ5pR99AxDmD3aQRrFotZtA%22%7D
151.101.1.124200 OK 79 B URL HTTP/2 www.americanexpressseguros.com/es-mx/seguros/graphql?query=query+checkUserIsAuthed%28%24cartId%3AString%21%29%7Bcart%28cart_id%3A%24cartId%29%7Bid+__typename%7D%7D&operationName=checkUserIsAuthed&variables=%7B%22cartId%22%3A%22WNJljvoqoOJ5pR99AxDmD3aQRrFotZtA%22%7D
IP 151.101.1.124:0
File type JSON data\012- , ASCII text, with no line terminators
Hash b1fcf60c400392f7136b6cfd6208548e
b82b37a15aa5b606464817334db80cdcacfcb520
38dfcc7a583aee9ed7c7ce7497abecfff75a47ace99e147128c3fb595f35b3e8
Analyzer Verdict Alert openphish American Express
quad9 Sinkholed
GET /es-mx/seguros/graphql?query=query+checkUserIsAuthed%28%24cartId%3AString%21%29%7Bcart%28cart_id%3A%24cartId%29%7Bid+__typename%7D%7D&operationName=checkUserIsAuthed&variables=%7B%22cartId%22%3A%22WNJljvoqoOJ5pR99AxDmD3aQRrFotZtA%22%7D HTTP/1.1
Host: www.americanexpressseguros.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.americanexpressseguros.com/es-mx/seguros/
content-type: application/json
authorization:
x-magento-cache-id: null
store: default
Connection: keep-alive
Cookie: _gcl_au=1.1.782004452.1674627490; private_content_version=3a9d7dbca61a0f4fe629013cbe052e75
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=0, must-revalidate, no-cache, no-store
content-type: application/json
expires: Tue, 25 Jan 2022 06:18:11 GMT
pragma: no-cache
set-cookie: PHPSESSID=3e2c263032b21f06eb3c6c9b41ff78fe; expires=Wed, 25-Jan-2023 07:18:11 GMT; Max-Age=3600; path=/es-mx/seguros; domain=americanexpress.com; HttpOnly; SameSite=Lax
x-content-type-options: nosniff
x-debug-info: eyJyZXRyaWVzIjowfQ==
x-frame-options: SAMEORIGIN
x-platform-server: i-0129d32895ff95045, i-0129d32895ff95045
x-xss-protection: 1; mode=block
traceresponse: 00-173d78d4d13915779ebd0d7a793a7db8-8a801fa9db415f89-00
accept-ranges: bytes
date: Wed, 25 Jan 2023 06:18:12 GMT
x-served-by: cache-bfi-krnt7300099-BFI, cache-bma1626-BMA
x-cache: MISS, MISS
x-cache-hits: 0, 0
strict-transport-security: max-age=31536000
vary: Accept-Encoding,Store,Content-Currency,Authorization
content-length: 79
X-Firefox-Spdy: h2
www.americanexpress.com/es-mx/seguros/media/wysiwyg/Card_Filled.png
104.110.26.196200 OK 104 B URL HTTP/2 www.americanexpress.com/es-mx/seguros/media/wysiwyg/Card_Filled.png
IP 104.110.26.196:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash 6a37c48038d186f00e486da8d2215764
117612abf7474ebd67dc1619e85bde5082ebeeb1
2653352af53f57ac6171c196d40c1a0e240044b2f9d7d174f0ae20b01965ff93
GET /es-mx/seguros/media/wysiwyg/Card_Filled.png HTTP/1.1
Host: www.americanexpress.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.americanexpressseguros.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 104
cache-control: max-age=31536000
content-type: image/webp
etag: "7UFYdHNgLe23CiKpUlWuM/uURMNLqLezb0G/Fao+Ju0"
expires: Wed, 06 Dec 2023 22:52:35 GMT
fastly-io-info: ifsz=225 idim=24x18 ifmt=png ofsz=104 odim=24x18 ofmt=webp
fastly-stats: io=1
traceresponse: 00-172e56140fd0d8e29f5baab9567eeba7-714bb3cf8e5f09ea-00
x-debug-info: eyJyZXRyaWVzIjowfQ==
x-platform-server: i-0eceb7d9e8ebf109e, i-0eceb7d9e8ebf109e
accept-ranges: bytes
x-served-by: cache-bfi-krnt7300034-BFI, cache-iad-kiad7000020-IAD
x-cache-hits: 3, 1
strict-transport-security: max-age=31536000
vary: Accept
date: Wed, 25 Jan 2023 06:18:12 GMT
set-cookie: agent-id=d50083fd-a8a8-4552-8e0f-aca784b59c81; expires=Thu, 25-Jan-2024 06:18:12 GMT; path=/; domain=.americanexpress.com; secure; HttpOnly
x-frame-options: SAMEORIGIN
X-Firefox-Spdy: h2
www.americanexpress.com/es-mx/seguros/media/wysiwyg/AXA_1.png?auto=webp&format=png&quality=85
104.110.26.196200 OK 1.4 kB URL HTTP/2 www.americanexpress.com/es-mx/seguros/media/wysiwyg/AXA_1.png?auto=webp&format=png&quality=85
IP 104.110.26.196:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash 3e7eddfc527c6510ffd9d0957a7f1fd3
3622741b9b866b1adca07bf780e242cd0fe8a1da
ff3d7b026495319821a7009234f36e20abba1368478e79965b09e04f48dcb042
GET /es-mx/seguros/media/wysiwyg/AXA_1.png?auto=webp&format=png&quality=85 HTTP/1.1
Host: www.americanexpress.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.americanexpressseguros.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 1408
cache-control: max-age=31536000
content-type: image/webp
etag: "n/Sh8rB3Ob2/iQeui6wRsQ65vdysy8aJNDT3RYl/Udo"
expires: Sun, 17 Dec 2023 12:55:39 GMT
fastly-io-info: ifsz=3043 idim=80x80 ifmt=png ofsz=1408 odim=80x80 ofmt=webp
fastly-stats: io=1
traceresponse: 00-173195e3305b6fe89408e9fefb408ba7-c8c8149ef1f6ca13-00
x-debug-info: eyJyZXRyaWVzIjowfQ==
x-platform-server: i-0eceb7d9e8ebf109e, i-0eceb7d9e8ebf109e
accept-ranges: bytes
x-served-by: cache-bfi-krnt7300065-BFI, cache-iad-kiad7000152-IAD
x-cache-hits: 7, 1
strict-transport-security: max-age=31536000
vary: Accept
date: Wed, 25 Jan 2023 06:18:12 GMT
set-cookie: agent-id=b5a2cbaf-24ca-4dd6-a02a-296644e97f1c; expires=Thu, 25-Jan-2024 06:18:12 GMT; path=/; domain=.americanexpress.com; secure; HttpOnly
x-frame-options: SAMEORIGIN
X-Firefox-Spdy: h2
www.americanexpress.com/es-mx/seguros/media/wysiwyg/CHUBB_1.png?auto=webp&format=png&quality=85
104.110.26.196200 OK 1.6 kB URL HTTP/2 www.americanexpress.com/es-mx/seguros/media/wysiwyg/CHUBB_1.png?auto=webp&format=png&quality=85
IP 104.110.26.196:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash d4a9e9a2232ade1d1352a0b8fdac8a61
9f6758f5ba5d6ffc65b100c1482546be54f4f7c6
7fb6c8af6e529aac6b0b85a6bf51873e044a3a698f3150a8bb6b3c905dd783bd
GET /es-mx/seguros/media/wysiwyg/CHUBB_1.png?auto=webp&format=png&quality=85 HTTP/1.1
Host: www.americanexpress.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.americanexpressseguros.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 1594
cache-control: max-age=31536000
content-type: image/webp
etag: "g69lhCMZWMa0lss86FOexA3g8kHN8TVYjkqLe8SOCwY"
expires: Thu, 04 Jan 2024 12:52:56 GMT
fastly-io-info: ifsz=3229 idim=313x80 ifmt=png ofsz=1594 odim=313x80 ofmt=webp
fastly-stats: io=1
traceresponse: 00-17371c2f5c98efcf8d9e9b7470d784df-61fe24a2d6a5b49f-00
x-debug-info: eyJyZXRyaWVzIjowfQ==
x-platform-server: i-0eceb7d9e8ebf109e, i-0eceb7d9e8ebf109e
accept-ranges: bytes
x-served-by: cache-bfi-krnt7300021-BFI, cache-iad-kjyo7100176-IAD
x-cache-hits: 1, 1
strict-transport-security: max-age=31536000
vary: Accept
date: Wed, 25 Jan 2023 06:18:12 GMT
set-cookie: agent-id=cebc6fe4-b67b-4708-8e14-4427f6723740; expires=Thu, 25-Jan-2024 06:18:12 GMT; path=/; domain=.americanexpress.com; secure; HttpOnly
x-frame-options: SAMEORIGIN
X-Firefox-Spdy: h2
www.americanexpress.com/es-mx/seguros/media/wysiwyg/animation_life.png?auto=webp&format=png&quality=85
104.110.26.196200 OK 4.2 kB URL HTTP/2 www.americanexpress.com/es-mx/seguros/media/wysiwyg/animation_life.png?auto=webp&format=png&quality=85
IP 104.110.26.196:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash 30d6626b9e99b0eebfd1462bb0eae52b
f853186767729ecb9bffb79caa6727347c7c5c1d
33cdf489b8bdecb3cb5f07e05177b25383fc0ce7d6fb35c340777381066d6ba8
GET /es-mx/seguros/media/wysiwyg/animation_life.png?auto=webp&format=png&quality=85 HTTP/1.1
Host: www.americanexpress.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.americanexpressseguros.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 4172
cache-control: max-age=31536000
content-type: image/webp
etag: "v0IsVIwTOZhN5f9jonsHc6U41v4l0utrJPNFLcMN3Lw"
expires: Wed, 06 Dec 2023 16:26:55 GMT
fastly-io-info: ifsz=12357 idim=264x264 ifmt=png ofsz=4172 odim=264x264 ofmt=webp
fastly-stats: io=1
traceresponse: 00-172e410848261128daf7c1b86d79130d-c10b753fbf96f241-00
x-debug-info: eyJyZXRyaWVzIjowfQ==
x-platform-server: i-0129d32895ff95045, i-0129d32895ff95045
accept-ranges: bytes
x-served-by: cache-bfi-kbfi7400108-BFI, cache-iad-kjyo7100083-IAD
x-cache-hits: 9, 1
strict-transport-security: max-age=31536000
vary: Accept
date: Wed, 25 Jan 2023 06:18:12 GMT
set-cookie: agent-id=a1de56a1-bd04-4e8d-a41a-35ce2a7f21a3; expires=Thu, 25-Jan-2024 06:18:12 GMT; path=/; domain=.americanexpress.com; secure; HttpOnly
x-frame-options: SAMEORIGIN
X-Firefox-Spdy: h2
www.americanexpress.com/es-mx/seguros/media/wysiwyg/MicrosoftTeams-image_7_.png?auto=webp&format=png&quality=85
104.110.26.196200 OK 5.5 kB URL HTTP/2 www.americanexpress.com/es-mx/seguros/media/wysiwyg/MicrosoftTeams-image_7_.png?auto=webp&format=png&quality=85
IP 104.110.26.196:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash bc73c65ddd507b6b8695186b4bde138d
f70d7a538b6c72458cf9eafbf9fabf5e6bffc0f9
6540aede7c30f04d1d9b36d51696bf045a39a6d90f898394b1aa96105cff368f
GET /es-mx/seguros/media/wysiwyg/MicrosoftTeams-image_7_.png?auto=webp&format=png&quality=85 HTTP/1.1
Host: www.americanexpress.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.americanexpressseguros.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 5474
cache-control: max-age=31536000
content-type: image/webp
etag: "pS4M6TPqyv+GPY74Ip20wHksREVN4NSP8j+jc0HAx5Y"
expires: Thu, 04 Jan 2024 18:42:48 GMT
fastly-io-info: ifsz=15496 idim=554x212 ifmt=png ofsz=5474 odim=554x212 ofmt=webp
fastly-stats: io=1
traceresponse: 00-17372f46ea41b2f5dd431129c7e81d15-cedd31e71bded8fd-00
x-debug-info: eyJyZXRyaWVzIjowfQ==
x-platform-server: i-022f454a7b3fd63c5, i-022f454a7b3fd63c5
accept-ranges: bytes
x-served-by: cache-bfi-kbfi7400033-BFI, cache-iad-kjyo7100083-IAD
x-cache-hits: 1, 1
strict-transport-security: max-age=31536000
vary: Accept
date: Wed, 25 Jan 2023 06:18:12 GMT
set-cookie: agent-id=9ed5956a-ae53-4686-bb41-73d370f32313; expires=Thu, 25-Jan-2024 06:18:12 GMT; path=/; domain=.americanexpress.com; secure; HttpOnly
x-frame-options: SAMEORIGIN
X-Firefox-Spdy: h2
www.americanexpress.com/es-mx/seguros/media/wysiwyg/Zurich_1.png?auto=webp&format=png&quality=85
104.110.26.196200 OK 3.3 kB URL HTTP/2 www.americanexpress.com/es-mx/seguros/media/wysiwyg/Zurich_1.png?auto=webp&format=png&quality=85
IP 104.110.26.196:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash aa9d93cbf0798717f992594455d67438
cffd1af68d703735b9f5ac2201c8ae3f0de8e2dc
27d430cdf8fdec9dbeecedf8c2b57d7b249e2f0e766d59735ead098a1200f432
GET /es-mx/seguros/media/wysiwyg/Zurich_1.png?auto=webp&format=png&quality=85 HTTP/1.1
Host: www.americanexpress.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.americanexpressseguros.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 3348
cache-control: max-age=31536000
content-type: image/webp
etag: "lxvTAvZjbSnEeuEfzue0qa2D2/ORZV7ND6hAIKS1obs"
expires: Thu, 04 Jan 2024 14:11:25 GMT
fastly-io-info: ifsz=6847 idim=264x80 ifmt=png ofsz=3348 odim=264x80 ofmt=webp
fastly-stats: io=1
traceresponse: 00-17372077cedc75c428814afe632114c5-b8fb48cda1275124-00
x-debug-info: eyJyZXRyaWVzIjowfQ==
x-platform-server: i-0129d32895ff95045, i-0129d32895ff95045
accept-ranges: bytes
x-served-by: cache-bfi-kbfi7400117-BFI, cache-iad-kjyo7100083-IAD
x-cache-hits: 6, 1
strict-transport-security: max-age=31536000
vary: Accept
date: Wed, 25 Jan 2023 06:18:12 GMT
set-cookie: agent-id=1da4f51d-494c-429c-a9f6-2fd6cbdba551; expires=Thu, 25-Jan-2024 06:18:12 GMT; path=/; domain=.americanexpress.com; secure; HttpOnly
x-frame-options: SAMEORIGIN
X-Firefox-Spdy: h2
www.americanexpress.com/es-mx/seguros/media/wysiwyg/icon_container_3_.png?auto=webp&format=png&quality=85
104.110.26.196200 OK 738 B URL HTTP/2 www.americanexpress.com/es-mx/seguros/media/wysiwyg/icon_container_3_.png?auto=webp&format=png&quality=85
IP 104.110.26.196:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash 45ad5db131b59ae723e5d28805e33b03
f73661e0c4303c3d85c199b551254cae071646a1
c7409034ad8820cc728c3ea5f85a0ccc8264fb4862a911df6e4c40a624da2b94
GET /es-mx/seguros/media/wysiwyg/icon_container_3_.png?auto=webp&format=png&quality=85 HTTP/1.1
Host: www.americanexpress.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.americanexpressseguros.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 738
cache-control: max-age=31536000
content-type: image/webp
etag: "NsT9SMUVsvOTGBaoYUZEpPoCHY4NuQFCPWchSX/8fNE"
expires: Wed, 06 Dec 2023 08:02:39 GMT
fastly-io-info: ifsz=1734 idim=72x72 ifmt=png ofsz=738 odim=72x72 ofmt=webp
fastly-stats: io=1
traceresponse: 00-172e2583a4ca0cce2a3ea5ef8ebd67a3-0aa7bd2f8f6c16b6-00
x-debug-info: eyJyZXRyaWVzIjowfQ==
x-platform-server: i-0129d32895ff95045, i-0129d32895ff95045
accept-ranges: bytes
x-served-by: cache-bfi-krnt7300046-BFI, cache-iad-kiad7000040-IAD
x-cache-hits: 4, 1
strict-transport-security: max-age=31536000
vary: Accept
date: Wed, 25 Jan 2023 06:18:12 GMT
set-cookie: agent-id=6065d274-898b-45f4-9119-bd9f02e50834; expires=Thu, 25-Jan-2024 06:18:12 GMT; path=/; domain=.americanexpress.com; secure; HttpOnly
x-frame-options: SAMEORIGIN
X-Firefox-Spdy: h2
www.americanexpress.com/es-mx/seguros/media/wysiwyg/animation_accident.png?auto=webp&format=png&quality=85
104.110.26.196200 OK 5.3 kB URL HTTP/2 www.americanexpress.com/es-mx/seguros/media/wysiwyg/animation_accident.png?auto=webp&format=png&quality=85
IP 104.110.26.196:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash 43d9dc93ecd03b0ece648e0f26bbecb1
f08c5f3c78bf2d16cac69be9306aabc6ae47bab5
34cd7cee5a1c14ff55e29a62ffc82f7e984de8cd49359d0748c26c67cc26901d
GET /es-mx/seguros/media/wysiwyg/animation_accident.png?auto=webp&format=png&quality=85 HTTP/1.1
Host: www.americanexpress.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.americanexpressseguros.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 5292
cache-control: max-age=31536000
content-type: image/webp
etag: "hB2qVrFDEe56AN5gTfdOE2ww/0Xtra1eWebGlrG/OrQ"
expires: Thu, 07 Dec 2023 06:15:51 GMT
fastly-io-info: ifsz=16165 idim=320x320 ifmt=png ofsz=5292 odim=320x320 ofmt=webp
fastly-stats: io=1
traceresponse: 00-172e6e44675e78ca7134ab21acc33779-dbbdfc1ff69d4fff-00
x-debug-info: eyJyZXRyaWVzIjowfQ==
x-platform-server: i-022f454a7b3fd63c5, i-022f454a7b3fd63c5
accept-ranges: bytes
x-served-by: cache-bfi-kbfi7400036-BFI, cache-iad-kiad7000109-IAD
x-cache-hits: 4, 1
strict-transport-security: max-age=31536000
vary: Accept
date: Wed, 25 Jan 2023 06:18:12 GMT
set-cookie: agent-id=81e40e2e-392c-4f59-abf8-ebaff32392aa; expires=Thu, 25-Jan-2024 06:18:12 GMT; path=/; domain=.americanexpress.com; secure; HttpOnly
x-frame-options: SAMEORIGIN
X-Firefox-Spdy: h2
www.americanexpress.com/es-mx/seguros/media/wysiwyg/Bupa_1.png?auto=webp&format=png&quality=85
104.110.26.196200 OK 3.3 kB URL HTTP/2 www.americanexpress.com/es-mx/seguros/media/wysiwyg/Bupa_1.png?auto=webp&format=png&quality=85
IP 104.110.26.196:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash badf8c830a4fd091aae3dbc88e3aba5f
d2a5672f5246f4c62d5317587d7e2334e6bd1319
0ef2e1b18d8460f52c82d7d69d0ff6250ba015bfcf6bf671c931e3d77ccb9e64
GET /es-mx/seguros/media/wysiwyg/Bupa_1.png?auto=webp&format=png&quality=85 HTTP/1.1
Host: www.americanexpress.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.americanexpressseguros.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 3296
cache-control: max-age=31536000
content-type: image/webp
etag: "2d9UZkwaGYMmPJThMuOucKhk7NtJ/xiRvQgn1ZwwFlY"
expires: Wed, 10 Jan 2024 13:06:37 GMT
fastly-io-info: ifsz=6121 idim=150x80 ifmt=png ofsz=3296 odim=150x80 ofmt=webp
fastly-stats: io=1
traceresponse: 00-1738f469d868329959dbec01bc5a6ec8-612a0a56bdb2fe54-00
x-debug-info: eyJyZXRyaWVzIjowfQ==
x-platform-server: i-0129d32895ff95045, i-0129d32895ff95045
accept-ranges: bytes
x-served-by: cache-bfi-kbfi7400069-BFI, cache-iad-kiad7000020-IAD
x-cache-hits: 5, 1
strict-transport-security: max-age=31536000
vary: Accept
date: Wed, 25 Jan 2023 06:18:12 GMT
set-cookie: agent-id=824691b3-b88f-4a1c-92b7-af73a4eeee33; expires=Thu, 25-Jan-2024 06:18:12 GMT; path=/; domain=.americanexpress.com; secure; HttpOnly
x-frame-options: SAMEORIGIN
X-Firefox-Spdy: h2
www.americanexpress.com/es-mx/seguros/media/wysiwyg/MicrosoftTeams-image_5_.png?auto=webp&format=png&quality=85
104.110.26.196200 OK 4.6 kB URL HTTP/2 www.americanexpress.com/es-mx/seguros/media/wysiwyg/MicrosoftTeams-image_5_.png?auto=webp&format=png&quality=85
IP 104.110.26.196:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash 4b8f4a61144d64f5b9693bfe98cac475
de5ca165ee1831243b94e8a02513aef8d96926df
09724fe323b22a8a7dc05065eed5a2708ad79fe0d5d0801189a7b41a84e5763b
GET /es-mx/seguros/media/wysiwyg/MicrosoftTeams-image_5_.png?auto=webp&format=png&quality=85 HTTP/1.1
Host: www.americanexpress.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.americanexpressseguros.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 4620
cache-control: max-age=31536000
content-type: image/webp
etag: "QmYG5WieRG4br1mnbin1b/si8v/5UemcEMymfsaJIY0"
expires: Thu, 11 Jan 2024 10:35:50 GMT
fastly-io-info: ifsz=12816 idim=392x248 ifmt=png ofsz=4620 odim=392x248 ofmt=webp
fastly-stats: io=1
traceresponse: 00-17393ac42c087d328f93a4cd107c6b36-d0dec7ce2cd987c6-00
x-debug-info: eyJyZXRyaWVzIjowfQ==
x-platform-server: i-0129d32895ff95045, i-0129d32895ff95045
accept-ranges: bytes
x-served-by: cache-bfi-kbfi7400091-BFI, cache-iad-kiad7000042-IAD
x-cache-hits: 2, 1
strict-transport-security: max-age=31536000
vary: Accept
date: Wed, 25 Jan 2023 06:18:12 GMT
set-cookie: agent-id=f997ac60-852c-4bd3-80ee-f45ff60ba108; expires=Thu, 25-Jan-2024 06:18:12 GMT; path=/; domain=.americanexpress.com; secure; HttpOnly
x-frame-options: SAMEORIGIN
X-Firefox-Spdy: h2
www.americanexpress.com/es-mx/seguros/media/wysiwyg/Zurich_1_1.png?auto=webp&format=png&quality=85
104.110.26.196200 OK 3.3 kB URL HTTP/2 www.americanexpress.com/es-mx/seguros/media/wysiwyg/Zurich_1_1.png?auto=webp&format=png&quality=85
IP 104.110.26.196:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash aa9d93cbf0798717f992594455d67438
cffd1af68d703735b9f5ac2201c8ae3f0de8e2dc
27d430cdf8fdec9dbeecedf8c2b57d7b249e2f0e766d59735ead098a1200f432
GET /es-mx/seguros/media/wysiwyg/Zurich_1_1.png?auto=webp&format=png&quality=85 HTTP/1.1
Host: www.americanexpress.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.americanexpressseguros.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 3348
cache-control: max-age=31536000
content-type: image/webp
etag: "lxvTAvZjbSnEeuEfzue0qa2D2/ORZV7ND6hAIKS1obs"
expires: Sat, 02 Dec 2023 02:58:12 GMT
fastly-io-info: ifsz=6847 idim=264x80 ifmt=png ofsz=3348 odim=264x80 ofmt=webp
fastly-stats: io=1
traceresponse: 00-172cda94596eacd5b6b8d256121290c4-8fcf1dcb1998fd61-00
x-debug-info: eyJyZXRyaWVzIjowfQ==
x-platform-server: i-0eceb7d9e8ebf109e, i-0eceb7d9e8ebf109e
accept-ranges: bytes
x-served-by: cache-bfi-krnt7300106-BFI, cache-iad-kjyo7100176-IAD
x-cache-hits: 8, 2
strict-transport-security: max-age=31536000
vary: Accept
date: Wed, 25 Jan 2023 06:18:12 GMT
set-cookie: agent-id=540a70d7-5362-44a6-bb20-998e4b07367e; expires=Thu, 25-Jan-2024 06:18:12 GMT; path=/; domain=.americanexpress.com; secure; HttpOnly
x-frame-options: SAMEORIGIN
X-Firefox-Spdy: h2
cdn.exactag.com/js/etnp.js
185.76.9.24200 OK 2.5 kB URL HTTP/2 cdn.exactag.com/js/etnp.js
IP 185.76.9.24:0
ASN #60068 Datacamp Limited
Hash 6a86ac17cde9f66d5b3a9e1ea5459e06
f383ef8e3f2b908bb0a44ab8f452da47fd6bf56d
86ec2af1bbb2f36857606777016fc9ff1f35ccfeb5a49b060fd73772f195a839
GET /js/etnp.js HTTP/1.1
Host: cdn.exactag.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.americanexpressseguros.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 25 Jan 2023 06:18:11 GMT
content-type: application/javascript
last-modified: Fri, 30 Sep 2022 10:29:09 GMT
etag: W/"6336c4f5-e09"
access-control-allow-origin: *
x-accel-expires: @1674628066
server: CDN77-Turbo
x-77-nzt: AblMCRSfdUvvGQAAAA
x-77-nzt-ray: af5856309c5d38e8a3c9d063597cd32a
x-cache: HIT
x-age: 25
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
www.americanexpressseguros.com/es-mx/seguros/graphql?query=query+getFooter%7Bfooterhtml%7D&operationName=getFooter&variables=%7B%7D
151.101.1.124200 OK 59 kB URL HTTP/2 www.americanexpressseguros.com/es-mx/seguros/graphql?query=query+getFooter%7Bfooterhtml%7D&operationName=getFooter&variables=%7B%7D
IP 151.101.1.124:0
Hash 9fd3b075c016c85c5f3245205a781dee
5c3225b718f2d14f10e7f6bc32463065618541d4
9b7047d7043bacd48b415c1d223e6bf64f9454a550de0cd968554454a3edbd8b
Analyzer Verdict Alert openphish American Express
quad9 Sinkholed
GET /es-mx/seguros/graphql?query=query+getFooter%7Bfooterhtml%7D&operationName=getFooter&variables=%7B%7D HTTP/1.1
Host: www.americanexpressseguros.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.americanexpressseguros.com/es-mx/seguros/
content-type: application/json
authorization:
x-magento-cache-id: null
store: default
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=0, must-revalidate, no-cache, no-store
content-type: application/json
expires: Tue, 25 Jan 2022 06:18:11 GMT
pragma: no-cache
set-cookie: PHPSESSID=45f64015a7c319997899f89de95ea771; expires=Wed, 25-Jan-2023 07:18:11 GMT; Max-Age=3600; path=/es-mx/seguros; domain=americanexpress.com; HttpOnly; SameSite=Lax
x-content-type-options: nosniff
x-debug-info: eyJyZXRyaWVzIjowfQ==
x-frame-options: SAMEORIGIN
x-platform-server: i-0eceb7d9e8ebf109e, i-0eceb7d9e8ebf109e
x-xss-protection: 1; mode=block
traceresponse: 00-173d78d4b5de1e09d1738560568cd025-537d413e4b121b06-00
accept-ranges: bytes
date: Wed, 25 Jan 2023 06:18:11 GMT
x-served-by: cache-bfi-krnt7300067-BFI, cache-bma1626-BMA
x-cache: MISS, MISS
x-cache-hits: 0, 0
strict-transport-security: max-age=31536000
vary: Accept-Encoding,Store,Content-Currency,Authorization
X-Firefox-Spdy: h2
www.americanexpressseguros.com/es-mx/seguros/static/pwa/42.e7e047d7985b6e239c9b.js
151.101.1.124200 OK 1.1 kB URL HTTP/2 www.americanexpressseguros.com/es-mx/seguros/static/pwa/42.e7e047d7985b6e239c9b.js
IP 151.101.1.124:0
File type ASCII text, with very long lines (727)
Hash 4a0a4436617a27d19228e15a4ab583e0
ffc7a7e3c68a106c809d9a187fd87e3cf9da94ea
99345ae8276b7c0ce5093d33f0a13e0e0acff8a9d2fe9c089ebd2dfafd361ae7
Analyzer Verdict Alert openphish American Express
fortinet Phishing
quad9 Sinkholed
GET /es-mx/seguros/static/pwa/42.e7e047d7985b6e239c9b.js HTTP/1.1
Host: www.americanexpressseguros.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.americanexpressseguros.com/es-mx/seguros/
Cookie: _gcl_au=1.1.782004452.1674627490; private_content_version=7b4cbf57746914521bdfb3464e26b5d1; _ga_X20CXLNMV9=GS1.1.1674627489.1.0.1674627489.60.0.0; _ga=GA1.1.2138569223.1674627490
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=31536000
content-type: application/javascript
etag: W/"638940a1-943"
expires: Wed, 06 Dec 2023 09:18:15 GMT
last-modified: Fri, 02 Dec 2022 00:02:41 GMT
x-debug-info: eyJyZXRyaWVzIjowfQ==
x-platform-server: i-0129d32895ff95045, i-0129d32895ff95045
traceresponse: 00-172e29a3e7be807dc643f148e28bedd7-186765d2dd3ebce7-00
content-encoding: gzip
accept-ranges: bytes
date: Wed, 25 Jan 2023 06:18:12 GMT
age: 4309196
x-served-by: cache-bfi-krnt7300024-BFI, cache-bma1626-BMA
x-cache: HIT, HIT
x-cache-hits: 69, 1
strict-transport-security: max-age=31536000
vary: Accept-Encoding
content-length: 1113
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 32a7a3e2eae6c7d49d7e76d8e9afc274
ddad24945e66b1cbc38c4860b870636f47d5821d
960060d5a77a70e1c0aaa73aad9717a6faf05e8531cc94a902734212ea138d0e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 25 Jan 2023 06:18:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
storage.googleapis.com/workbox-cdn/releases/6.2.4/workbox-sw.js
142.250.74.144200 OK 748 B URL HTTP/2 storage.googleapis.com/workbox-cdn/releases/6.2.4/workbox-sw.js
IP 142.250.74.144:0
File type ASCII text, with very long lines (1319)
Hash 1440b85f54804ebbebb189b8594c47ae
40a6e5e11351c9ef1bf14e36936246ad6acb2a5f
ed80fe15448b434116ff7bc0d6d47487ad2645c6b4bf97b4809996c41a96dff5
GET /workbox-cdn/releases/6.2.4/workbox-sw.js HTTP/1.1
Host: storage.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.americanexpressseguros.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
x-guploader-uploadid: ADPycduJdlUosbarUwNM_CP4k_nj6BSzNMVpVIMw-uhJp_rjvojV0QQKpt2VKVJHldJbE1whCKzI5Ywq8tkO31v9JSBbxg
x-goog-generation: 1628706843965647
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 748
content-encoding: gzip
x-goog-hash: crc32c=rAtwmA==, md5=FEC4X1SATrvrsYm4WUxHrg==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
vary: Accept-Encoding
content-length: 748
access-control-allow-origin: *
server: UploadServer
access-control-expose-headers: Content-Length, Content-Type, Date, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
date: Wed, 25 Jan 2023 06:00:55 GMT
expires: Thu, 25 Jan 2024 06:00:55 GMT
cache-control: public, max-age=31536000
age: 1037
last-modified: Wed, 11 Aug 2021 18:34:04 GMT
etag: "1440b85f54804ebbebb189b8594c47ae"
content-type: application/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 32a7a3e2eae6c7d49d7e76d8e9afc274
ddad24945e66b1cbc38c4860b870636f47d5821d
960060d5a77a70e1c0aaa73aad9717a6faf05e8531cc94a902734212ea138d0e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 25 Jan 2023 06:18:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.americanexpress.com/es-mx/seguros/media/wysiwyg/Bupa_1_1.png?auto=webp&format=png&quality=85
104.110.26.196200 OK 3.3 kB URL HTTP/2 www.americanexpress.com/es-mx/seguros/media/wysiwyg/Bupa_1_1.png?auto=webp&format=png&quality=85
IP 104.110.26.196:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash badf8c830a4fd091aae3dbc88e3aba5f
d2a5672f5246f4c62d5317587d7e2334e6bd1319
0ef2e1b18d8460f52c82d7d69d0ff6250ba015bfcf6bf671c931e3d77ccb9e64
GET /es-mx/seguros/media/wysiwyg/Bupa_1_1.png?auto=webp&format=png&quality=85 HTTP/1.1
Host: www.americanexpress.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.americanexpressseguros.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 3296
cache-control: max-age=31536000
content-type: image/webp
etag: "2d9UZkwaGYMmPJThMuOucKhk7NtJ/xiRvQgn1ZwwFlY"
expires: Tue, 16 Jan 2024 17:33:12 GMT
fastly-io-info: ifsz=6121 idim=150x80 ifmt=png ofsz=3296 odim=150x80 ofmt=webp
fastly-stats: io=1
traceresponse: 00-173ada716a94da519b47a5d7cfad1df8-0d2c6d428db03b1a-00
x-debug-info: eyJyZXRyaWVzIjowfQ==
x-platform-server: i-022f454a7b3fd63c5, i-022f454a7b3fd63c5
accept-ranges: bytes
x-served-by: cache-bfi-krnt7300090-BFI, cache-iad-kjyo7100124-IAD
x-cache-hits: 0, 1
strict-transport-security: max-age=31536000
vary: Accept
date: Wed, 25 Jan 2023 06:18:12 GMT
set-cookie: agent-id=2b827422-a4be-4877-ae6c-ede32a37a051; expires=Thu, 25-Jan-2024 06:18:12 GMT; path=/; domain=.americanexpress.com; secure; HttpOnly
x-frame-options: SAMEORIGIN
X-Firefox-Spdy: h2
www.americanexpress.com/es-mx/seguros/media/wysiwyg/icon_container.png?auto=webp&format=png&quality=85
104.110.26.196200 OK 674 B URL HTTP/2 www.americanexpress.com/es-mx/seguros/media/wysiwyg/icon_container.png?auto=webp&format=png&quality=85
IP 104.110.26.196:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash 3a4ba7e94351827b77d80fd6b8b7757b
67cda8133632a37171a0418c3f7aa53fcf6956a6
15cd14588223909e16eb899b82e27bad9425d645e7e7dfcd75735efde1442fe3
GET /es-mx/seguros/media/wysiwyg/icon_container.png?auto=webp&format=png&quality=85 HTTP/1.1
Host: www.americanexpress.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.americanexpressseguros.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 674
cache-control: max-age=31536000
content-type: image/webp
etag: "+Ga1OvsKLcDYql8GkDSZJh/ECu7qUhDfMg4ySRH4OK0"
expires: Wed, 15 Nov 2023 09:30:08 GMT
fastly-io-info: ifsz=1644 idim=72x72 ifmt=png ofsz=674 odim=72x72 ofmt=webp
fastly-stats: io=1
x-debug-info: eyJyZXRyaWVzIjowfQ==
x-platform-server: i-0129d32895ff95045, i-0129d32895ff95045
x-request-id: 00-1727b819dbe392ed5f00a70bccd45b5c-87fb273495f090fc-00
accept-ranges: bytes
x-served-by: cache-bfi-kbfi7400043-BFI, cache-iad-kiad7000049-IAD
x-cache-hits: 2, 1
strict-transport-security: max-age=31536000
vary: Accept
date: Wed, 25 Jan 2023 06:18:12 GMT
set-cookie: agent-id=53c49ae7-eff2-4611-ac5d-c0cdcd38bd46; expires=Thu, 25-Jan-2024 06:18:12 GMT; path=/; domain=.americanexpress.com; secure; HttpOnly
x-frame-options: SAMEORIGIN
X-Firefox-Spdy: h2
www.americanexpress.com/es-mx/seguros/media/wysiwyg/animation_life_1.gif?auto=webp&format=pjpg&quality=85
104.110.26.196200 OK 319 kB URL HTTP/2 www.americanexpress.com/es-mx/seguros/media/wysiwyg/animation_life_1.gif?auto=webp&format=pjpg&quality=85
IP 104.110.26.196:0
File type GIF image data, version 89a, 210 x 245\012- data
Size 319 kB (318980 bytes)
Hash 8724973379de42934fed1e353b03f40d
6c120dcc210abae6d353fe2d4cb36f7be431faa7
0fb867c8472a7eb2c642d43a44c4eb4a75b6c024c17b9a87cfa066aa815d7eb0
GET /es-mx/seguros/media/wysiwyg/animation_life_1.gif?auto=webp&format=pjpg&quality=85 HTTP/1.1
Host: www.americanexpress.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.americanexpressseguros.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 318980
cache-control: max-age=31536000
content-type: image/gif
etag: "vgvSJ6bL1H34RadEp5pWwK42G8LPC2I3kPgg2ixtmz4"
expires: Thu, 11 Jan 2024 11:23:22 GMT
fastly-io-info: ifsz=318961 idim=210x245 ifmt=gif ofsz=318980 odim=210x245 ofmt=gif ofrm=51
fastly-stats: io=1
traceresponse: 00-17393d5c1631d09a4955d4360878ff7e-f85450b49f2e619d-00
x-debug-info: eyJyZXRyaWVzIjowfQ==
x-platform-server: i-0eceb7d9e8ebf109e, i-0eceb7d9e8ebf109e
accept-ranges: bytes
x-served-by: cache-bfi-krnt7300051-BFI, cache-iad-kiad7000049-IAD
x-cache-hits: 2, 1
strict-transport-security: max-age=31536000
vary: Accept
date: Wed, 25 Jan 2023 06:18:12 GMT
set-cookie: agent-id=bb481925-f50f-4402-9ae0-cd3e7679a66f; expires=Thu, 25-Jan-2024 06:18:12 GMT; path=/; domain=.americanexpress.com; secure; HttpOnly
x-frame-options: SAMEORIGIN
X-Firefox-Spdy: h2
www.americanexpress.com/es-mx/seguros/media/wysiwyg/gift.gif?auto=webp&format=pjpg&quality=85
104.110.26.196200 OK 250 kB URL HTTP/2 www.americanexpress.com/es-mx/seguros/media/wysiwyg/gift.gif?auto=webp&format=pjpg&quality=85
IP 104.110.26.196:0
File type GIF image data, version 89a, 394 x 300\012- data
Size 250 kB (250109 bytes)
Hash 8dabcfd9f28f520fc8835872c3b24fc2
0cb46e320a465d82d57ab4b7e62ef8fd5b3e6578
0f05535509e48ef513f6b330de975b80e4f4e99ee99781049b53f6ef6b0509f9
GET /es-mx/seguros/media/wysiwyg/gift.gif?auto=webp&format=pjpg&quality=85 HTTP/1.1
Host: www.americanexpress.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.americanexpressseguros.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 250109
cache-control: max-age=31536000
content-type: image/gif
etag: "0sWef6zSbANKqIzAVQ9huktUOTJcjO/CJNL0ZnWaDyM"
expires: Sun, 07 Jan 2024 06:47:39 GMT
fastly-io-info: ifsz=253210 idim=394x300 ifmt=gif ofsz=250109 odim=394x300 ofmt=gif ofrm=39
fastly-stats: io=1
traceresponse: 00-1737f3fe19d55fa90bd871a765ad08d4-6d9626c5ed4df5bb-00
x-debug-info: eyJyZXRyaWVzIjowfQ==
x-platform-server: i-0129d32895ff95045, i-0129d32895ff95045
accept-ranges: bytes
x-served-by: cache-bfi-krnt7300029-BFI, cache-iad-kjyo7100176-IAD
x-cache-hits: 4, 1
strict-transport-security: max-age=31536000
vary: Accept
date: Wed, 25 Jan 2023 06:18:12 GMT
set-cookie: agent-id=32f7c609-fd0a-4e7c-8533-e3054c9c5c1e; expires=Thu, 25-Jan-2024 06:18:12 GMT; path=/; domain=.americanexpress.com; secure; HttpOnly
x-frame-options: SAMEORIGIN
X-Firefox-Spdy: h2
www.americanexpressseguros.com/es-mx/seguros/graphql?query=query+GetCmsPage%28%24identifier%3AString%21%29%7BcmsPage%28identifier%3A%24identifier%29%7Burl_key+content+content_heading+title+page_layout+meta_title+meta_keywords+meta_description+__typename%7DstoreConfig%7Bid+root_category_id+__typename%7D%7D&operationName=GetCmsPage&variables=%7B%22identifier%22%3A%22home%22%7D
151.101.1.124200 OK 457 kB URL HTTP/2 www.americanexpressseguros.com/es-mx/seguros/graphql?query=query+GetCmsPage%28%24identifier%3AString%21%29%7BcmsPage%28identifier%3A%24identifier%29%7Burl_key+content+content_heading+title+page_layout+meta_title+meta_keywords+meta_description+__typename%7DstoreConfig%7Bid+root_category_id+__typename%7D%7D&operationName=GetCmsPage&variables=%7B%22identifier%22%3A%22home%22%7D
IP 151.101.1.124:0
File type JSON data\012- HTML document, ASCII text, with very long lines (65536), with no line terminators
Size 457 kB (456823 bytes)
Hash de854542abd88040f0aa19550fb9a742
945ee3b254fa253d24a5ddf4a2198d997d27a4fa
fbdb4df5ca3f05859c05f0a3f2fe654ddb813215a0ccb33643bf284391f9db82
Analyzer Verdict Alert openphish American Express
quad9 Sinkholed
GET /es-mx/seguros/graphql?query=query+GetCmsPage%28%24identifier%3AString%21%29%7BcmsPage%28identifier%3A%24identifier%29%7Burl_key+content+content_heading+title+page_layout+meta_title+meta_keywords+meta_description+__typename%7DstoreConfig%7Bid+root_category_id+__typename%7D%7D&operationName=GetCmsPage&variables=%7B%22identifier%22%3A%22home%22%7D HTTP/1.1
Host: www.americanexpressseguros.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.americanexpressseguros.com/es-mx/seguros/
content-type: application/json
authorization:
x-magento-cache-id: null
store: default
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=0, must-revalidate, no-cache, no-store
content-type: application/json
expires: Tue, 25 Jan 2022 06:18:11 GMT
pragma: no-cache
set-cookie: PHPSESSID=e460411d91e77b18736b59aa2d519ac9; expires=Wed, 25-Jan-2023 07:18:11 GMT; Max-Age=3600; path=/es-mx/seguros; domain=americanexpress.com; HttpOnly; SameSite=Lax
x-content-type-options: nosniff
x-debug-info: eyJyZXRyaWVzIjowfQ==
x-frame-options: SAMEORIGIN
x-platform-server: i-0129d32895ff95045, i-0129d32895ff95045
x-xss-protection: 1; mode=block
traceresponse: 00-173d78d4bf332683757c7fbb63d25e30-52e3d2cd917ed1c5-00
accept-ranges: bytes
date: Wed, 25 Jan 2023 06:18:11 GMT
x-served-by: cache-bfi-krnt7300034-BFI, cache-bma1626-BMA
x-cache: MISS, MISS
x-cache-hits: 0, 0
strict-transport-security: max-age=31536000
vary: Accept-Encoding,Store,Content-Currency,Authorization
X-Firefox-Spdy: h2
www.americanexpressseguros.com/es-mx/seguros/static/pwa/1.fc0278761a2e703be039.js
151.101.1.124200 OK 16 kB URL HTTP/2 www.americanexpressseguros.com/es-mx/seguros/static/pwa/1.fc0278761a2e703be039.js
IP 151.101.1.124:0
File type ASCII text, with very long lines (1530)
Hash af0227fc2f4fa7688974492887f4eae1
58521d051b7f272e6e0eb8c1268d24b987425445
2b741baab4212d0089a539bc3a6806dcc7d1a8eab35ba62b75db5e618cdb8727
Analyzer Verdict Alert openphish American Express
fortinet Phishing
quad9 Sinkholed
GET /es-mx/seguros/static/pwa/1.fc0278761a2e703be039.js HTTP/1.1
Host: www.americanexpressseguros.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.americanexpressseguros.com/es-mx/seguros/static/pwa/sw.js
Connection: keep-alive
Cookie: _gcl_au=1.1.782004452.1674627490; private_content_version=7b4cbf57746914521bdfb3464e26b5d1; _ga_X20CXLNMV9=GS1.1.1674627489.1.0.1674627489.60.0.0; _ga=GA1.1.2138569223.1674627490
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=31536000
content-type: application/javascript
etag: W/"63c0a993-109d1"
expires: Wed, 17 Jan 2024 18:04:55 GMT
last-modified: Fri, 13 Jan 2023 00:45:07 GMT
x-debug-info: eyJyZXRyaWVzIjowfQ==
x-platform-server: i-022f454a7b3fd63c5, i-022f454a7b3fd63c5
traceresponse: 00-173b2ac11edbde793fb437fa8990a39f-fe1c30c1c66be774-00
content-encoding: gzip
accept-ranges: bytes
date: Wed, 25 Jan 2023 06:18:12 GMT
age: 648797
x-served-by: cache-bfi-krnt7300094-BFI, cache-bma1626-BMA
x-cache: HIT, HIT
x-cache-hits: 13, 1
strict-transport-security: max-age=31536000
vary: Accept-Encoding
content-length: 15507
X-Firefox-Spdy: h2
region1.analytics.google.com/g/collect?v=2&tid=G-X20CXLNMV9>m=2oe1n0&_p=580223908&_gaz=1&cid=2138569223.1674627490&ul=en-us&sr=1280x1024&uaW=1&_s=1&sid=1674627489&sct=1&seg=0&dl=https%3A%2F%2Fwww.americanexpressseguros.com%2Fes-mx%2Fseguros%2F&dt=American%20Express%20%7C%20Seguros&en=page_view&_fv=1&_nsi=1&_ss=1&ep.gclid=
216.239.32.36204 No Content 0 B URL HTTP/2 region1.analytics.google.com/g/collect?v=2&tid=G-X20CXLNMV9>m=2oe1n0&_p=580223908&_gaz=1&cid=2138569223.1674627490&ul=en-us&sr=1280x1024&uaW=1&_s=1&sid=1674627489&sct=1&seg=0&dl=https%3A%2F%2Fwww.americanexpressseguros.com%2Fes-mx%2Fseguros%2F&dt=American%20Express%20%7C%20Seguros&en=page_view&_fv=1&_nsi=1&_ss=1&ep.gclid=
IP 216.239.32.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-X20CXLNMV9>m=2oe1n0&_p=580223908&_gaz=1&cid=2138569223.1674627490&ul=en-us&sr=1280x1024&uaW=1&_s=1&sid=1674627489&sct=1&seg=0&dl=https%3A%2F%2Fwww.americanexpressseguros.com%2Fes-mx%2Fseguros%2F&dt=American%20Express%20%7C%20Seguros&en=page_view&_fv=1&_nsi=1&_ss=1&ep.gclid= HTTP/1.1
Host: region1.analytics.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.americanexpressseguros.com
Connection: keep-alive
Referer: https://www.americanexpressseguros.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://www.americanexpressseguros.com
date: Wed, 25 Jan 2023 06:18:12 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 34c6c87358e04f2487a4fcb466d2ad17
2e99bb20b81b80930471f736676e4dd3a093a9cd
db58d2601ad2308da96f8998b9b5e39c3c48b910c0f141230a757b9985b536fb
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 25 Jan 2023 06:18:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.americanexpress.com/es-mx/seguros/media/wysiwyg/animation_objects_1.gif?auto=webp&format=pjpg&quality=85
104.110.26.196200 OK 471 kB URL HTTP/2 www.americanexpress.com/es-mx/seguros/media/wysiwyg/animation_objects_1.gif?auto=webp&format=pjpg&quality=85
IP 104.110.26.196:0
File type GIF image data, version 89a, 427 x 238\012- data
Size 471 kB (470557 bytes)
Hash 02f31cb05b85dd71767b60769ab37207
be061709b95173f544c2df491565351ead8f769c
d3ec840cf5829d469a944b579249dac925144a3dc0dcf931f6a2ad4d557105fe
GET /es-mx/seguros/media/wysiwyg/animation_objects_1.gif?auto=webp&format=pjpg&quality=85 HTTP/1.1
Host: www.americanexpress.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.americanexpressseguros.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 470557
cache-control: max-age=31536000
content-type: image/webp
etag: "/Vy0ZuNG+oIZ7EtBvTCL+HKdt24rwWLtBRahe0Vl43Q"
expires: Wed, 08 Nov 2023 06:35:35 GMT
fastly-io-info: ifsz=470569 idim=427x238 ifmt=gif ofsz=470557 odim=427x238 ofmt=webp ofrm=51
fastly-stats: io=1
x-debug-info: eyJyZXRyaWVzIjowfQ==
x-platform-server: i-0eceb7d9e8ebf109e, i-0eceb7d9e8ebf109e
x-request-id: 00-1725888379c77361213f24048d7b34b0-78efd73d62270afe-00
accept-ranges: bytes
x-served-by: cache-bfi-krnt7300053-BFI, cache-iad-kjyo7100124-IAD
x-cache-hits: 6, 1
strict-transport-security: max-age=31536000
vary: Accept
date: Wed, 25 Jan 2023 06:18:12 GMT
set-cookie: agent-id=884f8d8d-d900-403d-a470-a017dd1e8084; expires=Thu, 25-Jan-2024 06:18:12 GMT; path=/; domain=.americanexpress.com; secure; HttpOnly
x-frame-options: SAMEORIGIN
X-Firefox-Spdy: h2
stats.g.doubleclick.net/g/collect?v=2&tid=G-X20CXLNMV9&cid=2138569223.1674627490>m=2oe1n0&aip=1
173.194.221.154204 No Content 0 B URL HTTP/2 stats.g.doubleclick.net/g/collect?v=2&tid=G-X20CXLNMV9&cid=2138569223.1674627490>m=2oe1n0&aip=1
IP 173.194.221.154:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-X20CXLNMV9&cid=2138569223.1674627490>m=2oe1n0&aip=1 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.americanexpressseguros.com
Connection: keep-alive
Referer: https://www.americanexpressseguros.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://www.americanexpressseguros.com
date: Wed, 25 Jan 2023 06:18:12 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.aexp-static.com/cdaas/one/statics/axp-static-assets/1.8.0/package/dist/img/logos/dls-logo-bluebox-solid.svg
104.110.6.135200 OK 989 B URL HTTP/2 www.aexp-static.com/cdaas/one/statics/axp-static-assets/1.8.0/package/dist/img/logos/dls-logo-bluebox-solid.svg
IP 104.110.6.135:0
File type SVG Scalable Vector Graphics image\012- HTML document, ASCII text, with very long lines (2402), with no line terminators
Hash dd40a71eae66cb27b231e93a0a7afb58
8d1844f108cb59525811f93ce74dcba95112e775
861b8f73f4ce9ea2f77bce5c0ae68d28fa6f91c38fdd6dd1145819ecd9bad137
GET /cdaas/one/statics/axp-static-assets/1.8.0/package/dist/img/logos/dls-logo-bluebox-solid.svg HTTP/1.1
Host: www.aexp-static.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.americanexpressseguros.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/svg+xml
last-modified: Thu, 31 Oct 2019 17:37:19 GMT
etag: W/"5dbb1bcf-962"
expires: Sat, 15 Aug 2020 19:23:45 GMT
cache-control: max-age=15552000
timing-allow-origin: *
content-encoding: gzip
content-length: 989
date: Wed, 25 Jan 2023 06:18:12 GMT
vary: Origin, Accept-Encoding
access-control-allow-origin: https://www.americanexpressseguros.com
X-Firefox-Spdy: h2
www.aexp-static.com/cdaas/one/statics/axp-static-assets/1.8.0/package/dist/img/logos/dls-logo-stack.svg
104.110.6.135200 OK 743 B URL HTTP/2 www.aexp-static.com/cdaas/one/statics/axp-static-assets/1.8.0/package/dist/img/logos/dls-logo-stack.svg
IP 104.110.6.135:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1646), with no line terminators
Hash 6c7daba2e5eb8e75d0f7fd55cbe08ec2
3f31779e527a9957d1eb65e6bb56e1e6f2b21736
c20cfa345f99c47198bdbe4021e2365d7137a11c90c74696befae2f93469a803
GET /cdaas/one/statics/axp-static-assets/1.8.0/package/dist/img/logos/dls-logo-stack.svg HTTP/1.1
Host: www.aexp-static.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.americanexpressseguros.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/svg+xml
last-modified: Thu, 31 Oct 2019 17:37:19 GMT
etag: W/"5dbb1bcf-66e"
expires: Sat, 15 Aug 2020 17:53:30 GMT
cache-control: max-age=15552000
timing-allow-origin: *
content-encoding: gzip
content-length: 743
date: Wed, 25 Jan 2023 06:18:12 GMT
vary: Origin, Accept-Encoding
access-control-allow-origin: https://www.americanexpressseguros.com
X-Firefox-Spdy: h2
www.aexp-static.com/cdaas/one/statics/axp-static-assets/1.8.0/package/dist/img/logos/dls-logo-stack-white.svg
104.110.6.135200 OK 742 B URL HTTP/2 www.aexp-static.com/cdaas/one/statics/axp-static-assets/1.8.0/package/dist/img/logos/dls-logo-stack-white.svg
IP 104.110.6.135:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1643), with no line terminators
Hash 4d0db1762bcbee21f05a6c4ec4f49ace
1872c7b2f36839267f59f731446d3d16720b33e6
10cbb2a5ed5270800df92fead48340cf0508a7cd0d3f4210e7ca17b0bd0a8b06
GET /cdaas/one/statics/axp-static-assets/1.8.0/package/dist/img/logos/dls-logo-stack-white.svg HTTP/1.1
Host: www.aexp-static.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.americanexpressseguros.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/svg+xml
last-modified: Thu, 31 Oct 2019 17:37:19 GMT
etag: W/"5dbb1bcf-66b"
expires: Sat, 15 Aug 2020 17:53:30 GMT
cache-control: max-age=15552000
timing-allow-origin: *
content-encoding: gzip
content-length: 742
date: Wed, 25 Jan 2023 06:18:12 GMT
vary: Origin, Accept-Encoding
access-control-allow-origin: https://www.americanexpressseguros.com
X-Firefox-Spdy: h2
www.aexp-static.com/cdaas/one/statics/axp-static-assets/2.14.2/package/dist/img/flags/dls-flag-mx.svg
104.110.6.135200 OK 7.9 kB URL HTTP/2 www.aexp-static.com/cdaas/one/statics/axp-static-assets/2.14.2/package/dist/img/flags/dls-flag-mx.svg
IP 104.110.6.135:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (18924), with no line terminators
Hash 31ba54c9cbf82aa1a754eb3104e322fe
1bc5fef89d5644a16eac34f57f53f11567e22cfb
9a2ebfa2f6f6161222a064e91aa7ff4118f4802cc4478c7b1b221ee75c9bcb61
GET /cdaas/one/statics/axp-static-assets/2.14.2/package/dist/img/flags/dls-flag-mx.svg HTTP/1.1
Host: www.aexp-static.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.americanexpressseguros.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/svg+xml
last-modified: Fri, 04 Sep 2020 17:15:25 GMT
etag: W/"5f52762d-49ec"
expires: Sat, 17 Apr 2021 23:30:55 GMT
cache-control: max-age=15552000
timing-allow-origin: *
content-encoding: gzip
content-length: 7851
date: Wed, 25 Jan 2023 06:18:12 GMT
vary: Origin, Accept-Encoding
access-control-allow-origin: https://www.americanexpressseguros.com
X-Firefox-Spdy: h2
www.americanexpressseguros.com/es-mx/seguros/static/pwa/10.2af7b08999c43376e22a.js
151.101.1.124200 OK 7.3 kB URL HTTP/2 www.americanexpressseguros.com/es-mx/seguros/static/pwa/10.2af7b08999c43376e22a.js
IP 151.101.1.124:0
File type ASCII text, with very long lines (1667)
Hash 08fb1980745d71b53f11447427e377fe
0934ffa90ceb7095cf039b76a3bb61d60a7b1cca
211eb3e399bd1fea7b99eadc72553be5794d0c9c04e1491c496ad842d01232b3
Analyzer Verdict Alert openphish American Express
fortinet Phishing
quad9 Sinkholed
GET /es-mx/seguros/static/pwa/10.2af7b08999c43376e22a.js HTTP/1.1
Host: www.americanexpressseguros.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.americanexpressseguros.com/es-mx/seguros/static/pwa/sw.js
Connection: keep-alive
Cookie: _gcl_au=1.1.782004452.1674627490; private_content_version=7b4cbf57746914521bdfb3464e26b5d1; _ga_X20CXLNMV9=GS1.1.1674627489.1.0.1674627489.60.0.0; _ga=GA1.1.2138569223.1674627490; et_uk=d9131712ba9d477fa2674398e7bfbef8; et_gk=35deae3be7f34b13a4b63768547e8171%7C26.03.2023%2006%3A18%3A11
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=31536000
content-type: application/javascript
etag: W/"63c9d4bd-61cc"
expires: Tue, 23 Jan 2024 14:09:16 GMT
last-modified: Thu, 19 Jan 2023 23:39:41 GMT
x-debug-info: eyJyZXRyaWVzIjowfQ==
x-platform-server: i-022f454a7b3fd63c5, i-022f454a7b3fd63c5
traceresponse: 00-173cf56095f8a9a8c7079ff1d92dcb3b-a8ffa4bb3f67a226-00
content-encoding: gzip
accept-ranges: bytes
date: Wed, 25 Jan 2023 06:18:12 GMT
age: 144536
x-served-by: cache-bfi-krnt7300114-BFI, cache-bma1626-BMA
x-cache: HIT, HIT
x-cache-hits: 11, 1
strict-transport-security: max-age=31536000
vary: Accept-Encoding
content-length: 7345
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 34c6c87358e04f2487a4fcb466d2ad17
2e99bb20b81b80930471f736676e4dd3a093a9cd
db58d2601ad2308da96f8998b9b5e39c3c48b910c0f141230a757b9985b536fb
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 25 Jan 2023 06:18:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.americanexpress.com/es-mx/seguros/media/wysiwyg/animation_accident_1.gif?auto=webp&format=pjpg&quality=85
104.110.26.196200 OK 456 kB URL HTTP/2 www.americanexpress.com/es-mx/seguros/media/wysiwyg/animation_accident_1.gif?auto=webp&format=pjpg&quality=85
IP 104.110.26.196:0
File type GIF image data, version 89a, 306 x 313\012- data
Size 456 kB (455584 bytes)
Hash 4de842dcb0d214f1fccb3b21bd74a911
0d2de8984db1cd73f40ecff9d1ca2ce8e7f21d3b
8e90cc6657559ff3b9ddd51ed47bdbcbf996aa6e20648d1ff0f8bd470b8f64a9
GET /es-mx/seguros/media/wysiwyg/animation_accident_1.gif?auto=webp&format=pjpg&quality=85 HTTP/1.1
Host: www.americanexpress.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.americanexpressseguros.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 455584
cache-control: max-age=31536000
content-type: image/gif
etag: "IOMnbjQ3tn5BFe3BwZDATpbTZVhMaodG7183vKtAZUE"
expires: Sun, 17 Dec 2023 12:55:39 GMT
fastly-io-info: ifsz=455558 idim=306x313 ifmt=gif ofsz=455584 odim=306x313 ofmt=gif ofrm=51
fastly-stats: io=1
traceresponse: 00-173195e31a8a8bfee5f416f98f064f78-06303756c5ae8db7-00
x-debug-info: eyJyZXRyaWVzIjowfQ==
x-platform-server: i-022f454a7b3fd63c5, i-022f454a7b3fd63c5
accept-ranges: bytes
x-served-by: cache-bfi-krnt7300052-BFI, cache-iad-kjyo7100176-IAD
x-cache-hits: 10, 1
strict-transport-security: max-age=31536000
vary: Accept
date: Wed, 25 Jan 2023 06:18:12 GMT
set-cookie: agent-id=66a1e8e6-8e63-4d9c-96d2-d2119fda7ae5; expires=Thu, 25-Jan-2024 06:18:12 GMT; path=/; domain=.americanexpress.com; secure; HttpOnly
x-frame-options: SAMEORIGIN
X-Firefox-Spdy: h2
www.aexp-static.com/cdaas/one/statics/@americanexpress/static-assets/2.27.0/package/dist/iconfont/dls-icons.woff?v=2.27.0
104.110.6.135200 OK 57 kB URL HTTP/2 www.aexp-static.com/cdaas/one/statics/@americanexpress/static-assets/2.27.0/package/dist/iconfont/dls-icons.woff?v=2.27.0
IP 104.110.6.135:0
File type Web Open Font Format, TrueType, length 56824, version 1.0\012- data
Hash 0c8ca2c3b2337e728ee9e14246a5d58f
69f859084816f38c2e5531a2b46c4059b71d9f9b
3530f9432334e47cf7e84f8e0ce64f80d45d7329f44f691a3eb30977a4bbf052
GET /cdaas/one/statics/@americanexpress/static-assets/2.27.0/package/dist/iconfont/dls-icons.woff?v=2.27.0 HTTP/1.1
Host: www.aexp-static.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.americanexpressseguros.com
Connection: keep-alive
Referer: https://www.americanexpressseguros.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: font/woff
content-length: 56824
last-modified: Mon, 01 Aug 2022 18:53:07 GMT
etag: "62e82113-ddf8"
timing-allow-origin: *
cache-control: max-age=31536000, must-revalidate
access-control-allow-methods: GET
accept-ranges: bytes
date: Wed, 25 Jan 2023 06:18:12 GMT
vary: Origin, Accept-Encoding
access-control-allow-origin: https://www.americanexpressseguros.com
X-Firefox-Spdy: h2
script.hotjar.com/modules.ea0a6d6a741d5de8308e.js
54.230.111.73200 OK 69 kB URL HTTP/2 script.hotjar.com/modules.ea0a6d6a741d5de8308e.js
IP 54.230.111.73:0
File type Unicode text, UTF-8 text, with very long lines (48015)
Hash e45ceb77c1a47254136f1ef733de65df
7cc640ca25ac5232038a02fbaf6d2677871ebaf0
25e950716f031b1000c0fc674457836b68ad60912f265f7efc190f6a93a71a2d
GET /modules.ea0a6d6a741d5de8308e.js HTTP/1.1
Host: script.hotjar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.americanexpressseguros.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
content-length: 68675
date: Fri, 20 Jan 2023 11:10:05 GMT
accept-ranges: bytes
access-control-allow-origin: *
cache-control: max-age=31536000
content-encoding: br
cross-origin-resource-policy: cross-origin
etag: "e45ceb77c1a47254136f1ef733de65df"
last-modified: Fri, 20 Jan 2023 11:09:55 GMT
strict-transport-security: max-age=2592000; includeSubDomains
x-content-type-options: nosniff
x-robots-tag: none
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 04c4f064943f75498361739eb063cb7a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: Ic8yDMeaMT8V_l0aDARCwnbfzjZcXJcbvnMe7aZC5kNgGK-aFFVn5w==
age: 414487
X-Firefox-Spdy: h2
www.google-analytics.com/analytics.js
142.250.74.110200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 142.250.74.110:0
File type ASCII text, with very long lines (1490)
Hash ca7fbbfd120e3e329633044190bbf134
d17f81e03dd827554ddd207ea081fb46b3415445
847004cefb32f85a9cc16b0b1eb77529ff5753680c145bfcb23f651d214737db
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.americanexpressseguros.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20085
date: Wed, 25 Jan 2023 05:41:08 GMT
expires: Wed, 25 Jan 2023 07:41:08 GMT
cache-control: public, max-age=7200
age: 2224
last-modified: Tue, 10 Jan 2023 21:29:14 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash f808fda31f83240363aaca5b085407d5
4be926a79750101591ad633efa92486b47639e6c
e0336ef9a04ed72e9918dc40d00bb13fbb3b3f6f9122932f300d838ee733e499
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4744
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 25 Jan 2023 06:18:12 GMT
Last-Modified: Wed, 25 Jan 2023 04:59:08 GMT
Server: ECS (ska/F713)
X-Cache: HIT
Content-Length: 471
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash cc2b9a26cf016c0cf9e73531f6004051
408990c14ea8af4c979a277da755c89771672356
36e955bd017c3febc7623ad388bb260757294ca612b94ae5417de6cc04073a82
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 25 Jan 2023 06:18:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
connect.facebook.net/en_US/fbevents.js
31.13.72.12200 OK 28 kB URL HTTP/2 connect.facebook.net/en_US/fbevents.js
IP 31.13.72.12:0
File type ASCII text, with very long lines (64348)
Hash 9ba458c0d3060a442f3094daf58ec05d
fc35d487d0dd81e6855f1b02367b755609d9608d
17087257ea25c2232c025f338b9f3153d35c3d953cb382b7b6e01728a643bc0b
GET /en_US/fbevents.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.americanexpressseguros.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
content-type: application/x-javascript; charset=utf-8
content-security-policy: default-src facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com data: blob: 'self';script-src *.fbcdn.net *.facebook.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src data: blob: 'unsafe-inline' facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com;connect-src *.fbcdn.net *.facebook.net wss://*.fbcdn.net attachment.fbsbx.com blob: 'self';block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
pragma: public
cache-control: public, max-age=1200
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
x-fb-debug: l6GxzReElF6GsUodmsUkl4Ff+DFB1yswvx3HKElUmhrYNVKRHCBgDogzM6r9VMVpUI8AeWFoSoM8bJMYVac8Rg==
priority: u=3,i
content-length: 27859
x-fb-trip-id: 2074150462
date: Wed, 25 Jan 2023 06:18:12 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
googleads.g.doubleclick.net/pagead/viewthroughconversion/663812995/?random=1674627489811&cv=11&fst=1674627489811&fmt=3&bg=ffffff&guid=ON&async=1>m=2wg1n0&u_w=1280&u_h=1024&label=kFsCCPnmqsgBEIP3w7wC&hn=www.google.com&frm=0&url=https%3A%2F%2Fwww.americanexpressseguros.com%2Fes-mx%2Fseguros%2F&tiba=American%20Express%20%7C%20Seguros&value=0&bttype=purchase&auid=782004452.1674627490&gcp=1&ct_cookie_present=1
216.58.207.226200 OK 42 B URL HTTP/2 googleads.g.doubleclick.net/pagead/viewthroughconversion/663812995/?random=1674627489811&cv=11&fst=1674627489811&fmt=3&bg=ffffff&guid=ON&async=1>m=2wg1n0&u_w=1280&u_h=1024&label=kFsCCPnmqsgBEIP3w7wC&hn=www.google.com&frm=0&url=https%3A%2F%2Fwww.americanexpressseguros.com%2Fes-mx%2Fseguros%2F&tiba=American%20Express%20%7C%20Seguros&value=0&bttype=purchase&auid=782004452.1674627490&gcp=1&ct_cookie_present=1
IP 216.58.207.226:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/viewthroughconversion/663812995/?random=1674627489811&cv=11&fst=1674627489811&fmt=3&bg=ffffff&guid=ON&async=1>m=2wg1n0&u_w=1280&u_h=1024&label=kFsCCPnmqsgBEIP3w7wC&hn=www.google.com&frm=0&url=https%3A%2F%2Fwww.americanexpressseguros.com%2Fes-mx%2Fseguros%2F&tiba=American%20Express%20%7C%20Seguros&value=0&bttype=purchase&auid=782004452.1674627490&gcp=1&ct_cookie_present=1 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.americanexpressseguros.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Wed, 25 Jan 2023 06:18:12 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Wed, 25-Jan-2023 06:33:12 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash 3e7fdf1ab4be9ee80518d0400683f0d3
dd2ec6511ba05e7fb89d32a1ad407db5eaa1520b
eb789178a0b528aad87a5bf0d05aecd45e7623ebaf198820f9310887757e1d5f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 25 Jan 2023 06:18:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.americanexpressseguros.com/es-mx/seguros/static/pwa/11.923516c38294adcb5b5c.js
151.101.1.124200 OK 3.2 kB URL HTTP/2 www.americanexpressseguros.com/es-mx/seguros/static/pwa/11.923516c38294adcb5b5c.js
IP 151.101.1.124:0
File type ASCII text, with very long lines (3161)
Hash a1184583b7fe4c9bcc9629f2b2b2026d
4c7b27b232abb616153edbeeb93a9dfc433b18e6
8650227483d58411d0e1003f8a0138e9cfc6cbbc2942d072e4e44835f6c439a2
Analyzer Verdict Alert openphish American Express
fortinet Phishing
quad9 Sinkholed
GET /es-mx/seguros/static/pwa/11.923516c38294adcb5b5c.js HTTP/1.1
Host: www.americanexpressseguros.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.americanexpressseguros.com/es-mx/seguros/static/pwa/sw.js
Connection: keep-alive
Cookie: _gcl_au=1.1.782004452.1674627490; private_content_version=7b4cbf57746914521bdfb3464e26b5d1; _ga_X20CXLNMV9=GS1.1.1674627489.1.0.1674627489.60.0.0; _ga=GA1.1.2138569223.1674627490; et_uk=d9131712ba9d477fa2674398e7bfbef8; et_gk=35deae3be7f34b13a4b63768547e8171%7C26.03.2023%2006%3A18%3A11
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=31536000
content-type: application/javascript
etag: W/"63b331a0-2434"
expires: Sun, 07 Jan 2024 04:39:53 GMT
last-modified: Mon, 02 Jan 2023 19:33:52 GMT
x-debug-info: eyJyZXRyaWVzIjowfQ==
x-platform-server: i-022f454a7b3fd63c5, i-022f454a7b3fd63c5
traceresponse: 00-1737ed054b4dd639e9ae74bf1c72d921-9753281052e67919-00
content-encoding: gzip
accept-ranges: bytes
date: Wed, 25 Jan 2023 06:18:12 GMT
age: 1561099
x-served-by: cache-bfi-kbfi7400109-BFI, cache-bma1626-BMA
x-cache: HIT, MISS
x-cache-hits: 25, 0
strict-transport-security: max-age=31536000
vary: Accept-Encoding
content-length: 3158
X-Firefox-Spdy: h2
www.google-analytics.com/gtm/optimize.js?id=OPT-NJQH6HD
142.250.74.110200 OK 48 kB URL HTTP/2 www.google-analytics.com/gtm/optimize.js?id=OPT-NJQH6HD
IP 142.250.74.110:0
File type ASCII text, with very long lines (2532)
Hash 79119bffcdac5085afda6f1b6a3d95f6
d0104fbd07492b63019f8a0e60e1083191323398
ca4a6b292d98500592833a634502b1e43229d4b26de4a3edf8079a1e077b2846
GET /gtm/optimize.js?id=OPT-NJQH6HD HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.americanexpressseguros.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Wed, 25 Jan 2023 06:18:12 GMT
expires: Wed, 25 Jan 2023 06:18:12 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 47484
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google.com/pagead/1p-conversion/663812995/?random=1674627489811&cv=11&fst=1674627489811&bg=ffffff&guid=ON&async=1>m=2wg1n0&u_w=1280&u_h=1024&label=kFsCCPnmqsgBEIP3w7wC&hn=www.google.com&frm=0&url=https%3A%2F%2Fwww.americanexpressseguros.com%2Fes-mx%2Fseguros%2F&tiba=American%20Express%20%7C%20Seguros&value=0&bttype=purchase&auid=782004452.1674627490&gcp=1&sscte=1&ct_cookie_present=1&rfmt=3&fmt=4
216.58.207.228302 Found 63 B URL HTTP/2 www.google.com/pagead/1p-conversion/663812995/?random=1674627489811&cv=11&fst=1674627489811&bg=ffffff&guid=ON&async=1>m=2wg1n0&u_w=1280&u_h=1024&label=kFsCCPnmqsgBEIP3w7wC&hn=www.google.com&frm=0&url=https%3A%2F%2Fwww.americanexpressseguros.com%2Fes-mx%2Fseguros%2F&tiba=American%20Express%20%7C%20Seguros&value=0&bttype=purchase&auid=782004452.1674627490&gcp=1&sscte=1&ct_cookie_present=1&rfmt=3&fmt=4
IP 216.58.207.228:0
File type ASCII text, with no line terminators
Hash 0339f8f57d1bf75003db591e28957e45
ae2286e497c9f76a02cb40c40a674b73bd293b76
609cd8e12464fe137cfaa9f1ab6637150d44e105559c901b6df50303fd05aa26
GET /pagead/1p-conversion/663812995/?random=1674627489811&cv=11&fst=1674627489811&bg=ffffff&guid=ON&async=1>m=2wg1n0&u_w=1280&u_h=1024&label=kFsCCPnmqsgBEIP3w7wC&hn=www.google.com&frm=0&url=https%3A%2F%2Fwww.americanexpressseguros.com%2Fes-mx%2Fseguros%2F&tiba=American%20Express%20%7C%20Seguros&value=0&bttype=purchase&auid=782004452.1674627490&gcp=1&sscte=1&ct_cookie_present=1&rfmt=3&fmt=4 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.americanexpressseguros.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Wed, 25 Jan 2023 06:18:12 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
location: https://www.google.no/pagead/1p-conversion/663812995/?random=1674627489811&cv=11&fst=1674627489811&bg=ffffff&guid=ON&async=1>m=2wg1n0&u_w=1280&u_h=1024&label=kFsCCPnmqsgBEIP3w7wC&hn=www.google.com&frm=0&url=https%3A%2F%2Fwww.americanexpressseguros.com%2Fes-mx%2Fseguros%2F&tiba=American%20Express%20%7C%20Seguros&value=0&bttype=purchase&auid=782004452.1674627490&gcp=1&sscte=1&ct_cookie_present=1&rfmt=3&fmt=4&ipr=y&prhg=0
content-type: text/javascript; charset=UTF-8
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
server: cafe
content-length: 63
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash f808fda31f83240363aaca5b085407d5
4be926a79750101591ad633efa92486b47639e6c
e0336ef9a04ed72e9918dc40d00bb13fbb3b3f6f9122932f300d838ee733e499
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4744
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 25 Jan 2023 06:18:12 GMT
Last-Modified: Wed, 25 Jan 2023 04:59:08 GMT
Server: ECS (ska/F713)
X-Cache: HIT
Content-Length: 471
www.gstatic.com/wcm/loader.js
216.58.211.3200 OK 1.3 kB URL HTTP/2 www.gstatic.com/wcm/loader.js
IP 216.58.211.3:0
File type ASCII text, with very long lines (1123)
Hash 22300d54ba7faf32360c95915053014c
ea83f097bd99413f9d8fcb08d0312ba7ba1be99f
2c4c9c9d6af1ad12556ab11c8021eb5c254025ce04500bc885b69984dd562ce5
GET /wcm/loader.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.americanexpressseguros.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="static-on-bigtable"
report-to: {"group":"static-on-bigtable","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/static-on-bigtable"}]}
content-length: 1339
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 25 Jan 2023 05:18:30 GMT
expires: Wed, 25 Jan 2023 06:18:30 GMT
cache-control: public, max-age=3600
age: 3582
last-modified: Mon, 15 Mar 2021 16:45:00 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash fdded3d5e68d5358634880be3d3f2d04
6a02176ed7735b46393d51bd142e0deace6a5007
7077e5a7a6aeee95ad600ca2a943f7062f593e12fa61e74bbb860f6019bf67b7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 25 Jan 2023 06:18:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.gstatic.com/call-tracking/call-tracking_7.js
216.58.211.3200 OK 21 kB URL HTTP/2 www.gstatic.com/call-tracking/call-tracking_7.js
IP 216.58.211.3:0
File type ASCII text, with very long lines (2828)
Hash 23db67cc80ab227aeab0967306bd9c1c
7ebb71850d2ebf5d58b26c085a4aa1bbfa11c6ba
58d50b1c5787d1c2d790f6cb3b8bd41378ef47599b0d3050feb9c9ebadf5068d
GET /call-tracking/call-tracking_7.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.americanexpressseguros.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/ads-telephony
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="ads-telephony"
report-to: {"group":"ads-telephony","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-telephony"}]}
content-length: 21020
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 21 Jan 2023 13:50:57 GMT
expires: Sun, 21 Jan 2024 13:50:57 GMT
cache-control: public, max-age=31536000
age: 318435
last-modified: Wed, 03 Feb 2021 22:45:00 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-X20CXLNMV9&cid=2138569223.1674627490>m=2oe1n0&aip=1&z=380796973
142.250.74.163200 OK 42 B URL HTTP/2 www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-X20CXLNMV9&cid=2138569223.1674627490>m=2oe1n0&aip=1&z=380796973
IP 142.250.74.163:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-X20CXLNMV9&cid=2138569223.1674627490>m=2oe1n0&aip=1&z=380796973 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.americanexpressseguros.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Wed, 25 Jan 2023 06:18:12 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash 47d71bf163265666c21e2410fb568043
54a4b0f241af261f878967ce058f5885be476cc4
8b7ce4c8269941cf55ca12415b1abfd7d4ae7bf5823657f3afe5e8dd34bed80b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 25 Jan 2023 06:18:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash 3e7fdf1ab4be9ee80518d0400683f0d3
dd2ec6511ba05e7fb89d32a1ad407db5eaa1520b
eb789178a0b528aad87a5bf0d05aecd45e7623ebaf198820f9310887757e1d5f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 25 Jan 2023 06:18:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.no/pagead/1p-conversion/663812995/?random=1674627489811&cv=11&fst=1674627489811&bg=ffffff&guid=ON&async=1>m=2wg1n0&u_w=1280&u_h=1024&label=kFsCCPnmqsgBEIP3w7wC&hn=www.google.com&frm=0&url=https%3A%2F%2Fwww.americanexpressseguros.com%2Fes-mx%2Fseguros%2F&tiba=American%20Express%20%7C%20Seguros&value=0&bttype=purchase&auid=782004452.1674627490&gcp=1&sscte=1&ct_cookie_present=1&rfmt=3&fmt=4&ipr=y&prhg=0
142.250.74.163200 OK 63 B URL HTTP/2 www.google.no/pagead/1p-conversion/663812995/?random=1674627489811&cv=11&fst=1674627489811&bg=ffffff&guid=ON&async=1>m=2wg1n0&u_w=1280&u_h=1024&label=kFsCCPnmqsgBEIP3w7wC&hn=www.google.com&frm=0&url=https%3A%2F%2Fwww.americanexpressseguros.com%2Fes-mx%2Fseguros%2F&tiba=American%20Express%20%7C%20Seguros&value=0&bttype=purchase&auid=782004452.1674627490&gcp=1&sscte=1&ct_cookie_present=1&rfmt=3&fmt=4&ipr=y&prhg=0
IP 142.250.74.163:0
File type ASCII text, with no line terminators
Hash 0339f8f57d1bf75003db591e28957e45
ae2286e497c9f76a02cb40c40a674b73bd293b76
609cd8e12464fe137cfaa9f1ab6637150d44e105559c901b6df50303fd05aa26
GET /pagead/1p-conversion/663812995/?random=1674627489811&cv=11&fst=1674627489811&bg=ffffff&guid=ON&async=1>m=2wg1n0&u_w=1280&u_h=1024&label=kFsCCPnmqsgBEIP3w7wC&hn=www.google.com&frm=0&url=https%3A%2F%2Fwww.americanexpressseguros.com%2Fes-mx%2Fseguros%2F&tiba=American%20Express%20%7C%20Seguros&value=0&bttype=purchase&auid=782004452.1674627490&gcp=1&sscte=1&ct_cookie_present=1&rfmt=3&fmt=4&ipr=y&prhg=0 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.americanexpressseguros.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Wed, 25 Jan 2023 06:18:12 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: text/javascript; charset=UTF-8
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
server: cafe
content-length: 63
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.americanexpressseguros.com/es-mx/seguros/static/pwa/12.fe395f197cda1dddf11c.js
151.101.1.124200 OK 1.4 kB URL HTTP/2 www.americanexpressseguros.com/es-mx/seguros/static/pwa/12.fe395f197cda1dddf11c.js
IP 151.101.1.124:0
File type ASCII text, with very long lines (1916)
Hash f49971547de70215641a3c1262a20a28
30d7d55bb0d1f636a62191c11b9ce20d43e84a5f
61db61808cde48001c315a808615e1a5f727bd64cc72f94a482f0ad44cd13c0a
Analyzer Verdict Alert openphish American Express
fortinet Phishing
quad9 Sinkholed
GET /es-mx/seguros/static/pwa/12.fe395f197cda1dddf11c.js HTTP/1.1
Host: www.americanexpressseguros.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.americanexpressseguros.com/es-mx/seguros/static/pwa/sw.js
Connection: keep-alive
Cookie: _gcl_au=1.1.782004452.1674627490; private_content_version=7b4cbf57746914521bdfb3464e26b5d1; _ga_X20CXLNMV9=GS1.1.1674627489.1.0.1674627489.60.0.0; _ga=GA1.2.2138569223.1674627490; et_uk=d9131712ba9d477fa2674398e7bfbef8; et_gk=35deae3be7f34b13a4b63768547e8171%7C26.03.2023%2006%3A18%3A11; _hjSessionUser_2640798=eyJpZCI6IjMzMTg4ZDNhLWUxMjAtNTlhNy1hMjBlLWRlYTFlMDIzNWNlMyIsImNyZWF0ZWQiOjE2NzQ2Mjc0OTEwNTMsImV4aXN0aW5nIjpmYWxzZX0=; _hjFirstSeen=1; _hjIncludedInSessionSample=1; _hjSession_2640798=eyJpZCI6IjQxNGJkNzM3LTljNTQtNGIxZi05ZDQwLWRkMzEwNWZhZGU0OCIsImNyZWF0ZWQiOjE2NzQ2Mjc0OTEwODYsImluU2FtcGxlIjp0cnVlfQ==; _hjIncludedInPageviewSample=1; _hjAbsoluteSessionInProgress=0; _gid=GA1.2.364610751.1674627491; _dc_gtm_UA-50367135-6=1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=31536000
content-type: application/javascript
etag: W/"63c0a993-d02"
expires: Tue, 16 Jan 2024 21:57:09 GMT
last-modified: Fri, 13 Jan 2023 00:45:07 GMT
x-debug-info: eyJyZXRyaWVzIjowfQ==
x-platform-server: i-0eceb7d9e8ebf109e, i-0eceb7d9e8ebf109e
traceresponse: 00-173ae8d8b6f882521dab0d03cde31ff4-022ece0494a7ad8e-00
content-encoding: gzip
accept-ranges: bytes
date: Wed, 25 Jan 2023 06:18:12 GMT
age: 721263
x-served-by: cache-bfi-kbfi7400026-BFI, cache-bma1626-BMA
x-cache: HIT, HIT
x-cache-hits: 14, 1
strict-transport-security: max-age=31536000
vary: Accept-Encoding
content-length: 1378
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash fdded3d5e68d5358634880be3d3f2d04
6a02176ed7735b46393d51bd142e0deace6a5007
7077e5a7a6aeee95ad600ca2a943f7062f593e12fa61e74bbb860f6019bf67b7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 25 Jan 2023 06:18:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.americanexpressseguros.com/es-mx/seguros/static/pwa/2.40016e8a9b39ec181d56.js
151.101.1.124200 OK 15 kB URL HTTP/2 www.americanexpressseguros.com/es-mx/seguros/static/pwa/2.40016e8a9b39ec181d56.js
IP 151.101.1.124:0
File type Unicode text, UTF-8 text, with very long lines (6818)
Hash 0bc690a2c5f04d0f1c0c54ce0fc0523f
f1027e22e77b4a979a203bf64d9b0c8cc565ddc1
05878c61aaa6495045013a3ea891b70dc6f473072eab7b8fc58db274a38722ff
Analyzer Verdict Alert openphish American Express
fortinet Phishing
quad9 Sinkholed
GET /es-mx/seguros/static/pwa/2.40016e8a9b39ec181d56.js HTTP/1.1
Host: www.americanexpressseguros.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.americanexpressseguros.com/es-mx/seguros/static/pwa/sw.js
Connection: keep-alive
Cookie: _gcl_au=1.1.782004452.1674627490; private_content_version=7b4cbf57746914521bdfb3464e26b5d1; _ga_X20CXLNMV9=GS1.1.1674627489.1.0.1674627489.60.0.0; _ga=GA1.2.2138569223.1674627490; et_uk=d9131712ba9d477fa2674398e7bfbef8; et_gk=35deae3be7f34b13a4b63768547e8171%7C26.03.2023%2006%3A18%3A11; _hjSessionUser_2640798=eyJpZCI6IjMzMTg4ZDNhLWUxMjAtNTlhNy1hMjBlLWRlYTFlMDIzNWNlMyIsImNyZWF0ZWQiOjE2NzQ2Mjc0OTEwNTMsImV4aXN0aW5nIjpmYWxzZX0=; _hjFirstSeen=1; _hjIncludedInSessionSample=1; _hjSession_2640798=eyJpZCI6IjQxNGJkNzM3LTljNTQtNGIxZi05ZDQwLWRkMzEwNWZhZGU0OCIsImNyZWF0ZWQiOjE2NzQ2Mjc0OTEwODYsImluU2FtcGxlIjp0cnVlfQ==; _hjIncludedInPageviewSample=1; _hjAbsoluteSessionInProgress=0; _gid=GA1.2.364610751.1674627491; _dc_gtm_UA-50367135-6=1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=31536000
content-type: application/javascript
etag: W/"63cf705f-f991"
expires: Wed, 24 Jan 2024 19:49:25 GMT
last-modified: Tue, 24 Jan 2023 05:45:03 GMT
x-debug-info: eyJyZXRyaWVzIjowfQ==
x-platform-server: i-022f454a7b3fd63c5, i-022f454a7b3fd63c5
traceresponse: 00-173d56850d8765992d49c177595ffd4b-0bc838a6315d170c-00
content-encoding: gzip
accept-ranges: bytes
date: Wed, 25 Jan 2023 06:18:12 GMT
age: 37727
x-served-by: cache-bfi-kbfi7400116-BFI, cache-bma1626-BMA
x-cache: HIT, HIT
x-cache-hits: 8, 1
strict-transport-security: max-age=31536000
vary: Accept-Encoding
content-length: 15360
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash 1653bb849b698af04bdc71dcb8012287
ff40aa501560effc7cd7c7faba25755f3df620be
1c90128cdba47adf8aecd3ef1abce3ded1617c0328d9389f93987a22b18c3bfb
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 25 Jan 2023 06:18:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.googleadservices.com/pagead/conversion/663812995/wcm?cc=ZZ&dn=8009990698&cl=eUoOCLbHt_cCEIP3w7wC&ct_eid=2
142.250.74.2302 Found 0 B URL HTTP/2 www.googleadservices.com/pagead/conversion/663812995/wcm?cc=ZZ&dn=8009990698&cl=eUoOCLbHt_cCEIP3w7wC&ct_eid=2
IP 142.250.74.2:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pagead/conversion/663812995/wcm?cc=ZZ&dn=8009990698&cl=eUoOCLbHt_cCEIP3w7wC&ct_eid=2 HTTP/1.1
Host: www.googleadservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.americanexpressseguros.com
Connection: keep-alive
Referer: https://www.americanexpressseguros.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
location: https://www.google.no/pagead/attribution/wcm?cc=ZZ&dn=8009990698&cl=eUoOCLbHt_cCEIP3w7wC
access-control-allow-origin: https://www.americanexpressseguros.com
access-control-allow-credentials: true
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
date: Wed, 25 Jan 2023 06:18:13 GMT
server: cafe
content-length: 0
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.americanexpressseguros.com/es-mx/seguros/static/pwa/20.864fb0e2df3dd1e29e3f.js
151.101.1.124200 OK 40 kB URL HTTP/2 www.americanexpressseguros.com/es-mx/seguros/static/pwa/20.864fb0e2df3dd1e29e3f.js
IP 151.101.1.124:0
File type Unicode text, UTF-8 text, with very long lines (3227)
Hash 70d3cf3c56b80ea1e2dba4d118714db8
e5bed6fb6ddfe647bafd364f5904eb1bacd3c855
2096c4f5d9f51f91edf74be3074590741f568f096014b1b12d377e2f199106e7
Analyzer Verdict Alert openphish American Express
fortinet Phishing
quad9 Sinkholed
GET /es-mx/seguros/static/pwa/20.864fb0e2df3dd1e29e3f.js HTTP/1.1
Host: www.americanexpressseguros.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.americanexpressseguros.com/es-mx/seguros/static/pwa/sw.js
Connection: keep-alive
Cookie: _gcl_au=1.1.782004452.1674627490; private_content_version=7b4cbf57746914521bdfb3464e26b5d1; _ga_X20CXLNMV9=GS1.1.1674627489.1.0.1674627489.60.0.0; _ga=GA1.2.2138569223.1674627490; et_uk=d9131712ba9d477fa2674398e7bfbef8; et_gk=35deae3be7f34b13a4b63768547e8171%7C26.03.2023%2006%3A18%3A11; _hjSessionUser_2640798=eyJpZCI6IjMzMTg4ZDNhLWUxMjAtNTlhNy1hMjBlLWRlYTFlMDIzNWNlMyIsImNyZWF0ZWQiOjE2NzQ2Mjc0OTEwNTMsImV4aXN0aW5nIjpmYWxzZX0=; _hjFirstSeen=1; _hjIncludedInSessionSample=1; _hjSession_2640798=eyJpZCI6IjQxNGJkNzM3LTljNTQtNGIxZi05ZDQwLWRkMzEwNWZhZGU0OCIsImNyZWF0ZWQiOjE2NzQ2Mjc0OTEwODYsImluU2FtcGxlIjp0cnVlfQ==; _hjIncludedInPageviewSample=1; _hjAbsoluteSessionInProgress=0; _gid=GA1.2.364610751.1674627491; _dc_gtm_UA-50367135-6=1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=31536000
content-type: application/javascript
etag: W/"63bc4490-2a513"
expires: Tue, 09 Jan 2024 16:52:25 GMT
last-modified: Mon, 09 Jan 2023 16:45:04 GMT
x-debug-info: eyJyZXRyaWVzIjowfQ==
x-platform-server: i-0129d32895ff95045, i-0129d32895ff95045
traceresponse: 00-1738b227b0be4001121a69bd45564064-7dbe479d4a9c06ef-00
content-encoding: gzip
accept-ranges: bytes
date: Wed, 25 Jan 2023 06:18:13 GMT
age: 1344348
x-served-by: cache-bfi-kbfi7400022-BFI, cache-bma1626-BMA
x-cache: HIT, HIT
x-cache-hits: 14, 1
strict-transport-security: max-age=31536000
vary: Accept-Encoding
content-length: 39520
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 1e7d2367e887288960ca7c9463bb1c05
23fb7bef446cbe67c606595f2514f75e0c4c831a
a96d71bed38fd06770f4c48bbac812d33b78e25d21a597e203cc2864f04a2e3b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 25 Jan 2023 06:18:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.americanexpressseguros.com/es-mx/seguros/static/pwa/21.96231ec49a1ae6442647.js
151.101.1.124200 OK 17 kB URL HTTP/2 www.americanexpressseguros.com/es-mx/seguros/static/pwa/21.96231ec49a1ae6442647.js
IP 151.101.1.124:0
File type Unicode text, UTF-8 text, with very long lines (5231)
Hash 7704bf00bd014f952f7032e84d576241
45fe220683ab771a2b34ae67ba738a60c3262dc0
b34bf95520b01809ce28ef4d2084649dc8a9a3e7f62a9fa5c0556101d7597574
Analyzer Verdict Alert openphish American Express
fortinet Phishing
quad9 Sinkholed
GET /es-mx/seguros/static/pwa/21.96231ec49a1ae6442647.js HTTP/1.1
Host: www.americanexpressseguros.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.americanexpressseguros.com/es-mx/seguros/static/pwa/sw.js
Connection: keep-alive
Cookie: _gcl_au=1.1.782004452.1674627490; private_content_version=7b4cbf57746914521bdfb3464e26b5d1; _ga_X20CXLNMV9=GS1.1.1674627489.1.0.1674627489.60.0.0; _ga=GA1.2.2138569223.1674627490; et_uk=d9131712ba9d477fa2674398e7bfbef8; et_gk=35deae3be7f34b13a4b63768547e8171%7C26.03.2023%2006%3A18%3A11; _hjSessionUser_2640798=eyJpZCI6IjMzMTg4ZDNhLWUxMjAtNTlhNy1hMjBlLWRlYTFlMDIzNWNlMyIsImNyZWF0ZWQiOjE2NzQ2Mjc0OTEwNTMsImV4aXN0aW5nIjpmYWxzZX0=; _hjFirstSeen=1; _hjIncludedInSessionSample=1; _hjSession_2640798=eyJpZCI6IjQxNGJkNzM3LTljNTQtNGIxZi05ZDQwLWRkMzEwNWZhZGU0OCIsImNyZWF0ZWQiOjE2NzQ2Mjc0OTEwODYsImluU2FtcGxlIjp0cnVlfQ==; _hjIncludedInPageviewSample=1; _hjAbsoluteSessionInProgress=0; _gid=GA1.2.364610751.1674627491; _dc_gtm_UA-50367135-6=1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=31536000
content-type: application/javascript
etag: W/"63bc4490-10979"
expires: Tue, 09 Jan 2024 16:52:25 GMT
last-modified: Mon, 09 Jan 2023 16:45:04 GMT
x-debug-info: eyJyZXRyaWVzIjowfQ==
x-platform-server: i-0eceb7d9e8ebf109e, i-0eceb7d9e8ebf109e
traceresponse: 00-1738b227bbcdffcfe23748f91ba927cb-4bb259bdfac4880f-00
content-encoding: gzip
accept-ranges: bytes
date: Wed, 25 Jan 2023 06:18:13 GMT
age: 1344348
x-served-by: cache-bfi-krnt7300063-BFI, cache-bma1626-BMA
x-cache: HIT, HIT
x-cache-hits: 23, 1
strict-transport-security: max-age=31536000
vary: Accept-Encoding
content-length: 16732
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
54.230.245.100200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.100:0
Hash c1ec28070ee60b758279fe292cf4aca1
39fc66e7125db37effd0fafb8b4b7f46789527d2
baf1983bf1a09410c0d561d4706f0258676bdc1da64cd07d69599f611642ae54
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Wed, 25 Jan 2023 06:18:13 GMT
Last-Modified: Wed, 25 Jan 2023 04:42:48 GMT
Server: ECS (nyb/1D04)
X-Cache: Miss from cloudfront
Via: 1.1 8ac66e1d6983a0f44cf391b1ec3b1cce.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: K6Ru1dCN6DeTdYWS2Y_dfbh6QS56UxJy-w_OrAbdoyT3ppo-LlGL3Q==
Age: 5725
www.facebook.com/tr/?id=627144114087933&ev=PageView&dl=https%3A%2F%2Fwww.americanexpressseguros.com%2Fes-mx%2Fseguros%2F&rl=&if=false&ts=1674627491317&sw=1280&sh=1024&v=2.9.94&r=stable&ec=0&o=28&fbp=fb.1.1674627491317.1997195595&it=1674627491076&coo=false&rqm=GET
31.13.72.36200 OK 0 B URL HTTP/2 www.facebook.com/tr/?id=627144114087933&ev=PageView&dl=https%3A%2F%2Fwww.americanexpressseguros.com%2Fes-mx%2Fseguros%2F&rl=&if=false&ts=1674627491317&sw=1280&sh=1024&v=2.9.94&r=stable&ec=0&o=28&fbp=fb.1.1674627491317.1997195595&it=1674627491076&coo=false&rqm=GET
IP 31.13.72.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tr/?id=627144114087933&ev=PageView&dl=https%3A%2F%2Fwww.americanexpressseguros.com%2Fes-mx%2Fseguros%2F&rl=&if=false&ts=1674627491317&sw=1280&sh=1024&v=2.9.94&r=stable&ec=0&o=28&fbp=fb.1.1674627491317.1997195595&it=1674627491076&coo=false&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.americanexpressseguros.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin:
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400
date: Wed, 25 Jan 2023 06:18:13 GMT
X-Firefox-Spdy: h2
www.facebook.com/tr/?id=521537192222116&ev=PageView&dl=https%3A%2F%2Fwww.americanexpressseguros.com%2Fes-mx%2Fseguros%2F&rl=&if=false&ts=1674627491319&sw=1280&sh=1024&v=2.9.94&r=stable&ec=0&o=30&fbp=fb.1.1674627491317.1997195595&it=1674627491076&coo=false&rqm=GET
31.13.72.36200 OK 0 B URL HTTP/2 www.facebook.com/tr/?id=521537192222116&ev=PageView&dl=https%3A%2F%2Fwww.americanexpressseguros.com%2Fes-mx%2Fseguros%2F&rl=&if=false&ts=1674627491319&sw=1280&sh=1024&v=2.9.94&r=stable&ec=0&o=30&fbp=fb.1.1674627491317.1997195595&it=1674627491076&coo=false&rqm=GET
IP 31.13.72.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tr/?id=521537192222116&ev=PageView&dl=https%3A%2F%2Fwww.americanexpressseguros.com%2Fes-mx%2Fseguros%2F&rl=&if=false&ts=1674627491319&sw=1280&sh=1024&v=2.9.94&r=stable&ec=0&o=30&fbp=fb.1.1674627491317.1997195595&it=1674627491076&coo=false&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.americanexpressseguros.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin:
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400
date: Wed, 25 Jan 2023 06:18:13 GMT
X-Firefox-Spdy: h2
js-agent.newrelic.com/859.95d4308d-1222.js
151.101.130.137200 OK 3.0 kB URL HTTP/2 js-agent.newrelic.com/859.95d4308d-1222.js
IP 151.101.130.137:0
File type ASCII text, with very long lines (6657), with no line terminators
Hash 364ac85aef21ab784eeec8f55116dff7
82089547d57defc88e114832b7eb9919a8876e31
255295be519de9a2d1040b1c547c25756b63310e2d7234bcf252ed41d5278c0b
GET /859.95d4308d-1222.js HTTP/1.1
Host: js-agent.newrelic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.americanexpressseguros.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: PAOkWJ6WiOdnSUVZHZQv79Edy7uPwU81uM9fUJQx6T8UpQupKV3O9whnAR+3HGoYTBPmehtRe7k=
x-amz-request-id: WFN4FJZ1XN6DZ8EG
last-modified: Wed, 18 Jan 2023 20:22:30 GMT
etag: "b087387593417c0b63259918da3584e3"
x-amz-version-id: GtNmis6Y3zB4SbtciuRtabFzp3T7wBIy
content-type: application/javascript
server: AmazonS3
access-control-allow-origin: *
cache-control: public, max-age=7200, stale-if-error=604800
content-encoding: gzip
accept-ranges: bytes
date: Wed, 25 Jan 2023 06:18:13 GMT
via: 1.1 varnish
x-served-by: cache-bma1646-BMA
x-cache: HIT
x-cache-hits: 3238
x-timer: S1674627493.237820,VS0,VE0
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
content-length: 2975
X-Firefox-Spdy: h2
js-agent.newrelic.com/569.95d4308d-1222.js
151.101.130.137200 OK 3.2 kB URL HTTP/2 js-agent.newrelic.com/569.95d4308d-1222.js
IP 151.101.130.137:0
File type ASCII text, with very long lines (7513), with no line terminators
Hash 8d0953404ce6fdf0926ef6bf37d7e041
8cec9d9883f8b7720721bb33bffb4afe45193b1d
83966eef1899edd421692b78cda8df58dfb9b0b2b27a7485183c5b4cb44a336d
GET /569.95d4308d-1222.js HTTP/1.1
Host: js-agent.newrelic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.americanexpressseguros.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: v+E2uK5EOShfz1aeDzYcwNWitGv9mKnF6hMwgfWjfoR/qfIZPK6AF+v3z+by8JUQg3fSUYcltK4=
x-amz-request-id: WFNFJ5TESSHD3FE6
last-modified: Wed, 18 Jan 2023 20:22:30 GMT
etag: "e97726ab932639fed09971b1d682788c"
x-amz-version-id: umZj.yHws5JPiBHG1j096ELWHEKx7rh0
content-type: application/javascript
server: AmazonS3
access-control-allow-origin: *
cache-control: public, max-age=7200, stale-if-error=604800
content-encoding: gzip
accept-ranges: bytes
date: Wed, 25 Jan 2023 06:18:13 GMT
via: 1.1 varnish
x-served-by: cache-bma1646-BMA
x-cache: HIT
x-cache-hits: 3222
x-timer: S1674627493.256773,VS0,VE0
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
content-length: 3173
X-Firefox-Spdy: h2
js-agent.newrelic.com/41.95d4308d-1222.js
151.101.130.137200 OK 439 B URL HTTP/2 js-agent.newrelic.com/41.95d4308d-1222.js
IP 151.101.130.137:0
File type ASCII text, with very long lines (828), with no line terminators
Hash 46946da829a2257cd8bdeb75bc6f8ff9
bfb81d0ebb2c5a2c0fe666f6a9c4c09cc5a545b3
50e164f0b5274f88ecc28c833729663593b3380aed5a4ac3a06d29106332a544
GET /41.95d4308d-1222.js HTTP/1.1
Host: js-agent.newrelic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.americanexpressseguros.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: 2TG7kVMnt5x5EwbcjDgF/pAaH/jmgGXStlMFEbvOUPNYaRTe14pFRmwb0VQGFJQN7uXfEncHoqkNLs4TYWl92Q==
x-amz-request-id: MFEHG5GPGK6ZYQVP
last-modified: Wed, 18 Jan 2023 20:22:30 GMT
etag: "29dd8aef66100e4c69e07fd60fc88b12"
x-amz-version-id: 6FOFyXAonMoqJqLGEMhx7HWIp32cv4MT
content-type: application/javascript
server: AmazonS3
access-control-allow-origin: *
cache-control: public, max-age=7200, stale-if-error=604800
content-encoding: gzip
accept-ranges: bytes
date: Wed, 25 Jan 2023 06:18:13 GMT
via: 1.1 varnish
x-served-by: cache-bma1646-BMA
x-cache: HIT
x-cache-hits: 3233
x-timer: S1674627493.262632,VS0,VE0
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
content-length: 439
X-Firefox-Spdy: h2
js-agent.newrelic.com/620.95d4308d-1222.js
151.101.130.137200 OK 1.3 kB URL HTTP/2 js-agent.newrelic.com/620.95d4308d-1222.js
IP 151.101.130.137:0
File type ASCII text, with very long lines (2989), with no line terminators
Hash 7094c3f93699a846fe91edd766391f01
25e8c79409acc2bb73a728c0768e1eda66019255
85eb01219e8aaa7c7968aa175c2421454f99615ae66350b15c60465f4616826f
GET /620.95d4308d-1222.js HTTP/1.1
Host: js-agent.newrelic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.americanexpressseguros.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: QggJtv+14rx8wEd4C6ZTDmmxUSe6+8jiYhTGnWcIRu6DC5pRiaL5fPRx8/lgChduQ7GqRSlO6xY=
x-amz-request-id: WFN5FXFSJTZYM7K6
last-modified: Wed, 18 Jan 2023 20:22:30 GMT
etag: "ca9b029ff66dd9146273984d16e20abc"
x-amz-version-id: HYguQMwVKEHCmodKuQRUzW1qxlElK9Xr
content-type: application/javascript
server: AmazonS3
access-control-allow-origin: *
cache-control: public, max-age=7200, stale-if-error=604800
content-encoding: gzip
accept-ranges: bytes
date: Wed, 25 Jan 2023 06:18:13 GMT
via: 1.1 varnish
x-served-by: cache-bma1646-BMA
x-cache: HIT
x-cache-hits: 3226
x-timer: S1674627493.263016,VS0,VE0
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
content-length: 1342
X-Firefox-Spdy: h2
js-agent.newrelic.com/457.95d4308d-1222.js
151.101.130.137200 OK 2.0 kB URL HTTP/2 js-agent.newrelic.com/457.95d4308d-1222.js
IP 151.101.130.137:0
File type ASCII text, with very long lines (4809), with no line terminators
Hash 09c0cca8d2a9fd69f1892a1c2d1319b9
b46f4fe3b0adc98785d22a092818b74145a91cc0
593022809e272793157f8280bae176bfa74a02f9f9a6d3269384e2dd434be046
GET /457.95d4308d-1222.js HTTP/1.1
Host: js-agent.newrelic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.americanexpressseguros.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: 6YLQBRWWkaavoi6QR5dS+9cRhXVrpaQK5v3G9/iqQ5oKPUxxFI0Uv2tN9ar51sQUG2xwVmTWBnY=
x-amz-request-id: WFN1Z9NXJZGF8XE5
last-modified: Wed, 18 Jan 2023 20:22:30 GMT
etag: "c16abc7fa2e34cbb7baf3e290120ad5a"
x-amz-version-id: qROfxBD9CF8WXmbywdhvCmImuu9HvRNA
content-type: application/javascript
server: AmazonS3
access-control-allow-origin: *
cache-control: public, max-age=7200, stale-if-error=604800
content-encoding: gzip
accept-ranges: bytes
date: Wed, 25 Jan 2023 06:18:13 GMT
via: 1.1 varnish
x-served-by: cache-bma1646-BMA
x-cache: HIT
x-cache-hits: 3231
x-timer: S1674627493.263122,VS0,VE0
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
content-length: 1953
X-Firefox-Spdy: h2
www.americanexpressseguros.com/es-mx/seguros/static/pwa/22.33d8426942ac70dbb2b8.js
151.101.1.124200 OK 8.2 kB URL HTTP/2 www.americanexpressseguros.com/es-mx/seguros/static/pwa/22.33d8426942ac70dbb2b8.js
IP 151.101.1.124:0
File type Unicode text, UTF-8 text, with very long lines (3899)
Hash c33ca50ddc5549dc469e39e52d48dd0c
7276414d6a1717727183ff328a713f00ef5d4d8c
14822e6d0914a5eb0f844b9211670756486c3689ca424eb8f3728f41257fcdd6
Analyzer Verdict Alert openphish American Express
fortinet Phishing
quad9 Sinkholed
GET /es-mx/seguros/static/pwa/22.33d8426942ac70dbb2b8.js HTTP/1.1
Host: www.americanexpressseguros.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.americanexpressseguros.com/es-mx/seguros/static/pwa/sw.js
Connection: keep-alive
Cookie: _gcl_au=1.1.782004452.1674627490; private_content_version=7b4cbf57746914521bdfb3464e26b5d1; _ga_X20CXLNMV9=GS1.1.1674627489.1.0.1674627489.60.0.0; _ga=GA1.2.2138569223.1674627490; et_uk=d9131712ba9d477fa2674398e7bfbef8; et_gk=35deae3be7f34b13a4b63768547e8171%7C26.03.2023%2006%3A18%3A11; _hjSessionUser_2640798=eyJpZCI6IjMzMTg4ZDNhLWUxMjAtNTlhNy1hMjBlLWRlYTFlMDIzNWNlMyIsImNyZWF0ZWQiOjE2NzQ2Mjc0OTEwNTMsImV4aXN0aW5nIjpmYWxzZX0=; _hjFirstSeen=1; _hjIncludedInSessionSample=1; _hjSession_2640798=eyJpZCI6IjQxNGJkNzM3LTljNTQtNGIxZi05ZDQwLWRkMzEwNWZhZGU0OCIsImNyZWF0ZWQiOjE2NzQ2Mjc0OTEwODYsImluU2FtcGxlIjp0cnVlfQ==; _hjIncludedInPageviewSample=1; _hjAbsoluteSessionInProgress=0; _gid=GA1.2.364610751.1674627491; _dc_gtm_UA-50367135-6=1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=31536000
content-type: application/javascript
etag: W/"63bdb089-6cbb"
expires: Fri, 12 Jan 2024 20:00:54 GMT
last-modified: Tue, 10 Jan 2023 18:38:01 GMT
x-debug-info: eyJyZXRyaWVzIjowfQ==
x-platform-server: i-0129d32895ff95045, i-0129d32895ff95045
traceresponse: 00-1739a82e998538169ebaaa6be8f56a05-5181bb51280f6dcb-00
content-encoding: gzip
accept-ranges: bytes
date: Wed, 25 Jan 2023 06:18:13 GMT
age: 1073839
x-served-by: cache-bfi-krnt7300047-BFI, cache-bma1626-BMA
x-cache: HIT, MISS
x-cache-hits: 22, 0
strict-transport-security: max-age=31536000
vary: Accept-Encoding
content-length: 8212
X-Firefox-Spdy: h2
bam.nr-data.net/1/0c472e2d03?a=396291131&v=1222.PROD&to=bldbYEdYDUYAUURRWVcdeFdBUAxbTnRCV1hNcVZaQUsMWQ1XQhd7WFVcWkFWP2ARRVFKUnpdV1pQWhdaE25zV1hNQFZYWVwRaTRCR1lEXW5wWkFcEVYEQkRXRA%3D%3D&rst=4652&ck=0&s=b47fe49f50b425fb&ref=https://www.americanexpressseguros.com/es-mx/seguros/&ap=67&be=424&fe=4142&dc=2302&perf=%7B%22timing%22:%7B%22of%22:1674627486798,%22n%22:0,%22f%22:-7,%22dn%22:90,%22dne%22:93,%22c%22:94,%22s%22:107,%22ce%22:177,%22rq%22:177,%22rp%22:381,%22rpe%22:382,%22dl%22:403,%22di%22:2485,%22ds%22:2725,%22de%22:2729,%22dc%22:4564,%22l%22:4565,%22le%22:4567%7D,%22navigation%22:%7B%7D%7D&fcp=2647&at=QhBYFg9CHkg%3D&jsonp=NREUM.setToken
162.247.241.14200 OK 77 B URL HTTP/1.1 bam.nr-data.net/1/0c472e2d03?a=396291131&v=1222.PROD&to=bldbYEdYDUYAUURRWVcdeFdBUAxbTnRCV1hNcVZaQUsMWQ1XQhd7WFVcWkFWP2ARRVFKUnpdV1pQWhdaE25zV1hNQFZYWVwRaTRCR1lEXW5wWkFcEVYEQkRXRA%3D%3D&rst=4652&ck=0&s=b47fe49f50b425fb&ref=https://www.americanexpressseguros.com/es-mx/seguros/&ap=67&be=424&fe=4142&dc=2302&perf=%7B%22timing%22:%7B%22of%22:1674627486798,%22n%22:0,%22f%22:-7,%22dn%22:90,%22dne%22:93,%22c%22:94,%22s%22:107,%22ce%22:177,%22rq%22:177,%22rp%22:381,%22rpe%22:382,%22dl%22:403,%22di%22:2485,%22ds%22:2725,%22de%22:2729,%22dc%22:4564,%22l%22:4565,%22le%22:4567%7D,%22navigation%22:%7B%7D%7D&fcp=2647&at=QhBYFg9CHkg%3D&jsonp=NREUM.setToken
IP 162.247.241.14:0
File type ASCII text, with no line terminators
Hash f1442f5831dbbe0210da2d7a4180d6b8
2ade23c6c7a001c66f0c0a9a101ec152747b434e
c6acf9fb2ecc1b144c51bd0337bbf1c26db3df2f649ac2da5c56db20d93eb3ef
GET /1/0c472e2d03?a=396291131&v=1222.PROD&to=bldbYEdYDUYAUURRWVcdeFdBUAxbTnRCV1hNcVZaQUsMWQ1XQhd7WFVcWkFWP2ARRVFKUnpdV1pQWhdaE25zV1hNQFZYWVwRaTRCR1lEXW5wWkFcEVYEQkRXRA%3D%3D&rst=4652&ck=0&s=b47fe49f50b425fb&ref=https://www.americanexpressseguros.com/es-mx/seguros/&ap=67&be=424&fe=4142&dc=2302&perf=%7B%22timing%22:%7B%22of%22:1674627486798,%22n%22:0,%22f%22:-7,%22dn%22:90,%22dne%22:93,%22c%22:94,%22s%22:107,%22ce%22:177,%22rq%22:177,%22rp%22:381,%22rpe%22:382,%22dl%22:403,%22di%22:2485,%22ds%22:2725,%22de%22:2729,%22dc%22:4564,%22l%22:4565,%22le%22:4567%7D,%22navigation%22:%7B%7D%7D&fcp=2647&at=QhBYFg9CHkg%3D&jsonp=NREUM.setToken HTTP/1.1
Host: bam.nr-data.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.americanexpressseguros.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Wed, 25 Jan 2023 06:18:13 GMT
Content-Type: text/javascript
Transfer-Encoding: chunked
Connection: keep-alive
CF-Ray: 78eee3e91d4bb4f3-OSL
Access-Control-Allow-Origin: *
CF-Cache-Status: DYNAMIC
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, HEAD, OPTIONS
Cross-Origin-Resource-Policy: cross-origin
Vary: Accept-Encoding
Server: cloudflare
Content-Encoding: gzip
www.americanexpressseguros.com/es-mx/seguros/static/pwa/23.e3c9fa3854f020f199f7.js
151.101.1.124200 OK 11 kB URL HTTP/2 www.americanexpressseguros.com/es-mx/seguros/static/pwa/23.e3c9fa3854f020f199f7.js
IP 151.101.1.124:0
File type Unicode text, UTF-8 text, with very long lines (4271)
Hash 29d093b2df602738bbfa4bc71c898472
05fe4dca6bdf50a8056cb3724521907f4ed3e382
16861fb7d1cc99a57ec083377e5f2c2eafaf4d92a5ea9d263cd1dc1020261b31
Analyzer Verdict Alert openphish American Express
fortinet Phishing
quad9 Sinkholed
GET /es-mx/seguros/static/pwa/23.e3c9fa3854f020f199f7.js HTTP/1.1
Host: www.americanexpressseguros.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.americanexpressseguros.com/es-mx/seguros/static/pwa/sw.js
Connection: keep-alive
Cookie: _gcl_au=1.1.782004452.1674627490; private_content_version=7b4cbf57746914521bdfb3464e26b5d1; _ga_X20CXLNMV9=GS1.1.1674627489.1.0.1674627489.60.0.0; _ga=GA1.2.2138569223.1674627490; et_uk=d9131712ba9d477fa2674398e7bfbef8; et_gk=35deae3be7f34b13a4b63768547e8171%7C26.03.2023%2006%3A18%3A11; _hjSessionUser_2640798=eyJpZCI6IjMzMTg4ZDNhLWUxMjAtNTlhNy1hMjBlLWRlYTFlMDIzNWNlMyIsImNyZWF0ZWQiOjE2NzQ2Mjc0OTEwNTMsImV4aXN0aW5nIjpmYWxzZX0=; _hjFirstSeen=1; _hjIncludedInSessionSample=1; _hjSession_2640798=eyJpZCI6IjQxNGJkNzM3LTljNTQtNGIxZi05ZDQwLWRkMzEwNWZhZGU0OCIsImNyZWF0ZWQiOjE2NzQ2Mjc0OTEwODYsImluU2FtcGxlIjp0cnVlfQ==; _hjIncludedInPageviewSample=1; _hjAbsoluteSessionInProgress=0; _gid=GA1.2.364610751.1674627491; _dc_gtm_UA-50367135-6=1; _fbp=fb.1.1674627491317.1997195595
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=31536000
content-type: application/javascript
etag: W/"63b331a0-c243"
expires: Sat, 06 Jan 2024 08:52:02 GMT
last-modified: Mon, 02 Jan 2023 19:33:52 GMT
x-debug-info: eyJyZXRyaWVzIjowfQ==
x-platform-server: i-0eceb7d9e8ebf109e, i-0eceb7d9e8ebf109e
traceresponse: 00-1737ac332b28d25646c5f6598b9d73e0-7bc79c6a52754447-00
content-encoding: gzip
accept-ranges: bytes
date: Wed, 25 Jan 2023 06:18:13 GMT
age: 1632371
x-served-by: cache-bfi-kbfi7400033-BFI, cache-bma1626-BMA
x-cache: HIT, MISS
x-cache-hits: 25, 0
strict-transport-security: max-age=31536000
vary: Accept-Encoding
content-length: 11256
X-Firefox-Spdy: h2
www.americanexpressseguros.com/es-mx/seguros/static/pwa/24.9c22bb37cc6addca6b47.js
151.101.1.124200 OK 9.2 kB URL HTTP/2 www.americanexpressseguros.com/es-mx/seguros/static/pwa/24.9c22bb37cc6addca6b47.js
IP 151.101.1.124:0
File type ASCII text, with very long lines (3620)
Hash 2e74c8fa445494e00b8fcd5ed7b188da
cb819c21b331c1b96e44ccdad3659473249c8839
29d3c902c2803e39e95af22428e6f771d8a32d08ac9d8416e31b728183babe21
Analyzer Verdict Alert openphish American Express
fortinet Phishing
quad9 Sinkholed
GET /es-mx/seguros/static/pwa/24.9c22bb37cc6addca6b47.js HTTP/1.1
Host: www.americanexpressseguros.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.americanexpressseguros.com/es-mx/seguros/static/pwa/sw.js
Connection: keep-alive
Cookie: _gcl_au=1.1.782004452.1674627490; private_content_version=7b4cbf57746914521bdfb3464e26b5d1; _ga_X20CXLNMV9=GS1.1.1674627489.1.0.1674627489.60.0.0; _ga=GA1.2.2138569223.1674627490; et_uk=d9131712ba9d477fa2674398e7bfbef8; et_gk=35deae3be7f34b13a4b63768547e8171%7C26.03.2023%2006%3A18%3A11; _hjSessionUser_2640798=eyJpZCI6IjMzMTg4ZDNhLWUxMjAtNTlhNy1hMjBlLWRlYTFlMDIzNWNlMyIsImNyZWF0ZWQiOjE2NzQ2Mjc0OTEwNTMsImV4aXN0aW5nIjpmYWxzZX0=; _hjFirstSeen=1; _hjIncludedInSessionSample=1; _hjSession_2640798=eyJpZCI6IjQxNGJkNzM3LTljNTQtNGIxZi05ZDQwLWRkMzEwNWZhZGU0OCIsImNyZWF0ZWQiOjE2NzQ2Mjc0OTEwODYsImluU2FtcGxlIjp0cnVlfQ==; _hjIncludedInPageviewSample=1; _hjAbsoluteSessionInProgress=0; _gid=GA1.2.364610751.1674627491; _dc_gtm_UA-50367135-6=1; _fbp=fb.1.1674627491317.1997195595
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=31536000
content-type: application/javascript
etag: W/"63bc4490-84f5"
expires: Tue, 09 Jan 2024 16:52:25 GMT
last-modified: Mon, 09 Jan 2023 16:45:04 GMT
x-debug-info: eyJyZXRyaWVzIjowfQ==
x-platform-server: i-0eceb7d9e8ebf109e, i-0eceb7d9e8ebf109e
traceresponse: 00-1738b227cc302fcde6549a25b5f110e7-8e543cc9babef1c4-00
content-encoding: gzip
accept-ranges: bytes
date: Wed, 25 Jan 2023 06:18:13 GMT
age: 1344348
x-served-by: cache-bfi-kbfi7400092-BFI, cache-bma1626-BMA
x-cache: HIT, HIT
x-cache-hits: 10, 1
strict-transport-security: max-age=31536000
vary: Accept-Encoding
content-length: 9172
X-Firefox-Spdy: h2
www.americanexpressseguros.com/es-mx/seguros/static/pwa/25.71176052153caa25d376.js
151.101.1.124200 OK 6.3 kB URL HTTP/2 www.americanexpressseguros.com/es-mx/seguros/static/pwa/25.71176052153caa25d376.js
IP 151.101.1.124:0
File type ASCII text, with very long lines (3469)
Hash c4a8311fbaa6c5b8f4c68931b051e4af
3b1bb9e16e7146461089af518936f070091ca738
4952eaea25667aa0998f662f7312237748375debcf85ff62c3c3c5724f23e7ea
Analyzer Verdict Alert openphish American Express
fortinet Phishing
quad9 Sinkholed
GET /es-mx/seguros/static/pwa/25.71176052153caa25d376.js HTTP/1.1
Host: www.americanexpressseguros.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.americanexpressseguros.com/es-mx/seguros/static/pwa/sw.js
Connection: keep-alive
Cookie: _gcl_au=1.1.782004452.1674627490; private_content_version=7b4cbf57746914521bdfb3464e26b5d1; _ga_X20CXLNMV9=GS1.1.1674627489.1.0.1674627489.60.0.0; _ga=GA1.2.2138569223.1674627490; et_uk=d9131712ba9d477fa2674398e7bfbef8; et_gk=35deae3be7f34b13a4b63768547e8171%7C26.03.2023%2006%3A18%3A11; _hjSessionUser_2640798=eyJpZCI6IjMzMTg4ZDNhLWUxMjAtNTlhNy1hMjBlLWRlYTFlMDIzNWNlMyIsImNyZWF0ZWQiOjE2NzQ2Mjc0OTEwNTMsImV4aXN0aW5nIjpmYWxzZX0=; _hjFirstSeen=1; _hjIncludedInSessionSample=1; _hjSession_2640798=eyJpZCI6IjQxNGJkNzM3LTljNTQtNGIxZi05ZDQwLWRkMzEwNWZhZGU0OCIsImNyZWF0ZWQiOjE2NzQ2Mjc0OTEwODYsImluU2FtcGxlIjp0cnVlfQ==; _hjIncludedInPageviewSample=1; _hjAbsoluteSessionInProgress=0; _gid=GA1.2.364610751.1674627491; _dc_gtm_UA-50367135-6=1; _fbp=fb.1.1674627491317.1997195595
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=31536000
content-type: application/javascript
etag: W/"63bc4490-4f1b"
expires: Tue, 09 Jan 2024 16:52:25 GMT
last-modified: Mon, 09 Jan 2023 16:45:04 GMT
x-debug-info: eyJyZXRyaWVzIjowfQ==
x-platform-server: i-0eceb7d9e8ebf109e, i-0eceb7d9e8ebf109e
traceresponse: 00-1738b227d3be8e00a590dced18e22e5f-8934794c420503bf-00
content-encoding: gzip
accept-ranges: bytes
date: Wed, 25 Jan 2023 06:18:13 GMT
age: 1344348
x-served-by: cache-bfi-krnt7300021-BFI, cache-bma1626-BMA
x-cache: HIT, HIT
x-cache-hits: 24, 1
strict-transport-security: max-age=31536000
vary: Accept-Encoding
content-length: 6325
X-Firefox-Spdy: h2
www.americanexpressseguros.com/es-mx/seguros/static/pwa/26.6c0c4b41d659b3b52213.js
151.101.1.124200 OK 3.9 kB URL HTTP/2 www.americanexpressseguros.com/es-mx/seguros/static/pwa/26.6c0c4b41d659b3b52213.js
IP 151.101.1.124:0
File type ASCII text, with very long lines (1151)
Hash ded5202704f1fb8fe568e095c6be756c
3a5cfe39ebb0382af1aec8aa4bd571d7128a5e98
59aa7e83a07d041c7f5f950536468758c4424c089a6ae05e61e69ffba9c995f9
Analyzer Verdict Alert openphish American Express
fortinet Phishing
quad9 Sinkholed
GET /es-mx/seguros/static/pwa/26.6c0c4b41d659b3b52213.js HTTP/1.1
Host: www.americanexpressseguros.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.americanexpressseguros.com/es-mx/seguros/static/pwa/sw.js
Connection: keep-alive
Cookie: _gcl_au=1.1.782004452.1674627490; private_content_version=7b4cbf57746914521bdfb3464e26b5d1; _ga_X20CXLNMV9=GS1.1.1674627489.1.0.1674627489.60.0.0; _ga=GA1.2.2138569223.1674627490; et_uk=d9131712ba9d477fa2674398e7bfbef8; et_gk=35deae3be7f34b13a4b63768547e8171%7C26.03.2023%2006%3A18%3A11; _hjSessionUser_2640798=eyJpZCI6IjMzMTg4ZDNhLWUxMjAtNTlhNy1hMjBlLWRlYTFlMDIzNWNlMyIsImNyZWF0ZWQiOjE2NzQ2Mjc0OTEwNTMsImV4aXN0aW5nIjpmYWxzZX0=; _hjFirstSeen=1; _hjIncludedInSessionSample=1; _hjSession_2640798=eyJpZCI6IjQxNGJkNzM3LTljNTQtNGIxZi05ZDQwLWRkMzEwNWZhZGU0OCIsImNyZWF0ZWQiOjE2NzQ2Mjc0OTEwODYsImluU2FtcGxlIjp0cnVlfQ==; _hjIncludedInPageviewSample=1; _hjAbsoluteSessionInProgress=0; _gid=GA1.2.364610751.1674627491; _dc_gtm_UA-50367135-6=1; _fbp=fb.1.1674627491317.1997195595
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=31536000
content-type: application/javascript
etag: W/"63bc4490-2e68"
expires: Tue, 09 Jan 2024 16:52:25 GMT
last-modified: Mon, 09 Jan 2023 16:45:04 GMT
x-debug-info: eyJyZXRyaWVzIjowfQ==
x-platform-server: i-0eceb7d9e8ebf109e, i-0eceb7d9e8ebf109e
traceresponse: 00-1738b227db76e370f0238602f6ec4359-1e274dae755f1818-00
content-encoding: gzip
accept-ranges: bytes
date: Wed, 25 Jan 2023 06:18:13 GMT
age: 1344348
x-served-by: cache-bfi-krnt7300056-BFI, cache-bma1626-BMA
x-cache: HIT, HIT
x-cache-hits: 23, 1
strict-transport-security: max-age=31536000
vary: Accept-Encoding
content-length: 3949
X-Firefox-Spdy: h2
www.americanexpressseguros.com/es-mx/seguros/static/pwa/27.5f11494fc081217be6a0.js
151.101.1.124200 OK 5.8 kB URL HTTP/2 www.americanexpressseguros.com/es-mx/seguros/static/pwa/27.5f11494fc081217be6a0.js
IP 151.101.1.124:0
File type Unicode text, UTF-8 text, with very long lines (1750)
Hash c4c602c5458f904ea9d61316e1f1c83e
ef57fd7deaffa05b1d18b38cbd21f0e260e52936
f0df6b4a90493cbd5220f6f7ed7b440c9ea424a122d8307e035276488f11fd0d
Analyzer Verdict Alert openphish American Express
fortinet Phishing
quad9 Sinkholed
GET /es-mx/seguros/static/pwa/27.5f11494fc081217be6a0.js HTTP/1.1
Host: www.americanexpressseguros.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.americanexpressseguros.com/es-mx/seguros/static/pwa/sw.js
Connection: keep-alive
Cookie: _gcl_au=1.1.782004452.1674627490; private_content_version=7b4cbf57746914521bdfb3464e26b5d1; _ga_X20CXLNMV9=GS1.1.1674627489.1.0.1674627489.60.0.0; _ga=GA1.2.2138569223.1674627490; et_uk=d9131712ba9d477fa2674398e7bfbef8; et_gk=35deae3be7f34b13a4b63768547e8171%7C26.03.2023%2006%3A18%3A11; _hjSessionUser_2640798=eyJpZCI6IjMzMTg4ZDNhLWUxMjAtNTlhNy1hMjBlLWRlYTFlMDIzNWNlMyIsImNyZWF0ZWQiOjE2NzQ2Mjc0OTEwNTMsImV4aXN0aW5nIjpmYWxzZX0=; _hjFirstSeen=1; _hjIncludedInSessionSample=1; _hjSession_2640798=eyJpZCI6IjQxNGJkNzM3LTljNTQtNGIxZi05ZDQwLWRkMzEwNWZhZGU0OCIsImNyZWF0ZWQiOjE2NzQ2Mjc0OTEwODYsImluU2FtcGxlIjp0cnVlfQ==; _hjIncludedInPageviewSample=1; _hjAbsoluteSessionInProgress=0; _gid=GA1.2.364610751.1674627491; _dc_gtm_UA-50367135-6=1; _fbp=fb.1.1674627491317.1997195595
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=31536000
content-type: application/javascript
etag: W/"63c0a993-4bc7"
expires: Wed, 17 Jan 2024 18:04:57 GMT
last-modified: Fri, 13 Jan 2023 00:45:07 GMT
x-debug-info: eyJyZXRyaWVzIjowfQ==
x-platform-server: i-022f454a7b3fd63c5, i-022f454a7b3fd63c5
traceresponse: 00-173b2ac1829823b33ff5a2c32a8ab4d5-1bca8f2a4138a521-00
content-encoding: gzip
accept-ranges: bytes
date: Wed, 25 Jan 2023 06:18:13 GMT
age: 648796
x-served-by: cache-bfi-kbfi7400042-BFI, cache-bma1626-BMA
x-cache: HIT, HIT
x-cache-hits: 8, 1
strict-transport-security: max-age=31536000
vary: Accept-Encoding
content-length: 5822
X-Firefox-Spdy: h2
www.americanexpressseguros.com/es-mx/seguros/static/pwa/28.14d9be7dc5f46544918e.js
151.101.1.124200 OK 4.6 kB URL HTTP/2 www.americanexpressseguros.com/es-mx/seguros/static/pwa/28.14d9be7dc5f46544918e.js
IP 151.101.1.124:0
File type ASCII text, with very long lines (1234)
Hash 10ed56bd22eadcafc158de3515b0da0f
f01ebd4f02d12217f013b808c0b7c96c20f8ea24
9b192c1462abd3114ddb1561bfd806a9fbbaa0d3f3d0451e4a0ca732e79d20dd
Analyzer Verdict Alert openphish American Express
fortinet Phishing
quad9 Sinkholed
GET /es-mx/seguros/static/pwa/28.14d9be7dc5f46544918e.js HTTP/1.1
Host: www.americanexpressseguros.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.americanexpressseguros.com/es-mx/seguros/static/pwa/sw.js
Connection: keep-alive
Cookie: _gcl_au=1.1.782004452.1674627490; private_content_version=7b4cbf57746914521bdfb3464e26b5d1; _ga_X20CXLNMV9=GS1.1.1674627489.1.0.1674627489.60.0.0; _ga=GA1.2.2138569223.1674627490; et_uk=d9131712ba9d477fa2674398e7bfbef8; et_gk=35deae3be7f34b13a4b63768547e8171%7C26.03.2023%2006%3A18%3A11; _hjSessionUser_2640798=eyJpZCI6IjMzMTg4ZDNhLWUxMjAtNTlhNy1hMjBlLWRlYTFlMDIzNWNlMyIsImNyZWF0ZWQiOjE2NzQ2Mjc0OTEwNTMsImV4aXN0aW5nIjpmYWxzZX0=; _hjFirstSeen=1; _hjIncludedInSessionSample=1; _hjSession_2640798=eyJpZCI6IjQxNGJkNzM3LTljNTQtNGIxZi05ZDQwLWRkMzEwNWZhZGU0OCIsImNyZWF0ZWQiOjE2NzQ2Mjc0OTEwODYsImluU2FtcGxlIjp0cnVlfQ==; _hjIncludedInPageviewSample=1; _hjAbsoluteSessionInProgress=0; _gid=GA1.2.364610751.1674627491; _dc_gtm_UA-50367135-6=1; _fbp=fb.1.1674627491317.1997195595
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=31536000
content-type: application/javascript
etag: W/"63bc4490-3663"
expires: Tue, 09 Jan 2024 16:52:25 GMT
last-modified: Mon, 09 Jan 2023 16:45:04 GMT
x-debug-info: eyJyZXRyaWVzIjowfQ==
x-platform-server: i-0eceb7d9e8ebf109e, i-0eceb7d9e8ebf109e
traceresponse: 00-1738b227e3bf2ab536cc359e93377803-f5612278268ee849-00
content-encoding: gzip
accept-ranges: bytes
date: Wed, 25 Jan 2023 06:18:13 GMT
age: 1344348
x-served-by: cache-bfi-krnt7300104-BFI, cache-bma1626-BMA
x-cache: HIT, HIT
x-cache-hits: 25, 1
strict-transport-security: max-age=31536000
vary: Accept-Encoding
content-length: 4592
X-Firefox-Spdy: h2
www.americanexpressseguros.com/es-mx/seguros/static/pwa/29.698d6d9829155ad3f0ec.js
151.101.1.124200 OK 4.9 kB URL HTTP/2 www.americanexpressseguros.com/es-mx/seguros/static/pwa/29.698d6d9829155ad3f0ec.js
IP 151.101.1.124:0
File type ASCII text, with very long lines (3178)
Hash b89b165ebffca563e493d98b37b1bdb5
f7871579baa0a7392e6501de22a185d0663e659b
fd97564d8f4a408770e9d7275aebb1293af6cd5ab1e9b2d129124ab9971297cd
Analyzer Verdict Alert openphish American Express
fortinet Phishing
quad9 Sinkholed
GET /es-mx/seguros/static/pwa/29.698d6d9829155ad3f0ec.js HTTP/1.1
Host: www.americanexpressseguros.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.americanexpressseguros.com/es-mx/seguros/static/pwa/sw.js
Connection: keep-alive
Cookie: _gcl_au=1.1.782004452.1674627490; private_content_version=7b4cbf57746914521bdfb3464e26b5d1; _ga_X20CXLNMV9=GS1.1.1674627489.1.0.1674627489.60.0.0; _ga=GA1.2.2138569223.1674627490; et_uk=d9131712ba9d477fa2674398e7bfbef8; et_gk=35deae3be7f34b13a4b63768547e8171%7C26.03.2023%2006%3A18%3A11; _hjSessionUser_2640798=eyJpZCI6IjMzMTg4ZDNhLWUxMjAtNTlhNy1hMjBlLWRlYTFlMDIzNWNlMyIsImNyZWF0ZWQiOjE2NzQ2Mjc0OTEwNTMsImV4aXN0aW5nIjpmYWxzZX0=; _hjFirstSeen=1; _hjIncludedInSessionSample=1; _hjSession_2640798=eyJpZCI6IjQxNGJkNzM3LTljNTQtNGIxZi05ZDQwLWRkMzEwNWZhZGU0OCIsImNyZWF0ZWQiOjE2NzQ2Mjc0OTEwODYsImluU2FtcGxlIjp0cnVlfQ==; _hjIncludedInPageviewSample=1; _hjAbsoluteSessionInProgress=0; _gid=GA1.2.364610751.1674627491; _dc_gtm_UA-50367135-6=1; _fbp=fb.1.1674627491317.1997195595
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=31536000
content-type: application/javascript
etag: W/"63bc4490-3b67"
expires: Tue, 09 Jan 2024 16:52:26 GMT
last-modified: Mon, 09 Jan 2023 16:45:04 GMT
x-debug-info: eyJyZXRyaWVzIjowfQ==
x-platform-server: i-022f454a7b3fd63c5, i-022f454a7b3fd63c5
traceresponse: 00-1738b227eb95f8bee8d75962b5659d71-df4366040464d70f-00
content-encoding: gzip
accept-ranges: bytes
date: Wed, 25 Jan 2023 06:18:13 GMT
age: 1344347
x-served-by: cache-bfi-kbfi7400108-BFI, cache-bma1626-BMA
x-cache: HIT, HIT
x-cache-hits: 23, 1
strict-transport-security: max-age=31536000
vary: Accept-Encoding
content-length: 4873
X-Firefox-Spdy: h2
www.americanexpressseguros.com/es-mx/seguros/static/pwa/30.5016e634b1359d7d9fad.js
151.101.1.124200 OK 3.1 kB URL HTTP/2 www.americanexpressseguros.com/es-mx/seguros/static/pwa/30.5016e634b1359d7d9fad.js
IP 151.101.1.124:0
File type ASCII text, with very long lines (798)
Hash b35c47f50fd69ccb7b46af9296e4c862
eebacdcf881d33e274a2a575bdc44abbc6718cfe
c367b7fb4651e3c7c0c5a4c84c2c20c73c99e13dab157c8c512a98e122ccd384
Analyzer Verdict Alert openphish American Express
fortinet Phishing
quad9 Sinkholed
GET /es-mx/seguros/static/pwa/30.5016e634b1359d7d9fad.js HTTP/1.1
Host: www.americanexpressseguros.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.americanexpressseguros.com/es-mx/seguros/static/pwa/sw.js
Connection: keep-alive
Cookie: _gcl_au=1.1.782004452.1674627490; private_content_version=7b4cbf57746914521bdfb3464e26b5d1; _ga_X20CXLNMV9=GS1.1.1674627489.1.0.1674627489.60.0.0; _ga=GA1.2.2138569223.1674627490; et_uk=d9131712ba9d477fa2674398e7bfbef8; et_gk=35deae3be7f34b13a4b63768547e8171%7C26.03.2023%2006%3A18%3A11; _hjSessionUser_2640798=eyJpZCI6IjMzMTg4ZDNhLWUxMjAtNTlhNy1hMjBlLWRlYTFlMDIzNWNlMyIsImNyZWF0ZWQiOjE2NzQ2Mjc0OTEwNTMsImV4aXN0aW5nIjpmYWxzZX0=; _hjFirstSeen=1; _hjIncludedInSessionSample=1; _hjSession_2640798=eyJpZCI6IjQxNGJkNzM3LTljNTQtNGIxZi05ZDQwLWRkMzEwNWZhZGU0OCIsImNyZWF0ZWQiOjE2NzQ2Mjc0OTEwODYsImluU2FtcGxlIjp0cnVlfQ==; _hjIncludedInPageviewSample=1; _hjAbsoluteSessionInProgress=0; _gid=GA1.2.364610751.1674627491; _dc_gtm_UA-50367135-6=1; _fbp=fb.1.1674627491317.1997195595
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=31536000
content-type: application/javascript
etag: W/"63c0a993-290f"
expires: Wed, 17 Jan 2024 18:04:57 GMT
last-modified: Fri, 13 Jan 2023 00:45:07 GMT
x-debug-info: eyJyZXRyaWVzIjowfQ==
x-platform-server: i-0eceb7d9e8ebf109e, i-0eceb7d9e8ebf109e
traceresponse: 00-173b2ac197c7810f6a294465427899fe-9d04a15c10c22f51-00
content-encoding: gzip
accept-ranges: bytes
date: Wed, 25 Jan 2023 06:18:13 GMT
age: 648796
x-served-by: cache-bfi-krnt7300050-BFI, cache-bma1626-BMA
x-cache: HIT, HIT
x-cache-hits: 12, 1
strict-transport-security: max-age=31536000
vary: Accept-Encoding
content-length: 3137
X-Firefox-Spdy: h2
www.americanexpressseguros.com/es-mx/seguros/static/pwa/31.e49c82936664266f5b88.js
151.101.1.124200 OK 3.2 kB URL HTTP/2 www.americanexpressseguros.com/es-mx/seguros/static/pwa/31.e49c82936664266f5b88.js
IP 151.101.1.124:0
File type ASCII text, with very long lines (1440)
Hash 4363b9b4e27d7f4d6b7c6c36af33892c
a686e465d5e0aeb5f1e2b83a2981c97b8dd1c499
15450896daedcbbd8f14caff5fbec29dec15231bc503197501d1d46379b329f2
Analyzer Verdict Alert openphish American Express
fortinet Phishing
quad9 Sinkholed
GET /es-mx/seguros/static/pwa/31.e49c82936664266f5b88.js HTTP/1.1
Host: www.americanexpressseguros.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.americanexpressseguros.com/es-mx/seguros/static/pwa/sw.js
Connection: keep-alive
Cookie: _gcl_au=1.1.782004452.1674627490; private_content_version=7b4cbf57746914521bdfb3464e26b5d1; _ga_X20CXLNMV9=GS1.1.1674627489.1.0.1674627489.60.0.0; _ga=GA1.2.2138569223.1674627490; et_uk=d9131712ba9d477fa2674398e7bfbef8; et_gk=35deae3be7f34b13a4b63768547e8171%7C26.03.2023%2006%3A18%3A11; _hjSessionUser_2640798=eyJpZCI6IjMzMTg4ZDNhLWUxMjAtNTlhNy1hMjBlLWRlYTFlMDIzNWNlMyIsImNyZWF0ZWQiOjE2NzQ2Mjc0OTEwNTMsImV4aXN0aW5nIjpmYWxzZX0=; _hjFirstSeen=1; _hjIncludedInSessionSample=1; _hjSession_2640798=eyJpZCI6IjQxNGJkNzM3LTljNTQtNGIxZi05ZDQwLWRkMzEwNWZhZGU0OCIsImNyZWF0ZWQiOjE2NzQ2Mjc0OTEwODYsImluU2FtcGxlIjp0cnVlfQ==; _hjIncludedInPageviewSample=1; _hjAbsoluteSessionInProgress=0; _gid=GA1.2.364610751.1674627491; _dc_gtm_UA-50367135-6=1; _fbp=fb.1.1674627491317.1997195595
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=31536000
content-type: application/javascript
etag: W/"63cf705f-205b"
expires: Wed, 24 Jan 2024 14:19:39 GMT
last-modified: Tue, 24 Jan 2023 05:45:03 GMT
x-debug-info: eyJyZXRyaWVzIjowfQ==
x-platform-server: i-022f454a7b3fd63c5, i-022f454a7b3fd63c5
traceresponse: 00-173d448616b3c8c29659490de051e22e-a0d797332fffceb6-00
content-encoding: gzip
accept-ranges: bytes
date: Wed, 25 Jan 2023 06:18:13 GMT
age: 57515
x-served-by: cache-bfi-kbfi7400116-BFI, cache-bma1626-BMA
x-cache: HIT, HIT
x-cache-hits: 8, 1
strict-transport-security: max-age=31536000
vary: Accept-Encoding
content-length: 3222
X-Firefox-Spdy: h2
www.americanexpressseguros.com/es-mx/seguros/static/pwa/32.93f8ba163fb98c92d8ad.js
151.101.1.124200 OK 4.1 kB URL HTTP/2 www.americanexpressseguros.com/es-mx/seguros/static/pwa/32.93f8ba163fb98c92d8ad.js
IP 151.101.1.124:0
File type Unicode text, UTF-8 text, with very long lines (3119)
Hash 1b4ffbeea53e70712d775e1a7fb8e59b
dda73d20a775daf4238d1d15d997d28eee88b375
9dc4b290042aead41656be3db842dbb41e9b597cdd17047d42e549673ba25b45
Analyzer Verdict Alert openphish American Express
fortinet Phishing
quad9 Sinkholed
GET /es-mx/seguros/static/pwa/32.93f8ba163fb98c92d8ad.js HTTP/1.1
Host: www.americanexpressseguros.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.americanexpressseguros.com/es-mx/seguros/static/pwa/sw.js
Connection: keep-alive
Cookie: _gcl_au=1.1.782004452.1674627490; private_content_version=7b4cbf57746914521bdfb3464e26b5d1; _ga_X20CXLNMV9=GS1.1.1674627489.1.0.1674627489.60.0.0; _ga=GA1.2.2138569223.1674627490; et_uk=d9131712ba9d477fa2674398e7bfbef8; et_gk=35deae3be7f34b13a4b63768547e8171%7C26.03.2023%2006%3A18%3A11; _hjSessionUser_2640798=eyJpZCI6IjMzMTg4ZDNhLWUxMjAtNTlhNy1hMjBlLWRlYTFlMDIzNWNlMyIsImNyZWF0ZWQiOjE2NzQ2Mjc0OTEwNTMsImV4aXN0aW5nIjpmYWxzZX0=; _hjFirstSeen=1; _hjIncludedInSessionSample=1; _hjSession_2640798=eyJpZCI6IjQxNGJkNzM3LTljNTQtNGIxZi05ZDQwLWRkMzEwNWZhZGU0OCIsImNyZWF0ZWQiOjE2NzQ2Mjc0OTEwODYsImluU2FtcGxlIjp0cnVlfQ==; _hjIncludedInPageviewSample=1; _hjAbsoluteSessionInProgress=0; _gid=GA1.2.364610751.1674627491; _dc_gtm_UA-50367135-6=1; _fbp=fb.1.1674627491317.1997195595
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=31536000
content-type: application/javascript
etag: W/"63b331a0-33df"
expires: Sun, 07 Jan 2024 04:39:54 GMT
last-modified: Mon, 02 Jan 2023 19:33:52 GMT
x-debug-info: eyJyZXRyaWVzIjowfQ==
x-platform-server: i-0eceb7d9e8ebf109e, i-0eceb7d9e8ebf109e
traceresponse: 00-1737ed0599d3a0122019f65db98d802e-935e178aed6de628-00
content-encoding: gzip
accept-ranges: bytes
date: Wed, 25 Jan 2023 06:18:13 GMT
age: 1561099
x-served-by: cache-bfi-krnt7300097-BFI, cache-bma1626-BMA
x-cache: HIT, HIT
x-cache-hits: 22, 1
strict-transport-security: max-age=31536000
vary: Accept-Encoding
content-length: 4114
X-Firefox-Spdy: h2
www.americanexpressseguros.com/es-mx/seguros/static/pwa/33.a6e3f84128da0341fe3c.js
151.101.1.124200 OK 2.5 kB URL HTTP/2 www.americanexpressseguros.com/es-mx/seguros/static/pwa/33.a6e3f84128da0341fe3c.js
IP 151.101.1.124:0
File type ASCII text, with very long lines (1030)
Hash 481d9eaf1665ab2ab62c2a54a0f3ca92
eee644333c8018845f0a5192762ec924b58cb8ee
f20226d5f25b3a91173f4f9b3dad2088c83cc6f6ad676cb08f79f263b8cb211c
Analyzer Verdict Alert openphish American Express
fortinet Phishing
quad9 Sinkholed
GET /es-mx/seguros/static/pwa/33.a6e3f84128da0341fe3c.js HTTP/1.1
Host: www.americanexpressseguros.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.americanexpressseguros.com/es-mx/seguros/static/pwa/sw.js
Connection: keep-alive
Cookie: _gcl_au=1.1.782004452.1674627490; private_content_version=7b4cbf57746914521bdfb3464e26b5d1; _ga_X20CXLNMV9=GS1.1.1674627489.1.0.1674627489.60.0.0; _ga=GA1.2.2138569223.1674627490; et_uk=d9131712ba9d477fa2674398e7bfbef8; et_gk=35deae3be7f34b13a4b63768547e8171%7C26.03.2023%2006%3A18%3A11; _hjSessionUser_2640798=eyJpZCI6IjMzMTg4ZDNhLWUxMjAtNTlhNy1hMjBlLWRlYTFlMDIzNWNlMyIsImNyZWF0ZWQiOjE2NzQ2Mjc0OTEwNTMsImV4aXN0aW5nIjpmYWxzZX0=; _hjFirstSeen=1; _hjIncludedInSessionSample=1; _hjSession_2640798=eyJpZCI6IjQxNGJkNzM3LTljNTQtNGIxZi05ZDQwLWRkMzEwNWZhZGU0OCIsImNyZWF0ZWQiOjE2NzQ2Mjc0OTEwODYsImluU2FtcGxlIjp0cnVlfQ==; _hjIncludedInPageviewSample=1; _hjAbsoluteSessionInProgress=0; _gid=GA1.2.364610751.1674627491; _dc_gtm_UA-50367135-6=1; _fbp=fb.1.1674627491317.1997195595
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=31536000
content-type: application/javascript
etag: W/"63c0a993-1630"
expires: Tue, 16 Jan 2024 21:57:09 GMT
last-modified: Fri, 13 Jan 2023 00:45:07 GMT
x-debug-info: eyJyZXRyaWVzIjowfQ==
x-platform-server: i-0129d32895ff95045, i-0129d32895ff95045
traceresponse: 00-173ae8d8eb62aaa7172142639999e583-885dc80179adeb58-00
content-encoding: gzip
accept-ranges: bytes
date: Wed, 25 Jan 2023 06:18:13 GMT
age: 721264
x-served-by: cache-bfi-kbfi7400074-BFI, cache-bma1626-BMA
x-cache: HIT, HIT
x-cache-hits: 12, 1
strict-transport-security: max-age=31536000
vary: Accept-Encoding
content-length: 2514
X-Firefox-Spdy: h2
www.americanexpressseguros.com/es-mx/seguros/static/pwa/34.b6d1f8f16096d10f55e1.js
151.101.1.124200 OK 3.8 kB URL HTTP/2 www.americanexpressseguros.com/es-mx/seguros/static/pwa/34.b6d1f8f16096d10f55e1.js
IP 151.101.1.124:0
File type ASCII text, with very long lines (2663)
Hash 3f008ef11a32e66b58db84ba8c74b1aa
305f4ce50144f963caecceb986491241ef3b8117
d148e1c4fb50f7f4cbfb10362eea2a149e80171a272cf64dae12e8f79d48965d
Analyzer Verdict Alert openphish American Express
fortinet Phishing
quad9 Sinkholed
GET /es-mx/seguros/static/pwa/34.b6d1f8f16096d10f55e1.js HTTP/1.1
Host: www.americanexpressseguros.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.americanexpressseguros.com/es-mx/seguros/static/pwa/sw.js
Connection: keep-alive
Cookie: _gcl_au=1.1.782004452.1674627490; private_content_version=7b4cbf57746914521bdfb3464e26b5d1; _ga_X20CXLNMV9=GS1.1.1674627489.1.0.1674627489.60.0.0; _ga=GA1.2.2138569223.1674627490; et_uk=d9131712ba9d477fa2674398e7bfbef8; et_gk=35deae3be7f34b13a4b63768547e8171%7C26.03.2023%2006%3A18%3A11; _hjSessionUser_2640798=eyJpZCI6IjMzMTg4ZDNhLWUxMjAtNTlhNy1hMjBlLWRlYTFlMDIzNWNlMyIsImNyZWF0ZWQiOjE2NzQ2Mjc0OTEwNTMsImV4aXN0aW5nIjpmYWxzZX0=; _hjFirstSeen=1; _hjIncludedInSessionSample=1; _hjSession_2640798=eyJpZCI6IjQxNGJkNzM3LTljNTQtNGIxZi05ZDQwLWRkMzEwNWZhZGU0OCIsImNyZWF0ZWQiOjE2NzQ2Mjc0OTEwODYsImluU2FtcGxlIjp0cnVlfQ==; _hjIncludedInPageviewSample=1; _hjAbsoluteSessionInProgress=0; _gid=GA1.2.364610751.1674627491; _dc_gtm_UA-50367135-6=1; _fbp=fb.1.1674627491317.1997195595
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=31536000
content-type: application/javascript
etag: W/"63bc4490-2d96"
expires: Tue, 09 Jan 2024 16:52:26 GMT
last-modified: Mon, 09 Jan 2023 16:45:04 GMT
x-debug-info: eyJyZXRyaWVzIjowfQ==
x-platform-server: i-022f454a7b3fd63c5, i-022f454a7b3fd63c5
traceresponse: 00-1738b227fb80d582342405da35d97aec-5e0d6ed2bc6d2402-00
content-encoding: gzip
accept-ranges: bytes
date: Wed, 25 Jan 2023 06:18:13 GMT
age: 1344347
x-served-by: cache-bfi-krnt7300113-BFI, cache-bma1626-BMA
x-cache: HIT, HIT
x-cache-hits: 24, 1
strict-transport-security: max-age=31536000
vary: Accept-Encoding
content-length: 3771
X-Firefox-Spdy: h2
www.americanexpressseguros.com/es-mx/seguros/static/pwa/35.50337367169bcd3b858c.js
151.101.1.124200 OK 2.4 kB URL HTTP/2 www.americanexpressseguros.com/es-mx/seguros/static/pwa/35.50337367169bcd3b858c.js
IP 151.101.1.124:0
File type ASCII text, with very long lines (789)
Hash 059742ac7202eafbfe43c4bf5ec7b040
f16f01f3723122e740c6cccfd495484f43610b99
f48d6a1fe5ec87dcc767c6c0d7583a34e17196c8f904614cf89824cab4652b50
Analyzer Verdict Alert openphish American Express
fortinet Phishing
quad9 Sinkholed
GET /es-mx/seguros/static/pwa/35.50337367169bcd3b858c.js HTTP/1.1
Host: www.americanexpressseguros.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.americanexpressseguros.com/es-mx/seguros/static/pwa/sw.js
Connection: keep-alive
Cookie: _gcl_au=1.1.782004452.1674627490; private_content_version=7b4cbf57746914521bdfb3464e26b5d1; _ga_X20CXLNMV9=GS1.1.1674627489.1.0.1674627489.60.0.0; _ga=GA1.2.2138569223.1674627490; et_uk=d9131712ba9d477fa2674398e7bfbef8; et_gk=35deae3be7f34b13a4b63768547e8171%7C26.03.2023%2006%3A18%3A11; _hjSessionUser_2640798=eyJpZCI6IjMzMTg4ZDNhLWUxMjAtNTlhNy1hMjBlLWRlYTFlMDIzNWNlMyIsImNyZWF0ZWQiOjE2NzQ2Mjc0OTEwNTMsImV4aXN0aW5nIjpmYWxzZX0=; _hjFirstSeen=1; _hjIncludedInSessionSample=1; _hjSession_2640798=eyJpZCI6IjQxNGJkNzM3LTljNTQtNGIxZi05ZDQwLWRkMzEwNWZhZGU0OCIsImNyZWF0ZWQiOjE2NzQ2Mjc0OTEwODYsImluU2FtcGxlIjp0cnVlfQ==; _hjIncludedInPageviewSample=1; _hjAbsoluteSessionInProgress=0; _gid=GA1.2.364610751.1674627491; _dc_gtm_UA-50367135-6=1; _fbp=fb.1.1674627491317.1997195595
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=31536000
content-type: application/javascript
etag: W/"63bc7141-19e9"
expires: Tue, 09 Jan 2024 23:27:53 GMT
last-modified: Mon, 09 Jan 2023 19:55:45 GMT
x-debug-info: eyJyZXRyaWVzIjowfQ==
x-platform-server: i-0129d32895ff95045, i-0129d32895ff95045
traceresponse: 00-1738c7bc80648548fad101da2097612c-0d62a894ac34b723-00
content-encoding: gzip
accept-ranges: bytes
date: Wed, 25 Jan 2023 06:18:13 GMT
age: 1320619
x-served-by: cache-bfi-krnt7300043-BFI, cache-bma1626-BMA
x-cache: HIT, HIT
x-cache-hits: 19, 1
strict-transport-security: max-age=31536000
vary: Accept-Encoding
content-length: 2427
X-Firefox-Spdy: h2
www.americanexpressseguros.com/es-mx/seguros/static/pwa/36.8f95528a78ed25df8dba.js
151.101.1.124200 OK 2.7 kB URL HTTP/2 www.americanexpressseguros.com/es-mx/seguros/static/pwa/36.8f95528a78ed25df8dba.js
IP 151.101.1.124:0
File type ASCII text, with very long lines (2429)
Hash c7cf7dc0e3bf753ebff2d093a6ad46db
4ec95eff9603a438a75c8aeaefa06c8b04fb1ea5
513f8ea23d6e781a787ed44e7c5a62dca07a8536782c8c8a1292fbbd539cc728
Analyzer Verdict Alert openphish American Express
fortinet Phishing
quad9 Sinkholed
GET /es-mx/seguros/static/pwa/36.8f95528a78ed25df8dba.js HTTP/1.1
Host: www.americanexpressseguros.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.americanexpressseguros.com/es-mx/seguros/static/pwa/sw.js
Connection: keep-alive
Cookie: _gcl_au=1.1.782004452.1674627490; private_content_version=7b4cbf57746914521bdfb3464e26b5d1; _ga_X20CXLNMV9=GS1.1.1674627489.1.0.1674627489.60.0.0; _ga=GA1.2.2138569223.1674627490; et_uk=d9131712ba9d477fa2674398e7bfbef8; et_gk=35deae3be7f34b13a4b63768547e8171%7C26.03.2023%2006%3A18%3A11; _hjSessionUser_2640798=eyJpZCI6IjMzMTg4ZDNhLWUxMjAtNTlhNy1hMjBlLWRlYTFlMDIzNWNlMyIsImNyZWF0ZWQiOjE2NzQ2Mjc0OTEwNTMsImV4aXN0aW5nIjpmYWxzZX0=; _hjFirstSeen=1; _hjIncludedInSessionSample=1; _hjSession_2640798=eyJpZCI6IjQxNGJkNzM3LTljNTQtNGIxZi05ZDQwLWRkMzEwNWZhZGU0OCIsImNyZWF0ZWQiOjE2NzQ2Mjc0OTEwODYsImluU2FtcGxlIjp0cnVlfQ==; _hjIncludedInPageviewSample=1; _hjAbsoluteSessionInProgress=0; _gid=GA1.2.364610751.1674627491; _dc_gtm_UA-50367135-6=1; _fbp=fb.1.1674627491317.1997195595
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=31536000
content-type: application/javascript
etag: W/"63bdb089-260d"
expires: Fri, 12 Jan 2024 20:00:56 GMT
last-modified: Tue, 10 Jan 2023 18:38:01 GMT
x-debug-info: eyJyZXRyaWVzIjowfQ==
x-platform-server: i-0129d32895ff95045, i-0129d32895ff95045
traceresponse: 00-1739a82ef0b5f59eedfdba6f3d26da56-7961f058ef1f4d08-00
content-encoding: gzip
accept-ranges: bytes
date: Wed, 25 Jan 2023 06:18:13 GMT
age: 1073838
x-served-by: cache-bfi-kbfi7400023-BFI, cache-bma1626-BMA
x-cache: HIT, HIT
x-cache-hits: 17, 1
strict-transport-security: max-age=31536000
vary: Accept-Encoding
content-length: 2656
X-Firefox-Spdy: h2
www.americanexpressseguros.com/es-mx/seguros/static/pwa/39.19b5c817a61c241c954a.js
151.101.1.124200 OK 826 B URL HTTP/2 www.americanexpressseguros.com/es-mx/seguros/static/pwa/39.19b5c817a61c241c954a.js
IP 151.101.1.124:0
File type ASCII text, with very long lines (715)
Hash ffddd7ec7d3fd4c51479860eab56326c
461244c732753205cd9781b7c210dfdcfd894f50
3bd8753bef7d70a7e931e4c28bddd9cb77f979533136b5295c9f11453e2a4d61
Analyzer Verdict Alert openphish American Express
fortinet Phishing
quad9 Sinkholed
GET /es-mx/seguros/static/pwa/39.19b5c817a61c241c954a.js HTTP/1.1
Host: www.americanexpressseguros.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.americanexpressseguros.com/es-mx/seguros/static/pwa/sw.js
Connection: keep-alive
Cookie: _gcl_au=1.1.782004452.1674627490; private_content_version=7b4cbf57746914521bdfb3464e26b5d1; _ga_X20CXLNMV9=GS1.1.1674627489.1.0.1674627489.60.0.0; _ga=GA1.2.2138569223.1674627490; et_uk=d9131712ba9d477fa2674398e7bfbef8; et_gk=35deae3be7f34b13a4b63768547e8171%7C26.03.2023%2006%3A18%3A11; _hjSessionUser_2640798=eyJpZCI6IjMzMTg4ZDNhLWUxMjAtNTlhNy1hMjBlLWRlYTFlMDIzNWNlMyIsImNyZWF0ZWQiOjE2NzQ2Mjc0OTEwNTMsImV4aXN0aW5nIjpmYWxzZX0=; _hjFirstSeen=1; _hjIncludedInSessionSample=1; _hjSession_2640798=eyJpZCI6IjQxNGJkNzM3LTljNTQtNGIxZi05ZDQwLWRkMzEwNWZhZGU0OCIsImNyZWF0ZWQiOjE2NzQ2Mjc0OTEwODYsImluU2FtcGxlIjp0cnVlfQ==; _hjIncludedInPageviewSample=1; _hjAbsoluteSessionInProgress=0; _gid=GA1.2.364610751.1674627491; _dc_gtm_UA-50367135-6=1; _fbp=fb.1.1674627491317.1997195595
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=31536000
content-type: application/javascript
etag: W/"63c0a993-6cb"
expires: Wed, 17 Jan 2024 18:04:58 GMT
last-modified: Fri, 13 Jan 2023 00:45:07 GMT
x-debug-info: eyJyZXRyaWVzIjowfQ==
x-platform-server: i-022f454a7b3fd63c5, i-022f454a7b3fd63c5
traceresponse: 00-173b2ac1d0d17513a781a925a4a67378-0e349addfefdacda-00
content-encoding: gzip
accept-ranges: bytes
date: Wed, 25 Jan 2023 06:18:14 GMT
age: 648796
x-served-by: cache-bfi-kbfi7400062-BFI, cache-bma1626-BMA
x-cache: HIT, HIT
x-cache-hits: 10, 1
strict-transport-security: max-age=31536000
vary: Accept-Encoding
content-length: 826
X-Firefox-Spdy: h2
www.americanexpressseguros.com/es-mx/seguros/static/pwa/4.c3fe839deb5bfcc504db.js
151.101.1.124200 OK 6.1 kB URL HTTP/2 www.americanexpressseguros.com/es-mx/seguros/static/pwa/4.c3fe839deb5bfcc504db.js
IP 151.101.1.124:0
File type ASCII text, with very long lines (3775)
Hash f59797ba8e658b61c5f1593432642286
008f5e62d5aceb2ab8b729a4a2175a1326b0832f
94af38a314d55c96f9729465b5030a7b9c6e436947cdee4a2fd451a9c32414d9
Analyzer Verdict Alert openphish American Express
fortinet Phishing
quad9 Sinkholed
GET /es-mx/seguros/static/pwa/4.c3fe839deb5bfcc504db.js HTTP/1.1
Host: www.americanexpressseguros.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.americanexpressseguros.com/es-mx/seguros/static/pwa/sw.js
Connection: keep-alive
Cookie: _gcl_au=1.1.782004452.1674627490; private_content_version=7b4cbf57746914521bdfb3464e26b5d1; _ga_X20CXLNMV9=GS1.1.1674627489.1.0.1674627489.60.0.0; _ga=GA1.2.2138569223.1674627490; et_uk=d9131712ba9d477fa2674398e7bfbef8; et_gk=35deae3be7f34b13a4b63768547e8171%7C26.03.2023%2006%3A18%3A11; _hjSessionUser_2640798=eyJpZCI6IjMzMTg4ZDNhLWUxMjAtNTlhNy1hMjBlLWRlYTFlMDIzNWNlMyIsImNyZWF0ZWQiOjE2NzQ2Mjc0OTEwNTMsImV4aXN0aW5nIjpmYWxzZX0=; _hjFirstSeen=1; _hjIncludedInSessionSample=1; _hjSession_2640798=eyJpZCI6IjQxNGJkNzM3LTljNTQtNGIxZi05ZDQwLWRkMzEwNWZhZGU0OCIsImNyZWF0ZWQiOjE2NzQ2Mjc0OTEwODYsImluU2FtcGxlIjp0cnVlfQ==; _hjIncludedInPageviewSample=1; _hjAbsoluteSessionInProgress=0; _gid=GA1.2.364610751.1674627491; _dc_gtm_UA-50367135-6=1; _fbp=fb.1.1674627491317.1997195595
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=31536000
content-type: application/javascript
etag: W/"63bc4490-4e49"
expires: Tue, 09 Jan 2024 16:52:26 GMT
last-modified: Mon, 09 Jan 2023 16:45:04 GMT
x-debug-info: eyJyZXRyaWVzIjowfQ==
x-platform-server: i-0eceb7d9e8ebf109e, i-0eceb7d9e8ebf109e
traceresponse: 00-1738b228114aa0d3370e9035aef07054-1a369d3bda879e8c-00
content-encoding: gzip
accept-ranges: bytes
date: Wed, 25 Jan 2023 06:18:14 GMT
age: 1344347
x-served-by: cache-bfi-krnt7300057-BFI, cache-bma1626-BMA
x-cache: HIT, HIT
x-cache-hits: 24, 1
strict-transport-security: max-age=31536000
vary: Accept-Encoding
content-length: 6050
X-Firefox-Spdy: h2
www.americanexpressseguros.com/es-mx/seguros/static/pwa/40.dcd8c7abe4fa46c1cb92.js
151.101.1.124200 OK 808 B URL HTTP/2 www.americanexpressseguros.com/es-mx/seguros/static/pwa/40.dcd8c7abe4fa46c1cb92.js
IP 151.101.1.124:0
File type ASCII text, with very long lines (707)
Hash b2f3f715e4ccafa60f8647f0a1edfa91
d36d5367ad29621403cb356667438fa8dbd1d1fe
c510a67b9fce419dfef7c5399f4a87761bebcc2517aa0382f2c345c5c06f2544
Analyzer Verdict Alert openphish American Express
fortinet Phishing
quad9 Sinkholed
GET /es-mx/seguros/static/pwa/40.dcd8c7abe4fa46c1cb92.js HTTP/1.1
Host: www.americanexpressseguros.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.americanexpressseguros.com/es-mx/seguros/static/pwa/sw.js
Connection: keep-alive
Cookie: _gcl_au=1.1.782004452.1674627490; private_content_version=7b4cbf57746914521bdfb3464e26b5d1; _ga_X20CXLNMV9=GS1.1.1674627489.1.0.1674627489.60.0.0; _ga=GA1.2.2138569223.1674627490; et_uk=d9131712ba9d477fa2674398e7bfbef8; et_gk=35deae3be7f34b13a4b63768547e8171%7C26.03.2023%2006%3A18%3A11; _hjSessionUser_2640798=eyJpZCI6IjMzMTg4ZDNhLWUxMjAtNTlhNy1hMjBlLWRlYTFlMDIzNWNlMyIsImNyZWF0ZWQiOjE2NzQ2Mjc0OTEwNTMsImV4aXN0aW5nIjpmYWxzZX0=; _hjFirstSeen=1; _hjIncludedInSessionSample=1; _hjSession_2640798=eyJpZCI6IjQxNGJkNzM3LTljNTQtNGIxZi05ZDQwLWRkMzEwNWZhZGU0OCIsImNyZWF0ZWQiOjE2NzQ2Mjc0OTEwODYsImluU2FtcGxlIjp0cnVlfQ==; _hjIncludedInPageviewSample=1; _hjAbsoluteSessionInProgress=0; _gid=GA1.2.364610751.1674627491; _dc_gtm_UA-50367135-6=1; _fbp=fb.1.1674627491317.1997195595
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=31536000
content-type: application/javascript
etag: W/"63bc7141-646"
expires: Tue, 09 Jan 2024 23:27:57 GMT
last-modified: Mon, 09 Jan 2023 19:55:45 GMT
x-debug-info: eyJyZXRyaWVzIjowfQ==
x-platform-server: i-0eceb7d9e8ebf109e, i-0eceb7d9e8ebf109e
traceresponse: 00-1738c7bd4f4212bb48c9287471f1a88e-c3755a0ad7c4b30b-00
content-encoding: gzip
accept-ranges: bytes
date: Wed, 25 Jan 2023 06:18:14 GMT
age: 1320617
x-served-by: cache-bfi-krnt7300083-BFI, cache-bma1626-BMA
x-cache: HIT, HIT
x-cache-hits: 17, 1
strict-transport-security: max-age=31536000
vary: Accept-Encoding
content-length: 808
X-Firefox-Spdy: h2
www.americanexpressseguros.com/es-mx/seguros/static/pwa/41.d2e11a6375c6c1aba9ad.js
151.101.1.124200 OK 2.5 kB URL HTTP/2 www.americanexpressseguros.com/es-mx/seguros/static/pwa/41.d2e11a6375c6c1aba9ad.js
IP 151.101.1.124:0
File type ASCII text, with very long lines (5788)
Hash a4cf061637d62fb5466704f8a3a3d8c3
d188fcebb951c73d2f4da32f602cba635551e870
7412c28809d1cbe80754f3aa28fe433025c73a07c6d5ddf0c2da0f8d6b9a8730
Analyzer Verdict Alert openphish American Express
fortinet Phishing
quad9 Sinkholed
GET /es-mx/seguros/static/pwa/41.d2e11a6375c6c1aba9ad.js HTTP/1.1
Host: www.americanexpressseguros.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.americanexpressseguros.com/es-mx/seguros/static/pwa/sw.js
Connection: keep-alive
Cookie: _gcl_au=1.1.782004452.1674627490; private_content_version=7b4cbf57746914521bdfb3464e26b5d1; _ga_X20CXLNMV9=GS1.1.1674627489.1.0.1674627489.60.0.0; _ga=GA1.2.2138569223.1674627490; et_uk=d9131712ba9d477fa2674398e7bfbef8; et_gk=35deae3be7f34b13a4b63768547e8171%7C26.03.2023%2006%3A18%3A11; _hjSessionUser_2640798=eyJpZCI6IjMzMTg4ZDNhLWUxMjAtNTlhNy1hMjBlLWRlYTFlMDIzNWNlMyIsImNyZWF0ZWQiOjE2NzQ2Mjc0OTEwNTMsImV4aXN0aW5nIjpmYWxzZX0=; _hjFirstSeen=1; _hjIncludedInSessionSample=1; _hjSession_2640798=eyJpZCI6IjQxNGJkNzM3LTljNTQtNGIxZi05ZDQwLWRkMzEwNWZhZGU0OCIsImNyZWF0ZWQiOjE2NzQ2Mjc0OTEwODYsImluU2FtcGxlIjp0cnVlfQ==; _hjIncludedInPageviewSample=1; _hjAbsoluteSessionInProgress=0; _gid=GA1.2.364610751.1674627491; _dc_gtm_UA-50367135-6=1; _fbp=fb.1.1674627491317.1997195595
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=31536000
content-type: application/javascript
etag: W/"6372f281-1fea"
expires: Wed, 15 Nov 2023 15:39:40 GMT
last-modified: Tue, 15 Nov 2022 01:59:29 GMT
x-debug-info: eyJyZXRyaWVzIjowfQ==
x-platform-server: i-0129d32895ff95045, i-0129d32895ff95045
x-request-id: 00-1727cc442c5aefb112b558bb31ed2752-698ba988ddf63095-00
content-encoding: gzip
accept-ranges: bytes
date: Wed, 25 Jan 2023 06:18:14 GMT
age: 6100713
x-served-by: cache-bfi-kbfi7400097-BFI, cache-bma1626-BMA
x-cache: HIT, HIT
x-cache-hits: 19, 1
strict-transport-security: max-age=31536000
vary: Accept-Encoding
content-length: 2536
X-Firefox-Spdy: h2
www.americanexpressseguros.com/es-mx/seguros/static/pwa/44.6d22519f9041f803c36f.js
151.101.1.124200 OK 1.3 kB URL HTTP/2 www.americanexpressseguros.com/es-mx/seguros/static/pwa/44.6d22519f9041f803c36f.js
IP 151.101.1.124:0
File type ASCII text, with very long lines (1039)
Hash 7ddf2ef07b1bf17948b40cdc12a2f7cc
95941097f87d588c5828d8cb3b362a9898af3c26
8bc3f6d92cfe33c2ff084383e67d5d0706fb84c5f45aca10c42805f66964578e
Analyzer Verdict Alert openphish American Express
fortinet Phishing
quad9 Sinkholed
GET /es-mx/seguros/static/pwa/44.6d22519f9041f803c36f.js HTTP/1.1
Host: www.americanexpressseguros.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.americanexpressseguros.com/es-mx/seguros/static/pwa/sw.js
Connection: keep-alive
Cookie: _gcl_au=1.1.782004452.1674627490; private_content_version=7b4cbf57746914521bdfb3464e26b5d1; _ga_X20CXLNMV9=GS1.1.1674627489.1.0.1674627489.60.0.0; _ga=GA1.2.2138569223.1674627490; et_uk=d9131712ba9d477fa2674398e7bfbef8; et_gk=35deae3be7f34b13a4b63768547e8171%7C26.03.2023%2006%3A18%3A11; _hjSessionUser_2640798=eyJpZCI6IjMzMTg4ZDNhLWUxMjAtNTlhNy1hMjBlLWRlYTFlMDIzNWNlMyIsImNyZWF0ZWQiOjE2NzQ2Mjc0OTEwNTMsImV4aXN0aW5nIjpmYWxzZX0=; _hjFirstSeen=1; _hjIncludedInSessionSample=1; _hjSession_2640798=eyJpZCI6IjQxNGJkNzM3LTljNTQtNGIxZi05ZDQwLWRkMzEwNWZhZGU0OCIsImNyZWF0ZWQiOjE2NzQ2Mjc0OTEwODYsImluU2FtcGxlIjp0cnVlfQ==; _hjIncludedInPageviewSample=1; _hjAbsoluteSessionInProgress=0; _gid=GA1.2.364610751.1674627491; _dc_gtm_UA-50367135-6=1; _fbp=fb.1.1674627491317.1997195595
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=31536000
content-type: application/javascript
etag: W/"63c0a993-b78"
expires: Tue, 16 Jan 2024 22:15:25 GMT
last-modified: Fri, 13 Jan 2023 00:45:07 GMT
x-debug-info: eyJyZXRyaWVzIjowfQ==
x-platform-server: i-0eceb7d9e8ebf109e, i-0eceb7d9e8ebf109e
traceresponse: 00-173ae9d7fea7e8b1949bc175005c2b4c-b8797b21349aa82f-00
content-encoding: gzip
accept-ranges: bytes
date: Wed, 25 Jan 2023 06:18:14 GMT
age: 720169
x-served-by: cache-bfi-kbfi7400022-BFI, cache-bma1626-BMA
x-cache: HIT, MISS
x-cache-hits: 15, 0
strict-transport-security: max-age=31536000
vary: Accept-Encoding
content-length: 1333
X-Firefox-Spdy: h2
www.americanexpressseguros.com/es-mx/seguros/static/pwa/45.5c782d33010a4f5f6d28.js
151.101.1.124200 OK 2.9 kB URL HTTP/2 www.americanexpressseguros.com/es-mx/seguros/static/pwa/45.5c782d33010a4f5f6d28.js
IP 151.101.1.124:0
File type ASCII text, with very long lines (2656)
Hash 7337805e6e7ff8e10f6daa5e4d836ab0
d3d710e805be50d5cecce59d83dfa799c7d9c429
a2334c23ff4fc237544df7b56e2d26ae01e1d94c9751fcc7fe6ea7f707c37f2e
Analyzer Verdict Alert openphish American Express
fortinet Phishing
quad9 Sinkholed
GET /es-mx/seguros/static/pwa/45.5c782d33010a4f5f6d28.js HTTP/1.1
Host: www.americanexpressseguros.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.americanexpressseguros.com/es-mx/seguros/static/pwa/sw.js
Connection: keep-alive
Cookie: _gcl_au=1.1.782004452.1674627490; private_content_version=7b4cbf57746914521bdfb3464e26b5d1; _ga_X20CXLNMV9=GS1.1.1674627489.1.0.1674627489.60.0.0; _ga=GA1.2.2138569223.1674627490; et_uk=d9131712ba9d477fa2674398e7bfbef8; et_gk=35deae3be7f34b13a4b63768547e8171%7C26.03.2023%2006%3A18%3A11; _hjSessionUser_2640798=eyJpZCI6IjMzMTg4ZDNhLWUxMjAtNTlhNy1hMjBlLWRlYTFlMDIzNWNlMyIsImNyZWF0ZWQiOjE2NzQ2Mjc0OTEwNTMsImV4aXN0aW5nIjpmYWxzZX0=; _hjFirstSeen=1; _hjIncludedInSessionSample=1; _hjSession_2640798=eyJpZCI6IjQxNGJkNzM3LTljNTQtNGIxZi05ZDQwLWRkMzEwNWZhZGU0OCIsImNyZWF0ZWQiOjE2NzQ2Mjc0OTEwODYsImluU2FtcGxlIjp0cnVlfQ==; _hjIncludedInPageviewSample=1; _hjAbsoluteSessionInProgress=0; _gid=GA1.2.364610751.1674627491; _dc_gtm_UA-50367135-6=1; _fbp=fb.1.1674627491317.1997195595
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=31536000
content-type: application/javascript
etag: W/"6372f281-22e4"
expires: Wed, 15 Nov 2023 15:39:40 GMT
last-modified: Tue, 15 Nov 2022 01:59:29 GMT
x-debug-info: eyJyZXRyaWVzIjowfQ==
x-platform-server: i-0eceb7d9e8ebf109e, i-0eceb7d9e8ebf109e
x-request-id: 00-1727cc44463fc35960174f22e7f1b693-97408006168e4337-00
content-encoding: gzip
accept-ranges: bytes
date: Wed, 25 Jan 2023 06:18:14 GMT
age: 6100713
x-served-by: cache-bfi-krnt7300068-BFI, cache-bma1626-BMA
x-cache: HIT, MISS
x-cache-hits: 49, 0
strict-transport-security: max-age=31536000
vary: Accept-Encoding
content-length: 2914
X-Firefox-Spdy: h2
www.americanexpressseguros.com/es-mx/seguros/static/pwa/46.f588af8b4e3ff78ca268.js
151.101.1.124200 OK 1.4 kB URL HTTP/2 www.americanexpressseguros.com/es-mx/seguros/static/pwa/46.f588af8b4e3ff78ca268.js
IP 151.101.1.124:0
File type ASCII text, with very long lines (709)
Hash f7201b9ad15d4d7e889a27a918c74c55
f4346d4edef074fe5b87f938fc8f75a2f96c3432
2bf217f3fb0a9b24aeac62eaff95767789dd9071159b7e0d7c585f83a3a50986
Analyzer Verdict Alert openphish American Express
fortinet Phishing
quad9 Sinkholed
GET /es-mx/seguros/static/pwa/46.f588af8b4e3ff78ca268.js HTTP/1.1
Host: www.americanexpressseguros.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.americanexpressseguros.com/es-mx/seguros/static/pwa/sw.js
Connection: keep-alive
Cookie: _gcl_au=1.1.782004452.1674627490; private_content_version=7b4cbf57746914521bdfb3464e26b5d1; _ga_X20CXLNMV9=GS1.1.1674627489.1.0.1674627489.60.0.0; _ga=GA1.2.2138569223.1674627490; et_uk=d9131712ba9d477fa2674398e7bfbef8; et_gk=35deae3be7f34b13a4b63768547e8171%7C26.03.2023%2006%3A18%3A11; _hjSessionUser_2640798=eyJpZCI6IjMzMTg4ZDNhLWUxMjAtNTlhNy1hMjBlLWRlYTFlMDIzNWNlMyIsImNyZWF0ZWQiOjE2NzQ2Mjc0OTEwNTMsImV4aXN0aW5nIjpmYWxzZX0=; _hjFirstSeen=1; _hjIncludedInSessionSample=1; _hjSession_2640798=eyJpZCI6IjQxNGJkNzM3LTljNTQtNGIxZi05ZDQwLWRkMzEwNWZhZGU0OCIsImNyZWF0ZWQiOjE2NzQ2Mjc0OTEwODYsImluU2FtcGxlIjp0cnVlfQ==; _hjIncludedInPageviewSample=1; _hjAbsoluteSessionInProgress=0; _gid=GA1.2.364610751.1674627491; _dc_gtm_UA-50367135-6=1; _fbp=fb.1.1674627491317.1997195595
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=31536000
content-type: application/javascript
etag: W/"638940a1-ce4"
expires: Thu, 07 Dec 2023 03:22:38 GMT
last-modified: Fri, 02 Dec 2022 00:02:41 GMT
x-debug-info: eyJyZXRyaWVzIjowfQ==
x-platform-server: i-0129d32895ff95045, i-0129d32895ff95045
traceresponse: 00-172e64d08fb5a4eb163afdd5e5a5279c-d5abf2126cef055a-00
content-encoding: gzip
accept-ranges: bytes
date: Wed, 25 Jan 2023 06:18:14 GMT
age: 4244136
x-served-by: cache-bfi-kbfi7400040-BFI, cache-bma1626-BMA
x-cache: HIT, HIT
x-cache-hits: 39, 1
strict-transport-security: max-age=31536000
vary: Accept-Encoding
content-length: 1407
X-Firefox-Spdy: h2
www.americanexpressseguros.com/es-mx/seguros/static/pwa/47.840ffb349f0e07e1485a.js
151.101.1.124200 OK 1.5 kB URL HTTP/2 www.americanexpressseguros.com/es-mx/seguros/static/pwa/47.840ffb349f0e07e1485a.js
IP 151.101.1.124:0
File type ASCII text, with very long lines (1042)
Hash 3301748973c62f0a0650aca4edfdfe40
92124f176e0f77289f85efb8beea95179e73074b
df2188312e516d6359d33c2367c7458ab66715f2c24b3250270ad42bd279d5cc
Analyzer Verdict Alert openphish American Express
fortinet Phishing
quad9 Sinkholed
GET /es-mx/seguros/static/pwa/47.840ffb349f0e07e1485a.js HTTP/1.1
Host: www.americanexpressseguros.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.americanexpressseguros.com/es-mx/seguros/static/pwa/sw.js
Connection: keep-alive
Cookie: _gcl_au=1.1.782004452.1674627490; private_content_version=7b4cbf57746914521bdfb3464e26b5d1; _ga_X20CXLNMV9=GS1.1.1674627489.1.0.1674627489.60.0.0; _ga=GA1.2.2138569223.1674627490; et_uk=d9131712ba9d477fa2674398e7bfbef8; et_gk=35deae3be7f34b13a4b63768547e8171%7C26.03.2023%2006%3A18%3A11; _hjSessionUser_2640798=eyJpZCI6IjMzMTg4ZDNhLWUxMjAtNTlhNy1hMjBlLWRlYTFlMDIzNWNlMyIsImNyZWF0ZWQiOjE2NzQ2Mjc0OTEwNTMsImV4aXN0aW5nIjpmYWxzZX0=; _hjFirstSeen=1; _hjIncludedInSessionSample=1; _hjSession_2640798=eyJpZCI6IjQxNGJkNzM3LTljNTQtNGIxZi05ZDQwLWRkMzEwNWZhZGU0OCIsImNyZWF0ZWQiOjE2NzQ2Mjc0OTEwODYsImluU2FtcGxlIjp0cnVlfQ==; _hjIncludedInPageviewSample=1; _hjAbsoluteSessionInProgress=0; _gid=GA1.2.364610751.1674627491; _dc_gtm_UA-50367135-6=1; _fbp=fb.1.1674627491317.1997195595
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=31536000
content-type: application/javascript
etag: W/"63c0a993-e10"
expires: Wed, 17 Jan 2024 18:04:59 GMT
last-modified: Fri, 13 Jan 2023 00:45:07 GMT
x-debug-info: eyJyZXRyaWVzIjowfQ==
x-platform-server: i-0129d32895ff95045, i-0129d32895ff95045
traceresponse: 00-173b2ac1ff523fed8b0e8df1f95f0834-137efcba975c8b4f-00
content-encoding: gzip
accept-ranges: bytes
date: Wed, 25 Jan 2023 06:18:14 GMT
age: 648795
x-served-by: cache-bfi-kbfi7400102-BFI, cache-bma1626-BMA
x-cache: HIT, HIT
x-cache-hits: 12, 1
strict-transport-security: max-age=31536000
vary: Accept-Encoding
content-length: 1490
X-Firefox-Spdy: h2
www.americanexpressseguros.com/es-mx/seguros/static/pwa/48.e6680f256a21f917018f.js
151.101.1.124200 OK 1.2 kB URL HTTP/2 www.americanexpressseguros.com/es-mx/seguros/static/pwa/48.e6680f256a21f917018f.js
IP 151.101.1.124:0
File type ASCII text, with very long lines (643)
Hash 9abf92a50def1d3dae6f21873940085f
e002c3c5a78284c6100d093c84986fc77d93094b
af1a0310321884af2b04237397296bd1dcf141958a03baa58fbb3973e4ce596c
Analyzer Verdict Alert openphish American Express
fortinet Phishing
quad9 Sinkholed
GET /es-mx/seguros/static/pwa/48.e6680f256a21f917018f.js HTTP/1.1
Host: www.americanexpressseguros.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.americanexpressseguros.com/es-mx/seguros/static/pwa/sw.js
Connection: keep-alive
Cookie: _gcl_au=1.1.782004452.1674627490; private_content_version=7b4cbf57746914521bdfb3464e26b5d1; _ga_X20CXLNMV9=GS1.1.1674627489.1.0.1674627489.60.0.0; _ga=GA1.2.2138569223.1674627490; et_uk=d9131712ba9d477fa2674398e7bfbef8; et_gk=35deae3be7f34b13a4b63768547e8171%7C26.03.2023%2006%3A18%3A11; _hjSessionUser_2640798=eyJpZCI6IjMzMTg4ZDNhLWUxMjAtNTlhNy1hMjBlLWRlYTFlMDIzNWNlMyIsImNyZWF0ZWQiOjE2NzQ2Mjc0OTEwNTMsImV4aXN0aW5nIjpmYWxzZX0=; _hjFirstSeen=1; _hjIncludedInSessionSample=1; _hjSession_2640798=eyJpZCI6IjQxNGJkNzM3LTljNTQtNGIxZi05ZDQwLWRkMzEwNWZhZGU0OCIsImNyZWF0ZWQiOjE2NzQ2Mjc0OTEwODYsImluU2FtcGxlIjp0cnVlfQ==; _hjIncludedInPageviewSample=1; _hjAbsoluteSessionInProgress=0; _gid=GA1.2.364610751.1674627491; _dc_gtm_UA-50367135-6=1; _fbp=fb.1.1674627491317.1997195595
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=31536000
content-type: application/javascript
etag: W/"63cf705f-9bb"
expires: Wed, 24 Jan 2024 20:07:02 GMT
last-modified: Tue, 24 Jan 2023 05:45:03 GMT
x-debug-info: eyJyZXRyaWVzIjowfQ==
x-platform-server: i-0129d32895ff95045, i-0129d32895ff95045
traceresponse: 00-173d577b03129f0d2aa672707aa56846-8725b8ea12a3f9f9-00
content-encoding: gzip
accept-ranges: bytes
date: Wed, 25 Jan 2023 06:18:14 GMT
age: 36672
x-served-by: cache-bfi-krnt7300028-BFI, cache-bma1626-BMA
x-cache: HIT, HIT
x-cache-hits: 9, 1
strict-transport-security: max-age=31536000
vary: Accept-Encoding
content-length: 1153
X-Firefox-Spdy: h2
www.americanexpressseguros.com/es-mx/seguros/static/pwa/49.2cf7438cd8120d4ae4a2.js
151.101.1.124200 OK 86 kB URL HTTP/2 www.americanexpressseguros.com/es-mx/seguros/static/pwa/49.2cf7438cd8120d4ae4a2.js
IP 151.101.1.124:0
File type ASCII text, with very long lines (2192)
Hash 06f877ba683bdd8ab7972a20cd66e55f
1a70b815325e11c26d4da46fcaaa4de0748fd0e3
a1e05f266eb8b82a57afe60f064d3f87f10065d2728374d861b122657544dbba
Analyzer Verdict Alert openphish American Express
fortinet Phishing
quad9 Sinkholed
GET /es-mx/seguros/static/pwa/49.2cf7438cd8120d4ae4a2.js HTTP/1.1
Host: www.americanexpressseguros.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.americanexpressseguros.com/es-mx/seguros/static/pwa/sw.js
Connection: keep-alive
Cookie: _gcl_au=1.1.782004452.1674627490; private_content_version=7b4cbf57746914521bdfb3464e26b5d1; _ga_X20CXLNMV9=GS1.1.1674627489.1.0.1674627489.60.0.0; _ga=GA1.2.2138569223.1674627490; et_uk=d9131712ba9d477fa2674398e7bfbef8; et_gk=35deae3be7f34b13a4b63768547e8171%7C26.03.2023%2006%3A18%3A11; _hjSessionUser_2640798=eyJpZCI6IjMzMTg4ZDNhLWUxMjAtNTlhNy1hMjBlLWRlYTFlMDIzNWNlMyIsImNyZWF0ZWQiOjE2NzQ2Mjc0OTEwNTMsImV4aXN0aW5nIjpmYWxzZX0=; _hjFirstSeen=1; _hjIncludedInSessionSample=1; _hjSession_2640798=eyJpZCI6IjQxNGJkNzM3LTljNTQtNGIxZi05ZDQwLWRkMzEwNWZhZGU0OCIsImNyZWF0ZWQiOjE2NzQ2Mjc0OTEwODYsImluU2FtcGxlIjp0cnVlfQ==; _hjIncludedInPageviewSample=1; _hjAbsoluteSessionInProgress=0; _gid=GA1.2.364610751.1674627491; _dc_gtm_UA-50367135-6=1; _fbp=fb.1.1674627491317.1997195595
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=31536000
content-type: application/javascript
etag: W/"63c0a993-5496d"
expires: Wed, 17 Jan 2024 18:04:59 GMT
last-modified: Fri, 13 Jan 2023 00:45:07 GMT
x-debug-info: eyJyZXRyaWVzIjowfQ==
x-platform-server: i-0eceb7d9e8ebf109e, i-0eceb7d9e8ebf109e
traceresponse: 00-173b2ac2149ef835fb21a81ed7d8f742-ee361e297047ea50-00
content-encoding: gzip
accept-ranges: bytes
date: Wed, 25 Jan 2023 06:18:14 GMT
age: 648795
x-served-by: cache-bfi-krnt7300102-BFI, cache-bma1626-BMA
x-cache: HIT, HIT
x-cache-hits: 11, 1
strict-transport-security: max-age=31536000
vary: Accept-Encoding
content-length: 86533
X-Firefox-Spdy: h2
www.americanexpressseguros.com/es-mx/seguros/static/pwa/50.d160c58038f2fe4def7e.js
151.101.1.124200 OK 542 B URL HTTP/2 www.americanexpressseguros.com/es-mx/seguros/static/pwa/50.d160c58038f2fe4def7e.js
IP 151.101.1.124:0
File type ASCII text, with very long lines (503)
Hash 017d0a2b53b95968298b287674f34bc6
6ea1e66ce3f2a3b124f62481eaf94d63b7f23622
8adf09e882b0143ad1f254c2a72870f4a6247956a20d3edd387849c8041521ff
Analyzer Verdict Alert openphish American Express
fortinet Phishing
quad9 Sinkholed
GET /es-mx/seguros/static/pwa/50.d160c58038f2fe4def7e.js HTTP/1.1
Host: www.americanexpressseguros.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.americanexpressseguros.com/es-mx/seguros/static/pwa/sw.js
Connection: keep-alive
Cookie: _gcl_au=1.1.782004452.1674627490; private_content_version=7b4cbf57746914521bdfb3464e26b5d1; _ga_X20CXLNMV9=GS1.1.1674627489.1.0.1674627489.60.0.0; _ga=GA1.2.2138569223.1674627490; et_uk=d9131712ba9d477fa2674398e7bfbef8; et_gk=35deae3be7f34b13a4b63768547e8171%7C26.03.2023%2006%3A18%3A11; _hjSessionUser_2640798=eyJpZCI6IjMzMTg4ZDNhLWUxMjAtNTlhNy1hMjBlLWRlYTFlMDIzNWNlMyIsImNyZWF0ZWQiOjE2NzQ2Mjc0OTEwNTMsImV4aXN0aW5nIjpmYWxzZX0=; _hjFirstSeen=1; _hjIncludedInSessionSample=1; _hjSession_2640798=eyJpZCI6IjQxNGJkNzM3LTljNTQtNGIxZi05ZDQwLWRkMzEwNWZhZGU0OCIsImNyZWF0ZWQiOjE2NzQ2Mjc0OTEwODYsImluU2FtcGxlIjp0cnVlfQ==; _hjIncludedInPageviewSample=1; _hjAbsoluteSessionInProgress=0; _gid=GA1.2.364610751.1674627491; _dc_gtm_UA-50367135-6=1; _fbp=fb.1.1674627491317.1997195595
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=31536000
content-type: application/javascript
etag: W/"63b331a0-456"
expires: Sun, 07 Jan 2024 04:39:56 GMT
last-modified: Mon, 02 Jan 2023 19:33:52 GMT
x-debug-info: eyJyZXRyaWVzIjowfQ==
x-platform-server: i-0129d32895ff95045, i-0129d32895ff95045
traceresponse: 00-1737ed05e4c70b43484a3d2b8633d46c-544d626699d1affe-00
content-encoding: gzip
accept-ranges: bytes
date: Wed, 25 Jan 2023 06:18:14 GMT
age: 1561098
x-served-by: cache-bfi-krnt7300033-BFI, cache-bma1626-BMA
x-cache: HIT, HIT
x-cache-hits: 24, 1
strict-transport-security: max-age=31536000
vary: Accept-Encoding
content-length: 542
X-Firefox-Spdy: h2
www.americanexpressseguros.com/es-mx/seguros/static/pwa/51.f233af65a1cf9e7fede4.js
151.101.1.124200 OK 178 B URL HTTP/2 www.americanexpressseguros.com/es-mx/seguros/static/pwa/51.f233af65a1cf9e7fede4.js
IP 151.101.1.124:0
Hash f3326708a5aebc31a3291b67af8657b2
6ebf899ff6d3af81ae1dcf0427a04dde5f02d857
45ff97c78853cf9bc80b8ea50c6bbb0c886d18809db279b2fa960bec865fe9f5
Analyzer Verdict Alert openphish American Express
fortinet Phishing
quad9 Sinkholed
GET /es-mx/seguros/static/pwa/51.f233af65a1cf9e7fede4.js HTTP/1.1
Host: www.americanexpressseguros.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.americanexpressseguros.com/es-mx/seguros/static/pwa/sw.js
Connection: keep-alive
Cookie: _gcl_au=1.1.782004452.1674627490; private_content_version=7b4cbf57746914521bdfb3464e26b5d1; _ga_X20CXLNMV9=GS1.1.1674627489.1.0.1674627489.60.0.0; _ga=GA1.2.2138569223.1674627490; et_uk=d9131712ba9d477fa2674398e7bfbef8; et_gk=35deae3be7f34b13a4b63768547e8171%7C26.03.2023%2006%3A18%3A11; _hjSessionUser_2640798=eyJpZCI6IjMzMTg4ZDNhLWUxMjAtNTlhNy1hMjBlLWRlYTFlMDIzNWNlMyIsImNyZWF0ZWQiOjE2NzQ2Mjc0OTEwNTMsImV4aXN0aW5nIjpmYWxzZX0=; _hjFirstSeen=1; _hjIncludedInSessionSample=1; _hjSession_2640798=eyJpZCI6IjQxNGJkNzM3LTljNTQtNGIxZi05ZDQwLWRkMzEwNWZhZGU0OCIsImNyZWF0ZWQiOjE2NzQ2Mjc0OTEwODYsImluU2FtcGxlIjp0cnVlfQ==; _hjIncludedInPageviewSample=1; _hjAbsoluteSessionInProgress=0; _gid=GA1.2.364610751.1674627491; _dc_gtm_UA-50367135-6=1; _fbp=fb.1.1674627491317.1997195595
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=31536000
content-type: application/javascript
etag: W/"63b331a0-c6"
expires: Sun, 07 Jan 2024 04:39:56 GMT
last-modified: Mon, 02 Jan 2023 19:33:52 GMT
x-debug-info: eyJyZXRyaWVzIjowfQ==
x-platform-server: i-0eceb7d9e8ebf109e, i-0eceb7d9e8ebf109e
traceresponse: 00-1737ed05ea328a070c45ec6f4d2f361a-6b736e26c4289dac-00
content-encoding: gzip
accept-ranges: bytes
date: Wed, 25 Jan 2023 06:18:14 GMT
age: 1561099
x-served-by: cache-bfi-kbfi7400057-BFI, cache-bma1626-BMA
x-cache: HIT, HIT
x-cache-hits: 16, 1
strict-transport-security: max-age=31536000
vary: Accept-Encoding
content-length: 178
X-Firefox-Spdy: h2
www.americanexpressseguros.com/es-mx/seguros/static/pwa/52.8f3d24f8ee66b17d73ee.js
151.101.1.124200 OK 180 B URL HTTP/2 www.americanexpressseguros.com/es-mx/seguros/static/pwa/52.8f3d24f8ee66b17d73ee.js
IP 151.101.1.124:0
Hash 6f48cbd71a94ee5d8aa89d0af91de86b
7dc757611384bb2b3768cbbaa90ea0f174576309
8f20b9f4844d1ca318532326cd24a23c9e53432b12de349de8c1cf3f7e1e32bf
Analyzer Verdict Alert openphish American Express
fortinet Phishing
quad9 Sinkholed
GET /es-mx/seguros/static/pwa/52.8f3d24f8ee66b17d73ee.js HTTP/1.1
Host: www.americanexpressseguros.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.americanexpressseguros.com/es-mx/seguros/static/pwa/sw.js
Connection: keep-alive
Cookie: _gcl_au=1.1.782004452.1674627490; private_content_version=7b4cbf57746914521bdfb3464e26b5d1; _ga_X20CXLNMV9=GS1.1.1674627489.1.0.1674627489.60.0.0; _ga=GA1.2.2138569223.1674627490; et_uk=d9131712ba9d477fa2674398e7bfbef8; et_gk=35deae3be7f34b13a4b63768547e8171%7C26.03.2023%2006%3A18%3A11; _hjSessionUser_2640798=eyJpZCI6IjMzMTg4ZDNhLWUxMjAtNTlhNy1hMjBlLWRlYTFlMDIzNWNlMyIsImNyZWF0ZWQiOjE2NzQ2Mjc0OTEwNTMsImV4aXN0aW5nIjpmYWxzZX0=; _hjFirstSeen=1; _hjIncludedInSessionSample=1; _hjSession_2640798=eyJpZCI6IjQxNGJkNzM3LTljNTQtNGIxZi05ZDQwLWRkMzEwNWZhZGU0OCIsImNyZWF0ZWQiOjE2NzQ2Mjc0OTEwODYsImluU2FtcGxlIjp0cnVlfQ==; _hjIncludedInPageviewSample=1; _hjAbsoluteSessionInProgress=0; _gid=GA1.2.364610751.1674627491; _dc_gtm_UA-50367135-6=1; _fbp=fb.1.1674627491317.1997195595
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=31536000
content-type: application/javascript
etag: W/"63b331a0-c6"
expires: Sun, 07 Jan 2024 04:39:56 GMT
last-modified: Mon, 02 Jan 2023 19:33:52 GMT
x-debug-info: eyJyZXRyaWVzIjowfQ==
x-platform-server: i-0129d32895ff95045, i-0129d32895ff95045
traceresponse: 00-1737ed05f00d44432506ab9bf3d7c630-940d28a404edb008-00
content-encoding: gzip
accept-ranges: bytes
date: Wed, 25 Jan 2023 06:18:14 GMT
age: 1561098
x-served-by: cache-bfi-kbfi7400061-BFI, cache-bma1626-BMA
x-cache: HIT, HIT
x-cache-hits: 18, 1
strict-transport-security: max-age=31536000
vary: Accept-Encoding
content-length: 180
X-Firefox-Spdy: h2
www.americanexpressseguros.com/es-mx/seguros/static/pwa/6.4db881caa89c1ff746d1.js
151.101.1.124200 OK 5.5 kB URL HTTP/2 www.americanexpressseguros.com/es-mx/seguros/static/pwa/6.4db881caa89c1ff746d1.js
IP 151.101.1.124:0
File type ASCII text, with very long lines (1910)
Hash 8134454c0391abf471ee5876d1d1b645
e7306b03ae7a0f28443224d22e5ece57e086abb3
7279c4870d043a44310a19eca5aebe330aa7491b2f260ff494d7aa4604e78a5f
Analyzer Verdict Alert openphish American Express
fortinet Phishing
quad9 Sinkholed
GET /es-mx/seguros/static/pwa/6.4db881caa89c1ff746d1.js HTTP/1.1
Host: www.americanexpressseguros.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.americanexpressseguros.com/es-mx/seguros/static/pwa/sw.js
Connection: keep-alive
Cookie: _gcl_au=1.1.782004452.1674627490; private_content_version=7b4cbf57746914521bdfb3464e26b5d1; _ga_X20CXLNMV9=GS1.1.1674627489.1.0.1674627489.60.0.0; _ga=GA1.2.2138569223.1674627490; et_uk=d9131712ba9d477fa2674398e7bfbef8; et_gk=35deae3be7f34b13a4b63768547e8171%7C26.03.2023%2006%3A18%3A11; _hjSessionUser_2640798=eyJpZCI6IjMzMTg4ZDNhLWUxMjAtNTlhNy1hMjBlLWRlYTFlMDIzNWNlMyIsImNyZWF0ZWQiOjE2NzQ2Mjc0OTEwNTMsImV4aXN0aW5nIjpmYWxzZX0=; _hjFirstSeen=1; _hjIncludedInSessionSample=1; _hjSession_2640798=eyJpZCI6IjQxNGJkNzM3LTljNTQtNGIxZi05ZDQwLWRkMzEwNWZhZGU0OCIsImNyZWF0ZWQiOjE2NzQ2Mjc0OTEwODYsImluU2FtcGxlIjp0cnVlfQ==; _hjIncludedInPageviewSample=1; _hjAbsoluteSessionInProgress=0; _gid=GA1.2.364610751.1674627491; _dc_gtm_UA-50367135-6=1; _fbp=fb.1.1674627491317.1997195595
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=31536000
content-type: application/javascript
etag: W/"63c9d4bd-46ec"
expires: Tue, 23 Jan 2024 14:09:20 GMT
last-modified: Thu, 19 Jan 2023 23:39:41 GMT
x-debug-info: eyJyZXRyaWVzIjowfQ==
x-platform-server: i-0129d32895ff95045, i-0129d32895ff95045
traceresponse: 00-173cf56183c7671acc56ac7767f05a92-22f68beaa9c6ce52-00
content-encoding: gzip
accept-ranges: bytes
date: Wed, 25 Jan 2023 06:18:14 GMT
age: 144534
x-served-by: cache-bfi-kbfi7400041-BFI, cache-bma1626-BMA
x-cache: HIT, HIT
x-cache-hits: 8, 1
strict-transport-security: max-age=31536000
vary: Accept-Encoding
content-length: 5542
X-Firefox-Spdy: h2
www.americanexpressseguros.com/es-mx/seguros/static/pwa/7.dbefb36914b2009e1c4c.js
151.101.1.124200 OK 5.6 kB URL HTTP/2 www.americanexpressseguros.com/es-mx/seguros/static/pwa/7.dbefb36914b2009e1c4c.js
IP 151.101.1.124:0
File type ASCII text, with very long lines (705)
Hash 22bbdcfa5ade891bd39fdf1145deb141
b8fc896a5fc745200b2e4b961315ef19b9b96f18
16f411c6217f9db82d2b1b8e290cc8a39313f121bf234912f3cb4906258ad3d3
Analyzer Verdict Alert openphish American Express
fortinet Phishing
quad9 Sinkholed
GET /es-mx/seguros/static/pwa/7.dbefb36914b2009e1c4c.js HTTP/1.1
Host: www.americanexpressseguros.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.americanexpressseguros.com/es-mx/seguros/static/pwa/sw.js
Connection: keep-alive
Cookie: _gcl_au=1.1.782004452.1674627490; private_content_version=7b4cbf57746914521bdfb3464e26b5d1; _ga_X20CXLNMV9=GS1.1.1674627489.1.0.1674627489.60.0.0; _ga=GA1.2.2138569223.1674627490; et_uk=d9131712ba9d477fa2674398e7bfbef8; et_gk=35deae3be7f34b13a4b63768547e8171%7C26.03.2023%2006%3A18%3A11; _hjSessionUser_2640798=eyJpZCI6IjMzMTg4ZDNhLWUxMjAtNTlhNy1hMjBlLWRlYTFlMDIzNWNlMyIsImNyZWF0ZWQiOjE2NzQ2Mjc0OTEwNTMsImV4aXN0aW5nIjpmYWxzZX0=; _hjFirstSeen=1; _hjIncludedInSessionSample=1; _hjSession_2640798=eyJpZCI6IjQxNGJkNzM3LTljNTQtNGIxZi05ZDQwLWRkMzEwNWZhZGU0OCIsImNyZWF0ZWQiOjE2NzQ2Mjc0OTEwODYsImluU2FtcGxlIjp0cnVlfQ==; _hjIncludedInPageviewSample=1; _hjAbsoluteSessionInProgress=0; _gid=GA1.2.364610751.1674627491; _dc_gtm_UA-50367135-6=1; _fbp=fb.1.1674627491317.1997195595
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=31536000
content-type: application/javascript
etag: W/"63bdb089-4682"
expires: Fri, 12 Jan 2024 20:00:58 GMT
last-modified: Tue, 10 Jan 2023 18:38:01 GMT
x-debug-info: eyJyZXRyaWVzIjowfQ==
x-platform-server: i-022f454a7b3fd63c5, i-022f454a7b3fd63c5
traceresponse: 00-1739a82f6859aaab049aea8c5764f6d3-f69f55edfc7d4ebc-00
content-encoding: gzip
accept-ranges: bytes
date: Wed, 25 Jan 2023 06:18:14 GMT
age: 1073836
x-served-by: cache-bfi-krnt7300095-BFI, cache-bma1626-BMA
x-cache: HIT, HIT
x-cache-hits: 14, 1
strict-transport-security: max-age=31536000
vary: Accept-Encoding
content-length: 5600
X-Firefox-Spdy: h2
www.americanexpressseguros.com/es-mx/seguros/static/pwa/8.2f57524e7c2100503d24.js
151.101.1.124200 OK 5.3 kB URL HTTP/2 www.americanexpressseguros.com/es-mx/seguros/static/pwa/8.2f57524e7c2100503d24.js
IP 151.101.1.124:0
File type ASCII text, with very long lines (3469)
Hash e64b5fb690b6b9ef8498ba0859c7bf5b
02402e30737fdf730233632d15df7674ce6df7af
03b280c12c76cbe672d3f7c899c9d7514e126c87ff0ee18959b22cdf7a28398f
Analyzer Verdict Alert openphish American Express
fortinet Phishing
quad9 Sinkholed
GET /es-mx/seguros/static/pwa/8.2f57524e7c2100503d24.js HTTP/1.1
Host: www.americanexpressseguros.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.americanexpressseguros.com/es-mx/seguros/static/pwa/sw.js
Connection: keep-alive
Cookie: _gcl_au=1.1.782004452.1674627490; private_content_version=7b4cbf57746914521bdfb3464e26b5d1; _ga_X20CXLNMV9=GS1.1.1674627489.1.0.1674627489.60.0.0; _ga=GA1.2.2138569223.1674627490; et_uk=d9131712ba9d477fa2674398e7bfbef8; et_gk=35deae3be7f34b13a4b63768547e8171%7C26.03.2023%2006%3A18%3A11; _hjSessionUser_2640798=eyJpZCI6IjMzMTg4ZDNhLWUxMjAtNTlhNy1hMjBlLWRlYTFlMDIzNWNlMyIsImNyZWF0ZWQiOjE2NzQ2Mjc0OTEwNTMsImV4aXN0aW5nIjpmYWxzZX0=; _hjFirstSeen=1; _hjIncludedInSessionSample=1; _hjSession_2640798=eyJpZCI6IjQxNGJkNzM3LTljNTQtNGIxZi05ZDQwLWRkMzEwNWZhZGU0OCIsImNyZWF0ZWQiOjE2NzQ2Mjc0OTEwODYsImluU2FtcGxlIjp0cnVlfQ==; _hjIncludedInPageviewSample=1; _hjAbsoluteSessionInProgress=0; _gid=GA1.2.364610751.1674627491; _dc_gtm_UA-50367135-6=1; _fbp=fb.1.1674627491317.1997195595
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=31536000
content-type: application/javascript
etag: W/"63bc4490-4d74"
expires: Tue, 09 Jan 2024 16:52:27 GMT
last-modified: Mon, 09 Jan 2023 16:45:04 GMT
x-debug-info: eyJyZXRyaWVzIjowfQ==
x-platform-server: i-0129d32895ff95045, i-0129d32895ff95045
traceresponse: 00-1738b22839562239f9d6623994cd4f57-6672cce71c29dac7-00
content-encoding: gzip
accept-ranges: bytes
date: Wed, 25 Jan 2023 06:18:14 GMT
age: 1344348
x-served-by: cache-bfi-kbfi7400039-BFI, cache-bma1626-BMA
x-cache: HIT, HIT
x-cache-hits: 20, 1
strict-transport-security: max-age=31536000
vary: Accept-Encoding
content-length: 5265
X-Firefox-Spdy: h2
www.americanexpressseguros.com/es-mx/seguros/static/pwa/9.e96f02901d77141f82e9.js
151.101.1.124200 OK 4.9 kB URL HTTP/2 www.americanexpressseguros.com/es-mx/seguros/static/pwa/9.e96f02901d77141f82e9.js
IP 151.101.1.124:0
File type ASCII text, with very long lines (1848)
Hash f6c7f1b696e368c8fb425235ff1699dc
356f32b85cdd252b99701f6db15b02f9294bcf1c
7f4c9d83b079f5f87dc3634af9140175c2f1680ce1528cfab75ed21e60da06ed
Analyzer Verdict Alert openphish American Express
fortinet Phishing
quad9 Sinkholed
GET /es-mx/seguros/static/pwa/9.e96f02901d77141f82e9.js HTTP/1.1
Host: www.americanexpressseguros.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.americanexpressseguros.com/es-mx/seguros/static/pwa/sw.js
Connection: keep-alive
Cookie: _gcl_au=1.1.782004452.1674627490; private_content_version=7b4cbf57746914521bdfb3464e26b5d1; _ga_X20CXLNMV9=GS1.1.1674627489.1.0.1674627489.60.0.0; _ga=GA1.2.2138569223.1674627490; et_uk=d9131712ba9d477fa2674398e7bfbef8; et_gk=35deae3be7f34b13a4b63768547e8171%7C26.03.2023%2006%3A18%3A11; _hjSessionUser_2640798=eyJpZCI6IjMzMTg4ZDNhLWUxMjAtNTlhNy1hMjBlLWRlYTFlMDIzNWNlMyIsImNyZWF0ZWQiOjE2NzQ2Mjc0OTEwNTMsImV4aXN0aW5nIjpmYWxzZX0=; _hjFirstSeen=1; _hjIncludedInSessionSample=1; _hjSession_2640798=eyJpZCI6IjQxNGJkNzM3LTljNTQtNGIxZi05ZDQwLWRkMzEwNWZhZGU0OCIsImNyZWF0ZWQiOjE2NzQ2Mjc0OTEwODYsImluU2FtcGxlIjp0cnVlfQ==; _hjIncludedInPageviewSample=1; _hjAbsoluteSessionInProgress=0; _gid=GA1.2.364610751.1674627491; _dc_gtm_UA-50367135-6=1; _fbp=fb.1.1674627491317.1997195595
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=31536000
content-type: application/javascript
etag: W/"63bc4490-3fde"
expires: Tue, 09 Jan 2024 16:52:27 GMT
last-modified: Mon, 09 Jan 2023 16:45:04 GMT
x-debug-info: eyJyZXRyaWVzIjowfQ==
x-platform-server: i-0eceb7d9e8ebf109e, i-0eceb7d9e8ebf109e
traceresponse: 00-1738b228409744427abdc9084f237ced-e9faae0a3918ce85-00
content-encoding: gzip
accept-ranges: bytes
date: Wed, 25 Jan 2023 06:18:14 GMT
age: 1344347
x-served-by: cache-bfi-krnt7300097-BFI, cache-bma1626-BMA
x-cache: HIT, HIT
x-cache-hits: 21, 1
strict-transport-security: max-age=31536000
vary: Accept-Encoding
content-length: 4944
X-Firefox-Spdy: h2
www.americanexpressseguros.com/es-mx/seguros/static/pwa/RootCmp_CATEGORY__default.78a6f3c2eea22870a6f0.js
151.101.1.124200 OK 2.5 kB URL HTTP/2 www.americanexpressseguros.com/es-mx/seguros/static/pwa/RootCmp_CATEGORY__default.78a6f3c2eea22870a6f0.js
IP 151.101.1.124:0
File type ASCII text, with very long lines (1067)
Hash 25b4cb7e690b9051378b4ca9a96d44e9
c828a8bd8aee024d8cc1e483281e422f38455be9
c647df4e17630decc5ab6f25f03a4c95044e5179f4e2b4702b713c6df37cb571
Analyzer Verdict Alert openphish American Express
fortinet Phishing
quad9 Sinkholed
GET /es-mx/seguros/static/pwa/RootCmp_CATEGORY__default.78a6f3c2eea22870a6f0.js HTTP/1.1
Host: www.americanexpressseguros.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.americanexpressseguros.com/es-mx/seguros/static/pwa/sw.js
Connection: keep-alive
Cookie: _gcl_au=1.1.782004452.1674627490; private_content_version=7b4cbf57746914521bdfb3464e26b5d1; _ga_X20CXLNMV9=GS1.1.1674627489.1.0.1674627489.60.0.0; _ga=GA1.2.2138569223.1674627490; et_uk=d9131712ba9d477fa2674398e7bfbef8; et_gk=35deae3be7f34b13a4b63768547e8171%7C26.03.2023%2006%3A18%3A11; _hjSessionUser_2640798=eyJpZCI6IjMzMTg4ZDNhLWUxMjAtNTlhNy1hMjBlLWRlYTFlMDIzNWNlMyIsImNyZWF0ZWQiOjE2NzQ2Mjc0OTEwNTMsImV4aXN0aW5nIjpmYWxzZX0=; _hjFirstSeen=1; _hjIncludedInSessionSample=1; _hjSession_2640798=eyJpZCI6IjQxNGJkNzM3LTljNTQtNGIxZi05ZDQwLWRkMzEwNWZhZGU0OCIsImNyZWF0ZWQiOjE2NzQ2Mjc0OTEwODYsImluU2FtcGxlIjp0cnVlfQ==; _hjIncludedInPageviewSample=1; _hjAbsoluteSessionInProgress=0; _gid=GA1.2.364610751.1674627491; _dc_gtm_UA-50367135-6=1; _fbp=fb.1.1674627491317.1997195595
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=31536000
content-type: application/javascript
etag: W/"63bdb089-18a8"
expires: Fri, 12 Jan 2024 20:00:58 GMT
last-modified: Tue, 10 Jan 2023 18:38:01 GMT
x-debug-info: eyJyZXRyaWVzIjowfQ==
x-platform-server: i-0eceb7d9e8ebf109e, i-0eceb7d9e8ebf109e
traceresponse: 00-1739a82f8033d7b1f02eed82a4707304-dd8445a0e3fc828b-00
content-encoding: gzip
accept-ranges: bytes
date: Wed, 25 Jan 2023 06:18:14 GMT
age: 1073837
x-served-by: cache-bfi-krnt7300067-BFI, cache-bma1626-BMA
x-cache: HIT, HIT
x-cache-hits: 19, 1
strict-transport-security: max-age=31536000
vary: Accept-Encoding
content-length: 2505
X-Firefox-Spdy: h2
www.americanexpressseguros.com/es-mx/seguros/static/pwa/RootCmp_CATEGORY__default~RootCmp_SEARCH__default.d98ae5791b4e8971f921.js
151.101.1.124200 OK 5.9 kB URL HTTP/2 www.americanexpressseguros.com/es-mx/seguros/static/pwa/RootCmp_CATEGORY__default~RootCmp_SEARCH__default.d98ae5791b4e8971f921.js
IP 151.101.1.124:0
File type Unicode text, UTF-8 text, with very long lines (2142)
Hash a9a7b6f303970c99256ec5117b0bf359
10a495f70225d9fc92dca55d9f1f645bd55e64f2
594e2e7cd9fe49897a92a962d2cd41dc1f0e4fbe4aca38e307b17b5e70e556e0
Analyzer Verdict Alert openphish American Express
fortinet Phishing
quad9 Sinkholed
GET /es-mx/seguros/static/pwa/RootCmp_CATEGORY__default~RootCmp_SEARCH__default.d98ae5791b4e8971f921.js HTTP/1.1
Host: www.americanexpressseguros.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.americanexpressseguros.com/es-mx/seguros/static/pwa/sw.js
Connection: keep-alive
Cookie: _gcl_au=1.1.782004452.1674627490; private_content_version=7b4cbf57746914521bdfb3464e26b5d1; _ga_X20CXLNMV9=GS1.1.1674627489.1.0.1674627489.60.0.0; _ga=GA1.2.2138569223.1674627490; et_uk=d9131712ba9d477fa2674398e7bfbef8; et_gk=35deae3be7f34b13a4b63768547e8171%7C26.03.2023%2006%3A18%3A11; _hjSessionUser_2640798=eyJpZCI6IjMzMTg4ZDNhLWUxMjAtNTlhNy1hMjBlLWRlYTFlMDIzNWNlMyIsImNyZWF0ZWQiOjE2NzQ2Mjc0OTEwNTMsImV4aXN0aW5nIjpmYWxzZX0=; _hjFirstSeen=1; _hjIncludedInSessionSample=1; _hjSession_2640798=eyJpZCI6IjQxNGJkNzM3LTljNTQtNGIxZi05ZDQwLWRkMzEwNWZhZGU0OCIsImNyZWF0ZWQiOjE2NzQ2Mjc0OTEwODYsImluU2FtcGxlIjp0cnVlfQ==; _hjIncludedInPageviewSample=1; _hjAbsoluteSessionInProgress=0; _gid=GA1.2.364610751.1674627491; _dc_gtm_UA-50367135-6=1; _fbp=fb.1.1674627491317.1997195595
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=31536000
content-type: application/javascript
etag: W/"63cf705f-46f8"
expires: Wed, 24 Jan 2024 14:19:40 GMT
last-modified: Tue, 24 Jan 2023 05:45:03 GMT
x-debug-info: eyJyZXRyaWVzIjowfQ==
x-platform-server: i-0eceb7d9e8ebf109e, i-0eceb7d9e8ebf109e
traceresponse: 00-173d448681d9856243e7840b17ec1cd2-8a38f059c9ee4b13-00
content-encoding: gzip
accept-ranges: bytes
date: Wed, 25 Jan 2023 06:18:14 GMT
age: 57514
x-served-by: cache-bfi-krnt7300052-BFI, cache-bma1626-BMA
x-cache: HIT, HIT
x-cache-hits: 8, 1
strict-transport-security: max-age=31536000
vary: Accept-Encoding
content-length: 5856
X-Firefox-Spdy: h2
www.americanexpressseguros.com/es-mx/seguros/static/pwa/RootCmp_PRODUCT__default.6ec71e0aaa5ab80a0952.js
151.101.1.124200 OK 15 kB URL HTTP/2 www.americanexpressseguros.com/es-mx/seguros/static/pwa/RootCmp_PRODUCT__default.6ec71e0aaa5ab80a0952.js
IP 151.101.1.124:0
File type Unicode text, UTF-8 text, with very long lines (5277)
Hash 417ab3c990322aae942adbe3a2d4b925
4d56a3e3806a856f70557a93687c13457700b5c5
3520b3392265bfe5a6b5fdfa5a7877ce54d32dcb3a0913e27974eb93a79bbd51
Analyzer Verdict Alert openphish American Express
fortinet Phishing
quad9 Sinkholed
GET /es-mx/seguros/static/pwa/RootCmp_PRODUCT__default.6ec71e0aaa5ab80a0952.js HTTP/1.1
Host: www.americanexpressseguros.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.americanexpressseguros.com/es-mx/seguros/static/pwa/sw.js
Connection: keep-alive
Cookie: _gcl_au=1.1.782004452.1674627490; private_content_version=7b4cbf57746914521bdfb3464e26b5d1; _ga_X20CXLNMV9=GS1.1.1674627489.1.0.1674627489.60.0.0; _ga=GA1.2.2138569223.1674627490; et_uk=d9131712ba9d477fa2674398e7bfbef8; et_gk=35deae3be7f34b13a4b63768547e8171%7C26.03.2023%2006%3A18%3A11; _hjSessionUser_2640798=eyJpZCI6IjMzMTg4ZDNhLWUxMjAtNTlhNy1hMjBlLWRlYTFlMDIzNWNlMyIsImNyZWF0ZWQiOjE2NzQ2Mjc0OTEwNTMsImV4aXN0aW5nIjpmYWxzZX0=; _hjFirstSeen=1; _hjIncludedInSessionSample=1; _hjSession_2640798=eyJpZCI6IjQxNGJkNzM3LTljNTQtNGIxZi05ZDQwLWRkMzEwNWZhZGU0OCIsImNyZWF0ZWQiOjE2NzQ2Mjc0OTEwODYsImluU2FtcGxlIjp0cnVlfQ==; _hjIncludedInPageviewSample=1; _hjAbsoluteSessionInProgress=0; _gid=GA1.2.364610751.1674627491; _dc_gtm_UA-50367135-6=1; _fbp=fb.1.1674627491317.1997195595
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=31536000
content-type: application/javascript
etag: W/"63bc7141-f9b0"
expires: Tue, 09 Jan 2024 23:29:07 GMT
last-modified: Mon, 09 Jan 2023 19:55:45 GMT
x-debug-info: eyJyZXRyaWVzIjowfQ==
x-platform-server: i-022f454a7b3fd63c5, i-022f454a7b3fd63c5
traceresponse: 00-1738c7cda2100fd01cccde258210e75b-f753ad561fd3b22a-00
content-encoding: gzip
accept-ranges: bytes
date: Wed, 25 Jan 2023 06:18:15 GMT
age: 1320547
x-served-by: cache-bfi-kbfi7400115-BFI, cache-bma1626-BMA
x-cache: HIT, HIT
x-cache-hits: 16, 1
strict-transport-security: max-age=31536000
vary: Accept-Encoding
content-length: 15000
X-Firefox-Spdy: h2
www.americanexpressseguros.com/es-mx/seguros/static/pwa/RootCmp_SEARCH__default.7f1f0cc3b65eeee9cb38.js
151.101.1.124200 OK 3.4 kB URL HTTP/2 www.americanexpressseguros.com/es-mx/seguros/static/pwa/RootCmp_SEARCH__default.7f1f0cc3b65eeee9cb38.js
IP 151.101.1.124:0
File type ASCII text, with very long lines (3419)
Hash a53aa073fad748a173fa7b6d1b90eb8f
5d48f7328926095e2dd84011be7f9e83cdbe89ab
2469dfecff6da370b680137e075ba0ce2f5c36a1587340952f6053dc23d433d3
Analyzer Verdict Alert openphish American Express
fortinet Phishing
quad9 Sinkholed
GET /es-mx/seguros/static/pwa/RootCmp_SEARCH__default.7f1f0cc3b65eeee9cb38.js HTTP/1.1
Host: www.americanexpressseguros.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.americanexpressseguros.com/es-mx/seguros/static/pwa/sw.js
Connection: keep-alive
Cookie: _gcl_au=1.1.782004452.1674627490; private_content_version=7b4cbf57746914521bdfb3464e26b5d1; _ga_X20CXLNMV9=GS1.1.1674627489.1.0.1674627489.60.0.0; _ga=GA1.2.2138569223.1674627490; et_uk=d9131712ba9d477fa2674398e7bfbef8; et_gk=35deae3be7f34b13a4b63768547e8171%7C26.03.2023%2006%3A18%3A11; _hjSessionUser_2640798=eyJpZCI6IjMzMTg4ZDNhLWUxMjAtNTlhNy1hMjBlLWRlYTFlMDIzNWNlMyIsImNyZWF0ZWQiOjE2NzQ2Mjc0OTEwNTMsImV4aXN0aW5nIjpmYWxzZX0=; _hjFirstSeen=1; _hjIncludedInSessionSample=1; _hjSession_2640798=eyJpZCI6IjQxNGJkNzM3LTljNTQtNGIxZi05ZDQwLWRkMzEwNWZhZGU0OCIsImNyZWF0ZWQiOjE2NzQ2Mjc0OTEwODYsImluU2FtcGxlIjp0cnVlfQ==; _hjIncludedInPageviewSample=1; _hjAbsoluteSessionInProgress=0; _gid=GA1.2.364610751.1674627491; _dc_gtm_UA-50367135-6=1; _fbp=fb.1.1674627491317.1997195595
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=31536000
content-type: application/javascript
etag: W/"63cf705f-2709"
expires: Wed, 24 Jan 2024 14:19:41 GMT
last-modified: Tue, 24 Jan 2023 05:45:03 GMT
x-debug-info: eyJyZXRyaWVzIjowfQ==
x-platform-server: i-0eceb7d9e8ebf109e, i-0eceb7d9e8ebf109e
traceresponse: 00-173d44868d2346072a81a37990d46dde-374e34a25a8673d7-00
content-encoding: gzip
accept-ranges: bytes
date: Wed, 25 Jan 2023 06:18:15 GMT
age: 57514
x-served-by: cache-bfi-kbfi7400068-BFI, cache-bma1626-BMA
x-cache: HIT, MISS
x-cache-hits: 11, 0
strict-transport-security: max-age=31536000
vary: Accept-Encoding
content-length: 3425
X-Firefox-Spdy: h2
www.americanexpressseguros.com/es-mx/seguros/static/pwa/amexlogo-w7P.svg
151.101.1.124200 OK 988 B URL HTTP/2 www.americanexpressseguros.com/es-mx/seguros/static/pwa/amexlogo-w7P.svg
IP 151.101.1.124:0
File type SVG Scalable Vector Graphics image\012- HTML document, ASCII text, with very long lines (2402), with no line terminators
Hash f814db47d6ab92981cf66ad81e1abe8d
144564395fe86e0a38afe3df59d110efadd78afa
3bed16bc25683f63ecea632830b7097b4d74095cd18eb2e9ab6d3f038e34615b
Analyzer Verdict Alert openphish American Express
fortinet Phishing
quad9 Sinkholed
GET /es-mx/seguros/static/pwa/amexlogo-w7P.svg HTTP/1.1
Host: www.americanexpressseguros.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.americanexpressseguros.com/es-mx/seguros/static/pwa/sw.js
Connection: keep-alive
Cookie: _gcl_au=1.1.782004452.1674627490; private_content_version=7b4cbf57746914521bdfb3464e26b5d1; _ga_X20CXLNMV9=GS1.1.1674627489.1.0.1674627489.60.0.0; _ga=GA1.2.2138569223.1674627490; et_uk=d9131712ba9d477fa2674398e7bfbef8; et_gk=35deae3be7f34b13a4b63768547e8171%7C26.03.2023%2006%3A18%3A11; _hjSessionUser_2640798=eyJpZCI6IjMzMTg4ZDNhLWUxMjAtNTlhNy1hMjBlLWRlYTFlMDIzNWNlMyIsImNyZWF0ZWQiOjE2NzQ2Mjc0OTEwNTMsImV4aXN0aW5nIjpmYWxzZX0=; _hjFirstSeen=1; _hjIncludedInSessionSample=1; _hjSession_2640798=eyJpZCI6IjQxNGJkNzM3LTljNTQtNGIxZi05ZDQwLWRkMzEwNWZhZGU0OCIsImNyZWF0ZWQiOjE2NzQ2Mjc0OTEwODYsImluU2FtcGxlIjp0cnVlfQ==; _hjIncludedInPageviewSample=1; _hjAbsoluteSessionInProgress=0; _gid=GA1.2.364610751.1674627491; _dc_gtm_UA-50367135-6=1; _fbp=fb.1.1674627491317.1997195595
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: max-age=31536000
content-type: image/svg+xml
etag: W/"63bc7141-962"
expires: Tue, 09 Jan 2024 23:31:04 GMT
last-modified: Mon, 09 Jan 2023 19:55:45 GMT
x-debug-info: eyJyZXRyaWVzIjowfQ==
x-platform-server: i-022f454a7b3fd63c5, i-022f454a7b3fd63c5
traceresponse: 00-1738c7e8bf71148649e398a535c7dc71-0691e8e8e9ab9791-00
content-encoding: gzip
accept-ranges: bytes
date: Wed, 25 Jan 2023 06:18:15 GMT
age: 1320431
x-served-by: cache-bfi-kbfi7400055-BFI, cache-bma1626-BMA
x-cache: HIT, HIT
x-cache-hits: 19, 1
strict-transport-security: max-age=31536000
vary: Accept-Encoding
content-length: 988
X-Firefox-Spdy: h2
www.americanexpressseguros.com/es-mx/seguros/static/pwa/download-94K.svg
151.101.1.124200 OK 243 B URL HTTP/2 www.americanexpressseguros.com/es-mx/seguros/static/pwa/download-94K.svg
IP 151.101.1.124:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (365), with no line terminators
Hash 8fa4508c3500432382cbdc684d4e3294
fb16b55b6a7f5c29e432eef3fc144328a384939f
dcfbb38766d74111f2405bc54bc647374cf09c2ca47b1005eb5aeab2e5373167
Analyzer Verdict Alert openphish American Express
fortinet Phishing
quad9 Sinkholed
GET /es-mx/seguros/static/pwa/download-94K.svg HTTP/1.1
Host: www.americanexpressseguros.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.americanexpressseguros.com/es-mx/seguros/static/pwa/sw.js
Connection: keep-alive
Cookie: _gcl_au=1.1.782004452.1674627490; private_content_version=7b4cbf57746914521bdfb3464e26b5d1; _ga_X20CXLNMV9=GS1.1.1674627489.1.0.1674627489.60.0.0; _ga=GA1.2.2138569223.1674627490; et_uk=d9131712ba9d477fa2674398e7bfbef8; et_gk=35deae3be7f34b13a4b63768547e8171%7C26.03.2023%2006%3A18%3A11; _hjSessionUser_2640798=eyJpZCI6IjMzMTg4ZDNhLWUxMjAtNTlhNy1hMjBlLWRlYTFlMDIzNWNlMyIsImNyZWF0ZWQiOjE2NzQ2Mjc0OTEwNTMsImV4aXN0aW5nIjpmYWxzZX0=; _hjFirstSeen=1; _hjIncludedInSessionSample=1; _hjSession_2640798=eyJpZCI6IjQxNGJkNzM3LTljNTQtNGIxZi05ZDQwLWRkMzEwNWZhZGU0OCIsImNyZWF0ZWQiOjE2NzQ2Mjc0OTEwODYsImluU2FtcGxlIjp0cnVlfQ==; _hjIncludedInPageviewSample=1; _hjAbsoluteSessionInProgress=0; _gid=GA1.2.364610751.1674627491; _dc_gtm_UA-50367135-6=1; _fbp=fb.1.1674627491317.1997195595
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: max-age=31536000
content-type: image/svg+xml
etag: W/"6372f280-16d"
expires: Wed, 15 Nov 2023 15:39:43 GMT
last-modified: Tue, 15 Nov 2022 01:59:28 GMT
x-debug-info: eyJyZXRyaWVzIjowfQ==
x-platform-server: i-0129d32895ff95045, i-0129d32895ff95045
x-request-id: 00-1727cc44f76502c6b0bb0581dd91a939-4c6c69395079841f-00
content-encoding: gzip
accept-ranges: bytes
date: Wed, 25 Jan 2023 06:18:15 GMT
age: 6100712
x-served-by: cache-bfi-krnt7300117-BFI, cache-bma1626-BMA
x-cache: HIT, HIT
x-cache-hits: 23, 1
strict-transport-security: max-age=31536000
vary: Accept-Encoding
content-length: 243
X-Firefox-Spdy: h2
www.americanexpressseguros.com/es-mx/seguros/static/pwa/i18n-en_US.2edb4fb216d147152c12.js
151.101.1.124200 OK 6.8 kB URL HTTP/2 www.americanexpressseguros.com/es-mx/seguros/static/pwa/i18n-en_US.2edb4fb216d147152c12.js
IP 151.101.1.124:0
File type ASCII text, with very long lines (24028)
Hash f62e81e31346368088c8217ee5cac40e
7403fea87a2762da141ad0c37a09eb96ba3f1f91
f9c2b5e5fdb892baab5e1f786e55bcdaf19f98ce788a85108655c42cfc7a286c
Analyzer Verdict Alert openphish American Express
fortinet Phishing
quad9 Sinkholed
GET /es-mx/seguros/static/pwa/i18n-en_US.2edb4fb216d147152c12.js HTTP/1.1
Host: www.americanexpressseguros.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.americanexpressseguros.com/es-mx/seguros/static/pwa/sw.js
Connection: keep-alive
Cookie: _gcl_au=1.1.782004452.1674627490; private_content_version=7b4cbf57746914521bdfb3464e26b5d1; _ga_X20CXLNMV9=GS1.1.1674627489.1.0.1674627489.60.0.0; _ga=GA1.2.2138569223.1674627490; et_uk=d9131712ba9d477fa2674398e7bfbef8; et_gk=35deae3be7f34b13a4b63768547e8171%7C26.03.2023%2006%3A18%3A11; _hjSessionUser_2640798=eyJpZCI6IjMzMTg4ZDNhLWUxMjAtNTlhNy1hMjBlLWRlYTFlMDIzNWNlMyIsImNyZWF0ZWQiOjE2NzQ2Mjc0OTEwNTMsImV4aXN0aW5nIjpmYWxzZX0=; _hjFirstSeen=1; _hjIncludedInSessionSample=1; _hjSession_2640798=eyJpZCI6IjQxNGJkNzM3LTljNTQtNGIxZi05ZDQwLWRkMzEwNWZhZGU0OCIsImNyZWF0ZWQiOjE2NzQ2Mjc0OTEwODYsImluU2FtcGxlIjp0cnVlfQ==; _hjIncludedInPageviewSample=1; _hjAbsoluteSessionInProgress=0; _gid=GA1.2.364610751.1674627491; _dc_gtm_UA-50367135-6=1; _fbp=fb.1.1674627491317.1997195595
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=31536000
content-type: application/javascript
etag: W/"63bc7141-5e02"
expires: Tue, 09 Jan 2024 23:31:04 GMT
last-modified: Mon, 09 Jan 2023 19:55:45 GMT
x-debug-info: eyJyZXRyaWVzIjowfQ==
x-platform-server: i-022f454a7b3fd63c5, i-022f454a7b3fd63c5
traceresponse: 00-1738c7e8da80acb66f23f9e36ab902e1-2dda09b24c95b752-00
content-encoding: gzip
accept-ranges: bytes
date: Wed, 25 Jan 2023 06:18:15 GMT
age: 1320430
x-served-by: cache-bfi-krnt7300087-BFI, cache-bma1626-BMA
x-cache: HIT, HIT
x-cache-hits: 15, 1
strict-transport-security: max-age=31536000
vary: Accept-Encoding
content-length: 6772
X-Firefox-Spdy: h2
www.americanexpressseguros.com/es-mx/seguros/graphql?query=query+cmsBlocks%28%24identifiers%3A%5BString%5D%21%29%7BcmsBlocks%28identifiers%3A%24identifiers%29%7Bitems%7Bcontent+identifier+__typename%7D__typename%7D%7D&operationName=cmsBlocks&variables=%7B%22identifiers%22%3A%22sub_header%22%7D
151.101.1.124200 OK 0 B URL HTTP/2 www.americanexpressseguros.com/es-mx/seguros/graphql?query=query+cmsBlocks%28%24identifiers%3A%5BString%5D%21%29%7BcmsBlocks%28identifiers%3A%24identifiers%29%7Bitems%7Bcontent+identifier+__typename%7D__typename%7D%7D&operationName=cmsBlocks&variables=%7B%22identifiers%22%3A%22sub_header%22%7D
IP 151.101.1.124:0
Analyzer Verdict Alert openphish American Express
quad9 Sinkholed
GET /es-mx/seguros/graphql?query=query+cmsBlocks%28%24identifiers%3A%5BString%5D%21%29%7BcmsBlocks%28identifiers%3A%24identifiers%29%7Bitems%7Bcontent+identifier+__typename%7D__typename%7D%7D&operationName=cmsBlocks&variables=%7B%22identifiers%22%3A%22sub_header%22%7D HTTP/1.1
Host: www.americanexpressseguros.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.americanexpressseguros.com/es-mx/seguros/
content-type: application/json
authorization:
x-magento-cache-id: null
store: default
Connection: keep-alive
Cookie: _gcl_au=1.1.782004452.1674627490; private_content_version=7b4cbf57746914521bdfb3464e26b5d1; _ga_X20CXLNMV9=GS1.1.1674627489.1.0.1674627489.60.0.0; _ga=GA1.1.2138569223.1674627490; et_uk=d9131712ba9d477fa2674398e7bfbef8; et_gk=35deae3be7f34b13a4b63768547e8171%7C26.03.2023%2006%3A18%3A11
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/json
expires: Thu, 26 Jan 2023 06:18:12 GMT
pragma: cache
x-content-type-options: nosniff
x-debug-info: eyJyZXRyaWVzIjowfQ==
x-frame-options: SAMEORIGIN
x-platform-server: i-0eceb7d9e8ebf109e, i-0eceb7d9e8ebf109e
x-xss-protection: 1; mode=block
traceresponse: 00-173d78d4fc75e113c175f5faa9210c4d-85f32eccc021f8b5-00
accept-ranges: bytes
date: Wed, 25 Jan 2023 06:18:12 GMT
x-served-by: cache-bfi-krnt7300036-BFI, cache-bma1626-BMA
x-cache: MISS, MISS
x-cache-hits: 0, 0
strict-transport-security: max-age=31536000
cache-control: no-store, no-cache, must-revalidate, max-age=0
vary: Accept-Encoding,Store,Content-Currency,Authorization
X-Firefox-Spdy: h2
static.hotjar.com/c/hotjar-2640798.js?sv=6
54.230.111.39200 OK 0 B URL HTTP/2 static.hotjar.com/c/hotjar-2640798.js?sv=6
IP 54.230.111.39:0
GET /c/hotjar-2640798.js?sv=6 HTTP/1.1
Host: static.hotjar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.americanexpressseguros.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
date: Wed, 25 Jan 2023 06:17:44 GMT
access-control-allow-origin: *
cache-control: max-age=60
content-encoding: br
cross-origin-resource-policy: cross-origin
etag: W/abb2d32ebe7e84d6b31c2d045434c259
strict-transport-security: max-age=2592000; includeSubDomains
x-cache-hit: 1
x-content-type-options: nosniff
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 ee04daa979e7a02cc5ca472521bc18a6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: aJFWJ-K3YuNH7wiyrSmhWP3Q9Pq0UHUIur12BVvJo7UDRu3bFUEbJQ==
age: 25
X-Firefox-Spdy: h2
in.hotjar.com/api/v2/client/sites/2640798/visit-data?sv=6
34.241.157.30200 OK 0 B URL HTTP/2 in.hotjar.com/api/v2/client/sites/2640798/visit-data?sv=6
IP 34.241.157.30:0
POST /api/v2/client/sites/2640798/visit-data?sv=6 HTTP/1.1
Host: in.hotjar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain; charset=UTF-8
Content-Length: 129
Origin: https://www.americanexpressseguros.com
Connection: keep-alive
Referer: https://www.americanexpressseguros.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 25 Jan 2023 06:18:13 GMT
content-type: application/json
vary: Accept-Encoding
cache-control: no-cache, no-store
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-max-age: 86400
content-encoding: br
X-Firefox-Spdy: h2
www.americanexpressseguros.com/es-mx/seguros/graphql
151.101.1.124200 OK 0 B URL HTTP/2 www.americanexpressseguros.com/es-mx/seguros/graphql
IP 151.101.1.124:0
Analyzer Verdict Alert openphish American Express
fortinet Phishing
quad9 Sinkholed
POST /es-mx/seguros/graphql HTTP/1.1
Host: www.americanexpressseguros.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.americanexpressseguros.com/es-mx/seguros/
Content-Type: application/json
Origin: https://www.americanexpressseguros.com
Content-Length: 89
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=0, must-revalidate, no-cache, no-store
content-type: application/json
expires: Tue, 25 Jan 2022 06:18:11 GMT
pragma: no-cache
set-cookie: PHPSESSID=23547dabb00293d610e67f84a8014018; expires=Wed, 25-Jan-2023 07:18:11 GMT; Max-Age=3600; path=/es-mx/seguros; domain=americanexpress.com; HttpOnly; SameSite=Lax
private_content_version=a731ceb36a3051f07e5b2e3d1fbfa4bd; expires=Sat, 22-Jan-2033 06:18:11 GMT; Max-Age=315360000; path=/; secure; SameSite=Lax
private_content_version=9bd88fecdc9dcad0936cd210386a88ed; expires=Sat, 22-Jan-2033 06:18:11 GMT; Max-Age=315360000; path=/; secure; SameSite=Lax
private_content_version=7b4cbf57746914521bdfb3464e26b5d1; expires=Sat, 22-Jan-2033 06:18:11 GMT; Max-Age=315360000; path=/; secure; SameSite=Lax
x-content-type-options: nosniff
x-debug-info: eyJyZXRyaWVzIjowfQ==
x-frame-options: SAMEORIGIN
x-platform-server: i-0129d32895ff95045, i-0129d32895ff95045
x-xss-protection: 1; mode=block
traceresponse: 00-173d78d4ad5ca007599e92a8c213a850-c5edfcf000d6c7f1-00
accept-ranges: bytes
date: Wed, 25 Jan 2023 06:18:11 GMT
x-served-by: cache-bfi-krnt7300054-BFI, cache-bma1626-BMA
x-cache: MISS, MISS
x-cache-hits: 0, 0
access-control-allow-origin: mcprod.americanexpressseguros.com
access-control-allow-methods: GET,HEAD,POST,PUT
strict-transport-security: max-age=31536000
vary: Accept-Encoding,Origin
X-Firefox-Spdy: h2