| pub-16e137a4cf854984a7e3444dc08cd250.r2.dev/index.htm |  104.18.2.35 | 200 OK | 122 kB |
URL User Request GET HTTP/1.1pub-16e137a4cf854984a7e3444dc08cd250.r2.dev/index.htm IP104.18.2.35:443
CertificateIssuerLet's Encrypt Subject*.r2.dev FingerprintA2:61:33:D7:00:1D:E7:EF:C9:C3:35:ED:8F:FC:60:86:98:85:44:3A ValidityTue, 06 Feb 2024 16:02:29 GMT - Mon, 06 May 2024 16:02:28 GMT
File typeHTML document, ASCII text, with very long lines (49016), with CRLF line terminators Size122 kB (121955 bytes) Hash29ef9e03c897fccc5903f7116feb637b 4010f8e13f2c90fb207adac2dcbe9a46201f004c 049f19c80b1b26c810ba3f1a276a5528f453af533524310a8631eb7183a00c8d
| Analyzer | Verdict | Alert |
|---|
| urlquery | suspicious | Suspicious - Suspicious Javascript code | | OpenPhish | phishing | DHL Airways, Inc. | | PhishTank | phishing | Other | | Quad9 DNS | malicious | Sinkholed |
GET /index.htm HTTP/1.1
Host: pub-16e137a4cf854984a7e3444dc08cd250.r2.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 28 Mar 2024 18:11:08 GMT
Content-Type: text/html
Content-Length: 121955
Connection: keep-alive
Accept-Ranges: bytes
ETag: "29ef9e03c897fccc5903f7116feb637b"
Last-Modified: Tue, 27 Feb 2024 12:09:25 GMT
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 86b994bab8d9b518-OSL
|
|
| code.jquery.com/jquery-3.3.1.js |  151.101.66.137 | 200 OK | 80 kB |
URL GET HTTP/2code.jquery.com/jquery-3.3.1.js IP151.101.66.137:443
Requested byhttps://pub-16e137a4cf854984a7e3444dc08cd250.r2.dev/index.htm CertificateIssuerSectigo Limited Subject*.jquery.com FingerprintD2:19:0A:AD:CE:BB:9C:61:17:5D:29:4B:A2:54:E8:C6:91:B8:F9:8D ValidityTue, 11 Jul 2023 00:00:00 GMT - Sun, 14 Jul 2024 23:59:59 GMT
File typeJavaScript source, ASCII text Hash6a07da9fae934baf3f749e876bbfdd96 46a436eba01c79acdb225757ed80bf54bad6416b d8aa24ecc6cecb1a60515bc093f1c9da38a0392612d9ab8ae0f7f36e6eee1fad
GET /jquery-3.3.1.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pub-16e137a4cf854984a7e3444dc08cd250.r2.dev/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Fri, 18 Oct 1991 12:00:00 GMT
etag: W/"28feccc0-42587"
cache-control: public, max-age=31536000, stale-while-revalidate=604800
access-control-allow-origin: *
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 28 Mar 2024 18:11:09 GMT
age: 16848819
x-served-by: cache-lga21980-LGA, cache-hel1410028-HEL
x-cache: HIT, HIT
x-cache-hits: 99, 5428
x-timer: S1711649469.235777,VS0,VE0
vary: Accept-Encoding
content-length: 80268
X-Firefox-Spdy: h2
|
|
| code.jquery.com/jquery-3.1.1.min.js | 151.101.66.137 | 200 OK | 30 kB |
URL GET HTTP/2code.jquery.com/jquery-3.1.1.min.js IP151.101.66.137:443
Requested byhttps://pub-16e137a4cf854984a7e3444dc08cd250.r2.dev/index.htm CertificateIssuerSectigo Limited Subject*.jquery.com FingerprintD2:19:0A:AD:CE:BB:9C:61:17:5D:29:4B:A2:54:E8:C6:91:B8:F9:8D ValidityTue, 11 Jul 2023 00:00:00 GMT - Sun, 14 Jul 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (32030) Hashe071abda8fe61194711cfc2ab99fe104 f647a6d37dc4ca055ced3cf64bbc1f490070acba 85556761a8800d14ced8fcd41a6b8b26bf012d44a318866c0d81a62092efd9bf
GET /jquery-3.1.1.min.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pub-16e137a4cf854984a7e3444dc08cd250.r2.dev/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Fri, 18 Oct 1991 12:00:00 GMT
etag: W/"28feccc0-152b5"
cache-control: public, max-age=31536000, stale-while-revalidate=604800
access-control-allow-origin: *
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 28 Mar 2024 18:11:09 GMT
age: 16848869
x-served-by: cache-lga21947-LGA, cache-hel1410028-HEL
x-cache: HIT, HIT
x-cache-hits: 118, 22224
x-timer: S1711649469.236870,VS0,VE0
vary: Accept-Encoding
content-length: 30070
X-Firefox-Spdy: h2
|
|
| files040.s3.us-east-005.backblazeb2.com/jquery.min.js | 149.137.137.254 | 200 | 86 kB |
URL GET HTTP/1.1files040.s3.us-east-005.backblazeb2.com/jquery.min.js IP149.137.137.254:443
Requested byhttps://pub-16e137a4cf854984a7e3444dc08cd250.r2.dev/index.htm CertificateIssuerLet's Encrypt Subjectbackblazeb2.com FingerprintD7:0D:A0:DA:36:A9:0D:75:4F:C6:5A:B5:67:F3:CA:A8:4F:0F:25:36 ValidityThu, 08 Feb 2024 21:16:08 GMT - Wed, 08 May 2024 21:16:07 GMT
File typeJavaScript source, ASCII text, with very long lines (32065) Hash2f6b11a7e914718e0290410e85366fe9 69bb69e25ca7d5ef0935317584e6153f3fd9a88c 05b85d96f41fff14d8f608dad03ab71e2c1017c2da0914d7c59291bad7a54f8e
GET /jquery.min.js HTTP/1.1
Host: files040.s3.us-east-005.backblazeb2.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pub-16e137a4cf854984a7e3444dc08cd250.r2.dev/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200
Server: nginx
Date: Thu, 28 Mar 2024 18:11:09 GMT
Content-Type: application/javascript
Content-Length: 85578
Connection: keep-alive
Accept-Ranges: bytes
Last-Modified: Tue, 02 Jan 2024 07:45:26 GMT
ETag: "2f6b11a7e914718e0290410e85366fe9"
x-amz-meta-src_last_modified_millis: 1704181510504
x-amz-request-id: c9e9044c5f4ee5e0
x-amz-id-2: aNhsyj2EBZWw2FDa0ORtm/GaBY2006jYz
x-amz-version-id: 4_z76c2ca5e16c6c99f8fcc0416_f11102f336974f7e7_d20240102_m074526_c005_v0501011_t0035_u01704181526983
Strict-Transport-Security: max-age=63072000
|
|
| files040.s3.us-east-005.backblazeb2.com/bootstrap.min.css | 149.137.137.254 | 200 | 145 kB |
URL GET HTTP/1.1files040.s3.us-east-005.backblazeb2.com/bootstrap.min.css IP149.137.137.254:443
Requested byhttps://pub-16e137a4cf854984a7e3444dc08cd250.r2.dev/index.htm CertificateIssuerLet's Encrypt Subjectbackblazeb2.com FingerprintD7:0D:A0:DA:36:A9:0D:75:4F:C6:5A:B5:67:F3:CA:A8:4F:0F:25:36 ValidityThu, 08 Feb 2024 21:16:08 GMT - Wed, 08 May 2024 21:16:07 GMT
File typeASCII text, with very long lines (65325) Size145 kB (144877 bytes) Hash450fc463b8b1a349df717056fbb3e078 895125a4522a3b10ee7ada06ee6503587cbf95c5 2c0f3dcfe93d7e380c290fe4ab838ed8cadff1596d62697f5444be460d1f876d
GET /bootstrap.min.css HTTP/1.1
Host: files040.s3.us-east-005.backblazeb2.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pub-16e137a4cf854984a7e3444dc08cd250.r2.dev/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200
Server: nginx
Date: Thu, 28 Mar 2024 18:11:10 GMT
Content-Type: text/css
Content-Length: 144877
Connection: keep-alive
Accept-Ranges: bytes
Last-Modified: Tue, 02 Jan 2024 07:44:18 GMT
ETag: "450fc463b8b1a349df717056fbb3e078"
x-amz-meta-src_last_modified_millis: 1704181447978
x-amz-request-id: 68f0b121360888c7
x-amz-id-2: aNqoy3mE/Zbs2UzbnOaVmTGZqY0I0XTak
x-amz-version-id: 4_z76c2ca5e16c6c99f8fcc0416_f112a890f815f9b14_d20240102_m074418_c005_v0501000_t0057_u01704181458244
Strict-Transport-Security: max-age=63072000
|
|
| api.ipify.org/?format=json | 104.26.12.205 | 200 OK | 21 B |
URL GET HTTP/2api.ipify.org/?format=json IP104.26.12.205:443
Requested byhttps://pub-16e137a4cf854984a7e3444dc08cd250.r2.dev/index.htm CertificateIssuerGoogle Trust Services LLC Subjectipify.org FingerprintC8:1A:05:47:C5:73:C6:CE:DF:1D:A6:DE:00:11:A9:9A:8C:DB:EF:A7 ValidityThu, 21 Mar 2024 19:56:02 GMT - Wed, 19 Jun 2024 19:56:01 GMT
Hash7d69c71af0f191e9a72db6153f8018d1 f67c5f2887bc05654b47f76e9621e53a4091aed1 5bac6e06cf0e1ad38c55f9f9d12122272bf4b8157877629fe68cd33fe2133c65
GET /?format=json HTTP/1.1
Host: api.ipify.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://pub-16e137a4cf854984a7e3444dc08cd250.r2.dev
DNT: 1
Connection: keep-alive
Referer: https://pub-16e137a4cf854984a7e3444dc08cd250.r2.dev/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 28 Mar 2024 18:11:10 GMT
content-type: application/json
content-length: 21
access-control-allow-origin: *
vary: Origin
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 86b994c7afd25693-OSL
X-Firefox-Spdy: h2
|
|
| api.ipify.org/?format=json | 104.26.12.205 | 200 OK | 21 B |
URL GET HTTP/2api.ipify.org/?format=json IP104.26.12.205:443
Requested byhttps://pub-16e137a4cf854984a7e3444dc08cd250.r2.dev/index.htm CertificateIssuerGoogle Trust Services LLC Subjectipify.org FingerprintC8:1A:05:47:C5:73:C6:CE:DF:1D:A6:DE:00:11:A9:9A:8C:DB:EF:A7 ValidityThu, 21 Mar 2024 19:56:02 GMT - Wed, 19 Jun 2024 19:56:01 GMT
Hash7d69c71af0f191e9a72db6153f8018d1 f67c5f2887bc05654b47f76e9621e53a4091aed1 5bac6e06cf0e1ad38c55f9f9d12122272bf4b8157877629fe68cd33fe2133c65
GET /?format=json HTTP/1.1
Host: api.ipify.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://pub-16e137a4cf854984a7e3444dc08cd250.r2.dev
DNT: 1
Connection: keep-alive
Referer: https://pub-16e137a4cf854984a7e3444dc08cd250.r2.dev/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 28 Mar 2024 18:11:10 GMT
content-type: application/json
content-length: 21
access-control-allow-origin: *
vary: Origin
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 86b994c7afd05693-OSL
X-Firefox-Spdy: h2
|
|
| files040.s3.us-east-005.backblazeb2.com/favicon_dhl.ico | 149.137.137.254 | 200 | 2.7 kB |
URL GET HTTP/1.1files040.s3.us-east-005.backblazeb2.com/favicon_dhl.ico IP149.137.137.254:443
Requested byhttps://pub-16e137a4cf854984a7e3444dc08cd250.r2.dev/index.htm CertificateIssuerLet's Encrypt Subjectbackblazeb2.com FingerprintD7:0D:A0:DA:36:A9:0D:75:4F:C6:5A:B5:67:F3:CA:A8:4F:0F:25:36 ValidityThu, 08 Feb 2024 21:16:08 GMT - Wed, 08 May 2024 21:16:07 GMT
File typeMS Windows icon resource - 3 icons, 48x48, 16 colors, 4 bits/pixel, 32x32, 16 colors, 4 bits/pixel Hash1db617fc614c1df23a9c90548582b8c4 4a4c66238fb5235fd14c37dba698e4bc406dddf5 c0c78f3f6d1032aff5be66bdedecbdf38e3e3453bf98c16013d44336e955d72f
GET /favicon_dhl.ico HTTP/1.1
Host: files040.s3.us-east-005.backblazeb2.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pub-16e137a4cf854984a7e3444dc08cd250.r2.dev/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200
Server: nginx
Date: Thu, 28 Mar 2024 18:11:11 GMT
Content-Type: image/x-icon
Content-Length: 2734
Connection: keep-alive
Accept-Ranges: bytes
Last-Modified: Tue, 02 Jan 2024 07:39:40 GMT
ETag: "1db617fc614c1df23a9c90548582b8c4"
x-amz-meta-src_last_modified_millis: 1691576324001
x-amz-request-id: d55b415656a73b77
x-amz-id-2: aNkkyfGHvZe82zDYCOVZmPmaLY0w0jzZ/
x-amz-version-id: 4_z76c2ca5e16c6c99f8fcc0416_f100b66dd88332096_d20240102_m073940_c005_v0501001_t0029_u01704181180272
Strict-Transport-Security: max-age=63072000
|
|
| blog.koin.com.br/wp-content/plugins/jhjd2021/new/dhlcom/assets/banner.png | 141.193.213.11 | 404 Not Found | 0 B |
URL GET HTTP/3blog.koin.com.br/wp-content/plugins/jhjd2021/new/dhlcom/assets/banner.png IP141.193.213.11:443 ASN#209242 Cloudflare London, LLC
Requested byhttps://pub-16e137a4cf854984a7e3444dc08cd250.r2.dev/index.htm CertificateIssuerLet's Encrypt Subjectblog.koin.com.br Fingerprint91:AF:1E:45:23:E0:92:3C:72:BC:64:4F:0B:F2:17:BB:9D:B8:B2:2A ValidityThu, 21 Mar 2024 19:14:36 GMT - Wed, 19 Jun 2024 19:14:35 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /wp-content/plugins/jhjd2021/new/dhlcom/assets/banner.png HTTP/1.1
Host: blog.koin.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pub-16e137a4cf854984a7e3444dc08cd250.r2.dev/
Cookie: __cf_bm=62GHXypJ6HzksCFT.GEdQz4FqeFIjKZyNSlwusXsmjU-1711649469-1.0.1.1-YMzqp0OcxZ88JENwlnAxhgrj3FWxZmiX.jOAgMHUQPFHbdCgiBncg2VwfhWM0e_N2zUydXJ5BJZP_W0MRtGPQA
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 404 Not Found
date: Thu, 28 Mar 2024 18:11:10 GMT
content-type: text/html
vary: Accept-Encoding
content-encoding: br
cf-cache-status: HIT
age: 1
server: cloudflare
cf-ray: 86b994c6bb84712f-OSL
alt-svc: h3=":443"; ma=86400
|
|
| fonts.googleapis.com/css?family=Archivo+Narrow&display=swap | 142.250.74.106 | 200 OK | 1.3 kB |
URL GET HTTP/2fonts.googleapis.com/css?family=Archivo+Narrow&display=swap IP142.250.74.106:443
Requested byhttps://pub-16e137a4cf854984a7e3444dc08cd250.r2.dev/index.htm CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint04:B9:D9:E0:01:DB:5E:AB:5A:FF:F0:D9:ED:39:0F:C1:63:18:51:0B ValidityMon, 26 Feb 2024 08:18:27 GMT - Mon, 20 May 2024 08:18:26 GMT
File typeASCII text, with very long lines (1320), with no line terminators Hashe36325252bfeb23fa9155394b983a4c9 3a239d2a0c431d689f4c90af0be0b93b139b927f bdcdb817ce32418726c3a3f01dc27daa4a4c4b77bb30e5acebda35b2c967f31d
GET /css?family=Archivo+Narrow&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pub-16e137a4cf854984a7e3444dc08cd250.r2.dev/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 28 Mar 2024 18:11:09 GMT
date: Thu, 28 Mar 2024 18:11:09 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| blog.koin.com.br/wp-content/plugins/jhjd2021/new/dhlcom/assets/logo.svg | 141.193.213.11 | 404 Not Found | 0 B |
URL GET HTTP/2blog.koin.com.br/wp-content/plugins/jhjd2021/new/dhlcom/assets/logo.svg IP141.193.213.11:443 ASN#209242 Cloudflare London, LLC
Requested byhttps://pub-16e137a4cf854984a7e3444dc08cd250.r2.dev/index.htm CertificateIssuerLet's Encrypt Subjectblog.koin.com.br Fingerprint91:AF:1E:45:23:E0:92:3C:72:BC:64:4F:0B:F2:17:BB:9D:B8:B2:2A ValidityThu, 21 Mar 2024 19:14:36 GMT - Wed, 19 Jun 2024 19:14:35 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /wp-content/plugins/jhjd2021/new/dhlcom/assets/logo.svg HTTP/1.1
Host: blog.koin.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pub-16e137a4cf854984a7e3444dc08cd250.r2.dev/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 404 Not Found
date: Thu, 28 Mar 2024 18:11:09 GMT
content-type: text/html
vary: Accept-Encoding
content-encoding: br
cf-cache-status: EXPIRED
set-cookie: __cf_bm=_giiErSVATjGSzGxPkk8p1sAq0gLCGBbwD1AAwnIwbA-1711649469-1.0.1.1-w2VWu.rANcuAzVmNKaO1eMXGV7ypteNFedKuBvVrM7nW8xHF.aqAIXWskRTYBDTRX54rWGEEpYXqEdUjfqH5ng; path=/; expires=Thu, 28-Mar-24 18:41:09 GMT; domain=.blog.koin.com.br; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 86b994bedb55b50f-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| blog.koin.com.br/wp-content/plugins/jhjd2021/new/dhlcom/assets/banner.png | 141.193.213.11 | 404 Not Found | 0 B |
URL GET HTTP/2blog.koin.com.br/wp-content/plugins/jhjd2021/new/dhlcom/assets/banner.png IP141.193.213.11:443 ASN#209242 Cloudflare London, LLC
Requested byhttps://pub-16e137a4cf854984a7e3444dc08cd250.r2.dev/index.htm CertificateIssuerLet's Encrypt Subjectblog.koin.com.br Fingerprint91:AF:1E:45:23:E0:92:3C:72:BC:64:4F:0B:F2:17:BB:9D:B8:B2:2A ValidityThu, 21 Mar 2024 19:14:36 GMT - Wed, 19 Jun 2024 19:14:35 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /wp-content/plugins/jhjd2021/new/dhlcom/assets/banner.png HTTP/1.1
Host: blog.koin.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pub-16e137a4cf854984a7e3444dc08cd250.r2.dev/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 404 Not Found
date: Thu, 28 Mar 2024 18:11:09 GMT
content-type: text/html
vary: Accept-Encoding
content-encoding: br
cf-cache-status: EXPIRED
set-cookie: __cf_bm=62GHXypJ6HzksCFT.GEdQz4FqeFIjKZyNSlwusXsmjU-1711649469-1.0.1.1-YMzqp0OcxZ88JENwlnAxhgrj3FWxZmiX.jOAgMHUQPFHbdCgiBncg2VwfhWM0e_N2zUydXJ5BJZP_W0MRtGPQA; path=/; expires=Thu, 28-Mar-24 18:41:09 GMT; domain=.blog.koin.com.br; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 86b994bedb54b50f-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| blog.koin.com.br/wp-content/plugins/jhjd2021/new/dhlcom/assets/logo.svg | 141.193.213.11 | 404 Not Found | 0 B |
URL GET HTTP/3blog.koin.com.br/wp-content/plugins/jhjd2021/new/dhlcom/assets/logo.svg IP141.193.213.11:443 ASN#209242 Cloudflare London, LLC
Requested byhttps://pub-16e137a4cf854984a7e3444dc08cd250.r2.dev/index.htm CertificateIssuerLet's Encrypt Subjectblog.koin.com.br Fingerprint91:AF:1E:45:23:E0:92:3C:72:BC:64:4F:0B:F2:17:BB:9D:B8:B2:2A ValidityThu, 21 Mar 2024 19:14:36 GMT - Wed, 19 Jun 2024 19:14:35 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /wp-content/plugins/jhjd2021/new/dhlcom/assets/logo.svg HTTP/1.1
Host: blog.koin.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pub-16e137a4cf854984a7e3444dc08cd250.r2.dev/
Cookie: __cf_bm=62GHXypJ6HzksCFT.GEdQz4FqeFIjKZyNSlwusXsmjU-1711649469-1.0.1.1-YMzqp0OcxZ88JENwlnAxhgrj3FWxZmiX.jOAgMHUQPFHbdCgiBncg2VwfhWM0e_N2zUydXJ5BJZP_W0MRtGPQA
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 404 Not Found
date: Thu, 28 Mar 2024 18:11:10 GMT
content-type: text/html
vary: Accept-Encoding
content-encoding: br
cf-cache-status: HIT
age: 1
server: cloudflare
cf-ray: 86b994c6bb86712f-OSL
alt-svc: h3=":443"; ma=86400
|
|
| blog.koin.com.br/wp-content/plugins/jhjd2021/new/dhlcom/assets/background.jpg | 141.193.213.11 | 404 Not Found | 0 B |
URL GET HTTP/3blog.koin.com.br/wp-content/plugins/jhjd2021/new/dhlcom/assets/background.jpg IP141.193.213.11:443 ASN#209242 Cloudflare London, LLC
Requested byhttps://pub-16e137a4cf854984a7e3444dc08cd250.r2.dev/index.htm CertificateIssuerLet's Encrypt Subjectblog.koin.com.br Fingerprint91:AF:1E:45:23:E0:92:3C:72:BC:64:4F:0B:F2:17:BB:9D:B8:B2:2A ValidityThu, 21 Mar 2024 19:14:36 GMT - Wed, 19 Jun 2024 19:14:35 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /wp-content/plugins/jhjd2021/new/dhlcom/assets/background.jpg HTTP/1.1
Host: blog.koin.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pub-16e137a4cf854984a7e3444dc08cd250.r2.dev/
Cookie: __cf_bm=62GHXypJ6HzksCFT.GEdQz4FqeFIjKZyNSlwusXsmjU-1711649469-1.0.1.1-YMzqp0OcxZ88JENwlnAxhgrj3FWxZmiX.jOAgMHUQPFHbdCgiBncg2VwfhWM0e_N2zUydXJ5BJZP_W0MRtGPQA
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 404 Not Found
date: Thu, 28 Mar 2024 18:11:11 GMT
content-type: text/html
vary: Accept-Encoding
content-encoding: br
cf-cache-status: EXPIRED
server: cloudflare
cf-ray: 86b994c70be2712f-OSL
alt-svc: h3=":443"; ma=86400
|
|