agileprofessional.com.br/wp-content/auth/14e48b368110cd11073278bdb1412524/
104.21.17.61200 OK 5.4 kB URL HTTP/1.1 agileprofessional.com.br/wp-content/auth/14e48b368110cd11073278bdb1412524/
IP 104.21.17.61:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Non-ISO extended-ASCII text, with very long lines (466), with CRLF line terminators
Hash ed755473ab7815524e4beda893025750
ab889e5623b4ea724548fc9f6d5329644f6c55cd
bf40540fc321118c694a18afa7e468505b9e722eacb53feefad457905bc01cb3
Analyzer Verdict Alert openphish Navy Federal Credit Union
fortinet Phishing
GET /wp-content/auth/14e48b368110cd11073278bdb1412524/ HTTP/1.1
Host: agileprofessional.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Wed, 30 Nov 2022 18:36:43 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
last-modified: Mon, 28 Nov 2022 07:53:36 GMT
vary: Accept-Encoding
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=oK3ZV4FCILRlF8jgrjjmGm%2FIMXKo24B%2FSr4UvuUGFH0nY%2BWVP9hh%2FAP3fpWgrMyLTBiuXr5Wk2353421C3nRFzgZhVkKLZjx487VXvSW0cCzij4NXItFhacq%2Fvu3a6f7X6FUPXUpHbo7kL0%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7725b0b57f16b527-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash a5daf4dc99951793ae2315d4795e8146
4427507ca4d3a5632cc8f598afbc85e2195d00bd
94fb64c1c826ed7099283c0bedb3cea7ac7e1d9526794cb9fad6e761f5989d32
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "94FB64C1C826ED7099283C0BEDB3CEA7AC7E1D9526794CB9FAD6E761F5989D32"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18817
Expires: Wed, 30 Nov 2022 23:50:20 GMT
Date: Wed, 30 Nov 2022 18:36:43 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash f3cf023c797da81728c0ac84c8759331
fa07c5e39e4b0741ea484101cccb2202acea9d9c
5206a0bac8bf78d6b84322519271a1ece2c1039a0090e583de6d6192d88873d0
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5143
Cache-Control: max-age=148819
Content-Type: application/ocsp-response
Date: Wed, 30 Nov 2022 18:36:43 GMT
Etag: "638730f7-1d7"
Expires: Fri, 02 Dec 2022 11:57:02 GMT
Last-Modified: Wed, 30 Nov 2022 10:31:19 GMT
Server: ECS (ska/F71A)
X-Cache: HIT
Content-Length: 471
firefox.settings.services.mozilla.com/v1/
34.102.187.140200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 14cd9a0afb6ba9a763651d5112760d1e
75d7b104ab9ab11fbb73c3f348b43b0119b5adfa
4e32a117106be587ffcd63239c16a8117eb7840830d4c9decf6527761967532e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Alert, Retry-After, Backoff, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Wed, 30 Nov 2022 18:18:03 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 1120
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 6d9d34c96b9a826ae5676640c966469c
8052a16d41a637e420478b7de1ff5a2dc951fccd
f18ac558cb786126bb7efb159e03353d268d5f5796bcfd2691a349dfc68d863c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F18AC558CB786126BB7EFB159E03353D268D5F5796BCFD2691A349DFC68D863C"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5142
Expires: Wed, 30 Nov 2022 20:02:25 GMT
Date: Wed, 30 Nov 2022 18:36:43 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 9ebddc2b260d081ebbefee47c037cb28
492bad62a7ca6a74738921ef5ae6f0be5edebf39
74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5
GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: 7F61fTWPjCP0m3PyZ9hu0J/SIBoz2J6JoFCi1LLFfye3AzKvAQP4QNzAIVf9jBaSUnsXb0hKoF4=
x-amz-request-id: MQK9TRYX5ZNZSYFC
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Wed, 30 Nov 2022 17:45:19 GMT
age: 3085
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 30 Nov 2022 18:36:44 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
agileprofessional.com.br/wp-content/auth/14e48b368110cd11073278bdb1412524/index_files/css.css
104.21.17.61200 OK 658 B URL HTTP/1.1 agileprofessional.com.br/wp-content/auth/14e48b368110cd11073278bdb1412524/index_files/css.css
IP 104.21.17.61:0
Hash b8e0523f47884490e8dd8d25335c1160
8805ce8da01ec802791550bcf1fc65c281cf96f8
f950644cdca8e5b60dfa41e35a0cfb40bd01055878dab34e3169c98e94b363f0
Analyzer Verdict Alert urlquery Phishing - Navy Federal Credit Union
GET /wp-content/auth/14e48b368110cd11073278bdb1412524/index_files/css.css HTTP/1.1
Host: agileprofessional.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://agileprofessional.com.br/wp-content/auth/14e48b368110cd11073278bdb1412524/
HTTP/1.1 200 OK
Date: Wed, 30 Nov 2022 18:36:44 GMT
Content-Type: text/css
Content-Length: 658
Connection: keep-alive
cache-control: public, max-age=604800
expires: Mon, 05 Dec 2022 16:35:39 GMT
etag: "14d2-63846900-8c20c58;gz"
last-modified: Mon, 28 Nov 2022 07:53:36 GMT
content-encoding: gzip
vary: Accept-Encoding
CF-Cache-Status: HIT
Age: 180064
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=67fkDnUYTDkVSqKJguxQ0tinbt3tNFPmMYRZJTQASDm%2BjDzoYEgSZBRbn1Zb4bte8JAsBii61uDH71T%2FGWGepwuIZ4T8KdOr2XeY23AiJvF9qc5y8BFKoVbmoSnZcJy8GQVqezWCnqqrQso%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7725b0b79a04b527-OSL
alt-svc: h2=":443"; ma=60
agileprofessional.com.br/wp-content/auth/14e48b368110cd11073278bdb1412524/index_files/nfcu-icons-599150400912c8247ee1872211972b2a.css
104.21.17.61200 OK 1.9 kB URL HTTP/1.1 agileprofessional.com.br/wp-content/auth/14e48b368110cd11073278bdb1412524/index_files/nfcu-icons-599150400912c8247ee1872211972b2a.css
IP 104.21.17.61:0
File type ASCII text, with CRLF line terminators
Hash 65b81dd5dc3129e7de261e4e154e8c9c
76ef6e94435ba8615cbd84e17a49d7e8936d3852
5b31ed79d5f3759fb3b32af2543756870f6ee8b81d6aae87b12f862272b121b7
GET /wp-content/auth/14e48b368110cd11073278bdb1412524/index_files/nfcu-icons-599150400912c8247ee1872211972b2a.css HTTP/1.1
Host: agileprofessional.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://agileprofessional.com.br/wp-content/auth/14e48b368110cd11073278bdb1412524/
HTTP/1.1 200 OK
Date: Wed, 30 Nov 2022 18:36:44 GMT
Content-Type: text/css
Content-Length: 1892
Connection: keep-alive
cache-control: public, max-age=604800
expires: Mon, 05 Dec 2022 16:35:38 GMT
etag: "27eb-63846900-8c20c55;gz"
last-modified: Mon, 28 Nov 2022 07:53:36 GMT
content-encoding: gzip
vary: Accept-Encoding
CF-Cache-Status: HIT
Age: 180064
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=QLGTabYb8sZiywsGrJWkxsYN1cv9MTR8I7WGfEvgsLJsWmON2Jtr7Hp8h5E6iNTbvJ6dJze98asP7xvIr8h%2F6%2BocKXrh7f41O7zwZ%2FAfOSmsC084HvpQ05dde%2BpRLmv%2Bxm02svEA7O5X6vw%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7725b0b79f290afa-OSL
alt-svc: h2=":443"; ma=60
agileprofessional.com.br/wp-content/auth/14e48b368110cd11073278bdb1412524/index_files/responsivemain-599150400912c8247ee1872211972b2a.css
104.21.17.61200 OK 22 kB URL HTTP/1.1 agileprofessional.com.br/wp-content/auth/14e48b368110cd11073278bdb1412524/index_files/responsivemain-599150400912c8247ee1872211972b2a.css
IP 104.21.17.61:0
File type assembler source, ASCII text, with very long lines (384), with CRLF line terminators
Hash 29a86791a7518efabc7e40b55bb1405a
7347bcf28f8f286288a6209276f1d1f608eadafa
c942346cafbbce97838f5a9ea26413d6f2c3a12004e190c72dc2326b73a22d8c
GET /wp-content/auth/14e48b368110cd11073278bdb1412524/index_files/responsivemain-599150400912c8247ee1872211972b2a.css HTTP/1.1
Host: agileprofessional.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://agileprofessional.com.br/wp-content/auth/14e48b368110cd11073278bdb1412524/
HTTP/1.1 200 OK
Date: Wed, 30 Nov 2022 18:36:44 GMT
Content-Type: text/css
Content-Length: 21835
Connection: keep-alive
cache-control: public, max-age=604800
expires: Mon, 05 Dec 2022 16:35:39 GMT
etag: "21cdc-63846900-8c20c50;gz"
last-modified: Mon, 28 Nov 2022 07:53:36 GMT
content-encoding: gzip
vary: Accept-Encoding
CF-Cache-Status: HIT
Age: 180064
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Q5%2F2IZu5QlEBUcuHIXI55wzrcxreMC2L87sCqadJwHt0H2Y6CNKzJ6qYssyh2K8TMfLkGo%2FBqrw%2BzUdBsz1BxphtW2M7TFZp90nJltfcbxrrkdmdNuHfkHQ2pdbHXrpXJwwJa6cf7AJFbjU%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7725b0b7aa1fb527-OSL
alt-svc: h2=":443"; ma=60
agileprofessional.com.br/wp-content/auth/14e48b368110cd11073278bdb1412524/index_files/nauth-599150400912c8247ee1872211972b2a.css
104.21.17.61200 OK 1.3 kB URL HTTP/1.1 agileprofessional.com.br/wp-content/auth/14e48b368110cd11073278bdb1412524/index_files/nauth-599150400912c8247ee1872211972b2a.css
IP 104.21.17.61:0
File type ASCII text, with CRLF line terminators
Hash 798605650e5e2901a56b6e2a03283fd3
b0af61971ce50e4f2abf3cc9aec4a5f1a5606460
a7b4cc299499a198de23b57ad5758b7dd462b911c595501c1275ac5d6429c9a8
Analyzer Verdict Alert urlquery Phishing - Navy Federal Credit Union
GET /wp-content/auth/14e48b368110cd11073278bdb1412524/index_files/nauth-599150400912c8247ee1872211972b2a.css HTTP/1.1
Host: agileprofessional.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://agileprofessional.com.br/wp-content/auth/14e48b368110cd11073278bdb1412524/
HTTP/1.1 200 OK
Date: Wed, 30 Nov 2022 18:36:44 GMT
Content-Type: text/css
Content-Length: 1334
Connection: keep-alive
cache-control: public, max-age=604800
expires: Mon, 05 Dec 2022 16:35:39 GMT
etag: "1208-63846900-8c20c54;gz"
last-modified: Mon, 28 Nov 2022 07:53:36 GMT
content-encoding: gzip
vary: Accept-Encoding
CF-Cache-Status: HIT
Age: 180064
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=4j06pkPJHy3YUJcvWw%2FXlGci2w39xoZjEW6SUxj5KVwOFEpc0oL9%2B1IZsXE8OERBGi5TG8iv6laa7IR187p%2FjJ1QzAhbH0AuUIjiWbAgSHVXsnzCKr%2Bqw%2FxsfXJMob1yko4MARjQlo%2FJ%2BqU%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7725b0b7ab74b503-OSL
alt-svc: h2=":443"; ma=60
agileprofessional.com.br/wp-content/auth/14e48b368110cd11073278bdb1412524/index_files/jquery-ec401aee041a200e3dd94ec7982f0f2f.js
104.21.17.61200 OK 86 kB URL HTTP/1.1 agileprofessional.com.br/wp-content/auth/14e48b368110cd11073278bdb1412524/index_files/jquery-ec401aee041a200e3dd94ec7982f0f2f.js
IP 104.21.17.61:0
File type ASCII text, with CRLF line terminators
Hash e87f0ef1e4e373872e496b0dcca89433
f986b8adc0c1fb752fcacc609a757cd3493aabd5
a0693cbbb78165d55bea4cb96177babe076ddeba377b87605773cd7bbb2cf6dc
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/auth/14e48b368110cd11073278bdb1412524/index_files/jquery-ec401aee041a200e3dd94ec7982f0f2f.js HTTP/1.1
Host: agileprofessional.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://agileprofessional.com.br/wp-content/auth/14e48b368110cd11073278bdb1412524/
HTTP/1.1 200 OK
Date: Wed, 30 Nov 2022 18:36:44 GMT
Content-Type: application/x-javascript
Content-Length: 85688
Connection: keep-alive
cache-control: public, max-age=604800
expires: Mon, 05 Dec 2022 16:35:39 GMT
etag: "48e06-63846900-8697ff8;gz"
last-modified: Mon, 28 Nov 2022 07:53:36 GMT
content-encoding: gzip
vary: Accept-Encoding
CF-Cache-Status: HIT
Age: 180063
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Q32KVxonKAXIOUt%2FcNeGbNgpC%2FsH1Glf4RLsJkmguojXDQLE23xEdFjFNb6Ri8epNvmpQXUV5BkVShRg4%2BCh%2F2ExwzASlDcFml17fhqxO8TPB2VIU7xFWL8SIGf7I2iZpsCnYHEj8uPmAwo%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7725b0b7bf450afa-OSL
alt-svc: h2=":443"; ma=60
agileprofessional.com.br/wp-content/auth/14e48b368110cd11073278bdb1412524/index_files/recaptcha__en.js
104.21.17.61200 OK 138 kB URL HTTP/1.1 agileprofessional.com.br/wp-content/auth/14e48b368110cd11073278bdb1412524/index_files/recaptcha__en.js
IP 104.21.17.61:0
File type ASCII text, with very long lines (549)
Size 138 kB (137483 bytes)
Hash 77cdb837800fca9dca04772c51c3a88d
d73f76d704b7c10fa9bbec2bb5d51bd603a167da
9aa44d5ef96dbd7540640dc45eb0b24e122a1a0a92c63e5474f34ff5db163796
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/auth/14e48b368110cd11073278bdb1412524/index_files/recaptcha__en.js HTTP/1.1
Host: agileprofessional.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://agileprofessional.com.br/wp-content/auth/14e48b368110cd11073278bdb1412524/
HTTP/1.1 200 OK
Date: Wed, 30 Nov 2022 18:36:44 GMT
Content-Type: application/x-javascript
Content-Length: 137483
Connection: keep-alive
cache-control: public, max-age=604800
expires: Mon, 05 Dec 2022 16:35:39 GMT
etag: "55f9b-63846900-8697fed;gz"
last-modified: Mon, 28 Nov 2022 07:53:36 GMT
content-encoding: gzip
vary: Accept-Encoding
CF-Cache-Status: HIT
Age: 180064
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=idIPlCa%2FihYuAGuStCnoPLGEiwuYmDfZhvrlw%2FQJ%2FsnQmNpMdcUsfix8hcWrRbC7lwoFpuOrAHdgUhsHEu3aMvhHxr%2Bh93u6wRwsArOQ%2BTdlZ7UeqyZ%2FAqlqmdO6BXQQTJW6ksn2iQBfsCA%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7725b0b7bbc2b518-OSL
alt-svc: h2=":443"; ma=60
agileprofessional.com.br/wp-content/auth/14e48b368110cd11073278bdb1412524/index_files/dropdown-ec401aee041a200e3dd94ec7982f0f2f.js
104.21.17.61200 OK 1.5 kB URL HTTP/1.1 agileprofessional.com.br/wp-content/auth/14e48b368110cd11073278bdb1412524/index_files/dropdown-ec401aee041a200e3dd94ec7982f0f2f.js
IP 104.21.17.61:0
File type ASCII text, with CRLF line terminators
Hash 1a86176f2c88833e9dabbbbe766f8409
0259c57051d9c6089f63ed9af045e2c118dade2d
477353a4077e7f95aba065cb6d0bf868ed2f3af4a56c407bb6eeb4eb079c53cf
Analyzer Verdict Alert urlquery Phishing - Navy Federal Credit Union
fortinet Phishing
GET /wp-content/auth/14e48b368110cd11073278bdb1412524/index_files/dropdown-ec401aee041a200e3dd94ec7982f0f2f.js HTTP/1.1
Host: agileprofessional.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://agileprofessional.com.br/wp-content/auth/14e48b368110cd11073278bdb1412524/
HTTP/1.1 200 OK
Date: Wed, 30 Nov 2022 18:36:44 GMT
Content-Type: application/x-javascript
Content-Length: 1546
Connection: keep-alive
cache-control: public, max-age=604800
expires: Mon, 05 Dec 2022 16:35:39 GMT
etag: "132c-63846900-8697fff;gz"
last-modified: Mon, 28 Nov 2022 07:53:36 GMT
content-encoding: gzip
vary: Accept-Encoding
CF-Cache-Status: HIT
Age: 180063
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=86TUhk0kYX%2FD%2FQ5j6rtx4EK1bdlq2fDxKgRtE4sjJ1xJzxFc51L4nAnpgQFpPd65z7hdjYcFc5%2BZtz42YJqox79j8bObcRuAA74xj5V7NJHHJ39flVW3NBqOI5fEUwJJHq8btYutWA%2BnGPs%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7725b0b7fa8cb527-OSL
alt-svc: h2=":443"; ma=60
agileprofessional.com.br/wp-content/auth/14e48b368110cd11073278bdb1412524/index_files/bootstrap-select.js
104.21.17.61200 OK 9.1 kB URL HTTP/1.1 agileprofessional.com.br/wp-content/auth/14e48b368110cd11073278bdb1412524/index_files/bootstrap-select.js
IP 104.21.17.61:0
File type ASCII text, with very long lines (31148), with CRLF, LF line terminators
Hash 2f7b98b35a3a3b663dd3b681f3d12451
58f42c079bf812d4f6b5bdc9321f6ff6c0b17d86
9d20fa930de1fcc6c0399bb453689b60787f68bba6f25d54009e76f0d1e272d9
Analyzer Verdict Alert urlquery Phishing - Navy Federal Credit Union
fortinet Phishing
GET /wp-content/auth/14e48b368110cd11073278bdb1412524/index_files/bootstrap-select.js HTTP/1.1
Host: agileprofessional.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://agileprofessional.com.br/wp-content/auth/14e48b368110cd11073278bdb1412524/
HTTP/1.1 200 OK
Date: Wed, 30 Nov 2022 18:36:44 GMT
Content-Type: application/x-javascript
Content-Length: 9053
Connection: keep-alive
cache-control: public, max-age=604800
expires: Mon, 05 Dec 2022 16:35:39 GMT
etag: "7aba-63846900-8c20c49;gz"
last-modified: Mon, 28 Nov 2022 07:53:36 GMT
content-encoding: gzip
vary: Accept-Encoding
CF-Cache-Status: HIT
Age: 180063
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=kRPJxLB8RXpOWJfAcCYhMfi1i7FtzFsM8RWhH3m7pDFeqMk5z%2FzYvw4T%2BY4PvMb6GgT7tKln51I4db34fybNeWpvKULUsxgoXCtzGN4mJKNo2zLIU9W1nDFLOyI3HFGuHb6H%2FnWTwIXPwig%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7725b0b7ff850afa-OSL
alt-svc: h2=":443"; ma=60
agileprofessional.com.br/wp-content/auth/14e48b368110cd11073278bdb1412524/index_files/keypad-ec401aee041a200e3dd94ec7982f0f2f.js
104.21.17.61200 OK 782 B URL HTTP/1.1 agileprofessional.com.br/wp-content/auth/14e48b368110cd11073278bdb1412524/index_files/keypad-ec401aee041a200e3dd94ec7982f0f2f.js
IP 104.21.17.61:0
File type HTML document, ASCII text, with very long lines (1213), with CRLF line terminators
Hash 9506101200c6e3ef3d3de3bf5ff1e7f3
1179096634ace29c378be78d819f23a893742529
aa93b1d73f0b88f880df468e1bdd51ee45a32e6839608bc0632e1281d87e9d34
Analyzer Verdict Alert urlquery Phishing - Navy Federal Credit Union
fortinet Phishing
GET /wp-content/auth/14e48b368110cd11073278bdb1412524/index_files/keypad-ec401aee041a200e3dd94ec7982f0f2f.js HTTP/1.1
Host: agileprofessional.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://agileprofessional.com.br/wp-content/auth/14e48b368110cd11073278bdb1412524/
HTTP/1.1 200 OK
Date: Wed, 30 Nov 2022 18:36:44 GMT
Content-Type: application/x-javascript
Content-Length: 782
Connection: keep-alive
cache-control: public, max-age=604800
expires: Mon, 05 Dec 2022 16:35:39 GMT
etag: "cf2-63846900-8697ffc;gz"
last-modified: Mon, 28 Nov 2022 07:53:36 GMT
content-encoding: gzip
vary: Accept-Encoding
CF-Cache-Status: HIT
Age: 180063
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ZaPsUy1gHX%2FQnLFP3bmPIv5JasWmTOUkqr0qxfjXCTpb7ARn53KdQd7nxRMgTPkpKm1QvwfVrFuBKxx8ho2ER2Y7D0F1mltb16nyhpL6gd23e00gjYUefUxqEv%2B62ulcmFi1CoaTFMeViHg%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7725b0b80c3ab518-OSL
alt-svc: h2=":443"; ma=60
agileprofessional.com.br/wp-content/auth/14e48b368110cd11073278bdb1412524/index_files/cookieGenerator-ec401aee041a200e3dd94ec7982f0f2f.js
104.21.17.61200 OK 861 B URL HTTP/1.1 agileprofessional.com.br/wp-content/auth/14e48b368110cd11073278bdb1412524/index_files/cookieGenerator-ec401aee041a200e3dd94ec7982f0f2f.js
IP 104.21.17.61:0
File type ASCII text, with CRLF line terminators
Hash e1827f0e630abb3df3b1b09f60151710
b5cfe7dbd791ab73ca2bbefefb1aace022ab1fcc
f1a107da176734cee7cf9ba4c7889e0f19047dfb3545877896f1c97efc7892a3
Analyzer Verdict Alert urlquery Phishing - Navy Federal Credit Union
fortinet Phishing
GET /wp-content/auth/14e48b368110cd11073278bdb1412524/index_files/cookieGenerator-ec401aee041a200e3dd94ec7982f0f2f.js HTTP/1.1
Host: agileprofessional.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://agileprofessional.com.br/wp-content/auth/14e48b368110cd11073278bdb1412524/
HTTP/1.1 200 OK
Date: Wed, 30 Nov 2022 18:36:44 GMT
Content-Type: application/x-javascript
Content-Length: 861
Connection: keep-alive
cache-control: public, max-age=604800
expires: Mon, 05 Dec 2022 16:35:39 GMT
etag: "95a-63846900-8697ff3;gz"
last-modified: Mon, 28 Nov 2022 07:53:36 GMT
content-encoding: gzip
vary: Accept-Encoding
CF-Cache-Status: HIT
Age: 180063
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=FV258FnQFawu8aWMfoq5p34Sz2F50nLrGEHCivOhwZDmxEgrF1a%2Fmyqc4wUYmFbTXTT3SkNo7C3TrB4m3bvexPe3Pcw6on%2Bi5YQYzPbLw3GIfNBvEecff2Mf2IFHrb4Sg6R1O7J595uAOSA%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7725b0b80f910afa-OSL
alt-svc: h2=":443"; ma=60
agileprofessional.com.br/wp-content/auth/14e48b368110cd11073278bdb1412524/index_files/login-ec401aee041a200e3dd94ec7982f0f2f.js
104.21.17.61200 OK 1.1 kB URL HTTP/1.1 agileprofessional.com.br/wp-content/auth/14e48b368110cd11073278bdb1412524/index_files/login-ec401aee041a200e3dd94ec7982f0f2f.js
IP 104.21.17.61:0
File type ASCII text, with CRLF line terminators
Hash 40ebffa2ac7c3d11a5e12c0e2cc9893a
e8dd3b159cd41371e260d06f96d89190c7179dfd
d279facebbbfb2141abb7f63ddcc5bda7f860b68c03ac6e1b2fad7905e88813c
Analyzer Verdict Alert urlquery Phishing - Navy Federal Credit Union
fortinet Phishing
GET /wp-content/auth/14e48b368110cd11073278bdb1412524/index_files/login-ec401aee041a200e3dd94ec7982f0f2f.js HTTP/1.1
Host: agileprofessional.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://agileprofessional.com.br/wp-content/auth/14e48b368110cd11073278bdb1412524/
HTTP/1.1 200 OK
Date: Wed, 30 Nov 2022 18:36:44 GMT
Content-Type: application/x-javascript
Content-Length: 1073
Connection: keep-alive
cache-control: public, max-age=604800
expires: Mon, 05 Dec 2022 16:35:39 GMT
etag: "d4a-63846900-8c20c40;gz"
last-modified: Mon, 28 Nov 2022 07:53:36 GMT
content-encoding: gzip
vary: Accept-Encoding
CF-Cache-Status: HIT
Age: 180063
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=P%2FH%2BEL7MYau8d5WGAhxBwOvWLojnaJ7C%2FwlL%2B%2FsTSwTysDRE3YN3K8GTrhD%2Bru1KpSh%2FhNbW4JY8LtYzC4NEDZXhU2bUPyAPvJUJbTor4ekZZ5ZLQGCU7%2FhD84dLV%2Bzx%2B7e%2FrwMod9io2wM%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7725b0b80c4bb518-OSL
alt-svc: h2=":443"; ma=60
agileprofessional.com.br/wp-content/auth/14e48b368110cd11073278bdb1412524/index_files/api.js
104.21.17.61200 OK 558 B URL HTTP/1.1 agileprofessional.com.br/wp-content/auth/14e48b368110cd11073278bdb1412524/index_files/api.js
IP 104.21.17.61:0
File type ASCII text, with very long lines (850), with no line terminators
Hash 2a0fbeaff401daf7f8d961960efa46c4
8c4c3f2d10be69f7fb0fcb659e9232a03f7d7955
8d6f9522208a16b57d9930f7b2b0d828c91492d747c2d9cdd8915abe57842e63
Analyzer Verdict Alert urlquery Phishing - Navy Federal Credit Union
fortinet Phishing
GET /wp-content/auth/14e48b368110cd11073278bdb1412524/index_files/api.js HTTP/1.1
Host: agileprofessional.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://agileprofessional.com.br/wp-content/auth/14e48b368110cd11073278bdb1412524/
HTTP/1.1 200 OK
Date: Wed, 30 Nov 2022 18:36:44 GMT
Content-Type: application/x-javascript
Content-Length: 558
Connection: keep-alive
cache-control: public, max-age=604800
expires: Mon, 05 Dec 2022 16:35:39 GMT
etag: "352-63846900-8c20c5b;gz"
last-modified: Mon, 28 Nov 2022 07:53:36 GMT
content-encoding: gzip
vary: Accept-Encoding
CF-Cache-Status: HIT
Age: 180063
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=YoZsEg6%2FtNUJ%2BPjxTd1%2F4rQuOsxUevln01rUd054H1cda9LsOZ7bnpfdhUBh%2Bn071Lg83n094vzU%2BDmhaOXdz4o7OuLvSj2QZOtb1btATCxeNs0UNvUA27r0xoWwt77Ci%2BK8ZWm7HFimmSQ%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7725b0b81f9c0afa-OSL
alt-svc: h2=":443"; ma=60
agileprofessional.com.br/wp-content/auth/14e48b368110cd11073278bdb1412524/index_files/le2-mtagconfig.js
104.21.17.61200 OK 5.7 kB URL HTTP/1.1 agileprofessional.com.br/wp-content/auth/14e48b368110cd11073278bdb1412524/index_files/le2-mtagconfig.js
IP 104.21.17.61:0
File type ASCII text, with very long lines (1788)
Hash 36eb654aef08e98c53c84daf3137e6f2
b5fa1486b0af186d956f18ee52bc0787d9ddc8b2
4872af9b656f713443c14dc3518111cd79244f41f59dcbc0800e2bd12c9d7aa5
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/auth/14e48b368110cd11073278bdb1412524/index_files/le2-mtagconfig.js HTTP/1.1
Host: agileprofessional.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://agileprofessional.com.br/wp-content/auth/14e48b368110cd11073278bdb1412524/
HTTP/1.1 200 OK
Date: Wed, 30 Nov 2022 18:36:44 GMT
Content-Type: application/x-javascript
Content-Length: 5731
Connection: keep-alive
cache-control: public, max-age=604800
expires: Mon, 05 Dec 2022 16:35:39 GMT
etag: "4e30-63846900-8697ff9;gz"
last-modified: Mon, 28 Nov 2022 07:53:36 GMT
content-encoding: gzip
vary: Accept-Encoding
CF-Cache-Status: HIT
Age: 180063
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=J0NiykxAj%2B9L1X0aJm5IUr5n8xNRE21ZYh5yV2jHiQlxf9WWwpHN%2BeO9w6BXfFIGZBZ5ufFpg5few8vhSvVJ2M5V2133gyclKtccDnGUVO0h1qko2ldRSK0%2BEVJg4DuISvsdjaJ8vdx64HQ%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7725b0b81c65b518-OSL
alt-svc: h2=":443"; ma=60
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 6c84ab982b44868fab9bd9cb08e76b88
238cddf556720f5ea7e30e2c1da69fb00a7b9ce6
cb5f0ca9270b8c6ca217526228f4ef5d9539e2a5f7edcb7d731326407b2523ce
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5057
Cache-Control: max-age=115615
Content-Type: application/ocsp-response
Date: Wed, 30 Nov 2022 18:36:44 GMT
Etag: "6386af9a-1d7"
Expires: Fri, 02 Dec 2022 02:43:39 GMT
Last-Modified: Wed, 30 Nov 2022 01:19:22 GMT
Server: ECS (ska/F71A)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 6c84ab982b44868fab9bd9cb08e76b88
238cddf556720f5ea7e30e2c1da69fb00a7b9ce6
cb5f0ca9270b8c6ca217526228f4ef5d9539e2a5f7edcb7d731326407b2523ce
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5057
Cache-Control: max-age=115615
Content-Type: application/ocsp-response
Date: Wed, 30 Nov 2022 18:36:44 GMT
Etag: "6386af9a-1d7"
Expires: Fri, 02 Dec 2022 02:43:39 GMT
Last-Modified: Wed, 30 Nov 2022 01:19:22 GMT
Server: ECS (ska/F71A)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 6c84ab982b44868fab9bd9cb08e76b88
238cddf556720f5ea7e30e2c1da69fb00a7b9ce6
cb5f0ca9270b8c6ca217526228f4ef5d9539e2a5f7edcb7d731326407b2523ce
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4999
Cache-Control: max-age=115556
Content-Type: application/ocsp-response
Date: Wed, 30 Nov 2022 18:36:44 GMT
Etag: "6386af9a-1d7"
Expires: Fri, 02 Dec 2022 02:42:40 GMT
Last-Modified: Wed, 30 Nov 2022 01:19:22 GMT
Server: ECS (ska/F6FD)
X-Cache: HIT
Content-Length: 471
agileprofessional.com.br/wp-content/auth/14e48b368110cd11073278bdb1412524/index_files/tag.js
104.21.17.61200 OK 7.5 kB URL HTTP/1.1 agileprofessional.com.br/wp-content/auth/14e48b368110cd11073278bdb1412524/index_files/tag.js
IP 104.21.17.61:0
File type ASCII text, with very long lines (21652), with no line terminators
Hash 3bdf59c9ec85ec43d46e5cf9edda2e96
a06ccc8d75554a7e44dd8ce9656e90420b42f38b
d964494995ee4b7de40b3569370e33773c447c759a21fbb3e746e53b61449b35
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/auth/14e48b368110cd11073278bdb1412524/index_files/tag.js HTTP/1.1
Host: agileprofessional.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://agileprofessional.com.br/wp-content/auth/14e48b368110cd11073278bdb1412524/
HTTP/1.1 200 OK
Date: Wed, 30 Nov 2022 18:36:44 GMT
Content-Type: application/x-javascript
Content-Length: 7541
Connection: keep-alive
cache-control: public, max-age=604800
expires: Wed, 07 Dec 2022 18:36:42 GMT
etag: "5494-63846900-8c20c5c;gz"
last-modified: Mon, 28 Nov 2022 07:53:36 GMT
content-encoding: gzip
vary: Accept-Encoding
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Ob%2BABAj%2Fntm7MmxXu9BXGSBSdEHzT27zu2d739URnMtxGc0LR%2BSNihk%2BTArNPhD%2B6olW2W2aOSYlO7n1enMgVzbBFfpZ3HYUxvbJ%2FKBGgI3bsa1DFe34eSe4n%2FH5VQXJBptqsej3Ic1T8jU%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7725b0b83fbf0afa-OSL
alt-svc: h2=":443"; ma=60
agileprofessional.com.br/wp-content/auth/14e48b368110cd11073278bdb1412524/index_files/s_code.js
104.21.17.61200 OK 18 kB URL HTTP/1.1 agileprofessional.com.br/wp-content/auth/14e48b368110cd11073278bdb1412524/index_files/s_code.js
IP 104.21.17.61:0
File type ASCII text, with very long lines (954)
Hash 57231b4740b08ad5465d629b7e48955d
99945653b924fe4e2b29f1b79794a25e8cb8aae2
26b8ceca4e802045a5828cc200b7c9f56ec15fc0e7249b239bb2a0e916f51bc1
GET /wp-content/auth/14e48b368110cd11073278bdb1412524/index_files/s_code.js HTTP/1.1
Host: agileprofessional.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://agileprofessional.com.br/wp-content/auth/14e48b368110cd11073278bdb1412524/
HTTP/1.1 200 OK
Date: Wed, 30 Nov 2022 18:36:44 GMT
Content-Type: application/x-javascript
Content-Length: 17956
Connection: keep-alive
cache-control: public, max-age=604800
expires: Wed, 07 Dec 2022 18:36:42 GMT
etag: "b8fe-63846900-8697ff0;gz"
last-modified: Mon, 28 Nov 2022 07:53:36 GMT
content-encoding: gzip
vary: Accept-Encoding
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=nRBxAEvRng3ACrZ4m%2FA%2FdRxuhx5NVoJ2rE7UpYS3qqzT%2BghitB5Sgts%2BaUBtaH%2FHfunKJ6mZtl6hR4QhU1RJMJw26sA2pWrtc4GzlQN2XZr%2FBcyR6BD0Cs5aUVywehBMAa6zF%2BlKiXviqqM%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7725b0b7bcb70b59-OSL
alt-svc: h2=":443"; ma=60
agileprofessional.com.br/wp-content/auth/14e48b368110cd11073278bdb1412524/index_files/common-ec401aee041a200e3dd94ec7982f0f2f.js
104.21.17.61200 OK 2.5 kB URL HTTP/1.1 agileprofessional.com.br/wp-content/auth/14e48b368110cd11073278bdb1412524/index_files/common-ec401aee041a200e3dd94ec7982f0f2f.js
IP 104.21.17.61:0
File type ASCII text, with CRLF line terminators
Hash f8614888610451b1c4e0016a05a902ac
65d030323066210a93b2a153d83cdc03f2c8cfc6
d553e5b5f1e9a999e7bc8625785507c7c311d753aede3acb53fcbe2425af0cfd
Analyzer Verdict Alert urlquery Phishing - Navy Federal Credit Union
fortinet Phishing
GET /wp-content/auth/14e48b368110cd11073278bdb1412524/index_files/common-ec401aee041a200e3dd94ec7982f0f2f.js HTTP/1.1
Host: agileprofessional.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://agileprofessional.com.br/wp-content/auth/14e48b368110cd11073278bdb1412524/
HTTP/1.1 200 OK
Date: Wed, 30 Nov 2022 18:36:44 GMT
Content-Type: application/x-javascript
Content-Length: 2498
Connection: keep-alive
cache-control: public, max-age=604800
expires: Wed, 07 Dec 2022 18:36:42 GMT
etag: "1d3c-63846900-8697fef;gz"
last-modified: Mon, 28 Nov 2022 07:53:36 GMT
content-encoding: gzip
vary: Accept-Encoding
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=HHhJgGG3sqFDP09AgJpXAVgDhvbS7ifIPzt47ntu%2BPb8QvxP1VAlawTCsqel0oTq5ka2bDASpxf2n52SHHMmtbKcXS3GBAczBEZHg%2Bop56CO8txfEZ%2BU0G3sF1eHehYAuugDXVV6AKf0s%2Bg%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7725b0b7fbefb503-OSL
alt-svc: h2=":443"; ma=60
agileprofessional.com.br/wp-content/auth/14e48b368110cd11073278bdb1412524/index_files/all-599150400912c8247ee1872211972b2a.css
104.21.17.61200 OK 11 kB URL HTTP/1.1 agileprofessional.com.br/wp-content/auth/14e48b368110cd11073278bdb1412524/index_files/all-599150400912c8247ee1872211972b2a.css
IP 104.21.17.61:0
File type ASCII text, with very long lines (50194), with CRLF line terminators
Hash e625984b15bd12ed9b8cd85a99990ad2
a4241955bf78ae6809c39ed48cf8f07b9da2b512
7e12fa3353000af23bfd7c9129b6e8533b4f285e3367387ac443f1f5bb0671ea
GET /wp-content/auth/14e48b368110cd11073278bdb1412524/index_files/all-599150400912c8247ee1872211972b2a.css HTTP/1.1
Host: agileprofessional.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://agileprofessional.com.br/wp-content/auth/14e48b368110cd11073278bdb1412524/
HTTP/1.1 200 OK
Date: Wed, 30 Nov 2022 18:36:44 GMT
Content-Type: text/css
Content-Length: 11007
Connection: keep-alive
cache-control: public, max-age=604800
expires: Wed, 07 Dec 2022 18:36:42 GMT
etag: "c4cf-63846900-8c20c5e;gz"
last-modified: Mon, 28 Nov 2022 07:53:36 GMT
content-encoding: gzip
vary: Accept-Encoding
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=HfjTlkY%2BQ1%2FxSAq8LD33hwYuGNW5QGUbxFq5%2FkGbw2POb83VJahVE829ySoAfnUfHurwDvNbGfLSKU%2BfjmSduq1zCxIgZYEFuJkOX%2BNmdAPtzgeG7Q21O0238fsNpC1lJkSQXRZIzZZAZ6E%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7725b0b7ae510b69-OSL
alt-svc: h2=":443"; ma=60
agileprofessional.com.br/wp-content/auth/14e48b368110cd11073278bdb1412524/index_files/modal-ec401aee041a200e3dd94ec7982f0f2f.js
104.21.17.61200 OK 2.7 kB URL HTTP/1.1 agileprofessional.com.br/wp-content/auth/14e48b368110cd11073278bdb1412524/index_files/modal-ec401aee041a200e3dd94ec7982f0f2f.js
IP 104.21.17.61:0
File type ASCII text, with CRLF line terminators
Hash cb3b97cd9cb889c9b4a072b54f1c3830
7d4b209569d923b9bcd422941e848207f401a3e0
986e3218896a5d1fec0ef3737646caa22fd7b09ded0cf4d3359846cb002c4170
Analyzer Verdict Alert urlquery Phishing - Navy Federal Credit Union
GET /wp-content/auth/14e48b368110cd11073278bdb1412524/index_files/modal-ec401aee041a200e3dd94ec7982f0f2f.js HTTP/1.1
Host: agileprofessional.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://agileprofessional.com.br/wp-content/auth/14e48b368110cd11073278bdb1412524/
HTTP/1.1 200 OK
Date: Wed, 30 Nov 2022 18:36:44 GMT
Content-Type: application/x-javascript
Content-Length: 2701
Connection: keep-alive
cache-control: public, max-age=604800
expires: Wed, 07 Dec 2022 18:36:42 GMT
etag: "2823-63846900-8c20c59;gz"
last-modified: Mon, 28 Nov 2022 07:53:36 GMT
content-encoding: gzip
vary: Accept-Encoding
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=MY0SfwTWGpXhYSAMy8vTQwbNYem89bE7%2FmSEBfEWG5GyJSgwLd9B%2BajEHX61fmwCM8AOod4UVsHom0HIdhwwErOwOB8uW8XOwLrDEuRekLLpybDyUGjGZjbmJo1o0xbUxXAnmbcXHI54Qe4%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7725b0b80a9eb527-OSL
alt-svc: h2=":443"; ma=60
agileprofessional.com.br/wp-content/auth/14e48b368110cd11073278bdb1412524/index_files/img_logo-veterans-1d62888b4b662af9142e3c385f423f32.svg
104.21.17.61200 OK 6.1 kB URL HTTP/1.1 agileprofessional.com.br/wp-content/auth/14e48b368110cd11073278bdb1412524/index_files/img_logo-veterans-1d62888b4b662af9142e3c385f423f32.svg
IP 104.21.17.61:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (2618), with CRLF line terminators
Hash 6af0c59ecd24f7391c348485c3ef761e
2cad8139cbe910551a123dd55a3419e06694e432
472c03150b5eb8189c417c7dab141f653c9ce938226b14d9270f7641312df720
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/auth/14e48b368110cd11073278bdb1412524/index_files/img_logo-veterans-1d62888b4b662af9142e3c385f423f32.svg HTTP/1.1
Host: agileprofessional.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://agileprofessional.com.br/wp-content/auth/14e48b368110cd11073278bdb1412524/
HTTP/1.1 200 OK
Date: Wed, 30 Nov 2022 18:36:44 GMT
Content-Type: image/svg+xml
Content-Length: 6104
Connection: keep-alive
cache-control: public, max-age=604800
expires: Mon, 05 Dec 2022 16:35:40 GMT
etag: "55ca-63846900-8c20c60;gz"
last-modified: Mon, 28 Nov 2022 07:53:36 GMT
content-encoding: gzip
vary: Accept-Encoding
CF-Cache-Status: HIT
Age: 180063
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=px4Ms04EYcSRVTIm7zi%2FLLb%2FsuVt%2Bue8wiPAzOAaHkPBm%2FsRDoR9Wkbonx7lj0BGqJguARs2yrUCyU5Bc2mKNZK2YuNvc2VT1U%2F7%2B4jkqJUnjrihyuiC7rDNxS8nsIlnCqs0uls7MQDolJM%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7725b0b968e90afa-OSL
alt-svc: h2=":443"; ma=60
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
34.102.187.140200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Pragma, Last-Modified, ETag, Alert, Expires, Retry-After, Cache-Control, Backoff, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Wed, 30 Nov 2022 18:08:56 GMT
cache-control: public,max-age=3600
age: 1668
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 608e4d04a251ebcd51660e801f388303
fcb9aa48fd6ed504a1a9fed7990c5ccde63e6a1d
cc1a34cd0a99e301df97cf184ab0ded2e229659f86f43e4eff479dee221695dc
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 30 Nov 2022 18:36:44 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 608e4d04a251ebcd51660e801f388303
fcb9aa48fd6ed504a1a9fed7990c5ccde63e6a1d
cc1a34cd0a99e301df97cf184ab0ded2e229659f86f43e4eff479dee221695dc
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 30 Nov 2022 18:36:44 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/sourcesanspro/v14/6xKydSBYKcSV-LCoeQqfX1RYOo3i54rwlxdu.woff2
216.58.207.227200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/sourcesanspro/v14/6xKydSBYKcSV-LCoeQqfX1RYOo3i54rwlxdu.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 15948, version 1.0\012- data
Hash c85615b296302af51e683eecb5e371d4
ff7c20b0947804c607759aa46eab666d94cf12ea
efb3cdc5e4582fd67dffab6fc6e5062074ce3f8c51747346af944e97749dc309
Analyzer Verdict Alert urlquery Phishing - Navy Federal Credit Union
GET /s/sourcesanspro/v14/6xKydSBYKcSV-LCoeQqfX1RYOo3i54rwlxdu.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://agileprofessional.com.br
Connection: keep-alive
Referer: http://agileprofessional.com.br/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15948
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 29 Nov 2022 15:43:15 GMT
expires: Wed, 29 Nov 2023 15:43:15 GMT
cache-control: public, max-age=31536000
age: 96809
last-modified: Tue, 15 Sep 2020 18:10:32 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/sourcesanspro/v14/6xK3dSBYKcSV-LCoeQqfX1RYOo3qOK7l.woff2
216.58.207.227200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/sourcesanspro/v14/6xK3dSBYKcSV-LCoeQqfX1RYOo3qOK7l.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 16112, version 1.0\012- data
Hash 899c8f78ce650d4009d42443897aa723
d2e2faa9780b7fca5a5cb20a853dd7df55b3101e
a9950fa5ca9cf47072770900d259bcf6778aa1119652d2e706d5eb92df254199
Analyzer Verdict Alert urlquery Phishing - Navy Federal Credit Union
GET /s/sourcesanspro/v14/6xK3dSBYKcSV-LCoeQqfX1RYOo3qOK7l.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://agileprofessional.com.br
Connection: keep-alive
Referer: http://agileprofessional.com.br/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 16112
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 26 Nov 2022 14:39:02 GMT
expires: Sun, 26 Nov 2023 14:39:02 GMT
cache-control: public, max-age=31536000
age: 359862
last-modified: Tue, 15 Sep 2020 18:10:09 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
agileprofessional.com.br/wp-content/auth/14e48b368110cd11073278bdb1412524/index_files/a_003.htm
104.21.17.61200 OK 116 B URL HTTP/1.1 agileprofessional.com.br/wp-content/auth/14e48b368110cd11073278bdb1412524/index_files/a_003.htm
IP 104.21.17.61:0
File type HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash ab868ea2d57aa884dabacc0b5fe6e67e
7888951020722fea401a25c7064ce8e1c6b07c9d
fc5c15abbbcac24900d44a7ba4081648da8dc2d8688fafdcde7d2e5f575ab88d
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/auth/14e48b368110cd11073278bdb1412524/index_files/a_003.htm HTTP/1.1
Host: agileprofessional.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://agileprofessional.com.br/wp-content/auth/14e48b368110cd11073278bdb1412524/
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Wed, 30 Nov 2022 18:36:44 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
last-modified: Mon, 28 Nov 2022 07:53:36 GMT
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=KJlaNcsobUce0SonMivpzjPczz4d5LsixOzEZAYdnhy%2BrtvxIFRDFExMwzpabgetUT038Eh2aJGpHGlG64RNdzztaxD7K5DsXL5ffgWGPjQ0Kd2%2BVfOcSRYdBO1bVh6YhLiri6T%2FTl%2FyV3M%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7725b0b9e95b0afa-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 608e4d04a251ebcd51660e801f388303
fcb9aa48fd6ed504a1a9fed7990c5ccde63e6a1d
cc1a34cd0a99e301df97cf184ab0ded2e229659f86f43e4eff479dee221695dc
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 30 Nov 2022 18:36:44 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
agileprofessional.com.br/wp-content/auth/14e48b368110cd11073278bdb1412524/index_files/f67c327263eti209967cda713cd843baa
104.21.17.61200 OK 72 kB URL HTTP/1.1 agileprofessional.com.br/wp-content/auth/14e48b368110cd11073278bdb1412524/index_files/f67c327263eti209967cda713cd843baa
IP 104.21.17.61:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 335f2776eaf4ca7eca9953d2240c3316
5f5702f072d8e721dd3557ccd2a0944b3cc58fa5
ca9ee108c9cd3072864c1fcfe42f8fa40f829a33267388e0adbf41fa8b2da9a5
Analyzer Verdict Alert urlquery Phishing - Navy Federal Credit Union
fortinet Phishing
GET /wp-content/auth/14e48b368110cd11073278bdb1412524/index_files/f67c327263eti209967cda713cd843baa HTTP/1.1
Host: agileprofessional.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://agileprofessional.com.br/wp-content/auth/14e48b368110cd11073278bdb1412524/
HTTP/1.1 200 OK
Date: Wed, 30 Nov 2022 18:36:44 GMT
Content-Length: 72012
Connection: keep-alive
etag: "1194c-63846900-8c20c44;;;"
last-modified: Mon, 28 Nov 2022 07:53:36 GMT
accept-ranges: bytes
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=LJdBM3mxxwqXoBV2%2FQB9%2FKcBsqgk9k9%2BA7Vj1t%2FlaZQnFELg1PEP70EJ8Ij467q7aptboDfSrapdPcFiYIYt6LiSo3zkp0T6LUnwWUSlc04mQVCGBZoI%2BFblTkA5hlvIDMgaZOuUAfQY5Xo%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7725b0b87ce1b518-OSL
alt-svc: h2=":443"; ma=60
agileprofessional.com.br/wp-content/auth/14e48b368110cd11073278bdb1412524/images/css/img-billboard-BG.svg
104.21.17.61500 Internal Server Error 2.6 kB URL HTTP/1.1 agileprofessional.com.br/wp-content/auth/14e48b368110cd11073278bdb1412524/images/css/img-billboard-BG.svg
IP 104.21.17.61:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text
Hash 3c32982e1f48797d87295a4237971f09
43f38c27234a49505e9bbbd73bd47c2ba47c0ec8
6790fb9a42b6e2ea88a55f1f86db97ce8bef7aeb16be9567831580aeeb1391e4
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/auth/14e48b368110cd11073278bdb1412524/images/css/img-billboard-BG.svg HTTP/1.1
Host: agileprofessional.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://agileprofessional.com.br/wp-content/auth/14e48b368110cd11073278bdb1412524/index_files/responsivemain-599150400912c8247ee1872211972b2a.css
HTTP/1.1 500 Internal Server Error
Date: Wed, 30 Nov 2022 18:36:44 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
x-powered-by: PHP/7.4.28
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: max-age=14400, must-revalidate
vary: Accept-Encoding
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=sCy%2FmVTfze4JExEAl23u3RNtytczOk5n5QiHD8wUxCz%2BbcyOZbx%2FtV37u7zmnO0E7HqHcFbOjjrLqJ%2Fj1PfsinNfrFAswHW7hVfjgN66c0LN00WBqx72s9hGmshhnCwTS0JbVXRxj1JRFXo%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7725b0b9ee9fb503-OSL
alt-svc: h2=":443"; ma=60
my.navyfederal.org/NFOAA_Auth/resources/images/Group5166-1d62888b4b662af9142e3c385f423f32.svg
104.88.20.141404 Not Found 1.0 kB URL HTTP/1.1 my.navyfederal.org/NFOAA_Auth/resources/images/Group5166-1d62888b4b662af9142e3c385f423f32.svg
IP 104.88.20.141:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- C source text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with CRLF line terminators
Hash 1536cc36842f2165300106001ee4b19a
d3bd2ed7be7778ebb3fef66672f216982e1d2e45
4ece4a1ee577bdbd46f9f55ee93ad77713bdd635c5a547e575f230fca329ae42
GET /NFOAA_Auth/resources/images/Group5166-1d62888b4b662af9142e3c385f423f32.svg HTTP/1.1
Host: my.navyfederal.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://agileprofessional.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 404 Not Found
X-Powered-By: Servlet/3.0
X-Frame-Options: DENY
$WSEP:
Last-Modified: Wed, 07 Sep 2022 21:50:18 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Type: text/html
Content-Language: en-US
Content-Length: 1018
Date: Wed, 30 Nov 2022 18:36:44 GMT
Connection: keep-alive
Set-Cookie: navyfed-opentoken=; domain=.navyfederal.org; path=/; expires=Thu, 01-Jan-1970 00:00:00 GMT; secure
navyfed-extracted=; domain=.navyfederal.org; path=/; expires=Thu, 01-Jan-1970 00:00:00 GMT; secure
navyfed-deviceprint=; domain=.navyfederal.org; path=/; expires=Thu, 01-Jan-1970 00:00:00 GMT; secure
navyfed-useractive=; domain=.navyfederal.org; path=/; expires=Thu, 01-Jan-1970 00:00:00 GMT; secure
navyfed-pingolb=; domain=.navyfederal.org; path=/; expires=Thu, 01-Jan-1970 00:00:00 GMT; secure
navyfed-obo=; domain=.navyfederal.org; path=/; expires=Thu, 01-Jan-1970 00:00:00 GMT; secure
SMSESSION=; domain=.navyfederal.org; path=/; expires=Thu, 01-Jan-1970 00:00:00 GMT; secure
my_dc=; domain=.navyfederal.org; path=/; expires=Thu, 01-Jan-1970 00:00:00 GMT; secure
acctsvcs_dc=; domain=.navyfederal.org; path=/; expires=Thu, 01-Jan-1970 00:00:00 GMT; secure
my_dc=w; path=/; domain=.navyfederal.org; secure
akaalb_my_navyfederal_ALB=~op=my_100_wch:my_prdw|~rv=30~m=my_prdw:0|~os=ddcfe9c18a053d3068d757a21af73146~id=be9240f11c517fd431a074cb9fffdc3e; path=/; Secure; SameSite=None; Domain=.navyfederal.org
ak_bmsc=B8F4DAD48C65C41C35A5A9785BDB5449~000000000000000000000000000000~YAAQDzIQYCxJvIKEAQAAE7HTyRHbkHvHUd0SSoe7z4WTyZnI1X9fj//+0Y687HwErbGfch4TE/6WlyOhvu+R0ZWzlDS7ho+KlGppZpgKyQtsXrbgxWM23b/wVgDwY4W4zrIRcZrQG7RuYp7XrnL0QrPGzPf33FCQwI+nCf231Cd1WWc2pacAVcexCnLWz7IUPoRWzZCboD0rTmzwdvPeTdONxeUs9azpeBMBF4VgbULPijw7rMIOBog/lq/O2VGMrqHsm8nHcyra1p5bQInAjwHuabBdoilpa4QhWdLz5yPR/GFglzVYXSFAdVoBKhjnAV5Ac2HM62a2TM0io4Y9P/Z8yjsoyEqaI5bsm7Is9LUBietYi0oCHTfH5u2nYxRnBZqn+g==; Domain=.navyfederal.org; Path=/; Expires=Wed, 30 Nov 2022 20:36:44 GMT; Max-Age=7200; HttpOnly
Strict-Transport-Security: max-age=31536000
my.navyfederal.org/NFOAA_Auth/resources/images/Group5158-1d62888b4b662af9142e3c385f423f32.svg
104.88.20.141404 Not Found 1.0 kB URL HTTP/1.1 my.navyfederal.org/NFOAA_Auth/resources/images/Group5158-1d62888b4b662af9142e3c385f423f32.svg
IP 104.88.20.141:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- C source text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with CRLF line terminators
Hash 1536cc36842f2165300106001ee4b19a
d3bd2ed7be7778ebb3fef66672f216982e1d2e45
4ece4a1ee577bdbd46f9f55ee93ad77713bdd635c5a547e575f230fca329ae42
GET /NFOAA_Auth/resources/images/Group5158-1d62888b4b662af9142e3c385f423f32.svg HTTP/1.1
Host: my.navyfederal.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://agileprofessional.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 404 Not Found
X-Powered-By: Servlet/3.0
X-Frame-Options: DENY
$WSEP:
Last-Modified: Wed, 07 Sep 2022 21:50:18 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Type: text/html
Content-Language: en-US
Content-Length: 1018
Date: Wed, 30 Nov 2022 18:36:44 GMT
Connection: keep-alive
Set-Cookie: navyfed-opentoken=; domain=.navyfederal.org; path=/; expires=Thu, 01-Jan-1970 00:00:00 GMT; secure
navyfed-extracted=; domain=.navyfederal.org; path=/; expires=Thu, 01-Jan-1970 00:00:00 GMT; secure
navyfed-deviceprint=; domain=.navyfederal.org; path=/; expires=Thu, 01-Jan-1970 00:00:00 GMT; secure
navyfed-useractive=; domain=.navyfederal.org; path=/; expires=Thu, 01-Jan-1970 00:00:00 GMT; secure
navyfed-pingolb=; domain=.navyfederal.org; path=/; expires=Thu, 01-Jan-1970 00:00:00 GMT; secure
navyfed-obo=; domain=.navyfederal.org; path=/; expires=Thu, 01-Jan-1970 00:00:00 GMT; secure
SMSESSION=; domain=.navyfederal.org; path=/; expires=Thu, 01-Jan-1970 00:00:00 GMT; secure
my_dc=; domain=.navyfederal.org; path=/; expires=Thu, 01-Jan-1970 00:00:00 GMT; secure
acctsvcs_dc=; domain=.navyfederal.org; path=/; expires=Thu, 01-Jan-1970 00:00:00 GMT; secure
my_dc=w; path=/; domain=.navyfederal.org; secure
akaalb_my_navyfederal_ALB=~op=my_100_wch:my_prdw|~rv=41~m=my_prdw:0|~os=ddcfe9c18a053d3068d757a21af73146~id=418d03c723e12d6b19af8125cc1c9a48; path=/; Secure; SameSite=None; Domain=.navyfederal.org
ak_bmsc=F4207642C1EA4113249DF36E136DD8A8~000000000000000000000000000000~YAAQDzIQYC1JvIKEAQAAFLHTyRGieyAsvBnhCr+e4Iu5ywOTt+pWeoF+uzaUqTe1pSS/6BKgLICtKXok3c2zG9J6mFZWnl70NCHas3MNDWhwgAhDEA2UyJx1RVYkcszzHAWVax2ITpgZkpIJn8/EyxGOTVPQp1Pl7kiayAAU87FDNiwtqkGMXe6JP2zZTtB0VXAW6PZugdfC0BuHK4kbUOs/u+M10o6LJZVZZmCKAlGxRWmhaG49aBqC4x6fv47pefz63+asLJGe1KeKjKvJfur3qV/7EYJ/CZHFmg4tnrfmwH7Wu2eghdA01bddct7KA5BZpiW57+G0InQ06cGcCJt2lvUVQNGBgNQxMtD4AnQnskq+7Oqh++TYLK/fI//DHhMP1g==; Domain=.navyfederal.org; Path=/; Expires=Wed, 30 Nov 2022 20:36:44 GMT; Max-Age=7200; HttpOnly
Strict-Transport-Security: max-age=31536000
my.navyfederal.org/NFOAA_Auth/resources/images/contact-us-1d62888b4b662af9142e3c385f423f32.svg
104.88.20.141404 Not Found 1.0 kB URL HTTP/1.1 my.navyfederal.org/NFOAA_Auth/resources/images/contact-us-1d62888b4b662af9142e3c385f423f32.svg
IP 104.88.20.141:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- C source text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with CRLF line terminators
Hash 1536cc36842f2165300106001ee4b19a
d3bd2ed7be7778ebb3fef66672f216982e1d2e45
4ece4a1ee577bdbd46f9f55ee93ad77713bdd635c5a547e575f230fca329ae42
GET /NFOAA_Auth/resources/images/contact-us-1d62888b4b662af9142e3c385f423f32.svg HTTP/1.1
Host: my.navyfederal.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://agileprofessional.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 404 Not Found
X-Powered-By: Servlet/3.0
X-Frame-Options: DENY
$WSEP:
Last-Modified: Wed, 07 Sep 2022 21:50:18 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Type: text/html
Content-Language: en-US
Content-Length: 1018
Date: Wed, 30 Nov 2022 18:36:44 GMT
Connection: keep-alive
Set-Cookie: navyfed-opentoken=; domain=.navyfederal.org; path=/; expires=Thu, 01-Jan-1970 00:00:00 GMT; secure
navyfed-extracted=; domain=.navyfederal.org; path=/; expires=Thu, 01-Jan-1970 00:00:00 GMT; secure
navyfed-deviceprint=; domain=.navyfederal.org; path=/; expires=Thu, 01-Jan-1970 00:00:00 GMT; secure
navyfed-useractive=; domain=.navyfederal.org; path=/; expires=Thu, 01-Jan-1970 00:00:00 GMT; secure
navyfed-pingolb=; domain=.navyfederal.org; path=/; expires=Thu, 01-Jan-1970 00:00:00 GMT; secure
navyfed-obo=; domain=.navyfederal.org; path=/; expires=Thu, 01-Jan-1970 00:00:00 GMT; secure
SMSESSION=; domain=.navyfederal.org; path=/; expires=Thu, 01-Jan-1970 00:00:00 GMT; secure
my_dc=; domain=.navyfederal.org; path=/; expires=Thu, 01-Jan-1970 00:00:00 GMT; secure
acctsvcs_dc=; domain=.navyfederal.org; path=/; expires=Thu, 01-Jan-1970 00:00:00 GMT; secure
my_dc=w; path=/; domain=.navyfederal.org; secure
akaalb_my_navyfederal_ALB=~op=my_100_wch:my_prdw|~rv=48~m=my_prdw:0|~os=ddcfe9c18a053d3068d757a21af73146~id=16a4a31053958d5ffa7f1287736dbd64; path=/; Secure; SameSite=None; Domain=.navyfederal.org
ak_bmsc=D675E0979E5A31F83D3F4DDFF5611D85~000000000000000000000000000000~YAAQDzIQYC5JvIKEAQAAGrHTyRGremvmWf49qOHXX74vFdE8wNgvJP2QFE4kPeA4nU/1APL1VU8VeLijP85n3QLlLi5T1pOCv8VMhRbXvoy1ziXQLxsMM/nUyWEaOPRlFWPT1da3Y4MWr70FK/MlB3Pc4lTpsQNp6oi+8Hz03FUD83dQVmnhObEhpKWGhqk423nR6soIjJRzx/HlT5ZKck+hTnaBckUjcrZIVYdzW3+dcTrfQ7SNY2oNWey/7jCl4j961nS1CWoU0REN6jHioEOj5zOStaoz+hDOyInrsPknPtJWNj5bKEGWwbeNTGli1C7EHd60Nv23e2m9gDzUoL8WSVdfbBB7zCh9bTiSo13ppQ5d4eHaFk54FpPINSPQnz1Shw==; Domain=.navyfederal.org; Path=/; Expires=Wed, 30 Nov 2022 20:36:44 GMT; Max-Age=7200; HttpOnly
Strict-Transport-Security: max-age=31536000
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash e7de49da8836d1221462d949e6d9c902
f7bfa20592de96814622531d659c742de0c50edf
4e8405233bb5e4b03a04b6045987670a6e6cd651eafbe3af8378811113f68541
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 30 Nov 2022 18:36:44 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Tue, 29 Nov 2022 04:31:52 GMT
Expires: Tue, 06 Dec 2022 04:31:51 GMT
Etag: "f7bfa20592de96814622531d659c742de0c50edf"
Cache-Control: max-age=467106,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7725b0bb2947b4ff-OSL
agileprofessional.com.br/wp-content/auth/14e48b368110cd11073278bdb1412524/images/css/bg_globe.png
104.21.17.61500 Internal Server Error 2.6 kB URL HTTP/1.1 agileprofessional.com.br/wp-content/auth/14e48b368110cd11073278bdb1412524/images/css/bg_globe.png
IP 104.21.17.61:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text
Hash 3c32982e1f48797d87295a4237971f09
43f38c27234a49505e9bbbd73bd47c2ba47c0ec8
6790fb9a42b6e2ea88a55f1f86db97ce8bef7aeb16be9567831580aeeb1391e4
GET /wp-content/auth/14e48b368110cd11073278bdb1412524/images/css/bg_globe.png HTTP/1.1
Host: agileprofessional.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://agileprofessional.com.br/wp-content/auth/14e48b368110cd11073278bdb1412524/index_files/responsivemain-599150400912c8247ee1872211972b2a.css
HTTP/1.1 500 Internal Server Error
Date: Wed, 30 Nov 2022 18:36:44 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
x-powered-by: PHP/7.4.28
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: max-age=14400, must-revalidate
vary: Accept-Encoding
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=0HQ8jItAADfUgQ7eVCabzVxtdlnba8mYHBjhEbc%2F1DP6Gpjlzf%2F3PnLHLnXQ346CalA8csVdJQn%2F6TrpIXhgdqCEOXecrpHYyqhrn3Z6INxKYI7bgNpUBqOFZq0XyOQ%2Bhd7jFn5ce1fpvWc%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7725b0b9e8ba0b69-OSL
alt-svc: h2=":443"; ma=60
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash cfdd00e67ee6ca21712b867eb5288ab6
b61d5d6ec3b7ad71619e13e32c87f2d01871b88a
f740cac6dfedc1bf0f82efb10dac4f6ffb22f9bb5d4a9b68a4cd971dd2f65793
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5142
Cache-Control: max-age=143749
Content-Type: application/ocsp-response
Date: Wed, 30 Nov 2022 18:36:44 GMT
Etag: "63871d2b-1d7"
Expires: Fri, 02 Dec 2022 10:32:33 GMT
Last-Modified: Wed, 30 Nov 2022 09:06:51 GMT
Server: ECS (ska/F708)
X-Cache: HIT
Content-Length: 471
agileprofessional.com.br/wp-content/auth/14e48b368110cd11073278bdb1412524/images/css/toolTip.svg
104.21.17.61500 Internal Server Error 2.6 kB URL HTTP/1.1 agileprofessional.com.br/wp-content/auth/14e48b368110cd11073278bdb1412524/images/css/toolTip.svg
IP 104.21.17.61:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text
Hash 3c32982e1f48797d87295a4237971f09
43f38c27234a49505e9bbbd73bd47c2ba47c0ec8
6790fb9a42b6e2ea88a55f1f86db97ce8bef7aeb16be9567831580aeeb1391e4
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/auth/14e48b368110cd11073278bdb1412524/images/css/toolTip.svg HTTP/1.1
Host: agileprofessional.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://agileprofessional.com.br/wp-content/auth/14e48b368110cd11073278bdb1412524/index_files/responsivemain-599150400912c8247ee1872211972b2a.css
HTTP/1.1 500 Internal Server Error
Date: Wed, 30 Nov 2022 18:36:44 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
x-powered-by: PHP/7.4.28
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: max-age=14400, must-revalidate
vary: Accept-Encoding
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=d5XJrb9fxSi6bqZHPOlDVHaalvKxp3zQDOg4wvHX5PlVUFcjB8u3AJFNvzHo4xCC4WHgd4CHTfjC%2BonIJ3wftGl5ahEHwkxp82cPEfpb%2BB0jkaa2x474V1rw65MeyUQ958Dk5DCv%2FBTn%2FZc%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7725b0b9edb0b527-OSL
alt-svc: h2=":443"; ma=60
agileprofessional.com.br/wp-content/auth/14e48b368110cd11073278bdb1412524/images/css/icons.png
104.21.17.61500 Internal Server Error 2.6 kB URL HTTP/1.1 agileprofessional.com.br/wp-content/auth/14e48b368110cd11073278bdb1412524/images/css/icons.png
IP 104.21.17.61:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text
Hash 3c32982e1f48797d87295a4237971f09
43f38c27234a49505e9bbbd73bd47c2ba47c0ec8
6790fb9a42b6e2ea88a55f1f86db97ce8bef7aeb16be9567831580aeeb1391e4
GET /wp-content/auth/14e48b368110cd11073278bdb1412524/images/css/icons.png HTTP/1.1
Host: agileprofessional.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://agileprofessional.com.br/wp-content/auth/14e48b368110cd11073278bdb1412524/index_files/responsivemain-599150400912c8247ee1872211972b2a.css
HTTP/1.1 500 Internal Server Error
Date: Wed, 30 Nov 2022 18:36:44 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
x-powered-by: PHP/7.4.28
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: max-age=14400, must-revalidate
vary: Accept-Encoding
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2Bc0T1qc7MMjTMJEwwcgDQrhqdTOragXmCdLbAW0PKUIiEjEHDqPlKqOKkKQwMNtQtCB6Tw59VVPZz05leR57eyUC2a6utDno4lJ7F1Pc%2FSkb1KSBHHCtxbjSYlCNUu9HiXFF50TieB%2Bh4K4%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7725b0bb3879b503-OSL
alt-svc: h2=":443"; ma=60
agileprofessional.com.br/wp-content/auth/14e48b368110cd11073278bdb1412524/fonts/nfcu-icons.woff
104.21.17.61500 Internal Server Error 2.6 kB URL HTTP/1.1 agileprofessional.com.br/wp-content/auth/14e48b368110cd11073278bdb1412524/fonts/nfcu-icons.woff
IP 104.21.17.61:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text
Hash 3c32982e1f48797d87295a4237971f09
43f38c27234a49505e9bbbd73bd47c2ba47c0ec8
6790fb9a42b6e2ea88a55f1f86db97ce8bef7aeb16be9567831580aeeb1391e4
GET /wp-content/auth/14e48b368110cd11073278bdb1412524/fonts/nfcu-icons.woff HTTP/1.1
Host: agileprofessional.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://agileprofessional.com.br/wp-content/auth/14e48b368110cd11073278bdb1412524/index_files/responsivemain-599150400912c8247ee1872211972b2a.css
HTTP/1.1 500 Internal Server Error
Date: Wed, 30 Nov 2022 18:36:44 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
x-powered-by: PHP/7.4.28
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: max-age=14400, must-revalidate
vary: Accept-Encoding
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=FM%2FhE4JR2H8nz6gzsQ0wzgpwz4kBZob29tuVBPuMtpdar6FfjmTtRDH8sgU8f4z9zpCHCtJaVxJswdppUjS3K4xMdTwNgYDcA4JMtIV5XX1SZJ2gDVCG0ha6BxoXy3SHFqsg2y02aq6a6Jo%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7725b0baaa2c0afa-OSL
alt-svc: h2=":443"; ma=60
agileprofessional.com.br/wp-content/auth/14e48b368110cd11073278bdb1412524/index_files/img-BecomeAMember-1d62888b4b662af9142e3c385f423f32.jpg
104.21.17.61200 OK 186 kB URL HTTP/1.1 agileprofessional.com.br/wp-content/auth/14e48b368110cd11073278bdb1412524/index_files/img-BecomeAMember-1d62888b4b662af9142e3c385f423f32.jpg
IP 104.21.17.61:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1024x500, components 3\012- data
Size 186 kB (185745 bytes)
Hash 71bb90e5a3fb345196f166e4389c4ac1
5687c3c6f0146d9094d49cc6fe4cd5390a170672
ee4321efb356cf875dacf07419eb2649351e5907c159754a94b7b3be02479fe9
Analyzer Verdict Alert urlquery Phishing - Navy Federal Credit Union
GET /wp-content/auth/14e48b368110cd11073278bdb1412524/index_files/img-BecomeAMember-1d62888b4b662af9142e3c385f423f32.jpg HTTP/1.1
Host: agileprofessional.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://agileprofessional.com.br/wp-content/auth/14e48b368110cd11073278bdb1412524/
HTTP/1.1 200 OK
Date: Wed, 30 Nov 2022 18:36:44 GMT
Content-Type: image/jpeg
Content-Length: 185745
Connection: keep-alive
cache-control: public, max-age=604800
expires: Wed, 07 Dec 2022 18:36:42 GMT
etag: "2d591-63846900-8c20c5f;;;"
last-modified: Mon, 28 Nov 2022 07:53:36 GMT
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=2yKlS9npT2LbtfL50K2q%2Fh1DSxOyJR9pMwbeD3IEkjpI%2Fey2lBPWD6kIpxNYoxMSVubv5ZkT0cLkRYOl%2BCCKUc5319E4%2FKVkYg3rmpcxMwydoO2ZtXFz6UiJU9XndimUMD6Om2wffmz8m38%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7725b0b96edd0b59-OSL
alt-svc: h2=":443"; ma=60
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash 24bf7b60313497c1ca93c30f667c17a1
84267116b359968fdcd30fd213cf1db3d9981ddc
74a9cc8eae0d7e1c344872a978d28990c5e94db8e2a234a5d3f0c4b104db2365
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=114130
Content-Type: application/ocsp-response
Date: Wed, 30 Nov 2022 18:36:44 GMT
Etag: "6386bd8e-116"
Expires: Fri, 02 Dec 2022 02:18:54 GMT
Last-Modified: Wed, 30 Nov 2022 02:18:54 GMT
Server: nginx
Content-Length: 278
agileprofessional.com.br/wp-content/auth/14e48b368110cd11073278bdb1412524/fonts/sourcesanspro-semibold-webfont.woff2
104.21.17.61500 Internal Server Error 2.6 kB URL HTTP/1.1 agileprofessional.com.br/wp-content/auth/14e48b368110cd11073278bdb1412524/fonts/sourcesanspro-semibold-webfont.woff2
IP 104.21.17.61:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text
Hash 3c32982e1f48797d87295a4237971f09
43f38c27234a49505e9bbbd73bd47c2ba47c0ec8
6790fb9a42b6e2ea88a55f1f86db97ce8bef7aeb16be9567831580aeeb1391e4
GET /wp-content/auth/14e48b368110cd11073278bdb1412524/fonts/sourcesanspro-semibold-webfont.woff2 HTTP/1.1
Host: agileprofessional.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://agileprofessional.com.br/wp-content/auth/14e48b368110cd11073278bdb1412524/index_files/responsivemain-599150400912c8247ee1872211972b2a.css
HTTP/1.1 500 Internal Server Error
Date: Wed, 30 Nov 2022 18:36:45 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
x-powered-by: PHP/7.4.28
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: max-age=14400, must-revalidate
vary: Accept-Encoding
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ke9BLNktdCAZBTQs7yoHkBd%2B5aQS9pBy18nXQ%2BOb1T0l3vk2%2F6XdAUU%2FPkg1b6%2FFXh6s8%2Fb8IGZL9tNlumHwK0MpNm85ncrq2%2FSEqdxbtJX2dd9kGqNrdiZuiwzX59u%2FuZHyl6uG8%2BG1ovQ%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7725b0bb187fb518-OSL
alt-svc: h2=":443"; ma=60
agileprofessional.com.br/wp-content/auth/14e48b368110cd11073278bdb1412524/index_files/a_003.htm
104.21.17.61200 OK 116 B URL HTTP/1.1 agileprofessional.com.br/wp-content/auth/14e48b368110cd11073278bdb1412524/index_files/a_003.htm
IP 104.21.17.61:0
File type HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash ab868ea2d57aa884dabacc0b5fe6e67e
7888951020722fea401a25c7064ce8e1c6b07c9d
fc5c15abbbcac24900d44a7ba4081648da8dc2d8688fafdcde7d2e5f575ab88d
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/auth/14e48b368110cd11073278bdb1412524/index_files/a_003.htm HTTP/1.1
Host: agileprofessional.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://agileprofessional.com.br/wp-content/auth/14e48b368110cd11073278bdb1412524/
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Wed, 30 Nov 2022 18:36:45 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
last-modified: Mon, 28 Nov 2022 07:53:36 GMT
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=mmnhzGo594HtjWQm3K2O6at6TONsQQ%2Fo7vt7jzEgJfB2wY%2FqqNfAwHWn0cM8rJT7aub8O%2F8v0mKPb%2FkzQca4R%2BOzFvqBdhXfAmbvN5lFHJG0HCqsoH6AkCRQz4GKGo1Srfyel9g8QhbTOqQ%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7725b0bc2ae50b69-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
agileprofessional.com.br/wp-content/auth/14e48b368110cd11073278bdb1412524/index_files/storage.htm
104.21.17.61200 OK 14 kB URL HTTP/1.1 agileprofessional.com.br/wp-content/auth/14e48b368110cd11073278bdb1412524/index_files/storage.htm
IP 104.21.17.61:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (32192), with CRLF line terminators
Hash 796c27cd02dd072f3698734435fff671
7e3757d06afeca281a8ba6ae5b698fa5788811cd
5dc4c90c4ee7f6c654c54916ea8e0eabdbfed2458108d0ad7a028613936256c3
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/auth/14e48b368110cd11073278bdb1412524/index_files/storage.htm HTTP/1.1
Host: agileprofessional.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://agileprofessional.com.br/wp-content/auth/14e48b368110cd11073278bdb1412524/
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Wed, 30 Nov 2022 18:36:44 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
last-modified: Mon, 28 Nov 2022 07:53:36 GMT
vary: Accept-Encoding
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2BXieZgQO788RD5N3rGpL8bdFMKZs9JW2WsefLMUqRWywPTjs8h5p2qOdIyP9SE2rrrnB1uoeYMO6DOVj85AupbAXAwIVTPbXPM1n%2FDFf%2BbQAK4wysDb6DxrKiwR7olBCKCANgoMlNQ6KajE%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7725b0bc2942b527-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 5f5bfc09dfd8ab12f8d5009c2935687c
813a68f89a645caf709a4dc4412b784e5f31cb1d
6be8d869c5d426a83f73566bcbf0e68d9a0408001c96c7c23b283c3f42faf76a
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 30 Nov 2022 18:36:44 GMT
Etag: "6386d12f-1d7"
Server: ECS (amb/6BBC)
Content-Length: 471
agileprofessional.com.br/wp-content/auth/14e48b368110cd11073278bdb1412524/fonts/nfcu-icons.ttf
104.21.17.61500 Internal Server Error 2.6 kB URL HTTP/1.1 agileprofessional.com.br/wp-content/auth/14e48b368110cd11073278bdb1412524/fonts/nfcu-icons.ttf
IP 104.21.17.61:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text
Hash 3c32982e1f48797d87295a4237971f09
43f38c27234a49505e9bbbd73bd47c2ba47c0ec8
6790fb9a42b6e2ea88a55f1f86db97ce8bef7aeb16be9567831580aeeb1391e4
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/auth/14e48b368110cd11073278bdb1412524/fonts/nfcu-icons.ttf HTTP/1.1
Host: agileprofessional.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://agileprofessional.com.br/wp-content/auth/14e48b368110cd11073278bdb1412524/index_files/responsivemain-599150400912c8247ee1872211972b2a.css
HTTP/1.1 500 Internal Server Error
Date: Wed, 30 Nov 2022 18:36:45 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
x-powered-by: PHP/7.4.28
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: max-age=14400, must-revalidate
vary: Accept-Encoding
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=r2XPPRwVYsE1LYArh3MTgLGdL%2FsEJbb0IJJRNHmMCFRRjzx7odpZfOXaWxml3hBKjpy%2Bq2V0Y1rE8d7h94p272r8ju00ZwRyzwQo0kOS9W4oeOHe%2BCNpzdgOIY1He4MQ6clX5vNaUwC1y%2FQ%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7725b0bc9c0f0afa-OSL
alt-svc: h2=":443"; ma=60
push.services.mozilla.com/
54.149.219.22101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 54.149.219.22:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: G+5XEhl/gDMRSpZsCPOD7Q==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: DYB29xufDLem0foPnmJ9Ta6RQGE=
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash e7de49da8836d1221462d949e6d9c902
f7bfa20592de96814622531d659c742de0c50edf
4e8405233bb5e4b03a04b6045987670a6e6cd651eafbe3af8378811113f68541
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 30 Nov 2022 18:36:45 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Tue, 29 Nov 2022 04:31:52 GMT
Expires: Tue, 06 Dec 2022 04:31:51 GMT
Etag: "f7bfa20592de96814622531d659c742de0c50edf"
Cache-Control: max-age=467105,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7725b0bb2b650b06-OSL
agileprofessional.com.br/wp-content/auth/14e48b368110cd11073278bdb1412524/fonts/sourcesanspro-semibold-webfont.woff
104.21.17.61500 Internal Server Error 2.6 kB URL HTTP/1.1 agileprofessional.com.br/wp-content/auth/14e48b368110cd11073278bdb1412524/fonts/sourcesanspro-semibold-webfont.woff
IP 104.21.17.61:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text
Hash 3c32982e1f48797d87295a4237971f09
43f38c27234a49505e9bbbd73bd47c2ba47c0ec8
6790fb9a42b6e2ea88a55f1f86db97ce8bef7aeb16be9567831580aeeb1391e4
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/auth/14e48b368110cd11073278bdb1412524/fonts/sourcesanspro-semibold-webfont.woff HTTP/1.1
Host: agileprofessional.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://agileprofessional.com.br/wp-content/auth/14e48b368110cd11073278bdb1412524/index_files/responsivemain-599150400912c8247ee1872211972b2a.css
HTTP/1.1 500 Internal Server Error
Date: Wed, 30 Nov 2022 18:36:45 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
x-powered-by: PHP/7.4.28
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: max-age=14400, must-revalidate
vary: Accept-Encoding
CF-Cache-Status: EXPIRED
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=qyrEv20mZFXXQHW3Ldxww3c9%2BzP0X5ZZha%2FlUiH9%2Bqnzy8pZasHbULyI7Q7fbLp%2BowaJvdhZCBDjPUqLLPtCufDx3BybWZ0GqlWaqrTYVLekCD4wEApVIEjfy9rNUX9VZ5pt%2FWKt44LWH5Q%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7725b0bd7aa40b59-OSL
alt-svc: h2=":443"; ma=60
rnemsg.navyfederal.org/ci/pta/logout
147.154.117.92302 Found 25 B URL HTTP/1.1 rnemsg.navyfederal.org/ci/pta/logout
IP 147.154.117.92:0
ASN #31898 ORACLE-BMC-31898
Hash 3f8372f15e761c5f9e4ed6515f744df3
81a6e71371d2a46f6116e045fce6feb258b2d9f3
61c08f21cca5983f6f115bd91b9cc97bd29ef835d1cabed197d79fa7e1e7bd76
GET /ci/pta/logout HTTP/1.1
Host: rnemsg.navyfederal.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://agileprofessional.com.br/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Date: Wed, 30 Nov 2022 18:36:45 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
F5_do_compression: yes
Content-Encoding: gzip
RNT-JN-Ext-Machine: 43.3
Strict-Transport-Security: max-age=31536000
Set-Cookie: cp_session=fUXvYGBk4AC27Ozafy984IUh3jMqJXGcrELfYX_w00CGQAIWWfuebInxeF40uj2Io1CmooIdsKCyv54QbS0pw_Nq~4k55mzZrzFVPxJdbAVZxrx4K1Djl9jHPujy3Qv3FLkP8Yi1Ong9RznqZ4eoMZR5sDQhOMS_TrexZh5dk_NtxcpSGCWLoKRtIwR4ntOto8fban7Ajd_WeiS8ksTHR~tbjxdcwCSODCQL~GCAxKEk8KDljtawTv5vRTtUjK4bPEsc~XZ0E9OH6_MBFkBi_DgASpAeZo2D0uB5nb~xwkjGJZB6Ma1qA85PHFlP_5yxBFTOho8LwVoga1_5kON51f~x8fZWr9Tog8BiZL1INpZGlQMsX6AX16l_rhR~MUsdUinrevnMkhde9SQ2C6NX6d12XnkD4RmRI0d10AAoRBuPHbXZAkZIib~ewk3g9JAQC1fDPaZfqhGXS7rnnXf~Nxd11kjTPu1VepdHnl3SNqNfhA2HRqxefutg!!; path=/; httponly; SameSite=None; Secure
cp_session=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/
RNT-JN-Ext-UUID: 0d41e55f-9bcc-4505-844e-6ec348326fdb
RNT-Time: D=168326 t=1669833405161841
Location: https://www.navyfederal.org/images/spacer.gif
RNT-Machine: 1.145
www.navyfederal.org/images/spacer.gif
104.110.18.91301 Moved Permanently 0 B URL HTTP/2 www.navyfederal.org/images/spacer.gif
IP 104.110.18.91:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /images/spacer.gif HTTP/1.1
Host: www.navyfederal.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://agileprofessional.com.br/
Connection: keep-alive
Cookie: akaalb_my_navyfederal_ALB=~op=my_100_wch:my_prdw|~rv=48~m=my_prdw:0|~os=ddcfe9c18a053d3068d757a21af73146~id=16a4a31053958d5ffa7f1287736dbd64
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 301 Moved Permanently
server: AkamaiGHost
content-length: 0
location: https://web.navyfederal.org/images/spacer.gif
cache-control: max-age=86400
expires: Thu, 01 Dec 2022 18:36:45 GMT
date: Wed, 30 Nov 2022 18:36:45 GMT
permissions-policy: interest-cohort=()
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
web.navyfederal.org/images/spacer.gif
104.110.18.91200 OK 43 B URL HTTP/2 web.navyfederal.org/images/spacer.gif
IP 104.110.18.91:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
GET /images/spacer.gif HTTP/1.1
Host: web.navyfederal.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://agileprofessional.com.br/
Connection: keep-alive
Cookie: akaalb_my_navyfederal_ALB=~op=my_100_wch:my_prdw|~rv=48~m=my_prdw:0|~os=ddcfe9c18a053d3068d757a21af73146~id=16a4a31053958d5ffa7f1287736dbd64
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: Apache
last-modified: Sun, 02 Jun 2013 10:22:19 GMT
etag: "2b-4de29390cacc0"
accept-ranges: bytes
content-length: 43
cache-control: max-age=7776000
expires: Wed, 19 Oct 2022 10:22:27 GMT
content-type: image/gif
date: Wed, 30 Nov 2022 18:36:45 GMT
X-Firefox-Spdy: h2
my.navyfederal.org/NFOAA_Auth/favicon.ico
104.88.20.141200 OK 351 B URL HTTP/1.1 my.navyfederal.org/NFOAA_Auth/favicon.ico
IP 104.88.20.141:0
File type MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel\012- data
Hash 1ff701ad319400203220d48758838e99
e603d649127b743e4c32988dd40cde0c0924c11b
4bb25e1c20ad9bb64afc21206c14f5c25140a4056b8bddc06ac554559d59c71e
GET /NFOAA_Auth/favicon.ico HTTP/1.1
Host: my.navyfederal.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://agileprofessional.com.br/
Cookie: akaalb_my_navyfederal_ALB=~op=my_100_wch:my_prdw|~rv=48~m=my_prdw:0|~os=ddcfe9c18a053d3068d757a21af73146~id=16a4a31053958d5ffa7f1287736dbd64
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
X-Powered-By: Servlet/3.0
X-Frame-Options: DENY
Last-Modified: Wed, 07 Sep 2022 21:50:18 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Type: image/x-icon
Content-Language: en-US
Content-Length: 351
Cache-Control: max-age=900
Expires: Wed, 30 Nov 2022 18:51:45 GMT
Date: Wed, 30 Nov 2022 18:36:45 GMT
Connection: keep-alive
Set-Cookie: my_dc=w; path=/; domain=.navyfederal.org; secure
Strict-Transport-Security: max-age=31536000
agileprofessional.com.br/static/f67c327263eti209967cda713cd843baa
104.21.17.61500 Internal Server Error 5.3 kB URL HTTP/2 agileprofessional.com.br/static/f67c327263eti209967cda713cd843baa
IP 104.21.17.61:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text
Hash a2ee700890477a6a8cfcd7f4d48d05cc
7005f421e7338ab3d30fd64f157fa602752405b8
6459d82dbdff934293be148b106287a5f096fe50ed3a38057cc56de7f8537450
Analyzer Verdict Alert fortinet Phishing
POST /static/f67c327263eti209967cda713cd843baa HTTP/1.1
Host: agileprofessional.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 1021
Origin: http://agileprofessional.com.br
Connection: keep-alive
Referer: http://agileprofessional.com.br/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 500 Internal Server Error
date: Wed, 30 Nov 2022 18:36:45 GMT
content-type: text/html; charset=UTF-8
x-powered-by: PHP/7.4.28
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=kKGfpDFnGx3WO6Z2XaZCof%2FxU2HEFv1UqdueGOeed1rL38PB2bk5Nl%2BrYEwtD40PZUbBW4hGJ5Ys%2BFKeTw7F0PPH9dyvW2rQwBsE%2F2yrDRftMi9jPdqQ%2Fcmua1rRYq22TeH%2BJqOoNJ1u4yc%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7725b0bd5b3db503-OSL
X-Firefox-Spdy: h2
ocsp.sectigo.com/
172.64.155.188200 OK 472 B IP 172.64.155.188:0
Hash f17527290734860e18b0442bd91d3bff
eac39bf60d4d4208287e5696fb9030032ffc6309
ae89cb31845e03f6c810e65f50ef692d67b0c0e55140fbfb73d0b7b1ce5edc6c
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 30 Nov 2022 18:36:45 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Wed, 30 Nov 2022 03:43:24 GMT
Expires: Wed, 07 Dec 2022 03:43:23 GMT
Etag: "eac39bf60d4d4208287e5696fb9030032ffc6309"
Cache-Control: max-age=550597,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7725b0c14a150b06-OSL
ocsp.sectigo.com/
172.64.155.188200 OK 472 B IP 172.64.155.188:0
Hash f17527290734860e18b0442bd91d3bff
eac39bf60d4d4208287e5696fb9030032ffc6309
ae89cb31845e03f6c810e65f50ef692d67b0c0e55140fbfb73d0b7b1ce5edc6c
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 30 Nov 2022 18:36:45 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Wed, 30 Nov 2022 03:43:24 GMT
Expires: Wed, 07 Dec 2022 03:43:23 GMT
Etag: "eac39bf60d4d4208287e5696fb9030032ffc6309"
Cache-Control: max-age=550597,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7725b0c14baeb4ff-OSL
lptag.liveperson.net/tag/tag.js?site=11478817
178.249.97.23200 OK 7.6 kB URL HTTP/2 lptag.liveperson.net/tag/tag.js?site=11478817
IP 178.249.97.23:0
File type ASCII text, with very long lines (21652), with no line terminators
Hash 6b675640425ec8551a433e26a377d954
7234f02cce1ccb2a4facf2b34b9185cfcf27299d
8c9716f14d2e964be7c93d3d8c28819cb35c529fce6206a79061cda509e05bfd
GET /tag/tag.js?site=11478817 HTTP/1.1
Host: lptag.liveperson.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://agileprofessional.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 30 Nov 2022 18:36:46 GMT
content-type: application/javascript
content-length: 7567
last-modified: Thu, 03 Sep 2020 08:27:49 GMT
etag: "5f50a905-1d8f"
content-encoding: gzip
server: ws
strict-transport-security: max-age=300; includeSubDomains
access-control-allow-methods: GET, POST, PATCH
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Authorization, X-HTTP-Method-Override, LP-DOMAIN-REFERER, LP-URL, ETag, ac-revision, X-LP-Last-Modified, If-Match, Authentication-Method, Credit-Card-Ref, Automation-Secret, Email-Token
access-control-expose-headers: X-Requested-With, X-HTTP-Method-Override, LP-DOMAIN-REFERER, LP-URL, ETag, ac-revision, X-LP-Last-Modified, If-Match, Authentication-Method, Credit-Card-Ref, Automation-Secret, Email-Token, x-lp-host, Lp-Req-Time, date, x-application-context, strict-transport-security, x-content-type-options, x-download-options, x-xss-protection, x-cache-status, x-amz-id-2, x-amz-request-id, expires, last-modified, set-cookie, content-security-policy, x-frame-options
access-control-allow-credentials: true
cache-control: public, max-age=630
x-content-type-options: nosniff
X-Firefox-Spdy: h2
agileprofessional.com.br/static/f67c327263eti209967cda713cd843baa
104.21.17.61500 Internal Server Error 4.3 kB URL HTTP/2 agileprofessional.com.br/static/f67c327263eti209967cda713cd843baa
IP 104.21.17.61:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1136)
Hash c3aa39b15ff24516a1fdc3acb9bde8e9
5b226ed83e466022468a3556ac2e99b6446a3a33
5d32d0008caba586d2b9d2b9e8d838668e86cce1885a849d1a938f7926a847b8
Analyzer Verdict Alert fortinet Phishing
POST /static/f67c327263eti209967cda713cd843baa HTTP/1.1
Host: agileprofessional.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 1265
Origin: http://agileprofessional.com.br
Connection: keep-alive
Referer: http://agileprofessional.com.br/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 500 Internal Server Error
date: Wed, 30 Nov 2022 18:36:45 GMT
content-type: text/html; charset=UTF-8
x-powered-by: PHP/7.4.28
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=0DRiH9g%2B4uHhZjCeY8IiL50%2Fr0IQdG0i9%2FwXh09mL%2BfY2qNDQIjWrmNBJH2qMyhBg4CilFtDx5vYEUGnAMirEvsiC79Kw4vtEsoKudrAEkOE8OT%2FjGL%2BFnixXSkxxR%2BYQpTB59%2Fq%2BmebzAY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7725b0beacb4b503-OSL
X-Firefox-Spdy: h2
lptag.liveperson.net/lptag/api/account/11478817/configuration/applications/taglets/.jsonp?v=2.0&df=0&b=3
178.249.97.23200 OK 102 kB URL HTTP/2 lptag.liveperson.net/lptag/api/account/11478817/configuration/applications/taglets/.jsonp?v=2.0&df=0&b=3
IP 178.249.97.23:0
Size 102 kB (102160 bytes)
Hash 3f0c8400d71a040973618faaf7eabc8f
54d4ab8980d562354b4baa0e164dab27a6b26f05
a6381c5b55b1214943ece5ab17e86f3d064091a5190ce9207e68ff0dcd99de62
GET /lptag/api/account/11478817/configuration/applications/taglets/.jsonp?v=2.0&df=0&b=3 HTTP/1.1
Host: lptag.liveperson.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://agileprofessional.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 30 Nov 2022 18:36:45 GMT
content-type: application/x-javascript
set-cookie: ADRUM_BTa=R:32|g:c8bb68a1-2e2f-411d-949a-03434c0afaea; Max-Age=30; Expires=Wed, 30-Nov-2022 18:37:15 GMT; Path=/
ADRUM_BTa=R:32|g:c8bb68a1-2e2f-411d-949a-03434c0afaea|n:livepersonltd_93a08561-b03e-475e-b29b-9ad4aa207daf; Max-Age=30; Expires=Wed, 30-Nov-2022 18:37:15 GMT; Path=/
SameSite=None; Max-Age=30; Expires=Wed, 30-Nov-2022 18:37:15 GMT; Path=/; Secure
ADRUM_BT1=R:32|i:1758181; Max-Age=30; Expires=Wed, 30-Nov-2022 18:37:15 GMT; Path=/
ADRUM_BT1=R:32|i:1758181|e:1; Max-Age=30; Expires=Wed, 30-Nov-2022 18:37:15 GMT; Path=/
ADRUM_BT1=R:32|i:1758181|e:1|d:2; Max-Age=30; Expires=Wed, 30-Nov-2022 18:37:15 GMT; Path=/
cache-control: public, max-age=630
server: ws
strict-transport-security: max-age=300; includeSubDomains
access-control-allow-methods: GET, POST, PATCH
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Authorization, X-HTTP-Method-Override, LP-DOMAIN-REFERER, LP-URL, ETag, ac-revision, X-LP-Last-Modified, If-Match, Authentication-Method, Credit-Card-Ref, Automation-Secret, Email-Token
access-control-expose-headers: X-Requested-With, X-HTTP-Method-Override, LP-DOMAIN-REFERER, LP-URL, ETag, ac-revision, X-LP-Last-Modified, If-Match, Authentication-Method, Credit-Card-Ref, Automation-Secret, Email-Token, x-lp-host, Lp-Req-Time, date, x-application-context, strict-transport-security, x-content-type-options, x-download-options, x-xss-protection, x-cache-status, x-amz-id-2, x-amz-request-id, expires, last-modified, set-cookie, content-security-policy, x-frame-options
access-control-allow-credentials: true
x-cache-status: MISS
x-content-type-options: nosniff
content-encoding: gzip
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash a97c452e75cf1d4833e777d7ba7f2c47
58f15763fd33f742ce870f49f1c2dbed5b41205f
39bb874a415db37a81432942eb84151b0134d1aacaa31d364b6dadae4388c6a1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "39BB874A415DB37A81432942EB84151B0134D1AACAA31D364B6DADAE4388C6A1"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2318
Expires: Wed, 30 Nov 2022 19:15:24 GMT
Date: Wed, 30 Nov 2022 18:36:46 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash a97c452e75cf1d4833e777d7ba7f2c47
58f15763fd33f742ce870f49f1c2dbed5b41205f
39bb874a415db37a81432942eb84151b0134d1aacaa31d364b6dadae4388c6a1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "39BB874A415DB37A81432942EB84151B0134D1AACAA31D364B6DADAE4388C6A1"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2318
Expires: Wed, 30 Nov 2022 19:15:24 GMT
Date: Wed, 30 Nov 2022 18:36:46 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash a97c452e75cf1d4833e777d7ba7f2c47
58f15763fd33f742ce870f49f1c2dbed5b41205f
39bb874a415db37a81432942eb84151b0134d1aacaa31d364b6dadae4388c6a1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "39BB874A415DB37A81432942EB84151B0134D1AACAA31D364B6DADAE4388C6A1"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2318
Expires: Wed, 30 Nov 2022 19:15:24 GMT
Date: Wed, 30 Nov 2022 18:36:46 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash a97c452e75cf1d4833e777d7ba7f2c47
58f15763fd33f742ce870f49f1c2dbed5b41205f
39bb874a415db37a81432942eb84151b0134d1aacaa31d364b6dadae4388c6a1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "39BB874A415DB37A81432942EB84151B0134D1AACAA31D364B6DADAE4388C6A1"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2318
Expires: Wed, 30 Nov 2022 19:15:24 GMT
Date: Wed, 30 Nov 2022 18:36:46 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F67bb1888-5971-4b4a-923b-dc9d4050182b.jpeg
34.120.237.76200 OK 7.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F67bb1888-5971-4b4a-923b-dc9d4050182b.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash e00769bd1391b8f4f5b8ab128a825355
e4ddf955e8ac1986045ed55880c43c69e588a021
81ca4d20c28fed8fd3135515daadc1fdbfb4198535d7c46021b418b8b98e59a5
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F67bb1888-5971-4b4a-923b-dc9d4050182b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7298
x-amzn-requestid: 381e55bb-876b-46ad-84b6-1ddf9f876f56
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cYgDcE3poAMFaAA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63867a15-7c12394600900afc7281e858;Sampled=0
x-amzn-remapped-date: Tue, 29 Nov 2022 21:31:01 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 7mRG070F4NZnewfowUhVhMerJaGjJd4G6O1tvTPiKyvTAzq-Y16-jw==
via: 1.1 470e3fe246a660ba6ace67a79f78d246.cloudfront.net (CloudFront), 1.1 b2f9564ebf9c745cc2ceae96d434977e.cloudfront.net (CloudFront), 1.1 google
date: Tue, 29 Nov 2022 21:56:51 GMT
etag: "e4ddf955e8ac1986045ed55880c43c69e588a021"
content-type: image/jpeg
age: 74395
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F250668cd-c9db-4014-b576-3aaad4eb9150.jpeg
34.120.237.76200 OK 5.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F250668cd-c9db-4014-b576-3aaad4eb9150.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 59baec8db5ced0210ab766ea5636a5fd
f7cf3a0f89751a02fbcf8d21f505f24a74e8b30b
33ff55891f18c22970804f1b8b2ba6821ddfd7426b01486410bd43f2b4295a8d
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F250668cd-c9db-4014-b576-3aaad4eb9150.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5785
x-amzn-requestid: ee77265b-8e90-4035-8ef1-92a2d26aaefa
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cYgDaHdWoAMFqmw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63867a15-0d10d74030e7aee74804b654;Sampled=0
x-amzn-remapped-date: Tue, 29 Nov 2022 21:31:01 GMT
x-amz-cf-pop: SFO5-P2, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: GydenCzPtpFdVLqN4ssiZ4dKN48WGneS3mwzEdDE81pobtLznfC4VQ==
via: 1.1 38eecd3ca21bf068d69a2f9cfe668d14.cloudfront.net (CloudFront), 1.1 7e87179efaa9e3c316bd3d3a74cfded8.cloudfront.net (CloudFront), 1.1 google
date: Tue, 29 Nov 2022 22:07:59 GMT
age: 73727
etag: "f7cf3a0f89751a02fbcf8d21f505f24a74e8b30b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd170538c-f8cf-4acb-ba33-2ead00b9db73.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd170538c-f8cf-4acb-ba33-2ead00b9db73.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 777ce44582c70bf01a31da4cab366f36
57e1d34f146d5ccd9943aa97bcc3158f7103bb07
fbdc8f65ae74dc13b7aafec464f08fdc9902af519946200ec52432ac3ca55982
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd170538c-f8cf-4acb-ba33-2ead00b9db73.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10958
x-amzn-requestid: abfea5b0-58f5-49e1-b78e-7cf456d03cb3
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cYgFHF9oIAMF5lg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63867a20-5ab719292d440d083b07a478;Sampled=0
x-amzn-remapped-date: Tue, 29 Nov 2022 21:31:12 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: e4GuUolL0WIMXvnF7BZ80j-dMMSILN2gd-1mqFwNns-zCUBsJa8iHQ==
via: 1.1 8f22423015641505b8c857a37450d6c0.cloudfront.net (CloudFront), 1.1 a3bd0eb50c22e4d5fbda56a30b96002c.cloudfront.net (CloudFront), 1.1 google
date: Tue, 29 Nov 2022 21:43:04 GMT
age: 75222
etag: "57e1d34f146d5ccd9943aa97bcc3158f7103bb07"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1c32283b-8309-408e-85df-cad97da6bc80.png
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1c32283b-8309-408e-85df-cad97da6bc80.png
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 03014221d7f49b50ffc2d1b0a0e75457
772d86ad983042a728ee3490630a9cf1134ad0dd
81fb954fa569955907952987e9d8efd1dac80e0e4a682826abf3c5d90eb31771
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1c32283b-8309-408e-85df-cad97da6bc80.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10176
x-amzn-requestid: c2231955-5c78-4073-8399-b8b90f1add78
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cMo3oHpSoAMF5Qw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6381bb63-55a1cb004ac73c8b02f2fb8d;Sampled=0
x-amzn-remapped-date: Sat, 26 Nov 2022 07:08:19 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 7LVxajVjJ1N2W-jxCmKpYHg1rS1MbrRnAVc15QmM0iH94CH1yJnR0w==
via: 1.1 28a7186077f9b5270d98dd053f31303e.cloudfront.net (CloudFront), 1.1 caf6806821bc479b28a6f1ce3043b8a6.cloudfront.net (CloudFront), 1.1 google
date: Wed, 30 Nov 2022 04:53:01 GMT
age: 49425
etag: "772d86ad983042a728ee3490630a9cf1134ad0dd"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F966ff24e-ea85-4a2e-aead-22f1a723c59f.jpeg
34.120.237.76200 OK 9.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F966ff24e-ea85-4a2e-aead-22f1a723c59f.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 5508d05a290b663fd89ead9b58f2efd8
53650399f9a986ba54addd668b4557109d12003b
65704a961410fdd318c491fedf002c8e9b184cd34b76fe1b67026d42ce21be3f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F966ff24e-ea85-4a2e-aead-22f1a723c59f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9674
x-amzn-requestid: 7e7d0183-9667-462a-8d44-d125998c1ae3
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cYgEoHVAoAMFvAQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63867a1d-280ba97e3fe1bf7244cbde35;Sampled=0
x-amzn-remapped-date: Tue, 29 Nov 2022 21:31:09 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: qftF-GQkcjKTs30KMGCTDymw2SVSXeAYKGNWUnaMfvIb8HjtfHUx8A==
via: 1.1 26ca01ec7377e425b59b6a08cb1ec342.cloudfront.net (CloudFront), 1.1 57a21088b36c69a83578b5a5579df58e.cloudfront.net (CloudFront), 1.1 google
date: Tue, 29 Nov 2022 21:44:46 GMT
etag: "53650399f9a986ba54addd668b4557109d12003b"
content-type: image/jpeg
age: 75120
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F13e1db4e-7108-464a-85b6-24ac0c4609f9.webp
34.120.237.76200 OK 9.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F13e1db4e-7108-464a-85b6-24ac0c4609f9.webp
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash bbe350ea797a0fec5a19a450fc5de4b4
2f3a39a528d3b759060203931de33c12303592e1
4d661dac2e19e07ae15d0f8cf00bd268c6c2defb2f5e4de38fcb6e7031dfd605
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F13e1db4e-7108-464a-85b6-24ac0c4609f9.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9330
x-amzn-requestid: 3fad352d-7664-43e0-9395-e840f671ca61
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cYgFQFIdoAMFSmw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63867a21-5e9847852f8435231d401fe6;Sampled=0
x-amzn-remapped-date: Tue, 29 Nov 2022 21:31:13 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: mCEtSOenWKxay4vNy5mN9cexxXKXKt7TMuLaLw-M86tLKwQ2MwuxPg==
via: 1.1 ddd913fbbe7367d44af4ac06097e7a2a.cloudfront.net (CloudFront), 1.1 12a392bc3a7281f8d5d4591bfadc41fc.cloudfront.net (CloudFront), 1.1 google
date: Tue, 29 Nov 2022 22:11:32 GMT
age: 73514
etag: "2f3a39a528d3b759060203931de33c12303592e1"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
my.navyfederal.org/NFOAA_Auth/resources/images/apple-touch-icon-72x72-precomposed-1d62888b4b662af9142e3c385f423f32.png
104.88.20.141404 Not Found 1.9 kB URL HTTP/1.1 my.navyfederal.org/NFOAA_Auth/resources/images/apple-touch-icon-72x72-precomposed-1d62888b4b662af9142e3c385f423f32.png
IP 104.88.20.141:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- C source text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with CRLF line terminators
Hash 726ecf2df6a19b5a3c655e4941eb5135
1fdf86a26d04338d4f5394cc852a5c8387d95048
d3ba0f9d4c73e11ca995ac01df41b72c0ba60290454319cac7232e90c535a98e
GET /NFOAA_Auth/resources/images/apple-touch-icon-72x72-precomposed-1d62888b4b662af9142e3c385f423f32.png HTTP/1.1
Host: my.navyfederal.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://agileprofessional.com.br/
Cookie: akaalb_my_navyfederal_ALB=~op=my_100_wch:my_prdw|~rv=48~m=my_prdw:0|~os=ddcfe9c18a053d3068d757a21af73146~id=16a4a31053958d5ffa7f1287736dbd64
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 404 Not Found
X-Powered-By: Servlet/3.0
X-Frame-Options: DENY
$WSEP:
Last-Modified: Wed, 07 Sep 2022 21:50:18 GMT
Content-Length: 1941
Content-Type: text/html
Content-Language: en-US
Cache-Control: max-age=900
Expires: Wed, 30 Nov 2022 18:51:46 GMT
Date: Wed, 30 Nov 2022 18:36:46 GMT
Connection: keep-alive
Set-Cookie: navyfed-opentoken=; domain=.navyfederal.org; path=/; expires=Thu, 01-Jan-1970 00:00:00 GMT; secure
navyfed-extracted=; domain=.navyfederal.org; path=/; expires=Thu, 01-Jan-1970 00:00:00 GMT; secure
navyfed-deviceprint=; domain=.navyfederal.org; path=/; expires=Thu, 01-Jan-1970 00:00:00 GMT; secure
navyfed-useractive=; domain=.navyfederal.org; path=/; expires=Thu, 01-Jan-1970 00:00:00 GMT; secure
navyfed-pingolb=; domain=.navyfederal.org; path=/; expires=Thu, 01-Jan-1970 00:00:00 GMT; secure
navyfed-obo=; domain=.navyfederal.org; path=/; expires=Thu, 01-Jan-1970 00:00:00 GMT; secure
SMSESSION=; domain=.navyfederal.org; path=/; expires=Thu, 01-Jan-1970 00:00:00 GMT; secure
my_dc=; domain=.navyfederal.org; path=/; expires=Thu, 01-Jan-1970 00:00:00 GMT; secure
acctsvcs_dc=; domain=.navyfederal.org; path=/; expires=Thu, 01-Jan-1970 00:00:00 GMT; secure
my_dc=w; path=/; domain=.navyfederal.org; secure
ak_bmsc=F5602DEAFB07F4B7A8EEEAC2C3997B8E~000000000000000000000000000000~YAAQDzIQYGJJvIKEAQAAxbfTyREV9mWtCoWmHJZi4tqRWKFKF7E4iiONGwfsqUXNDm8hm9P0kn6x5v25YoIlIREQCiC7ok3SJSaFbbx8s2rtnF8wfzqoiRJ7qfocMDR5PyOpG0Nv6BhYmIt/Ko+o7mz4JIDVSv69tEB80V8DDi7OcwcUfeAC2gKECQ1Lsc/Fq7fJtoPYTUEK3cdPPOPeBqQl9Ka4k7NPOoBL9XI086pkwik/vU4wr/xZZnlQoG/G91Bk6nOMQjJzxjWogfQNF0Lp4hMQ8ZM3Z23ceW5/Wm0fvMqilgMidm9SngUoY4gR3+WPPdyQFWsYE72enlUS2j5VH+M0EgDvW55bjxYpfRq0tkLGiIygKuSOkqFL0rK69WI52Q==; Domain=.navyfederal.org; Path=/; Expires=Wed, 30 Nov 2022 20:36:45 GMT; Max-Age=7199; HttpOnly
Strict-Transport-Security: max-age=31536000
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 598cdd8d90e16e737a61c7481d9be400
a50a0668d9c63fc83aa8ef1d6bd67cc57aca2ce9
2773f04e42fe215a9cc544018be282eb28434ad2c091853cc50e247ab11eb315
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=137165
Content-Type: application/ocsp-response
Date: Wed, 30 Nov 2022 18:36:46 GMT
Etag: "6387178b-1d7"
Expires: Fri, 02 Dec 2022 08:42:51 GMT
Last-Modified: Wed, 30 Nov 2022 08:42:51 GMT
Server: nginx
Content-Length: 471
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash b64c8a7f1e9d4cb019ee4ea089710921
6e298681df130e8720f09168528040e4165434d6
0d8c8eeb26713f8f158b0602f67a06b7baa452936cf8af5b98ca0f02cd815eec
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 30 Nov 2022 18:36:47 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Mon, 28 Nov 2022 23:37:43 GMT
Expires: Mon, 05 Dec 2022 23:37:42 GMT
Etag: "6e298681df130e8720f09168528040e4165434d6"
Cache-Control: max-age=449454,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7725b0cc889f0b06-OSL
liveengage.navyfederal.org/le_secure_storage/3.11.0.2-release_5036/storage.secure.min.html?loc=http%3A%2F%2Fagileprofessional.com.br&site=11478817&env=prod
178.249.101.98200 OK 0 B URL HTTP/2 liveengage.navyfederal.org/le_secure_storage/3.11.0.2-release_5036/storage.secure.min.html?loc=http%3A%2F%2Fagileprofessional.com.br&site=11478817&env=prod
IP 178.249.101.98:0
GET /le_secure_storage/3.11.0.2-release_5036/storage.secure.min.html?loc=http%3A%2F%2Fagileprofessional.com.br&site=11478817&env=prod HTTP/1.1
Host: liveengage.navyfederal.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://agileprofessional.com.br/
Cookie: akaalb_my_navyfederal_ALB=~op=my_100_wch:my_prdw|~rv=48~m=my_prdw:0|~os=ddcfe9c18a053d3068d757a21af73146~id=16a4a31053958d5ffa7f1287736dbd64
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 30 Nov 2022 18:36:46 GMT
content-type: text/html
last-modified: Tue, 29 Sep 2020 18:27:10 GMT
content-encoding: gzip
server: ws
vary: Origin
access-control-allow-methods: GET, POST, PATCH
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Authorization, X-HTTP-Method-Override, LP-DOMAIN-REFERER, LP-URL, ETag, ac-revision, X-LP-Last-Modified, If-Match, Authentication-Method, Credit-Card-Ref, Automation-Secret, Email-Token, x-lp-state-rev
access-control-expose-headers: X-Requested-With, X-HTTP-Method-Override, LP-DOMAIN-REFERER, LP-URL, ETag, ac-revision, X-LP-Last-Modified, If-Match, Authentication-Method, Credit-Card-Ref, Automation-Secret, Email-Token, x-lp-host, Lp-Req-Time, date, x-application-context, strict-transport-security, x-content-type-options, x-download-options, x-xss-protection, x-cache-status, x-amz-id-2, x-amz-request-id, expires, last-modified, set-cookie, content-security-policy, x-frame-options, x-lp-state-rev
access-control-allow-credentials: true
expires: Thu, 30 Nov 2023 18:36:46 GMT
cache-control: max-age=31536000
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains
x-cache-status: MISS
X-Firefox-Spdy: h2
accdn.lpsnmedia.net/api/account/11478817/configuration/le-campaigns/zones?fields=id&fields=zoneValue&cb=lpZonesStaticCB
178.249.97.99200 OK 0 B URL HTTP/2 accdn.lpsnmedia.net/api/account/11478817/configuration/le-campaigns/zones?fields=id&fields=zoneValue&cb=lpZonesStaticCB
IP 178.249.97.99:0
GET /api/account/11478817/configuration/le-campaigns/zones?fields=id&fields=zoneValue&cb=lpZonesStaticCB HTTP/1.1
Host: accdn.lpsnmedia.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://agileprofessional.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 30 Nov 2022 18:36:45 GMT
content-type: application/javascript
set-cookie: ADRUM_BTa=R:32|g:d44b606d-e718-406d-9551-cffd5b0231a2; Max-Age=30; Expires=Wed, 30-Nov-2022 18:37:15 GMT; Path=/
ADRUM_BTa=R:32|g:d44b606d-e718-406d-9551-cffd5b0231a2|n:livepersonltd_93a08561-b03e-475e-b29b-9ad4aa207daf; Max-Age=30; Expires=Wed, 30-Nov-2022 18:37:15 GMT; Path=/
SameSite=None; Max-Age=30; Expires=Wed, 30-Nov-2022 18:37:15 GMT; Path=/; Secure
ADRUM_BT1=R:32|i:2241648; Max-Age=30; Expires=Wed, 30-Nov-2022 18:37:15 GMT; Path=/
ADRUM_BT1=R:32|i:2241648|e:2; Max-Age=30; Expires=Wed, 30-Nov-2022 18:37:15 GMT; Path=/
vary: Accept
expires: Wed, 30 Nov 2022 18:37:45 GMT
x-envoy-upstream-service-time: 1
server: ws
strict-transport-security: max-age=99999999999; includeSubDomains
access-control-allow-methods: GET, POST, PATCH
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Authorization, X-HTTP-Method-Override, LP-DOMAIN-REFERER, LP-URL, ETag, ac-revision, X-LP-Last-Modified, If-Match, Authentication-Method, Credit-Card-Ref, Automation-Secret, Email-Token
access-control-expose-headers: X-Requested-With, X-HTTP-Method-Override, LP-DOMAIN-REFERER, LP-URL, ETag, ac-revision, X-LP-Last-Modified, If-Match, Authentication-Method, Credit-Card-Ref, Automation-Secret, Email-Token, x-lp-host, Lp-Req-Time, date, x-application-context, strict-transport-security, x-content-type-options, x-download-options, x-xss-protection, x-cache-status, x-amz-id-2, x-amz-request-id, expires, last-modified, set-cookie, content-security-policy, x-frame-options
access-control-allow-credentials: true
x-cache-status: EXPIRED
x-content-type-options: nosniff
content-encoding: gzip
X-Firefox-Spdy: h2
va.v.liveperson.net/api/js/11478817?&cb=lpCb59440x55028&t=sp&ts=1669833405840&pid=3880651510&tid=8098584391&pt=Navy%20Federal%20Credit%20Union%20-%20Our%20Members%20are%20the%20Mission%EF%BF%BD&u=http%3A%2F%2Fagileprofessional.com.br%2Fwp-content%2Fauth%2F14e48b368110cd11073278bdb1412524%2F&df=0&os=0&identities=%5B%7B%22iss%22%3A%22LivePerson%22%2C%22acr%22%3A%220%22%7D%5D
208.89.12.87200 OK 0 B URL HTTP/2 va.v.liveperson.net/api/js/11478817?&cb=lpCb59440x55028&t=sp&ts=1669833405840&pid=3880651510&tid=8098584391&pt=Navy%20Federal%20Credit%20Union%20-%20Our%20Members%20are%20the%20Mission%EF%BF%BD&u=http%3A%2F%2Fagileprofessional.com.br%2Fwp-content%2Fauth%2F14e48b368110cd11073278bdb1412524%2F&df=0&os=0&identities=%5B%7B%22iss%22%3A%22LivePerson%22%2C%22acr%22%3A%220%22%7D%5D
IP 208.89.12.87:0
GET /api/js/11478817?&cb=lpCb59440x55028&t=sp&ts=1669833405840&pid=3880651510&tid=8098584391&pt=Navy%20Federal%20Credit%20Union%20-%20Our%20Members%20are%20the%20Mission%EF%BF%BD&u=http%3A%2F%2Fagileprofessional.com.br%2Fwp-content%2Fauth%2F14e48b368110cd11073278bdb1412524%2F&df=0&os=0&identities=%5B%7B%22iss%22%3A%22LivePerson%22%2C%22acr%22%3A%220%22%7D%5D HTTP/1.1
Host: va.v.liveperson.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://agileprofessional.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 30 Nov 2022 18:36:47 GMT
content-type: application/javascript
set-cookie: LPVisitorID=ZjNzlhNGE0OWQ1MTJlMzU3; Expires=Thu, 30-Nov-2023 18:36:47 GMT; Path=/; HttpOnly
LPSessionID=Upc3ez1ZTr2v0k0VKips1Q; Path=/api/js/11478817; HttpOnly
cache-control: no-store
server: ws
access-control-allow-methods: GET, POST, PATCH
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Authorization, X-HTTP-Method-Override, LP-DOMAIN-REFERER, LP-URL, ETag, ac-revision, X-LP-Last-Modified, If-Match, Authentication-Method, Credit-Card-Ref, Automation-Secret, Email-Token
access-control-expose-headers: X-Requested-With, X-HTTP-Method-Override, LP-DOMAIN-REFERER, LP-URL, ETag, ac-revision, X-LP-Last-Modified, If-Match, Authentication-Method, Credit-Card-Ref, Automation-Secret, Email-Token, x-lp-host, Lp-Req-Time, date, x-application-context, strict-transport-security, x-content-type-options, x-download-options, x-xss-protection, x-cache-status, x-amz-id-2, x-amz-request-id, expires, last-modified, set-cookie, content-security-policy, x-frame-options
access-control-allow-credentials: true
content-encoding: gzip
X-Firefox-Spdy: h2
accdn.lpsnmedia.net/api/account/11478817/configuration/setting/accountproperties/?cb=lpCb75410x69934
178.249.97.99200 OK 0 B URL HTTP/2 accdn.lpsnmedia.net/api/account/11478817/configuration/setting/accountproperties/?cb=lpCb75410x69934
IP 178.249.97.99:0
GET /api/account/11478817/configuration/setting/accountproperties/?cb=lpCb75410x69934 HTTP/1.1
Host: accdn.lpsnmedia.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://agileprofessional.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 30 Nov 2022 18:36:44 GMT
content-type: application/javascript
set-cookie: ADRUM_BTa=R:32|g:1f738ab3-e874-4833-82d6-ad9dcc59a409; Max-Age=30; Expires=Wed, 30-Nov-2022 18:37:14 GMT; Path=/
ADRUM_BTa=R:32|g:1f738ab3-e874-4833-82d6-ad9dcc59a409|n:livepersonltd_93a08561-b03e-475e-b29b-9ad4aa207daf; Max-Age=30; Expires=Wed, 30-Nov-2022 18:37:14 GMT; Path=/
SameSite=None; Max-Age=30; Expires=Wed, 30-Nov-2022 18:37:14 GMT; Path=/; Secure
ADRUM_BT1=R:32|i:2241648; Max-Age=30; Expires=Wed, 30-Nov-2022 18:37:14 GMT; Path=/
ADRUM_BT1=R:32|i:2241648|e:3; Max-Age=30; Expires=Wed, 30-Nov-2022 18:37:14 GMT; Path=/
vary: Accept
expires: Wed, 30 Nov 2022 18:37:44 GMT
x-envoy-upstream-service-time: 1
server: ws
strict-transport-security: max-age=99999999999; includeSubDomains
access-control-allow-methods: GET, POST, PATCH
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Authorization, X-HTTP-Method-Override, LP-DOMAIN-REFERER, LP-URL, ETag, ac-revision, X-LP-Last-Modified, If-Match, Authentication-Method, Credit-Card-Ref, Automation-Secret, Email-Token
access-control-expose-headers: X-Requested-With, X-HTTP-Method-Override, LP-DOMAIN-REFERER, LP-URL, ETag, ac-revision, X-LP-Last-Modified, If-Match, Authentication-Method, Credit-Card-Ref, Automation-Secret, Email-Token, x-lp-host, Lp-Req-Time, date, x-application-context, strict-transport-security, x-content-type-options, x-download-options, x-xss-protection, x-cache-status, x-amz-id-2, x-amz-request-id, expires, last-modified, set-cookie, content-security-policy, x-frame-options
access-control-allow-credentials: true
x-cache-status: EXPIRED
x-content-type-options: nosniff
content-encoding: gzip
X-Firefox-Spdy: h2