r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash cdbad2434b7d127a4fc769807a9dc3e7
fa98cd9fc2309ab4423f33f683d17bdb17d76713
560cbbb751ab2884024da3b93fba6bc45c6434797dba72a98c05e7fc2bb94bc1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "560CBBB751AB2884024DA3B93FBA6BC45C6434797DBA72A98C05E7FC2BB94BC1"
Last-Modified: Sat, 26 Nov 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2804
Expires: Mon, 28 Nov 2022 12:22:32 GMT
Date: Mon, 28 Nov 2022 11:35:48 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 64b2a23eab6e5ae8c010ec7242be930c
0673e4385ba01a5a245711bab96cafc34f765793
64751d193f7af72431e9689581faffcae1a30ff50ea425697b2b80ff61c87909
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4072
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 28 Nov 2022 11:35:48 GMT
Last-Modified: Mon, 28 Nov 2022 10:27:56 GMT
Server: ECS (ska/F714)
X-Cache: HIT
Content-Length: 471
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 3b56944f0e5716fd4fad2ec18994d4be
61cafa4de31ba960d1145ec37272f6f6b6944e0c
4fd46b0b6a2ea24f5ce175985a3933c04b4c01bd3e32bee2e50a61a65eef7af4
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4FD46B0B6A2EA24F5CE175985A3933C04B4C01BD3E32BEE2E50A61A65EEF7AF4"
Last-Modified: Sat, 26 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18270
Expires: Mon, 28 Nov 2022 16:40:18 GMT
Date: Mon, 28 Nov 2022 11:35:48 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
34.102.187.140200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 567df7db606cf5d0871aa5bc9311b6da
4263faac7cbab2fcaf6661911dcad5091c06be17
e9650e1fdc46fc8678708ddcc37ab369c7a6d50489a004be896f20c7a3a644b0
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Retry-After, Content-Length, Alert, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Mon, 28 Nov 2022 11:19:32 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 976
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 9ebddc2b260d081ebbefee47c037cb28
492bad62a7ca6a74738921ef5ae6f0be5edebf39
74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5
GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: feVL37kNojGC3nS5EMweayP60xB4pyMnmhrQSCPbLDCGM8mM2DnUkmF80wKKoXiIkNyCyO2Y2q4=
x-amz-request-id: 10ANQDY5M2QKYEAZ
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Mon, 28 Nov 2022 10:42:01 GMT
age: 3227
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
provedornet.com.br/
158.69.118.43301 Moved Permanently 706 B IP 158.69.118.43:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF, LF line terminators
Hash 67f3a5933c17b3ab044826d3927d0ba9
5957076d09bacaa6db8ddc832b4fd87ed8f05f8a
97e800f4836b7030dd58fe6296294b7ff5ef1b5eb0e88353f230ea1608d2bb64
Analyzer Verdict Alert fortinet Malware
GET / HTTP/1.1
Host: provedornet.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Connection: Keep-Alive
Content-Type: text/html
Content-Length: 706
Date: Mon, 28 Nov 2022 11:35:48 GMT
Server: LiteSpeed
Location: https://provedornet.com.br/
X-UA-Compatible: IE=Edge,chrome=1
Vary: User-Agent
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Mon, 28 Nov 2022 11:35:48 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
34.102.187.140200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Retry-After, Content-Length, Alert, Cache-Control, ETag, Pragma, Expires, Backoff, Last-Modified
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Mon, 28 Nov 2022 11:08:55 GMT
cache-control: public,max-age=3600
age: 1614
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 8a4b7a89dce3177a3f3f3736d89ad96e
df96dec8682d7d1d6507c46aa38669472ec3214d
20791e58658fe0201e8f72af7d4650977d0018155940d0adbf70861cb0218aa5
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "20791E58658FE0201E8F72AF7D4650977D0018155940D0ADBF70861CB0218AA5"
Last-Modified: Mon, 28 Nov 2022 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21599
Expires: Mon, 28 Nov 2022 17:35:48 GMT
Date: Mon, 28 Nov 2022 11:35:49 GMT
Connection: keep-alive
provedornet.com.br/
158.69.118.43200 OK 4.3 kB IP 158.69.118.43:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (462), with CRLF, LF line terminators
Hash e0d96f20eaa573342ed766d43d2479f5
8e50312ffb3c45196eb923a699b7547b8d90bde0
28c678f84fbf1be07bf241b85630dc3cfa286336a0bc68b0b3f6cfa91bd6443f
Analyzer Verdict Alert fortinet Malware
GET / HTTP/1.1
Host: provedornet.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
x-powered-by: PHP/8.0.25
content-type: text/html; charset=UTF-8
cache-control: public, max-age=0
expires: Mon, 28 Nov 2022 11:35:49 GMT
content-length: 4306
content-encoding: br
vary: Accept-Encoding,User-Agent
date: Mon, 28 Nov 2022 11:35:49 GMT
server: LiteSpeed
x-ua-compatible: IE=Edge,chrome=1
alt-svc: quic=":443"; ma=2592000; v="43,46", h3-Q043=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-25=":443"; ma=2592000, h3-27=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 7ab2ef968cb6a3078f4b9cb2dda813d4
e669116047ca058a2c1b2999ff0ea8682719162c
6ddecf0b21c44f3851da8efeb6ecdc6c8e9b83d7681153c31952b4ec8c23c940
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 437
Cache-Control: max-age=164303
Content-Type: application/ocsp-response
Date: Mon, 28 Nov 2022 11:35:49 GMT
Etag: "63847a2f-1d7"
Expires: Wed, 30 Nov 2022 09:14:12 GMT
Last-Modified: Mon, 28 Nov 2022 09:06:55 GMT
Server: ECS (ska/F714)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 80423577bb8ca66350f796c228ae9152
39a9a538873e91016bec486f0a39a8f5decf276c
b97b4d704efc28d3c9e1839cc5d08b9663f3f56654d42124e0ec19377a1a9084
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5951
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 28 Nov 2022 11:35:49 GMT
Last-Modified: Mon, 28 Nov 2022 09:56:38 GMT
Server: ECS (ska/F714)
X-Cache: HIT
Content-Length: 471
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash dfc6d93c89faf83ac654cd676c02764d
ce10d3ff46b50f22f7f79a7df65b0b7a6ddb741d
83947c7c69062338e3712fe76a493a2798aa2d1f63709eac14ba908d71080dd0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 28 Nov 2022 11:35:49 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 7207a5076b63fb5f39b9436ced9fb18f
cdd84ecfe85882601e81f11783d9f63b30084de3
6d4543402df8135d5860ecd47dd52d96d66d2e1ac6feec11accb5f43f2da7d0d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 28 Nov 2022 11:35:49 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.googleapis.com/css?family=Marcellus
142.250.74.10200 OK 811 B URL HTTP/2 fonts.googleapis.com/css?family=Marcellus
IP 142.250.74.10:0
Hash fe31210a30e2ded45d7132f5aed1f321
e4df08ba23e8d312283a24e04becb9ad52d1825b
b769702d6b774cd7644e9f6661b0aca3b8c2cc317fabf72cba00c46f7ecbed1c
GET /css?family=Marcellus HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://provedornet.com.br/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Mon, 28 Nov 2022 11:35:49 GMT
date: Mon, 28 Nov 2022 11:35:49 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
maps.google.com/maps/api/js?sensor=false
216.58.211.14200 OK 53 kB URL HTTP/2 maps.google.com/maps/api/js?sensor=false
IP 216.58.211.14:0
File type ASCII text, with very long lines (2517)
Hash 12aaa09b6cc71fe0a60759017fc0a952
dd3bb2d31d6106583e5ac8c4c10132179be22e70
03c3718ecb7960af3505e31acdf3a7cf28f39306bb9a5d4c3f30190f39f21ed9
GET /maps/api/js?sensor=false HTTP/1.1
Host: maps.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://provedornet.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/javascript; charset=UTF-8
date: Mon, 28 Nov 2022 11:35:49 GMT
expires: Mon, 28 Nov 2022 12:05:49 GMT
cache-control: public, max-age=1800
vary: Accept-Language
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
content-encoding: gzip
server: mafe
content-length: 53384
x-xss-protection: 0
x-frame-options: SAMEORIGIN
server-timing: gfet4t7; dur=13
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 7207a5076b63fb5f39b9436ced9fb18f
cdd84ecfe85882601e81f11783d9f63b30084de3
6d4543402df8135d5860ecd47dd52d96d66d2e1ac6feec11accb5f43f2da7d0d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 28 Nov 2022 11:35:49 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
provedornet.com.br/assets/styles/icons.css
158.69.118.43200 OK 7.9 kB URL HTTP/2 provedornet.com.br/assets/styles/icons.css
IP 158.69.118.43:0
File type ASCII text, with very long lines (40179)
Hash 37a3fc365a4b708d02c997f95d931371
a9e66c7c046fe43128ff0bc009837caa2ebf53b7
4f4c1287e437ae7698cc8a8334e2c46bb1cc2e7964e180cc996d047009c78f68
GET /assets/styles/icons.css HTTP/1.1
Host: provedornet.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://provedornet.com.br/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000
expires: Tue, 28 Nov 2023 11:35:49 GMT
content-type: text/css
last-modified: Thu, 10 Oct 2013 02:06:30 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 7908
date: Mon, 28 Nov 2022 11:35:49 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/yu/l/0,cross/5bdAWVPYBPC.css?_nc_x=Ij3Wp8lg5Kz
31.13.72.12200 OK 5.0 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/yu/l/0,cross/5bdAWVPYBPC.css?_nc_x=Ij3Wp8lg5Kz
IP 31.13.72.12:0
File type ASCII text, with very long lines (4431)
Hash ba954e97ec5946479be5630757b76ca8
2588e32e2022cf42d7dee40768c011769a0efb86
bf859ca7d3c40ff138c346c2c59dc17b6ccbb355c713bd6ea57e6283da459fdf
GET /rsrc.php/v3/yu/l/0,cross/5bdAWVPYBPC.css?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-encoding: br
content-type: text/css; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Mon, 27 Nov 2023 16:58:51 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: upVOl+xZRkeb5WMHV7dsqA==
x-fb-debug: 3JEBrRX8ZdGd0Rhj0gdXWYTFCgQhFAQRwPUwZvXGonnN9l5ntnIa81PkTJrX/SrfFEs/iwBR4zzMKY0Hw4tGgg==
priority: u=2
content-length: 4978
x-fb-trip-id: 2074150462
date: Mon, 28 Nov 2022 11:35:49 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
push.services.mozilla.com/
52.35.190.173101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.35.190.173:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: tdgPE4m6IIgBibocFTQmnA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: Su8QYv82le+kDKw7m2WdKY7hqDA=
provedornet.com.br/assets/styles/animate.css
158.69.118.43200 OK 5.4 kB URL HTTP/2 provedornet.com.br/assets/styles/animate.css
IP 158.69.118.43:0
File type ASCII text, with very long lines (51170), with CRLF line terminators
Hash 66b4eebc4b0d8993592023b633fdb5e4
3e0604808c4db97181813eb087e7d2a70afbf370
cb79ea1c0e5c9189735eb7ed6c88fc6792128b5afbeb06c19e5affd6cee6f94f
GET /assets/styles/animate.css HTTP/1.1
Host: provedornet.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://provedornet.com.br/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000
expires: Tue, 28 Nov 2023 11:35:49 GMT
content-type: text/css
last-modified: Thu, 10 Oct 2013 01:59:42 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 5378
date: Mon, 28 Nov 2022 11:35:49 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
provedornet.com.br/assets/js/rs-plugin/css/settings.css
158.69.118.43200 OK 4.3 kB URL HTTP/2 provedornet.com.br/assets/js/rs-plugin/css/settings.css
IP 158.69.118.43:0
File type ASCII text, with CRLF line terminators
Hash d112a2c6b1db76b0d633bab9bc3c0e74
9e7c73469492b19df1858c1d3ea1bef6cfd9242e
8a333e1ad86ee108109a2d2462039068091aba8334d3f4533b23c560f6585e87
GET /assets/js/rs-plugin/css/settings.css HTTP/1.1
Host: provedornet.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://provedornet.com.br/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000
expires: Tue, 28 Nov 2023 11:35:49 GMT
content-type: text/css
last-modified: Sat, 05 Oct 2013 15:38:20 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 4344
date: Mon, 28 Nov 2022 11:35:49 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
provedornet.com.br/assets/styles/responsive.css
158.69.118.43200 OK 2.7 kB URL HTTP/2 provedornet.com.br/assets/styles/responsive.css
IP 158.69.118.43:0
File type ASCII text, with CRLF line terminators
Hash d123e00691b5fa86eb4676efc350afde
296c5dd490a17c8e501041e938357034f0337d58
6ac410619ac8cbbbe053e16391333e88d677a77cb0e86ae1e09c1bdbdfb61b77
GET /assets/styles/responsive.css HTTP/1.1
Host: provedornet.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://provedornet.com.br/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000
expires: Tue, 28 Nov 2023 11:35:49 GMT
content-type: text/css
last-modified: Tue, 21 Oct 2014 11:58:26 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 2724
date: Mon, 28 Nov 2022 11:35:49 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
provedornet.com.br/assets/colors/peter_river.css
158.69.118.43200 OK 4.1 kB URL HTTP/2 provedornet.com.br/assets/colors/peter_river.css
IP 158.69.118.43:0
File type ASCII text, with CRLF line terminators
Hash 41af54f920bc8490cc48da778db4eeff
d9f7cb0fa47c95bc8437994920561013c7226b2a
c0dfa5a2e68062095f925cb04fafdf1fac862f8c6c6c8f0e952c1c3bc00660f4
GET /assets/colors/peter_river.css HTTP/1.1
Host: provedornet.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://provedornet.com.br/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000
expires: Tue, 28 Nov 2023 11:35:49 GMT
content-type: text/css
last-modified: Mon, 14 Oct 2013 04:58:30 GMT
accept-ranges: bytes
content-length: 4141
date: Mon, 28 Nov 2022 11:35:49 GMT
server: LiteSpeed
vary: User-Agent
X-Firefox-Spdy: h2
provedornet.com.br/assets/styles/flexslider.css
158.69.118.43200 OK 5.1 kB URL HTTP/2 provedornet.com.br/assets/styles/flexslider.css
IP 158.69.118.43:0
File type ASCII text, with very long lines (375)
Hash 2bf1ea583983548b6eec5046d13424f1
67ca6ccf9300a0bd83a95c0e65c7758834606980
3a1fbfeb6eeeeca6ff94b8ffde79ec8519971304f3fecd662eb880bc1c9bc20e
GET /assets/styles/flexslider.css HTTP/1.1
Host: provedornet.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://provedornet.com.br/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000
expires: Tue, 28 Nov 2023 11:35:49 GMT
content-type: text/css
last-modified: Tue, 21 Oct 2014 14:22:34 GMT
accept-ranges: bytes
content-length: 5066
date: Mon, 28 Nov 2022 11:35:49 GMT
server: LiteSpeed
vary: User-Agent
X-Firefox-Spdy: h2
provedornet.com.br/assets/images/logo.png
158.69.118.43200 OK 4.4 kB URL HTTP/2 provedornet.com.br/assets/images/logo.png
IP 158.69.118.43:0
File type PNG image data, 197 x 70, 8-bit/color RGBA, non-interlaced\012- data
Hash b301ab5763bb52478ba88b049889d0ac
f2ef5d93648dae1342f8b76e764ab5b0bf5ba588
2ddd5a8fe948e8e206bf0b3cc346d8535c5bb85dc442f9603e5bea4b4685712b
GET /assets/images/logo.png HTTP/1.1
Host: provedornet.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://provedornet.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=2592000
expires: Wed, 28 Dec 2022 11:35:49 GMT
content-type: image/png
last-modified: Wed, 25 Jun 2014 22:45:26 GMT
accept-ranges: bytes
content-length: 4431
date: Mon, 28 Nov 2022 11:35:49 GMT
server: LiteSpeed
vary: User-Agent
X-Firefox-Spdy: h2
provedornet.com.br/assets/bootstrap/css/bootstrap.min.css
158.69.118.43200 OK 20 kB URL HTTP/2 provedornet.com.br/assets/bootstrap/css/bootstrap.min.css
IP 158.69.118.43:0
File type ASCII text, with very long lines (65371)
Hash 98127587e61b87523462a9d62efd5faf
dab53a4f3e009fc397b3dc44371508e2da3d7d03
4eba55cec5b615c8f1e4427a9104b11552abcf7eac9bb1a5bd718e3ffcaaa1b8
GET /assets/bootstrap/css/bootstrap.min.css HTTP/1.1
Host: provedornet.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://provedornet.com.br/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000
expires: Tue, 28 Nov 2023 11:35:49 GMT
content-type: text/css
last-modified: Tue, 21 Oct 2014 14:10:26 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 19735
date: Mon, 28 Nov 2022 11:35:49 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
provedornet.com.br/assets/style.css
158.69.118.43200 OK 36 kB URL HTTP/2 provedornet.com.br/assets/style.css
IP 158.69.118.43:0
Hash 0bb363bea36ef208f22df9eedc063b2c
7ec5217f76c8c6e5f31ad820d5750cfd204bf7b7
830f515de7fcabb7e4fc918f83ade4a2c2842a145ad9e2304a0c1ad60e512c0a
GET /assets/style.css HTTP/1.1
Host: provedornet.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://provedornet.com.br/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000
expires: Tue, 28 Nov 2023 11:35:49 GMT
content-type: text/css
last-modified: Tue, 21 Oct 2014 16:04:30 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 36064
date: Mon, 28 Nov 2022 11:35:49 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
provedornet.com.br/assets/js/config.js
158.69.118.43200 OK 44 B URL HTTP/2 provedornet.com.br/assets/js/config.js
IP 158.69.118.43:0
File type ASCII text, with no line terminators
Hash 782f31661a237e81b3669955450164cb
5a36aaa808b9ac4cd8086f2b8aa7d1047182ec13
abd3bbcdc17bbe9dd3b68e484afb28390153db556bdb753b30e89e7bf0bc6634
Analyzer Verdict Alert fortinet Malware
GET /assets/js/config.js HTTP/1.1
Host: provedornet.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://provedornet.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000
expires: Tue, 28 Nov 2023 11:35:49 GMT
content-type: application/javascript
last-modified: Fri, 21 Nov 2014 22:56:00 GMT
accept-ranges: bytes
content-length: 44
date: Mon, 28 Nov 2022 11:35:49 GMT
server: LiteSpeed
vary: User-Agent
X-Firefox-Spdy: h2
provedornet.com.br/assets/js/jquery.flexslider-min.js
158.69.118.43200 OK 6.7 kB URL HTTP/2 provedornet.com.br/assets/js/jquery.flexslider-min.js
IP 158.69.118.43:0
File type ASCII text, with very long lines (32671)
Hash eda3193dacd63b7dac77b0e7b58788c0
e15c70e29be39f87dd0f75b45b017703997c85b9
a141ac7fcb79e429745492e0a7a140fbcccde2b12d982179de33646325b4ea6c
Analyzer Verdict Alert fortinet Malware
GET /assets/js/jquery.flexslider-min.js HTTP/1.1
Host: provedornet.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://provedornet.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000
expires: Tue, 28 Nov 2023 11:35:49 GMT
content-type: application/javascript
last-modified: Fri, 20 Dec 2013 09:40:32 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 6683
date: Mon, 28 Nov 2022 11:35:49 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
i.imgur.com/xdGblmg.png
151.101.84.193301 Moved Permanently 0 B IP 151.101.84.193:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /xdGblmg.png HTTP/1.1
Host: i.imgur.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 301 Moved Permanently
Connection: close
Content-Length: 0
Retry-After: 0
Location: https://i.imgur.com/xdGblmg.png
Accept-Ranges: bytes
Date: Mon, 28 Nov 2022 11:35:50 GMT
X-Served-By: cache-bma1627-BMA
X-Cache: HIT
X-Cache-Hits: 0
X-Timer: S1669635350.087921,VS0,VE0
Strict-Transport-Security: max-age=300
Access-Control-Allow-Methods: GET, OPTIONS
Access-Control-Allow-Origin: *
Server: cat factory 1.0
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash cd0a5be4865b85e858cfcaafa90f8dca
122569d314b0900b1f5e5f58cdad0d9fc16b7e1b
624aa7cc70d5c36d732f15cdeb8de3854f30240cb770108dd88103f13393428d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 28 Nov 2022 11:35:50 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/marcellus/v13/wEO_EBrOk8hQLDvIAF81VvoK.woff2
216.58.207.195200 OK 15 kB URL HTTP/2 fonts.gstatic.com/s/marcellus/v13/wEO_EBrOk8hQLDvIAF81VvoK.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 14552, version 1.0\012- data
Hash d8d78c8d074b3e3ee4232d269932f9a2
10f9e448571b8095b380bb2ea019cfc68fb27a9b
8a539799d12e3a144273288055490f57e1eee84da7a9145f085bc522e80719c3
GET /s/marcellus/v13/wEO_EBrOk8hQLDvIAF81VvoK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://provedornet.com.br
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 14552
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 25 Nov 2022 23:15:12 GMT
expires: Sat, 25 Nov 2023 23:15:12 GMT
cache-control: public, max-age=31536000
age: 217238
last-modified: Tue, 26 Apr 2022 16:36:48 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
provedornet.com.br/assets/bootstrap/js/bootstrap.min.js
158.69.118.43200 OK 8.1 kB URL HTTP/2 provedornet.com.br/assets/bootstrap/js/bootstrap.min.js
IP 158.69.118.43:0
File type ASCII text, with very long lines (28514)
Hash a65f89ede5fee94bca30e11f3e418f42
2fb722ccf436558fb1938fade2e17befa00fd75f
ca4c52be3fe09e7676804f14f6423d03968657df31442aca1c9508ff4db771cb
Analyzer Verdict Alert fortinet Malware
GET /assets/bootstrap/js/bootstrap.min.js HTTP/1.1
Host: provedornet.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://provedornet.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000
expires: Tue, 28 Nov 2023 11:35:49 GMT
content-type: application/javascript
last-modified: Sat, 27 Jul 2013 02:20:48 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 8095
date: Mon, 28 Nov 2022 11:35:49 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
provedornet.com.br/assets/js/theme20.js
158.69.118.43200 OK 13 kB URL HTTP/2 provedornet.com.br/assets/js/theme20.js
IP 158.69.118.43:0
File type ASCII text, with very long lines (12697), with CRLF line terminators
Hash 51b04d7c81226ec965271730535b5264
f9bf691720bd97ce7ad3a1508f6b88d3a450d033
3375b3a66e4481213b3dc748ad7f0b3f1356f819a449e61193796ef995b8b740
Analyzer Verdict Alert fortinet Malware
GET /assets/js/theme20.js HTTP/1.1
Host: provedornet.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://provedornet.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000
expires: Tue, 28 Nov 2023 11:35:49 GMT
content-type: application/javascript
last-modified: Sun, 13 Oct 2013 16:41:10 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 13340
date: Mon, 28 Nov 2022 11:35:49 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash cd0a5be4865b85e858cfcaafa90f8dca
122569d314b0900b1f5e5f58cdad0d9fc16b7e1b
624aa7cc70d5c36d732f15cdeb8de3854f30240cb770108dd88103f13393428d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 28 Nov 2022 11:35:50 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
i.imgur.com/xdGblmg.png
151.101.84.193200 OK 28 kB IP 151.101.84.193:0
File type PNG image data, 940 x 193, 8-bit/color RGBA, non-interlaced\012- data
Hash e81fa9ee59869c861d9a6022bcb6d131
dd29c141f8fad8aa338402e180de3302fea322cd
99d0cf94d0aa50c8e700d53f46cfabcaad937bf2b25b5a211dd546130a19f6b4
GET /xdGblmg.png HTTP/1.1
Host: i.imgur.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
last-modified: Tue, 21 Oct 2014 13:19:16 GMT
etag: "e81fa9ee59869c861d9a6022bcb6d131"
content-type: image/png
cache-control: public, max-age=31536000
accept-ranges: bytes
date: Mon, 28 Nov 2022 11:35:50 GMT
age: 2327685
x-served-by: cache-iad-kjyo7100052-IAD, cache-bma1679-BMA
x-cache: HIT, MISS
x-cache-hits: 48, 0
x-timer: S1669635350.152389,VS0,VE92
strict-transport-security: max-age=300
access-control-allow-methods: GET, OPTIONS
access-control-allow-origin: *
server: cat factory 1.0
x-content-type-options: nosniff
content-length: 28509
X-Firefox-Spdy: h2
provedornet.com.br/assets/js/jquery.nicescroll.min.js
158.69.118.43200 OK 18 kB URL HTTP/2 provedornet.com.br/assets/js/jquery.nicescroll.min.js
IP 158.69.118.43:0
File type ASCII text, with very long lines (59962), with no line terminators
Hash fdb441d7bdae9f1722172ad8fad630ad
3847ecfc246d41d7912e9cd05e739fa0db9a0df2
0f46d17e41c19c94f45cd9015d88874908d0e9ab02b8aea973fe23e4cebd7f1c
Analyzer Verdict Alert fortinet Malware
GET /assets/js/jquery.nicescroll.min.js HTTP/1.1
Host: provedornet.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://provedornet.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000
expires: Tue, 28 Nov 2023 11:35:49 GMT
content-type: application/javascript
last-modified: Thu, 27 Oct 2022 15:48:21 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 17733
date: Mon, 28 Nov 2022 11:35:49 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
provedornet.com.br/assets/js/gmap3.js
158.69.118.43200 OK 18 kB URL HTTP/2 provedornet.com.br/assets/js/gmap3.js
IP 158.69.118.43:0
File type ASCII text, with CRLF line terminators
Hash d86fbcf36d17db3d1af231e811752f2a
cddd58f4c483133b3caf084021fb97d3a1e85924
aacbc93ed5d91950b3f142b4d1844b77fb7538e57d14f6602a2622a9799edab4
Analyzer Verdict Alert fortinet Malware
GET /assets/js/gmap3.js HTTP/1.1
Host: provedornet.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://provedornet.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000
expires: Tue, 28 Nov 2023 11:35:49 GMT
content-type: application/javascript
last-modified: Wed, 04 Sep 2013 21:17:58 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 18200
date: Mon, 28 Nov 2022 11:35:49 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
provedornet.com.br/assets/js/jquery.maskedinput.min.js
158.69.118.43200 OK 3.6 kB URL HTTP/2 provedornet.com.br/assets/js/jquery.maskedinput.min.js
IP 158.69.118.43:0
File type ASCII text, with very long lines (3366)
Hash 527014dc47a66640dc96db705700c7a1
db884486ad1d0fccb6bcbf793a21833b97df1e27
4d2f8e93a72b351e2a74a613e93e63c0c1e3b0f742cdb83b7664f4796092376d
Analyzer Verdict Alert fortinet Malware
GET /assets/js/jquery.maskedinput.min.js HTTP/1.1
Host: provedornet.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://provedornet.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000
expires: Tue, 28 Nov 2023 11:35:49 GMT
content-type: application/javascript
last-modified: Sun, 06 Jul 2014 23:31:34 GMT
accept-ranges: bytes
content-length: 3568
date: Mon, 28 Nov 2022 11:35:49 GMT
server: LiteSpeed
vary: User-Agent
X-Firefox-Spdy: h2
provedornet.com.br/assets/js/custom.js
158.69.118.43200 OK 9.0 kB URL HTTP/2 provedornet.com.br/assets/js/custom.js
IP 158.69.118.43:0
File type ISO-8859 text, with very long lines (7808)
Hash f3f4931f63fe476b89a688738978d7ec
915fdee90a89e1afe1bbb9d48bc583b7fd37c26f
c2b98931602982516ea4cd8ee35adb5d956298905f961d92d709581d5ae2dd29
Analyzer Verdict Alert fortinet Malware
GET /assets/js/custom.js HTTP/1.1
Host: provedornet.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://provedornet.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000
expires: Tue, 28 Nov 2023 11:35:49 GMT
content-type: application/javascript
last-modified: Tue, 11 Nov 2014 10:12:00 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 8975
date: Mon, 28 Nov 2022 11:35:49 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
provedornet.com.br/assets/js/jquery.min.js
158.69.118.43200 OK 35 kB URL HTTP/2 provedornet.com.br/assets/js/jquery.min.js
IP 158.69.118.43:0
File type ASCII text, with very long lines (32065)
Hash 6db64c90a2bf1fea82d406d75f196d02
597dd8e5647232c3d056e7d3a216c56b8dbc7d24
d968253c0450e5b03b8b2ce3bd04720dbe13ccb03055c918dcefa5ef55643a1a
Analyzer Verdict Alert fortinet Malware
GET /assets/js/jquery.min.js HTTP/1.1
Host: provedornet.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://provedornet.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000
expires: Tue, 28 Nov 2023 11:35:49 GMT
content-type: application/javascript
last-modified: Sat, 07 Sep 2013 17:37:48 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 34557
date: Mon, 28 Nov 2022 11:35:49 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
provedornet.com.br/assets/images/clientes/north-shopping.jpg
158.69.118.43200 OK 18 kB URL HTTP/2 provedornet.com.br/assets/images/clientes/north-shopping.jpg
IP 158.69.118.43:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 248x120, components 3\012- data
Hash 69f80e03f3670aa382e42a456673b1d9
a1770b883b1b07bbc20b50bb947610cbf9047ff6
8c12357b5a7e822c6930417ea2f953cce40b6db8c33937d7f0c8f503cb879022
GET /assets/images/clientes/north-shopping.jpg HTTP/1.1
Host: provedornet.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://provedornet.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=2592000
expires: Wed, 28 Dec 2022 11:35:49 GMT
content-type: image/jpeg
last-modified: Tue, 21 Oct 2014 13:00:50 GMT
accept-ranges: bytes
content-length: 18308
date: Mon, 28 Nov 2022 11:35:49 GMT
server: LiteSpeed
x-ua-compatible: IE=Edge,chrome=1
vary: User-Agent
X-Firefox-Spdy: h2
provedornet.com.br/assets/images/clientes/transeconomica.jpg
158.69.118.43200 OK 16 kB URL HTTP/2 provedornet.com.br/assets/images/clientes/transeconomica.jpg
IP 158.69.118.43:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 248x120, components 3\012- data
Hash b1fe389cfec979c4232eb9e02ef7e7f7
74c24a77b04b21d4e28eecbc89bbfce53f05e306
aefd3f0491e43b1d5661a2995e3f11728c0c76ea772078e4dbf037321d093e12
GET /assets/images/clientes/transeconomica.jpg HTTP/1.1
Host: provedornet.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://provedornet.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=2592000
expires: Wed, 28 Dec 2022 11:35:49 GMT
content-type: image/jpeg
last-modified: Tue, 21 Oct 2014 13:01:42 GMT
accept-ranges: bytes
content-length: 16297
date: Mon, 28 Nov 2022 11:35:49 GMT
server: LiteSpeed
x-ua-compatible: IE=Edge,chrome=1
vary: User-Agent
X-Firefox-Spdy: h2
provedornet.com.br/assets/images/clientes/a4log.jpg
158.69.118.43200 OK 6.6 kB URL HTTP/2 provedornet.com.br/assets/images/clientes/a4log.jpg
IP 158.69.118.43:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 248x120, components 3\012- data
Hash e2baec9d8e8c80f59ff5c29028f955f0
8a17f2964509b08e047877184ac2b1fcad51b3a3
cb341db11419f505e20aed96d9ffca68206f25b494076e7be97e082ecace36fa
GET /assets/images/clientes/a4log.jpg HTTP/1.1
Host: provedornet.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://provedornet.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=2592000
expires: Wed, 28 Dec 2022 11:35:49 GMT
content-type: image/jpeg
last-modified: Tue, 21 Oct 2014 12:59:38 GMT
accept-ranges: bytes
content-length: 6614
date: Mon, 28 Nov 2022 11:35:49 GMT
server: LiteSpeed
x-ua-compatible: IE=Edge,chrome=1
vary: User-Agent
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash aebda342a81ad83f60d2523f54ccda67
e590d9326e4a283e0929a8ffccb13cc4308af0e6
bd123fe3fce93216e2635f9dbc356f081b7599784fb6b67984032f11d82bc7cb
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BD123FE3FCE93216E2635F9DBC356F081B7599784FB6B67984032F11D82BC7CB"
Last-Modified: Sat, 26 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10191
Expires: Mon, 28 Nov 2022 14:25:41 GMT
Date: Mon, 28 Nov 2022 11:35:50 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash aebda342a81ad83f60d2523f54ccda67
e590d9326e4a283e0929a8ffccb13cc4308af0e6
bd123fe3fce93216e2635f9dbc356f081b7599784fb6b67984032f11d82bc7cb
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BD123FE3FCE93216E2635F9DBC356F081B7599784FB6B67984032F11D82BC7CB"
Last-Modified: Sat, 26 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10191
Expires: Mon, 28 Nov 2022 14:25:41 GMT
Date: Mon, 28 Nov 2022 11:35:50 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash aebda342a81ad83f60d2523f54ccda67
e590d9326e4a283e0929a8ffccb13cc4308af0e6
bd123fe3fce93216e2635f9dbc356f081b7599784fb6b67984032f11d82bc7cb
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BD123FE3FCE93216E2635F9DBC356F081B7599784FB6B67984032F11D82BC7CB"
Last-Modified: Sat, 26 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10191
Expires: Mon, 28 Nov 2022 14:25:41 GMT
Date: Mon, 28 Nov 2022 11:35:50 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash aebda342a81ad83f60d2523f54ccda67
e590d9326e4a283e0929a8ffccb13cc4308af0e6
bd123fe3fce93216e2635f9dbc356f081b7599784fb6b67984032f11d82bc7cb
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BD123FE3FCE93216E2635F9DBC356F081B7599784FB6B67984032F11D82BC7CB"
Last-Modified: Sat, 26 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10191
Expires: Mon, 28 Nov 2022 14:25:41 GMT
Date: Mon, 28 Nov 2022 11:35:50 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F165667de-df17-4cc6-832c-94f49703bdf2.jpeg
34.120.237.76200 OK 9.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F165667de-df17-4cc6-832c-94f49703bdf2.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 1f434933b5bd6377d299ada22d1ae7ef
075531f525e625b117b2497f31139c9824d0e9c5
b587a3249e4f20112088608e3651c2ccbc44225a5c9d88d3bf5884d7f0e9029c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F165667de-df17-4cc6-832c-94f49703bdf2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9430
x-amzn-requestid: 454ca8bd-a256-45f2-8b41-feee86c5af82
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cR7wyGCIIAMFhgw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6383d99e-1488f8ce71a91ebc3ad6b7e0;Sampled=0
x-amzn-remapped-date: Sun, 27 Nov 2022 21:41:50 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: ibLuLI6j9EWh0dgk51O7kiPBRyURZ0UdNtlgbBD-SXnDg_GT_tJm8Q==
via: 1.1 8f22423015641505b8c857a37450d6c0.cloudfront.net (CloudFront), 1.1 d8792dbd3191bbe722eba5b536b979c8.cloudfront.net (CloudFront), 1.1 google
date: Sun, 27 Nov 2022 22:01:16 GMT
age: 48874
etag: "075531f525e625b117b2497f31139c9824d0e9c5"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8f2e6328-f3c1-4a69-b0b6-73920b885144.jpeg
34.120.237.76200 OK 8.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8f2e6328-f3c1-4a69-b0b6-73920b885144.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 3a1a4e00f1f15827cf651f373863c379
70c2a238f06ca7e56ef80c83738e081bf0de3330
3d936e1f0c96297f121faece12d6f8173e12eed5087165cd4eefc0fab368419f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8f2e6328-f3c1-4a69-b0b6-73920b885144.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8885
x-amzn-requestid: 71b8367f-f79f-42a7-bcb8-c441a154babf
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cGDTEFSeIAMF3rg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637f18e0-631b775d3430a8c30c3b4420;Sampled=0
x-amzn-remapped-date: Thu, 24 Nov 2022 07:10:24 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: jsmd6yxjJxLMEgv1jDa87iEoZXL2OuALsmUZ9Nxx1rUN-xOTdtN1-A==
via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 559326ad73233233a9e52cb9e8601ede.cloudfront.net (CloudFront), 1.1 google
date: Mon, 28 Nov 2022 08:11:39 GMT
age: 12251
etag: "70c2a238f06ca7e56ef80c83738e081bf0de3330"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd56d2fad-ed89-4d96-831f-7f8467b7079b.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd56d2fad-ed89-4d96-831f-7f8467b7079b.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 15bd53848c7082464273007e010c54e0
9a3ca698ca1aeae695923277ed2244465e01a1ea
36cfa29965173ea683992d4b436f393e92c978350347f869355d933613e2c005
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd56d2fad-ed89-4d96-831f-7f8467b7079b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10119
x-amzn-requestid: 20bfd6a6-2981-42ca-8997-9363676773c1
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cR782HEZIAMFTKQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6383d9eb-552581a92a69d6cd322bf334;Sampled=0
x-amzn-remapped-date: Sun, 27 Nov 2022 21:43:07 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: U_gitOWWMPO7M5Dd0WktaigfRERa93d86MhziLjZ2qnuON_K5NauyQ==
via: 1.1 e5af640ced3aa8764b82c4bc3f7af38e.cloudfront.net (CloudFront), 1.1 d6b180eb367f7de26d67a9f3901b96a6.cloudfront.net (CloudFront), 1.1 google
date: Sun, 27 Nov 2022 21:54:37 GMT
age: 49273
etag: "9a3ca698ca1aeae695923277ed2244465e01a1ea"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffa0bb072-3065-47f5-88ac-e3977adf0cba.jpeg
34.120.237.76200 OK 3.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffa0bb072-3065-47f5-88ac-e3977adf0cba.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash f7d70dfcfffed4941f9766906c52776c
cd268c0301ee9ec2de1aaaf5fff3efede4973916
024dcb67aca1c6491ca045b1384b623ff934362b77bac2916ad2744e5c6c4bd2
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffa0bb072-3065-47f5-88ac-e3977adf0cba.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 3532
x-amzn-requestid: 12f95833-5aca-4633-8eac-011f194953ff
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cJWisFi5IAMFgCQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63806add-77d024405c7fe57124c4ae1c;Sampled=0
x-amzn-remapped-date: Fri, 25 Nov 2022 07:12:29 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: FfwgJjX9r1rqeeN9Va2apka3gXe6L610KxF8UHT5AzbM-wZtMqQDBA==
via: 1.1 446313511980eb02f28ff5a9a4147c0a.cloudfront.net (CloudFront), 1.1 64f86ae1c24221f3a2e4d653d6dbc416.cloudfront.net (CloudFront), 1.1 google
date: Mon, 28 Nov 2022 07:43:12 GMT
age: 13958
etag: "cd268c0301ee9ec2de1aaaf5fff3efede4973916"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F881a33ae-e81b-4603-85d9-a2242b17be66.jpeg
34.120.237.76200 OK 4.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F881a33ae-e81b-4603-85d9-a2242b17be66.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash cc0a257323f882caff067adb86d906e4
cedf2f21be7cd366bd46055b62b5513db3011dfc
c16a9296d5e840a468fef7fb2764b9f7d4b3131d7ade2ce4999de1eead5469e0
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F881a33ae-e81b-4603-85d9-a2242b17be66.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4803
x-amzn-requestid: 80f7f1c8-0316-4181-83ac-2787b1ae825f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cOo4iFHoIAMF2-g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63828836-2c0a081b07e0785b4350c10c;Sampled=0
x-amzn-remapped-date: Sat, 26 Nov 2022 21:42:14 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: AVwDLlKoy5pc9NNuR_OakMB0ONGAoO-k2AKwV--b2sjiaqYSKAWlZg==
via: 1.1 da5952aa802df39905ceb16592e9698a.cloudfront.net (CloudFront), 1.1 98aedae6661e3904540676966998ed88.cloudfront.net (CloudFront), 1.1 google
date: Sun, 27 Nov 2022 22:25:51 GMT
age: 47399
etag: "cedf2f21be7cd366bd46055b62b5513db3011dfc"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff1f41832-bc78-4527-a3e7-8099266ecb52.jpeg
34.120.237.76200 OK 8.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff1f41832-bc78-4527-a3e7-8099266ecb52.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 577b69fd08ad8368ea5a94fe41476c1c
9442f111d329f721ddc55100cd246586d8204048
bdafc5068032dcf5e207cf2685a1b9350dbe8d990ba181520ff47889524532f2
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff1f41832-bc78-4527-a3e7-8099266ecb52.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8517
x-amzn-requestid: 12456791-0e7f-45d7-97ae-d663c8fa841d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cMozvHHLoAMFVqQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6381bb4a-54ed1ec101789247052c9ec8;Sampled=0
x-amzn-remapped-date: Sat, 26 Nov 2022 07:07:54 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: UzzTPZIBjoow9PK-oM9rfGh5HkrivyPDofbTXy-I-9e4_baQnyKVhQ==
via: 1.1 8f22423015641505b8c857a37450d6c0.cloudfront.net (CloudFront), 1.1 be082a2326b7d49643607b097f1e7180.cloudfront.net (CloudFront), 1.1 google
date: Mon, 28 Nov 2022 07:21:27 GMT
age: 15263
etag: "9442f111d329f721ddc55100cd246586d8204048"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
provedornet.com.br/assets/images/clientes/prefeitura-beberibe.jpg
158.69.118.43200 OK 25 kB URL HTTP/2 provedornet.com.br/assets/images/clientes/prefeitura-beberibe.jpg
IP 158.69.118.43:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 248x120, components 3\012- data
Hash e2cb7cee4fbb05646563f4e195d558ca
e267996384b3701f6e46ad0f6a61894dcf8e8bbe
b2c2e71a31179c3008066f3dc55154978e7f20c1dc3d762d11edd4d4c0347064
GET /assets/images/clientes/prefeitura-beberibe.jpg HTTP/1.1
Host: provedornet.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://provedornet.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=2592000
expires: Wed, 28 Dec 2022 11:35:49 GMT
content-type: image/jpeg
last-modified: Tue, 21 Oct 2014 12:57:34 GMT
accept-ranges: bytes
content-length: 25438
date: Mon, 28 Nov 2022 11:35:49 GMT
server: LiteSpeed
x-ua-compatible: IE=Edge,chrome=1
vary: User-Agent
X-Firefox-Spdy: h2
provedornet.com.br/assets/styles/font/fontawesome-webfont.woff?v=3.2.1
158.69.118.43200 OK 44 kB URL HTTP/2 provedornet.com.br/assets/styles/font/fontawesome-webfont.woff?v=3.2.1
IP 158.69.118.43:0
File type Web Open Font Format, TrueType, length 43572, version 1.0\012- data
Hash b683029bafe0305ac2234038a03e1541
12f8c193902e99348493ace32e498031bf79b654
18e6b5ff511b90edf098e62ac45ed9d6673a3eee10165d0de4164d4d02a3a77f
GET /assets/styles/font/fontawesome-webfont.woff?v=3.2.1 HTTP/1.1
Host: provedornet.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://provedornet.com.br/assets/styles/icons.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=2592000
expires: Wed, 28 Dec 2022 11:35:50 GMT
content-type: application/x-font-woff
last-modified: Wed, 26 Jun 2013 14:10:32 GMT
accept-ranges: bytes
content-length: 43572
date: Mon, 28 Nov 2022 11:35:50 GMT
server: LiteSpeed
vary: User-Agent
X-Firefox-Spdy: h2
provedornet.com.br/assets/styles/font/Metrize-Icons.woff
158.69.118.43200 OK 94 kB URL HTTP/2 provedornet.com.br/assets/styles/font/Metrize-Icons.woff
IP 158.69.118.43:0
File type Web Open Font Format, CFF, length 94348, version 1.0\012- data
Hash cb6e7ef724b0f378174b11d72e21e190
27eedaeb558f980631de8594268e998950e24097
99101205a8afdb82d3256434317067670e4b632975ee24a4799a842902385f88
Analyzer Verdict Alert fortinet Malware
GET /assets/styles/font/Metrize-Icons.woff HTTP/1.1
Host: provedornet.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://provedornet.com.br/assets/styles/icons.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=2592000
expires: Wed, 28 Dec 2022 11:35:50 GMT
content-type: application/x-font-woff
last-modified: Fri, 05 Apr 2013 13:25:32 GMT
accept-ranges: bytes
content-length: 94348
date: Mon, 28 Nov 2022 11:35:50 GMT
server: LiteSpeed
vary: User-Agent
X-Firefox-Spdy: h2
provedornet.com.br/assets/images/head.jpg
158.69.118.43200 OK 15 kB URL HTTP/2 provedornet.com.br/assets/images/head.jpg
IP 158.69.118.43:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1980x133, components 3\012- data
Hash b3e01d309a2a0750b2575b8e8c9a6d5e
f581e7edb5e7edc8f87ef234034822a3bce97781
c5089b91bf7e7e0be95d9644f7adecb464d1b004d331a3323fb222b1b3c19fee
GET /assets/images/head.jpg HTTP/1.1
Host: provedornet.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://provedornet.com.br/assets/style.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=2592000
expires: Wed, 28 Dec 2022 11:35:50 GMT
content-type: image/jpeg
last-modified: Fri, 16 Aug 2013 03:36:26 GMT
accept-ranges: bytes
content-length: 15403
date: Mon, 28 Nov 2022 11:35:50 GMT
server: LiteSpeed
x-ua-compatible: IE=Edge,chrome=1
vary: User-Agent
X-Firefox-Spdy: h2
provedornet.com.br/assets/images/reflect.png
158.69.118.43200 OK 3.0 kB URL HTTP/2 provedornet.com.br/assets/images/reflect.png
IP 158.69.118.43:0
File type PNG image data, 34 x 34, 8-bit/color RGBA, non-interlaced\012- data
Hash 289535ad2bdf16fb19f6d83061a83979
2c03b325b87a370fdd98c776a4324bcfb7630229
a9afb51e9c1f73c459569b0dabef76d5c38ec26155dadc68ec91ec1e8aefac72
GET /assets/images/reflect.png HTTP/1.1
Host: provedornet.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://provedornet.com.br/assets/style.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=2592000
expires: Wed, 28 Dec 2022 11:35:50 GMT
content-type: image/png
last-modified: Fri, 16 Aug 2013 20:26:10 GMT
accept-ranges: bytes
content-length: 2954
date: Mon, 28 Nov 2022 11:35:50 GMT
server: LiteSpeed
vary: User-Agent
X-Firefox-Spdy: h2
provedornet.com.br/assets/images/button_bg.png
158.69.118.43200 OK 2.8 kB URL HTTP/2 provedornet.com.br/assets/images/button_bg.png
IP 158.69.118.43:0
File type PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced\012- data
Hash c4022ab31546f3f7168b0fe6f4fa67a1
fddda18c6f6ab9ff5fa90dd18baf1562d72e99d1
3708ba22f126817f6ccffc61c93374487df753fc508d1544de78f3daea36fc15
GET /assets/images/button_bg.png HTTP/1.1
Host: provedornet.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://provedornet.com.br/assets/style.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=2592000
expires: Wed, 28 Dec 2022 11:35:50 GMT
content-type: image/png
last-modified: Thu, 19 Sep 2013 19:18:54 GMT
accept-ranges: bytes
content-length: 2806
date: Mon, 28 Nov 2022 11:35:50 GMT
server: LiteSpeed
vary: User-Agent
X-Firefox-Spdy: h2
provedornet.com.br/assets/images/backgrounds/48.png
158.69.118.43200 OK 723 B URL HTTP/2 provedornet.com.br/assets/images/backgrounds/48.png
IP 158.69.118.43:0
File type PNG image data, 67 x 100, 8-bit colormap, non-interlaced\012- data
Hash c8c8f2c78c02659f82af0b938b97ce8b
fe9f7fb6793663ddf6a317d95ed4c452b9bba420
da6faadda2796ba5d6b3ff03de905d3688209175bc7ed0754e4d88e254096701
GET /assets/images/backgrounds/48.png HTTP/1.1
Host: provedornet.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://provedornet.com.br/assets/style.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=2592000
expires: Wed, 28 Dec 2022 11:35:50 GMT
content-type: image/png
last-modified: Sat, 07 Jul 2012 23:44:58 GMT
accept-ranges: bytes
content-length: 723
date: Mon, 28 Nov 2022 11:35:50 GMT
server: LiteSpeed
vary: User-Agent
X-Firefox-Spdy: h2
provedornet.com.br/assets/fonts/flexslider-icon.woff
158.69.118.43200 OK 1.3 kB URL HTTP/2 provedornet.com.br/assets/fonts/flexslider-icon.woff
IP 158.69.118.43:0
File type Web Open Font Format, TrueType, length 1268, version 1.0\012- data
Hash f8b92f66539473eea649c8514eb836a0
9876bce2a7b39125bd7a406c445e46e704d7b37e
333fe8266952f16c8b686f3edd78293da28e6eaef314dca86bc4eeaa23f290e8
Analyzer Verdict Alert fortinet Malware
GET /assets/fonts/flexslider-icon.woff HTTP/1.1
Host: provedornet.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://provedornet.com.br/assets/styles/flexslider.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=2592000
expires: Wed, 28 Dec 2022 11:35:51 GMT
content-type: application/x-font-woff
last-modified: Fri, 20 Dec 2013 09:40:32 GMT
accept-ranges: bytes
content-length: 1268
date: Mon, 28 Nov 2022 11:35:51 GMT
server: LiteSpeed
vary: User-Agent
X-Firefox-Spdy: h2
maps.googleapis.com/maps/api/mapsjs/gen_204?csp_test=true
142.250.74.74200 OK 23 B URL HTTP/2 maps.googleapis.com/maps/api/mapsjs/gen_204?csp_test=true
IP 142.250.74.74:0
File type JSON data\012- , ASCII text
Hash e3981ca10169a319d5aa062bf43a5fa1
2c6ed584767b65688ce99b1ebe1a3b7448a67421
8b0b8749aba12de93f3cf5d86f9fac9d6de7cac400a17473718f182a34ebb7e9
GET /maps/api/mapsjs/gen_204?csp_test=true HTTP/1.1
Host: maps.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://provedornet.com.br
Connection: keep-alive
Referer: https://provedornet.com.br/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/json; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Mon, 28 Nov 2022 11:35:52 GMT
server: scaffolding on HTTPServer2
cache-control: private
content-length: 23
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://provedornet.com.br
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
provedornet.com.br/assets/styles/font/Metrize-Icons.ttf
158.69.118.43200 OK 28 kB URL HTTP/2 provedornet.com.br/assets/styles/font/Metrize-Icons.ttf
IP 158.69.118.43:0
File type TrueType Font data, 13 tables, 1st "FFTM", 12 names, Macintosh, type 1 string\012- data
Hash cb35d909d5a8b27970a32ce5164f5734
c7e6071fbeed28321898f6adf16af82287eef02a
6a60f9689861a9807198a380338e8377f00a8226e0e42a2c9c822ef613ddd6a1
Analyzer Verdict Alert fortinet Malware
GET /assets/styles/font/Metrize-Icons.ttf HTTP/1.1
Host: provedornet.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://provedornet.com.br/assets/styles/icons.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=2592000
expires: Wed, 28 Dec 2022 11:35:51 GMT
content-type: application/x-font-ttf
last-modified: Fri, 05 Apr 2013 13:25:30 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 27990
date: Mon, 28 Nov 2022 11:35:51 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
provedornet.com.br/assets/images/favicon.ico
158.69.118.43200 OK 1.2 kB URL HTTP/2 provedornet.com.br/assets/images/favicon.ico
IP 158.69.118.43:0
File type MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel\012- data
Hash 17d594a45702120f1a909b0a3058434e
279fd9fa0cc8bbb7a6b45dd44e3e4a2b2ba5cf90
cb56aa7535c3f05046a5790a9eaa375c1dc47babb1316b97c5ff459a03d0577d
GET /assets/images/favicon.ico HTTP/1.1
Host: provedornet.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://provedornet.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 05 Dec 2022 11:35:52 GMT
content-type: image/x-icon
last-modified: Sat, 24 Aug 2013 12:30:22 GMT
accept-ranges: bytes
content-length: 1150
date: Mon, 28 Nov 2022 11:35:52 GMT
server: LiteSpeed
vary: User-Agent
X-Firefox-Spdy: h2
provedornet.com.br/assets/images/apple-touch-icon.png
158.69.118.43500 Internal Server Error 0 B URL HTTP/2 provedornet.com.br/assets/images/apple-touch-icon.png
IP 158.69.118.43:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /assets/images/apple-touch-icon.png HTTP/1.1
Host: provedornet.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://provedornet.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 500 Internal Server Error
x-powered-by: PHP/8.0.25
content-type: text/html; charset=UTF-8
cache-control: public, max-age=0
expires: Mon, 28 Nov 2022 11:35:52 GMT
content-length: 0
date: Mon, 28 Nov 2022 11:35:52 GMT
server: LiteSpeed
x-ua-compatible: IE=Edge,chrome=1
vary: User-Agent
X-Firefox-Spdy: h2
provedornet.com.br/assets/images/slides/bg1.jpg
158.69.118.43200 OK 0 B URL HTTP/2 provedornet.com.br/assets/images/slides/bg1.jpg
IP 158.69.118.43:0
GET /assets/images/slides/bg1.jpg HTTP/1.1
Host: provedornet.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://provedornet.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=2592000
expires: Wed, 28 Dec 2022 11:35:49 GMT
content-type: image/jpeg
last-modified: Tue, 21 Oct 2014 11:38:50 GMT
accept-ranges: bytes
content-length: 1030639
date: Mon, 28 Nov 2022 11:35:49 GMT
server: LiteSpeed
x-ua-compatible: IE=Edge,chrome=1
vary: User-Agent
X-Firefox-Spdy: h2
provedornet.com.br/assets/images/slides/bg2.jpg
158.69.118.43200 OK 0 B URL HTTP/2 provedornet.com.br/assets/images/slides/bg2.jpg
IP 158.69.118.43:0
GET /assets/images/slides/bg2.jpg HTTP/1.1
Host: provedornet.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://provedornet.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=2592000
expires: Wed, 28 Dec 2022 11:35:49 GMT
content-type: image/jpeg
last-modified: Sat, 15 Nov 2014 13:34:24 GMT
accept-ranges: bytes
content-length: 1522439
date: Mon, 28 Nov 2022 11:35:49 GMT
server: LiteSpeed
x-ua-compatible: IE=Edge,chrome=1
vary: User-Agent
X-Firefox-Spdy: h2
www.facebook.com/plugins/likebox.php?href=https%3A%2F%2Fwww.facebook.com%2Fpages%2FProvedorNet%2F151466771619829&height=500&colorscheme=light&show_faces=true&header=false&stream=false&show_border=false&appId=1462030150691879
31.13.72.36200 OK 0 B URL HTTP/2 www.facebook.com/plugins/likebox.php?href=https%3A%2F%2Fwww.facebook.com%2Fpages%2FProvedorNet%2F151466771619829&height=500&colorscheme=light&show_faces=true&header=false&stream=false&show_border=false&appId=1462030150691879
IP 31.13.72.36:0
GET /plugins/likebox.php?href=https%3A%2F%2Fwww.facebook.com%2Fpages%2FProvedorNet%2F151466771619829&height=500&colorscheme=light&show_faces=true&header=false&stream=false&show_border=false&appId=1462030150691879 HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://provedornet.com.br/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: br
x-fb-rlafr: 0
content-security-policy-report-only: default-src data: blob: 'self' https://*.fbsbx.com 'unsafe-inline' *.facebook.com 'unsafe-eval' *.fbcdn.net;script-src *.facebook.com *.fbcdn.net *.facebook.net *.google-analytics.com *.google.com 127.0.0.1:* 'unsafe-inline' 'unsafe-eval' blob: data: 'self' connect.facebook.net;style-src fonts.googleapis.com *.fbcdn.net data: *.facebook.com 'unsafe-inline';connect-src *.facebook.com facebook.com *.fbcdn.net *.facebook.net wss://*.facebook.com:* wss://*.whatsapp.com:* wss://*.fbcdn.net attachment.fbsbx.com ws://localhost:* blob: *.cdninstagram.com 'self' http://localhost:3103 wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ v.whatsapp.net *.fbsbx.com *.fb.com;font-src data: *.gstatic.com *.facebook.com *.fbcdn.net *.fbsbx.com;img-src *.fbcdn.net *.facebook.com data: https://*.fbsbx.com *.tenor.co media.tenor.com facebook.com *.cdninstagram.com fbsbx.com fbcdn.net *.giphy.com connect.facebook.net *.carriersignal.info blob: android-webview-video-poster: googleads.g.doubleclick.net www.googleadservices.com *.whatsapp.net *.fb.com *.oculuscdn.com;media-src *.cdninstagram.com blob: *.fbcdn.net *.fbsbx.com www.facebook.com *.facebook.com https://*.giphy.com data:;frame-src *.doubleclick.net *.google.com *.facebook.com www.googleadservices.com *.fbsbx.com fbsbx.com data: www.instagram.com *.fbcdn.net https://paywithmybank.com;worker-src blob: *.facebook.com data:;report-uri https://www.facebook.com/csp/reporting/?minimize=0;
content-security-policy: default-src data: blob: 'self' https://*.fbsbx.com 'unsafe-inline' *.facebook.com 'unsafe-eval' *.fbcdn.net;script-src *.facebook.com *.fbcdn.net *.facebook.net *.google-analytics.com *.google.com 127.0.0.1:* 'unsafe-inline' 'unsafe-eval' blob: data: 'self' connect.facebook.net;style-src fonts.googleapis.com *.fbcdn.net data: *.facebook.com 'unsafe-inline';connect-src *.facebook.com facebook.com *.fbcdn.net *.facebook.net wss://*.facebook.com:* wss://*.whatsapp.com:* wss://*.fbcdn.net attachment.fbsbx.com ws://localhost:* blob: *.cdninstagram.com 'self' http://localhost:3103 wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ v.whatsapp.net *.fbsbx.com *.fb.com;font-src data: *.gstatic.com *.facebook.com *.fbcdn.net *.fbsbx.com;img-src *.fbcdn.net *.facebook.com data: https://*.fbsbx.com *.tenor.co media.tenor.com facebook.com *.cdninstagram.com fbsbx.com fbcdn.net *.giphy.com connect.facebook.net *.carriersignal.info blob: android-webview-video-poster: googleads.g.doubleclick.net www.googleadservices.com *.whatsapp.net *.fb.com *.oculuscdn.com;media-src *.cdninstagram.com blob: *.fbcdn.net *.fbsbx.com www.facebook.com *.facebook.com https://*.giphy.com data:;frame-src *.doubleclick.net *.google.com *.facebook.com www.googleadservices.com *.fbsbx.com fbsbx.com data: www.instagram.com *.fbcdn.net https://paywithmybank.com;worker-src blob: *.facebook.com data:;block-all-mixed-content;upgrade-insecure-requests;
document-policy: force-load-at-top
cross-origin-opener-policy: same-origin-allow-popups
pragma: no-cache
cache-control: private, no-cache, no-store, must-revalidate
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
strict-transport-security: max-age=15552000; preload
content-type: text/html; charset="utf-8"
x-fb-debug: 638iD2N4wTkHqUicQ+MqsNSUL/pLNeIUPZz+67WxIw2q7B0zoV9xM4IB/27rsCrOfZnSdQ+vpMCMCRkqp+0p5w==
date: Mon, 28 Nov 2022 11:35:49 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
provedornet.com.br/assets/images/slides/bg3.jpg
158.69.118.43200 OK 0 B URL HTTP/2 provedornet.com.br/assets/images/slides/bg3.jpg
IP 158.69.118.43:0
GET /assets/images/slides/bg3.jpg HTTP/1.1
Host: provedornet.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://provedornet.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=2592000
expires: Wed, 28 Dec 2022 11:35:49 GMT
content-type: image/jpeg
last-modified: Sun, 16 Nov 2014 01:59:56 GMT
accept-ranges: bytes
content-length: 1356836
date: Mon, 28 Nov 2022 11:35:49 GMT
server: LiteSpeed
x-ua-compatible: IE=Edge,chrome=1
vary: User-Agent
X-Firefox-Spdy: h2