Report - byashi.com.br/jss/login.php?&sessionid=89c3db80c953d82230e950f270bca065&securessl=true

Report Overview

Submitted URL
byashi.com.br/jss/login.php?&sessionid=89c3db80c953d82230e950f270bca065&securessl=true
IP
192.185.210.37
ASN
#46606 UNIFIEDLAYER-AS-1
Submitted
2022-11-29 01:24:20
Access
Website Title
Final URL
Tags
None
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
26

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
contile.services.mozilla.com	1114	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	333 B	229 B	34.117.237.239
content.usaa.com	45225	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	7.5 kB	285 kB	104.110.3.249
img-getpocket.cdn.mozilla.net	1631	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.2 kB	50 kB	34.120.237.76
byashi.com.br	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	21 kB	663 kB	192.185.210.37
ocsp.digicert.com	86	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.0 kB	4.7 kB	93.184.220.29
content-signature-2.cdn.mozilla.net	1152	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	413 B	5.8 kB	34.160.144.191
push.services.mozilla.com	2140	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	606 B	127 B	34.208.34.131
r3.o.lencr.org	344	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.7 kB	4.4 kB	23.36.76.226
firefox.settings.services.mozilla.com	867	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	782 B	2.4 kB	34.102.187.140

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

Scan Date	Severity	Indicator	Alert
2022-11-29	medium	byashi.com.br/jss/login_files/enterprise_nav_globalnav_usaalogo.svg	Phishing
2022-11-29	medium	byashi.com.br/jss/login_files/MaskedPassword.js	Phishing
2022-11-29	medium	byashi.com.br/jss/login_files/icon-car-100.svg	Phishing
2022-11-29	medium	byashi.com.br/jss/login_files/pub-home-brand-banner-flourish.svg	Phishing
2022-11-29	medium	byashi.com.br/jss/login_files/icon-house-100.svg	Phishing
2022-11-29	medium	byashi.com.br/jss/login_files/icon-bank-100.svg	Phishing
2022-11-29	medium	byashi.com.br/jss/login_files/icon-dollar-circle-100.svg	Phishing
2022-11-29	medium	byashi.com.br/jss/login_files/ehl-blk.svg	Phishing
2022-11-29	medium	byashi.com.br/jss/login_files/prodOther_accent_brandBanner_stripesAndStar.svg	Phishing
2022-11-29	medium	byashi.com.br/jss/login_files/primary-link-icon-inverted.svg	Phishing
2022-11-29	medium	byashi.com.br/jss/login_files/prodOther_thumb_primary-link-icon.svg	Phishing
2022-11-29	medium	byashi.com.br/jss/login_files/prodOther_accent_brandBanner_diamondBackground.svg	Phishing
2022-11-29	medium	byashi.com.br/jss/login_files/usaaicon.ico	Phishing

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

JavaScript (4)

	URL	Size	First Seen	Last Seen
	byashi.com.br/jss/login.php?&sessionid=89c3db80c953d82230e950f270bca065&securessl=true	518 B	2023-03-11	2023-03-11
Pretty URL byashi.com.br/jss/login.php?&sessionid=89c3db80c953d82230e950f270bca065&securessl=true IP 192.185.210.37 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 22:07:15 Last Seen2023-03-11 23:10:45 Times Seen1 Hash 42106e6dcae4bc0498849fb345a6da95 8199d002c5e08174a56f7d7aefa7c926e84decff 316add415bd0975b161742974ee266289069ee708a050e66d6c9c7fa6410f707 Loading...

	byashi.com.br/jss/login.php?&sessionid=89c3db80c953d82230e950f270bca065&securessl=true	431 B	2023-03-11	2023-03-11
Pretty URL byashi.com.br/jss/login.php?&sessionid=89c3db80c953d82230e950f270bca065&securessl=true IP 192.185.210.37 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 22:07:15 Last Seen2023-03-11 23:10:45 Times Seen1 Hash 466a0474610e79a8edc65270210a4a39 6ac274db4a4e0ae7d774a0ce9540b021f23b5509 a11e2489c941637fc8c6e18bf20075f5ab6bef4cd856cea4b001919c9f7980df Loading...

	byashi.com.br/jss/login.php?&sessionid=89c3db80c953d82230e950f270bca065&securessl=true	342 B	2023-03-11	2023-03-11
Pretty URL byashi.com.br/jss/login.php?&sessionid=89c3db80c953d82230e950f270bca065&securessl=true IP 192.185.210.37 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 22:07:15 Last Seen2023-03-11 23:10:45 Times Seen1 Hash 52f3945e00c1ed4fa8f783717ad3021b 0bede0493772b642f08ad84f826bda0d4b853cc0 11d05f836d27c82512f4a1b152ee02c643134aa885f0a50c8fccdd97718557c7 Loading...

	byashi.com.br/jss/login_files/MaskedPassword.js	17 kB	2023-03-07	2023-11-05
Pretty URL byashi.com.br/jss/login_files/MaskedPassword.js IP 192.185.210.37 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 15:07:00 Last Seen2023-11-05 00:47:40 Times Seen161 Hash 093b948a3133ccde7091158531d5d63e 9c704980cfe00a2f4f8fd29b7aa383a92cc31983 2cfdb08c07395b0be65df154f068ade61c1bfad7e3e3e2d0e40b85319fa95825 Loading...

HTTP Transactions (81)

URL IP Response Size

byashi.com.br/jss/login.php?&sessionid=89c3db80c953d82230e950f270bca065&securessl=true

192.185.210.37

301 Moved Permanently

310 B

URL HTTP/1.1
byashi.com.br/jss/login.php?&sessionid=89c3db80c953d82230e950f270bca065&securessl=true
IP
192.185.210.37:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
310 B (310 bytes)
Hash
f2542f11d8097e5af7dbf4b4fe8eb49e
851cec70353c45636166ef7a801f3af942bda56f
0dffab56d786e1fb0d45141fbb897d5ce89b8bbaa2c38f09c1d4ce83edd88040

HTTP Headers

GET /jss/login.php?&sessionid=89c3db80c953d82230e950f270bca065&securessl=true HTTP/1.1
Host: byashi.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 301 Moved Permanently
Date: Tue, 29 Nov 2022 01:24:09 GMT
Server: Apache
Location: https://byashi.com.br/jss/login.php?&sessionid=89c3db80c953d82230e950f270bca065&securessl=true
Content-Length: 310
Keep-Alive: timeout=5, max=75
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
2d2e7649ce9e9ba6fc8b68aa89352e3c
0153d1d3d830a457043e16bb40d48a0b9ddef4b8
8eed57c91b42ef7b2d5eff1309e306e23e13c3de21219af24a693cbf3e8977fc

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "8EED57C91B42EF7B2D5EFF1309E306E23E13C3DE21219AF24A693CBF3E8977FC"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11512
Expires: Tue, 29 Nov 2022 04:36:01 GMT
Date: Tue, 29 Nov 2022 01:24:09 GMT
Connection: keep-alive

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
9408cc0694fcbea57966c3a3ba906092
fddcee1fdcf3209298e41a4b1b5560357fa165f0
6ef7120d9463f56e3ddfadd5766d02da8523f34061b13bdba54bf9ab72a1e979

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5434
Cache-Control: max-age=124665
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 01:24:09 GMT
Etag: "63848df9-1d7"
Expires: Wed, 30 Nov 2022 12:01:54 GMT
Last-Modified: Mon, 28 Nov 2022 10:31:21 GMT
Server: ECS (ska/F711)
X-Cache: HIT
Content-Length: 471

firefox.settings.services.mozilla.com/v1/

34.102.187.140

200 OK

939 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/
IP
34.102.187.140:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
14cd9a0afb6ba9a763651d5112760d1e
75d7b104ab9ab11fbb73c3f348b43b0119b5adfa
4e32a117106be587ffcd63239c16a8117eb7840830d4c9decf6527761967532e

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Alert, Backoff, Content-Length, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Tue, 29 Nov 2022 01:19:34 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 275
alt-svc: clear
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
9fce5679881bf302a8978a0b462f01a9
b699fe030ea13ac73813e655c42ed9b531925e2b
a3ec545a8f9364ac9062eddb41279e1465687a1b60f9c1dec6b3a3df8b033eb3

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A3EC545A8F9364AC9062EDDB41279E1465687A1B60F9C1DEC6B3A3DF8B033EB3"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10173
Expires: Tue, 29 Nov 2022 04:13:42 GMT
Date: Tue, 29 Nov 2022 01:24:09 GMT
Connection: keep-alive

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain

34.160.144.191

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
IP
34.160.144.191:0
ASN
#15169 GOOGLE

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
9ebddc2b260d081ebbefee47c037cb28
492bad62a7ca6a74738921ef5ae6f0be5edebf39
74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-amz-id-2: DzoroHa9kbDXyB7EpF7jFREHTLtAsvZCbpE8BwyTQUpS7SyA2EiFkTj4yu2fyt+aDWgUmovVQdI=
x-amz-request-id: SEBMYFWCDJ4G5SJM
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Tue, 29 Nov 2022 00:42:18 GMT
age: 2511
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Tue, 29 Nov 2022 01:24:09 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
df966880f91f9fb76435aedfd1f03171
e990da2a88a38872d89e14b71b2b408dbe72c4ef
b0ef71c31ee2d1f3324df8e8f300742f681268630e7f3bd2ae636238caca1aea

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B0EF71C31EE2D1F3324DF8E8F300742F681268630E7F3BD2AE636238CACA1AEA"
Last-Modified: Mon, 28 Nov 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16322
Expires: Tue, 29 Nov 2022 05:56:12 GMT
Date: Tue, 29 Nov 2022 01:24:10 GMT
Connection: keep-alive

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

34.102.187.140

200 OK

329 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
34.102.187.140:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Last-Modified, Retry-After, Cache-Control, Content-Type, Pragma, Backoff, ETag, Expires, Content-Length, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Tue, 29 Nov 2022 01:11:12 GMT
cache-control: public,max-age=3600
age: 778
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2

byashi.com.br/jss/login.php?&sessionid=89c3db80c953d82230e950f270bca065&securessl=true

192.185.210.37

200 OK

12 kB

URL HTTP/2
byashi.com.br/jss/login.php?&sessionid=89c3db80c953d82230e950f270bca065&securessl=true
IP
192.185.210.37:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (2096)
Size
12 kB (11465 bytes)
Hash
93410302c25ed067d10c7b81d20885c0
307c62393ab388f23c62e6f86e5cdde427f0ee6d
47d834a126c2136527a62a871c1a2281c8091038c3e94fc8e7e82d54f3cbe6a7

HTTP Headers

GET /jss/login.php?&sessionid=89c3db80c953d82230e950f270bca065&securessl=true HTTP/1.1
Host: byashi.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
content-length: 11465
content-type: text/html; charset=UTF-8
date: Tue, 29 Nov 2022 01:24:10 GMT
server: Apache
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
7ab2ef968cb6a3078f4b9cb2dda813d4
e669116047ca058a2c1b2999ff0ea8682719162c
6ddecf0b21c44f3851da8efeb6ecdc6c8e9b83d7681153c31952b4ec8c23c940

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4736
Cache-Control: max-age=118901
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 01:24:10 GMT
Etag: "63847a2f-1d7"
Expires: Wed, 30 Nov 2022 10:25:51 GMT
Last-Modified: Mon, 28 Nov 2022 09:06:55 GMT
Server: ECS (ska/F711)
X-Cache: HIT
Content-Length: 471

byashi.com.br/jss/login_files/exception_landing_aggregate.css

192.185.210.37

200 OK

9.8 kB

URL HTTP/2
byashi.com.br/jss/login_files/exception_landing_aggregate.css
IP
192.185.210.37:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (32210), with no line terminators
Size
9.8 kB (9786 bytes)
Hash
4f2f130f52f24e7349a9f71573826a9e
6e70a38326a91e88b59020ca85f5cab0fe87b993
c83fb88d70ea87dc1effa9e36b1763843d4f27ee5498394001b561551ab27f23

HTTP Headers

GET /jss/login_files/exception_landing_aggregate.css HTTP/1.1
Host: byashi.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://byashi.com.br/jss/login.php?&sessionid=89c3db80c953d82230e950f270bca065&securessl=true
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 03 Apr 2018 02:50:24 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 9786
content-type: text/css
date: Tue, 29 Nov 2022 01:24:10 GMT
server: Apache
X-Firefox-Spdy: h2

byashi.com.br/jss/login_files/enterprise_nav_globalnav_usaalogo.svg

192.185.210.37

200 OK

11 kB

URL HTTP/2
byashi.com.br/jss/login_files/enterprise_nav_globalnav_usaalogo.svg
IP
192.185.210.37:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
SVG Scalable Vector Graphics image\012- SVG XML document\012- XML 1.0 document text\012- SVG XML document\012- XML document text\012- exported SGML document, ASCII text
Size
11 kB (10902 bytes)
Hash
6fd96a29c53b5ce705a27b59aea154e5
0d1e25a57f20865e9c338c7aed7e36df1ff08bc3
d1886043ac668fcd2ccb7019ba9b35ef16f7d0c3db9d9dedf3862b036a4ae2d3

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /jss/login_files/enterprise_nav_globalnav_usaalogo.svg HTTP/1.1
Host: byashi.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://byashi.com.br/jss/login.php?&sessionid=89c3db80c953d82230e950f270bca065&securessl=true
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 03 Apr 2018 02:50:24 GMT
accept-ranges: bytes
content-length: 10902
content-type: image/svg+xml
date: Tue, 29 Nov 2022 01:24:10 GMT
server: Apache
X-Firefox-Spdy: h2

byashi.com.br/jss/login_files/prodPc_thumb_catIconEarthquake.png

192.185.210.37

200 OK

2.4 kB

URL HTTP/2
byashi.com.br/jss/login_files/prodPc_thumb_catIconEarthquake.png
IP
192.185.210.37:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
PNG image data, 33 x 33, 8-bit/color RGBA, non-interlaced\012- data
Size
2.4 kB (2433 bytes)
Hash
351acfbea2c6ace503bd63e030202d9c
17adfa58521d1edf98a6ec9f91ada0e76af3300b
ec8a1c021ae83316e075859df64364759ff0932c70ea82c7698bb634a312f3b5

HTTP Headers

GET /jss/login_files/prodPc_thumb_catIconEarthquake.png HTTP/1.1
Host: byashi.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://byashi.com.br/jss/login.php?&sessionid=89c3db80c953d82230e950f270bca065&securessl=true
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 03 Apr 2018 02:50:24 GMT
accept-ranges: bytes
content-length: 2433
content-type: image/png
date: Tue, 29 Nov 2022 01:24:10 GMT
server: Apache
X-Firefox-Spdy: h2

byashi.com.br/jss/login_files/socialMediaBar_alt.css

192.185.210.37

200 OK

2.6 kB

URL HTTP/2
byashi.com.br/jss/login_files/socialMediaBar_alt.css
IP
192.185.210.37:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (11082), with no line terminators
Size
2.6 kB (2642 bytes)
Hash
18851df041b876d7b69942e55313299c
bbdf602e1b82bbea202e21a8cfdc2d7feaad8145
4de90906158ed0d21fc658617df175a0b7f652c24d8f71c7fcc3c861c2a898e2

HTTP Headers

GET /jss/login_files/socialMediaBar_alt.css HTTP/1.1
Host: byashi.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://byashi.com.br/jss/login.php?&sessionid=89c3db80c953d82230e950f270bca065&securessl=true
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 03 Apr 2018 03:06:54 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 2642
content-type: text/css
date: Tue, 29 Nov 2022 01:24:10 GMT
server: Apache
X-Firefox-Spdy: h2

byashi.com.br/jss/login_files/MaskedPassword.js

192.185.210.37

200 OK

6.8 kB

URL HTTP/2
byashi.com.br/jss/login_files/MaskedPassword.js
IP
192.185.210.37:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
Unicode text, UTF-8 text, with CRLF line terminators
Size
6.8 kB (6833 bytes)
Hash
c8789a29d1e465c1e33956be5c9e5c99
5029c64bbd35cbf402e324e4a47d81f28b727e7e
26fe2ab21f3ef6555670e1cc34877f43ae367e3809e2e67e8e7b2390564e6885

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /jss/login_files/MaskedPassword.js HTTP/1.1
Host: byashi.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://byashi.com.br/jss/login.php?&sessionid=89c3db80c953d82230e950f270bca065&securessl=true
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Sat, 16 Dec 2017 10:46:12 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 6833
content-type: application/javascript
date: Tue, 29 Nov 2022 01:24:10 GMT
server: Apache
X-Firefox-Spdy: h2

byashi.com.br/jss/login_files/cat_banner.css

192.185.210.37

200 OK

2.7 kB

URL HTTP/2
byashi.com.br/jss/login_files/cat_banner.css
IP
192.185.210.37:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (10787), with no line terminators
Size
2.7 kB (2748 bytes)
Hash
6333d0192b688673f56dbea14086793f
ae37ac5c56dea56010796b2492aa7bef798d0a0e
8bc2442886a35e69af5f8180f6d0f5e1f3fdaaaead59e1173ceed7e8dfe94d26

HTTP Headers

GET /jss/login_files/cat_banner.css HTTP/1.1
Host: byashi.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://byashi.com.br/jss/login.php?&sessionid=89c3db80c953d82230e950f270bca065&securessl=true
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 03 Apr 2018 02:50:24 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 2748
content-type: text/css
date: Tue, 29 Nov 2022 01:24:10 GMT
server: Apache
X-Firefox-Spdy: h2

byashi.com.br/jss/login_files/prodPc_thumb_catIconHurricane.png

192.185.210.37

200 OK

3.8 kB

URL HTTP/2
byashi.com.br/jss/login_files/prodPc_thumb_catIconHurricane.png
IP
192.185.210.37:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
PNG image data, 33 x 33, 8-bit/color RGBA, non-interlaced\012- data
Size
3.8 kB (3834 bytes)
Hash
b8acabb412e622c0810de9006776e765
62c2571b60ab3ef33b1bf701912b22447945deec
9da63b17283f25ec8e50a536810daff6474d26a9c9d65f2cf27b5cec214ef5de

HTTP Headers

GET /jss/login_files/prodPc_thumb_catIconHurricane.png HTTP/1.1
Host: byashi.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://byashi.com.br/jss/login.php?&sessionid=89c3db80c953d82230e950f270bca065&securessl=true
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 03 Apr 2018 02:50:24 GMT
accept-ranges: bytes
content-length: 3834
content-type: image/png
date: Tue, 29 Nov 2022 01:24:10 GMT
server: Apache
X-Firefox-Spdy: h2

byashi.com.br/jss/login_files/prodPc_thumb_catIconSnowstorm.png

192.185.210.37

200 OK

4.4 kB

URL HTTP/2
byashi.com.br/jss/login_files/prodPc_thumb_catIconSnowstorm.png
IP
192.185.210.37:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
PNG image data, 33 x 33, 8-bit/color RGBA, non-interlaced\012- data
Size
4.4 kB (4391 bytes)
Hash
b0b033585faa170be4fdde0ade5a58b2
7352610b5d16721efef1beedf7d6754cb97b2ee3
2055e31d6cf01947897f6d64779e62d9a0519fadac47f90d7bd11437cd967723

HTTP Headers

GET /jss/login_files/prodPc_thumb_catIconSnowstorm.png HTTP/1.1
Host: byashi.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://byashi.com.br/jss/login.php?&sessionid=89c3db80c953d82230e950f270bca065&securessl=true
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 03 Apr 2018 02:50:24 GMT
accept-ranges: bytes
content-length: 4391
content-type: image/png
date: Tue, 29 Nov 2022 01:24:10 GMT
server: Apache
X-Firefox-Spdy: h2

byashi.com.br/jss/login_files/prodPc_thumb_catIconFlooding.png

192.185.210.37

200 OK

4.2 kB

URL HTTP/2
byashi.com.br/jss/login_files/prodPc_thumb_catIconFlooding.png
IP
192.185.210.37:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
PNG image data, 33 x 33, 8-bit/color RGBA, non-interlaced\012- data
Size
4.2 kB (4245 bytes)
Hash
5bb7a11fd18ec85fede89708ff8e54c2
be0f75186c9290c8fe78f1a15aefb3e3da6f82b7
75928dae3fb4a6556234e38b37d76bc0054adaf87b01eee1780f37e34aa1176f

HTTP Headers

GET /jss/login_files/prodPc_thumb_catIconFlooding.png HTTP/1.1
Host: byashi.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://byashi.com.br/jss/login.php?&sessionid=89c3db80c953d82230e950f270bca065&securessl=true
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 03 Apr 2018 02:50:24 GMT
accept-ranges: bytes
content-length: 4245
content-type: image/png
date: Tue, 29 Nov 2022 01:24:10 GMT
server: Apache
X-Firefox-Spdy: h2

byashi.com.br/jss/login_files/mkt_memberHome_exception.css

192.185.210.37

200 OK

1.7 kB

URL HTTP/2
byashi.com.br/jss/login_files/mkt_memberHome_exception.css
IP
192.185.210.37:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (5058), with no line terminators
Size
1.7 kB (1691 bytes)
Hash
8090ad6eb485a567f703e5e59a2313ff
bbdc417254d6636c2328600e79e2fa439a85cdac
51f111d8907dfc1cb2f31f73c7b3c50e88cb37d43a6ade3a050f381d883248ac

HTTP Headers

GET /jss/login_files/mkt_memberHome_exception.css HTTP/1.1
Host: byashi.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://byashi.com.br/jss/login.php?&sessionid=89c3db80c953d82230e950f270bca065&securessl=true
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 03 Apr 2018 02:50:24 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 1691
content-type: text/css
date: Tue, 29 Nov 2022 01:24:10 GMT
server: Apache
X-Firefox-Spdy: h2

byashi.com.br/jss/login_files/v3-normalize-ps-template.css

192.185.210.37

200 OK

586 B

URL HTTP/2
byashi.com.br/jss/login_files/v3-normalize-ps-template.css
IP
192.185.210.37:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (1074), with no line terminators
Size
586 B (586 bytes)
Hash
1ce2065b0828b1e54b0dddcf982c0df3
d3dd04b1f9edc2d29a37f9ae680eea99425784a6
d6dbbd836c774582b14fff789bfc92594397b79a5e30a73fc8cfde8e23b746fe

HTTP Headers

GET /jss/login_files/v3-normalize-ps-template.css HTTP/1.1
Host: byashi.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://byashi.com.br/jss/login.php?&sessionid=89c3db80c953d82230e950f270bca065&securessl=true
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 03 Apr 2018 02:50:24 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 586
content-type: text/css
date: Tue, 29 Nov 2022 01:24:10 GMT
server: Apache
X-Firefox-Spdy: h2

byashi.com.br/jss/login_files/v3-cards.css

192.185.210.37

200 OK

929 B

URL HTTP/2
byashi.com.br/jss/login_files/v3-cards.css
IP
192.185.210.37:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (2627), with no line terminators
Size
929 B (929 bytes)
Hash
a447586bed4b92eae4dd107deafde379
d11a07eb1d8066a26579d064a4cb9b0259a1d7cb
8e050d3cb715e0313f1a36b857599ad43033a69a8910a151b219bea5530d7f06

HTTP Headers

GET /jss/login_files/v3-cards.css HTTP/1.1
Host: byashi.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://byashi.com.br/jss/login.php?&sessionid=89c3db80c953d82230e950f270bca065&securessl=true
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 03 Apr 2018 02:50:24 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 929
content-type: text/css
date: Tue, 29 Nov 2022 01:24:10 GMT
server: Apache
X-Firefox-Spdy: h2

byashi.com.br/jss/login_files/v3-link-farm.css

192.185.210.37

200 OK

416 B

URL HTTP/2
byashi.com.br/jss/login_files/v3-link-farm.css
IP
192.185.210.37:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (954), with no line terminators
Size
416 B (416 bytes)
Hash
fd8c507b490f329ec8111e4a8bc73c30
50dab31c831b3fcf520a60a147eafb98458e8a9f
3facd518f5b9c13a89851230754590ff6b7d82b1bbe5f296552c7beced415836

HTTP Headers

GET /jss/login_files/v3-link-farm.css HTTP/1.1
Host: byashi.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://byashi.com.br/jss/login.php?&sessionid=89c3db80c953d82230e950f270bca065&securessl=true
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 03 Apr 2018 02:50:24 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 416
content-type: text/css
date: Tue, 29 Nov 2022 01:24:10 GMT
server: Apache
X-Firefox-Spdy: h2

byashi.com.br/jss/login_files/landingPage_ProspectHome.css

192.185.210.37

200 OK

855 B

URL HTTP/2
byashi.com.br/jss/login_files/landingPage_ProspectHome.css
IP
192.185.210.37:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (1924), with no line terminators
Size
855 B (855 bytes)
Hash
ef9655c2108c36a48468ef9475b3660d
e3652fb51f717a1a505694aee0ceaae5c4f6429c
1c7b4b18f207d69047a9e2f563a5710f57452ef54bbcddee73af711e802cc087

HTTP Headers

GET /jss/login_files/landingPage_ProspectHome.css HTTP/1.1
Host: byashi.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://byashi.com.br/jss/login.php?&sessionid=89c3db80c953d82230e950f270bca065&securessl=true
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 03 Apr 2018 03:10:08 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 855
content-type: text/css
date: Tue, 29 Nov 2022 01:24:10 GMT
server: Apache
X-Firefox-Spdy: h2

push.services.mozilla.com/

34.208.34.131

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
34.208.34.131:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: HqOzfg337TiG5NaAt/dlXQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: dHvhumVMXWSz0Mo8JidjGu8x3A8=

byashi.com.br/jss/login_files/v3-brand-banner.css

192.185.210.37

200 OK

2.9 kB

URL HTTP/2
byashi.com.br/jss/login_files/v3-brand-banner.css
IP
192.185.210.37:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (9266), with no line terminators
Size
2.9 kB (2929 bytes)
Hash
46cc9149fad6e623a3556d239c54c410
60efa130dea08f5ac2f65e72bbd6a99f92308c13
7a989e17a0740ce7d15f9fbda081c3493f3ac61e2689e9faac244ce0e8a29f79

HTTP Headers

GET /jss/login_files/v3-brand-banner.css HTTP/1.1
Host: byashi.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://byashi.com.br/jss/login.php?&sessionid=89c3db80c953d82230e950f270bca065&securessl=true
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 03 Apr 2018 03:13:32 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 2929
content-type: text/css
date: Tue, 29 Nov 2022 01:24:10 GMT
server: Apache
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
17c9251f8ba70b81b8125fe62663bb02
a74b718f0b771124a67176bb1e555ad6bcc058b6
d75593736a6343634236915b30de716349ab0bda14c8a6102e3b3fb06233f0bb

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5777
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 01:24:10 GMT
Last-Modified: Mon, 28 Nov 2022 23:47:54 GMT
Server: ECS (ska/F711)
X-Cache: HIT
Content-Length: 471

byashi.com.br/jss/login_files/v3-wcm-common.css

192.185.210.37

200 OK

1.4 kB

URL HTTP/2
byashi.com.br/jss/login_files/v3-wcm-common.css
IP
192.185.210.37:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (3414), with no line terminators
Size
1.4 kB (1352 bytes)
Hash
e5a7be7391dad653b0a1c3c465d63331
10a831904ae8feeb920bbf143bc87a5f9508e028
d595a447455044c34c867bff4b50499f427367dbb72fb6051fa91fd2046dc51e

HTTP Headers

GET /jss/login_files/v3-wcm-common.css HTTP/1.1
Host: byashi.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://byashi.com.br/jss/login.php?&sessionid=89c3db80c953d82230e950f270bca065&securessl=true
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 03 Apr 2018 03:14:24 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 1352
content-type: text/css
date: Tue, 29 Nov 2022 01:24:10 GMT
server: Apache
X-Firefox-Spdy: h2

byashi.com.br/jss/login_files/icon-car-100.svg

192.185.210.37

200 OK

1.9 kB

URL HTTP/2
byashi.com.br/jss/login_files/icon-car-100.svg
IP
192.185.210.37:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
SVG Scalable Vector Graphics image\012- SVG XML document\012- XML 1.0 document text\012- SVG XML document\012- XML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Size
1.9 kB (1868 bytes)
Hash
458e61d47ff9908a693abfe79e83d078
6a3a069548265c450430385653edfd2881b23dfb
7c124e02ae76bb3c92b86be6b38d6a94a2cc75b94c40ecd8a0089ba850987848

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /jss/login_files/icon-car-100.svg HTTP/1.1
Host: byashi.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://byashi.com.br/jss/login.php?&sessionid=89c3db80c953d82230e950f270bca065&securessl=true
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 03 Apr 2018 02:50:24 GMT
accept-ranges: bytes
content-length: 1868
content-type: image/svg+xml
date: Tue, 29 Nov 2022 01:24:10 GMT
server: Apache
X-Firefox-Spdy: h2

byashi.com.br/jss/login_files/SocMedIcon_twitter_v2.png

192.185.210.37

200 OK

1.4 kB

URL HTTP/2
byashi.com.br/jss/login_files/SocMedIcon_twitter_v2.png
IP
192.185.210.37:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
PNG image data, 35 x 35, 8-bit/color RGBA, non-interlaced\012- data
Size
1.4 kB (1415 bytes)
Hash
0e0c7aaf13e0181348f20f30b1712c56
4c7bc4014af6c2eb77caadb649f8c32c5fd54d0d
ad5980cb9d5ad82571e49366d26c086e2c2bbe7efe6feb729c12f9594948ba21

HTTP Headers

GET /jss/login_files/SocMedIcon_twitter_v2.png HTTP/1.1
Host: byashi.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://byashi.com.br/jss/login.php?&sessionid=89c3db80c953d82230e950f270bca065&securessl=true
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 03 Apr 2018 02:50:24 GMT
accept-ranges: bytes
content-length: 1415
content-type: image/png
date: Tue, 29 Nov 2022 01:24:10 GMT
server: Apache
X-Firefox-Spdy: h2

byashi.com.br/jss/login_files/prodPc_thumb_catIconTornado.png

192.185.210.37

200 OK

3.6 kB

URL HTTP/2
byashi.com.br/jss/login_files/prodPc_thumb_catIconTornado.png
IP
192.185.210.37:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
PNG image data, 33 x 33, 8-bit/color RGBA, non-interlaced\012- data
Size
3.6 kB (3560 bytes)
Hash
ad4c673f5c59e2b1cba356b646bc1af1
ae468600a84ff31ceaffe31820d0f52589d080b1
6f06555b461438ac44370b3bb1321a413f4727e4ee3bd24c668e8f26f5d2eeb9

HTTP Headers

GET /jss/login_files/prodPc_thumb_catIconTornado.png HTTP/1.1
Host: byashi.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://byashi.com.br/jss/login.php?&sessionid=89c3db80c953d82230e950f270bca065&securessl=true
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 03 Apr 2018 02:50:24 GMT
accept-ranges: bytes
content-length: 3560
content-type: image/png
date: Tue, 29 Nov 2022 01:24:10 GMT
server: Apache
X-Firefox-Spdy: h2

byashi.com.br/jss/login_files/SocMedIcon_more.png

192.185.210.37

200 OK

3.8 kB

URL HTTP/2
byashi.com.br/jss/login_files/SocMedIcon_more.png
IP
192.185.210.37:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
PNG image data, 35 x 35, 8-bit/color RGBA, non-interlaced\012- data
Size
3.8 kB (3765 bytes)
Hash
f11c723f01e6df49c1df767355e16194
e2a1ab64705be9f3194a4ba1ec5f85c2f69692d5
fda9dc9b1feb432da051add9ca8ccdcdedfe460e5e1be4df5f3d17e0bde69c87

HTTP Headers

GET /jss/login_files/SocMedIcon_more.png HTTP/1.1
Host: byashi.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://byashi.com.br/jss/login.php?&sessionid=89c3db80c953d82230e950f270bca065&securessl=true
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 03 Apr 2018 02:50:24 GMT
accept-ranges: bytes
content-length: 3765
content-type: image/png
date: Tue, 29 Nov 2022 01:24:10 GMT
server: Apache
X-Firefox-Spdy: h2

byashi.com.br/jss/login_files/prodPc_thumb_catIconWildfire.png

192.185.210.37

200 OK

3.9 kB

URL HTTP/2
byashi.com.br/jss/login_files/prodPc_thumb_catIconWildfire.png
IP
192.185.210.37:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
PNG image data, 33 x 33, 8-bit/color RGBA, non-interlaced\012- data
Size
3.9 kB (3905 bytes)
Hash
1119b6dc58d645ed0cd0c003294a9edf
d23519ebbd0da56e91ba549c2660a9c7a81596cd
f99ebf59293dcd9103529732717462f05efc783427b4a9695da1d7e6ec446b22

HTTP Headers

GET /jss/login_files/prodPc_thumb_catIconWildfire.png HTTP/1.1
Host: byashi.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://byashi.com.br/jss/login.php?&sessionid=89c3db80c953d82230e950f270bca065&securessl=true
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 03 Apr 2018 02:50:24 GMT
accept-ranges: bytes
content-length: 3905
content-type: image/png
date: Tue, 29 Nov 2022 01:24:10 GMT
server: Apache
X-Firefox-Spdy: h2

byashi.com.br/jss/login_files/pub-home-brand-banner-flourish.svg

192.185.210.37

200 OK

586 B

URL HTTP/2
byashi.com.br/jss/login_files/pub-home-brand-banner-flourish.svg
IP
192.185.210.37:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
SVG Scalable Vector Graphics image\012- SVG XML document\012- XML 1.0 document text\012- SVG XML document\012- XML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Size
586 B (586 bytes)
Hash
bcf08b4c2f94a593d44b1d546fc26e53
55b382397eb820339f9f7fb88f2ebccd6ce51fad
2e3986729f3b89c9a85cefc59080f487e6eea82cbf965549be957a402157751b

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /jss/login_files/pub-home-brand-banner-flourish.svg HTTP/1.1
Host: byashi.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://byashi.com.br/jss/login.php?&sessionid=89c3db80c953d82230e950f270bca065&securessl=true
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 03 Apr 2018 02:50:24 GMT
accept-ranges: bytes
content-length: 586
content-type: image/svg+xml
date: Tue, 29 Nov 2022 01:24:10 GMT
server: Apache
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
17c9251f8ba70b81b8125fe62663bb02
a74b718f0b771124a67176bb1e555ad6bcc058b6
d75593736a6343634236915b30de716349ab0bda14c8a6102e3b3fb06233f0bb

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5777
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 01:24:10 GMT
Last-Modified: Mon, 28 Nov 2022 23:47:54 GMT
Server: ECS (ska/F711)
X-Cache: HIT
Content-Length: 471

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
17c9251f8ba70b81b8125fe62663bb02
a74b718f0b771124a67176bb1e555ad6bcc058b6
d75593736a6343634236915b30de716349ab0bda14c8a6102e3b3fb06233f0bb

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4553
Cache-Control: max-age=90667
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 01:24:10 GMT
Etag: "63840c9c-1d7"
Expires: Wed, 30 Nov 2022 02:35:17 GMT
Last-Modified: Mon, 28 Nov 2022 01:19:24 GMT
Server: ECS (ska/F71D)
X-Cache: HIT
Content-Length: 471

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
17c9251f8ba70b81b8125fe62663bb02
a74b718f0b771124a67176bb1e555ad6bcc058b6
d75593736a6343634236915b30de716349ab0bda14c8a6102e3b3fb06233f0bb

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2811
Cache-Control: max-age=88925
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 01:24:10 GMT
Etag: "63840c9c-1d7"
Expires: Wed, 30 Nov 2022 02:06:15 GMT
Last-Modified: Mon, 28 Nov 2022 01:19:24 GMT
Server: ECS (ska/F714)
X-Cache: HIT
Content-Length: 471

content.usaa.com/mcontent/static_assets/Media/background_general_fb.png?cacheid=2934981489_p

104.110.3.249

200 OK

2.8 kB

URL HTTP/2
content.usaa.com/mcontent/static_assets/Media/background_general_fb.png?cacheid=2934981489_p
IP
104.110.3.249:0
ASN
#16625 AKAMAI-AS

File type
PNG image data, 1 x 700, 8-bit/color RGB, non-interlaced\012- data
Size
2.8 kB (2835 bytes)
Hash
9276c35dc16aecb16790d9c2a262ef70
072b3f31ddd9e514151c83e913d9a59d30ab7f1e
e2e04a8e937f5b74a4c50cb7592a8e0bba54b40818d44e43ffd5c40c6b4fe72a

HTTP Headers

GET /mcontent/static_assets/Media/background_general_fb.png?cacheid=2934981489_p HTTP/1.1
Host: content.usaa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://byashi.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
last-modified: Mon, 16 Sep 2013 11:24:14 GMT
etag: "b13-4e67e71a8d380"
accept-ranges: bytes
content-length: 2835
content-type: image/png
cache-control: max-age=550168
date: Tue, 29 Nov 2022 01:24:10 GMT
set-cookie: akmachineid=akma9R0/xdv5v7DGFs+smJS3kV7YGrJl7ihl89SopLhDu+PohOEsvR/STtUYUgV1xj9Mb3mqYMvj0UHLYzUNzQ8bXA==; expires=Fri, 26-Nov-2032 01:24:10 GMT; Secure; Path=/; domain=.usaa.com
akusaa=akusaaWLHRRPksa72jZ6ks4xDHixLV4+vEPKhdO8gL7Hxa3U2Q1DnKF6eW2AZEV94gxe0qfwhNHynunvbRzDGaX+pbYQ==; expires=Fri, 26-Nov-2032 01:24:10 GMT; Secure; Path=/; domain=.usaa.com
strict-transport-security: max-age=31536000
server: USAA-Honesty
X-Firefox-Spdy: h2

content.usaa.com/mcontent/static_assets/Media/usaa-sprite-globalNav_v2.png?cacheid=2167270257_p

104.110.3.249

200 OK

58 kB

URL HTTP/2
content.usaa.com/mcontent/static_assets/Media/usaa-sprite-globalNav_v2.png?cacheid=2167270257_p
IP
104.110.3.249:0
ASN
#16625 AKAMAI-AS

File type
PNG image data, 962 x 270, 8-bit/color RGBA, non-interlaced\012- data
Size
58 kB (57674 bytes)
Hash
9617699ab943557ecbe3b8eae10ffe09
461f5561a94f24cdd1ac6d400bf931c5259949f9
522a5fe0b1921acbaa0925b2a50fa141b0719797d5c552ffc150415c7c44d23b

HTTP Headers

GET /mcontent/static_assets/Media/usaa-sprite-globalNav_v2.png?cacheid=2167270257_p HTTP/1.1
Host: content.usaa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://byashi.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
last-modified: Fri, 13 Feb 2015 21:43:34 GMT
etag: "e14a-50eff20d78d80"
accept-ranges: bytes
content-length: 57674
content-type: image/png
cache-control: max-age=586486
date: Tue, 29 Nov 2022 01:24:10 GMT
set-cookie: akmachineid=akmaV3W00ffsPcMUmAHfE7Tv2UFsotIkXp/Ez3v0YEU6r9oRMm5PpwfwRIiL9/bdGg5nvC+qeS0BhRcpuDFxmCgLJA==; expires=Fri, 26-Nov-2032 01:24:10 GMT; Secure; Path=/; domain=.usaa.com
akusaa=akusaatQE0jEsoqd08AxtlZqaVFf0fln2IkD8El3qTWPM/jxeCdTwnOgZ34ToNNQJe/b4SPa32Y3WIAgh7jN/P27oSRg==; expires=Fri, 26-Nov-2032 01:24:10 GMT; Secure; Path=/; domain=.usaa.com
strict-transport-security: max-age=31536000
server: USAA-Honesty
X-Firefox-Spdy: h2

content.usaa.com/mcontent/static_assets/Fonts/F68DD4439278D0467.woff2?cacheid=1757877387_p

104.110.3.249

200 OK

23 kB

URL HTTP/2
content.usaa.com/mcontent/static_assets/Fonts/F68DD4439278D0467.woff2?cacheid=1757877387_p
IP
104.110.3.249:0
ASN
#16625 AKAMAI-AS

File type
Web Open Font Format (Version 2), TrueType, length 22892, version 1.19726\012- data
Size
23 kB (22892 bytes)
Hash
890566a4fd4453d50c19ab3c37ddf1dc
f2a9afc95e99600061027305ef229f1d8802713d
b47c74b16a02f8df070e4bd91b1b542ba2765624e8ec56a59305a91559a83682

HTTP Headers

GET /mcontent/static_assets/Fonts/F68DD4439278D0467.woff2?cacheid=1757877387_p HTTP/1.1
Host: content.usaa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://byashi.com.br
Connection: keep-alive
Referer: https://byashi.com.br/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 28 Nov 2017 23:28:39 GMT
etag: "596c-55f1360f157c0"
accept-ranges: bytes
content-length: 22892
content-type: font/woff2
cache-control: max-age=552448
date: Tue, 29 Nov 2022 01:24:10 GMT
set-cookie: akmachineid=akmakIT8URmkVbhiPHLGiFTJhjQq1bQVF87H/yrjc/LL0UxE6ICYoBmBgZ31X7Ybp0Jod5Nq8COzmkCqXWVGyXqo0Q==; expires=Fri, 26-Nov-2032 01:24:10 GMT; Secure; Path=/; domain=.usaa.com
akusaa=akusaas5df+XcJoO7SWYM1/jT8JA1w54xejAm2qCEybCcCILZxvK73MM8CM/BK8ZchfVoD1zLEGCR7syzBW84l+Zfvrg==; expires=Fri, 26-Nov-2032 01:24:10 GMT; Secure; Path=/; domain=.usaa.com
strict-transport-security: max-age=31536000
server: USAA-Honesty
X-Firefox-Spdy: h2

content.usaa.com/mcontent/static_assets/Fonts/9ECBC8FFB535D0532.woff2?cacheid=579254377_p

104.110.3.249

200 OK

22 kB

URL HTTP/2
content.usaa.com/mcontent/static_assets/Fonts/9ECBC8FFB535D0532.woff2?cacheid=579254377_p
IP
104.110.3.249:0
ASN
#16625 AKAMAI-AS

File type
Web Open Font Format (Version 2), TrueType, length 22088, version 1.19726\012- data
Size
22 kB (22088 bytes)
Hash
3978a25659ccf40e136fefc4a3f1d4af
6e8f8d356dd36e89fe2059b4bff6e58869333f68
947dad01228bb6787ad0218540575dfafe48c76c0623fcb492b6d0b0cfc62e0b

HTTP Headers

GET /mcontent/static_assets/Fonts/9ECBC8FFB535D0532.woff2?cacheid=579254377_p HTTP/1.1
Host: content.usaa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://byashi.com.br
Connection: keep-alive
Referer: https://byashi.com.br/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
last-modified: Tue, 28 Nov 2017 23:28:20 GMT
etag: "5648-55f135fcf6d00"
accept-ranges: bytes
content-length: 22088
content-type: font/woff2
cache-control: max-age=552320
date: Tue, 29 Nov 2022 01:24:10 GMT
set-cookie: akmachineid=akma07SACQPgkGywZyg8A1BtrZ8wK+SlRxNPlWkQpNtg87jNYYwdn6OiV37ruFYq1ji0Pobn01Scmx2SEJKzrWc/EA==; expires=Fri, 26-Nov-2032 01:24:10 GMT; Secure; Path=/; domain=.usaa.com
akusaa=akusaazOK7NkpsRkyCE2/Iju6RWZ2WRDbpo9bnzvQRjyqtBrkJg2iq3e3nIjq63jfyWK/F1quBiw9sJY/Am7+m+en50g==; expires=Fri, 26-Nov-2032 01:24:10 GMT; Secure; Path=/; domain=.usaa.com
strict-transport-security: max-age=31536000
server: USAA-Honesty
X-Firefox-Spdy: h2

content.usaa.com/mcontent/static_assets/Media/enterprise_nav_globalnav_sprite.svg?cacheid=3121332548_p

104.110.3.249

200 OK

3.1 kB

URL HTTP/2
content.usaa.com/mcontent/static_assets/Media/enterprise_nav_globalnav_sprite.svg?cacheid=3121332548_p
IP
104.110.3.249:0
ASN
#16625 AKAMAI-AS

File type
SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document, ASCII text, with CRLF line terminators
Size
3.1 kB (3114 bytes)
Hash
1b25e4405d690c5c78d6111329f6b230
3d6d16d702332dcd4f60ca8306e59834813978cb
32a78d62b883ff9ad4da5253ea3390908f472a71835a46d387b88bcfda209ea6

HTTP Headers

GET /mcontent/static_assets/Media/enterprise_nav_globalnav_sprite.svg?cacheid=3121332548_p HTTP/1.1
Host: content.usaa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://byashi.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
last-modified: Mon, 14 Dec 2015 20:44:26 GMT
etag: "c2a-526e1bd1f5e80"
accept-ranges: bytes
content-length: 3114
content-type: image/svg+xml
cache-control: max-age=575905
date: Tue, 29 Nov 2022 01:24:10 GMT
set-cookie: akmachineid=akma5S38h+Qxkb50wchXiD4WSRP6AVrtKSOlZlN8/eB81KMwCpwK8LGLkmEB4upBT4q3kaDBqsEK1e5egAl5FJ5IfQ==; expires=Fri, 26-Nov-2032 01:24:10 GMT; Secure; Path=/; domain=.usaa.com
akusaa=akusaa75jeQf4ehKK7lQCco0u45ZKuBst+w9ggxNYMwJ49hSsPYPD7HGy+gUO0BV4ynN3xFqlWNW3AHrxPQAEM5WMMAQ==; expires=Fri, 26-Nov-2032 01:24:10 GMT; Secure; Path=/; domain=.usaa.com
strict-transport-security: max-age=31536000
server: USAA-Honesty
X-Firefox-Spdy: h2

content.usaa.com/mcontent/static_assets/Fonts/CC8B46FD41C3A5502.woff2?cacheid=2159110100_p

104.110.3.249

200 OK

22 kB

URL HTTP/2
content.usaa.com/mcontent/static_assets/Fonts/CC8B46FD41C3A5502.woff2?cacheid=2159110100_p
IP
104.110.3.249:0
ASN
#16625 AKAMAI-AS

File type
Web Open Font Format (Version 2), TrueType, length 21788, version 1.19726\012- data
Size
22 kB (21788 bytes)
Hash
99dfcf935e69f0fd3bf10a8f9920d71f
0329a65bbf246a88dd421520a3b43676d8cd1b53
6920b95f2b38b405f9932005eb14a44556c32fec22efb5d7a58e22f959a13282

HTTP Headers

GET /mcontent/static_assets/Fonts/CC8B46FD41C3A5502.woff2?cacheid=2159110100_p HTTP/1.1
Host: content.usaa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://byashi.com.br
Connection: keep-alive
Referer: https://byashi.com.br/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
last-modified: Tue, 28 Nov 2017 23:28:34 GMT
etag: "551c-55f1360a50c80"
accept-ranges: bytes
content-length: 21788
content-type: font/woff2
cache-control: max-age=552009
date: Tue, 29 Nov 2022 01:24:10 GMT
set-cookie: akmachineid=akmavwZydupuQ3u/B6TqBtTGUgUM1ZbNVLEu7/GmJH3C1cEtqRDCQxMaZJzJr3l8hBNvVpe7HQ882cP9t09QgVkydw==; expires=Fri, 26-Nov-2032 01:24:10 GMT; Secure; Path=/; domain=.usaa.com
akusaa=akusaa0J+oEhR8uJ1V+GyF6TBv0avVNJhIJtBdl+xY+epKOKEi6D3zXzt+Hf/oq57BU/38FYDN9x0TBPrtUPQiqfNyng==; expires=Fri, 26-Nov-2032 01:24:10 GMT; Secure; Path=/; domain=.usaa.com
strict-transport-security: max-age=31536000
server: USAA-Honesty
X-Firefox-Spdy: h2

content.usaa.com/mcontent/static_assets/Fonts/12C383965421BC56F.woff2?cacheid=794739246_p

104.110.3.249

200 OK

14 kB

URL HTTP/2
content.usaa.com/mcontent/static_assets/Fonts/12C383965421BC56F.woff2?cacheid=794739246_p
IP
104.110.3.249:0
ASN
#16625 AKAMAI-AS

File type
Web Open Font Format (Version 2), CFF, length 14408, version 1.13173\012- data
Size
14 kB (14408 bytes)
Hash
9cfc4e859f5ef4d0ab77df4f8698a7ab
1aa7edc7b3e7da125452b7fad636ef42fb723373
dbcf49bfa4184ed509854e05cd53df0426b5ea1856f6f4aad1f93b2d355d7e1c

HTTP Headers

GET /mcontent/static_assets/Fonts/12C383965421BC56F.woff2?cacheid=794739246_p HTTP/1.1
Host: content.usaa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://byashi.com.br
Connection: keep-alive
Referer: https://byashi.com.br/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 28 Nov 2017 23:27:37 GMT
etag: "3848-55f135d3f4c40"
accept-ranges: bytes
content-length: 14408
content-type: font/woff2
cache-control: max-age=576964
date: Tue, 29 Nov 2022 01:24:10 GMT
set-cookie: akmachineid=akmau5YoyAeN9nl7BVy9rOap0Mr2ve2vJpklSDG0uRTyMeEDQ4ABB/7Xnsl9oIBplD88rt/YRAd3LGAKlP17p9NhLg==; expires=Fri, 26-Nov-2032 01:24:10 GMT; Secure; Path=/; domain=.usaa.com
akusaa=akusaam61hpAiXu8arrwT4Je1qGNLv3gTW78YI2x/ieP2sA9uZUkEM3Zz3n+w32TRHVaf968QDnYGNHOspPUDnWVn8gg==; expires=Fri, 26-Nov-2032 01:24:10 GMT; Secure; Path=/; domain=.usaa.com
strict-transport-security: max-age=31536000
server: USAA-Honesty
X-Firefox-Spdy: h2

content.usaa.com/mcontent/static_assets/Fonts/F68DD4439278D0467.woff?cacheid=1249096365_p

104.110.3.249

200 OK

29 kB

URL HTTP/2
content.usaa.com/mcontent/static_assets/Fonts/F68DD4439278D0467.woff?cacheid=1249096365_p
IP
104.110.3.249:0
ASN
#16625 AKAMAI-AS

File type
Web Open Font Format, TrueType, length 28825, version 1.0\012- data
Size
29 kB (28825 bytes)
Hash
027d2b41b8117a0170ad5608a28f8447
f2a742f624fb9e46e9b56ff85e0d57572c193d87
9b510b9bfbcfeb026714418a2c004399ca1ab07385bd782e8ede083b94689f27

HTTP Headers

GET /mcontent/static_assets/Fonts/F68DD4439278D0467.woff?cacheid=1249096365_p HTTP/1.1
Host: content.usaa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://byashi.com.br
Connection: keep-alive
Referer: https://byashi.com.br/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 28 Nov 2017 23:28:37 GMT
etag: "7099-55f1360d2d340"
accept-ranges: bytes
content-length: 28825
content-type: text/plain
cache-control: max-age=566970
date: Tue, 29 Nov 2022 01:24:10 GMT
set-cookie: akmachineid=akmaQaDy5uqQiiV+aYmYPa4Eh9qE2pxZuJ1lwoF9tZvkT/ejxBX6TTl3S2o9DDpfAsTqE9K4k6YlNzqLJ27ujLg/Eg==; expires=Fri, 26-Nov-2032 01:24:10 GMT; Secure; Path=/; domain=.usaa.com
akusaa=akusaa05d7RhA6b0Beh6XpRRhQ5uKiplwl8I33hInPdGg/9JU/OXtL4twVhbXuTZFBbJSGzqTKoILhH+EuzKf/Klk+3w==; expires=Fri, 26-Nov-2032 01:24:10 GMT; Secure; Path=/; domain=.usaa.com
strict-transport-security: max-age=31536000
server: USAA-Honesty
X-Firefox-Spdy: h2

content.usaa.com/mcontent/static_assets/Fonts/9C7F15704715916A9.woff2?cacheid=172997152_p

104.110.3.249

200 OK

15 kB

URL HTTP/2
content.usaa.com/mcontent/static_assets/Fonts/9C7F15704715916A9.woff2?cacheid=172997152_p
IP
104.110.3.249:0
ASN
#16625 AKAMAI-AS

File type
Web Open Font Format (Version 2), CFF, length 14912, version 1.13173\012- data
Size
15 kB (14912 bytes)
Hash
4016bf4a6f8a2d89febf43d4ffe0ff99
0423953f1962d1c157a9786fe613fd2615693b0f
9ea54106530de63a9c33d3eb5a43d7dd0051c1e876ee8be5b49b73601eb10f1b

HTTP Headers

GET /mcontent/static_assets/Fonts/9C7F15704715916A9.woff2?cacheid=172997152_p HTTP/1.1
Host: content.usaa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://byashi.com.br
Connection: keep-alive
Referer: https://byashi.com.br/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 28 Nov 2017 23:28:17 GMT
etag: "3a40-55f135fa1a640"
accept-ranges: bytes
content-length: 14912
content-type: font/woff2
cache-control: max-age=583025
date: Tue, 29 Nov 2022 01:24:11 GMT
set-cookie: akmachineid=akmarV0dxYySNZONj7l82nR4bownbcfIvohJ6mmrYyyAE4dUlIeO85XAkTzKYOka0mwQrHqXK6Oa2rjJX6Z84CjMgA==; expires=Fri, 26-Nov-2032 01:24:11 GMT; Secure; Path=/; domain=.usaa.com
akusaa=akusaabaxHxhH78CwS5VvpyAa4HDCpZSz2DG23ugqIL/bOPdlD/6K2OLk8tUvouzY2hyEJw5G5TNGxy62ZKR1xrF9KJw==; expires=Fri, 26-Nov-2032 01:24:11 GMT; Secure; Path=/; domain=.usaa.com
strict-transport-security: max-age=31536000
server: USAA-Integrity
X-Firefox-Spdy: h2

content.usaa.com/mcontent/static_assets/Fonts/E83D71A074DF776F4.woff2?cacheid=1643979810_p

104.110.3.249

200 OK

22 kB

URL HTTP/2
content.usaa.com/mcontent/static_assets/Fonts/E83D71A074DF776F4.woff2?cacheid=1643979810_p
IP
104.110.3.249:0
ASN
#16625 AKAMAI-AS

File type
Web Open Font Format (Version 2), TrueType, length 21772, version 1.19726\012- data
Size
22 kB (21772 bytes)
Hash
44b3494f8911fb677721629bb389f472
bc7a73021fea8900614b3645113b03c582067928
008889d286feafdf1773721c82309aeef1573bc92096f12e43674ddaae27b1c6

HTTP Headers

GET /mcontent/static_assets/Fonts/E83D71A074DF776F4.woff2?cacheid=1643979810_p HTTP/1.1
Host: content.usaa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://byashi.com.br
Connection: keep-alive
Referer: https://byashi.com.br/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 28 Nov 2017 23:28:49 GMT
etag: "550c-55f136189ee40"
accept-ranges: bytes
content-length: 21772
content-type: font/woff2
cache-control: max-age=547146
date: Tue, 29 Nov 2022 01:24:11 GMT
set-cookie: akmachineid=akmap+KmaKd52FC9Yr61EnlEYBRrSlXqvb2ae9rQCEbjh6gv3IYoYtgMg9kCh/r5GeXog4fzc15jgQ09txJoKhPtlA==; expires=Fri, 26-Nov-2032 01:24:11 GMT; Secure; Path=/; domain=.usaa.com
akusaa=akusaagVK77QxQMsyh6VIvHoPhqqu/Y/B22fdJin/WiT7Z0VjY9h3DU9/TkqS3ibq5m+Okg8upRHb6nm5JxeZHMQ33Zg==; expires=Fri, 26-Nov-2032 01:24:11 GMT; Secure; Path=/; domain=.usaa.com
strict-transport-security: max-age=31536000
server: USAA-Integrity
X-Firefox-Spdy: h2

byashi.com.br/jss/login_files/icon-house-100.svg

192.185.210.37

200 OK

942 B

URL HTTP/2
byashi.com.br/jss/login_files/icon-house-100.svg
IP
192.185.210.37:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
SVG Scalable Vector Graphics image\012- SVG XML document\012- XML 1.0 document text\012- SVG XML document\012- XML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Size
942 B (942 bytes)
Hash
adf624a91e9783ad36ae01f047612024
064a6f53f114346d970771d48d01c98ab6fc1254
7d75d05fce155dd2de68d3e0b2e4ee29a1d3a729d3a737faab3a2ed87af8a24c

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /jss/login_files/icon-house-100.svg HTTP/1.1
Host: byashi.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://byashi.com.br/jss/login.php?&sessionid=89c3db80c953d82230e950f270bca065&securessl=true
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 03 Apr 2018 02:50:24 GMT
accept-ranges: bytes
content-length: 942
content-type: image/svg+xml
date: Tue, 29 Nov 2022 01:24:10 GMT
server: Apache
X-Firefox-Spdy: h2

byashi.com.br/jss/login_files/SocMedIcon_facebook_v2.png

192.185.210.37

200 OK

1.3 kB

URL HTTP/2
byashi.com.br/jss/login_files/SocMedIcon_facebook_v2.png
IP
192.185.210.37:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
PNG image data, 35 x 35, 8-bit/color RGBA, non-interlaced\012- data
Size
1.3 kB (1304 bytes)
Hash
b92edde73a19bf66494978bec90968ff
3c783d2217ce302a5d916b24360743a6a50e4ec7
e9a681648676dcb7d958f77bed911c7a8a30dabe8ef0265b5ee894205c8aef60

HTTP Headers

GET /jss/login_files/SocMedIcon_facebook_v2.png HTTP/1.1
Host: byashi.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://byashi.com.br/jss/login.php?&sessionid=89c3db80c953d82230e950f270bca065&securessl=true
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 03 Apr 2018 02:50:24 GMT
accept-ranges: bytes
content-length: 1304
content-type: image/png
date: Tue, 29 Nov 2022 01:24:10 GMT
server: Apache
X-Firefox-Spdy: h2

content.usaa.com/mcontent/static_assets/Fonts/9ECBC8FFB535D0532.woff?cacheid=2704893946_p

104.110.3.249

200 OK

28 kB

URL HTTP/2
content.usaa.com/mcontent/static_assets/Fonts/9ECBC8FFB535D0532.woff?cacheid=2704893946_p
IP
104.110.3.249:0
ASN
#16625 AKAMAI-AS

File type
Web Open Font Format, TrueType, length 28201, version 1.0\012- data
Size
28 kB (28201 bytes)
Hash
48a2c0645c1a1b0af7f2f961b448dcc9
e3e70317a9d5a996a05e08ffb0c92bb12600c9b3
9bdae78a8c509f414cffdb7fee422988979841a09925b891b95a10d9088bd75f

HTTP Headers

GET /mcontent/static_assets/Fonts/9ECBC8FFB535D0532.woff?cacheid=2704893946_p HTTP/1.1
Host: content.usaa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://byashi.com.br
Connection: keep-alive
Referer: https://byashi.com.br/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 28 Nov 2017 23:28:19 GMT
etag: "6e29-55f135fc02ac0"
accept-ranges: bytes
content-length: 28201
content-type: text/plain
cache-control: max-age=577353
date: Tue, 29 Nov 2022 01:24:11 GMT
set-cookie: akmachineid=akmaHM3LwjaxHhh+M1I9rLhJE581bIy6Js6YxwZui+4PIvD4HQ4nAO8LlV3JpVnLUOovRlwcYf5IOqEtc8zkEjSayw==; expires=Fri, 26-Nov-2032 01:24:11 GMT; Secure; Path=/; domain=.usaa.com
akusaa=akusaawWBOruB4iNXYrnrQuH33Rw0kTgInxY2YdYtwBM//OCSbwXs0KttRSc74M82yRKL9wP2Z2zZ0S48JK3YwX02wew==; expires=Fri, 26-Nov-2032 01:24:11 GMT; Secure; Path=/; domain=.usaa.com
strict-transport-security: max-age=31536000
server: USAA-Integrity
X-Firefox-Spdy: h2

content.usaa.com/mcontent/static_assets/Fonts/9C7F15704715916A9.woff?cacheid=2612443474_p

104.110.3.249

200 OK

17 kB

URL HTTP/2
content.usaa.com/mcontent/static_assets/Fonts/9C7F15704715916A9.woff?cacheid=2612443474_p
IP
104.110.3.249:0
ASN
#16625 AKAMAI-AS

File type
Web Open Font Format, CFF, length 17443, version 1.0\012- data
Size
17 kB (17443 bytes)
Hash
0ae90578ca1e9d134d44a1a3282bae64
5e6e22ae5a59cda1c0876d3376a1656e866d7e3b
73494b42cbe09cef2382099e45afd65dbf99af4ab4ced0072be19163ff748846

HTTP Headers

GET /mcontent/static_assets/Fonts/9C7F15704715916A9.woff?cacheid=2612443474_p HTTP/1.1
Host: content.usaa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://byashi.com.br
Connection: keep-alive
Referer: https://byashi.com.br/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 28 Nov 2017 23:28:14 GMT
etag: "4423-55f135f73df80"
accept-ranges: bytes
content-length: 17443
content-type: text/plain
cache-control: max-age=599820
date: Tue, 29 Nov 2022 01:24:11 GMT
set-cookie: akmachineid=akmaWPaCYD4ij1QOrC+N4UcQ9E1TXGP8YWK/+SNnaqGaZlZQQ7neq59p6AFvZp2zagOOz9VSdOFneXSl+MZh1TVLFg==; expires=Fri, 26-Nov-2032 01:24:11 GMT; Secure; Path=/; domain=.usaa.com
akusaa=akusaah5PP4wF/qR+1/wRI4BllFd2mEqbo1V8j1dR37RC0rYK6r2f6Czt1c11j7B5gmqLVNOhj+ceVn32y1v1ISwwDkA==; expires=Fri, 26-Nov-2032 01:24:11 GMT; Secure; Path=/; domain=.usaa.com
strict-transport-security: max-age=31536000
server: USAA-Integrity
X-Firefox-Spdy: h2

byashi.com.br/jss/login_files/SocMedIcon_youtube_v2.png

192.185.210.37

200 OK

1.4 kB

URL HTTP/2
byashi.com.br/jss/login_files/SocMedIcon_youtube_v2.png
IP
192.185.210.37:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
PNG image data, 35 x 35, 8-bit/color RGBA, non-interlaced\012- data
Size
1.4 kB (1434 bytes)
Hash
b17aee805c95fc4762e350c8875f1182
f33292c1ae2e547174498216f82bee07f0c6772e
d317c2e6324cdd35249a3d5b6370b68d5b018fdddecc1dec0b9660f2affff0bd

HTTP Headers

GET /jss/login_files/SocMedIcon_youtube_v2.png HTTP/1.1
Host: byashi.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://byashi.com.br/jss/login.php?&sessionid=89c3db80c953d82230e950f270bca065&securessl=true
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 03 Apr 2018 02:50:24 GMT
accept-ranges: bytes
content-length: 1434
content-type: image/png
date: Tue, 29 Nov 2022 01:24:10 GMT
server: Apache
X-Firefox-Spdy: h2

byashi.com.br/jss/login_files/usaa-sprite-globalNav_v2.png

192.185.210.37

200 OK

58 kB

URL HTTP/2
byashi.com.br/jss/login_files/usaa-sprite-globalNav_v2.png
IP
192.185.210.37:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
PNG image data, 962 x 270, 8-bit/color RGBA, non-interlaced\012- data
Size
58 kB (57674 bytes)
Hash
9617699ab943557ecbe3b8eae10ffe09
461f5561a94f24cdd1ac6d400bf931c5259949f9
522a5fe0b1921acbaa0925b2a50fa141b0719797d5c552ffc150415c7c44d23b

HTTP Headers

GET /jss/login_files/usaa-sprite-globalNav_v2.png HTTP/1.1
Host: byashi.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://byashi.com.br/jss/login.php?&sessionid=89c3db80c953d82230e950f270bca065&securessl=true
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 03 Apr 2018 02:50:24 GMT
accept-ranges: bytes
content-length: 57674
content-type: image/png
date: Tue, 29 Nov 2022 01:24:10 GMT
server: Apache
X-Firefox-Spdy: h2

byashi.com.br/jss/login_files/icon-bank-100.svg

192.185.210.37

200 OK

1.0 kB

URL HTTP/2
byashi.com.br/jss/login_files/icon-bank-100.svg
IP
192.185.210.37:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
SVG Scalable Vector Graphics image\012- SVG XML document\012- XML 1.0 document text\012- SVG XML document\012- XML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Size
1.0 kB (1039 bytes)
Hash
4097270f68a2baa0bcedb6c0ebe832a4
1a0c9cfc06e6fc9a21cece375ed23634e94dddb4
95fb4eab3bcc02b79173e84cd85d8ce146009756430002cadad7676605500cbd

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /jss/login_files/icon-bank-100.svg HTTP/1.1
Host: byashi.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://byashi.com.br/jss/login.php?&sessionid=89c3db80c953d82230e950f270bca065&securessl=true
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 03 Apr 2018 02:50:24 GMT
accept-ranges: bytes
content-length: 1039
content-type: image/svg+xml
date: Tue, 29 Nov 2022 01:24:10 GMT
server: Apache
X-Firefox-Spdy: h2

byashi.com.br/jss/login_files/icon-dollar-circle-100.svg

192.185.210.37

200 OK

1.5 kB

URL HTTP/2
byashi.com.br/jss/login_files/icon-dollar-circle-100.svg
IP
192.185.210.37:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
SVG Scalable Vector Graphics image\012- SVG XML document\012- XML 1.0 document text\012- SVG XML document\012- XML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Size
1.5 kB (1476 bytes)
Hash
f34c880eb307aa0d22b197f2382782f0
751de7c71aceb234159c66c641a6897e05e5b516
954285e7584bf2cc1747d1227a9537f365007c4717fb732708f1245e8679695f

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /jss/login_files/icon-dollar-circle-100.svg HTTP/1.1
Host: byashi.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://byashi.com.br/jss/login.php?&sessionid=89c3db80c953d82230e950f270bca065&securessl=true
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 03 Apr 2018 02:50:24 GMT
accept-ranges: bytes
content-length: 1476
content-type: image/svg+xml
date: Tue, 29 Nov 2022 01:24:10 GMT
server: Apache
X-Firefox-Spdy: h2

byashi.com.br/jss/login_files/ehl-blk.svg

192.185.210.37

200 OK

3.8 kB

URL HTTP/2
byashi.com.br/jss/login_files/ehl-blk.svg
IP
192.185.210.37:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
SVG Scalable Vector Graphics image\012- HTML document text\012- HTML document, ASCII text, with very long lines (3771), with no line terminators
Size
3.8 kB (3771 bytes)
Hash
b59e55d9d830ec44fcf62cc98aaeff08
b7aa9504db4970ba5724ef2916f2a2ec6da09109
61e8a805163515bc3f9e456d6a414bf6b45e8ff4d9df9a90ef3ec24cf4b10ef2

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /jss/login_files/ehl-blk.svg HTTP/1.1
Host: byashi.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://byashi.com.br/jss/login.php?&sessionid=89c3db80c953d82230e950f270bca065&securessl=true
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 03 Apr 2018 02:50:24 GMT
accept-ranges: bytes
content-length: 3771
content-type: image/svg+xml
date: Tue, 29 Nov 2022 01:24:10 GMT
server: Apache
X-Firefox-Spdy: h2

byashi.com.br/jss/login_files/ent-mainBnr-father-daughter-hug.png

192.185.210.37

200 OK

367 kB

URL HTTP/2
byashi.com.br/jss/login_files/ent-mainBnr-father-daughter-hug.png
IP
192.185.210.37:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
PNG image data, 1658 x 1106, 8-bit colormap, non-interlaced\012- data
Size
367 kB (366594 bytes)
Hash
ce7d1f992bcc0e5011f5162c4ee6574e
4fec719a49892f19235c57ce35de69db977e496c
aaa0237d406be851009f22a217f5d847dc04d4ba529c69e6a3b46dcc40c1c27d

HTTP Headers

GET /jss/login_files/ent-mainBnr-father-daughter-hug.png HTTP/1.1
Host: byashi.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://byashi.com.br/jss/login.php?&sessionid=89c3db80c953d82230e950f270bca065&securessl=true
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 03 Apr 2018 02:50:24 GMT
accept-ranges: bytes
content-length: 366594
content-type: image/png
date: Tue, 29 Nov 2022 01:24:10 GMT
server: Apache
X-Firefox-Spdy: h2

byashi.com.br/jss/login_files/prodOther_accent_brandBanner_stripesAndStar.svg

192.185.210.37

200 OK

682 B

URL HTTP/2
byashi.com.br/jss/login_files/prodOther_accent_brandBanner_stripesAndStar.svg
IP
192.185.210.37:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
SVG Scalable Vector Graphics image\012- , ASCII text
Size
682 B (682 bytes)
Hash
ff0e5c1cf75579a97e32b619b66e7681
19568dff658082a23bf915c69d67988fe5d6e577
df8c1e7626f991c34245cec27a7a1a9ac72ac57a40d5f3c241364357c043d7ca

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /jss/login_files/prodOther_accent_brandBanner_stripesAndStar.svg HTTP/1.1
Host: byashi.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://byashi.com.br/jss/login_files/v3-brand-banner.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 03 Apr 2018 03:05:38 GMT
accept-ranges: bytes
content-length: 682
content-type: image/svg+xml
date: Tue, 29 Nov 2022 01:24:11 GMT
server: Apache
X-Firefox-Spdy: h2

byashi.com.br/jss/login_files/primary-link-icon-inverted.svg

192.185.210.37

200 OK

587 B

URL HTTP/2
byashi.com.br/jss/login_files/primary-link-icon-inverted.svg
IP
192.185.210.37:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
SVG Scalable Vector Graphics image\012- SVG XML document\012- XML 1.0 document text\012- SVG XML document\012- XML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Size
587 B (587 bytes)
Hash
044f289e122bcd4d269f4dd1ad35a1e2
0515adbdc57150d02ec6e3bc01da831cdfbedcfd
fcd5170f9ebd31c331c74c9b8d0de6a7f6c99b920fa8768b648f30f429c2debd

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /jss/login_files/primary-link-icon-inverted.svg HTTP/1.1
Host: byashi.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://byashi.com.br/jss/login_files/v3-brand-banner.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 03 Apr 2018 03:05:28 GMT
accept-ranges: bytes
content-length: 587
content-type: image/svg+xml
date: Tue, 29 Nov 2022 01:24:11 GMT
server: Apache
X-Firefox-Spdy: h2

byashi.com.br/jss/login_files/prodOther_thumb_primary-link-icon.svg

192.185.210.37

200 OK

587 B

URL HTTP/2
byashi.com.br/jss/login_files/prodOther_thumb_primary-link-icon.svg
IP
192.185.210.37:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
SVG Scalable Vector Graphics image\012- SVG XML document\012- XML 1.0 document text\012- SVG XML document\012- XML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Size
587 B (587 bytes)
Hash
a88195bb9797428555ffc4b97cb46516
fb5c75643a6ef72dbb34ac3987fbe709e10e14b6
934b6c746f0af225cb7ed9cab48353ae67f51af3eb0b74bca465fe02105310cd

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /jss/login_files/prodOther_thumb_primary-link-icon.svg HTTP/1.1
Host: byashi.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://byashi.com.br/jss/login_files/v3-wcm-common.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 03 Apr 2018 03:05:46 GMT
accept-ranges: bytes
content-length: 587
content-type: image/svg+xml
date: Tue, 29 Nov 2022 01:24:11 GMT
server: Apache
X-Firefox-Spdy: h2

byashi.com.br/jss/login_files/misc_accent_socMedia.png

192.185.210.37

200 OK

8.8 kB

URL HTTP/2
byashi.com.br/jss/login_files/misc_accent_socMedia.png
IP
192.185.210.37:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
PNG image data, 201 x 378, 8-bit/color RGBA, non-interlaced\012- data
Size
8.8 kB (8781 bytes)
Hash
2aa62eca80d27a3d0207d5cc909ccdb5
c7f72c3df6f58b2db7029a85b712dcef656ecb70
70cc16695978690e74938cae7f3a5f0de6ee23b1837bddca169316c7001eecd7

HTTP Headers

GET /jss/login_files/misc_accent_socMedia.png HTTP/1.1
Host: byashi.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://byashi.com.br/jss/login_files/socialMediaBar_alt.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 03 Apr 2018 03:05:00 GMT
accept-ranges: bytes
content-length: 8781
content-type: image/png
date: Tue, 29 Nov 2022 01:24:11 GMT
server: Apache
X-Firefox-Spdy: h2

byashi.com.br/jss/login_files/prodOther_accent_brandBanner_diamondBackground.svg

192.185.210.37

200 OK

1.9 kB

URL HTTP/2
byashi.com.br/jss/login_files/prodOther_accent_brandBanner_diamondBackground.svg
IP
192.185.210.37:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document, ASCII text
Size
1.9 kB (1906 bytes)
Hash
7b6d4e628dec2e60dc40a7e3c434491d
182bf4243bb159679579b7b795e65933796f72b5
e3724f77ddf0adecd6d84ac71bc5e2d614b8df720b5de8b0ddecfcdd938c5847

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /jss/login_files/prodOther_accent_brandBanner_diamondBackground.svg HTTP/1.1
Host: byashi.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://byashi.com.br/jss/login_files/v3-brand-banner.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 03 Apr 2018 03:05:10 GMT
accept-ranges: bytes
content-length: 1906
content-type: image/svg+xml
date: Tue, 29 Nov 2022 01:24:11 GMT
server: Apache
X-Firefox-Spdy: h2

byashi.com.br/jss/login_files/pub-home-tools-and-support-promo.jpg

192.185.210.37

200 OK

121 kB

URL HTTP/2
byashi.com.br/jss/login_files/pub-home-tools-and-support-promo.jpg
IP
192.185.210.37:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=12, height=806, bps=158, PhotometricIntepretation=RGB, orientation=upper-left, width=970], baseline, precision 8, 970x806, components 3\012- data
Size
121 kB (120784 bytes)
Hash
1fa0a020210a827fabee32d05afe0a54
0cf258744933d5e98147959c94ebf65fc5319d9f
5d5892815ea8a90798073f3d386c11c5528eb5628ce602cf4552538c1d7aa9a2

HTTP Headers

GET /jss/login_files/pub-home-tools-and-support-promo.jpg HTTP/1.1
Host: byashi.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://byashi.com.br/jss/login_files/landingPage_ProspectHome.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 03 Apr 2018 03:05:20 GMT
accept-ranges: bytes
content-length: 120784
content-type: image/jpeg
date: Tue, 29 Nov 2022 01:24:11 GMT
server: Apache
X-Firefox-Spdy: h2

byashi.com.br/jss/login_files/bgFooter_v2.png

192.185.210.37

200 OK

496 B

URL HTTP/2
byashi.com.br/jss/login_files/bgFooter_v2.png
IP
192.185.210.37:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
PNG image data, 970 x 20, 8-bit/color RGBA, non-interlaced\012- data
Size
496 B (496 bytes)
Hash
3930e517d4089677f730f59a1481ecc9
916684432bc36c1b21ae8ca9cf9490a369d4ab40
09fe494df49bb50492a87d2670d9839f3f4220f300b146809d36b7e805db52a3

HTTP Headers

GET /jss/login_files/bgFooter_v2.png HTTP/1.1
Host: byashi.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://byashi.com.br/jss/login_files/styles_member.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 03 Apr 2018 03:05:52 GMT
accept-ranges: bytes
content-length: 496
content-type: image/png
date: Tue, 29 Nov 2022 01:24:11 GMT
server: Apache
X-Firefox-Spdy: h2

content.usaa.com/mcontent/static_assets/Fonts/E83D71A074DF776F4.woff?cacheid=22813289_p

104.110.3.249

200 OK

19 kB

URL HTTP/2
content.usaa.com/mcontent/static_assets/Fonts/E83D71A074DF776F4.woff?cacheid=22813289_p
IP
104.110.3.249:0
ASN
#16625 AKAMAI-AS

File type
Web Open Font Format, TrueType, length 27799, version 1.0\012- data
Size
19 kB (18744 bytes)
Hash
aaa32981994ff790b73adf3dced2dcc6
0c503309af8b24b595218334545d76c82b2c8fe8
c2c08699960dfeeafe5eda5fc1e48829d004197afdc208cbb33dddf61c67b035

HTTP Headers

GET /mcontent/static_assets/Fonts/E83D71A074DF776F4.woff?cacheid=22813289_p HTTP/1.1
Host: content.usaa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://byashi.com.br
Connection: keep-alive
Referer: https://byashi.com.br/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 28 Nov 2017 23:28:35 GMT
etag: "6c97-55f1360b44ec0"
accept-ranges: bytes
content-length: 27799
content-type: text/plain
cache-control: max-age=599354
date: Tue, 29 Nov 2022 01:24:11 GMT
set-cookie: akmachineid=akmaaU3fMP9p7dtUdExxzTFya4+NyWfuwGuzjHdB2YcmUvSsFP/rBgbfMxb7KWQNh0NnAhq0aX/Nc89N7HfHraMKww==; expires=Fri, 26-Nov-2032 01:24:11 GMT; Secure; Path=/; domain=.usaa.com
akusaa=akusaa8QuZIDJJmKZjxRFrefd85x4/Yh27nDPTQFYuRYw+qzYlNJA1Nfqr8DJkO1TLX2Q691zAizY75XBAB7SgECwL7g==; expires=Fri, 26-Nov-2032 01:24:11 GMT; Secure; Path=/; domain=.usaa.com
strict-transport-security: max-age=31536000
server: USAA-Integrity
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
a97c452e75cf1d4833e777d7ba7f2c47
58f15763fd33f742ce870f49f1c2dbed5b41205f
39bb874a415db37a81432942eb84151b0134d1aacaa31d364b6dadae4388c6a1

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "39BB874A415DB37A81432942EB84151B0134D1AACAA31D364B6DADAE4388C6A1"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10094
Expires: Tue, 29 Nov 2022 04:12:26 GMT
Date: Tue, 29 Nov 2022 01:24:12 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
a97c452e75cf1d4833e777d7ba7f2c47
58f15763fd33f742ce870f49f1c2dbed5b41205f
39bb874a415db37a81432942eb84151b0134d1aacaa31d364b6dadae4388c6a1

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "39BB874A415DB37A81432942EB84151B0134D1AACAA31D364B6DADAE4388C6A1"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10094
Expires: Tue, 29 Nov 2022 04:12:26 GMT
Date: Tue, 29 Nov 2022 01:24:12 GMT
Connection: keep-alive

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb1ee10f9-36dd-4ca4-986e-a80758149640.jpeg

34.120.237.76

200 OK

8.5 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb1ee10f9-36dd-4ca4-986e-a80758149640.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
8.5 kB (8460 bytes)
Hash
516776052e5e906ea9f42d25bae5cc85
be4c4d01fc67218e26a3e9d27a2f708e639c9d4b
28e70e38cfad65ad8a7a68ab1dc78747c7013a87b854fc35b163cc5765cd0570

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb1ee10f9-36dd-4ca4-986e-a80758149640.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 8460
x-amzn-requestid: 51416479-3854-4f1a-9d86-35e104c57f6a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cVNnkHuZIAMF-_A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63852963-180b323d4a45fa2f29f9b1fc;Sampled=0
x-amzn-remapped-date: Mon, 28 Nov 2022 21:34:27 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 3MKambAjrBl64HI6hBuOtNJi3Tj6gxtwH_lOfk0WNX15UnCrAJbNig==
via: 1.1 26ca01ec7377e425b59b6a08cb1ec342.cloudfront.net (CloudFront), 1.1 7022a5bbf9872d4a09d63e6cdb457dfe.cloudfront.net (CloudFront), 1.1 google
date: Mon, 28 Nov 2022 21:48:54 GMT
age: 12918
etag: "be4c4d01fc67218e26a3e9d27a2f708e639c9d4b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

9.2 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F69f1b665-d8ee-457c-8f1d-e696be0cdbf6.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
9.2 kB (9162 bytes)
Hash
c808183085a429c53515508678fc7ab2
6567069d9f5199205ba1ca7a937fcb0a52f95d06
c7ca95730cbc97d7c243e05b23520166faefcd2dfe90f36f70fad1f7e4537e4c

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F69f1b665-d8ee-457c-8f1d-e696be0cdbf6.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 9162
x-amzn-requestid: f7fb3b99-6f1c-4ab3-9547-a337d54e8c9a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cVjI8E9poAMFaQw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63854bd2-0679b83d1aa3b7c71aa6bf1c;Sampled=0
x-amzn-remapped-date: Tue, 29 Nov 2022 00:01:22 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: RAAJeCuVxs-hpp4wMmcBEmqPf71bUMueBvhwLaYTixj9IiIGNp0ZIQ==
via: 1.1 446313511980eb02f28ff5a9a4147c0a.cloudfront.net (CloudFront), 1.1 4f3feb5c4393987d42d1971d404d7cea.cloudfront.net (CloudFront), 1.1 google
date: Tue, 29 Nov 2022 00:28:27 GMT
age: 3345
etag: "6567069d9f5199205ba1ca7a937fcb0a52f95d06"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

9.2 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffdef9eb6-c1f1-4337-aff8-0986561782c7.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
9.2 kB (9203 bytes)
Hash
5d574c4db20a68295dbd06cb08f5990b
433061bbb226048765a711deca3026ee3e52372f
8cc1a4d18e242f8bfc8ab94637f635b73554b903462c29b06d0ec67872542afb

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffdef9eb6-c1f1-4337-aff8-0986561782c7.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 9203
x-amzn-requestid: 8cba52d6-3c1c-495c-bb9d-3ba6f0adc7e1
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cHcHmGmQoAMF6dQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637fa6fd-73abfa592ff223061401af9a;Sampled=0
x-amzn-remapped-date: Thu, 24 Nov 2022 17:16:45 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: UmhWm03jrsV8dFagrzIA0E-8eL8dykoO5kw3cYOBd172dCGqNdAX-Q==
via: 1.1 a20e81b65d2465c729ce2f6bfe539dd0.cloudfront.net (CloudFront), 1.1 36810aa1793ee589dc8c194860296078.cloudfront.net (CloudFront), 1.1 google
date: Mon, 28 Nov 2022 03:31:58 GMT
age: 78734
etag: "433061bbb226048765a711deca3026ee3e52372f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

3.9 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb99c22d6-3187-4d40-8281-7980c7988464.webp
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
3.9 kB (3905 bytes)
Hash
06723cdab42df9b5334f540a8c7ebc60
3bbc44cb84a37ce6a067db4301dd81647a77c29f
9f6f064b16044c510650635690c61003fb2f6439021a2e681431136f5e7a08b3

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb99c22d6-3187-4d40-8281-7980c7988464.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 3905
x-amzn-requestid: bf50db76-dd95-44fc-abbe-1a26a5559ae3
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cMFcYHE6IAMFmpA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638182b5-50b6d010058c6cb75c05c6de;Sampled=0
x-amzn-remapped-date: Sat, 26 Nov 2022 03:06:29 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 73Fr-7-mRcw9_OVt8Wdi4pjFBHkqi_vBa-zgLtbHKEx1ay9s8wDSgQ==
via: 1.1 efe54e8b68e074d39b2ecd249f85100a.cloudfront.net (CloudFront), 1.1 64f86ae1c24221f3a2e4d653d6dbc416.cloudfront.net (CloudFront), 1.1 google
date: Mon, 28 Nov 2022 06:26:11 GMT
age: 68281
etag: "3bbc44cb84a37ce6a067db4301dd81647a77c29f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

3.7 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffa7a7fb1-8e53-47cc-bd1c-80ab0e8ecd59.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
3.7 kB (3711 bytes)
Hash
8b421b66a29c15df61049ef5d5f34bc2
f3c1297885fa2fd37557222d5490dfb0afed19ef
3c88aecb898378f0d070fe9e9733ac42b89b57349e8e9f51ffb0508b88821980

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffa7a7fb1-8e53-47cc-bd1c-80ab0e8ecd59.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 3711
x-amzn-requestid: e9825e7e-0fa7-4165-9b59-f554a4bf1d6b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: b_dkuFKToAMF1OA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637c761e-7ebc3c3b480cdd94059616b7;Sampled=0
x-amzn-remapped-date: Tue, 22 Nov 2022 07:11:26 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: TQQiAdJwsSxsS2C-3y_SNOHPtiuPMKcfu-4Db4zlOjbHsTfRnHWl8Q==
via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 36810aa1793ee589dc8c194860296078.cloudfront.net (CloudFront), 1.1 google
date: Mon, 28 Nov 2022 08:00:12 GMT
age: 62640
etag: "f3c1297885fa2fd37557222d5490dfb0afed19ef"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

8.8 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9ad01b94-5d16-49b9-bf3e-5742e02ae8b6.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
8.8 kB (8796 bytes)
Hash
7e44c46db2ac9917110dc47aa38fdc85
b5b245c90705ad80c31d457c0d7c96709ca31e96
5024225a583b188860eaf21f7196c06cef8b2e89389ae4b1df6e314399f3b2ae

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9ad01b94-5d16-49b9-bf3e-5742e02ae8b6.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 8796
x-amzn-requestid: 2eed036c-fcda-425b-8c5d-0b0ff31214a0
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cGDTEEWMIAMFwKA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637f18e0-5cb071a2098d43d909eb8d5c;Sampled=0
x-amzn-remapped-date: Thu, 24 Nov 2022 07:10:24 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: uWzs8gOBoczTeYXB7-FfJemWbh-hYHwNcR3b9BM5VtJ55NRUzCZeTQ==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 9046e5a276a05e60ee34c8475e92b8e6.cloudfront.net (CloudFront), 1.1 google
date: Mon, 28 Nov 2022 09:53:45 GMT
age: 55827
etag: "b5b245c90705ad80c31d457c0d7c96709ca31e96"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

byashi.com.br/jss/login_files/usaaicon.ico

192.185.210.37

200 OK

2.2 kB

URL HTTP/2
byashi.com.br/jss/login_files/usaaicon.ico
IP
192.185.210.37:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
MS Windows icon resource - 2 icons, 32x32, 16 colors, 16x16, 255 colors\012- data
Size
2.2 kB (2166 bytes)
Hash
50960e8d24dcda4d3e8dd7874ce54daa
60b54e4a9b641ff189ee9d200a778d75181907f0
74c40e570ddf14c6cbb32abe077a862e4d9478ee2ec25cdae80ef7ef9a9e295a

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /jss/login_files/usaaicon.ico HTTP/1.1
Host: byashi.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://byashi.com.br/jss/login.php?&sessionid=89c3db80c953d82230e950f270bca065&securessl=true
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 03 Apr 2018 03:20:48 GMT
accept-ranges: bytes
content-length: 2166
cache-control: max-age=604800
expires: Tue, 06 Dec 2022 01:24:12 GMT
content-type: image/x-icon
date: Tue, 29 Nov 2022 01:24:12 GMT
server: Apache
X-Firefox-Spdy: h2

byashi.com.br/jss/login_files/aggregator.css

192.185.210.37

200 OK

0 B

URL HTTP/2
byashi.com.br/jss/login_files/aggregator.css
IP
192.185.210.37:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /jss/login_files/aggregator.css HTTP/1.1
Host: byashi.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://byashi.com.br/jss/login.php?&sessionid=89c3db80c953d82230e950f270bca065&securessl=true
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 03 Apr 2018 02:50:24 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/css
date: Tue, 29 Nov 2022 01:24:10 GMT
server: Apache
X-Firefox-Spdy: h2

byashi.com.br/jss/login_files/styles_member.css

192.185.210.37

200 OK

0 B

URL HTTP/2
byashi.com.br/jss/login_files/styles_member.css
IP
192.185.210.37:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /jss/login_files/styles_member.css HTTP/1.1
Host: byashi.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://byashi.com.br/jss/login.php?&sessionid=89c3db80c953d82230e950f270bca065&securessl=true
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 03 Apr 2018 03:18:58 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/css
date: Tue, 29 Nov 2022 01:24:10 GMT
server: Apache
X-Firefox-Spdy: h2

byashi.com.br/jss/login_files/aggregator(2).css

192.185.210.37

200 OK

0 B

URL HTTP/2
byashi.com.br/jss/login_files/aggregator(2).css
IP
192.185.210.37:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /jss/login_files/aggregator(2).css HTTP/1.1
Host: byashi.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://byashi.com.br/jss/login.php?&sessionid=89c3db80c953d82230e950f270bca065&securessl=true
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 03 Apr 2018 02:50:24 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/css
date: Tue, 29 Nov 2022 01:24:10 GMT
server: Apache
X-Firefox-Spdy: h2

content.usaa.com/mcontent/static_assets/Fonts/12C383965421BC56F.woff?cacheid=1553179615_p

104.110.3.249

200 OK

0 B

URL HTTP/2
content.usaa.com/mcontent/static_assets/Fonts/12C383965421BC56F.woff?cacheid=1553179615_p
IP
104.110.3.249:0
ASN
#16625 AKAMAI-AS

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /mcontent/static_assets/Fonts/12C383965421BC56F.woff?cacheid=1553179615_p HTTP/1.1
Host: content.usaa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://byashi.com.br
Connection: keep-alive
Referer: https://byashi.com.br/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 28 Nov 2017 23:27:35 GMT
etag: "41c3-55f135d20c7c0"
accept-ranges: bytes
content-length: 16835
content-type: text/plain
cache-control: max-age=577826
date: Tue, 29 Nov 2022 01:24:11 GMT
set-cookie: akmachineid=akmawIXAaQFlpKmlzepiuSUyQGfr/ZaQ4PlpZa0IAZxylmfeQ1GvlcgXvw8u7r07Q7zsyMWMthai76gy8nka3FB9uw==; expires=Fri, 26-Nov-2032 01:24:11 GMT; Secure; Path=/; domain=.usaa.com
akusaa=akusaaxztLDP1acJFTSHSPfSCDzAbLrZMKbU9osNhWGTzj19epnDmXNZuO++KiZCG8WMi3Py8Cg7NBM4iJPnmLCHdA0Q==; expires=Fri, 26-Nov-2032 01:24:11 GMT; Secure; Path=/; domain=.usaa.com
strict-transport-security: max-age=31536000
server: USAA-Integrity
X-Firefox-Spdy: h2

content.usaa.com/mcontent/static_assets/Fonts/CC8B46FD41C3A5502.woff?cacheid=1373003117_p

104.110.3.249

200 OK

0 B

URL HTTP/2
content.usaa.com/mcontent/static_assets/Fonts/CC8B46FD41C3A5502.woff?cacheid=1373003117_p
IP
104.110.3.249:0
ASN
#16625 AKAMAI-AS

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /mcontent/static_assets/Fonts/CC8B46FD41C3A5502.woff?cacheid=1373003117_p HTTP/1.1
Host: content.usaa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://byashi.com.br
Connection: keep-alive
Referer: https://byashi.com.br/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 28 Nov 2017 23:28:32 GMT
etag: "6c53-55f1360868800"
accept-ranges: bytes
content-length: 27731
content-type: text/plain
cache-control: max-age=602066
date: Tue, 29 Nov 2022 01:24:11 GMT
set-cookie: akmachineid=akma393PUsUjDiGQUYddWVeRQMfA3paManP8bsED6AKbQJq5WjaR4esTihVBsT21NsgoKNlST/vyD1cMLqLo/rWW8g==; expires=Fri, 26-Nov-2032 01:24:11 GMT; Secure; Path=/; domain=.usaa.com
akusaa=akusaaY5yORvZVceX+VEvPpzYLoTUmAKtcR90t06N3pWQMyfjIeH19EkzWPl+d0MiMkdr7cZPxkUqqiYml6n56MfD2XQ==; expires=Fri, 26-Nov-2032 01:24:11 GMT; Secure; Path=/; domain=.usaa.com
strict-transport-security: max-age=31536000
server: USAA-Integrity
X-Firefox-Spdy: h2

byashi.com.br/jss/login_files/gotham-mercury-base-aggregate.css

192.185.210.37

200 OK

0 B

URL HTTP/2
byashi.com.br/jss/login_files/gotham-mercury-base-aggregate.css
IP
192.185.210.37:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /jss/login_files/gotham-mercury-base-aggregate.css HTTP/1.1
Host: byashi.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://byashi.com.br/jss/login.php?&sessionid=89c3db80c953d82230e950f270bca065&securessl=true
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 03 Apr 2018 02:50:24 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/css
date: Tue, 29 Nov 2022 01:24:10 GMT
server: Apache
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

JavaScript (4)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

HTTP Transactions (81)

URL HTTP/1.1

IP

ASN

File type

Size

Hash

HTTP Headers

URL HTTP/1.1

IP

ASN

File type

Size

Hash

HTTP Headers

URL HTTP/1.1

IP

ASN

File type

Size

Hash

HTTP Headers

URL HTTP/2

IP

ASN

File type

Size