byashi.com.br/jss/login.php?&sessionid=89c3db80c953d82230e950f270bca065&securessl=true
192.185.210.37301 Moved Permanently 310 B URL HTTP/1.1 byashi.com.br/jss/login.php?&sessionid=89c3db80c953d82230e950f270bca065&securessl=true
IP 192.185.210.37:0
ASN #46606 UNIFIEDLAYER-AS-1
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash f2542f11d8097e5af7dbf4b4fe8eb49e
851cec70353c45636166ef7a801f3af942bda56f
0dffab56d786e1fb0d45141fbb897d5ce89b8bbaa2c38f09c1d4ce83edd88040
GET /jss/login.php?&sessionid=89c3db80c953d82230e950f270bca065&securessl=true HTTP/1.1
Host: byashi.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Tue, 29 Nov 2022 01:24:09 GMT
Server: Apache
Location: https://byashi.com.br/jss/login.php?&sessionid=89c3db80c953d82230e950f270bca065&securessl=true
Content-Length: 310
Keep-Alive: timeout=5, max=75
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 2d2e7649ce9e9ba6fc8b68aa89352e3c
0153d1d3d830a457043e16bb40d48a0b9ddef4b8
8eed57c91b42ef7b2d5eff1309e306e23e13c3de21219af24a693cbf3e8977fc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "8EED57C91B42EF7B2D5EFF1309E306E23E13C3DE21219AF24A693CBF3E8977FC"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11512
Expires: Tue, 29 Nov 2022 04:36:01 GMT
Date: Tue, 29 Nov 2022 01:24:09 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 9408cc0694fcbea57966c3a3ba906092
fddcee1fdcf3209298e41a4b1b5560357fa165f0
6ef7120d9463f56e3ddfadd5766d02da8523f34061b13bdba54bf9ab72a1e979
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5434
Cache-Control: max-age=124665
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 01:24:09 GMT
Etag: "63848df9-1d7"
Expires: Wed, 30 Nov 2022 12:01:54 GMT
Last-Modified: Mon, 28 Nov 2022 10:31:21 GMT
Server: ECS (ska/F711)
X-Cache: HIT
Content-Length: 471
firefox.settings.services.mozilla.com/v1/
34.102.187.140200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 14cd9a0afb6ba9a763651d5112760d1e
75d7b104ab9ab11fbb73c3f348b43b0119b5adfa
4e32a117106be587ffcd63239c16a8117eb7840830d4c9decf6527761967532e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Alert, Backoff, Content-Length, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Tue, 29 Nov 2022 01:19:34 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 275
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 9fce5679881bf302a8978a0b462f01a9
b699fe030ea13ac73813e655c42ed9b531925e2b
a3ec545a8f9364ac9062eddb41279e1465687a1b60f9c1dec6b3a3df8b033eb3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A3EC545A8F9364AC9062EDDB41279E1465687A1B60F9C1DEC6B3A3DF8B033EB3"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10173
Expires: Tue, 29 Nov 2022 04:13:42 GMT
Date: Tue, 29 Nov 2022 01:24:09 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 9ebddc2b260d081ebbefee47c037cb28
492bad62a7ca6a74738921ef5ae6f0be5edebf39
74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5
GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: DzoroHa9kbDXyB7EpF7jFREHTLtAsvZCbpE8BwyTQUpS7SyA2EiFkTj4yu2fyt+aDWgUmovVQdI=
x-amz-request-id: SEBMYFWCDJ4G5SJM
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Tue, 29 Nov 2022 00:42:18 GMT
age: 2511
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 29 Nov 2022 01:24:09 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash df966880f91f9fb76435aedfd1f03171
e990da2a88a38872d89e14b71b2b408dbe72c4ef
b0ef71c31ee2d1f3324df8e8f300742f681268630e7f3bd2ae636238caca1aea
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B0EF71C31EE2D1F3324DF8E8F300742F681268630E7F3BD2AE636238CACA1AEA"
Last-Modified: Mon, 28 Nov 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16322
Expires: Tue, 29 Nov 2022 05:56:12 GMT
Date: Tue, 29 Nov 2022 01:24:10 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
34.102.187.140200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Last-Modified, Retry-After, Cache-Control, Content-Type, Pragma, Backoff, ETag, Expires, Content-Length, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Tue, 29 Nov 2022 01:11:12 GMT
cache-control: public,max-age=3600
age: 778
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2
byashi.com.br/jss/login.php?&sessionid=89c3db80c953d82230e950f270bca065&securessl=true
192.185.210.37200 OK 12 kB URL HTTP/2 byashi.com.br/jss/login.php?&sessionid=89c3db80c953d82230e950f270bca065&securessl=true
IP 192.185.210.37:0
ASN #46606 UNIFIEDLAYER-AS-1
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (2096)
Hash 93410302c25ed067d10c7b81d20885c0
307c62393ab388f23c62e6f86e5cdde427f0ee6d
47d834a126c2136527a62a871c1a2281c8091038c3e94fc8e7e82d54f3cbe6a7
GET /jss/login.php?&sessionid=89c3db80c953d82230e950f270bca065&securessl=true HTTP/1.1
Host: byashi.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
content-length: 11465
content-type: text/html; charset=UTF-8
date: Tue, 29 Nov 2022 01:24:10 GMT
server: Apache
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 7ab2ef968cb6a3078f4b9cb2dda813d4
e669116047ca058a2c1b2999ff0ea8682719162c
6ddecf0b21c44f3851da8efeb6ecdc6c8e9b83d7681153c31952b4ec8c23c940
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4736
Cache-Control: max-age=118901
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 01:24:10 GMT
Etag: "63847a2f-1d7"
Expires: Wed, 30 Nov 2022 10:25:51 GMT
Last-Modified: Mon, 28 Nov 2022 09:06:55 GMT
Server: ECS (ska/F711)
X-Cache: HIT
Content-Length: 471
byashi.com.br/jss/login_files/exception_landing_aggregate.css
192.185.210.37200 OK 9.8 kB URL HTTP/2 byashi.com.br/jss/login_files/exception_landing_aggregate.css
IP 192.185.210.37:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (32210), with no line terminators
Hash 4f2f130f52f24e7349a9f71573826a9e
6e70a38326a91e88b59020ca85f5cab0fe87b993
c83fb88d70ea87dc1effa9e36b1763843d4f27ee5498394001b561551ab27f23
GET /jss/login_files/exception_landing_aggregate.css HTTP/1.1
Host: byashi.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://byashi.com.br/jss/login.php?&sessionid=89c3db80c953d82230e950f270bca065&securessl=true
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 03 Apr 2018 02:50:24 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 9786
content-type: text/css
date: Tue, 29 Nov 2022 01:24:10 GMT
server: Apache
X-Firefox-Spdy: h2
byashi.com.br/jss/login_files/enterprise_nav_globalnav_usaalogo.svg
192.185.210.37200 OK 11 kB URL HTTP/2 byashi.com.br/jss/login_files/enterprise_nav_globalnav_usaalogo.svg
IP 192.185.210.37:0
ASN #46606 UNIFIEDLAYER-AS-1
File type SVG Scalable Vector Graphics image\012- SVG XML document\012- XML 1.0 document text\012- SVG XML document\012- XML document text\012- exported SGML document, ASCII text
Hash 6fd96a29c53b5ce705a27b59aea154e5
0d1e25a57f20865e9c338c7aed7e36df1ff08bc3
d1886043ac668fcd2ccb7019ba9b35ef16f7d0c3db9d9dedf3862b036a4ae2d3
Analyzer Verdict Alert fortinet Phishing
GET /jss/login_files/enterprise_nav_globalnav_usaalogo.svg HTTP/1.1
Host: byashi.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://byashi.com.br/jss/login.php?&sessionid=89c3db80c953d82230e950f270bca065&securessl=true
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 03 Apr 2018 02:50:24 GMT
accept-ranges: bytes
content-length: 10902
content-type: image/svg+xml
date: Tue, 29 Nov 2022 01:24:10 GMT
server: Apache
X-Firefox-Spdy: h2
byashi.com.br/jss/login_files/prodPc_thumb_catIconEarthquake.png
192.185.210.37200 OK 2.4 kB URL HTTP/2 byashi.com.br/jss/login_files/prodPc_thumb_catIconEarthquake.png
IP 192.185.210.37:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 33 x 33, 8-bit/color RGBA, non-interlaced\012- data
Hash 351acfbea2c6ace503bd63e030202d9c
17adfa58521d1edf98a6ec9f91ada0e76af3300b
ec8a1c021ae83316e075859df64364759ff0932c70ea82c7698bb634a312f3b5
GET /jss/login_files/prodPc_thumb_catIconEarthquake.png HTTP/1.1
Host: byashi.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://byashi.com.br/jss/login.php?&sessionid=89c3db80c953d82230e950f270bca065&securessl=true
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 03 Apr 2018 02:50:24 GMT
accept-ranges: bytes
content-length: 2433
content-type: image/png
date: Tue, 29 Nov 2022 01:24:10 GMT
server: Apache
X-Firefox-Spdy: h2
byashi.com.br/jss/login_files/socialMediaBar_alt.css
192.185.210.37200 OK 2.6 kB URL HTTP/2 byashi.com.br/jss/login_files/socialMediaBar_alt.css
IP 192.185.210.37:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (11082), with no line terminators
Hash 18851df041b876d7b69942e55313299c
bbdf602e1b82bbea202e21a8cfdc2d7feaad8145
4de90906158ed0d21fc658617df175a0b7f652c24d8f71c7fcc3c861c2a898e2
GET /jss/login_files/socialMediaBar_alt.css HTTP/1.1
Host: byashi.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://byashi.com.br/jss/login.php?&sessionid=89c3db80c953d82230e950f270bca065&securessl=true
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 03 Apr 2018 03:06:54 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 2642
content-type: text/css
date: Tue, 29 Nov 2022 01:24:10 GMT
server: Apache
X-Firefox-Spdy: h2
byashi.com.br/jss/login_files/MaskedPassword.js
192.185.210.37200 OK 6.8 kB URL HTTP/2 byashi.com.br/jss/login_files/MaskedPassword.js
IP 192.185.210.37:0
ASN #46606 UNIFIEDLAYER-AS-1
File type Unicode text, UTF-8 text, with CRLF line terminators
Hash c8789a29d1e465c1e33956be5c9e5c99
5029c64bbd35cbf402e324e4a47d81f28b727e7e
26fe2ab21f3ef6555670e1cc34877f43ae367e3809e2e67e8e7b2390564e6885
Analyzer Verdict Alert fortinet Phishing
GET /jss/login_files/MaskedPassword.js HTTP/1.1
Host: byashi.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://byashi.com.br/jss/login.php?&sessionid=89c3db80c953d82230e950f270bca065&securessl=true
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 16 Dec 2017 10:46:12 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 6833
content-type: application/javascript
date: Tue, 29 Nov 2022 01:24:10 GMT
server: Apache
X-Firefox-Spdy: h2
byashi.com.br/jss/login_files/cat_banner.css
192.185.210.37200 OK 2.7 kB URL HTTP/2 byashi.com.br/jss/login_files/cat_banner.css
IP 192.185.210.37:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (10787), with no line terminators
Hash 6333d0192b688673f56dbea14086793f
ae37ac5c56dea56010796b2492aa7bef798d0a0e
8bc2442886a35e69af5f8180f6d0f5e1f3fdaaaead59e1173ceed7e8dfe94d26
GET /jss/login_files/cat_banner.css HTTP/1.1
Host: byashi.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://byashi.com.br/jss/login.php?&sessionid=89c3db80c953d82230e950f270bca065&securessl=true
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 03 Apr 2018 02:50:24 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 2748
content-type: text/css
date: Tue, 29 Nov 2022 01:24:10 GMT
server: Apache
X-Firefox-Spdy: h2
byashi.com.br/jss/login_files/prodPc_thumb_catIconHurricane.png
192.185.210.37200 OK 3.8 kB URL HTTP/2 byashi.com.br/jss/login_files/prodPc_thumb_catIconHurricane.png
IP 192.185.210.37:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 33 x 33, 8-bit/color RGBA, non-interlaced\012- data
Hash b8acabb412e622c0810de9006776e765
62c2571b60ab3ef33b1bf701912b22447945deec
9da63b17283f25ec8e50a536810daff6474d26a9c9d65f2cf27b5cec214ef5de
GET /jss/login_files/prodPc_thumb_catIconHurricane.png HTTP/1.1
Host: byashi.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://byashi.com.br/jss/login.php?&sessionid=89c3db80c953d82230e950f270bca065&securessl=true
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 03 Apr 2018 02:50:24 GMT
accept-ranges: bytes
content-length: 3834
content-type: image/png
date: Tue, 29 Nov 2022 01:24:10 GMT
server: Apache
X-Firefox-Spdy: h2
byashi.com.br/jss/login_files/prodPc_thumb_catIconSnowstorm.png
192.185.210.37200 OK 4.4 kB URL HTTP/2 byashi.com.br/jss/login_files/prodPc_thumb_catIconSnowstorm.png
IP 192.185.210.37:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 33 x 33, 8-bit/color RGBA, non-interlaced\012- data
Hash b0b033585faa170be4fdde0ade5a58b2
7352610b5d16721efef1beedf7d6754cb97b2ee3
2055e31d6cf01947897f6d64779e62d9a0519fadac47f90d7bd11437cd967723
GET /jss/login_files/prodPc_thumb_catIconSnowstorm.png HTTP/1.1
Host: byashi.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://byashi.com.br/jss/login.php?&sessionid=89c3db80c953d82230e950f270bca065&securessl=true
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 03 Apr 2018 02:50:24 GMT
accept-ranges: bytes
content-length: 4391
content-type: image/png
date: Tue, 29 Nov 2022 01:24:10 GMT
server: Apache
X-Firefox-Spdy: h2
byashi.com.br/jss/login_files/prodPc_thumb_catIconFlooding.png
192.185.210.37200 OK 4.2 kB URL HTTP/2 byashi.com.br/jss/login_files/prodPc_thumb_catIconFlooding.png
IP 192.185.210.37:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 33 x 33, 8-bit/color RGBA, non-interlaced\012- data
Hash 5bb7a11fd18ec85fede89708ff8e54c2
be0f75186c9290c8fe78f1a15aefb3e3da6f82b7
75928dae3fb4a6556234e38b37d76bc0054adaf87b01eee1780f37e34aa1176f
GET /jss/login_files/prodPc_thumb_catIconFlooding.png HTTP/1.1
Host: byashi.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://byashi.com.br/jss/login.php?&sessionid=89c3db80c953d82230e950f270bca065&securessl=true
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 03 Apr 2018 02:50:24 GMT
accept-ranges: bytes
content-length: 4245
content-type: image/png
date: Tue, 29 Nov 2022 01:24:10 GMT
server: Apache
X-Firefox-Spdy: h2
byashi.com.br/jss/login_files/mkt_memberHome_exception.css
192.185.210.37200 OK 1.7 kB URL HTTP/2 byashi.com.br/jss/login_files/mkt_memberHome_exception.css
IP 192.185.210.37:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (5058), with no line terminators
Hash 8090ad6eb485a567f703e5e59a2313ff
bbdc417254d6636c2328600e79e2fa439a85cdac
51f111d8907dfc1cb2f31f73c7b3c50e88cb37d43a6ade3a050f381d883248ac
GET /jss/login_files/mkt_memberHome_exception.css HTTP/1.1
Host: byashi.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://byashi.com.br/jss/login.php?&sessionid=89c3db80c953d82230e950f270bca065&securessl=true
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 03 Apr 2018 02:50:24 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 1691
content-type: text/css
date: Tue, 29 Nov 2022 01:24:10 GMT
server: Apache
X-Firefox-Spdy: h2
byashi.com.br/jss/login_files/v3-normalize-ps-template.css
192.185.210.37200 OK 586 B URL HTTP/2 byashi.com.br/jss/login_files/v3-normalize-ps-template.css
IP 192.185.210.37:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (1074), with no line terminators
Hash 1ce2065b0828b1e54b0dddcf982c0df3
d3dd04b1f9edc2d29a37f9ae680eea99425784a6
d6dbbd836c774582b14fff789bfc92594397b79a5e30a73fc8cfde8e23b746fe
GET /jss/login_files/v3-normalize-ps-template.css HTTP/1.1
Host: byashi.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://byashi.com.br/jss/login.php?&sessionid=89c3db80c953d82230e950f270bca065&securessl=true
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 03 Apr 2018 02:50:24 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 586
content-type: text/css
date: Tue, 29 Nov 2022 01:24:10 GMT
server: Apache
X-Firefox-Spdy: h2
byashi.com.br/jss/login_files/v3-cards.css
192.185.210.37200 OK 929 B URL HTTP/2 byashi.com.br/jss/login_files/v3-cards.css
IP 192.185.210.37:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (2627), with no line terminators
Hash a447586bed4b92eae4dd107deafde379
d11a07eb1d8066a26579d064a4cb9b0259a1d7cb
8e050d3cb715e0313f1a36b857599ad43033a69a8910a151b219bea5530d7f06
GET /jss/login_files/v3-cards.css HTTP/1.1
Host: byashi.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://byashi.com.br/jss/login.php?&sessionid=89c3db80c953d82230e950f270bca065&securessl=true
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 03 Apr 2018 02:50:24 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 929
content-type: text/css
date: Tue, 29 Nov 2022 01:24:10 GMT
server: Apache
X-Firefox-Spdy: h2
byashi.com.br/jss/login_files/v3-link-farm.css
192.185.210.37200 OK 416 B URL HTTP/2 byashi.com.br/jss/login_files/v3-link-farm.css
IP 192.185.210.37:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (954), with no line terminators
Hash fd8c507b490f329ec8111e4a8bc73c30
50dab31c831b3fcf520a60a147eafb98458e8a9f
3facd518f5b9c13a89851230754590ff6b7d82b1bbe5f296552c7beced415836
GET /jss/login_files/v3-link-farm.css HTTP/1.1
Host: byashi.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://byashi.com.br/jss/login.php?&sessionid=89c3db80c953d82230e950f270bca065&securessl=true
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 03 Apr 2018 02:50:24 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 416
content-type: text/css
date: Tue, 29 Nov 2022 01:24:10 GMT
server: Apache
X-Firefox-Spdy: h2
byashi.com.br/jss/login_files/landingPage_ProspectHome.css
192.185.210.37200 OK 855 B URL HTTP/2 byashi.com.br/jss/login_files/landingPage_ProspectHome.css
IP 192.185.210.37:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (1924), with no line terminators
Hash ef9655c2108c36a48468ef9475b3660d
e3652fb51f717a1a505694aee0ceaae5c4f6429c
1c7b4b18f207d69047a9e2f563a5710f57452ef54bbcddee73af711e802cc087
GET /jss/login_files/landingPage_ProspectHome.css HTTP/1.1
Host: byashi.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://byashi.com.br/jss/login.php?&sessionid=89c3db80c953d82230e950f270bca065&securessl=true
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 03 Apr 2018 03:10:08 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 855
content-type: text/css
date: Tue, 29 Nov 2022 01:24:10 GMT
server: Apache
X-Firefox-Spdy: h2
push.services.mozilla.com/
34.208.34.131101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 34.208.34.131:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: HqOzfg337TiG5NaAt/dlXQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: dHvhumVMXWSz0Mo8JidjGu8x3A8=
byashi.com.br/jss/login_files/v3-brand-banner.css
192.185.210.37200 OK 2.9 kB URL HTTP/2 byashi.com.br/jss/login_files/v3-brand-banner.css
IP 192.185.210.37:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (9266), with no line terminators
Hash 46cc9149fad6e623a3556d239c54c410
60efa130dea08f5ac2f65e72bbd6a99f92308c13
7a989e17a0740ce7d15f9fbda081c3493f3ac61e2689e9faac244ce0e8a29f79
GET /jss/login_files/v3-brand-banner.css HTTP/1.1
Host: byashi.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://byashi.com.br/jss/login.php?&sessionid=89c3db80c953d82230e950f270bca065&securessl=true
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 03 Apr 2018 03:13:32 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 2929
content-type: text/css
date: Tue, 29 Nov 2022 01:24:10 GMT
server: Apache
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 17c9251f8ba70b81b8125fe62663bb02
a74b718f0b771124a67176bb1e555ad6bcc058b6
d75593736a6343634236915b30de716349ab0bda14c8a6102e3b3fb06233f0bb
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5777
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 01:24:10 GMT
Last-Modified: Mon, 28 Nov 2022 23:47:54 GMT
Server: ECS (ska/F711)
X-Cache: HIT
Content-Length: 471
byashi.com.br/jss/login_files/v3-wcm-common.css
192.185.210.37200 OK 1.4 kB URL HTTP/2 byashi.com.br/jss/login_files/v3-wcm-common.css
IP 192.185.210.37:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (3414), with no line terminators
Hash e5a7be7391dad653b0a1c3c465d63331
10a831904ae8feeb920bbf143bc87a5f9508e028
d595a447455044c34c867bff4b50499f427367dbb72fb6051fa91fd2046dc51e
GET /jss/login_files/v3-wcm-common.css HTTP/1.1
Host: byashi.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://byashi.com.br/jss/login.php?&sessionid=89c3db80c953d82230e950f270bca065&securessl=true
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 03 Apr 2018 03:14:24 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 1352
content-type: text/css
date: Tue, 29 Nov 2022 01:24:10 GMT
server: Apache
X-Firefox-Spdy: h2
byashi.com.br/jss/login_files/icon-car-100.svg
192.185.210.37200 OK 1.9 kB URL HTTP/2 byashi.com.br/jss/login_files/icon-car-100.svg
IP 192.185.210.37:0
ASN #46606 UNIFIEDLAYER-AS-1
File type SVG Scalable Vector Graphics image\012- SVG XML document\012- XML 1.0 document text\012- SVG XML document\012- XML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash 458e61d47ff9908a693abfe79e83d078
6a3a069548265c450430385653edfd2881b23dfb
7c124e02ae76bb3c92b86be6b38d6a94a2cc75b94c40ecd8a0089ba850987848
Analyzer Verdict Alert fortinet Phishing
GET /jss/login_files/icon-car-100.svg HTTP/1.1
Host: byashi.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://byashi.com.br/jss/login.php?&sessionid=89c3db80c953d82230e950f270bca065&securessl=true
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 03 Apr 2018 02:50:24 GMT
accept-ranges: bytes
content-length: 1868
content-type: image/svg+xml
date: Tue, 29 Nov 2022 01:24:10 GMT
server: Apache
X-Firefox-Spdy: h2
byashi.com.br/jss/login_files/SocMedIcon_twitter_v2.png
192.185.210.37200 OK 1.4 kB URL HTTP/2 byashi.com.br/jss/login_files/SocMedIcon_twitter_v2.png
IP 192.185.210.37:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 35 x 35, 8-bit/color RGBA, non-interlaced\012- data
Hash 0e0c7aaf13e0181348f20f30b1712c56
4c7bc4014af6c2eb77caadb649f8c32c5fd54d0d
ad5980cb9d5ad82571e49366d26c086e2c2bbe7efe6feb729c12f9594948ba21
GET /jss/login_files/SocMedIcon_twitter_v2.png HTTP/1.1
Host: byashi.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://byashi.com.br/jss/login.php?&sessionid=89c3db80c953d82230e950f270bca065&securessl=true
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 03 Apr 2018 02:50:24 GMT
accept-ranges: bytes
content-length: 1415
content-type: image/png
date: Tue, 29 Nov 2022 01:24:10 GMT
server: Apache
X-Firefox-Spdy: h2
byashi.com.br/jss/login_files/prodPc_thumb_catIconTornado.png
192.185.210.37200 OK 3.6 kB URL HTTP/2 byashi.com.br/jss/login_files/prodPc_thumb_catIconTornado.png
IP 192.185.210.37:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 33 x 33, 8-bit/color RGBA, non-interlaced\012- data
Hash ad4c673f5c59e2b1cba356b646bc1af1
ae468600a84ff31ceaffe31820d0f52589d080b1
6f06555b461438ac44370b3bb1321a413f4727e4ee3bd24c668e8f26f5d2eeb9
GET /jss/login_files/prodPc_thumb_catIconTornado.png HTTP/1.1
Host: byashi.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://byashi.com.br/jss/login.php?&sessionid=89c3db80c953d82230e950f270bca065&securessl=true
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 03 Apr 2018 02:50:24 GMT
accept-ranges: bytes
content-length: 3560
content-type: image/png
date: Tue, 29 Nov 2022 01:24:10 GMT
server: Apache
X-Firefox-Spdy: h2
byashi.com.br/jss/login_files/SocMedIcon_more.png
192.185.210.37200 OK 3.8 kB URL HTTP/2 byashi.com.br/jss/login_files/SocMedIcon_more.png
IP 192.185.210.37:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 35 x 35, 8-bit/color RGBA, non-interlaced\012- data
Hash f11c723f01e6df49c1df767355e16194
e2a1ab64705be9f3194a4ba1ec5f85c2f69692d5
fda9dc9b1feb432da051add9ca8ccdcdedfe460e5e1be4df5f3d17e0bde69c87
GET /jss/login_files/SocMedIcon_more.png HTTP/1.1
Host: byashi.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://byashi.com.br/jss/login.php?&sessionid=89c3db80c953d82230e950f270bca065&securessl=true
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 03 Apr 2018 02:50:24 GMT
accept-ranges: bytes
content-length: 3765
content-type: image/png
date: Tue, 29 Nov 2022 01:24:10 GMT
server: Apache
X-Firefox-Spdy: h2
byashi.com.br/jss/login_files/prodPc_thumb_catIconWildfire.png
192.185.210.37200 OK 3.9 kB URL HTTP/2 byashi.com.br/jss/login_files/prodPc_thumb_catIconWildfire.png
IP 192.185.210.37:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 33 x 33, 8-bit/color RGBA, non-interlaced\012- data
Hash 1119b6dc58d645ed0cd0c003294a9edf
d23519ebbd0da56e91ba549c2660a9c7a81596cd
f99ebf59293dcd9103529732717462f05efc783427b4a9695da1d7e6ec446b22
GET /jss/login_files/prodPc_thumb_catIconWildfire.png HTTP/1.1
Host: byashi.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://byashi.com.br/jss/login.php?&sessionid=89c3db80c953d82230e950f270bca065&securessl=true
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 03 Apr 2018 02:50:24 GMT
accept-ranges: bytes
content-length: 3905
content-type: image/png
date: Tue, 29 Nov 2022 01:24:10 GMT
server: Apache
X-Firefox-Spdy: h2
byashi.com.br/jss/login_files/pub-home-brand-banner-flourish.svg
192.185.210.37200 OK 586 B URL HTTP/2 byashi.com.br/jss/login_files/pub-home-brand-banner-flourish.svg
IP 192.185.210.37:0
ASN #46606 UNIFIEDLAYER-AS-1
File type SVG Scalable Vector Graphics image\012- SVG XML document\012- XML 1.0 document text\012- SVG XML document\012- XML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash bcf08b4c2f94a593d44b1d546fc26e53
55b382397eb820339f9f7fb88f2ebccd6ce51fad
2e3986729f3b89c9a85cefc59080f487e6eea82cbf965549be957a402157751b
Analyzer Verdict Alert fortinet Phishing
GET /jss/login_files/pub-home-brand-banner-flourish.svg HTTP/1.1
Host: byashi.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://byashi.com.br/jss/login.php?&sessionid=89c3db80c953d82230e950f270bca065&securessl=true
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 03 Apr 2018 02:50:24 GMT
accept-ranges: bytes
content-length: 586
content-type: image/svg+xml
date: Tue, 29 Nov 2022 01:24:10 GMT
server: Apache
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 17c9251f8ba70b81b8125fe62663bb02
a74b718f0b771124a67176bb1e555ad6bcc058b6
d75593736a6343634236915b30de716349ab0bda14c8a6102e3b3fb06233f0bb
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5777
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 01:24:10 GMT
Last-Modified: Mon, 28 Nov 2022 23:47:54 GMT
Server: ECS (ska/F711)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 17c9251f8ba70b81b8125fe62663bb02
a74b718f0b771124a67176bb1e555ad6bcc058b6
d75593736a6343634236915b30de716349ab0bda14c8a6102e3b3fb06233f0bb
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4553
Cache-Control: max-age=90667
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 01:24:10 GMT
Etag: "63840c9c-1d7"
Expires: Wed, 30 Nov 2022 02:35:17 GMT
Last-Modified: Mon, 28 Nov 2022 01:19:24 GMT
Server: ECS (ska/F71D)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 17c9251f8ba70b81b8125fe62663bb02
a74b718f0b771124a67176bb1e555ad6bcc058b6
d75593736a6343634236915b30de716349ab0bda14c8a6102e3b3fb06233f0bb
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2811
Cache-Control: max-age=88925
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 01:24:10 GMT
Etag: "63840c9c-1d7"
Expires: Wed, 30 Nov 2022 02:06:15 GMT
Last-Modified: Mon, 28 Nov 2022 01:19:24 GMT
Server: ECS (ska/F714)
X-Cache: HIT
Content-Length: 471
content.usaa.com/mcontent/static_assets/Media/background_general_fb.png?cacheid=2934981489_p
104.110.3.249200 OK 2.8 kB URL HTTP/2 content.usaa.com/mcontent/static_assets/Media/background_general_fb.png?cacheid=2934981489_p
IP 104.110.3.249:0
File type PNG image data, 1 x 700, 8-bit/color RGB, non-interlaced\012- data
Hash 9276c35dc16aecb16790d9c2a262ef70
072b3f31ddd9e514151c83e913d9a59d30ab7f1e
e2e04a8e937f5b74a4c50cb7592a8e0bba54b40818d44e43ffd5c40c6b4fe72a
GET /mcontent/static_assets/Media/background_general_fb.png?cacheid=2934981489_p HTTP/1.1
Host: content.usaa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://byashi.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
last-modified: Mon, 16 Sep 2013 11:24:14 GMT
etag: "b13-4e67e71a8d380"
accept-ranges: bytes
content-length: 2835
content-type: image/png
cache-control: max-age=550168
date: Tue, 29 Nov 2022 01:24:10 GMT
set-cookie: akmachineid=akma9R0/xdv5v7DGFs+smJS3kV7YGrJl7ihl89SopLhDu+PohOEsvR/STtUYUgV1xj9Mb3mqYMvj0UHLYzUNzQ8bXA==; expires=Fri, 26-Nov-2032 01:24:10 GMT; Secure; Path=/; domain=.usaa.com
akusaa=akusaaWLHRRPksa72jZ6ks4xDHixLV4+vEPKhdO8gL7Hxa3U2Q1DnKF6eW2AZEV94gxe0qfwhNHynunvbRzDGaX+pbYQ==; expires=Fri, 26-Nov-2032 01:24:10 GMT; Secure; Path=/; domain=.usaa.com
strict-transport-security: max-age=31536000
server: USAA-Honesty
X-Firefox-Spdy: h2
content.usaa.com/mcontent/static_assets/Media/usaa-sprite-globalNav_v2.png?cacheid=2167270257_p
104.110.3.249200 OK 58 kB URL HTTP/2 content.usaa.com/mcontent/static_assets/Media/usaa-sprite-globalNav_v2.png?cacheid=2167270257_p
IP 104.110.3.249:0
File type PNG image data, 962 x 270, 8-bit/color RGBA, non-interlaced\012- data
Hash 9617699ab943557ecbe3b8eae10ffe09
461f5561a94f24cdd1ac6d400bf931c5259949f9
522a5fe0b1921acbaa0925b2a50fa141b0719797d5c552ffc150415c7c44d23b
GET /mcontent/static_assets/Media/usaa-sprite-globalNav_v2.png?cacheid=2167270257_p HTTP/1.1
Host: content.usaa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://byashi.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 13 Feb 2015 21:43:34 GMT
etag: "e14a-50eff20d78d80"
accept-ranges: bytes
content-length: 57674
content-type: image/png
cache-control: max-age=586486
date: Tue, 29 Nov 2022 01:24:10 GMT
set-cookie: akmachineid=akmaV3W00ffsPcMUmAHfE7Tv2UFsotIkXp/Ez3v0YEU6r9oRMm5PpwfwRIiL9/bdGg5nvC+qeS0BhRcpuDFxmCgLJA==; expires=Fri, 26-Nov-2032 01:24:10 GMT; Secure; Path=/; domain=.usaa.com
akusaa=akusaatQE0jEsoqd08AxtlZqaVFf0fln2IkD8El3qTWPM/jxeCdTwnOgZ34ToNNQJe/b4SPa32Y3WIAgh7jN/P27oSRg==; expires=Fri, 26-Nov-2032 01:24:10 GMT; Secure; Path=/; domain=.usaa.com
strict-transport-security: max-age=31536000
server: USAA-Honesty
X-Firefox-Spdy: h2
content.usaa.com/mcontent/static_assets/Fonts/F68DD4439278D0467.woff2?cacheid=1757877387_p
104.110.3.249200 OK 23 kB URL HTTP/2 content.usaa.com/mcontent/static_assets/Fonts/F68DD4439278D0467.woff2?cacheid=1757877387_p
IP 104.110.3.249:0
File type Web Open Font Format (Version 2), TrueType, length 22892, version 1.19726\012- data
Hash 890566a4fd4453d50c19ab3c37ddf1dc
f2a9afc95e99600061027305ef229f1d8802713d
b47c74b16a02f8df070e4bd91b1b542ba2765624e8ec56a59305a91559a83682
GET /mcontent/static_assets/Fonts/F68DD4439278D0467.woff2?cacheid=1757877387_p HTTP/1.1
Host: content.usaa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://byashi.com.br
Connection: keep-alive
Referer: https://byashi.com.br/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 28 Nov 2017 23:28:39 GMT
etag: "596c-55f1360f157c0"
accept-ranges: bytes
content-length: 22892
content-type: font/woff2
cache-control: max-age=552448
date: Tue, 29 Nov 2022 01:24:10 GMT
set-cookie: akmachineid=akmakIT8URmkVbhiPHLGiFTJhjQq1bQVF87H/yrjc/LL0UxE6ICYoBmBgZ31X7Ybp0Jod5Nq8COzmkCqXWVGyXqo0Q==; expires=Fri, 26-Nov-2032 01:24:10 GMT; Secure; Path=/; domain=.usaa.com
akusaa=akusaas5df+XcJoO7SWYM1/jT8JA1w54xejAm2qCEybCcCILZxvK73MM8CM/BK8ZchfVoD1zLEGCR7syzBW84l+Zfvrg==; expires=Fri, 26-Nov-2032 01:24:10 GMT; Secure; Path=/; domain=.usaa.com
strict-transport-security: max-age=31536000
server: USAA-Honesty
X-Firefox-Spdy: h2
content.usaa.com/mcontent/static_assets/Fonts/9ECBC8FFB535D0532.woff2?cacheid=579254377_p
104.110.3.249200 OK 22 kB URL HTTP/2 content.usaa.com/mcontent/static_assets/Fonts/9ECBC8FFB535D0532.woff2?cacheid=579254377_p
IP 104.110.3.249:0
File type Web Open Font Format (Version 2), TrueType, length 22088, version 1.19726\012- data
Hash 3978a25659ccf40e136fefc4a3f1d4af
6e8f8d356dd36e89fe2059b4bff6e58869333f68
947dad01228bb6787ad0218540575dfafe48c76c0623fcb492b6d0b0cfc62e0b
GET /mcontent/static_assets/Fonts/9ECBC8FFB535D0532.woff2?cacheid=579254377_p HTTP/1.1
Host: content.usaa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://byashi.com.br
Connection: keep-alive
Referer: https://byashi.com.br/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
last-modified: Tue, 28 Nov 2017 23:28:20 GMT
etag: "5648-55f135fcf6d00"
accept-ranges: bytes
content-length: 22088
content-type: font/woff2
cache-control: max-age=552320
date: Tue, 29 Nov 2022 01:24:10 GMT
set-cookie: akmachineid=akma07SACQPgkGywZyg8A1BtrZ8wK+SlRxNPlWkQpNtg87jNYYwdn6OiV37ruFYq1ji0Pobn01Scmx2SEJKzrWc/EA==; expires=Fri, 26-Nov-2032 01:24:10 GMT; Secure; Path=/; domain=.usaa.com
akusaa=akusaazOK7NkpsRkyCE2/Iju6RWZ2WRDbpo9bnzvQRjyqtBrkJg2iq3e3nIjq63jfyWK/F1quBiw9sJY/Am7+m+en50g==; expires=Fri, 26-Nov-2032 01:24:10 GMT; Secure; Path=/; domain=.usaa.com
strict-transport-security: max-age=31536000
server: USAA-Honesty
X-Firefox-Spdy: h2
content.usaa.com/mcontent/static_assets/Media/enterprise_nav_globalnav_sprite.svg?cacheid=3121332548_p
104.110.3.249200 OK 3.1 kB URL HTTP/2 content.usaa.com/mcontent/static_assets/Media/enterprise_nav_globalnav_sprite.svg?cacheid=3121332548_p
IP 104.110.3.249:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document, ASCII text, with CRLF line terminators
Hash 1b25e4405d690c5c78d6111329f6b230
3d6d16d702332dcd4f60ca8306e59834813978cb
32a78d62b883ff9ad4da5253ea3390908f472a71835a46d387b88bcfda209ea6
GET /mcontent/static_assets/Media/enterprise_nav_globalnav_sprite.svg?cacheid=3121332548_p HTTP/1.1
Host: content.usaa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://byashi.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
last-modified: Mon, 14 Dec 2015 20:44:26 GMT
etag: "c2a-526e1bd1f5e80"
accept-ranges: bytes
content-length: 3114
content-type: image/svg+xml
cache-control: max-age=575905
date: Tue, 29 Nov 2022 01:24:10 GMT
set-cookie: akmachineid=akma5S38h+Qxkb50wchXiD4WSRP6AVrtKSOlZlN8/eB81KMwCpwK8LGLkmEB4upBT4q3kaDBqsEK1e5egAl5FJ5IfQ==; expires=Fri, 26-Nov-2032 01:24:10 GMT; Secure; Path=/; domain=.usaa.com
akusaa=akusaa75jeQf4ehKK7lQCco0u45ZKuBst+w9ggxNYMwJ49hSsPYPD7HGy+gUO0BV4ynN3xFqlWNW3AHrxPQAEM5WMMAQ==; expires=Fri, 26-Nov-2032 01:24:10 GMT; Secure; Path=/; domain=.usaa.com
strict-transport-security: max-age=31536000
server: USAA-Honesty
X-Firefox-Spdy: h2
content.usaa.com/mcontent/static_assets/Fonts/CC8B46FD41C3A5502.woff2?cacheid=2159110100_p
104.110.3.249200 OK 22 kB URL HTTP/2 content.usaa.com/mcontent/static_assets/Fonts/CC8B46FD41C3A5502.woff2?cacheid=2159110100_p
IP 104.110.3.249:0
File type Web Open Font Format (Version 2), TrueType, length 21788, version 1.19726\012- data
Hash 99dfcf935e69f0fd3bf10a8f9920d71f
0329a65bbf246a88dd421520a3b43676d8cd1b53
6920b95f2b38b405f9932005eb14a44556c32fec22efb5d7a58e22f959a13282
GET /mcontent/static_assets/Fonts/CC8B46FD41C3A5502.woff2?cacheid=2159110100_p HTTP/1.1
Host: content.usaa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://byashi.com.br
Connection: keep-alive
Referer: https://byashi.com.br/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
last-modified: Tue, 28 Nov 2017 23:28:34 GMT
etag: "551c-55f1360a50c80"
accept-ranges: bytes
content-length: 21788
content-type: font/woff2
cache-control: max-age=552009
date: Tue, 29 Nov 2022 01:24:10 GMT
set-cookie: akmachineid=akmavwZydupuQ3u/B6TqBtTGUgUM1ZbNVLEu7/GmJH3C1cEtqRDCQxMaZJzJr3l8hBNvVpe7HQ882cP9t09QgVkydw==; expires=Fri, 26-Nov-2032 01:24:10 GMT; Secure; Path=/; domain=.usaa.com
akusaa=akusaa0J+oEhR8uJ1V+GyF6TBv0avVNJhIJtBdl+xY+epKOKEi6D3zXzt+Hf/oq57BU/38FYDN9x0TBPrtUPQiqfNyng==; expires=Fri, 26-Nov-2032 01:24:10 GMT; Secure; Path=/; domain=.usaa.com
strict-transport-security: max-age=31536000
server: USAA-Honesty
X-Firefox-Spdy: h2
content.usaa.com/mcontent/static_assets/Fonts/12C383965421BC56F.woff2?cacheid=794739246_p
104.110.3.249200 OK 14 kB URL HTTP/2 content.usaa.com/mcontent/static_assets/Fonts/12C383965421BC56F.woff2?cacheid=794739246_p
IP 104.110.3.249:0
File type Web Open Font Format (Version 2), CFF, length 14408, version 1.13173\012- data
Hash 9cfc4e859f5ef4d0ab77df4f8698a7ab
1aa7edc7b3e7da125452b7fad636ef42fb723373
dbcf49bfa4184ed509854e05cd53df0426b5ea1856f6f4aad1f93b2d355d7e1c
GET /mcontent/static_assets/Fonts/12C383965421BC56F.woff2?cacheid=794739246_p HTTP/1.1
Host: content.usaa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://byashi.com.br
Connection: keep-alive
Referer: https://byashi.com.br/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 28 Nov 2017 23:27:37 GMT
etag: "3848-55f135d3f4c40"
accept-ranges: bytes
content-length: 14408
content-type: font/woff2
cache-control: max-age=576964
date: Tue, 29 Nov 2022 01:24:10 GMT
set-cookie: akmachineid=akmau5YoyAeN9nl7BVy9rOap0Mr2ve2vJpklSDG0uRTyMeEDQ4ABB/7Xnsl9oIBplD88rt/YRAd3LGAKlP17p9NhLg==; expires=Fri, 26-Nov-2032 01:24:10 GMT; Secure; Path=/; domain=.usaa.com
akusaa=akusaam61hpAiXu8arrwT4Je1qGNLv3gTW78YI2x/ieP2sA9uZUkEM3Zz3n+w32TRHVaf968QDnYGNHOspPUDnWVn8gg==; expires=Fri, 26-Nov-2032 01:24:10 GMT; Secure; Path=/; domain=.usaa.com
strict-transport-security: max-age=31536000
server: USAA-Honesty
X-Firefox-Spdy: h2
content.usaa.com/mcontent/static_assets/Fonts/F68DD4439278D0467.woff?cacheid=1249096365_p
104.110.3.249200 OK 29 kB URL HTTP/2 content.usaa.com/mcontent/static_assets/Fonts/F68DD4439278D0467.woff?cacheid=1249096365_p
IP 104.110.3.249:0
File type Web Open Font Format, TrueType, length 28825, version 1.0\012- data
Hash 027d2b41b8117a0170ad5608a28f8447
f2a742f624fb9e46e9b56ff85e0d57572c193d87
9b510b9bfbcfeb026714418a2c004399ca1ab07385bd782e8ede083b94689f27
GET /mcontent/static_assets/Fonts/F68DD4439278D0467.woff?cacheid=1249096365_p HTTP/1.1
Host: content.usaa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://byashi.com.br
Connection: keep-alive
Referer: https://byashi.com.br/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 28 Nov 2017 23:28:37 GMT
etag: "7099-55f1360d2d340"
accept-ranges: bytes
content-length: 28825
content-type: text/plain
cache-control: max-age=566970
date: Tue, 29 Nov 2022 01:24:10 GMT
set-cookie: akmachineid=akmaQaDy5uqQiiV+aYmYPa4Eh9qE2pxZuJ1lwoF9tZvkT/ejxBX6TTl3S2o9DDpfAsTqE9K4k6YlNzqLJ27ujLg/Eg==; expires=Fri, 26-Nov-2032 01:24:10 GMT; Secure; Path=/; domain=.usaa.com
akusaa=akusaa05d7RhA6b0Beh6XpRRhQ5uKiplwl8I33hInPdGg/9JU/OXtL4twVhbXuTZFBbJSGzqTKoILhH+EuzKf/Klk+3w==; expires=Fri, 26-Nov-2032 01:24:10 GMT; Secure; Path=/; domain=.usaa.com
strict-transport-security: max-age=31536000
server: USAA-Honesty
X-Firefox-Spdy: h2
content.usaa.com/mcontent/static_assets/Fonts/9C7F15704715916A9.woff2?cacheid=172997152_p
104.110.3.249200 OK 15 kB URL HTTP/2 content.usaa.com/mcontent/static_assets/Fonts/9C7F15704715916A9.woff2?cacheid=172997152_p
IP 104.110.3.249:0
File type Web Open Font Format (Version 2), CFF, length 14912, version 1.13173\012- data
Hash 4016bf4a6f8a2d89febf43d4ffe0ff99
0423953f1962d1c157a9786fe613fd2615693b0f
9ea54106530de63a9c33d3eb5a43d7dd0051c1e876ee8be5b49b73601eb10f1b
GET /mcontent/static_assets/Fonts/9C7F15704715916A9.woff2?cacheid=172997152_p HTTP/1.1
Host: content.usaa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://byashi.com.br
Connection: keep-alive
Referer: https://byashi.com.br/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 28 Nov 2017 23:28:17 GMT
etag: "3a40-55f135fa1a640"
accept-ranges: bytes
content-length: 14912
content-type: font/woff2
cache-control: max-age=583025
date: Tue, 29 Nov 2022 01:24:11 GMT
set-cookie: akmachineid=akmarV0dxYySNZONj7l82nR4bownbcfIvohJ6mmrYyyAE4dUlIeO85XAkTzKYOka0mwQrHqXK6Oa2rjJX6Z84CjMgA==; expires=Fri, 26-Nov-2032 01:24:11 GMT; Secure; Path=/; domain=.usaa.com
akusaa=akusaabaxHxhH78CwS5VvpyAa4HDCpZSz2DG23ugqIL/bOPdlD/6K2OLk8tUvouzY2hyEJw5G5TNGxy62ZKR1xrF9KJw==; expires=Fri, 26-Nov-2032 01:24:11 GMT; Secure; Path=/; domain=.usaa.com
strict-transport-security: max-age=31536000
server: USAA-Integrity
X-Firefox-Spdy: h2
content.usaa.com/mcontent/static_assets/Fonts/E83D71A074DF776F4.woff2?cacheid=1643979810_p
104.110.3.249200 OK 22 kB URL HTTP/2 content.usaa.com/mcontent/static_assets/Fonts/E83D71A074DF776F4.woff2?cacheid=1643979810_p
IP 104.110.3.249:0
File type Web Open Font Format (Version 2), TrueType, length 21772, version 1.19726\012- data
Hash 44b3494f8911fb677721629bb389f472
bc7a73021fea8900614b3645113b03c582067928
008889d286feafdf1773721c82309aeef1573bc92096f12e43674ddaae27b1c6
GET /mcontent/static_assets/Fonts/E83D71A074DF776F4.woff2?cacheid=1643979810_p HTTP/1.1
Host: content.usaa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://byashi.com.br
Connection: keep-alive
Referer: https://byashi.com.br/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 28 Nov 2017 23:28:49 GMT
etag: "550c-55f136189ee40"
accept-ranges: bytes
content-length: 21772
content-type: font/woff2
cache-control: max-age=547146
date: Tue, 29 Nov 2022 01:24:11 GMT
set-cookie: akmachineid=akmap+KmaKd52FC9Yr61EnlEYBRrSlXqvb2ae9rQCEbjh6gv3IYoYtgMg9kCh/r5GeXog4fzc15jgQ09txJoKhPtlA==; expires=Fri, 26-Nov-2032 01:24:11 GMT; Secure; Path=/; domain=.usaa.com
akusaa=akusaagVK77QxQMsyh6VIvHoPhqqu/Y/B22fdJin/WiT7Z0VjY9h3DU9/TkqS3ibq5m+Okg8upRHb6nm5JxeZHMQ33Zg==; expires=Fri, 26-Nov-2032 01:24:11 GMT; Secure; Path=/; domain=.usaa.com
strict-transport-security: max-age=31536000
server: USAA-Integrity
X-Firefox-Spdy: h2
byashi.com.br/jss/login_files/icon-house-100.svg
192.185.210.37200 OK 942 B URL HTTP/2 byashi.com.br/jss/login_files/icon-house-100.svg
IP 192.185.210.37:0
ASN #46606 UNIFIEDLAYER-AS-1
File type SVG Scalable Vector Graphics image\012- SVG XML document\012- XML 1.0 document text\012- SVG XML document\012- XML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash adf624a91e9783ad36ae01f047612024
064a6f53f114346d970771d48d01c98ab6fc1254
7d75d05fce155dd2de68d3e0b2e4ee29a1d3a729d3a737faab3a2ed87af8a24c
Analyzer Verdict Alert fortinet Phishing
GET /jss/login_files/icon-house-100.svg HTTP/1.1
Host: byashi.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://byashi.com.br/jss/login.php?&sessionid=89c3db80c953d82230e950f270bca065&securessl=true
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 03 Apr 2018 02:50:24 GMT
accept-ranges: bytes
content-length: 942
content-type: image/svg+xml
date: Tue, 29 Nov 2022 01:24:10 GMT
server: Apache
X-Firefox-Spdy: h2
byashi.com.br/jss/login_files/SocMedIcon_facebook_v2.png
192.185.210.37200 OK 1.3 kB URL HTTP/2 byashi.com.br/jss/login_files/SocMedIcon_facebook_v2.png
IP 192.185.210.37:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 35 x 35, 8-bit/color RGBA, non-interlaced\012- data
Hash b92edde73a19bf66494978bec90968ff
3c783d2217ce302a5d916b24360743a6a50e4ec7
e9a681648676dcb7d958f77bed911c7a8a30dabe8ef0265b5ee894205c8aef60
GET /jss/login_files/SocMedIcon_facebook_v2.png HTTP/1.1
Host: byashi.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://byashi.com.br/jss/login.php?&sessionid=89c3db80c953d82230e950f270bca065&securessl=true
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 03 Apr 2018 02:50:24 GMT
accept-ranges: bytes
content-length: 1304
content-type: image/png
date: Tue, 29 Nov 2022 01:24:10 GMT
server: Apache
X-Firefox-Spdy: h2
content.usaa.com/mcontent/static_assets/Fonts/9ECBC8FFB535D0532.woff?cacheid=2704893946_p
104.110.3.249200 OK 28 kB URL HTTP/2 content.usaa.com/mcontent/static_assets/Fonts/9ECBC8FFB535D0532.woff?cacheid=2704893946_p
IP 104.110.3.249:0
File type Web Open Font Format, TrueType, length 28201, version 1.0\012- data
Hash 48a2c0645c1a1b0af7f2f961b448dcc9
e3e70317a9d5a996a05e08ffb0c92bb12600c9b3
9bdae78a8c509f414cffdb7fee422988979841a09925b891b95a10d9088bd75f
GET /mcontent/static_assets/Fonts/9ECBC8FFB535D0532.woff?cacheid=2704893946_p HTTP/1.1
Host: content.usaa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://byashi.com.br
Connection: keep-alive
Referer: https://byashi.com.br/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 28 Nov 2017 23:28:19 GMT
etag: "6e29-55f135fc02ac0"
accept-ranges: bytes
content-length: 28201
content-type: text/plain
cache-control: max-age=577353
date: Tue, 29 Nov 2022 01:24:11 GMT
set-cookie: akmachineid=akmaHM3LwjaxHhh+M1I9rLhJE581bIy6Js6YxwZui+4PIvD4HQ4nAO8LlV3JpVnLUOovRlwcYf5IOqEtc8zkEjSayw==; expires=Fri, 26-Nov-2032 01:24:11 GMT; Secure; Path=/; domain=.usaa.com
akusaa=akusaawWBOruB4iNXYrnrQuH33Rw0kTgInxY2YdYtwBM//OCSbwXs0KttRSc74M82yRKL9wP2Z2zZ0S48JK3YwX02wew==; expires=Fri, 26-Nov-2032 01:24:11 GMT; Secure; Path=/; domain=.usaa.com
strict-transport-security: max-age=31536000
server: USAA-Integrity
X-Firefox-Spdy: h2
content.usaa.com/mcontent/static_assets/Fonts/9C7F15704715916A9.woff?cacheid=2612443474_p
104.110.3.249200 OK 17 kB URL HTTP/2 content.usaa.com/mcontent/static_assets/Fonts/9C7F15704715916A9.woff?cacheid=2612443474_p
IP 104.110.3.249:0
File type Web Open Font Format, CFF, length 17443, version 1.0\012- data
Hash 0ae90578ca1e9d134d44a1a3282bae64
5e6e22ae5a59cda1c0876d3376a1656e866d7e3b
73494b42cbe09cef2382099e45afd65dbf99af4ab4ced0072be19163ff748846
GET /mcontent/static_assets/Fonts/9C7F15704715916A9.woff?cacheid=2612443474_p HTTP/1.1
Host: content.usaa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://byashi.com.br
Connection: keep-alive
Referer: https://byashi.com.br/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 28 Nov 2017 23:28:14 GMT
etag: "4423-55f135f73df80"
accept-ranges: bytes
content-length: 17443
content-type: text/plain
cache-control: max-age=599820
date: Tue, 29 Nov 2022 01:24:11 GMT
set-cookie: akmachineid=akmaWPaCYD4ij1QOrC+N4UcQ9E1TXGP8YWK/+SNnaqGaZlZQQ7neq59p6AFvZp2zagOOz9VSdOFneXSl+MZh1TVLFg==; expires=Fri, 26-Nov-2032 01:24:11 GMT; Secure; Path=/; domain=.usaa.com
akusaa=akusaah5PP4wF/qR+1/wRI4BllFd2mEqbo1V8j1dR37RC0rYK6r2f6Czt1c11j7B5gmqLVNOhj+ceVn32y1v1ISwwDkA==; expires=Fri, 26-Nov-2032 01:24:11 GMT; Secure; Path=/; domain=.usaa.com
strict-transport-security: max-age=31536000
server: USAA-Integrity
X-Firefox-Spdy: h2
byashi.com.br/jss/login_files/SocMedIcon_youtube_v2.png
192.185.210.37200 OK 1.4 kB URL HTTP/2 byashi.com.br/jss/login_files/SocMedIcon_youtube_v2.png
IP 192.185.210.37:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 35 x 35, 8-bit/color RGBA, non-interlaced\012- data
Hash b17aee805c95fc4762e350c8875f1182
f33292c1ae2e547174498216f82bee07f0c6772e
d317c2e6324cdd35249a3d5b6370b68d5b018fdddecc1dec0b9660f2affff0bd
GET /jss/login_files/SocMedIcon_youtube_v2.png HTTP/1.1
Host: byashi.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://byashi.com.br/jss/login.php?&sessionid=89c3db80c953d82230e950f270bca065&securessl=true
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 03 Apr 2018 02:50:24 GMT
accept-ranges: bytes
content-length: 1434
content-type: image/png
date: Tue, 29 Nov 2022 01:24:10 GMT
server: Apache
X-Firefox-Spdy: h2
byashi.com.br/jss/login_files/usaa-sprite-globalNav_v2.png
192.185.210.37200 OK 58 kB URL HTTP/2 byashi.com.br/jss/login_files/usaa-sprite-globalNav_v2.png
IP 192.185.210.37:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 962 x 270, 8-bit/color RGBA, non-interlaced\012- data
Hash 9617699ab943557ecbe3b8eae10ffe09
461f5561a94f24cdd1ac6d400bf931c5259949f9
522a5fe0b1921acbaa0925b2a50fa141b0719797d5c552ffc150415c7c44d23b
GET /jss/login_files/usaa-sprite-globalNav_v2.png HTTP/1.1
Host: byashi.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://byashi.com.br/jss/login.php?&sessionid=89c3db80c953d82230e950f270bca065&securessl=true
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 03 Apr 2018 02:50:24 GMT
accept-ranges: bytes
content-length: 57674
content-type: image/png
date: Tue, 29 Nov 2022 01:24:10 GMT
server: Apache
X-Firefox-Spdy: h2
byashi.com.br/jss/login_files/icon-bank-100.svg
192.185.210.37200 OK 1.0 kB URL HTTP/2 byashi.com.br/jss/login_files/icon-bank-100.svg
IP 192.185.210.37:0
ASN #46606 UNIFIEDLAYER-AS-1
File type SVG Scalable Vector Graphics image\012- SVG XML document\012- XML 1.0 document text\012- SVG XML document\012- XML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash 4097270f68a2baa0bcedb6c0ebe832a4
1a0c9cfc06e6fc9a21cece375ed23634e94dddb4
95fb4eab3bcc02b79173e84cd85d8ce146009756430002cadad7676605500cbd
Analyzer Verdict Alert fortinet Phishing
GET /jss/login_files/icon-bank-100.svg HTTP/1.1
Host: byashi.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://byashi.com.br/jss/login.php?&sessionid=89c3db80c953d82230e950f270bca065&securessl=true
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 03 Apr 2018 02:50:24 GMT
accept-ranges: bytes
content-length: 1039
content-type: image/svg+xml
date: Tue, 29 Nov 2022 01:24:10 GMT
server: Apache
X-Firefox-Spdy: h2
byashi.com.br/jss/login_files/icon-dollar-circle-100.svg
192.185.210.37200 OK 1.5 kB URL HTTP/2 byashi.com.br/jss/login_files/icon-dollar-circle-100.svg
IP 192.185.210.37:0
ASN #46606 UNIFIEDLAYER-AS-1
File type SVG Scalable Vector Graphics image\012- SVG XML document\012- XML 1.0 document text\012- SVG XML document\012- XML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash f34c880eb307aa0d22b197f2382782f0
751de7c71aceb234159c66c641a6897e05e5b516
954285e7584bf2cc1747d1227a9537f365007c4717fb732708f1245e8679695f
Analyzer Verdict Alert fortinet Phishing
GET /jss/login_files/icon-dollar-circle-100.svg HTTP/1.1
Host: byashi.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://byashi.com.br/jss/login.php?&sessionid=89c3db80c953d82230e950f270bca065&securessl=true
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 03 Apr 2018 02:50:24 GMT
accept-ranges: bytes
content-length: 1476
content-type: image/svg+xml
date: Tue, 29 Nov 2022 01:24:10 GMT
server: Apache
X-Firefox-Spdy: h2
byashi.com.br/jss/login_files/ehl-blk.svg
192.185.210.37200 OK 3.8 kB URL HTTP/2 byashi.com.br/jss/login_files/ehl-blk.svg
IP 192.185.210.37:0
ASN #46606 UNIFIEDLAYER-AS-1
File type SVG Scalable Vector Graphics image\012- HTML document text\012- HTML document, ASCII text, with very long lines (3771), with no line terminators
Hash b59e55d9d830ec44fcf62cc98aaeff08
b7aa9504db4970ba5724ef2916f2a2ec6da09109
61e8a805163515bc3f9e456d6a414bf6b45e8ff4d9df9a90ef3ec24cf4b10ef2
Analyzer Verdict Alert fortinet Phishing
GET /jss/login_files/ehl-blk.svg HTTP/1.1
Host: byashi.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://byashi.com.br/jss/login.php?&sessionid=89c3db80c953d82230e950f270bca065&securessl=true
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 03 Apr 2018 02:50:24 GMT
accept-ranges: bytes
content-length: 3771
content-type: image/svg+xml
date: Tue, 29 Nov 2022 01:24:10 GMT
server: Apache
X-Firefox-Spdy: h2
byashi.com.br/jss/login_files/ent-mainBnr-father-daughter-hug.png
192.185.210.37200 OK 367 kB URL HTTP/2 byashi.com.br/jss/login_files/ent-mainBnr-father-daughter-hug.png
IP 192.185.210.37:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 1658 x 1106, 8-bit colormap, non-interlaced\012- data
Size 367 kB (366594 bytes)
Hash ce7d1f992bcc0e5011f5162c4ee6574e
4fec719a49892f19235c57ce35de69db977e496c
aaa0237d406be851009f22a217f5d847dc04d4ba529c69e6a3b46dcc40c1c27d
GET /jss/login_files/ent-mainBnr-father-daughter-hug.png HTTP/1.1
Host: byashi.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://byashi.com.br/jss/login.php?&sessionid=89c3db80c953d82230e950f270bca065&securessl=true
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 03 Apr 2018 02:50:24 GMT
accept-ranges: bytes
content-length: 366594
content-type: image/png
date: Tue, 29 Nov 2022 01:24:10 GMT
server: Apache
X-Firefox-Spdy: h2
byashi.com.br/jss/login_files/prodOther_accent_brandBanner_stripesAndStar.svg
192.185.210.37200 OK 682 B URL HTTP/2 byashi.com.br/jss/login_files/prodOther_accent_brandBanner_stripesAndStar.svg
IP 192.185.210.37:0
ASN #46606 UNIFIEDLAYER-AS-1
File type SVG Scalable Vector Graphics image\012- , ASCII text
Hash ff0e5c1cf75579a97e32b619b66e7681
19568dff658082a23bf915c69d67988fe5d6e577
df8c1e7626f991c34245cec27a7a1a9ac72ac57a40d5f3c241364357c043d7ca
Analyzer Verdict Alert fortinet Phishing
GET /jss/login_files/prodOther_accent_brandBanner_stripesAndStar.svg HTTP/1.1
Host: byashi.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://byashi.com.br/jss/login_files/v3-brand-banner.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 03 Apr 2018 03:05:38 GMT
accept-ranges: bytes
content-length: 682
content-type: image/svg+xml
date: Tue, 29 Nov 2022 01:24:11 GMT
server: Apache
X-Firefox-Spdy: h2
byashi.com.br/jss/login_files/primary-link-icon-inverted.svg
192.185.210.37200 OK 587 B URL HTTP/2 byashi.com.br/jss/login_files/primary-link-icon-inverted.svg
IP 192.185.210.37:0
ASN #46606 UNIFIEDLAYER-AS-1
File type SVG Scalable Vector Graphics image\012- SVG XML document\012- XML 1.0 document text\012- SVG XML document\012- XML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash 044f289e122bcd4d269f4dd1ad35a1e2
0515adbdc57150d02ec6e3bc01da831cdfbedcfd
fcd5170f9ebd31c331c74c9b8d0de6a7f6c99b920fa8768b648f30f429c2debd
Analyzer Verdict Alert fortinet Phishing
GET /jss/login_files/primary-link-icon-inverted.svg HTTP/1.1
Host: byashi.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://byashi.com.br/jss/login_files/v3-brand-banner.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 03 Apr 2018 03:05:28 GMT
accept-ranges: bytes
content-length: 587
content-type: image/svg+xml
date: Tue, 29 Nov 2022 01:24:11 GMT
server: Apache
X-Firefox-Spdy: h2
byashi.com.br/jss/login_files/prodOther_thumb_primary-link-icon.svg
192.185.210.37200 OK 587 B URL HTTP/2 byashi.com.br/jss/login_files/prodOther_thumb_primary-link-icon.svg
IP 192.185.210.37:0
ASN #46606 UNIFIEDLAYER-AS-1
File type SVG Scalable Vector Graphics image\012- SVG XML document\012- XML 1.0 document text\012- SVG XML document\012- XML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash a88195bb9797428555ffc4b97cb46516
fb5c75643a6ef72dbb34ac3987fbe709e10e14b6
934b6c746f0af225cb7ed9cab48353ae67f51af3eb0b74bca465fe02105310cd
Analyzer Verdict Alert fortinet Phishing
GET /jss/login_files/prodOther_thumb_primary-link-icon.svg HTTP/1.1
Host: byashi.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://byashi.com.br/jss/login_files/v3-wcm-common.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 03 Apr 2018 03:05:46 GMT
accept-ranges: bytes
content-length: 587
content-type: image/svg+xml
date: Tue, 29 Nov 2022 01:24:11 GMT
server: Apache
X-Firefox-Spdy: h2
byashi.com.br/jss/login_files/misc_accent_socMedia.png
192.185.210.37200 OK 8.8 kB URL HTTP/2 byashi.com.br/jss/login_files/misc_accent_socMedia.png
IP 192.185.210.37:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 201 x 378, 8-bit/color RGBA, non-interlaced\012- data
Hash 2aa62eca80d27a3d0207d5cc909ccdb5
c7f72c3df6f58b2db7029a85b712dcef656ecb70
70cc16695978690e74938cae7f3a5f0de6ee23b1837bddca169316c7001eecd7
GET /jss/login_files/misc_accent_socMedia.png HTTP/1.1
Host: byashi.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://byashi.com.br/jss/login_files/socialMediaBar_alt.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 03 Apr 2018 03:05:00 GMT
accept-ranges: bytes
content-length: 8781
content-type: image/png
date: Tue, 29 Nov 2022 01:24:11 GMT
server: Apache
X-Firefox-Spdy: h2
byashi.com.br/jss/login_files/prodOther_accent_brandBanner_diamondBackground.svg
192.185.210.37200 OK 1.9 kB URL HTTP/2 byashi.com.br/jss/login_files/prodOther_accent_brandBanner_diamondBackground.svg
IP 192.185.210.37:0
ASN #46606 UNIFIEDLAYER-AS-1
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document, ASCII text
Hash 7b6d4e628dec2e60dc40a7e3c434491d
182bf4243bb159679579b7b795e65933796f72b5
e3724f77ddf0adecd6d84ac71bc5e2d614b8df720b5de8b0ddecfcdd938c5847
Analyzer Verdict Alert fortinet Phishing
GET /jss/login_files/prodOther_accent_brandBanner_diamondBackground.svg HTTP/1.1
Host: byashi.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://byashi.com.br/jss/login_files/v3-brand-banner.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 03 Apr 2018 03:05:10 GMT
accept-ranges: bytes
content-length: 1906
content-type: image/svg+xml
date: Tue, 29 Nov 2022 01:24:11 GMT
server: Apache
X-Firefox-Spdy: h2
byashi.com.br/jss/login_files/pub-home-tools-and-support-promo.jpg
192.185.210.37200 OK 121 kB URL HTTP/2 byashi.com.br/jss/login_files/pub-home-tools-and-support-promo.jpg
IP 192.185.210.37:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=12, height=806, bps=158, PhotometricIntepretation=RGB, orientation=upper-left, width=970], baseline, precision 8, 970x806, components 3\012- data
Size 121 kB (120784 bytes)
Hash 1fa0a020210a827fabee32d05afe0a54
0cf258744933d5e98147959c94ebf65fc5319d9f
5d5892815ea8a90798073f3d386c11c5528eb5628ce602cf4552538c1d7aa9a2
GET /jss/login_files/pub-home-tools-and-support-promo.jpg HTTP/1.1
Host: byashi.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://byashi.com.br/jss/login_files/landingPage_ProspectHome.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 03 Apr 2018 03:05:20 GMT
accept-ranges: bytes
content-length: 120784
content-type: image/jpeg
date: Tue, 29 Nov 2022 01:24:11 GMT
server: Apache
X-Firefox-Spdy: h2
byashi.com.br/jss/login_files/bgFooter_v2.png
192.185.210.37200 OK 496 B URL HTTP/2 byashi.com.br/jss/login_files/bgFooter_v2.png
IP 192.185.210.37:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 970 x 20, 8-bit/color RGBA, non-interlaced\012- data
Hash 3930e517d4089677f730f59a1481ecc9
916684432bc36c1b21ae8ca9cf9490a369d4ab40
09fe494df49bb50492a87d2670d9839f3f4220f300b146809d36b7e805db52a3
GET /jss/login_files/bgFooter_v2.png HTTP/1.1
Host: byashi.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://byashi.com.br/jss/login_files/styles_member.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 03 Apr 2018 03:05:52 GMT
accept-ranges: bytes
content-length: 496
content-type: image/png
date: Tue, 29 Nov 2022 01:24:11 GMT
server: Apache
X-Firefox-Spdy: h2
content.usaa.com/mcontent/static_assets/Fonts/E83D71A074DF776F4.woff?cacheid=22813289_p
104.110.3.249200 OK 19 kB URL HTTP/2 content.usaa.com/mcontent/static_assets/Fonts/E83D71A074DF776F4.woff?cacheid=22813289_p
IP 104.110.3.249:0
File type Web Open Font Format, TrueType, length 27799, version 1.0\012- data
Hash aaa32981994ff790b73adf3dced2dcc6
0c503309af8b24b595218334545d76c82b2c8fe8
c2c08699960dfeeafe5eda5fc1e48829d004197afdc208cbb33dddf61c67b035
GET /mcontent/static_assets/Fonts/E83D71A074DF776F4.woff?cacheid=22813289_p HTTP/1.1
Host: content.usaa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://byashi.com.br
Connection: keep-alive
Referer: https://byashi.com.br/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 28 Nov 2017 23:28:35 GMT
etag: "6c97-55f1360b44ec0"
accept-ranges: bytes
content-length: 27799
content-type: text/plain
cache-control: max-age=599354
date: Tue, 29 Nov 2022 01:24:11 GMT
set-cookie: akmachineid=akmaaU3fMP9p7dtUdExxzTFya4+NyWfuwGuzjHdB2YcmUvSsFP/rBgbfMxb7KWQNh0NnAhq0aX/Nc89N7HfHraMKww==; expires=Fri, 26-Nov-2032 01:24:11 GMT; Secure; Path=/; domain=.usaa.com
akusaa=akusaa8QuZIDJJmKZjxRFrefd85x4/Yh27nDPTQFYuRYw+qzYlNJA1Nfqr8DJkO1TLX2Q691zAizY75XBAB7SgECwL7g==; expires=Fri, 26-Nov-2032 01:24:11 GMT; Secure; Path=/; domain=.usaa.com
strict-transport-security: max-age=31536000
server: USAA-Integrity
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash a97c452e75cf1d4833e777d7ba7f2c47
58f15763fd33f742ce870f49f1c2dbed5b41205f
39bb874a415db37a81432942eb84151b0134d1aacaa31d364b6dadae4388c6a1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "39BB874A415DB37A81432942EB84151B0134D1AACAA31D364B6DADAE4388C6A1"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10094
Expires: Tue, 29 Nov 2022 04:12:26 GMT
Date: Tue, 29 Nov 2022 01:24:12 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash a97c452e75cf1d4833e777d7ba7f2c47
58f15763fd33f742ce870f49f1c2dbed5b41205f
39bb874a415db37a81432942eb84151b0134d1aacaa31d364b6dadae4388c6a1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "39BB874A415DB37A81432942EB84151B0134D1AACAA31D364B6DADAE4388C6A1"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10094
Expires: Tue, 29 Nov 2022 04:12:26 GMT
Date: Tue, 29 Nov 2022 01:24:12 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb1ee10f9-36dd-4ca4-986e-a80758149640.jpeg
34.120.237.76200 OK 8.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb1ee10f9-36dd-4ca4-986e-a80758149640.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 516776052e5e906ea9f42d25bae5cc85
be4c4d01fc67218e26a3e9d27a2f708e639c9d4b
28e70e38cfad65ad8a7a68ab1dc78747c7013a87b854fc35b163cc5765cd0570
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb1ee10f9-36dd-4ca4-986e-a80758149640.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8460
x-amzn-requestid: 51416479-3854-4f1a-9d86-35e104c57f6a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cVNnkHuZIAMF-_A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63852963-180b323d4a45fa2f29f9b1fc;Sampled=0
x-amzn-remapped-date: Mon, 28 Nov 2022 21:34:27 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 3MKambAjrBl64HI6hBuOtNJi3Tj6gxtwH_lOfk0WNX15UnCrAJbNig==
via: 1.1 26ca01ec7377e425b59b6a08cb1ec342.cloudfront.net (CloudFront), 1.1 7022a5bbf9872d4a09d63e6cdb457dfe.cloudfront.net (CloudFront), 1.1 google
date: Mon, 28 Nov 2022 21:48:54 GMT
age: 12918
etag: "be4c4d01fc67218e26a3e9d27a2f708e639c9d4b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F69f1b665-d8ee-457c-8f1d-e696be0cdbf6.jpeg
34.120.237.76200 OK 9.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F69f1b665-d8ee-457c-8f1d-e696be0cdbf6.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash c808183085a429c53515508678fc7ab2
6567069d9f5199205ba1ca7a937fcb0a52f95d06
c7ca95730cbc97d7c243e05b23520166faefcd2dfe90f36f70fad1f7e4537e4c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F69f1b665-d8ee-457c-8f1d-e696be0cdbf6.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9162
x-amzn-requestid: f7fb3b99-6f1c-4ab3-9547-a337d54e8c9a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cVjI8E9poAMFaQw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63854bd2-0679b83d1aa3b7c71aa6bf1c;Sampled=0
x-amzn-remapped-date: Tue, 29 Nov 2022 00:01:22 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: RAAJeCuVxs-hpp4wMmcBEmqPf71bUMueBvhwLaYTixj9IiIGNp0ZIQ==
via: 1.1 446313511980eb02f28ff5a9a4147c0a.cloudfront.net (CloudFront), 1.1 4f3feb5c4393987d42d1971d404d7cea.cloudfront.net (CloudFront), 1.1 google
date: Tue, 29 Nov 2022 00:28:27 GMT
age: 3345
etag: "6567069d9f5199205ba1ca7a937fcb0a52f95d06"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffdef9eb6-c1f1-4337-aff8-0986561782c7.jpeg
34.120.237.76200 OK 9.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffdef9eb6-c1f1-4337-aff8-0986561782c7.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 5d574c4db20a68295dbd06cb08f5990b
433061bbb226048765a711deca3026ee3e52372f
8cc1a4d18e242f8bfc8ab94637f635b73554b903462c29b06d0ec67872542afb
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffdef9eb6-c1f1-4337-aff8-0986561782c7.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9203
x-amzn-requestid: 8cba52d6-3c1c-495c-bb9d-3ba6f0adc7e1
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cHcHmGmQoAMF6dQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637fa6fd-73abfa592ff223061401af9a;Sampled=0
x-amzn-remapped-date: Thu, 24 Nov 2022 17:16:45 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: UmhWm03jrsV8dFagrzIA0E-8eL8dykoO5kw3cYOBd172dCGqNdAX-Q==
via: 1.1 a20e81b65d2465c729ce2f6bfe539dd0.cloudfront.net (CloudFront), 1.1 36810aa1793ee589dc8c194860296078.cloudfront.net (CloudFront), 1.1 google
date: Mon, 28 Nov 2022 03:31:58 GMT
age: 78734
etag: "433061bbb226048765a711deca3026ee3e52372f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb99c22d6-3187-4d40-8281-7980c7988464.webp
34.120.237.76200 OK 3.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb99c22d6-3187-4d40-8281-7980c7988464.webp
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 06723cdab42df9b5334f540a8c7ebc60
3bbc44cb84a37ce6a067db4301dd81647a77c29f
9f6f064b16044c510650635690c61003fb2f6439021a2e681431136f5e7a08b3
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb99c22d6-3187-4d40-8281-7980c7988464.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 3905
x-amzn-requestid: bf50db76-dd95-44fc-abbe-1a26a5559ae3
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cMFcYHE6IAMFmpA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638182b5-50b6d010058c6cb75c05c6de;Sampled=0
x-amzn-remapped-date: Sat, 26 Nov 2022 03:06:29 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 73Fr-7-mRcw9_OVt8Wdi4pjFBHkqi_vBa-zgLtbHKEx1ay9s8wDSgQ==
via: 1.1 efe54e8b68e074d39b2ecd249f85100a.cloudfront.net (CloudFront), 1.1 64f86ae1c24221f3a2e4d653d6dbc416.cloudfront.net (CloudFront), 1.1 google
date: Mon, 28 Nov 2022 06:26:11 GMT
age: 68281
etag: "3bbc44cb84a37ce6a067db4301dd81647a77c29f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffa7a7fb1-8e53-47cc-bd1c-80ab0e8ecd59.jpeg
34.120.237.76200 OK 3.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffa7a7fb1-8e53-47cc-bd1c-80ab0e8ecd59.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 8b421b66a29c15df61049ef5d5f34bc2
f3c1297885fa2fd37557222d5490dfb0afed19ef
3c88aecb898378f0d070fe9e9733ac42b89b57349e8e9f51ffb0508b88821980
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffa7a7fb1-8e53-47cc-bd1c-80ab0e8ecd59.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 3711
x-amzn-requestid: e9825e7e-0fa7-4165-9b59-f554a4bf1d6b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: b_dkuFKToAMF1OA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637c761e-7ebc3c3b480cdd94059616b7;Sampled=0
x-amzn-remapped-date: Tue, 22 Nov 2022 07:11:26 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: TQQiAdJwsSxsS2C-3y_SNOHPtiuPMKcfu-4Db4zlOjbHsTfRnHWl8Q==
via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 36810aa1793ee589dc8c194860296078.cloudfront.net (CloudFront), 1.1 google
date: Mon, 28 Nov 2022 08:00:12 GMT
age: 62640
etag: "f3c1297885fa2fd37557222d5490dfb0afed19ef"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9ad01b94-5d16-49b9-bf3e-5742e02ae8b6.jpeg
34.120.237.76200 OK 8.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9ad01b94-5d16-49b9-bf3e-5742e02ae8b6.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 7e44c46db2ac9917110dc47aa38fdc85
b5b245c90705ad80c31d457c0d7c96709ca31e96
5024225a583b188860eaf21f7196c06cef8b2e89389ae4b1df6e314399f3b2ae
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9ad01b94-5d16-49b9-bf3e-5742e02ae8b6.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8796
x-amzn-requestid: 2eed036c-fcda-425b-8c5d-0b0ff31214a0
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cGDTEEWMIAMFwKA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637f18e0-5cb071a2098d43d909eb8d5c;Sampled=0
x-amzn-remapped-date: Thu, 24 Nov 2022 07:10:24 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: uWzs8gOBoczTeYXB7-FfJemWbh-hYHwNcR3b9BM5VtJ55NRUzCZeTQ==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 9046e5a276a05e60ee34c8475e92b8e6.cloudfront.net (CloudFront), 1.1 google
date: Mon, 28 Nov 2022 09:53:45 GMT
age: 55827
etag: "b5b245c90705ad80c31d457c0d7c96709ca31e96"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
byashi.com.br/jss/login_files/usaaicon.ico
192.185.210.37200 OK 2.2 kB URL HTTP/2 byashi.com.br/jss/login_files/usaaicon.ico
IP 192.185.210.37:0
ASN #46606 UNIFIEDLAYER-AS-1
File type MS Windows icon resource - 2 icons, 32x32, 16 colors, 16x16, 255 colors\012- data
Hash 50960e8d24dcda4d3e8dd7874ce54daa
60b54e4a9b641ff189ee9d200a778d75181907f0
74c40e570ddf14c6cbb32abe077a862e4d9478ee2ec25cdae80ef7ef9a9e295a
Analyzer Verdict Alert fortinet Phishing
GET /jss/login_files/usaaicon.ico HTTP/1.1
Host: byashi.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://byashi.com.br/jss/login.php?&sessionid=89c3db80c953d82230e950f270bca065&securessl=true
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 03 Apr 2018 03:20:48 GMT
accept-ranges: bytes
content-length: 2166
cache-control: max-age=604800
expires: Tue, 06 Dec 2022 01:24:12 GMT
content-type: image/x-icon
date: Tue, 29 Nov 2022 01:24:12 GMT
server: Apache
X-Firefox-Spdy: h2
byashi.com.br/jss/login_files/aggregator.css
192.185.210.37200 OK 0 B URL HTTP/2 byashi.com.br/jss/login_files/aggregator.css
IP 192.185.210.37:0
ASN #46606 UNIFIEDLAYER-AS-1
GET /jss/login_files/aggregator.css HTTP/1.1
Host: byashi.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://byashi.com.br/jss/login.php?&sessionid=89c3db80c953d82230e950f270bca065&securessl=true
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 03 Apr 2018 02:50:24 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/css
date: Tue, 29 Nov 2022 01:24:10 GMT
server: Apache
X-Firefox-Spdy: h2
byashi.com.br/jss/login_files/styles_member.css
192.185.210.37200 OK 0 B URL HTTP/2 byashi.com.br/jss/login_files/styles_member.css
IP 192.185.210.37:0
ASN #46606 UNIFIEDLAYER-AS-1
GET /jss/login_files/styles_member.css HTTP/1.1
Host: byashi.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://byashi.com.br/jss/login.php?&sessionid=89c3db80c953d82230e950f270bca065&securessl=true
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 03 Apr 2018 03:18:58 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/css
date: Tue, 29 Nov 2022 01:24:10 GMT
server: Apache
X-Firefox-Spdy: h2
byashi.com.br/jss/login_files/aggregator(2).css
192.185.210.37200 OK 0 B URL HTTP/2 byashi.com.br/jss/login_files/aggregator(2).css
IP 192.185.210.37:0
ASN #46606 UNIFIEDLAYER-AS-1
GET /jss/login_files/aggregator(2).css HTTP/1.1
Host: byashi.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://byashi.com.br/jss/login.php?&sessionid=89c3db80c953d82230e950f270bca065&securessl=true
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 03 Apr 2018 02:50:24 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/css
date: Tue, 29 Nov 2022 01:24:10 GMT
server: Apache
X-Firefox-Spdy: h2
content.usaa.com/mcontent/static_assets/Fonts/12C383965421BC56F.woff?cacheid=1553179615_p
104.110.3.249200 OK 0 B URL HTTP/2 content.usaa.com/mcontent/static_assets/Fonts/12C383965421BC56F.woff?cacheid=1553179615_p
IP 104.110.3.249:0
GET /mcontent/static_assets/Fonts/12C383965421BC56F.woff?cacheid=1553179615_p HTTP/1.1
Host: content.usaa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://byashi.com.br
Connection: keep-alive
Referer: https://byashi.com.br/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 28 Nov 2017 23:27:35 GMT
etag: "41c3-55f135d20c7c0"
accept-ranges: bytes
content-length: 16835
content-type: text/plain
cache-control: max-age=577826
date: Tue, 29 Nov 2022 01:24:11 GMT
set-cookie: akmachineid=akmawIXAaQFlpKmlzepiuSUyQGfr/ZaQ4PlpZa0IAZxylmfeQ1GvlcgXvw8u7r07Q7zsyMWMthai76gy8nka3FB9uw==; expires=Fri, 26-Nov-2032 01:24:11 GMT; Secure; Path=/; domain=.usaa.com
akusaa=akusaaxztLDP1acJFTSHSPfSCDzAbLrZMKbU9osNhWGTzj19epnDmXNZuO++KiZCG8WMi3Py8Cg7NBM4iJPnmLCHdA0Q==; expires=Fri, 26-Nov-2032 01:24:11 GMT; Secure; Path=/; domain=.usaa.com
strict-transport-security: max-age=31536000
server: USAA-Integrity
X-Firefox-Spdy: h2
content.usaa.com/mcontent/static_assets/Fonts/CC8B46FD41C3A5502.woff?cacheid=1373003117_p
104.110.3.249200 OK 0 B URL HTTP/2 content.usaa.com/mcontent/static_assets/Fonts/CC8B46FD41C3A5502.woff?cacheid=1373003117_p
IP 104.110.3.249:0
GET /mcontent/static_assets/Fonts/CC8B46FD41C3A5502.woff?cacheid=1373003117_p HTTP/1.1
Host: content.usaa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://byashi.com.br
Connection: keep-alive
Referer: https://byashi.com.br/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 28 Nov 2017 23:28:32 GMT
etag: "6c53-55f1360868800"
accept-ranges: bytes
content-length: 27731
content-type: text/plain
cache-control: max-age=602066
date: Tue, 29 Nov 2022 01:24:11 GMT
set-cookie: akmachineid=akma393PUsUjDiGQUYddWVeRQMfA3paManP8bsED6AKbQJq5WjaR4esTihVBsT21NsgoKNlST/vyD1cMLqLo/rWW8g==; expires=Fri, 26-Nov-2032 01:24:11 GMT; Secure; Path=/; domain=.usaa.com
akusaa=akusaaY5yORvZVceX+VEvPpzYLoTUmAKtcR90t06N3pWQMyfjIeH19EkzWPl+d0MiMkdr7cZPxkUqqiYml6n56MfD2XQ==; expires=Fri, 26-Nov-2032 01:24:11 GMT; Secure; Path=/; domain=.usaa.com
strict-transport-security: max-age=31536000
server: USAA-Integrity
X-Firefox-Spdy: h2
byashi.com.br/jss/login_files/gotham-mercury-base-aggregate.css
192.185.210.37200 OK 0 B URL HTTP/2 byashi.com.br/jss/login_files/gotham-mercury-base-aggregate.css
IP 192.185.210.37:0
ASN #46606 UNIFIEDLAYER-AS-1
GET /jss/login_files/gotham-mercury-base-aggregate.css HTTP/1.1
Host: byashi.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://byashi.com.br/jss/login.php?&sessionid=89c3db80c953d82230e950f270bca065&securessl=true
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 03 Apr 2018 02:50:24 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/css
date: Tue, 29 Nov 2022 01:24:10 GMT
server: Apache
X-Firefox-Spdy: h2