| r3.o.lencr.org/ | 23.33.119.27 | 200 OK | 503 B |
IP23.33.119.27:0 ASN#20940 Akamai International B.V.
Hashd3098a490e8d38d4150d961624aa7b64 6ecbca59302d0ac5436f1723137d42523f629ea1 158e277ba0220577b59b15e4017b6c27f59295bcd7e5d0e52d027dc7c4309f0b
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "158E277BA0220577B59B15E4017B6C27F59295BCD7E5D0E52D027DC7C4309F0B"
Last-Modified: Fri, 30 Dec 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5452
Expires: Sun, 01 Jan 2023 20:30:25 GMT
Date: Sun, 01 Jan 2023 18:59:33 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 23.33.119.27 | 200 OK | 503 B |
IP23.33.119.27:0 ASN#20940 Akamai International B.V.
Hashab3625faa748b97df39d95f3265ccd14 3930df2e3cb45a1abe47de735002fba535de4f08 0b0a1eb64c4a23598884f08be0a9694c8fcaeffc4b0df790a678104f44fe1c14
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0B0A1EB64C4A23598884F08BE0A9694C8FCAEFFC4B0DF790A678104F44FE1C14"
Last-Modified: Fri, 30 Dec 2022 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8071
Expires: Sun, 01 Jan 2023 21:14:04 GMT
Date: Sun, 01 Jan 2023 18:59:33 GMT
Connection: keep-alive
|
|
| firefox.settings.services.mozilla.com/v1/ | 35.241.9.150 | 200 OK | 939 B |
URL HTTP/2firefox.settings.services.mozilla.com/v1/ IP35.241.9.150:0
File typeJSON data\012- , ASCII text, with very long lines (939), with no line terminators Hashdcd75ca6daca51c5e39d431468511793 07f76d3bf23d65c9110d810fa71a994e39e085d3 73672a816da4450fe2c938b08d7ae002d9ca29fdcbd3e29cc97084d826f8b459
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Alert, Content-Type, Retry-After, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sun, 01 Jan 2023 18:47:18 GMT
content-type: application/json
age: 735
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| r3.o.lencr.org/ | 23.33.119.27 | 200 OK | 503 B |
IP23.33.119.27:0 ASN#20940 Akamai International B.V.
Hash3b0a4b7e28ad3a91135d52c7457790b5 075f22ab45d169766252467ae44903250e480f9b 312744aeb6fcc4296025205bc70c40316dd3c8a4b626669ac43e32c33104473a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "312744AEB6FCC4296025205BC70C40316DD3C8A4B626669AC43E32C33104473A"
Last-Modified: Sat, 31 Dec 2022 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9837
Expires: Sun, 01 Jan 2023 21:43:30 GMT
Date: Sun, 01 Jan 2023 18:59:33 GMT
Connection: keep-alive
|
|
| content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-08-14-47-57.chain | 34.160.144.191 | 200 OK | 5.3 kB |
URL HTTP/2content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-08-14-47-57.chain IP34.160.144.191:0
File typePEM certificate\012- , ASCII text Hashb1fcd419a4245617397846e8d17233f6 2a037ce244587640b27ead9a0ec2af4f862d91b2 e059b6d834c06e58494c43fb2ff42acbc27c1a1d8f7f30e2f32ca0e167599e2f
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-08-14-47-57.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: HOlDuhXCsDk1BZnnPHk5AOciSlnByY80kTLmPzR6wBn8rVsfLc3OvHMDX/pffEfSzzwl+HtbgHPkCtpLCzpAMQ==
x-amz-request-id: MRE1RX3095MGG7FA
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sun, 01 Jan 2023 18:57:57 GMT
age: 96
last-modified: Tue, 20 Dec 2022 14:47:58 GMT
etag: "b1fcd419a4245617397846e8d17233f6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/s/gts1p5/StytlCRWmXc | 142.250.74.131 | 200 OK | 471 B |
URL HTTP/1.1ocsp.pki.goog/s/gts1p5/StytlCRWmXc IP142.250.74.131:0
Hashf6bf833e8b7b4f0d67e47911885d50c7 e95ef96e018e6ede9abb20856f328b5ca9fc1ff2 c62d3d85e33a93c8e94da2b1d7fde7099ba284ee74af00698add0846d742fb66
POST /s/gts1p5/StytlCRWmXc HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 01 Jan 2023 18:59:33 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| contile.services.mozilla.com/v1/tiles | 34.117.237.239 | 200 OK | 12 B |
URL HTTP/2contile.services.mozilla.com/v1/tiles IP34.117.237.239:0
File typeJSON data\012- , ASCII text, with no line terminators Hash23e88fb7b99543fb33315b29b1fad9d6 a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 01 Jan 2023 18:59:33 GMT
content-type: application/json
content-length: 12
access-control-allow-credentials: true
access-control-expose-headers: content-type
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US | 35.241.9.150 | 200 OK | 329 B |
URL HTTP/2firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US IP35.241.9.150:0
File typeJSON data\012- , ASCII text, with very long lines (329), with no line terminators Hash0333b0655111aa68de771adfcc4db243 63f295a144ac87a7c8e23417626724eeca68a7eb 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, ETag, Pragma, Last-Modified, Expires, Alert, Content-Type, Retry-After, Cache-Control, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sun, 01 Jan 2023 18:08:11 GMT
age: 3083
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 471 B |
IP93.184.220.29:0
Hashe2a99db6956684dc306ada584f1907d8 21c3fc85b00308907c1cffcb36b1ba1a4617f613 cf568c4a26fb352228e849b18fbca0f6fd3b3a89055cd5f4fc0cdd11f9b9733e
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5753
Cache-Control: max-age=142988
Content-Type: application/ocsp-response
Date: Sun, 01 Jan 2023 18:59:34 GMT
Etag: "63b14d29-1d7"
Expires: Tue, 03 Jan 2023 10:42:42 GMT
Last-Modified: Sun, 01 Jan 2023 09:06:49 GMT
Server: ECS (ska/F716)
X-Cache: HIT
Content-Length: 471
|
|
| ocsp.pki.goog/s/gts1p5/StytlCRWmXc | 142.250.74.131 | 200 OK | 471 B |
URL HTTP/1.1ocsp.pki.goog/s/gts1p5/StytlCRWmXc IP142.250.74.131:0
Hashf6bf833e8b7b4f0d67e47911885d50c7 e95ef96e018e6ede9abb20856f328b5ca9fc1ff2 c62d3d85e33a93c8e94da2b1d7fde7099ba284ee74af00698add0846d742fb66
POST /s/gts1p5/StytlCRWmXc HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 01 Jan 2023 18:59:34 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| vejahojemesmoo.com/content/dam/itau/cartoes/magalu/magalu-logo.png | 172.67.215.143 | 200 OK | 12 kB |
URL HTTP/2vejahojemesmoo.com/content/dam/itau/cartoes/magalu/magalu-logo.png IP172.67.215.143:0
File typePNG image data, 396 x 120, 8-bit/color RGBA, non-interlaced\012- data Hash32163c5ea32671f60e72c16ad18cea2f c9c9ba05db8f70d003344afb06c2ea592e1276af 7e393e8c97f5aef8d6f6e62fafe5f376b40cef8b17366aa923c237b615af8691
GET /content/dam/itau/cartoes/magalu/magalu-logo.png HTTP/1.1
Host: vejahojemesmoo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vejahojemesmoo.com/veja/agora/facil/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 01 Jan 2023 18:59:34 GMT
content-type: image/png
content-length: 11975
cache-control: public, max-age=604800
expires: Sat, 07 Jan 2023 19:01:38 GMT
last-modified: Thu, 29 Dec 2022 19:05:03 GMT
etag: "2ec7-63ade4df-d4dd2d539d46364c;;;"
platform: hostinger
content-security-policy: upgrade-insecure-requests
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
age: 86275
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=yevnbwlC4%2BFCk9p1LAFzx1oQlUk48FCvZCtyUgzILqrmD6GNQjPv2f0EWbzx2TdBWEC4JPuzh9OivQs79jJ0mEncY1XRxPzwDPahmQN4o5WoEHt5nUPnP%2BnNpGJUMkRg8WQ3r9o%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 782d7e2c5bffb50c-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| vejahojemesmoo.com/_arquivosestaticos/Itau/defaultTheme/js/da/framework/frameworkDA8166.js?KGXCXPV | 172.67.215.143 | 200 OK | 1.3 kB |
URL HTTP/2vejahojemesmoo.com/_arquivosestaticos/Itau/defaultTheme/js/da/framework/frameworkDA8166.js?KGXCXPV IP172.67.215.143:0
File typeASCII text, with very long lines (1030) Hashb34f2415add25a93a1c341b4fcc9f7fa ebb13acbfab480027676029a397830523545138f d18fb3f4a9d59aa0a0fd8e8f31aa9fc11db939b9d9d31c8d6feae9a20a494db3
Analyzer | Verdict | Alert | fortinet | Phishing | |
GET /_arquivosestaticos/Itau/defaultTheme/js/da/framework/frameworkDA8166.js?KGXCXPV HTTP/1.1
Host: vejahojemesmoo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vejahojemesmoo.com/veja/agora/facil/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 01 Jan 2023 18:59:34 GMT
content-type: application/x-javascript
cf-bgj: minify
cf-polished: origSize=2876
cache-control: public, max-age=604800
content-security-policy: upgrade-insecure-requests
etag: W/"b3c-63ade4e0-24858afe6f9f731c;gz"
expires: Sun, 08 Jan 2023 05:14:49 GMT
last-modified: Thu, 29 Dec 2022 19:05:04 GMT
platform: hostinger
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
age: 49485
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=7KkadkACjk1jrZ1buQOiTAePCQ%2FjIibLtzkpULxuJZkL3oBPXbk1l2Wi%2Bpm1U9NumBVywxADPkpCOuYTwMIO4sJr2H5WHgeIgyymoWmWqqHubsgH6JKcrhVWKSUlUNK%2FYG2NsgQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 782d7e2c4be3b50c-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 471 B |
IP93.184.220.29:0
Hash426769aa4ebc47ae6a29acb9fdcafd1d 18007ccad9878ff28ec6b107e2243e9a6c8cd0b8 9d6a18c903e598800a2958388c9b9f98d2ba0df2e1fe9708ff68e35e4b6c0ed1
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6096
Cache-Control: max-age=115288
Content-Type: application/ocsp-response
Date: Sun, 01 Jan 2023 18:59:34 GMT
Etag: "63b0df9e-1d7"
Expires: Tue, 03 Jan 2023 03:01:02 GMT
Last-Modified: Sun, 01 Jan 2023 01:19:26 GMT
Server: ECS (ska/F716)
X-Cache: HIT
Content-Length: 471
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 471 B |
IP93.184.220.29:0
Hash426769aa4ebc47ae6a29acb9fdcafd1d 18007ccad9878ff28ec6b107e2243e9a6c8cd0b8 9d6a18c903e598800a2958388c9b9f98d2ba0df2e1fe9708ff68e35e4b6c0ed1
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6096
Cache-Control: max-age=115288
Content-Type: application/ocsp-response
Date: Sun, 01 Jan 2023 18:59:34 GMT
Etag: "63b0df9e-1d7"
Expires: Tue, 03 Jan 2023 03:01:02 GMT
Last-Modified: Sun, 01 Jan 2023 01:19:26 GMT
Server: ECS (ska/F716)
X-Cache: HIT
Content-Length: 471
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 471 B |
IP93.184.220.29:0
Hash426769aa4ebc47ae6a29acb9fdcafd1d 18007ccad9878ff28ec6b107e2243e9a6c8cd0b8 9d6a18c903e598800a2958388c9b9f98d2ba0df2e1fe9708ff68e35e4b6c0ed1
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4809
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 01 Jan 2023 18:59:34 GMT
Last-Modified: Sun, 01 Jan 2023 17:39:25 GMT
Server: ECS (ska/F719)
X-Cache: HIT
Content-Length: 471
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 471 B |
IP93.184.220.29:0
Hash426769aa4ebc47ae6a29acb9fdcafd1d 18007ccad9878ff28ec6b107e2243e9a6c8cd0b8 9d6a18c903e598800a2958388c9b9f98d2ba0df2e1fe9708ff68e35e4b6c0ed1
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6096
Cache-Control: max-age=115288
Content-Type: application/ocsp-response
Date: Sun, 01 Jan 2023 18:59:34 GMT
Etag: "63b0df9e-1d7"
Expires: Tue, 03 Jan 2023 03:01:02 GMT
Last-Modified: Sun, 01 Jan 2023 01:19:26 GMT
Server: ECS (ska/F716)
X-Cache: HIT
Content-Length: 471
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 471 B |
IP93.184.220.29:0
Hash426769aa4ebc47ae6a29acb9fdcafd1d 18007ccad9878ff28ec6b107e2243e9a6c8cd0b8 9d6a18c903e598800a2958388c9b9f98d2ba0df2e1fe9708ff68e35e4b6c0ed1
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5360
Cache-Control: max-age=114552
Content-Type: application/ocsp-response
Date: Sun, 01 Jan 2023 18:59:34 GMT
Etag: "63b0df9e-1d7"
Expires: Tue, 03 Jan 2023 02:48:46 GMT
Last-Modified: Sun, 01 Jan 2023 01:19:26 GMT
Server: ECS (ska/F70F)
X-Cache: HIT
Content-Length: 471
|
|
| www.itau.com.br/etc.clientlibs/itau/clientlibs/clientlib-base/resources/fonts/ItauText/ItauText_Rg.woff2 | 23.72.139.66 | 200 OK | 18 kB |
URL HTTP/2www.itau.com.br/etc.clientlibs/itau/clientlibs/clientlib-base/resources/fonts/ItauText/ItauText_Rg.woff2 IP23.72.139.66:0 ASN#20940 Akamai International B.V.
File typeWeb Open Font Format (Version 2), TrueType, length 17892, version 1.0\012- data Hash8c45edf9ce4aace9377f60b944cc1ec3 552f48b197ec19499ebd86a8a889aecd18af4c67 19d8c0906ae795de0c56acc056c86aa86e9eab1a283d5511b96321e53893584c
GET /etc.clientlibs/itau/clientlibs/clientlib-base/resources/fonts/ItauText/ItauText_Rg.woff2 HTTP/1.1
Host: www.itau.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://vejahojemesmoo.com
Connection: keep-alive
Referer: https://vejahojemesmoo.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
content-type: application/octet-stream
etag: "45e4-58283b674fc40-gzip"
last-modified: Fri, 22 Feb 2019 23:11:37 GMT
server: Apache
strict-transport-security: max-age=63072000; includeSubdomains;
x-content-type-options: nosniff
x-dispatcher: dispatcher1saeast1
x-frame-options: SAMEORIGIN
x-vhost: publish
content-length: 17915
cache-control: public, max-age=328430
expires: Thu, 05 Jan 2023 14:13:24 GMT
date: Sun, 01 Jan 2023 18:59:34 GMT
vary: Accept-Encoding
server-timing: cdn-cache; desc=HIT, edge; dur=5
access-control-allow-methods: GET, POST
access-control-allow-origin: internet.itau.com.br
X-Firefox-Spdy: h2
|
|
| www.itau.com.br/etc.clientlibs/itau/clientlibs/clientlib-base/resources/fonts/ItauDisplay/itaudisplay_bd-webfont.woff2 | 23.72.139.66 | 200 OK | 20 kB |
URL HTTP/2www.itau.com.br/etc.clientlibs/itau/clientlibs/clientlib-base/resources/fonts/ItauDisplay/itaudisplay_bd-webfont.woff2 IP23.72.139.66:0 ASN#20940 Akamai International B.V.
File typeWeb Open Font Format (Version 2), TrueType, length 20492, version 1.0\012- data Hashf8cc20ae69d097834f4237ab485fedcf 83f0b503ac7115d658a7abd488f1a9dfbeab0c43 cc2e0a65e316a595f8049b69264c8d7d4cf07cd20e8f5cba6dafaefcef97faaf
GET /etc.clientlibs/itau/clientlibs/clientlib-base/resources/fonts/ItauDisplay/itaudisplay_bd-webfont.woff2 HTTP/1.1
Host: www.itau.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://vejahojemesmoo.com
Connection: keep-alive
Referer: https://vejahojemesmoo.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
content-type: application/octet-stream
etag: "500c-5784a09177ac0-gzip"
last-modified: Mon, 15 Oct 2018 20:10:59 GMT
server: Apache
strict-transport-security: max-age=63072000; includeSubdomains;
x-content-type-options: nosniff
x-dispatcher: dispatcher1saeast1
x-frame-options: SAMEORIGIN
x-vhost: publish
content-length: 20515
cache-control: public, max-age=328370
expires: Thu, 05 Jan 2023 14:12:24 GMT
date: Sun, 01 Jan 2023 18:59:34 GMT
vary: Accept-Encoding
server-timing: cdn-cache; desc=HIT, edge; dur=2
access-control-allow-methods: GET, POST
access-control-allow-origin: internet.itau.com.br
X-Firefox-Spdy: h2
|
|
| vejahojemesmoo.com/etc.clientlibs/sharedcomponents/clientlibs/clientlib-base.min.945904d2e9e6b9cf99f3c9b11de8a651.css | 172.67.215.143 | 200 OK | 180 kB |
URL HTTP/2vejahojemesmoo.com/etc.clientlibs/sharedcomponents/clientlibs/clientlib-base.min.945904d2e9e6b9cf99f3c9b11de8a651.css IP172.67.215.143:0
File typeUnicode text, UTF-8 text, with very long lines (37328) Size180 kB (179481 bytes) Hasha1e4e36ba4557ed2295f450113367930 a281abdc0bf1e3c9ec5028a29b1333008cf15205 6b143754560095e44f4925943d1c76e8d9482c648a1848308a6fcf460a3413a9
GET /etc.clientlibs/sharedcomponents/clientlibs/clientlib-base.min.945904d2e9e6b9cf99f3c9b11de8a651.css HTTP/1.1
Host: vejahojemesmoo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vejahojemesmoo.com/veja/agora/facil/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 01 Jan 2023 18:59:34 GMT
content-type: text/css
cf-bgj: minify
cf-polished: origSize=609767
cache-control: public, max-age=604800
content-security-policy: upgrade-insecure-requests
etag: W/"94de7-63ade4de-6063529be8418494;gz"
expires: Sat, 07 Jan 2023 19:01:32 GMT
last-modified: Thu, 29 Dec 2022 19:05:02 GMT
platform: hostinger
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
age: 86282
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=8iYXBM3EKM3EL36DjC1kZ9Nj9IXzVKDgAjNFsyEarzKnwodlFPYRV4nQKXUaXsWJEy0rzeTCZvFTBR0thbs7%2FtHwQIYJrFlK%2F%2FmtTeZ7hBs4OJ0gBCs0MN8D1Z%2BHPBCGUMDbAXk%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 782d7e2c4be6b50c-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| www.itau.com.br/etc.clientlibs/itau/clientlibs/clientlib-base/resources/fonts/ItauText/ItauText_Lt.woff2 | 23.72.139.66 | 200 OK | 18 kB |
URL HTTP/2www.itau.com.br/etc.clientlibs/itau/clientlibs/clientlib-base/resources/fonts/ItauText/ItauText_Lt.woff2 IP23.72.139.66:0 ASN#20940 Akamai International B.V.
File typeWeb Open Font Format (Version 2), TrueType, length 17508, version 1.0\012- data Hash30d7461710d18c568cda48a7c30ae39c c48e451a1cfd366a2309631ee29700921742fb3f de849e1c8d5da2b7d848a19923f1cc8a2b5728c0b315695d414efc254d4f035b
GET /etc.clientlibs/itau/clientlibs/clientlib-base/resources/fonts/ItauText/ItauText_Lt.woff2 HTTP/1.1
Host: www.itau.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://vejahojemesmoo.com
Connection: keep-alive
Referer: https://vejahojemesmoo.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
content-type: application/octet-stream
etag: "4464-58283b674fc40-gzip"
last-modified: Fri, 22 Feb 2019 23:11:37 GMT
server: Apache
strict-transport-security: max-age=63072000; includeSubdomains;
x-content-type-options: nosniff
x-dispatcher: dispatcher1saeast1
x-frame-options: SAMEORIGIN
x-vhost: publish
content-length: 17531
cache-control: public, max-age=328329
expires: Thu, 05 Jan 2023 14:11:43 GMT
date: Sun, 01 Jan 2023 18:59:34 GMT
vary: Accept-Encoding
server-timing: cdn-cache; desc=HIT, edge; dur=4
access-control-allow-methods: GET, POST
access-control-allow-origin: internet.itau.com.br
X-Firefox-Spdy: h2
|
|
| www.itau.com.br/etc.clientlibs/sharedcomponents/clientlibs/clientlib-base/resources/fonts/ItauText/ItauText_Rg.woff2 | 23.72.139.66 | 200 OK | 18 kB |
URL HTTP/2www.itau.com.br/etc.clientlibs/sharedcomponents/clientlibs/clientlib-base/resources/fonts/ItauText/ItauText_Rg.woff2 IP23.72.139.66:0 ASN#20940 Akamai International B.V.
File typeWeb Open Font Format (Version 2), TrueType, length 17892, version 1.0\012- data Hash8c45edf9ce4aace9377f60b944cc1ec3 552f48b197ec19499ebd86a8a889aecd18af4c67 19d8c0906ae795de0c56acc056c86aa86e9eab1a283d5511b96321e53893584c
GET /etc.clientlibs/sharedcomponents/clientlibs/clientlib-base/resources/fonts/ItauText/ItauText_Rg.woff2 HTTP/1.1
Host: www.itau.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://vejahojemesmoo.com
Connection: keep-alive
Referer: https://vejahojemesmoo.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
content-type: application/octet-stream
etag: "45e4-594fa8180f3c0-gzip"
last-modified: Tue, 15 Oct 2019 22:28:39 GMT
server: Apache
strict-transport-security: max-age=63072000; includeSubdomains;
x-content-type-options: nosniff
x-dispatcher: dispatcher1saeast1
x-frame-options: SAMEORIGIN
x-vhost: publish
content-length: 17915
cache-control: public, max-age=328393
expires: Thu, 05 Jan 2023 14:12:47 GMT
date: Sun, 01 Jan 2023 18:59:34 GMT
vary: Accept-Encoding
server-timing: cdn-cache; desc=HIT, edge; dur=9
access-control-allow-methods: GET, POST
access-control-allow-origin: internet.itau.com.br
X-Firefox-Spdy: h2
|
|
| www.itau.com.br/etc.clientlibs/itau/clientlibs/clientlib-base/resources/fonts/ItauDisplay/itaudisplay_lt-webfont.woff2 | 23.72.139.66 | 200 OK | 20 kB |
URL HTTP/2www.itau.com.br/etc.clientlibs/itau/clientlibs/clientlib-base/resources/fonts/ItauDisplay/itaudisplay_lt-webfont.woff2 IP23.72.139.66:0 ASN#20940 Akamai International B.V.
File typeWeb Open Font Format (Version 2), TrueType, length 19856, version 1.0\012- data Hash190e1daff6bd9c814bf332c5dfcef55d 80ff4170deee3b9aaad8328dfdfb0cd0b5f1912d f9c295d713f7d2b0f944f1f78284dbc75be41152e65643cf8de20df65ad497c2
GET /etc.clientlibs/itau/clientlibs/clientlib-base/resources/fonts/ItauDisplay/itaudisplay_lt-webfont.woff2 HTTP/1.1
Host: www.itau.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://vejahojemesmoo.com
Connection: keep-alive
Referer: https://vejahojemesmoo.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
content-type: application/octet-stream
etag: "4d90-5784a09177ac0-gzip"
last-modified: Mon, 15 Oct 2018 20:10:59 GMT
server: Apache
strict-transport-security: max-age=63072000; includeSubdomains;
x-content-type-options: nosniff
x-dispatcher: dispatcher1saeast1
x-frame-options: SAMEORIGIN
x-vhost: publish
content-length: 19879
cache-control: public, max-age=328365
expires: Thu, 05 Jan 2023 14:12:19 GMT
date: Sun, 01 Jan 2023 18:59:34 GMT
vary: Accept-Encoding
server-timing: cdn-cache; desc=HIT, edge; dur=5
access-control-allow-methods: GET, POST
access-control-allow-origin: internet.itau.com.br
X-Firefox-Spdy: h2
|
|
| www.itau.com.br/etc.clientlibs/itau/clientlibs/clientlib-base/resources/fonts/itaufonts_master_24px_v44/itaufonts_master_24px_v44.woff | 23.72.139.66 | 200 OK | 67 kB |
URL HTTP/2www.itau.com.br/etc.clientlibs/itau/clientlibs/clientlib-base/resources/fonts/itaufonts_master_24px_v44/itaufonts_master_24px_v44.woff IP23.72.139.66:0 ASN#20940 Akamai International B.V.
File typeWeb Open Font Format, TrueType, length 139296, version 1.0\012- data Hash377c921e6959e27830bc8e53667311ec aa6eb338ef53b68f07826ec7c3dd843a103fcebf 66c812afc105d410e5749a4234cd21981a6b15a069a512d793f8743ce4b2eb86
GET /etc.clientlibs/itau/clientlibs/clientlib-base/resources/fonts/itaufonts_master_24px_v44/itaufonts_master_24px_v44.woff HTTP/1.1
Host: www.itau.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://vejahojemesmoo.com
Connection: keep-alive
Referer: https://vejahojemesmoo.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
content-type: application/x-font-woff
etag: "22020-5784a09083880-gzip"
last-modified: Mon, 15 Oct 2018 20:10:58 GMT
server: Apache
strict-transport-security: max-age=63072000; includeSubdomains;
x-content-type-options: nosniff
x-dispatcher: dispatcher2saeast1
x-frame-options: SAMEORIGIN
x-vhost: publish
content-length: 66962
cache-control: public, max-age=328939
expires: Thu, 05 Jan 2023 14:21:53 GMT
date: Sun, 01 Jan 2023 18:59:34 GMT
vary: Accept-Encoding
server-timing: cdn-cache; desc=HIT, edge; dur=5
access-control-allow-methods: GET, POST
access-control-allow-origin: internet.itau.com.br
X-Firefox-Spdy: h2
|
|
| www.itau.com.br/etc.clientlibs/itau/clientlibs/clientlib-base/resources/fonts/ItauDisplay/itaudisplay_xbd-webfont.woff2 | 23.72.139.66 | 200 OK | 20 kB |
URL HTTP/2www.itau.com.br/etc.clientlibs/itau/clientlibs/clientlib-base/resources/fonts/ItauDisplay/itaudisplay_xbd-webfont.woff2 IP23.72.139.66:0 ASN#20940 Akamai International B.V.
File typeWeb Open Font Format (Version 2), TrueType, length 20244, version 1.0\012- data Hasha3dd3a39de662f954e6841f7702e6a74 d7cdbf4395166b489cdba9c8cae2a3fe6855a3c0 de75c80a9793cbb631c44dbc2d6f69d7737c00415919f05071a3b92d97e0d372
GET /etc.clientlibs/itau/clientlibs/clientlib-base/resources/fonts/ItauDisplay/itaudisplay_xbd-webfont.woff2 HTTP/1.1
Host: www.itau.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://vejahojemesmoo.com
Connection: keep-alive
Referer: https://vejahojemesmoo.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
content-type: application/octet-stream
etag: "4f14-5784a09083880-gzip"
last-modified: Mon, 15 Oct 2018 20:10:58 GMT
server: Apache
strict-transport-security: max-age=63072000; includeSubdomains;
x-content-type-options: nosniff
x-dispatcher: dispatcher1saeast1
x-frame-options: SAMEORIGIN
x-vhost: publish
content-length: 20267
cache-control: public, max-age=328358
expires: Thu, 05 Jan 2023 14:12:12 GMT
date: Sun, 01 Jan 2023 18:59:34 GMT
vary: Accept-Encoding
server-timing: cdn-cache; desc=HIT, edge; dur=7
access-control-allow-methods: GET, POST
access-control-allow-origin: internet.itau.com.br
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | 200 OK | 471 B |
IP142.250.74.131:0
Hash0468fec435ade9da599ed1f46bb61464 61294530d9be7c2a732758fb6b06ae51170f02b6 48497874c626a3cd466af1566fa28103970006af3756f9b5c0256cddcbd9dade
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 01 Jan 2023 18:59:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| www.itau.com.br/etc.clientlibs/itau/clientlibs/clientlib-base/resources/fonts/ItauText/ItauText_Bd.woff2 | 23.72.139.66 | 200 OK | 18 kB |
URL HTTP/2www.itau.com.br/etc.clientlibs/itau/clientlibs/clientlib-base/resources/fonts/ItauText/ItauText_Bd.woff2 IP23.72.139.66:0 ASN#20940 Akamai International B.V.
File typeWeb Open Font Format (Version 2), TrueType, length 18140, version 1.0\012- data Hash02dd2e9d5e7bd700e7e4da7d4b0d62a7 984d9304853b71f83039e9e2a1846eb5fbbaaf84 74bc7cfee2e0e9db1239e0f8af6cb337f2309a56165d8b533c5123607126a378
GET /etc.clientlibs/itau/clientlibs/clientlib-base/resources/fonts/ItauText/ItauText_Bd.woff2 HTTP/1.1
Host: www.itau.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://vejahojemesmoo.com
Connection: keep-alive
Referer: https://vejahojemesmoo.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
content-type: application/octet-stream
etag: "46dc-58283b674fc40-gzip"
last-modified: Fri, 22 Feb 2019 23:11:37 GMT
server: Apache
strict-transport-security: max-age=63072000; includeSubdomains;
x-content-type-options: nosniff
x-dispatcher: dispatcher1saeast1
x-frame-options: SAMEORIGIN
x-vhost: publish
content-length: 18156
cache-control: public, max-age=328291
expires: Thu, 05 Jan 2023 14:11:05 GMT
date: Sun, 01 Jan 2023 18:59:34 GMT
vary: Accept-Encoding
server-timing: cdn-cache; desc=HIT, edge; dur=9
access-control-allow-methods: GET, POST
access-control-allow-origin: internet.itau.com.br
X-Firefox-Spdy: h2
|
|
| push.services.mozilla.com/ | 52.89.20.60 | 101 Switching Protocols | 0 B |
URL HTTP/1.1push.services.mozilla.com/ IP52.89.20.60:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: b8Y5vk/HtrYBmtArRcLTCQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: QRCxEGgH18pqwJEEjqxHkNCk6Hw=
|
|
| s.go-mpulse.net/boomerang/7Z28Y-PBMV2-FAMJ9-MJLW3-HPSMD | 23.38.200.138 | 200 OK | 52 kB |
URL HTTP/2s.go-mpulse.net/boomerang/7Z28Y-PBMV2-FAMJ9-MJLW3-HPSMD IP23.38.200.138:0
File typeC source, ASCII text, with very long lines (31985) Hashcd84496512bb060357bd7e6e877fe2d1 90992f2c8c86540facb19e7ed4ab0ae3e4fdcda4 3b53bb627cec222cfed7c8c6ad8b68f869500bbd4231f4e1ed67358ae74fd5f6
GET /boomerang/7Z28Y-PBMV2-FAMJ9-MJLW3-HPSMD HTTP/1.1
Host: s.go-mpulse.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vejahojemesmoo.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
cache-control: max-age=604800
content-encoding: br
last-modified: Mon, 05 Dec 2022 12:54:13 GMT
timing-allow-origin: *
vary: Accept-Encoding
content-length: 51580
date: Sun, 01 Jan 2023 18:59:35 GMT
X-Firefox-Spdy: h2
|
|
| c.go-mpulse.net/api/config.json?key=7Z28Y-PBMV2-FAMJ9-MJLW3-HPSMD&d=vejahojemesmoo.com&t=5575332&v=1.632.0&sl=0&si=5k9mgxvwk06-rntm33&plugins=AK,ConfigOverride,Continuity,PageParams,IFrameDelay,AutoXHR,SPA,Angular,Backbone,Ember,History,RT,CrossDomain,BW,PaintTiming,NavigationTiming,ResourceTiming,Memory,CACHE_RELOAD,Errors,TPAnalytics,UserTiming,Akamai,LOGN&acao=&ak.ai=537521 | 23.38.200.138 | 200 OK | 51 B |
URL HTTP/1.1c.go-mpulse.net/api/config.json?key=7Z28Y-PBMV2-FAMJ9-MJLW3-HPSMD&d=vejahojemesmoo.com&t=5575332&v=1.632.0&sl=0&si=5k9mgxvwk06-rntm33&plugins=AK,ConfigOverride,Continuity,PageParams,IFrameDelay,AutoXHR,SPA,Angular,Backbone,Ember,History,RT,CrossDomain,BW,PaintTiming,NavigationTiming,ResourceTiming,Memory,CACHE_RELOAD,Errors,TPAnalytics,UserTiming,Akamai,LOGN&acao=&ak.ai=537521 IP23.38.200.138:0
File typeJSON data\012- , ASCII text Hash501d21b9416b4b624c2ba72791aafe06 8ddf225143c70119da478c5b34e21da2445b24e1 5628fa373d30bd09d8579b7e8c2a49ab39ec33977e4c9757ba331c47522110c1
GET /api/config.json?key=7Z28Y-PBMV2-FAMJ9-MJLW3-HPSMD&d=vejahojemesmoo.com&t=5575332&v=1.632.0&sl=0&si=5k9mgxvwk06-rntm33&plugins=AK,ConfigOverride,Continuity,PageParams,IFrameDelay,AutoXHR,SPA,Angular,Backbone,Ember,History,RT,CrossDomain,BW,PaintTiming,NavigationTiming,ResourceTiming,Memory,CACHE_RELOAD,Errors,TPAnalytics,UserTiming,Akamai,LOGN&acao=&ak.ai=537521 HTTP/1.1
Host: c.go-mpulse.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://vejahojemesmoo.com
Connection: keep-alive
Referer: https://vejahojemesmoo.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Access-Control-Allow-Origin: *
Cache-Control: private, max-age=120, stale-while-revalidate=60, stale-if-error=120
Timing-Allow-Origin: *
Content-Length: 51
Date: Sun, 01 Jan 2023 18:59:35 GMT
Connection: keep-alive
Content-Type: application/json
|
|
| r3.o.lencr.org/ | 23.33.119.27 | 200 OK | 503 B |
IP23.33.119.27:0 ASN#20940 Akamai International B.V.
Hash2156f5045eb474b5c02d0c6f64f02c4e 5cc884658ca6b9b357478137cb431f694e773bd8 3e7eb661f6a47c44f20915b8384799874b0f0a69fcedd1d90caaed93f8fce4bb
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "3E7EB661F6A47C44F20915B8384799874B0F0A69FCEDD1D90CAAED93F8FCE4BB"
Last-Modified: Fri, 30 Dec 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5970
Expires: Sun, 01 Jan 2023 20:39:05 GMT
Date: Sun, 01 Jan 2023 18:59:35 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 23.33.119.27 | 200 OK | 503 B |
IP23.33.119.27:0 ASN#20940 Akamai International B.V.
Hash2156f5045eb474b5c02d0c6f64f02c4e 5cc884658ca6b9b357478137cb431f694e773bd8 3e7eb661f6a47c44f20915b8384799874b0f0a69fcedd1d90caaed93f8fce4bb
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "3E7EB661F6A47C44F20915B8384799874B0F0A69FCEDD1D90CAAED93F8FCE4BB"
Last-Modified: Fri, 30 Dec 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5970
Expires: Sun, 01 Jan 2023 20:39:05 GMT
Date: Sun, 01 Jan 2023 18:59:35 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 23.33.119.27 | 200 OK | 503 B |
IP23.33.119.27:0 ASN#20940 Akamai International B.V.
Hash2156f5045eb474b5c02d0c6f64f02c4e 5cc884658ca6b9b357478137cb431f694e773bd8 3e7eb661f6a47c44f20915b8384799874b0f0a69fcedd1d90caaed93f8fce4bb
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "3E7EB661F6A47C44F20915B8384799874B0F0A69FCEDD1D90CAAED93F8FCE4BB"
Last-Modified: Fri, 30 Dec 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5970
Expires: Sun, 01 Jan 2023 20:39:05 GMT
Date: Sun, 01 Jan 2023 18:59:35 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 23.33.119.27 | 200 OK | 503 B |
IP23.33.119.27:0 ASN#20940 Akamai International B.V.
Hash2156f5045eb474b5c02d0c6f64f02c4e 5cc884658ca6b9b357478137cb431f694e773bd8 3e7eb661f6a47c44f20915b8384799874b0f0a69fcedd1d90caaed93f8fce4bb
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "3E7EB661F6A47C44F20915B8384799874B0F0A69FCEDD1D90CAAED93F8FCE4BB"
Last-Modified: Fri, 30 Dec 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5970
Expires: Sun, 01 Jan 2023 20:39:05 GMT
Date: Sun, 01 Jan 2023 18:59:35 GMT
Connection: keep-alive
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd4c2b8d6-2447-4998-8f5b-fa39969098bb.jpeg | 34.120.237.76 | 200 OK | 7.7 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd4c2b8d6-2447-4998-8f5b-fa39969098bb.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash42424c8f9d7f7500d166c13e31044f50 7c1ca7a7bfc5515f5cc384d9e802dcc84fa7cc74 3f513c3442c9f2ffe744a65e542d93c0c2e7a2d0d8632bb585bfa95f0f752620
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd4c2b8d6-2447-4998-8f5b-fa39969098bb.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7733
x-amzn-requestid: c9fcea69-d368-49e0-af97-5973bcc300e1
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: d8mPFFZQIAMFhIg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63ae83f9-4fc855e0180bd7334e14bc29;Sampled=0
x-amzn-remapped-date: Fri, 30 Dec 2022 06:23:54 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: KK70ykzMCeq12Ds7zKsUnlzsBR9qeUgM8pBbnbljyMM_4gbN4MqJfw==
via: 1.1 56c69262ecfa7873b40572ba8a323242.cloudfront.net (CloudFront), 1.1 61bc723adb3b1884ed759711e84e13a8.cloudfront.net (CloudFront), 1.1 google
date: Sat, 31 Dec 2022 21:59:25 GMT
age: 75610
etag: "7c1ca7a7bfc5515f5cc384d9e802dcc84fa7cc74"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| vejahojemesmoo.com/etc.clientlibs/clientlibs/granite/jquery/granite/csrf.min.652a558c3774088b61b0530c184710d1.js | 172.67.215.143 | 200 OK | 10 kB |
URL HTTP/2vejahojemesmoo.com/etc.clientlibs/clientlibs/granite/jquery/granite/csrf.min.652a558c3774088b61b0530c184710d1.js IP172.67.215.143:0
File typeASCII text, with very long lines (3611), with no line terminators Hash25fab3dc6bc708725d43be06fdf4910b a0cb0ad0fa14d25752c3d355c87679f3c6ffd645 5e062c38f76d86d19a3c110e3b5073a52dfaeed4d2e49704ca1868d65a6fb4af
Analyzer | Verdict | Alert | fortinet | Phishing | |
GET /etc.clientlibs/clientlibs/granite/jquery/granite/csrf.min.652a558c3774088b61b0530c184710d1.js HTTP/1.1
Host: vejahojemesmoo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vejahojemesmoo.com/veja/agora/facil/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 01 Jan 2023 18:59:34 GMT
content-type: application/x-javascript
cf-bgj: minify
cf-polished: origSize=3618
cache-control: public, max-age=604800
content-security-policy: upgrade-insecure-requests
etag: W/"e22-63ade4df-f74fb0ea72e17593;gz"
expires: Sat, 07 Jan 2023 19:01:36 GMT
last-modified: Thu, 29 Dec 2022 19:05:03 GMT
platform: hostinger
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
age: 86278
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Aalf%2Fdt8sGJ3NAoqequU45gQrktEll%2BvSkKyruSKyOPIGgqQzXziThMoWYebHuuorLlpa4cHzAJtXUabWy3UrU2cSQNLPU2D692UudbL%2BT29Z%2BLScZ%2FkG2sLng84XFxIrHSQLSM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 782d7e2c5c04b50c-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcb6390ab-134c-4c14-ae9e-9591400607a3.jpeg | 34.120.237.76 | 200 OK | 10 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcb6390ab-134c-4c14-ae9e-9591400607a3.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash2a92938ba6a58bd49a9938a24e404cba 2adeb5279f5a130a4ddc05199bc7b0b197a3cabc 1779831cec3a72aa82e2dab789c043da6a7fa432ff75a644733b0ee5f81b965b
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcb6390ab-134c-4c14-ae9e-9591400607a3.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10426
x-amzn-requestid: b6ad4eac-168a-477b-9883-f77fffc6468f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: d5ZfRG7XIAMF7zg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63ad3c61-7766d0293ca12d6e2436ac66;Sampled=0
x-amzn-remapped-date: Thu, 29 Dec 2022 07:06:09 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: fbLIBt1nYKjHIB6qMh22u5A92HgG0_f84qqlf5rqpwl4brcU5UB8eQ==
via: 1.1 e5af640ced3aa8764b82c4bc3f7af38e.cloudfront.net (CloudFront), 1.1 7eb3b782ab09047ce0d11ee03763894c.cloudfront.net (CloudFront), 1.1 google
date: Sun, 01 Jan 2023 13:01:40 GMT
age: 21475
etag: "2adeb5279f5a130a4ddc05199bc7b0b197a3cabc"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3e6c2763-3047-4d8a-adab-82148ff57727.jpeg | 34.120.237.76 | 200 OK | 7.7 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3e6c2763-3047-4d8a-adab-82148ff57727.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hashdc62c3ca8bc387a91c7d4711b5bc2409 7a984b459227e11984faa2539569a90875a58d29 e14a0e22b58fc1f3f392b842573e3abff7b24eb66db6b351046a186acc3b2954
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3e6c2763-3047-4d8a-adab-82148ff57727.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7660
x-amzn-requestid: 9338abf2-1191-47da-95ff-0a201604fbc2
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: d-sKCEDhoAMFZ4Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63af5a40-433f4ba9780dbc7a485ccbe9;Sampled=0
x-amzn-remapped-date: Fri, 30 Dec 2022 21:38:08 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: ZCKSB-MwWwP2KTj7XMSHOZZcse5xmPE0JtkkBSLGnWqJdNyr-5oQzQ==
via: 1.1 26ca01ec7377e425b59b6a08cb1ec342.cloudfront.net (CloudFront), 1.1 a847181d425b7fc57e81eb3c800bfdf2.cloudfront.net (CloudFront), 1.1 google
date: Sat, 31 Dec 2022 21:47:16 GMT
age: 76339
etag: "7a984b459227e11984faa2539569a90875a58d29"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff91ff871-3f80-4a32-932c-b81a53066ccd.jpeg | 34.120.237.76 | 200 OK | 8.9 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff91ff871-3f80-4a32-932c-b81a53066ccd.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash4367f9a4e85a0b03fc104148023c73e6 81b2d64110d0f5853a7190be93252dac4a428b7a ec0b378ad8bea69e474ba2fd53321467a04143b39da7f438924b0a7604fa6751
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff91ff871-3f80-4a32-932c-b81a53066ccd.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8884
x-amzn-requestid: d0b8e033-5a7a-4c2c-8cee-7cd14d205e5e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: d-XYNFV6IAMFoog=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63af3901-1f152c56526a8cfd6aab77d1;Sampled=0
x-amzn-remapped-date: Fri, 30 Dec 2022 19:16:17 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: -NKgGBkJUbNdMOK5TlrSwxH_I-xI6kENYZyEAPatO-GJB72OciVqbQ==
via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 7eb3b782ab09047ce0d11ee03763894c.cloudfront.net (CloudFront), 1.1 google
date: Sun, 01 Jan 2023 03:12:06 GMT
age: 56849
etag: "81b2d64110d0f5853a7190be93252dac4a428b7a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F21ed4431-081e-4d12-961f-aa4e653e835e.jpeg | 34.120.237.76 | 200 OK | 4.6 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F21ed4431-081e-4d12-961f-aa4e653e835e.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash542c50a9c4ddc940c0b46f84973f26a6 adec3ce0b331c1ae542b07e3105ccbb7e517699a 2e6efc9930b8b281f4b4282a3f1f9815708b245760319bd711844c66f1b1cfb3
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F21ed4431-081e-4d12-961f-aa4e653e835e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4574
x-amzn-requestid: 5656411c-79b6-424e-ba7c-9a546cb6f99b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: d42MyGYVIAMFXig=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63ad03eb-62d0a04f49947a6e42e6083d;Sampled=0
x-amzn-remapped-date: Thu, 29 Dec 2022 03:05:15 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: DFqVV_GbqyTSmrx57w2P_yiSWPvSCcFLQZwwBJbcbmvLautLFMR0CQ==
via: 1.1 a20e81b65d2465c729ce2f6bfe539dd0.cloudfront.net (CloudFront), 1.1 760139201585481b26f947c5f776103a.cloudfront.net (CloudFront), 1.1 google
date: Sun, 01 Jan 2023 04:13:33 GMT
age: 53162
etag: "adec3ce0b331c1ae542b07e3105ccbb7e517699a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 471 B |
IP93.184.220.29:0
Hashcb1d3417a0b0d2434a037980ea83af16 532dc1e7e5c099f8e89871fa768af1b105f21c75 8a448869432d3c3030eb75af5c36429f6c72e101c1c9bd94d50362a8b40b558d
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2313
Cache-Control: max-age=141694
Content-Type: application/ocsp-response
Date: Sun, 01 Jan 2023 18:59:35 GMT
Etag: "63b1558c-1d7"
Expires: Tue, 03 Jan 2023 10:21:09 GMT
Last-Modified: Sun, 01 Jan 2023 09:42:36 GMT
Server: ECS (ska/F716)
X-Cache: HIT
Content-Length: 471
|
|
| www.google-analytics.com/analytics.js | 142.250.74.110 | 200 OK | 20 kB |
URL HTTP/2www.google-analytics.com/analytics.js IP142.250.74.110:0
File typeASCII text, with very long lines (1325) Hash47e6f374ca946fddd5b59871b325736c baa9282efc8785e84d247c3bff518eaa45f101c4 16580b5c87c58e5702e411f1888fdef511094e4cd6d62bb47d16291ffb25985e
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vejahojemesmoo.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20039
date: Sun, 01 Jan 2023 18:41:11 GMT
expires: Sun, 01 Jan 2023 20:41:11 GMT
cache-control: public, max-age=7200
age: 1104
last-modified: Tue, 27 Sep 2022 22:01:05 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| connect.facebook.net/en_US/fbevents.js | 157.240.200.14 | 200 OK | 27 kB |
URL HTTP/2connect.facebook.net/en_US/fbevents.js IP157.240.200.14:0
File typeASCII text, with very long lines (64348) Hash8b26cd4609e2025e51e90573a0fbd6f7 efc2006ae5297ad5ae5e064188b9fba73f6b868f e288b6a1e220f5fb781cfbb0b739b36c6acfdceccff8f0278fc151c241b0b50b
GET /en_US/fbevents.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vejahojemesmoo.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
content-type: application/x-javascript; charset=utf-8
content-security-policy: default-src facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com data: blob: 'self';script-src *.fbcdn.net *.facebook.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src data: blob: 'unsafe-inline' facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com;connect-src *.fbcdn.net *.facebook.net wss://*.fbcdn.net attachment.fbsbx.com blob: 'self';block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
pragma: public
cache-control: public, max-age=1200
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
x-fb-debug: J01KtHob9aLk/FnLZXyv455F61YGPaR92TgDBYErTv+IWH6PxEBACjT2FnQKgA5BHNVANpV4ef936V5/gbIcuA==
content-length: 27298
x-fb-trip-id: 1679558926
date: Sun, 01 Jan 2023 18:59:35 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 471 B |
IP93.184.220.29:0
Hashcb1d3417a0b0d2434a037980ea83af16 532dc1e7e5c099f8e89871fa768af1b105f21c75 8a448869432d3c3030eb75af5c36429f6c72e101c1c9bd94d50362a8b40b558d
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5121
Cache-Control: max-age=144502
Content-Type: application/ocsp-response
Date: Sun, 01 Jan 2023 18:59:35 GMT
Etag: "63b1558c-1d7"
Expires: Tue, 03 Jan 2023 11:07:57 GMT
Last-Modified: Sun, 01 Jan 2023 09:42:36 GMT
Server: ECS (ska/F719)
X-Cache: HIT
Content-Length: 471
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | 200 OK | 472 B |
IP142.250.74.131:0
Hash0a31efc3b6c6aefb8a263a103da6a755 fa82a0344a62721657f6ae2ad8a572ce5aeaa462 e9de5e33c9237585b9ca1de7fffcf025c0bba57a0dec177c9460b43b72ff055d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 01 Jan 2023 18:59:35 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-140135526-14&cid=774933817.1672599568&jid=1618004518&gjid=778066228&_gid=1365107974.1672599568&_u=YGBAiUABBAAAAEAGK~&z=1489015297 | 64.233.164.154 | 200 OK | 4 B |
URL HTTP/2stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-140135526-14&cid=774933817.1672599568&jid=1618004518&gjid=778066228&_gid=1365107974.1672599568&_u=YGBAiUABBAAAAEAGK~&z=1489015297 IP64.233.164.154:0
File typeASCII text, with no line terminators Hash48c0473b7821185d937e685216e2168b 3743e47f8a429a5e87b86cb582d78940733d9d2e 570c4d4674fd20602189c548c145ba1f8ac34bc2e4599a71471969028aa1e25a
POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-140135526-14&cid=774933817.1672599568&jid=1618004518&gjid=778066228&_gid=1365107974.1672599568&_u=YGBAiUABBAAAAEAGK~&z=1489015297 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://vejahojemesmoo.com
Connection: keep-alive
Referer: https://vejahojemesmoo.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://vejahojemesmoo.com
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Sun, 01 Jan 2023 18:59:35 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| cdn.krxd.net/controltag/u2is0nw4m.js | 151.101.130.133 | 200 OK | 9.9 kB |
URL HTTP/2cdn.krxd.net/controltag/u2is0nw4m.js IP151.101.130.133:0
File typeUnicode text, UTF-8 text, with very long lines (50013) Hash4e8af48df2cac11e42dc91d440889e3d c2098506fb001c959fbe8701cfc01966e9225ee1 43de8533b2fced7162a19e85d0c37c8a77680ada4593761d2692eace943bc337
GET /controltag/u2is0nw4m.js HTTP/1.1
Host: cdn.krxd.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vejahojemesmoo.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
etag: "229c9ee359b0e0769f8d4c3a8970039d2b81f64d"
x-app-cache: HIT
cache-control: public, max-age=1200
x-response-time: 1
content-encoding: gzip
x-age: 0
x-cdn-backend: 4FrRTvEr9h480D4BywjehZ--F_config_service_ash_prod
via: 1.1 varnish, 1.1 varnish
x-do-esi: esi
accept-ranges: bytes
date: Sun, 01 Jan 2023 18:59:35 GMT
age: 912
x-served-by: config-service-a002-ash-prod.krxd.net, cache-iad-kcgs7200155-IAD, cache-bma1633-BMA
x-cache: MISS, HIT, HIT
x-cache-hits: 0, 17, 1
x-timer: S1672599576.890918,VS0,VE92
vary: Accept-Encoding
content-length: 9872
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | 200 OK | 472 B |
IP142.250.74.131:0
Hash0a31efc3b6c6aefb8a263a103da6a755 fa82a0344a62721657f6ae2ad8a572ce5aeaa462 e9de5e33c9237585b9ca1de7fffcf025c0bba57a0dec177c9460b43b72ff055d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 01 Jan 2023 18:59:35 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | 200 OK | 21 kB |
IP142.250.74.131:0
File typeWeb Open Font Format (Version 2), TrueType, length 20336, version 1.0\012- data Hash4af6fefda46a12167f38ee74a655602f 9bb3c351d5deafb9851e1ca485dc84f5a81db3b8 5d4c487da56335452735da6cef6a7ca0165959bd0221763f5109dcccef88beb0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 01 Jan 2023 18:59:36 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| cdn.krxd.net/ctjs/controltag.js.d58f47095e6041e576ee04944cca45da | 151.101.130.133 | 200 OK | 85 kB |
URL HTTP/2cdn.krxd.net/ctjs/controltag.js.d58f47095e6041e576ee04944cca45da IP151.101.130.133:0
File typeASCII text, with very long lines (65439) Hashd58f47095e6041e576ee04944cca45da 265282d9373a6b3076d6afe6e6a357a000b6841e 9d81ace3b73ea9d8adc98d8c8d331d0335794bee2e667a84d3ec8b503b2b8be4
GET /ctjs/controltag.js.d58f47095e6041e576ee04944cca45da HTTP/1.1
Host: cdn.krxd.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vejahojemesmoo.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 04 Oct 2022 09:41:11 GMT
etag: "d58f47095e6041e576ee04944cca45da"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=315360000
content-encoding: gzip
expires: Fri, 01 Oct 2032 09:41:10 GMT
content-type: application/javascript
x-cdn-backend: 4FrRTvEr9h480D4BywjehZ--F_Controltag_S3
accept-ranges: bytes
date: Sun, 01 Jan 2023 18:59:36 GMT
via: 1.1 varnish
age: 7706159
x-served-by: cache-bma1633-BMA
x-cache: HIT
x-cache-hits: 672876
x-timer: S1672599576.084929,VS0,VE0
content-length: 84766
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | 200 OK | 471 B |
IP142.250.74.131:0
Hash11c6e9d0b83935b52c5dc565e8537ea1 288ca6d758af5aaa8dfbd27e414ec79c04361dab ce5d50df2403c50c4804f62bb43577d4ae019fe0949f9241d76f303c0c6b8225
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 01 Jan 2023 18:59:36 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-140135526-14&cid=774933817.1672599568&jid=1618004518&_u=YGBAiUABBAAAAEAGK~&z=1412594920 | 142.250.74.131 | 200 OK | 42 B |
URL HTTP/2www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-140135526-14&cid=774933817.1672599568&jid=1618004518&_u=YGBAiUABBAAAAEAGK~&z=1412594920 IP142.250.74.131:0
File typeGIF image data, version 89a, 1 x 1\012- data Hashd89746888da2d9510b64a9f031eaecd5 d5fceb6532643d0d84ffe09c40c481ecdf59e15a ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-140135526-14&cid=774933817.1672599568&jid=1618004518&_u=YGBAiUABBAAAAEAGK~&z=1412594920 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vejahojemesmoo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sun, 01 Jan 2023 18:59:36 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | 200 OK | 18 kB |
IP142.250.74.131:0
File typeWeb Open Font Format (Version 2), TrueType, length 17892, version 1.0\012- data Hash46289a2c68412d62d396d8764b484e44 ab6d4360b184f06c2aaaed00c34a3e1d4627278b a57c99cbe5344eb3c3d56556e1aedda9023adadddb112ce55970000b75d3d0d7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 01 Jan 2023 18:59:36 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | 200 OK | 472 B |
IP142.250.74.131:0
Hash606fcf39141ef88b306e57d4e668a4a7 44beb9bacadce23c8840f7aaf7684e3ca51b8f24 70590f19e047aa25431a481210a260e9a57a103f6686954b0bdbd93bf9350863
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 01 Jan 2023 18:59:36 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| www.facebook.com/tr/?id=515802355634029&ev=PageView&dl=https%3A%2F%2Fvejahojemesmoo.com%2Fveja%2Fagora%2Ffacil%2F&rl=&if=false&ts=1672599568559&sw=1280&sh=1024&v=2.9.90&r=stable&ec=0&o=28&fbp=fb.1.1672599568558.814476152&it=1672599568279&coo=false&tm=1&rqm=GET | 157.240.200.35 | 200 OK | 0 B |
URL HTTP/2www.facebook.com/tr/?id=515802355634029&ev=PageView&dl=https%3A%2F%2Fvejahojemesmoo.com%2Fveja%2Fagora%2Ffacil%2F&rl=&if=false&ts=1672599568559&sw=1280&sh=1024&v=2.9.90&r=stable&ec=0&o=28&fbp=fb.1.1672599568558.814476152&it=1672599568279&coo=false&tm=1&rqm=GET IP157.240.200.35:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tr/?id=515802355634029&ev=PageView&dl=https%3A%2F%2Fvejahojemesmoo.com%2Fveja%2Fagora%2Ffacil%2F&rl=&if=false&ts=1672599568559&sw=1280&sh=1024&v=2.9.90&r=stable&ec=0&o=28&fbp=fb.1.1672599568558.814476152&it=1672599568279&coo=false&tm=1&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vejahojemesmoo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin:
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400
date: Sun, 01 Jan 2023 18:59:36 GMT
X-Firefox-Spdy: h2
|
|
| consumer.krxd.net/consent/set/52208eaa-d8e2-4d37-bff6-b9ca6fa1ac20?idt=device&dt=kxcookie&dc=1&al=1&tg=1&cd=1&sh=1&re=1&_kuid=k1pidff__ga_GA1.2.774933817.1672599568&callback=Krux.ns.itauunibanco.kxjsonp_consent_set_1 | 151.101.130.133 | 200 OK | 244 B |
URL HTTP/2consumer.krxd.net/consent/set/52208eaa-d8e2-4d37-bff6-b9ca6fa1ac20?idt=device&dt=kxcookie&dc=1&al=1&tg=1&cd=1&sh=1&re=1&_kuid=k1pidff__ga_GA1.2.774933817.1672599568&callback=Krux.ns.itauunibanco.kxjsonp_consent_set_1 IP151.101.130.133:0
File typeASCII text, with no line terminators Hash2cf12f2ad1b516429e3e919766592e53 6d7b8e2a0c3fcd1caf0436ff7a59c9d66d416a99 4aa023afabf9161ef18515ce97e58fd06f201b78cd0da4ff8fecf2aa4b9f252d
GET /consent/set/52208eaa-d8e2-4d37-bff6-b9ca6fa1ac20?idt=device&dt=kxcookie&dc=1&al=1&tg=1&cd=1&sh=1&re=1&_kuid=k1pidff__ga_GA1.2.774933817.1672599568&callback=Krux.ns.itauunibanco.kxjsonp_consent_set_1 HTTP/1.1
Host: consumer.krxd.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vejahojemesmoo.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/javascript; charset=UTF-8
cache-control: private, max-age=10
content-encoding: gzip
x-age: 0
accept-ranges: bytes
date: Sun, 01 Jan 2023 18:59:36 GMT
via: 1.1 varnish
x-served-by: consumer-a013-ash-prod.krxd.net, cache-bma1628-BMA
x-cache: MISS, MISS
x-cache-hits: 0, 0
x-timer: S1672599576.320541,VS0,VE96
vary: Accept-Encoding
content-length: 244
X-Firefox-Spdy: h2
|
|
| consumer.krxd.net/consent/get/52208eaa-d8e2-4d37-bff6-b9ca6fa1ac20?idt=device&dt=kxcookie&_kuid=k1pidff__ga_GA1.2.774933817.1672599568&callback=Krux.ns.itauunibanco.kxjsonp_consent_get_0 | 151.101.130.133 | 200 OK | 215 B |
URL HTTP/2consumer.krxd.net/consent/get/52208eaa-d8e2-4d37-bff6-b9ca6fa1ac20?idt=device&dt=kxcookie&_kuid=k1pidff__ga_GA1.2.774933817.1672599568&callback=Krux.ns.itauunibanco.kxjsonp_consent_get_0 IP151.101.130.133:0
File typeASCII text, with no line terminators Hash349ee45b08edf5c601a9dc0bd1207347 dd05645cfd735e921cbb7829526ba170cae47505 bdf7d13f4e27d2028c8d7203edfa2be76a017e2dc1da50ac2e49eccedbbe3351
GET /consent/get/52208eaa-d8e2-4d37-bff6-b9ca6fa1ac20?idt=device&dt=kxcookie&_kuid=k1pidff__ga_GA1.2.774933817.1672599568&callback=Krux.ns.itauunibanco.kxjsonp_consent_get_0 HTTP/1.1
Host: consumer.krxd.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vejahojemesmoo.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/javascript; charset=UTF-8
cache-control: max-age=1800
content-encoding: gzip
x-age: 0
accept-ranges: bytes
date: Sun, 01 Jan 2023 18:59:36 GMT
via: 1.1 varnish
age: 0
x-served-by: consumer-a010-ash-prod.krxd.net, cache-bma1628-BMA
x-cache: MISS, MISS
x-cache-hits: 0, 0
x-timer: S1672599576.331217,VS0,VE122
vary: Accept-Encoding
content-length: 215
X-Firefox-Spdy: h2
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 471 B |
IP93.184.220.29:0
Hash7adf010b0b4b404830f1d9e4aa612aa6 b0d3df65b195ec06d5e4c7215b27e7dd9697624c aa6ac7c3d06e17198f7d98479ca93abe0c807c9e37d27c287de10f7fbf1e972f
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1814
Cache-Control: max-age=149508
Content-Type: application/ocsp-response
Date: Sun, 01 Jan 2023 18:59:36 GMT
Etag: "63b17606-1d7"
Expires: Tue, 03 Jan 2023 12:31:24 GMT
Last-Modified: Sun, 01 Jan 2023 12:01:10 GMT
Server: ECS (ska/F70F)
X-Cache: HIT
Content-Length: 471
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 471 B |
IP93.184.220.29:0
Hash555f2077f0fb1285392747225264b207 0f17af6d21d212a1ed93eb5b243bde8bd4fd4967 29a23a08e6d63966d1c6221f110c34287a8d92cebe48c016c7867ed182e09016
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=109853
Content-Type: application/ocsp-response
Date: Sun, 01 Jan 2023 18:59:36 GMT
Etag: "63b0e235-1d7"
Expires: Tue, 03 Jan 2023 01:30:29 GMT
Last-Modified: Sun, 01 Jan 2023 01:30:29 GMT
Server: nginx
Content-Length: 471
|
|
| cdn.krxd.net/userdata/get?pub=52208eaa-d8e2-4d37-bff6-b9ca6fa1ac20&_kuid=k1pidff__ga_GA1.2.774933817.1672599568&technographics=1&callback=Krux.ns.itauunibanco.kxjsonp_userdata | 151.101.130.133 | 200 OK | 301 B |
URL HTTP/2cdn.krxd.net/userdata/get?pub=52208eaa-d8e2-4d37-bff6-b9ca6fa1ac20&_kuid=k1pidff__ga_GA1.2.774933817.1672599568&technographics=1&callback=Krux.ns.itauunibanco.kxjsonp_userdata IP151.101.130.133:0
File typeASCII text, with very long lines (430), with no line terminators Hashf7b53c8c7b3a20a268666ca4646a7082 b5ec8a57c2346855db84bee753b613dcf68bf109 3a76bfeaa32111f4452fa8a0dded67a4d51a2c4e4f48fa2d3b4b11b358e089a2
GET /userdata/get?pub=52208eaa-d8e2-4d37-bff6-b9ca6fa1ac20&_kuid=k1pidff__ga_GA1.2.774933817.1672599568&technographics=1&callback=Krux.ns.itauunibanco.kxjsonp_userdata HTTP/1.1
Host: cdn.krxd.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vejahojemesmoo.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/javascript
cache-control: private, max-age=1800
content-encoding: gzip
x-age: 0
x-cdn-backend: 4FrRTvEr9h480D4BywjehZ--F_userdata_ash_prod_krxd_net___UserData_Service_V2
accept-ranges: bytes
date: Sun, 01 Jan 2023 18:59:36 GMT
via: 1.1 varnish
age: 0
x-served-by: userdata-a016-ash-prod.krxd.net, cache-bma1633-BMA
x-cache: MISS, MISS
x-cache-hits: 0, 0
x-timer: S1672599577.900432,VS0,VE97
vary: Accept-Encoding
content-length: 301
X-Firefox-Spdy: h2
|
|
| beacon.krxd.net/optout_check?_kuid=k1pidff__ga_GA1.2.774933817.1672599568&callback=Krux.ns.itauunibanco.kxjsonp_optOutCheck | 54.170.181.43 | 200 OK | 66 B |
URL HTTP/2beacon.krxd.net/optout_check?_kuid=k1pidff__ga_GA1.2.774933817.1672599568&callback=Krux.ns.itauunibanco.kxjsonp_optOutCheck IP54.170.181.43:0
File typeASCII text, with no line terminators Hashadc5ead80b007863c693a2b6d6cf5dd0 dad19315ce5a96b1174ad95a018aeffa38115ae0 f9bd735383ca0bc2798733db2a8ba7dc484eca13199a0a42a0f0f3402fba7b91
GET /optout_check?_kuid=k1pidff__ga_GA1.2.774933817.1672599568&callback=Krux.ns.itauunibanco.kxjsonp_optOutCheck HTTP/1.1
Host: beacon.krxd.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vejahojemesmoo.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 01 Jan 2023 18:59:36 GMT
content-type: text/javascript
cache-control: private, max-age=0, s-max-age=0
x-served-by: beacon-n007-dub-prod.krxd.net
x-request-time: D=38 t=1672599576
X-Firefox-Spdy: h2
|
|
| vejahojemesmoo.com/veja/agora/facil/ | 172.67.215.143 | 200 OK | 0 B |
URL HTTP/2vejahojemesmoo.com/veja/agora/facil/ IP172.67.215.143:0
Analyzer | Verdict | Alert | openphish | Magalu | | fortinet | Phishing | |
GET /veja/agora/facil/ HTTP/1.1
Host: vejahojemesmoo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
date: Sun, 01 Jan 2023 18:59:34 GMT
content-type: text/html; charset=UTF-8
x-powered-by: PHP/8.0.24
vary: Accept-Encoding
platform: hostinger
content-security-policy: upgrade-insecure-requests
x-turbo-charged-by: LiteSpeed
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=2RNQETR%2F4Rz%2BA2ART9hkNJHgVunJ7g7ZgCmNxvo7wenW%2FhFtbYql4oRGX8DB2gIbwKT09Jaxxxh6hQU0fcZfbkqoT1lwMXToNDQ49IZZwbpFaf2ULmSlWHTKgIwKHAfsAOEgaWQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 782d7e285db9b50c-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| vejahojemesmoo.com/_arquivosestaticos/Itau/defaultTheme/js/da/framework/importLibJSFrameworkDA8166.js?KGXCXPV | 172.67.215.143 | 200 OK | 0 B |
URL HTTP/2vejahojemesmoo.com/_arquivosestaticos/Itau/defaultTheme/js/da/framework/importLibJSFrameworkDA8166.js?KGXCXPV IP172.67.215.143:0
GET /_arquivosestaticos/Itau/defaultTheme/js/da/framework/importLibJSFrameworkDA8166.js?KGXCXPV HTTP/1.1
Host: vejahojemesmoo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vejahojemesmoo.com/veja/agora/facil/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 01 Jan 2023 18:59:34 GMT
content-type: application/x-javascript
cf-bgj: minify
cf-polished: origSize=1941
cache-control: public, max-age=604800
content-security-policy: upgrade-insecure-requests
etag: W/"795-63ade4e0-106d2b32a0e4546a;gz"
expires: Sat, 07 Jan 2023 19:01:32 GMT
last-modified: Thu, 29 Dec 2022 19:05:04 GMT
platform: hostinger
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
age: 86282
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=SIntnIqMR6JsU8SMs2aEq7%2BC0bTBl%2FC8qSlgHlDC5nQDQnX40CmEfxsEyY7nT5bYwExcNJ4j35TEuHEiG30vqfC1qDeX73XKcSdYvOSzW8lshRMEfOlrwbkGt%2FzA0FE23WbWD0A%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 782d7e2c4be2b50c-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| vejahojemesmoo.com/www.googletagservices.com/tag/js/gpt.js | 172.67.215.143 | 404 Not Found | 0 B |
URL HTTP/2vejahojemesmoo.com/www.googletagservices.com/tag/js/gpt.js IP172.67.215.143:0
Analyzer | Verdict | Alert | fortinet | Phishing | |
GET /www.googletagservices.com/tag/js/gpt.js HTTP/1.1
Host: vejahojemesmoo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vejahojemesmoo.com/veja/agora/facil/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
date: Sun, 01 Jan 2023 18:59:34 GMT
content-type: text/html
last-modified: Tue, 28 Jun 2022 18:39:12 GMT
vary: Accept-Encoding
platform: hostinger
x-turbo-charged-by: LiteSpeed
cache-control: max-age=14400
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=g0CWTqsrnhs0KKLNnYFZOuF7C5vwyqnjy6GKbx7RxScXWitF81c3RhWdMmwhNjizg6Vl7Nt865v4xCnKqwS9qWN%2F78%2B53CxYeSrJFTk7lpRsu95DicBNFJvURGieNryFTw1Aysc%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 782d7e2c5bfdb50c-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| vejahojemesmoo.com/etc.clientlibs/sharedcomponents/components/fragments/modal-generic-error/v1/modal-generic-error/clientlib.min.2d598e5d51a32ffac757870976e94d21.js | 172.67.215.143 | 200 OK | 0 B |
URL HTTP/2vejahojemesmoo.com/etc.clientlibs/sharedcomponents/components/fragments/modal-generic-error/v1/modal-generic-error/clientlib.min.2d598e5d51a32ffac757870976e94d21.js IP172.67.215.143:0
Analyzer | Verdict | Alert | fortinet | Phishing | |
GET /etc.clientlibs/sharedcomponents/components/fragments/modal-generic-error/v1/modal-generic-error/clientlib.min.2d598e5d51a32ffac757870976e94d21.js HTTP/1.1
Host: vejahojemesmoo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vejahojemesmoo.com/veja/agora/facil/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 01 Jan 2023 18:59:34 GMT
content-type: application/x-javascript
cf-bgj: minify
cache-control: public, max-age=604800
content-security-policy: upgrade-insecure-requests
etag: W/"1de-63ade4e2-c7cc7bc21ec57447;gz"
expires: Sat, 07 Jan 2023 19:01:38 GMT
last-modified: Thu, 29 Dec 2022 19:05:06 GMT
platform: hostinger
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
age: 86276
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Wk9Ffv36ipZXhG%2Bmi1CTjLGV4L9ACYmx5j7kULHCnBoG%2BFvctnPIHdGAwKndWEnCssp0aqdeEoGQs4SNspBPrWYiG1CBU%2Byh5o9kKhLRx9iGg1Xopy4VeGnTkWnzVssDhE0QNzA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 782d7e2c6c0eb50c-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| www.itau.com.br/ | 23.72.139.66 | 200 OK | 0 B |
IP23.72.139.66:0 ASN#20940 Akamai International B.V.
GET / HTTP/1.1
Host: www.itau.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vejahojemesmoo.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/html; charset=utf-8
cross-origin-opener-policy: same-origin
cross-origin-resource-policy: same-origin
x-dns-prefetch-control: off
expect-ct: max-age=0
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=15552000; includeSubDomains
x-download-options: noopen
x-content-type-options: nosniff
origin-agent-cluster: ?1
x-permitted-cross-domain-policies: none
referrer-policy: no-referrer
x-xss-protection: 0
etag: W/"3da6e-kpcgvXTX6N3LS0dOGBDLIWDABh4"
x-amz-cf-pop: FRA56-C1
x-amz-cf-id: VSDUA-KmdL8pdTo43lZp_Kf2SDorzIJCjXX0PN1DdgOM2RrngkR99w==
x-akam-sw-version: 0.5.0
x-akamai-transformed: 9 - 0 pmb=mNONE,1mRUM,2
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=86293
expires: Mon, 02 Jan 2023 18:57:48 GMT
date: Sun, 01 Jan 2023 18:59:35 GMT
content-length: 27858
set-cookie: abtest_stickness=3c3106c99d500000360def5b500200003d0a0000; expires=Mon, 31-Dec-2038 23:59:59 GMT; path=/
server-timing: cdn-cache; desc=HIT, edge; dur=1
cupcake: true
access-control-allow-methods: GET, POST
access-control-allow-origin: internet.itau.com.br
X-Firefox-Spdy: h2
|
|
| vejahojemesmoo.com/etc.clientlibs/itau/clientlibs/clientlib-base.min.193783e659aa335596bb391b353d2eb0.css | 172.67.215.143 | 200 OK | 0 B |
URL HTTP/2vejahojemesmoo.com/etc.clientlibs/itau/clientlibs/clientlib-base.min.193783e659aa335596bb391b353d2eb0.css IP172.67.215.143:0
GET /etc.clientlibs/itau/clientlibs/clientlib-base.min.193783e659aa335596bb391b353d2eb0.css HTTP/1.1
Host: vejahojemesmoo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vejahojemesmoo.com/veja/agora/facil/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 01 Jan 2023 18:59:34 GMT
content-type: text/css
cf-bgj: minify
cf-polished: origSize=1485561
cache-control: public, max-age=604800
content-security-policy: upgrade-insecure-requests
etag: W/"16aaf9-63ade4de-d743d9040ea0da29;gz"
expires: Sat, 07 Jan 2023 19:01:32 GMT
last-modified: Thu, 29 Dec 2022 19:05:02 GMT
platform: hostinger
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
age: 86282
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=IVyZwlfL16TFGwHCsWc32SY7Pz6Qc5NT85euIaA7oa95Wqu%2Fli0IiaBh44F%2Bc58jZhlob7VPCGK0%2FJ%2FC2Pr7SY%2BzqCx2QMC%2FUjHK4mYGHqK0WUzi3zSeYH6Dci%2FrjU0nk6cSCHg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 782d7e2c5be9b50c-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| wpp.krxd.net/psegs/52208eaa-d8e2-4d37-bff6-b9ca6fa1ac20?callback=kruxPsegsCallback&_kuid=k1pidff__ga_GA1.2.774933817.1672599568 | 54.217.107.149 | 200 OK | 0 B |
URL HTTP/2wpp.krxd.net/psegs/52208eaa-d8e2-4d37-bff6-b9ca6fa1ac20?callback=kruxPsegsCallback&_kuid=k1pidff__ga_GA1.2.774933817.1672599568 IP54.217.107.149:0
GET /psegs/52208eaa-d8e2-4d37-bff6-b9ca6fa1ac20?callback=kruxPsegsCallback&_kuid=k1pidff__ga_GA1.2.774933817.1672599568 HTTP/1.1
Host: wpp.krxd.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vejahojemesmoo.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 01 Jan 2023 18:59:36 GMT
content-type: application/javascript
referrer-policy: origin-when-cross-origin, strict-origin-when-cross-origin
x-frame-options: DENY
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-permitted-cross-domain-policies: master-only
vary: Accept-Encoding
content-encoding: gzip
x-cache: MISS
x-cache-hits: 0
x-served-by: wpp-api-a002-dub-prod.krxd.net
x-age: 0
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| vejahojemesmoo.com/etc.clientlibs/sharedcomponents/components/fragments/modal-generic-error/v1/modal-generic-error/clientlib.min.99ac735ab506cdac40585bf1ee6cc677.css | 172.67.215.143 | 200 OK | 0 B |
URL HTTP/2vejahojemesmoo.com/etc.clientlibs/sharedcomponents/components/fragments/modal-generic-error/v1/modal-generic-error/clientlib.min.99ac735ab506cdac40585bf1ee6cc677.css IP172.67.215.143:0
GET /etc.clientlibs/sharedcomponents/components/fragments/modal-generic-error/v1/modal-generic-error/clientlib.min.99ac735ab506cdac40585bf1ee6cc677.css HTTP/1.1
Host: vejahojemesmoo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vejahojemesmoo.com/veja/agora/facil/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 01 Jan 2023 18:59:34 GMT
content-type: text/css
cf-bgj: minify
cf-polished: origSize=2201
cache-control: public, max-age=604800
content-security-policy: upgrade-insecure-requests
etag: W/"899-63ade4e2-964a96ef3528f027;gz"
expires: Sat, 07 Jan 2023 19:01:37 GMT
last-modified: Thu, 29 Dec 2022 19:05:06 GMT
platform: hostinger
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
age: 86277
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=WQ0l2SOdQVYnFGggnUYfvnQnTsoi3YOZTUfSdLhQHpLZZNCgTbS7KyjrivW%2BJ4q8sopjolm9yIzgzmkJbGY7wMGXANxOfs%2BxIesRUCQy%2FBOsexHfJKkGmV7DTe0QwJjoPtDCyrQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 782d7e2c6c0bb50c-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| vejahojemesmoo.com/etc.clientlibs/itau/clientlibs/clientlib-base.min.45da3f0a9c4a280d63be7cee4b2d0208.js | 172.67.215.143 | 200 OK | 0 B |
URL HTTP/2vejahojemesmoo.com/etc.clientlibs/itau/clientlibs/clientlib-base.min.45da3f0a9c4a280d63be7cee4b2d0208.js IP172.67.215.143:0
Analyzer | Verdict | Alert | fortinet | Phishing | |
GET /etc.clientlibs/itau/clientlibs/clientlib-base.min.45da3f0a9c4a280d63be7cee4b2d0208.js HTTP/1.1
Host: vejahojemesmoo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vejahojemesmoo.com/veja/agora/facil/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 01 Jan 2023 18:59:34 GMT
content-type: application/x-javascript
cf-bgj: minify
cf-polished: origSize=1110241
cache-control: public, max-age=604800
content-security-policy: upgrade-insecure-requests
etag: W/"10f0e1-63ade4de-93a0eb85df841d50;gz"
expires: Sat, 07 Jan 2023 19:01:36 GMT
last-modified: Thu, 29 Dec 2022 19:05:02 GMT
platform: hostinger
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
age: 86277
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=udlcX4Na3pthFLg8yxlSuo2arYySFyshYHdEJB6e4xPmR3sOCWSmc%2F1lleUNIXjMXlxdrS2RGEdcE4bIS0%2F%2BXN%2BB319DRIbd9DMWj9C9gQVkQ0DFIUwQTxLGafey3r2d5r3wHG4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 782d7e2c5c07b50c-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| vejahojemesmoo.com/etc.clientlibs/sharedcomponents/clientlibs/clientlib-base.min.50aa770ff9a7e90e0b9f2f9d351c6f4d.js | 172.67.215.143 | 200 OK | 0 B |
URL HTTP/2vejahojemesmoo.com/etc.clientlibs/sharedcomponents/clientlibs/clientlib-base.min.50aa770ff9a7e90e0b9f2f9d351c6f4d.js IP172.67.215.143:0
Analyzer | Verdict | Alert | fortinet | Phishing | |
GET /etc.clientlibs/sharedcomponents/clientlibs/clientlib-base.min.50aa770ff9a7e90e0b9f2f9d351c6f4d.js HTTP/1.1
Host: vejahojemesmoo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vejahojemesmoo.com/veja/agora/facil/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 01 Jan 2023 18:59:34 GMT
content-type: application/x-javascript
cf-bgj: minify
cf-polished: origSize=777054
cache-control: public, max-age=604800
content-security-policy: upgrade-insecure-requests
etag: W/"bdb5e-63ade4de-f933404c83a0037f;gz"
expires: Sun, 08 Jan 2023 05:14:49 GMT
last-modified: Thu, 29 Dec 2022 19:05:02 GMT
platform: hostinger
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
age: 49485
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=heeA1Th%2B9o2Yr4EGkumhqp0H%2BDfiR1e9Te3ZalHtx9k3c5rrjrm0eR78I9sg6eDqyBeVuO%2FkWRzM0hoUGyFpiRDaTDM5m5sg0R7kpogg6AXygVkqdoL6Rj6Io2x4%2FMy%2BqJNxad4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 782d7e2c5c02b50c-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| www.itau.com.br/ | 23.72.139.66 | 200 OK | 0 B |
IP23.72.139.66:0 ASN#20940 Akamai International B.V.
GET / HTTP/1.1
Host: www.itau.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vejahojemesmoo.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html; charset=utf-8
cross-origin-opener-policy: same-origin
cross-origin-resource-policy: same-origin
x-dns-prefetch-control: off
expect-ct: max-age=0
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=15552000; includeSubDomains
x-download-options: noopen
x-content-type-options: nosniff
origin-agent-cluster: ?1
x-permitted-cross-domain-policies: none
referrer-policy: no-referrer
x-xss-protection: 0
etag: W/"3da6e-kpcgvXTX6N3LS0dOGBDLIWDABh4"
x-amz-cf-pop: FRA56-C1
x-amz-cf-id: VSDUA-KmdL8pdTo43lZp_Kf2SDorzIJCjXX0PN1DdgOM2RrngkR99w==
x-akam-sw-version: 0.5.0
x-akamai-transformed: 9 - 0 pmb=mNONE,1mRUM,2
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=86293
expires: Mon, 02 Jan 2023 18:57:47 GMT
date: Sun, 01 Jan 2023 18:59:34 GMT
content-length: 27861
set-cookie: abtest_stickness=3c3106c99d500000360def5b500200003d0a0000; expires=Mon, 31-Dec-2038 23:59:59 GMT; path=/
server-timing: cdn-cache; desc=HIT, edge; dur=1
cupcake: true
access-control-allow-methods: GET, POST
access-control-allow-origin: internet.itau.com.br
X-Firefox-Spdy: h2
|
|
| vejahojemesmoo.com/www.googleoptimize.com/optimizee3bf.js?id=GTM-T634WS8 | 172.67.215.143 | 404 Not Found | 0 B |
URL HTTP/2vejahojemesmoo.com/www.googleoptimize.com/optimizee3bf.js?id=GTM-T634WS8 IP172.67.215.143:0
Analyzer | Verdict | Alert | fortinet | Phishing | |
GET /www.googleoptimize.com/optimizee3bf.js?id=GTM-T634WS8 HTTP/1.1
Host: vejahojemesmoo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vejahojemesmoo.com/veja/agora/facil/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
date: Sun, 01 Jan 2023 18:59:34 GMT
content-type: text/html
last-modified: Tue, 28 Jun 2022 18:39:12 GMT
vary: Accept-Encoding
platform: hostinger
x-turbo-charged-by: LiteSpeed
cache-control: max-age=14400
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Swoq2ni956XF4UTO0GCFHC1LvW8Xlos04HcS%2FJJb74zFkCdghQw32ce9eQHE2Az3YvtZ%2FhxmZtC%2FRV1IwT9JbofYFN%2BAlaWI8hSY5e4B7hp5D5ywQINIs%2BskWbB3ZQNw6H4eHWE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 782d7e2c4be0b50c-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| beacon.krxd.net/cookie2json?_kuid=k1pidff__ga_GA1.2.774933817.1672599568&callback=Krux.ns.itauunibanco.kxjsonp_3pevents | 54.170.181.43 | 200 OK | 0 B |
URL HTTP/2beacon.krxd.net/cookie2json?_kuid=k1pidff__ga_GA1.2.774933817.1672599568&callback=Krux.ns.itauunibanco.kxjsonp_3pevents IP54.170.181.43:0
GET /cookie2json?_kuid=k1pidff__ga_GA1.2.774933817.1672599568&callback=Krux.ns.itauunibanco.kxjsonp_3pevents HTTP/1.1
Host: beacon.krxd.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vejahojemesmoo.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 01 Jan 2023 18:59:36 GMT
content-type: text/javascript
cache-control: private, max-age=1800, s-max-age=1800
x-served-by: beacon-n006-dub-prod.krxd.net
x-request-time: D=24 t=1672599576
X-Firefox-Spdy: h2
|
|