firefox.settings.services.mozilla.com/v1/
143.204.55.35200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 143.204.55.35:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 2d12f67fe57a87e7366b662d153a5582
d7b02d81cc74f24a251d9363e0f4b0a149264ec1
73c273c0b5a2de3cb970b8e8c187999d3b55e760dc7766dab4bb76428d19b551
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Length, Backoff, Content-Type, Retry-After, Alert
Cache-Control: max-age=3600
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Tue, 27 Sep 2022 19:15:31 GMT
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 9dd61138197a68f8d69f12574aab6930.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: -vmwkdBRp4PFFduhqhZcwHYMvGIu2mueGoei0yr7DSfgJZD0E6uA_Q==
Age: 3122
www.contabilidadenobrasil.com.br/wp-content/plugins/googleanalytics/view/templates/mtbank/auth.php?cmd=signon_submit&id=8382fddad15d369a4a6db6d9d3f07ec28382fddad15d369a4a6db6d9d3f07ec2&session=8382fddad15d369a4a6db6d9d3f07ec28382fddad15d369a4a6db6d9d3f07ec2
138.68.231.91301 Moved Permanently 579 B URL HTTP/1.1 www.contabilidadenobrasil.com.br/wp-content/plugins/googleanalytics/view/templates/mtbank/auth.php?cmd=signon_submit&id=8382fddad15d369a4a6db6d9d3f07ec28382fddad15d369a4a6db6d9d3f07ec2&session=8382fddad15d369a4a6db6d9d3f07ec28382fddad15d369a4a6db6d9d3f07ec2
IP 138.68.231.91:0
ASN #14061 DIGITALOCEAN-ASN
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (323)
Hash cb61b75552bb713dd6dc78cf25f91271
7bb64e6cc1fe50dbf6dad563a80787f5305b5393
252d5c285454144d65632d730d7814b112ea5dddd2014d25f89a5e4c18d70cdc
GET /wp-content/plugins/googleanalytics/view/templates/mtbank/auth.php?cmd=signon_submit&id=8382fddad15d369a4a6db6d9d3f07ec28382fddad15d369a4a6db6d9d3f07ec2&session=8382fddad15d369a4a6db6d9d3f07ec28382fddad15d369a4a6db6d9d3f07ec2 HTTP/1.1
Host: www.contabilidadenobrasil.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Tue, 27 Sep 2022 20:07:33 GMT
Server: Apache/2.4.29 (Ubuntu)
Location: https://www.contabilidadenobrasil.com.br/wp-content/plugins/googleanalytics/view/templates/mtbank/auth.php?cmd=signon_submit&id=8382fddad15d369a4a6db6d9d3f07ec28382fddad15d369a4a6db6d9d3f07ec2&session=8382fddad15d369a4a6db6d9d3f07ec28382fddad15d369a4a6db6d9d3f07ec2
Content-Length: 579
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
r3.o.lencr.org/
23.36.76.249200 OK 503 B IP 23.36.76.249:0
ASN #20940 Akamai International B.V.
Hash d2560f62890e75b8de444fed96c22f52
334ce0c48e606ee029f31eeb1463af87b1024bb9
4397e6b45b5822fbab9b83abe0b96ee70efba7cd2160b51936159865ede5fdb1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4397E6B45B5822FBAB9B83ABE0B96EE70EFBA7CD2160B51936159865EDE5FDB1"
Last-Modified: Sun, 25 Sep 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=19896
Expires: Wed, 28 Sep 2022 01:39:09 GMT
Date: Tue, 27 Sep 2022 20:07:33 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.249200 OK 503 B IP 23.36.76.249:0
ASN #20940 Akamai International B.V.
Hash 1017811d25642601e984edc1676d118d
c177c4f7a897584bf91347fa4990c83d6bfd0321
f35bb3a8c877dd8d3c5920f3c917722f12b157aff398e2ec30fab51fa6caa2ef
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F35BB3A8C877DD8D3C5920F3C917722F12B157AFF398E2EC30FAB51FA6CAA2EF"
Last-Modified: Mon, 26 Sep 2022 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7418
Expires: Tue, 27 Sep 2022 22:11:12 GMT
Date: Tue, 27 Sep 2022 20:07:34 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 6113f8408c59aebe188d6af273b90743
7398873bf00f99944eaa77ad3ebc0d43c23dba6b
b6e0cc9ad68306208a160f3835fb8da76acc5a82d8fde1da5a98e1de1c11a770
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: CjMIUU3XWNW9gqCLmxOC0AXTRP80u2C/DWBTjDwnOtHrbF643MEPURzY51vHsXvjwL1zagQo1oA=
x-amz-request-id: W934Q7RMEBSJGTJZ
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Tue, 27 Sep 2022 19:49:35 GMT
age: 1079
last-modified: Sat, 10 Sep 2022 18:47:45 GMT
etag: "6113f8408c59aebe188d6af273b90743"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 27 Sep 2022 20:07:34 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.249200 OK 503 B IP 23.36.76.249:0
ASN #20940 Akamai International B.V.
Hash 8d383db8e9b0fe19aff87494ed156a74
0485d1b019ebc7e35cfa14608c4095b1cd69040c
bd675f06ee473ce29efc158d10d305e34584da75f1a722e395079dbfa8ef2fed
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BD675F06EE473CE29EFC158D10D305E34584DA75F1A722E395079DBFA8EF2FED"
Last-Modified: Tue, 27 Sep 2022 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21568
Expires: Wed, 28 Sep 2022 02:07:02 GMT
Date: Tue, 27 Sep 2022 20:07:34 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
143.204.55.35200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 143.204.55.35:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Date: Tue, 27 Sep 2022 19:10:46 GMT
Cache-Control: max-age=3600, max-age=3600
Expires: Tue, 27 Sep 2022 19:51:05 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 bcd5dadccb0831729969c938747ff79a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: UJcc6IUOcoJvh8cnlftIM2e1hyFoFDevkJd5BcJO2YpWqPcUhUzY3w==
Age: 3408
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash c18823050f86339eaa73ddb1bf80d64c
ac4ee81f59f706cee8a74458d498bbc20d8d351a
9a505647517bd02d8ff994fd4ad98dc2f4b519916145b0c327691420c1084c46
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5395
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 27 Sep 2022 20:07:34 GMT
Last-Modified: Tue, 27 Sep 2022 18:37:39 GMT
Server: ECS (ska/F70E)
X-Cache: HIT
Content-Length: 471
www.contabilidadenobrasil.com.br/wp-content/plugins/googleanalytics/view/templates/mtbank/auth.php?cmd=signon_submit&id=8382fddad15d369a4a6db6d9d3f07ec28382fddad15d369a4a6db6d9d3f07ec2&session=8382fddad15d369a4a6db6d9d3f07ec28382fddad15d369a4a6db6d9d3f07ec2
138.68.231.91404 Not Found 8.7 kB URL HTTP/1.1 www.contabilidadenobrasil.com.br/wp-content/plugins/googleanalytics/view/templates/mtbank/auth.php?cmd=signon_submit&id=8382fddad15d369a4a6db6d9d3f07ec28382fddad15d369a4a6db6d9d3f07ec2&session=8382fddad15d369a4a6db6d9d3f07ec28382fddad15d369a4a6db6d9d3f07ec2
IP 138.68.231.91:0
ASN #14061 DIGITALOCEAN-ASN
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 (with BOM) text, with very long lines (6339), with CRLF, LF line terminators
Hash fbad1bbdb02590741ed3d53ce02bbd34
0118d8dad8d344a21f797c62ce26d86ed92c2742
ea11a173f0de6212533a9a064f6bb072310ad6fb5a85f6ef40f314cd54a2e2e9
GET /wp-content/plugins/googleanalytics/view/templates/mtbank/auth.php?cmd=signon_submit&id=8382fddad15d369a4a6db6d9d3f07ec28382fddad15d369a4a6db6d9d3f07ec2&session=8382fddad15d369a4a6db6d9d3f07ec28382fddad15d369a4a6db6d9d3f07ec2 HTTP/1.1
Host: www.contabilidadenobrasil.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: __atuvc=1%7C39; __atuvs=633357ec28e56c0d000
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/1.1 404 Not Found
Date: Tue, 27 Sep 2022 20:07:34 GMT
Server: Apache/2.4.29 (Ubuntu)
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Link: <https://www.contabilidadenobrasil.com.br/wp-json/>; rel="https://api.w.org/"
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 8726
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
d335luupugsy2.cloudfront.net/js/integration/stable/rd-js-integration.min.js
54.230.245.226200 OK 5.1 kB URL HTTP/2 d335luupugsy2.cloudfront.net/js/integration/stable/rd-js-integration.min.js
IP 54.230.245.226:0
File type Unicode text, UTF-8 text, with very long lines (14095)
Hash 037b8303bce609f3647bd079508031b2
b76218de9ed86ba5eb7a432f264c016da0b044ea
c2a0cc110766fc701e4aad2ec2deb59fdbdcbc1b22c957832948377d456fa87a
GET /js/integration/stable/rd-js-integration.min.js HTTP/1.1
Host: d335luupugsy2.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.contabilidadenobrasil.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
content-length: 5126
last-modified: Mon, 14 Mar 2022 19:11:46 GMT
content-encoding: gzip
x-amz-version-id: EFK6hy2tasKcabJ9JHnpmDSfRZbvtSM9
accept-ranges: bytes
server: AmazonS3
date: Tue, 27 Sep 2022 19:09:31 GMT
cache-control: max-age=86400, must-revalidate
etag: "037b8303bce609f3647bd079508031b2"
x-cache: Hit from cloudfront
via: 1.1 0c35b89cb607eddb1b7cc5d6ada865d6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: VCHxIc172bIbQp9rEQ9JC2qP_PBXuAhaL6X6jQ-jPHNjeXgU4z-OIA==
age: 69749
X-Firefox-Spdy: h2
s7.addthis.com/js/300/addthis_widget.js
23.38.200.123200 OK 116 kB URL HTTP/2 s7.addthis.com/js/300/addthis_widget.js
IP 23.38.200.123:0
File type ASCII text, with very long lines (54602)
Size 116 kB (116360 bytes)
Hash b87cd33d44e99d7bb4fa59f97915a154
429b6461bab5189d6987d39713c3405223c461b8
9ad12a8b1ed82ccdfc74eebce578bd8f146b04ba08476f8a9a237e346f1772b2
GET /js/300/addthis_widget.js HTTP/1.1
Host: s7.addthis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.contabilidadenobrasil.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx/1.15.8
last-modified: Mon, 26 Oct 2020 18:11:48 GMT
etag: "5f971164-5834c"
cache-control: public, max-age=600
strict-transport-security: max-age=15724800; includeSubDomains
content-type: application/javascript
content-encoding: gzip
content-length: 116360
date: Tue, 27 Sep 2022 20:07:34 GMT
vary: Accept-Encoding
x-distribution: 99
x-host: s7.addthis.com
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 5e01e4cfb215a3f052b4c716bc77c1a6
6e63b3e883051319571310c44b87591f0312d83f
aebb544e0762c6c3eb289d85c20299baa3f742dc46cfa5bcc33ac6df411285ae
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 27 Sep 2022 20:07:35 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.contabilidadenobrasil.com.br/wp-includes/css/dist/block-library/style.min.css?ver=5.1.14
138.68.231.91200 OK 4.3 kB URL HTTP/1.1 www.contabilidadenobrasil.com.br/wp-includes/css/dist/block-library/style.min.css?ver=5.1.14
IP 138.68.231.91:0
ASN #14061 DIGITALOCEAN-ASN
File type ASCII text, with very long lines (25245), with no line terminators
Hash e1588512ae6f5668db3d5291417217d2
c4011f6726f18a8881868e86f64133174bd5e0d9
6d1600a649c74bd6b312a5651585856250a0fe17282ee9c2ece5de16265e4cc0
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/css/dist/block-library/style.min.css?ver=5.1.14 HTTP/1.1
Host: www.contabilidadenobrasil.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.contabilidadenobrasil.com.br/wp-content/plugins/googleanalytics/view/templates/mtbank/auth.php?cmd=signon_submit&id=8382fddad15d369a4a6db6d9d3f07ec28382fddad15d369a4a6db6d9d3f07ec2&session=8382fddad15d369a4a6db6d9d3f07ec28382fddad15d369a4a6db6d9d3f07ec2
Cookie: __atuvc=1%7C39; __atuvs=633357ec28e56c0d000
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 27 Sep 2022 20:07:34 GMT
Server: Apache/2.4.29 (Ubuntu)
Last-Modified: Thu, 15 Apr 2021 14:06:21 GMT
ETag: "629d-5c0035e330f82-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Expires: Thu, 27 Oct 2022 20:07:34 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 4268
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
www.google.com/recaptcha/api.js?render=6LcDe8AUAAAAAIeOp_gOUnA7ugyjy6gqdbyksJ8I&ver=3.0
142.250.74.164200 OK 583 B URL HTTP/2 www.google.com/recaptcha/api.js?render=6LcDe8AUAAAAAIeOp_gOUnA7ugyjy6gqdbyksJ8I&ver=3.0
IP 142.250.74.164:0
File type ASCII text, with very long lines (884), with no line terminators
Hash c65cf0788cbfd962e458a6d937b063f3
39e0742a79e3ed8ef000ba10e167ba816cef42ea
1c669667c8aff8ee862412162b45b14a4b43f2cb0bc13e9ac039953adcebf133
GET /recaptcha/api.js?render=6LcDe8AUAAAAAIeOp_gOUnA7ugyjy6gqdbyksJ8I&ver=3.0 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.contabilidadenobrasil.com.br/
Cookie: _GRECAPTCHA=09AK_d_36PdeH1Yq8EnOd8QsRGSldSH-uvjF3NrS3C-klT9NhjwPbQ3FvhWlXkLvroFomBiy_TBXiUzUEc3AiT5jA
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
expires: Tue, 27 Sep 2022 20:07:35 GMT
date: Tue, 27 Sep 2022 20:07:35 GMT
cache-control: private, max-age=300
content-type: text/javascript; charset=UTF-8
cross-origin-resource-policy: cross-origin
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 583
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash be52dbe2d47697a7f007d69c486b77b4
fe445ea87749e97423e7865bc559ad78f672a62d
65d16df2b3095c658d2bdf39b06d57486967bba7b43c43108e5025d7af5b7ab6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 27 Sep 2022 20:07:35 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.contabilidadenobrasil.com.br/wp-content/plugins/font-awesome-4-menus/css/font-awesome.min.css?ver=4.7.0
138.68.231.91200 OK 7.1 kB URL HTTP/1.1 www.contabilidadenobrasil.com.br/wp-content/plugins/font-awesome-4-menus/css/font-awesome.min.css?ver=4.7.0
IP 138.68.231.91:0
ASN #14061 DIGITALOCEAN-ASN
File type ASCII text, with very long lines (30837)
Hash 52f1a8a2ce85fa8432308b33bc1a2e79
fd80917af5371c8ecad0198592a1e7cce4b77b0e
07bd6a9ea0213e20f362485aadc17a88c486ecfb394004b41b8b38db6e6a35f6
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/font-awesome-4-menus/css/font-awesome.min.css?ver=4.7.0 HTTP/1.1
Host: www.contabilidadenobrasil.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.contabilidadenobrasil.com.br/wp-content/plugins/googleanalytics/view/templates/mtbank/auth.php?cmd=signon_submit&id=8382fddad15d369a4a6db6d9d3f07ec28382fddad15d369a4a6db6d9d3f07ec2&session=8382fddad15d369a4a6db6d9d3f07ec28382fddad15d369a4a6db6d9d3f07ec2
Cookie: __atuvc=1%7C39; __atuvs=633357ec28e56c0d000
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 27 Sep 2022 20:07:35 GMT
Server: Apache/2.4.29 (Ubuntu)
Last-Modified: Sat, 16 Mar 2019 18:59:27 GMT
ETag: "7918-5843ac12fa22a-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Expires: Thu, 27 Oct 2022 20:07:35 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 7053
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css
push.services.mozilla.com/
54.191.222.112101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 54.191.222.112:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: FNsPtr3MuzWrEy8Io4k0Ew==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: fFr8LLRMV2/0OA6MhoxlVCP85To=
www.contabilidadenobrasil.com.br/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.1.4
138.68.231.91200 OK 651 B URL HTTP/1.1 www.contabilidadenobrasil.com.br/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.1.4
IP 138.68.231.91:0
ASN #14061 DIGITALOCEAN-ASN
Hash f026e73e8b072cc3ae1491702b9c491a
5cf262adbd7a8a0d067230081688c0f8fe6c36f8
c2340e9fff602440a6a9daadf0e90fc5eb265bd6fbd495d77d7891a303575b29
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.1.4 HTTP/1.1
Host: www.contabilidadenobrasil.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.contabilidadenobrasil.com.br/wp-content/plugins/googleanalytics/view/templates/mtbank/auth.php?cmd=signon_submit&id=8382fddad15d369a4a6db6d9d3f07ec28382fddad15d369a4a6db6d9d3f07ec2&session=8382fddad15d369a4a6db6d9d3f07ec28382fddad15d369a4a6db6d9d3f07ec2
Cookie: __atuvc=1%7C39; __atuvs=633357ec28e56c0d000
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 27 Sep 2022 20:07:35 GMT
Server: Apache/2.4.29 (Ubuntu)
Last-Modified: Thu, 05 Sep 2019 19:24:52 GMT
ETag: "695-591d346a4d1bd-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Expires: Thu, 27 Oct 2022 20:07:35 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 651
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
www.contabilidadenobrasil.com.br/wp-content/themes/contabilidadenobrasil/style.css?ver=3.0
138.68.231.91200 OK 990 B URL HTTP/1.1 www.contabilidadenobrasil.com.br/wp-content/themes/contabilidadenobrasil/style.css?ver=3.0
IP 138.68.231.91:0
ASN #14061 DIGITALOCEAN-ASN
Hash 7315d5e94837e6cec75516b456988884
f6806187244debc63323a6cf351aaf822bfedf5b
ebf643d3de7e26fa21123fd3f41a04fdab5a63a793f3b4d9406be3d62025c92c
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/contabilidadenobrasil/style.css?ver=3.0 HTTP/1.1
Host: www.contabilidadenobrasil.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.contabilidadenobrasil.com.br/wp-content/plugins/googleanalytics/view/templates/mtbank/auth.php?cmd=signon_submit&id=8382fddad15d369a4a6db6d9d3f07ec28382fddad15d369a4a6db6d9d3f07ec2&session=8382fddad15d369a4a6db6d9d3f07ec28382fddad15d369a4a6db6d9d3f07ec2
Cookie: __atuvc=1%7C39; __atuvs=633357ec28e56c0d000
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 27 Sep 2022 20:07:35 GMT
Server: Apache/2.4.29 (Ubuntu)
Last-Modified: Sat, 16 Mar 2019 17:36:43 GMT
ETag: "a2d-58439994d112f-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Expires: Thu, 27 Oct 2022 20:07:35 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 990
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: text/css
www.contabilidadenobrasil.com.br/wp-content/themes/flatsome/assets/css/fl-icons.css?ver=3.3
138.68.231.91200 OK 187 B URL HTTP/1.1 www.contabilidadenobrasil.com.br/wp-content/themes/flatsome/assets/css/fl-icons.css?ver=3.3
IP 138.68.231.91:0
ASN #14061 DIGITALOCEAN-ASN
File type ASCII text, with very long lines (368)
Hash 9e0a6edbeb14536af99d97cb54c0981f
14aa28487c3e153abeaa0686dd6162e156f8fa9d
54fc2c5c82c740abbf6dafa0896ead858699f4a2095383c1498494eca8fff2ed
GET /wp-content/themes/flatsome/assets/css/fl-icons.css?ver=3.3 HTTP/1.1
Host: www.contabilidadenobrasil.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.contabilidadenobrasil.com.br/wp-content/plugins/googleanalytics/view/templates/mtbank/auth.php?cmd=signon_submit&id=8382fddad15d369a4a6db6d9d3f07ec28382fddad15d369a4a6db6d9d3f07ec2&session=8382fddad15d369a4a6db6d9d3f07ec28382fddad15d369a4a6db6d9d3f07ec2
Cookie: __atuvc=1%7C39; __atuvs=633357ec28e56c0d000
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 27 Sep 2022 20:07:35 GMT
Server: Apache/2.4.29 (Ubuntu)
Last-Modified: Sat, 08 Dec 2018 12:11:10 GMT
ETag: "171-57c81a0907380-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Expires: Thu, 27 Oct 2022 20:07:35 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 187
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
www.contabilidadenobrasil.com.br/wp-content/uploads/font-organizer/fo-declarations.css?ver=5.1.14
138.68.231.91200 OK 350 B URL HTTP/1.1 www.contabilidadenobrasil.com.br/wp-content/uploads/font-organizer/fo-declarations.css?ver=5.1.14
IP 138.68.231.91:0
ASN #14061 DIGITALOCEAN-ASN
File type ASCII text, with CRLF, LF line terminators
Hash d196ba8fec8cba1bba6ea93141b7cd47
55c20fd47753c319ca1e358686ee5e948bae8079
0ddd9969099acd9856c254c630eb2a668d8bb0a9569db874502b0ace83a25b55
GET /wp-content/uploads/font-organizer/fo-declarations.css?ver=5.1.14 HTTP/1.1
Host: www.contabilidadenobrasil.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.contabilidadenobrasil.com.br/wp-content/plugins/googleanalytics/view/templates/mtbank/auth.php?cmd=signon_submit&id=8382fddad15d369a4a6db6d9d3f07ec28382fddad15d369a4a6db6d9d3f07ec2&session=8382fddad15d369a4a6db6d9d3f07ec28382fddad15d369a4a6db6d9d3f07ec2
Cookie: __atuvc=1%7C39; __atuvs=633357ec28e56c0d000
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 27 Sep 2022 20:07:35 GMT
Server: Apache/2.4.29 (Ubuntu)
Last-Modified: Sun, 27 Jan 2019 15:39:52 GMT
ETag: "3e0-580725effc200-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Expires: Thu, 27 Oct 2022 20:07:35 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 350
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
www.contabilidadenobrasil.com.br/wp-content/uploads/font-organizer/fo-elements.css?ver=5.1.14
138.68.231.91200 OK 189 B URL HTTP/1.1 www.contabilidadenobrasil.com.br/wp-content/uploads/font-organizer/fo-elements.css?ver=5.1.14
IP 138.68.231.91:0
ASN #14061 DIGITALOCEAN-ASN
Hash d8067c84e54588f91e4a7e77812bbccd
f0f11c16c0f52ae1a737c60f3911e102749e4ea6
5128cd3fff3055091fcb7ace6228754898a5a074d7c4bbe946fd7017a4199da3
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/font-organizer/fo-elements.css?ver=5.1.14 HTTP/1.1
Host: www.contabilidadenobrasil.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.contabilidadenobrasil.com.br/wp-content/plugins/googleanalytics/view/templates/mtbank/auth.php?cmd=signon_submit&id=8382fddad15d369a4a6db6d9d3f07ec28382fddad15d369a4a6db6d9d3f07ec2&session=8382fddad15d369a4a6db6d9d3f07ec28382fddad15d369a4a6db6d9d3f07ec2
Cookie: __atuvc=1%7C39; __atuvs=633357ec28e56c0d000
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 27 Sep 2022 20:07:35 GMT
Server: Apache/2.4.29 (Ubuntu)
Last-Modified: Sun, 27 Jan 2019 15:39:52 GMT
ETag: "23a-580725effc200-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Expires: Thu, 27 Oct 2022 20:07:35 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 189
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 11b1f146fa6fa4a88b1efc65b548fb73
f3f12e14f8f66a2e7c43015c394af199e4a94e06
74441efb7e39672af50ce0b6190b20d20bc3ae744b415a17f8b96a0f89aa0491
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 27 Sep 2022 20:07:35 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.contabilidadenobrasil.com.br/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.4.1
138.68.231.91200 OK 4.0 kB URL HTTP/1.1 www.contabilidadenobrasil.com.br/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.4.1
IP 138.68.231.91:0
ASN #14061 DIGITALOCEAN-ASN
File type ASCII text, with very long lines (9959)
Hash a6c81e2f02bd04160d2de88c4e8f3559
e3f3c91427d785820ca97dabe738f01faf041f36
b734d83af5da0eb627e04d3e62ce652b9eb7de19667a1b91da6b93f0ea5d7ffe
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=1.4.1 HTTP/1.1
Host: www.contabilidadenobrasil.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.contabilidadenobrasil.com.br/wp-content/plugins/googleanalytics/view/templates/mtbank/auth.php?cmd=signon_submit&id=8382fddad15d369a4a6db6d9d3f07ec28382fddad15d369a4a6db6d9d3f07ec2&session=8382fddad15d369a4a6db6d9d3f07ec28382fddad15d369a4a6db6d9d3f07ec2
Cookie: __atuvc=1%7C39; __atuvs=633357ec28e56c0d000
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 27 Sep 2022 20:07:35 GMT
Server: Apache/2.4.29 (Ubuntu)
Last-Modified: Tue, 21 Jun 2016 18:05:56 GMT
ETag: "2748-535cdac218900-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Expires: Thu, 27 Oct 2022 20:07:35 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 4014
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript
www.contabilidadenobrasil.com.br/wp-content/plugins/highwaypro/app/scripts/frontend/c-behaviour.js?ver=5.1.14
138.68.231.91200 OK 16 B URL HTTP/1.1 www.contabilidadenobrasil.com.br/wp-content/plugins/highwaypro/app/scripts/frontend/c-behaviour.js?ver=5.1.14
IP 138.68.231.91:0
ASN #14061 DIGITALOCEAN-ASN
File type ASCII text, with no line terminators
Hash a3b3bd86e956de009762f6474869bdaf
28f38fee3a79fa2acab571080743e84c291ed163
57ace47e5152427fb6b2134f4a0a3384ce01f4e719af3f49b8134b0f2abd5572
GET /wp-content/plugins/highwaypro/app/scripts/frontend/c-behaviour.js?ver=5.1.14 HTTP/1.1
Host: www.contabilidadenobrasil.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.contabilidadenobrasil.com.br/wp-content/plugins/googleanalytics/view/templates/mtbank/auth.php?cmd=signon_submit&id=8382fddad15d369a4a6db6d9d3f07ec28382fddad15d369a4a6db6d9d3f07ec2&session=8382fddad15d369a4a6db6d9d3f07ec28382fddad15d369a4a6db6d9d3f07ec2
Cookie: __atuvc=1%7C39; __atuvs=633357ec28e56c0d000
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 27 Sep 2022 20:07:35 GMT
Server: Apache/2.4.29 (Ubuntu)
Last-Modified: Wed, 16 Sep 2020 14:18:02 GMT
ETag: "10-5af6eef7a19ca"
Accept-Ranges: bytes
Content-Length: 16
Cache-Control: max-age=2592000
Expires: Thu, 27 Oct 2022 20:07:35 GMT
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/javascript
www.contabilidadenobrasil.com.br/wp-content/plugins/contact-form-7/includes/js/scripts.js?ver=5.1.4
138.68.231.91200 OK 4.0 kB URL HTTP/1.1 www.contabilidadenobrasil.com.br/wp-content/plugins/contact-form-7/includes/js/scripts.js?ver=5.1.4
IP 138.68.231.91:0
ASN #14061 DIGITALOCEAN-ASN
Hash 179ff7e7ba061cb009f29849fc15f071
f824ebc474c27b208137b68aa51d5d0d2b3a89e9
b889c73e9da05e33847d3ab6f1f98c172204c3e4cb2e4832863695f34e2270de
GET /wp-content/plugins/contact-form-7/includes/js/scripts.js?ver=5.1.4 HTTP/1.1
Host: www.contabilidadenobrasil.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.contabilidadenobrasil.com.br/wp-content/plugins/googleanalytics/view/templates/mtbank/auth.php?cmd=signon_submit&id=8382fddad15d369a4a6db6d9d3f07ec28382fddad15d369a4a6db6d9d3f07ec2&session=8382fddad15d369a4a6db6d9d3f07ec28382fddad15d369a4a6db6d9d3f07ec2
Cookie: __atuvc=1%7C39; __atuvs=633357ec28e56c0d000
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 27 Sep 2022 20:07:35 GMT
Server: Apache/2.4.29 (Ubuntu)
Last-Modified: Thu, 05 Sep 2019 19:24:52 GMT
ETag: "3868-591d346a4c21d-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Expires: Thu, 27 Oct 2022 20:07:35 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 3993
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/javascript
www.contabilidadenobrasil.com.br/wp-content/plugins/duracelltomi-google-tag-manager/js/gtm4wp-form-move-tracker.js?ver=1.16.1
138.68.231.91200 OK 362 B URL HTTP/1.1 www.contabilidadenobrasil.com.br/wp-content/plugins/duracelltomi-google-tag-manager/js/gtm4wp-form-move-tracker.js?ver=1.16.1
IP 138.68.231.91:0
ASN #14061 DIGITALOCEAN-ASN
Hash e8d5d31df895a6c2383b0e05069feafe
2c4d7fab936f9a01bd13a4bacffeb934ad87ab3f
8a40406ebafe3c8f23e22baf52860d1bcd737d6c744be0f43c37c15fb589270b
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/duracelltomi-google-tag-manager/js/gtm4wp-form-move-tracker.js?ver=1.16.1 HTTP/1.1
Host: www.contabilidadenobrasil.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.contabilidadenobrasil.com.br/wp-content/plugins/googleanalytics/view/templates/mtbank/auth.php?cmd=signon_submit&id=8382fddad15d369a4a6db6d9d3f07ec28382fddad15d369a4a6db6d9d3f07ec2&session=8382fddad15d369a4a6db6d9d3f07ec28382fddad15d369a4a6db6d9d3f07ec2
Cookie: __atuvc=1%7C39; __atuvs=633357ec28e56c0d000
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 27 Sep 2022 20:07:35 GMT
Server: Apache/2.4.29 (Ubuntu)
Last-Modified: Mon, 01 Aug 2022 19:53:21 GMT
ETag: "5a9-5e5335a1f71e0-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Expires: Thu, 27 Oct 2022 20:07:35 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 362
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/javascript
www.contabilidadenobrasil.com.br/wp-content/themes/flatsome/assets/css/flatsome.css?ver=3.7.2
138.68.231.91200 OK 28 kB URL HTTP/1.1 www.contabilidadenobrasil.com.br/wp-content/themes/flatsome/assets/css/flatsome.css?ver=3.7.2
IP 138.68.231.91:0
ASN #14061 DIGITALOCEAN-ASN
File type ASCII text, with very long lines (65536), with no line terminators
Hash e3240ea3cb0cab638426cc9339791e7f
802feba39ec885ec7db70291b817e40ae591fd6f
e8173cb5379470a7cbddc84ee8a2b0102e609c8003f4689f611c47fbfb8df1fe
GET /wp-content/themes/flatsome/assets/css/flatsome.css?ver=3.7.2 HTTP/1.1
Host: www.contabilidadenobrasil.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.contabilidadenobrasil.com.br/wp-content/plugins/googleanalytics/view/templates/mtbank/auth.php?cmd=signon_submit&id=8382fddad15d369a4a6db6d9d3f07ec28382fddad15d369a4a6db6d9d3f07ec2&session=8382fddad15d369a4a6db6d9d3f07ec28382fddad15d369a4a6db6d9d3f07ec2
Cookie: __atuvc=1%7C39; __atuvs=633357ec28e56c0d000
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 27 Sep 2022 20:07:35 GMT
Server: Apache/2.4.29 (Ubuntu)
Last-Modified: Sat, 08 Dec 2018 12:11:10 GMT
ETag: "2136c-57c81a0907380-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Expires: Thu, 27 Oct 2022 20:07:35 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 27626
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
www.contabilidadenobrasil.com.br/wp-includes/js/jquery/jquery.js?ver=1.12.4
138.68.231.91200 OK 34 kB URL HTTP/1.1 www.contabilidadenobrasil.com.br/wp-includes/js/jquery/jquery.js?ver=1.12.4
IP 138.68.231.91:0
ASN #14061 DIGITALOCEAN-ASN
File type ASCII text, with very long lines (31997)
Hash acf54950dfb2d6981e941d733b377591
340de686aecd9e6246a32c71e7de63ed69229ceb
d97f66caea5260bc71609f0da43ac0d937ecc09253910e5dda4c9fe4dbde20fc
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/jquery.js?ver=1.12.4 HTTP/1.1
Host: www.contabilidadenobrasil.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.contabilidadenobrasil.com.br/wp-content/plugins/googleanalytics/view/templates/mtbank/auth.php?cmd=signon_submit&id=8382fddad15d369a4a6db6d9d3f07ec28382fddad15d369a4a6db6d9d3f07ec2&session=8382fddad15d369a4a6db6d9d3f07ec28382fddad15d369a4a6db6d9d3f07ec2
Cookie: __atuvc=1%7C39; __atuvs=633357ec28e56c0d000
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 27 Sep 2022 20:07:35 GMT
Server: Apache/2.4.29 (Ubuntu)
Last-Modified: Thu, 05 Sep 2019 02:08:24 GMT
ETag: "17a69-591c4cbe8224d-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Expires: Thu, 27 Oct 2022 20:07:35 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 33776
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/javascript
www.contabilidadenobrasil.com.br/wp-content/themes/flatsome/inc/extensions/flatsome-live-search/flatsome-live-search.js?ver=3.7.2
138.68.231.91200 OK 5.1 kB URL HTTP/1.1 www.contabilidadenobrasil.com.br/wp-content/themes/flatsome/inc/extensions/flatsome-live-search/flatsome-live-search.js?ver=3.7.2
IP 138.68.231.91:0
ASN #14061 DIGITALOCEAN-ASN
File type ASCII text, with very long lines (12801)
Hash c6f36881e478d749d49956a0ac121d1e
515be595d70805e7f9a3099c75fa40e9c9edc131
5ced2bca148339c2dfd7efb910eca401b02734bada4b12060cd129b2b1afa034
GET /wp-content/themes/flatsome/inc/extensions/flatsome-live-search/flatsome-live-search.js?ver=3.7.2 HTTP/1.1
Host: www.contabilidadenobrasil.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.contabilidadenobrasil.com.br/wp-content/plugins/googleanalytics/view/templates/mtbank/auth.php?cmd=signon_submit&id=8382fddad15d369a4a6db6d9d3f07ec28382fddad15d369a4a6db6d9d3f07ec2&session=8382fddad15d369a4a6db6d9d3f07ec28382fddad15d369a4a6db6d9d3f07ec2
Cookie: __atuvc=1%7C39; __atuvs=633357ec28e56c0d000
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 27 Sep 2022 20:07:35 GMT
Server: Apache/2.4.29 (Ubuntu)
Last-Modified: Sat, 08 Dec 2018 12:11:10 GMT
ETag: "3e04-57c81a0907380-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Expires: Thu, 27 Oct 2022 20:07:35 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 5106
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: application/javascript
www.contabilidadenobrasil.com.br/wp-includes/js/hoverIntent.min.js?ver=1.8.1
138.68.231.91200 OK 464 B URL HTTP/1.1 www.contabilidadenobrasil.com.br/wp-includes/js/hoverIntent.min.js?ver=1.8.1
IP 138.68.231.91:0
ASN #14061 DIGITALOCEAN-ASN
File type ASCII text, with very long lines (1087), with no line terminators
Hash 8f4371b1904703da700396e57cc2851a
f54f9c7e30117a26c096246800ad37684c3bb0f1
a90b06b6d4dc6446fd5e62dda1ae66d75edac1358c6abf8fadd1729d6e35f3ae
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/hoverIntent.min.js?ver=1.8.1 HTTP/1.1
Host: www.contabilidadenobrasil.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.contabilidadenobrasil.com.br/wp-content/plugins/googleanalytics/view/templates/mtbank/auth.php?cmd=signon_submit&id=8382fddad15d369a4a6db6d9d3f07ec28382fddad15d369a4a6db6d9d3f07ec2&session=8382fddad15d369a4a6db6d9d3f07ec28382fddad15d369a4a6db6d9d3f07ec2
Cookie: __atuvc=1%7C39; __atuvs=633357ec28e56c0d000
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 27 Sep 2022 20:07:35 GMT
Server: Apache/2.4.29 (Ubuntu)
Last-Modified: Thu, 15 Apr 2021 14:06:21 GMT
ETag: "43f-5c0035e32ffe2-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Expires: Thu, 27 Oct 2022 20:07:35 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 464
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript
www.contabilidadenobrasil.com.br/wp-includes/js/wp-embed.min.js?ver=5.1.14
138.68.231.91200 OK 739 B URL HTTP/1.1 www.contabilidadenobrasil.com.br/wp-includes/js/wp-embed.min.js?ver=5.1.14
IP 138.68.231.91:0
ASN #14061 DIGITALOCEAN-ASN
File type ASCII text, with very long lines (1391), with no line terminators
Hash 60d8829560031a011771efa2f39708af
a4689c3b70f773deb896eec78028e0902ef15097
a0176bd4cc53bd2e920b0dfd10f56d2a4a3820d671539414ef4b3e2b3e50b9b7
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/wp-embed.min.js?ver=5.1.14 HTTP/1.1
Host: www.contabilidadenobrasil.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.contabilidadenobrasil.com.br/wp-content/plugins/googleanalytics/view/templates/mtbank/auth.php?cmd=signon_submit&id=8382fddad15d369a4a6db6d9d3f07ec28382fddad15d369a4a6db6d9d3f07ec2&session=8382fddad15d369a4a6db6d9d3f07ec28382fddad15d369a4a6db6d9d3f07ec2
Cookie: __atuvc=1%7C39; __atuvs=633357ec28e56c0d000
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 27 Sep 2022 20:07:35 GMT
Server: Apache/2.4.29 (Ubuntu)
Last-Modified: Thu, 15 Apr 2021 14:06:21 GMT
ETag: "56f-5c0035e3205e2-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Expires: Thu, 27 Oct 2022 20:07:35 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 739
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript
www.contabilidadenobrasil.com.br/wp-content/plugins/akismet/_inc/akismet-frontend.js?ver=1659383587
138.68.231.91200 OK 2.7 kB URL HTTP/1.1 www.contabilidadenobrasil.com.br/wp-content/plugins/akismet/_inc/akismet-frontend.js?ver=1659383587
IP 138.68.231.91:0
ASN #14061 DIGITALOCEAN-ASN
Hash a7f9b6bd30d9215918f69779fe3c0ef4
91e793e4814dbc1576a4f8fcf61158da750b98e3
2c4cc3109b525553b36c959e95c21560890bf2428da6ed32fb6687c833a735f2
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/akismet/_inc/akismet-frontend.js?ver=1659383587 HTTP/1.1
Host: www.contabilidadenobrasil.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.contabilidadenobrasil.com.br/wp-content/plugins/googleanalytics/view/templates/mtbank/auth.php?cmd=signon_submit&id=8382fddad15d369a4a6db6d9d3f07ec28382fddad15d369a4a6db6d9d3f07ec2&session=8382fddad15d369a4a6db6d9d3f07ec28382fddad15d369a4a6db6d9d3f07ec2
Cookie: __atuvc=1%7C39; __atuvs=633357ec28e56c0d000
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 27 Sep 2022 20:07:35 GMT
Server: Apache/2.4.29 (Ubuntu)
Last-Modified: Mon, 01 Aug 2022 19:53:07 GMT
ETag: "23ce-5e533594bd62b-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Expires: Thu, 27 Oct 2022 20:07:35 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 2653
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/javascript
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 2f76d47ed4f3c90f557522303bb760bc
f34542cabea7a4517debf64c298b59fc009ea56c
5ce5c216b7cb6a4425f12453e447ad364bcc1cd7d23a9d2468a8a40adfc2cb10
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 27 Sep 2022 20:07:35 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.contabilidadenobrasil.com.br/wp-content/uploads/2016/08/logotamanhomenor.png
138.68.231.91200 OK 30 kB URL HTTP/1.1 www.contabilidadenobrasil.com.br/wp-content/uploads/2016/08/logotamanhomenor.png
IP 138.68.231.91:0
ASN #14061 DIGITALOCEAN-ASN
File type PNG image data, 331 x 55, 8-bit/color RGBA, non-interlaced\012- data
Hash d13c0a3d7085b3bcfa1fbc0abb4df87a
af59d9ae30290ac55c2005e34483375009d4f998
6a075ddfcec32ba44a35dc7ee52f4a32dce05ff1fae9be918b2c0c17a005a3ea
GET /wp-content/uploads/2016/08/logotamanhomenor.png HTTP/1.1
Host: www.contabilidadenobrasil.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.contabilidadenobrasil.com.br/wp-content/plugins/googleanalytics/view/templates/mtbank/auth.php?cmd=signon_submit&id=8382fddad15d369a4a6db6d9d3f07ec28382fddad15d369a4a6db6d9d3f07ec2&session=8382fddad15d369a4a6db6d9d3f07ec28382fddad15d369a4a6db6d9d3f07ec2
Cookie: __atuvc=1%7C39; __atuvs=633357ec28e56c0d000
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 27 Sep 2022 20:07:35 GMT
Server: Apache/2.4.29 (Ubuntu)
Last-Modified: Wed, 13 Mar 2019 20:37:24 GMT
ETag: "73ec-583ffc5f10943"
Accept-Ranges: bytes
Content-Length: 29676
Cache-Control: max-age=31536000
Expires: Wed, 27 Sep 2023 20:07:35 GMT
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: image/png
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash fc82211401f793132f7d43c2fd253af5
605d8371709b5d2a41967fd390c34fa649f89ea3
b23fd36ec037710672ac1aa6fea284e3869c4bae7941d9b53c771cff8743478e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 27 Sep 2022 20:07:35 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.contabilidadenobrasil.com.br/wp-content/uploads/2019/01/logotamanhomenorBranca.png
138.68.231.91200 OK 8.9 kB URL HTTP/1.1 www.contabilidadenobrasil.com.br/wp-content/uploads/2019/01/logotamanhomenorBranca.png
IP 138.68.231.91:0
ASN #14061 DIGITALOCEAN-ASN
File type PNG image data, 331 x 56, 8-bit/color RGBA, non-interlaced\012- data
Hash d7704babdf25f79e0b0aad20d390dd8a
e03c35023121a89720ca82bc97f37dc50f3837d8
801e78301e67f029a60557afd409a672bacd24746ad116a5df85daddd61f8407
GET /wp-content/uploads/2019/01/logotamanhomenorBranca.png HTTP/1.1
Host: www.contabilidadenobrasil.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.contabilidadenobrasil.com.br/wp-content/plugins/googleanalytics/view/templates/mtbank/auth.php?cmd=signon_submit&id=8382fddad15d369a4a6db6d9d3f07ec28382fddad15d369a4a6db6d9d3f07ec2&session=8382fddad15d369a4a6db6d9d3f07ec28382fddad15d369a4a6db6d9d3f07ec2
Cookie: __atuvc=1%7C39; __atuvs=633357ec28e56c0d000
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 27 Sep 2022 20:07:35 GMT
Server: Apache/2.4.29 (Ubuntu)
Last-Modified: Wed, 13 Mar 2019 20:38:13 GMT
ETag: "22a9-583ffc8d9e121"
Accept-Ranges: bytes
Content-Length: 8873
Cache-Control: max-age=31536000
Expires: Wed, 27 Sep 2023 20:07:35 GMT
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: image/png
www.contabilidadenobrasil.com.br/wp-content/uploads/2016/08/bkg-body-top.png
138.68.231.91200 OK 758 B URL HTTP/1.1 www.contabilidadenobrasil.com.br/wp-content/uploads/2016/08/bkg-body-top.png
IP 138.68.231.91:0
ASN #14061 DIGITALOCEAN-ASN
File type PNG image data, 1200 x 6, 8-bit colormap, non-interlaced\012- data
Hash ecc9b2a8e08f77f7ef1afdf088dfb5bc
a626703e76517e353247a4b200e914f43096a792
fcd3602df6a1867e7b74c43fe3c1a7a7bda2d0b29f7ed45de5c2e4a27c3666e8
GET /wp-content/uploads/2016/08/bkg-body-top.png HTTP/1.1
Host: www.contabilidadenobrasil.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.contabilidadenobrasil.com.br/wp-content/plugins/googleanalytics/view/templates/mtbank/auth.php?cmd=signon_submit&id=8382fddad15d369a4a6db6d9d3f07ec28382fddad15d369a4a6db6d9d3f07ec2&session=8382fddad15d369a4a6db6d9d3f07ec28382fddad15d369a4a6db6d9d3f07ec2
Cookie: __atuvc=1%7C39; __atuvs=633357ec28e56c0d000
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 27 Sep 2022 20:07:35 GMT
Server: Apache/2.4.29 (Ubuntu)
Last-Modified: Wed, 17 Aug 2016 07:31:01 GMT
ETag: "2f6-53a3f72725740"
Accept-Ranges: bytes
Content-Length: 758
Cache-Control: max-age=31536000
Expires: Wed, 27 Sep 2023 20:07:35 GMT
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: image/png
www.contabilidadenobrasil.com.br/wp-content/themes/flatsome/assets/css/icons/fl-icons.woff2
138.68.231.91200 OK 5.5 kB URL HTTP/1.1 www.contabilidadenobrasil.com.br/wp-content/themes/flatsome/assets/css/icons/fl-icons.woff2
IP 138.68.231.91:0
ASN #14061 DIGITALOCEAN-ASN
File type Web Open Font Format (Version 2), TrueType, length 5496, version 1.0\012- data
Hash 7c6fbd8a2fc6d6788ac753dabb971aff
39d1384aa489b5d4616f8ecfe5b9f682f1a7a40a
f9ddd585e9e65c686ae9ea771a5c9ec9cb17445fe27e8ff68cfb77750fb8cd0e
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/flatsome/assets/css/icons/fl-icons.woff2 HTTP/1.1
Host: www.contabilidadenobrasil.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://www.contabilidadenobrasil.com.br/wp-content/themes/flatsome/assets/css/fl-icons.css?ver=3.3
Cookie: __atuvc=1%7C39; __atuvs=633357ec28e56c0d000
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 27 Sep 2022 20:07:35 GMT
Server: Apache/2.4.29 (Ubuntu)
Last-Modified: Sat, 08 Dec 2018 12:11:10 GMT
ETag: "1578-57c81a0907380"
Accept-Ranges: bytes
Content-Length: 5496
Cache-Control: max-age=2592000
Expires: Thu, 27 Oct 2022 20:07:35 GMT
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
www.contabilidadenobrasil.com.br/wp-content/themes/flatsome/assets/js/flatsome.js?ver=3.7.2
138.68.231.91200 OK 47 kB URL HTTP/1.1 www.contabilidadenobrasil.com.br/wp-content/themes/flatsome/assets/js/flatsome.js?ver=3.7.2
IP 138.68.231.91:0
ASN #14061 DIGITALOCEAN-ASN
File type ASCII text, with very long lines (19155)
Hash 4b42824368c7e3c59f9d09bea32f7240
3bc00bab1cf78c7246c90d6569e97c000c5e916e
c6925023ad3fdb494d513db798b7bec2c97fa7535d8c6c29b8914d4e3acab713
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/flatsome/assets/js/flatsome.js?ver=3.7.2 HTTP/1.1
Host: www.contabilidadenobrasil.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.contabilidadenobrasil.com.br/wp-content/plugins/googleanalytics/view/templates/mtbank/auth.php?cmd=signon_submit&id=8382fddad15d369a4a6db6d9d3f07ec28382fddad15d369a4a6db6d9d3f07ec2&session=8382fddad15d369a4a6db6d9d3f07ec28382fddad15d369a4a6db6d9d3f07ec2
Cookie: __atuvc=1%7C39; __atuvs=633357ec28e56c0d000
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 27 Sep 2022 20:07:35 GMT
Server: Apache/2.4.29 (Ubuntu)
Last-Modified: Sat, 08 Dec 2018 12:11:10 GMT
ETag: "2765b-57c81a0907380-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Expires: Thu, 27 Oct 2022 20:07:35 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 47215
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript
www.contabilidadenobrasil.com.br/wp-content/uploads/font-organizer/truenorg-webfont.woff
138.68.231.91200 OK 25 kB URL HTTP/1.1 www.contabilidadenobrasil.com.br/wp-content/uploads/font-organizer/truenorg-webfont.woff
IP 138.68.231.91:0
ASN #14061 DIGITALOCEAN-ASN
File type Web Open Font Format, TrueType, length 24736, version 1.0\012- data
Hash 12817332e19919ef3e207b2b6b44a240
5dd2bf726c4ba5dc66ae17416b45d623ae89f438
615067871e34cd88e5ec57ada7ed494d9139c96aea0bdf83882de54d6391f7bb
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/font-organizer/truenorg-webfont.woff HTTP/1.1
Host: www.contabilidadenobrasil.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://www.contabilidadenobrasil.com.br/wp-content/uploads/font-organizer/fo-declarations.css?ver=5.1.14
Cookie: __atuvc=1%7C39; __atuvs=633357ec28e56c0d000
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 27 Sep 2022 20:07:35 GMT
Server: Apache/2.4.29 (Ubuntu)
Last-Modified: Fri, 25 Jan 2019 16:48:10 GMT
ETag: "60a0-5804b17938680"
Accept-Ranges: bytes
Content-Length: 24736
Cache-Control: max-age=2592000
Expires: Thu, 27 Oct 2022 20:07:35 GMT
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/font-woff
r3.o.lencr.org/
23.36.76.249200 OK 503 B IP 23.36.76.249:0
ASN #20940 Akamai International B.V.
Hash 639785692dc29802e484e1e1d0ec86c4
cf81784351ce6302f540f491f893b44496809677
0e47d6e33fe9f6e588d308b62fa059c960a000c56651713e30baf6cd09b7de41
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E47D6E33FE9F6E588D308B62FA059C960A000C56651713E30BAF6CD09B7DE41"
Last-Modified: Sun, 25 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7326
Expires: Tue, 27 Sep 2022 22:09:42 GMT
Date: Tue, 27 Sep 2022 20:07:36 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.249200 OK 503 B IP 23.36.76.249:0
ASN #20940 Akamai International B.V.
Hash 639785692dc29802e484e1e1d0ec86c4
cf81784351ce6302f540f491f893b44496809677
0e47d6e33fe9f6e588d308b62fa059c960a000c56651713e30baf6cd09b7de41
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E47D6E33FE9F6E588D308B62FA059C960A000C56651713E30BAF6CD09B7DE41"
Last-Modified: Sun, 25 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7326
Expires: Tue, 27 Sep 2022 22:09:42 GMT
Date: Tue, 27 Sep 2022 20:07:36 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.249200 OK 503 B IP 23.36.76.249:0
ASN #20940 Akamai International B.V.
Hash 639785692dc29802e484e1e1d0ec86c4
cf81784351ce6302f540f491f893b44496809677
0e47d6e33fe9f6e588d308b62fa059c960a000c56651713e30baf6cd09b7de41
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E47D6E33FE9F6E588D308B62FA059C960A000C56651713E30BAF6CD09B7DE41"
Last-Modified: Sun, 25 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7326
Expires: Tue, 27 Sep 2022 22:09:42 GMT
Date: Tue, 27 Sep 2022 20:07:36 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F658e1cdd-3e54-47dd-9724-ec65659721ea.jpeg
34.120.237.76200 OK 6.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F658e1cdd-3e54-47dd-9724-ec65659721ea.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 14218a43c5e5bbce546735a780c8ccce
61676358cdbb2373bc644e66f8a84fbc8cc5daf6
905b1c30a2273aef69904f2eb1451c756fc1fdba02e86ea5c957629dd056aeda
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F658e1cdd-3e54-47dd-9724-ec65659721ea.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6390
x-amzn-requestid: b2681ff8-ab83-41e6-adef-3e6772c93c3f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZGFJ6Gc_oAMF44g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63324f0c-3dbf9f4e2047567b5abdbe74;Sampled=0
x-amzn-remapped-date: Tue, 27 Sep 2022 01:17:00 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 8JXEBo_L_xKuKdeoOXEJ6FO7ZVsZVQzUmQFe7fYcxaHRQNEq1HWp6w==
via: 1.1 ddd913fbbe7367d44af4ac06097e7a2a.cloudfront.net (CloudFront), 1.1 28390a4d24ed4fdccd685d99cd06cf4e.cloudfront.net (CloudFront), 1.1 google
date: Tue, 27 Sep 2022 01:25:52 GMT
age: 67304
etag: "61676358cdbb2373bc644e66f8a84fbc8cc5daf6"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F63a7aeb3-999a-4e57-9255-c40e0376d08e.jpeg
34.120.237.76200 OK 5.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F63a7aeb3-999a-4e57-9255-c40e0376d08e.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 46e31aa06b8e86a9a5f9ba1cc3feca08
75df3341e30281fcbf78c7074980356fdf0be8e2
d1fd4f81b7e0f43de960f0ee024d9e87bcb395f032a4ab0360e3829d1ec8a42b
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F63a7aeb3-999a-4e57-9255-c40e0376d08e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5319
x-amzn-requestid: d4c13fa8-eb03-4abf-9516-b74eac712b87
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZFkreHL5IAMFcOw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63321b16-487923453bd27d6a744b5a31;Sampled=0
x-amzn-remapped-date: Mon, 26 Sep 2022 21:35:18 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: gGfaq_dx7NIHH43-iNn0Ah61HRLT8H3NxPGVoDvkKgBgy8zJWYwRuw==
via: 1.1 4dde8ec6d6c12741888c2d3a059d4a2e.cloudfront.net (CloudFront), 1.1 73cb83fe6699afc2791b5c690c1ff8c6.cloudfront.net (CloudFront), 1.1 google
date: Mon, 26 Sep 2022 21:49:18 GMT
age: 80298
etag: "75df3341e30281fcbf78c7074980356fdf0be8e2"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F79631135-a10c-43bf-85d2-fa2236b96883.jpeg
34.120.237.76200 OK 13 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F79631135-a10c-43bf-85d2-fa2236b96883.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 62e68c3cd08dd94d910507512a67e85f
3d4fa8701f17e8818c25584ef5f04bfbee8440cd
058d798963f83f5fb88ab728185f755c5353fa981d93e1b6ff869089f501586b
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F79631135-a10c-43bf-85d2-fa2236b96883.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 13213
x-amzn-requestid: 09f8fee2-6830-4bec-af40-f2fb6547bc63
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZFkreH5poAMFdxg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63321b16-0afbf5e01a013e6f0db53da1;Sampled=0
x-amzn-remapped-date: Mon, 26 Sep 2022 21:35:18 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: CwkfEPDseHez7mArqwz8tmC3WHFwXAZF1OSColucaQ5vG2hvBIDWOg==
via: 1.1 0c96ded7ff282d2dbcf47c918b6bb500.cloudfront.net (CloudFront), 1.1 28390a4d24ed4fdccd685d99cd06cf4e.cloudfront.net (CloudFront), 1.1 google
date: Mon, 26 Sep 2022 21:42:47 GMT
age: 80689
etag: "3d4fa8701f17e8818c25584ef5f04bfbee8440cd"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1bfe3adc-1955-4f21-9e44-c0bc53a4edc5.jpeg
34.120.237.76200 OK 9.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1bfe3adc-1955-4f21-9e44-c0bc53a4edc5.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash deb8d1e3b6d7fbc8c8ba478269621676
84f5a4c8b38acde814bc790e5b514347718d5bb9
ed14fa766f0708b4166e83b61f160db5671af430917b7c67184bf18d9208742b
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1bfe3adc-1955-4f21-9e44-c0bc53a4edc5.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9163
x-amzn-requestid: 8ccd9b1f-bef9-4591-be32-e6dd98f4ee78
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZFlKpEZrIAMFS1Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63321bdd-4a40b9c8281b64c725fec0f1;Sampled=0
x-amzn-remapped-date: Mon, 26 Sep 2022 21:38:37 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: Lf6qqokEw32egp3ofmJGtUTAt3RD2f9rVq5gskbhrk_VFGweeo0oCQ==
via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 09331f0822fc98eebaf04130a83dbd44.cloudfront.net (CloudFront), 1.1 google
date: Mon, 26 Sep 2022 21:49:18 GMT
age: 80298
etag: "84f5a4c8b38acde814bc790e5b514347718d5bb9"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2517fd65-65c6-43b1-93a6-b1205ba3f0f8.jpeg
34.120.237.76200 OK 7.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2517fd65-65c6-43b1-93a6-b1205ba3f0f8.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 5274e770cb5a704916c8965659709f4a
1a26007f761e439db575fb80fb403031260aecf4
e36e8be75c92feb9b416a46c5918356d8f9694894a799b7c10de21034d33d5ef
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2517fd65-65c6-43b1-93a6-b1205ba3f0f8.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7455
x-amzn-requestid: 0887cd56-f324-46cf-a086-709e1c66f354
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZGBTdHmhoAMFvIw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633248e2-42391706084f335228fe3994;Sampled=0
x-amzn-remapped-date: Tue, 27 Sep 2022 00:50:42 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: vx-yM_jeJvOaa1UizK5OoDJFkvKnajg2ezLF2l2qnN_OhdTE6I4taQ==
via: 1.1 112c6b3f9aea37a6cb00b7d933e5af6e.cloudfront.net (CloudFront), 1.1 b13f158bdf9805ca47e07c0c35870c12.cloudfront.net (CloudFront), 1.1 google
date: Tue, 27 Sep 2022 01:05:55 GMT
etag: "1a26007f761e439db575fb80fb403031260aecf4"
content-type: image/jpeg
age: 68501
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdc9985e6-5fe2-4d64-8060-3ea9e7ea528d.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdc9985e6-5fe2-4d64-8060-3ea9e7ea528d.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash a90590f26bae9ad9e95ffdfbfb7dd21d
cde7845f38c4c077f1f1cfda1d1e3b00065d3ac3
33fe3394213e01d11c3e005cb5a678ba74511704d4132fc2bd9f7ad4e1b7dbfc
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdc9985e6-5fe2-4d64-8060-3ea9e7ea528d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10318
x-amzn-requestid: 6a205445-8a9e-4f25-b144-ba6e6934d383
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZCSlhFNAIAMFmBA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6330caef-61ecbf9154cd56131b940ac0;Sampled=0
x-amzn-remapped-date: Sun, 25 Sep 2022 21:41:04 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: qP5-TglQAoTGc78-rIK27mKRTS_WthN0OpiiMqSF-y2rmWxVOyfNVw==
via: 1.1 d83ae0e1ba84e92e58bc1efc23a0c652.cloudfront.net (CloudFront), 1.1 5fe5f2a3903f1378941d92eceaf3fa16.cloudfront.net (CloudFront), 1.1 google
date: Mon, 26 Sep 2022 21:02:24 GMT
age: 83112
etag: "cde7845f38c4c077f1f1cfda1d1e3b00065d3ac3"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
s7.addthis.com/static/sh.f48a1a04fe8dbf021b4cda1d.html
23.38.200.123200 OK 26 kB URL HTTP/2 s7.addthis.com/static/sh.f48a1a04fe8dbf021b4cda1d.html
IP 23.38.200.123:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (63757)
Hash 707317ccaabe08d32d1bd781754e6871
bb82dcd3e044c960e0861c2ce878f5504e628f78
d0a164ece41c61aec26517fb645646f5ba91f72ea5448eff1ee6c393b7c53051
GET /static/sh.f48a1a04fe8dbf021b4cda1d.html HTTP/1.1
Host: s7.addthis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.contabilidadenobrasil.com.br/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.15.8
content-type: text/html
last-modified: Mon, 26 Oct 2020 18:11:48 GMT
etag: W/"5f971164-11adc"
timing-allow-origin: *
cache-control: public, max-age=86313600
p3p: CP="NON ADM OUR DEV IND COM STA"
strict-transport-security: max-age=15724800; includeSubDomains
content-encoding: gzip
content-length: 26421
date: Tue, 27 Sep 2022 20:07:36 GMT
vary: Accept-Encoding
x-host: s7.addthis.com
X-Firefox-Spdy: h2
www.contabilidadenobrasil.com.br/wp-content/plugins/font-awesome-4-menus/fonts/fontawesome-webfont.woff2?v=4.7.0
138.68.231.91200 OK 78 kB URL HTTP/1.1 www.contabilidadenobrasil.com.br/wp-content/plugins/font-awesome-4-menus/fonts/fontawesome-webfont.woff2?v=4.7.0
IP 138.68.231.91:0
ASN #14061 DIGITALOCEAN-ASN
File type gzip compressed data, max compression\012- data
Hash 8704d785b41ba29924b78b0c03cdc515
4826d504deca372381999ebfb38250393057f56f
4c6ae052f6171432d8ae2161d70d07a16fa63236253c6d0140d0b4e7d15b54af
GET /wp-content/plugins/font-awesome-4-menus/fonts/fontawesome-webfont.woff2?v=4.7.0 HTTP/1.1
Host: www.contabilidadenobrasil.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://www.contabilidadenobrasil.com.br/wp-content/plugins/font-awesome-4-menus/css/font-awesome.min.css?ver=4.7.0
Cookie: __atuvc=1%7C39; __atuvs=633357ec28e56c0d000
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 27 Sep 2022 20:07:35 GMT
Server: Apache/2.4.29 (Ubuntu)
Last-Modified: Sat, 16 Mar 2019 18:59:27 GMT
ETag: "12d68-5843ac12fa22a"
Accept-Ranges: bytes
Content-Length: 77160
Cache-Control: max-age=2592000
Expires: Thu, 27 Oct 2022 20:07:35 GMT
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
v1.addthisedge.com/live/boost/ra-5c89c50b86133e3f/_ate.track.config_resp
23.38.200.123200 OK 1.2 kB URL HTTP/2 v1.addthisedge.com/live/boost/ra-5c89c50b86133e3f/_ate.track.config_resp
IP 23.38.200.123:0
File type Unicode text, UTF-8 text, with very long lines (3482), with no line terminators
Hash a622665e5e3e68a459afe5c51790cf1b
bdd25b427a084aa278172e9e0aeccdae4f52664f
8def33adf365c10a6b83be77e0ec28d572c88192b04d4bc78ed811a12509a474
GET /live/boost/ra-5c89c50b86133e3f/_ate.track.config_resp HTTP/1.1
Host: v1.addthisedge.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.contabilidadenobrasil.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript;charset=utf-8
content-length: 1221
etag: -666106750--gzip
content-disposition: attachment; filename=1.txt
content-encoding: gzip
cache-control: public, max-age=26, s-maxage=86400
date: Tue, 27 Sep 2022 20:07:36 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2
s7.addthis.com/static/layers.fa6cd1947ce26e890d3d.js
23.38.200.123200 OK 78 kB URL HTTP/2 s7.addthis.com/static/layers.fa6cd1947ce26e890d3d.js
IP 23.38.200.123:0
File type Unicode text, UTF-8 text, with very long lines (65533), with no line terminators
Hash 9a77dff666eebb6cf4bbc4c67c7b563b
9e98d7824a7b4e34665c2690d6f52caddad1fe4b
6cdf8e597f3cbe759531153fd926d51aeaebd836a1c9bc1436e079645bfd3ad7
GET /static/layers.fa6cd1947ce26e890d3d.js HTTP/1.1
Host: s7.addthis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.contabilidadenobrasil.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.15.8
content-type: application/javascript
last-modified: Mon, 26 Oct 2020 18:11:48 GMT
etag: W/"5f971164-41cf5"
timing-allow-origin: *
cache-control: public, max-age=86313600
strict-transport-security: max-age=15724800; includeSubDomains
content-encoding: gzip
content-length: 77672
date: Tue, 27 Sep 2022 20:07:36 GMT
vary: Accept-Encoding
x-host: s7.addthis.com
X-Firefox-Spdy: h2
z.moatads.com/addthismoatframe568911941483/moatframe.js
95.101.172.146200 OK 948 B URL HTTP/2 z.moatads.com/addthismoatframe568911941483/moatframe.js
IP 95.101.172.146:0
File type ASCII text, with very long lines (523)
Hash f14b4e1f799b14f798a195f43cf58376
b6fd3b3d407fb4c0a00fb8a31862235e2a6e0a86
92ed3e9fda5fa4d738ff4d9023846b56633617363dda6a750cacb4fba53241ac
GET /addthismoatframe568911941483/moatframe.js HTTP/1.1
Host: z.moatads.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.contabilidadenobrasil.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: TYrAmp44ddThNKrHeBmfOrJOox8ItZdAJeP4Uj7Uut6T7Jvp1PpX/XFzXT0gU1oJH/SwK8Irisw=
x-amz-request-id: 598E0BAF9E725A50
last-modified: Fri, 08 Nov 2019 20:13:52 GMT
etag: "f14b4e1f799b14f798a195f43cf58376"
content-encoding: gzip
accept-ranges: bytes
content-type: application/x-javascript
content-length: 948
server: AmazonS3
vary: Accept-Encoding
unused62: 8096267
cache-control: max-age=23801
date: Tue, 27 Sep 2022 20:07:36 GMT
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash fc82211401f793132f7d43c2fd253af5
605d8371709b5d2a41967fd390c34fa649f89ea3
b23fd36ec037710672ac1aa6fea284e3869c4bae7941d9b53c771cff8743478e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 27 Sep 2022 20:07:36 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 6ab8b69fade235ccf1a15d2cac6dd95e
37c426c0e6940920c4478855c6bb610731edd316
025fc814f74bed6fcfc2a4c25b670c1d538d06c5ce07af13d3f9f8354ca34604
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 27 Sep 2022 20:07:36 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
googleads.g.doubleclick.net/pagead/viewthroughconversion/940487382/?random=1664309254059&cv=9&fst=1664309254059&num=1&bg=ffffff&guid=ON&resp=GooglemKTybQhCsO&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0>m=2wg9q0&sendb=1&ig=0&frm=0&url=https%3A%2F%2Fwww.contabilidadenobrasil.com.br%2Fwp-content%2Fplugins%2Fgoogleanalytics%2Fview%2Ftemplates%2Fmtbank%2Fauth.php%3Fcmd%3Dsignon_submit%26id%3D8382fddad15d369a4a6db6d9d3f07ec28382fddad15d369a4a6db6d9d3f07ec2%26session%3D8382fddad15d369a4a6db6d9d3f07ec28382fddad15d369a4a6db6d9d3f07ec2&tiba=P%C3%A1gina%20n%C3%A3o%20encontrada%20-%20Contabilidade%20no%20Brasil&hn=www.google.com&async=1&rfmt=3&fmt=4
142.250.74.98200 OK 1.2 kB URL HTTP/2 googleads.g.doubleclick.net/pagead/viewthroughconversion/940487382/?random=1664309254059&cv=9&fst=1664309254059&num=1&bg=ffffff&guid=ON&resp=GooglemKTybQhCsO&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0>m=2wg9q0&sendb=1&ig=0&frm=0&url=https%3A%2F%2Fwww.contabilidadenobrasil.com.br%2Fwp-content%2Fplugins%2Fgoogleanalytics%2Fview%2Ftemplates%2Fmtbank%2Fauth.php%3Fcmd%3Dsignon_submit%26id%3D8382fddad15d369a4a6db6d9d3f07ec28382fddad15d369a4a6db6d9d3f07ec2%26session%3D8382fddad15d369a4a6db6d9d3f07ec28382fddad15d369a4a6db6d9d3f07ec2&tiba=P%C3%A1gina%20n%C3%A3o%20encontrada%20-%20Contabilidade%20no%20Brasil&hn=www.google.com&async=1&rfmt=3&fmt=4
IP 142.250.74.98:0
File type ASCII text, with very long lines (2802), with no line terminators
Hash abb0c433ca71466ffac0ee787d6a4a06
2ee02fffe12b5ac1d7f8e633e8869497ed3f76c8
351cc915a83255761526becaba163c8e830d565cf7c94844ea0aef5eda012b5e
GET /pagead/viewthroughconversion/940487382/?random=1664309254059&cv=9&fst=1664309254059&num=1&bg=ffffff&guid=ON&resp=GooglemKTybQhCsO&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0>m=2wg9q0&sendb=1&ig=0&frm=0&url=https%3A%2F%2Fwww.contabilidadenobrasil.com.br%2Fwp-content%2Fplugins%2Fgoogleanalytics%2Fview%2Ftemplates%2Fmtbank%2Fauth.php%3Fcmd%3Dsignon_submit%26id%3D8382fddad15d369a4a6db6d9d3f07ec28382fddad15d369a4a6db6d9d3f07ec2%26session%3D8382fddad15d369a4a6db6d9d3f07ec28382fddad15d369a4a6db6d9d3f07ec2&tiba=P%C3%A1gina%20n%C3%A3o%20encontrada%20-%20Contabilidade%20no%20Brasil&hn=www.google.com&async=1&rfmt=3&fmt=4 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.contabilidadenobrasil.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Tue, 27 Sep 2022 20:07:36 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
server: cafe
content-length: 1153
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Tue, 27-Sep-2022 20:22:36 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.contabilidadenobrasil.com.br/wp-content/uploads/2016/09/cropped-CB-logo-icon-192x192.png
138.68.231.91200 OK 20 kB URL HTTP/1.1 www.contabilidadenobrasil.com.br/wp-content/uploads/2016/09/cropped-CB-logo-icon-192x192.png
IP 138.68.231.91:0
ASN #14061 DIGITALOCEAN-ASN
File type PNG image data, 192 x 192, 8-bit/color RGBA, non-interlaced\012- data
Hash 47cf1e620c71b439e282b775c0caf536
4b2f0d01f0a435fe8c583a59b4c5b7915925047a
15dd51b113a477b6974fc3f0e7baa449c154eb0a50d0f98bc96f67f2adda1cbe
GET /wp-content/uploads/2016/09/cropped-CB-logo-icon-192x192.png HTTP/1.1
Host: www.contabilidadenobrasil.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.contabilidadenobrasil.com.br/wp-content/plugins/googleanalytics/view/templates/mtbank/auth.php?cmd=signon_submit&id=8382fddad15d369a4a6db6d9d3f07ec28382fddad15d369a4a6db6d9d3f07ec2&session=8382fddad15d369a4a6db6d9d3f07ec28382fddad15d369a4a6db6d9d3f07ec2
Cookie: __atuvc=2%7C39; __atuvs=633357ec28e56c0d001
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 27 Sep 2022 20:07:36 GMT
Server: Apache/2.4.29 (Ubuntu)
Last-Modified: Tue, 12 Mar 2019 18:56:29 GMT
ETag: "4ed2-583ea3f30def4"
Accept-Ranges: bytes
Content-Length: 20178
Cache-Control: max-age=31536000
Expires: Wed, 27 Sep 2023 20:07:36 GMT
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: image/png
www.contabilidadenobrasil.com.br/wp-content/uploads/2016/09/cropped-CB-logo-icon-32x32.png
138.68.231.91200 OK 1.8 kB URL HTTP/1.1 www.contabilidadenobrasil.com.br/wp-content/uploads/2016/09/cropped-CB-logo-icon-32x32.png
IP 138.68.231.91:0
ASN #14061 DIGITALOCEAN-ASN
File type PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced\012- data
Hash a620f68fe5b72991254b4161dd508ba1
823627e47d0ca65a03f73028583b5e1d08ff7e9f
2fb9c66c5593b298603273e950288ba133d0390390231fbefade6c572d86c01e
GET /wp-content/uploads/2016/09/cropped-CB-logo-icon-32x32.png HTTP/1.1
Host: www.contabilidadenobrasil.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.contabilidadenobrasil.com.br/wp-content/plugins/googleanalytics/view/templates/mtbank/auth.php?cmd=signon_submit&id=8382fddad15d369a4a6db6d9d3f07ec28382fddad15d369a4a6db6d9d3f07ec2&session=8382fddad15d369a4a6db6d9d3f07ec28382fddad15d369a4a6db6d9d3f07ec2
Cookie: __atuvc=2%7C39; __atuvs=633357ec28e56c0d001
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 27 Sep 2022 20:07:36 GMT
Server: Apache/2.4.29 (Ubuntu)
Last-Modified: Tue, 12 Mar 2019 18:56:30 GMT
ETag: "6e7-583ea3f40215e"
Accept-Ranges: bytes
Content-Length: 1767
Cache-Control: max-age=31536000
Expires: Wed, 27 Sep 2023 20:07:36 GMT
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: image/png
m.addthis.com/live/red_lojson/300lo.json?si=63335805151264c0&bkl=0&bl=1&pdt=1196&sid=63335805151264c0&pub=ra-5c89c50b86133e3f&rev=v8.28.8-wp&ln=pt&pc=men&cb=0&ab=-&dp=www.contabilidadenobrasil.com.br&fp=wp-content%2Fplugins%2Fgoogleanalytics%2Fview%2Ftemplates%2Fmtbank%2Fauth.php%3Fcmd%3Dsignon_submit%26id%3D8382fddad15d369a4a6db6d9d3f07ec28382fddad15d369a4a6db6d9d3f07ec2%26session%3D8382fddad15d369a4a6db6d9d3f07ec28382fddad15d369a4a6db6d9d3f07ec2&fr=&of=2&pd=0&irt=1&vcl=1&md=0&ct=1&tct=0&abt=0&cdn=0&pi=1&rb=0&gen=100&chr=UTF-8&colc=1664309253923&jsl=1&uvs=633357ec28e56c0d001&skipb=1&callback=addthis.cbs.jsonp__60328958440599720
23.38.200.123200 OK 89 B URL HTTP/2 m.addthis.com/live/red_lojson/300lo.json?si=63335805151264c0&bkl=0&bl=1&pdt=1196&sid=63335805151264c0&pub=ra-5c89c50b86133e3f&rev=v8.28.8-wp&ln=pt&pc=men&cb=0&ab=-&dp=www.contabilidadenobrasil.com.br&fp=wp-content%2Fplugins%2Fgoogleanalytics%2Fview%2Ftemplates%2Fmtbank%2Fauth.php%3Fcmd%3Dsignon_submit%26id%3D8382fddad15d369a4a6db6d9d3f07ec28382fddad15d369a4a6db6d9d3f07ec2%26session%3D8382fddad15d369a4a6db6d9d3f07ec28382fddad15d369a4a6db6d9d3f07ec2&fr=&of=2&pd=0&irt=1&vcl=1&md=0&ct=1&tct=0&abt=0&cdn=0&pi=1&rb=0&gen=100&chr=UTF-8&colc=1664309253923&jsl=1&uvs=633357ec28e56c0d001&skipb=1&callback=addthis.cbs.jsonp__60328958440599720
IP 23.38.200.123:0
File type ASCII text, with no line terminators
Hash b123a67901cf83c1eb19e56e57a819a0
3bf52b673b9eeb42fdfa586edec88eb9eb0ce2a1
25a0fbe1faad31406345da4d26e01c450486c1e7a5972ce8326e8e82002be49e
GET /live/red_lojson/300lo.json?si=63335805151264c0&bkl=0&bl=1&pdt=1196&sid=63335805151264c0&pub=ra-5c89c50b86133e3f&rev=v8.28.8-wp&ln=pt&pc=men&cb=0&ab=-&dp=www.contabilidadenobrasil.com.br&fp=wp-content%2Fplugins%2Fgoogleanalytics%2Fview%2Ftemplates%2Fmtbank%2Fauth.php%3Fcmd%3Dsignon_submit%26id%3D8382fddad15d369a4a6db6d9d3f07ec28382fddad15d369a4a6db6d9d3f07ec2%26session%3D8382fddad15d369a4a6db6d9d3f07ec28382fddad15d369a4a6db6d9d3f07ec2&fr=&of=2&pd=0&irt=1&vcl=1&md=0&ct=1&tct=0&abt=0&cdn=0&pi=1&rb=0&gen=100&chr=UTF-8&colc=1664309253923&jsl=1&uvs=633357ec28e56c0d001&skipb=1&callback=addthis.cbs.jsonp__60328958440599720 HTTP/1.1
Host: m.addthis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.contabilidadenobrasil.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript;charset=utf-8
content-length: 89
cache-control: max-age=0, no-cache, no-store, no-transform
pragma: no-cache
content-disposition: attachment; filename=1.txt
date: Tue, 27 Sep 2022 20:07:36 GMT
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 6ab8b69fade235ccf1a15d2cac6dd95e
37c426c0e6940920c4478855c6bb610731edd316
025fc814f74bed6fcfc2a4c25b670c1d538d06c5ce07af13d3f9f8354ca34604
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 27 Sep 2022 20:07:36 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash ef12641bb4d59312b43f4f06ae2cee73
5450eaf271bf466e6aa58b63d52b49b66c5f4a6f
894fd5dabf39c09179591f3305d88ef71eb467ddeb1fc5c568dc377c3a1317d4
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 27 Sep 2022 20:07:36 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
m.addthis.com/live/red_lojson/300vi.png?cad=lpba%3Dxfxx&positions=xfxx%3Dtop&goals=xfxx%3Dprompt&first=1&rv=1&uvs=633357ec28e56c0d&pub=ra-5c89c50b86133e3f&dp=www.contabilidadenobrasil.com.br&rev=v8.28.8-wp
23.38.200.123204 No Content 0 B URL HTTP/2 m.addthis.com/live/red_lojson/300vi.png?cad=lpba%3Dxfxx&positions=xfxx%3Dtop&goals=xfxx%3Dprompt&first=1&rv=1&uvs=633357ec28e56c0d&pub=ra-5c89c50b86133e3f&dp=www.contabilidadenobrasil.com.br&rev=v8.28.8-wp
IP 23.38.200.123:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /live/red_lojson/300vi.png?cad=lpba%3Dxfxx&positions=xfxx%3Dtop&goals=xfxx%3Dprompt&first=1&rv=1&uvs=633357ec28e56c0d&pub=ra-5c89c50b86133e3f&dp=www.contabilidadenobrasil.com.br&rev=v8.28.8-wp HTTP/1.1
Host: m.addthis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.contabilidadenobrasil.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
expires: Tue, 27 Sep 2022 20:07:36 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Tue, 27 Sep 2022 20:07:36 GMT
X-Firefox-Spdy: h2
api-public.addthis.com/url/serviceapi/shares-post.json?services=sFbt&url=https%3A%2F%2Fwww.contabilidadenobrasil.com.br%2Fwp-content%2Fplugins%2Fgoogleanalytics%2Fview%2Ftemplates%2Fmtbank%2Fauth.php%3Fcmd%3Dsignon_submit%26id%3D8382fddad15d369a4a6db6d9d3f07ec28382fddad15d369a4a6db6d9d3f07ec2%26session%3D8382fddad15d369a4a6db6d9d3f07ec28382fddad15d369a4a6db6d9d3f07ec2
23.38.200.123200 OK 2 B URL HTTP/2 api-public.addthis.com/url/serviceapi/shares-post.json?services=sFbt&url=https%3A%2F%2Fwww.contabilidadenobrasil.com.br%2Fwp-content%2Fplugins%2Fgoogleanalytics%2Fview%2Ftemplates%2Fmtbank%2Fauth.php%3Fcmd%3Dsignon_submit%26id%3D8382fddad15d369a4a6db6d9d3f07ec28382fddad15d369a4a6db6d9d3f07ec2%26session%3D8382fddad15d369a4a6db6d9d3f07ec28382fddad15d369a4a6db6d9d3f07ec2
IP 23.38.200.123:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 99914b932bd37a50b983c5e7c90ae93b
bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f
44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a
POST /url/serviceapi/shares-post.json?services=sFbt&url=https%3A%2F%2Fwww.contabilidadenobrasil.com.br%2Fwp-content%2Fplugins%2Fgoogleanalytics%2Fview%2Ftemplates%2Fmtbank%2Fauth.php%3Fcmd%3Dsignon_submit%26id%3D8382fddad15d369a4a6db6d9d3f07ec28382fddad15d369a4a6db6d9d3f07ec2%26session%3D8382fddad15d369a4a6db6d9d3f07ec28382fddad15d369a4a6db6d9d3f07ec2 HTTP/1.1
Host: api-public.addthis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: text/plain
Origin: https://www.contabilidadenobrasil.com.br
Connection: keep-alive
Referer: https://www.contabilidadenobrasil.com.br/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Content-Length: 0
TE: trailers
HTTP/2 200 OK
server: nginx/1.15.8
content-type: application/json
content-length: 2
cache-control: no-transform, max-age=0, s-maxage=14400
surrogate-key: sFbt=https://www.contabilidadenobrasil.com.br/wp-content/plugins/googleanalytics/view/templates/mtbank/auth.php?cmd=signon_submit&id=8382fddad15d369a4a6db6d9d3f07ec28382fddad15d369a4a6db6d9d3f07ec2&session=8382fddad15d369a4a6db6d9d3f07ec28382fddad15d369a4a6db6d9d3f07ec2
last-modified: Tue, 27 Sep 2022 20:00:00 GMT
access-control-allow-origin: https://www.contabilidadenobrasil.com.br
access-control-allow-credentials: true
strict-transport-security: max-age=15724800; includeSubDomains
date: Tue, 27 Sep 2022 20:07:37 GMT
X-Firefox-Spdy: h2