r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 1cdc095521e9ee2606059be447d1fdd5
02b5d0a5b5823e2338daf7e144700babe2a213af
8bda3aabcf331c2bfcc4c7023cd797c760fd301dc353641bb95048e072f66c66
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "8BDA3AABCF331C2BFCC4C7023CD797C760FD301DC353641BB95048E072F66C66"
Last-Modified: Sat, 04 Feb 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6738
Expires: Sun, 05 Feb 2023 07:10:45 GMT
Date: Sun, 05 Feb 2023 05:18:27 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash c21ba65e44ac95470c314e068e49a9eb
17a13b13738993d889d4afa3d848dc63bf6eba64
9bd0795b30e84ce63b6e2a365ca91bbffc395dd955e112152066c31e63a4ab66
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9BD0795B30E84CE63B6E2A365CA91BBFFC395DD955E112152066C31E63A4AB66"
Last-Modified: Sat, 04 Feb 2023 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15432
Expires: Sun, 05 Feb 2023 09:35:39 GMT
Date: Sun, 05 Feb 2023 05:18:27 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash ff250d3ef3fa45322bf05039a0122a9f
b3e7a2c383bce1bab807dbe1a03c375258b51f1d
d07f109a96e0ae6ec7b1d46ce8761b3f06fe845769ce65d69e053dd40aa561ba
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Retry-After, Backoff, Content-Type, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sun, 05 Feb 2023 04:33:54 GMT
content-type: application/json
age: 2673
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash fb7b6b46e708ad73eaaa3c21e74569ae
950663c025acad81556af5aa3022ecc9d55097fe
763f58b9fb838378c92033b59907b036f4c33081f5103d9bcc2ca2a8de500d64
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "763F58B9FB838378C92033B59907B036F4C33081F5103D9BCC2CA2A8DE500D64"
Last-Modified: Sat, 04 Feb 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3629
Expires: Sun, 05 Feb 2023 06:18:56 GMT
Date: Sun, 05 Feb 2023 05:18:27 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP
File type PEM certificate\012- , ASCII text
Hash 7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: 4atLCEa21Rm9Qz7eXr/xNPcxTDRlNEUcMZ0PMz9w2vC6k4fUEGjivRIvI43hvWKUa+oSiFAul4A=
x-amz-request-id: 8SEDMSRDD8E9ZXCZ
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sun, 05 Feb 2023 04:53:08 GMT
age: 1519
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 05:18:27 GMT
content-type: application/json
content-length: 12
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-expose-headers: content-type
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Pragma, Backoff, Retry-After, Content-Length, Last-Modified, Expires, Cache-Control, ETag, Alert, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sun, 05 Feb 2023 04:49:07 GMT
age: 1760
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
www-contapj.blogspot.com/?m=1
301 Moved Permanently 184 B URL HTTP/1.1 www-contapj.blogspot.com/?m=1
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text
Hash 51d6f78eea9c1cc71e7c9433b528d068
eaa7cc8572a5730d8afb512ee9b81854667c01d5
546c7527ef0efc9ab060224c5bbfb9b3b46ad6f36d0293b0fb905925b38f6273
GET /?m=1 HTTP/1.1
Host: www-contapj.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Location: https://www-contapj.blogspot.com/?m=1
Content-Type: text/html; charset=UTF-8
Content-Encoding: gzip
Date: Sun, 05 Feb 2023 05:18:27 GMT
Expires: Sun, 05 Feb 2023 05:18:27 GMT
Cache-Control: private, max-age=0
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
Content-Security-Policy: frame-ancestors 'self'
X-XSS-Protection: 1; mode=block
Content-Length: 184
Server: GSE
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 78e6a848b80f008114441eeea30981db
8e71ebc1aa0b43ed2221190e219e05b43e71c665
336471ebc6bfd6bb215e142c41469feaa78cb2ba389bcdb89a52ca7ab385e85f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 05:18:28 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash dedf9c519ac38c4bece9c5bc895787d7
4911175c3f8a435978c5301c33c7a99a5e00a1d5
bddd7e3a4939f863642a7c5348c1c8b9bc569b35c10a27f4cf5ec71f7e6b9698
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BDDD7E3A4939F863642A7C5348C1C8B9BC569B35C10A27F4CF5EC71F7E6B9698"
Last-Modified: Fri, 03 Feb 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12378
Expires: Sun, 05 Feb 2023 08:44:46 GMT
Date: Sun, 05 Feb 2023 05:18:28 GMT
Connection: keep-alive
push.services.mozilla.com/
101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: OiSy6RzrWYv0B8tUvBVZpQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: bPqScvUNgrT5Ehp7FUEkBDC3qb0=
www-contapj.blogspot.com/?m=1
200 OK 17 kB URL HTTP/2 www-contapj.blogspot.com/?m=1
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (6565)
Hash 730d75d1f89aa94b25f2454f28283668
e3d15ddb390888405acb90ae573f10bad2383193
67b29872a68039d2c0b41a2ba7f37a5effaaef4ebe2e1f8b3afe59d35a2b07d0
GET /?m=1 HTTP/1.1
Host: www-contapj.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
expires: Sun, 05 Feb 2023 05:18:28 GMT
date: Sun, 05 Feb 2023 05:18:28 GMT
cache-control: private, max-age=0
last-modified: Sat, 04 Feb 2023 15:42:18 GMT
etag: W/"406c243d3f98d297f57fb396fa30250cfe79d515b7af7aa1e6e32eca272f90ef"
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 17212
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 78e6a848b80f008114441eeea30981db
8e71ebc1aa0b43ed2221190e219e05b43e71c665
336471ebc6bfd6bb215e142c41469feaa78cb2ba389bcdb89a52ca7ab385e85f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 05:18:28 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
e1.o.lencr.org/
200 OK 346 B IP
ASN #20940 Akamai International B.V.
Hash cca96356641a33b6b79b31cdb7c22cf5
134839e85aad0dad5a219ebbc5c79912dcd2974c
439b51a083599d569d44ecf227b3a9f3599aa1001e8c7ea3df503225ace032c6
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 346
ETag: "439B51A083599D569D44ECF227B3A9F3599AA1001E8C7EA3DF503225ACE032C6"
Last-Modified: Sat, 04 Feb 2023 15:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21596
Expires: Sun, 05 Feb 2023 11:18:24 GMT
Date: Sun, 05 Feb 2023 05:18:28 GMT
Connection: keep-alive
e1.o.lencr.org/
200 OK 346 B IP
ASN #20940 Akamai International B.V.
Hash cca96356641a33b6b79b31cdb7c22cf5
134839e85aad0dad5a219ebbc5c79912dcd2974c
439b51a083599d569d44ecf227b3a9f3599aa1001e8c7ea3df503225ace032c6
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 346
ETag: "439B51A083599D569D44ECF227B3A9F3599AA1001E8C7EA3DF503225ACE032C6"
Last-Modified: Sat, 04 Feb 2023 15:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21596
Expires: Sun, 05 Feb 2023 11:18:24 GMT
Date: Sun, 05 Feb 2023 05:18:28 GMT
Connection: keep-alive
ocsp.digicert.com/
200 OK 42 kB IP
Hash dce63fb515fb7591ad53f9d6219765db
c441cc241716c1c6db1e938a631309daa6fd28af
c7de9de6e641a1e44a11497bbb8ab86c1ad166fea28f86404c3da4f2ba66b620
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4187
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 05:18:29 GMT
Last-Modified: Sun, 05 Feb 2023 04:08:42 GMT
Server: ECS (ska/F705)
X-Cache: HIT
Content-Length: 278
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash c14d3cf8ade0150a711f094be32ac474
11e7fb5487d364c5392e1594e09f5b49831043ea
2a98ce39894b7d9befdba3916467bc95962376d0b308103e0a1eea36c0bc2302
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "2A98CE39894B7D9BEFDBA3916467BC95962376D0B308103E0A1EEA36C0BC2302"
Last-Modified: Fri, 03 Feb 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6601
Expires: Sun, 05 Feb 2023 07:08:30 GMT
Date: Sun, 05 Feb 2023 05:18:29 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash c14d3cf8ade0150a711f094be32ac474
11e7fb5487d364c5392e1594e09f5b49831043ea
2a98ce39894b7d9befdba3916467bc95962376d0b308103e0a1eea36c0bc2302
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "2A98CE39894B7D9BEFDBA3916467BC95962376D0B308103E0A1EEA36C0BC2302"
Last-Modified: Fri, 03 Feb 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6601
Expires: Sun, 05 Feb 2023 07:08:30 GMT
Date: Sun, 05 Feb 2023 05:18:29 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash c14d3cf8ade0150a711f094be32ac474
11e7fb5487d364c5392e1594e09f5b49831043ea
2a98ce39894b7d9befdba3916467bc95962376d0b308103e0a1eea36c0bc2302
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "2A98CE39894B7D9BEFDBA3916467BC95962376D0B308103E0A1EEA36C0BC2302"
Last-Modified: Fri, 03 Feb 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6601
Expires: Sun, 05 Feb 2023 07:08:30 GMT
Date: Sun, 05 Feb 2023 05:18:29 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9070541c-6707-464e-b141-b6c767d8a58a.jpeg
200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9070541c-6707-464e-b141-b6c767d8a58a.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 062e186a259eda97173695240a492c63
9b476a4ec219667f560b88199a3a4e4b0a93b579
d18570d3c4ada689b5c2a99b0783ce41c629bd125e6683cf225e01b7032f14a4
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9070541c-6707-464e-b141-b6c767d8a58a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12256
x-amzn-requestid: 1b959eb9-cf69-414c-b57b-4a63277d709c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fvgx-EhgoAMF2wA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dc7b3f-2c58e8ac2aee8a8f409a93a0;Sampled=0
x-amzn-remapped-date: Fri, 03 Feb 2023 03:10:55 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: dvxlk1iSyNfjmNRI_8HcmhG9_xe0ZlaZ0Pzj0H9EBR6wwXKg0L7YVQ==
via: 1.1 d83ae0e1ba84e92e58bc1efc23a0c652.cloudfront.net (CloudFront), 1.1 570075675953459325e00b7bcd171df2.cloudfront.net (CloudFront), 1.1 google
date: Sat, 04 Feb 2023 05:55:27 GMT
age: 84182
etag: "9b476a4ec219667f560b88199a3a4e4b0a93b579"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F37422a56-a7de-4ab8-ac8a-650de9dae97c.jpeg
200 OK 5.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F37422a56-a7de-4ab8-ac8a-650de9dae97c.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 5b6c30ad03669b66bf2f63b3edd69882
e630bd132b52b965a5ade646ea8a165d1abf6d7b
f8233d879ec17fd91909655ff8881f2ebfad84272fde3ed5e5be37580378a989
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F37422a56-a7de-4ab8-ac8a-650de9dae97c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5014
x-amzn-requestid: a434aae4-fe4b-4fc7-9b7e-eeb552484e8a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fi3bIE0aoAMF6YQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d76c47-5556d14757190c842bbc6b06;Sampled=0
x-amzn-remapped-date: Mon, 30 Jan 2023 07:05:43 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: k6YqagXr3Wr-u1uDKojEnIGW0CxU5yvWPtlzNpzoIvmg9F-rJb9uFQ==
via: 1.1 a4fe306096165bb1e86e69365dc8fac2.cloudfront.net (CloudFront), 1.1 1a53057db389e96b4ef1bfbc925dde1c.cloudfront.net (CloudFront), 1.1 google
date: Sat, 04 Feb 2023 14:53:45 GMT
age: 51884
etag: "e630bd132b52b965a5ade646ea8a165d1abf6d7b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe8a9d301-2b38-4046-91c2-941ed351597a.jpeg
200 OK 3.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe8a9d301-2b38-4046-91c2-941ed351597a.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d7a466d89c75ff3459b7328591db52cf
c3f29f9c2fbdc1fa2aef7a9e79ca796b28394afb
e73243be3d01d12a224c4e9826c4f52610cf7722eee69f62755278d7550705f1
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe8a9d301-2b38-4046-91c2-941ed351597a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 3474
x-amzn-requestid: 5846c080-9f25-4590-863c-8af2126cdbe1
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: f1WXEEbnoAMFRdg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63ded0f9-1bd490125feadc14366e7ca0;Sampled=0
x-amzn-remapped-date: Sat, 04 Feb 2023 21:41:13 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: d8aQmkW-aqLFpb79RynlJG2vY1GTDbjLNY0Qukgg_WIjdI6cmbVKFw==
via: 1.1 5ab5dc09da67e3ea794ec8a82992cc88.cloudfront.net (CloudFront), 1.1 476c2ba6d9f6cd69dbcedbd65688cbc0.cloudfront.net (CloudFront), 1.1 google
date: Sat, 04 Feb 2023 22:10:58 GMT
etag: "c3f29f9c2fbdc1fa2aef7a9e79ca796b28394afb"
content-type: image/jpeg
age: 25651
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fef803fc0-c789-4c2b-8cb2-33bef88abc9c.jpeg
200 OK 8.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fef803fc0-c789-4c2b-8cb2-33bef88abc9c.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash bbb38d805862a1b3081eebf256e0dae0
4a5cb01390d897be8721cd4551c74d0452aff640
02443891d0533f37fe38b16febafc86fa64c457dc1827b97ec535d623486d549
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fef803fc0-c789-4c2b-8cb2-33bef88abc9c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8691
x-amzn-requestid: 51bb839e-c32c-4be9-9f38-7f8044160e70
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fVsLgFPqIAMFfww=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d22716-3794126b47a79aed27e1aac4;Sampled=0
x-amzn-remapped-date: Thu, 26 Jan 2023 07:09:10 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: ZzB4intZtIAVIcqw9mAMRZi0to963HvX5jZkt03q0MjLup64VMIDpQ==
via: 1.1 2afae0d44e2540f472c0635ab62c232a.cloudfront.net (CloudFront), 1.1 d8792dbd3191bbe722eba5b536b979c8.cloudfront.net (CloudFront), 1.1 google
date: Sun, 05 Feb 2023 03:41:55 GMT
age: 5794
etag: "4a5cb01390d897be8721cd4551c74d0452aff640"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F01d9feca-e9dc-4ee4-9694-bcc983e3a7c1.jpeg
200 OK 6.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F01d9feca-e9dc-4ee4-9694-bcc983e3a7c1.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 0d632f8be93820b9746f76146fe3ff0e
7e5e9b16819af678ba84ddb6f45c073e659e2f4e
26ad66cf5e4fe4de99ad31b5c4f0fa3d05c085be04610de8ad80989528c100bf
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F01d9feca-e9dc-4ee4-9694-bcc983e3a7c1.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6434
x-amzn-requestid: ccf74c35-c654-4a9a-8121-ab27fc4cd862
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: f1WWYFbJoAMFgSg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63ded0f5-10dedb6a287acd2b10cdfdb4;Sampled=0
x-amzn-remapped-date: Sat, 04 Feb 2023 21:41:09 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 3bv0yNuzTWh742AZFesuU0caKmg0nMFc3P0bLYkhGd-TAeg5R9W_vQ==
via: 1.1 5a1753718d8b33365e5f693dd338c510.cloudfront.net (CloudFront), 1.1 12a392bc3a7281f8d5d4591bfadc41fc.cloudfront.net (CloudFront), 1.1 google
date: Sat, 04 Feb 2023 22:10:24 GMT
age: 25685
etag: "7e5e9b16819af678ba84ddb6f45c073e659e2f4e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F61ef2f28-06d6-4c28-b598-e80a6c49ef77.jpeg
200 OK 4.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F61ef2f28-06d6-4c28-b598-e80a6c49ef77.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 1f4a8749b09484bfc2a8fe4b33c69624
299d7514cf29c2dbd919581883239ef44c0984dd
22a61b6e7b48eeb44339469a353efdef0dc089be670fb490627dd33adc59168b
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F61ef2f28-06d6-4c28-b598-e80a6c49ef77.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4526
x-amzn-requestid: 0942d90f-c9a6-40e6-9439-5da97a42cd35
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fye2wEngoAMFmGQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63ddab5e-5d3234d519561b4040eff4c3;Sampled=0
x-amzn-remapped-date: Sat, 04 Feb 2023 00:48:30 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: WqipgPOkYYXuD4D0MYHUEn4Gusno3xTQyHrwq-XlF9mwiPP0BtQGWg==
via: 1.1 8f22423015641505b8c857a37450d6c0.cloudfront.net (CloudFront), 1.1 476c2ba6d9f6cd69dbcedbd65688cbc0.cloudfront.net (CloudFront), 1.1 google
date: Sat, 04 Feb 2023 09:56:11 GMT
age: 69738
etag: "299d7514cf29c2dbd919581883239ef44c0984dd"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
caixa.gastecnologia.com.br/ofdb/OFDB.js
200 OK 156 kB URL HTTP/2 caixa.gastecnologia.com.br/ofdb/OFDB.js
IP
File type ASCII text, with very long lines (59064)
Size 156 kB (155964 bytes)
Hash 52295c33e502ca8796637c8977368510
10b6b27ec865438ff43588271e05e0a8ec2cdc95
f633b46627b69b53f7155ae2185aee532ac864c25dbc4a545cd6f62a56d417ac
GET /ofdb/OFDB.js HTTP/1.1
Host: caixa.gastecnologia.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://whitebiit.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
content-length: 155964
last-modified: Wed, 25 Jan 2023 13:29:56 GMT
content-encoding: gzip
accept-ranges: bytes
server: AmazonS3
date: Sun, 05 Feb 2023 05:18:31 GMT
cache-control: max-age=86400
etag: "52295c33e502ca8796637c8977368510"
x-cache: Hit from cloudfront
via: 1.1 80d21802b1b80c40e55ccf83433b8eac.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: V22caPl0x1t7aTUHuwJA2OOBt1P8WxzhQI2dC9MprC1iHeCd0ntEsA==
age: 747
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 471 B IP
Hash 8f1c4930f714442ade3a0caa5f97d660
beaa22294a643097a38c7091d86607698b4707dc
3b8f5a22cc266f0590856a6d95737d1333bc80e36024fc241067f8cdcd5cb596
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=162760
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 05:18:31 GMT
Etag: "63df14ef-1d7"
Expires: Tue, 07 Feb 2023 02:31:11 GMT
Last-Modified: Sun, 05 Feb 2023 02:31:11 GMT
Server: nginx
Content-Length: 471
detectca.easysol.net/detectca/scripts/E9NCMlmwek6WC3JRdkCe4G8cUrmZzr/detect.js
200 OK 1.6 kB URL HTTP/1.1 detectca.easysol.net/detectca/scripts/E9NCMlmwek6WC3JRdkCe4G8cUrmZzr/detect.js
IP
File type ASCII text, with very long lines (1644), with no line terminators
Hash c7ab3ece615b0610abd488ca39c9264a
f344eb0723870df4fdada893c7b945a6dcce5311
6d750d6032ee8851ee43715a4044528da277b9ef5801d950663fe80082ef7fef
GET /detectca/scripts/E9NCMlmwek6WC3JRdkCe4G8cUrmZzr/detect.js HTTP/1.1
Host: detectca.easysol.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://whitebiit.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 05 Feb 2023 05:18:31 GMT
Content-Type: application/javascript
Content-Length: 1644
Last-Modified: Tue, 24 Aug 2021 00:00:00 GMT
Connection: keep-alive
ETag: "61243680-66c"
Accept-Ranges: bytes
ocsp.digicert.com/
200 OK 471 B IP
Hash 5af76cb13c6d532e003fa5515dc12307
7c6f9ecf0cfb2d0094686e31d19a6f297823ebc2
9fcb866c58e3eaef475078fc7a1a9abc708d48757bc0ad070b0b0841ef57bd1f
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4113
Cache-Control: max-age=113605
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 05:18:32 GMT
Etag: "63de44dc-1d7"
Expires: Mon, 06 Feb 2023 12:51:57 GMT
Last-Modified: Sat, 04 Feb 2023 11:43:24 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
200 OK 471 B IP
Hash 5af76cb13c6d532e003fa5515dc12307
7c6f9ecf0cfb2d0094686e31d19a6f297823ebc2
9fcb866c58e3eaef475078fc7a1a9abc708d48757bc0ad070b0b0841ef57bd1f
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1722
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 05:18:32 GMT
Last-Modified: Sun, 05 Feb 2023 04:49:50 GMT
Server: ECS (ska/F705)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
200 OK 471 B IP
Hash 5af76cb13c6d532e003fa5515dc12307
7c6f9ecf0cfb2d0094686e31d19a6f297823ebc2
9fcb866c58e3eaef475078fc7a1a9abc708d48757bc0ad070b0b0841ef57bd1f
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3662
Cache-Control: max-age=113154
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 05:18:32 GMT
Etag: "63de44dc-1d7"
Expires: Mon, 06 Feb 2023 12:44:26 GMT
Last-Modified: Sat, 04 Feb 2023 11:43:24 GMT
Server: ECS (ska/F716)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
200 OK 471 B IP
Hash 5af76cb13c6d532e003fa5515dc12307
7c6f9ecf0cfb2d0094686e31d19a6f297823ebc2
9fcb866c58e3eaef475078fc7a1a9abc708d48757bc0ad070b0b0841ef57bd1f
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 898
Cache-Control: max-age=110390
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 05:18:32 GMT
Etag: "63de44dc-1d7"
Expires: Mon, 06 Feb 2023 11:58:22 GMT
Last-Modified: Sat, 04 Feb 2023 11:43:24 GMT
Server: ECS (amb/6B88)
X-Cache: HIT
Content-Length: 471
status.geotrust.com/
200 OK 471 B IP
Hash 761859840db1a8cea1a9c416faaa418b
0ebb276f0d96f8d0a54ebe28469947afedc71e69
d9b15b9ce261c2fedfb7843c142cbf2007cf4354936e7d55e3c172d3ba2a1e55
POST / HTTP/1.1
Host: status.geotrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 7172
Cache-Control: max-age=131724
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 05:18:32 GMT
Etag: "63de7fb0-1d7"
Expires: Mon, 06 Feb 2023 17:53:56 GMT
Last-Modified: Sat, 04 Feb 2023 15:54:24 GMT
Server: ECS (amb/6B85)
X-Cache: HIT
Content-Length: 471
internetbanking.caixa.gov.br/statics-core/bootstrap/css/bootstrap.css?v=38
200 OK 132 B URL HTTP/2 internetbanking.caixa.gov.br/statics-core/bootstrap/css/bootstrap.css?v=38
IP
ASN #60068 Datacamp Limited
File type ASCII text, with CRLF line terminators
Hash c62b47b2733327b832e64b4c049dd962
3cf63edaac7d6b4bb36fa7a843bbe45c101df346
ead0cd8b7529ff95a2dbbbaf693c86922dc67b6c05d09b3af310ee1bce4379aa
GET /statics-core/bootstrap/css/bootstrap.css?v=38 HTTP/1.1
Host: internetbanking.caixa.gov.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://whitebiit.xyz/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 05 Feb 2023 05:18:32 GMT
content-type: text/css
x-frame-options: deny
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
last-modified: Mon, 05 Dec 2022 17:40:08 GMT
etag: "402e1-88-5ef182dab2e00"
vary: Accept-Encoding
content-encoding: gzip
pragma: no-cache
cache-control: must-revalidate
cross-origin-opener-policy: same-origin
content-length: 132
accept-ranges: bytes
X-Firefox-Spdy: h2
status.geotrust.com/
200 OK 471 B IP
Hash 761859840db1a8cea1a9c416faaa418b
0ebb276f0d96f8d0a54ebe28469947afedc71e69
d9b15b9ce261c2fedfb7843c142cbf2007cf4354936e7d55e3c172d3ba2a1e55
POST / HTTP/1.1
Host: status.geotrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=124552
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 05:18:32 GMT
Etag: "63de7fb0-1d7"
Expires: Mon, 06 Feb 2023 15:54:24 GMT
Last-Modified: Sat, 04 Feb 2023 15:54:24 GMT
Server: nginx
Content-Length: 471
status.geotrust.com/
200 OK 471 B IP
Hash 761859840db1a8cea1a9c416faaa418b
0ebb276f0d96f8d0a54ebe28469947afedc71e69
d9b15b9ce261c2fedfb7843c142cbf2007cf4354936e7d55e3c172d3ba2a1e55
POST / HTTP/1.1
Host: status.geotrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=124552
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 05:18:32 GMT
Etag: "63de7fb0-1d7"
Expires: Mon, 06 Feb 2023 15:54:24 GMT
Last-Modified: Sat, 04 Feb 2023 15:54:24 GMT
Server: nginx
Content-Length: 471
internetbanking.caixa.gov.br/statics-core/bootstrap/css/bootstrap_desktop.css
200 OK 20 kB URL HTTP/2 internetbanking.caixa.gov.br/statics-core/bootstrap/css/bootstrap_desktop.css
IP
ASN #60068 Datacamp Limited
File type ASCII text, with very long lines (540), with CRLF line terminators
Hash cf407fe2cf5e97ea827de0458f2088a4
e7a0616b031fdbfdbd3bd4d4c7ab2248d8a2b277
4146440b8cab24aab098465f61497c094fbaa38ddb13281c8f9f1bf1da26f21b
GET /statics-core/bootstrap/css/bootstrap_desktop.css HTTP/1.1
Host: internetbanking.caixa.gov.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://internetbanking.caixa.gov.br/statics-core/bootstrap/css/bootstrap.css?v=38
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 05 Feb 2023 05:18:32 GMT
content-type: text/css
x-frame-options: deny
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
last-modified: Mon, 05 Dec 2022 17:40:08 GMT
etag: "41c87-23447-5ef182dab2e00"
vary: Accept-Encoding
content-encoding: gzip
pragma: no-cache
cache-control: must-revalidate
cross-origin-opener-policy: same-origin
content-length: 20471
accept-ranges: bytes
X-Firefox-Spdy: h2
internetbanking.caixa.gov.br//statics-components/js/componentes/loading/loading.css?v=38
200 OK 310 B URL HTTP/2 internetbanking.caixa.gov.br//statics-components/js/componentes/loading/loading.css?v=38
IP
ASN #60068 Datacamp Limited
File type ASCII text, with CRLF line terminators
Hash cb8eaa64224de76d31924a21f78fc731
50dfba5385da14adfb0fd9791e0cac304e00c873
8bf1aa9eb9312634666e47f910f00040287e9ef07e7571f118b84a8d6ee13134
GET //statics-components/js/componentes/loading/loading.css?v=38 HTTP/1.1
Host: internetbanking.caixa.gov.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://whitebiit.xyz/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 05 Feb 2023 05:18:32 GMT
content-type: text/css
x-frame-options: deny
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
last-modified: Mon, 05 Dec 2022 17:39:58 GMT
etag: "411f7-252-5ef182d129780"
vary: Accept-Encoding
content-encoding: gzip
pragma: no-cache
cache-control: must-revalidate
cross-origin-opener-policy: same-origin
content-length: 310
accept-ranges: bytes
X-Firefox-Spdy: h2
internetbanking.caixa.gov.br/statics-core/css/login.css?v=38
200 OK 148 B URL HTTP/2 internetbanking.caixa.gov.br/statics-core/css/login.css?v=38
IP
ASN #60068 Datacamp Limited
Hash 532bfb43ee1aa636c14b20ba52323b41
76ab154cf64513753d774b4b5cc57ec9ae2b8e67
8dc54899487e26567ce1c8bbde591558db48207c29e9ff4f66ef58f25669d45f
GET /statics-core/css/login.css?v=38 HTTP/1.1
Host: internetbanking.caixa.gov.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://whitebiit.xyz/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 05 Feb 2023 05:18:32 GMT
content-type: text/css
x-frame-options: deny
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
last-modified: Mon, 05 Dec 2022 17:40:08 GMT
etag: "401e3-9a-5ef182dab2e00"
vary: Accept-Encoding
content-encoding: gzip
pragma: no-cache
cache-control: must-revalidate
cross-origin-opener-policy: same-origin
content-length: 148
accept-ranges: bytes
X-Firefox-Spdy: h2
internetbanking.caixa.gov.br/statics-core/css/login_desktop.css?v=36
200 OK 2.3 kB URL HTTP/2 internetbanking.caixa.gov.br/statics-core/css/login_desktop.css?v=36
IP
ASN #60068 Datacamp Limited
File type ASCII text, with CRLF line terminators
Hash a0959c937a5162f017953d562fa5683d
5c9d3943f3ee30a61d0fdf08cd546b6105615269
9aaae5aab4116d368e1e85706ef2d37804af8268d99f832375755d3999e0b6df
GET /statics-core/css/login_desktop.css?v=36 HTTP/1.1
Host: internetbanking.caixa.gov.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://internetbanking.caixa.gov.br/statics-core/css/login.css?v=38
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 05 Feb 2023 05:18:32 GMT
content-type: text/css
x-frame-options: deny
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
last-modified: Mon, 05 Dec 2022 17:40:08 GMT
etag: "41c7c-1f04-5ef182dab2e00"
vary: Accept-Encoding
content-encoding: gzip
pragma: no-cache
cache-control: must-revalidate
cross-origin-opener-policy: same-origin
content-length: 2320
accept-ranges: bytes
X-Firefox-Spdy: h2
status.geotrust.com/
200 OK 471 B IP
Hash 761859840db1a8cea1a9c416faaa418b
0ebb276f0d96f8d0a54ebe28469947afedc71e69
d9b15b9ce261c2fedfb7843c142cbf2007cf4354936e7d55e3c172d3ba2a1e55
POST / HTTP/1.1
Host: status.geotrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=124552
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 05:18:32 GMT
Etag: "63de7fb0-1d7"
Expires: Mon, 06 Feb 2023 15:54:24 GMT
Last-Modified: Sat, 04 Feb 2023 15:54:24 GMT
Server: nginx
Content-Length: 471
internetbanking.caixa.gov.br/statics-core/css/principal.css?v=38
200 OK 191 B URL HTTP/2 internetbanking.caixa.gov.br/statics-core/css/principal.css?v=38
IP
ASN #60068 Datacamp Limited
File type ASCII text, with CRLF line terminators
Hash cb84ecf5bd21adecff2a77e9c151b7ac
49b6012e7813a5cd3378fa3c6b284bfb148651e3
d89c33718f61d1df79b812298baa15f43b7692a2d12473b905d08bde683301f7
GET /statics-core/css/principal.css?v=38 HTTP/1.1
Host: internetbanking.caixa.gov.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://whitebiit.xyz/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 05 Feb 2023 05:18:32 GMT
content-type: text/css
x-frame-options: deny
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
last-modified: Mon, 05 Dec 2022 17:40:08 GMT
etag: "401f3-160-5ef182dab2e00"
vary: Accept-Encoding
content-encoding: gzip
pragma: no-cache
cache-control: must-revalidate
cross-origin-opener-policy: same-origin
content-length: 191
accept-ranges: bytes
X-Firefox-Spdy: h2
internetbanking.caixa.gov.br/statics-core/css/style.css?v=38
200 OK 12 kB URL HTTP/2 internetbanking.caixa.gov.br/statics-core/css/style.css?v=38
IP
ASN #60068 Datacamp Limited
File type assembler source, Unicode text, UTF-8 text, with very long lines (1265), with CRLF line terminators
Hash 2e6348332ef2f031e58a020b7e8e275e
ca52a6b46a277f1b38d07c49c7ca2d8683cda5d5
5c9ba0420552f5a0e7088fc26b8bc97d18220e211d580bb47a75ddef278c5cf7
GET /statics-core/css/style.css?v=38 HTTP/1.1
Host: internetbanking.caixa.gov.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://internetbanking.caixa.gov.br/statics-core/css/principal.css?v=38
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 05 Feb 2023 05:18:32 GMT
content-type: text/css
x-frame-options: deny
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
last-modified: Mon, 05 Dec 2022 17:40:08 GMT
etag: "41c78-10e3d-5ef182dab2e00"
vary: Accept-Encoding
content-encoding: gzip
pragma: no-cache
cache-control: must-revalidate
cross-origin-opener-policy: same-origin
content-length: 12534
accept-ranges: bytes
X-Firefox-Spdy: h2
internetbanking.caixa.gov.br/statics-core/css/print.css?v=38
200 OK 2.5 kB URL HTTP/2 internetbanking.caixa.gov.br/statics-core/css/print.css?v=38
IP
ASN #60068 Datacamp Limited
File type assembler source, ASCII text, with very long lines (792), with CRLF line terminators
Hash 7f7035f58fa002a0297c7d60ede90162
b9f17638a4c4950937f4fab154e6a7fbbeb5c36b
ac12aafbd87ac975745fbfeb4b184d597d61d3a1b97233c823f1548797f4d25f
GET /statics-core/css/print.css?v=38 HTTP/1.1
Host: internetbanking.caixa.gov.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://internetbanking.caixa.gov.br/statics-core/css/principal.css?v=38
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 05 Feb 2023 05:18:32 GMT
content-type: text/css
x-frame-options: deny
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
last-modified: Mon, 05 Dec 2022 17:40:08 GMT
etag: "401e4-3091-5ef182dab2e00"
vary: Accept-Encoding
content-encoding: gzip
pragma: no-cache
cache-control: must-revalidate
cross-origin-opener-policy: same-origin
content-length: 2521
accept-ranges: bytes
X-Firefox-Spdy: h2
internetbanking.caixa.gov.br/statics-core/css/principal_desktop.css?v=38
200 OK 13 kB URL HTTP/2 internetbanking.caixa.gov.br/statics-core/css/principal_desktop.css?v=38
IP
ASN #60068 Datacamp Limited
File type assembler source, ASCII text, with CRLF line terminators
Hash 37f20ecdbacc8be6892f508ef057b3d3
737e8d42d084bb9c372817ffa6029ce5731d65a9
17073664a15e23339a3c3c3bda358353ef4b5ad5737c076e26d002d3629c7862
GET /statics-core/css/principal_desktop.css?v=38 HTTP/1.1
Host: internetbanking.caixa.gov.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://internetbanking.caixa.gov.br/statics-core/css/principal.css?v=38
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 05 Feb 2023 05:18:32 GMT
content-type: text/css
x-frame-options: deny
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
last-modified: Mon, 05 Dec 2022 17:40:08 GMT
etag: "41c7e-106c8-5ef182dab2e00"
vary: Accept-Encoding
content-encoding: gzip
pragma: no-cache
cache-control: must-revalidate
cross-origin-opener-policy: same-origin
content-length: 12712
accept-ranges: bytes
X-Firefox-Spdy: h2
internetbanking.caixa.gov.br/statics-core/css/datalist.css?v=38
200 OK 774 B URL HTTP/2 internetbanking.caixa.gov.br/statics-core/css/datalist.css?v=38
IP
ASN #60068 Datacamp Limited
Hash 10db59da25be0a1b47976579e383b09a
5bc0b7e36cbb5305e0b02c1d76028ed00d26ca9c
61dadd54ac58de3135c0c16be5fa090059f41ba19d3e722b48f84e315aa41c09
GET /statics-core/css/datalist.css?v=38 HTTP/1.1
Host: internetbanking.caixa.gov.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://internetbanking.caixa.gov.br/statics-core/css/principal.css?v=38
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 05 Feb 2023 05:18:32 GMT
content-type: text/css
x-frame-options: deny
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
last-modified: Mon, 05 Dec 2022 17:40:08 GMT
etag: "42436-85f-5ef182dab2e00"
vary: Accept-Encoding
content-encoding: gzip
pragma: no-cache
cache-control: must-revalidate
cross-origin-opener-policy: same-origin
content-length: 774
accept-ranges: bytes
X-Firefox-Spdy: h2
detectca.easysol.net/detectca/images/E9NCMlmwek6WC3JRdkCe4G8cUrmZzr/DetectCA.png?ua=Mozilla/5.0%20(Windows%20NT%2010.0;%20Win64;%20x64;%20rv:105.0)%20Gecko/20100101%20Firefox/105.0&sr=1280%20x%201024&url=https://whitebiit.xyz/Inte/desk/&rf=https://whitebiit.xyz/Inte/&nc=0.9557125688805282
200 OK 82 B URL HTTP/1.1 detectca.easysol.net/detectca/images/E9NCMlmwek6WC3JRdkCe4G8cUrmZzr/DetectCA.png?ua=Mozilla/5.0%20(Windows%20NT%2010.0;%20Win64;%20x64;%20rv:105.0)%20Gecko/20100101%20Firefox/105.0&sr=1280%20x%201024&url=https://whitebiit.xyz/Inte/desk/&rf=https://whitebiit.xyz/Inte/&nc=0.9557125688805282
IP
File type PNG image data, 1 x 1, 8-bit/color RGB, non-interlaced\012- data
Hash ae11c9259e141875b33cbb6598aa1485
4d71dc1bd4621df68ee846fe3f9409606aabced4
ca2613f315c93819ed7c4a14d44dcf8b041a71c5e032bd0aec9b399a6f4eb491
GET /detectca/images/E9NCMlmwek6WC3JRdkCe4G8cUrmZzr/DetectCA.png?ua=Mozilla/5.0%20(Windows%20NT%2010.0;%20Win64;%20x64;%20rv:105.0)%20Gecko/20100101%20Firefox/105.0&sr=1280%20x%201024&url=https://whitebiit.xyz/Inte/desk/&rf=https://whitebiit.xyz/Inte/&nc=0.9557125688805282 HTTP/1.1
Host: detectca.easysol.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://whitebiit.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 05 Feb 2023 05:18:32 GMT
Content-Type: image/png
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: Express
Access-Control-Allow-Origin: *
caixa.gastecnologia.com.br/ofdb/jquery.min.js
200 OK 8.6 kB URL HTTP/2 caixa.gastecnologia.com.br/ofdb/jquery.min.js
IP
Hash bdb0acd795fdac59e7c9ba9dd7dd966a
b4ceb0b876b5dd5b205c0df1f9715407270f459b
7c352802920d3a2109c0b9ffe734b20debd1ba530b360de10071eef4e806c62b
GET /ofdb/jquery.min.js HTTP/1.1
Host: caixa.gastecnologia.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: text/plain
Origin: https://whitebiit.xyz
Connection: keep-alive
Referer: https://whitebiit.xyz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
content-length: 8174
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
last-modified: Thu, 19 Jan 2023 13:02:42 GMT
content-encoding: gzip
accept-ranges: bytes
server: AmazonS3
date: Sun, 05 Feb 2023 05:18:33 GMT
cache-control: max-age=86400
etag: "6949591b644d7119748a7950544475c4"
x-cache: Hit from cloudfront
via: 1.1 1ca0323262515c9240c58fe69a9ac826.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 1XOvd7yAbweoWWoit6VM7uSaENJ9jqGn9mqvMtomSjzTOiBntq5dkA==
age: 94
X-Firefox-Spdy: h2
whitebiit.xyz/Inte/
403 Forbidden 0 B IP
Analyzer Verdict Alert quad9 Sinkholed
GET /Inte/ HTTP/1.1
Host: whitebiit.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www-contapj.blogspot.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 403 Forbidden
date: Sun, 05 Feb 2023 05:18:28 GMT
content-type: text/html; charset=UTF-8
permissions-policy: accelerometer=(),autoplay=(),camera=(),clipboard-read=(),clipboard-write=(),fullscreen=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()
referrer-policy: same-origin
x-frame-options: SAMEORIGIN
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
expires: Thu, 01 Jan 1970 00:00:01 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=8b7npKMtQpeoL09UtBs0BkrVY0IpMJbkXzkCewi5A9m5jrvKCnoEFLnKBL7VzNar9RwyUusunpvnUx%2Fp4p34UzgWyQNcbzpi%2FfalzZuw3YgUWeXkCc1sg6K2vTEjP%2Frj"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 79492f86fd25b509-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
whitebiit.xyz/cdn-cgi/styles/challenges.css
200 OK 0 B URL HTTP/2 whitebiit.xyz/cdn-cgi/styles/challenges.css
IP
Analyzer Verdict Alert quad9 Sinkholed
GET /cdn-cgi/styles/challenges.css HTTP/1.1
Host: whitebiit.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://whitebiit.xyz/Inte/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 05 Feb 2023 05:18:28 GMT
content-type: text/css
last-modified: Fri, 03 Feb 2023 16:55:59 GMT
etag: W/"63dd3c9f-182e"
server: cloudflare
cf-ray: 79492f873d36b509-OSL
x-frame-options: DENY
x-content-type-options: nosniff
vary: Accept-Encoding
expires: Sun, 05 Feb 2023 07:18:28 GMT
cache-control: max-age=7200, public
content-encoding: gzip
X-Firefox-Spdy: h2
cloudflare.hcaptcha.com/1/api.js?endpoint=https%3A%2F%2Fcloudflare.hcaptcha.com&assethost=https%3A%2F%2Fcf-assets.hcaptcha.com&imghost=https%3A%2F%2Fcf-imgs.hcaptcha.com&render=explicit&recaptchacompat=off&onload=_cf_chl_hload
200 OK 0 B URL HTTP/2 cloudflare.hcaptcha.com/1/api.js?endpoint=https%3A%2F%2Fcloudflare.hcaptcha.com&assethost=https%3A%2F%2Fcf-assets.hcaptcha.com&imghost=https%3A%2F%2Fcf-imgs.hcaptcha.com&render=explicit&recaptchacompat=off&onload=_cf_chl_hload
IP
GET /1/api.js?endpoint=https%3A%2F%2Fcloudflare.hcaptcha.com&assethost=https%3A%2F%2Fcf-assets.hcaptcha.com&imghost=https%3A%2F%2Fcf-imgs.hcaptcha.com&render=explicit&recaptchacompat=off&onload=_cf_chl_hload HTTP/1.1
Host: cloudflare.hcaptcha.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 05 Feb 2023 05:18:29 GMT
content-type: application/javascript
cf-ray: 79492f87e9010b39-OSL
access-control-allow-origin: *
age: 0
cache-control: max-age=120
etag: W/"777d334016fd859eff9671706a59e51c"
last-modified: Thu, 02 Feb 2023 17:18:41 GMT
strict-transport-security: max-age=0
via: 1.1 9037b7743a833da13439f0d4e2619b52.cloudfront.net (CloudFront)
cf-cache-status: HIT
x-amz-cf-id: 5sDIeAm01Jei3_iGPYVhgm17YO1La2Mr1xjz52uIIogkQx3QDAuZLg==
x-amz-cf-pop: OSL50-P1
x-cache: Hit from cloudfront
x-content-type-options: nosniff
vary: Accept-Encoding
server: cloudflare
content-encoding: gzip
X-Firefox-Spdy: h2
whitebiit.xyz/favicon.ico
404 Not Found 0 B URL HTTP/2 whitebiit.xyz/favicon.ico
IP
Analyzer Verdict Alert quad9 Sinkholed
GET /favicon.ico HTTP/1.1
Host: whitebiit.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://whitebiit.xyz/Inte/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
date: Sun, 05 Feb 2023 05:18:29 GMT
content-type: text/html; charset=iso-8859-1
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=iNeTPmg2Pra0BpjKjf4zPJj0cr%2BXoWShrnhGqpN9iJBvvvC2s6uHHPonGKQo9AjrWm4%2Bn%2BKWSARy84BiEhZMzWGwVZgPMuIVcMJVfFOfBEfbGkzvpblrq0kJPq7TEfOz"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 79492f873d37b509-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
216.58.207.193
104.18.19.132
93.184.220.29
185.76.9.107
188.114.97.1
23.36.76.226