POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
 95.101.11.115
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Server: nginx
Content-Length: 503
ETag: "EBCB744A032452533C000C0A9F193FD2566B2389729C41B6C5ED69B9E4CD42D4"
Last-Modified: Tue, 07 Mar 2023 14:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10504
Expires: Thu, 09 Mar 2023 08:39:44 GMT
Date: Thu, 09 Mar 2023 05:44:40 GMT
Connection: keep-alive
|
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
95.101.11.115
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Server: nginx
Content-Length: 503
ETag: "84518FA2565F7F63933D3C552E1DC07F84C71F4A3DF5D2821484C371EF57B924"
Last-Modified: Tue, 07 Mar 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3742
Expires: Thu, 09 Mar 2023 06:47:02 GMT
Date: Thu, 09 Mar 2023 05:44:40 GMT
Connection: keep-alive
|
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
95.101.11.115
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Server: nginx
Content-Length: 503
ETag: "560F8228FEDC912E05B84AF1D19FCEFCA3FEC82415180DF5D18C5B2A3F533A68"
Last-Modified: Tue, 07 Mar 2023 19:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7960
Expires: Thu, 09 Mar 2023 07:57:20 GMT
Date: Thu, 09 Mar 2023 05:44:40 GMT
Connection: keep-alive
|
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
|
 35.241.9.150
HTTP/2 200 OK
content-type: application/json
access-control-allow-origin: *
access-control-expose-headers: Backoff, Content-Type, Retry-After, Content-Length, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Thu, 09 Mar 2023 05:13:42 GMT
age: 1858
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
|
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
95.101.11.115
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Server: nginx
Content-Length: 503
ETag: "CC225692CD5966DF2CA08E14A63E3070DB3901FB1F5A129AA75C5FD9A5C6664D"
Last-Modified: Wed, 08 Mar 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15702
Expires: Thu, 09 Mar 2023 10:06:22 GMT
Date: Thu, 09 Mar 2023 05:44:40 GMT
Connection: keep-alive
|
GET /chains/remote-settings.content-signature.mozilla.org-2023-04-09-20-28-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
|
34.160.144.191
HTTP/2 200 OK
content-type: binary/octet-stream
x-amz-id-2: dzmVXNzVYU5YzkV5iGOKg4WdkZ/XP1/DrLGWYrGaNza88KSBjLwSq/3dP47nTF5pfF7YjSRttl0=
x-amz-request-id: YKVK8SAHTY28HKD1
x-amz-server-side-encryption: AES256
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Thu, 09 Mar 2023 05:18:17 GMT
age: 1583
last-modified: Sat, 18 Feb 2023 20:28:27 GMT
etag: "b5ba6334e73496995e3e3a9ecd0eb323"
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
|
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
|
34.117.237.239
HTTP/2 200 OK
content-type: application/json
server: nginx
date: Thu, 09 Mar 2023 05:44:40 GMT
content-length: 12
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-credentials: true
access-control-expose-headers: content-type
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
|
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
|
35.241.9.150
HTTP/2 200 OK
content-type: application/json
access-control-allow-origin: *
access-control-expose-headers: Pragma, Retry-After, Alert, Content-Length, Backoff, ETag, Content-Type, Cache-Control, Last-Modified, Expires
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Thu, 09 Mar 2023 05:03:42 GMT
age: 2459
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
|
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
95.101.11.115
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Server: nginx
Content-Length: 503
ETag: "A9D8A1030EC5E70745F085F90E35A4B8832956FF20BD6719F3DBE6DD7291FC05"
Last-Modified: Tue, 07 Mar 2023 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12103
Expires: Thu, 09 Mar 2023 09:06:24 GMT
Date: Thu, 09 Mar 2023 05:44:41 GMT
Connection: keep-alive
|
GET /wp-content/themes/twentytwentyone/inc/lkjl/2i0yjm=/zfkntg=/css%20js/a HTTP/1.1
Host: lilicamanequinsfiber.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lilicamanequinsfiber.com.br/wp-content/themes/twentytwentyone/inc/lkjl/2i0yjm=/zfkntg=/tblm2i=/
Cookie: ndsid=ndsa7t1krso0tjelf0okjkd
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
|
162.241.203.66
HTTP/2 200 OK
last-modified: Wed, 08 Mar 2023 15:50:54 GMT
accept-ranges: bytes
content-length: 471
date: Thu, 09 Mar 2023 05:44:41 GMT
server: Apache
X-Firefox-Spdy: h2
|
GET /wp-content/themes/twentytwentyone/inc/lkjl/2i0yjm=/zfkntg=/css%20js/nd HTTP/1.1
Host: lilicamanequinsfiber.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lilicamanequinsfiber.com.br/wp-content/themes/twentytwentyone/inc/lkjl/2i0yjm=/zfkntg=/tblm2i=/
Cookie: ndsid=ndsa7t1krso0tjelf0okjkd
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
|
162.241.203.66
HTTP/2 200 OK
last-modified: Wed, 08 Mar 2023 15:50:54 GMT
accept-ranges: bytes
content-length: 38396
date: Thu, 09 Mar 2023 05:44:41 GMT
server: Apache
X-Firefox-Spdy: h2
|
GET /wp-content/themes/twentytwentyone/inc/lkjl/2i0yjm=/zfkntg=/css%20js/atadun.js HTTP/1.1
Host: lilicamanequinsfiber.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lilicamanequinsfiber.com.br/wp-content/themes/twentytwentyone/inc/lkjl/2i0yjm=/zfkntg=/tblm2i=/
Cookie: ndsid=ndsa7t1krso0tjelf0okjkd
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
|
162.241.203.66
HTTP/2 200 OK
content-type: application/javascript
last-modified: Wed, 08 Mar 2023 15:50:54 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 512
date: Thu, 09 Mar 2023 05:44:41 GMT
server: Apache
X-Firefox-Spdy: h2
|
GET /wp-content/themes/twentytwentyone/inc/lkjl/2i0yjm=/zfkntg=/css%20js/conutils-6.js HTTP/1.1
Host: lilicamanequinsfiber.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lilicamanequinsfiber.com.br/wp-content/themes/twentytwentyone/inc/lkjl/2i0yjm=/zfkntg=/tblm2i=/
Cookie: ndsid=ndsa7t1krso0tjelf0okjkd
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
|
162.241.203.66
HTTP/2 200 OK
content-type: application/javascript
last-modified: Wed, 08 Mar 2023 15:50:54 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 4188
date: Thu, 09 Mar 2023 05:44:41 GMT
server: Apache
X-Firefox-Spdy: h2
|
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 1AD2P+wegxU0SDP9SR+74w==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
|
54.148.84.125
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: xUJDQGajFFjV/WmMWUSfeTdVWs0=
|
GET /auth/static/scripts/conutils-6.2.2.js HTTP/1.1
Host: lilicamanequinsfiber.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lilicamanequinsfiber.com.br/wp-content/themes/twentytwentyone/inc/lkjl/2i0yjm=/zfkntg=/tblm2i=/
Cookie: ndsid=ndsa7t1krso0tjelf0okjkd
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
|
162.241.203.66
HTTP/2 404 Not Found
content-type: text/html
last-modified: Thu, 06 Oct 2022 20:52:17 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 836
date: Thu, 09 Mar 2023 05:44:41 GMT
server: Apache
X-Firefox-Spdy: h2
|
GET /auth/static/prefs/atadun.js HTTP/1.1
Host: lilicamanequinsfiber.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lilicamanequinsfiber.com.br/wp-content/themes/twentytwentyone/inc/lkjl/2i0yjm=/zfkntg=/tblm2i=/
Cookie: ndsid=ndsa7t1krso0tjelf0okjkd
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
|
162.241.203.66
HTTP/2 404 Not Found
content-type: text/html
last-modified: Thu, 06 Oct 2022 20:52:17 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 836
date: Thu, 09 Mar 2023 05:44:41 GMT
server: Apache
X-Firefox-Spdy: h2
|
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
192.229.221.95
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Accept-Ranges: bytes
Age: 6591
Cache-Control: 'max-age=158059'
Date: Thu, 09 Mar 2023 05:44:41 GMT
Last-Modified: Thu, 09 Mar 2023 03:54:50 GMT
Server: ECAcc (ska/F7A3)
X-Cache: HIT
Content-Length: 471
|
GET /image/thumb/Purple118/v4/96/c7/76/96c776f8-3a0e-cda9-130d-8feadb33e5a2/source/1200x630bb.jpg HTTP/1.1
Host: is5.mzstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
|
95.101.10.25
HTTP/1.1 200 OK
Content-Type: image/jpeg
Server: daiquiri/3.0.0
Content-Length: 22987
x-apple-jingle-correlation-key: FTJIURWXYVJNSRFBDXD5YAATLE
x-apple-request-uuid: 2cd28a46-d7c5-52d9-44a1-1dc7dc001359
b3: 2cd28a46d7c552d944a11dc7dc001359-8ab2a599beeb4608
x-b3-traceid: 2cd28a46d7c552d944a11dc7dc001359
x-b3-spanid: 8ab2a599beeb4608
apple-seq: 0.0
apple-tk: false
apple-originating-system: UnknownOriginatingSystem
Last-Modified: Tue, 28 Feb 2023 01:04:40 GMT
ETag: "MSwxLjQuMC0yM0IsVmVyc2lvbiAxMi4xIChCdWlsZCAyMUM1MiksMTY3NzU0NjI4MDYxMSxpc0J1aWxkVmVyc2lvbk5vdFNldCw2MDE1NCxub0VmZmVjdA=="
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Length,Content-Type,ETag,Cache-Control,Expires,Last-Modified
Timing-Allow-Origin: *
Strict-Transport-Security: max-age=31536000; includeSubDomains
x-daiquiri-instance: daiquiri:33624002:pv50p00it-hyhk12033901:7987:23RELEASE10:daiquiri-amp-processing-shared-int-001-pv
CDNUUID: 10c745f2-323d-4e04-8f13-8fa0529ba83f-709107294
Cache-Control: no-transform, max-age=15006009
Date: Thu, 09 Mar 2023 05:44:42 GMT
X-Cache: TCP_MEM_HIT from a95-101-10-21.deploy.akamaitechnologies.com (AkamaiGHost/11.0.0-46340752) (-)
Connection: keep-alive
--- Additional Info ---
Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1], baseline, precision 8, 630x630, components 3\012- data
Size: 22987
Md5: 0de02bcccca1f6c60cbe81eb5b29d98c
Sha1: 2da739cec7d4d3cb6a98018ef79239432675d3f1
Sha256: a28ddc4b77e206e26f2f7949deab7b8d3a190f4676e9b59bcdcc004a41c91778
|
GET /jenny/nd HTTP/1.1
Host: connect.secure.wellsfargo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lilicamanequinsfiber.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
|
95.101.10.136
HTTP/1.1 200 OK
Content-Type: application/javascript;charset=ISO-8859-1
X-Frame-Options: DENY
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Vary: accept-encoding
Content-Encoding: gzip
Content-Length: 17879
Date: Thu, 09 Mar 2023 05:44:42 GMT
Connection: keep-alive
Set-Cookie: ADRUM_BTa=R:36|g:e0f93bbf-53da-4a93-8ab1-b3de1a4309b6; Expires=Thu, 09-Mar-2023 05:45:12 GMT; Path=/; Secure
ADRUM_BTa=R:36|g:e0f93bbf-53da-4a93-8ab1-b3de1a4309b6|n:wellsfargo-prod_43732a1d-9afc-4e95-ad69-f4ac78c780a7; Expires=Thu, 09-Mar-2023 05:45:12 GMT; Path=/; Secure
SameSite=None; Expires=Thu, 09-Mar-2023 05:45:12 GMT; Path=/; Secure
ADRUM_BT1=R:36|i:302812; Expires=Thu, 09-Mar-2023 05:45:12 GMT; Path=/; Secure
ADRUM_BT1=R:36|i:302812|e:3; Expires=Thu, 09-Mar-2023 05:45:12 GMT; Path=/; Secure
ISD_AB_COOKIE=A; Max-Age=7200; path=/; Domain=connect.secure.wellsfargo.com; Secure; httpOnly
DCID=+EmRGLMY6ZRCtMzq0YTn3JdkoNnhjgjk9ofRaDf7kM5i%2fWx9Pzf1kQfhjARZ5gH0; Domain=connect.secure.wellsfargo.com; Path=/; Expires=Thu, 09 Mar 2023 05:59:42 GMT;Httponly; Secure
_abck=7CAFC3B2715FCC00867AA0B351A01192~-1~YAAQhAplX4Ex7b6GAQAAK3LmxAk01YqxeKvcEIMBiTznMSyxMDr+1pkjoYUjeA0lA2jSibCdhOzG8MRK2mmDb9cxnaLw+GTJ40VaHqGj493sK14PrD6lE0M4rDs4Xw+GxLk7cGcEeBPfW4W+2gmvDTqWiaEU3J/NJ6/CiLqcGYXgH+ns0VbB2OB2iK70Aa2IG1mKA23B1S2gfQV/qvC1szjiV20zLcC3Xd/s2rNNEFE7hJpyBkn54RYzeUv1YDo4hCNjYuVGe2mJvrBgerYmteBpHhggjnohy+Ac0bqmiUm/yeh80a0oH1j7Wx2tHtYis8O2YkAwsUleyYPNfIK7Gm+TOtthUwEqMtFgU5b3Bz52nGC783jTCwze7zO8/hP/Ew==~-1~-1~-1; Domain=.wellsfargo.com; Path=/; Expires=Fri, 08 Mar 2024 05:44:42 GMT; Max-Age=31536000; Secure
bm_sz=577F3970565EC67F1B007625531193AF~YAAQhAplX4Ix7b6GAQAAK3LmxBOXy5/4t204ckrJbxDYCnxrat8jw0dXsLGLC9e8WQWy2jkwGD5Gs+1zpQfgvwf9krGTOQZgbtzkjavHmW8IlNdRemMQFL+SFia51AM/cW0j19X1vMRCvqTW8Ck6d+djezKL7+k/ohvL0FNV44ECJEKjLIXMN8NsteZ/BmOBuPgyTRTNIjrlErFRIx53iE2g3sIVLD8ji8ImHc9LWgKT1qjI7dzv4vZASwTb/H6/kpz93ujI3E6yYL4BgzxYlojbPYzQ/5n6MQ0AtgHb1R0r3zctmnl/~3228982~4404789; Domain=.wellsfargo.com; Path=/; Expires=Thu, 09 Mar 2023 09:44:42 GMT; Max-Age=14400
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
|
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
95.101.11.115
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Server: nginx
Content-Length: 503
ETag: "8F8B0574EA2DC28302DEE0A9868C1C145F66A6735353D236A8BD024C624F55A1"
Last-Modified: Thu, 09 Mar 2023 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11840
Expires: Thu, 09 Mar 2023 09:02:03 GMT
Date: Thu, 09 Mar 2023 05:44:43 GMT
Connection: keep-alive
|
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
95.101.11.115
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Server: nginx
Content-Length: 503
ETag: "8F8B0574EA2DC28302DEE0A9868C1C145F66A6735353D236A8BD024C624F55A1"
Last-Modified: Thu, 09 Mar 2023 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11840
Expires: Thu, 09 Mar 2023 09:02:03 GMT
Date: Thu, 09 Mar 2023 05:44:43 GMT
Connection: keep-alive
|
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
95.101.11.115
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Server: nginx
Content-Length: 503
ETag: "8F8B0574EA2DC28302DEE0A9868C1C145F66A6735353D236A8BD024C624F55A1"
Last-Modified: Thu, 09 Mar 2023 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11840
Expires: Thu, 09 Mar 2023 09:02:03 GMT
Date: Thu, 09 Mar 2023 05:44:43 GMT
Connection: keep-alive
|
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
95.101.11.115
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Server: nginx
Content-Length: 503
ETag: "8F8B0574EA2DC28302DEE0A9868C1C145F66A6735353D236A8BD024C624F55A1"
Last-Modified: Thu, 09 Mar 2023 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11840
Expires: Thu, 09 Mar 2023 09:02:03 GMT
Date: Thu, 09 Mar 2023 05:44:43 GMT
Connection: keep-alive
|
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F658d3e61-18db-424d-b357-80193db0d290.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
|
34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
server: nginx
content-length: 7377
x-amzn-requestid: 93242d16-01b2-4f53-becd-37aa52d3da7f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: BWQDiE_TIAMFlLg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-640593af-43f0e7d12347fe980718e450;Sampled=0
x-amzn-remapped-date: Mon, 06 Mar 2023 07:18:07 GMT
x-amz-cf-pop: SEA19-C3
x-cache: Miss from cloudfront
x-amz-cf-id: kfWKB2ORdRrxB0jb5HF-Dp_l8eepxTlbEHNkNdyp2eamyXJ0Lz9qmg==
via: 1.1 28a7186077f9b5270d98dd053f31303e.cloudfront.net (CloudFront), 1.1 d15b6a95f7c8298444f59a99d8027cec.cloudfront.net (CloudFront), 1.1 google
date: Wed, 08 Mar 2023 07:37:57 GMT
age: 79606
etag: "9f102acd9b03628e0f03436d46a3b11442492171"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F70c6f776-b551-4a5b-8932-4e29593bbbe2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
|
34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
server: nginx
content-length: 9901
x-amzn-requestid: cc48ab79-d2a9-4cf3-a7cd-43500aa05234
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: BWO0AEftIAMFruA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-640591b2-592175a26e7c6d1f12a06045;Sampled=0
x-amzn-remapped-date: Mon, 06 Mar 2023 07:09:39 GMT
x-amz-cf-pop: SEA19-C3
x-cache: Miss from cloudfront
x-amz-cf-id: -GiQVU-13ujuMwW5p9DrCurNBvfb6Gs63pDlG2dEyeCQee4ZUr8-RA==
via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 f958a3846d80a3925f664b320dfad9c8.cloudfront.net (CloudFront), 1.1 google
date: Wed, 08 Mar 2023 08:07:30 GMT
age: 77833
etag: "8234854e81d9c373a29fa53623d3b07f5382a7ce"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fab5f13a1-64f5-41ac-aa1b-5fb0a6b438d4.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
|
34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
server: nginx
content-length: 4770
x-amzn-requestid: 963dae3d-8336-4a5b-8b25-c3617f946d73
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: BUZkWFhLIAMF6FQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6404d61b-1b705b460f7539f97c3dd7e5;Sampled=0
x-amzn-remapped-date: Sun, 05 Mar 2023 17:49:15 GMT
x-amz-cf-pop: SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: HM56vjzUqmaOjBHUlhgopx3n5qjLe3x6v-AleC5P9ZRCJt5ndUZSsw==
via: 1.1 0005a84c2971ff4f5bbb79e7ebc622a8.cloudfront.net (CloudFront), 1.1 6af3b573d8970d5db2a4d03354335b84.cloudfront.net (CloudFront), 1.1 google
date: Wed, 08 Mar 2023 22:35:48 GMT
age: 25735
etag: "bc714ee0389e279919dde08149be61c4dc9ab0a7"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0e099794-4e7d-4d03-a39a-3ce385884bff.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
|
34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
server: nginx
content-length: 7206
x-amzn-requestid: bc793a8e-f967-4a1b-81d2-be45c56bd93b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: BPorOF-CIAMFX6A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6402ee47-3e38c6af4234bd164a429258;Sampled=0
x-amzn-remapped-date: Sat, 04 Mar 2023 07:07:51 GMT
x-amz-cf-pop: SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: Xb2s4bB3o_N7MZTbTBeHvSP-1P_LdQiXcRKYiaZ-s9JAomhrUYyqUg==
via: 1.1 1cc6ed0d2d3dd9529ce544f9dfe61a52.cloudfront.net (CloudFront), 1.1 a3b5bb90516201e5ddd137696b7b0f50.cloudfront.net (CloudFront), 1.1 google
date: Wed, 08 Mar 2023 20:05:39 GMT
age: 34744
etag: "61075cafcbfe1c763ab0b1c79540d42e7ae63942"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc07f45e6-f472-4bb8-a38c-568302947acb.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
|
34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
server: nginx
content-length: 8474
x-amzn-requestid: 7c2323dc-d57c-4ce4-b920-c4950b926012
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: BS7R3GYGoAMF_JA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-64043f3e-67d8f0fb6108a56561de29cf;Sampled=0
x-amzn-remapped-date: Sun, 05 Mar 2023 07:05:34 GMT
x-amz-cf-pop: SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: YfvK5mqFgau-kyMzH4CN4sityLyc8UiKzooLk5XeXaAfkOvjms-rzA==
via: 1.1 9b311162717b41c968f6f00426d88aaa.cloudfront.net (CloudFront), 1.1 6bdc2963c9ed59b475ec36c35e5932a4.cloudfront.net (CloudFront), 1.1 google
date: Wed, 08 Mar 2023 08:01:07 GMT
age: 78216
etag: "1cdaea2ae90ef7272e589444ca10807cf20075fd"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff126aba3-5053-41e8-9adc-5cb3d542d065.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
|
34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
server: nginx
content-length: 8421
x-amzn-requestid: f161f3bb-2b66-4ec8-a2d0-460296e59d8b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: BezfVHwPoAMF9CQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6408ff95-7fd8848f23e348491da23bc3;Sampled=0
x-amzn-remapped-date: Wed, 08 Mar 2023 21:35:17 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C3
x-cache: Miss from cloudfront
x-amz-cf-id: UxccdNn1zcfmf6dLfofsW97SALSwT6zQ4-AxC4JW9xXmtxUCtHHFFg==
via: 1.1 86b676273517904f44af31586adb06ae.cloudfront.net (CloudFront), 1.1 bb763d35677c62f9f5d9728bba884662.cloudfront.net (CloudFront), 1.1 google
date: Wed, 08 Mar 2023 21:45:27 GMT
etag: "ec77a342171a7b2df5b4bb4ff267eb9e7b6fdc9d"
age: 28756
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
GET /wp-content/themes/twentytwentyone/inc/lkjl/2i0yjm=/zfkntg=/tblm2i=/ HTTP/1.1
Host: lilicamanequinsfiber.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: ndsid=ndsa7t1krso0tjelf0okjkd
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
|
162.241.203.66
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
content-encoding: gzip
date: Thu, 09 Mar 2023 05:44:40 GMT
server: Apache
X-Firefox-Spdy: h2
--- Additional Info ---
Magic:
Size: 0
Md5:
Sha1:
Sha256:
Blocklists:
- openphish: Wells Fargo & Company
- fortinet: Phishing
|