{"report_id":"6911aae0-923b-4857-a9e8-3280ecf03766","version":6,"status":"done","tags":[],"date":"2025-09-01T22:11:31Z","url":{"schema":"http","addr":"mboss.ogxcursos.com.br/","fqdn":"mboss.ogxcursos.com.br","domain":"ogxcursos.com.br","tld":"com.br"},"ip":{"addr":"69.60.99.95","port":0,"asn":15083,"as":"INFOLINK-MIA","country":"United States","country_code":"US"},"final":{"url":{"schema":"https","addr":"www.omb100.com/us/office/login?redir=%2Fus%2Foffice","fqdn":"www.omb100.com","domain":"omb100.com","tld":"com"},"title":"Sign In | OMB100"},"submit":{"url":{"schema":"http","addr":"mboss.ogxcursos.com.br/","fqdn":"mboss.ogxcursos.com.br","domain":"ogxcursos.com.br","tld":"com.br"},"ip":{"addr":"69.60.99.95","port":0,"asn":15083,"as":"INFOLINK-MIA","country":"United States","country_code":"US"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2026-10-06T22:11:31Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":1,"urlquery":0,"analyzer":0}},"detection":{"ids":[{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2025-09-01T22:11:18Z","timestamp":1756764678,"ip_dst":{"addr":"172.18.0.17","port":52448,"asn":0,"as":"","country":"","country_code":"zz"},"ip_src":{"addr":"69.60.99.95","port":80,"asn":15083,"as":"INFOLINK-MIA","country":"United States","country_code":"US"},"severity":"medium","alert":"ET PHISHING Possible Phishing Redirect Dec 13 2016","source":"{\"timestamp\":\"2025-09-01T22:11:18.489944+0000\",\"flow_id\":1561126558800047,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"69.60.99.95\",\"src_port\":80,\"dest_ip\":\"172.18.0.17\",\"dest_port\":52448,\"proto\":\"TCP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2023638,\"rev\":5,\"signature\":\"ET PHISHING Possible Phishing Redirect Dec 13 2016\",\"category\":\"Possible Social Engineering Attempted\",\"severity\":2,\"metadata\":{\"affected_product\":[\"Web_Browsers\"],\"attack_target\":[\"Client_Endpoint\"],\"confidence\":[\"Medium\"],\"created_at\":[\"2016_12_13\"],\"deployment\":[\"Perimeter\"],\"mitre_tactic_id\":[\"TA0001\"],\"mitre_tactic_name\":[\"Initial_Access\"],\"mitre_technique_id\":[\"T1566\"],\"mitre_technique_name\":[\"Phishing\"],\"signature_severity\":[\"Critical\"],\"tag\":[\"Phishing\"],\"updated_at\":[\"2020_08_24\"]}},\"http\":{\"hostname\":\"mboss.ogxcursos.com.br\",\"url\":\"/\",\"http_user_agent\":\"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\",\"http_content_type\":\"text/html\",\"http_method\":\"GET\",\"protocol\":\"HTTP/1.1\",\"status\":200,\"length\":682},\"files\":[{\"filename\":\"/\",\"sid\":[],\"gaps\":false,\"state\":\"CLOSED\",\"stored\":false,\"size\":682,\"tx_id\":0}],\"app_proto\":\"http\",\"flow\":{\"pkts_toserver\":5,\"pkts_toclient\":4,\"bytes_toserver\":745,\"bytes_toclient\":1185,\"start\":\"2025-09-01T22:11:08.104623+0000\"}}"}],"analyzer":null,"urlquery":null},"summary":[{"fqdn":"fonts.googleapis.com","ip":{"addr":"142.250.178.74","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"2005-01-25","domain_rank":313,"first_seen":"2012-05-23T12:41:44Z","last_seen":"2025-08-27T15:14:26.687687Z","alert_count":0,"request_count":5,"received_data":34702,"sent_data":2356,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]},{"fqdn":"cdn.linearicons.com","ip":{"addr":"138.199.37.227","port":443,"asn":60068,"as":"Datacamp Limited","country":"Germany","country_code":"DE"},"domain_registered":"2013-12-10","domain_rank":393482,"first_seen":"2016-09-23T07:43:41Z","last_seen":"2025-09-01T08:13:19.722454Z","alert_count":0,"request_count":1,"received_data":8316,"sent_data":449,"comment":"","tags":null,"fingerprints":[{"name":"Bunny","description":"","website":"https://bunny.net","common_platform_enumeration":"","icon":"Bunny.svg","categories":["CDN"]}]},{"fqdn":"www.omb100.com","ip":{"addr":"64.251.28.130","port":443,"asn":15083,"as":"INFOLINK-MIA","country":"United States","country_code":"US"},"domain_registered":"2012-01-13","domain_rank":0,"first_seen":"2013-01-06T15:32:58Z","last_seen":"2025-09-01T22:11:13.352645Z","alert_count":0,"request_count":12,"received_data":6021706,"sent_data":7126,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"jQuery:3.5.1","description":"jQuery is a JavaScript library which is a free, open-source software designed to simplify HTML DOM tree traversal and manipulation, as well as event handling, CSS animation, and Ajax.","website":"https://jquery.com","common_platform_enumeration":"cpe:2.3:a:jquery:jquery:*:*:*:*:*:*:*:*","icon":"jQuery.svg","categories":["JavaScript libraries"]},{"name":"cdnjs","description":"cdnjs is a free distributed JS library delivery service.","website":"https://cdnjs.com","common_platform_enumeration":"","icon":"cdnjs.svg","categories":["CDN"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"Bootstrap:4.3.1","description":"Bootstrap is a free and open-source CSS framework directed at responsive, mobile-first front-end web development. It contains CSS and JavaScript-based design templates for typography, forms, buttons, navigation, and other interface components.","website":"https://getbootstrap.com","common_platform_enumeration":"cpe:2.3:a:getbootstrap:bootstrap:*:*:*:*:*:*:*:*","icon":"Bootstrap.svg","categories":["UI frameworks"]},{"name":"Google Hosted Libraries","description":"Google Hosted Libraries is a stable, reliable, high-speed, globally available content distribution network for the most popular, open-source JavaScript libraries.","website":"https://developers.google.com/speed/libraries","common_platform_enumeration":"","icon":"Google Developers.svg","categories":["CDN"]}]},{"fqdn":"ajax.googleapis.com","ip":{"addr":"142.250.178.42","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"2005-01-25","domain_rank":3691,"first_seen":"2012-05-22T10:38:03Z","last_seen":"2025-08-27T15:44:28.417679Z","alert_count":0,"request_count":1,"received_data":90462,"sent_data":443,"comment":"","tags":null,"fingerprints":null},{"fqdn":"fonts.gstatic.com","ip":{"addr":"142.250.74.35","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"2008-02-11","domain_rank":0,"first_seen":"2014-04-02T10:51:04Z","last_seen":"2025-08-27T15:11:05.791298Z","alert_count":0,"request_count":4,"received_data":98460,"sent_data":2168,"comment":"","tags":null,"fingerprints":null},{"fqdn":"cdn.rawgit.com","ip":{"addr":"194.242.11.186","port":443,"asn":34989,"as":"ServeTheWorld AS","country":"Norway","country_code":"NO"},"domain_registered":"2014-03-20","domain_rank":102096,"first_seen":"2017-01-30T05:42:07Z","last_seen":"2025-08-29T21:57:46.546755Z","alert_count":0,"request_count":1,"received_data":7137,"sent_data":458,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Bunny","description":"","website":"https://bunny.net","common_platform_enumeration":"","icon":"Bunny.svg","categories":["CDN"]}]},{"fqdn":"p.typekit.net","ip":{"addr":"23.33.119.50","port":443,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"domain_registered":"2010-08-02","domain_rank":4638,"first_seen":"2012-05-23T14:28:57Z","last_seen":"2025-08-27T17:51:05.699012Z","alert_count":0,"request_count":2,"received_data":680,"sent_data":990,"comment":"","tags":null,"fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}]},{"fqdn":"cdnjs.cloudflare.com","ip":{"addr":"104.17.24.14","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2009-02-17","domain_rank":1222,"first_seen":"2012-05-23T12:49:49Z","last_seen":"2025-08-27T15:20:49.600294Z","alert_count":0,"request_count":3,"received_data":150301,"sent_data":1384,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}]},{"fqdn":"office.builderall.com","ip":{"addr":"104.20.28.143","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2016-09-28","domain_rank":2480580,"first_seen":"2019-02-02T13:27:17Z","last_seen":"2025-08-25T23:00:35.608393Z","alert_count":0,"request_count":1,"received_data":43120,"sent_data":485,"comment":"","tags":null,"fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]},{"fqdn":"stackpath.bootstrapcdn.com","ip":{"addr":"104.18.11.207","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2012-05-25","domain_rank":21970,"first_seen":"2018-04-05T04:41:29Z","last_seen":"2025-08-27T23:13:15.72063Z","alert_count":0,"request_count":1,"received_data":156701,"sent_data":465,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}]},{"fqdn":"use.typekit.net","ip":{"addr":"23.33.119.67","port":443,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"domain_registered":"2010-08-02","domain_rank":4054,"first_seen":"2012-07-05T01:42:39Z","last_seen":"2025-08-27T21:08:52.631139Z","alert_count":0,"request_count":2,"received_data":7500,"sent_data":856,"comment":"","tags":null,"fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]},{"fqdn":"mboss.ogxcursos.com.br","ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"zz"},"domain_registered":"2018-08-03","domain_rank":0,"first_seen":"2025-09-01T22:11:33.561664Z","last_seen":"2025-09-01T22:11:33.561664Z","alert_count":2,"request_count":2,"received_data":913,"sent_data":898,"comment":"","tags":null,"fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}]},{"fqdn":"cdn.jsdelivr.net","ip":{"addr":"151.101.65.229","port":443,"asn":54113,"as":"FASTLY","country":"United States","country_code":"US"},"domain_registered":"2012-05-16","domain_rank":1678,"first_seen":"2012-09-30T00:15:09Z","last_seen":"2025-08-27T15:27:14.649202Z","alert_count":0,"request_count":1,"received_data":6896,"sent_data":463,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]},{"fqdn":"member.mailingboss.com","ip":{"addr":"69.60.99.95","port":443,"asn":15083,"as":"INFOLINK-MIA","country":"United States","country_code":"US"},"domain_registered":"2014-07-25","domain_rank":0,"first_seen":"2017-02-03T00:52:04Z","last_seen":"2025-09-01T22:11:13.345004Z","alert_count":0,"request_count":1,"received_data":6976,"sent_data":562,"comment":"","tags":null,"fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":[{"sensor_name":"suricata","description":"Suricata /w Emerging Threats Pro","alerts":[{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2025-09-01T22:11:18Z","timestamp":1756764678,"ip_dst":{"addr":"172.18.0.17","port":52448,"asn":0,"as":"","country":"","country_code":"zz"},"ip_src":{"addr":"69.60.99.95","port":80,"asn":15083,"as":"INFOLINK-MIA","country":"United States","country_code":"US"},"severity":"medium","alert":"ET PHISHING Possible Phishing Redirect Dec 13 2016","source":"{\"timestamp\":\"2025-09-01T22:11:18.489944+0000\",\"flow_id\":1561126558800047,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"69.60.99.95\",\"src_port\":80,\"dest_ip\":\"172.18.0.17\",\"dest_port\":52448,\"proto\":\"TCP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2023638,\"rev\":5,\"signature\":\"ET PHISHING Possible Phishing Redirect Dec 13 2016\",\"category\":\"Possible Social Engineering Attempted\",\"severity\":2,\"metadata\":{\"affected_product\":[\"Web_Browsers\"],\"attack_target\":[\"Client_Endpoint\"],\"confidence\":[\"Medium\"],\"created_at\":[\"2016_12_13\"],\"deployment\":[\"Perimeter\"],\"mitre_tactic_id\":[\"TA0001\"],\"mitre_tactic_name\":[\"Initial_Access\"],\"mitre_technique_id\":[\"T1566\"],\"mitre_technique_name\":[\"Phishing\"],\"signature_severity\":[\"Critical\"],\"tag\":[\"Phishing\"],\"updated_at\":[\"2020_08_24\"]}},\"http\":{\"hostname\":\"mboss.ogxcursos.com.br\",\"url\":\"/\",\"http_user_agent\":\"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\",\"http_content_type\":\"text/html\",\"http_method\":\"GET\",\"protocol\":\"HTTP/1.1\",\"status\":200,\"length\":682},\"files\":[{\"filename\":\"/\",\"sid\":[],\"gaps\":false,\"state\":\"CLOSED\",\"stored\":false,\"size\":682,\"tx_id\":0}],\"app_proto\":\"http\",\"flow\":{\"pkts_toserver\":5,\"pkts_toclient\":4,\"bytes_toserver\":745,\"bytes_toclient\":1185,\"start\":\"2025-09-01T22:11:08.104623+0000\"}}"}]}],"analyzer":null,"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"ajax.googleapis.com/ajax/libs/jquery/3.5.1/jquery.min.js","fqdn":"ajax.googleapis.com","domain":"ajax.googleapis.com","tld":"googleapis.com"},"ip":{"addr":"142.250.178.42","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"dc5e7f18c8d36ac1d3d4753a87c98d0a","sha1":"c8e1c8b386dc5b7a9184c763c88d19a346eb3342","sha256":"f7f6a5894f1d19ddad6fa392b2ece2c5e578cbf7da4ea805b6885eb6985b6e3d","sha512":"6cb4f4426f559c06190df97229c05a436820d21498350ac9f118a5625758435171418a022ed523bae46e668f9f8ea871feab6aff58ad2740b67a30f196d65516","ssdeep":"1536:AjExXUqrnxDjoXEZxkMV4SYSt0zvDD6ip3h8cApwEjOPrBeU6QLiTFbc0QlQvakF:AYh8eip3huuf6IidlrvakdtQ47GK1","tlshash":"a993f9ddb2c6702257a720ba007f510bf236199d6c4d8450f265d8e9bcb8a4e827bf7d","size":89476,"data":"","first_seen":"2023-03-07T01:02:01Z","last_seen":"2026-05-31T18:24:40.004629Z","times_seen":246339,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdnjs.cloudflare.com/ajax/libs/jquery/3.3.1/jquery.min.js","fqdn":"cdnjs.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.17.24.14","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"a09e13ee94d51c524b7e2a728c7d4039","sha1":"0dc32db4aa9c5f03f3b38c47d883dbd4fed13aae","sha256":"160a426ff2894252cd7cebbdd6d6b7da8fcd319c65b70468f10b6690c45d02ef","sha512":"f8da8f95b6ed33542a88af19028e18ae3d9ce25350a06bfc3fbf433ed2b38fefa5e639cddfdac703fc6caa7f3313d974b92a3168276b3a016ceb28f27db0714a","ssdeep":"1536:jLiBdiaWLOczCmZx6+VWuGzQNOzdn6x2RZd9SEnk9HB96c9Yo/NWLbVj3kC6t3:5kn6x2xe9NK6nC69","tlshash":"748319dd72c6b06247ab71ba00bf550bf2361999684d4410f129e4eabc74b4e823bf7d","size":86927,"data":"","first_seen":"2023-03-07T01:02:02Z","last_seen":"2026-05-31T18:25:16.19018Z","times_seen":132256,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.omb100.com/us/office/login?redir=%2Fus%2Foffice","fqdn":"www.omb100.com","domain":"omb100.com","tld":"com"},"ip":{"addr":"64.251.28.130","port":443,"asn":15083,"as":"INFOLINK-MIA","country":"United States","country_code":"US"},"introduction_type":"Function","is_inline":false,"md5":"0e1ce8178ae959473fbf9469cc6ca8d2","sha1":"97e10f0de4f637b8d023cc6e2e017462581f1fa0","sha256":"1a2c558d058cf825aec084eb972b81970a5e6cc84c862f0819bbdea90f83e8ec","sha512":"809cf93204fd45ae0f4164f903a75684eb6f2ec6a75cb7abb0e3606741c0d3f80ddda46f1527a758e0e3e49be25c976703807d7228afa6d5ed6e68ef41d10fbb","ssdeep":"","tlshash":"ae51513b282aab94fe9846e1b3d1251574fa00721b41681ef2bbdf0d1af9f5621c601f","size":2980,"data":"","first_seen":"2024-09-19T21:11:22.470889Z","last_seen":"2026-03-23T00:22:50.101392Z","times_seen":46,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.omb100.com/internacional/public/mix/office/js/office.js?id=43ba4ee4934e5c8b2ede\u0026v=6.0.9512","fqdn":"www.omb100.com","domain":"omb100.com","tld":"com"},"ip":{"addr":"64.251.28.130","port":443,"asn":15083,"as":"INFOLINK-MIA","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"43ba4ee4934e5c8b2ede9cc40985b22d","sha1":"c38b9f7842b5ac9882f61ecc0a84c8882c6072cd","sha256":"f2cd2e337632d11845dd6c1eaebe91ec6cea2cfdb37a0c1013917a60826d566e","sha512":"5efe6df6c19ee6a3da5fed7715f52cf8704921a24eaa2d8c397dc0383cd9360d92d1a82193c3ee089bdbe1eca2a4f27eaf0d0439683e70a2f0ece0849800d531","ssdeep":"98304:F1VcW16wJC5PcGkGT4TWjgZuAfbwzVUQ5huyrB8Gm4:nVcWAwY5wlTWjgZuAfbwzVUQ5hES","tlshash":"8a46281ab87c202605ffc4a370db2f3fa039a272800955e4a57da65ccbd7a9532f7719","size":5784124,"data":"","first_seen":"2025-08-24T08:09:07.892417Z","last_seen":"2025-09-01T22:11:36.566351Z","times_seen":5,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdnjs.cloudflare.com/ajax/libs/crypto-js/4.0.0/crypto-js.min.js?v=0.5672826909856402","fqdn":"cdnjs.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.17.24.14","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"cf3402d7483b127ded4069d651ea4a22","sha1":"bde186152457cacf9c35477b5bdda5bcb56b1f45","sha256":"eab5d90a71736f267af39fdf32caa8c71673fd06703279b01e0f92b0d7be0bfc","sha512":"9ce42ebc3f672a2aefc4376f43d38ca9ed9d81aa5b3c1eef60032bcc98a1c399be68d71fd1d5f9de6e98c4ce0b800f6ef1ef5e83d417fbffa63eef2408da55d8","ssdeep":"768:LuxoaUN4+OIhwP53+e0QfA31jQM9OT81NHv4rnwfe:LuxoaU2+LwB2+G1ZdvCwfe","tlshash":"9c231bc1a19c219152a774d0093f7107b463353a460ed5acf668e9eeecbcaea903dd7c","size":47992,"data":"","first_seen":"2023-03-07T12:04:24Z","last_seen":"2026-05-31T17:27:41.945908Z","times_seen":76567,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":null,"console":null},"http":[{"url":{"schema":"https","addr":"fonts.googleapis.com/css?family=Nunito:300,400,700","fqdn":"fonts.googleapis.com","domain":"fonts.googleapis.com","tld":"googleapis.com"},"ip":{"addr":"142.250.178.74","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://www.omb100.com/us/office/login?redir=%2Fus%2Foffice","date":"2025-09-01T22:11:10.683Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"upload.video.google.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 11 Aug 2025 19:22:25 GMT","end":"Mon, 03 Nov 2025 19:22:24 GMT"},"fingerprint":{"sha1":"05:AF:87:21:D4:6B:A6:86:ED:A7:D2:07:92:06:E4:D4:79:84:27:E8","sha256":"F6:EC:75:67:99:66:34:CC:0C:0F:9D:D7:8B:6A:04:94:98:0C:7B:B5:47:E2:47:37:A6:F8:E2:08:99:72:AB:BE"}}},"request":{"raw":"GET /css?family=Nunito:300,400,700 HTTP/1.1\r\nHost: fonts.googleapis.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.omb100.com/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: text/css; charset=utf-8\r\nvary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site\r\naccess-control-allow-origin: *\r\ntiming-allow-origin: *\r\nlink: \u003chttps://fonts.gstatic.com\u003e; rel=preconnect; crossorigin\r\nstrict-transport-security: max-age=31536000\r\nexpires: Mon, 01 Sep 2025 22:11:10 GMT\r\ndate: Mon, 01 Sep 2025 22:11:10 GMT\r\ncache-control: private, max-age=86400\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin-allow-popups\r\ncontent-encoding: gzip\r\nserver: ESF\r\nx-xss-protection: 0\r\nx-frame-options: SAMEORIGIN\r\nx-content-type-options: nosniff\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":5133,"size_decoded":0,"mime_type":"text/css; charset=utf-8","magic":"ASCII text","md5":"7682cf6cad369fd21b086543c7f9f42b","sha1":"389d5f6fad8709ba65b3063774a673a6ffa98ef1","sha256":"1b338e96fee06c749e87631bb4f7f2a179dd3ab6705846dca5cc5c63bc993e32","sha512":"b7e8b8944bbaf3043775fd8bdf65c2ff90da881aa582d1dec404d428f93d055fef5b4e2c691319c753d98ab9451503f7cb5437f830d92c812e242e9b9baa9387","ssdeep":"96:BOWeTxOWGFZOOOWvOWPJc+uaOWrNqOLeTxOLGFZOOOLvOLPJc+uaOLrNqOCeTxOU:lI1TG3Lb9I0T7KLm4I5TyzL/q","tlshash":"7fb1b991142bd400a7832cc667df7e33dd8e62103464c47aebfe9898dca7d272260b5e","first_seen":"2025-06-05T02:10:26.491109Z","last_seen":"2025-09-15T22:27:48.667623Z","times_seen":98,"resource_available":false,"data":null}},"time_used":342,"timings":{"blocked":148,"dns":0,"connect":16,"send":0,"wait":36,"receive":0,"ssl":135},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"stackpath.bootstrapcdn.com/bootstrap/4.3.1/css/bootstrap.min.css","fqdn":"stackpath.bootstrapcdn.com","domain":"bootstrapcdn.com","tld":"com"},"ip":{"addr":"104.18.11.207","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://www.omb100.com/us/office/login?redir=%2Fus%2Foffice","date":"2025-09-01T22:11:10.703Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bootstrapcdn.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sat, 12 Jul 2025 02:43:39 GMT","end":"Fri, 10 Oct 2025 03:43:37 GMT"},"fingerprint":{"sha1":"C1:BD:D6:84:57:89:FE:9E:6D:F9:1F:26:76:1D:7C:45:E8:23:F6:35","sha256":"42:6A:B9:E6:CC:53:CB:12:2A:7A:43:B8:3D:90:FC:5E:4D:CA:A2:E0:3D:B4:2E:38:10:A6:6F:26:86:7F:D5:A0"}}},"request":{"raw":"GET /bootstrap/4.3.1/css/bootstrap.min.css HTTP/1.1\r\nHost: stackpath.bootstrapcdn.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.omb100.com/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Mon, 01 Sep 2025 22:11:10 GMT\r\ncontent-type: text/css; charset=utf-8\r\ncf-ray: 97881a17fcbe21fe-OSL\r\ncdn-pullzone: 252412\r\ncdn-uid: b1941f61-b576-4f40-80de-5677acb38f74\r\ncdn-requestcountrycode: US\r\nvary: Accept-Encoding\r\naccess-control-allow-origin: *\r\ncache-control: public, max-age=31919000\r\ncontent-encoding: br\r\netag: \"a15c2ac3234aa8f6064ef9c1f7383c37\"\r\nlast-modified: Mon, 25 Jan 2021 22:04:08 GMT\r\ncdn-proxyver: 1.27\r\ncdn-requestpullsuccess: True\r\ncdn-requestpullcode: 200\r\ncdn-cachedat: 05/18/2025 21:59:24\r\ncdn-edgestorageid: 1068\r\ntiming-allow-origin: *\r\ncross-origin-resource-policy: cross-origin\r\nx-content-type-options: nosniff\r\ncdn-requestid: 38d859e6944784385096a24df8b3bd91\r\ncdn-cache: HIT\r\ncdn-status: 200\r\ncdn-requesttime: 0\r\ncf-cache-status: HIT\r\nage: 321561\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\nserver: cloudflare\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":155758,"size_decoded":0,"mime_type":"text/css; charset=utf-8","magic":"ASCII text, with very long lines (65324)","md5":"a15c2ac3234aa8f6064ef9c1f7383c37","sha1":"6e10354828454898fda80f55f3decb347fd9ed21","sha256":"60b19e5da6a9234ff9220668a5ec1125c157a268513256188ee80f2d2c8d8d36","sha512":"b435cf71a9ae66c59677a3ac285c87ea702a87f32367fe5893cf13e68f9a31fca0a8d14f6a7d692f23c5027751ce63961ca4fe8d20f35a926ff24ae3eb1d4b30","ssdeep":"1536:b/xImT+IcCQYYDnDEBi83NcuSEk/ekX/uKiq3SYiLENM6HN26F:b/Riz7G3q3SYiLENM6HN26F","tlshash":"68e386a6f5a0312de4a7c61964d0bafe156f8145d7220bfbf8273b7447892c70a63e4c","first_seen":"2023-04-05T08:00:04Z","last_seen":"2026-05-31T16:58:31.271219Z","times_seen":40954,"resource_available":false,"data":null}},"time_used":66,"timings":{"blocked":16,"dns":4,"connect":1,"send":0,"wait":23,"receive":0,"ssl":19},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"use.typekit.net/gnq8rzj.css","fqdn":"use.typekit.net","domain":"typekit.net","tld":"net"},"ip":{"addr":"23.33.119.67","port":443,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://www.omb100.com/us/office/login?redir=%2Fus%2Foffice","date":"2025-09-01T22:11:10.858Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"use.typekit.net","organization":"Adobe Inc."},"issuer":{"commonName":"DigiCert Global G2 TLS RSA SHA256 2020 CA1","organization":"DigiCert Inc"},"validity":{"start":"Tue, 10 Dec 2024 00:00:00 GMT","end":"Sat, 10 Jan 2026 23:59:59 GMT"},"fingerprint":{"sha1":"F3:36:2A:08:11:E8:8C:54:E5:3C:6A:03:53:BF:AA:D7:7A:84:8B:89","sha256":"6A:79:75:73:C0:A8:12:54:14:ED:26:F6:54:AA:3F:01:34:4E:41:17:1C:AB:70:3C:72:0B:AF:BE:E1:75:6F:6E"}}},"request":{"raw":"GET /gnq8rzj.css HTTP/1.1\r\nHost: use.typekit.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.omb100.com/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ncontent-type: text/css;charset=utf-8\r\nvary: Accept-Encoding\r\nstrict-transport-security: max-age=31536000; includeSubDomains;\r\ncache-control: private, max-age=600, stale-while-revalidate=604800\r\ntiming-allow-origin: *\r\naccess-control-allow-origin: *\r\ncross-origin-resource-policy: cross-origin\r\ncontent-encoding: gzip\r\ncontent-length: 723\r\ndate: Mon, 01 Sep 2025 22:11:10 GMT\r\nakamai-grn: 0.0f772117.1756764670.2eed820f\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":3278,"size_decoded":0,"mime_type":"text/css; charset=utf-8","magic":"Unicode text, UTF-8 text, with very long lines (516)","md5":"aaadcffbe8386425c5ecf1561aac8800","sha1":"9986c5c4685c58c066acd19df77f4d96ba528f42","sha256":"114dde070b3a3a11d3dbb56a44e570d327bcb5c869795affac81208d71c5e6aa","sha512":"6558f911ed7b357a5f3fab07da7aa1a546962887aa96cc2e1f967ecbf4a0dd1bca5b33b6f38304e108c0699dd80f01917bea4e2b7e7d64075c284da54f2bd00f","ssdeep":"","tlshash":"2a619cb5010a8c96c0d01661398eb7f4e92f3e6b26e4999644318cf7dc75fd36311b6e","first_seen":"2025-02-27T08:40:21.630472Z","last_seen":"2026-01-04T23:04:07.278468Z","times_seen":35,"resource_available":false,"data":null}},"time_used":82,"timings":{"blocked":23,"dns":9,"connect":3,"send":0,"wait":31,"receive":0,"ssl":13},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"p.typekit.net/p.css?s=1\u0026k=gnq8rzj\u0026ht=tk\u0026f=15701.15703.15705.15708\u0026a=85308995\u0026app=typekit\u0026e=css","fqdn":"p.typekit.net","domain":"typekit.net","tld":"net"},"ip":{"addr":"23.33.119.50","port":443,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://www.omb100.com/us/office/login?redir=%2Fus%2Foffice","date":"2025-09-01T22:11:11.180Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"use.typekit.net","organization":"Adobe Inc."},"issuer":{"commonName":"DigiCert Global G2 TLS RSA SHA256 2020 CA1","organization":"DigiCert Inc"},"validity":{"start":"Tue, 10 Dec 2024 00:00:00 GMT","end":"Sat, 10 Jan 2026 23:59:59 GMT"},"fingerprint":{"sha1":"F3:36:2A:08:11:E8:8C:54:E5:3C:6A:03:53:BF:AA:D7:7A:84:8B:89","sha256":"6A:79:75:73:C0:A8:12:54:14:ED:26:F6:54:AA:3F:01:34:4E:41:17:1C:AB:70:3C:72:0B:AF:BE:E1:75:6F:6E"}}},"request":{"raw":"GET /p.css?s=1\u0026k=gnq8rzj\u0026ht=tk\u0026f=15701.15703.15705.15708\u0026a=85308995\u0026app=typekit\u0026e=css HTTP/1.1\r\nHost: p.typekit.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://use.typekit.net/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ncontent-type: text/css\r\ncontent-length: 5\r\nlast-modified: Sun, 24 Nov 2024 12:45:53 GMT\r\netag: \"67432001-5\"\r\ncache-control: public, max-age=604800\r\naccess-control-allow-origin: *\r\ncross-origin-resource-policy: cross-origin\r\naccept-ranges: bytes\r\ndate: Mon, 01 Sep 2025 22:11:11 GMT\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":5,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text","md5":"83d24d4b43cc7eef2b61e66c95f3d158","sha1":"f0cafc285ee23bb6c28c5166f305493c4331c84d","sha256":"1c0ff118a4290c99f39c90abb38703a866e47251b23cca20266c69c812ccafeb","sha512":"e6e84563d3a55767f8e5f36c4e217a0768120d6e15ce4d01aa63d36af7ec8d20b600ce96dcc56de91ec7e55e83a8267baddd68b61447069b82abdb2e92c6acb6","ssdeep":"","tlshash":"e630000000000000000000000000000000000c00000000000000000000000000000000","first_seen":"2023-03-12T07:28:04Z","last_seen":"2026-05-31T18:28:41.023912Z","times_seen":155036,"resource_available":true,"data":null}},"time_used":61,"timings":{"blocked":27,"dns":11,"connect":1,"send":0,"wait":3,"receive":0,"ssl":16},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"mboss.ogxcursos.com.br/","fqdn":"mboss.ogxcursos.com.br","domain":"ogxcursos.com.br","tld":"com.br"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"zz"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2025-09-01T22:11:07.813Z","timestamp":0,"http_version":"","security_state":"broken","security_info":null,"request":{"raw":"GET / HTTP/1.1\r\nHost: mboss.ogxcursos.com.br\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-05-31T18:31:00.561381Z","times_seen":15971922,"resource_available":true,"data":null}},"time_used":275,"timings":{"blocked":0,"dns":0,"connect":126,"send":0,"wait":0,"receive":0,"ssl":145},"alerts":{"ids":[{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2025-09-01T22:11:18Z","timestamp":1756764678,"ip_dst":{"addr":"172.18.0.17","port":52448,"asn":0,"as":"","country":"","country_code":"zz"},"ip_src":{"addr":"69.60.99.95","port":80,"asn":15083,"as":"INFOLINK-MIA","country":"United States","country_code":"US"},"severity":"medium","alert":"ET PHISHING Possible Phishing Redirect Dec 13 2016","source":"{\"timestamp\":\"2025-09-01T22:11:18.489944+0000\",\"flow_id\":1561126558800047,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"69.60.99.95\",\"src_port\":80,\"dest_ip\":\"172.18.0.17\",\"dest_port\":52448,\"proto\":\"TCP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2023638,\"rev\":5,\"signature\":\"ET PHISHING Possible Phishing Redirect Dec 13 2016\",\"category\":\"Possible Social Engineering Attempted\",\"severity\":2,\"metadata\":{\"affected_product\":[\"Web_Browsers\"],\"attack_target\":[\"Client_Endpoint\"],\"confidence\":[\"Medium\"],\"created_at\":[\"2016_12_13\"],\"deployment\":[\"Perimeter\"],\"mitre_tactic_id\":[\"TA0001\"],\"mitre_tactic_name\":[\"Initial_Access\"],\"mitre_technique_id\":[\"T1566\"],\"mitre_technique_name\":[\"Phishing\"],\"signature_severity\":[\"Critical\"],\"tag\":[\"Phishing\"],\"updated_at\":[\"2020_08_24\"]}},\"http\":{\"hostname\":\"mboss.ogxcursos.com.br\",\"url\":\"/\",\"http_user_agent\":\"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\",\"http_content_type\":\"text/html\",\"http_method\":\"GET\",\"protocol\":\"HTTP/1.1\",\"status\":200,\"length\":682},\"files\":[{\"filename\":\"/\",\"sid\":[],\"gaps\":false,\"state\":\"CLOSED\",\"stored\":false,\"size\":682,\"tx_id\":0}],\"app_proto\":\"http\",\"flow\":{\"pkts_toserver\":5,\"pkts_toclient\":4,\"bytes_toserver\":745,\"bytes_toclient\":1185,\"start\":\"2025-09-01T22:11:08.104623+0000\"}}"}],"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.omb100.com/internacional/public/office3/ico/touch/default-ipad.svg?v=6.0.9512","fqdn":"www.omb100.com","domain":"omb100.com","tld":"com"},"ip":{"addr":"64.251.28.130","port":443,"asn":15083,"as":"INFOLINK-MIA","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.omb100.com/us/office/login?redir=%2Fus%2Foffice","date":"2025-09-01T22:11:12.409Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"omb100.com","organization":""},"issuer":{"commonName":"R10","organization":"Let's Encrypt"},"validity":{"start":"Sat, 19 Jul 2025 11:30:31 GMT","end":"Fri, 17 Oct 2025 11:30:30 GMT"},"fingerprint":{"sha1":"83:0B:AE:40:4F:2B:48:FF:F9:6D:90:CC:D2:57:2B:FC:3B:EA:FF:32","sha256":"92:89:DF:29:B2:79:1D:DC:82:EB:9F:C6:78:97:A5:D0:56:B6:4F:BB:ED:41:66:3D:21:20:76:48:D6:F4:DA:DE"}}},"request":{"raw":"GET /internacional/public/office3/ico/touch/default-ipad.svg?v=6.0.9512 HTTP/1.1\r\nHost: www.omb100.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.omb100.com/us/office/login?redir=%2Fus%2Foffice\r\nCookie: DAY_OMB=20250901; PHPSESSID=q5cpf2gsgtf4ggfps60trmhiek; OTRK_DAY_OMB=20250901\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Mon, 01 Sep 2025 22:11:12 GMT\r\ncontent-type: image/svg+xml\r\ncontent-length: 786\r\nlast-modified: Fri, 29 Aug 2025 17:25:08 GMT\r\netag: \"68b1e274-312\"\r\nexpires: Wed, 01 Oct 2025 22:11:12 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000; includeSubDomains\r\nx-frame-options: ALLOW\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":786,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"25905e987b179f742391f1f364235fcb","sha1":"891dfd0683e91ac196e15c03013f5a31f599d60e","sha256":"e106cfe4cd8b8dbe8be991a61e9f56b3bc3e40f3a0fbcef22fd8922d0e9b5a56","sha512":"216b3e7d8c081ccf078b93e9f8ab71f5eccedf4e8661c9f71913e1abc2781ddabde9ea67646906cf4f43ceccceea194bb3713ca28ae06bad3f34241dede668c2","ssdeep":"","tlshash":"a301669bc776a090d85d47b7c22924c435ca24eafb04c8adead42f60e781529136a9a3","first_seen":"2024-09-19T21:11:22.451536Z","last_seen":"2026-03-23T00:22:50.077795Z","times_seen":41,"resource_available":false,"data":null}},"time_used":127,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":127,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdn.jsdelivr.net/gh/necolas/normalize.css@master/normalize.css","fqdn":"cdn.jsdelivr.net","domain":"jsdelivr.net","tld":"net"},"ip":{"addr":"151.101.65.229","port":443,"asn":54113,"as":"FASTLY","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://www.omb100.com/us/office/login?redir=%2Fus%2Foffice","date":"2025-09-01T22:11:11.098Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"jsdelivr.net","organization":""},"issuer":{"commonName":"GlobalSign Atlas R3 DV TLS CA 2025 Q2","organization":"GlobalSign nv-sa"},"validity":{"start":"Mon, 02 Jun 2025 15:43:52 GMT","end":"Sat, 04 Jul 2026 15:43:51 GMT"},"fingerprint":{"sha1":"21:17:81:78:41:C6:8F:86:D6:CF:8D:98:CC:74:A8:F1:03:F8:C9:D4","sha256":"D0:E6:8D:08:11:05:7E:0C:2A:0D:C7:E0:ED:AE:9E:18:C8:74:32:12:3D:56:43:98:62:CD:A2:08:6F:64:5B:B0"}}},"request":{"raw":"GET /gh/necolas/normalize.css@master/normalize.css HTTP/1.1\r\nHost: cdn.jsdelivr.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://www.omb100.com/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccess-control-allow-origin: *\r\naccess-control-expose-headers: *\r\ntiming-allow-origin: *\r\ncache-control: public, max-age=604800, s-maxage=43200\r\ncross-origin-resource-policy: cross-origin\r\nx-content-type-options: nosniff\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\ncontent-type: text/css; charset=utf-8\r\nx-jsd-version: master\r\nx-jsd-version-type: branch\r\netag: W/\"17fa-f/3jQ73xCt0fBS88QwihUYDrRAQ\"\r\ncontent-encoding: br\r\naccept-ranges: bytes\r\ndate: Mon, 01 Sep 2025 22:11:11 GMT\r\nage: 24250\r\nx-served-by: cache-fra-etou8220132-FRA, cache-hel1410034-HEL\r\nx-cache: HIT, HIT\r\nvary: Accept-Encoding\r\nalt-svc: h3=\":443\";ma=86400,h3-29=\":443\";ma=86400,h3-27=\":443\";ma=86400\r\ncontent-length: 1834\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":6138,"size_decoded":0,"mime_type":"text/css; charset=utf-8","magic":"ASCII text","md5":"112272e51c80ffe5bd01becd2ce7d656","sha1":"7ffde343bdf10add1f052f3c4308a15180eb4404","sha256":"580818700724d42d7fcc4979b0197971fca1c6d2e0286769237a0ac897df5512","sha512":"a070c473c5de7788625ba0b10fbaa36e723e074eef0dd5fb8443d3be7f694993b56dc46a1e9f268fda72afef11542d869ad11f236062f4a7bd02cb346acfb3a6","ssdeep":"96:FIrs38+a1Dy8lDOhEg3p27oS5tdnCC5wBGeJxmnJnWHO11:FL38UEg527ogCdBRKRWHK","tlshash":"c1c141a117206f2282a60d38776f978a73040127867c3cddb4a262e9cf45b5dd769bce","first_seen":"2023-04-06T20:07:21Z","last_seen":"2026-05-31T18:05:21.915028Z","times_seen":4659,"resource_available":false,"data":null}},"time_used":91,"timings":{"blocked":-1,"dns":1,"connect":26,"send":0,"wait":28,"receive":0,"ssl":33},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.omb100.com/internacional/public/office2/fonts/lato/fonts.css?","fqdn":"www.omb100.com","domain":"omb100.com","tld":"com"},"ip":{"addr":"64.251.28.130","port":443,"asn":15083,"as":"INFOLINK-MIA","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://www.omb100.com/us/office/login?redir=%2Fus%2Foffice","date":"2025-09-01T22:11:10.700Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"omb100.com","organization":""},"issuer":{"commonName":"R10","organization":"Let's Encrypt"},"validity":{"start":"Sat, 19 Jul 2025 11:30:31 GMT","end":"Fri, 17 Oct 2025 11:30:30 GMT"},"fingerprint":{"sha1":"83:0B:AE:40:4F:2B:48:FF:F9:6D:90:CC:D2:57:2B:FC:3B:EA:FF:32","sha256":"92:89:DF:29:B2:79:1D:DC:82:EB:9F:C6:78:97:A5:D0:56:B6:4F:BB:ED:41:66:3D:21:20:76:48:D6:F4:DA:DE"}}},"request":{"raw":"GET /internacional/public/office2/fonts/lato/fonts.css? HTTP/1.1\r\nHost: www.omb100.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.omb100.com/us/office/login?redir=%2Fus%2Foffice\r\nCookie: DAY_OMB=20250901; PHPSESSID=q5cpf2gsgtf4ggfps60trmhiek; OTRK_DAY_OMB=20250901\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Mon, 01 Sep 2025 22:11:10 GMT\r\ncontent-type: text/css\r\nlast-modified: Fri, 29 Aug 2025 17:25:08 GMT\r\nvary: Accept-Encoding\r\netag: W/\"68b1e274-743\"\r\nexpires: Wed, 01 Oct 2025 22:11:10 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000; includeSubDomains\r\nx-frame-options: ALLOW\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":1859,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text","md5":"fbfb3df61862994944342bbf2866ee73","sha1":"f4fea3943b2c7f312058b4597164478abb5f8e65","sha256":"5b5eff1e389b30d73b3970b7013f4def02625a7c51a1770416601d8c37fb06d0","sha512":"f22eddf69dd57cebdd263881de36d932738edfecbe845121a4aaf52daff8c93d1cf26d341c5ab4f07cf4b992f68dbcdfdc765be5ffbf0b5f31c77fb74b2bcf26","ssdeep":"","tlshash":"3e31655514ef350166320c7f738f2618592e9117304acc267bb8ae08cfb7bba5791b6e","first_seen":"2025-04-13T23:01:53.838227Z","last_seen":"2026-03-23T00:22:50.099035Z","times_seen":39,"resource_available":false,"data":null}},"time_used":251,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":251,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"ajax.googleapis.com/ajax/libs/jquery/3.5.1/jquery.min.js","fqdn":"ajax.googleapis.com","domain":"ajax.googleapis.com","tld":"googleapis.com"},"ip":{"addr":"142.250.178.42","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://www.omb100.com/us/office/login?redir=%2Fus%2Foffice","date":"2025-09-01T22:11:10.705Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"upload.video.google.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 11 Aug 2025 19:22:25 GMT","end":"Mon, 03 Nov 2025 19:22:24 GMT"},"fingerprint":{"sha1":"05:AF:87:21:D4:6B:A6:86:ED:A7:D2:07:92:06:E4:D4:79:84:27:E8","sha256":"F6:EC:75:67:99:66:34:CC:0C:0F:9D:D7:8B:6A:04:94:98:0C:7B:B5:47:E2:47:37:A6:F8:E2:08:99:72:AB:BE"}}},"request":{"raw":"GET /ajax/libs/jquery/3.5.1/jquery.min.js HTTP/1.1\r\nHost: ajax.googleapis.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.omb100.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\ncontent-encoding: gzip\r\naccess-control-allow-origin: *\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"hosted-libraries-pushers\"\r\nreport-to: {\"group\":\"hosted-libraries-pushers\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 31021\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Wed, 27 Aug 2025 11:53:07 GMT\r\nexpires: Thu, 27 Aug 2026 11:53:07 GMT\r\ncache-control: public, max-age=31536000, stale-while-revalidate=2592000\r\nage: 469083\r\nlast-modified: Fri, 08 May 2020 07:05:03 GMT\r\ncontent-type: text/javascript; charset=UTF-8\r\nvary: Accept-Encoding\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":89476,"size_decoded":0,"mime_type":"text/javascript; charset=UTF-8","magic":"JavaScript source, ASCII text, with very long lines (65451)","md5":"dc5e7f18c8d36ac1d3d4753a87c98d0a","sha1":"c8e1c8b386dc5b7a9184c763c88d19a346eb3342","sha256":"f7f6a5894f1d19ddad6fa392b2ece2c5e578cbf7da4ea805b6885eb6985b6e3d","sha512":"6cb4f4426f559c06190df97229c05a436820d21498350ac9f118a5625758435171418a022ed523bae46e668f9f8ea871feab6aff58ad2740b67a30f196d65516","ssdeep":"1536:AjExXUqrnxDjoXEZxkMV4SYSt0zvDD6ip3h8cApwEjOPrBeU6QLiTFbc0QlQvakF:AYh8eip3huuf6IidlrvakdtQ47GK1","tlshash":"a993f9ddb2c6702257a720ba007f510bf236199d6c4d8450f265d8e9bcb8a4e827bf7d","first_seen":"2023-03-07T01:02:01Z","last_seen":"2026-05-31T18:24:40.004629Z","times_seen":246339,"resource_available":true,"data":null}},"time_used":454,"timings":{"blocked":193,"dns":3,"connect":27,"send":0,"wait":28,"receive":28,"ssl":172},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.omb100.com/internacional/public/office2/fonts/muli/Muli-Regular.ttf","fqdn":"www.omb100.com","domain":"omb100.com","tld":"com"},"ip":{"addr":"64.251.28.130","port":443,"asn":15083,"as":"INFOLINK-MIA","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://www.omb100.com/us/office/login?redir=%2Fus%2Foffice","date":"2025-09-01T22:11:11.257Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"omb100.com","organization":""},"issuer":{"commonName":"R10","organization":"Let's Encrypt"},"validity":{"start":"Sat, 19 Jul 2025 11:30:31 GMT","end":"Fri, 17 Oct 2025 11:30:30 GMT"},"fingerprint":{"sha1":"83:0B:AE:40:4F:2B:48:FF:F9:6D:90:CC:D2:57:2B:FC:3B:EA:FF:32","sha256":"92:89:DF:29:B2:79:1D:DC:82:EB:9F:C6:78:97:A5:D0:56:B6:4F:BB:ED:41:66:3D:21:20:76:48:D6:F4:DA:DE"}}},"request":{"raw":"GET /internacional/public/office2/fonts/muli/Muli-Regular.ttf HTTP/1.1\r\nHost: www.omb100.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.omb100.com/internacional/public/office2/fonts/muli/fonts.css\r\nCookie: DAY_OMB=20250901; PHPSESSID=q5cpf2gsgtf4ggfps60trmhiek; OTRK_DAY_OMB=20250901\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Mon, 01 Sep 2025 22:11:11 GMT\r\ncontent-type: application/octet-stream\r\ncontent-length: 113360\r\nlast-modified: Fri, 29 Aug 2025 17:25:08 GMT\r\netag: \"68b1e274-1bad0\"\r\nexpires: Wed, 01 Oct 2025 22:11:11 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000; includeSubDomains\r\nx-frame-options: ALLOW\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":113360,"size_decoded":0,"mime_type":"application/octet-stream","magic":"TrueType Font data, 18 tables, 1st \"FFTM\", 26 names, Macintosh","md5":"8593ce831a9d8562ba38db9bef61e063","sha1":"f47a02f987e2c994ca5f457f2339305ca9b5beb0","sha256":"67cf5e8bdd493707f5938b4f41ef08441a521948ea8fb516b20ae23bf0ef12b7","sha512":"51f2ebe8fc170279a97a07248b00c957456dd34e4773f01ec8706480e90560dc435d5e855ddfe47398aab4637d27e9f6a78f912a1902f9523d18ac2b1bdbf735","ssdeep":"1536:rnqEBOHwM225PceYkJZWZESOndDOtZXHLL+NuTtxyIq9pTVF4UrXdKxTtDG:rnqbX5MXuN+q9SUrNKx5DG","tlshash":"93b30a47bf485b1aed120d3195bd53906385f8ba3f6e5b0fa34c7a68acca0a50c467cd","first_seen":"2024-02-11T02:42:03Z","last_seen":"2026-03-23T00:22:50.091265Z","times_seen":47,"resource_available":false,"data":null}},"time_used":331,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":326,"receive":5,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fonts.gstatic.com/s/manrope/v19/xn7gYHE41ni1AdIRggexSg.woff2","fqdn":"fonts.gstatic.com","domain":"gstatic.com","tld":"com"},"ip":{"addr":"142.250.74.35","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://www.omb100.com/us/office/login?redir=%2Fus%2Foffice","date":"2025-09-01T22:11:12.103Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.gstatic.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 11 Aug 2025 19:22:25 GMT","end":"Mon, 03 Nov 2025 19:22:24 GMT"},"fingerprint":{"sha1":"F5:9E:5D:EB:46:9B:ED:9F:D2:D7:E8:D1:06:43:DF:9D:0C:13:7E:75","sha256":"AA:C4:C0:AF:38:AE:91:75:3F:86:CE:32:70:A9:8F:C4:2F:7F:D2:28:D1:34:AD:0A:C8:E2:6C:6E:4D:46:72:23"}}},"request":{"raw":"GET /s/manrope/v19/xn7gYHE41ni1AdIRggexSg.woff2 HTTP/1.1\r\nHost: fonts.gstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nOrigin: https://www.omb100.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fonts.googleapis.com/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"apps-themes\"\r\nreport-to: {\"group\":\"apps-themes\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/apps-themes\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 24836\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Fri, 29 Aug 2025 01:01:21 GMT\r\nexpires: Sat, 29 Aug 2026 01:01:21 GMT\r\ncache-control: public, max-age=31536000\r\nlast-modified: Thu, 29 May 2025 18:59:17 GMT\r\ncontent-type: font/woff2\r\nage: 335391\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":24836,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 24836, version 1.0","md5":"938c6e8019b69313372c47dbb7a7c930","sha1":"b42951014c5eca12749d87a4706caf22dc4fe081","sha256":"a30ddcd349703aff7464c34bef3fffdff405ee50c113440d7c8693c02d210972","sha512":"5537c005cd8f321f26fe67f6292b3ec14e88ff4b2365311628dbbe4753e01e568f6881b9f2e7d71e8e6b2c261ed25f372829dd28f89f865ce574b4e1fec29614","ssdeep":"768:3KQaj5c95F1QmIwa55Go1COpZLpkkM46CU+YIC:ahj5cXow65xCM5pkkM468YB","tlshash":"a2b2f105ee49b3d4b276f1fcfa802884179282f27dabda8f3f2015981dd8e5b8d45320","first_seen":"2025-06-02T20:09:41.98255Z","last_seen":"2026-05-31T18:21:06.902219Z","times_seen":25949,"resource_available":false,"data":null}},"time_used":510,"timings":{"blocked":249,"dns":1,"connect":20,"send":0,"wait":9,"receive":1,"ssl":226},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"www.omb100.com/us/office","fqdn":"www.omb100.com","domain":"omb100.com","tld":"com"},"ip":{"addr":"64.251.28.130","port":80,"asn":15083,"as":"INFOLINK-MIA","country":"United States","country_code":"US"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2025-09-01T22:11:09.437Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /us/office HTTP/1.1\r\nHost: www.omb100.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nReferer: http://mboss.ogxcursos.com.br/\r\nDNT: 1\r\nConnection: keep-alive\r\nUpgrade-Insecure-Requests: 1\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 308 Permanent Redirect\r\nDate: Mon, 01 Sep 2025 22:11:09 GMT\r\nContent-Type: text/html\r\nContent-Length: 164\r\nConnection: keep-alive\r\nLocation: https://www.omb100.com/us/office\r\n\r\n","headers":null,"cookies":null,"status_code":"308","status_text":"Permanent Redirect","fingerprints":[{"name":"jQuery:3.5.1","description":"jQuery is a JavaScript library which is a free, open-source software designed to simplify HTML DOM tree traversal and manipulation, as well as event handling, CSS animation, and Ajax.","website":"https://jquery.com","common_platform_enumeration":"cpe:2.3:a:jquery:jquery:*:*:*:*:*:*:*:*","icon":"jQuery.svg","categories":["JavaScript libraries"]},{"name":"cdnjs","description":"cdnjs is a free distributed JS library delivery service.","website":"https://cdnjs.com","common_platform_enumeration":"","icon":"cdnjs.svg","categories":["CDN"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"Bootstrap:4.3.1","description":"Bootstrap is a free and open-source CSS framework directed at responsive, mobile-first front-end web development. It contains CSS and JavaScript-based design templates for typography, forms, buttons, navigation, and other interface components.","website":"https://getbootstrap.com","common_platform_enumeration":"cpe:2.3:a:getbootstrap:bootstrap:*:*:*:*:*:*:*:*","icon":"Bootstrap.svg","categories":["UI frameworks"]},{"name":"Google Hosted Libraries","description":"Google Hosted Libraries is a stable, reliable, high-speed, globally available content distribution network for the most popular, open-source JavaScript libraries.","website":"https://developers.google.com/speed/libraries","common_platform_enumeration":"","icon":"Google Developers.svg","categories":["CDN"]}],"data":{"size":6627,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"HTML document, ASCII text, with very long lines (1985)","md5":"09396f092fff1a4c93bbe232ff06903a","sha1":"d3e6391c99aaede896a2e857986a9765a3fb2eae","sha256":"8291037e738de24104387243b520ad1671e101abcc37d552a6975bffa5aa0429","sha512":"6d3dc293252bf2d3cb67729e32243b5c41d9e95479ba2482b3c90cc11ff6efb2ef2bb9e572e52b94ab12853103707a2c72caa7aff8f660f870a17bfcfed28eb3","ssdeep":"96:z0+B3aNZthUUDntZt4Yq0mE+fEvZbPWQYQ9PQx8yF4+LnREBSMEldsItCkic7QXH:4+B3aNLhUUDntZt4Yq0GBEgGBEnPhTC","tlshash":"eed11f37e4f3cb38987c3415e660233799a393ab07c95bf9e15608580fe159e4ca318e","first_seen":"2025-09-01T22:11:16.6532Z","last_seen":"2025-09-01T22:11:36.544315Z","times_seen":2,"resource_available":false,"data":null}},"time_used":383,"timings":{"blocked":128,"dns":1,"connect":127,"send":0,"wait":127,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.omb100.com/us/office/login?redir=%2Fus%2Foffice","fqdn":"www.omb100.com","domain":"omb100.com","tld":"com"},"ip":{"addr":"64.251.28.130","port":443,"asn":15083,"as":"INFOLINK-MIA","country":"United States","country_code":"US"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2025-09-01T22:11:10.216Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"omb100.com","organization":""},"issuer":{"commonName":"R10","organization":"Let's Encrypt"},"validity":{"start":"Sat, 19 Jul 2025 11:30:31 GMT","end":"Fri, 17 Oct 2025 11:30:30 GMT"},"fingerprint":{"sha1":"83:0B:AE:40:4F:2B:48:FF:F9:6D:90:CC:D2:57:2B:FC:3B:EA:FF:32","sha256":"92:89:DF:29:B2:79:1D:DC:82:EB:9F:C6:78:97:A5:D0:56:B6:4F:BB:ED:41:66:3D:21:20:76:48:D6:F4:DA:DE"}}},"request":{"raw":"GET /us/office/login?redir=%2Fus%2Foffice HTTP/1.1\r\nHost: www.omb100.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: http://mboss.ogxcursos.com.br/\r\nDNT: 1\r\nConnection: keep-alive\r\nCookie: DAY_OMB=20250901; PHPSESSID=q5cpf2gsgtf4ggfps60trmhiek\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Mon, 01 Sep 2025 22:11:10 GMT\r\ncontent-type: text/html; charset=UTF-8\r\nvary: Accept-Encoding\r\nset-cookie: OTRK_DAY_OMB=20250901; expires=Sun, 21-Sep-2025 22:11:10 GMT; Max-Age=1728000; path=/; domain=.omb100.com\r\nexpires: Thu, 19 Nov 1981 08:52:00 GMT\r\ncache-control: no-store, no-cache, must-revalidate\r\npragma: no-cache\r\naccess-control-allow-origin: *\r\nstrict-transport-security: max-age=31536000; includeSubDomains\r\nx-frame-options: ALLOW\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Bootstrap:4.3.1","description":"Bootstrap is a free and open-source CSS framework directed at responsive, mobile-first front-end web development. It contains CSS and JavaScript-based design templates for typography, forms, buttons, navigation, and other interface components.","website":"https://getbootstrap.com","common_platform_enumeration":"cpe:2.3:a:getbootstrap:bootstrap:*:*:*:*:*:*:*:*","icon":"Bootstrap.svg","categories":["UI frameworks"]},{"name":"jQuery:3.5.1","description":"jQuery is a JavaScript library which is a free, open-source software designed to simplify HTML DOM tree traversal and manipulation, as well as event handling, CSS animation, and Ajax.","website":"https://jquery.com","common_platform_enumeration":"cpe:2.3:a:jquery:jquery:*:*:*:*:*:*:*:*","icon":"jQuery.svg","categories":["JavaScript libraries"]},{"name":"Google Hosted Libraries","description":"Google Hosted Libraries is a stable, reliable, high-speed, globally available content distribution network for the most popular, open-source JavaScript libraries.","website":"https://developers.google.com/speed/libraries","common_platform_enumeration":"","icon":"Google Developers.svg","categories":["CDN"]},{"name":"cdnjs","description":"cdnjs is a free distributed JS library delivery service.","website":"https://cdnjs.com","common_platform_enumeration":"","icon":"cdnjs.svg","categories":["CDN"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":6627,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"HTML document, ASCII text, with very long lines (1985)","md5":"09396f092fff1a4c93bbe232ff06903a","sha1":"d3e6391c99aaede896a2e857986a9765a3fb2eae","sha256":"8291037e738de24104387243b520ad1671e101abcc37d552a6975bffa5aa0429","sha512":"6d3dc293252bf2d3cb67729e32243b5c41d9e95479ba2482b3c90cc11ff6efb2ef2bb9e572e52b94ab12853103707a2c72caa7aff8f660f870a17bfcfed28eb3","ssdeep":"96:z0+B3aNZthUUDntZt4Yq0mE+fEvZbPWQYQ9PQx8yF4+LnREBSMEldsItCkic7QXH:4+B3aNLhUUDntZt4Yq0GBEgGBEnPhTC","tlshash":"eed11f37e4f3cb38987c3415e660233799a393ab07c95bf9e15608580fe159e4ca318e","first_seen":"2025-09-01T22:11:16.6532Z","last_seen":"2025-09-01T22:11:36.544315Z","times_seen":2,"resource_available":false,"data":null}},"time_used":275,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":275,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.omb100.com/us/office","fqdn":"www.omb100.com","domain":"omb100.com","tld":"com"},"ip":{"addr":"64.251.28.130","port":443,"asn":15083,"as":"INFOLINK-MIA","country":"United States","country_code":"US"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2025-09-01T22:11:09.696Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"omb100.com","organization":""},"issuer":{"commonName":"R10","organization":"Let's Encrypt"},"validity":{"start":"Sat, 19 Jul 2025 11:30:31 GMT","end":"Fri, 17 Oct 2025 11:30:30 GMT"},"fingerprint":{"sha1":"83:0B:AE:40:4F:2B:48:FF:F9:6D:90:CC:D2:57:2B:FC:3B:EA:FF:32","sha256":"92:89:DF:29:B2:79:1D:DC:82:EB:9F:C6:78:97:A5:D0:56:B6:4F:BB:ED:41:66:3D:21:20:76:48:D6:F4:DA:DE"}}},"request":{"raw":"GET /us/office HTTP/1.1\r\nHost: www.omb100.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: http://mboss.ogxcursos.com.br/\r\nDNT: 1\r\nConnection: keep-alive\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 302 Found\r\ndate: Mon, 01 Sep 2025 22:11:10 GMT\r\ncontent-type: text/html; charset=UTF-8\r\nset-cookie: DAY_OMB=20250901; expires=Sun, 21-Sep-2025 22:11:10 GMT; Max-Age=1728000; path=/; domain=.www.omb100.com\nPHPSESSID=q5cpf2gsgtf4ggfps60trmhiek; expires=Sun, 21-Sep-2025 22:11:10 GMT; Max-Age=1728000; path=/; domain=.www.omb100.com; HttpOnly\r\nexpires: Thu, 19 Nov 1981 08:52:00 GMT\r\ncache-control: no-store, no-cache, must-revalidate\r\npragma: no-cache\r\naccess-control-allow-origin: *\r\nlocation: /us/office/login?redir=%2Fus%2Foffice\r\nstrict-transport-security: max-age=31536000; includeSubDomains\r\nx-frame-options: ALLOW\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"302","status_text":"Found","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":6627,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-05-31T18:31:00.561381Z","times_seen":15971922,"resource_available":true,"data":null}},"time_used":779,"timings":{"blocked":264,"dns":1,"connect":126,"send":0,"wait":251,"receive":0,"ssl":134},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdnjs.cloudflare.com/ajax/libs/flexboxgrid/6.3.1/flexboxgrid.min.css","fqdn":"cdnjs.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.17.24.14","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://www.omb100.com/us/office/login?redir=%2Fus%2Foffice","date":"2025-09-01T22:11:10.694Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"cdnjs.cloudflare.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sun, 20 Jul 2025 17:08:10 GMT","end":"Sat, 18 Oct 2025 18:08:03 GMT"},"fingerprint":{"sha1":"66:D5:51:E0:8E:D7:2C:D1:E3:98:58:99:22:9B:73:C4:6F:32:FD:EC","sha256":"52:CD:3D:83:E5:5A:57:37:9F:D9:0B:EB:C3:EA:67:B7:4C:F1:74:93:B7:C9:E8:0B:E3:E8:CB:2E:7A:94:A2:78"}}},"request":{"raw":"GET /ajax/libs/flexboxgrid/6.3.1/flexboxgrid.min.css HTTP/1.1\r\nHost: cdnjs.cloudflare.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.omb100.com/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Mon, 01 Sep 2025 22:11:10 GMT\r\ncontent-type: text/css; charset=utf-8\r\ncontent-length: 1026\r\ncf-ray: 97881a17eccc712b-OSL\r\naccess-control-allow-origin: *\r\ncache-control: public, max-age=30672000\r\ncontent-encoding: br\r\netag: \"5eb03e5e-3018\"\r\nlast-modified: Mon, 04 May 2020 16:10:06 GMT\r\ncf-cdnjs-via: cfworker/kv\r\ncross-origin-resource-policy: cross-origin\r\ntiming-allow-origin: *\r\nx-content-type-options: nosniff\r\nvary: Accept-Encoding\r\ncf-cache-status: HIT\r\nage: 230113\r\nexpires: Sat, 22 Aug 2026 22:11:10 GMT\r\naccept-ranges: bytes\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v4?s=tZYuhvQ28kjSHjr1faB4Ge4eTOox3t5l%2F7wCrkiWNIfQjm0Ckbo5kW3kgtrSuBdhtZTHIY%2BD5P%2BvkFyQcL3nWCrziCTM3W7nL52MIXGAALUw9A3eFKQbNFb3XuDpcVXUlnzrWUu3\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0.01,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nstrict-transport-security: max-age=15780000\r\nserver: cloudflare\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":12312,"size_decoded":0,"mime_type":"text/css; charset=utf-8","magic":"ASCII text, with very long lines (12312), with no line terminators","md5":"01df170306275f4440f6bfe0919d30f1","sha1":"f78a90c566bf329e286ed6d6b6d21f1dffcffa2e","sha256":"ffcfac539e9acab2466a11bd9a671468d12085b6af69c786c9b91da8ef7a2a4d","sha512":"607bb065a6c8db38b493b73dbed83c74affadd007484bbc3e2d870e38745a3f4df04555540ea841bd5a9be2684a5bcaf80e2182d71759fbc4351f537183b34b3","ssdeep":"192:18wbxqMEVXxALM83Tdmb7eoPFNVmwZunron8Kqh1xjFeUQVfJYDUUjvhhkfU6TB2:K/2gLDKhBmG","tlshash":"1e42bee394311f1d4026cc2b3190a9cfa109b41b7776dff7a0e79c219a97a97897218f","first_seen":"2023-04-15T13:57:24Z","last_seen":"2026-05-24T21:43:21.727933Z","times_seen":447,"resource_available":false,"data":null}},"time_used":63,"timings":{"blocked":14,"dns":1,"connect":1,"send":0,"wait":24,"receive":0,"ssl":21},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.omb100.com/internacional/public/styles/modules/office/auth/builderall-login-ba5.css?v=6.0.9512","fqdn":"www.omb100.com","domain":"omb100.com","tld":"com"},"ip":{"addr":"64.251.28.130","port":443,"asn":15083,"as":"INFOLINK-MIA","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://www.omb100.com/us/office/login?redir=%2Fus%2Foffice","date":"2025-09-01T22:11:10.696Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"omb100.com","organization":""},"issuer":{"commonName":"R10","organization":"Let's Encrypt"},"validity":{"start":"Sat, 19 Jul 2025 11:30:31 GMT","end":"Fri, 17 Oct 2025 11:30:30 GMT"},"fingerprint":{"sha1":"83:0B:AE:40:4F:2B:48:FF:F9:6D:90:CC:D2:57:2B:FC:3B:EA:FF:32","sha256":"92:89:DF:29:B2:79:1D:DC:82:EB:9F:C6:78:97:A5:D0:56:B6:4F:BB:ED:41:66:3D:21:20:76:48:D6:F4:DA:DE"}}},"request":{"raw":"GET /internacional/public/styles/modules/office/auth/builderall-login-ba5.css?v=6.0.9512 HTTP/1.1\r\nHost: www.omb100.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.omb100.com/us/office/login?redir=%2Fus%2Foffice\r\nCookie: DAY_OMB=20250901; PHPSESSID=q5cpf2gsgtf4ggfps60trmhiek; OTRK_DAY_OMB=20250901\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Mon, 01 Sep 2025 22:11:10 GMT\r\ncontent-type: text/css\r\nlast-modified: Fri, 29 Aug 2025 17:25:10 GMT\r\nvary: Accept-Encoding\r\netag: W/\"68b1e276-64e3\"\r\nexpires: Wed, 01 Oct 2025 22:11:10 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000; includeSubDomains\r\nx-frame-options: ALLOW\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":25827,"size_decoded":0,"mime_type":"text/css","magic":"Unicode text, UTF-8 text","md5":"6717f4641b456de4b0474f5cf0787319","sha1":"e8bb4a499d1511b7c126ff6d5a3e306a7c3dc675","sha256":"89a6f32b8de3432e097e5afd3b9a0ebd149e2bbb26e8a4ef21a3056f361e6e28","sha512":"7bddc05b49384ff12e94d2286f7963e93351d2ed0ab201f1dbdb34043daf3d2fdee893ad619ea4e29afc12114f8e048546bfbdeaa85d7ddc8f8ccfbe7fa32c90","ssdeep":"384:ocnwFxBlPJmcxek1gWVUpNl1WxuyeIIC5BAzIj:ocwFxBlPJmcxcsx22","tlshash":"9fc240a72b904401b002454624abafb9f77f9050db4ecf787ab122acceef7a1657174d","first_seen":"2025-04-13T23:01:53.830215Z","last_seen":"2026-03-23T00:22:50.078394Z","times_seen":39,"resource_available":false,"data":null}},"time_used":129,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":129,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.omb100.com/internacional/public/styles/font-awesome/css/font-awesome.min.css","fqdn":"www.omb100.com","domain":"omb100.com","tld":"com"},"ip":{"addr":"64.251.28.130","port":443,"asn":15083,"as":"INFOLINK-MIA","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://www.omb100.com/us/office/login?redir=%2Fus%2Foffice","date":"2025-09-01T22:11:10.701Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"omb100.com","organization":""},"issuer":{"commonName":"R10","organization":"Let's Encrypt"},"validity":{"start":"Sat, 19 Jul 2025 11:30:31 GMT","end":"Fri, 17 Oct 2025 11:30:30 GMT"},"fingerprint":{"sha1":"83:0B:AE:40:4F:2B:48:FF:F9:6D:90:CC:D2:57:2B:FC:3B:EA:FF:32","sha256":"92:89:DF:29:B2:79:1D:DC:82:EB:9F:C6:78:97:A5:D0:56:B6:4F:BB:ED:41:66:3D:21:20:76:48:D6:F4:DA:DE"}}},"request":{"raw":"GET /internacional/public/styles/font-awesome/css/font-awesome.min.css HTTP/1.1\r\nHost: www.omb100.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.omb100.com/us/office/login?redir=%2Fus%2Foffice\r\nCookie: DAY_OMB=20250901; PHPSESSID=q5cpf2gsgtf4ggfps60trmhiek; OTRK_DAY_OMB=20250901\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Mon, 01 Sep 2025 22:11:10 GMT\r\ncontent-type: text/css\r\nlast-modified: Fri, 29 Aug 2025 17:25:10 GMT\r\nvary: Accept-Encoding\r\netag: W/\"68b1e276-55e0\"\r\nexpires: Wed, 01 Oct 2025 22:11:10 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000; includeSubDomains\r\nx-frame-options: ALLOW\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":21984,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (21822)","md5":"feda974a77ea5783b8be673f142b7c88","sha1":"b71d1c7c315b67c614563382d1c2a868ac14d729","sha256":"0fb1bbca73646e8e2b93c82e8d8b219647b13d4b440c48e338290b9a685b8de1","sha512":"e64cd0c0ff8d301c0f6bd9fe60934362dce7be85af57c9c3e1c719e42f8784cf707bc9025b58fd1f341a6deeb27490e3fa8164aed9cc76605323a602544c8220","ssdeep":"192:sq3P/8W+ab2edrKeTUKIErArKlcZJVrJ3ee+cR6waWm215bvfwf5DrkHUa2:Lk5yWeTUK1+KlkJ5de2UWmyTfwYUa2","tlshash":"03a241f8e54c01d66731c48bff85b36862baf33dd5804d99f11f294c29d22a912c5faa","first_seen":"2023-04-05T10:40:01Z","last_seen":"2026-05-31T14:59:00.835653Z","times_seen":10479,"resource_available":false,"data":null}},"time_used":251,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":251,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdnjs.cloudflare.com/ajax/libs/jquery/3.3.1/jquery.min.js","fqdn":"cdnjs.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.17.24.14","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://www.omb100.com/us/office/login?redir=%2Fus%2Foffice","date":"2025-09-01T22:11:10.706Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"cdnjs.cloudflare.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sun, 20 Jul 2025 17:08:10 GMT","end":"Sat, 18 Oct 2025 18:08:03 GMT"},"fingerprint":{"sha1":"66:D5:51:E0:8E:D7:2C:D1:E3:98:58:99:22:9B:73:C4:6F:32:FD:EC","sha256":"52:CD:3D:83:E5:5A:57:37:9F:D9:0B:EB:C3:EA:67:B7:4C:F1:74:93:B7:C9:E8:0B:E3:E8:CB:2E:7A:94:A2:78"}}},"request":{"raw":"GET /ajax/libs/jquery/3.3.1/jquery.min.js HTTP/1.1\r\nHost: cdnjs.cloudflare.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.omb100.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Mon, 01 Sep 2025 22:11:10 GMT\r\ncontent-type: application/javascript; charset=utf-8\r\ncontent-length: 27433\r\ncf-ray: 97881a180cd2712b-OSL\r\naccess-control-allow-origin: *\r\ncache-control: public, max-age=30672000\r\ncontent-encoding: br\r\netag: \"5eb03ec4-1538f\"\r\nlast-modified: Mon, 04 May 2020 16:11:48 GMT\r\ncf-cdnjs-via: cfworker/kv\r\ncross-origin-resource-policy: cross-origin\r\ntiming-allow-origin: *\r\nx-content-type-options: nosniff\r\nvary: Accept-Encoding\r\ncf-cache-status: HIT\r\nage: 321841\r\nexpires: Sat, 22 Aug 2026 22:11:10 GMT\r\naccept-ranges: bytes\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v4?s=Fzj7FoksRgn%2Bq5r6R7DNykh0RG5WixR2Ei3hr9dFUGjYQ3QwyVtt%2Bwa63XZVvwaMRQlldDSGSSkPpzE6pgylMD7x2P2yMaxYkPrScIqXNRFRNUQJzUZ7mFmCtX%2FM8ZUlKOG97%2Br4\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0.01,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nstrict-transport-security: max-age=15780000\r\nserver: cloudflare\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":86927,"size_decoded":0,"mime_type":"application/javascript; charset=utf-8","magic":"JavaScript source, ASCII text, with very long lines (65451)","md5":"a09e13ee94d51c524b7e2a728c7d4039","sha1":"0dc32db4aa9c5f03f3b38c47d883dbd4fed13aae","sha256":"160a426ff2894252cd7cebbdd6d6b7da8fcd319c65b70468f10b6690c45d02ef","sha512":"f8da8f95b6ed33542a88af19028e18ae3d9ce25350a06bfc3fbf433ed2b38fefa5e639cddfdac703fc6caa7f3313d974b92a3168276b3a016ceb28f27db0714a","ssdeep":"1536:jLiBdiaWLOczCmZx6+VWuGzQNOzdn6x2RZd9SEnk9HB96c9Yo/NWLbVj3kC6t3:5kn6x2xe9NK6nC69","tlshash":"748319dd72c6b06247ab71ba00bf550bf2361999684d4410f129e4eabc74b4e823bf7d","first_seen":"2023-03-07T01:02:02Z","last_seen":"2026-05-31T18:25:16.19018Z","times_seen":132256,"resource_available":true,"data":null}},"time_used":58,"timings":{"blocked":17,"dns":3,"connect":3,"send":0,"wait":10,"receive":1,"ssl":18},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"use.typekit.net/qsh3vhv.css","fqdn":"use.typekit.net","domain":"typekit.net","tld":"net"},"ip":{"addr":"23.33.119.67","port":443,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://www.omb100.com/us/office/login?redir=%2Fus%2Foffice","date":"2025-09-01T22:11:10.854Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"use.typekit.net","organization":"Adobe Inc."},"issuer":{"commonName":"DigiCert Global G2 TLS RSA SHA256 2020 CA1","organization":"DigiCert Inc"},"validity":{"start":"Tue, 10 Dec 2024 00:00:00 GMT","end":"Sat, 10 Jan 2026 23:59:59 GMT"},"fingerprint":{"sha1":"F3:36:2A:08:11:E8:8C:54:E5:3C:6A:03:53:BF:AA:D7:7A:84:8B:89","sha256":"6A:79:75:73:C0:A8:12:54:14:ED:26:F6:54:AA:3F:01:34:4E:41:17:1C:AB:70:3C:72:0B:AF:BE:E1:75:6F:6E"}}},"request":{"raw":"GET /qsh3vhv.css HTTP/1.1\r\nHost: use.typekit.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.omb100.com/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ncontent-type: text/css;charset=utf-8\r\nvary: Accept-Encoding\r\nstrict-transport-security: max-age=31536000; includeSubDomains;\r\ncache-control: private, max-age=600, stale-while-revalidate=604800\r\ntiming-allow-origin: *\r\naccess-control-allow-origin: *\r\ncross-origin-resource-policy: cross-origin\r\ncontent-encoding: gzip\r\ncontent-length: 729\r\ndate: Mon, 01 Sep 2025 22:11:10 GMT\r\nakamai-grn: 0.0f772117.1756764670.2eed820e\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":3278,"size_decoded":0,"mime_type":"text/css; charset=utf-8","magic":"Unicode text, UTF-8 text, with very long lines (516)","md5":"c6907c4ccb40b455999ac95eb5522a01","sha1":"4468c45bf9ffaff897557b33f604b3c4b51f47cf","sha256":"c5029da9a1766695afc190c9fd34d1340254acc46f5df4807ff4c357b93f9c09","sha512":"0e2090b0f77aca9eff4447418af6fccea9c126016b14ba9d38f4c2458525c532698c84353db266072760de1daacf1003d1bbf956eac24c9e3e105b2ccf7e282c","ssdeep":"","tlshash":"72617be181468c97c4d02a71348eb7f4e92e395a36e4cc964525ccb39c75ee3b311baa","first_seen":"2025-02-27T08:40:21.634946Z","last_seen":"2026-01-04T23:04:07.292538Z","times_seen":35,"resource_available":false,"data":null}},"time_used":80,"timings":{"blocked":25,"dns":9,"connect":1,"send":0,"wait":28,"receive":0,"ssl":15},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"p.typekit.net/p.css?s=1\u0026k=qsh3vhv\u0026ht=tk\u0026f=15780.15782.37496.37497\u0026a=85308995\u0026app=typekit\u0026e=css","fqdn":"p.typekit.net","domain":"typekit.net","tld":"net"},"ip":{"addr":"23.33.119.50","port":443,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://www.omb100.com/us/office/login?redir=%2Fus%2Foffice","date":"2025-09-01T22:11:11.179Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"use.typekit.net","organization":"Adobe Inc."},"issuer":{"commonName":"DigiCert Global G2 TLS RSA SHA256 2020 CA1","organization":"DigiCert Inc"},"validity":{"start":"Tue, 10 Dec 2024 00:00:00 GMT","end":"Sat, 10 Jan 2026 23:59:59 GMT"},"fingerprint":{"sha1":"F3:36:2A:08:11:E8:8C:54:E5:3C:6A:03:53:BF:AA:D7:7A:84:8B:89","sha256":"6A:79:75:73:C0:A8:12:54:14:ED:26:F6:54:AA:3F:01:34:4E:41:17:1C:AB:70:3C:72:0B:AF:BE:E1:75:6F:6E"}}},"request":{"raw":"GET /p.css?s=1\u0026k=qsh3vhv\u0026ht=tk\u0026f=15780.15782.37496.37497\u0026a=85308995\u0026app=typekit\u0026e=css HTTP/1.1\r\nHost: p.typekit.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://use.typekit.net/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ncontent-type: text/css\r\ncontent-length: 5\r\nlast-modified: Sun, 24 Nov 2024 12:45:53 GMT\r\netag: \"67432001-5\"\r\ncache-control: public, max-age=604800\r\naccess-control-allow-origin: *\r\ncross-origin-resource-policy: cross-origin\r\naccept-ranges: bytes\r\ndate: Mon, 01 Sep 2025 22:11:11 GMT\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":5,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text","md5":"83d24d4b43cc7eef2b61e66c95f3d158","sha1":"f0cafc285ee23bb6c28c5166f305493c4331c84d","sha256":"1c0ff118a4290c99f39c90abb38703a866e47251b23cca20266c69c812ccafeb","sha512":"e6e84563d3a55767f8e5f36c4e217a0768120d6e15ce4d01aa63d36af7ec8d20b600ce96dcc56de91ec7e55e83a8267baddd68b61447069b82abdb2e92c6acb6","ssdeep":"","tlshash":"e630000000000000000000000000000000000c00000000000000000000000000000000","first_seen":"2023-03-12T07:28:04Z","last_seen":"2026-05-31T18:28:41.023912Z","times_seen":155036,"resource_available":true,"data":null}},"time_used":66,"timings":{"blocked":29,"dns":12,"connect":3,"send":0,"wait":4,"receive":0,"ssl":14},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"member.mailingboss.com/customer/index.php/guest/index","fqdn":"member.mailingboss.com","domain":"mailingboss.com","tld":"com"},"ip":{"addr":"69.60.99.95","port":443,"asn":15083,"as":"INFOLINK-MIA","country":"United States","country_code":"US"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2025-09-01T22:11:08.444Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384","key_group_name":"P384","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"mailingboss.com","organization":""},"issuer":{"commonName":"R10","organization":"Let's Encrypt"},"validity":{"start":"Fri, 11 Jul 2025 08:08:59 GMT","end":"Thu, 09 Oct 2025 08:08:58 GMT"},"fingerprint":{"sha1":"5D:6C:40:CA:74:A6:76:23:9F:CF:BE:5E:9B:43:07:96:94:DE:9C:2F","sha256":"B9:B9:B5:58:0E:E5:F4:39:04:8A:52:1E:5A:1C:9E:38:44:02:E4:62:D5:C7:B9:B8:6A:61:14:2D:01:83:95:DE"}}},"request":{"raw":"GET /customer/index.php/guest/index HTTP/1.1\r\nHost: member.mailingboss.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: http://mboss.ogxcursos.com.br/\r\nDNT: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 302 Found\r\nserver: nginx\r\ndate: Mon, 01 Sep 2025 22:10:52 GMT\r\ncontent-type: text/html; charset=UTF-8\r\nlocation: http://www.omb100.com/us/office\r\nset-cookie: mwsid=n3eijecc02e1u26r20pqf6mav9; path=/; HttpOnly\r\nexpires: Thu, 19 Nov 1981 08:52:00 GMT\r\ncache-control: no-store, no-cache, must-revalidate\r\npragma: no-cache\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"302","status_text":"Found","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":6627,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-05-31T18:31:00.561381Z","times_seen":15971922,"resource_available":true,"data":null}},"time_used":1385,"timings":{"blocked":399,"dns":1,"connect":126,"send":0,"wait":586,"receive":0,"ssl":270},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fonts.gstatic.com/s/roboto/v48/KFOMCnqEu92Fr1ME7kSn66aGLdTylUAMQXC89YmC2DPNWubEbVmUiAo.woff2","fqdn":"fonts.gstatic.com","domain":"gstatic.com","tld":"com"},"ip":{"addr":"142.250.74.35","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://www.omb100.com/us/office/login?redir=%2Fus%2Foffice","date":"2025-09-01T22:11:12.116Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.gstatic.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 11 Aug 2025 19:22:25 GMT","end":"Mon, 03 Nov 2025 19:22:24 GMT"},"fingerprint":{"sha1":"F5:9E:5D:EB:46:9B:ED:9F:D2:D7:E8:D1:06:43:DF:9D:0C:13:7E:75","sha256":"AA:C4:C0:AF:38:AE:91:75:3F:86:CE:32:70:A9:8F:C4:2F:7F:D2:28:D1:34:AD:0A:C8:E2:6C:6E:4D:46:72:23"}}},"request":{"raw":"GET /s/roboto/v48/KFOMCnqEu92Fr1ME7kSn66aGLdTylUAMQXC89YmC2DPNWubEbVmUiAo.woff2 HTTP/1.1\r\nHost: fonts.gstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nOrigin: https://www.omb100.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fonts.googleapis.com/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"apps-themes\"\r\nreport-to: {\"group\":\"apps-themes\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/apps-themes\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 20612\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Thu, 28 Aug 2025 10:25:01 GMT\r\nexpires: Fri, 28 Aug 2026 10:25:01 GMT\r\ncache-control: public, max-age=31536000\r\nage: 387971\r\nlast-modified: Thu, 29 May 2025 23:35:01 GMT\r\ncontent-type: font/woff2\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":20612,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 20612, version 1.0","md5":"b07da7aa3e4f363c5cdbc11312239e8c","sha1":"47bf5b2f24ea4a4caafccc89b9d2a6677ef9e3b8","sha256":"e44c11f4834bdd4d6b6da7b8ee5eaebc8acb41250cd6bce5cc82ea8262140eaa","sha512":"420729406b315d8af34b62b78f39e763f5cf33cbf94467457b393fde0573dd7ffc6a23f25680988f9b82a4a3b719876ff76f3e1db047ce82615f544fc3a82532","ssdeep":"384:k5Eu+yl5Y9RpwjjmD/8Qu+POP9w+oB7rezldH9W4EMs8qCr9WvS80M8T4PTEXPFw:YEu+/Jw3FF+WP9DC/ez79jcCrb8BK4Eq","tlshash":"8192df6bce71497ac711262c773917addb8b44f627f91f2ba0562411c7b8e015c2cc7a","first_seen":"2025-01-09T06:25:34.419113Z","last_seen":"2026-05-31T18:00:10.978529Z","times_seen":46918,"resource_available":false,"data":null}},"time_used":484,"timings":{"blocked":234,"dns":0,"connect":21,"send":0,"wait":8,"receive":3,"ssl":215},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fonts.gstatic.com/s/manrope/v19/xn7gYHE41ni1AdIRggexSg.woff2","fqdn":"fonts.gstatic.com","domain":"gstatic.com","tld":"com"},"ip":{"addr":"142.250.74.35","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://www.omb100.com/us/office/login?redir=%2Fus%2Foffice","date":"2025-09-01T22:11:12.111Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.gstatic.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 11 Aug 2025 19:22:25 GMT","end":"Mon, 03 Nov 2025 19:22:24 GMT"},"fingerprint":{"sha1":"F5:9E:5D:EB:46:9B:ED:9F:D2:D7:E8:D1:06:43:DF:9D:0C:13:7E:75","sha256":"AA:C4:C0:AF:38:AE:91:75:3F:86:CE:32:70:A9:8F:C4:2F:7F:D2:28:D1:34:AD:0A:C8:E2:6C:6E:4D:46:72:23"}}},"request":{"raw":"GET /s/manrope/v19/xn7gYHE41ni1AdIRggexSg.woff2 HTTP/1.1\r\nHost: fonts.gstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nOrigin: https://www.omb100.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fonts.googleapis.com/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"apps-themes\"\r\nreport-to: {\"group\":\"apps-themes\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/apps-themes\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 24836\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Fri, 29 Aug 2025 01:01:21 GMT\r\nexpires: Sat, 29 Aug 2026 01:01:21 GMT\r\ncache-control: public, max-age=31536000\r\nlast-modified: Thu, 29 May 2025 18:59:17 GMT\r\ncontent-type: font/woff2\r\nage: 335391\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":24836,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 24836, version 1.0","md5":"938c6e8019b69313372c47dbb7a7c930","sha1":"b42951014c5eca12749d87a4706caf22dc4fe081","sha256":"a30ddcd349703aff7464c34bef3fffdff405ee50c113440d7c8693c02d210972","sha512":"5537c005cd8f321f26fe67f6292b3ec14e88ff4b2365311628dbbe4753e01e568f6881b9f2e7d71e8e6b2c261ed25f372829dd28f89f865ce574b4e1fec29614","ssdeep":"768:3KQaj5c95F1QmIwa55Go1COpZLpkkM46CU+YIC:ahj5cXow65xCM5pkkM468YB","tlshash":"a2b2f105ee49b3d4b276f1fcfa802884179282f27dabda8f3f2015981dd8e5b8d45320","first_seen":"2025-06-02T20:09:41.98255Z","last_seen":"2026-05-31T18:21:06.902219Z","times_seen":25949,"resource_available":false,"data":null}},"time_used":501,"timings":{"blocked":242,"dns":1,"connect":21,"send":0,"wait":12,"receive":2,"ssl":220},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.omb100.com/internacional/public/styles/modules/office/auth/builderall-toastr-v5.css?v=6.0.9512","fqdn":"www.omb100.com","domain":"omb100.com","tld":"com"},"ip":{"addr":"64.251.28.130","port":443,"asn":15083,"as":"INFOLINK-MIA","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://www.omb100.com/us/office/login?redir=%2Fus%2Foffice","date":"2025-09-01T22:11:10.697Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"omb100.com","organization":""},"issuer":{"commonName":"R10","organization":"Let's Encrypt"},"validity":{"start":"Sat, 19 Jul 2025 11:30:31 GMT","end":"Fri, 17 Oct 2025 11:30:30 GMT"},"fingerprint":{"sha1":"83:0B:AE:40:4F:2B:48:FF:F9:6D:90:CC:D2:57:2B:FC:3B:EA:FF:32","sha256":"92:89:DF:29:B2:79:1D:DC:82:EB:9F:C6:78:97:A5:D0:56:B6:4F:BB:ED:41:66:3D:21:20:76:48:D6:F4:DA:DE"}}},"request":{"raw":"GET /internacional/public/styles/modules/office/auth/builderall-toastr-v5.css?v=6.0.9512 HTTP/1.1\r\nHost: www.omb100.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.omb100.com/us/office/login?redir=%2Fus%2Foffice\r\nCookie: DAY_OMB=20250901; PHPSESSID=q5cpf2gsgtf4ggfps60trmhiek; OTRK_DAY_OMB=20250901\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Mon, 01 Sep 2025 22:11:10 GMT\r\ncontent-type: text/css\r\nlast-modified: Fri, 29 Aug 2025 17:25:10 GMT\r\nvary: Accept-Encoding\r\netag: W/\"68b1e276-4920\"\r\nexpires: Wed, 01 Oct 2025 22:11:10 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000; includeSubDomains\r\nx-frame-options: ALLOW\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":18720,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text","md5":"d02e317aad294f1af7b7d6d5951e23dc","sha1":"9484b4896d52b962bf4f697e1ce730b820fd0c09","sha256":"24c04c8296ced0d887882b2079a7971d4fe791a726e9fbd5fdfe1c4cf8c85690","sha512":"d2345b9d9bd4bbb01dae96958782ffd3372be28c872f4e09120ee6f4d57c3c194d74158810de234afd7f130f4ed0ff57b76c7b67c981986b0fd49004527579cb","ssdeep":"384:LihMkAodjVrxJvnVoQCIQv95uckquBAUPnVJlceaNx//bQ6yJfBbxln3:mjVrxJvnVoQCIQv95uckquBAUPnVJlc4","tlshash":"dc82895399572e69be6a186f6317e3dc993b40164dca44282bdfb31d4f82342cb7234e","first_seen":"2024-09-19T21:11:22.465348Z","last_seen":"2026-03-23T00:22:50.098013Z","times_seen":48,"resource_available":false,"data":null}},"time_used":129,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":129,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.omb100.com/internacional/public/styles/modules/office/auth/bootstrap-social.css?v=6.0.9512","fqdn":"www.omb100.com","domain":"omb100.com","tld":"com"},"ip":{"addr":"64.251.28.130","port":443,"asn":15083,"as":"INFOLINK-MIA","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://www.omb100.com/us/office/login?redir=%2Fus%2Foffice","date":"2025-09-01T22:11:10.704Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"omb100.com","organization":""},"issuer":{"commonName":"R10","organization":"Let's Encrypt"},"validity":{"start":"Sat, 19 Jul 2025 11:30:31 GMT","end":"Fri, 17 Oct 2025 11:30:30 GMT"},"fingerprint":{"sha1":"83:0B:AE:40:4F:2B:48:FF:F9:6D:90:CC:D2:57:2B:FC:3B:EA:FF:32","sha256":"92:89:DF:29:B2:79:1D:DC:82:EB:9F:C6:78:97:A5:D0:56:B6:4F:BB:ED:41:66:3D:21:20:76:48:D6:F4:DA:DE"}}},"request":{"raw":"GET /internacional/public/styles/modules/office/auth/bootstrap-social.css?v=6.0.9512 HTTP/1.1\r\nHost: www.omb100.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.omb100.com/us/office/login?redir=%2Fus%2Foffice\r\nCookie: DAY_OMB=20250901; PHPSESSID=q5cpf2gsgtf4ggfps60trmhiek; OTRK_DAY_OMB=20250901\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Mon, 01 Sep 2025 22:11:10 GMT\r\ncontent-type: text/css\r\nlast-modified: Fri, 29 Aug 2025 17:25:10 GMT\r\nvary: Accept-Encoding\r\netag: W/\"68b1e276-6da7\"\r\nexpires: Wed, 01 Oct 2025 22:11:10 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000; includeSubDomains\r\nx-frame-options: ALLOW\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":28071,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (556)","md5":"4e1dc5f69e82711bb4fcaff0582683b7","sha1":"d3c5efe7b51f62cfce709a04320189b987e602f6","sha256":"7564ff65c2cfc56bca94873be1ad507e41eebaf273e1f26c38cfe2928b010b5d","sha512":"b0a10fd33a1673a8ec4ab0746bf7c1b2f76f752195605c8b610007107cec2820ae9e713a39ee50552f120da25e1501418636035fdd67794f54fe5f3122a30ffa","ssdeep":"768:uWLud1YGFLQNrPPR1jFOFL1jFPpD19Xeh98:W","tlshash":"8cc247a1f44120a7ac4b8558b441eed7436a26c7e8480bba7e3750f90b4a1dfb357f2d","first_seen":"2024-02-11T02:42:02Z","last_seen":"2026-03-23T00:22:50.086562Z","times_seen":49,"resource_available":false,"data":null}},"time_used":246,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":246,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdn.rawgit.com/necolas/normalize.css/master/normalize.css","fqdn":"cdn.rawgit.com","domain":"rawgit.com","tld":"com"},"ip":{"addr":"194.242.11.186","port":443,"asn":34989,"as":"ServeTheWorld AS","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://www.omb100.com/us/office/login?redir=%2Fus%2Foffice","date":"2025-09-01T22:11:10.692Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"cdn.rawgit.com","organization":""},"issuer":{"commonName":"R10","organization":"Let's Encrypt"},"validity":{"start":"Mon, 11 Aug 2025 14:12:14 GMT","end":"Sun, 09 Nov 2025 14:12:13 GMT"},"fingerprint":{"sha1":"85:9F:7F:B8:36:46:3C:D4:F1:F1:3A:4E:0C:60:A5:64:0A:61:70:A4","sha256":"26:34:3C:61:EB:6B:C4:62:40:18:52:AF:64:B3:1C:85:A4:DC:40:9C:2E:51:03:48:7A:91:FB:4F:86:7D:48:73"}}},"request":{"raw":"GET /necolas/normalize.css/master/normalize.css HTTP/1.1\r\nHost: cdn.rawgit.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.omb100.com/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 301 Moved Permanently\r\ndate: Mon, 01 Sep 2025 22:11:10 GMT\r\ncontent-type: text/plain; charset=utf-8\r\ncontent-length: 104\r\nlocation: https://cdn.jsdelivr.net/gh/necolas/normalize.css@master/normalize.css\r\nserver: BunnyCDN-NO1-830\r\ncdn-pullzone: 201235\r\ncdn-uid: b1941f61-b576-4f40-80de-5677acb38f74\r\ncdn-requestcountrycode: NO\r\nvary: Accept-Encoding\r\naccess-control-allow-origin: *\r\naccess-control-expose-headers: *\r\nage: 60864\r\ncache-control: public, max-age=2592000\r\ncdn-cachedat: 09/01/2025 22:11:10\r\ntiming-allow-origin: *\r\ncross-origin-resource-policy: cross-origin\r\nx-content-type-options: nosniff\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\nx-served-by: cache-fra-etou8220148-FRA, cache-chi-kigq8000177-CHI\r\nx-cache: MISS, HIT\r\ncdn-proxyver: 1.34\r\ncdn-requestpullcode: 301\r\ncdn-requestpullsuccess: True\r\ncdn-edgestorageid: 830\r\ncdn-status: 301\r\ncdn-requesttime: 0\r\ncdn-requestid: da758712412d7c774455c06b84c10bf2\r\ncdn-cache: EXPIRED\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"301","status_text":"Moved Permanently","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Bunny","description":"","website":"https://bunny.net","common_platform_enumeration":"","icon":"Bunny.svg","categories":["CDN"]}],"data":{"size":6138,"size_decoded":0,"mime_type":"text/css; charset=utf-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-05-31T18:31:00.561381Z","times_seen":15971922,"resource_available":true,"data":null}},"time_used":185,"timings":{"blocked":13,"dns":0,"connect":1,"send":0,"wait":146,"receive":1,"ssl":20},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.omb100.com/internacional/public/office2/fonts/muli/fonts.css","fqdn":"www.omb100.com","domain":"omb100.com","tld":"com"},"ip":{"addr":"64.251.28.130","port":443,"asn":15083,"as":"INFOLINK-MIA","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://www.omb100.com/us/office/login?redir=%2Fus%2Foffice","date":"2025-09-01T22:11:10.699Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"omb100.com","organization":""},"issuer":{"commonName":"R10","organization":"Let's Encrypt"},"validity":{"start":"Sat, 19 Jul 2025 11:30:31 GMT","end":"Fri, 17 Oct 2025 11:30:30 GMT"},"fingerprint":{"sha1":"83:0B:AE:40:4F:2B:48:FF:F9:6D:90:CC:D2:57:2B:FC:3B:EA:FF:32","sha256":"92:89:DF:29:B2:79:1D:DC:82:EB:9F:C6:78:97:A5:D0:56:B6:4F:BB:ED:41:66:3D:21:20:76:48:D6:F4:DA:DE"}}},"request":{"raw":"GET /internacional/public/office2/fonts/muli/fonts.css HTTP/1.1\r\nHost: www.omb100.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.omb100.com/us/office/login?redir=%2Fus%2Foffice\r\nCookie: DAY_OMB=20250901; PHPSESSID=q5cpf2gsgtf4ggfps60trmhiek; OTRK_DAY_OMB=20250901\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Mon, 01 Sep 2025 22:11:10 GMT\r\ncontent-type: text/css\r\nlast-modified: Fri, 29 Aug 2025 17:25:08 GMT\r\nvary: Accept-Encoding\r\netag: W/\"68b1e274-923\"\r\nexpires: Wed, 01 Oct 2025 22:11:10 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000; includeSubDomains\r\nx-frame-options: ALLOW\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":2339,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text","md5":"f3799f4288cd7e9bacafa3c85671e411","sha1":"c6534237390712a7559533f825f4cfa9d157ef1a","sha256":"9915663e96e620017f29289462b6afda0e0cc37ff12acfa217b7020a131cb44c","sha512":"ee99202246a929979278a9fccddf005105254deb98c81aace8b51eed7328dd239a84b247978d5b1ca1b76bcd7024fa45137bbb8fef34678e6db2d2d5a2666d0a","ssdeep":"","tlshash":"0a419a51045f7420f9631ccf73cfaf29a91e28173056c83937a16a68afe2a2943a0b5d","first_seen":"2025-04-13T23:01:53.82568Z","last_seen":"2026-03-23T00:22:50.079017Z","times_seen":39,"resource_available":false,"data":null}},"time_used":127,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":127,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fonts.googleapis.com/css?family=Muli:400,500,600,700,800,900\u0026display=swap","fqdn":"fonts.googleapis.com","domain":"fonts.googleapis.com","tld":"googleapis.com"},"ip":{"addr":"142.250.178.74","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://www.omb100.com/us/office/login?redir=%2Fus%2Foffice","date":"2025-09-01T22:11:10.859Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"upload.video.google.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 11 Aug 2025 19:22:25 GMT","end":"Mon, 03 Nov 2025 19:22:24 GMT"},"fingerprint":{"sha1":"05:AF:87:21:D4:6B:A6:86:ED:A7:D2:07:92:06:E4:D4:79:84:27:E8","sha256":"F6:EC:75:67:99:66:34:CC:0C:0F:9D:D7:8B:6A:04:94:98:0C:7B:B5:47:E2:47:37:A6:F8:E2:08:99:72:AB:BE"}}},"request":{"raw":"GET /css?family=Muli:400,500,600,700,800,900\u0026display=swap HTTP/1.1\r\nHost: fonts.googleapis.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.omb100.com/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: text/css; charset=utf-8\r\nvary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site\r\naccess-control-allow-origin: *\r\ntiming-allow-origin: *\r\nlink: \u003chttps://fonts.gstatic.com\u003e; rel=preconnect; crossorigin\r\nstrict-transport-security: max-age=31536000\r\nexpires: Mon, 01 Sep 2025 22:11:10 GMT\r\ndate: Mon, 01 Sep 2025 22:11:10 GMT\r\ncache-control: private, max-age=86400\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin-allow-popups\r\ncontent-encoding: gzip\r\nserver: ESF\r\nx-xss-protection: 0\r\nx-frame-options: SAMEORIGIN\r\nx-content-type-options: nosniff\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":7206,"size_decoded":0,"mime_type":"text/css; charset=utf-8","magic":"ASCII text","md5":"fe7e0f89765b17f9b6fd6315ab2dbb8b","sha1":"bc37581932c9528bfc435aa82f2a5e359c51bd6a","sha256":"18203825c8cf0268aeb19dd97c94009fd6b4f1c3b2019ace47a1e5dfe3dd53cf","sha512":"3e58256fb2908f3769eeea1e5b676e6defbb1aa8791b400c13ef931696cababc5639e74ecee5f49bd7a6e2901a14110e3fc1b7c1b736eb4966d0712193ee1674","ssdeep":"192:cFcSnk1mcBnL1jconu1ccvnt15cen41Kcdn/q:cE1iTYm","tlshash":"d8e1bf91046be500db472cc663cebf32ee4e7159b454c5796ffe08999caac322326b4d","first_seen":"2025-06-13T16:43:44.138208Z","last_seen":"2025-09-04T05:12:55.882878Z","times_seen":17,"resource_available":false,"data":null}},"time_used":37,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":37,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fonts.googleapis.com/css2?family=Lato:ital,wght@0,400;0,700;1,400\u0026display=swap","fqdn":"fonts.googleapis.com","domain":"fonts.googleapis.com","tld":"googleapis.com"},"ip":{"addr":"142.250.178.74","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://www.omb100.com/us/office/login?redir=%2Fus%2Foffice","date":"2025-09-01T22:11:10.861Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"upload.video.google.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 11 Aug 2025 19:22:25 GMT","end":"Mon, 03 Nov 2025 19:22:24 GMT"},"fingerprint":{"sha1":"05:AF:87:21:D4:6B:A6:86:ED:A7:D2:07:92:06:E4:D4:79:84:27:E8","sha256":"F6:EC:75:67:99:66:34:CC:0C:0F:9D:D7:8B:6A:04:94:98:0C:7B:B5:47:E2:47:37:A6:F8:E2:08:99:72:AB:BE"}}},"request":{"raw":"GET /css2?family=Lato:ital,wght@0,400;0,700;1,400\u0026display=swap HTTP/1.1\r\nHost: fonts.googleapis.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.omb100.com/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: text/css; charset=utf-8\r\nvary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site\r\naccess-control-allow-origin: *\r\ntiming-allow-origin: *\r\nlink: \u003chttps://fonts.gstatic.com\u003e; rel=preconnect; crossorigin\r\nstrict-transport-security: max-age=31536000\r\nexpires: Mon, 01 Sep 2025 22:11:10 GMT\r\ndate: Mon, 01 Sep 2025 22:11:10 GMT\r\ncache-control: private, max-age=86400\r\ncross-origin-opener-policy: same-origin-allow-popups\r\ncross-origin-resource-policy: cross-origin\r\ncontent-encoding: gzip\r\nserver: ESF\r\nx-xss-protection: 0\r\nx-frame-options: SAMEORIGIN\r\nx-content-type-options: nosniff\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":2467,"size_decoded":0,"mime_type":"text/css; charset=utf-8","magic":"ASCII text","md5":"41990f1366c2854543170b8041ce78e4","sha1":"b49e824be5b95d7936a6f8b505ed0eb25c40489f","sha256":"ce1eade43de61291fb7e1708bdbe373f955aa88e54e9c894fa6ab1ed455ab1b5","sha512":"b3eb1d2ce065b968e85b11a5c954d6177a48ac56964e87a161a0a330c50fbeb080fc6b7eb3b6f66901a690453816f5d4676e3818c22c527d847ed7a3c9c1fcc2","ssdeep":"","tlshash":"3351be91046ba508db870dc212ce7e32ff1f629464559935affe14c8bc97c699361b0d","first_seen":"2024-10-26T10:59:15.167378Z","last_seen":"2025-09-16T20:30:13.014053Z","times_seen":901,"resource_available":false,"data":null}},"time_used":31,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":31,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fonts.googleapis.com/css2?family=Manrope:wght@300;600\u0026display=swap","fqdn":"fonts.googleapis.com","domain":"fonts.googleapis.com","tld":"googleapis.com"},"ip":{"addr":"142.250.178.74","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://www.omb100.com/us/office/login?redir=%2Fus%2Foffice","date":"2025-09-01T22:11:10.863Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"upload.video.google.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 11 Aug 2025 19:22:25 GMT","end":"Mon, 03 Nov 2025 19:22:24 GMT"},"fingerprint":{"sha1":"05:AF:87:21:D4:6B:A6:86:ED:A7:D2:07:92:06:E4:D4:79:84:27:E8","sha256":"F6:EC:75:67:99:66:34:CC:0C:0F:9D:D7:8B:6A:04:94:98:0C:7B:B5:47:E2:47:37:A6:F8:E2:08:99:72:AB:BE"}}},"request":{"raw":"GET /css2?family=Manrope:wght@300;600\u0026display=swap HTTP/1.1\r\nHost: fonts.googleapis.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.omb100.com/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: text/css; charset=utf-8\r\nvary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site\r\naccess-control-allow-origin: *\r\ntiming-allow-origin: *\r\nlink: \u003chttps://fonts.gstatic.com\u003e; rel=preconnect; crossorigin\r\nstrict-transport-security: max-age=31536000\r\nexpires: Mon, 01 Sep 2025 22:11:10 GMT\r\ndate: Mon, 01 Sep 2025 22:11:10 GMT\r\ncache-control: private, max-age=86400\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin-allow-popups\r\ncontent-encoding: gzip\r\nserver: ESF\r\nx-xss-protection: 0\r\nx-frame-options: SAMEORIGIN\r\nx-content-type-options: nosniff\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":4288,"size_decoded":0,"mime_type":"text/css; charset=utf-8","magic":"ASCII text","md5":"8e8307b7513ec926b6afe5d7f525f0f2","sha1":"761f90f2b3299ae911902a95fe308aa0f901eb96","sha256":"3ce405f8986002eff99115fa9fecf44e89689f579eeb20558c9285f6a1d4fc48","sha512":"66dcd32f6e496955051e45996403dbc2915cac170fd34f8ceaf30703f1ba27a7d394263e8874a82d782ed992c2e3ec8ac1e1fb047d9ba1d27c0dd34fe565f99a","ssdeep":"96:cO1a5sO1a7FZvO1al3ZO1apO1aoJc+u1O1a9NlOxMa5sOxMa7FZvOxMal3ZOxMaQ:S5ipl3PfMwo5l+l3McMb8","tlshash":"6091ab90001be844ef470cc57bce7e29ad5ea1567451c5ba5bfe18d8ad9bd222320b1e","first_seen":"2025-06-13T16:43:44.131925Z","last_seen":"2025-09-04T05:12:55.873475Z","times_seen":18,"resource_available":false,"data":null}},"time_used":33,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":33,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fonts.googleapis.com/css2?family=Manrope:wght@400;700;800\u0026family=Roboto\u0026display=swap","fqdn":"fonts.googleapis.com","domain":"fonts.googleapis.com","tld":"googleapis.com"},"ip":{"addr":"142.250.178.74","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://www.omb100.com/us/office/login?redir=%2Fus%2Foffice","date":"2025-09-01T22:11:10.865Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"upload.video.google.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 11 Aug 2025 19:22:25 GMT","end":"Mon, 03 Nov 2025 19:22:24 GMT"},"fingerprint":{"sha1":"05:AF:87:21:D4:6B:A6:86:ED:A7:D2:07:92:06:E4:D4:79:84:27:E8","sha256":"F6:EC:75:67:99:66:34:CC:0C:0F:9D:D7:8B:6A:04:94:98:0C:7B:B5:47:E2:47:37:A6:F8:E2:08:99:72:AB:BE"}}},"request":{"raw":"GET /css2?family=Manrope:wght@400;700;800\u0026family=Roboto\u0026display=swap HTTP/1.1\r\nHost: fonts.googleapis.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.omb100.com/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: text/css; charset=utf-8\r\nvary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site\r\naccess-control-allow-origin: *\r\ntiming-allow-origin: *\r\nlink: \u003chttps://fonts.gstatic.com\u003e; rel=preconnect; crossorigin\r\nstrict-transport-security: max-age=31536000\r\nexpires: Mon, 01 Sep 2025 22:11:10 GMT\r\ndate: Mon, 01 Sep 2025 22:11:10 GMT\r\ncache-control: private, max-age=86400\r\ncross-origin-opener-policy: same-origin-allow-popups\r\ncross-origin-resource-policy: cross-origin\r\ncontent-encoding: gzip\r\nserver: ESF\r\nx-xss-protection: 0\r\nx-frame-options: SAMEORIGIN\r\nx-content-type-options: nosniff\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":12178,"size_decoded":0,"mime_type":"text/css; charset=utf-8","magic":"ASCII text, with very long lines (1572)","md5":"655410191bdf53a62c1e486c5a60298f","sha1":"f866795117523437e1b73c0805126c23a9df9925","sha256":"1f00a425a5374fcb7f0e00dfd68a20775735196b16316704f8a9591d2514852d","sha512":"8e0560b365646f07463770b14b129d4ef916c8dd7b81eeed4f5442568f435c22d25804576558724b499d9157426c62584f904fdab432a263719ed5a5b0d49eee","ssdeep":"192:z5D0l3WmM9v5G9l3TjM0e5HIl36KMhNNOmN3NiN2kNmqbN4bqGIwV4BNcNMwN9:twa2QQeOM94tZhUqY4Xqv9","tlshash":"d1420d90001b9440db874cd237ce7e39fe1ea2557041d0baabfd1a9aeddbd22636471e","first_seen":"2025-06-13T16:43:44.134138Z","last_seen":"2025-09-04T05:12:55.881069Z","times_seen":16,"resource_available":false,"data":null}},"time_used":36,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":36,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdnjs.cloudflare.com/ajax/libs/crypto-js/4.0.0/crypto-js.min.js?v=0.5672826909856402","fqdn":"cdnjs.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.17.24.14","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://www.omb100.com/us/office/login?redir=%2Fus%2Foffice","date":"2025-09-01T22:11:12.390Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"cdnjs.cloudflare.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sun, 20 Jul 2025 17:08:10 GMT","end":"Sat, 18 Oct 2025 18:08:03 GMT"},"fingerprint":{"sha1":"66:D5:51:E0:8E:D7:2C:D1:E3:98:58:99:22:9B:73:C4:6F:32:FD:EC","sha256":"52:CD:3D:83:E5:5A:57:37:9F:D9:0B:EB:C3:EA:67:B7:4C:F1:74:93:B7:C9:E8:0B:E3:E8:CB:2E:7A:94:A2:78"}}},"request":{"raw":"GET /ajax/libs/crypto-js/4.0.0/crypto-js.min.js?v=0.5672826909856402 HTTP/1.1\r\nHost: cdnjs.cloudflare.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.omb100.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Mon, 01 Sep 2025 22:11:12 GMT\r\ncontent-type: application/javascript; charset=utf-8\r\ncontent-length: 14107\r\ncf-ray: 97881a227a33569d-OSL\r\naccess-control-allow-origin: *\r\ncache-control: public, max-age=30672000\r\ncontent-encoding: br\r\netag: \"5eb03e2d-bb78\"\r\nlast-modified: Mon, 04 May 2020 16:09:17 GMT\r\ncf-cdnjs-via: cfworker/kv\r\ncross-origin-resource-policy: cross-origin\r\ntiming-allow-origin: *\r\nx-content-type-options: nosniff\r\nvary: Accept-Encoding\r\ncf-cache-status: HIT\r\nage: 321806\r\nexpires: Sat, 22 Aug 2026 22:11:12 GMT\r\naccept-ranges: bytes\r\npriority: u=3,i=?0\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v4?s=jFYjHas%2FFtCxOW0gNjS0SmHHCIVummbTtwBn4h%2F76PEj1DFkqJUB%2BqIzC3y1EO2ULBEnLcoi4fcaGR60vd%2B8%2Bx2DYLtgF6bw2psVvupwIsYrftkkwockZN2wP%2BOPa0Ihi2eneqDJ\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0.01,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nstrict-transport-security: max-age=15780000\r\nserver: cloudflare\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":47992,"size_decoded":0,"mime_type":"application/javascript; charset=utf-8","magic":"JavaScript source, ASCII text, with very long lines (47992), with no line terminators","md5":"cf3402d7483b127ded4069d651ea4a22","sha1":"bde186152457cacf9c35477b5bdda5bcb56b1f45","sha256":"eab5d90a71736f267af39fdf32caa8c71673fd06703279b01e0f92b0d7be0bfc","sha512":"9ce42ebc3f672a2aefc4376f43d38ca9ed9d81aa5b3c1eef60032bcc98a1c399be68d71fd1d5f9de6e98c4ce0b800f6ef1ef5e83d417fbffa63eef2408da55d8","ssdeep":"768:LuxoaUN4+OIhwP53+e0QfA31jQM9OT81NHv4rnwfe:LuxoaU2+LwB2+G1ZdvCwfe","tlshash":"9c231bc1a19c219152a774d0093f7107b463353a460ed5acf668e9eeecbcaea903dd7c","first_seen":"2023-03-07T12:04:24Z","last_seen":"2026-05-31T17:27:41.945908Z","times_seen":76567,"resource_available":true,"data":null}},"time_used":15,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":13,"receive":2,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"mboss.ogxcursos.com.br/","fqdn":"mboss.ogxcursos.com.br","domain":"ogxcursos.com.br","tld":"com.br"},"ip":{"addr":"69.60.99.95","port":80,"asn":15083,"as":"INFOLINK-MIA","country":"United States","country_code":"US"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2025-09-01T22:11:08.107Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET / HTTP/1.1\r\nHost: mboss.ogxcursos.com.br\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nUpgrade-Insecure-Requests: 1\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Mon, 01 Sep 2025 22:10:51 GMT\r\nContent-Type: text/html\r\nContent-Length: 682\r\nLast-Modified: Fri, 28 Oct 2022 23:43:58 GMT\r\nConnection: keep-alive\r\nETag: \"635c693e-2aa\"\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":682,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, ASCII text","md5":"150a2dc6ba35b2d8d8741b435ebf9350","sha1":"69a95b6ca2ce2895ac1d77f6a6173712f9e9bc40","sha256":"851245b79f3a33f85f989c4f0f78c25cfa99ad759f4adceb5ddb13dfcd923f7d","sha512":"75f4e41b7881875547222c15c63b4b2605d3986ff23e82fb0cc93b92637d9ba07f47e62ab7cfbe18ef6d2f49ee0fe87d38f9f9ed4de18dff09ae7808571aca9a","ssdeep":"","tlshash":"c801498e1da0737014814842eceabe50fd13c4960515e478fc5c665c5fc864a75afa9d","first_seen":"2023-05-22T07:52:58Z","last_seen":"2026-03-23T23:17:04.997003Z","times_seen":52,"resource_available":true,"data":null}},"time_used":377,"timings":{"blocked":124,"dns":1,"connect":126,"send":0,"wait":126,"receive":0,"ssl":0},"alerts":{"ids":[{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2025-09-01T22:11:18Z","timestamp":1756764678,"ip_dst":{"addr":"172.18.0.17","port":52448,"asn":0,"as":"","country":"","country_code":"zz"},"ip_src":{"addr":"69.60.99.95","port":80,"asn":15083,"as":"INFOLINK-MIA","country":"United States","country_code":"US"},"severity":"medium","alert":"ET PHISHING Possible Phishing Redirect Dec 13 2016","source":"{\"timestamp\":\"2025-09-01T22:11:18.489944+0000\",\"flow_id\":1561126558800047,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"69.60.99.95\",\"src_port\":80,\"dest_ip\":\"172.18.0.17\",\"dest_port\":52448,\"proto\":\"TCP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2023638,\"rev\":5,\"signature\":\"ET PHISHING Possible Phishing Redirect Dec 13 2016\",\"category\":\"Possible Social Engineering Attempted\",\"severity\":2,\"metadata\":{\"affected_product\":[\"Web_Browsers\"],\"attack_target\":[\"Client_Endpoint\"],\"confidence\":[\"Medium\"],\"created_at\":[\"2016_12_13\"],\"deployment\":[\"Perimeter\"],\"mitre_tactic_id\":[\"TA0001\"],\"mitre_tactic_name\":[\"Initial_Access\"],\"mitre_technique_id\":[\"T1566\"],\"mitre_technique_name\":[\"Phishing\"],\"signature_severity\":[\"Critical\"],\"tag\":[\"Phishing\"],\"updated_at\":[\"2020_08_24\"]}},\"http\":{\"hostname\":\"mboss.ogxcursos.com.br\",\"url\":\"/\",\"http_user_agent\":\"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\",\"http_content_type\":\"text/html\",\"http_method\":\"GET\",\"protocol\":\"HTTP/1.1\",\"status\":200,\"length\":682},\"files\":[{\"filename\":\"/\",\"sid\":[],\"gaps\":false,\"state\":\"CLOSED\",\"stored\":false,\"size\":682,\"tx_id\":0}],\"app_proto\":\"http\",\"flow\":{\"pkts_toserver\":5,\"pkts_toclient\":4,\"bytes_toserver\":745,\"bytes_toclient\":1185,\"start\":\"2025-09-01T22:11:08.104623+0000\"}}"}],"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.omb100.com/internacional/public/mix/office/js/office.js?id=43ba4ee4934e5c8b2ede\u0026v=6.0.9512","fqdn":"www.omb100.com","domain":"omb100.com","tld":"com"},"ip":{"addr":"64.251.28.130","port":443,"asn":15083,"as":"INFOLINK-MIA","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://www.omb100.com/us/office/login?redir=%2Fus%2Foffice","date":"2025-09-01T22:11:10.707Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"omb100.com","organization":""},"issuer":{"commonName":"R10","organization":"Let's Encrypt"},"validity":{"start":"Sat, 19 Jul 2025 11:30:31 GMT","end":"Fri, 17 Oct 2025 11:30:30 GMT"},"fingerprint":{"sha1":"83:0B:AE:40:4F:2B:48:FF:F9:6D:90:CC:D2:57:2B:FC:3B:EA:FF:32","sha256":"92:89:DF:29:B2:79:1D:DC:82:EB:9F:C6:78:97:A5:D0:56:B6:4F:BB:ED:41:66:3D:21:20:76:48:D6:F4:DA:DE"}}},"request":{"raw":"GET /internacional/public/mix/office/js/office.js?id=43ba4ee4934e5c8b2ede\u0026v=6.0.9512 HTTP/1.1\r\nHost: www.omb100.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.omb100.com/us/office/login?redir=%2Fus%2Foffice\r\nCookie: DAY_OMB=20250901; PHPSESSID=q5cpf2gsgtf4ggfps60trmhiek; OTRK_DAY_OMB=20250901\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Mon, 01 Sep 2025 22:11:10 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Fri, 29 Aug 2025 17:28:14 GMT\r\nvary: Accept-Encoding\r\netag: W/\"68b1e32e-58423c\"\r\nexpires: Wed, 01 Oct 2025 22:11:10 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000; includeSubDomains\r\nx-frame-options: ALLOW\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":5784124,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (63956), with no line terminators","md5":"302974c3e1e88e04e4764e6e782191ad","sha1":"aa1b62e8cdbbebfaa7d6aa5b737320ef271ac82f","sha256":"1e98d30b00ebc747705e4357fe229a9ecb9bb6f47ded4b0ae3b9b6bad449972c","sha512":"9fcb1d857334093aae39e771b88d2552c494aa13c22e8a63372b0f2c6ed4b38a98e398a9af11517f6135cc9404ee6ff44668371aba719f012888e28250133049","ssdeep":"12288:l1xizBnm7SUzX3SatqX6GxEpLYwBqSNK8tNG0gUd1mFBaPI+YSanwrGF1Z48L4Zg:IeSUi1Z43+tl","tlshash":"b125e52ab87c106641ffc4a334db2f3b60399172800925e4a5bd665ccbd79a233fb759","first_seen":"2025-09-01T22:11:16.663416Z","last_seen":"2025-09-01T22:11:36.559412Z","times_seen":2,"resource_available":false,"data":null}},"time_used":244,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":244,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"office.builderall.com/internacional/public/franchise/logo/logo-28600-1396.png","fqdn":"office.builderall.com","domain":"builderall.com","tld":"com"},"ip":{"addr":"104.20.28.143","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.omb100.com/us/office/login?redir=%2Fus%2Foffice","date":"2025-09-01T22:11:12.089Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"builderall.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Mon, 04 Aug 2025 07:17:47 GMT","end":"Sun, 02 Nov 2025 08:17:30 GMT"},"fingerprint":{"sha1":"43:C0:D6:26:50:41:8D:E4:F2:F6:84:69:F2:48:5A:14:F8:1C:C1:21","sha256":"1C:9C:75:4F:91:A9:4E:E4:71:02:73:3B:FB:9C:4E:C6:35:5A:C6:64:22:90:99:E5:DD:DD:AF:E6:84:5F:B6:87"}}},"request":{"raw":"GET /internacional/public/franchise/logo/logo-28600-1396.png HTTP/1.1\r\nHost: office.builderall.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.omb100.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Mon, 01 Sep 2025 22:11:12 GMT\r\ncontent-type: image/png\r\ncontent-length: 42602\r\nlast-modified: Fri, 07 Oct 2016 13:26:17 GMT\r\netag: \"57f7a279-a66a\"\r\nexpires: Wed, 01 Oct 2025 22:10:52 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=2592000; includeSubDomains; preload\r\nx-frame-options: ALLOW\r\naccept-ranges: bytes\r\nage: 19\r\ncf-cache-status: HIT\r\nvary: accept-encoding\r\nx-content-type-options: nosniff\r\nserver: cloudflare\r\ncf-ray: 97881a20bdd256c9-OSL\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":42602,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 500 x 160, 8-bit/color RGBA, non-interlaced","md5":"d5c9c4071707481c67b60a3946026560","sha1":"23d36ae6a230f3b0d5d40a259752679f8fe65122","sha256":"c4cd5a8e096a6364fd9ff9f50ece54d0db0b4846ead80c82e59f4e450ee766d7","sha512":"3fa49ba1e5c1fb07a86b3a5fa4fa800c3f0dcfe2b6dc8d8701f7581a690302b7b6155c1a6d53200e3862e505d1e009108d3348532cedec0505047a374b6ebf7d","ssdeep":"768:6QAEp6x0a5u8BFCbmf/+wWiOHn0eCBvgtW3c4EYtutQuz:6QeFuqQmf3WA3c45vS","tlshash":"5d13e1991bdf69ae9f8f5250e9d842106852cae63a70878cf4c411eb8f138361deddc8","first_seen":"2024-09-19T21:11:22.453125Z","last_seen":"2026-03-23T00:22:50.082326Z","times_seen":46,"resource_available":false,"data":null}},"time_used":64,"timings":{"blocked":24,"dns":1,"connect":1,"send":0,"wait":14,"receive":2,"ssl":19},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fonts.gstatic.com/s/manrope/v19/xn7gYHE41ni1AdIRggexSg.woff2","fqdn":"fonts.gstatic.com","domain":"gstatic.com","tld":"com"},"ip":{"addr":"142.250.74.35","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://www.omb100.com/us/office/login?redir=%2Fus%2Foffice","date":"2025-09-01T22:11:12.113Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.gstatic.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 11 Aug 2025 19:22:25 GMT","end":"Mon, 03 Nov 2025 19:22:24 GMT"},"fingerprint":{"sha1":"F5:9E:5D:EB:46:9B:ED:9F:D2:D7:E8:D1:06:43:DF:9D:0C:13:7E:75","sha256":"AA:C4:C0:AF:38:AE:91:75:3F:86:CE:32:70:A9:8F:C4:2F:7F:D2:28:D1:34:AD:0A:C8:E2:6C:6E:4D:46:72:23"}}},"request":{"raw":"GET /s/manrope/v19/xn7gYHE41ni1AdIRggexSg.woff2 HTTP/1.1\r\nHost: fonts.gstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nOrigin: https://www.omb100.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fonts.googleapis.com/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"apps-themes\"\r\nreport-to: {\"group\":\"apps-themes\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/apps-themes\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 24836\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Fri, 29 Aug 2025 01:01:21 GMT\r\nexpires: Sat, 29 Aug 2026 01:01:21 GMT\r\ncache-control: public, max-age=31536000\r\nlast-modified: Thu, 29 May 2025 18:59:17 GMT\r\ncontent-type: font/woff2\r\nage: 335391\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":24836,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 24836, version 1.0","md5":"938c6e8019b69313372c47dbb7a7c930","sha1":"b42951014c5eca12749d87a4706caf22dc4fe081","sha256":"a30ddcd349703aff7464c34bef3fffdff405ee50c113440d7c8693c02d210972","sha512":"5537c005cd8f321f26fe67f6292b3ec14e88ff4b2365311628dbbe4753e01e568f6881b9f2e7d71e8e6b2c261ed25f372829dd28f89f865ce574b4e1fec29614","ssdeep":"768:3KQaj5c95F1QmIwa55Go1COpZLpkkM46CU+YIC:ahj5cXow65xCM5pkkM468YB","tlshash":"a2b2f105ee49b3d4b276f1fcfa802884179282f27dabda8f3f2015981dd8e5b8d45320","first_seen":"2025-06-02T20:09:41.98255Z","last_seen":"2026-05-31T18:21:06.902219Z","times_seen":25949,"resource_available":false,"data":null}},"time_used":198,"timings":{"blocked":91,"dns":5,"connect":9,"send":0,"wait":8,"receive":6,"ssl":76},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdn.linearicons.com/free/1.0.0/icon-font.min.css","fqdn":"cdn.linearicons.com","domain":"linearicons.com","tld":"com"},"ip":{"addr":"138.199.37.227","port":443,"asn":60068,"as":"Datacamp Limited","country":"Germany","country_code":"DE"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://www.omb100.com/us/office/login?redir=%2Fus%2Foffice","date":"2025-09-01T22:11:10.686Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"cdn.linearicons.com","organization":""},"issuer":{"commonName":"R10","organization":"Let's Encrypt"},"validity":{"start":"Thu, 14 Aug 2025 18:11:19 GMT","end":"Wed, 12 Nov 2025 18:11:18 GMT"},"fingerprint":{"sha1":"28:93:33:24:0E:D0:E1:85:37:86:36:09:4D:6F:74:4F:07:2B:82:0C","sha256":"7D:4B:A3:31:13:ED:59:15:AF:BF:A8:9C:75:64:A3:2C:E6:2F:89:90:A0:BE:1B:12:54:FB:B7:E9:DC:4E:7D:6E"}}},"request":{"raw":"GET /free/1.0.0/icon-font.min.css HTTP/1.1\r\nHost: cdn.linearicons.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.omb100.com/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Mon, 01 Sep 2025 22:11:10 GMT\r\ncontent-type: text/css\r\nserver: BunnyCDN-DE1-860\r\ncdn-pullzone: 1459430\r\ncdn-uid: dd4aa74a-23b0-4a02-a963-0a23a001f729\r\ncdn-requestcountrycode: NO\r\nvary: Accept-Encoding\r\naccess-control-allow-origin: *\r\naccess-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match\r\naccess-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match\r\ncache-control: public, max-age=31919000\r\ncontent-encoding: br\r\netag: W/\"ec26292e52e5bc20624b029974bd0adf\"\r\nlast-modified: Wed, 07 Jun 2023 23:52:14 GMT\r\ncdn-cachedat: 10/31/2023 18:48:38\r\ncdn-proxyver: 1.04\r\ncdn-requestpullcode: 200\r\ncdn-requestpullsuccess: True\r\ncdn-edgestorageid: 722\r\ncdn-status: 200\r\ncdn-requestid: 8041d4cf2819847d109682fc831dcf07\r\ncdn-cache: HIT\r\ncdn-requesttime: 0\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Bunny","description":"","website":"https://bunny.net","common_platform_enumeration":"","icon":"Bunny.svg","categories":["CDN"]}],"data":{"size":7354,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (7191)","md5":"ec26292e52e5bc20624b029974bd0adf","sha1":"3756375bb053b0f3f62303597d844f70cef1b5e0","sha256":"31ca8fc4bb190118851959f282909af4a8f6e782b69dcfbe00094ffc010878b3","sha512":"282b62aa79bd9b407cd3241be6629e8aca4f19331ecbf33a6d3c7fa7dea507ed507a729eaecea7f519b6967387bb97f3af0a3f6fe803d9f418441b9cf7a7820e","ssdeep":"96:udwakAhvZFamB/0/Q5pcK2kb2IYT4naMq4kIaVBX1j2qLQ:udwabhvZFdBhocqIYT4faVBX11k","tlshash":"3ae1ece6e44964ccb7b1c813b389a78964eab134d9410e52f45fb51e2cf126b2ec4f78","first_seen":"2023-04-05T15:00:08Z","last_seen":"2026-05-31T16:46:28.471632Z","times_seen":2344,"resource_available":false,"data":null}},"time_used":126,"timings":{"blocked":45,"dns":0,"connect":24,"send":0,"wait":26,"receive":0,"ssl":26},"alerts":{"ids":null,"analyzer":null,"urlquery":null}}]}