{"report_id":"6a43f221-5298-47d3-8d17-47eae1231eb4","version":6,"status":"done","tags":[],"date":"2025-10-07T02:53:11Z","url":{"schema":"https","addr":"gilwell.co.za/mailtap-securemx-jp/evs.html#test@test.jp","fqdn":"gilwell.co.za","domain":"gilwell.co.za","tld":"co.za"},"ip":{"addr":"196.41.127.164","port":0,"asn":36874,"as":"Cybersmart","country":"South Africa","country_code":"ZA"},"final":{"url":{"schema":"https","addr":"provale.com.br/mailtap-securemx-jp/laocoon/autth/#test@test.jp","fqdn":"provale.com.br","domain":"provale.com.br","tld":"com.br"},"title":"IIJ SecureMX Service"},"submit":{"url":{"schema":"https","addr":"gilwell.co.za/mailtap-securemx-jp/evs.html#test@test.jp","fqdn":"gilwell.co.za","domain":"gilwell.co.za","tld":"co.za"},"ip":{"addr":"196.41.127.164","port":0,"asn":36874,"as":"Cybersmart","country":"South Africa","country_code":"ZA"},"tags":null,"meta":null,"user":{"user_id":"akbkyowd9geqr98"}},"settings":{"access":"public","device_type":"desktop","expires_at":"2026-11-11T02:53:11Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":0}},"detection":{"ids":null,"analyzer":null,"urlquery":null},"summary":[{"fqdn":"provale.com.br","ip":{"addr":"108.167.171.37","port":443,"asn":19871,"as":"NETWORK-SOLUTIONS-HOSTING","country":"United States","country_code":"US"},"domain_registered":"1996-05-03","domain_rank":334540,"first_seen":"2012-08-08T21:41:36Z","last_seen":"2025-10-07T01:57:28.454765Z","alert_count":0,"request_count":4,"received_data":19649,"sent_data":2140,"comment":"","tags":null,"fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]},{"name":"Google Hosted Libraries","description":"Google Hosted Libraries is a stable, reliable, high-speed, globally available content distribution network for the most popular, open-source JavaScript libraries.","website":"https://developers.google.com/speed/libraries","common_platform_enumeration":"","icon":"Google Developers.svg","categories":["CDN"]},{"name":"jQuery:3.6.1","description":"jQuery is a JavaScript library which is a free, open-source software designed to simplify HTML DOM tree traversal and manipulation, as well as event handling, CSS animation, and Ajax.","website":"https://jquery.com","common_platform_enumeration":"cpe:2.3:a:jquery:jquery:*:*:*:*:*:*:*:*","icon":"jQuery.svg","categories":["JavaScript libraries"]}]},{"fqdn":"ajax.googleapis.com","ip":{"addr":"142.250.74.106","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"2005-01-25","domain_rank":3691,"first_seen":"2012-05-22T10:38:03Z","last_seen":"2025-10-05T22:17:33.15614Z","alert_count":0,"request_count":1,"received_data":90650,"sent_data":443,"comment":"","tags":null,"fingerprints":null},{"fqdn":"cdnjs.cloudflare.com","ip":{"addr":"104.17.25.14","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2009-02-17","domain_rank":1222,"first_seen":"2012-05-23T12:49:49Z","last_seen":"2025-10-05T22:15:09.164871Z","alert_count":0,"request_count":1,"received_data":103234,"sent_data":461,"comment":"","tags":null,"fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]},{"fqdn":"mailtap.securemx.jp","ip":{"addr":"210.130.202.78","port":443,"asn":2497,"as":"Internet Initiative Japan Inc.","country":"Japan","country_code":"JP"},"domain_registered":"2006-08-08","domain_rank":1147691,"first_seen":"2024-10-21T01:51:42.76972Z","last_seen":"2025-10-07T01:57:28.454696Z","alert_count":0,"request_count":3,"received_data":45586,"sent_data":1357,"comment":"","tags":null,"fingerprints":null},{"fqdn":"gilwell.co.za","ip":{"addr":"196.41.127.164","port":443,"asn":36874,"as":"Cybersmart","country":"South Africa","country_code":"ZA"},"domain_registered":"2019-04-27","domain_rank":0,"first_seen":"2025-06-04T19:52:29.889688Z","last_seen":"2025-10-07T01:55:54.690598Z","alert_count":0,"request_count":1,"received_data":647,"sent_data":510,"comment":"","tags":null,"fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":[{"sensor_name":"suricata","description":"Suricata /w Emerging Threats Pro","alerts":null}],"analyzer":null,"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"provale.com.br/mailtap-securemx-jp/laocoon/autth/#test@test.jp","fqdn":"provale.com.br","domain":"provale.com.br","tld":"com.br"},"ip":{"addr":"108.167.171.37","port":443,"asn":19871,"as":"NETWORK-SOLUTIONS-HOSTING","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":true,"md5":"1de3c316a6d363ab827271cda6ff54a9","sha1":"63e0f521ac5347107b911e308d64de3f9cc8fb7d","sha256":"a733f5b8e25b2501e1e94249d3217e4aefd4ecba56f846a7af0facd7a24c8196","sha512":"2717ca16fec0fbc665470880f26a3fdc7ec8c88c985fc26f16f698cc0283d164566828b8292bb27a051ad0d0043d80124d8f87c4fe0913acb76173f15b533f9d","ssdeep":"","tlshash":"d2a02280b30080a083238b28080c0a3030f002ca088bf022822a32b33e8c00e8203c3b","size":69,"data":"","first_seen":"2025-08-18T01:01:36.76759Z","last_seen":"2026-03-09T17:02:38.720678Z","times_seen":15,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"ajax.googleapis.com/ajax/libs/jquery/3.6.1/jquery.min.js","fqdn":"ajax.googleapis.com","domain":"ajax.googleapis.com","tld":"googleapis.com"},"ip":{"addr":"142.250.74.106","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"00727d1d5d9c90f7de826f1a4a9cc632","sha1":"ea61688671d0c3044f2c5b2f2c4af0a6620ac6c2","sha256":"a3cf00c109d907e543bc4f6dbc85eb31068f94515251347e9e57509b52ee3d74","sha512":"69528a4518bf43f615fb89a3a0a06c138c771fe0647a0a0cfde9b8e8d3650aa3539946000e305b78d79f371615ee0894a74571202b6a76b6ea53b89569e64d5c","ssdeep":"1536:SjjxXUHJnxDjoXEZxkMV4PYDt0zxxf6gP3f8cApoEGOzZTBvUsuy8WnKdXwhLQvg:SdeIygP3fulzcsz8jlvaDioQ47GKH","tlshash":"5393f8ddb2c6702247a770ba007f510bf236199d684d8450f269d8e9bc78a4e827bf7d","size":89664,"data":"","first_seen":"2023-03-07T01:28:27Z","last_seen":"2026-04-04T06:17:40.344257Z","times_seen":27617,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":null},"http":[{"url":{"schema":"https","addr":"provale.com.br/mailtap-securemx-jp/laocoon/autth/#test@test.jp","fqdn":"provale.com.br","domain":"provale.com.br","tld":"com.br"},"ip":{"addr":"108.167.171.37","port":443,"asn":19871,"as":"NETWORK-SOLUTIONS-HOSTING","country":"United States","country_code":"US"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2025-10-07T02:52:50.962Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"provale.com.br.delipedev.com.br","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sat, 27 Sep 2025 15:38:41 GMT","end":"Fri, 26 Dec 2025 15:38:40 GMT"},"fingerprint":{"sha1":"E4:DA:24:1B:7D:A3:7D:7E:EB:2E:4B:4E:25:05:1A:E2:C5:27:7F:AF","sha256":"C6:2F:C4:EA:B9:B2:D8:03:70:9C:02:34:F9:4A:C1:2A:74:5F:CE:30:14:4E:47:CE:F7:06:CF:85:E0:CD:EC:78"}}},"request":{"raw":"GET /mailtap-securemx-jp/laocoon/autth/ HTTP/1.1\r\nHost: provale.com.br\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://gilwell.co.za/\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nvary: Accept-Encoding\r\ncontent-encoding: gzip\r\ncontent-length: 96\r\ncontent-type: text/html; charset=UTF-8\r\ndate: Tue, 07 Oct 2025 02:52:51 GMT\r\nserver: Apache\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}],"data":{"size":86,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"HTML document, ASCII text, with no line terminators","md5":"04480637e1562133d43b158108000754","sha1":"a80248c88b2c7641271d78448d578c06e1be0b3e","sha256":"a664a3367159f2429e711558a64e15223b18073a58d29e714c2601e65486c989","sha512":"fc483b3df8e1be25be1d432d4f3e096dc718703b72c0b41e933b4e094ece0106ee8d21a7a2100edf50280dec571ed169f92e9ac8ea4352ea3659d143b68b7729","ssdeep":"","tlshash":"fea012806e00c05047524b141428952c24b40185084ae01141992163294c18e4d02c27","first_seen":"2025-08-18T01:01:36.748512Z","last_seen":"2026-03-09T17:02:38.712935Z","times_seen":23,"resource_available":true,"data":null}},"time_used":623,"timings":{"blocked":236,"dns":3,"connect":113,"send":0,"wait":151,"receive":0,"ssl":120},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"provale.com.br/favicon.ico","fqdn":"provale.com.br","domain":"provale.com.br","tld":"com.br"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://provale.com.br/mailtap-securemx-jp/laocoon/autth/#test@test.jp","date":"2025-10-07T02:52:51.377Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"provale.com.br.delipedev.com.br","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sat, 27 Sep 2025 15:38:41 GMT","end":"Fri, 26 Dec 2025 15:38:40 GMT"},"fingerprint":{"sha1":"E4:DA:24:1B:7D:A3:7D:7E:EB:2E:4B:4E:25:05:1A:E2:C5:27:7F:AF","sha256":"C6:2F:C4:EA:B9:B2:D8:03:70:9C:02:34:F9:4A:C1:2A:74:5F:CE:30:14:4E:47:CE:F7:06:CF:85:E0:CD:EC:78"}}},"request":{"raw":"GET /favicon.ico HTTP/1.1\r\nHost: provale.com.br\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://provale.com.br/mailtap-securemx-jp/laocoon/autth/\r\nCookie: js_challenge_passed=true\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-04T07:46:07.547347Z","times_seen":13322606,"resource_available":true,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"provale.com.br/mailtap-securemx-jp/laocoon/autth/#test@test.jp","fqdn":"provale.com.br","domain":"provale.com.br","tld":"com.br"},"ip":{"addr":"108.167.171.37","port":443,"asn":19871,"as":"NETWORK-SOLUTIONS-HOSTING","country":"United States","country_code":"US"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2025-10-07T02:52:51.382Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"provale.com.br.delipedev.com.br","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sat, 27 Sep 2025 15:38:41 GMT","end":"Fri, 26 Dec 2025 15:38:40 GMT"},"fingerprint":{"sha1":"E4:DA:24:1B:7D:A3:7D:7E:EB:2E:4B:4E:25:05:1A:E2:C5:27:7F:AF","sha256":"C6:2F:C4:EA:B9:B2:D8:03:70:9C:02:34:F9:4A:C1:2A:74:5F:CE:30:14:4E:47:CE:F7:06:CF:85:E0:CD:EC:78"}}},"request":{"raw":"GET /mailtap-securemx-jp/laocoon/autth/ HTTP/1.1\r\nHost: provale.com.br\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://gilwell.co.za/\r\nDNT: 1\r\nConnection: keep-alive\r\nCookie: js_challenge_passed=true\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nvary: Accept-Encoding\r\ncontent-encoding: gzip\r\ncontent-length: 2474\r\ncontent-type: text/html; charset=UTF-8\r\ndate: Tue, 07 Oct 2025 02:52:51 GMT\r\nserver: Apache\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]},{"name":"Google Hosted Libraries","description":"Google Hosted Libraries is a stable, reliable, high-speed, globally available content distribution network for the most popular, open-source JavaScript libraries.","website":"https://developers.google.com/speed/libraries","common_platform_enumeration":"","icon":"Google Developers.svg","categories":["CDN"]},{"name":"jQuery:3.6.1","description":"jQuery is a JavaScript library which is a free, open-source software designed to simplify HTML DOM tree traversal and manipulation, as well as event handling, CSS animation, and Ajax.","website":"https://jquery.com","common_platform_enumeration":"cpe:2.3:a:jquery:jquery:*:*:*:*:*:*:*:*","icon":"jQuery.svg","categories":["JavaScript libraries"]}],"data":{"size":7092,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"HTML document, Unicode text, UTF-8 text, with CRLF line terminators","md5":"798f4350fecbf81d13c455bbdbfe1bc4","sha1":"c8137704f448f99b598f63a19508a55855688dac","sha256":"ed211a162b4563c4e255e51a825992cf4386017d9103f2f7885b74f4bc4c7e81","sha512":"2d915e0ba58034195d751bdcebf9ddd60334483bcd0dc0562a19ea0feedcf4f60a3bd6c1d6ae18051818bd6f7b33a03d61bda93948e1fa472914ab9fd5594bd2","ssdeep":"96:BwCJddW9noHnkegbpB64o3kVXDc6uggc8BhXGVuAQU/JunT9U9zClxiV:OIdGnoHkfB64WIXDfgFXMP/oO9zClxiV","tlshash":"53e1974aa5440445b273e3b4bfb38305f5a251a34742c5547e9c67979fb9908cab3fcc","first_seen":"2025-08-18T01:01:36.751777Z","last_seen":"2025-10-07T02:53:18.553666Z","times_seen":5,"resource_available":false,"data":null}},"time_used":157,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":157,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"ajax.googleapis.com/ajax/libs/jquery/3.6.1/jquery.min.js","fqdn":"ajax.googleapis.com","domain":"ajax.googleapis.com","tld":"googleapis.com"},"ip":{"addr":"142.250.74.106","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://provale.com.br/mailtap-securemx-jp/laocoon/autth/#test@test.jp","date":"2025-10-07T02:52:51.551Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"upload.video.google.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 15 Sep 2025 08:36:13 GMT","end":"Mon, 08 Dec 2025 08:36:12 GMT"},"fingerprint":{"sha1":"54:09:EF:2E:96:03:5C:86:DF:F0:DA:AC:A6:7A:0D:35:49:4E:68:90","sha256":"0E:84:83:07:1D:C1:46:17:EB:EA:2F:15:CE:88:56:D2:FF:9E:AE:31:D2:C3:FC:DA:00:24:46:48:43:CD:11:1F"}}},"request":{"raw":"GET /ajax/libs/jquery/3.6.1/jquery.min.js HTTP/1.1\r\nHost: ajax.googleapis.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://provale.com.br/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\ncontent-encoding: gzip\r\naccess-control-allow-origin: *\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"hosted-libraries-pushers\"\r\nreport-to: {\"group\":\"hosted-libraries-pushers\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 31100\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Thu, 02 Oct 2025 12:39:32 GMT\r\nexpires: Fri, 02 Oct 2026 12:39:32 GMT\r\ncache-control: public, max-age=31536000, stale-while-revalidate=2592000\r\nage: 396799\r\nlast-modified: Thu, 08 Sep 2022 18:15:00 GMT\r\ncontent-type: text/javascript; charset=UTF-8\r\nvary: Accept-Encoding\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":89664,"size_decoded":0,"mime_type":"text/javascript; charset=UTF-8","magic":"JavaScript source, ASCII text, with very long lines (65447)","md5":"00727d1d5d9c90f7de826f1a4a9cc632","sha1":"ea61688671d0c3044f2c5b2f2c4af0a6620ac6c2","sha256":"a3cf00c109d907e543bc4f6dbc85eb31068f94515251347e9e57509b52ee3d74","sha512":"69528a4518bf43f615fb89a3a0a06c138c771fe0647a0a0cfde9b8e8d3650aa3539946000e305b78d79f371615ee0894a74571202b6a76b6ea53b89569e64d5c","ssdeep":"1536:SjjxXUHJnxDjoXEZxkMV4PYDt0zxxf6gP3f8cApoEGOzZTBvUsuy8WnKdXwhLQvg:SdeIygP3fulzcsz8jlvaDioQ47GKH","tlshash":"5393f8ddb2c6702247a770ba007f510bf236199d684d8450f269d8e9bc78a4e827bf7d","first_seen":"2023-03-07T01:28:27Z","last_seen":"2026-04-04T06:17:40.344257Z","times_seen":27617,"resource_available":true,"data":null}},"time_used":124,"timings":{"blocked":54,"dns":0,"connect":8,"send":0,"wait":9,"receive":7,"ssl":45},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdnjs.cloudflare.com/ajax/libs/font-awesome/6.4.2/css/all.min.css","fqdn":"cdnjs.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.17.25.14","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://provale.com.br/mailtap-securemx-jp/laocoon/autth/#test@test.jp","date":"2025-10-07T02:52:51.552Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"cdnjs.cloudflare.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Wed, 17 Sep 2025 19:09:23 GMT","end":"Tue, 16 Dec 2025 20:08:48 GMT"},"fingerprint":{"sha1":"E5:FA:6E:21:DA:AB:92:8F:E0:CB:31:C2:87:D4:E2:CE:9F:23:BF:C1","sha256":"E8:C7:D4:A8:29:E6:45:C0:C5:E3:AD:6A:90:36:30:4A:D7:2E:7C:F7:8F:57:44:E8:3B:2D:AF:F6:80:F7:4B:46"}}},"request":{"raw":"GET /ajax/libs/font-awesome/6.4.2/css/all.min.css HTTP/1.1\r\nHost: cdnjs.cloudflare.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: https://provale.com.br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Tue, 07 Oct 2025 02:52:51 GMT\r\ncontent-type: text/css; charset=utf-8\r\ncontent-length: 18778\r\ncf-ray: 98aa1ad64a74b28a-OSL\r\naccess-control-allow-origin: *\r\ncache-control: public, max-age=30672000\r\ncontent-encoding: br\r\netag: \"64cac444-495a\"\r\nlast-modified: Wed, 02 Aug 2023 21:01:56 GMT\r\ncf-cdnjs-via: cfworker/kv\r\ncross-origin-resource-policy: cross-origin\r\ntiming-allow-origin: *\r\nx-content-type-options: nosniff\r\nvary: Accept-Encoding\r\ncf-cache-status: HIT\r\nage: 251316\r\nexpires: Sun, 27 Sep 2026 02:52:51 GMT\r\naccept-ranges: bytes\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v4?s=b%2F1NzCbf%2FApXJMjCVZUjzMIx6zavSwIpnLV6MS8aueCZ%2FvNpeXX%2F%2BmMiyirkDR9I909%2BUVMEGmrpW%2FKO62od2%2BtrAgHv%2FJJT2IPSM7t1jCjKsZ0svqheXKSpcVjGgt3AdD9FSjt%2B\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0.01,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nstrict-transport-security: max-age=15780000\r\nserver: cloudflare\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":102217,"size_decoded":0,"mime_type":"text/css; charset=utf-8","magic":"ASCII text, with very long lines (52276)","md5":"5222e06b77a1692fa2520a219840e6be","sha1":"8b4236206a8b86af3761a244277663046d7ff7ee","sha256":"0934b1fc0d3a766d41d3adf5e7a115875e66e98ebba408d965a41cf3d2cb4ab5","sha512":"cf780ba5def29277f562835b0b3a9129ce2aca8afc81a294d6a9a7f824a1c5bb81bac00d23d42946884606b7821642b12e17a2e92f424171446db2aea8b8340c","ssdeep":"1536:0wMCMPMCMjMCM4MCMwMCM3sVMX709gbPMfjSFOTyPGuuprrlCq:M709gMGFiyPGuuprlCq","tlshash":"09a3a7f9e44c05d97732c44bab95b37c65b6f738d5810ca9f02f580c1ad26a822c6f7a","first_seen":"2023-08-04T22:28:10Z","last_seen":"2026-04-04T07:37:34.044853Z","times_seen":36057,"resource_available":false,"data":null}},"time_used":26,"timings":{"blocked":8,"dns":0,"connect":1,"send":0,"wait":9,"receive":0,"ssl":7},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"mailtap.securemx.jp/base/images/logo-securemx.png","fqdn":"mailtap.securemx.jp","domain":"securemx.jp","tld":"jp"},"ip":{"addr":"210.130.202.78","port":443,"asn":2497,"as":"Internet Initiative Japan Inc.","country":"Japan","country_code":"JP"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://provale.com.br/mailtap-securemx-jp/laocoon/autth/#test@test.jp","date":"2025-10-07T02:52:51.554Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.securemx.jp","organization":"Internet Initiative Japan Inc."},"issuer":{"commonName":"GlobalSign RSA OV SSL CA 2018","organization":"GlobalSign nv-sa"},"validity":{"start":"Tue, 30 Sep 2025 07:56:14 GMT","end":"Sun, 01 Nov 2026 07:56:13 GMT"},"fingerprint":{"sha1":"6A:CD:ED:26:CE:59:6D:22:7F:6D:3B:C5:9B:DA:9A:22:CB:57:A4:8E","sha256":"71:DE:5E:76:23:B2:30:79:D7:77:78:A9:6A:DB:61:D4:77:FE:B3:DE:35:6B:25:0B:3E:3E:67:09:3A:D6:BA:FD"}}},"request":{"raw":"GET /base/images/logo-securemx.png HTTP/1.1\r\nHost: mailtap.securemx.jp\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://provale.com.br/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Tue, 07 Oct 2025 02:52:52 GMT\r\nX-Frame-Options: SAMEORIGIN\r\nLast-Modified: Thu, 11 Jul 2024 10:51:48 GMT\r\nAccept-Ranges: bytes\r\nContent-Length: 13491\r\nCache-Control: max-age=2592000\r\nExpires: Thu, 06 Nov 2025 02:52:52 GMT\r\nKeep-Alive: timeout=5, max=100\r\nConnection: Keep-Alive\r\nContent-Type: image/png\r\nSet-Cookie: TS84cf60dd027=08de1d10d8ab2000ca707c4c94da1d2b9c87a1f519e25db4ec30c30fa7bd106c22ffa8adb96089f6080bcc99a611300095b8d13abf80550635932c47b9e6273b4d3f94efa671cd34bffc5a87f18a3c1d5fa086476649bcb4fc234e329a78c769; Path=/\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":13491,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 761 x 72, 8-bit/color RGBA, non-interlaced","md5":"bc67c2513063e987664a2a8ca3d69031","sha1":"9734fd7210855101a2f97d15a405984cf539f8d0","sha256":"bf1cd30f916e047d41c0b1f9960ce95e98e5885963940cf9ed4f09dd9d0236b8","sha512":"9c8352e5e5eb445b4790b9b375e7882c46e58abab8a0ec219921056abe5393d4cc9cbb1ae425d235c78d8c1e8c6faa561781bc389b67518fb3d8d18456ff5854","ssdeep":"384:WokDs4gztKl2GUlCEuNQPKx5y3BS4D7DQA/L4:WlDs4gztKgGLEuVn0I4DXzE","tlshash":"a352b0527108e140b563cd6b8ccb4bb634443b0b2f715202b29eee3e971c5f9b1e9597","first_seen":"2025-08-18T01:01:36.761527Z","last_seen":"2025-10-07T02:53:18.558919Z","times_seen":5,"resource_available":false,"data":null}},"time_used":2073,"timings":{"blocked":891,"dns":2,"connect":277,"send":0,"wait":289,"receive":0,"ssl":613},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"mailtap.securemx.jp/base/images/logo.png","fqdn":"mailtap.securemx.jp","domain":"securemx.jp","tld":"jp"},"ip":{"addr":"210.130.202.78","port":443,"asn":2497,"as":"Internet Initiative Japan Inc.","country":"Japan","country_code":"JP"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://provale.com.br/mailtap-securemx-jp/laocoon/autth/#test@test.jp","date":"2025-10-07T02:52:51.552Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.securemx.jp","organization":"Internet Initiative Japan Inc."},"issuer":{"commonName":"GlobalSign RSA OV SSL CA 2018","organization":"GlobalSign nv-sa"},"validity":{"start":"Tue, 30 Sep 2025 07:56:14 GMT","end":"Sun, 01 Nov 2026 07:56:13 GMT"},"fingerprint":{"sha1":"6A:CD:ED:26:CE:59:6D:22:7F:6D:3B:C5:9B:DA:9A:22:CB:57:A4:8E","sha256":"71:DE:5E:76:23:B2:30:79:D7:77:78:A9:6A:DB:61:D4:77:FE:B3:DE:35:6B:25:0B:3E:3E:67:09:3A:D6:BA:FD"}}},"request":{"raw":"GET /base/images/logo.png HTTP/1.1\r\nHost: mailtap.securemx.jp\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://provale.com.br/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Tue, 07 Oct 2025 02:52:52 GMT\r\nX-Frame-Options: SAMEORIGIN\r\nLast-Modified: Thu, 11 Jul 2024 10:51:48 GMT\r\nAccept-Ranges: bytes\r\nContent-Length: 28850\r\nCache-Control: max-age=2592000\r\nExpires: Thu, 06 Nov 2025 02:52:52 GMT\r\nKeep-Alive: timeout=5, max=100\r\nConnection: Keep-Alive\r\nContent-Type: image/png\r\nSet-Cookie: TS84cf60dd027=08de1d10d8ab2000a2eab71d5e1826931e8e6350e6c54d10e166171427d9b10acec8a78b48d979d708b225cea71130003e6c33fe6068fe8735932c47b9e6273b2abaf7b89a9cf6679664483d8a55bfc46ac6816e0fa326163fdcd5589b10db2f; Path=/\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":28850,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 521 x 72, 8-bit/color RGBA, non-interlaced","md5":"0b8e9829cdeffdbce7c3bfa8a2fc7e17","sha1":"51583d39b3e83426267617ddbc1160cee485616c","sha256":"4c14804c0b762d411196143dec8169c211956280f90f66b8c75021b969969fc6","sha512":"1c4ce06c93298e4bc027291f6ebb7d4103c76cb8581f781b370fa065afcad4b752cb377822203bf547ec7f8582b681d85233d715c858307de44629f422e9151c","ssdeep":"384:mwl2puEHgcpc7Hz5uVRHF0k/ETN0MVNmB/aVKBdp68Nl+1BWxeVrDXn5SBs4wMlr:y/AJcV5iwQN0MVLYDleDXnOnwMl4jrg","tlshash":"43d2e007787dca37c48b4d9c5b1bb3de28890434f906a66150082b7d7cf388b5366ada","first_seen":"2025-08-18T01:01:36.759021Z","last_seen":"2025-10-07T02:53:18.560245Z","times_seen":5,"resource_available":false,"data":null}},"time_used":2364,"timings":{"blocked":893,"dns":3,"connect":277,"send":0,"wait":299,"receive":277,"ssl":613},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"gilwell.co.za/mailtap-securemx-jp/evs.html#test@test.jp","fqdn":"gilwell.co.za","domain":"gilwell.co.za","tld":"co.za"},"ip":{"addr":"196.41.127.164","port":443,"asn":36874,"as":"Cybersmart","country":"South Africa","country_code":"ZA"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2025-10-07T02:52:50.290Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"gilwell.co.za","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 23 Sep 2025 00:33:14 GMT","end":"Mon, 22 Dec 2025 00:33:13 GMT"},"fingerprint":{"sha1":"31:DC:7C:BD:91:2C:68:CC:60:EE:14:EB:85:DF:BA:A4:21:74:F2:B9","sha256":"64:54:21:4F:0F:D2:D0:81:83:31:09:81:6E:CA:87:B1:CC:30:FF:8D:AA:9A:9C:CC:63:95:DB:1F:76:B6:0A:24"}}},"request":{"raw":"GET /mailtap-securemx-jp/evs.html HTTP/1.1\r\nHost: gilwell.co.za\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Tue, 07 Oct 2025 02:52:50 GMT\r\nServer: Apache\r\nLast-Modified: Tue, 07 Oct 2025 00:52:44 GMT\r\nAccept-Ranges: bytes\r\nContent-Length: 405\r\nKeep-Alive: timeout=5, max=100\r\nConnection: Keep-Alive\r\nContent-Type: text/html\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}],"data":{"size":405,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, ASCII text, with CRLF line terminators","md5":"7c1a2d11d2e7be49806572d69f403554","sha1":"f67bb0e1e6f5c24ec43f34aa938cf3d5ae2a664a","sha256":"1c314f5621d7736c71cdb36c139e1d0d6d4bd74a806fc11808bb8df48960d64c","sha512":"bd093c63bcf67ee9a208d6041933bca0d65c0e6b1106fa9938c859a536107911bbd8486ae1d7a8982f2b27e1523137235883a1071b0c261c8e2474d42553e051","ssdeep":"","tlshash":"28e02bc448a07470397010a43f6ab105e943194b1e81d204b68cf6272f70e45ad35cec","first_seen":"2025-10-07T01:55:55.447892Z","last_seen":"2025-10-07T02:53:18.56133Z","times_seen":3,"resource_available":false,"data":null}},"time_used":1022,"timings":{"blocked":404,"dns":0,"connect":205,"send":0,"wait":213,"receive":0,"ssl":200},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"mailtap.securemx.jp/base/images/iid-logo.png","fqdn":"mailtap.securemx.jp","domain":"securemx.jp","tld":"jp"},"ip":{"addr":"210.130.202.78","port":443,"asn":2497,"as":"Internet Initiative Japan Inc.","country":"Japan","country_code":"JP"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://provale.com.br/mailtap-securemx-jp/laocoon/autth/#test@test.jp","date":"2025-10-07T02:52:51.553Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.securemx.jp","organization":"Internet Initiative Japan Inc."},"issuer":{"commonName":"GlobalSign RSA OV SSL CA 2018","organization":"GlobalSign nv-sa"},"validity":{"start":"Tue, 30 Sep 2025 07:56:14 GMT","end":"Sun, 01 Nov 2026 07:56:13 GMT"},"fingerprint":{"sha1":"6A:CD:ED:26:CE:59:6D:22:7F:6D:3B:C5:9B:DA:9A:22:CB:57:A4:8E","sha256":"71:DE:5E:76:23:B2:30:79:D7:77:78:A9:6A:DB:61:D4:77:FE:B3:DE:35:6B:25:0B:3E:3E:67:09:3A:D6:BA:FD"}}},"request":{"raw":"GET /base/images/iid-logo.png HTTP/1.1\r\nHost: mailtap.securemx.jp\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://provale.com.br/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Tue, 07 Oct 2025 02:52:52 GMT\r\nX-Frame-Options: SAMEORIGIN\r\nLast-Modified: Thu, 11 Jul 2024 10:51:48 GMT\r\nAccept-Ranges: bytes\r\nContent-Length: 1575\r\nCache-Control: max-age=2592000\r\nExpires: Thu, 06 Nov 2025 02:52:52 GMT\r\nKeep-Alive: timeout=5, max=100\r\nConnection: Keep-Alive\r\nContent-Type: image/png\r\nSet-Cookie: TS84cf60dd027=08de1d10d8ab2000bd14e59a1c0ea013ff8888fde27002fa60fa8393524ab99abc46d8aa5b923fe908f294a4b51130000a08265cdf727e1235932c47b9e6273b89ac9dda0144e35ce8c72308a270c01faaa3d45c850129a95fa411cbf3891545; Path=/\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":1575,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 82 x 25, 8-bit/color RGBA, non-interlaced","md5":"79c4d83879faf74d305dd215915a3404","sha1":"11ba7b3251a943953f4d3541079bcd56f1f1b761","sha256":"4a24b7f9fd94d1869fe12a7275b268bc7d1d0017650d42c87086b70c64345ba1","sha512":"177484d2087ed6709a4aeebe82d86b79b770ae8f77f19a429f1180124c6ccd7e69a1c7043a62cbf29784dee3c0ec16f4d648386e45a04b1ad4df43b99816e0b5","ssdeep":"","tlshash":"9931c5abe8f35ae590e11ec8d89e114ce857a039b411f7094067282ae7ef265e56d207","first_seen":"2025-08-18T01:01:36.754537Z","last_seen":"2025-10-07T02:53:18.562461Z","times_seen":5,"resource_available":false,"data":null}},"time_used":2064,"timings":{"blocked":891,"dns":3,"connect":258,"send":0,"wait":279,"receive":0,"ssl":632},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"provale.com.br/favicon.ico","fqdn":"provale.com.br","domain":"provale.com.br","tld":"com.br"},"ip":{"addr":"108.167.171.37","port":443,"asn":19871,"as":"NETWORK-SOLUTIONS-HOSTING","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://provale.com.br/mailtap-securemx-jp/laocoon/autth/#test@test.jp","date":"2025-10-07T02:52:51.943Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"provale.com.br.delipedev.com.br","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sat, 27 Sep 2025 15:38:41 GMT","end":"Fri, 26 Dec 2025 15:38:40 GMT"},"fingerprint":{"sha1":"E4:DA:24:1B:7D:A3:7D:7E:EB:2E:4B:4E:25:05:1A:E2:C5:27:7F:AF","sha256":"C6:2F:C4:EA:B9:B2:D8:03:70:9C:02:34:F9:4A:C1:2A:74:5F:CE:30:14:4E:47:CE:F7:06:CF:85:E0:CD:EC:78"}}},"request":{"raw":"GET /favicon.ico HTTP/1.1\r\nHost: provale.com.br\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://provale.com.br/mailtap-securemx-jp/laocoon/autth/\r\nCookie: js_challenge_passed=true\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 404 Not Found\r\nlast-modified: Thu, 29 Sep 2022 21:55:04 GMT\r\naccept-ranges: bytes\r\nvary: Accept-Encoding\r\ncontent-encoding: gzip\r\ncontent-length: 4677\r\ncontent-type: text/html\r\ndate: Tue, 07 Oct 2025 02:52:52 GMT\r\nserver: Apache\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"404","status_text":"Not Found","fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}],"data":{"size":11816,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, ASCII text, with very long lines (358)","md5":"a8063bd37d3c8fb3176a6bf140558a4d","sha1":"e32cf4b407db3d3773ded13ff64b70fdbad7735f","sha256":"bccb23d41c2cc69cf0c7d22c4314ca8181a513c6999b73e45307792830f4e482","sha512":"82d749f6b17b21587fb345ca196a2aa83eca80ad66ed9c1ab88b36709bed14175d53afefe9acc0dafc4fad78ffb8df155193a6829bc857ad6d68b1c84af7b854","ssdeep":"192:bpvXn2H25Zx48DNYGu6C9tdDOxktft1zQOPtaUrzvHlPuPQXGuV27BHplXtAUU/s:FvX2H25v4CYn6etFTBvhtv4IcpRtlU/s","tlshash":"bd32940bab4c063b1312459a7458639a370fc87fe2661bb474bfc06867d16a649f23dc","first_seen":"2023-04-05T03:58:47Z","last_seen":"2026-04-04T03:26:47.753313Z","times_seen":14368,"resource_available":true,"data":null}},"time_used":120,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":120,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}}]}