{"report_id":"79574b6c-97ec-462e-b480-a9e64910fec4","version":0,"status":"done","tags":[],"date":"2026-06-22T10:17:57Z","url":{"schema":"http","addr":"mozdesign.com.br/454618e5/gmail","fqdn":"mozdesign.com.br","domain":"mozdesign.com.br","tld":"com.br"},"ip":{"addr":"162.241.203.81","port":0,"asn":19871,"as":"NETWORK-SOLUTIONS-HOSTING","country":"United States","country_code":"US"},"final":{"url":{"schema":"https","addr":"mozdesign.com.br/454618e5/gmail/","fqdn":"mozdesign.com.br","domain":"mozdesign.com.br","tld":"com.br"},"title":"Sign in – Google Accounts","dom":{"size":3105,"mime_type":"text/html; charset=utf-8","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (472)","md5":"9d2a51f52e13c4e53a451f936e18878a","sha1":"2c39f39677ecd906886ba0eb0142775df765231b","sha256":"3d76aad7fff21c14371f4b0415e318dd3039485c006a66f82c7f5c6bdc845149","sha512":"096930418f8f3f357509dc3ba4eb399f1e2ad7cdeb29e0b1485c34cbed360f2f09aeb45394525797a6e9191efc2f381152cd198c5ac6e6adafe37e49558defd1","ssdeep":"","tlshash":"5251b5a754b4001354a0c384f9fd729e2fdae49fbd06668871ec8b665fc2e92a807178","dom_hash":"domhash13ffed038b401024c03251d3b8bdee9c","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"http","addr":"mozdesign.com.br/454618e5/gmail","fqdn":"mozdesign.com.br","domain":"mozdesign.com.br","tld":"com.br"},"ip":{"addr":"162.241.203.81","port":0,"asn":19871,"as":"NETWORK-SOLUTIONS-HOSTING","country":"United States","country_code":"US"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-07-27T10:17:57Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"qguvgzjxzsgb3vs"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":1}},"detection":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-06-22","alert":"Sinkholed","trigger":"mozdesign.com.br","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null},"summary":[{"fqdn":"mozdesign.com.br","ip":{"addr":"162.241.203.81","port":443,"asn":19871,"as":"NETWORK-SOLUTIONS-HOSTING","country":"United States","country_code":"US"},"domain_registered":"2019-02-14","domain_rank":0,"first_seen":"2026-06-20T17:10:53.056777Z","last_seen":"2026-06-20T17:10:53.056777Z","alert_count":5,"request_count":5,"received_data":24995,"sent_data":2466,"comment":"","tags":null,"fingerprints":[{"name":"Bootstrap","description":"Bootstrap is a free and open-source CSS framework directed at responsive, mobile-first front-end web development. It contains CSS and JavaScript-based design templates for typography, forms, buttons, navigation, and other interface components.","website":"https://getbootstrap.com","common_platform_enumeration":"cpe:2.3:a:getbootstrap:bootstrap:*:*:*:*:*:*:*:*","icon":"Bootstrap.svg","categories":["UI frameworks"]},{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]},{"name":"PHP","description":"PHP is a general-purpose scripting language used for web development.","website":"https://php.net","common_platform_enumeration":"cpe:2.3:a:php:php:*:*:*:*:*:*:*:*","icon":"PHP.svg","categories":["Programming languages"]}]},{"fqdn":"fonts.gstatic.com","ip":{"addr":"142.250.178.99","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"2008-02-11","domain_rank":0,"first_seen":"2014-04-02T10:51:04Z","last_seen":"2026-06-21T22:19:08.810882Z","alert_count":0,"request_count":5,"received_data":179301,"sent_data":2924,"comment":"","tags":null,"fingerprints":null},{"fqdn":"fonts.googleapis.com","ip":{"addr":"142.250.178.106","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"2005-01-25","domain_rank":313,"first_seen":"2012-05-23T12:41:44Z","last_seen":"2026-06-21T22:22:12.048317Z","alert_count":0,"request_count":1,"received_data":39345,"sent_data":525,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":null,"analyzer":null,"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"mozdesign.com.br/454618e5/gmail/script.js","fqdn":"mozdesign.com.br","domain":"mozdesign.com.br","tld":"com.br"},"ip":{"addr":"162.241.203.81","port":443,"asn":19871,"as":"NETWORK-SOLUTIONS-HOSTING","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"01fce2be4ed9f1f51c16791fde8da229","sha1":"67a9d0025fc4ce269fba258e910e54146992ec6f","sha256":"a8d532ee4a7abafc18432be83468e7b308a2fa7ca6b8fd34a049bcfe3c2229e6","sha512":"4e22bad7970cc3018db90372a638283402e4708a91549eea80d3ac9dcafaa5a5b494f722ffa43003e9de145e322a0db968d72ae23758736d17cda69177cb67ea","ssdeep":"96:eQupiiwKDY5er1IxTfBbFSfnvPrN5slkiTKDeHpRf:eQuI5ehIxTAPrNofT","tlshash":"9dd1caba206869714af6af7e27b35d65e62a0027e40053043d5c8ad80f71d65ef72fec","size":6682,"data":"","first_seen":"2026-06-22T10:18:05.948041Z","last_seen":"2026-06-22T10:18:05.948041Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":null,"console":null},"http":[{"url":{"schema":"https","addr":"mozdesign.com.br/favicon.ico","fqdn":"mozdesign.com.br","domain":"mozdesign.com.br","tld":"com.br"},"ip":{"addr":"162.241.203.81","port":443,"asn":19871,"as":"NETWORK-SOLUTIONS-HOSTING","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://mozdesign.com.br/454618e5/gmail/","date":"2026-06-22T10:17:35.165Z","timestamp":1782123455165,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.mozdesign.com.br","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Wed, 27 May 2026 19:40:51 GMT","end":"Tue, 25 Aug 2026 19:40:50 GMT"},"fingerprint":{"sha1":"EE:F4:F1:C0:6B:B9:DD:57:A6:4C:43:5D:8D:BD:B5:08:D2:AA:9A:F9","sha256":"C3:CA:66:EE:E2:1C:EE:F2:56:82:3E:74:29:FC:2D:F3:18:C6:B3:FF:00:FB:57:DB:F3:E3:8B:B2:00:95:88:6A"}}},"request":{"raw":"GET /favicon.ico HTTP/1.1\r\nHost: mozdesign.com.br\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nCookie: PHPSESSID=796142112b44cd5e6de3f823a7c16e59\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=6\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 404 \r\nlast-modified: Sun, 08 Mar 2026 17:29:45 GMT\r\naccept-ranges: bytes\r\nvary: Accept-Encoding\r\ncontent-encoding: gzip\r\ncontent-length: 836\r\ncontent-type: text/html\r\ndate: Mon, 22 Jun 2026 10:17:35 GMT\r\nserver: Apache\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"404","status_text":"","fingerprints":[{"name":"Bootstrap","description":"Bootstrap is a free and open-source CSS framework directed at responsive, mobile-first front-end web development. It contains CSS and JavaScript-based design templates for typography, forms, buttons, navigation, and other interface components.","website":"https://getbootstrap.com","common_platform_enumeration":"cpe:2.3:a:getbootstrap:bootstrap:*:*:*:*:*:*:*:*","icon":"Bootstrap.svg","categories":["UI frameworks"]},{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}],"data":{"size":2361,"size_decoded":1085,"mime_type":"text/html","magic":"HTML document, Unicode text, UTF-8 text, with CRLF line terminators","md5":"11a0bbc52834cf74da795d5815b7dc63","sha1":"5d401cf953df570210427a92d27e00ddf403f4b7","sha256":"c989a169a129121f006c8fcbf90ab305d9005d516ce72cc44b4949167eed39d5","sha512":"bdc773e24231dcc13db01881c1977c091f565d1505ab8fb8aaf7f6565ddcbc36b1943126d51e43e701a49c6c024e9d335b50ca546e8058029844255f2796a62c","ssdeep":"","tlshash":"75418d8348c04d4f3231a649ba5b63a9d982a147cf6e9e40b2de631f4ff2da1c573131","first_seen":"2023-04-05T04:00:29Z","last_seen":"2026-06-22T14:06:31.408483Z","times_seen":7345,"resource_available":true,"data":null}},"time_used":199,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":199,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-06-22","alert":"Sinkholed","trigger":"mozdesign.com.br","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"fonts.gstatic.com/s/roboto/v51/KFO7CnqEu92Fr1ME7kSn66aGLdTylUAMa3yUBA.woff2","fqdn":"fonts.gstatic.com","domain":"gstatic.com","tld":"com"},"ip":{"addr":"142.250.178.99","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://mozdesign.com.br/454618e5/gmail/","date":"2026-06-22T10:17:35.183Z","timestamp":1782123455183,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.gstatic.com","organization":""},"issuer":{"commonName":"WE2","organization":"Google Trust Services"},"validity":{"start":"Mon, 25 May 2026 08:38:18 GMT","end":"Mon, 17 Aug 2026 08:38:17 GMT"},"fingerprint":{"sha1":"C4:91:D1:0E:C2:A8:68:24:7B:00:2B:4A:EB:42:41:E0:29:E2:4E:A0","sha256":"68:29:56:08:39:D8:99:7B:20:CC:14:D3:4F:4D:D2:55:68:A6:27:DC:52:E9:7B:CF:CE:6B:D3:13:BC:97:65:C1"}}},"request":{"raw":"GET /s/roboto/v51/KFO7CnqEu92Fr1ME7kSn66aGLdTylUAMa3yUBA.woff2 HTTP/1.1\r\nHost: fonts.gstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: identity\r\nOrigin: https://mozdesign.com.br\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://fonts.googleapis.com/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPriority: u=5\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"apps-themes\"\r\nreport-to: {\"group\":\"apps-themes\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/apps-themes\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 43136\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Thu, 18 Jun 2026 10:17:38 GMT\r\nexpires: Fri, 18 Jun 2027 10:17:38 GMT\r\ncache-control: public, max-age=31536000\r\nage: 345597\r\nlast-modified: Wed, 18 Feb 2026 19:51:37 GMT\r\ncontent-type: font/woff2\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":null,"data":{"size":43136,"size_decoded":43949,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 43136, version 1.0","md5":"665db5e157d2138835c4037c971ff3a4","sha1":"41ca6b7e4818eb81531d8006ff7ddd971c640879","sha256":"1404ca348bd75ef836f4dd8b6f2cc719458642d1237c368296b2fc652dca47dc","sha512":"6c999466673c9873b1b112d6ab95c7cecb99467ea156e3e046b54c5f3d109c3845b05cbb2a0245d178430c7b2ceacd5110f7d8faf7e041100f44852b0c29fe9a","ssdeep":"768:tMTmVhyXCrekkraPAjrWMMWD3UJmw0FRwoglekm+hQ7//geceSF/mEQBPMAmDu5:cmHkCrHvPAjrWMMI3UJswogl4j7/hSlW","tlshash":"f9130231eb70ee59962c903454e7fda9433b1457d731aca80e99a1ce6f8103454facec","first_seen":"2026-02-19T22:27:43.350598Z","last_seen":"2026-06-22T14:35:11.384451Z","times_seen":197856,"resource_available":false,"data":null}},"time_used":88,"timings":{"blocked":23,"dns":0,"connect":0,"send":0,"wait":21,"receive":44,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fonts.gstatic.com/s/roboto/v51/KFO7CnqEu92Fr1ME7kSn66aGLdTylUAMaxKUBGEe.woff2","fqdn":"fonts.gstatic.com","domain":"gstatic.com","tld":"com"},"ip":{"addr":"142.250.178.99","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://mozdesign.com.br/454618e5/gmail/","date":"2026-06-22T10:17:35.185Z","timestamp":1782123455185,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.gstatic.com","organization":""},"issuer":{"commonName":"WE2","organization":"Google Trust Services"},"validity":{"start":"Mon, 25 May 2026 08:38:18 GMT","end":"Mon, 17 Aug 2026 08:38:17 GMT"},"fingerprint":{"sha1":"C4:91:D1:0E:C2:A8:68:24:7B:00:2B:4A:EB:42:41:E0:29:E2:4E:A0","sha256":"68:29:56:08:39:D8:99:7B:20:CC:14:D3:4F:4D:D2:55:68:A6:27:DC:52:E9:7B:CF:CE:6B:D3:13:BC:97:65:C1"}}},"request":{"raw":"GET /s/roboto/v51/KFO7CnqEu92Fr1ME7kSn66aGLdTylUAMaxKUBGEe.woff2 HTTP/1.1\r\nHost: fonts.gstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: identity\r\nOrigin: https://mozdesign.com.br\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://fonts.googleapis.com/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPriority: u=5\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"apps-themes\"\r\nreport-to: {\"group\":\"apps-themes\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/apps-themes\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 20556\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Thu, 18 Jun 2026 02:37:02 GMT\r\nexpires: Fri, 18 Jun 2027 02:37:02 GMT\r\ncache-control: public, max-age=31536000\r\nage: 373233\r\nlast-modified: Wed, 18 Feb 2026 19:51:43 GMT\r\ncontent-type: font/woff2\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":null,"data":{"size":20556,"size_decoded":21369,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 20556, version 1.0","md5":"8feefe1e602c4b14ff414a77c3af2c2c","sha1":"e57daae78e76c8944e97edecfa656f8608e09db5","sha256":"2addf2d86d7a5778653b36d551e97a39da52855f82fac7461cfc1bd86d460aed","sha512":"893f9695ee887eed00246f24d4ec3e17ed64e2af4fab055f951795f50d34f3685aafcfbda943060a132c42169d2ef5c99d3db4fb901d57a09e712b4ff02afd92","ssdeep":"384:tpv6fcCujSd2+uNZ0omwRnNPqfWvx/CldKV8D2w9lQXL79Ci5q8S/USM2BHRpWp6:fxC0So4wRhx90K6ywQLIWS8S5By5AR","tlshash":"8792e056b288746a77e4e3ecc859ae6c65ed9b0f0c1b15b909322122f196c4734930f9","first_seen":"2026-02-19T22:35:21.90447Z","last_seen":"2026-06-22T14:00:47.850277Z","times_seen":19974,"resource_available":false,"data":null}},"time_used":77,"timings":{"blocked":22,"dns":0,"connect":0,"send":0,"wait":27,"receive":28,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"mozdesign.com.br/454618e5/gmail/","fqdn":"mozdesign.com.br","domain":"mozdesign.com.br","tld":"com.br"},"ip":{"addr":"162.241.203.81","port":443,"asn":19871,"as":"NETWORK-SOLUTIONS-HOSTING","country":"United States","country_code":"US"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-06-22T10:17:33.161Z","timestamp":1782123453161,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.mozdesign.com.br","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Wed, 27 May 2026 19:40:51 GMT","end":"Tue, 25 Aug 2026 19:40:50 GMT"},"fingerprint":{"sha1":"EE:F4:F1:C0:6B:B9:DD:57:A6:4C:43:5D:8D:BD:B5:08:D2:AA:9A:F9","sha256":"C3:CA:66:EE:E2:1C:EE:F2:56:82:3E:74:29:FC:2D:F3:18:C6:B3:FF:00:FB:57:DB:F3:E3:8B:B2:00:95:88:6A"}}},"request":{"raw":"GET /454618e5/gmail/ HTTP/1.1\r\nHost: mozdesign.com.br\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: none\r\nPriority: u=0, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\nexpires: 0\r\ncache-control: no-store, no-cache, must-revalidate, proxy-revalidate, max-age=0\r\npragma: no-cache\r\nset-cookie: PHPSESSID=796142112b44cd5e6de3f823a7c16e59; path=/\r\nx-robots-tag: noindex, nofollow, noarchive, nosnippet, noimageindex, notranslate, noodp\r\nreferrer-policy: no-referrer\r\nvary: User-Agent,Accept-Encoding\r\ncontent-encoding: gzip\r\ncontent-length: 1660\r\ncontent-type: text/html; charset=UTF-8\r\ndate: Mon, 22 Jun 2026 10:17:33 GMT\r\nserver: Apache\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]},{"name":"PHP","description":"PHP is a general-purpose scripting language used for web development.","website":"https://php.net","common_platform_enumeration":"cpe:2.3:a:php:php:*:*:*:*:*:*:*:*","icon":"PHP.svg","categories":["Programming languages"]}],"data":{"size":3062,"size_decoded":2162,"mime_type":"text/html; charset=UTF-8","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (428)","md5":"312ccc1f5895b1aa3b541c88c1a5a56e","sha1":"aa5ba4a1ca86c99c994d3cde775ada8ae7a0a711","sha256":"a657c837ee9aaf2ecf956bd604e085b1b31cc98be2723a114fbba31a0cfd2f2d","sha512":"233c28ac9ce289e909c80d67be76f862252640189700f230f17ce08ebf61051360d2518a955fd3b17e130994b05de351bff3dc1e5d98c49319594e2aedd3ee84","ssdeep":"","tlshash":"4551c653a4b000578591c294f9ed720a2fcbe4df9e05b68830eccfaa5fc6ea19807158","first_seen":"2026-06-22T10:18:05.947041Z","last_seen":"2026-06-22T10:18:05.947041Z","times_seen":1,"resource_available":true,"data":null}},"time_used":1148,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":1148,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-06-22","alert":"Sinkholed","trigger":"mozdesign.com.br","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"mozdesign.com.br/454618e5/gmail/script.js","fqdn":"mozdesign.com.br","domain":"mozdesign.com.br","tld":"com.br"},"ip":{"addr":"162.241.203.81","port":443,"asn":19871,"as":"NETWORK-SOLUTIONS-HOSTING","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://mozdesign.com.br/454618e5/gmail/","date":"2026-06-22T10:17:34.594Z","timestamp":1782123454594,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.mozdesign.com.br","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Wed, 27 May 2026 19:40:51 GMT","end":"Tue, 25 Aug 2026 19:40:50 GMT"},"fingerprint":{"sha1":"EE:F4:F1:C0:6B:B9:DD:57:A6:4C:43:5D:8D:BD:B5:08:D2:AA:9A:F9","sha256":"C3:CA:66:EE:E2:1C:EE:F2:56:82:3E:74:29:FC:2D:F3:18:C6:B3:FF:00:FB:57:DB:F3:E3:8B:B2:00:95:88:6A"}}},"request":{"raw":"GET /454618e5/gmail/script.js HTTP/1.1\r\nHost: mozdesign.com.br\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nCookie: PHPSESSID=796142112b44cd5e6de3f823a7c16e59\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\nx-robots-tag: noindex, nofollow, noarchive, nosnippet, noimageindex, notranslate, noodp\r\ncache-control: no-store, no-cache, must-revalidate, proxy-revalidate, max-age=0\r\npragma: no-cache\r\nexpires: 0\r\nreferrer-policy: no-referrer\r\nvary: User-Agent,Accept-Encoding\r\nlast-modified: Sun, 31 May 2026 09:46:52 GMT\r\naccept-ranges: bytes\r\ncontent-encoding: gzip\r\ncontent-length: 1925\r\ncontent-type: text/javascript\r\ndate: Mon, 22 Jun 2026 10:17:34 GMT\r\nserver: Apache\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}],"data":{"size":6682,"size_decoded":2422,"mime_type":"text/javascript","magic":"Unicode text, UTF-8 text, with CRLF line terminators","md5":"01fce2be4ed9f1f51c16791fde8da229","sha1":"67a9d0025fc4ce269fba258e910e54146992ec6f","sha256":"a8d532ee4a7abafc18432be83468e7b308a2fa7ca6b8fd34a049bcfe3c2229e6","sha512":"4e22bad7970cc3018db90372a638283402e4708a91549eea80d3ac9dcafaa5a5b494f722ffa43003e9de145e322a0db968d72ae23758736d17cda69177cb67ea","ssdeep":"96:eQupiiwKDY5er1IxTfBbFSfnvPrN5slkiTKDeHpRf:eQuI5ehIxTAPrNofT","tlshash":"9dd1caba206869714af6af7e27b35d65e62a0027e40053043d5c8ad80f71d65ef72fec","first_seen":"2026-06-22T10:18:05.948041Z","last_seen":"2026-06-22T10:18:05.948041Z","times_seen":1,"resource_available":true,"data":null}},"time_used":200,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":200,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-06-22","alert":"Sinkholed","trigger":"mozdesign.com.br","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"fonts.gstatic.com/s/roboto/v51/KFO7CnqEu92Fr1ME7kSn66aGLdTylUAMa3yUBA.woff2","fqdn":"fonts.gstatic.com","domain":"gstatic.com","tld":"com"},"ip":{"addr":"142.250.178.99","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://mozdesign.com.br/454618e5/gmail/","date":"2026-06-22T10:17:35.175Z","timestamp":1782123455175,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.gstatic.com","organization":""},"issuer":{"commonName":"WE2","organization":"Google Trust Services"},"validity":{"start":"Mon, 25 May 2026 08:38:18 GMT","end":"Mon, 17 Aug 2026 08:38:17 GMT"},"fingerprint":{"sha1":"C4:91:D1:0E:C2:A8:68:24:7B:00:2B:4A:EB:42:41:E0:29:E2:4E:A0","sha256":"68:29:56:08:39:D8:99:7B:20:CC:14:D3:4F:4D:D2:55:68:A6:27:DC:52:E9:7B:CF:CE:6B:D3:13:BC:97:65:C1"}}},"request":{"raw":"GET /s/roboto/v51/KFO7CnqEu92Fr1ME7kSn66aGLdTylUAMa3yUBA.woff2 HTTP/1.1\r\nHost: fonts.gstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: identity\r\nOrigin: https://mozdesign.com.br\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://fonts.googleapis.com/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPriority: u=5\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"apps-themes\"\r\nreport-to: {\"group\":\"apps-themes\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/apps-themes\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 43136\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Thu, 18 Jun 2026 10:17:38 GMT\r\nexpires: Fri, 18 Jun 2027 10:17:38 GMT\r\ncache-control: public, max-age=31536000\r\nage: 345597\r\nlast-modified: Wed, 18 Feb 2026 19:51:37 GMT\r\ncontent-type: font/woff2\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":null,"data":{"size":43136,"size_decoded":43949,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 43136, version 1.0","md5":"665db5e157d2138835c4037c971ff3a4","sha1":"41ca6b7e4818eb81531d8006ff7ddd971c640879","sha256":"1404ca348bd75ef836f4dd8b6f2cc719458642d1237c368296b2fc652dca47dc","sha512":"6c999466673c9873b1b112d6ab95c7cecb99467ea156e3e046b54c5f3d109c3845b05cbb2a0245d178430c7b2ceacd5110f7d8faf7e041100f44852b0c29fe9a","ssdeep":"768:tMTmVhyXCrekkraPAjrWMMWD3UJmw0FRwoglekm+hQ7//geceSF/mEQBPMAmDu5:cmHkCrHvPAjrWMMI3UJswogl4j7/hSlW","tlshash":"f9130231eb70ee59962c903454e7fda9433b1457d731aca80e99a1ce6f8103454facec","first_seen":"2026-02-19T22:27:43.350598Z","last_seen":"2026-06-22T14:35:11.384451Z","times_seen":197856,"resource_available":false,"data":null}},"time_used":91,"timings":{"blocked":-1,"dns":3,"connect":31,"send":0,"wait":19,"receive":38,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fonts.gstatic.com/s/googlesans/v69/4UasrENHsxJlGDuGo1OIlJfC6l_24rlCK1Yo_Iqcsih3SAyH6cAwhX9RPjIUvbQui-A3tw.woff2","fqdn":"fonts.gstatic.com","domain":"gstatic.com","tld":"com"},"ip":{"addr":"142.250.178.99","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://mozdesign.com.br/454618e5/gmail/","date":"2026-06-22T10:17:35.177Z","timestamp":1782123455177,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.gstatic.com","organization":""},"issuer":{"commonName":"WE2","organization":"Google Trust Services"},"validity":{"start":"Mon, 25 May 2026 08:38:18 GMT","end":"Mon, 17 Aug 2026 08:38:17 GMT"},"fingerprint":{"sha1":"C4:91:D1:0E:C2:A8:68:24:7B:00:2B:4A:EB:42:41:E0:29:E2:4E:A0","sha256":"68:29:56:08:39:D8:99:7B:20:CC:14:D3:4F:4D:D2:55:68:A6:27:DC:52:E9:7B:CF:CE:6B:D3:13:BC:97:65:C1"}}},"request":{"raw":"GET /s/googlesans/v69/4UasrENHsxJlGDuGo1OIlJfC6l_24rlCK1Yo_Iqcsih3SAyH6cAwhX9RPjIUvbQui-A3tw.woff2 HTTP/1.1\r\nHost: fonts.gstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: identity\r\nOrigin: https://mozdesign.com.br\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://fonts.googleapis.com/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPriority: u=5\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"apps-themes\"\r\nreport-to: {\"group\":\"apps-themes\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/apps-themes\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 34204\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Thu, 18 Jun 2026 17:23:19 GMT\r\nexpires: Fri, 18 Jun 2027 17:23:19 GMT\r\ncache-control: public, max-age=31536000\r\nage: 320056\r\nlast-modified: Wed, 20 May 2026 19:42:50 GMT\r\ncontent-type: font/woff2\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":null,"data":{"size":34204,"size_decoded":35017,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 34204, version 1.0","md5":"0d09af617f3ef7e2e7aa56f9300dc235","sha1":"af43f7825d68259710193c1f9ad4831288c88a70","sha256":"4cc37784697ddf834644c3c8c8d9f767c3b8bd57d425289dc888ac5fe07333af","sha512":"a12b57a45beb825c5a6e3aa1b2bd3e3d8ff249160b806826f293c037b03e246e4a7858cff67b27b22bb8928a74bd7a738796f1a13e0fff2ba27a7fdfa8c2a3b6","ssdeep":"768:l3q7NoBx98k+7k4pzkVB6pi60fYIxMcAeNTsdhhdvq:l3q7N2B+7kJV0pnCMJ4odhhs","tlshash":"6ae2f1eeef7384baa16629f4126f07268b4dc545e07ccd7d0934583819b39c0d6a47cb","first_seen":"2026-05-21T19:01:02.60309Z","last_seen":"2026-06-22T14:35:11.380998Z","times_seen":3366,"resource_available":false,"data":null}},"time_used":83,"timings":{"blocked":23,"dns":0,"connect":0,"send":0,"wait":41,"receive":19,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fonts.gstatic.com/s/googlesans/v69/4UasrENHsxJlGDuGo1OIlJfC6l_24rlCK1Yo_Iqcsih3SAyH6cAwhX9RPjIUvbQui-A3tw.woff2","fqdn":"fonts.gstatic.com","domain":"gstatic.com","tld":"com"},"ip":{"addr":"142.250.178.99","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://mozdesign.com.br/454618e5/gmail/","date":"2026-06-22T10:17:35.179Z","timestamp":1782123455179,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.gstatic.com","organization":""},"issuer":{"commonName":"WE2","organization":"Google Trust Services"},"validity":{"start":"Mon, 25 May 2026 08:38:18 GMT","end":"Mon, 17 Aug 2026 08:38:17 GMT"},"fingerprint":{"sha1":"C4:91:D1:0E:C2:A8:68:24:7B:00:2B:4A:EB:42:41:E0:29:E2:4E:A0","sha256":"68:29:56:08:39:D8:99:7B:20:CC:14:D3:4F:4D:D2:55:68:A6:27:DC:52:E9:7B:CF:CE:6B:D3:13:BC:97:65:C1"}}},"request":{"raw":"GET /s/googlesans/v69/4UasrENHsxJlGDuGo1OIlJfC6l_24rlCK1Yo_Iqcsih3SAyH6cAwhX9RPjIUvbQui-A3tw.woff2 HTTP/1.1\r\nHost: fonts.gstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: identity\r\nOrigin: https://mozdesign.com.br\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://fonts.googleapis.com/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPriority: u=5\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"apps-themes\"\r\nreport-to: {\"group\":\"apps-themes\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/apps-themes\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 34204\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Thu, 18 Jun 2026 17:23:19 GMT\r\nexpires: Fri, 18 Jun 2027 17:23:19 GMT\r\ncache-control: public, max-age=31536000\r\nage: 320056\r\nlast-modified: Wed, 20 May 2026 19:42:50 GMT\r\ncontent-type: font/woff2\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":null,"data":{"size":34204,"size_decoded":35017,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 34204, version 1.0","md5":"0d09af617f3ef7e2e7aa56f9300dc235","sha1":"af43f7825d68259710193c1f9ad4831288c88a70","sha256":"4cc37784697ddf834644c3c8c8d9f767c3b8bd57d425289dc888ac5fe07333af","sha512":"a12b57a45beb825c5a6e3aa1b2bd3e3d8ff249160b806826f293c037b03e246e4a7858cff67b27b22bb8928a74bd7a738796f1a13e0fff2ba27a7fdfa8c2a3b6","ssdeep":"768:l3q7NoBx98k+7k4pzkVB6pi60fYIxMcAeNTsdhhdvq:l3q7N2B+7kJV0pnCMJ4odhhs","tlshash":"6ae2f1eeef7384baa16629f4126f07268b4dc545e07ccd7d0934583819b39c0d6a47cb","first_seen":"2026-05-21T19:01:02.60309Z","last_seen":"2026-06-22T14:35:11.380998Z","times_seen":3366,"resource_available":false,"data":null}},"time_used":85,"timings":{"blocked":23,"dns":0,"connect":0,"send":0,"wait":48,"receive":14,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"mozdesign.com.br/454618e5/gmail","fqdn":"mozdesign.com.br","domain":"mozdesign.com.br","tld":"com.br"},"ip":{"addr":"162.241.203.81","port":443,"asn":19871,"as":"NETWORK-SOLUTIONS-HOSTING","country":"United States","country_code":"US"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-06-22T10:17:32.007Z","timestamp":1782123452007,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.mozdesign.com.br","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Wed, 27 May 2026 19:40:51 GMT","end":"Tue, 25 Aug 2026 19:40:50 GMT"},"fingerprint":{"sha1":"EE:F4:F1:C0:6B:B9:DD:57:A6:4C:43:5D:8D:BD:B5:08:D2:AA:9A:F9","sha256":"C3:CA:66:EE:E2:1C:EE:F2:56:82:3E:74:29:FC:2D:F3:18:C6:B3:FF:00:FB:57:DB:F3:E3:8B:B2:00:95:88:6A"}}},"request":{"raw":"GET /454618e5/gmail HTTP/1.1\r\nHost: mozdesign.com.br\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: none\r\nPriority: u=0, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 301 \r\nx-robots-tag: noindex, nofollow, noarchive, nosnippet, noimageindex, notranslate, noodp\r\ncache-control: no-store, no-cache, must-revalidate, proxy-revalidate, max-age=0\r\npragma: no-cache\r\nexpires: 0\r\nreferrer-policy: no-referrer\r\nvary: User-Agent\r\nlocation: https://mozdesign.com.br/454618e5/gmail/\r\ncontent-length: 288\r\ncontent-type: text/html; charset=iso-8859-1\r\ndate: Mon, 22 Jun 2026 10:17:33 GMT\r\nserver: Apache\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"301","status_text":"","fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-22T14:29:49.25629Z","times_seen":16638621,"resource_available":true,"data":null}},"time_used":1145,"timings":{"blocked":0,"dns":347,"connect":197,"send":0,"wait":200,"receive":0,"ssl":401},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-06-22","alert":"Sinkholed","trigger":"mozdesign.com.br","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"mozdesign.com.br/454618e5/gmail/style.css","fqdn":"mozdesign.com.br","domain":"mozdesign.com.br","tld":"com.br"},"ip":{"addr":"162.241.203.81","port":443,"asn":19871,"as":"NETWORK-SOLUTIONS-HOSTING","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://mozdesign.com.br/454618e5/gmail/","date":"2026-06-22T10:17:34.588Z","timestamp":1782123454588,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.mozdesign.com.br","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Wed, 27 May 2026 19:40:51 GMT","end":"Tue, 25 Aug 2026 19:40:50 GMT"},"fingerprint":{"sha1":"EE:F4:F1:C0:6B:B9:DD:57:A6:4C:43:5D:8D:BD:B5:08:D2:AA:9A:F9","sha256":"C3:CA:66:EE:E2:1C:EE:F2:56:82:3E:74:29:FC:2D:F3:18:C6:B3:FF:00:FB:57:DB:F3:E3:8B:B2:00:95:88:6A"}}},"request":{"raw":"GET /454618e5/gmail/style.css HTTP/1.1\r\nHost: mozdesign.com.br\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nCookie: PHPSESSID=796142112b44cd5e6de3f823a7c16e59\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=2\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\nx-robots-tag: noindex, nofollow, noarchive, nosnippet, noimageindex, notranslate, noodp\r\ncache-control: no-store, no-cache, must-revalidate, proxy-revalidate, max-age=0\r\npragma: no-cache\r\nexpires: 0\r\nreferrer-policy: no-referrer\r\nvary: User-Agent,Accept-Encoding\r\nlast-modified: Sun, 31 May 2026 09:47:06 GMT\r\naccept-ranges: bytes\r\ncontent-encoding: gzip\r\ncontent-length: 3537\r\ncontent-type: text/css\r\ndate: Mon, 22 Jun 2026 10:17:34 GMT\r\nserver: Apache\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}],"data":{"size":10698,"size_decoded":4027,"mime_type":"text/css","magic":"Unicode text, UTF-8 text, with CRLF line terminators","md5":"d98051b8fd0eb34370933dbf49ac777d","sha1":"21c951ebad26707efc1eb887baa2a5aeb26ff8a8","sha256":"db9fbfdcfffefcad5461aca6fc0f468cd736a3715e75544c2571347c1b9a9aa6","sha512":"ff84a426c9cabc58ddc1e1f94017e0e143570ed2ece6ffc1e6bfc9a1964e8362e9f5fbc1ec7af176e94102ea50433f3b4b916aceaa60caac0e6de48aecdaccf1","ssdeep":"192:bKD5zo/nkki+9K7h7PYVrfkFh4YXJ4EymQO9J2tIatxtDlsFhg0:2u5mpvv","tlshash":"bf224256aa15210ab2328e5cfbb39f55e6581843c50201bd7ac865c58ffe15cdeb0fec","first_seen":"2026-06-22T10:18:05.950248Z","last_seen":"2026-06-22T10:18:05.950248Z","times_seen":1,"resource_available":false,"data":null}},"time_used":200,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":200,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-06-22","alert":"Sinkholed","trigger":"mozdesign.com.br","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"fonts.googleapis.com/css2?family=Google+Sans:wght@400;500\u0026family=Roboto:wght@300;400;500\u0026display=swap","fqdn":"fonts.googleapis.com","domain":"fonts.googleapis.com","tld":"googleapis.com"},"ip":{"addr":"142.250.178.106","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://mozdesign.com.br/454618e5/gmail/","date":"2026-06-22T10:17:35.021Z","timestamp":1782123455021,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"upload.video.google.com","organization":""},"issuer":{"commonName":"WE2","organization":"Google Trust Services"},"validity":{"start":"Mon, 25 May 2026 08:38:19 GMT","end":"Mon, 17 Aug 2026 08:38:18 GMT"},"fingerprint":{"sha1":"4D:E0:8E:62:2F:B2:3D:28:5D:7D:B5:8D:C5:3A:72:E4:EE:AB:7D:93","sha256":"AE:0B:4F:B5:B7:41:E5:0C:70:C0:E1:2A:F9:DB:AD:A8:64:94:F3:70:6D:38:1C:8A:8A:CA:52:96:5C:D8:5C:87"}}},"request":{"raw":"GET /css2?family=Google+Sans:wght@400;500\u0026family=Roboto:wght@300;400;500\u0026display=swap HTTP/1.1\r\nHost: fonts.googleapis.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-Fetch-Storage-Access: none\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPriority: u=2\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\ncontent-type: text/css; charset=utf-8\r\nvary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site\r\naccess-control-allow-origin: *\r\ntiming-allow-origin: *\r\nlink: \u003chttps://fonts.gstatic.com\u003e; rel=preconnect; crossorigin\r\nstrict-transport-security: max-age=31536000\r\nexpires: Mon, 22 Jun 2026 10:17:35 GMT\r\ndate: Mon, 22 Jun 2026 10:17:35 GMT\r\ncache-control: private, max-age=86400\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin-allow-popups\r\ncontent-encoding: gzip\r\nserver: ESF\r\nx-xss-protection: 0\r\nx-frame-options: SAMEORIGIN\r\nx-content-type-options: nosniff\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":38661,"size_decoded":3420,"mime_type":"text/css; charset=utf-8","magic":"ASCII text, with very long lines (1572)","md5":"879d2e03067ec6099893e5e5244825ca","sha1":"79a99a2902b8c37d62e3c1f31eee9e11988f364d","sha256":"a883921ca0a7a98f746ea3688e036718a846857e7490777815422c5dc914fb07","sha512":"4767220797c48364520d05369579f000342abff4a1a9ff9fdc752cd875c29c3cf91c37d99a5419f7f6a4981150f967008b396518baf1d34788ec385817e2810f","ssdeep":"768:tCifmDS99YURRuWDyjooYhREHPM5svvYaR7AI8:tZyylv","tlshash":"450343a100479014af53acd633ce7e24fe1e11652101d17aabfe4b96ecdbc6603b57ae","first_seen":"2026-06-22T10:18:05.951409Z","last_seen":"2026-06-22T10:18:05.951409Z","times_seen":1,"resource_available":false,"data":null}},"time_used":91,"timings":{"blocked":-1,"dns":3,"connect":16,"send":0,"wait":35,"receive":0,"ssl":37},"alerts":{"ids":null,"analyzer":null,"urlquery":null}}]}