r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 96daaf84cd2c07756756caf7a2724a29
d24d47c68eec98d44bf341dab9d893df97103e1a
fef9ce9f75ec19e7ae2ccbffb6654db2473a2b4acc94c1b4303e5ec24149465f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "FEF9CE9F75EC19E7AE2CCBFFB6654DB2473A2B4ACC94C1B4303E5EC24149465F"
Last-Modified: Thu, 15 Sep 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3200
Expires: Fri, 16 Sep 2022 21:23:26 GMT
Date: Fri, 16 Sep 2022 20:30:06 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
143.204.55.115200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 143.204.55.115:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 99b7d23c1748d0526782b9ff9ea45f09
eadd801a3ba2aa00632c6fb52e1f9125bd6d5b4f
48f81668f76955320480b484138aebdad5d03c471036b4449c737aca1ecab08e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Type, Content-Length, Backoff, Retry-After, Alert
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Fri, 16 Sep 2022 20:10:56 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 8ddb6d7670d8c5a85c04a10525a71b90.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: hboyNe2Bq__hEj1chYBoeFXAm94wMXfIGGqKyNG_KxSNv6yi9xFWWw==
Age: 1150
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain
143.204.55.110200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain
IP 143.204.55.110:0
File type PEM certificate\012- , ASCII text
Hash 742edb4038f38bc533514982f3d2e861
cc3a20c8dc2a8c632ef9387a2744253f1e3fdef1
b6bfa49d3d135035701231db2fffc0c0643444394009a94c6a1b4d829d6b8345
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 20 Aug 2022 23:18:05 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Fri, 16 Sep 2022 04:35:16 GMT
etag: "742edb4038f38bc533514982f3d2e861"
x-cache: Hit from cloudfront
via: 1.1 aac54e3fe9825ce24d51e0204433c2c0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: OfF_Nfj65_6iNP_e1iA40n61z70lyvUfXJjYC6VVjPnvBECwNad7fQ==
age: 57291
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 16 Sep 2022 20:30:06 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
143.204.55.115200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 143.204.55.115:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600
Date: Fri, 16 Sep 2022 20:03:22 GMT
Expires: Fri, 16 Sep 2022 20:20:58 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 a7d2a4ec2f50830f128dc406960aef9a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: bTHhO6ErR_rIKYw6P8q_VPXFFwRaikQgJVMCCIfa6O3IUfiSC072eQ==
Age: 1604
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 3db421016cf0e3ad25f324cf0faf0fac
b15909de1105d4d2fb5be5b3920c454daf022445
914b15f28636e0a5e851540ffb0625ecd09d0546b2f1f7af90b267ceebcf1d5d
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3014
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 16 Sep 2022 20:30:06 GMT
Last-Modified: Fri, 16 Sep 2022 19:39:52 GMT
Server: ECS (ska/F70C)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
52.36.24.174101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.36.24.174:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: l/H/k3cEeg6aOsGwrpkAjg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: P1uqYFhzDd3QT9Vm+Gz6R3wVoX0=
cursomemokids.com.br/wp-includes/js/jcrop/chse/chase/login/auth.php?country_x&locale-8731002x=E?_
162.214.109.148301 Moved Permanently 0 B URL HTTP/1.1 cursomemokids.com.br/wp-includes/js/jcrop/chse/chase/login/auth.php?country_x&locale-8731002x=E?_
IP 162.214.109.148:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /wp-includes/js/jcrop/chse/chase/login/auth.php?country_x&locale-8731002x=E?_ HTTP/1.1
Host: cursomemokids.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Fri, 16 Sep 2022 20:30:06 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
X-Redirect-By: WordPress
Vary: Accept-Encoding
Location: http://cursomemokids.com.br
Content-Length: 0
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 35f3deb94b2a985eb02f5a14f033c44f
2076e4cb6faf9a7bf1cbfc8947db9a8550f556bd
1d5c76a54a4ab121ccf5f456516ec99fb7f5129a491e078d97c749b94060970a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1D5C76A54A4AB121CCF5F456516EC99FB7F5129A491E078D97C749B94060970A"
Last-Modified: Thu, 15 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18938
Expires: Sat, 17 Sep 2022 01:45:46 GMT
Date: Fri, 16 Sep 2022 20:30:08 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 35f3deb94b2a985eb02f5a14f033c44f
2076e4cb6faf9a7bf1cbfc8947db9a8550f556bd
1d5c76a54a4ab121ccf5f456516ec99fb7f5129a491e078d97c749b94060970a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1D5C76A54A4AB121CCF5F456516EC99FB7F5129A491E078D97C749B94060970A"
Last-Modified: Thu, 15 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18938
Expires: Sat, 17 Sep 2022 01:45:46 GMT
Date: Fri, 16 Sep 2022 20:30:08 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 35f3deb94b2a985eb02f5a14f033c44f
2076e4cb6faf9a7bf1cbfc8947db9a8550f556bd
1d5c76a54a4ab121ccf5f456516ec99fb7f5129a491e078d97c749b94060970a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1D5C76A54A4AB121CCF5F456516EC99FB7F5129A491E078D97C749B94060970A"
Last-Modified: Thu, 15 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18938
Expires: Sat, 17 Sep 2022 01:45:46 GMT
Date: Fri, 16 Sep 2022 20:30:08 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 35f3deb94b2a985eb02f5a14f033c44f
2076e4cb6faf9a7bf1cbfc8947db9a8550f556bd
1d5c76a54a4ab121ccf5f456516ec99fb7f5129a491e078d97c749b94060970a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1D5C76A54A4AB121CCF5F456516EC99FB7F5129A491E078D97C749B94060970A"
Last-Modified: Thu, 15 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18938
Expires: Sat, 17 Sep 2022 01:45:46 GMT
Date: Fri, 16 Sep 2022 20:30:08 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdbd68450-8c97-4e9a-a798-8484ec30f381.jpeg
34.120.237.76200 OK 8.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdbd68450-8c97-4e9a-a798-8484ec30f381.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash e4f3e6b013d785036c9b9c16aef3404f
28bf10400e47ad48eee5db04829b88340e021840
98596627e914528b177b8a3d2be8766bdf210c62415961ab99afefa465440819
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdbd68450-8c97-4e9a-a798-8484ec30f381.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8854
x-amzn-requestid: ae78dca7-cd78-40ad-8ef3-5b287d99b0e5
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YO1suGFuoAMFptg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631c3651-12f3fedb07f856af06e8b1e5;Sampled=0
x-amzn-remapped-date: Sat, 10 Sep 2022 07:01:37 GMT
x-amz-cf-pop: SEA19-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: h1Q93ahPFyzjb40UxQcoDZPKkpLtrkcj1vE_mB4AW2Gn9CAibFnd6A==
via: 1.1 1f6e68152880a39d72e6bf2996cd6a60.cloudfront.net (CloudFront), 1.1 02d90bf99fd6253b329a53c82f19e224.cloudfront.net (CloudFront), 1.1 google
date: Thu, 15 Sep 2022 22:03:47 GMT
age: 80781
etag: "28bf10400e47ad48eee5db04829b88340e021840"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F855bc857-3105-4de6-b3a8-0eb895422ea5.png
34.120.237.76200 OK 14 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F855bc857-3105-4de6-b3a8-0eb895422ea5.png
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 512280055633fcce9abc7d11a9816a24
de5c3e010fca76659455a144875a52c25fa72bdd
435eadb36830928b20d4cf8ead62134b75bd0ed3228489d9fdee66450bcbeaed
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F855bc857-3105-4de6-b3a8-0eb895422ea5.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 13536
x-amzn-requestid: 5533b257-1558-472b-aeb9-8207a78e1110
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YhVDzFa4IAMF9Rg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63239bb1-05d0dfde7a488ed97d2a40d5;Sampled=0
x-amzn-remapped-date: Thu, 15 Sep 2022 21:40:01 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: JAzbRqinDuqQuQoESEsL26c1Y1UTQ5tO1thL3ugE6LPQtNTWGaGTLg==
via: 1.1 d1151317ba32afe0e6370fd69fed222e.cloudfront.net (CloudFront), 1.1 5397b304713f6301c7c94ac084b6ed08.cloudfront.net (CloudFront), 1.1 google
date: Thu, 15 Sep 2022 21:48:32 GMT
age: 81696
etag: "de5c3e010fca76659455a144875a52c25fa72bdd"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5be0dbac-eae3-494b-bc73-d4df7f6c2f33.jpeg
34.120.237.76200 OK 8.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5be0dbac-eae3-494b-bc73-d4df7f6c2f33.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 69c9db5022c0c66909867f1e0946f5a8
9825e0fc606dc983280a6cd05803bb07e3435ef6
f2809509eee24ed69e6003ac9263423ea949bcc9205969c6cdd476e89ede9b01
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5be0dbac-eae3-494b-bc73-d4df7f6c2f33.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8864
x-amzn-requestid: 6e1a82d1-e35e-4d77-be31-6969a13918da
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YhU_6GiXoAMFaLA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63239b98-46ca0525157031324749ee5b;Sampled=0
x-amzn-remapped-date: Thu, 15 Sep 2022 21:39:36 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: sZDehRAgImuoJtVDIS6Mgz2871fOYrT0H7cx0QucG6mDuE1NmrW5Hw==
via: 1.1 8f22423015641505b8c857a37450d6c0.cloudfront.net (CloudFront), 1.1 ee330666adf9f04c8c30094f8ddcd004.cloudfront.net (CloudFront), 1.1 google
date: Thu, 15 Sep 2022 21:50:59 GMT
age: 81549
etag: "9825e0fc606dc983280a6cd05803bb07e3435ef6"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fee084149-a07d-4141-a484-d9f352209914.jpeg
34.120.237.76200 OK 9.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fee084149-a07d-4141-a484-d9f352209914.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash e6d17788c7d2a1a91e68eff48df14bd1
8e1090346d90bc69e7a95384e6a7a01154e31567
1e1eefa02e4c55e73be87a309ad5c2335856125cb678cff6ebc42c5ff73a0e2b
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fee084149-a07d-4141-a484-d9f352209914.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9904
x-amzn-requestid: a23cb4b3-db6e-48ae-90b1-3ecf6478bf52
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YhVDpH_CIAMFl4w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63239bb0-15869210609a18587467d1e2;Sampled=0
x-amzn-remapped-date: Thu, 15 Sep 2022 21:40:00 GMT
x-amz-cf-pop: SEA19-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: RbKcO0CPRsex8VWdIVqctamGyJ7D1PHD04ry2wbrcDPDYL0Yy5vPPQ==
via: 1.1 1002c05e647d0804e83147cdd205d14a.cloudfront.net (CloudFront), 1.1 e80693c02cfdfd081110512210d57840.cloudfront.net (CloudFront), 1.1 google
date: Thu, 15 Sep 2022 21:50:35 GMT
etag: "8e1090346d90bc69e7a95384e6a7a01154e31567"
content-type: image/jpeg
age: 81573
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4a73e855-9877-4793-b59a-30b8e5a96117.png
34.120.237.76200 OK 8.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4a73e855-9877-4793-b59a-30b8e5a96117.png
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b7d4ee58e0f26ec6817dbab72aa7db6d
b6e634ef27eba9da38c6472565e0fdca6898e4f0
07db05a6ee70a699164ad55da47bfca58e6639956e256d902cbe0388cd7995c6
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4a73e855-9877-4793-b59a-30b8e5a96117.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8435
x-amzn-requestid: f6efd924-4f54-41a6-8771-087803b5b8ac
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YhU0-EJaoAMFvtQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63239b52-37c21ee857fe27d104b70337;Sampled=0
x-amzn-remapped-date: Thu, 15 Sep 2022 21:38:26 GMT
x-amz-cf-pop: SFO5-P2, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: rgjwYJ-ZzVF3bv7pl1l8TN8EAoENIcaSAXJU_YhFOSNRCzrCuPuKbQ==
via: 1.1 773ca14e6bd4bf9244988cb69fc9dca8.cloudfront.net (CloudFront), 1.1 28390a4d24ed4fdccd685d99cd06cf4e.cloudfront.net (CloudFront), 1.1 google
date: Thu, 15 Sep 2022 21:44:10 GMT
age: 81958
etag: "b6e634ef27eba9da38c6472565e0fdca6898e4f0"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F45619ede-b86e-4373-9398-fec60bb9e862.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F45619ede-b86e-4373-9398-fec60bb9e862.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash f876cdc19dca10c62d83d19303512c7f
9f812c7bc1b42b0cea3e42694e7d1f6738789770
c647aac44ba9eb501eb7def781ca0168b4eb71a716283cc6f4e6782939a396cc
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F45619ede-b86e-4373-9398-fec60bb9e862.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12123
x-amzn-requestid: 2beedee9-cf7e-47d6-ac4d-3ca9251aa565
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YfSWEFAZoAMFd6g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6322ca8d-37688e4a23c3234a25becf57;Sampled=0
x-amzn-remapped-date: Thu, 15 Sep 2022 06:47:41 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: H2ySDtSQZtsrCA99y1a2_fLQcRI8hvN_nvA9U_V_iCm6c3cq3DigXQ==
via: 1.1 00f0a41f749793b9dd653153037c957e.cloudfront.net (CloudFront), 1.1 707e733794d52100fde0ab21bf0b1462.cloudfront.net (CloudFront), 1.1 google
date: Thu, 15 Sep 2022 22:11:59 GMT
age: 80289
etag: "9f812c7bc1b42b0cea3e42694e7d1f6738789770"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 4cc0aaf293fed6c16e1dde02c50c8f40
e94f11cd8fa955f28856a02aa7115aa5f3626d98
b1592dc8fc0d63052f66b7be9b5ff1f562f6fbd05f6365ce828758bfbb3f1a12
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 16 Sep 2022 20:30:08 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 5d12cc59489773babbc650161772d674
6fa23d626e8a64d98e59984567cd4dc42c648833
f43eae2b85acffc988fbc2c97e18ae1c013217db2cbe24df14dd3b8c35d0ff27
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 16 Sep 2022 20:30:08 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.googletagmanager.com/gtag/js?id=AW-762979249
142.250.74.72200 OK 62 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=AW-762979249
IP 142.250.74.72:0
File type ASCII text, with very long lines (3013)
Hash 97d96e1c1862af03596e280dc2831a13
f02af0273db9bc5ea711673fd3a0fd85e35deaea
c0ca455bcb5f5e7dabb608afb27ed864c779e9610a97cc80bec6bcffe712a566
GET /gtag/js?id=AW-762979249 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://cursomemokids.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Fri, 16 Sep 2022 20:30:08 GMT
expires: Fri, 16 Sep 2022 20:30:08 GMT
cache-control: private, max-age=900
last-modified: Fri, 16 Sep 2022 18:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 61792
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 4cc0aaf293fed6c16e1dde02c50c8f40
e94f11cd8fa955f28856a02aa7115aa5f3626d98
b1592dc8fc0d63052f66b7be9b5ff1f562f6fbd05f6365ce828758bfbb3f1a12
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 16 Sep 2022 20:30:08 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 5d12cc59489773babbc650161772d674
6fa23d626e8a64d98e59984567cd4dc42c648833
f43eae2b85acffc988fbc2c97e18ae1c013217db2cbe24df14dd3b8c35d0ff27
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 16 Sep 2022 20:30:08 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
cursomemokids.com.br/wp-content/cache/min/1/wp-content/themes/tema_em_branco/style.css?ver=1662835032
162.214.109.148200 OK 2.9 kB URL HTTP/1.1 cursomemokids.com.br/wp-content/cache/min/1/wp-content/themes/tema_em_branco/style.css?ver=1662835032
IP 162.214.109.148:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (8084)
Hash ca7eb7bc58b16df478e61b573e583bea
bfe248806c73e936cd30158d472541432492bb09
7dff8d9cc07f0205f4a65c402932da28330ba6daefe110f8d71cf76e1d18f1cb
GET /wp-content/cache/min/1/wp-content/themes/tema_em_branco/style.css?ver=1662835032 HTTP/1.1
Host: cursomemokids.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://cursomemokids.com.br/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Fri, 16 Sep 2022 20:30:08 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Sat, 10 Sep 2022 18:37:12 GMT
Accept-Ranges: bytes
Cache-Control: max-age=31536000, public
Expires: Sat, 16 Sep 2023 20:30:08 GMT
Content-Encoding: gzip
Content-Length: 2909
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css; charset=utf-8
cursomemokids.com.br/wp-content/uploads/elementor/css/post-2305.css?ver=1641561781
162.214.109.148200 OK 354 B URL HTTP/1.1 cursomemokids.com.br/wp-content/uploads/elementor/css/post-2305.css?ver=1641561781
IP 162.214.109.148:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (1024), with no line terminators
Hash b2b20ce24cf297e3906e2150465d8a4a
9dbad98b81d71fd6da5b156f1c853e24ec031e55
ea64be592a2d31d95f10c26d6586da3d3cf50bfd192c42a05ae15a7b6130eecb
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/elementor/css/post-2305.css?ver=1641561781 HTTP/1.1
Host: cursomemokids.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://cursomemokids.com.br/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Fri, 16 Sep 2022 20:30:08 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Fri, 07 Jan 2022 13:23:01 GMT
Accept-Ranges: bytes
Cache-Control: max-age=31536000, public
Expires: Sat, 16 Sep 2023 20:30:08 GMT
Content-Encoding: gzip
Content-Length: 354
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css; charset=utf-8
cursomemokids.com.br/wp-content/plugins/elementor/assets/css/frontend-legacy.min.css?ver=3.5.3
162.214.109.148200 OK 856 B URL HTTP/1.1 cursomemokids.com.br/wp-content/plugins/elementor/assets/css/frontend-legacy.min.css?ver=3.5.3
IP 162.214.109.148:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (13766)
Hash fa86c42fb613d99c9b1f1d1f836ce2f9
cec8d9fbd6ffea8325dc9630e213f7b246909c1c
cd4558f2e053c680ea4ab7f18f41b16b84f7839a7d69c60d3a4e3c7acdca8fde
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/css/frontend-legacy.min.css?ver=3.5.3 HTTP/1.1
Host: cursomemokids.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://cursomemokids.com.br/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Fri, 16 Sep 2022 20:30:08 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Fri, 07 Jan 2022 13:18:57 GMT
Accept-Ranges: bytes
Cache-Control: max-age=31536000, public
Expires: Sat, 16 Sep 2023 20:30:08 GMT
Content-Encoding: gzip
Content-Length: 856
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css; charset=utf-8
cursomemokids.com.br/wp-content/cache/min/1/wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=1662835032
162.214.109.148200 OK 3.9 kB URL HTTP/1.1 cursomemokids.com.br/wp-content/cache/min/1/wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=1662835032
IP 162.214.109.148:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (19250)
Hash eea6e9fa0869e76dbbaa3175923a1e73
2d309ff3e2c4044d021bfda0ce7e2101e3e349aa
8dc7aef2eaf9ab2973d46d446a8bde162564c222aa3c7502b726b38d7d460259
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/cache/min/1/wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=1662835032 HTTP/1.1
Host: cursomemokids.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://cursomemokids.com.br/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Fri, 16 Sep 2022 20:30:08 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Sat, 10 Sep 2022 18:37:12 GMT
Accept-Ranges: bytes
Cache-Control: max-age=31536000, public
Expires: Sat, 16 Sep 2023 20:30:08 GMT
Content-Encoding: gzip
Content-Length: 3918
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css; charset=utf-8
cursomemokids.com.br/wp-includes/css/dist/block-library/style.min.css?ver=6.0.2
162.214.109.148200 OK 12 kB URL HTTP/1.1 cursomemokids.com.br/wp-includes/css/dist/block-library/style.min.css?ver=6.0.2
IP 162.214.109.148:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (43771)
Hash e5548800176e913a9084f47a3e1e04f6
eff4604acc5c26ae82a19188de2f98bf5b79d80c
a2569c768eaca09f2483b971fcebb97badd57c9a16b5ae3e16b8cdcd8c688b07
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/css/dist/block-library/style.min.css?ver=6.0.2 HTTP/1.1
Host: cursomemokids.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://cursomemokids.com.br/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Fri, 16 Sep 2022 20:30:08 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Sat, 10 Sep 2022 18:14:15 GMT
Accept-Ranges: bytes
Cache-Control: max-age=31536000, public
Expires: Sat, 16 Sep 2023 20:30:08 GMT
Content-Encoding: gzip
Content-Length: 11681
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css; charset=utf-8
cursomemokids.com.br/wp-content/cache/min/1/wp-content/plugins/addons-for-elementor/assets/css/lib/animate.css?ver=1662835032
162.214.109.148200 OK 4.1 kB URL HTTP/1.1 cursomemokids.com.br/wp-content/cache/min/1/wp-content/plugins/addons-for-elementor/assets/css/lib/animate.css?ver=1662835032
IP 162.214.109.148:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (57444)
Hash a23b9f240c7d9b1317d6b9b551b7a32c
a1d9b856ad111084a4168acf0affef192e9becb9
369f46ee6a4e3e1b3eca5c6eaaf53eadaf460cc72f6f067bb961c503511b7914
GET /wp-content/cache/min/1/wp-content/plugins/addons-for-elementor/assets/css/lib/animate.css?ver=1662835032 HTTP/1.1
Host: cursomemokids.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://cursomemokids.com.br/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Fri, 16 Sep 2022 20:30:08 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Sat, 10 Sep 2022 18:37:12 GMT
Accept-Ranges: bytes
Cache-Control: max-age=31536000, public
Expires: Sat, 16 Sep 2023 20:30:08 GMT
Content-Encoding: gzip
Content-Length: 4094
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css; charset=utf-8
cursomemokids.com.br/wp-content/plugins/addons-for-elementor/assets/css/lib/sliders.min.css?ver=7.2.3
162.214.109.148200 OK 1.2 kB URL HTTP/1.1 cursomemokids.com.br/wp-content/plugins/addons-for-elementor/assets/css/lib/sliders.min.css?ver=7.2.3
IP 162.214.109.148:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (4272), with no line terminators
Hash ff734f80c023e487a0ec79afefbde211
4878733abcb2c0f6c2a1debb96035af030f7a673
fea50e2ebb680232eb3dcd3d90b0534478297e4dd5e43abd3f05fcd3efad36c4
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/addons-for-elementor/assets/css/lib/sliders.min.css?ver=7.2.3 HTTP/1.1
Host: cursomemokids.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://cursomemokids.com.br/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Fri, 16 Sep 2022 20:30:08 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Sat, 10 Sep 2022 18:12:01 GMT
Accept-Ranges: bytes
Cache-Control: max-age=31536000, public
Expires: Sat, 16 Sep 2023 20:30:08 GMT
Content-Encoding: gzip
Content-Length: 1166
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css; charset=utf-8
cursomemokids.com.br/wp-content/cache/min/1/wp-content/plugins/addons-for-elementor/assets/css/icomoon.css?ver=1662835032
162.214.109.148200 OK 980 B URL HTTP/1.1 cursomemokids.com.br/wp-content/cache/min/1/wp-content/plugins/addons-for-elementor/assets/css/icomoon.css?ver=1662835032
IP 162.214.109.148:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (4272), with no line terminators
Hash 4ece1092a9718760656773b0f5e49cd4
f18314abd520c80cdcdee10b3407b6d68d9a6614
9dee3718ee83942114cf3b0367a5cc333e002f039cd62e293fe7bb17af4cba60
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/cache/min/1/wp-content/plugins/addons-for-elementor/assets/css/icomoon.css?ver=1662835032 HTTP/1.1
Host: cursomemokids.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://cursomemokids.com.br/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Fri, 16 Sep 2022 20:30:08 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Sat, 10 Sep 2022 18:37:12 GMT
Accept-Ranges: bytes
Cache-Control: max-age=31536000, public
Expires: Sat, 16 Sep 2023 20:30:08 GMT
Content-Encoding: gzip
Content-Length: 980
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css; charset=utf-8
cursomemokids.com.br/wp-content/plugins/elementor/assets/css/frontend.min.css?ver=3.5.3
162.214.109.148200 OK 18 kB URL HTTP/1.1 cursomemokids.com.br/wp-content/plugins/elementor/assets/css/frontend.min.css?ver=3.5.3
IP 162.214.109.148:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (65497)
Hash c73f889df5436797ce229dc691566bf5
3886858e06b5d1d7e7c4b629c732e3041c434144
3d6ff3b8405df97c1e8ffccb78071acaca5137235f0746dd54de5e8ba896082a
GET /wp-content/plugins/elementor/assets/css/frontend.min.css?ver=3.5.3 HTTP/1.1
Host: cursomemokids.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://cursomemokids.com.br/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Fri, 16 Sep 2022 20:30:08 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Fri, 07 Jan 2022 13:18:57 GMT
Accept-Ranges: bytes
Cache-Control: max-age=31536000, public
Expires: Sat, 16 Sep 2023 20:30:08 GMT
Content-Encoding: gzip
Content-Length: 17538
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css; charset=utf-8
cursomemokids.com.br/wp-content/cache/min/1/wp-content/plugins/addons-for-elementor/assets/css/lae-frontend.css?ver=1662835032
162.214.109.148200 OK 2.3 kB URL HTTP/1.1 cursomemokids.com.br/wp-content/cache/min/1/wp-content/plugins/addons-for-elementor/assets/css/lae-frontend.css?ver=1662835032
IP 162.214.109.148:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (13172), with no line terminators
Hash 12bd67d7e536c2cd05ed0ed331fb1218
3235905f93d458203f8b10efca35746975583c63
64d3dc64266df66e9ed6b014481933d355c3107c7505695597a691e7aafc1ac3
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/cache/min/1/wp-content/plugins/addons-for-elementor/assets/css/lae-frontend.css?ver=1662835032 HTTP/1.1
Host: cursomemokids.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://cursomemokids.com.br/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Fri, 16 Sep 2022 20:30:08 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Sat, 10 Sep 2022 18:37:12 GMT
Accept-Ranges: bytes
Cache-Control: max-age=31536000, public
Expires: Sat, 16 Sep 2023 20:30:08 GMT
Content-Encoding: gzip
Content-Length: 2291
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css; charset=utf-8
cursomemokids.com.br/
162.214.109.148200 OK 306 kB IP 162.214.109.148:0
ASN #46606 UNIFIEDLAYER-AS-1
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (8047), with CRLF, LF line terminators
Size 306 kB (306005 bytes)
Hash c54c8391d6b7243a6708c11edcb16aaa
67055f9412c2b7ae2d98bba7f53462d5fd54e9fb
46acf56ba71df0a54c1c3362a3b590bb752c5ba16cff37761e9602c848dbbe65
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: cursomemokids.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Fri, 16 Sep 2022 20:30:08 GMT
Server: Apache
Vary: Accept-Encoding,User-Agent
Last-Modified: Fri, 16 Sep 2022 15:12:16 GMT
Accept-Ranges: bytes
Content-Length: 306005
Cache-Control: max-age=0
Expires: Fri, 16 Sep 2022 20:30:08 GMT
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
Content-Encoding: gzip
cursomemokids.com.br/wp-content/cache/min/1/wp-content/plugins/addons-for-elementor/assets/css/lae-grid.css?ver=1662835032
162.214.109.148200 OK 1.1 kB URL HTTP/1.1 cursomemokids.com.br/wp-content/cache/min/1/wp-content/plugins/addons-for-elementor/assets/css/lae-grid.css?ver=1662835032
IP 162.214.109.148:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (13870), with no line terminators
Hash aae59134982ca9f94f0a081984952c51
b6a96d83e084af22b911e3fb9bef6a9d4e7767ee
83de2b29549253b927687957ca7ee663a52db7522e413791b7c4357f739bf223
GET /wp-content/cache/min/1/wp-content/plugins/addons-for-elementor/assets/css/lae-grid.css?ver=1662835032 HTTP/1.1
Host: cursomemokids.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://cursomemokids.com.br/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Fri, 16 Sep 2022 20:30:09 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Sat, 10 Sep 2022 18:37:12 GMT
Accept-Ranges: bytes
Cache-Control: max-age=31536000, public
Expires: Sat, 16 Sep 2023 20:30:09 GMT
Content-Encoding: gzip
Content-Length: 1070
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css; charset=utf-8
cursomemokids.com.br/wp-content/plugins/addons-for-elementor/assets/css/widgets/lae-widgets.min.css?ver=7.2.3
162.214.109.148200 OK 11 kB URL HTTP/1.1 cursomemokids.com.br/wp-content/plugins/addons-for-elementor/assets/css/widgets/lae-widgets.min.css?ver=7.2.3
IP 162.214.109.148:0
ASN #46606 UNIFIEDLAYER-AS-1
File type Unicode text, UTF-8 text, with very long lines (65532), with no line terminators
Hash b5f33962c1170650f138a98b65445183
facdfe6d93a2282a01c4b3254c729992e90b03c8
0162b452a4fd044b14fc85bad9482d9e2626f521edcb4f74109f9b6ce3f224e9
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/addons-for-elementor/assets/css/widgets/lae-widgets.min.css?ver=7.2.3 HTTP/1.1
Host: cursomemokids.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://cursomemokids.com.br/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Fri, 16 Sep 2022 20:30:09 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Sat, 10 Sep 2022 18:12:01 GMT
Accept-Ranges: bytes
Cache-Control: max-age=31536000, public
Expires: Sat, 16 Sep 2023 20:30:09 GMT
Content-Encoding: gzip
Content-Length: 10603
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css; charset=utf-8
cursomemokids.com.br/wp-content/plugins/elementor/assets/lib/font-awesome/css/v4-shims.min.css?ver=3.5.3
162.214.109.148200 OK 4.2 kB URL HTTP/1.1 cursomemokids.com.br/wp-content/plugins/elementor/assets/lib/font-awesome/css/v4-shims.min.css?ver=3.5.3
IP 162.214.109.148:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (26516)
Hash d74abcef3df71d56667a44693f75c454
be993a7b5c88a550ef0dc19c4841f240e41967f8
8c8fb98c0a68a93f2bcf224fcc1bdaa1095fc1b3f5418f2e2c5fddcfa3dee410
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/v4-shims.min.css?ver=3.5.3 HTTP/1.1
Host: cursomemokids.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://cursomemokids.com.br/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Fri, 16 Sep 2022 20:30:09 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Fri, 07 Jan 2022 13:18:58 GMT
Accept-Ranges: bytes
Cache-Control: max-age=31536000, public
Expires: Sat, 16 Sep 2023 20:30:09 GMT
Content-Encoding: gzip
Content-Length: 4229
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css; charset=utf-8
cursomemokids.com.br/wp-content/uploads/elementor/css/post-3245.css?ver=1662834220
162.214.109.148200 OK 5.9 kB URL HTTP/1.1 cursomemokids.com.br/wp-content/uploads/elementor/css/post-3245.css?ver=1662834220
IP 162.214.109.148:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (65536), with no line terminators
Hash ae889444f0042db724e390edc8c84ca7
5dd5c8ed9b41bc4099b1abe899c998466b53f488
b7a51cf23d062e4370184a5e8b5d5afab6199f3e21067c865a0e0d0f7e94f5f2
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/elementor/css/post-3245.css?ver=1662834220 HTTP/1.1
Host: cursomemokids.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://cursomemokids.com.br/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Fri, 16 Sep 2022 20:30:09 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Sat, 10 Sep 2022 18:23:41 GMT
Accept-Ranges: bytes
Cache-Control: max-age=31536000, public
Expires: Sat, 16 Sep 2023 20:30:09 GMT
Content-Encoding: gzip
Content-Length: 5877
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css; charset=utf-8
cursomemokids.com.br/wp-content/plugins/elementor/assets/lib/font-awesome/css/fontawesome.min.css?ver=5.15.3
162.214.109.148200 OK 13 kB URL HTTP/1.1 cursomemokids.com.br/wp-content/plugins/elementor/assets/lib/font-awesome/css/fontawesome.min.css?ver=5.15.3
IP 162.214.109.148:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (57726)
Hash 991d00cd7cb62d50a29295522d554f1f
e128a5238f141e9c4da1979716108d858340fe03
b8fcb61816168fc6a7ee01bb09fa4378398838dc6e4f49dc411872876355d113
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/fontawesome.min.css?ver=5.15.3 HTTP/1.1
Host: cursomemokids.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://cursomemokids.com.br/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Fri, 16 Sep 2022 20:30:09 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Fri, 07 Jan 2022 13:18:58 GMT
Accept-Ranges: bytes
Cache-Control: max-age=31536000, public
Expires: Sat, 16 Sep 2023 20:30:09 GMT
Content-Encoding: gzip
Content-Length: 12582
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css; charset=utf-8
cursomemokids.com.br/wp-content/cache/min/1/wp-content/plugins/elementor/assets/lib/font-awesome/css/solid.min.css?ver=1662835032
162.214.109.148200 OK 340 B URL HTTP/1.1 cursomemokids.com.br/wp-content/cache/min/1/wp-content/plugins/elementor/assets/lib/font-awesome/css/solid.min.css?ver=1662835032
IP 162.214.109.148:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (896)
Hash 0240a013f944563cb85bc325b6aa9245
550f7d660c27407cd1019467935c47f902151834
5806f197be084bcbbb990bd41ebe3f8d8d3056949d8c3c132c00fd0e8c6b1554
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/cache/min/1/wp-content/plugins/elementor/assets/lib/font-awesome/css/solid.min.css?ver=1662835032 HTTP/1.1
Host: cursomemokids.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://cursomemokids.com.br/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Fri, 16 Sep 2022 20:30:09 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Sat, 10 Sep 2022 18:37:12 GMT
Accept-Ranges: bytes
Cache-Control: max-age=31536000, public
Expires: Sat, 16 Sep 2023 20:30:09 GMT
Content-Encoding: gzip
Content-Length: 340
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: text/css; charset=utf-8
cursomemokids.com.br/wp-content/cache/min/1/wp-content/plugins/elementor/assets/lib/font-awesome/css/all.min.css?ver=1662835032
162.214.109.148200 OK 13 kB URL HTTP/1.1 cursomemokids.com.br/wp-content/cache/min/1/wp-content/plugins/elementor/assets/lib/font-awesome/css/all.min.css?ver=1662835032
IP 162.214.109.148:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (60397)
Hash fb86caf1f8fa1ed36c7022a4241810f9
ba7bb526b9a05c098514c848c21a8043c9a4c91e
befdd5a0d7cc62c5f25e40f5eda3d7a7594f6919dc1cc2cc6ff9ee0e7e22e90e
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/cache/min/1/wp-content/plugins/elementor/assets/lib/font-awesome/css/all.min.css?ver=1662835032 HTTP/1.1
Host: cursomemokids.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://cursomemokids.com.br/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Fri, 16 Sep 2022 20:30:09 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Sat, 10 Sep 2022 18:37:12 GMT
Accept-Ranges: bytes
Cache-Control: max-age=31536000, public
Expires: Sat, 16 Sep 2023 20:30:09 GMT
Content-Encoding: gzip
Content-Length: 12909
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css; charset=utf-8
cursomemokids.com.br/wp-content/cache/min/1/wp-content/plugins/elementor/assets/lib/font-awesome/css/brands.min.css?ver=1662835032
162.214.109.148200 OK 339 B URL HTTP/1.1 cursomemokids.com.br/wp-content/cache/min/1/wp-content/plugins/elementor/assets/lib/font-awesome/css/brands.min.css?ver=1662835032
IP 162.214.109.148:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (902)
Hash aa0d58dc8bdd0dc0f146aed3f0a8ffce
b27d8275f3b81c4a7d5e289ae17abea6580a948b
34887142ecb0d89fcdb3c0aa7fe0b206f16dffb30226ee4dc2cf6c40466a2757
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/cache/min/1/wp-content/plugins/elementor/assets/lib/font-awesome/css/brands.min.css?ver=1662835032 HTTP/1.1
Host: cursomemokids.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://cursomemokids.com.br/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Fri, 16 Sep 2022 20:30:09 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Sat, 10 Sep 2022 18:37:12 GMT
Accept-Ranges: bytes
Cache-Control: max-age=31536000, public
Expires: Sat, 16 Sep 2023 20:30:09 GMT
Content-Encoding: gzip
Content-Length: 339
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css; charset=utf-8
cursomemokids.com.br/wp-content/plugins/elementor-pro/assets/css/frontend.min.css?ver=3.3.1
162.214.109.148200 OK 26 kB URL HTTP/1.1 cursomemokids.com.br/wp-content/plugins/elementor-pro/assets/css/frontend.min.css?ver=3.3.1
IP 162.214.109.148:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (65493)
Hash 5b9131952b3cab1a5e3b2dbb2c090ddf
9f2e6399668d50c3f81e60180ee7f9637469a9e4
f0da2e4469b9e4b8ebec350f4caca920669f98e36170d5cb50f06934c0a16b3f
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor-pro/assets/css/frontend.min.css?ver=3.3.1 HTTP/1.1
Host: cursomemokids.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://cursomemokids.com.br/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Fri, 16 Sep 2022 20:30:09 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Wed, 21 Jul 2021 20:33:18 GMT
Accept-Ranges: bytes
Cache-Control: max-age=31536000, public
Expires: Sat, 16 Sep 2023 20:30:09 GMT
Content-Encoding: gzip
Content-Length: 26172
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css; charset=utf-8
cursomemokids.com.br/wp-content/plugins/pixelyoursite/dist/scripts/jquery.bind-first-0.2.3.min.js?ver=6.0.2
162.214.109.148200 OK 689 B URL HTTP/1.1 cursomemokids.com.br/wp-content/plugins/pixelyoursite/dist/scripts/jquery.bind-first-0.2.3.min.js?ver=6.0.2
IP 162.214.109.148:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (1146)
Hash 8d5b2533f035f2539f1d97e1beebf8ad
2bf30d91c2c77828df933ef94dfb2d73eac92ba9
c8697cecab68050b6683b26e3c9d7144d3b69e9703f49e62c5086b69e1a84d6d
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/pixelyoursite/dist/scripts/jquery.bind-first-0.2.3.min.js?ver=6.0.2 HTTP/1.1
Host: cursomemokids.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://cursomemokids.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Fri, 16 Sep 2022 20:30:09 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Sat, 10 Sep 2022 18:12:09 GMT
Accept-Ranges: bytes
Cache-Control: max-age=31536000, public
Expires: Sat, 16 Sep 2023 20:30:09 GMT
Content-Encoding: gzip
Content-Length: 689
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript; charset=utf-8
cursomemokids.com.br/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
162.214.109.148200 OK 4.2 kB URL HTTP/1.1 cursomemokids.com.br/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP 162.214.109.148:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (11126)
Hash 5629711d7fdd5b28441bac39b851299f
4e0bf2b7383097f7c352023a1b1b1b48a50356b6
44c444309c7a6c05ff4a9bc198bed9e9596bedb5658637c85689c9a471dcdd16
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: cursomemokids.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://cursomemokids.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Fri, 16 Sep 2022 20:30:09 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Wed, 18 Nov 2020 09:06:06 GMT
Accept-Ranges: bytes
Cache-Control: max-age=31536000, public
Expires: Sat, 16 Sep 2023 20:30:09 GMT
Content-Encoding: gzip
Content-Length: 4169
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript; charset=utf-8
cursomemokids.com.br/wp-content/plugins/pixelyoursite/dist/scripts/js.cookie-2.1.3.min.js?ver=2.1.3
162.214.109.148200 OK 874 B URL HTTP/1.1 cursomemokids.com.br/wp-content/plugins/pixelyoursite/dist/scripts/js.cookie-2.1.3.min.js?ver=2.1.3
IP 162.214.109.148:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (1709), with no line terminators
Hash 32ddc2fb56c3a3d7ea4f8b55fccb3f3f
70680fa9ed54959b4cd87b9705947203145802a6
87a0471cc3bc8f273252e5f58dd5b3f4c349046e8bcea525df9e7b185aa40bcb
GET /wp-content/plugins/pixelyoursite/dist/scripts/js.cookie-2.1.3.min.js?ver=2.1.3 HTTP/1.1
Host: cursomemokids.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://cursomemokids.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Fri, 16 Sep 2022 20:30:09 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Sat, 10 Sep 2022 18:12:09 GMT
Accept-Ranges: bytes
Cache-Control: max-age=31536000, public
Expires: Sat, 16 Sep 2023 20:30:09 GMT
Content-Encoding: gzip
Content-Length: 874
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript; charset=utf-8
cursomemokids.com.br/wp-content/cache/min/1/wp-content/plugins/pixelyoursite/dist/scripts/public.js?ver=1662835032
162.214.109.148200 OK 10 kB URL HTTP/1.1 cursomemokids.com.br/wp-content/cache/min/1/wp-content/plugins/pixelyoursite/dist/scripts/public.js?ver=1662835032
IP 162.214.109.148:0
ASN #46606 UNIFIEDLAYER-AS-1
File type C source, ASCII text, with very long lines (1823)
Hash 7e883a623c52a2734986340949c72d2b
aef44986e1c3b2bcfc855f746b107bec462681b1
727f12c99dbf5f5ed63ae2c96b9797e8857dbaf6dfab00d1f38066e0ad98d1a1
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/cache/min/1/wp-content/plugins/pixelyoursite/dist/scripts/public.js?ver=1662835032 HTTP/1.1
Host: cursomemokids.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://cursomemokids.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Fri, 16 Sep 2022 20:30:09 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Sat, 10 Sep 2022 18:37:12 GMT
Accept-Ranges: bytes
Cache-Control: max-age=31536000, public
Expires: Sat, 16 Sep 2023 20:30:09 GMT
Content-Encoding: gzip
Content-Length: 10354
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript; charset=utf-8
cursomemokids.com.br/wp-content/plugins/elementor/assets/lib/font-awesome/js/v4-shims.min.js?ver=3.5.3
162.214.109.148200 OK 4.2 kB URL HTTP/1.1 cursomemokids.com.br/wp-content/plugins/elementor/assets/lib/font-awesome/js/v4-shims.min.js?ver=3.5.3
IP 162.214.109.148:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (14869)
Hash 1fcdd9935a66511c3b8069495af248e3
b0e375ac95b547b3bb6ce74cd1bcc505ffc2281d
4a741209fc122872cb5ae018a5870d70848a616fa98eb4289ad78cec986ec282
GET /wp-content/plugins/elementor/assets/lib/font-awesome/js/v4-shims.min.js?ver=3.5.3 HTTP/1.1
Host: cursomemokids.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://cursomemokids.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Fri, 16 Sep 2022 20:30:09 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Fri, 07 Jan 2022 13:18:58 GMT
Accept-Ranges: bytes
Cache-Control: max-age=31536000, public
Expires: Sat, 16 Sep 2023 20:30:09 GMT
Content-Encoding: gzip
Content-Length: 4205
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript; charset=utf-8
cursomemokids.com.br/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
162.214.109.148200 OK 31 kB URL HTTP/1.1 cursomemokids.com.br/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
IP 162.214.109.148:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (65447)
Hash 9640915738503451aa21181699feab5b
c053eaf36ef0da96619706b3abda326305063bd6
f8834e669ad1f4039442c26aaa373ec39c35a233b9786d374fc3f670f16b0adc
GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.0 HTTP/1.1
Host: cursomemokids.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://cursomemokids.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Fri, 16 Sep 2022 20:30:09 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Wed, 10 Mar 2021 15:07:24 GMT
Accept-Ranges: bytes
Cache-Control: max-age=31536000, public
Expires: Sat, 16 Sep 2023 20:30:09 GMT
Content-Encoding: gzip
Content-Length: 30908
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript; charset=utf-8
cursomemokids.com.br/wp-content/cache/min/1/wp-content/themes/tema_em_branco/js/navigation.js?ver=1662835032
162.214.109.148200 OK 703 B URL HTTP/1.1 cursomemokids.com.br/wp-content/cache/min/1/wp-content/themes/tema_em_branco/js/navigation.js?ver=1662835032
IP 162.214.109.148:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (522)
Hash 91971469a41b14bd8dfbf4d08d35b550
d974b12b61e9ceea6457e53eef3a4c4e9eae6b5a
8c4c38782d349710f7d423d13ce17e39f8dbfc54ec2a21b3f452532981e24cdb
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/cache/min/1/wp-content/themes/tema_em_branco/js/navigation.js?ver=1662835032 HTTP/1.1
Host: cursomemokids.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://cursomemokids.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Fri, 16 Sep 2022 20:30:09 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Sat, 10 Sep 2022 18:37:12 GMT
Accept-Ranges: bytes
Cache-Control: max-age=31536000, public
Expires: Sat, 16 Sep 2023 20:30:09 GMT
Content-Encoding: gzip
Content-Length: 703
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript; charset=utf-8
cursomemokids.com.br/wp-content/plugins/elementor/assets/lib/animations/animations.min.css?ver=3.5.3
162.214.109.148200 OK 2.6 kB URL HTTP/1.1 cursomemokids.com.br/wp-content/plugins/elementor/assets/lib/animations/animations.min.css?ver=3.5.3
IP 162.214.109.148:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (10019)
Hash 0ea81c35141c6a4692506e4fe8d36edb
392c5f96995e66d74c27ed5a42f93169c2f32d18
b7488fd21ad73e483cdcaf42097ea7787ffe0616477e29a537f53f6064e321ab
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/lib/animations/animations.min.css?ver=3.5.3 HTTP/1.1
Host: cursomemokids.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://cursomemokids.com.br/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Fri, 16 Sep 2022 20:30:09 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Fri, 07 Jan 2022 13:18:58 GMT
Accept-Ranges: bytes
Cache-Control: max-age=31536000, public
Expires: Sat, 16 Sep 2023 20:30:09 GMT
Content-Encoding: gzip
Content-Length: 2592
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: text/css; charset=utf-8
cursomemokids.com.br/wp-content/cache/min/1/wp-content/themes/tema_em_branco/js/skip-link-focus-fix.js?ver=1662835032
162.214.109.148200 OK 278 B URL HTTP/1.1 cursomemokids.com.br/wp-content/cache/min/1/wp-content/themes/tema_em_branco/js/skip-link-focus-fix.js?ver=1662835032
IP 162.214.109.148:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash d318677772a7468deec210cc566c2221
720a403b39cfa77bc785f577d605a556ae070bd9
bb01a49df4e149df6816e4762c24e348c8ce5d6ab5ad483d50cee19e5ad17aca
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/cache/min/1/wp-content/themes/tema_em_branco/js/skip-link-focus-fix.js?ver=1662835032 HTTP/1.1
Host: cursomemokids.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://cursomemokids.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Fri, 16 Sep 2022 20:30:09 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Sat, 10 Sep 2022 18:37:12 GMT
Accept-Ranges: bytes
Cache-Control: max-age=31536000, public
Expires: Sat, 16 Sep 2023 20:30:09 GMT
Content-Encoding: gzip
Content-Length: 278
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript; charset=utf-8
cursomemokids.com.br/wp-content/plugins/elementor-pro/assets/js/webpack-pro.runtime.min.js?ver=3.3.1
162.214.109.148200 OK 2.4 kB URL HTTP/1.1 cursomemokids.com.br/wp-content/plugins/elementor-pro/assets/js/webpack-pro.runtime.min.js?ver=3.3.1
IP 162.214.109.148:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (5419)
Hash 8e5accdb5d8b9e914d9a73c6e504c7b8
80e03da004d9ba4956dadb6f5ea0620ce8a3b95b
3a3619245fab8fd9b86a26c313322ab75af4cfb655cddb68ecca1ed37a180109
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor-pro/assets/js/webpack-pro.runtime.min.js?ver=3.3.1 HTTP/1.1
Host: cursomemokids.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://cursomemokids.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Fri, 16 Sep 2022 20:30:09 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Wed, 21 Jul 2021 20:33:18 GMT
Accept-Ranges: bytes
Cache-Control: max-age=31536000, public
Expires: Sat, 16 Sep 2023 20:30:09 GMT
Content-Encoding: gzip
Content-Length: 2440
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript; charset=utf-8
cursomemokids.com.br/wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.5.3
162.214.109.148200 OK 2.2 kB URL HTTP/1.1 cursomemokids.com.br/wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.5.3
IP 162.214.109.148:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (4866)
Hash c1b218a772211d40e5e7f3f0c01c9529
2271e9b73bd75f3aa015538159baa4c0203f3a40
72eec8b2d6f05c399ea113217b52a217c2eca4e32c4f4f282e26cc7446b492bb
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.5.3 HTTP/1.1
Host: cursomemokids.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://cursomemokids.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Fri, 16 Sep 2022 20:30:09 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Fri, 07 Jan 2022 13:18:57 GMT
Accept-Ranges: bytes
Cache-Control: max-age=31536000, public
Expires: Sat, 16 Sep 2023 20:30:09 GMT
Content-Encoding: gzip
Content-Length: 2166
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript; charset=utf-8
cursomemokids.com.br/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.5.3
162.214.109.148200 OK 4.6 kB URL HTTP/1.1 cursomemokids.com.br/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.5.3
IP 162.214.109.148:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (14196)
Hash 5d0e6f870c384a772af487b8dbcbdf80
cd747fa3d972c359702673cffecbfd50c9220826
3ed7fafd16ab9b0f44643fc747e1d4b33b23e247029c0cd9070aa412fe0fd576
GET /wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.5.3 HTTP/1.1
Host: cursomemokids.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://cursomemokids.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Fri, 16 Sep 2022 20:30:09 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Fri, 07 Jan 2022 13:18:58 GMT
Accept-Ranges: bytes
Cache-Control: max-age=31536000, public
Expires: Sat, 16 Sep 2023 20:30:09 GMT
Content-Encoding: gzip
Content-Length: 4610
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript; charset=utf-8
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 8fb510c0e0fbff6302a68eb385520e3f
cd5149c6ffc7ee3d90e9e6884af8e02f44c7ab00
2b9cd0f540eb0916ad5c3ee63dbc8ee57570c3eaae7aeabca5c8cb03a3c73c32
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 16 Sep 2022 20:30:09 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 7df27d4646e6e1cd358f0997ad604ea9
bf0c3feb55312e00ed8aa718458cc1e932903ac2
ba7ebd5b66156d280c46a2e492c5830f67e114711498b405b4e57ee1f45f4905
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 16 Sep 2022 20:30:09 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.googletagmanager.com/gtm.js?id=GTM-K6757XT
142.250.74.72302 Found 251 B URL HTTP/1.1 www.googletagmanager.com/gtm.js?id=GTM-K6757XT
IP 142.250.74.72:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF, LF line terminators
Hash 366b4b0cef5bde562ff25de40c513839
ae936c043afa59c64c71cbef915258d733442bfb
4320d6aa9aae746e3019ff65c81d2bb4ccd6e499cf498675f2a3a59ff92950b2
GET /gtm.js?id=GTM-K6757XT HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cursomemokids.com.br/
HTTP/1.1 302 Found
Location: https://www.googletagmanager.com/gtm.js?id=GTM-K6757XT
Cross-Origin-Resource-Policy: cross-origin
Date: Fri, 16 Sep 2022 20:30:09 GMT
Content-Type: text/html; charset=UTF-8
Server: Google Tag Manager
Content-Length: 251
X-XSS-Protection: 0
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 8fb510c0e0fbff6302a68eb385520e3f
cd5149c6ffc7ee3d90e9e6884af8e02f44c7ab00
2b9cd0f540eb0916ad5c3ee63dbc8ee57570c3eaae7aeabca5c8cb03a3c73c32
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 16 Sep 2022 20:30:09 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 7df27d4646e6e1cd358f0997ad604ea9
bf0c3feb55312e00ed8aa718458cc1e932903ac2
ba7ebd5b66156d280c46a2e492c5830f67e114711498b405b4e57ee1f45f4905
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 16 Sep 2022 20:30:09 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 8fb510c0e0fbff6302a68eb385520e3f
cd5149c6ffc7ee3d90e9e6884af8e02f44c7ab00
2b9cd0f540eb0916ad5c3ee63dbc8ee57570c3eaae7aeabca5c8cb03a3c73c32
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 16 Sep 2022 20:30:09 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/montserrat/v25/JTUQjIg1_i6t8kCHKm459WxRyS7m.woff2
142.250.74.163200 OK 32 kB URL HTTP/2 fonts.gstatic.com/s/montserrat/v25/JTUQjIg1_i6t8kCHKm459WxRyS7m.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 31760, version 1.0\012- data
Hash fda4d0b623999af43148ba34c3b1ff73
ca5496af89720cc3e94e6279132f252b7cd471a6
33befdbbb24930584f5ac94ea3117adcd56518f20ab1619d05de83ffd1821d38
GET /s/montserrat/v25/JTUQjIg1_i6t8kCHKm459WxRyS7m.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://cursomemokids.com.br
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 31760
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 12 Sep 2022 22:18:58 GMT
expires: Tue, 12 Sep 2023 22:18:58 GMT
cache-control: public, max-age=31536000
age: 339071
last-modified: Mon, 11 Jul 2022 18:54:16 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2
142.250.74.163200 OK 31 kB URL HTTP/2 fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 30928, version 1.0\012- data
Hash ac0d2859ea5f8fd6bcb3c305c08ec184
7f6c17e3e592cd8bd346b9cc261d8dd961b8aef7
ae919a7c9f25f0fd97fc18e398ae8e453fcaae487e4a4cb4f896e7fecde4a780
GET /s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://cursomemokids.com.br
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 30928
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 15 Sep 2022 16:40:18 GMT
expires: Fri, 15 Sep 2023 16:40:18 GMT
cache-control: public, max-age=31536000
age: 100191
last-modified: Mon, 11 Jul 2022 18:57:39 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 8fb510c0e0fbff6302a68eb385520e3f
cd5149c6ffc7ee3d90e9e6884af8e02f44c7ab00
2b9cd0f540eb0916ad5c3ee63dbc8ee57570c3eaae7aeabca5c8cb03a3c73c32
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 16 Sep 2022 20:30:09 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
cursomemokids.com.br/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2
162.214.109.148200 OK 3.0 kB URL HTTP/1.1 cursomemokids.com.br/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2
IP 162.214.109.148:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (12198), with no line terminators
Hash cfea3c51880820f2962a7773fbc864f9
45aa7ddc9b0c4201097d0df36791ab346470b734
12296ac9ef200103f8eea198a2bcd92692119dacece39538499758a0349035fb
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2 HTTP/1.1
Host: cursomemokids.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://cursomemokids.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Fri, 16 Sep 2022 20:30:09 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Fri, 07 Jan 2022 13:18:58 GMT
Accept-Ranges: bytes
Cache-Control: max-age=31536000, public
Expires: Sat, 16 Sep 2023 20:30:09 GMT
Content-Encoding: gzip
Content-Length: 2993
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: application/javascript; charset=utf-8
cursomemokids.com.br/wp-content/uploads/2019/10/tira-maior-pv-1-1.jpg
162.214.109.148200 OK 4.6 kB URL HTTP/1.1 cursomemokids.com.br/wp-content/uploads/2019/10/tira-maior-pv-1-1.jpg
IP 162.214.109.148:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "Compressed by jpeg-recompress", progressive, precision 8, 1899x165, components 3\012- data
Hash 69165a800c44c41c65ea880e8c3e58e5
0254e11afd3de6ca4659e6253a66f37ac9f1962b
852a3b7a24ae7451e444e56c21a67a7d75ccb7ad9a76dd7ad010ed3cdc775aac
GET /wp-content/uploads/2019/10/tira-maior-pv-1-1.jpg HTTP/1.1
Host: cursomemokids.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Cookie: pys_session_limit=true; pys_start_session=true
HTTP/1.1 200 OK
Date: Fri, 16 Sep 2022 20:30:09 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Fri, 13 Mar 2020 17:53:06 GMT
Accept-Ranges: bytes
Content-Length: 4604
Cache-Control: max-age=10368000, public
Expires: Sat, 14 Jan 2023 20:30:09 GMT
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: image/jpeg
cursomemokids.com.br/wp-content/uploads/2019/11/ff_pagina.jpg
162.214.109.148200 OK 12 kB URL HTTP/1.1 cursomemokids.com.br/wp-content/uploads/2019/11/ff_pagina.jpg
IP 162.214.109.148:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "Compressed by jpeg-recompress", progressive, precision 8, 1920x1080, components 3\012- data
Hash 323e999df864d0cd9d974f5f180123e7
60326b1b509c2b7dde745d43fb78e2cebd7aba49
ef6b42cec0c74d1b7c4bc1c7c3167e554e76586cee59a9b1c60db367f4307a7f
GET /wp-content/uploads/2019/11/ff_pagina.jpg HTTP/1.1
Host: cursomemokids.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Cookie: pys_session_limit=true; pys_start_session=true
HTTP/1.1 200 OK
Date: Fri, 16 Sep 2022 20:30:09 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Fri, 13 Mar 2020 17:51:18 GMT
Accept-Ranges: bytes
Content-Length: 11575
Cache-Control: max-age=10368000, public
Expires: Sat, 14 Jan 2023 20:30:09 GMT
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: image/jpeg
cursomemokids.com.br/wp-content/plugins/elementor-pro/assets/js/frontend.min.js?ver=3.3.1
162.214.109.148200 OK 16 kB URL HTTP/1.1 cursomemokids.com.br/wp-content/plugins/elementor-pro/assets/js/frontend.min.js?ver=3.3.1
IP 162.214.109.148:0
ASN #46606 UNIFIEDLAYER-AS-1
File type Unicode text, UTF-8 text, with very long lines (58848)
Hash 5b7e78fc0148786749527706007b253a
1d68e5c1403dc569b04382dee92316bca64f411c
d067721fae3bea98cca82980c405845ac48cd29197598b4c857ce7b003afc540
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor-pro/assets/js/frontend.min.js?ver=3.3.1 HTTP/1.1
Host: cursomemokids.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://cursomemokids.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Fri, 16 Sep 2022 20:30:09 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Wed, 21 Jul 2021 20:33:18 GMT
Accept-Ranges: bytes
Cache-Control: max-age=31536000, public
Expires: Sat, 16 Sep 2023 20:30:09 GMT
Content-Encoding: gzip
Content-Length: 16193
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: application/javascript; charset=utf-8
cursomemokids.com.br/wp-includes/js/jquery/ui/core.min.js?ver=1.13.1
162.214.109.148200 OK 6.9 kB URL HTTP/1.1 cursomemokids.com.br/wp-includes/js/jquery/ui/core.min.js?ver=1.13.1
IP 162.214.109.148:0
ASN #46606 UNIFIEDLAYER-AS-1
File type Unicode text, UTF-8 text, with very long lines (8189)
Hash 7e2b78a6e8a9b90385330755ee1cf3e5
684c325f39d45e42ae44a9e42f5e9fe4fb0b909c
43f124dabb4bc663cc1cc8d3161c1e6365cf8445d873ed5d69bbfdb507cf24a9
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/ui/core.min.js?ver=1.13.1 HTTP/1.1
Host: cursomemokids.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://cursomemokids.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Fri, 16 Sep 2022 20:30:09 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Sat, 10 Sep 2022 18:14:15 GMT
Accept-Ranges: bytes
Cache-Control: max-age=31536000, public
Expires: Sat, 16 Sep 2023 20:30:09 GMT
Content-Encoding: gzip
Content-Length: 6914
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: application/javascript; charset=utf-8
cursomemokids.com.br/wp-content/plugins/elementor/assets/lib/share-link/share-link.min.js?ver=3.5.3
162.214.109.148200 OK 1.1 kB URL HTTP/1.1 cursomemokids.com.br/wp-content/plugins/elementor/assets/lib/share-link/share-link.min.js?ver=3.5.3
IP 162.214.109.148:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (2577)
Hash 71a6972e79bfdcc72ffc068e6e845a23
0e37b7f3c6252f6701998fa0e2e1b555b4804a97
dc7dbf2f94f1c49a262b4be428f54349805cfa2841806bc8d691fda13b82e90f
GET /wp-content/plugins/elementor/assets/lib/share-link/share-link.min.js?ver=3.5.3 HTTP/1.1
Host: cursomemokids.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://cursomemokids.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Fri, 16 Sep 2022 20:30:09 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Fri, 07 Jan 2022 13:18:58 GMT
Accept-Ranges: bytes
Cache-Control: max-age=31536000, public
Expires: Sat, 16 Sep 2023 20:30:09 GMT
Content-Encoding: gzip
Content-Length: 1099
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: application/javascript; charset=utf-8
cursomemokids.com.br/wp-content/plugins/elementor/assets/lib/dialog/dialog.min.js?ver=4.9.0
162.214.109.148200 OK 3.4 kB URL HTTP/1.1 cursomemokids.com.br/wp-content/plugins/elementor/assets/lib/dialog/dialog.min.js?ver=4.9.0
IP 162.214.109.148:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (10544)
Hash 88f71137b2a89a53df46cdb4deeb4e3d
426e12f0e8712db20afd2c54e77e1384074f3181
591a8b7a859de8af878c56e1ec72384596285f768387e9958f0a0afe53d89428
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/lib/dialog/dialog.min.js?ver=4.9.0 HTTP/1.1
Host: cursomemokids.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://cursomemokids.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Fri, 16 Sep 2022 20:30:09 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Fri, 07 Jan 2022 13:18:58 GMT
Accept-Ranges: bytes
Cache-Control: max-age=31536000, public
Expires: Sat, 16 Sep 2023 20:30:09 GMT
Content-Encoding: gzip
Content-Length: 3446
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: application/javascript; charset=utf-8
fonts.googleapis.com/css?family=Roboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto%20Slab%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CMontserrat%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=swap
142.250.74.10200 OK 13 kB URL HTTP/2 fonts.googleapis.com/css?family=Roboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto%20Slab%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CMontserrat%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=swap
IP 142.250.74.10:0
Hash 2717203b89115426d5fe9e028ae24000
13089006e65028bff8294c701e8c3eee91b0b464
68ed8248c6d4a13875c33f799dadf5668ae63da556090408a90101ba0701dbc2
GET /css?family=Roboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto%20Slab%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CMontserrat%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://cursomemokids.com.br/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 16 Sep 2022 20:30:08 GMT
date: Fri, 16 Sep 2022 20:30:08 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
cursomemokids.com.br/wp-content/plugins/elementor/assets/js/preloaded-modules.min.js?ver=3.5.3
162.214.109.148200 OK 13 kB URL HTTP/1.1 cursomemokids.com.br/wp-content/plugins/elementor/assets/js/preloaded-modules.min.js?ver=3.5.3
IP 162.214.109.148:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (42994)
Hash 3b6dc28a9482a169f5c86157747fefd3
481f40dd36d24f65e29452db5755f1eb6f4eae78
3376cbe0f024d5c87aa1a15ef8faad477b1c3ba9bd0a7e855f8854b5bc1b086d
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/js/preloaded-modules.min.js?ver=3.5.3 HTTP/1.1
Host: cursomemokids.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://cursomemokids.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Fri, 16 Sep 2022 20:30:09 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Fri, 07 Jan 2022 13:18:58 GMT
Accept-Ranges: bytes
Cache-Control: max-age=31536000, public
Expires: Sat, 16 Sep 2023 20:30:09 GMT
Content-Encoding: gzip
Content-Length: 12969
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: application/javascript; charset=utf-8
cursomemokids.com.br/wp-content/uploads/2019/10/1c541b8dcdd5918507d2c19f6c838887-1.jpg
162.214.109.148200 OK 7.1 kB URL HTTP/1.1 cursomemokids.com.br/wp-content/uploads/2019/10/1c541b8dcdd5918507d2c19f6c838887-1.jpg
IP 162.214.109.148:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 626x469, components 3\012- data
Hash 29f33abfd99230a2c3138e8b9f9b9738
a1647cdb24384a8c695823226b9e3389619bb7b6
fe44baa17bd8fcbf092e0ce68e311bd936e0449cbabcdf6e79e5f9a1d2d1aacc
GET /wp-content/uploads/2019/10/1c541b8dcdd5918507d2c19f6c838887-1.jpg HTTP/1.1
Host: cursomemokids.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Cookie: pys_session_limit=true; pys_start_session=true
HTTP/1.1 200 OK
Date: Fri, 16 Sep 2022 20:30:09 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Fri, 11 Oct 2019 13:57:26 GMT
Accept-Ranges: bytes
Content-Length: 7068
Cache-Control: max-age=10368000, public
Expires: Sat, 14 Jan 2023 20:30:09 GMT
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: image/jpeg
cursomemokids.com.br/wp-content/plugins/elementor/assets/lib/swiper/swiper.min.js?ver=5.3.6
162.214.109.148200 OK 36 kB URL HTTP/1.1 cursomemokids.com.br/wp-content/plugins/elementor/assets/lib/swiper/swiper.min.js?ver=5.3.6
IP 162.214.109.148:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (65280)
Hash f2f239cb6e82311cd197aa5888632811
e2376a981fa3bf8e7e36e86b979f3a3ea6443d29
c4ceac2088d1b38f5263c50bdfb2e54ed643186248b3a81c5850214b55336e4d
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/lib/swiper/swiper.min.js?ver=5.3.6 HTTP/1.1
Host: cursomemokids.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://cursomemokids.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Fri, 16 Sep 2022 20:30:09 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Fri, 07 Jan 2022 13:18:58 GMT
Accept-Ranges: bytes
Cache-Control: max-age=31536000, public
Expires: Sat, 16 Sep 2023 20:30:09 GMT
Content-Encoding: gzip
Content-Length: 35491
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: application/javascript; charset=utf-8
cursomemokids.com.br/wp-content/plugins/elementor-pro/assets/lib/sticky/jquery.sticky.min.js?ver=3.3.1
162.214.109.148200 OK 1.9 kB URL HTTP/1.1 cursomemokids.com.br/wp-content/plugins/elementor-pro/assets/lib/sticky/jquery.sticky.min.js?ver=3.3.1
IP 162.214.109.148:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (6595), with no line terminators
Hash c8ebb5b680f4fa05c2502a56875e03f7
96542e309834bb6dfddaf3d1efce6d75ceff5e18
76a0021ccb778baeadd50f182e2c4055a36527e1fc70341f82136a2e60eeb442
GET /wp-content/plugins/elementor-pro/assets/lib/sticky/jquery.sticky.min.js?ver=3.3.1 HTTP/1.1
Host: cursomemokids.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://cursomemokids.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Fri, 16 Sep 2022 20:30:09 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Wed, 21 Jul 2021 20:33:18 GMT
Accept-Ranges: bytes
Cache-Control: max-age=31536000, public
Expires: Sat, 16 Sep 2023 20:30:09 GMT
Content-Encoding: gzip
Content-Length: 1895
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: application/javascript; charset=utf-8
cursomemokids.com.br/wp-content/uploads/2019/10/fundo-pv3-1.jpg
162.214.109.148200 OK 42 kB URL HTTP/1.1 cursomemokids.com.br/wp-content/uploads/2019/10/fundo-pv3-1.jpg
IP 162.214.109.148:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, progressive, precision 8, 1920x1080, components 3\012- data
Hash a356077b54d84abd624f53fe6dbf2871
f5b89347393ab314655c1b24f05be9743a049f84
d9a49a4e333917f9090bb1a1e1ae97ea73b1e9304c48a9c8ce1df6dd20e13088
GET /wp-content/uploads/2019/10/fundo-pv3-1.jpg HTTP/1.1
Host: cursomemokids.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Cookie: pys_session_limit=true; pys_start_session=true
HTTP/1.1 200 OK
Date: Fri, 16 Sep 2022 20:30:09 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Fri, 11 Oct 2019 13:57:32 GMT
Accept-Ranges: bytes
Content-Length: 42483
Cache-Control: max-age=10368000, public
Expires: Sat, 14 Jan 2023 20:30:09 GMT
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: image/jpeg
cursomemokids.com.br/wp-content/plugins/elementor-pro/assets/js/preloaded-elements-handlers.min.js?ver=3.3.1
162.214.109.148200 OK 39 kB URL HTTP/1.1 cursomemokids.com.br/wp-content/plugins/elementor-pro/assets/js/preloaded-elements-handlers.min.js?ver=3.3.1
IP 162.214.109.148:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (65493)
Hash 9f458c32187447b33f6663c41b8d8344
339ce519496507fcd18f3a72208c13c2b1893258
7f7a4548568ebbdc3595b40cca2a84434053696a3c096eddb952fbab0b7b4402
GET /wp-content/plugins/elementor-pro/assets/js/preloaded-elements-handlers.min.js?ver=3.3.1 HTTP/1.1
Host: cursomemokids.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://cursomemokids.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Fri, 16 Sep 2022 20:30:09 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Wed, 21 Jul 2021 20:33:18 GMT
Accept-Ranges: bytes
Cache-Control: max-age=31536000, public
Expires: Sat, 16 Sep 2023 20:30:09 GMT
Content-Encoding: gzip
Content-Length: 38700
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: application/javascript; charset=utf-8
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash b4a24f9aebdfdb06d10cd53e92a70bb8
c4532479dbd9636d8f5206faa085c520651eb5f2
1d330af2b423e351355f710f14cb771fa9918e8b6638c5076aba7bcda6c30936
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 16 Sep 2022 20:30:10 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google-analytics.com/gtm/optimize.js?id=OPT-N2RCV7V
142.250.74.174200 OK 45 kB URL HTTP/2 www.google-analytics.com/gtm/optimize.js?id=OPT-N2RCV7V
IP 142.250.74.174:0
File type ASCII text, with very long lines (1720)
Hash c50e33cfcb76c00f877b310b3e36d9f8
dae0179a2d5a92d32da4ce928c5fa6d14b3659f0
62d79fa81fedc2ff0dcd8f8c4cd3dc1efdb59ffa38cd17455b0a25c9402da195
GET /gtm/optimize.js?id=OPT-N2RCV7V HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://cursomemokids.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Fri, 16 Sep 2022 20:30:10 GMT
expires: Fri, 16 Sep 2022 20:30:10 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 44817
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google.com/pagead/conversion_async.js
142.250.74.164200 OK 16 kB URL HTTP/2 www.google.com/pagead/conversion_async.js
IP 142.250.74.164:0
File type ASCII text, with very long lines (1654)
Hash 890f716858b5f72587e47c5eca121cb5
91871a0acd9a0ab644d51036bb5ca0c3bdc5e687
7a3629e375468328b3fb25e1a6cc5749604f09099e8d2109f366e7e0226aee4a
GET /pagead/conversion_async.js HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://cursomemokids.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
date: Fri, 16 Sep 2022 20:30:10 GMT
expires: Fri, 16 Sep 2022 20:30:10 GMT
cache-control: private, max-age=3600
content-type: text/javascript; charset=UTF-8
etag: 3080337328058561381
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
server: cafe
content-length: 15693
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 9730b7d7d5f0481f65712991a899f4b8
facb4df5e4a4ac98b9bdd126c7dbb531cf0fe1e7
15d7d8acbcd94d9ca8579cc31a9ec621e76408663bc4b047e5e127acb14334a6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 16 Sep 2022 20:30:10 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
cursomemokids.com.br/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-solid-900.woff2
162.214.109.148200 OK 10 kB URL HTTP/1.1 cursomemokids.com.br/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-solid-900.woff2
IP 162.214.109.148:0
ASN #46606 UNIFIEDLAYER-AS-1
File type Web Open Font Format (Version 2), TrueType, length 78196, version 331.-31261\012- data
Hash 0ae5870b437d57b5beaa440c09fc5198
1d37f26c3d54e8001e146ae80fe757e9c12b96f3
c9bab5d163e83194cbd732623481b83445a40e13f1854fa6764f70030afc25c4
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-solid-900.woff2 HTTP/1.1
Host: cursomemokids.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://cursomemokids.com.br
Connection: keep-alive
Referer: https://cursomemokids.com.br/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Fri, 16 Sep 2022 20:30:10 GMT
Server: Apache
Last-Modified: Fri, 07 Jan 2022 13:18:58 GMT
Accept-Ranges: bytes
Content-Length: 78196
Cache-Control: max-age=10368000
Expires: Sat, 14 Jan 2023 20:30:10 GMT
Vary: Accept-Encoding
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: font/woff2
cursomemokids.com.br/wp-content/uploads/2019/07/LOGOMARCA-copiar-1-768x215.png
162.214.109.148200 OK 17 kB URL HTTP/1.1 cursomemokids.com.br/wp-content/uploads/2019/07/LOGOMARCA-copiar-1-768x215.png
IP 162.214.109.148:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 768 x 215, 8-bit colormap, non-interlaced\012- data
Hash 1928a9f71bedd647f40386da4b4ea51b
730b42968eab8d8dbd144abde28ff24386f5349d
af928d8e7248ab12bc247bcf854d15cddaaad767c5600cc9e27967c015f4d899
GET /wp-content/uploads/2019/07/LOGOMARCA-copiar-1-768x215.png HTTP/1.1
Host: cursomemokids.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://cursomemokids.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Fri, 16 Sep 2022 20:30:10 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Fri, 13 Mar 2020 18:24:37 GMT
Accept-Ranges: bytes
Content-Length: 16729
Cache-Control: max-age=10368000, public
Expires: Sat, 14 Jan 2023 20:30:10 GMT
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: image/png
player.vimeo.com/video/529515119?color&autopause=0&loop=0&muted=0&title=1&portrait=1&byline=1
162.159.138.60200 OK 16 kB URL HTTP/1.1 player.vimeo.com/video/529515119?color&autopause=0&loop=0&muted=0&title=1&portrait=1&byline=1
IP 162.159.138.60:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (47365)
Hash e71a52c9a7270512d5728f99edfefcd6
298a13e1365cc09deb289464c57424af5db202fa
3a08d757c514a1f1f80b1c441914c3cf6deeaffbea815297bc7142ae7338415a
GET /video/529515119?color&autopause=0&loop=0&muted=0&title=1&portrait=1&byline=1 HTTP/1.1
Host: player.vimeo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://cursomemokids.com.br/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Fri, 16 Sep 2022 20:30:10 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
x-xss-protection: 1; mode=block
content-security-policy: script-src 'self' 'unsafe-inline' blob: resource: https://f.vimeocdn.com https://vimeo.com https://js-agent.newrelic.com https://imasdk.googleapis.com/ https://adservice.google.com/ https://s0.2mdn.net/instream/video/ https://bam.nr-data.net https://src.litix.io https://www.gstatic.com https://cdn.streamroot.io https://cdn.kollective.app/ https://wirewax.s3.eu-west-1.amazonaws.com https://edge-assets.wirewax.com https://embedder-sdk.wirewax.com https://embedder-sdk.wirewax.tv https://f.vimeocdn.com; style-src 'self' 'unsafe-inline' https://f.vimeocdn.com https://fonts.googleapis.com https://edge-assets.wirewax.com https://f.vimeocdn.com; connect-src 'self' ws: wss: https://vimeo.com https://vimeo.dev https://api.vimeo.com https://api.vimeo.dev https://*.ci.vimeows.com https://csi.gstatic.com https://fresnel-player-staging.vimeows.com https://fresnel-event-staging.vimeows.com https://player-telemetry.vimeo.com https://*.akamaized.net https://*.akamaized-staging.net https://*.vimeocdn.com https://netflux.cloud.vimeo.com https://lic.staging.drmtoday.com https://lic.drmtoday.com https://wv.service.expressplay.com https://fp.service.expressplay.com https://pr.service.expressplay.com https://sentry.io https://*.ingest.sentry.io https://storage.googleapis.com https://bam.nr-data.net https://live-api.cloud.vimeo.com https://live-api-dev.cloud.vimeo.com https://*.litix.io/ https://collector.vhx.tv https://collector.vhxstaging.com https://backend.dna-delivery.com https://*.kollective.app/ https://mimir.cloud.vimeo.com https://*.wirewax.com https://*.wirewax.tv https://wirewax.s3.eu-west-1.amazonaws.com https://sqs.us-east-1.amazonaws.com https://sqs.eu-west-1.amazonaws.com https://s3-eu-west-1.amazonaws.com https://cognito-identity.us-east-1.amazonaws.com https://cognito-identity.eu-west-1.amazonaws.com; media-src 'self' blob: https://*.vimeocdn.com https://*.akamaized.net https://*.akamaized-staging.net https://*.gvt1.com https://live-api.cloud.vimeo.com https://live-api-dev.cloud.vimeo.com https://devcaptions.cloud.vimeo.com/; object-src 'self' https://*.vimeocdn.com https://*.akamaized.net https://*.akamaized-staging.net; default-src 'none'; font-src https://edge-assets.wirewax.com https://player.vimeo.com https://fonts.gstatic.com; img-src 'self' data: https://i.vimeocdn.com https://secure-b.vimeocdn.com https://f.vimeocdn.com https://vimeo.com https://secure.gravatar.com https://i0.wp.com https://i1.wp.com https://i2.wp.com https://pagead2.googlesyndication.com https://player.vimeo.com https://*.ci.vimeows.com https://videoapi-sprites.vimeocdn.com https://i.vimeocdn.com https://wirewax.s3.eu-west-1.amazonaws.com https://studio-media.wirewax.com https://edge-assets.wirewax.com https://maps.googleapis.com https://f.vimeocdn.com; frame-src 'self' https://*
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
link: <https://i.vimeocdn.com>; rel=preconnect; crossorigin, <https://f.vimeocdn.com>; rel=preconnect; crossorigin, <https://fresnel.vimeocdn.com>; rel=preconnect; crossorigin
p3p: CP="This is not a P3P policy! See https://vimeo.com/privacy"
expires: Fri, 16 Sep 2022 20:40:10 GMT
x-host: player-5cc7f5c747-kzqjj
via: 1.1 varnish, 1.1 varnish
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
x-varnish-cache: 0
x-vserver: playproxy-rollout-prod-varnish-5
x-backend-proxy: playproxy6
x-bapp-server: player-5cc7f5c747-kzqjj
Age: 0
X-Served-By: cache-bma1632-BMA
X-Cache: MISS
X-Cache-Hits: 0
X-Timer: S1663360210.375924,VS0,VE326
Vary: Accept-Encoding
X-Player-Backend: p
CF-Cache-Status: DYNAMIC
Set-Cookie: __cf_bm=.3uFVpfOCOW4armZngCl5fPOybg38jKfgOYUZJD81bw-1663360210-0-AWKsz0CGrh6KNPmvHjYuXM5i6QNPusrgZhMWyGESmC9RQGqJIlG9ogs2tgzPGv5qV9hE2vFSLsKosWlSy3qZ1ow=; path=/; expires=Fri, 16-Sep-22 21:00:10 GMT; domain=.vimeo.com; HttpOnly; Secure; SameSite=None
Server: cloudflare
CF-RAY: 74bc5bc2c840b50b-OSL
Content-Encoding: gzip
cursomemokids.com.br/wp-content/uploads/2020/07/faixa-cmk-1536x486.jpg
162.214.109.148200 OK 75 kB URL HTTP/1.1 cursomemokids.com.br/wp-content/uploads/2020/07/faixa-cmk-1536x486.jpg
IP 162.214.109.148:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1536x486, components 3\012- data
Hash 0c02b203a06248372352c77f8bdfee03
2528d9c55528ba16d65bc227e88bdf604d9053f4
002d5ad103edc8158d577e99b14bd3545d665d3c6a8e42b0bf9e30f13c5f41de
GET /wp-content/uploads/2020/07/faixa-cmk-1536x486.jpg HTTP/1.1
Host: cursomemokids.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://cursomemokids.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Fri, 16 Sep 2022 20:30:10 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Thu, 30 Jul 2020 14:29:30 GMT
Accept-Ranges: bytes
Content-Length: 75169
Cache-Control: max-age=10368000, public
Expires: Sat, 14 Jan 2023 20:30:10 GMT
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: image/jpeg
f.vimeocdn.com/p/4.10.0/css/player.css
151.101.86.109200 OK 20 kB URL HTTP/2 f.vimeocdn.com/p/4.10.0/css/player.css
IP 151.101.86.109:0
File type ASCII text, with very long lines (65495)
Hash 4004ba0e2bb66b9aeaa32a8544f6eeab
5bf81fc199d0a7fcc805d154e33cdfc992a9689b
1bb8fbd867ab8d696b7ca95485fa59d154afb14213041f9d4d12bbff398da7fd
GET /p/4.10.0/css/player.css HTTP/1.1
Host: f.vimeocdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://player.vimeo.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Fri, 16 Sep 2022 20:30:10 GMT
age: 697724
x-served-by: cache-iad-kcgs7200157-IAD, cache-bma1648-BMA
x-cache: HIT, HIT
x-cache-hits: 1, 136210
x-timer: S1663360211.841002,VS0,VE0
vary: Accept-Encoding,x-http-method-override
cache-control: max-age=1209600
access-control-allow-origin: *
content-length: 20291
X-Firefox-Spdy: h2
f.vimeocdn.com/js_opt/modules/utils/vuid.min.js
151.101.86.109200 OK 997 B URL HTTP/2 f.vimeocdn.com/js_opt/modules/utils/vuid.min.js
IP 151.101.86.109:0
File type ASCII text, with very long lines (1839)
Hash 0ad074ceab68348048a8100a67d36d2c
2a35d9429a411fd87aafd7e6c7fafe51cca82345
0445c9738353c896284236d8c98b5c8b5d7954621d4c4d2bd5cf138660d247aa
GET /js_opt/modules/utils/vuid.min.js HTTP/1.1
Host: f.vimeocdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://player.vimeo.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-encoding: gzip
cache-control: public, max-age=2592000
timing-allow-origin: *
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Fri, 16 Sep 2022 20:30:10 GMT
age: 2344372
x-served-by: cache-iad-kiad7000127-IAD, cache-bma1648-BMA
x-cache: HIT, HIT
x-cache-hits: 1, 128348
x-timer: S1663360211.855281,VS0,VE0
vary: Accept-Encoding,x-http-method-override
content-length: 997
X-Firefox-Spdy: h2
f.vimeocdn.com/p/4.10.0/js/player.js
151.101.86.109200 OK 212 kB URL HTTP/2 f.vimeocdn.com/p/4.10.0/js/player.js
IP 151.101.86.109:0
File type ASCII text, with very long lines (64649)
Size 212 kB (212200 bytes)
Hash 1bf1cd7e4980bdcf6fc5f33823b2280e
3f9724f4a224915506d6ef7c96dc0564f2c51466
13d45c1b32674b0f6d60248713b74d4845ccbef7714b97799f76b3be286ca1d2
GET /p/4.10.0/js/player.js HTTP/1.1
Host: f.vimeocdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://player.vimeo.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Fri, 16 Sep 2022 20:30:10 GMT
age: 697724
x-served-by: cache-iad-kcgs7200061-IAD, cache-bma1648-BMA
x-cache: HIT, HIT
x-cache-hits: 1, 90864
x-timer: S1663360211.854262,VS0,VE0
vary: Accept-Encoding,x-http-method-override
cache-control: max-age=1209600
content-length: 212200
X-Firefox-Spdy: h2
cursomemokids.com.br/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-solid-900.woff
162.214.109.148200 OK 9.7 kB URL HTTP/1.1 cursomemokids.com.br/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-solid-900.woff
IP 162.214.109.148:0
ASN #46606 UNIFIEDLAYER-AS-1
File type Web Open Font Format, TrueType, length 101652, version 331.-31261\012- data
Hash 255205271ce31c431b43366ad190ce26
ab465010e74561cfe6300a0f109c99be1c01220c
206a5655c31fae29c5130310ce5f4349952cd53bf92e5fec1526ed5daa245ac9
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-solid-900.woff HTTP/1.1
Host: cursomemokids.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://cursomemokids.com.br
Connection: keep-alive
Referer: https://cursomemokids.com.br/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Fri, 16 Sep 2022 20:30:10 GMT
Server: Apache
Last-Modified: Fri, 07 Jan 2022 13:18:58 GMT
Accept-Ranges: bytes
Content-Length: 101652
Cache-Control: max-age=10368000
Expires: Sat, 14 Jan 2023 20:30:10 GMT
Vary: Accept-Encoding
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: font/woff
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash fa86a62c870c1ce23fd85f73e99d7964
81af6fd2507bb58c6b040fd5f494de01d22e7102
76bc6fffeb8593064820e909edc5e4991cb4a5c1b609916a6021974665b5286f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 16 Sep 2022 20:30:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
googleads.g.doubleclick.net/pagead/viewthroughconversion/762979249/?random=1663360193857&cv=9&fst=1663360193857&num=1&bg=ffffff&guid=ON&resp=GooglemKTybQhCsO&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0>m=2oa9e0&sendb=1&ig=0&data=event%3Dgtag.config&frm=0&url=http%3A%2F%2Fcursomemokids.com.br%2F&tiba=MemoKids%20%E2%80%93%20Memoriza%C3%A7%C3%A3o%20para%20crian%C3%A7as%20%E2%80%93%20Como%20ensinar%20seu%20filho%20a%20estudar%20usando%20a%20mem%C3%B3ria&auid=142953412.1663360193&hn=www.google.com&async=1&rfmt=3&fmt=4
142.250.74.66200 OK 1.1 kB URL HTTP/2 googleads.g.doubleclick.net/pagead/viewthroughconversion/762979249/?random=1663360193857&cv=9&fst=1663360193857&num=1&bg=ffffff&guid=ON&resp=GooglemKTybQhCsO&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0>m=2oa9e0&sendb=1&ig=0&data=event%3Dgtag.config&frm=0&url=http%3A%2F%2Fcursomemokids.com.br%2F&tiba=MemoKids%20%E2%80%93%20Memoriza%C3%A7%C3%A3o%20para%20crian%C3%A7as%20%E2%80%93%20Como%20ensinar%20seu%20filho%20a%20estudar%20usando%20a%20mem%C3%B3ria&auid=142953412.1663360193&hn=www.google.com&async=1&rfmt=3&fmt=4
IP 142.250.74.66:0
File type ASCII text, with very long lines (2506), with no line terminators
Hash a864a83047a7931fe4eb088c23ebecf9
4cd7b433136ff9fb83d2d4cecb38e9e2a70915e3
362b2f61783b97c6462bd669b0ff74379dec80408c437ac9c30376fe891f026b
GET /pagead/viewthroughconversion/762979249/?random=1663360193857&cv=9&fst=1663360193857&num=1&bg=ffffff&guid=ON&resp=GooglemKTybQhCsO&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0>m=2oa9e0&sendb=1&ig=0&data=event%3Dgtag.config&frm=0&url=http%3A%2F%2Fcursomemokids.com.br%2F&tiba=MemoKids%20%E2%80%93%20Memoriza%C3%A7%C3%A3o%20para%20crian%C3%A7as%20%E2%80%93%20Como%20ensinar%20seu%20filho%20a%20estudar%20usando%20a%20mem%C3%B3ria&auid=142953412.1663360193&hn=www.google.com&async=1&rfmt=3&fmt=4 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://cursomemokids.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Fri, 16 Sep 2022 20:30:11 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
server: cafe
content-length: 1106
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Fri, 16-Sep-2022 20:45:11 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash fa86a62c870c1ce23fd85f73e99d7964
81af6fd2507bb58c6b040fd5f494de01d22e7102
76bc6fffeb8593064820e909edc5e4991cb4a5c1b609916a6021974665b5286f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 16 Sep 2022 20:30:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
i.vimeocdn.com/video/1095743697-b1c9ebbb039eddab097061d6c333c5451a76e87bdf0b0344f8b22224f7548918-d?mw=700&mh=394
151.101.86.109200 OK 32 kB URL HTTP/2 i.vimeocdn.com/video/1095743697-b1c9ebbb039eddab097061d6c333c5451a76e87bdf0b0344f8b22224f7548918-d?mw=700&mh=394
IP 151.101.86.109:0
File type ISO Media, AVIF Image\012- data
Hash 368b66d2653c53b205c52cd21a90dbc6
7e3498de4ed998e50cf949f762da71168683650b
f500f9f602f8b1059e0af929428a6a618f330b200797e73f24a8ae8573929246
GET /video/1095743697-b1c9ebbb039eddab097061d6c333c5451a76e87bdf0b0344f8b22224f7548918-d?mw=700&mh=394 HTTP/1.1
Host: i.vimeocdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://player.vimeo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/avif
etag: 368b66d2653c53b205c52cd21a90dbc6
x-viewmaster-lossless-format: automatic
viewmaster-server: viewmaster-us-central1-kvpz
cache-control: public, max-age=2592000
via: vvarnish, 1.1 varnish, 1.1 varnish
x-backend-server: varnish
access-control-allow-origin: *
access-control-expose-headers: X-Viewmaster-Status
access-control-max-age: 86400
accept-ranges: bytes
date: Fri, 16 Sep 2022 20:30:11 GMT
age: 1501663
x-served-by: cache-dfw-kdfw8210104-DFW, cache-bma1648-BMA
x-cache: miss, HIT, MISS
x-cache-hits: 1, 0
x-timer: S1663360211.134898,VS0,VE141
vary: Accept
content-length: 31626
X-Firefox-Spdy: h2
js-agent.newrelic.com/nr-spa-1216.min.js
151.101.86.137200 OK 18 kB URL HTTP/2 js-agent.newrelic.com/nr-spa-1216.min.js
IP 151.101.86.137:0
File type ASCII text, with very long lines (32010)
Hash 6561a2403142205f966207d61576f1a6
1310e72f494e12ab63a4280fc1600a2c89dc9bb8
0e496fcab0b9120938373e271fa6631b7da17adf33f8a490637467c170a3e37a
GET /nr-spa-1216.min.js HTTP/1.1
Host: js-agent.newrelic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://player.vimeo.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: TAwVDFAylU9PwNPPW/eXC4UyIMC8EQ1d6JNW9Q+uXGnPmL1fuimq9M3lAe733gCMeKNDiCQX1YM=
x-amz-request-id: SYTECJR5CMD8NJ8E
last-modified: Thu, 14 Apr 2022 16:45:57 GMT
etag: "63e2df852d15ab21d7ff8fc4363222e8"
x-amz-version-id: UU.F5jvoumAjQChriwTQHbisCFw_OInU
content-type: application/javascript
server: AmazonS3
cache-control: public, max-age=7200, stale-if-error=604800
content-encoding: gzip
accept-ranges: bytes
date: Fri, 16 Sep 2022 20:30:11 GMT
via: 1.1 varnish
x-served-by: cache-bma1629-BMA
x-cache: HIT
x-cache-hits: 2314
x-timer: S1663360211.417912,VS0,VE0
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
content-length: 18216
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 25891d4f66373f22c2b438bf7255def4
bda89635bba945484868c31e0a9a7429c983c66e
f5886632603fa31ac5e189e1474d35ba58adf3680e4c7f0bf1204632b1a78779
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3521
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 16 Sep 2022 20:30:11 GMT
Last-Modified: Fri, 16 Sep 2022 19:31:30 GMT
Server: ECS (ska/F70C)
X-Cache: HIT
Content-Length: 471
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash db503d6c6780cb1b8dfeffa10a50eada
51a459bdc02f20576031f526be6788f653095d94
b7a653d3c381c6cea5b6838aea01a7de8ea5c2d8bdf5ff92c4cd5c22829c8e8d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 16 Sep 2022 20:30:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
bam.nr-data.net/1/689d5b4562?a=2815207&v=1216.487a282&to=NVVXNhYAWhJWBhVfCwwfcxcKAkAIWAtOQA0PVVpMBw5aFUUKDVoBEEMbDwUIWj5UCg9CFg1cWQcWW3kAXgspVwoGXFAQSgZRFQ%3D%3D&rst=1119&ck=1&ref=https://player.vimeo.com/video/529515119&ap=1&be=403&fe=1029&dc=421&af=err,xhr,stn,ins,spa&perf=%7B%22timing%22:%7B%22of%22:1663360193836,%22n%22:0,%22f%22:0,%22dn%22:10,%22dne%22:17,%22c%22:18,%22s%22:20,%22ce%22:35,%22rq%22:35,%22rp%22:385,%22rpe%22:387,%22dl%22:391,%22di%22:419,%22ds%22:420,%22de%22:420,%22dc%22:1028,%22l%22:1028,%22le%22:1030%7D,%22navigation%22:%7B%7D%7D&fcp=676&jsonp=NREUM.setToken
162.247.241.14200 OK 77 B URL HTTP/1.1 bam.nr-data.net/1/689d5b4562?a=2815207&v=1216.487a282&to=NVVXNhYAWhJWBhVfCwwfcxcKAkAIWAtOQA0PVVpMBw5aFUUKDVoBEEMbDwUIWj5UCg9CFg1cWQcWW3kAXgspVwoGXFAQSgZRFQ%3D%3D&rst=1119&ck=1&ref=https://player.vimeo.com/video/529515119&ap=1&be=403&fe=1029&dc=421&af=err,xhr,stn,ins,spa&perf=%7B%22timing%22:%7B%22of%22:1663360193836,%22n%22:0,%22f%22:0,%22dn%22:10,%22dne%22:17,%22c%22:18,%22s%22:20,%22ce%22:35,%22rq%22:35,%22rp%22:385,%22rpe%22:387,%22dl%22:391,%22di%22:419,%22ds%22:420,%22de%22:420,%22dc%22:1028,%22l%22:1028,%22le%22:1030%7D,%22navigation%22:%7B%7D%7D&fcp=676&jsonp=NREUM.setToken
IP 162.247.241.14:0
File type ASCII text, with no line terminators
Hash f1442f5831dbbe0210da2d7a4180d6b8
2ade23c6c7a001c66f0c0a9a101ec152747b434e
c6acf9fb2ecc1b144c51bd0337bbf1c26db3df2f649ac2da5c56db20d93eb3ef
GET /1/689d5b4562?a=2815207&v=1216.487a282&to=NVVXNhYAWhJWBhVfCwwfcxcKAkAIWAtOQA0PVVpMBw5aFUUKDVoBEEMbDwUIWj5UCg9CFg1cWQcWW3kAXgspVwoGXFAQSgZRFQ%3D%3D&rst=1119&ck=1&ref=https://player.vimeo.com/video/529515119&ap=1&be=403&fe=1029&dc=421&af=err,xhr,stn,ins,spa&perf=%7B%22timing%22:%7B%22of%22:1663360193836,%22n%22:0,%22f%22:0,%22dn%22:10,%22dne%22:17,%22c%22:18,%22s%22:20,%22ce%22:35,%22rq%22:35,%22rp%22:385,%22rpe%22:387,%22dl%22:391,%22di%22:419,%22ds%22:420,%22de%22:420,%22dc%22:1028,%22l%22:1028,%22le%22:1030%7D,%22navigation%22:%7B%7D%7D&fcp=676&jsonp=NREUM.setToken HTTP/1.1
Host: bam.nr-data.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://player.vimeo.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Fri, 16 Sep 2022 20:30:11 GMT
Content-Type: text/javascript
Transfer-Encoding: chunked
Connection: keep-alive
CF-Ray: 74bc5bc9ff3afac0-OSL
Access-Control-Allow-Origin: *
Set-Cookie: JSESSIONID=5cb61aebf56e2a7d; Path=/; Domain=.nr-data.net; Secure; SameSite=None
CF-Cache-Status: DYNAMIC
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, HEAD, OPTIONS
Cross-Origin-Resource-Policy: cross-origin
Vary: Accept-Encoding
Server: cloudflare
Content-Encoding: gzip
www.google.no/pagead/1p-user-list/762979249/?random=1663360193857&cv=9&fst=1663358400000&num=1&bg=ffffff&guid=ON&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0>m=2oa9e0&sendb=1&data=event%3Dgtag.config&frm=0&url=http%3A%2F%2Fcursomemokids.com.br%2F&tiba=MemoKids%20%E2%80%93%20Memoriza%C3%A7%C3%A3o%20para%20crian%C3%A7as%20%E2%80%93%20Como%20ensinar%20seu%20filho%20a%20estudar%20usando%20a%20mem%C3%B3ria&async=1&fmt=3&is_vtc=1&random=186264769&resp=GooglemKTybQhCsO&rmt_tld=1&ipr=y
142.250.74.3200 OK 42 B URL HTTP/2 www.google.no/pagead/1p-user-list/762979249/?random=1663360193857&cv=9&fst=1663358400000&num=1&bg=ffffff&guid=ON&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0>m=2oa9e0&sendb=1&data=event%3Dgtag.config&frm=0&url=http%3A%2F%2Fcursomemokids.com.br%2F&tiba=MemoKids%20%E2%80%93%20Memoriza%C3%A7%C3%A3o%20para%20crian%C3%A7as%20%E2%80%93%20Como%20ensinar%20seu%20filho%20a%20estudar%20usando%20a%20mem%C3%B3ria&async=1&fmt=3&is_vtc=1&random=186264769&resp=GooglemKTybQhCsO&rmt_tld=1&ipr=y
IP 142.250.74.3:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/1p-user-list/762979249/?random=1663360193857&cv=9&fst=1663358400000&num=1&bg=ffffff&guid=ON&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0>m=2oa9e0&sendb=1&data=event%3Dgtag.config&frm=0&url=http%3A%2F%2Fcursomemokids.com.br%2F&tiba=MemoKids%20%E2%80%93%20Memoriza%C3%A7%C3%A3o%20para%20crian%C3%A7as%20%E2%80%93%20Como%20ensinar%20seu%20filho%20a%20estudar%20usando%20a%20mem%C3%B3ria&async=1&fmt=3&is_vtc=1&random=186264769&resp=GooglemKTybQhCsO&rmt_tld=1&ipr=y HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://cursomemokids.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Fri, 16 Sep 2022 20:30:11 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 13fec77b59dae4bb9410a06357423a2f
086b7b536283f0a18742c3e43397762f78cdccf8
66b85a264ec591ece4c49e1f6a5da676436319845540139888e0b5e4906c5f16
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 16 Sep 2022 20:30:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
bam.nr-data.net/events/1/689d5b4562?a=2815207&v=1216.487a282&to=NVVXNhYAWhJWBhVfCwwfcxcKAkAIWAtOQA0PVVpMBw5aFUUKDVoBEEMbDwUIWj5UCg9CFg1cWQcWW3kAXgspVwoGXFAQSgZRFQ%3D%3D&rst=1343&ck=1&ref=https://player.vimeo.com/video/529515119
162.247.241.14200 OK 24 B URL HTTP/1.1 bam.nr-data.net/events/1/689d5b4562?a=2815207&v=1216.487a282&to=NVVXNhYAWhJWBhVfCwwfcxcKAkAIWAtOQA0PVVpMBw5aFUUKDVoBEEMbDwUIWj5UCg9CFg1cWQcWW3kAXgspVwoGXFAQSgZRFQ%3D%3D&rst=1343&ck=1&ref=https://player.vimeo.com/video/529515119
IP 162.247.241.14:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash bc32ed98d624acb4008f986349a20d26
2d3df8c11d2168ce2c27e0937421d11d85016361
0c9cf152a0ad00d4f102c93c613c104914be5517ac8f8e0831727f8bfbe8b300
POST /events/1/689d5b4562?a=2815207&v=1216.487a282&to=NVVXNhYAWhJWBhVfCwwfcxcKAkAIWAtOQA0PVVpMBw5aFUUKDVoBEEMbDwUIWj5UCg9CFg1cWQcWW3kAXgspVwoGXFAQSgZRFQ%3D%3D&rst=1343&ck=1&ref=https://player.vimeo.com/video/529515119 HTTP/1.1
Host: bam.nr-data.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
content-type: text/plain
Content-Length: 172
Origin: https://player.vimeo.com
Connection: keep-alive
Referer: https://player.vimeo.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Fri, 16 Sep 2022 20:30:11 GMT
Content-Type: image/gif
Content-Length: 24
Connection: keep-alive
CF-Ray: 74bc5bcafffafac0-OSL
Access-Control-Allow-Origin: https://player.vimeo.com
CF-Cache-Status: DYNAMIC
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, HEAD, OPTIONS
Vary: Accept-Encoding
Server: cloudflare
ocsp.pki.goog/s/gts1d4/5Ylu76wHhgo
142.250.74.3200 OK 471 B URL HTTP/1.1 ocsp.pki.goog/s/gts1d4/5Ylu76wHhgo
IP 142.250.74.3:0
Hash d02af5f5895d3e12139e1d708dfbf1f1
f5b2f48163bac8a4f9ec721bf76f8ce1993d111f
7f8f0d3f88e85508abfb18d23cf9d75243a50b6f3f55977d44b81d01ae8bebe8
POST /s/gts1d4/5Ylu76wHhgo HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 16 Sep 2022 20:30:11 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/s/gts1d4/5Ylu76wHhgo
142.250.74.3200 OK 471 B URL HTTP/1.1 ocsp.pki.goog/s/gts1d4/5Ylu76wHhgo
IP 142.250.74.3:0
Hash d02af5f5895d3e12139e1d708dfbf1f1
f5b2f48163bac8a4f9ec721bf76f8ce1993d111f
7f8f0d3f88e85508abfb18d23cf9d75243a50b6f3f55977d44b81d01ae8bebe8
POST /s/gts1d4/5Ylu76wHhgo HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 16 Sep 2022 20:30:11 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fresnel.vimeocdn.com/add/player-test-impression?beacon=1
34.120.202.204200 OK 0 B URL HTTP/2 fresnel.vimeocdn.com/add/player-test-impression?beacon=1
IP 34.120.202.204:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /add/player-test-impression?beacon=1 HTTP/1.1
Host: fresnel.vimeocdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 116
Origin: https://player.vimeo.com
Connection: keep-alive
Referer: https://player.vimeo.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-credentials: true
access-control-allow-origin: https://player.vimeo.com
date: Fri, 16 Sep 2022 20:30:11 GMT
content-length: 0
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fresnel.vimeocdn.com/add/player-stats?beacon=1&session-id=5bab53473f4532d36bf1e3eeaead18e248b4f2c51663360210
34.120.202.204200 OK 0 B URL HTTP/2 fresnel.vimeocdn.com/add/player-stats?beacon=1&session-id=5bab53473f4532d36bf1e3eeaead18e248b4f2c51663360210
IP 34.120.202.204:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /add/player-stats?beacon=1&session-id=5bab53473f4532d36bf1e3eeaead18e248b4f2c51663360210 HTTP/1.1
Host: fresnel.vimeocdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 1429
Origin: https://player.vimeo.com
Connection: keep-alive
Referer: https://player.vimeo.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-credentials: true
access-control-allow-origin: https://player.vimeo.com
date: Fri, 16 Sep 2022 20:30:11 GMT
content-length: 0
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/s/gts1d4/5Ylu76wHhgo
142.250.74.3200 OK 471 B URL HTTP/1.1 ocsp.pki.goog/s/gts1d4/5Ylu76wHhgo
IP 142.250.74.3:0
Hash d02af5f5895d3e12139e1d708dfbf1f1
f5b2f48163bac8a4f9ec721bf76f8ce1993d111f
7f8f0d3f88e85508abfb18d23cf9d75243a50b6f3f55977d44b81d01ae8bebe8
POST /s/gts1d4/5Ylu76wHhgo HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 16 Sep 2022 20:30:11 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
cursomemokids.com.br/wp-admin/admin-ajax.php?action=pys_get_gdpr_filters_values
162.214.109.148200 OK 102 B URL HTTP/1.1 cursomemokids.com.br/wp-admin/admin-ajax.php?action=pys_get_gdpr_filters_values
IP 162.214.109.148:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JSON data\012- , ASCII text, with no line terminators
Hash 7c0d14a6037eb0015ca6619151633f4f
814b06bbb2fa2a0dc14d8a448b10d7ff1af5e0f5
410a82a4304007b93aa888b822e46e7345c8c73afe69e5d9996021967a5eee95
GET /wp-admin/admin-ajax.php?action=pys_get_gdpr_filters_values HTTP/1.1
Host: cursomemokids.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Referer: http://cursomemokids.com.br/
Cookie: pys_session_limit=true; pys_start_session=true; _gcl_au=1.1.142953412.1663360193; pys_first_visit=true; pysTrafficSource=direct; pys_landing_page=http://cursomemokids.com.br/; last_pysTrafficSource=direct; last_pys_landing_page=http://cursomemokids.com.br/
HTTP/1.1 200 OK
Date: Fri, 16 Sep 2022 20:30:10 GMT
Server: Apache
X-Robots-Tag: noindex
X-Content-Type-Options: nosniff
Referrer-Policy: strict-origin-when-cross-origin
X-Frame-Options: SAMEORIGIN
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 102
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/json; charset=UTF-8
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 924cca70f1f5ba02eb6af21a65e0bdd1
3baa75b1ea32068f96cfd5060e4e1eda71c61da8
e55036d990bb7071b7e51e739b8650538ce67d821cc966b0baa99ff40220973b
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1152
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 16 Sep 2022 20:30:12 GMT
Last-Modified: Fri, 16 Sep 2022 20:11:00 GMT
Server: ECS (ska/F70C)
X-Cache: HIT
Content-Length: 471
connect.facebook.net/en_US/fbevents.js
31.13.72.12200 OK 27 kB URL HTTP/2 connect.facebook.net/en_US/fbevents.js
IP 31.13.72.12:0
File type ASCII text, with very long lines (64348)
Hash ecb99528d18dbe7952eac9618eaf2d8e
eb59bf3afc849403fa3dde09b75b5fc51f29e7b5
bcecfe43bf3e0f22ff425fe630e189d28fc3ecdc9764dd1686599e5ce59f40cc
GET /en_US/fbevents.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://cursomemokids.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
content-type: application/x-javascript; charset=utf-8
content-security-policy: default-src facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com data: blob: 'self';script-src *.fbcdn.net *.facebook.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src data: blob: 'unsafe-inline' facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com;connect-src *.fbcdn.net *.facebook.net wss://*.fbcdn.net attachment.fbsbx.com blob: 'self';block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
pragma: public
cache-control: public, max-age=1200
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
x-fb-debug: inks7ycBu1IZ1AUm2wGsyt3dImrLNpB14wg2CNiz9Utd9WxXFFAHD+dBFaD7Y6ofWgpjtKUMpvJGjvVydMwjEw==
priority: u=3,i
content-length: 26872
x-fb-trip-id: 1904183273
date: Fri, 16 Sep 2022 20:30:12 GMT
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 924cca70f1f5ba02eb6af21a65e0bdd1
3baa75b1ea32068f96cfd5060e4e1eda71c61da8
e55036d990bb7071b7e51e739b8650538ce67d821cc966b0baa99ff40220973b
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1152
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 16 Sep 2022 20:30:12 GMT
Last-Modified: Fri, 16 Sep 2022 20:11:00 GMT
Server: ECS (ska/F70C)
X-Cache: HIT
Content-Length: 471
www.facebook.com/tr/?id=811077782730079&ev=PageView&dl=http%3A%2F%2Fcursomemokids.com.br%2F&rl=&if=false&ts=1663360196485&cd[page_title]=MemoKids%20%E2%80%93-%20Seu%20Filho%20focado%20nos%20estudos%20-%20P%C3%A1gina%20Oficial&cd[post_type]=page&cd[post_id]=3245&cd[plugin]=PixelYourSite&cd[user_role]=guest&cd[event_url]=cursomemokids.com.br%2F&sw=1280&sh=1024&v=2.9.81&r=stable&a=dvpixelyoursite&ec=0&o=30&fbp=fb.2.1663360196484.1674077323&it=1663360196166&coo=false&eid=mdLGZdhOpV2kLpyFS7Sx7EJS5TXCG5ycBIj6&rqm=GET
31.13.72.36200 OK 86 kB URL HTTP/2 www.facebook.com/tr/?id=811077782730079&ev=PageView&dl=http%3A%2F%2Fcursomemokids.com.br%2F&rl=&if=false&ts=1663360196485&cd[page_title]=MemoKids%20%E2%80%93-%20Seu%20Filho%20focado%20nos%20estudos%20-%20P%C3%A1gina%20Oficial&cd[post_type]=page&cd[post_id]=3245&cd[plugin]=PixelYourSite&cd[user_role]=guest&cd[event_url]=cursomemokids.com.br%2F&sw=1280&sh=1024&v=2.9.81&r=stable&a=dvpixelyoursite&ec=0&o=30&fbp=fb.2.1663360196484.1674077323&it=1663360196166&coo=false&eid=mdLGZdhOpV2kLpyFS7Sx7EJS5TXCG5ycBIj6&rqm=GET
IP 31.13.72.36:0
File type gzip compressed data, from Unix\012- data
Hash c46bf6893b6938ea8a8fcda9675c0c43
74acc23bf1ae8b967f0fa981bedeca995649cf82
d36308a2965bbe28d181a97642de841f56fdaad04f86d36bebaa8e60be9f73a7
GET /tr/?id=811077782730079&ev=PageView&dl=http%3A%2F%2Fcursomemokids.com.br%2F&rl=&if=false&ts=1663360196485&cd[page_title]=MemoKids%20%E2%80%93-%20Seu%20Filho%20focado%20nos%20estudos%20-%20P%C3%A1gina%20Oficial&cd[post_type]=page&cd[post_id]=3245&cd[plugin]=PixelYourSite&cd[user_role]=guest&cd[event_url]=cursomemokids.com.br%2F&sw=1280&sh=1024&v=2.9.81&r=stable&a=dvpixelyoursite&ec=0&o=30&fbp=fb.2.1663360196484.1674077323&it=1663360196166&coo=false&eid=mdLGZdhOpV2kLpyFS7Sx7EJS5TXCG5ycBIj6&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://cursomemokids.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/gif
date: Fri, 16 Sep 2022 20:30:13 GMT
expires: Fri, 16 Sep 2022 20:30:13 GMT
last-modified: Fri, 21 Dec 2012 00:00:01 GMT
cache-control: no-cache, must-revalidate, max-age=0
set-cookie:
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 44
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.facebook.com/tr/?id=811077782730079&ev=ViewContent&dl=http%3A%2F%2Fcursomemokids.com.br%2F&rl=&if=false&ts=1663360196488&cd[page_title]=MemoKids%20%E2%80%93-%20Seu%20Filho%20focado%20nos%20estudos%20-%20P%C3%A1gina%20Oficial&cd[post_type]=page&cd[post_id]=3245&cd[plugin]=PixelYourSite&cd[user_role]=guest&cd[event_url]=cursomemokids.com.br%2F&sw=1280&sh=1024&v=2.9.81&r=stable&a=dvpixelyoursite&ec=1&o=30&fbp=fb.2.1663360196484.1674077323&it=1663360196166&coo=false&eid=EGhyMAQoPi6hy919YZDl7CGIOGdwyLUSXzUd&rqm=GET
31.13.72.36200 OK 44 B URL HTTP/2 www.facebook.com/tr/?id=811077782730079&ev=ViewContent&dl=http%3A%2F%2Fcursomemokids.com.br%2F&rl=&if=false&ts=1663360196488&cd[page_title]=MemoKids%20%E2%80%93-%20Seu%20Filho%20focado%20nos%20estudos%20-%20P%C3%A1gina%20Oficial&cd[post_type]=page&cd[post_id]=3245&cd[plugin]=PixelYourSite&cd[user_role]=guest&cd[event_url]=cursomemokids.com.br%2F&sw=1280&sh=1024&v=2.9.81&r=stable&a=dvpixelyoursite&ec=1&o=30&fbp=fb.2.1663360196484.1674077323&it=1663360196166&coo=false&eid=EGhyMAQoPi6hy919YZDl7CGIOGdwyLUSXzUd&rqm=GET
IP 31.13.72.36:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash b798f4ce7359fd815df4bdf76503b295
f8cc6addf1707ad236ad9970b0a48f9733d07da5
10d8d42d73a02ddb877101e72fbfa15a0ec820224d97cedee4cf92d571be5caa
GET /tr/?id=811077782730079&ev=ViewContent&dl=http%3A%2F%2Fcursomemokids.com.br%2F&rl=&if=false&ts=1663360196488&cd[page_title]=MemoKids%20%E2%80%93-%20Seu%20Filho%20focado%20nos%20estudos%20-%20P%C3%A1gina%20Oficial&cd[post_type]=page&cd[post_id]=3245&cd[plugin]=PixelYourSite&cd[user_role]=guest&cd[event_url]=cursomemokids.com.br%2F&sw=1280&sh=1024&v=2.9.81&r=stable&a=dvpixelyoursite&ec=1&o=30&fbp=fb.2.1663360196484.1674077323&it=1663360196166&coo=false&eid=EGhyMAQoPi6hy919YZDl7CGIOGdwyLUSXzUd&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://cursomemokids.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/gif
date: Fri, 16 Sep 2022 20:30:13 GMT
expires: Fri, 16 Sep 2022 20:30:13 GMT
last-modified: Fri, 21 Dec 2012 00:00:01 GMT
cache-control: no-cache, must-revalidate, max-age=0
set-cookie:
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 44
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
33vod-adaptive.akamaized.net/exp=1663364110~acl=%2Fdb0e58e4-2d08-4e24-b52e-268ce86512a0%2F%2A~hmac=4bef4513f4a7a95162ac9ff03d33afdefebbf9cd7310433d82dab4a7ec83dfa0/db0e58e4-2d08-4e24-b52e-268ce86512a0/sep/video/36328868,eb20a96f,cbb7b22f,3c36b5ac,c6da6989/audio/13520559,ac6ec462/master.json?query_string_ranges=1&base64_init=1
23.36.76.146200 OK 11 kB URL HTTP/1.1 33vod-adaptive.akamaized.net/exp=1663364110~acl=%2Fdb0e58e4-2d08-4e24-b52e-268ce86512a0%2F%2A~hmac=4bef4513f4a7a95162ac9ff03d33afdefebbf9cd7310433d82dab4a7ec83dfa0/db0e58e4-2d08-4e24-b52e-268ce86512a0/sep/video/36328868,eb20a96f,cbb7b22f,3c36b5ac,c6da6989/audio/13520559,ac6ec462/master.json?query_string_ranges=1&base64_init=1
IP 23.36.76.146:0
ASN #20940 Akamai International B.V.
File type JSON data\012- , ASCII text, with very long lines (55567)
Hash 0d254d78c7daf57c2c5aa6cbc1679c02
4c4ea3840a6a3136d760084084c60a17692a2df2
127e272d7677731d842eb24d7bcb45983bd40161da9ff546c9e06615fd26d2cd
GET /exp=1663364110~acl=%2Fdb0e58e4-2d08-4e24-b52e-268ce86512a0%2F%2A~hmac=4bef4513f4a7a95162ac9ff03d33afdefebbf9cd7310433d82dab4a7ec83dfa0/db0e58e4-2d08-4e24-b52e-268ce86512a0/sep/video/36328868,eb20a96f,cbb7b22f,3c36b5ac,c6da6989/audio/13520559,ac6ec462/master.json?query_string_ranges=1&base64_init=1 HTTP/1.1
Host: 33vod-adaptive.akamaized.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://player.vimeo.com
Connection: keep-alive
Referer: https://player.vimeo.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
origin-retrieved-hour: 1657789200
Access-Control-Max-Age: 86400
timing-allow-origin: *
Content-Encoding: gzip
Content-Length: 11254
Aka-c-hit: cache-hit
Cache-Control: max-age=30262299
Date: Fri, 16 Sep 2022 20:30:13 GMT
Connection: keep-alive
Vary: Accept-Encoding
Akamai-Mon-Iucid-Del: 877678
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
AK-REFERENCE-ID: 0.8e4c2417.1663360213.5df247
X-VIM-CACHEBC: EP:H11,E:m,TD0:m,CW:h
Access-Control-Expose-Headers: Akamai-Edge-IP, X-VIM-CACHEBC, X-Akamai-Request-ID, AK-REFERENCE-ID
Akamai-Edge-IP: 23.36.76.146
Access-Control-Allow-Headers: Content-Type, Accept-Encoding, Range, X-OTT-Agent,CMCD-Request,CMCD-Object,CMCD-Status,CMCD-Session
Access-Control-Allow-Origin: *
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc7e55a42-9f36-46db-9415-ab10753c0fb8.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc7e55a42-9f36-46db-9415-ab10753c0fb8.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 3a4ed510756efe784c4ca84c61c4b5ba
10262867cfb19d3ba8f618e235d1a98531048f34
b5ba0de5ce381579e49e3e3c23244048fc8aac693ce0c977560f28b9a51f6a0b
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc7e55a42-9f36-46db-9415-ab10753c0fb8.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 10163
x-amzn-requestid: 7c849e5d-468e-4f6a-ad44-c7995bfa81bb
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YYvuGFU5oAMF_Og=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63202cc0-5376d2432c79a3146b6c29f4;Sampled=0
x-amzn-remapped-date: Tue, 13 Sep 2022 07:09:52 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: XGVoNQZeoG0AQ6LabPW2Zg7pAQqdl-bGTFAhbNpLlgTWNWx55-wEUQ==
via: 1.1 1b0911478686968732f973d6e5e31d10.cloudfront.net (CloudFront), 1.1 707e733794d52100fde0ab21bf0b1462.cloudfront.net (CloudFront), 1.1 google
date: Thu, 15 Sep 2022 21:45:14 GMT
age: 81900
etag: "10262867cfb19d3ba8f618e235d1a98531048f34"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
cursomemokids.com.br/wp-admin/admin-ajax.php
162.214.109.148200 OK 0 B URL HTTP/1.1 cursomemokids.com.br/wp-admin/admin-ajax.php
IP 162.214.109.148:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Phishing
POST /wp-admin/admin-ajax.php HTTP/1.1
Host: cursomemokids.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
Cache-Control: no-cache
X-Requested-With: XMLHttpRequest
Content-Length: 428
Origin: http://cursomemokids.com.br
Connection: keep-alive
Referer: http://cursomemokids.com.br/
Cookie: pys_session_limit=true; pys_start_session=true; _gcl_au=1.1.142953412.1663360193; pys_first_visit=true; pysTrafficSource=direct; pys_landing_page=http://cursomemokids.com.br/; last_pysTrafficSource=direct; last_pys_landing_page=http://cursomemokids.com.br/
HTTP/1.1 200 OK
Date: Fri, 16 Sep 2022 20:30:12 GMT
Server: Apache
Access-Control-Allow-Origin: http://cursomemokids.com.br
Access-Control-Allow-Credentials: true
X-Robots-Tag: noindex
X-Content-Type-Options: nosniff
Referrer-Policy: strict-origin-when-cross-origin
X-Frame-Options: SAMEORIGIN
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Vary: Accept-Encoding
Content-Length: 0
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
cursomemokids.com.br/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-brands-400.woff2
162.214.109.148200 OK 0 B URL HTTP/1.1 cursomemokids.com.br/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-brands-400.woff2
IP 162.214.109.148:0
ASN #46606 UNIFIEDLAYER-AS-1
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-brands-400.woff2 HTTP/1.1
Host: cursomemokids.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://cursomemokids.com.br
Connection: keep-alive
Referer: https://cursomemokids.com.br/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Fri, 16 Sep 2022 20:30:10 GMT
Server: Apache
Last-Modified: Fri, 07 Jan 2022 13:18:58 GMT
Accept-Ranges: bytes
Content-Length: 76764
Cache-Control: max-age=10368000
Expires: Sat, 14 Jan 2023 20:30:10 GMT
Vary: Accept-Encoding
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: font/woff2
cursomemokids.com.br/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-solid-900.ttf
162.214.109.148200 OK 0 B URL HTTP/1.1 cursomemokids.com.br/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-solid-900.ttf
IP 162.214.109.148:0
ASN #46606 UNIFIEDLAYER-AS-1
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-solid-900.ttf HTTP/1.1
Host: cursomemokids.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://cursomemokids.com.br
Connection: keep-alive
Referer: https://cursomemokids.com.br/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Fri, 16 Sep 2022 20:30:11 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Fri, 07 Jan 2022 13:18:58 GMT
Accept-Ranges: bytes
Cache-Control: max-age=10368000, public
Expires: Sat, 14 Jan 2023 20:30:11 GMT
Content-Encoding: gzip
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: font/ttf
cursomemokids.com.br/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-brands-400.ttf
162.214.109.148200 OK 0 B URL HTTP/1.1 cursomemokids.com.br/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-brands-400.ttf
IP 162.214.109.148:0
ASN #46606 UNIFIEDLAYER-AS-1
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-brands-400.ttf HTTP/1.1
Host: cursomemokids.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://cursomemokids.com.br
Connection: keep-alive
Referer: https://cursomemokids.com.br/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Fri, 16 Sep 2022 20:30:11 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Fri, 07 Jan 2022 13:18:58 GMT
Accept-Ranges: bytes
Cache-Control: max-age=10368000, public
Expires: Sat, 14 Jan 2023 20:30:11 GMT
Content-Encoding: gzip
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: font/ttf
static.hotjar.com/c/hotjar-1735843.js?sv=6
54.230.111.8200 OK 0 B URL HTTP/2 static.hotjar.com/c/hotjar-1735843.js?sv=6
IP 54.230.111.8:0
GET /c/hotjar-1735843.js?sv=6 HTTP/1.1
Host: static.hotjar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://cursomemokids.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
date: Fri, 16 Sep 2022 20:30:10 GMT
access-control-allow-origin: *
cache-control: max-age=60
content-encoding: br
cross-origin-resource-policy: cross-origin
etag: W/9bfef862f481952b6d576c59991a3cc8
strict-transport-security: max-age=604800; includeSubDomains
x-cache-hit: 1
x-content-type-options: nosniff
vary: Accept-Encoding
x-cache: Miss from cloudfront
via: 1.1 5916f6b8d469d1bee1e905ff13761ebc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: Ti0Yf3IdXXxcKuzpov_-st_5rnIsbL-S7oxntwKN6UALSp1AsoMb4g==
X-Firefox-Spdy: h2
cursomemokids.com.br/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-brands-400.woff
162.214.109.148200 OK 0 B URL HTTP/1.1 cursomemokids.com.br/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-brands-400.woff
IP 162.214.109.148:0
ASN #46606 UNIFIEDLAYER-AS-1
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-brands-400.woff HTTP/1.1
Host: cursomemokids.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://cursomemokids.com.br
Connection: keep-alive
Referer: https://cursomemokids.com.br/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Fri, 16 Sep 2022 20:30:10 GMT
Server: Apache
Last-Modified: Fri, 07 Jan 2022 13:18:58 GMT
Accept-Ranges: bytes
Content-Length: 90060
Cache-Control: max-age=10368000
Expires: Sat, 14 Jan 2023 20:30:10 GMT
Vary: Accept-Encoding
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: font/woff