Overview

URLwregiscorretora.com.br/
IP 128.201.72.156 (Brazil)
ASN#266618 MEGA PROVEDOR - SERVICOS DE INTERNET LTDA - ME
UserAgentMozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Referer
Report completed2022-11-25 13:09:57 UTC
StatusLoading report..
IDS alerts0
Blocklist alert2
urlquery alerts No alerts detected
Tags None

Domain Summary (18)

Fully Qualifying Domain Name Rank First Seen Last Seen IP Comment
bit.ly (1) 8194 2013-01-13 14:42:58 UTC 2022-11-25 06:08:12 UTC 67.199.248.11
my.rtmark.net (1) 9054 2017-08-22 14:11:49 UTC 2022-11-25 07:48:21 UTC 139.45.195.8
ocsp.sectigo.com (1) 487 2019-11-29 11:50:24 UTC 2021-09-17 20:05:40 UTC 172.64.155.188
ocsp.digicert.com (11) 86 2012-05-21 07:02:23 UTC 2020-05-02 20:58:10 UTC 93.184.220.29
s4.histats.com (5) 12782 2012-05-21 17:14:14 UTC 2022-11-25 07:15:09 UTC 192.99.8.34
ashoupsu.com (1) 39187 2021-08-21 08:59:27 UTC 2022-11-22 11:44:43 UTC 139.45.197.238
tzegilo.com (1) 0 2022-01-14 15:27:15 UTC 2022-11-25 08:24:51 UTC 172.67.194.45 Unknown ranking
datatechonert.com (1) 46154 2021-12-24 16:44:17 UTC 2022-11-25 06:19:41 UTC 139.45.195.253
content-signature-2.cdn.mozilla.net (1) 1152 No data No data 34.160.144.191
wregiscorretora.com.br (38) 0 2016-07-30 07:11:38 UTC 2022-11-24 13:09:39 UTC 128.201.72.156 Unknown ranking
www.counter12.com (2) 702686 2017-01-22 17:26:16 UTC 2022-11-22 11:44:28 UTC 104.21.33.9
s10.histats.com (1) 15211 2012-05-21 17:14:14 UTC 2020-03-16 19:44:20 UTC 46.105.201.240
img-getpocket.cdn.mozilla.net (7) 1631 2018-06-21 23:36:00 UTC 2020-02-19 04:43:25 UTC 34.120.237.76
meuip.page (1) 0 2018-11-04 17:46:30 UTC 2022-11-22 11:44:29 UTC 172.67.153.191 Unknown ranking
r3.o.lencr.org (12) 344 No data No data 23.36.77.32
firefox.settings.services.mozilla.com (2) 867 2020-06-04 20:08:41 UTC 2022-11-25 06:03:02 UTC 34.102.187.140
contile.services.mozilla.com (1) 1114 2021-05-27 18:32:35 UTC 2022-11-25 05:51:47 UTC 34.117.237.239
push.services.mozilla.com (1) 2140 2014-10-24 08:27:06 UTC 2020-05-03 10:09:39 UTC 34.215.56.181

Network Intrusion Detection Systemsinfo

Suricata /w Emerging Threats Pro
 No alerts detected

Blocklists

OpenPhish
 No alerts detected

PhishTank
 No alerts detected

Fortinet's Web Filter
 No alerts detected

mnemonic secure dns
 No alerts detected

Quad9 DNS
Scan Date Severity Indicator Comment
2022-11-25 2 ashoupsu.com Sinkholed
2022-11-25 2 datatechonert.com Sinkholed


Files

No files detected

Recent reports on same IP/ASN/Domain/Screenshot

Last 5 reports on IP: 128.201.72.156
Date UQ / IDS / BL URL IP
2023-01-29 21:24:54 +0000 0 - 6 - 0 tecnolesteaquecedores.com.br/ 128.201.72.156
2023-01-29 05:34:26 +0000 0 - 0 - 22 idealservice.net.br/ 128.201.72.156
2023-01-29 05:10:03 +0000 0 - 0 - 3 wregiscorretora.com.br/ 128.201.72.156
2023-01-27 21:10:20 +0000 0 - 0 - 2 wregiscorretora.com.br/ 128.201.72.156
2023-01-27 05:34:45 +0000 0 - 0 - 22 idealservice.net.br/ 128.201.72.156


Last 5 reports on ASN: MEGA PROVEDOR - SERVICOS DE INTERNET LTDA - ME
Date UQ / IDS / BL URL IP
2023-01-29 21:24:54 +0000 0 - 6 - 0 tecnolesteaquecedores.com.br/ 128.201.72.156
2023-01-29 20:09:23 +0000 0 - 3 - 0 parceirosocial.org.br/ 128.201.72.136
2023-01-29 05:34:26 +0000 0 - 0 - 22 idealservice.net.br/ 128.201.72.156
2023-01-29 05:10:03 +0000 0 - 0 - 3 wregiscorretora.com.br/ 128.201.72.156
2023-01-28 22:15:15 +0000 0 - 12 - 0 infraworks.com.br/ 128.201.72.136


Last 5 reports on domain: wregiscorretora.com.br
Date UQ / IDS / BL URL IP
2023-01-29 05:10:03 +0000 0 - 0 - 3 wregiscorretora.com.br/ 128.201.72.156
2023-01-27 21:10:20 +0000 0 - 0 - 2 wregiscorretora.com.br/ 128.201.72.156
2022-12-23 21:10:37 +0000 0 - 0 - 3 wregiscorretora.com.br/ 128.201.72.156
2022-12-18 05:10:35 +0000 0 - 0 - 3 wregiscorretora.com.br/ 128.201.72.156
2022-11-25 13:09:57 +0000 0 - 0 - 2 wregiscorretora.com.br/ 128.201.72.156


Last 5 reports with similar screenshot
Date UQ / IDS / BL URL IP
2023-01-29 05:10:03 +0000 0 - 0 - 3 wregiscorretora.com.br/ 128.201.72.156
2023-01-27 21:10:20 +0000 0 - 0 - 2 wregiscorretora.com.br/ 128.201.72.156
2022-12-23 21:10:37 +0000 0 - 0 - 3 wregiscorretora.com.br/ 128.201.72.156
2022-12-18 05:10:35 +0000 0 - 0 - 3 wregiscorretora.com.br/ 128.201.72.156
2022-11-10 21:10:00 +0000 0 - 0 - 1 wregiscorretora.com.br/ 128.201.72.156

JavaScript

Executed Scripts (21)

Executed Evals (0)

Executed Writes (1)
#1 JavaScript::Write (size: 238) - SHA256: b82a2fc4758df4feba4e2e879ba9392dd8b85db6d5c8f0cd5bc539c57d229382
< div id = "AD_FLOAT"
style = "position:fixed;top:0px;left:0px;z-index:1000;" > < iframe src = "https://bit.ly/3zzKlOA"
scrolling = "no"
frameborder = "0"
marginheight = "0"
marginwidth = "0"
id = "iAD_FLOAT"
style = "height:100vh;width:100vw;" > < /iframe></div >


HTTP Transactions (88)


Request Response
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "12AF026999398F4976749E320667D43DA3F99B7A2E8254ACA7A410A964A106AA"
Last-Modified: Thu, 24 Nov 2022 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6307
Expires: Fri, 25 Nov 2022 14:54:52 GMT
Date: Fri, 25 Nov 2022 13:09:45 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 4295
Cache-Control: max-age=167584
Date: Fri, 25 Nov 2022 13:09:45 GMT
Etag: "63809972-1d7"
Expires: Sun, 27 Nov 2022 11:42:49 GMT
Last-Modified: Fri, 25 Nov 2022 10:31:14 GMT
Server: ECS (ska/F70D)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET /v1/ HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.102.187.140
HTTP/2 200 OK
content-type: application/json
                                        
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Content-Length, Alert, Backoff, Retry-After
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Fri, 25 Nov 2022 12:17:26 GMT
cache-control: public,max-age=3600
age: 3139
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size:   939
Md5:    4d7e4eed097b9c4e5d509419f1cfc85a
Sha1:   290bb3d428a7c6330e2e3d73a952b16f820896c8
Sha256: 0dc9ca0f57af15adcd416035e92794711434e3d53a1feff21d8481d6d500986c
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "C9951A909F354174F0075A01C01C3C3AA6960983040E328BFBBBEA81AEB405C2"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8719
Expires: Fri, 25 Nov 2022 15:35:04 GMT
Date: Fri, 25 Nov 2022 13:09:45 GMT
Connection: keep-alive

                                        
                                            GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1 
Host: content-signature-2.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         34.160.144.191
HTTP/2 200 OK
content-type: binary/octet-stream
                                        
x-amz-id-2: NOqHcoJ9IvCEDSKQoGLIchfAy0UpDv5Fnt2SrEISNKQSazaHtK8MPa2Z5BChhvYFGmxpFH4L5EQ=
x-amz-request-id: 7HC23VBZMKQ9E80K
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Fri, 25 Nov 2022 12:40:48 GMT
age: 1737
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PEM certificate\012- , ASCII text
Size:   5348
Md5:    9ebddc2b260d081ebbefee47c037cb28
Sha1:   492bad62a7ca6a74738921ef5ae6f0be5edebf39
Sha256: 74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5
                                        
                                            GET / HTTP/1.1 
Host: wregiscorretora.com.br
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

search
                                         128.201.72.156
HTTP/1.1 301 Moved Permanently
Content-Type: text/html; charset=UTF-8
                                        
Location: https://wregiscorretora.com.br/
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
X-Powered-By-Plesk: PleskWin
Date: Fri, 25 Nov 2022 13:09:34 GMT
Content-Length: 165


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document, ASCII text
Size:   165
Md5:    f66ba688dac9c0612fd327617f47ff43
Sha1:   76fd09b16559b6d83392edd786eae4fab2bbafcb
Sha256: eb3853b1df7d813638b0fe0dccc615128419019b3946e681973a2b8603c65be5
                                        
                                            GET /v1/tiles HTTP/1.1 
Host: contile.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.117.237.239
HTTP/2 200 OK
content-type: application/json
                                        
server: nginx
date: Fri, 25 Nov 2022 13:09:45 GMT
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   12
Md5:    23e88fb7b99543fb33315b29b1fad9d6
Sha1:   a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
Sha256: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
                                        
                                            GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.102.187.140
HTTP/2 200 OK
content-type: application/json
                                        
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Retry-After, Content-Length, Alert, Cache-Control, ETag, Pragma, Expires, Backoff, Last-Modified
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Fri, 25 Nov 2022 12:11:11 GMT
cache-control: public,max-age=3600
age: 3515
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size:   329
Md5:    0333b0655111aa68de771adfcc4db243
Sha1:   63f295a144ac87a7c8e23417626724eeca68a7eb
Sha256: 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 5103
Cache-Control: max-age=163328
Date: Fri, 25 Nov 2022 13:09:46 GMT
Etag: "638085ab-1d7"
Expires: Sun, 27 Nov 2022 10:31:54 GMT
Last-Modified: Fri, 25 Nov 2022 09:06:51 GMT
Server: ECS (ska/F70D)
X-Cache: HIT
Content-Length: 471

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "AC2E9EB408E699C8B46F4D554B652737F06C9727DB3431A6BCAA00B9EC97B0B8"
Last-Modified: Wed, 23 Nov 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Fri, 25 Nov 2022 19:09:46 GMT
Date: Fri, 25 Nov 2022 13:09:46 GMT
Connection: keep-alive

                                        
                                            GET / HTTP/1.1 
Host: wregiscorretora.com.br
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

search
                                         128.201.72.156
HTTP/1.1 200 OK
Content-Type: text/html
                                        
Content-Encoding: gzip
Last-Modified: Sun, 20 Feb 2022 19:42:29 GMT
Accept-Ranges: bytes
ETag: "8008afe9126d81:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
X-Powered-By-Plesk: PleskWin
Date: Fri, 25 Nov 2022 13:09:35 GMT
Content-Length: 2437


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (316)
Size:   2437
Md5:    7983993ce4f0c0f2aa5956c21bedf42f
Sha1:   9739e8e2149813eb04ad7d73df30df118877458f
Sha256: 0f677a9f9cd6c7c72e18091f2e6d208817a1ed457c9709703d745aad3a5518d5
                                        
                                            GET / HTTP/1.1 
Host: push.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: Wk6sofvXHMN3WXi7QLVIZg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

search
                                         34.215.56.181
HTTP/1.1 101 Switching Protocols
                                        
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: e+wtWg8YGUmEWOOQg7mruTj9Uys=

                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 2081
Cache-Control: max-age=88337
Date: Fri, 25 Nov 2022 13:09:46 GMT
Etag: "637f6c8a-117"
Expires: Sat, 26 Nov 2022 13:42:03 GMT
Last-Modified: Thu, 24 Nov 2022 13:07:22 GMT
Server: ECS (ska/F70D)
X-Cache: HIT
Content-Length: 279

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "0E4EF6DDEF97EC03D43DF4C0BADA61D792B9F030E4D9FAB5BD3CF904AEAA3BC9"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6133
Expires: Fri, 25 Nov 2022 14:52:00 GMT
Date: Fri, 25 Nov 2022 13:09:47 GMT
Connection: keep-alive

                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fca5cb469-21a0-420a-875c-a81635b33f53.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 7993
x-amzn-requestid: 9f0ff853-4819-47cd-959d-658401ea5748
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cEvCsG5mIAMFqAQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637e9211-1c48b9223684f2942f8dd42d;Sampled=0
x-amzn-remapped-date: Wed, 23 Nov 2022 21:35:13 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 7YSXUV-LZpsI7vciFhuqt1EVr6YRkhxcOgMg8z8bxLcOE01_baf6Gg==
via: 1.1 d1151317ba32afe0e6370fd69fed222e.cloudfront.net (CloudFront), 1.1 1b74ccf4cb51eacf97a0e6d60ae46a3e.cloudfront.net (CloudFront), 1.1 google
date: Thu, 24 Nov 2022 21:47:53 GMT
age: 55314
etag: "43d1dec7fc06879988c9c3cadd800cc8145df988"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   7993
Md5:    92c78302bcce1568eb6a5563100b932c
Sha1:   43d1dec7fc06879988c9c3cadd800cc8145df988
Sha256: 0dda9914306c8e3a7ea75eade8e762652d93907dd6c5a8cc81707d6d8098b60a
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "0E4EF6DDEF97EC03D43DF4C0BADA61D792B9F030E4D9FAB5BD3CF904AEAA3BC9"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6133
Expires: Fri, 25 Nov 2022 14:52:00 GMT
Date: Fri, 25 Nov 2022 13:09:47 GMT
Connection: keep-alive

                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F44e0daff-bc52-4621-aa2f-d9c59da29c1c.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 3955
x-amzn-requestid: 42c8d309-a8d2-47cc-8d97-c7fa3a63f8cd
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cCM9NGJHoAMF4sQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637d8eba-2a06cda9346bd02c46955444;Sampled=0
x-amzn-remapped-date: Wed, 23 Nov 2022 03:08:42 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 5MlzpHpq7auKLSAYikINuPAylXI11VJL3xxIJ9Dyub-7rjQaPfg0WQ==
via: 1.1 6ba2a21321beeef65404429d0a4b6380.cloudfront.net (CloudFront), 1.1 7e87179efaa9e3c316bd3d3a74cfded8.cloudfront.net (CloudFront), 1.1 google
date: Fri, 25 Nov 2022 04:23:00 GMT
age: 31607
etag: "74cb2ccd6ae38b171bfbe5a74f0eccb09aa3836b"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   3955
Md5:    4006a9037ab5f28dca62b0aa7a704c41
Sha1:   74cb2ccd6ae38b171bfbe5a74f0eccb09aa3836b
Sha256: 556ae6516a1f272a96569a3637858292731a34e82672b682f6e7442ca68f4b1d
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F80e95b58-6cf9-4974-a4ce-f8515ca995ee.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 11743
x-amzn-requestid: 9ab0aba7-5cd1-4f6c-8984-dc221e1cbf8e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cICD-F7joAMFqmA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637fe3b2-152ba5f1495a44447356cdab;Sampled=0
x-amzn-remapped-date: Thu, 24 Nov 2022 21:35:46 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: oWSNdsrz59sJC2znLnFqa_Zm3T14_d6j-rjzDQe4yV22Dy2Qc4Swaw==
via: 1.1 26ca01ec7377e425b59b6a08cb1ec342.cloudfront.net (CloudFront), 1.1 7e87179efaa9e3c316bd3d3a74cfded8.cloudfront.net (CloudFront), 1.1 google
date: Thu, 24 Nov 2022 21:54:45 GMT
age: 54902
etag: "b0ddc1555d2506177adcdcea77864d75f1245d07"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   11743
Md5:    8784bb7a8b88736a6016f712e3183bf3
Sha1:   b0ddc1555d2506177adcdcea77864d75f1245d07
Sha256: 8e331713b0ad0b5670dd33dfdadde665e076a40ddb80905d4df89876d49803d8
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "0E4EF6DDEF97EC03D43DF4C0BADA61D792B9F030E4D9FAB5BD3CF904AEAA3BC9"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6133
Expires: Fri, 25 Nov 2022 14:52:00 GMT
Date: Fri, 25 Nov 2022 13:09:47 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "0E4EF6DDEF97EC03D43DF4C0BADA61D792B9F030E4D9FAB5BD3CF904AEAA3BC9"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6133
Expires: Fri, 25 Nov 2022 14:52:00 GMT
Date: Fri, 25 Nov 2022 13:09:47 GMT
Connection: keep-alive

                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1dd98515-d0af-440a-8f3d-4c9986928081.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 4309
x-amzn-requestid: 47c2739d-73c5-4d91-914c-fe635cb09772
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: b1U8xGxgIAMF-qQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63786851-6fbe19dc5c4c20dd657604e3;Sampled=0
x-amzn-remapped-date: Sat, 19 Nov 2022 05:23:29 GMT
x-amz-cf-pop: SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: j_8oVo464QMWMnmkxQJIDRhaIVmwhzCTHe4A57OdmaUr9HcyTtBUjg==
via: 1.1 470e3fe246a660ba6ace67a79f78d246.cloudfront.net (CloudFront), 1.1 2750b94b402c92287d764b5fa115a042.cloudfront.net (CloudFront), 1.1 google
date: Fri, 25 Nov 2022 05:04:28 GMT
age: 29119
etag: "126771b86638108050cf57c0d12faa27f80f0edb"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   4309
Md5:    841a4b110022a99ddea6f7bf66df0fa1
Sha1:   126771b86638108050cf57c0d12faa27f80f0edb
Sha256: 240fbffc1f9104433297d3ff7afba2d0b58d7f1b13d9a9260a1bad25216665db
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F00e89fb5-5cb3-4f68-936b-5ee31d6061bc.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 8006
x-amzn-requestid: 78aab013-df11-464b-a1c7-ee41b7e77b40
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cIB-AHSrIAMFvKw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637fe38c-4d795f410a57fc2c21d7075d;Sampled=0
x-amzn-remapped-date: Thu, 24 Nov 2022 21:35:08 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: NntLZ3wUdcX9kEo-afFLU0TPKgqAlSK3bToNh2mmoqoyLBJINNk7ow==
via: 1.1 da5952aa802df39905ceb16592e9698a.cloudfront.net (CloudFront), 1.1 caf6806821bc479b28a6f1ce3043b8a6.cloudfront.net (CloudFront), 1.1 google
date: Thu, 24 Nov 2022 21:54:39 GMT
age: 54908
etag: "5d15fd672e968d59b541e4d5d0d01cd5e69f4075"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   8006
Md5:    8b6ee13d43732f7c764a49500d092865
Sha1:   5d15fd672e968d59b541e4d5d0d01cd5e69f4075
Sha256: fc3623d527147e1c6aab399251ed8d527e6eefdee6ad7183f00df2613498bfe4
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F20a12e2c-1403-4b39-9da1-b2be17a6bbd1.png HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 11954
x-amzn-requestid: 0c912d90-72b5-4060-ae22-c2ecbe16b57a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: b8J-nEFEoAMF2eA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637b2390-503ead086c8021af6eaeaa85;Sampled=0
x-amzn-remapped-date: Mon, 21 Nov 2022 07:06:56 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: JZAeoFNsUy2usSV7O41YGIfVow9gaIMXuKnfcaundLduQ5UX2eTKOQ==
via: 1.1 42ef990e439ae115ff739f04e3945234.cloudfront.net (CloudFront), 1.1 64f86ae1c24221f3a2e4d653d6dbc416.cloudfront.net (CloudFront), 1.1 google
date: Thu, 24 Nov 2022 17:17:27 GMT
age: 71540
etag: "b80047da428636adb7027f12718c8d11bd461da4"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   11954
Md5:    6673267df195141739d1018c17101368
Sha1:   b80047da428636adb7027f12718c8d11bd461da4
Sha256: de30af07eed7326a1326c831e04727649a112c20d0c485a7e973edd96f91bfaa
                                        
                                            GET /img-Bdw46DAyWZBZ9x67-26.gif HTTP/1.1 
Host: www.counter12.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wregiscorretora.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         104.21.33.9
HTTP/2 200 OK
content-type: image/gif
                                        
date: Fri, 25 Nov 2022 13:09:47 GMT
content-length: 1260
x-powered-by: PHP/5.3.3
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=YBD%2FemCSz4OEK%2FLCca%2FgqEd9dyCqcL5cZkzFY4hOXXfIOnQClaVFDMjz9hx9U7FvoIYdo30zAMkbC4lrPCK0%2F8Ft%2BQwj%2BVJtKV6e9irG89veKcFhGakl%2FhLqaW4wl%2FHq2LDZ%2FQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 76fa9ee8b91db4ee-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 87a, 80 x 27\012- data
Size:   1260
Md5:    32f3ad7b1bc9ca010718eeafbdefb56d
Sha1:   e5099ae5170498c5c5b5714f2dd969a7184273ab
Sha256: 96bf03ce619dae7bffd23d0775f83b1c616bb890f9266823b75a6759ab5078a2
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 2082
Cache-Control: max-age=88337
Date: Fri, 25 Nov 2022 13:09:47 GMT
Etag: "637f6c8a-117"
Expires: Sat, 26 Nov 2022 13:42:04 GMT
Last-Modified: Thu, 24 Nov 2022 13:07:22 GMT
Server: ECS (ska/F70D)
X-Cache: HIT
Content-Length: 279

                                        
                                            GET /css/fancybox/jquery.fancybox.css HTTP/1.1 
Host: wregiscorretora.com.br
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wregiscorretora.com.br/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

search
                                         128.201.72.156
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Content-Encoding: gzip
Last-Modified: Wed, 10 Feb 2016 18:07:56 GMT
Accept-Ranges: bytes
ETag: "2fc5a0f72d64d11:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
X-Powered-By-Plesk: PleskWin
Date: Fri, 25 Nov 2022 13:09:36 GMT
Content-Length: 5920


--- Additional Info ---
Magic:  ASCII text, with CRLF line terminators
Size:   5920
Md5:    910be0247fe860249806caa08500a5e3
Sha1:   bf76c1240e5e6f227a965b2e57059345dc101eb2
Sha256: 82fc5a7adbc8bdf274b86ebdaea0d8c2dca29a88f69799e3a14a21f464d2eb05
                                        
                                            GET /css/jcarousel.css HTTP/1.1 
Host: wregiscorretora.com.br
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wregiscorretora.com.br/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

search
                                         128.201.72.156
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=utf-8
                                        
Cache-Control: private
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
X-Powered-By-Plesk: PleskWin
Date: Fri, 25 Nov 2022 13:09:36 GMT
Content-Length: 5046


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (421)
Size:   5046
Md5:    10e1ee6182a9a9e8e079359f0ce2830c
Sha1:   b8df1e19e6addf54ddd64b9f7d9ac234e77f296a
Sha256: 9e0df04a7c1abb388d17a6aa071bab852479c86d454a83bf078816def124784a
                                        
                                            GET /css/flexslider.css HTTP/1.1 
Host: wregiscorretora.com.br
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wregiscorretora.com.br/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

search
                                         128.201.72.156
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Content-Encoding: gzip
Last-Modified: Wed, 03 Jul 2019 02:32:44 GMT
Accept-Ranges: bytes
ETag: "475469984731d51:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
X-Powered-By-Plesk: PleskWin
Date: Fri, 25 Nov 2022 13:09:36 GMT
Content-Length: 3836


--- Additional Info ---
Magic:  ASCII text
Size:   3836
Md5:    1877b6fd8a6d7ee2633b0e805b10b7f1
Sha1:   517ed7929c541dcaa68451f29a6d9940f111a02c
Sha256: 4eb83fa32503ee1f2f8c5d52c6b017f465e4c5c2be14aa7ae4c1b567b61b504e
                                        
                                            GET /css/bootstrap.min.css HTTP/1.1 
Host: wregiscorretora.com.br
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wregiscorretora.com.br/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

search
                                         128.201.72.156
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Transfer-Encoding: chunked
Content-Encoding: gzip
Last-Modified: Wed, 03 Jul 2019 02:32:39 GMT
Accept-Ranges: bytes
ETag: "38531d954731d51:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
X-Powered-By-Plesk: PleskWin
Date: Fri, 25 Nov 2022 13:09:35 GMT


--- Additional Info ---
Magic:  ASCII text, with very long lines (65366)
Size:   101633
Md5:    001674b1a9e7aa507eef9edae628addb
Sha1:   8591cb8abb6a9b93fac6c89b810e801e3a5a648c
Sha256: fc4b44349f1f75f1e0b70c38618002205babc065f5811d0a17623e000924bddd
                                        
                                            GET /css/estilo.css HTTP/1.1 
Host: wregiscorretora.com.br
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wregiscorretora.com.br/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

search
                                         128.201.72.156
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Content-Encoding: gzip
Last-Modified: Sun, 02 Feb 2020 21:04:38 GMT
Accept-Ranges: bytes
ETag: "96723161cdad51:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
X-Powered-By-Plesk: PleskWin
Date: Fri, 25 Nov 2022 13:09:36 GMT
Content-Length: 957


--- Additional Info ---
Magic:  assembler source, ASCII text, with CRLF line terminators
Size:   957
Md5:    86d5c919dad440b3b0e0f80137610947
Sha1:   514d1d7fd11fce5b62bab18647fef84abd6f9659
Sha256: 2969c7c146632f953e632615604c0e37741711397eaa78d2b9fa24e0e1b9f226
                                        
                                            GET /skins/default.css HTTP/1.1 
Host: wregiscorretora.com.br
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wregiscorretora.com.br/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

search
                                         128.201.72.156
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Content-Encoding: gzip
Last-Modified: Wed, 10 Feb 2016 18:08:10 GMT
Accept-Ranges: bytes
ETag: "bc5fdff2d64d11:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
X-Powered-By-Plesk: PleskWin
Date: Fri, 25 Nov 2022 13:09:36 GMT
Content-Length: 4678


--- Additional Info ---
Magic:  ASCII text, with CRLF line terminators
Size:   4678
Md5:    01305696c1a8eee0b5abf8244f8f7a97
Sha1:   67749ff8181e17185c3300d1f5f647ef01f0a16d
Sha256: 8158fce9590a43813742fa81b772fe9e49f8af93dffc7c675690e2e3fd459b81
                                        
                                            GET /js/jquery.easing.1.3.js HTTP/1.1 
Host: wregiscorretora.com.br
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wregiscorretora.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

search
                                         128.201.72.156
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Content-Encoding: gzip
Last-Modified: Wed, 10 Feb 2016 18:09:26 GMT
Accept-Ranges: bytes
ETag: "b361372d2e64d11:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
X-Powered-By-Plesk: PleskWin
Date: Fri, 25 Nov 2022 13:09:36 GMT
Content-Length: 8120


--- Additional Info ---
Magic:  Unicode text, UTF-8 text
Size:   8120
Md5:    08d4bdbdc89cb6ee24bd7ac38e6e11b8
Sha1:   0406dbe255b6f60cf6fbbeb151bfe89f754a9613
Sha256: 9be5addf16e45f0289e2773d6926d3bc7691f8fc6c0a268c15944e76f97822c2
                                        
                                            GET /js/jquery.fancybox.pack.js HTTP/1.1 
Host: wregiscorretora.com.br
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wregiscorretora.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

search
                                         128.201.72.156
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Content-Encoding: gzip
Last-Modified: Wed, 10 Feb 2016 18:09:27 GMT
Accept-Ranges: bytes
ETag: "80e5ca2d2e64d11:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
X-Powered-By-Plesk: PleskWin
Date: Fri, 25 Nov 2022 13:09:36 GMT
Content-Length: 8514


--- Additional Info ---
Magic:  ASCII text, with very long lines (626)
Size:   8514
Md5:    e4b71e8c8ac297f7696adfc1a1f1784b
Sha1:   9be711ce29744db6cd3bcb87283c66dd4d111a56
Sha256: 336543b6044526a917352769e7149772c9737f7e3802a8dfe2e9744724042630
                                        
                                            GET /js/bootstrap.min.js HTTP/1.1 
Host: wregiscorretora.com.br
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wregiscorretora.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

search
                                         128.201.72.156
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Content-Encoding: gzip
Last-Modified: Wed, 10 Feb 2016 18:09:26 GMT
Accept-Ranges: bytes
ETag: "bbaba22d2e64d11:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
X-Powered-By-Plesk: PleskWin
Date: Fri, 25 Nov 2022 13:09:36 GMT
Content-Length: 29120


--- Additional Info ---
Magic:  ASCII text, with very long lines (28928)
Size:   29120
Md5:    a4657e14ba7d431a459da11b0265dafb
Sha1:   bb1c8080d258dd3ee809da8cb4cb7df1bfaf2a38
Sha256: ddfe4a9ebe9932bd325afb10d5c6754364c5b3b5d3287cabe6579e3d95736953
                                        
                                            GET /js/google-code-prettify/prettify.js HTTP/1.1 
Host: wregiscorretora.com.br
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wregiscorretora.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

search
                                         128.201.72.156
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Content-Encoding: gzip
Last-Modified: Wed, 10 Feb 2016 18:09:28 GMT
Accept-Ranges: bytes
ETag: "1716b02e2e64d11:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
X-Powered-By-Plesk: PleskWin
Date: Fri, 25 Nov 2022 13:09:36 GMT
Content-Length: 13717


--- Additional Info ---
Magic:  ASCII text, with very long lines (592)
Size:   13717
Md5:    acf05697085dca09ee6a9f9086a7d056
Sha1:   c17d5955b5876431a3d89c3485a4966e1a652cc1
Sha256: 9b0152c55eb59de393fb85ab3462a39d112f6e1bd294d9ba651965aea389a8fa
                                        
                                            GET /js/jquery.fancybox-media.js HTTP/1.1 
Host: wregiscorretora.com.br
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wregiscorretora.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

search
                                         128.201.72.156
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Content-Encoding: gzip
Last-Modified: Wed, 10 Feb 2016 18:09:27 GMT
Accept-Ranges: bytes
ETag: "3be0382e2e64d11:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
X-Powered-By-Plesk: PleskWin
Date: Fri, 25 Nov 2022 13:09:36 GMT
Content-Length: 5192


--- Additional Info ---
Magic:  ASCII text
Size:   5192
Md5:    6c4ccef50fc5e969f9bd276f8f7e6df0
Sha1:   139f2f63e241afe5f86edd7e988188b56fa0b52f
Sha256: 8c8d0e2e94a71c0ae35bd27b67910ff75e7fd0575fdc4e0e6ba7ceb2745e69a4
                                        
                                            GET /css/style.css HTTP/1.1 
Host: wregiscorretora.com.br
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wregiscorretora.com.br/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

search
                                         128.201.72.156
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Content-Encoding: gzip
Last-Modified: Sun, 02 Feb 2020 21:04:25 GMT
Accept-Ranges: bytes
ETag: "96c9ce59cdad51:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
X-Powered-By-Plesk: PleskWin
Date: Fri, 25 Nov 2022 13:09:36 GMT
Content-Length: 33520


--- Additional Info ---
Magic:  ASCII text, with CRLF line terminators
Size:   33520
Md5:    482b6d6c5754b26b8f8b4328c6a43d2e
Sha1:   638752d409f1c9591d00be8735891ee654eb7155
Sha256: b43cb050b98e6f59ff1c0235623a4113b816387f727cc8950cc9d700e4678a9e
                                        
                                            GET /js/portfolio/jquery.quicksand.js HTTP/1.1 
Host: wregiscorretora.com.br
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wregiscorretora.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

search
                                         128.201.72.156
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Content-Encoding: gzip
Last-Modified: Wed, 10 Feb 2016 18:09:30 GMT
Accept-Ranges: bytes
ETag: "4ecdcb2f2e64d11:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
X-Powered-By-Plesk: PleskWin
Date: Fri, 25 Nov 2022 13:09:36 GMT
Content-Length: 14720


--- Additional Info ---
Magic:  ASCII text
Size:   14720
Md5:    0b382161be82e24f90694ac9a8e1bef5
Sha1:   6c93cbbcb2c507ea1bd74443c4b34dffb305060d
Sha256: b4071871c717bdeb628523c260879ae2948209347ea41eb921fce206056ad2e1
                                        
                                            GET /js/portfolio/setting.js HTTP/1.1 
Host: wregiscorretora.com.br
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wregiscorretora.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

search
                                         128.201.72.156
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Content-Encoding: gzip
Last-Modified: Wed, 10 Feb 2016 18:09:30 GMT
Accept-Ranges: bytes
ETag: "b4b7f62f2e64d11:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
X-Powered-By-Plesk: PleskWin
Date: Fri, 25 Nov 2022 13:09:36 GMT
Content-Length: 1283


--- Additional Info ---
Magic:  ASCII text, with CRLF line terminators
Size:   1283
Md5:    0b07cc26a9e9ae0a4334eade5c81e990
Sha1:   5d56973cdd24252e3dc7a0c8bcb37a9385df61db
Sha256: 3cb6c6c6430c0867109878e875dd67d956a12522bd06325d2bf3c2f4bf7e8f19
                                        
                                            GET /js/animate.js HTTP/1.1 
Host: wregiscorretora.com.br
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wregiscorretora.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

search
                                         128.201.72.156
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Content-Encoding: gzip
Last-Modified: Wed, 10 Feb 2016 18:09:32 GMT
Accept-Ranges: bytes
ETag: "0d6c5302e64d11:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
X-Powered-By-Plesk: PleskWin
Date: Fri, 25 Nov 2022 13:09:36 GMT
Content-Length: 898


--- Additional Info ---
Magic:  ASCII text, with CRLF line terminators
Size:   898
Md5:    9dc2b2a9ea4e316270c7cc8d1e0fcc25
Sha1:   aa1ebd5bb8f12cce6fcfb47e61526a8867895074
Sha256: d59f443f58b59ccb27c813f3736a2372e423ad497be09275823711d251f61647
                                        
                                            GET /js/custom.js HTTP/1.1 
Host: wregiscorretora.com.br
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wregiscorretora.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

search
                                         128.201.72.156
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Content-Encoding: gzip
Last-Modified: Wed, 10 Feb 2016 18:09:32 GMT
Accept-Ranges: bytes
ETag: "38e68312e64d11:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
X-Powered-By-Plesk: PleskWin
Date: Fri, 25 Nov 2022 13:09:36 GMT
Content-Length: 9146


--- Additional Info ---
Magic:  ASCII text, with very long lines (304), with CRLF line terminators
Size:   9146
Md5:    6f360bd66afa602342c59470fa8bf384
Sha1:   1c608dba23bb402f1cb3d0e6b1fd78f1a69f2326
Sha256: fbe1590925bac7d2cc8fdded308725b1e4a3a550a2e2e90370dfe86e7752783a
                                        
                                            GET /js/google-code-prettify/prettify.css HTTP/1.1 
Host: wregiscorretora.com.br
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wregiscorretora.com.br/css/style.css
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

search
                                         128.201.72.156
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Content-Encoding: gzip
Last-Modified: Wed, 10 Feb 2016 18:08:03 GMT
Accept-Ranges: bytes
ETag: "231944fc2d64d11:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
X-Powered-By-Plesk: PleskWin
Date: Fri, 25 Nov 2022 13:09:36 GMT
Content-Length: 869


--- Additional Info ---
Magic:  ASCII text, with CRLF line terminators
Size:   869
Md5:    9c63a5f0294f9a77b802892e8c97e986
Sha1:   57cdb7669ccea69c4aa93ae699ca1c632bc2036f
Sha256: 483bc6c9701f32f9dd40b2c2b2470414ddd4e03e97e9f4be71d0baf77f67efa0
                                        
                                            GET /css/font-awesome.css HTTP/1.1 
Host: wregiscorretora.com.br
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wregiscorretora.com.br/css/style.css
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

search
                                         128.201.72.156
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Content-Encoding: gzip
Last-Modified: Wed, 03 Jul 2019 02:32:46 GMT
Accept-Ranges: bytes
ETag: "f84942994731d51:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
X-Powered-By-Plesk: PleskWin
Date: Fri, 25 Nov 2022 13:09:36 GMT
Content-Length: 21681


--- Additional Info ---
Magic:  troff or preprocessor input, ASCII text, with very long lines (305)
Size:   21681
Md5:    7371faf6571c47aadaf4f5a7ab8cedc4
Sha1:   66e9bd4377dd014a0c2d6d51bdd6f203d5687f4b
Sha256: 7432bd607880a4e8210ce47c53d8f675b737a54e8ab5cd1c527f9e54b7823e34
                                        
                                            GET /js/jquery.js HTTP/1.1 
Host: wregiscorretora.com.br
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wregiscorretora.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

search
                                         128.201.72.156
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Transfer-Encoding: chunked
Content-Encoding: gzip
Last-Modified: Wed, 10 Feb 2016 18:09:25 GMT
Accept-Ranges: bytes
ETag: "dd3ed32c2e64d11:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
X-Powered-By-Plesk: PleskWin
Date: Fri, 25 Nov 2022 13:09:36 GMT


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (65416), with CRLF line terminators
Size:   92890
Md5:    3b45f83652848c6cbde593d0b9bc2822
Sha1:   5778411f6d2bc92d504a7d17acd0d21b7fd3b076
Sha256: 13df59618efd40240a789d8d087c0756a18aab8f128a3a70c2b96bf1a1d56f20
                                        
                                            GET /js/jquery.flexslider.js HTTP/1.1 
Host: wregiscorretora.com.br
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wregiscorretora.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

search
                                         128.201.72.156
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Content-Encoding: gzip
Last-Modified: Wed, 10 Feb 2016 18:09:31 GMT
Accept-Ranges: bytes
ETag: "1bc585302e64d11:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
X-Powered-By-Plesk: PleskWin
Date: Fri, 25 Nov 2022 13:09:36 GMT
Content-Length: 41138


--- Additional Info ---
Magic:  ASCII text
Size:   41138
Md5:    f13c05168f26809033acefd6ab9bc610
Sha1:   59cc013172f92b4e1c4f869f4805dd9b3306a0a3
Sha256: ad74a34f231b0e379e0e33a93db7bb21779a2d21e7e8d8b1d0a4d43892662be9
                                        
                                            GET /img/logo.png HTTP/1.1 
Host: wregiscorretora.com.br
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wregiscorretora.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

search
                                         128.201.72.156
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Last-Modified: Wed, 10 Feb 2016 18:08:12 GMT
Accept-Ranges: bytes
ETag: "94411e12e64d11:0"
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
X-Powered-By-Plesk: PleskWin
Date: Fri, 25 Nov 2022 13:09:36 GMT
Content-Length: 52903


--- Additional Info ---
Magic:  PNG image data, 306 x 86, 8-bit/color RGBA, non-interlaced\012- data
Size:   52903
Md5:    57e7557de14e29e7d5757bf117851c44
Sha1:   5b9ff8cd5bae234030b5687725024444f35cfd8e
Sha256: d0848cd1b0bd01a8ec25ed8286761ff6abfe63f93ff116a2f45e7ba3273f935c
                                        
                                            GET /css/custom-fonts.css HTTP/1.1 
Host: wregiscorretora.com.br
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wregiscorretora.com.br/css/style.css
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

search
                                         128.201.72.156
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Content-Encoding: gzip
Last-Modified: Wed, 03 Jul 2019 02:32:40 GMT
Accept-Ranges: bytes
ETag: "34e7f3954731d51:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
X-Powered-By-Plesk: PleskWin
Date: Fri, 25 Nov 2022 13:09:36 GMT
Content-Length: 19844


--- Additional Info ---
Magic:  ASCII text, with very long lines (5656)
Size:   19844
Md5:    e62f464f1c7798a6a1f03e2a174a354e
Sha1:   26dfaadcb00c8aeba8ce783f6653883951e9b34f
Sha256: 4f22f1d75f62c03015d82615d49dfbe7e42a1c75010ccfc47357a73e58d0eb51
                                        
                                            GET /css/overwrite.css HTTP/1.1 
Host: wregiscorretora.com.br
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wregiscorretora.com.br/css/style.css
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

search
                                         128.201.72.156
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Content-Encoding: gzip
Last-Modified: Wed, 03 Jul 2019 02:32:48 GMT
Accept-Ranges: bytes
ETag: "7f87c49a4731d51:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
X-Powered-By-Plesk: PleskWin
Date: Fri, 25 Nov 2022 13:09:37 GMT
Content-Length: 28823


--- Additional Info ---
Magic:  assembler source, ASCII text, with CRLF line terminators
Size:   28823
Md5:    74e8659c44a8af76a2f779651b191a24
Sha1:   92ecd22e062434b0f7a99bcd1543396445694155
Sha256: 32252ec51c37bbae9ae271fc78a45baa353df441cb7bdaa8bc017893efd1c270
                                        
                                            GET /css/animate.css HTTP/1.1 
Host: wregiscorretora.com.br
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wregiscorretora.com.br/css/style.css
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

search
                                         128.201.72.156
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Content-Encoding: gzip
Last-Modified: Wed, 03 Jul 2019 02:32:34 GMT
Accept-Ranges: bytes
ETag: "9fd575924731d51:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
X-Powered-By-Plesk: PleskWin
Date: Fri, 25 Nov 2022 13:09:37 GMT
Content-Length: 61147


--- Additional Info ---
Magic:  ASCII text, with very long lines (460)
Size:   61147
Md5:    72ff8bf9837e0cac71fdc8f89d7eaef0
Sha1:   975ed2d8aeeecc37819f0a581cbf6bc61f26093d
Sha256: 3b17d02056665cc67fbc648b8b95c8986b3afe91b1861e11ff86af22c20dc9a2
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 3317
Cache-Control: max-age=133490
Date: Fri, 25 Nov 2022 13:09:49 GMT
Etag: "6380181a-1d7"
Expires: Sun, 27 Nov 2022 02:14:39 GMT
Last-Modified: Fri, 25 Nov 2022 01:19:22 GMT
Server: ECS (ska/F70D)
X-Cache: HIT
Content-Length: 471

                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 662
Cache-Control: max-age=116766
Date: Fri, 25 Nov 2022 13:09:49 GMT
Etag: "637fe125-1d7"
Expires: Sat, 26 Nov 2022 21:35:55 GMT
Last-Modified: Thu, 24 Nov 2022 21:24:53 GMT
Server: ECS (ska/F70D)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET /img/slides/4.jpg HTTP/1.1 
Host: wregiscorretora.com.br
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wregiscorretora.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

search
                                         128.201.72.156
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Last-Modified: Wed, 10 Feb 2016 18:10:45 GMT
Accept-Ranges: bytes
ETag: "b4e685c2e64d11:0"
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
X-Powered-By-Plesk: PleskWin
Date: Fri, 25 Nov 2022 13:09:37 GMT
Content-Length: 39100


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 1024x360, components 3\012- data
Size:   39100
Md5:    a438b9e4c4e9a608d0ae9f12b83f9144
Sha1:   25506935a81ee4229d57a4e8d8f94a8e2d0b2782
Sha256: 78c4dd4fe2b166e4e18dcecf4a6e1904f4e2ae6f69ac9544c385d4e0bfc1bc52
                                        
                                            GET /img/slides/1.jpg HTTP/1.1 
Host: wregiscorretora.com.br
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wregiscorretora.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

search
                                         128.201.72.156
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Last-Modified: Wed, 10 Feb 2016 18:10:41 GMT
Accept-Ranges: bytes
ETag: "ec2145a2e64d11:0"
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
X-Powered-By-Plesk: PleskWin
Date: Fri, 25 Nov 2022 13:09:37 GMT
Content-Length: 50722


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 1024x360, components 3\012- data
Size:   50722
Md5:    11cf4f739cdfe243ee703afae31a61fc
Sha1:   f336d11e5c98bec7ffb54b6ef1199dd393d63da9
Sha256: 2899b47032745de5d33a1a82388766db99e8e864125582adef415eb1b5518674
                                        
                                            GET /img/slides/2.jpg HTTP/1.1 
Host: wregiscorretora.com.br
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wregiscorretora.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

search
                                         128.201.72.156
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Last-Modified: Wed, 10 Feb 2016 18:10:43 GMT
Accept-Ranges: bytes
ETag: "c5564c5b2e64d11:0"
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
X-Powered-By-Plesk: PleskWin
Date: Fri, 25 Nov 2022 13:09:37 GMT
Content-Length: 108596


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 1024x360, components 3\012- data
Size:   108596
Md5:    fec6b90322477d9e2bceb3fc67a2a412
Sha1:   3d31601266c5bfb64af3e9dbad7cf67f405b6009
Sha256: e4ab250dfdc1a3cab509fae40a6857146b62cccbeec808b513af3191cce30467
                                        
                                            GET /img/slides/3.jpg HTTP/1.1 
Host: wregiscorretora.com.br
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wregiscorretora.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

search
                                         128.201.72.156
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Last-Modified: Wed, 10 Feb 2016 18:10:44 GMT
Accept-Ranges: bytes
ETag: "3e50e75b2e64d11:0"
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
X-Powered-By-Plesk: PleskWin
Date: Fri, 25 Nov 2022 13:09:37 GMT
Content-Length: 53748


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 1024x360, components 3\012- data
Size:   53748
Md5:    e896c4e8e93abbbe82dd16a72b6696df
Sha1:   0cdc8f9a14a0a88be80be4cb37af3d11d7c261f3
Sha256: 3cd5a054b61473e1f50933851202acddf3628b359afb459aa1a15d8010660466
                                        
                                            GET /fotos/fotos_index/icon_carro.png HTTP/1.1 
Host: wregiscorretora.com.br
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wregiscorretora.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

search
                                         128.201.72.156
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Last-Modified: Wed, 10 Feb 2016 18:11:05 GMT
Accept-Ranges: bytes
ETag: "54be40682e64d11:0"
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
X-Powered-By-Plesk: PleskWin
Date: Fri, 25 Nov 2022 13:09:37 GMT
Content-Length: 35829


--- Additional Info ---
Magic:  PNG image data, 93 x 92, 8-bit/color RGBA, non-interlaced\012- data
Size:   35829
Md5:    0d7928c30bb234cd0a87d6f2844319e4
Sha1:   75c7f273098b92d0b7178ccc678dad05f76a4ad4
Sha256: e2b94e61982e27a111501e401d88a8661e4e6b8dbec5621081dbccb5fd7b8f01
                                        
                                            GET /fotos/fotos_index/icon_casa.png HTTP/1.1 
Host: wregiscorretora.com.br
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wregiscorretora.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

search
                                         128.201.72.156
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Last-Modified: Wed, 10 Feb 2016 18:11:05 GMT
Accept-Ranges: bytes
ETag: "92b8bc682e64d11:0"
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
X-Powered-By-Plesk: PleskWin
Date: Fri, 25 Nov 2022 13:09:37 GMT
Content-Length: 34295


--- Additional Info ---
Magic:  PNG image data, 93 x 92, 8-bit/color RGBA, non-interlaced\012- data
Size:   34295
Md5:    b93e01675bd333de3ab0f024b1d260e6
Sha1:   d0dd46ee32c9d5a62817b2e482ae2933a5d29ee5
Sha256: 6f7ee532e4847ed7dc2c0c21aab63468aaec09346a9f6ab3e8bc057cd6a02677
                                        
                                            GET /3zzKlOA HTTP/1.1 
Host: bit.ly
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wregiscorretora.com.br/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

search
                                         67.199.248.11
HTTP/2 301 Moved Permanently
content-type: text/html; charset=utf-8
                                        
server: nginx
date: Fri, 25 Nov 2022 13:09:49 GMT
content-length: 114
cache-control: private, max-age=90
location: https://meuip.page/ads5.php
set-cookie: _bit=mapd9N-2bad1dc18a07f4b116-00q; Domain=bit.ly; Expires=Wed, 24 May 2023 13:09:49 GMT
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text
Size:   114
Md5:    988c249f56442504aa4f0c3d48acc7d9
Sha1:   0f259c7688c84f8bd89946df9aefdf948fe2d1ad
Sha256: 6078c9ebacd41bd894115c096436f290aeb54b6689a894c362501ff5babfdd4d
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 3317
Cache-Control: max-age=133490
Date: Fri, 25 Nov 2022 13:09:49 GMT
Etag: "6380181a-1d7"
Expires: Sun, 27 Nov 2022 02:14:39 GMT
Last-Modified: Fri, 25 Nov 2022 01:19:22 GMT
Server: ECS (ska/F70D)
X-Cache: HIT
Content-Length: 471

                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 662
Cache-Control: max-age=116766
Date: Fri, 25 Nov 2022 13:09:49 GMT
Etag: "637fe125-1d7"
Expires: Sat, 26 Nov 2022 21:35:55 GMT
Last-Modified: Thu, 24 Nov 2022 21:24:53 GMT
Server: ECS (ska/F70D)
X-Cache: HIT
Content-Length: 471

                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Cache-Control: max-age=117895
Date: Fri, 25 Nov 2022 13:09:49 GMT
Etag: "637fe824-118"
Expires: Sat, 26 Nov 2022 21:54:44 GMT
Last-Modified: Thu, 24 Nov 2022 21:54:44 GMT
Server: nginx
Content-Length: 280

                                        
                                            GET /img/bg_direction_nav.png HTTP/1.1 
Host: wregiscorretora.com.br
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wregiscorretora.com.br/css/flexslider.css
Cookie: showed=ok
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

search
                                         128.201.72.156
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Last-Modified: Wed, 10 Feb 2016 18:07:58 GMT
Accept-Ranges: bytes
ETag: "9b5031f92d64d11:0"
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
X-Powered-By-Plesk: PleskWin
Date: Fri, 25 Nov 2022 13:09:37 GMT
Content-Length: 657


--- Additional Info ---
Magic:  PNG image data, 60 x 40, 8-bit/color RGB, non-interlaced\012- data
Size:   657
Md5:    4c267ff8d4b1c21da51f3ed77137581f
Sha1:   ef318582af12acecc7706c1f87954466f9ea008d
Sha256: 9e8e47428e3966b803335c5036b45007d2c8eec36c6770caacc62a1836fb1ea4
                                        
                                            GET /fonts/fontawesome-webfont.woff?v=4.0.3 HTTP/1.1 
Host: wregiscorretora.com.br
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://wregiscorretora.com.br/css/font-awesome.css
Cookie: showed=ok
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin

search
                                         128.201.72.156
HTTP/1.1 200 OK
Content-Type: font/x-woff
                                        
Last-Modified: Wed, 10 Feb 2016 18:17:08 GMT
Accept-Ranges: bytes
ETag: "7cf0c1402f64d11:0"
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
X-Powered-By-Plesk: PleskWin
Date: Fri, 25 Nov 2022 13:09:37 GMT
Content-Length: 44432


--- Additional Info ---
Magic:  Web Open Font Format, TrueType, length 44432, version 1.0\012- data
Size:   44432
Md5:    3293616ec0c605c7c2db25829a0a509e
Sha1:   04c3bf56d87a0828935bd6b4aee859995f321693
Sha256: 0fd28fece9ebd606b8b071460ebd3fc2ed7bc7a66ef91c8834f11dfacab4a849
                                        
                                            GET /fotos/fotos_index/icon_vida.png HTTP/1.1 
Host: wregiscorretora.com.br
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wregiscorretora.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

search
                                         128.201.72.156
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Last-Modified: Wed, 10 Feb 2016 18:11:06 GMT
Accept-Ranges: bytes
ETag: "50153b692e64d11:0"
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
X-Powered-By-Plesk: PleskWin
Date: Fri, 25 Nov 2022 13:09:37 GMT
Content-Length: 38322


--- Additional Info ---
Magic:  PNG image data, 93 x 92, 8-bit/color RGBA, non-interlaced\012- data
Size:   38322
Md5:    68dcba94d71f6d16eea35473ffb7b354
Sha1:   2d67a13d2d710cf43b75206f5371ba54e7b8fd8b
Sha256: f226a22a1c60557e07c83d9207990cf5c1428e5f96e82a217afc490c43acda8d
                                        
                                            GET /img/slides/5.jpg HTTP/1.1 
Host: wregiscorretora.com.br
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wregiscorretora.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

search
                                         128.201.72.156
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Last-Modified: Wed, 10 Feb 2016 18:10:46 GMT
Accept-Ranges: bytes
ETag: "7a413c5d2e64d11:0"
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
X-Powered-By-Plesk: PleskWin
Date: Fri, 25 Nov 2022 13:09:37 GMT
Content-Length: 41731


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 1024x360, components 3\012- data
Size:   41731
Md5:    2c80c19115f52fe69c31994ebc049630
Sha1:   563baf5af6609aed25f7134e0dd62dca70ede806
Sha256: bfc151a27cadc781e19b6fcce08fca594f61eb56147017b01a5150c984ec1ca5
                                        
                                            GET /img/logo_whatsapp.png HTTP/1.1 
Host: wregiscorretora.com.br
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wregiscorretora.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

search
                                         128.201.72.156
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Last-Modified: Sun, 02 Feb 2020 21:04:55 GMT
Accept-Ranges: bytes
ETag: "a1bc9f6bcdad51:0"
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
X-Powered-By-Plesk: PleskWin
Date: Fri, 25 Nov 2022 13:09:37 GMT
Content-Length: 46451


--- Additional Info ---
Magic:  PNG image data, 106 x 106, 8-bit/color RGBA, non-interlaced\012- data
Size:   46451
Md5:    8bdcee15e9192e4627956977ba4741a9
Sha1:   626e7ad92318f15c5223bd6a05bf5e6b7f331a6e
Sha256: bce1254e5bcd7eafda4285ac56e42e541ed98e3715bc3189d0f77e8f2a3c228d
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "495169482368A285EC3B8581B00365BE1DD6C011D0278437BC55BE18A6231ADF"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3270
Expires: Fri, 25 Nov 2022 14:04:19 GMT
Date: Fri, 25 Nov 2022 13:09:49 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "495169482368A285EC3B8581B00365BE1DD6C011D0278437BC55BE18A6231ADF"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3270
Expires: Fri, 25 Nov 2022 14:04:19 GMT
Date: Fri, 25 Nov 2022 13:09:49 GMT
Connection: keep-alive

                                        
                                            GET /js15_as.js HTTP/1.1 
Host: s10.histats.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wregiscorretora.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         46.105.201.240
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
                                        
date: Fri, 25 Nov 2022 13:05:52 GMT
etag: "-375139978"
last-modified: Thu, 16 Apr 2020 10:44:16 GMT
x-request-id: 667387209
content-encoding: br
x-cdn-pop: sbg
x-cdn-pop-ip: 137.74.120.0/27
x-cacheable: Matched cache
accept-ranges: bytes
content-length: 4364
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document, ASCII text, with very long lines (11440), with no line terminators
Size:   4364
Md5:    ed192092c129db6123a3397855f42619
Sha1:   067e9b8e26cf6246eb84c6b9cf3da0c192ce7b3e
Sha256: 998fff486a7fb38b6ed445edc36c9b317b70950cd39efcf4012ca641312fcee1
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 0
Cache-Control: max-age=117895
Date: Fri, 25 Nov 2022 13:09:49 GMT
Etag: "637fe824-118"
Expires: Sat, 26 Nov 2022 21:54:44 GMT
Last-Modified: Thu, 24 Nov 2022 21:54:44 GMT
Server: ECS (ska/F70D)
X-Cache: HIT
Content-Length: 280

                                        
                                            GET /favicon.ico HTTP/1.1 
Host: wregiscorretora.com.br
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wregiscorretora.com.br/
Cookie: showed=ok
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

search
                                         128.201.72.156
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=utf-8
                                        
Cache-Control: private
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
X-Powered-By-Plesk: PleskWin
Date: Fri, 25 Nov 2022 13:09:38 GMT
Content-Length: 5034


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (421)
Size:   5034
Md5:    0cd92a079ac09fc81d15882fc979a3b8
Sha1:   1d9fbda5d9d40cff2dc1c99b1676150576fa6def
Sha256: bcf96fabacee9c6c0d015ad85a7dc446168c77658095c0116d62148c7785e54f
                                        
                                            GET /stats/0.php?3908301&@f16&@g1&@h1&@i1&@j1669381789141&@k0&@l1&@mWR%C3%A9gis%20Corretora%20de%20Seguros&@n0&@o1000&@q0&@r0&@s0&@ten-US&@u1280&@b1:182952998&@b3:1669381789&@b4:js15_as.js&@b5:0&@a-_0.2.1&@vhttps%3A%2F%2Fwregiscorretora.com.br%2F&@w HTTP/1.1 
Host: s4.histats.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wregiscorretora.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         192.99.8.34
HTTP/1.1 200 OK
Content-Type: text/html;charset=UTF-8
                                        
Date: Fri, 25 Nov 2022 13:09:50 GMT
Content-Length: 52
Connection: close


--- Additional Info ---
Magic:  ASCII text, with no line terminators
Size:   52
Md5:    05da7affc45b9d9b8d439ec14002a889
Sha1:   9c3fc2ce9b4990dd60fdb51cf95f9a3b19f591f2
Sha256: c0758dfec43aefe4a5dbcb788e4d8c3ad0b4cac41034a3f730e083f806bdd3d9
                                        
                                            GET /stats/0.php?3908301&@f16&@g0&@h2&@i1&@j1669381789149&@k8&@l2&@mWR%C3%A9gis%20Corretora%20de%20Seguros&@n0&@o1000&@q0&@r0&@s0&@ten-US&@u1280&@b1:198859180&@b3:1669381789&@b4:js15_as.js&@b5:0&@a-_0.2.1&@vhttps%3A%2F%2Fwregiscorretora.com.br%2F&@w HTTP/1.1 
Host: s4.histats.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wregiscorretora.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         192.99.8.34
HTTP/1.1 200 OK
Content-Type: text/html;charset=UTF-8
                                        
Date: Fri, 25 Nov 2022 13:09:50 GMT
Content-Length: 52
Connection: close


--- Additional Info ---
Magic:  ASCII text, with no line terminators
Size:   52
Md5:    05da7affc45b9d9b8d439ec14002a889
Sha1:   9c3fc2ce9b4990dd60fdb51cf95f9a3b19f591f2
Sha256: c0758dfec43aefe4a5dbcb788e4d8c3ad0b4cac41034a3f730e083f806bdd3d9
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "3EDD03E1AE450EB90B2258E14309055C15C6F0A934DE3E3C9745D2766871D044"
Last-Modified: Wed, 23 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9493
Expires: Fri, 25 Nov 2022 15:48:03 GMT
Date: Fri, 25 Nov 2022 13:09:50 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "3EDD03E1AE450EB90B2258E14309055C15C6F0A934DE3E3C9745D2766871D044"
Last-Modified: Wed, 23 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4316
Expires: Fri, 25 Nov 2022 14:21:46 GMT
Date: Fri, 25 Nov 2022 13:09:50 GMT
Connection: keep-alive

                                        
                                            GET /stats/0.php?2998001&@f16&@g0&@h2&@i1&@j1669381789149&@k8&@l2&@mWR%C3%A9gis%20Corretora%20de%20Seguros&@n0&@o1000&@q0&@r0&@s0&@ten-US&@u1280&@b1:-14547930&@b3:1669381789&@b4:js15_as.js&@b5:0&@a-_0.2.1&@vhttps%3A%2F%2Fwregiscorretora.com.br%2F&@w HTTP/1.1 
Host: s4.histats.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wregiscorretora.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         192.99.8.34
HTTP/1.1 200 OK
Content-Type: text/html;charset=UTF-8
                                        
Date: Fri, 25 Nov 2022 13:09:50 GMT
Content-Length: 52
Connection: close


--- Additional Info ---
Magic:  ASCII text, with no line terminators
Size:   52
Md5:    ae5b5068d3de7d82a04df647de6b50a0
Sha1:   f1a816fa77a819faaa51b83ccaa8ec8e5b199b49
Sha256: 07508308e7b8680c170f392037925daffead0d9ab24ae29065e20452afb97d5d
                                        
                                            GET /stats/0.php?2998001&@f16&@g1&@h1&@i1&@j1669381789141&@k0&@l1&@mWR%C3%A9gis%20Corretora%20de%20Seguros&@n0&@o1000&@q0&@r0&@s0&@ten-US&@u1280&@b1:-144000868&@b3:1669381789&@b4:js15_as.js&@b5:0&@a-_0.2.1&@vhttps%3A%2F%2Fwregiscorretora.com.br%2F&@w HTTP/1.1 
Host: s4.histats.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wregiscorretora.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         192.99.8.34
HTTP/1.1 200 OK
Content-Type: text/html;charset=UTF-8
                                        
Date: Fri, 25 Nov 2022 13:09:50 GMT
Content-Length: 52
Connection: close


--- Additional Info ---
Magic:  ASCII text, with no line terminators
Size:   52
Md5:    ae5b5068d3de7d82a04df647de6b50a0
Sha1:   f1a816fa77a819faaa51b83ccaa8ec8e5b199b49
Sha256: 07508308e7b8680c170f392037925daffead0d9ab24ae29065e20452afb97d5d
                                        
                                            GET /tag.min.js HTTP/1.1 
Host: ashoupsu.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://meuip.page/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         139.45.197.238
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
                                        
server: nginx
date: Fri, 25 Nov 2022 13:09:50 GMT
content-length: 23258
content-encoding: br
x-trace-id: c2c856a234b1deb4f99ff36bddb550a0
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0
accept-ranges: bytes
last-modified: Wed, 23 Nov 2022 10:06:19 GMT
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding
access-control-max-age: 86400
pragma: no-cache
expires: Tue, 11 Jan 1994 10:00:00 GMT
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (65536), with no line terminators
Size:   23258
Md5:    09c6bc35f4808f91eef702f269b590ea
Sha1:   e684a310ca3a4f2fdfb24c5a99a34dd96d634ec5
Sha256: f50dd06f8c62afb27e75aab75507ff7517b9f896a2f8dc489d458f4e45a14e02

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 3965
Cache-Control: 'max-age=158059'
Date: Fri, 25 Nov 2022 13:09:50 GMT
Last-Modified: Fri, 25 Nov 2022 12:03:45 GMT
Server: ECS (ska/F70D)
X-Cache: HIT
Content-Length: 280

                                        
                                            GET /stattag.js HTTP/1.1 
Host: tzegilo.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://meuip.page/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         172.67.194.45
HTTP/2 200 OK
content-type: application/javascript
                                        
date: Fri, 25 Nov 2022 13:09:50 GMT
last-modified: Wed, 23 Nov 2022 15:07:42 GMT
etag: W/"637e373e-32a6"
link: <https://flerap.com/>; rel=preconnect; crossorigin, <https://fleraprt.com/>; rel=preconnect; crossorigin
cache-control: max-age=14400
cf-cache-status: HIT
age: 3272
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=z1qF8c3DxveVKxLIO5px2UNf6AYf14N8lCnfxNsoSe7di2qBsWaPIF3Iz1i%2BRXyqpIb9gv%2BtUIXCB6RwGB9xpMjJqH9AGokmNclIUdOUP9NWQONuFefgmB8NBxxDuA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76fa9efdedbb0b41-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (12966), with no line terminators
Size:   5512
Md5:    2751f1bcbda0c8514d42ce7e8a056822
Sha1:   96d795806a9dd9087e8a8f5d5da88789d1f16c90
Sha256: b3d78c193e97c205fc5df140f5ae8555492a1ae96ba0f3f6eed594f3d3339573
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "43BBB48A1A37A33C18036773457C75408E907C1FD7297A42152AEE29F396066E"
Last-Modified: Thu, 24 Nov 2022 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5238
Expires: Fri, 25 Nov 2022 14:37:08 GMT
Date: Fri, 25 Nov 2022 13:09:50 GMT
Connection: keep-alive

                                        
                                            GET /gid.js?userId=0c3b9b4273984c3c9f7e98aa93303341 HTTP/1.1 
Host: my.rtmark.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://meuip.page
Connection: keep-alive
Referer: https://meuip.page/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         139.45.195.8
HTTP/2 200 OK
content-type: application/json; charset=utf-8
                                        
server: nginx
date: Fri, 25 Nov 2022 13:09:50 GMT
content-length: 65
access-control-allow-origin: https://meuip.page
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
set-cookie: ID=0c3b9b4273984c3c9f7e98aa93303341; expires=Sat, 25 Nov 2023 13:09:50 GMT; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text
Size:   65
Md5:    4519bbc29170ac2c290fc82c9d517dcd
Sha1:   f82aefe9dfa05003142d9c855f198a4741064c68
Sha256: dc10e044fdb9ebdf2c7f0aa186c3a822bfa8a1c1fdd0b311b043b98f4bfaaf67
                                        
                                            POST / HTTP/1.1 
Host: ocsp.sectigo.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         172.64.155.188
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Fri, 25 Nov 2022 13:09:50 GMT
Content-Length: 471
Connection: keep-alive
Last-Modified: Tue, 22 Nov 2022 01:33:16 GMT
Expires: Tue, 29 Nov 2022 01:33:15 GMT
Etag: "78e21c7a408c8ef34065defa22dbcb926f562d9b"
Cache-Control: max-age=303204,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 76fa9efecf0bb4f7-OSL

                                        
                                            POST /log/add?cid=1db9169f-90f4-4b2d-b517-bc47aab19c1f HTTP/1.1 
Host: datatechonert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 921
Origin: https://meuip.page
Connection: keep-alive
Referer: https://meuip.page/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         139.45.195.253
HTTP/1.1 200 OK
Content-Type: application/json; charset=utf-8
                                        
Server: nginx/1.19.10
Date: Fri, 25 Nov 2022 13:09:50 GMT
Content-Length: 12
Connection: keep-alive
Access-Control-Allow-Origin: https://meuip.page
Access-Control-Allow-Methods: POST, GET, OPTIONS, PUT, DELETE
Access-Control-Allow-Headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-CSRF-Token, Authorization, X-Forwarded-For, If-None-Match
Access-Control-Allow-Credentials: true


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   12
Md5:    adb4650bfc9d2a73d4dd69583b0ceb14
Sha1:   1ce399d6e936232aaf2192cd7903a279c5015f22
Sha256: 21c1f682de27109caabcca9016511974defcec217c0441fd3f1b50ecdf8247ed

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /stats/0.php?4267674&@f16&@g1&@h0&@i0&@j0&@k0&@l0&@mADS&@n0&@ohttps%3A%2F%2Fwregiscorretora.com.br%2F&@q0&@r0&@s0&@ten-US&@u1280&@b1:-95452780&@b3:1669381790&@b4:js15_as.js&@b5:0&@a-_0.2.1&@vhttps%3A%2F%2Fmeuip.page%2Fads5.php&@w HTTP/1.1 
Host: s4.histats.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://meuip.page/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         192.99.8.34
HTTP/1.1 200 OK
Content-Type: text/html;charset=UTF-8
                                        
Date: Fri, 25 Nov 2022 13:09:50 GMT
Content-Length: 52
Connection: close


--- Additional Info ---
Magic:  ASCII text, with no line terminators
Size:   52
Md5:    28e102cbbcc2535708dfb74a0d4051c4
Sha1:   cf5c57e59ac1eda70e955aa05e9757ab5b79f95e
Sha256: 3cc4af350c5a514777a987836108ef5a7fb9d0e1db0d3a7041f3ac126f70eeaf
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F216636c8-4200-4f0d-83d2-8579be32f1ac.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 4270
x-amzn-requestid: 7327f8fb-804b-4d09-83dc-628e35ffa74b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cIB8xFwXoAMFkqQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637fe384-33f83cea2c585279140f4f59;Sampled=0
x-amzn-remapped-date: Thu, 24 Nov 2022 21:35:00 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: rKROwsZ-X8yDd4iVaYBaNFe6bgHaThxafIt76PBgLoOTrPMqAVQ9iQ==
via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 112d82578d402a38d8d02e8b857617e0.cloudfront.net (CloudFront), 1.1 google
date: Thu, 24 Nov 2022 22:22:43 GMT
age: 53230
etag: "6217a262002244ef3f2e8034076a735cafd9888a"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   4270
Md5:    648677a7e7bab1896a190d2e5fb7243c
Sha1:   6217a262002244ef3f2e8034076a735cafd9888a
Sha256: 72f2913f7c0770ebab0f2683bdc1ec5a5db8872e8f2c62a8fd5c9178b95dbb06
                                        
                                            GET /ad.js?id=Bdw46DAyWZBZ9x67 HTTP/1.1 
Host: www.counter12.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wregiscorretora.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         104.21.33.9
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
                                        
date: Fri, 25 Nov 2022 13:09:47 GMT
x-powered-by: PHP/5.3.3
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=kGywXuBM8Hn3kVTjg2z7pNYwBhUIJUBdXGG6rHsR7xUF7BhDxED8%2FhG%2Fv%2B83FwnL4OGBKtP5ZxSWeox9pfEc8JQa6k1SiOlCDQL8ONbFij2u02YUeAAHE74ou%2FJxVEYr0ThS5Q%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 76fa9ee8b917b4ee-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /ads5.php HTTP/1.1 
Host: meuip.page
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://wregiscorretora.com.br/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

search
                                         172.67.153.191
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
                                        
date: Fri, 25 Nov 2022 13:09:49 GMT
access-control-allow-origin: *
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=z3h%2Flt8F6A30rsqMUYpLxf9PV%2FZdwFVZ7aXWx18zYK%2FzDd4VYTTu63ClwRDutbJy%2BIahRldM3bhN%2BFbgYO5M3sPo7rk%2BcguxXClmcKDaWPEumsvXg%2BOMHJBN7pz2"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 76fa9ef85a41b521-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---