firefox.settings.services.mozilla.com/v1/
143.204.55.27200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 143.204.55.27:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 1b3053fa528e28810f8a2cc9284cc921
cca9eb471d941881a6b9a1793aecb6c281908f6a
a2427848ba35575dda8a82cf88f104978234c05389deebc3fc8279d9075eff45
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Alert, Content-Type, Backoff, Content-Length, Retry-After
Cache-Control: max-age=3600
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Thu, 22 Sep 2022 17:14:02 GMT
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 96c778ce6156d12f24b8b6cdaa0cbf66.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: aGOBHXd9dtqVJ3z_P-c2ZSf3ctzGC_Oq4SJTDe-VedXFELWnGS1mDg==
Age: 1984
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash a26d0784548ecab22f417f3d689daf23
8893b79366bbadeb5c8d587b8f023e310694df1c
35baaae7b3ce3110ebb2b075881cfab55ecf3eab57d834283fd18ac691b41fa2
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "35BAAAE7B3CE3110EBB2B075881CFAB55ECF3EAB57D834283FD18AC691B41FA2"
Last-Modified: Tue, 20 Sep 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13268
Expires: Thu, 22 Sep 2022 21:28:15 GMT
Date: Thu, 22 Sep 2022 17:47:07 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
143.204.55.25200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
IP 143.204.55.25:0
File type PEM certificate\012- , ASCII text
Hash 6113f8408c59aebe188d6af273b90743
7398873bf00f99944eaa77ad3ebc0d43c23dba6b
b6e0cc9ad68306208a160f3835fb8da76acc5a82d8fde1da5a98e1de1c11a770
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 10 Sep 2022 18:47:45 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Thu, 22 Sep 2022 04:35:15 GMT
etag: "6113f8408c59aebe188d6af273b90743"
x-cache: Hit from cloudfront
via: 1.1 dbfaae0db03f11cf713bbcbdb25be4a2.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: VhWNHYSPnJIln03Wcpkyl-k6JPwNw0P8t5N08Y6_dB3TpB4GsvBJqw==
age: 47513
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 22 Sep 2022 17:47:07 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
www.orizamarquitetura.com.br/
186.202.153.65301 Moved Permanently 202 B URL HTTP/1.1 www.orizamarquitetura.com.br/
IP 186.202.153.65:0
ASN #27715 Locaweb Servicos de Internet SA
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 268b4750cf136d75894ab9540626d818
34c68f474d5dc1c6ff72e9c5422008d6b2ea7497
a29336bc7b886952c8817f625c21acf6acc5da1db35336c4593a6e8931592aeb
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: www.orizamarquitetura.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Thu, 22 Sep 2022 17:47:07 GMT
Server: Apache
Location: https://www.orizamarquitetura.com.br/
Cache-Control: max-age=3600
Expires: Thu, 22 Sep 2022 18:47:07 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 202
Connection: close
Content-Type: text/html; charset=iso-8859-1
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
143.204.55.27200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 143.204.55.27:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Date: Thu, 22 Sep 2022 17:03:22 GMT
Cache-Control: max-age=3600, max-age=3600
Expires: Thu, 22 Sep 2022 17:10:14 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 bb1da7862c4968b28920b91b324095c0.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: GR7Wa8tz8FZ-0_SZDZrygWR0lzieYEumtuPZPDlmRhpXBUMMEJHW6g==
Age: 2625
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 86624f45fb3b7126dbe002f69c94dd86
30bcf274db5037122f989fb25dbf1e72c9ec417b
2cc9600578cf057dc499835773fb495caa60ac154c4945f0fc1f2b31d43f5502
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5896
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 22 Sep 2022 17:47:07 GMT
Last-Modified: Thu, 22 Sep 2022 16:08:51 GMT
Server: ECS (ska/F6FD)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
52.39.57.61101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.39.57.61:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 8OthhvVrwgl2ulpNAKQYcg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 85O+sWAAyvspNNkAVyQkFXlkXrc=
ocsp2.globalsign.com/gsalphasha2g2
104.18.21.226200 OK 1.4 kB URL HTTP/1.1 ocsp2.globalsign.com/gsalphasha2g2
IP 104.18.21.226:0
Hash cb23b39ff9eb0f83d839c3a85a747d38
5713ec12f585c52ff2bc6829123f418acff34cc3
f177b000e58d4bac92c1c0391cb7552ddb09161d19b057165c0c0f5a3fe94c6f
POST /gsalphasha2g2 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 22 Sep 2022 17:47:08 GMT
Content-Type: application/ocsp-response
Content-Length: 1423
Connection: keep-alive
Expires: Mon, 26 Sep 2022 17:47:07 GMT
ETag: "5713ec12f585c52ff2bc6829123f418acff34cc3"
Last-Modified: Thu, 22 Sep 2022 17:47:08 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: MISS
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74ecdd2e9a170b51-OSL
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 8ebb267e443b81854ef9a01b3eb6489d
b932e9e5679da5a9160da5429458041765509b52
4ac5aa5b4fb4a85282b825c5c0ed7b1aaf2b39ffe77d69dec5123a84709f3fe2
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4AC5AA5B4FB4A85282B825C5C0ED7B1AAF2B39FFE77D69DEC5123A84709F3FE2"
Last-Modified: Tue, 20 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15994
Expires: Thu, 22 Sep 2022 22:13:42 GMT
Date: Thu, 22 Sep 2022 17:47:08 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 8ebb267e443b81854ef9a01b3eb6489d
b932e9e5679da5a9160da5429458041765509b52
4ac5aa5b4fb4a85282b825c5c0ed7b1aaf2b39ffe77d69dec5123a84709f3fe2
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4AC5AA5B4FB4A85282B825C5C0ED7B1AAF2B39FFE77D69DEC5123A84709F3FE2"
Last-Modified: Tue, 20 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15994
Expires: Thu, 22 Sep 2022 22:13:42 GMT
Date: Thu, 22 Sep 2022 17:47:08 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 8ebb267e443b81854ef9a01b3eb6489d
b932e9e5679da5a9160da5429458041765509b52
4ac5aa5b4fb4a85282b825c5c0ed7b1aaf2b39ffe77d69dec5123a84709f3fe2
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4AC5AA5B4FB4A85282B825C5C0ED7B1AAF2B39FFE77D69DEC5123A84709F3FE2"
Last-Modified: Tue, 20 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15994
Expires: Thu, 22 Sep 2022 22:13:42 GMT
Date: Thu, 22 Sep 2022 17:47:08 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 8ebb267e443b81854ef9a01b3eb6489d
b932e9e5679da5a9160da5429458041765509b52
4ac5aa5b4fb4a85282b825c5c0ed7b1aaf2b39ffe77d69dec5123a84709f3fe2
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4AC5AA5B4FB4A85282B825C5C0ED7B1AAF2B39FFE77D69DEC5123A84709F3FE2"
Last-Modified: Tue, 20 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15994
Expires: Thu, 22 Sep 2022 22:13:42 GMT
Date: Thu, 22 Sep 2022 17:47:08 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F67bb0692-30b9-4b69-a748-f7a4474a72e0.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F67bb0692-30b9-4b69-a748-f7a4474a72e0.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 9becda6e892a190dbbc63216ae697506
ba3369e1827d8f01ca10acb8648195847dd02ffd
d71dd28e0ff260326ba0c30748fa11160f4544c2a264d3a3dc361af0de9fd283
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F67bb0692-30b9-4b69-a748-f7a4474a72e0.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11286
x-amzn-requestid: 7263b60d-fffe-4c0b-8de5-59dc9ac92a47
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y1GwZHOaIAMFSQQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632b84cf-62e160b156b587cc21c7fda5;Sampled=0
x-amzn-remapped-date: Wed, 21 Sep 2022 21:40:31 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: QxgrVMX7xwI6qE3T3-LRS3JWoJauPyvCSb9TacW9-ktw-BIq5PSF-g==
via: 1.1 00f0a41f749793b9dd653153037c957e.cloudfront.net (CloudFront), 1.1 ee330666adf9f04c8c30094f8ddcd004.cloudfront.net (CloudFront), 1.1 google
date: Wed, 21 Sep 2022 21:48:26 GMT
etag: "ba3369e1827d8f01ca10acb8648195847dd02ffd"
content-type: image/jpeg
age: 71922
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc2f739db-1c27-4929-8aff-997c0f66b2ed.jpeg
34.120.237.76200 OK 5.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc2f739db-1c27-4929-8aff-997c0f66b2ed.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash a5edcd9aee78a6cacc9241b47cbce598
f95b843029e84dbb188427a8c2ff8c9f32740465
6a56c3d0eb1d641e565d3d7d31b42be03bdad30beb20b994ffc9a6f2aaceee1e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc2f739db-1c27-4929-8aff-997c0f66b2ed.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5650
x-amzn-requestid: 6badb939-afe6-4432-a0ad-3a2b7f85a7e0
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y1G-rFbuIAMFTeA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632b852a-3e9ac3331503b41d5e734a01;Sampled=0
x-amzn-remapped-date: Wed, 21 Sep 2022 21:42:02 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: PeFdtN-ow0NE39XAV9pCHX9VSno5L9z56rg-T6Bd1fks7f1ESDDzWA==
via: 1.1 f13aef0c4b52f6f681401f232d03eb68.cloudfront.net (CloudFront), 1.1 d01e7742f82df0bbc1fb681d709ed69c.cloudfront.net (CloudFront), 1.1 google
date: Wed, 21 Sep 2022 21:48:27 GMT
etag: "f95b843029e84dbb188427a8c2ff8c9f32740465"
content-type: image/jpeg
age: 71921
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0788498f-41db-4d62-b749-e01caddb7f8d.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0788498f-41db-4d62-b749-e01caddb7f8d.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash af5773255351157d72c28a670a355c60
c803e5866edbe6c9baec14e93677f610bdf09bff
3229b4aa1c698647ad96d114174782549ad240f1b2c4ba8c268165a16afc84f0
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0788498f-41db-4d62-b749-e01caddb7f8d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10754
x-amzn-requestid: 2d03531d-6055-477f-9cb6-9ea9fa27eeb9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y1F0vHJ4IAMF42Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632b8351-692620e80d5b2efe1d0e3a82;Sampled=0
x-amzn-remapped-date: Wed, 21 Sep 2022 21:34:09 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: eYUP9NfAkmU4A-mZvysejq1228Qfb8vbfdXOaHQvr6mjXhnVoWdqJw==
via: 1.1 4f87745990545c1ac0195c157e1668f8.cloudfront.net (CloudFront), 1.1 0d4ebcaa87ba94709def0eaac9371e5a.cloudfront.net (CloudFront), 1.1 google
date: Wed, 21 Sep 2022 21:34:09 GMT
etag: "c803e5866edbe6c9baec14e93677f610bdf09bff"
content-type: image/jpeg
age: 72779
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffd654e30-611f-4c64-b1ad-43ca9fdedc0e.jpeg
34.120.237.76200 OK 14 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffd654e30-611f-4c64-b1ad-43ca9fdedc0e.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash c0201d377c57a684452c0d26372e674d
3829f81048cc63b5f0d1e82dfbe3b8e31646e733
efa055dc93267be2dddd94b334c0655c2e1f1682467fd738e013a778aea175b9
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffd654e30-611f-4c64-b1ad-43ca9fdedc0e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 14397
x-amzn-requestid: c5a03ce8-f695-4ad3-8c42-c3bfd47d6279
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Yv1wLGqKIAMF-Og=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6329699a-2b130d8b1a4b1b9131db8984;Sampled=0
x-amzn-remapped-date: Tue, 20 Sep 2022 07:19:54 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: u2ObvTaTM2JREJRnWVxEdqPXYFWTdrtlqLLbHugcsNbENjZq63rKVw==
via: 1.1 5ab5dc09da67e3ea794ec8a82992cc88.cloudfront.net (CloudFront), 1.1 b13f158bdf9805ca47e07c0c35870c12.cloudfront.net (CloudFront), 1.1 google
date: Thu, 22 Sep 2022 15:24:06 GMT
age: 8582
etag: "3829f81048cc63b5f0d1e82dfbe3b8e31646e733"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Faf89a4b3-f586-4870-ab26-efb054f637fd.jpeg
34.120.237.76200 OK 8.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Faf89a4b3-f586-4870-ab26-efb054f637fd.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 91c56f0b9810bfdd84e10a626b89e389
15d83e44d568938b6c9c87201e898cedb3edec0a
942de9764e1c408f7512759774aab0479db201e6fae15ccc39e653adae4cb86f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Faf89a4b3-f586-4870-ab26-efb054f637fd.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8678
x-amzn-requestid: c671a9ab-c5d0-4743-b13e-cc9a47e3d2fe
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y1F0vEThIAMFSwQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632b8351-17ed13811d3833ea00a34423;Sampled=0
x-amzn-remapped-date: Wed, 21 Sep 2022 21:34:09 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: 2Oem-Kw-aCUa2rA9B9-7CDYcZ-G968tFPnsrL5wJ9Dia43T5u6RDtg==
via: 1.1 95b0ac620fa3a80ee590ecf1cda1c698.cloudfront.net (CloudFront), 1.1 ebe4011a81a36e2bf678f69ce1711330.cloudfront.net (CloudFront), 1.1 google
date: Wed, 21 Sep 2022 21:34:09 GMT
etag: "15d83e44d568938b6c9c87201e898cedb3edec0a"
content-type: image/jpeg
age: 72779
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F06a0b4c5-4223-42cf-b012-2e09b250c8c1.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F06a0b4c5-4223-42cf-b012-2e09b250c8c1.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash c2db94039cb675cb250519fe57b2b3c9
37222a70df5d9a69073b4b32ebc3a5da60006001
444f4359ac25747e7c5d7e09202f195d407bc94a4933ac7ebbbaf9839bf59aff
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F06a0b4c5-4223-42cf-b012-2e09b250c8c1.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12048
x-amzn-requestid: bc551b18-fddb-4502-8c11-b8de83d75def
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YwlKzF9FoAMFp_w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6329b578-7e030b2e0af1d1c309d2dde6;Sampled=0
x-amzn-remapped-date: Tue, 20 Sep 2022 12:43:36 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: dRyKwUtxiHGz_bqMMSlRKS1cDNhKm_g1ocpZLmE15k8owH789jueWA==
via: 1.1 4f87745990545c1ac0195c157e1668f8.cloudfront.net (CloudFront), 1.1 fda3b2797d2719576f6b916583a28e52.cloudfront.net (CloudFront), 1.1 google
date: Wed, 21 Sep 2022 22:19:10 GMT
age: 70078
etag: "37222a70df5d9a69073b4b32ebc3a5da60006001"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
www.orizamarquitetura.com.br/
186.202.153.65200 OK 6.1 kB URL HTTP/1.1 www.orizamarquitetura.com.br/
IP 186.202.153.65:0
ASN #27715 Locaweb Servicos de Internet SA
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (446)
Hash b2004e8cdd513de255e800483d8ef168
ba1a063f550808a72fa2d66c20b2c92636b5992e
50d3c4fdee9aa4e167123e2045c18fabc0f2717e152e4ba894f8c4f49350f5f2
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: www.orizamarquitetura.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/1.1 200 OK
Date: Thu, 22 Sep 2022 17:47:08 GMT
Server: Apache
Cache-Control: max-age=3600
Expires: Thu, 22 Sep 2022 18:47:08 GMT
Vary: User-Agent,Accept-Encoding
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET,POST,OPTIONS,DELETE,PUT
X-UA-Compatible: IE=Edge,chrome=1
Connection: keep-alive, close
Content-Encoding: gzip
Content-Length: 6070
Content-Type: text/html; charset=UTF-8
gitcdn.xyz/repo/thesmart/jquery-scrollspy/0.1.3/scrollspy.js
104.21.235.38301 Moved Permanently 136 B URL HTTP/2 gitcdn.xyz/repo/thesmart/jquery-scrollspy/0.1.3/scrollspy.js
IP 104.21.235.38:0
File type ASCII text, with no line terminators
Hash 0263269b4ab698a8d1b45ee1e40aefe9
e320bcf35d3f506d2d477c7a07e84d52fdfc9d1d
cb6701f61d9b039e1f155bc8e73ba7643e0a1408f818f2cc7f201348c00fa84b
GET /repo/thesmart/jquery-scrollspy/0.1.3/scrollspy.js HTTP/1.1
Host: gitcdn.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.orizamarquitetura.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 301 Moved Permanently
date: Thu, 22 Sep 2022 17:47:10 GMT
content-type: text/plain; charset=utf-8
content-length: 136
location: https://gitcdn.xyz/cdn/thesmart/jquery-scrollspy/0ae1076076b77707ecfc783fd8e460933a461b97/scrollspy.js
x-powered-by: Express
access-control-allow-origin: *
vary: Accept, Accept-Encoding
via: 1.1 vegur
cf-cache-status: HIT
age: 4364
expires: Thu, 22 Sep 2022 19:47:10 GMT
cache-control: public, max-age=7200
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=fZ87EmKaOM4KywyPH98mbHIBpo36cwoKxNmdOhDA9u7wnx%2FNz7vmAoyIUH4BtbM2gjoXVYyXezLFIvkPbmYj%2B7k3qwpB7KjB%2FfGBmXLe7XtzCqf%2BIAaUEfqz8KYf"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 74ecdd408dd5f3ef-LHR
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 04fcf7ddca845d2b087ec43ab5ff0d59
39060a9af77ba92e5db529ba7c79013d205c9423
1ae0d60b572f2075bddfe8ae2034ddd093150d0d18c72d967b3bb8c4abffb23e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 22 Sep 2022 17:47:10 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 5f68499f2ba3b2c5aa7e979ee9b4d3a8
67a456fe80bd69aa2fbd0331ba343d1789509d0f
394e18527ce3ad7de2274de2e5e6a7f3fb390e7d6c4f7342ab485b7794e169e7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 22 Sep 2022 17:47:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash c7b623b7bcd37d436886346d495f9577
eb5688f0df28fa33b202e78d916e35387178636d
74037773d23c4426c3717e239e9dc228904f9cc8b8f084c655e26dcd9e345a96
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 22 Sep 2022 17:47:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.googletagmanager.com/gtm.js?id=GTM-TGPB8QB
142.250.74.72200 OK 46 kB URL HTTP/2 www.googletagmanager.com/gtm.js?id=GTM-TGPB8QB
IP 142.250.74.72:0
File type Unicode text, UTF-8 text, with very long lines (6251)
Hash a03319ee5b92cfffe0d6c2de899250cf
167b1d463214df7acf499cd76d15a6d20c29274d
c765caa9f3647212b5a8801076ab5d935f1eb7f2dab98680cc6925bcf2069c4b
GET /gtm.js?id=GTM-TGPB8QB HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.orizamarquitetura.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Thu, 22 Sep 2022 17:47:11 GMT
expires: Thu, 22 Sep 2022 17:47:11 GMT
cache-control: private, max-age=900
last-modified: Thu, 22 Sep 2022 16:26:15 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 45891
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash b9893dbb93b5cc3cb8637b496ecd3c1c
007b31caa727ce627f6ba81a3f43326a1538181e
b82608484e9e9dbf009de73986da468fff9833e5d040016b3214b8774ba9f500
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 22 Sep 2022 17:47:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.com/maps/embed?pb=!1m14!1m8!1m3!1d15286.616931521927!2d-49.2524068!3d-16.6941773!3m2!1i1024!2i768!4f13.1!3m3!1m2!1s0x0%3A0xdd944f61ce7f2ed5!2sOrizam%20Arquitetura%20%2B%20Design!5e0!3m2!1spt-BR!2sbr!4v1578396920093!5m2!1spt-BR!2sbr
142.250.74.164200 OK 1.7 kB URL HTTP/2 www.google.com/maps/embed?pb=!1m14!1m8!1m3!1d15286.616931521927!2d-49.2524068!3d-16.6941773!3m2!1i1024!2i768!4f13.1!3m3!1m2!1s0x0%3A0xdd944f61ce7f2ed5!2sOrizam%20Arquitetura%20%2B%20Design!5e0!3m2!1spt-BR!2sbr!4v1578396920093!5m2!1spt-BR!2sbr
IP 142.250.74.164:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (3399)
Hash 3108d0868a3065261c5dbfacd15c593a
ee9e186eb9f637ebdb6950d0a56b87529c874d09
e8c2b37975813faca2e7ef443da66c24c1cdf54f64f52722eb4422d748989858
GET /maps/embed?pb=!1m14!1m8!1m3!1d15286.616931521927!2d-49.2524068!3d-16.6941773!3m2!1i1024!2i768!4f13.1!3m3!1m2!1s0x0%3A0xdd944f61ce7f2ed5!2sOrizam%20Arquitetura%20%2B%20Design!5e0!3m2!1spt-BR!2sbr!4v1578396920093!5m2!1spt-BR!2sbr HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.orizamarquitetura.com.br/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
date: Thu, 22 Sep 2022 17:47:11 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
vary: Accept-Language
content-security-policy: object-src 'none';base-uri 'self';script-src 'nonce-atHdur9EOSf_xINkP6-2sQ' 'strict-dynamic' 'report-sample' 'unsafe-eval' 'unsafe-inline' https: http:;report-uri https://csp.withgoogle.com/csp/geo-maps-api/1
content-encoding: gzip
server: mafe
content-length: 1691
x-xss-protection: 0
server-timing: gfet4t7; dur=141
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash c7b623b7bcd37d436886346d495f9577
eb5688f0df28fa33b202e78d916e35387178636d
74037773d23c4426c3717e239e9dc228904f9cc8b8f084c655e26dcd9e345a96
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 22 Sep 2022 17:47:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.orizamarquitetura.com.br/default/plugins/bootstrap-4.1.3/css/bootstrap.min.css
186.202.153.65200 OK 21 kB URL HTTP/1.1 www.orizamarquitetura.com.br/default/plugins/bootstrap-4.1.3/css/bootstrap.min.css
IP 186.202.153.65:0
ASN #27715 Locaweb Servicos de Internet SA
File type ASCII text, with very long lines (65536), with no line terminators
Hash c277a69d727313a7c832beaa8171348a
0b4fbd57bf61e3c5974ac8bbce0c37aaad94e92e
e8b77012b73bf1c44c51da467c2a8ff4bd4c4e5ae27bccc8d07a49e5cc0717ce
GET /default/plugins/bootstrap-4.1.3/css/bootstrap.min.css HTTP/1.1
Host: www.orizamarquitetura.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.orizamarquitetura.com.br/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 22 Sep 2022 17:47:10 GMT
Server: Apache
Last-Modified: Thu, 07 May 2020 12:14:14 GMT
Accept-Ranges: bytes
Cache-Control: max-age=290304000, /public/
Expires: Fri, 22 Sep 2023 17:47:10 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET,POST,OPTIONS,DELETE,PUT
Connection: keep-alive, close
Content-Length: 20865
Content-Type: text/css
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash f85caa32cfc5c68ae9d37dac5075d086
d98cb95e042dfdf7fcfe0bef3d83624a970ee7ab
c1d5882e2ccbee35dfb5d42d78ef6fd843882cbbbe5653cd686ff768e697ac84
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 22 Sep 2022 17:47:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.orizamarquitetura.com.br/default/plugins/lightbox2/dist/css/lightbox.min.css
186.202.153.65200 OK 905 B URL HTTP/1.1 www.orizamarquitetura.com.br/default/plugins/lightbox2/dist/css/lightbox.min.css
IP 186.202.153.65:0
ASN #27715 Locaweb Servicos de Internet SA
File type ASCII text, with very long lines (2608), with no line terminators
Hash c2e6b77e34025f5b39a87f199df8f7ab
863797e06ab45b878f83688db9f28df00cae9647
5b61454277b24d02b1a69fe7a77a8e7f43d90e7f2fc1fc1586217098fd256eec
GET /default/plugins/lightbox2/dist/css/lightbox.min.css HTTP/1.1
Host: www.orizamarquitetura.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.orizamarquitetura.com.br/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 22 Sep 2022 17:47:11 GMT
Server: Apache
Last-Modified: Thu, 07 May 2020 12:14:24 GMT
Accept-Ranges: bytes
Cache-Control: max-age=290304000, /public/
Expires: Fri, 22 Sep 2023 17:47:11 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET,POST,OPTIONS,DELETE,PUT
Connection: keep-alive, close
Content-Length: 905
Content-Type: text/css
www.orizamarquitetura.com.br/default/plugins/lity-2.3.1/dist/lity.min.css
186.202.153.65200 OK 1.0 kB URL HTTP/1.1 www.orizamarquitetura.com.br/default/plugins/lity-2.3.1/dist/lity.min.css
IP 186.202.153.65:0
ASN #27715 Locaweb Servicos de Internet SA
File type ASCII text, with very long lines (3324)
Hash 68701206290364f6fa17cf3091c0b0a5
2f0f35c59b9b7cfd42d0cc6295cca0b514d1e98c
5f72c1c862a81b47765b2c6ad27e9172413c626e4aa459a3b51037b00a255e20
GET /default/plugins/lity-2.3.1/dist/lity.min.css HTTP/1.1
Host: www.orizamarquitetura.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.orizamarquitetura.com.br/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 22 Sep 2022 17:47:11 GMT
Server: Apache
Last-Modified: Thu, 07 May 2020 12:14:25 GMT
Accept-Ranges: bytes
Cache-Control: max-age=290304000, /public/
Expires: Fri, 22 Sep 2023 17:47:11 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET,POST,OPTIONS,DELETE,PUT
Connection: keep-alive, close
Content-Length: 1016
Content-Type: text/css
www.orizamarquitetura.com.br/default/plugins/owlcarousel2-2.3.4/dist/assets/owl.carousel.min.css
186.202.153.65200 OK 948 B URL HTTP/1.1 www.orizamarquitetura.com.br/default/plugins/owlcarousel2-2.3.4/dist/assets/owl.carousel.min.css
IP 186.202.153.65:0
ASN #27715 Locaweb Servicos de Internet SA
File type ASCII text, with very long lines (3184), with no line terminators
Hash b5f939e31d08108369928bb634a26b09
0a47413869ff1923c7ee95897477afbdd7cce4d2
da10e1cd1f1056234f1a2a5d3ccbea8a7b6e2b75c22eef1dda1d0026eb84fcb9
GET /default/plugins/owlcarousel2-2.3.4/dist/assets/owl.carousel.min.css HTTP/1.1
Host: www.orizamarquitetura.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.orizamarquitetura.com.br/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 22 Sep 2022 17:47:11 GMT
Server: Apache
Last-Modified: Thu, 07 May 2020 12:14:25 GMT
Accept-Ranges: bytes
Cache-Control: max-age=290304000, /public/
Expires: Fri, 22 Sep 2023 17:47:11 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET,POST,OPTIONS,DELETE,PUT
Connection: keep-alive, close
Content-Length: 948
Content-Type: text/css
www.orizamarquitetura.com.br/default/plugins/fontawesome-free-5.9.0/css/all.min.css
186.202.153.65200 OK 12 kB URL HTTP/1.1 www.orizamarquitetura.com.br/default/plugins/fontawesome-free-5.9.0/css/all.min.css
IP 186.202.153.65:0
ASN #27715 Locaweb Servicos de Internet SA
File type ASCII text, with very long lines (55782)
Hash a03ba9fd6149555cde8b262c1dd7297f
d09f78f94ea2da2e14398d5301ea3b91d2b8c454
da37b0c7806b880801629294a45576ec57e77849a395c933721db91174247cbe
GET /default/plugins/fontawesome-free-5.9.0/css/all.min.css HTTP/1.1
Host: www.orizamarquitetura.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.orizamarquitetura.com.br/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 22 Sep 2022 17:47:11 GMT
Server: Apache
Last-Modified: Thu, 07 May 2020 12:14:19 GMT
Accept-Ranges: bytes
Cache-Control: max-age=290304000, /public/
Expires: Fri, 22 Sep 2023 17:47:11 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET,POST,OPTIONS,DELETE,PUT
Connection: keep-alive, close
Content-Length: 12204
Content-Type: text/css
www.orizamarquitetura.com.br/default/plugins/sweetalert2/dist/sweetalert2.min.css
186.202.153.65200 OK 4.2 kB URL HTTP/1.1 www.orizamarquitetura.com.br/default/plugins/sweetalert2/dist/sweetalert2.min.css
IP 186.202.153.65:0
ASN #27715 Locaweb Servicos de Internet SA
File type ASCII text, with very long lines (28202), with no line terminators
Hash cf3d10cf1e187da64fc96f1091a36d66
34c3c1d1e744516992d0f58fd3b9d1dcd0a98064
50626d32fce18845db44c16025f4e2973cc35e210f9afa5efec607a4f94bf9cd
GET /default/plugins/sweetalert2/dist/sweetalert2.min.css HTTP/1.1
Host: www.orizamarquitetura.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.orizamarquitetura.com.br/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 22 Sep 2022 17:47:11 GMT
Server: Apache
Last-Modified: Thu, 07 May 2020 12:14:26 GMT
Accept-Ranges: bytes
Cache-Control: max-age=290304000, /public/
Expires: Fri, 22 Sep 2023 17:47:11 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET,POST,OPTIONS,DELETE,PUT
Connection: keep-alive, close
Content-Length: 4185
Content-Type: text/css
www.orizamarquitetura.com.br/default/plugins/popper.js/dist/umd/popper.min.js
186.202.153.65200 OK 7.5 kB URL HTTP/1.1 www.orizamarquitetura.com.br/default/plugins/popper.js/dist/umd/popper.min.js
IP 186.202.153.65:0
ASN #27715 Locaweb Servicos de Internet SA
File type ASCII text, with very long lines (20831)
Hash 64b549556021b56c8ff7b356cb3686ee
a0690a45253d7c1ebd66c6aba4ed4339f5d54519
b354d350ffe24607b98aec909a4c7639af3983e75cd4cd847e0c119139995524
Analyzer Verdict Alert fortinet Phishing
GET /default/plugins/popper.js/dist/umd/popper.min.js HTTP/1.1
Host: www.orizamarquitetura.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.orizamarquitetura.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 22 Sep 2022 17:47:11 GMT
Server: Apache
Last-Modified: Thu, 07 May 2020 12:14:26 GMT
Accept-Ranges: bytes
Cache-Control: max-age=290304000, /public/
Expires: Fri, 22 Sep 2023 17:47:11 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET,POST,OPTIONS,DELETE,PUT
Connection: keep-alive, close
Content-Length: 7457
Content-Type: application/x-javascript
www.orizamarquitetura.com.br/default/plugins/animate.css
186.202.153.65200 OK 4.8 kB URL HTTP/1.1 www.orizamarquitetura.com.br/default/plugins/animate.css
IP 186.202.153.65:0
ASN #27715 Locaweb Servicos de Internet SA
Hash 9cb3f47b5183996fcc97397d21bba092
f87622595ecf30ffd34d9d34cd45c1833520f602
4ad9f4b1ad35dd6a9b4d3dba8d5119262df046afeda554939df232a72720f12b
GET /default/plugins/animate.css HTTP/1.1
Host: www.orizamarquitetura.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.orizamarquitetura.com.br/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 22 Sep 2022 17:47:11 GMT
Server: Apache
Last-Modified: Thu, 07 May 2020 12:14:14 GMT
Accept-Ranges: bytes
Cache-Control: max-age=290304000, /public/
Expires: Fri, 22 Sep 2023 17:47:11 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET,POST,OPTIONS,DELETE,PUT
Connection: keep-alive, close
Content-Length: 4767
Content-Type: text/css
www.orizamarquitetura.com.br/default/plugins/bootstrap-4.1.3/js/bootstrap.min.js
186.202.153.65200 OK 14 kB URL HTTP/1.1 www.orizamarquitetura.com.br/default/plugins/bootstrap-4.1.3/js/bootstrap.min.js
IP 186.202.153.65:0
ASN #27715 Locaweb Servicos de Internet SA
File type ASCII text, with very long lines (50758), with no line terminators
Hash eab591e362b525008bd3ab7200766646
081b064a41563a97c1cd16b4cca7aaa37b4bada0
a568ac4ebbfe7f69f47225d2760529d0ddfa35237560d9b070a297423c9d7082
Analyzer Verdict Alert fortinet Phishing
GET /default/plugins/bootstrap-4.1.3/js/bootstrap.min.js HTTP/1.1
Host: www.orizamarquitetura.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.orizamarquitetura.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 22 Sep 2022 17:47:11 GMT
Server: Apache
Last-Modified: Thu, 07 May 2020 12:14:14 GMT
Accept-Ranges: bytes
Cache-Control: max-age=290304000, /public/
Expires: Fri, 22 Sep 2023 17:47:11 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET,POST,OPTIONS,DELETE,PUT
Connection: keep-alive, close
Content-Length: 13927
Content-Type: application/x-javascript
www.orizamarquitetura.com.br/default/css/custom.css
186.202.153.65200 OK 14 kB URL HTTP/1.1 www.orizamarquitetura.com.br/default/css/custom.css
IP 186.202.153.65:0
ASN #27715 Locaweb Servicos de Internet SA
File type Unicode text, UTF-8 text, with very long lines (436)
Hash 20880b0bf5e25b2c4196dab8d12ad481
ec0043173761fd8682f41b1d822d1035227a3f7e
d040c68cae5a206250b948fa52bedc534a9096d757a95ab192f0f465bece2055
GET /default/css/custom.css HTTP/1.1
Host: www.orizamarquitetura.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.orizamarquitetura.com.br/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 22 Sep 2022 17:47:11 GMT
Server: Apache
Last-Modified: Thu, 07 May 2020 12:14:04 GMT
Accept-Ranges: bytes
Cache-Control: max-age=290304000, /public/
Expires: Fri, 22 Sep 2023 17:47:11 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET,POST,OPTIONS,DELETE,PUT
Connection: keep-alive, close
Content-Length: 14131
Content-Type: text/css
maps.googleapis.com/maps/api/js?client=google-maps-embed&paint_origin=&libraries=geometry,search&v=3.exp&language=pt_BR®ion=br&callback=onApiLoad
142.250.74.170200 OK 57 kB URL HTTP/2 maps.googleapis.com/maps/api/js?client=google-maps-embed&paint_origin=&libraries=geometry,search&v=3.exp&language=pt_BR®ion=br&callback=onApiLoad
IP 142.250.74.170:0
File type ASCII text, with very long lines (2511)
Hash db950a94973083c2edbccf4ee7f16825
732de55d7137990878bf9ebd9a7b916059b8a99a
71b5af0c966d25c83d46c030cd88d7b9a67ffea362562c1e3e36164b70c964e1
GET /maps/api/js?client=google-maps-embed&paint_origin=&libraries=geometry,search&v=3.exp&language=pt_BR®ion=br&callback=onApiLoad HTTP/1.1
Host: maps.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
content-encoding: gzip
server: mafe
content-length: 57151
x-xss-protection: 0
x-frame-options: SAMEORIGIN
server-timing: gfet4t7; dur=11
date: Thu, 22 Sep 2022 17:29:28 GMT
expires: Thu, 22 Sep 2022 17:59:28 GMT
cache-control: public, max-age=1800
content-type: text/javascript; charset=UTF-8
age: 1063
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.orizamarquitetura.com.br/default/plugins/jquery-3.3.1.min.js
186.202.153.65200 OK 30 kB URL HTTP/1.1 www.orizamarquitetura.com.br/default/plugins/jquery-3.3.1.min.js
IP 186.202.153.65:0
ASN #27715 Locaweb Servicos de Internet SA
File type ASCII text, with very long lines (65536), with no line terminators
Hash 863a1ad55c010457822334c94889c6db
393769fda37eb9f5394bcbc50180cf11f1c6537f
5ea43fe3744481e74f9b5bb243bbc718c66cd15264590473016be8c73035deae
Analyzer Verdict Alert fortinet Phishing
GET /default/plugins/jquery-3.3.1.min.js HTTP/1.1
Host: www.orizamarquitetura.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.orizamarquitetura.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 22 Sep 2022 17:47:11 GMT
Server: Apache
Last-Modified: Thu, 07 May 2020 12:14:23 GMT
Accept-Ranges: bytes
Cache-Control: max-age=290304000, /public/
Expires: Fri, 22 Sep 2023 17:47:11 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET,POST,OPTIONS,DELETE,PUT
Connection: keep-alive, close
Content-Length: 30248
Content-Type: application/x-javascript
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 4797d6fd00b4884a9a2bd74ed01e2d1d
8d5e48550c7eb8c2f81ab8c126d452257e4d98ed
4c6fb508b26b7fc8be67672a70d2d0b73ae0cee68c0969350751823c49bf4a9e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 22 Sep 2022 17:47:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
maps.gstatic.com/maps-api-v3/embed/js/50/6/intl/pt_br/init_embed.js
142.250.74.163200 OK 71 kB URL HTTP/2 maps.gstatic.com/maps-api-v3/embed/js/50/6/intl/pt_br/init_embed.js
IP 142.250.74.163:0
File type ASCII text, with very long lines (2669)
Hash 7c5e11d7d87fc66553b628513ac53fe1
83188dadab7a6164c83e82f515d377a95e2bcd1d
5073f87d6aa952882e6ad3082cc995849e60f29dfac930d076b5d0f34e127866
GET /maps-api-v3/embed/js/50/6/intl/pt_br/init_embed.js HTTP/1.1
Host: maps.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding, Origin
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/maps-api-js
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="maps-api-js"
report-to: {"group":"maps-api-js","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/maps-api-js"}]}
content-length: 70760
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 21 Sep 2022 20:13:49 GMT
expires: Thu, 21 Sep 2023 20:13:49 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 19 Sep 2022 19:19:29 GMT
content-type: text/javascript
age: 77603
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 4797d6fd00b4884a9a2bd74ed01e2d1d
8d5e48550c7eb8c2f81ab8c126d452257e4d98ed
4c6fb508b26b7fc8be67672a70d2d0b73ae0cee68c0969350751823c49bf4a9e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 22 Sep 2022 17:47:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.orizamarquitetura.com.br/default/plugins/owlcarousel2-2.3.4/dist/owl.carousel.min.js
186.202.153.65200 OK 11 kB URL HTTP/1.1 www.orizamarquitetura.com.br/default/plugins/owlcarousel2-2.3.4/dist/owl.carousel.min.js
IP 186.202.153.65:0
ASN #27715 Locaweb Servicos de Internet SA
File type ASCII text, with very long lines (44174), with no line terminators
Hash 4e003efcc8e3c75fae477a859916dfad
2aa226c9821111789b660754d1e8244d1b014048
8c0ee317eb1c77aa0fa8e73c8e93e9d5d4aa7fa068badfe161c40790737ecb75
Analyzer Verdict Alert fortinet Phishing
GET /default/plugins/owlcarousel2-2.3.4/dist/owl.carousel.min.js HTTP/1.1
Host: www.orizamarquitetura.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.orizamarquitetura.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 22 Sep 2022 17:47:12 GMT
Server: Apache
Last-Modified: Thu, 07 May 2020 12:14:25 GMT
Accept-Ranges: bytes
Cache-Control: max-age=290304000, /public/
Expires: Fri, 22 Sep 2023 17:47:12 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET,POST,OPTIONS,DELETE,PUT
Connection: keep-alive, close
Content-Length: 11288
Content-Type: application/x-javascript
www.orizamarquitetura.com.br/default/plugins/lity-2.3.1/dist/lity.min.js
186.202.153.65200 OK 2.9 kB URL HTTP/1.1 www.orizamarquitetura.com.br/default/plugins/lity-2.3.1/dist/lity.min.js
IP 186.202.153.65:0
ASN #27715 Locaweb Servicos de Internet SA
File type ASCII text, with very long lines (6485)
Hash d74b132d612e4d48644b3d2e94126668
0f14ca438d1caac87cfdc815b8ac941c740e24dd
7228b214ba7d6c784c6b0b6486ed5afc6c393f48ae1eb47bcb57463613dd6622
Analyzer Verdict Alert fortinet Phishing
GET /default/plugins/lity-2.3.1/dist/lity.min.js HTTP/1.1
Host: www.orizamarquitetura.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.orizamarquitetura.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 22 Sep 2022 17:47:12 GMT
Server: Apache
Last-Modified: Thu, 07 May 2020 12:14:25 GMT
Accept-Ranges: bytes
Cache-Control: max-age=290304000, /public/
Expires: Fri, 22 Sep 2023 17:47:12 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET,POST,OPTIONS,DELETE,PUT
Connection: keep-alive, close
Content-Length: 2895
Content-Type: application/x-javascript
www.orizamarquitetura.com.br/default/plugins/jquery.mask/jquery.mask.min.js
186.202.153.65200 OK 2.5 kB URL HTTP/1.1 www.orizamarquitetura.com.br/default/plugins/jquery.mask/jquery.mask.min.js
IP 186.202.153.65:0
ASN #27715 Locaweb Servicos de Internet SA
File type ASCII text, with very long lines (5937), with no line terminators
Hash afcfc439d2e821e07cdb7a4d558af494
6ecc1f336f912c5e6bf880f2853728291fc8f96a
907c4effe71d701426c0e72d2bc1642821358bc72a86a31bd443dcd6e009ac60
Analyzer Verdict Alert fortinet Phishing
GET /default/plugins/jquery.mask/jquery.mask.min.js HTTP/1.1
Host: www.orizamarquitetura.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.orizamarquitetura.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 22 Sep 2022 17:47:12 GMT
Server: Apache
Last-Modified: Thu, 07 May 2020 12:14:24 GMT
Accept-Ranges: bytes
Cache-Control: max-age=290304000, /public/
Expires: Fri, 22 Sep 2023 17:47:12 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET,POST,OPTIONS,DELETE,PUT
Connection: keep-alive, close
Content-Length: 2498
Content-Type: application/x-javascript
www.orizamarquitetura.com.br/default/plugins/lightbox2/dist/js/lightbox.min.js
186.202.153.65200 OK 2.7 kB URL HTTP/1.1 www.orizamarquitetura.com.br/default/plugins/lightbox2/dist/js/lightbox.min.js
IP 186.202.153.65:0
ASN #27715 Locaweb Servicos de Internet SA
File type ASCII text, with very long lines (9118), with no line terminators
Hash 1e18ba316f21a89e22e5a74f2f52dbcc
f175a3b015287b1e0bf7587139c8efec6c6f7fdc
e45a7c0721a9e658e61208126c5af3a324fde2fe0e5d23e1aeb0ff545d574565
Analyzer Verdict Alert fortinet Phishing
GET /default/plugins/lightbox2/dist/js/lightbox.min.js HTTP/1.1
Host: www.orizamarquitetura.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.orizamarquitetura.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 22 Sep 2022 17:47:12 GMT
Server: Apache
Last-Modified: Thu, 07 May 2020 12:14:24 GMT
Accept-Ranges: bytes
Cache-Control: max-age=290304000, /public/
Expires: Fri, 22 Sep 2023 17:47:12 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET,POST,OPTIONS,DELETE,PUT
Connection: keep-alive, close
Content-Length: 2722
Content-Type: application/x-javascript
www.orizamarquitetura.com.br/default/plugins/jquery-validation/js/jquery.validate.min.js
186.202.153.65200 OK 6.8 kB URL HTTP/1.1 www.orizamarquitetura.com.br/default/plugins/jquery-validation/js/jquery.validate.min.js
IP 186.202.153.65:0
ASN #27715 Locaweb Servicos de Internet SA
File type Unicode text, UTF-8 text, with very long lines (21388)
Hash 3109cd1f343297a0ff07bcac03a43a7a
5f86622b8ad0a602ae9ecba8a46e7f2079e98d4e
49282040e1142c74c8ac6966bf6b90aeda06077dc9eec779ee896138ee473e47
Analyzer Verdict Alert fortinet Phishing
GET /default/plugins/jquery-validation/js/jquery.validate.min.js HTTP/1.1
Host: www.orizamarquitetura.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.orizamarquitetura.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 22 Sep 2022 17:47:12 GMT
Server: Apache
Last-Modified: Thu, 07 May 2020 12:14:24 GMT
Accept-Ranges: bytes
Cache-Control: max-age=290304000, /public/
Expires: Fri, 22 Sep 2023 17:47:12 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET,POST,OPTIONS,DELETE,PUT
Connection: keep-alive, close
Content-Length: 6756
Content-Type: application/x-javascript
www.orizamarquitetura.com.br/default/plugins/angular-validate/src/angular-validate.js
186.202.153.65200 OK 485 B URL HTTP/1.1 www.orizamarquitetura.com.br/default/plugins/angular-validate/src/angular-validate.js
IP 186.202.153.65:0
ASN #27715 Locaweb Servicos de Internet SA
Hash 996ec5ffb653ac0fbacbdc41f3747fec
052e80f40b692cc2106d5b0f4bc8977d9b75fa72
7d28d9dd672ea90404c3d8b1efec879a247fb0d9db16ca7bc43c3c5d319227a1
Analyzer Verdict Alert fortinet Phishing
GET /default/plugins/angular-validate/src/angular-validate.js HTTP/1.1
Host: www.orizamarquitetura.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.orizamarquitetura.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 22 Sep 2022 17:47:12 GMT
Server: Apache
Last-Modified: Thu, 07 May 2020 12:14:14 GMT
Accept-Ranges: bytes
Cache-Control: max-age=290304000, /public/
Expires: Fri, 22 Sep 2023 17:47:12 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET,POST,OPTIONS,DELETE,PUT
Connection: keep-alive, close
Content-Length: 485
Content-Type: application/x-javascript
www.orizamarquitetura.com.br/default/plugins/angular-1.5.3/angular-sanitize.min.js
186.202.153.65200 OK 2.9 kB URL HTTP/1.1 www.orizamarquitetura.com.br/default/plugins/angular-1.5.3/angular-sanitize.min.js
IP 186.202.153.65:0
ASN #27715 Locaweb Servicos de Internet SA
File type ASCII text, with very long lines (5683), with no line terminators
Hash 1cff2ea1ee527e4369c5543471bb68a7
748857403b71735005f79a76a7fe54f4d40c60ca
561ef3c36b102a95ae3e1c2dad9e7879c13c76d83fd9c86d846632235be25346
Analyzer Verdict Alert fortinet Phishing
GET /default/plugins/angular-1.5.3/angular-sanitize.min.js HTTP/1.1
Host: www.orizamarquitetura.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.orizamarquitetura.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 22 Sep 2022 17:47:12 GMT
Server: Apache
Last-Modified: Thu, 07 May 2020 12:14:05 GMT
Accept-Ranges: bytes
Cache-Control: max-age=290304000, /public/
Expires: Fri, 22 Sep 2023 17:47:12 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET,POST,OPTIONS,DELETE,PUT
Connection: keep-alive, close
Content-Length: 2885
Content-Type: application/x-javascript
www.orizamarquitetura.com.br/default/plugins/angular-1.5.3/angular-animate.min.js
186.202.153.65200 OK 9.0 kB URL HTTP/1.1 www.orizamarquitetura.com.br/default/plugins/angular-1.5.3/angular-animate.min.js
IP 186.202.153.65:0
ASN #27715 Locaweb Servicos de Internet SA
File type ASCII text, with very long lines (25176), with no line terminators
Hash e3e39f46d666eed4553e1448646a8c56
d18817164b70ea7dd564d8a34018c5a5acf13a73
ea0eb4d42045af8577475c46e6a3341384672c35cac8a05e9cd7a987c1e56e52
Analyzer Verdict Alert fortinet Phishing
GET /default/plugins/angular-1.5.3/angular-animate.min.js HTTP/1.1
Host: www.orizamarquitetura.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.orizamarquitetura.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 22 Sep 2022 17:47:12 GMT
Server: Apache
Last-Modified: Thu, 07 May 2020 12:14:05 GMT
Accept-Ranges: bytes
Cache-Control: max-age=290304000, /public/
Expires: Fri, 22 Sep 2023 17:47:12 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET,POST,OPTIONS,DELETE,PUT
Connection: keep-alive, close
Content-Length: 8962
Content-Type: application/x-javascript
www.orizamarquitetura.com.br/admin/template/assets/plugins/ng-mask/dist/ngMask.min.js
186.202.153.65200 OK 2.9 kB URL HTTP/1.1 www.orizamarquitetura.com.br/admin/template/assets/plugins/ng-mask/dist/ngMask.min.js
IP 186.202.153.65:0
ASN #27715 Locaweb Servicos de Internet SA
File type Unicode text, UTF-8 text, with very long lines (6610)
Hash d1e4b120c94f1c9d3e229c9e5b0875ed
5229e9337a8922ae4733f2dc6cafba6cdf990fb8
a5b6331c59a1bd9fbeffbfefa56171f5df07cb603a681751a483ceeeb1d32295
Analyzer Verdict Alert fortinet Phishing
GET /admin/template/assets/plugins/ng-mask/dist/ngMask.min.js HTTP/1.1
Host: www.orizamarquitetura.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.orizamarquitetura.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 22 Sep 2022 17:47:12 GMT
Server: Apache
Last-Modified: Thu, 07 May 2020 12:13:55 GMT
Accept-Ranges: bytes
Cache-Control: max-age=290304000, /public/
Expires: Fri, 22 Sep 2023 17:47:12 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET,POST,OPTIONS,DELETE,PUT
Connection: keep-alive, close
Content-Length: 2868
Content-Type: application/x-javascript
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash c8ac2005f83e8a3a9da1a9837b6c2ff3
7c05f49683e49232c1e11b91253e684d2f96ab83
b0b42743b4c7e4b528fd78aadc5429ef34c2e127f3d5147330d428a47203dc0a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 22 Sep 2022 17:47:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
khms1.googleapis.com/kh?v=930&hl=pt-BR&x=371&y=560&z=10
142.250.74.42200 OK 20 kB URL HTTP/2 khms1.googleapis.com/kh?v=930&hl=pt-BR&x=371&y=560&z=10
IP 142.250.74.42:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 256x256, components 3\012- data
Hash 2f246a1e01fad2b585688026c0a6046d
d4764b9536843d91857cfe018e445dfab0908c75
6f579c83ae0a9eaa72a124db68f2d14bddf93da28128b64307ec97e7fc781926
GET /kh?v=930&hl=pt-BR&x=371&y=560&z=10 HTTP/1.1
Host: khms1.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
cache-control: public, max-age=31536000
access-control-allow-credentials: true
x-content-type-options: nosniff
date: Thu, 22 Sep 2022 17:47:12 GMT
last-modified: Fri, 1 Jan 2010 01:00:00 GMT
expires: Fri, 22 Sep 2023 17:47:12 GMT
content-type: image/jpeg
vary: Origin, X-Origin, Referer
server: scaffolding on HTTPServer2
content-length: 19967
x-xss-protection: 0
x-frame-options: SAMEORIGIN
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash ab9170d59e1c01422d2c55356248b569
0df99ca360de0b69a7e79d8e79b6383fec4a5453
7747cc09f59efbc03c3663c9be6bb63248a43f8f310c1bae1466255e83a72455
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 22 Sep 2022 17:47:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.orizamarquitetura.com.br/default/plugins/modernizr.js
186.202.153.65200 OK 5.8 kB URL HTTP/1.1 www.orizamarquitetura.com.br/default/plugins/modernizr.js
IP 186.202.153.65:0
ASN #27715 Locaweb Servicos de Internet SA
File type HTML document, ASCII text, with very long lines (14023), with no line terminators
Hash a195db60a4f7322a92720892d2adde5a
976f4f98375aca3a433f9eafcedf90944729c0b5
0e9fa223f63c633249d635d8315bb064944940d565cfc65b8574e9db273047b5
Analyzer Verdict Alert fortinet Phishing
GET /default/plugins/modernizr.js HTTP/1.1
Host: www.orizamarquitetura.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.orizamarquitetura.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 22 Sep 2022 17:47:12 GMT
Server: Apache
Last-Modified: Thu, 07 May 2020 12:14:25 GMT
Accept-Ranges: bytes
Cache-Control: max-age=290304000, /public/
Expires: Fri, 22 Sep 2023 17:47:12 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET,POST,OPTIONS,DELETE,PUT
Connection: keep-alive, close
Content-Length: 5769
Content-Type: application/x-javascript
www.orizamarquitetura.com.br/default/plugins/angular-foundation.js
186.202.153.65200 OK 12 kB URL HTTP/1.1 www.orizamarquitetura.com.br/default/plugins/angular-foundation.js
IP 186.202.153.65:0
ASN #27715 Locaweb Servicos de Internet SA
File type Unicode text, UTF-8 text, with very long lines (48213), with no line terminators
Hash c4dc73a13e7e141a0b7af04b3df3daf0
ee281fcbcdd41b49f8cad96c285ea5c3e64955c0
56e9e7f93121eb6ad4917210d2595cd7985cc5bf6362ce4dc786adfb142447df
Analyzer Verdict Alert fortinet Phishing
GET /default/plugins/angular-foundation.js HTTP/1.1
Host: www.orizamarquitetura.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.orizamarquitetura.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 22 Sep 2022 17:47:12 GMT
Server: Apache
Last-Modified: Thu, 07 May 2020 12:14:14 GMT
Accept-Ranges: bytes
Cache-Control: max-age=290304000, /public/
Expires: Fri, 22 Sep 2023 17:47:12 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET,POST,OPTIONS,DELETE,PUT
Connection: keep-alive, close
Content-Length: 11951
Content-Type: application/x-javascript
www.orizamarquitetura.com.br/default/plugins/angular-1.5.3/angular.min.js
186.202.153.65200 OK 54 kB URL HTTP/1.1 www.orizamarquitetura.com.br/default/plugins/angular-1.5.3/angular.min.js
IP 186.202.153.65:0
ASN #27715 Locaweb Servicos de Internet SA
File type ASCII text, with very long lines (28390)
Hash 7ea14c27b30ccfb0f7857e0304928de8
f47962da880fe1d1dddcb1c823ffe2f242f48c10
d36641fbee5b3b6114282a0ba01b74f0eaa641a6d70698897113fa4613341c4e
Analyzer Verdict Alert fortinet Phishing
GET /default/plugins/angular-1.5.3/angular.min.js HTTP/1.1
Host: www.orizamarquitetura.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.orizamarquitetura.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 22 Sep 2022 17:47:12 GMT
Server: Apache
Last-Modified: Thu, 07 May 2020 12:14:05 GMT
Accept-Ranges: bytes
Cache-Control: max-age=290304000, /public/
Expires: Fri, 22 Sep 2023 17:47:12 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET,POST,OPTIONS,DELETE,PUT
Connection: keep-alive, close
Transfer-Encoding: chunked
Content-Type: application/x-javascript
www.orizamarquitetura.com.br/default/plugins/sweetalert2/dist/sweetalert2.min.js
186.202.153.65200 OK 8.3 kB URL HTTP/1.1 www.orizamarquitetura.com.br/default/plugins/sweetalert2/dist/sweetalert2.min.js
IP 186.202.153.65:0
ASN #27715 Locaweb Servicos de Internet SA
File type Unicode text, UTF-8 text, with very long lines (25899), with no line terminators
Hash 0238e22440537d11b333d59de63058b4
542a90e5a551c149ed91b6ad265cb94014a98f8e
7b749441b857ff197bb4774c91aaaf434d11ae543891ccabe2c986f5fc3ff8f6
Analyzer Verdict Alert fortinet Phishing
GET /default/plugins/sweetalert2/dist/sweetalert2.min.js HTTP/1.1
Host: www.orizamarquitetura.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.orizamarquitetura.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 22 Sep 2022 17:47:13 GMT
Server: Apache
Last-Modified: Thu, 07 May 2020 12:14:26 GMT
Accept-Ranges: bytes
Cache-Control: max-age=290304000, /public/
Expires: Fri, 22 Sep 2023 17:47:13 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET,POST,OPTIONS,DELETE,PUT
Connection: keep-alive, close
Content-Length: 8325
Content-Type: application/x-javascript
www.orizamarquitetura.com.br/admin/template/assets/plugins/ng-file-upload/dist/ng-file-upload-shim.min.js
186.202.153.65200 OK 2.6 kB URL HTTP/1.1 www.orizamarquitetura.com.br/admin/template/assets/plugins/ng-file-upload/dist/ng-file-upload-shim.min.js
IP 186.202.153.65:0
ASN #27715 Locaweb Servicos de Internet SA
File type ASCII text, with very long lines (7247)
Hash cd1b1f7a63c07cd423a013dfaee6aa0e
a8a8c7ad3a4a3c29b9e829a199af9bd78a451c99
6e0541d098cc04e8447f24b45c54f549226ee6c1acef59dd6ca695b13d37644e
Analyzer Verdict Alert fortinet Phishing
GET /admin/template/assets/plugins/ng-file-upload/dist/ng-file-upload-shim.min.js HTTP/1.1
Host: www.orizamarquitetura.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.orizamarquitetura.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 22 Sep 2022 17:47:13 GMT
Server: Apache
Last-Modified: Thu, 07 May 2020 12:13:55 GMT
Accept-Ranges: bytes
Cache-Control: max-age=290304000, /public/
Expires: Fri, 22 Sep 2023 17:47:13 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET,POST,OPTIONS,DELETE,PUT
Connection: keep-alive, close
Content-Length: 2615
Content-Type: application/x-javascript
www.orizamarquitetura.com.br/admin/template/assets/plugins/ng-file-upload/dist/ng-file-upload.min.js
186.202.153.65200 OK 12 kB URL HTTP/1.1 www.orizamarquitetura.com.br/admin/template/assets/plugins/ng-file-upload/dist/ng-file-upload.min.js
IP 186.202.153.65:0
ASN #27715 Locaweb Servicos de Internet SA
File type ASCII text, with very long lines (32041)
Hash e20aac6ed1f65244b9282be76daf5557
8dde74b5fd97592ebcb0221f31c7e1940ec25021
68620690c6722c12c8cfd4120a51d6e5352645d2aca7bd9145b67f4cd2563e9b
Analyzer Verdict Alert fortinet Phishing
GET /admin/template/assets/plugins/ng-file-upload/dist/ng-file-upload.min.js HTTP/1.1
Host: www.orizamarquitetura.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.orizamarquitetura.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 22 Sep 2022 17:47:13 GMT
Server: Apache
Last-Modified: Thu, 07 May 2020 12:13:55 GMT
Accept-Ranges: bytes
Cache-Control: max-age=290304000, /public/
Expires: Fri, 22 Sep 2023 17:47:13 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET,POST,OPTIONS,DELETE,PUT
Connection: keep-alive, close
Content-Length: 12194
Content-Type: application/x-javascript
www.orizamarquitetura.com.br/default/js/angular/app.js
186.202.153.65200 OK 1.2 kB URL HTTP/1.1 www.orizamarquitetura.com.br/default/js/angular/app.js
IP 186.202.153.65:0
ASN #27715 Locaweb Servicos de Internet SA
Hash 84d7c34f35119a96fe80e67db8f78a0e
303f2b0430ec5544389ba29a452881ace43c4534
3fec99a0e5b9d9d8d1f3f6a2604b2fe26e0ce31fcd27afbe366f8c0e1f9eff62
Analyzer Verdict Alert fortinet Phishing
GET /default/js/angular/app.js HTTP/1.1
Host: www.orizamarquitetura.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.orizamarquitetura.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 22 Sep 2022 17:47:13 GMT
Server: Apache
Last-Modified: Thu, 07 May 2020 12:14:05 GMT
Accept-Ranges: bytes
Cache-Control: max-age=290304000, /public/
Expires: Fri, 22 Sep 2023 17:47:13 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET,POST,OPTIONS,DELETE,PUT
Connection: keep-alive, close
Content-Length: 1175
Content-Type: application/x-javascript
www.orizamarquitetura.com.br/default/js/angular/locaisController.js
186.202.153.65200 OK 470 B URL HTTP/1.1 www.orizamarquitetura.com.br/default/js/angular/locaisController.js
IP 186.202.153.65:0
ASN #27715 Locaweb Servicos de Internet SA
Hash 19a3f0f64da65cf07fcc65eb5e3d143b
89b3ea92d6e9a3e132390bee3d5fc9c4584de916
686a2315a69c7d26708c748264a37d4dd6cebdfac5280223573d747744d9e1ce
Analyzer Verdict Alert fortinet Phishing
GET /default/js/angular/locaisController.js HTTP/1.1
Host: www.orizamarquitetura.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.orizamarquitetura.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 22 Sep 2022 17:47:13 GMT
Server: Apache
Last-Modified: Thu, 07 May 2020 12:14:05 GMT
Accept-Ranges: bytes
Cache-Control: max-age=290304000, /public/
Expires: Fri, 22 Sep 2023 17:47:13 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET,POST,OPTIONS,DELETE,PUT
Connection: keep-alive, close
Content-Length: 470
Content-Type: application/x-javascript
www.orizamarquitetura.com.br/default/js/angular/areaRestritaController.js
186.202.153.65200 OK 484 B URL HTTP/1.1 www.orizamarquitetura.com.br/default/js/angular/areaRestritaController.js
IP 186.202.153.65:0
ASN #27715 Locaweb Servicos de Internet SA
Hash 1ccb96940a05d833883d1fa33302a5bf
09f3bd7e555ed5d63a94f1d0d62940fa4b26f3c7
2ddea6b7f506284f47efc129ef86f6a3505f129ab803764a85021b9f1db05c55
Analyzer Verdict Alert fortinet Phishing
GET /default/js/angular/areaRestritaController.js HTTP/1.1
Host: www.orizamarquitetura.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.orizamarquitetura.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 22 Sep 2022 17:47:13 GMT
Server: Apache
Last-Modified: Thu, 07 May 2020 12:14:05 GMT
Accept-Ranges: bytes
Cache-Control: max-age=290304000, /public/
Expires: Fri, 22 Sep 2023 17:47:13 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET,POST,OPTIONS,DELETE,PUT
Connection: keep-alive, close
Content-Length: 484
Content-Type: application/x-javascript
www.orizamarquitetura.com.br/default/js/geral.js
186.202.153.65200 OK 362 B URL HTTP/1.1 www.orizamarquitetura.com.br/default/js/geral.js
IP 186.202.153.65:0
ASN #27715 Locaweb Servicos de Internet SA
Hash 75fa53e0da81cc1b8f2a848d8233b75d
f52fb7251c114d61b30ddb2e3ce8a33028a1de17
dee3cccfe379ce8f781cee74acfa9cf2510779bda307cd0047816c04e7743ae4
Analyzer Verdict Alert fortinet Phishing
GET /default/js/geral.js HTTP/1.1
Host: www.orizamarquitetura.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.orizamarquitetura.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 22 Sep 2022 17:47:13 GMT
Server: Apache
Last-Modified: Thu, 07 May 2020 12:14:05 GMT
Accept-Ranges: bytes
Cache-Control: max-age=290304000, /public/
Expires: Fri, 22 Sep 2023 17:47:13 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET,POST,OPTIONS,DELETE,PUT
Connection: keep-alive, close
Content-Length: 362
Content-Type: application/x-javascript
www.orizamarquitetura.com.br/default/js/carousel.js
186.202.153.65200 OK 750 B URL HTTP/1.1 www.orizamarquitetura.com.br/default/js/carousel.js
IP 186.202.153.65:0
ASN #27715 Locaweb Servicos de Internet SA
Hash f224a1349c9cf4e1c8f0cb39b9d0f9f7
59da90367e39e78f2b9d7851014fe42eb3aac1a4
4591f34b248085914c98d105f8ed4476feaa97b413d6c07018b043e80abae80f
Analyzer Verdict Alert fortinet Phishing
GET /default/js/carousel.js HTTP/1.1
Host: www.orizamarquitetura.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.orizamarquitetura.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 22 Sep 2022 17:47:13 GMT
Server: Apache
Last-Modified: Thu, 07 May 2020 12:14:05 GMT
Accept-Ranges: bytes
Cache-Control: max-age=290304000, /public/
Expires: Fri, 22 Sep 2023 17:47:13 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET,POST,OPTIONS,DELETE,PUT
Connection: keep-alive, close
Content-Length: 750
Content-Type: application/x-javascript
www.orizamarquitetura.com.br/default/angularvideo/angular-video-bg.js
186.202.153.65200 OK 4.9 kB URL HTTP/1.1 www.orizamarquitetura.com.br/default/angularvideo/angular-video-bg.js
IP 186.202.153.65:0
ASN #27715 Locaweb Servicos de Internet SA
Hash 3239d80c0d1f6f4fa0dca4d218563284
bc502dfe9eb2c6a3a7e182812cfbb181da77e404
ce18393d5eeb7ffe79df5350681c6fd7a396b769b15e89f6b46cf3790049dde3
Analyzer Verdict Alert fortinet Phishing
GET /default/angularvideo/angular-video-bg.js HTTP/1.1
Host: www.orizamarquitetura.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.orizamarquitetura.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 22 Sep 2022 17:47:13 GMT
Server: Apache
Last-Modified: Thu, 07 May 2020 12:14:02 GMT
Accept-Ranges: bytes
Cache-Control: max-age=290304000, /public/
Expires: Fri, 22 Sep 2023 17:47:13 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET,POST,OPTIONS,DELETE,PUT
Connection: keep-alive, close
Content-Length: 4949
Content-Type: application/x-javascript
www.orizamarquitetura.com.br/default/js/show-on-scroll.js
186.202.153.65200 OK 561 B URL HTTP/1.1 www.orizamarquitetura.com.br/default/js/show-on-scroll.js
IP 186.202.153.65:0
ASN #27715 Locaweb Servicos de Internet SA
Hash b339ef2927b92ca0bbbf5d9c7642d532
373d0bc746d9f94328fcb29423cd52a7519569e9
4e60b1830423d05083c7c7d4f3fdd2b9ce56f735a606b72a357840bcf0c48586
Analyzer Verdict Alert fortinet Phishing
GET /default/js/show-on-scroll.js HTTP/1.1
Host: www.orizamarquitetura.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.orizamarquitetura.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 22 Sep 2022 17:47:14 GMT
Server: Apache
Last-Modified: Thu, 07 May 2020 12:14:05 GMT
Accept-Ranges: bytes
Cache-Control: max-age=290304000, /public/
Expires: Fri, 22 Sep 2023 17:47:14 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET,POST,OPTIONS,DELETE,PUT
Connection: keep-alive, close
Content-Length: 561
Content-Type: application/x-javascript
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
142.250.74.163200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Hash 15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 21 Sep 2022 19:34:08 GMT
expires: Thu, 21 Sep 2023 19:34:08 GMT
cache-control: public, max-age=31536000
age: 79986
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
142.250.74.163200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 15920, version 1.0\012- data
Hash 3a44e06eb954b96aa043227f3534189d
23cef6993ddb2b2979e8e7647fc3763694e2ba7d
b019538234514166ec7665359d097403358f8a4c991901983922fb4d56989f1e
GET /s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15920
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 21 Sep 2022 14:52:00 GMT
expires: Thu, 21 Sep 2023 14:52:00 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 11 May 2022 19:24:45 GMT
content-type: font/woff2
age: 96914
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.orizamarquitetura.com.br/default/plugins/wow.js/dist/wow.min.js
186.202.153.65200 OK 2.8 kB URL HTTP/1.1 www.orizamarquitetura.com.br/default/plugins/wow.js/dist/wow.min.js
IP 186.202.153.65:0
ASN #27715 Locaweb Servicos de Internet SA
File type ASCII text, with very long lines (8051)
Hash bf5cccc12a56990a497e814c30c76681
65a5cc891607359b2a3ebbc94def34584b2b59ad
5f2ebca1d323b1fe4d99ad35abc69cfc2254e9708e6337a2399d937abf68ff8a
Analyzer Verdict Alert fortinet Phishing
GET /default/plugins/wow.js/dist/wow.min.js HTTP/1.1
Host: www.orizamarquitetura.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.orizamarquitetura.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 22 Sep 2022 17:47:14 GMT
Server: Apache
Last-Modified: Thu, 07 May 2020 12:14:26 GMT
Accept-Ranges: bytes
Cache-Control: max-age=290304000, /public/
Expires: Fri, 22 Sep 2023 17:47:14 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET,POST,OPTIONS,DELETE,PUT
Connection: keep-alive, close
Content-Length: 2812
Content-Type: application/x-javascript
www.orizamarquitetura.com.br/default/js/angular/mainController.js
186.202.153.65200 OK 1.9 kB URL HTTP/1.1 www.orizamarquitetura.com.br/default/js/angular/mainController.js
IP 186.202.153.65:0
ASN #27715 Locaweb Servicos de Internet SA
Hash f16e81b9743f5ec2c24a0a6689967719
b28dddda7461b4742d66dba97a16fa4806c31917
210594c6a926e2a21deacd891f61d0da6c72e8708521af7776a95df7fca7b7ab
Analyzer Verdict Alert fortinet Phishing
GET /default/js/angular/mainController.js HTTP/1.1
Host: www.orizamarquitetura.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.orizamarquitetura.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 22 Sep 2022 17:47:14 GMT
Server: Apache
Last-Modified: Thu, 07 May 2020 12:14:05 GMT
Accept-Ranges: bytes
Cache-Control: max-age=290304000, /public/
Expires: Fri, 22 Sep 2023 17:47:14 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET,POST,OPTIONS,DELETE,PUT
Connection: keep-alive, close
Content-Length: 1876
Content-Type: application/x-javascript
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash a2d93374b7bdf45355cf675f1c3ba86f
59ca1f4e8635feef0b7df7ee62580a82264809e0
dc8f2c2e099043422689d9180aee25359a6d0753733cecccd3aca8ab13f01fa7
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3148
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 22 Sep 2022 17:47:14 GMT
Last-Modified: Thu, 22 Sep 2022 16:54:46 GMT
Server: ECS (ska/F6FD)
X-Cache: HIT
Content-Length: 471
www.orizamarquitetura.com.br/default/plugins/fontawesome-free-5.9.0/webfonts/fa-regular-400.woff2
186.202.153.65200 OK 14 kB URL HTTP/1.1 www.orizamarquitetura.com.br/default/plugins/fontawesome-free-5.9.0/webfonts/fa-regular-400.woff2
IP 186.202.153.65:0
ASN #27715 Locaweb Servicos de Internet SA
File type Web Open Font Format (Version 2), TrueType, length 13580, version 329.-1049\012- data
Hash e07d9e40b26048d9abe2ef966cd6e263
c744217caa82b3245cffa2714aaf2ec9f749614d
6a16c04229bc2b4da226eb97e68d94f49ba6437b7b5e16c14a101b21a29384e9
Analyzer Verdict Alert fortinet Phishing
GET /default/plugins/fontawesome-free-5.9.0/webfonts/fa-regular-400.woff2 HTTP/1.1
Host: www.orizamarquitetura.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://www.orizamarquitetura.com.br/default/plugins/fontawesome-free-5.9.0/css/all.min.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 22 Sep 2022 17:47:14 GMT
Server: Apache
Last-Modified: Thu, 07 May 2020 12:14:23 GMT
Accept-Ranges: bytes
Content-Length: 13580
Vary: User-Agent
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET,POST,OPTIONS,DELETE,PUT
X-UA-Compatible: IE=Edge,chrome=1
Connection: keep-alive, close
Content-Type: text/plain
www.orizamarquitetura.com.br/default/image/left.png
186.202.153.65200 OK 168 B URL HTTP/1.1 www.orizamarquitetura.com.br/default/image/left.png
IP 186.202.153.65:0
ASN #27715 Locaweb Servicos de Internet SA
File type PNG image data, 8 x 15, 8-bit/color RGBA, non-interlaced\012- data
Hash ef497cbe96d1cf7cc271e70f420b3705
3e1c40d10b882b447aca6c32f601cc18dd65c31e
81cdbdf01abf913dba0461bb1250f109a7033204b259757b94f2d0245505579e
GET /default/image/left.png HTTP/1.1
Host: www.orizamarquitetura.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.orizamarquitetura.com.br/default/css/custom.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 22 Sep 2022 17:47:15 GMT
Server: Apache
Last-Modified: Thu, 07 May 2020 12:14:04 GMT
Accept-Ranges: bytes
Content-Length: 168
Vary: User-Agent
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET,POST,OPTIONS,DELETE,PUT
Connection: keep-alive, close
Content-Disposition: attachment
Cache-Control: max-age=290304000, /public/
Content-Type: application/octet-stream
www.orizamarquitetura.com.br/default/plugins/fontawesome-free-5.9.0/webfonts/fa-brands-400.woff2
186.202.153.65200 OK 74 kB URL HTTP/1.1 www.orizamarquitetura.com.br/default/plugins/fontawesome-free-5.9.0/webfonts/fa-brands-400.woff2
IP 186.202.153.65:0
ASN #27715 Locaweb Servicos de Internet SA
File type Web Open Font Format (Version 2), TrueType, length 74508, version 329.-1049\012- data
Hash 7559b3774a0625e8ca6c0160f8f6cfd8
a403af3337e6207d144b998b9c3bed439af562a9
1f49b8706547682e2c5ed6642a2f2dcbd287da458314b967c60d774aa7edb473
Analyzer Verdict Alert fortinet Phishing
GET /default/plugins/fontawesome-free-5.9.0/webfonts/fa-brands-400.woff2 HTTP/1.1
Host: www.orizamarquitetura.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://www.orizamarquitetura.com.br/default/plugins/fontawesome-free-5.9.0/css/all.min.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 22 Sep 2022 17:47:14 GMT
Server: Apache
Last-Modified: Thu, 07 May 2020 12:14:23 GMT
Accept-Ranges: bytes
Content-Length: 74508
Vary: User-Agent
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET,POST,OPTIONS,DELETE,PUT
X-UA-Compatible: IE=Edge,chrome=1
Connection: keep-alive, close
Content-Type: text/plain
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash a2d93374b7bdf45355cf675f1c3ba86f
59ca1f4e8635feef0b7df7ee62580a82264809e0
dc8f2c2e099043422689d9180aee25359a6d0753733cecccd3aca8ab13f01fa7
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3149
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 22 Sep 2022 17:47:15 GMT
Last-Modified: Thu, 22 Sep 2022 16:54:46 GMT
Server: ECS (ska/F6FD)
X-Cache: HIT
Content-Length: 471
www.orizamarquitetura.com.br/default/plugins/fontawesome-free-5.9.0/webfonts/fa-solid-900.woff2
186.202.153.65200 OK 75 kB URL HTTP/1.1 www.orizamarquitetura.com.br/default/plugins/fontawesome-free-5.9.0/webfonts/fa-solid-900.woff2
IP 186.202.153.65:0
ASN #27715 Locaweb Servicos de Internet SA
File type Web Open Font Format (Version 2), TrueType, length 75440, version 329.-1049\012- data
Hash b5cf8ae26748570d8fb95a47f46b69e1
07bed153d47f9129a944ee54dd72952deed074c8
cd398be1a91817126cef10224738e624358edf6f08043abad7e60c1aaeccc8d0
Analyzer Verdict Alert fortinet Phishing
GET /default/plugins/fontawesome-free-5.9.0/webfonts/fa-solid-900.woff2 HTTP/1.1
Host: www.orizamarquitetura.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://www.orizamarquitetura.com.br/default/plugins/fontawesome-free-5.9.0/css/all.min.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 22 Sep 2022 17:47:15 GMT
Server: Apache
Last-Modified: Thu, 07 May 2020 12:14:23 GMT
Accept-Ranges: bytes
Content-Length: 75440
Vary: User-Agent
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET,POST,OPTIONS,DELETE,PUT
X-UA-Compatible: IE=Edge,chrome=1
Connection: keep-alive, close
Content-Type: text/plain
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd0f33332-2080-459e-ab54-a452b2278994.jpeg
34.120.237.76200 OK 8.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd0f33332-2080-459e-ab54-a452b2278994.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 888247c1153f8770b880395734749107
7c27c02029eb49e726a076679be2c793da696e45
515852e0d38cdaf86bce45fa5e0df453d08ca36cf6ecfa0c4b868c2143afe333
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd0f33332-2080-459e-ab54-a452b2278994.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 8748
x-amzn-requestid: 83c28267-4d10-476d-8b11-08b48b046985
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YzG6CGtroAMFyqA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632ab840-1167c5285b6837d311bfe2a9;Sampled=0
x-amzn-remapped-date: Wed, 21 Sep 2022 07:07:44 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: xo0ilY8z0C3rDISFOM5EixEK7HAelSut4hgNNwGYAVQIfPP8C6pUCg==
via: 1.1 00f0a41f749793b9dd653153037c957e.cloudfront.net (CloudFront), 1.1 989017835f43d594873bde5a7ee7fe5e.cloudfront.net (CloudFront), 1.1 google
date: Thu, 22 Sep 2022 04:10:05 GMT
age: 49030
etag: "7c27c02029eb49e726a076679be2c793da696e45"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
www.orizamarquitetura.com.br/default/font/LinBiolinum/LinBiolinum.woff2
186.202.153.65200 OK 256 kB URL HTTP/1.1 www.orizamarquitetura.com.br/default/font/LinBiolinum/LinBiolinum.woff2
IP 186.202.153.65:0
ASN #27715 Locaweb Servicos de Internet SA
File type Web Open Font Format (Version 2), TrueType, length 256252, version 1.0\012- data
Size 256 kB (256252 bytes)
Hash 249e30aecade35eb62b6364d9e9f07f9
3bb048dd8c80a00d45751765bda912740c526fac
4cffe0fe0ff91fa2a8952c2747d199a94b0dfdc009f5693191a2ea217fa88d79
Analyzer Verdict Alert fortinet Phishing
GET /default/font/LinBiolinum/LinBiolinum.woff2 HTTP/1.1
Host: www.orizamarquitetura.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://www.orizamarquitetura.com.br/default/css/custom.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 22 Sep 2022 17:47:14 GMT
Server: Apache
Last-Modified: Thu, 07 May 2020 12:14:04 GMT
Accept-Ranges: bytes
Content-Length: 256252
Vary: User-Agent
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET,POST,OPTIONS,DELETE,PUT
X-UA-Compatible: IE=Edge,chrome=1
Connection: keep-alive, close
Content-Type: text/plain
www.orizamarquitetura.com.br/media/imagens/foto_01.jpg
186.202.153.65200 OK 0 B URL HTTP/1.1 www.orizamarquitetura.com.br/media/imagens/foto_01.jpg
IP 186.202.153.65:0
ASN #27715 Locaweb Servicos de Internet SA
GET /media/imagens/foto_01.jpg HTTP/1.1
Host: www.orizamarquitetura.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.orizamarquitetura.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 22 Sep 2022 17:47:15 GMT
Server: Apache
Last-Modified: Thu, 07 May 2020 12:14:29 GMT
Accept-Ranges: bytes
Content-Length: 147100
Vary: User-Agent
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET,POST,OPTIONS,DELETE,PUT
Connection: keep-alive, close
Content-Disposition: attachment
Cache-Control: max-age=290304000, /public/
Content-Type: application/octet-stream
fonts.googleapis.com/css?family=Roboto:100,100i,300,300i,400,400i,500,500i,700,700i,900,900i&display=swap
142.250.74.10200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Roboto:100,100i,300,300i,400,400i,500,500i,700,700i,900,900i&display=swap
IP 142.250.74.10:0
GET /css?family=Roboto:100,100i,300,300i,400,400i,500,500i,700,700i,900,900i&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.orizamarquitetura.com.br/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 22 Sep 2022 17:47:11 GMT
date: Thu, 22 Sep 2022 17:47:11 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
gitcdn.xyz/cdn/thesmart/jquery-scrollspy/0ae1076076b77707ecfc783fd8e460933a461b97/scrollspy.js
104.21.235.38200 OK 0 B URL HTTP/2 gitcdn.xyz/cdn/thesmart/jquery-scrollspy/0ae1076076b77707ecfc783fd8e460933a461b97/scrollspy.js
IP 104.21.235.38:0
GET /cdn/thesmart/jquery-scrollspy/0ae1076076b77707ecfc783fd8e460933a461b97/scrollspy.js HTTP/1.1
Host: gitcdn.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.orizamarquitetura.com.br/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 22 Sep 2022 17:47:12 GMT
content-type: application/javascript; charset=utf-8
x-powered-by: Express
access-control-allow-origin: *
cache-control: public, max-age=2592000
expires: Sat, 22 Oct 2022 17:47:10 GMT
via: 1.1 vegur
cf-cache-status: HIT
age: 1790
last-modified: Thu, 22 Sep 2022 17:17:20 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=1fv9nBcLAtfeAJ3%2F0%2BaBuBA0Iqp7DHRQkYvfrOBS5fxLja7IjFXBLV7dYYy653j%2FiaUvzd%2FHbj54B4AtvgOvdNW%2FWn1svZGQR9o%2BTF2LR1xCAKK5G1tv0Uj3sf1E"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 74ecdd40ce17f3ef-LHR
content-encoding: br
X-Firefox-Spdy: h2
www.orizamarquitetura.com.br/media/imagens/foto_04d.jpg
186.202.153.65200 OK 0 B URL HTTP/1.1 www.orizamarquitetura.com.br/media/imagens/foto_04d.jpg
IP 186.202.153.65:0
ASN #27715 Locaweb Servicos de Internet SA
GET /media/imagens/foto_04d.jpg HTTP/1.1
Host: www.orizamarquitetura.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.orizamarquitetura.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 22 Sep 2022 17:47:15 GMT
Server: Apache
Last-Modified: Thu, 07 May 2020 12:14:29 GMT
Accept-Ranges: bytes
Content-Length: 132015
Vary: User-Agent
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET,POST,OPTIONS,DELETE,PUT
Connection: keep-alive, close
Content-Disposition: attachment
Cache-Control: max-age=290304000, /public/
Content-Type: application/octet-stream
www.orizamarquitetura.com.br/media/imagens/foto_02.jpg
186.202.153.65200 OK 0 B URL HTTP/1.1 www.orizamarquitetura.com.br/media/imagens/foto_02.jpg
IP 186.202.153.65:0
ASN #27715 Locaweb Servicos de Internet SA
GET /media/imagens/foto_02.jpg HTTP/1.1
Host: www.orizamarquitetura.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.orizamarquitetura.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 22 Sep 2022 17:47:15 GMT
Server: Apache
Last-Modified: Thu, 07 May 2020 12:14:29 GMT
Accept-Ranges: bytes
Content-Length: 156084
Vary: User-Agent
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET,POST,OPTIONS,DELETE,PUT
Connection: keep-alive, close
Content-Disposition: attachment
Cache-Control: max-age=290304000, /public/
Content-Type: application/octet-stream
api.instagram.com/v1/users/self/media/recent/?access_token=321825083.1677ed0.d6a3a31afd044c3cac22a480a7f35935&count=6
157.240.200.63404 Not Found 0 B URL HTTP/2 api.instagram.com/v1/users/self/media/recent/?access_token=321825083.1677ed0.d6a3a31afd044c3cac22a480a7f35935&count=6
IP 157.240.200.63:0
GET /v1/users/self/media/recent/?access_token=321825083.1677ed0.d6a3a31afd044c3cac22a480a7f35935&count=6 HTTP/1.1
Host: api.instagram.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.orizamarquitetura.com.br
Connection: keep-alive
Referer: https://www.orizamarquitetura.com.br/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 404 Not Found
content-type: text/html; charset=utf-8
vary: Accept-Language, Cookie
content-language: en
date: Thu, 22 Sep 2022 17:47:15 GMT
strict-transport-security: max-age=31536000
cache-control: private, no-cache, no-store, must-revalidate
pragma: no-cache
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-frame-options: SAMEORIGIN
content-security-policy: report-uri https://www.instagram.com/security/csp_report/; default-src 'self' https://www.instagram.com; img-src data: blob: https://*.fbcdn.net https://*.instagram.com https://*.cdninstagram.com https://*.facebook.com https://*.fbsbx.com; font-src data: https://*.fbcdn.net https://*.instagram.com https://*.cdninstagram.com; media-src 'self' blob: https://www.instagram.com https://*.cdninstagram.com https://*.fbcdn.net; manifest-src 'self' https://www.instagram.com; script-src 'self' https://instagram.com https://www.instagram.com https://*.www.instagram.com https://*.cdninstagram.com wss://www.instagram.com https://*.facebook.com https://*.fbcdn.net https://*.facebook.net 'unsafe-inline' 'unsafe-eval' blob:; style-src 'self' https://*.www.instagram.com https://www.instagram.com 'unsafe-inline'; connect-src 'self' https://instagram.com https://www.instagram.com https://*.www.instagram.com https://graph.instagram.com https://*.graph.instagram.com https://i.instagram.com/graphql_www https://graphql.instagram.com https://*.cdninstagram.com https://api.instagram.com https://i.instagram.com https://*.i.instagram.com https://*.od.instagram.com wss://www.instagram.com wss://edge-chat.instagram.com https://*.facebook.com https://*.fbcdn.net https://*.facebook.net chrome-extension://boadgeojelhgndaghljhdicfkmllpafd blob:; worker-src 'self' blob: https://www.instagram.com; frame-src 'self' https://instagram.com https://www.instagram.com https://*.instagram.com https://staticxx.facebook.com https://www.facebook.com https://web.facebook.com https://connect.facebook.net https://m.facebook.com https://*.fbsbx.com; object-src 'none'; upgrade-insecure-requests
cross-origin-embedder-policy-report-only: require-corp;report-to="coep"
report-to: {"group": "coep", "max_age": 86400, "endpoints": [{"url": "/security/coep_report/"}]},{"group": "coop", "max_age": 86400, "endpoints": [{"url": "/security/coop_report/"}]}
origin-trial: AuqWincgAuXeuu3KypEMnrrFEJHySaesyJS3EaIH40zvafzrU0Irhb7+5QwZpOqMZrPTjgvFl7Z5jJgy1dNAcQMAAAB6eyJvcmlnaW4iOiJodHRwczovL2luc3RhZ3JhbS5jb206NDQzIiwiZmVhdHVyZSI6IkNyb3NzT3JpZ2luT3BlbmVyUG9saWN5UmVwb3J0aW5nIiwiZXhwaXJ5IjoxNjEzNDExNjYyLCJpc1N1YmRvbWFpbiI6dHJ1ZX0=
cross-origin-opener-policy: same-origin-allow-popups;report-to="coop"
x-content-type-options: nosniff
x-xss-protection: 0
x-ig-push-state: c2
x-aed: 69
access-control-expose-headers: X-IG-Set-WWW-Claim
x-ig-request-elapsed-time-ms: 565
x-ig-peak-time: 0
content-length: 110260
x-ig-origin-region: rva
x-fb-trip-id: 1679558926
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2