r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash d2560f62890e75b8de444fed96c22f52
334ce0c48e606ee029f31eeb1463af87b1024bb9
4397e6b45b5822fbab9b83abe0b96ee70efba7cd2160b51936159865ede5fdb1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4397E6B45B5822FBAB9B83ABE0B96EE70EFBA7CD2160B51936159865EDE5FDB1"
Last-Modified: Sun, 25 Sep 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3978
Expires: Mon, 26 Sep 2022 22:44:18 GMT
Date: Mon, 26 Sep 2022 21:38:00 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
143.204.55.27200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 143.204.55.27:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 2d12f67fe57a87e7366b662d153a5582
d7b02d81cc74f24a251d9363e0f4b0a149264ec1
73c273c0b5a2de3cb970b8e8c187999d3b55e760dc7766dab4bb76428d19b551
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Length, Backoff, Content-Type, Retry-After, Alert
Cache-Control: max-age=3600
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Mon, 26 Sep 2022 21:15:22 GMT
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 8ddb6d7670d8c5a85c04a10525a71b90.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: _W5Rh4nrd3MatzYrK7R63CG4FGDZqSNeU0c6bZMyMDNfdhR07Tj0yQ==
Age: 1358
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
143.204.55.35200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
IP 143.204.55.35:0
File type PEM certificate\012- , ASCII text
Hash 6113f8408c59aebe188d6af273b90743
7398873bf00f99944eaa77ad3ebc0d43c23dba6b
b6e0cc9ad68306208a160f3835fb8da76acc5a82d8fde1da5a98e1de1c11a770
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 10 Sep 2022 18:47:45 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Mon, 26 Sep 2022 04:35:16 GMT
etag: "6113f8408c59aebe188d6af273b90743"
x-cache: Hit from cloudfront
via: 1.1 475d4ecb64796af058573c6f1048e898.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: Dw88JvR2WpgqxozJiLRTGnRjQkDXqICDTBDsp4eDuZCinOaYJkw3mQ==
age: 61365
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Mon, 26 Sep 2022 21:38:00 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
radiobrasilitalia.com.br/wp-content/upgrade/dashboard/card.php?cmd=_account-details&session=f37be396eb36f46e6879d1cb8a4e5af1&dispatch=3b03c9d9293d38c9570b21cfb32f7e183e3ed520
162.241.60.105200 OK 55 kB URL HTTP/1.1 radiobrasilitalia.com.br/wp-content/upgrade/dashboard/card.php?cmd=_account-details&session=f37be396eb36f46e6879d1cb8a4e5af1&dispatch=3b03c9d9293d38c9570b21cfb32f7e183e3ed520
IP 162.241.60.105:0
ASN #46606 UNIFIEDLAYER-AS-1
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (12698), with CRLF line terminators
Hash cdf6251bbbacfc9338389852ad8773fe
6140017da2e3b23b61425a60155b084e86981bcc
c3abe03004018d0de8c05ee9da1fd57826c3c237167630df1340d5c4ae9f389a
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/upgrade/dashboard/card.php?cmd=_account-details&session=f37be396eb36f46e6879d1cb8a4e5af1&dispatch=3b03c9d9293d38c9570b21cfb32f7e183e3ed520 HTTP/1.1
Host: radiobrasilitalia.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Mon, 26 Sep 2022 21:38:00 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
X-Generated: t=1664228280726954
Keep-Alive: timeout=5, max=75
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
radiobrasilitalia.com.br/wp-content/upgrade/dashboard/info_files/s94156880752687.js
162.241.60.105200 OK 1.3 kB URL HTTP/1.1 radiobrasilitalia.com.br/wp-content/upgrade/dashboard/info_files/s94156880752687.js
IP 162.241.60.105:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (4010)
Hash 45d56fe0afe17d104aeedba93a637ac4
b976e339b8cbb7990ccf21e1f80fab11a16c25c6
c6375806f6589789620e3c5bc7b3a6c67bf525dff15e87486e1f2c1ddef3c5c5
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /wp-content/upgrade/dashboard/info_files/s94156880752687.js HTTP/1.1
Host: radiobrasilitalia.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://radiobrasilitalia.com.br/wp-content/upgrade/dashboard/card.php?cmd=_account-details&session=f37be396eb36f46e6879d1cb8a4e5af1&dispatch=3b03c9d9293d38c9570b21cfb32f7e183e3ed520
HTTP/1.1 200 OK
Date: Mon, 26 Sep 2022 21:38:01 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Wed, 13 Oct 2021 21:53:32 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
X-Generated: t=1664228281011075
Content-Length: 1347
Keep-Alive: timeout=5, max=75
Content-Type: application/javascript
radiobrasilitalia.com.br/wp-content/upgrade/dashboard/info_files/RC5c7ea78b436c45038bcc61c2a198e02e-source.js
162.241.60.105200 OK 1.1 kB URL HTTP/1.1 radiobrasilitalia.com.br/wp-content/upgrade/dashboard/info_files/RC5c7ea78b436c45038bcc61c2a198e02e-source.js
IP 162.241.60.105:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (2226)
Hash f69500055c5d9fc89cd1c3b9c248ed74
fa3a4050abc4efb1b932d5d96f952b451a3e3538
43f6ecfc240388eb5bc375f8f568a9b69a3010c4b30ac813b32aef61c366629d
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /wp-content/upgrade/dashboard/info_files/RC5c7ea78b436c45038bcc61c2a198e02e-source.js HTTP/1.1
Host: radiobrasilitalia.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://radiobrasilitalia.com.br/wp-content/upgrade/dashboard/card.php?cmd=_account-details&session=f37be396eb36f46e6879d1cb8a4e5af1&dispatch=3b03c9d9293d38c9570b21cfb32f7e183e3ed520
HTTP/1.1 200 OK
Date: Mon, 26 Sep 2022 21:38:01 GMT
Server: Apache
Last-Modified: Wed, 13 Oct 2021 21:53:32 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
X-Generated: t=1664228281140681
Content-Length: 1100
Keep-Alive: timeout=5, max=74
Connection: Keep-Alive
Content-Type: application/javascript
radiobrasilitalia.com.br/wp-content/upgrade/dashboard/info_files/AppMeasurement_Module_AudienceManagement.js
162.241.60.105200 OK 11 kB URL HTTP/1.1 radiobrasilitalia.com.br/wp-content/upgrade/dashboard/info_files/AppMeasurement_Module_AudienceManagement.js
IP 162.241.60.105:0
ASN #46606 UNIFIEDLAYER-AS-1
File type exported SGML document, ASCII text, with very long lines (24962)
Hash f9861fe6306a4440ab36c596685a1ae4
a81a22945e5a8cdceb288aef4fd28db207d546da
4a8fe05a9638e825e453e5561ff56c5db2361c58414362a1617086f88a7b31bf
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /wp-content/upgrade/dashboard/info_files/AppMeasurement_Module_AudienceManagement.js HTTP/1.1
Host: radiobrasilitalia.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://radiobrasilitalia.com.br/wp-content/upgrade/dashboard/card.php?cmd=_account-details&session=f37be396eb36f46e6879d1cb8a4e5af1&dispatch=3b03c9d9293d38c9570b21cfb32f7e183e3ed520
HTTP/1.1 200 OK
Date: Mon, 26 Sep 2022 21:38:01 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Wed, 13 Oct 2021 21:53:32 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
X-Generated: t=1664228281138296
Content-Length: 10876
Keep-Alive: timeout=5, max=75
Content-Type: application/javascript
radiobrasilitalia.com.br/wp-content/upgrade/dashboard/info_files/styles.css
162.241.60.105200 OK 34 kB URL HTTP/1.1 radiobrasilitalia.com.br/wp-content/upgrade/dashboard/info_files/styles.css
IP 162.241.60.105:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (46290)
Hash 0b75e309ae3a1c260a39f10b2bebc3dd
25d71a0e479330848e9db0cbdd99d369d8be0b49
37f6a40f8f1b5309614e01d0e1ea6c5dc0fa44cbe14e46a0b64f0f84ac8eeee2
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/upgrade/dashboard/info_files/styles.css HTTP/1.1
Host: radiobrasilitalia.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://radiobrasilitalia.com.br/wp-content/upgrade/dashboard/card.php?cmd=_account-details&session=f37be396eb36f46e6879d1cb8a4e5af1&dispatch=3b03c9d9293d38c9570b21cfb32f7e183e3ed520
HTTP/1.1 200 OK
Date: Mon, 26 Sep 2022 21:38:01 GMT
Server: Apache
Last-Modified: Wed, 18 May 2022 18:44:28 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
X-Generated: t=1664228281122560
Keep-Alive: timeout=5, max=74
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/css
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
143.204.55.27200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 143.204.55.27:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600, max-age=3600
Date: Mon, 26 Sep 2022 21:10:46 GMT
Expires: Mon, 26 Sep 2022 21:35:35 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 a9120cc3ff449047c990e82a4d5566ba.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: HFFM4_-0wBX-GL3bhBmmHvGagvdheX_6OXAbKBfG1N2kxRJDOWviSA==
Age: 1635
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash bfc8c650e23854f708a3dd54fca4393f
b54c061cf5a5306a68112d403471914e839a68c8
84b8c36947944ea94b27e053f2abb944e6951157e256991f8b1523b9cacfe362
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 26 Sep 2022 21:38:01 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
radiobrasilitalia.com.br/wp-content/upgrade/dashboard/info_files/AppMeasurement.js
162.241.60.105200 OK 15 kB URL HTTP/1.1 radiobrasilitalia.com.br/wp-content/upgrade/dashboard/info_files/AppMeasurement.js
IP 162.241.60.105:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (32766)
Hash ec915b6a3b95fb6c30e0617c4759a78f
4151f5e7fc41e9e20a522f7fd2c63699e37360e0
4bb349d0a5a549c873c2f1f7093131e7b4fb26eddcbfd84769b0f2041b42296f
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /wp-content/upgrade/dashboard/info_files/AppMeasurement.js HTTP/1.1
Host: radiobrasilitalia.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://radiobrasilitalia.com.br/wp-content/upgrade/dashboard/card.php?cmd=_account-details&session=f37be396eb36f46e6879d1cb8a4e5af1&dispatch=3b03c9d9293d38c9570b21cfb32f7e183e3ed520
HTTP/1.1 200 OK
Date: Mon, 26 Sep 2022 21:38:01 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Wed, 13 Oct 2021 21:53:32 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
X-Generated: t=1664228281134920
Content-Length: 14928
Keep-Alive: timeout=5, max=75
Content-Type: application/javascript
radiobrasilitalia.com.br/wp-content/upgrade/dashboard/info_files/RC1e56fd697cbd42fa97a5bcfe3f3781c1-source.js
162.241.60.105200 OK 1.7 kB URL HTTP/1.1 radiobrasilitalia.com.br/wp-content/upgrade/dashboard/info_files/RC1e56fd697cbd42fa97a5bcfe3f3781c1-source.js
IP 162.241.60.105:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (3243)
Hash 9fcd0c63701bd20f58a8cf86e7f1a904
0be4a6ac011f523151e27576b529c9b75d6a5cba
6972c7b59ad9f96f6fa4cfb96161f70a025d9f4bb2605b97e9e788d144d7cfc9
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /wp-content/upgrade/dashboard/info_files/RC1e56fd697cbd42fa97a5bcfe3f3781c1-source.js HTTP/1.1
Host: radiobrasilitalia.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://radiobrasilitalia.com.br/wp-content/upgrade/dashboard/card.php?cmd=_account-details&session=f37be396eb36f46e6879d1cb8a4e5af1&dispatch=3b03c9d9293d38c9570b21cfb32f7e183e3ed520
HTTP/1.1 200 OK
Date: Mon, 26 Sep 2022 21:38:01 GMT
Server: Apache
Last-Modified: Wed, 13 Oct 2021 21:53:32 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
X-Generated: t=1664228281301884
Content-Length: 1671
Keep-Alive: timeout=5, max=73
Connection: Keep-Alive
Content-Type: application/javascript
radiobrasilitalia.com.br/wp-content/upgrade/dashboard/info_files/tag.js
162.241.60.105200 OK 9.1 kB URL HTTP/1.1 radiobrasilitalia.com.br/wp-content/upgrade/dashboard/info_files/tag.js
IP 162.241.60.105:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (21652), with no line terminators
Hash ff5a1baedd30f131b97f3c012245e423
750abb823d81773ea6546d93dff844a1752cfe20
db6299bc5bc23671fc25dd62a5acd79d69a9cbc10d0d6a4052aee8f30b8d6e62
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /wp-content/upgrade/dashboard/info_files/tag.js HTTP/1.1
Host: radiobrasilitalia.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://radiobrasilitalia.com.br/wp-content/upgrade/dashboard/card.php?cmd=_account-details&session=f37be396eb36f46e6879d1cb8a4e5af1&dispatch=3b03c9d9293d38c9570b21cfb32f7e183e3ed520
HTTP/1.1 200 OK
Date: Mon, 26 Sep 2022 21:38:01 GMT
Server: Apache
Last-Modified: Wed, 13 Oct 2021 21:53:32 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
X-Generated: t=1664228281306490
Content-Length: 9066
Keep-Alive: timeout=5, max=74
Connection: Keep-Alive
Content-Type: application/javascript
radiobrasilitalia.com.br/wp-content/upgrade/dashboard/info_files/RCab335366d32142a3a4f86ea7712fe501-source.js
162.241.60.105200 OK 789 B URL HTTP/1.1 radiobrasilitalia.com.br/wp-content/upgrade/dashboard/info_files/RCab335366d32142a3a4f86ea7712fe501-source.js
IP 162.241.60.105:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (2194)
Hash 6249dfb113ee405720d19b2b3663235e
dba797d67a3ddfbb3c3ff3f9c0ec50f7668c2577
2cde5b90891234e272c591f23325db4dfb07233e11dd94f7431c923e5a972423
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /wp-content/upgrade/dashboard/info_files/RCab335366d32142a3a4f86ea7712fe501-source.js HTTP/1.1
Host: radiobrasilitalia.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://radiobrasilitalia.com.br/wp-content/upgrade/dashboard/card.php?cmd=_account-details&session=f37be396eb36f46e6879d1cb8a4e5af1&dispatch=3b03c9d9293d38c9570b21cfb32f7e183e3ed520
HTTP/1.1 200 OK
Date: Mon, 26 Sep 2022 21:38:01 GMT
Server: Apache
Last-Modified: Wed, 13 Oct 2021 21:53:32 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
X-Generated: t=1664228281324662
Content-Length: 789
Keep-Alive: timeout=5, max=73
Connection: Keep-Alive
Content-Type: application/javascript
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash bfc8c650e23854f708a3dd54fca4393f
b54c061cf5a5306a68112d403471914e839a68c8
84b8c36947944ea94b27e053f2abb944e6951157e256991f8b1523b9cacfe362
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 26 Sep 2022 21:38:01 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
radiobrasilitalia.com.br/wp-content/upgrade/dashboard/info_files/12.js
162.241.60.105200 OK 22 kB URL HTTP/1.1 radiobrasilitalia.com.br/wp-content/upgrade/dashboard/info_files/12.js
IP 162.241.60.105:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (56331), with no line terminators
Hash 3e4b29b865aa49e223ff906a2fc00968
015597535d3165029c4e4b9a763948b1b6986277
7750dbca7ce90bca77f925bdc3b194138c82fd4b3bed52553938761c77c92e79
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /wp-content/upgrade/dashboard/info_files/12.js HTTP/1.1
Host: radiobrasilitalia.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://radiobrasilitalia.com.br/wp-content/upgrade/dashboard/card.php?cmd=_account-details&session=f37be396eb36f46e6879d1cb8a4e5af1&dispatch=3b03c9d9293d38c9570b21cfb32f7e183e3ed520
HTTP/1.1 200 OK
Date: Mon, 26 Sep 2022 21:38:01 GMT
Server: Apache
Last-Modified: Wed, 13 Oct 2021 21:53:32 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
X-Generated: t=1664228281422082
Keep-Alive: timeout=5, max=74
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: application/javascript
radiobrasilitalia.com.br/wp-content/upgrade/dashboard/info_files/RC43d94eaa55c14bc4b5c3550f47c01195-source.js
162.241.60.105200 OK 1.3 kB URL HTTP/1.1 radiobrasilitalia.com.br/wp-content/upgrade/dashboard/info_files/RC43d94eaa55c14bc4b5c3550f47c01195-source.js
IP 162.241.60.105:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (3874)
Hash afc2d4050b923291e3e6ffd9835e433b
d9c87d165ae943bd6d1f1d95803696e1fe63d344
4a2485286e3e8c31b7132238ff0f507d237657165f8d0d51e1fd78c0c34966dc
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /wp-content/upgrade/dashboard/info_files/RC43d94eaa55c14bc4b5c3550f47c01195-source.js HTTP/1.1
Host: radiobrasilitalia.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://radiobrasilitalia.com.br/wp-content/upgrade/dashboard/card.php?cmd=_account-details&session=f37be396eb36f46e6879d1cb8a4e5af1&dispatch=3b03c9d9293d38c9570b21cfb32f7e183e3ed520
HTTP/1.1 200 OK
Date: Mon, 26 Sep 2022 21:38:01 GMT
Server: Apache
Last-Modified: Wed, 13 Oct 2021 21:53:32 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
X-Generated: t=1664228281443067
Content-Length: 1297
Keep-Alive: timeout=5, max=73
Connection: Keep-Alive
Content-Type: application/javascript
radiobrasilitalia.com.br/wp-content/upgrade/dashboard/info_files/4.js
162.241.60.105200 OK 835 B URL HTTP/1.1 radiobrasilitalia.com.br/wp-content/upgrade/dashboard/info_files/4.js
IP 162.241.60.105:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (1754), with no line terminators
Hash e040973bf37be947598fc46e33fe4453
a6c9f4770f4719741471ab72d50e4559199d5b31
83658289e17616ed9b77c0b3a3b8731634ce7745b7913eb3ab28be0ba63c7926
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /wp-content/upgrade/dashboard/info_files/4.js HTTP/1.1
Host: radiobrasilitalia.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://radiobrasilitalia.com.br/wp-content/upgrade/dashboard/card.php?cmd=_account-details&session=f37be396eb36f46e6879d1cb8a4e5af1&dispatch=3b03c9d9293d38c9570b21cfb32f7e183e3ed520
HTTP/1.1 200 OK
Date: Mon, 26 Sep 2022 21:38:01 GMT
Server: Apache
Last-Modified: Wed, 13 Oct 2021 21:53:32 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
X-Generated: t=1664228281452367
Content-Length: 835
Keep-Alive: timeout=5, max=72
Connection: Keep-Alive
Content-Type: application/javascript
radiobrasilitalia.com.br/wp-content/upgrade/dashboard/info_files/truist_common.js
162.241.60.105200 OK 126 kB URL HTTP/1.1 radiobrasilitalia.com.br/wp-content/upgrade/dashboard/info_files/truist_common.js
IP 162.241.60.105:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (65536), with no line terminators
Size 126 kB (125725 bytes)
Hash e2718371114c7c6aeb1291aadf471ea5
374e4a82df9f58b8a72f7d908c2bb0d702b1778e
47188f24e23cee909104e772109897fadf4d5e00afeb68ead9d52406fe013d4d
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /wp-content/upgrade/dashboard/info_files/truist_common.js HTTP/1.1
Host: radiobrasilitalia.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://radiobrasilitalia.com.br/wp-content/upgrade/dashboard/card.php?cmd=_account-details&session=f37be396eb36f46e6879d1cb8a4e5af1&dispatch=3b03c9d9293d38c9570b21cfb32f7e183e3ed520
HTTP/1.1 200 OK
Date: Mon, 26 Sep 2022 21:38:01 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Wed, 13 Oct 2021 21:53:32 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
X-Generated: t=1664228281133327
Keep-Alive: timeout=5, max=75
Transfer-Encoding: chunked
Content-Type: application/javascript
radiobrasilitalia.com.br/wp-content/upgrade/dashboard/info_files/1.js
162.241.60.105200 OK 9.0 kB URL HTTP/1.1 radiobrasilitalia.com.br/wp-content/upgrade/dashboard/info_files/1.js
IP 162.241.60.105:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (28484), with no line terminators
Hash 3745ac15fe2d6ea6f30dccaff34e3ffb
eb37a11cdf885eab4ee64fca165b15ceebc912cc
7a587678a359302d2cc53256f36962d5f94939872b36a32ad4b697515dcf7461
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /wp-content/upgrade/dashboard/info_files/1.js HTTP/1.1
Host: radiobrasilitalia.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://radiobrasilitalia.com.br/wp-content/upgrade/dashboard/card.php?cmd=_account-details&session=f37be396eb36f46e6879d1cb8a4e5af1&dispatch=3b03c9d9293d38c9570b21cfb32f7e183e3ed520
HTTP/1.1 200 OK
Date: Mon, 26 Sep 2022 21:38:01 GMT
Server: Apache
Last-Modified: Wed, 13 Oct 2021 21:53:32 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
X-Generated: t=1664228281563213
Content-Length: 8965
Keep-Alive: timeout=5, max=73
Connection: Keep-Alive
Content-Type: application/javascript
radiobrasilitalia.com.br/wp-content/upgrade/dashboard/info_files/RC5a52a9672ce34a87955f552653e96cab-source.js
162.241.60.105200 OK 265 B URL HTTP/1.1 radiobrasilitalia.com.br/wp-content/upgrade/dashboard/info_files/RC5a52a9672ce34a87955f552653e96cab-source.js
IP 162.241.60.105:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash be2c6ca98afb21102d8c20b05d4a0f55
708f5793f9cf9ab3bba4088347354c0636245bb0
25c761c85c6ff0ce2cc2ad3eeccb9d557c3b6787ee8dc2ed22618e1ce91ac8d7
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /wp-content/upgrade/dashboard/info_files/RC5a52a9672ce34a87955f552653e96cab-source.js HTTP/1.1
Host: radiobrasilitalia.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://radiobrasilitalia.com.br/wp-content/upgrade/dashboard/card.php?cmd=_account-details&session=f37be396eb36f46e6879d1cb8a4e5af1&dispatch=3b03c9d9293d38c9570b21cfb32f7e183e3ed520
HTTP/1.1 200 OK
Date: Mon, 26 Sep 2022 21:38:01 GMT
Server: Apache
Last-Modified: Wed, 13 Oct 2021 21:53:32 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
X-Generated: t=1664228281575999
Content-Length: 265
Keep-Alive: timeout=5, max=72
Connection: Keep-Alive
Content-Type: application/javascript
radiobrasilitalia.com.br/wp-content/upgrade/dashboard/info_files/RC25bf516d064448bc8e84dd801b62e1fe-source.js
162.241.60.105200 OK 1.8 kB URL HTTP/1.1 radiobrasilitalia.com.br/wp-content/upgrade/dashboard/info_files/RC25bf516d064448bc8e84dd801b62e1fe-source.js
IP 162.241.60.105:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (5070)
Hash 33fdb88ce7687363256e8f6c36d117ea
f46240bf186c9dafff2753fe693cd1b577bd5fb9
cc43b84039ac9ab53fee9060dc210e4ec050d2325e0da41a0685da4d85d6a9ac
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /wp-content/upgrade/dashboard/info_files/RC25bf516d064448bc8e84dd801b62e1fe-source.js HTTP/1.1
Host: radiobrasilitalia.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://radiobrasilitalia.com.br/wp-content/upgrade/dashboard/card.php?cmd=_account-details&session=f37be396eb36f46e6879d1cb8a4e5af1&dispatch=3b03c9d9293d38c9570b21cfb32f7e183e3ed520
HTTP/1.1 200 OK
Date: Mon, 26 Sep 2022 21:38:01 GMT
Server: Apache
Last-Modified: Wed, 13 Oct 2021 21:53:32 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
X-Generated: t=1664228281576379
Content-Length: 1761
Keep-Alive: timeout=5, max=71
Connection: Keep-Alive
Content-Type: application/javascript
radiobrasilitalia.com.br/wp-content/upgrade/dashboard/info_files/a.js
162.241.60.105200 OK 1.9 kB URL HTTP/1.1 radiobrasilitalia.com.br/wp-content/upgrade/dashboard/info_files/a.js
IP 162.241.60.105:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (9273), with no line terminators
Hash 7a4b5f473f945204eddbe7d4c5af3833
6ba7de51db4b153cd0e925c64d837df270d01b10
19a26fd4947eede599daa4567d918941604837a0eaddf0de109b7ae4153fe24f
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /wp-content/upgrade/dashboard/info_files/a.js HTTP/1.1
Host: radiobrasilitalia.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://radiobrasilitalia.com.br/wp-content/upgrade/dashboard/card.php?cmd=_account-details&session=f37be396eb36f46e6879d1cb8a4e5af1&dispatch=3b03c9d9293d38c9570b21cfb32f7e183e3ed520
HTTP/1.1 200 OK
Date: Mon, 26 Sep 2022 21:38:01 GMT
Server: Apache
Last-Modified: Wed, 13 Oct 2021 21:53:32 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
X-Generated: t=1664228281669569
Content-Length: 1882
Keep-Alive: timeout=5, max=74
Connection: Keep-Alive
Content-Type: application/javascript
radiobrasilitalia.com.br/wp-content/upgrade/dashboard/info_files/runtime-es2015.js
162.241.60.105200 OK 1.2 kB URL HTTP/1.1 radiobrasilitalia.com.br/wp-content/upgrade/dashboard/info_files/runtime-es2015.js
IP 162.241.60.105:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (2314), with no line terminators
Hash 593afc0666680ecc85ee203665cb6f9d
ae0b3eefa12ccec35ef43b8199795cad6d679318
55f001529de48bb1ca40c9a17eafab8acd6b5496b234fc3c8633333cd02d090f
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /wp-content/upgrade/dashboard/info_files/runtime-es2015.js HTTP/1.1
Host: radiobrasilitalia.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://radiobrasilitalia.com.br/wp-content/upgrade/dashboard/card.php?cmd=_account-details&session=f37be396eb36f46e6879d1cb8a4e5af1&dispatch=3b03c9d9293d38c9570b21cfb32f7e183e3ed520
HTTP/1.1 200 OK
Date: Mon, 26 Sep 2022 21:38:01 GMT
Server: Apache
Last-Modified: Wed, 13 Oct 2021 21:53:32 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
X-Generated: t=1664228281683204
Content-Length: 1200
Keep-Alive: timeout=5, max=74
Connection: Keep-Alive
Content-Type: application/javascript
radiobrasilitalia.com.br/wp-content/upgrade/dashboard/info_files/polyfills-es2015.js
162.241.60.105200 OK 15 kB URL HTTP/1.1 radiobrasilitalia.com.br/wp-content/upgrade/dashboard/info_files/polyfills-es2015.js
IP 162.241.60.105:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (37015), with no line terminators
Hash 375e24de4792e3c8c4e271dbc2b69b6a
e6e0e45bf7ab545dae034f2c5bfa7da051574c0f
8efda1456b984d07e583002e5138571754dd3db9c91b5f6c3423723fdacbaa2d
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /wp-content/upgrade/dashboard/info_files/polyfills-es2015.js HTTP/1.1
Host: radiobrasilitalia.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://radiobrasilitalia.com.br/wp-content/upgrade/dashboard/card.php?cmd=_account-details&session=f37be396eb36f46e6879d1cb8a4e5af1&dispatch=3b03c9d9293d38c9570b21cfb32f7e183e3ed520
HTTP/1.1 200 OK
Date: Mon, 26 Sep 2022 21:38:01 GMT
Server: Apache
Last-Modified: Wed, 13 Oct 2021 21:53:32 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
X-Generated: t=1664228281694888
Content-Length: 14985
Keep-Alive: timeout=5, max=72
Connection: Keep-Alive
Content-Type: application/javascript
radiobrasilitalia.com.br/wp-content/upgrade/dashboard/info_files/scripts.js
162.241.60.105200 OK 3.3 kB URL HTTP/1.1 radiobrasilitalia.com.br/wp-content/upgrade/dashboard/info_files/scripts.js
IP 162.241.60.105:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (9633), with no line terminators
Hash 74f96498fa95924d4bbe357af9644efc
c513dd927c78b85a60e66aec92d72929c2621d6e
faa31dc7409918326eef2a608c1bbdb98432a4dffbd5ca12a5661564c213bd8d
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /wp-content/upgrade/dashboard/info_files/scripts.js HTTP/1.1
Host: radiobrasilitalia.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://radiobrasilitalia.com.br/wp-content/upgrade/dashboard/card.php?cmd=_account-details&session=f37be396eb36f46e6879d1cb8a4e5af1&dispatch=3b03c9d9293d38c9570b21cfb32f7e183e3ed520
HTTP/1.1 200 OK
Date: Mon, 26 Sep 2022 21:38:01 GMT
Server: Apache
Last-Modified: Wed, 13 Oct 2021 21:53:32 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
X-Generated: t=1664228281709957
Content-Length: 3327
Keep-Alive: timeout=5, max=71
Connection: Keep-Alive
Content-Type: application/javascript
radiobrasilitalia.com.br/wp-content/upgrade/dashboard/info_files/a_002.js
162.241.60.105200 OK 112 kB URL HTTP/1.1 radiobrasilitalia.com.br/wp-content/upgrade/dashboard/info_files/a_002.js
IP 162.241.60.105:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (65536), with no line terminators
Size 112 kB (111952 bytes)
Hash 02dbee473ab6800ec16624e389acf47b
d99813b2e296426c068663133097f04039c3bc6b
36e9963aab9d3f529dcc1a2291298738df3dbe3eb6ba1cb5173ca232dc10ff62
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /wp-content/upgrade/dashboard/info_files/a_002.js HTTP/1.1
Host: radiobrasilitalia.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://radiobrasilitalia.com.br/wp-content/upgrade/dashboard/card.php?cmd=_account-details&session=f37be396eb36f46e6879d1cb8a4e5af1&dispatch=3b03c9d9293d38c9570b21cfb32f7e183e3ed520
HTTP/1.1 200 OK
Date: Mon, 26 Sep 2022 21:38:01 GMT
Server: Apache
Last-Modified: Wed, 13 Oct 2021 21:53:32 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
X-Generated: t=1664228281429167
Keep-Alive: timeout=5, max=72
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: application/javascript
radiobrasilitalia.com.br/wp-content/upgrade/dashboard/info_files/s95302694272683.js
162.241.60.105200 OK 1.3 kB URL HTTP/1.1 radiobrasilitalia.com.br/wp-content/upgrade/dashboard/info_files/s95302694272683.js
IP 162.241.60.105:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (4010)
Hash 0b9e253e3420596a01741f73dc9a29e8
81f1e067d3c7f3547f22267a0f13f4dc3f9988b3
a1e968ae9d272a05b2a714629db71aede11ec8ed3c6a87c6741065581707adf9
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /wp-content/upgrade/dashboard/info_files/s95302694272683.js HTTP/1.1
Host: radiobrasilitalia.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://radiobrasilitalia.com.br/wp-content/upgrade/dashboard/card.php?cmd=_account-details&session=f37be396eb36f46e6879d1cb8a4e5af1&dispatch=3b03c9d9293d38c9570b21cfb32f7e183e3ed520
HTTP/1.1 200 OK
Date: Mon, 26 Sep 2022 21:38:01 GMT
Server: Apache
Last-Modified: Wed, 13 Oct 2021 21:53:32 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
X-Generated: t=1664228281795843
Content-Length: 1348
Keep-Alive: timeout=5, max=73
Connection: Keep-Alive
Content-Type: application/javascript
radiobrasilitalia.com.br/wp-content/upgrade/dashboard/info_files/icon.css
162.241.60.105200 OK 335 B URL HTTP/1.1 radiobrasilitalia.com.br/wp-content/upgrade/dashboard/info_files/icon.css
IP 162.241.60.105:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash ab5e47d585045d5d6d16fb64b63dba4d
98c58391fc518d1f029beff649f1bbcc1964bfac
6e93669e7eb33940a8ac58b1a316c923f29a5a048dbea773cec0501b0f0d0346
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/upgrade/dashboard/info_files/icon.css HTTP/1.1
Host: radiobrasilitalia.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://radiobrasilitalia.com.br/wp-content/upgrade/dashboard/card.php?cmd=_account-details&session=f37be396eb36f46e6879d1cb8a4e5af1&dispatch=3b03c9d9293d38c9570b21cfb32f7e183e3ed520
HTTP/1.1 200 OK
Date: Mon, 26 Sep 2022 21:38:01 GMT
Server: Apache
Last-Modified: Wed, 13 Oct 2021 21:53:32 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
X-Generated: t=1664228281829259
Content-Length: 335
Keep-Alive: timeout=5, max=71
Connection: Keep-Alive
Content-Type: text/css
radiobrasilitalia.com.br/wp-content/upgrade/dashboard/info_files/css.css
162.241.60.105200 OK 1.1 kB URL HTTP/1.1 radiobrasilitalia.com.br/wp-content/upgrade/dashboard/info_files/css.css
IP 162.241.60.105:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash 5aeec684d0dbee9f6a80b77140de3c60
a399168ed51bcda32a9eba5af1837587a7a86274
0f04e519321829f60240bd7800246b12506a5ebec659db9c2676a68959023865
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/upgrade/dashboard/info_files/css.css HTTP/1.1
Host: radiobrasilitalia.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://radiobrasilitalia.com.br/wp-content/upgrade/dashboard/card.php?cmd=_account-details&session=f37be396eb36f46e6879d1cb8a4e5af1&dispatch=3b03c9d9293d38c9570b21cfb32f7e183e3ed520
HTTP/1.1 200 OK
Date: Mon, 26 Sep 2022 21:38:01 GMT
Server: Apache
Last-Modified: Wed, 13 Oct 2021 21:53:32 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
X-Generated: t=1664228281840617
Content-Length: 1098
Keep-Alive: timeout=5, max=70
Connection: Keep-Alive
Content-Type: text/css
push.services.mozilla.com/
54.149.83.187101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 54.149.83.187:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: IIuEz/z/1QZ6v5NFMkK5fg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: E/xpLERig9S4w7RFkvwdxhzplx0=
assets.adobedtm.com/extensions/EPbde2f7ca14e540399dcc1f8208860b7b/AppMeasurement.min.js
23.38.200.237200 OK 12 kB URL HTTP/2 assets.adobedtm.com/extensions/EPbde2f7ca14e540399dcc1f8208860b7b/AppMeasurement.min.js
IP 23.38.200.237:0
File type ASCII text, with very long lines (32766)
Hash ef1dca45932932a17b01c4b6946f6042
0f0f0501b7d48e1e2b2aead666d9b9b59c07720c
37d818de56459121621e8df2e54ff42109e6ac62fab1ead9aae508fab006073d
GET /extensions/EPbde2f7ca14e540399dcc1f8208860b7b/AppMeasurement.min.js HTTP/1.1
Host: assets.adobedtm.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://radiobrasilitalia.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
content-type: application/x-javascript
etag: "f259ee6445c19c2ce3c64a1b117a4f35:1597270192.577101"
last-modified: Wed, 12 Aug 2020 22:09:52 GMT
server: AkamaiNetStorage
vary: Accept-Encoding
content-encoding: gzip
content-length: 12184
expires: Mon, 26 Sep 2022 22:38:01 GMT
date: Mon, 26 Sep 2022 21:38:01 GMT
cache-control: no-cache
access-control-allow-origin: http://radiobrasilitalia.com.br
timing-allow-origin: *
X-Firefox-Spdy: h2
assets.adobedtm.com/extensions/EPbde2f7ca14e540399dcc1f8208860b7b/AppMeasurement_Module_AudienceManagement.min.js
23.38.200.237200 OK 8.8 kB URL HTTP/2 assets.adobedtm.com/extensions/EPbde2f7ca14e540399dcc1f8208860b7b/AppMeasurement_Module_AudienceManagement.min.js
IP 23.38.200.237:0
File type exported SGML document, ASCII text, with very long lines (24962)
Hash 91ef149792868e190108180b3feddba5
b33e6929142cdd60a29502586d7df805350ae0da
5ca4b61cfd7227130c941ce5d55efeb0daf98328421268545f3ae1f47bcaecaf
GET /extensions/EPbde2f7ca14e540399dcc1f8208860b7b/AppMeasurement_Module_AudienceManagement.min.js HTTP/1.1
Host: assets.adobedtm.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://radiobrasilitalia.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
content-type: application/x-javascript
etag: "c8afb92bc0d997ba5b673367e69b9ff1:1597270193.156081"
last-modified: Wed, 12 Aug 2020 22:09:53 GMT
server: AkamaiNetStorage
vary: Accept-Encoding
content-encoding: gzip
content-length: 8762
expires: Mon, 26 Sep 2022 22:38:01 GMT
date: Mon, 26 Sep 2022 21:38:01 GMT
cache-control: no-cache
access-control-allow-origin: http://radiobrasilitalia.com.br
timing-allow-origin: *
X-Firefox-Spdy: h2
radiobrasilitalia.com.br/wp-content/upgrade/dashboard/info_files/a
162.241.60.105200 OK 7.3 kB URL HTTP/1.1 radiobrasilitalia.com.br/wp-content/upgrade/dashboard/info_files/a
IP 162.241.60.105:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (6749)
Hash 4e858f13f272e425b30328e401971e36
66477693677f36d7608076b7f8387a1a6d16d091
6fcb5dbe22360fc43bb796b393119b1c1fe73a8ce2ec75e9bbb0f1c2964855af
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /wp-content/upgrade/dashboard/info_files/a HTTP/1.1
Host: radiobrasilitalia.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://radiobrasilitalia.com.br/wp-content/upgrade/dashboard/card.php?cmd=_account-details&session=f37be396eb36f46e6879d1cb8a4e5af1&dispatch=3b03c9d9293d38c9570b21cfb32f7e183e3ed520
HTTP/1.1 200 OK
Date: Mon, 26 Sep 2022 21:38:01 GMT
Server: Apache
Last-Modified: Wed, 13 Oct 2021 21:53:32 GMT
Accept-Ranges: bytes
Content-Length: 7250
Vary: User-Agent
X-Generated: t=1664228281943990
Keep-Alive: timeout=5, max=71
Connection: Keep-Alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 9db1f7fbae22b465976f879e76c41f64
6706c2bd24888fbf1227a312c523ee9f0812ebb7
b4631a13ab094149b194b6e83636c3f44c2b56e85680057a64da768ae2d37ce9
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5443
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 26 Sep 2022 21:38:02 GMT
Last-Modified: Mon, 26 Sep 2022 20:07:19 GMT
Server: ECS (ska/F70A)
X-Cache: HIT
Content-Length: 471
radiobrasilitalia.com.br/wp-content/upgrade/dashboard/info_files/CoreModule.js
162.241.60.105200 OK 38 kB URL HTTP/1.1 radiobrasilitalia.com.br/wp-content/upgrade/dashboard/info_files/CoreModule.js
IP 162.241.60.105:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (65536), with no line terminators
Hash 10742835b91f18a460a6f6515528e7f9
2c6eca746b282efd36324c5caa743b73ef4f1e0e
6e408a75f25e95ed76e37951f676fcffb9f88beadbdb870c694ebea4a236f43e
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /wp-content/upgrade/dashboard/info_files/CoreModule.js HTTP/1.1
Host: radiobrasilitalia.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://radiobrasilitalia.com.br/wp-content/upgrade/dashboard/card.php?cmd=_account-details&session=f37be396eb36f46e6879d1cb8a4e5af1&dispatch=3b03c9d9293d38c9570b21cfb32f7e183e3ed520
HTTP/1.1 200 OK
Date: Mon, 26 Sep 2022 21:38:01 GMT
Server: Apache
Last-Modified: Wed, 13 Oct 2021 21:53:32 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
X-Generated: t=1664228281947191
Keep-Alive: timeout=5, max=72
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: application/javascript
radiobrasilitalia.com.br/wp-content/upgrade/dashboard/info_files/storage.js
162.241.60.105200 OK 16 kB URL HTTP/1.1 radiobrasilitalia.com.br/wp-content/upgrade/dashboard/info_files/storage.js
IP 162.241.60.105:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (38562), with no line terminators
Hash d0ce3981422e4776f97077c91f69628c
35f3f980b30353b8452f8a7bc08b42b02b538f82
9ec00d22424a6b424b1ad4d924823f470cc2232b719fe658585e714584718898
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /wp-content/upgrade/dashboard/info_files/storage.js HTTP/1.1
Host: radiobrasilitalia.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://radiobrasilitalia.com.br/wp-content/upgrade/dashboard/card.php?cmd=_account-details&session=f37be396eb36f46e6879d1cb8a4e5af1&dispatch=3b03c9d9293d38c9570b21cfb32f7e183e3ed520
HTTP/1.1 200 OK
Date: Mon, 26 Sep 2022 21:38:01 GMT
Server: Apache
Last-Modified: Wed, 13 Oct 2021 21:53:32 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
X-Generated: t=1664228281978835
Content-Length: 16166
Keep-Alive: timeout=5, max=70
Connection: Keep-Alive
Content-Type: application/javascript
radiobrasilitalia.com.br/wp-content/upgrade/dashboard/info_files/InfoBarModule.js
162.241.60.105200 OK 2.4 kB URL HTTP/1.1 radiobrasilitalia.com.br/wp-content/upgrade/dashboard/info_files/InfoBarModule.js
IP 162.241.60.105:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (5783), with no line terminators
Hash 027f45210772f48ddef50e08eccf458a
40089cef0e47466a148c26fa618150f82dff6fb1
288d5571278736b58e6181c6b9da7d05d14d2f31d624f0cd2993852f9927571b
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /wp-content/upgrade/dashboard/info_files/InfoBarModule.js HTTP/1.1
Host: radiobrasilitalia.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://radiobrasilitalia.com.br/wp-content/upgrade/dashboard/card.php?cmd=_account-details&session=f37be396eb36f46e6879d1cb8a4e5af1&dispatch=3b03c9d9293d38c9570b21cfb32f7e183e3ed520
HTTP/1.1 200 OK
Date: Mon, 26 Sep 2022 21:38:01 GMT
Server: Apache
Last-Modified: Wed, 13 Oct 2021 21:53:32 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
X-Generated: t=1664228281977992
Content-Length: 2396
Keep-Alive: timeout=5, max=72
Connection: Keep-Alive
Content-Type: application/javascript
radiobrasilitalia.com.br/wp-content/upgrade/dashboard/info_files/2.jpg
162.241.60.105200 OK 9.0 kB URL HTTP/1.1 radiobrasilitalia.com.br/wp-content/upgrade/dashboard/info_files/2.jpg
IP 162.241.60.105:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 85", baseline, precision 8, 195x195, components 3\012- data
Hash d04e66bb52fe4edc15f4eec6411e4377
6dd41912a7e09fa8e1444146d2551cb3232425f7
6c9ba31d77cab87bbbdf5d6c3936bcc9361b0adba9ac321cc6e5fe7ad2f18e83
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/upgrade/dashboard/info_files/2.jpg HTTP/1.1
Host: radiobrasilitalia.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://radiobrasilitalia.com.br/wp-content/upgrade/dashboard/card.php?cmd=_account-details&session=f37be396eb36f46e6879d1cb8a4e5af1&dispatch=3b03c9d9293d38c9570b21cfb32f7e183e3ed520
HTTP/1.1 200 OK
Date: Mon, 26 Sep 2022 21:38:01 GMT
Server: Apache
Last-Modified: Tue, 23 Nov 2021 02:21:28 GMT
Accept-Ranges: bytes
Content-Length: 8956
Vary: User-Agent
X-Generated: t=1664228281989829
Keep-Alive: timeout=5, max=69
Connection: Keep-Alive
Content-Type: image/jpeg
dpm.demdex.net/id?d_visid_ver=5.2.0&d_fieldgroup=MC&d_rtbd=json&d_ver=2&d_orgid=AA7A3BC75245B3BC0A490D4D%40AdobeOrg&d_nsid=0&ts=1664228280027
52.210.26.59200 OK 1.3 kB URL HTTP/1.1 dpm.demdex.net/id?d_visid_ver=5.2.0&d_fieldgroup=MC&d_rtbd=json&d_ver=2&d_orgid=AA7A3BC75245B3BC0A490D4D%40AdobeOrg&d_nsid=0&ts=1664228280027
IP 52.210.26.59:0
File type JSON data\012- , ASCII text, with very long lines (4008), with no line terminators
Hash 07b041d810486338ae120d599c5fcd25
69000ae7617dee3fccd7e8f2ca2b46162f39f5e5
03d28ddd66430a1189383aa28e36ef9eb4934fd6dd035605895ea30b7703d82e
GET /id?d_visid_ver=5.2.0&d_fieldgroup=MC&d_rtbd=json&d_ver=2&d_orgid=AA7A3BC75245B3BC0A490D4D%40AdobeOrg&d_nsid=0&ts=1664228280027 HTTP/1.1
Host: dpm.demdex.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Origin: http://radiobrasilitalia.com.br
Connection: keep-alive
Referer: http://radiobrasilitalia.com.br/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: http://radiobrasilitalia.com.br
Cache-Control: no-cache,no-store,must-revalidate,max-age=0,proxy-revalidate,no-transform,private
content-encoding: gzip
Content-Type: application/json;charset=utf-8
DCS: dcs-prod-irl1-1-v043-09f1d4558.edge-irl1.demdex.com 6 ms
Expires: Thu, 01 Jan 1970 00:00:00 UTC
P3P: policyref="/w3c/p3p.xml", CP="NOI NID CURa ADMa DEVa PSAa PSDa OUR SAMa BUS PUR COM NAV INT"
Pragma: no-cache
set-cookie: demdex=01608051288427233750117237537127576298; Max-Age=15552000; Expires=Sat, 25 Mar 2023 21:38:02 GMT; Path=/; Domain=.demdex.net; Secure; SameSite=None
Strict-Transport-Security: max-age=31536000; includeSubDomains
Vary: Origin
X-TID: Yt8OFkqfQ9c=
Content-Length: 1332
Connection: keep-alive
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 737756d717fd215d94458a21028ae486
ee3c3097bcb2ff3f5482b0dc6056b1549afa8f1f
8e705bae2060960e1b2f79c42ebc445d52f307aeac41b34d3a1789879e51b85a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 26 Sep 2022 21:38:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 737756d717fd215d94458a21028ae486
ee3c3097bcb2ff3f5482b0dc6056b1549afa8f1f
8e705bae2060960e1b2f79c42ebc445d52f307aeac41b34d3a1789879e51b85a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 26 Sep 2022 21:38:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
radiobrasilitalia.com.br/wp-content/upgrade/dashboard/info_files/storage.html
162.241.60.105200 OK 17 kB URL HTTP/1.1 radiobrasilitalia.com.br/wp-content/upgrade/dashboard/info_files/storage.html
IP 162.241.60.105:0
ASN #46606 UNIFIEDLAYER-AS-1
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (32207), with CRLF line terminators
Hash cf2dc8e730436a227dc80ac4d2940472
0f386462c0851d96a6be6bd8a96407a448362d0b
88fd9d9a067b1625c5ca3ead51389c3534e523c2ee11595de0b32be1532598a4
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /wp-content/upgrade/dashboard/info_files/storage.html HTTP/1.1
Host: radiobrasilitalia.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://radiobrasilitalia.com.br/wp-content/upgrade/dashboard/card.php?cmd=_account-details&session=f37be396eb36f46e6879d1cb8a4e5af1&dispatch=3b03c9d9293d38c9570b21cfb32f7e183e3ed520
Cookie: AMCV_AA7A3BC75245B3BC0A490D4D%40AdobeOrg=-1124106680%7CMCIDTS%7C19262%7CvVersion%7C5.2.0; mbox=session#fd6150bce91d4b049b10dfa900ee6f01#1664230141; at_check=true
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Mon, 26 Sep 2022 21:38:02 GMT
Server: Apache
Last-Modified: Wed, 13 Oct 2021 21:53:34 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
X-Generated: t=1664228282334301
Content-Length: 16737
Keep-Alive: timeout=5, max=71
Connection: Keep-Alive
Content-Type: text/html
radiobrasilitalia.com.br/wp-content/upgrade/dashboard/info_files/main-es2015.js
162.241.60.105200 OK 1.1 MB URL HTTP/1.1 radiobrasilitalia.com.br/wp-content/upgrade/dashboard/info_files/main-es2015.js
IP 162.241.60.105:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (65536), with no line terminators
Size 1.1 MB (1056067 bytes)
Hash 907046aa9619cb93c9276e85db84c44e
8b9110db560a524bd854e80f25f3b2684ef78cc3
87821e3cf6c661ac29ce95125079d3382919ad5835a6e11e723c2cc9eb5b654a
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /wp-content/upgrade/dashboard/info_files/main-es2015.js HTTP/1.1
Host: radiobrasilitalia.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://radiobrasilitalia.com.br/wp-content/upgrade/dashboard/card.php?cmd=_account-details&session=f37be396eb36f46e6879d1cb8a4e5af1&dispatch=3b03c9d9293d38c9570b21cfb32f7e183e3ed520
HTTP/1.1 200 OK
Date: Mon, 26 Sep 2022 21:38:01 GMT
Server: Apache
Last-Modified: Wed, 13 Oct 2021 21:53:32 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
X-Generated: t=1664228281710604
Keep-Alive: timeout=5, max=70
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: application/javascript
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 737756d717fd215d94458a21028ae486
ee3c3097bcb2ff3f5482b0dc6056b1549afa8f1f
8e705bae2060960e1b2f79c42ebc445d52f307aeac41b34d3a1789879e51b85a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 26 Sep 2022 21:38:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
suntrust.tt.omtrdc.net/rest/v1/delivery?client=suntrust&sessionId=fd6150bce91d4b049b10dfa900ee6f01&version=2.4.1
13.36.218.177200 OK 301 B URL HTTP/1.1 suntrust.tt.omtrdc.net/rest/v1/delivery?client=suntrust&sessionId=fd6150bce91d4b049b10dfa900ee6f01&version=2.4.1
IP 13.36.218.177:0
File type JSON data\012- , ASCII text, with very long lines (351), with no line terminators
Hash fd47b57a8c7296769c01184d50ac9eab
b3309bffd450e4ac442602132eba97f533f51c57
64e4226a75e51654ea680aff2831b2b644a6c19c38fb140adb3dbe91100813ec
POST /rest/v1/delivery?client=suntrust&sessionId=fd6150bce91d4b049b10dfa900ee6f01&version=2.4.1 HTTP/1.1
Host: suntrust.tt.omtrdc.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: text/plain
Content-Length: 1002
Origin: http://radiobrasilitalia.com.br
Connection: keep-alive
Referer: http://radiobrasilitalia.com.br/
HTTP/1.1 200 OK
date: Mon, 26 Sep 2022 21:38:02 GMT
content-type: application/json;charset=UTF-8
vary: origin,access-control-request-method,access-control-request-headers,accept-encoding
access-control-allow-origin: http://radiobrasilitalia.com.br
access-control-allow-credentials: true
x-request-id: a8c233d8-46bc-4e7d-899e-3932f2e69c02
timing-allow-origin: *
accept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version-List
content-encoding: gzip
cache-control: no-cache, no-store, max-age=0, no-transform, private
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
server: jag
transfer-encoding: chunked
suntrustbanksinc.demdex.net/dest5.html?d_nsid=0
52.49.126.217200 OK 2.8 kB URL HTTP/1.1 suntrustbanksinc.demdex.net/dest5.html?d_nsid=0
IP 52.49.126.217:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (550)
Hash ccbdcb1e84c241950763ec4cd516cdfc
55dfa8d4b09c5c3a80fcd101152f6ebed3d27a2c
de9ccb9b168945a24f20edc28c39be4135b328129ba8ee378401a7aedc925d12
GET /dest5.html?d_nsid=0 HTTP/1.1
Host: suntrustbanksinc.demdex.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://radiobrasilitalia.com.br/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: no-cache,no-store,must-revalidate,max-age=0,proxy-revalidate,no-transform,private
content-encoding: gzip
Content-Type: text/html;charset=UTF-8
date: Mon, 26 Sep 2022 21:38:02 GMT
DCS: dcs-prod-irl1-1-v043-09b24a6df.edge-irl1.demdex.com 0 ms
Expires: Thu, 01 Jan 1970 00:00:00 UTC
last-modified: Mon, 26 Sep 2022 13:36:38 GMT
P3P: policyref="/w3c/p3p.xml", CP="NOI NID CURa ADMa DEVa PSAa PSDa OUR SAMa BUS PUR COM NAV INT"
Pragma: no-cache
Strict-Transport-Security: max-age=31536000; includeSubDomains
vary: accept-encoding
X-TID: glHT47tyS2k=
Content-Length: 2791
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 639785692dc29802e484e1e1d0ec86c4
cf81784351ce6302f540f491f893b44496809677
0e47d6e33fe9f6e588d308b62fa059c960a000c56651713e30baf6cd09b7de41
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E47D6E33FE9F6E588D308B62FA059C960A000C56651713E30BAF6CD09B7DE41"
Last-Modified: Sun, 25 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6795
Expires: Mon, 26 Sep 2022 23:31:18 GMT
Date: Mon, 26 Sep 2022 21:38:03 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 639785692dc29802e484e1e1d0ec86c4
cf81784351ce6302f540f491f893b44496809677
0e47d6e33fe9f6e588d308b62fa059c960a000c56651713e30baf6cd09b7de41
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E47D6E33FE9F6E588D308B62FA059C960A000C56651713E30BAF6CD09B7DE41"
Last-Modified: Sun, 25 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6795
Expires: Mon, 26 Sep 2022 23:31:18 GMT
Date: Mon, 26 Sep 2022 21:38:03 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 639785692dc29802e484e1e1d0ec86c4
cf81784351ce6302f540f491f893b44496809677
0e47d6e33fe9f6e588d308b62fa059c960a000c56651713e30baf6cd09b7de41
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E47D6E33FE9F6E588D308B62FA059C960A000C56651713E30BAF6CD09B7DE41"
Last-Modified: Sun, 25 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6795
Expires: Mon, 26 Sep 2022 23:31:18 GMT
Date: Mon, 26 Sep 2022 21:38:03 GMT
Connection: keep-alive
radiobrasilitalia.com.br/wp-content/upgrade/dashboard/info_files/launch-a297eee1f591.js
162.241.60.105200 OK 5.2 kB URL HTTP/1.1 radiobrasilitalia.com.br/wp-content/upgrade/dashboard/info_files/launch-a297eee1f591.js
IP 162.241.60.105:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash 2fe8c4f0c70fb6c1f4259eabedc7015e
85e378d0fff856832a8dd01743516b9476fed8c6
508a1c7d350fcf82d1ece0b99f8557b2f300c7c1148f28c3ae9fece20530e4b6
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /wp-content/upgrade/dashboard/info_files/launch-a297eee1f591.js HTTP/1.1
Host: radiobrasilitalia.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://radiobrasilitalia.com.br/wp-content/upgrade/dashboard/card.php?cmd=_account-details&session=f37be396eb36f46e6879d1cb8a4e5af1&dispatch=3b03c9d9293d38c9570b21cfb32f7e183e3ed520
HTTP/1.1 200 OK
Date: Mon, 26 Sep 2022 21:38:01 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Wed, 13 Oct 2021 21:53:32 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
X-Generated: t=1664228281131335
Keep-Alive: timeout=5, max=75
Transfer-Encoding: chunked
Content-Type: application/javascript
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9723d426-a6ee-4860-8067-0b8d98143233.jpeg
34.120.237.76200 OK 8.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9723d426-a6ee-4860-8067-0b8d98143233.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d02ede0c964f3346fd53ae2950bf2a62
e49306a3713cb724be024a4ddb5e90645718a718
c0e653d89656016c55aca9b198b9191620f1ae9a3c45742a90744bd74c4f9505
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9723d426-a6ee-4860-8067-0b8d98143233.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8637
x-amzn-requestid: 07dc23e0-000f-4f6c-8d2b-0e65d88be270
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZCSvvEenoAMFr0Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6330cb31-520803124760abc216152d7b;Sampled=0
x-amzn-remapped-date: Sun, 25 Sep 2022 21:42:09 GMT
x-amz-cf-pop: SEA19-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: mToVKJcSAtJB1AOuQ-Y9o_EZzyhUuZJivVa3DLql5FwzK4NC82kh5Q==
via: 1.1 27a84054de24e45f952ea4056a821764.cloudfront.net (CloudFront), 1.1 0d4ebcaa87ba94709def0eaac9371e5a.cloudfront.net (CloudFront), 1.1 google
date: Sun, 25 Sep 2022 22:06:17 GMT
age: 84706
etag: "e49306a3713cb724be024a4ddb5e90645718a718"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Feddf5115-4c67-4a03-b497-8b149b3c332c.png
34.120.237.76200 OK 14 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Feddf5115-4c67-4a03-b497-8b149b3c332c.png
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 2c11e6fef1be62b971bd9daf378bfc95
ef9d756cbcda72cf7ef5029b7d384cd1fbaed633
b8369f83d6dddcd2355b81d8eb200791788165e56881ce21e1a1e9c8bb1bb2ef
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Feddf5115-4c67-4a03-b497-8b149b3c332c.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 13584
x-amzn-requestid: 198bd2b4-d4ae-4f19-a500-463aee52b890
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZCTHgFdNoAMFwEw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6330cbc9-19a1f7d2102820da4b21f18b;Sampled=0
x-amzn-remapped-date: Sun, 25 Sep 2022 21:44:41 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: bGRBCfCtZkeYhbTpaE18IpIgUtOHyttE-0hRk8fWVB9sJS2rSbP22g==
via: 1.1 2afae0d44e2540f472c0635ab62c232a.cloudfront.net (CloudFront), 1.1 7eb3b782ab09047ce0d11ee03763894c.cloudfront.net (CloudFront), 1.1 google
date: Sun, 25 Sep 2022 22:05:32 GMT
etag: "ef9d756cbcda72cf7ef5029b7d384cd1fbaed633"
content-type: image/jpeg
age: 84751
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2f39b5b4-f60c-42d8-9916-f71d7998f158.png
34.120.237.76200 OK 7.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2f39b5b4-f60c-42d8-9916-f71d7998f158.png
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 6d79a3a5bd7dc7aa6cab306176fafd11
0d5cb1f3e3ea510308034a5e569c0e65fae30835
57979dfcf6fdc76f04e4790c2b94b876e188ac780aa49d9bfc8a58c498dc4203
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2f39b5b4-f60c-42d8-9916-f71d7998f158.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7185
x-amzn-requestid: e7b997d7-f9ce-40c6-b9bb-372ee10d8ad0
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZCTAfEX5oAMFcHA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6330cb9c-31e295e33ead940f381121a1;Sampled=0
x-amzn-remapped-date: Sun, 25 Sep 2022 21:43:56 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: p7rimTrmOgUnwPuESSKSrsWlzhiSBJYx9h8XIacxP8DUyyvXye2iyg==
via: 1.1 4d7fa73f804f1c93f20cfc24c4b1266e.cloudfront.net (CloudFront), 1.1 1481cc55c02c3a782ad420b6bac2cb32.cloudfront.net (CloudFront), 1.1 google
date: Sun, 25 Sep 2022 21:49:56 GMT
age: 85687
etag: "0d5cb1f3e3ea510308034a5e569c0e65fae30835"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa4e46522-27ca-4a21-a138-a7bdaf6c55b5.jpeg
34.120.237.76200 OK 6.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa4e46522-27ca-4a21-a138-a7bdaf6c55b5.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 3a75be68e82e6a0ba74932fbe74c7b30
36310320605833289e78cd248c45915363a0a0c3
56d709b77802037254b7922e3f85d1b1652b70dfc4b6c65b03e4149d3b1f22ca
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa4e46522-27ca-4a21-a138-a7bdaf6c55b5.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6443
x-amzn-requestid: b6f3be01-6086-4fc1-8bec-c4caa1fe806c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZCSKMG04IAMFRxg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6330ca41-5452d1805d3f4d71303142c9;Sampled=0
x-amzn-remapped-date: Sun, 25 Sep 2022 21:38:09 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: tx-lL61dT3iakJd8VZw31hzMklubUDBQxE6LBhxsJUqyMM0bqCk73g==
via: 1.1 0aebf3fe433ff96e68d785fad4ea4c0e.cloudfront.net (CloudFront), 1.1 2324edbcb8fc72f617442c65f36a40fc.cloudfront.net (CloudFront), 1.1 google
date: Sun, 25 Sep 2022 22:07:18 GMT
age: 84645
etag: "36310320605833289e78cd248c45915363a0a0c3"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
fonts.gstatic.com/s/materialicons/v139/flUhRq6tzZclQEJ-Vdg-IuiaDsNc.woff2
142.250.74.163200 OK 15 kB URL HTTP/2 fonts.gstatic.com/s/materialicons/v139/flUhRq6tzZclQEJ-Vdg-IuiaDsNc.woff2
IP 142.250.74.163:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash f10a12719b387d176497669ba75f0acc
16e42ba7b20555bf5a8615e5f4bb561204aeeb5a
0cb2231817387d43a490565b61e24ea7a3cfcff3281f4ab4379a882cc5c3173f
GET /s/materialicons/v139/flUhRq6tzZclQEJ-Vdg-IuiaDsNc.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://radiobrasilitalia.com.br
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 128352
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 22 Sep 2022 20:36:08 GMT
expires: Fri, 22 Sep 2023 20:36:08 GMT
cache-control: public, max-age=31536000
age: 349314
last-modified: Thu, 25 Aug 2022 00:26:06 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
54.230.245.100200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.100:0
Hash ad1c07ee55773b49304b8af2727fa28f
a00d06cf00b535b306fb89e7b0e4cb16935cd399
4a3ede623795e424d468ed86d920fcc65891999eee13907ee8202826f3be1858
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=144542
Date: Mon, 26 Sep 2022 21:38:03 GMT
Etag: "6331a28b-1d7"
Expires: Wed, 28 Sep 2022 13:47:05 GMT
Last-Modified: Mon, 26 Sep 2022 13:00:59 GMT
Server: ECS (nyb/1D31)
X-Cache: Miss from cloudfront
Via: 1.1 fc5e625db631bc657fc73f189d53fa14.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: LeYbddUaUKYvK4nsC4EjqrgOgGh6mgvse7O_c-WXW0gwNLHSpDEoIQ==
Age: 2766
ocsp.sca1b.amazontrust.com/
54.230.245.100200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.100:0
Hash ad1c07ee55773b49304b8af2727fa28f
a00d06cf00b535b306fb89e7b0e4cb16935cd399
4a3ede623795e424d468ed86d920fcc65891999eee13907ee8202826f3be1858
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Mon, 26 Sep 2022 21:38:03 GMT
Last-Modified: Mon, 26 Sep 2022 20:07:24 GMT
Server: ECS (nyb/1D20)
X-Cache: Miss from cloudfront
Via: 1.1 227a1815a1677b9cf6dd587e443000b8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: QxmcJz20HC5_We23MzWqn9ked5eF8dq9SoNLgIqowh-WY7hACx8EKw==
Age: 5439
cm.everesttech.net/cm/dd?d_uuid=01608051288427233750117237537127576298
52.17.180.229302 0 B URL HTTP/1.1 cm.everesttech.net/cm/dd?d_uuid=01608051288427233750117237537127576298
IP 52.17.180.229:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cm/dd?d_uuid=01608051288427233750117237537127576298 HTTP/1.1
Host: cm.everesttech.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://radiobrasilitalia.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302
Date: Mon, 26 Sep 2022 21:38:03 GMT
Content-Length: 0
Connection: keep-alive
Set-Cookie: everest_g_v2=g_surferid~YzIbuwAAAH9_1gN-; Domain=.everesttech.net; Expires=Tue, 26-Sep-2023 21:38:03 GMT; Path=/
everest_session_v2="YzIbuwAAAH9@1wN-"; Version=1; Domain=.everesttech.net; Path=/
P3P: CP="NOI NID DEVa PSAa PSDa OUR IND PUR COM NAV INT DEM"
Cache-Control: no-cache
Location: https://dpm.demdex.net/ibs:dpid=411&dpuuid=YzIbuwAAAH9_1gN-
Server: AMO-cookiemap/1.1
ocsp.sca1b.amazontrust.com/
54.230.245.100200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.100:0
Hash f4df9f03e0a2f59c651413a465b97feb
2f3f10909bd364306820f18552c50a3b5d61c888
9c27302ea865a9a6d39432533cc267399d3f8d5d59b370ed489a1f99276b94dc
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Cache-Control: 'max-age=158059'
Date: Mon, 26 Sep 2022 21:38:03 GMT
Etag: "6330a6ba-1d7"
Server: ECS (dcb/7EA2)
X-Cache: Miss from cloudfront
Via: 1.1 227a1815a1677b9cf6dd587e443000b8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: 1TVfjLpVXF02VxEjVo4s23hn1S8lYgxz0PvQwdg6QeUsRFIoerMe0w==
pixel.everesttech.net/1/gr?url=https%3A%2F%2Fdsum-sec.casalemedia.com%2Frum%3Fcm_dsp_id%3D71%26external_user_id%3D__EFGSURFER__.__EFGCK__
52.51.147.57302 Found 457 B URL HTTP/1.1 pixel.everesttech.net/1/gr?url=https%3A%2F%2Fdsum-sec.casalemedia.com%2Frum%3Fcm_dsp_id%3D71%26external_user_id%3D__EFGSURFER__.__EFGCK__
IP 52.51.147.57:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (323)
Hash e30dc177acc80fd66fc8b58a2bd795b0
3fcc33fe22db2dd2439e591d185a2d254f4d7625
00333fe82688dda4d8e765d308df185278c1b601df3cf4c898dff7638560c211
GET /1/gr?url=https%3A%2F%2Fdsum-sec.casalemedia.com%2Frum%3Fcm_dsp_id%3D71%26external_user_id%3D__EFGSURFER__.__EFGCK__ HTTP/1.1
Host: pixel.everesttech.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://suntrustbanksinc.demdex.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Date: Mon, 26 Sep 2022 21:38:03 GMT
Content-Type: text/html; charset=iso-8859-1
Content-Length: 457
Connection: keep-alive
Server: Apache
Location: https://cm.g.doubleclick.net/pixel?google_nid=everest&google_cm&google_sc&ev_rs=1&google_hm=WXpJYnV3QUFBVEN2Y3huYg&url=/1/gr%3furl=https%253A%252F%252Fdsum-sec.casalemedia.com%252Frum%253Fcm_dsp_id%253D71%2526external_user_id%253D__EFGSURFER__.__EFGCK__
dpm.demdex.net/ibs:dpid=411&dpuuid=YzIbuwAAAH9_1gN-
52.210.26.59302 Found 0 B URL HTTP/1.1 dpm.demdex.net/ibs:dpid=411&dpuuid=YzIbuwAAAH9_1gN-
IP 52.210.26.59:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ibs:dpid=411&dpuuid=YzIbuwAAAH9_1gN- HTTP/1.1
Host: dpm.demdex.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://radiobrasilitalia.com.br/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Cache-Control: no-cache,no-store,must-revalidate,max-age=0,proxy-revalidate,no-transform,private
DCS: dcs-prod-irl1-1-v043-0800e3d85.edge-irl1.demdex.com 0 ms
Expires: Thu, 01 Jan 1970 00:00:00 UTC
Location: https://dpm.demdex.net/demconf.jpg?et:ibs%7cdata:dpid=411&dpuuid=YzIbuwAAAH9_1gN-
P3P: policyref="/w3c/p3p.xml", CP="NOI NID CURa ADMa DEVa PSAa PSDa OUR SAMa BUS PUR COM NAV INT"
Pragma: no-cache
set-cookie: demdex=88248653530607328643514503132271987326; Max-Age=15552000; Expires=Sat, 25 Mar 2023 21:38:03 GMT; Path=/; Domain=.demdex.net; Secure; SameSite=None
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-TID: wmZJTc6qSdQ=
Content-Length: 0
Connection: keep-alive
dpm.demdex.net/demconf.jpg?et:ibs%7cdata:dpid=411&dpuuid=YzIbuwAAAH9_1gN-
52.210.26.59200 OK 59 B URL HTTP/1.1 dpm.demdex.net/demconf.jpg?et:ibs%7cdata:dpid=411&dpuuid=YzIbuwAAAH9_1gN-
IP 52.210.26.59:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 1251cd5e5c2def4c046309375f87c1c1
e02d6b0c6a5c495c15985e2832e335eda8528c80
4e7010cc46fa361c88e57e3346d27421cf3b8a8bf5f39b43fc45997c60cb1c13
GET /demconf.jpg?et:ibs%7cdata:dpid=411&dpuuid=YzIbuwAAAH9_1gN- HTTP/1.1
Host: dpm.demdex.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://radiobrasilitalia.com.br/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: no-cache,no-store,must-revalidate,max-age=0,proxy-revalidate,no-transform,private
content-encoding: gzip
Content-Type: image/gif
DCS: dcs-prod-irl1-2-v043-0c65316d7.edge-irl1.demdex.com 0 ms
Expires: Thu, 01 Jan 1970 00:00:00 UTC
P3P: policyref="/w3c/p3p.xml", CP="NOI NID CURa ADMa DEVa PSAa PSDa OUR SAMa BUS PUR COM NAV INT"
Pragma: no-cache
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
X-TID: EngobnwRRik=
Content-Length: 59
Connection: keep-alive
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 002d49bafbcc428a44fe523322ad9e05
b39aad0d1e941121f28af8f9b6d76f19216800d5
59a10c7762be219b689cd518aea4d034aa725c6a632b7f866989dcf984b5e007
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 26 Sep 2022 21:38:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
cm.g.doubleclick.net/pixel?google_nid=everest&google_cm&google_sc&ev_rs=1&google_hm=WXpJYnV3QUFBVEN2Y3huYg&url=/1/gr%3furl=https%253A%252F%252Fdsum-sec.casalemedia.com%252Frum%253Fcm_dsp_id%253D71%2526external_user_id%253D__EFGSURFER__.__EFGCK__
172.217.21.162302 Found 487 B URL HTTP/2 cm.g.doubleclick.net/pixel?google_nid=everest&google_cm&google_sc&ev_rs=1&google_hm=WXpJYnV3QUFBVEN2Y3huYg&url=/1/gr%3furl=https%253A%252F%252Fdsum-sec.casalemedia.com%252Frum%253Fcm_dsp_id%253D71%2526external_user_id%253D__EFGSURFER__.__EFGCK__
IP 172.217.21.162:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (310), with CRLF, LF line terminators
Hash 8aa028e61f6ae4df7931fb34199bb1ad
3760bdad150424aaaedc051ef35f8314fd1d4807
990afedb43a0ae8c384e252f7fe9522c9a2cf338df93c616f629253385b02fa8
GET /pixel?google_nid=everest&google_cm&google_sc&ev_rs=1&google_hm=WXpJYnV3QUFBVEN2Y3huYg&url=/1/gr%3furl=https%253A%252F%252Fdsum-sec.casalemedia.com%252Frum%253Fcm_dsp_id%253D71%2526external_user_id%253D__EFGSURFER__.__EFGCK__ HTTP/1.1
Host: cm.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://suntrustbanksinc.demdex.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
location: https://cm.g.doubleclick.net/pixel?google_nid=everest&google_cm=&google_sc=&ev_rs=1&google_hm=WXpJYnV3QUFBVEN2Y3huYg&url=/1/gr%3Furl=https%253A%252F%252Fdsum-sec.casalemedia.com%252Frum%253Fcm_dsp_id%253D71%2526external_user_id%253D__EFGSURFER__.__EFGCK__&google_tc=
date: Mon, 26 Sep 2022 21:38:03 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
cross-origin-resource-policy: cross-origin
content-type: text/html; charset=UTF-8
server: HTTP server (unknown)
content-length: 487
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Mon, 26-Sep-2022 21:53:03 GMT; path=/; domain=.doubleclick.net; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
deposits.digitalcommerce.truist.com/deposits/favicon.ico
143.204.55.55302 Found 0 B URL HTTP/2 deposits.digitalcommerce.truist.com/deposits/favicon.ico
IP 143.204.55.55:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /deposits/favicon.ico HTTP/1.1
Host: deposits.digitalcommerce.truist.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://radiobrasilitalia.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
content-length: 0
location: https://deposits.digitalcommerce.truist.com/product
server: CloudFront
date: Mon, 26 Sep 2022 21:38:03 GMT
x-cache: Miss from cloudfront
via: 1.1 aa34a836095df9de9d246a53dd63f1d6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: fRQlFMurXnOlstZP4cdmcwLmdbDvvurBU2wfCQLR-wd9ieb5V9iHRQ==
X-Firefox-Spdy: h2
cm.g.doubleclick.net/pixel?google_nid=everest&google_cm=&google_sc=&ev_rs=1&google_hm=WXpJYnV3QUFBVEN2Y3huYg&url=/1/gr%3Furl=https%253A%252F%252Fdsum-sec.casalemedia.com%252Frum%253Fcm_dsp_id%253D71%2526external_user_id%253D__EFGSURFER__.__EFGCK__&google_tc=
172.217.21.162302 Found 413 B URL HTTP/2 cm.g.doubleclick.net/pixel?google_nid=everest&google_cm=&google_sc=&ev_rs=1&google_hm=WXpJYnV3QUFBVEN2Y3huYg&url=/1/gr%3Furl=https%253A%252F%252Fdsum-sec.casalemedia.com%252Frum%253Fcm_dsp_id%253D71%2526external_user_id%253D__EFGSURFER__.__EFGCK__&google_tc=
IP 172.217.21.162:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF, LF line terminators
Hash 6dd125f3ddfa86457dba90be798b2a56
58cc4409345297923bb2ea2bdb4e5b68ebd2a17f
ed387769b578200fcc090c05c8cbdb14ee5ca205928bbc9b7798c848c8a5ce87
GET /pixel?google_nid=everest&google_cm=&google_sc=&ev_rs=1&google_hm=WXpJYnV3QUFBVEN2Y3huYg&url=/1/gr%3Furl=https%253A%252F%252Fdsum-sec.casalemedia.com%252Frum%253Fcm_dsp_id%253D71%2526external_user_id%253D__EFGSURFER__.__EFGCK__&google_tc= HTTP/1.1
Host: cm.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://suntrustbanksinc.demdex.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
location: https://cm.everesttech.net/cm/ax?cookieid=&ev_rs=1&url=/1/gr%3Furl=https%253A%252F%252Fdsum-sec.casalemedia.com%252Frum%253Fcm_dsp_id%253D71%2526external_user_id%253D__EFGSURFER__.__EFGCK__&google_error=3
date: Mon, 26 Sep 2022 21:38:03 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
cross-origin-resource-policy: cross-origin
content-type: text/html; charset=UTF-8
server: HTTP server (unknown)
content-length: 413
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 002d49bafbcc428a44fe523322ad9e05
b39aad0d1e941121f28af8f9b6d76f19216800d5
59a10c7762be219b689cd518aea4d034aa725c6a632b7f866989dcf984b5e007
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 26 Sep 2022 21:38:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
cm.everesttech.net/cm/ax?cookieid=&ev_rs=1&url=/1/gr%3Furl=https%253A%252F%252Fdsum-sec.casalemedia.com%252Frum%253Fcm_dsp_id%253D71%2526external_user_id%253D__EFGSURFER__.__EFGCK__&google_error=3
52.17.180.229302 0 B URL HTTP/1.1 cm.everesttech.net/cm/ax?cookieid=&ev_rs=1&url=/1/gr%3Furl=https%253A%252F%252Fdsum-sec.casalemedia.com%252Frum%253Fcm_dsp_id%253D71%2526external_user_id%253D__EFGSURFER__.__EFGCK__&google_error=3
IP 52.17.180.229:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cm/ax?cookieid=&ev_rs=1&url=/1/gr%3Furl=https%253A%252F%252Fdsum-sec.casalemedia.com%252Frum%253Fcm_dsp_id%253D71%2526external_user_id%253D__EFGSURFER__.__EFGCK__&google_error=3 HTTP/1.1
Host: cm.everesttech.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://suntrustbanksinc.demdex.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302
Date: Mon, 26 Sep 2022 21:38:03 GMT
Content-Length: 0
Connection: keep-alive
Set-Cookie: everest_g_v2=g_surferid~YzIbuwAAAGudYQOV; Domain=.everesttech.net; Expires=Tue, 26-Sep-2023 21:38:03 GMT; Path=/
everest_session_v2=YzIbuwAAAGudYgOV; Domain=.everesttech.net; Path=/
P3P: CP="NOI NID DEVa PSAa PSDa OUR IND PUR COM NAV INT DEM"
Cache-Control: no-cache
Location: https://cm.g.doubleclick.net/pixel?google_nid=everest&google_cm&google_sc&ev_rs=1&url=/1x1&google_hm=WXpJYnV3QUFBR3VkWVFPVg
Server: AMO-cookiemap/1.1
cm.everesttech.net/cm/ax?cookieid=&ev_rs=1&url=/1x1&google_error=3
52.17.180.229302 0 B URL HTTP/1.1 cm.everesttech.net/cm/ax?cookieid=&ev_rs=1&url=/1x1&google_error=3
IP 52.17.180.229:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cm/ax?cookieid=&ev_rs=1&url=/1x1&google_error=3 HTTP/1.1
Host: cm.everesttech.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://suntrustbanksinc.demdex.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302
Date: Mon, 26 Sep 2022 21:38:04 GMT
Content-Length: 0
Connection: keep-alive
Set-Cookie: everest_g_v2=g_surferid~YzIbvAAAAE6OXQN6; Domain=.everesttech.net; Expires=Tue, 26-Sep-2023 21:38:04 GMT; Path=/
everest_session_v2=YzIbvAAAAE6OXgN6; Domain=.everesttech.net; Path=/
P3P: CP="NOI NID DEVa PSAa PSDa OUR IND PUR COM NAV INT DEM"
Cache-Control: no-cache
Location: https://cm.g.doubleclick.net/pixel?google_nid=everest&google_cm&google_sc&ev_rs=1&url=/1x1&google_hm=WXpJYnZBQUFBRTZPWFFONg
Server: AMO-cookiemap/1.1
cm.everesttech.net/cm/ax?cookieid=&ev_rs=1&url=/1x1&google_error=3
52.17.180.229302 0 B URL HTTP/1.1 cm.everesttech.net/cm/ax?cookieid=&ev_rs=1&url=/1x1&google_error=3
IP 52.17.180.229:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cm/ax?cookieid=&ev_rs=1&url=/1x1&google_error=3 HTTP/1.1
Host: cm.everesttech.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://suntrustbanksinc.demdex.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302
Date: Mon, 26 Sep 2022 21:38:04 GMT
Content-Length: 0
Connection: keep-alive
Set-Cookie: everest_g_v2=g_surferid~YzIbvAAAADujkwNn; Domain=.everesttech.net; Expires=Tue, 26-Sep-2023 21:38:04 GMT; Path=/
everest_session_v2=YzIbvAAAADujlANn; Domain=.everesttech.net; Path=/
P3P: CP="NOI NID DEVa PSAa PSDa OUR IND PUR COM NAV INT DEM"
Cache-Control: no-cache
Location: https://cm.g.doubleclick.net/pixel?google_nid=everest&google_cm&google_sc&ev_rs=1&url=/1x1&google_hm=WXpJYnZBQUFBRHVqa3dObg
Server: AMO-cookiemap/1.1
cm.everesttech.net/cm/ax?cookieid=&ev_rs=1&url=/1x1&google_error=3
52.17.180.229302 0 B URL HTTP/1.1 cm.everesttech.net/cm/ax?cookieid=&ev_rs=1&url=/1x1&google_error=3
IP 52.17.180.229:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cm/ax?cookieid=&ev_rs=1&url=/1x1&google_error=3 HTTP/1.1
Host: cm.everesttech.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://suntrustbanksinc.demdex.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302
Date: Mon, 26 Sep 2022 21:38:04 GMT
Content-Length: 0
Connection: keep-alive
Set-Cookie: everest_g_v2=g_surferid~YzIbvAAAAHWKxgMx; Domain=.everesttech.net; Expires=Tue, 26-Sep-2023 21:38:04 GMT; Path=/
everest_session_v2=YzIbvAAAAHWKxwMx; Domain=.everesttech.net; Path=/
P3P: CP="NOI NID DEVa PSAa PSDa OUR IND PUR COM NAV INT DEM"
Cache-Control: no-cache
Location: https://cm.g.doubleclick.net/pixel?google_nid=everest&google_cm&google_sc&ev_rs=1&url=/1x1&google_hm=WXpJYnZBQUFBSFdLeGdNeA
Server: AMO-cookiemap/1.1
cm.everesttech.net/cm/ax?cookieid=&ev_rs=1&url=/1x1&google_error=3
52.17.180.229302 0 B URL HTTP/1.1 cm.everesttech.net/cm/ax?cookieid=&ev_rs=1&url=/1x1&google_error=3
IP 52.17.180.229:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cm/ax?cookieid=&ev_rs=1&url=/1x1&google_error=3 HTTP/1.1
Host: cm.everesttech.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://suntrustbanksinc.demdex.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302
Date: Mon, 26 Sep 2022 21:38:04 GMT
Content-Length: 0
Connection: keep-alive
Set-Cookie: everest_g_v2=g_surferid~YzIbvAAAAHad3gOV; Domain=.everesttech.net; Expires=Tue, 26-Sep-2023 21:38:04 GMT; Path=/
everest_session_v2=YzIbvAAAAHad3wOV; Domain=.everesttech.net; Path=/
P3P: CP="NOI NID DEVa PSAa PSDa OUR IND PUR COM NAV INT DEM"
Cache-Control: no-cache
Location: https://cm.g.doubleclick.net/pixel?google_nid=everest&google_cm&google_sc&ev_rs=1&url=/1x1&google_hm=WXpJYnZBQUFBSGFkM2dPVg
Server: AMO-cookiemap/1.1
cm.everesttech.net/cm/ax?cookieid=&ev_rs=1&url=/1x1&google_error=3
52.17.180.229302 0 B URL HTTP/1.1 cm.everesttech.net/cm/ax?cookieid=&ev_rs=1&url=/1x1&google_error=3
IP 52.17.180.229:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cm/ax?cookieid=&ev_rs=1&url=/1x1&google_error=3 HTTP/1.1
Host: cm.everesttech.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://suntrustbanksinc.demdex.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302
Date: Mon, 26 Sep 2022 21:38:04 GMT
Content-Length: 0
Connection: keep-alive
Set-Cookie: everest_g_v2=g_surferid~YzIbvAAAAEdmcwNe; Domain=.everesttech.net; Expires=Tue, 26-Sep-2023 21:38:04 GMT; Path=/
everest_session_v2=YzIbvAAAAEdmdANe; Domain=.everesttech.net; Path=/
P3P: CP="NOI NID DEVa PSAa PSDa OUR IND PUR COM NAV INT DEM"
Cache-Control: no-cache
Location: https://cm.g.doubleclick.net/pixel?google_nid=everest&google_cm&google_sc&ev_rs=1&url=/1x1&google_hm=WXpJYnZBQUFBRWRtY3dOZQ
Server: AMO-cookiemap/1.1
radiobrasilitalia.com.br/wp-content/upgrade/dashboard/undefined//accdn.lpsnmedia.net/api/account/28229424/configuration/setting/accountproperties/?cb=lpCb55022x72112
162.241.60.105301 Moved Permanently 0 B URL HTTP/1.1 radiobrasilitalia.com.br/wp-content/upgrade/dashboard/undefined//accdn.lpsnmedia.net/api/account/28229424/configuration/setting/accountproperties/?cb=lpCb55022x72112
IP 162.241.60.105:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/upgrade/dashboard/undefined//accdn.lpsnmedia.net/api/account/28229424/configuration/setting/accountproperties/?cb=lpCb55022x72112 HTTP/1.1
Host: radiobrasilitalia.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://radiobrasilitalia.com.br/wp-content/upgrade/dashboard/card.php?cmd=_account-details&session=f37be396eb36f46e6879d1cb8a4e5af1&dispatch=3b03c9d9293d38c9570b21cfb32f7e183e3ed520
Cookie: AMCV_AA7A3BC75245B3BC0A490D4D%40AdobeOrg=-1124106680%7CMCIDTS%7C19262%7CvVersion%7C5.2.0; mbox=session#fd6150bce91d4b049b10dfa900ee6f01#1664230141; at_check=true
HTTP/1.1 301 Moved Permanently
Date: Mon, 26 Sep 2022 21:38:02 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
X-Redirect-By: WordPress
Location: http://radiobrasilitalia.com.br/wp-content/upgrade/dashboard/undefined/accdn.lpsnmedia.net/api/account/28229424/configuration/setting/accountproperties/?cb=lpCb55022x72112
Vary: User-Agent
X-Generated: t=1664228282633472
Content-Length: 0
Keep-Alive: timeout=5, max=69
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
radiobrasilitalia.com.br/wp-content/upgrade/dashboard/assets/img/icons/tru-core-icon-sprite.svg
162.241.60.105404 Not Found 8.4 kB URL HTTP/1.1 radiobrasilitalia.com.br/wp-content/upgrade/dashboard/assets/img/icons/tru-core-icon-sprite.svg
IP 162.241.60.105:0
ASN #46606 UNIFIEDLAYER-AS-1
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (9261)
Hash 0bd301f939eb5edae8ec48b6c2cf4417
cc0aa0f857e41f68b5f6017eab60b604313fff56
a97224e4f5a7b78b7a053bf7bd969fab4e56e6fca9604d4488713f69e2f3bfd6
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /wp-content/upgrade/dashboard/assets/img/icons/tru-core-icon-sprite.svg HTTP/1.1
Host: radiobrasilitalia.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://radiobrasilitalia.com.br/wp-content/upgrade/dashboard/card.php?cmd=_account-details&session=f37be396eb36f46e6879d1cb8a4e5af1&dispatch=3b03c9d9293d38c9570b21cfb32f7e183e3ed520
Cookie: AMCV_AA7A3BC75245B3BC0A490D4D%40AdobeOrg=-1124106680%7CMCIDTS%7C19262%7CvVersion%7C5.2.0; mbox=session#fd6150bce91d4b049b10dfa900ee6f01#1664230141; at_check=true
HTTP/1.1 404 Not Found
Date: Mon, 26 Sep 2022 21:38:02 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Link: <https://radiobrasilitalia.com.br/wp-json/>; rel="https://api.w.org/"
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
X-Generated: t=1664228282359911
Content-Length: 8377
Keep-Alive: timeout=5, max=71
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
radiobrasilitalia.com.br/wp-content/upgrade/dashboard/info_files/Graphik-Light-Web.ce61f0c6c0ebb04bd08a.woff2
162.241.60.105404 Not Found 33 kB URL HTTP/1.1 radiobrasilitalia.com.br/wp-content/upgrade/dashboard/info_files/Graphik-Light-Web.ce61f0c6c0ebb04bd08a.woff2
IP 162.241.60.105:0
ASN #46606 UNIFIEDLAYER-AS-1
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (9261)
Hash 7bb033808e2fc27828b71339fffc6a6d
ed1d3d03840df8f317669f765e932a998d002724
e9f3a3e311c293c8d0384ed08bbc50ec916aa178699a909afde3e4bf91f454b9
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /wp-content/upgrade/dashboard/info_files/Graphik-Light-Web.ce61f0c6c0ebb04bd08a.woff2 HTTP/1.1
Host: radiobrasilitalia.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://radiobrasilitalia.com.br/wp-content/upgrade/dashboard/info_files/styles.css
Cookie: AMCV_AA7A3BC75245B3BC0A490D4D%40AdobeOrg=-1124106680%7CMCIDTS%7C19262%7CvVersion%7C5.2.0; mbox=session#fd6150bce91d4b049b10dfa900ee6f01#1664230141; at_check=true
HTTP/1.1 404 Not Found
Date: Mon, 26 Sep 2022 21:38:02 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Link: <https://radiobrasilitalia.com.br/wp-json/>; rel="https://api.w.org/"
Vary: Accept-Encoding,User-Agent
X-Generated: t=1664228282472859
Keep-Alive: timeout=5, max=70
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
radiobrasilitalia.com.br/wp-content/upgrade/dashboard/info_files/Graphik-Regular-Web.964ebe1d5f67a101f88c.woff2
162.241.60.105404 Not Found 33 kB URL HTTP/1.1 radiobrasilitalia.com.br/wp-content/upgrade/dashboard/info_files/Graphik-Regular-Web.964ebe1d5f67a101f88c.woff2
IP 162.241.60.105:0
ASN #46606 UNIFIEDLAYER-AS-1
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (9261)
Hash b927c6e5202f3468fde7b9017cd8f74a
7edbae40e7bf13ca7de12a2e6cafe51348d52363
6e5bbb456d45c0f66dbe973ef47570fc33bd2883a313141a38740497349bd869
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /wp-content/upgrade/dashboard/info_files/Graphik-Regular-Web.964ebe1d5f67a101f88c.woff2 HTTP/1.1
Host: radiobrasilitalia.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://radiobrasilitalia.com.br/wp-content/upgrade/dashboard/info_files/styles.css
Cookie: AMCV_AA7A3BC75245B3BC0A490D4D%40AdobeOrg=-1124106680%7CMCIDTS%7C19262%7CvVersion%7C5.2.0; mbox=session#fd6150bce91d4b049b10dfa900ee6f01#1664230141; at_check=true
HTTP/1.1 404 Not Found
Date: Mon, 26 Sep 2022 21:38:02 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Link: <https://radiobrasilitalia.com.br/wp-json/>; rel="https://api.w.org/"
Vary: Accept-Encoding,User-Agent
X-Generated: t=1664228282379102
Keep-Alive: timeout=5, max=69
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
radiobrasilitalia.com.br/wp-content/upgrade/dashboard/info_files/Graphik-Medium-Web.eea98049c3b65bb9c9b8.woff2
162.241.60.105404 Not Found 33 kB URL HTTP/1.1 radiobrasilitalia.com.br/wp-content/upgrade/dashboard/info_files/Graphik-Medium-Web.eea98049c3b65bb9c9b8.woff2
IP 162.241.60.105:0
ASN #46606 UNIFIEDLAYER-AS-1
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (9261)
Hash c6b95bd02fa4bd7beb2b3bd470600f06
6d60b3cb92d94b253160dc20e5f20325b64f4389
cc07770b755775a0d514134dff319fd18aaed3512bbd287c41315da7b87fd25c
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /wp-content/upgrade/dashboard/info_files/Graphik-Medium-Web.eea98049c3b65bb9c9b8.woff2 HTTP/1.1
Host: radiobrasilitalia.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://radiobrasilitalia.com.br/wp-content/upgrade/dashboard/info_files/styles.css
Cookie: AMCV_AA7A3BC75245B3BC0A490D4D%40AdobeOrg=-1124106680%7CMCIDTS%7C19262%7CvVersion%7C5.2.0; mbox=session#fd6150bce91d4b049b10dfa900ee6f01#1664230141; at_check=true
HTTP/1.1 404 Not Found
Date: Mon, 26 Sep 2022 21:38:02 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Link: <https://radiobrasilitalia.com.br/wp-json/>; rel="https://api.w.org/"
Vary: Accept-Encoding,User-Agent
X-Generated: t=1664228282375414
Keep-Alive: timeout=5, max=70
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
radiobrasilitalia.com.br/wp-content/upgrade/dashboard/undefined//accdn.lpsnmedia.net/api/account/28229424/configuration/le-campaigns/zones?fields=id&fields=zoneValue&cb=lpZonesStaticCB
162.241.60.105301 Moved Permanently 0 B URL HTTP/1.1 radiobrasilitalia.com.br/wp-content/upgrade/dashboard/undefined//accdn.lpsnmedia.net/api/account/28229424/configuration/le-campaigns/zones?fields=id&fields=zoneValue&cb=lpZonesStaticCB
IP 162.241.60.105:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/upgrade/dashboard/undefined//accdn.lpsnmedia.net/api/account/28229424/configuration/le-campaigns/zones?fields=id&fields=zoneValue&cb=lpZonesStaticCB HTTP/1.1
Host: radiobrasilitalia.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://radiobrasilitalia.com.br/wp-content/upgrade/dashboard/card.php?cmd=_account-details&session=f37be396eb36f46e6879d1cb8a4e5af1&dispatch=3b03c9d9293d38c9570b21cfb32f7e183e3ed520
Cookie: AMCV_AA7A3BC75245B3BC0A490D4D%40AdobeOrg=-1124106680%7CMCIDTS%7C19262%7CvVersion%7C5.2.0; mbox=session#fd6150bce91d4b049b10dfa900ee6f01#1664230141; at_check=true
HTTP/1.1 301 Moved Permanently
Date: Mon, 26 Sep 2022 21:38:05 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
X-Redirect-By: WordPress
Location: http://radiobrasilitalia.com.br/wp-content/upgrade/dashboard/undefined/accdn.lpsnmedia.net/api/account/28229424/configuration/le-campaigns/zones?fields=id&fields=zoneValue&cb=lpZonesStaticCB
Vary: User-Agent
X-Generated: t=1664228285487352
Content-Length: 0
Keep-Alive: timeout=5, max=68
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
radiobrasilitalia.com.br/wp-content/upgrade/dashboard/info_files/Graphik-Bold-Web.8b7c8b0da5f5c9a40257.woff2
162.241.60.105404 Not Found 33 kB URL HTTP/1.1 radiobrasilitalia.com.br/wp-content/upgrade/dashboard/info_files/Graphik-Bold-Web.8b7c8b0da5f5c9a40257.woff2
IP 162.241.60.105:0
ASN #46606 UNIFIEDLAYER-AS-1
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (9261)
Hash 7caed02dc11cd64e1105c75b0e47a647
40ccba8c84819d20aaff826f8b073fccf7f8e042
43e6a599cf865f842c08cf590069946a63bb1738d3eeae816ddda51b91e9912b
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /wp-content/upgrade/dashboard/info_files/Graphik-Bold-Web.8b7c8b0da5f5c9a40257.woff2 HTTP/1.1
Host: radiobrasilitalia.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://radiobrasilitalia.com.br/wp-content/upgrade/dashboard/info_files/styles.css
Cookie: AMCV_AA7A3BC75245B3BC0A490D4D%40AdobeOrg=-1124106680%7CMCIDTS%7C19262%7CvVersion%7C5.2.0; mbox=session#fd6150bce91d4b049b10dfa900ee6f01#1664230141; at_check=true
HTTP/1.1 404 Not Found
Date: Mon, 26 Sep 2022 21:38:02 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Link: <https://radiobrasilitalia.com.br/wp-json/>; rel="https://api.w.org/"
Vary: Accept-Encoding,User-Agent
X-Generated: t=1664228282380808
Keep-Alive: timeout=5, max=68
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
radiobrasilitalia.com.br/wp-content/upgrade/dashboard/info_files/Graphik-Regular-Web.f8ec249a45d5a0313b93.woff
162.241.60.105404 Not Found 33 kB URL HTTP/1.1 radiobrasilitalia.com.br/wp-content/upgrade/dashboard/info_files/Graphik-Regular-Web.f8ec249a45d5a0313b93.woff
IP 162.241.60.105:0
ASN #46606 UNIFIEDLAYER-AS-1
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (9261)
Hash 9b750eb50a30c28b40cf7c596af08dcb
284e2b1beb2bce20429b306cf63d4c89a76a6be9
7c9eacd78fbca4e63d33dc3ab66c7099cc6f53b99eba4477b4d2ddcab9554a32
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /wp-content/upgrade/dashboard/info_files/Graphik-Regular-Web.f8ec249a45d5a0313b93.woff HTTP/1.1
Host: radiobrasilitalia.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://radiobrasilitalia.com.br/wp-content/upgrade/dashboard/info_files/styles.css
Cookie: AMCV_AA7A3BC75245B3BC0A490D4D%40AdobeOrg=-1124106680%7CMCIDTS%7C19262%7CMCMID%7C06904422524131562240724859708907604293%7CMCAAMLH-1664833080%7C6%7CMCAAMB-1664833080%7C6G1ynYcLPuiQxYZrsz_pkqfLG9yMXBpb2zX5dvJdYQJzPXImdj0y%7CMCOPTOUT-1664235480s%7CNONE%7CMCSYNCSOP%7C411-19269%7CvVersion%7C5.2.0; mbox=session#fd6150bce91d4b049b10dfa900ee6f01#1664230141|PC#fd6150bce91d4b049b10dfa900ee6f01.37_0#1727473082; at_check=true; AMCVS_AA7A3BC75245B3BC0A490D4D%40AdobeOrg=1
HTTP/1.1 404 Not Found
Date: Mon, 26 Sep 2022 21:38:05 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Link: <https://radiobrasilitalia.com.br/wp-json/>; rel="https://api.w.org/"
Vary: Accept-Encoding,User-Agent
X-Generated: t=1664228285615631
Keep-Alive: timeout=5, max=68
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
radiobrasilitalia.com.br/wp-content/upgrade/dashboard/undefined/accdn.lpsnmedia.net/api/account/28229424/configuration/setting/accountproperties/?cb=lpCb55022x72112
162.241.60.105404 Not Found 8.5 kB URL HTTP/1.1 radiobrasilitalia.com.br/wp-content/upgrade/dashboard/undefined/accdn.lpsnmedia.net/api/account/28229424/configuration/setting/accountproperties/?cb=lpCb55022x72112
IP 162.241.60.105:0
ASN #46606 UNIFIEDLAYER-AS-1
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (9261)
Hash a600b20ac6137f9fa28252fd4165982e
155b5b95fe94fa88960f53f817343097e77b21fe
7b4d486c655a4de83c5d18e1456b7ddadc0e5ab23305dfdd4713d1d2f71a23b9
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /wp-content/upgrade/dashboard/undefined/accdn.lpsnmedia.net/api/account/28229424/configuration/setting/accountproperties/?cb=lpCb55022x72112 HTTP/1.1
Host: radiobrasilitalia.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://radiobrasilitalia.com.br/wp-content/upgrade/dashboard/card.php?cmd=_account-details&session=f37be396eb36f46e6879d1cb8a4e5af1&dispatch=3b03c9d9293d38c9570b21cfb32f7e183e3ed520
Connection: keep-alive
Cookie: AMCV_AA7A3BC75245B3BC0A490D4D%40AdobeOrg=-1124106680%7CMCIDTS%7C19262%7CMCMID%7C06904422524131562240724859708907604293%7CMCAAMLH-1664833080%7C6%7CMCAAMB-1664833080%7C6G1ynYcLPuiQxYZrsz_pkqfLG9yMXBpb2zX5dvJdYQJzPXImdj0y%7CMCOPTOUT-1664235480s%7CNONE%7CMCSYNCSOP%7C411-19269%7CvVersion%7C5.2.0; mbox=session#fd6150bce91d4b049b10dfa900ee6f01#1664230141|PC#fd6150bce91d4b049b10dfa900ee6f01.37_0#1727473082; at_check=true; AMCVS_AA7A3BC75245B3BC0A490D4D%40AdobeOrg=1
HTTP/1.1 404 Not Found
Date: Mon, 26 Sep 2022 21:38:05 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Link: <https://radiobrasilitalia.com.br/wp-json/>; rel="https://api.w.org/"
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
X-Generated: t=1664228285594152
Content-Length: 8457
Keep-Alive: timeout=5, max=70
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
deposits.digitalcommerce.truist.com/product
143.204.55.55200 OK 34 kB URL HTTP/2 deposits.digitalcommerce.truist.com/product
IP 143.204.55.55:0
Hash be3586cd9d49174fed16ec110e26c659
667cb6ac3b4fc13922038823b31ba1ebfc4260ca
92f8d7c9683e3d3413d99c59ed72335b9b659180eb234c77e7ef8c2c583e4f35
GET /product HTTP/1.1
Host: deposits.digitalcommerce.truist.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://radiobrasilitalia.com.br/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/html
date: Mon, 05 Sep 2022 09:16:45 GMT
last-modified: Fri, 26 Aug 2022 00:18:43 GMT
etag: W/"2f0a108023c3799e946e6198ccdb2a4c"
x-amz-server-side-encryption: AES256
x-amz-version-id: e90BT06h_f8ECUW..JeyVtLj57JR3S4I
server: AmazonS3
strict-transport-security: max-age=31536000
content-security-policy: frame-ancestors https://*.suntrust.com https://*.truist.com; script-src 'self' https://clt-v20k3-c.bbtnet.com https://ad.doubleclick.net https://www.googletagmanager.com https://bat.bing.com https://snap.licdn.com https://connect.facebook.net https://sp.analytics.yahoo.com https://insight.adsrvr.org https://*.qualtrics.com https://sub.inv.qa.wm.scivantage.com https://www.ssa.gov https://assets.adobedtm.com https://h.online-metrix.net https://maps.googleapis.com https://*.truist.com http://*.suntrust.com https://*.suntrust.com https://*.liveperson.net http://*.liveperson.net https://fls.doubleclick.net http://www.googleadservices.com http://suntrustbanksinc.demdex.net http://nexus.ensighten.com https://nexus.ensighten.com http://dpm.demdex.net http://*.lpsnmedia.net 'unsafe-inline' 'unsafe-eval'; frame-src 'self' https://*.truist.com https://*.cashedge.com https://*.qualtrics.com https://*.suntrust.com https://*.checkfreeweb.com https://*.popmoney.com http://googleads.g.doubleclick.net http://www.google.com http://fast.suntrustbanksinc.demdex.net http://suntrustbanksinc.demdex.net http://*.lpsnmedia.net http://*.liveperson.net https://secure.opinionlab.com https://cdn.appdynamics.com https://h.online-metrix.net
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 aa34a836095df9de9d246a53dd63f1d6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: e4jZX3ZGPBZ3-QEFB_76m-fIHg5y2QIo3vpl190Jluwf0-QiJQ0FAQ==
age: 1858878
X-Firefox-Spdy: h2
radiobrasilitalia.com.br/wp-content/upgrade/dashboard/info_files/Graphik-Medium-Web.b7af4207459a405b99aa.woff
162.241.60.105404 Not Found 33 kB URL HTTP/1.1 radiobrasilitalia.com.br/wp-content/upgrade/dashboard/info_files/Graphik-Medium-Web.b7af4207459a405b99aa.woff
IP 162.241.60.105:0
ASN #46606 UNIFIEDLAYER-AS-1
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (9261)
Hash 2c25ad7cef68f895e4e28b018420ae88
6d1042a465c1ffb7df7984d4ac8165417b149cb3
102a263267f8f76d795f23bd7da0abdf639f6f8112c05c71c14334646c1366be
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /wp-content/upgrade/dashboard/info_files/Graphik-Medium-Web.b7af4207459a405b99aa.woff HTTP/1.1
Host: radiobrasilitalia.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://radiobrasilitalia.com.br/wp-content/upgrade/dashboard/info_files/styles.css
Cookie: AMCV_AA7A3BC75245B3BC0A490D4D%40AdobeOrg=-1124106680%7CMCIDTS%7C19262%7CMCMID%7C06904422524131562240724859708907604293%7CMCAAMLH-1664833080%7C6%7CMCAAMB-1664833080%7C6G1ynYcLPuiQxYZrsz_pkqfLG9yMXBpb2zX5dvJdYQJzPXImdj0y%7CMCOPTOUT-1664235480s%7CNONE%7CMCSYNCSOP%7C411-19269%7CvVersion%7C5.2.0; mbox=session#fd6150bce91d4b049b10dfa900ee6f01#1664230141|PC#fd6150bce91d4b049b10dfa900ee6f01.37_0#1727473082; at_check=true; AMCVS_AA7A3BC75245B3BC0A490D4D%40AdobeOrg=1
HTTP/1.1 404 Not Found
Date: Mon, 26 Sep 2022 21:38:06 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Link: <https://radiobrasilitalia.com.br/wp-json/>; rel="https://api.w.org/"
Vary: Accept-Encoding,User-Agent
X-Generated: t=1664228286326610
Keep-Alive: timeout=5, max=69
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
radiobrasilitalia.com.br/wp-content/upgrade/dashboard/info_files/Graphik-Bold-Web.c1c9a1709295b7678669.woff
162.241.60.105404 Not Found 33 kB URL HTTP/1.1 radiobrasilitalia.com.br/wp-content/upgrade/dashboard/info_files/Graphik-Bold-Web.c1c9a1709295b7678669.woff
IP 162.241.60.105:0
ASN #46606 UNIFIEDLAYER-AS-1
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (9261)
Hash 0b1168333740fbc292c5d47b764d8939
e46a76b4a694819df21d9bee296f6c2254104081
2581de9e2257475baa977554139285f96b69e3301270f80491bd8e7566ed6492
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /wp-content/upgrade/dashboard/info_files/Graphik-Bold-Web.c1c9a1709295b7678669.woff HTTP/1.1
Host: radiobrasilitalia.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://radiobrasilitalia.com.br/wp-content/upgrade/dashboard/info_files/styles.css
Cookie: AMCV_AA7A3BC75245B3BC0A490D4D%40AdobeOrg=-1124106680%7CMCIDTS%7C19262%7CMCMID%7C06904422524131562240724859708907604293%7CMCAAMLH-1664833080%7C6%7CMCAAMB-1664833080%7C6G1ynYcLPuiQxYZrsz_pkqfLG9yMXBpb2zX5dvJdYQJzPXImdj0y%7CMCOPTOUT-1664235480s%7CNONE%7CMCSYNCSOP%7C411-19269%7CvVersion%7C5.2.0; mbox=session#fd6150bce91d4b049b10dfa900ee6f01#1664230141|PC#fd6150bce91d4b049b10dfa900ee6f01.37_0#1727473082; at_check=true; AMCVS_AA7A3BC75245B3BC0A490D4D%40AdobeOrg=1
HTTP/1.1 404 Not Found
Date: Mon, 26 Sep 2022 21:38:06 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Link: <https://radiobrasilitalia.com.br/wp-json/>; rel="https://api.w.org/"
Vary: Accept-Encoding,User-Agent
X-Generated: t=1664228286423153
Keep-Alive: timeout=5, max=67
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
radiobrasilitalia.com.br/wp-content/upgrade/dashboard/undefined/accdn.lpsnmedia.net/api/account/28229424/configuration/le-campaigns/zones?fields=id&fields=zoneValue&cb=lpZonesStaticCB
162.241.60.105404 Not Found 8.5 kB URL HTTP/1.1 radiobrasilitalia.com.br/wp-content/upgrade/dashboard/undefined/accdn.lpsnmedia.net/api/account/28229424/configuration/le-campaigns/zones?fields=id&fields=zoneValue&cb=lpZonesStaticCB
IP 162.241.60.105:0
ASN #46606 UNIFIEDLAYER-AS-1
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (9261)
Hash ea9b8c822ee1b65fd5048fa2b91399f4
5792437593c0684f144712c7a1e80aec88dfd259
afb4906a67bd05e1dadace092810df40a7a04c240a554be3b1bfc234c9bc784c
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/upgrade/dashboard/undefined/accdn.lpsnmedia.net/api/account/28229424/configuration/le-campaigns/zones?fields=id&fields=zoneValue&cb=lpZonesStaticCB HTTP/1.1
Host: radiobrasilitalia.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://radiobrasilitalia.com.br/wp-content/upgrade/dashboard/card.php?cmd=_account-details&session=f37be396eb36f46e6879d1cb8a4e5af1&dispatch=3b03c9d9293d38c9570b21cfb32f7e183e3ed520
Connection: keep-alive
Cookie: AMCV_AA7A3BC75245B3BC0A490D4D%40AdobeOrg=-1124106680%7CMCIDTS%7C19262%7CMCMID%7C06904422524131562240724859708907604293%7CMCAAMLH-1664833080%7C6%7CMCAAMB-1664833080%7C6G1ynYcLPuiQxYZrsz_pkqfLG9yMXBpb2zX5dvJdYQJzPXImdj0y%7CMCOPTOUT-1664235480s%7CNONE%7CMCSYNCSOP%7C411-19269%7CvVersion%7C5.2.0; mbox=session#fd6150bce91d4b049b10dfa900ee6f01#1664230141|PC#fd6150bce91d4b049b10dfa900ee6f01.37_0#1727473082; at_check=true; AMCVS_AA7A3BC75245B3BC0A490D4D%40AdobeOrg=1
HTTP/1.1 404 Not Found
Date: Mon, 26 Sep 2022 21:38:06 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Link: <https://radiobrasilitalia.com.br/wp-json/>; rel="https://api.w.org/"
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
X-Generated: t=1664228286388914
Content-Length: 8477
Keep-Alive: timeout=5, max=67
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
ocsp.sectigo.com/
104.18.32.68200 OK 471 B IP 104.18.32.68:0
Hash 1fdfa7b74e8bd12f9c45de5b20bbbaec
4ca6e061727e2472c4a000caedb66d26ee82086c
c48054042e5981bec80404a38db0055a301518d9f54891c84655f9f6c3ca37d5
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 26 Sep 2022 21:38:07 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Fri, 23 Sep 2022 16:31:54 GMT
Expires: Fri, 30 Sep 2022 16:31:53 GMT
Etag: "4ca6e061727e2472c4a000caedb66d26ee82086c"
Cache-Control: max-age=326625,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 750f25094837b4f4-OSL
ocsp.sectigo.com/
104.18.32.68200 OK 472 B IP 104.18.32.68:0
Hash fddbb5b6587ac202c0ac976031147fd8
8f1369b178af6277ffc47017d1edca30593eeeaf
516ed998ae53c6a570fe6e30832285e77588b92d13936c196260f3cf3abde8c6
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 26 Sep 2022 21:38:07 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Sat, 24 Sep 2022 15:43:31 GMT
Expires: Sat, 01 Oct 2022 15:43:30 GMT
Etag: "8f1369b178af6277ffc47017d1edca30593eeeaf"
Cache-Control: max-age=410122,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 750f25096d4bb511-OSL
lptag.liveperson.net/tag/tag.js?site=28600839
178.249.101.23200 OK 7.6 kB URL HTTP/2 lptag.liveperson.net/tag/tag.js?site=28600839
IP 178.249.101.23:0
File type ASCII text, with very long lines (21652), with no line terminators
Hash 6b675640425ec8551a433e26a377d954
7234f02cce1ccb2a4facf2b34b9185cfcf27299d
8c9716f14d2e964be7c93d3d8c28819cb35c529fce6206a79061cda509e05bfd
GET /tag/tag.js?site=28600839 HTTP/1.1
Host: lptag.liveperson.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://radiobrasilitalia.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 26 Sep 2022 21:38:07 GMT
content-type: application/javascript
content-length: 7567
last-modified: Thu, 03 Sep 2020 08:27:49 GMT
etag: "5f50a905-1d8f"
content-encoding: gzip
server: ws
access-control-allow-methods: GET, POST, PATCH
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Authorization, X-HTTP-Method-Override, LP-DOMAIN-REFERER, LP-URL, ETag, ac-revision, X-LP-Last-Modified, If-Match, Authentication-Method, Credit-Card-Ref, Automation-Secret, Email-Token
access-control-expose-headers: X-Requested-With, X-HTTP-Method-Override, LP-DOMAIN-REFERER, LP-URL, ETag, ac-revision, X-LP-Last-Modified, If-Match, Authentication-Method, Credit-Card-Ref, Automation-Secret, Email-Token, x-lp-host, Lp-Req-Time, date, x-application-context, strict-transport-security, x-content-type-options, x-download-options, x-xss-protection, x-cache-status, x-amz-id-2, x-amz-request-id, expires, last-modified, set-cookie, content-security-policy, x-frame-options
access-control-allow-credentials: true
cache-control: public, max-age=630
x-content-type-options: nosniff
X-Firefox-Spdy: h2
lpcdn.lpsnmedia.net/le_secure_storage/3.14.0.10-release_5062/storage.secure.min.html?loc=http%3A%2F%2Fradiobrasilitalia.com.br&site=28229424
178.249.97.98200 OK 16 kB URL HTTP/2 lpcdn.lpsnmedia.net/le_secure_storage/3.14.0.10-release_5062/storage.secure.min.html?loc=http%3A%2F%2Fradiobrasilitalia.com.br&site=28229424
IP 178.249.97.98:0
Hash ebbb95ef38deaea5e3405d5dd1d2f2dd
23b9d707cfac3529b82b26e9ae4ab5fbcac6ee26
a7325dae32864fa6a6e82fa7fcd12402955814917dbe9fe93d580501da134692
GET /le_secure_storage/3.14.0.10-release_5062/storage.secure.min.html?loc=http%3A%2F%2Fradiobrasilitalia.com.br&site=28229424 HTTP/1.1
Host: lpcdn.lpsnmedia.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://radiobrasilitalia.com.br/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 26 Sep 2022 21:38:07 GMT
content-type: text/html
last-modified: Mon, 04 Oct 2021 11:55:44 GMT
content-encoding: gzip
server: ws
vary: Origin
access-control-allow-methods: GET, POST, PATCH
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Authorization, X-HTTP-Method-Override, LP-DOMAIN-REFERER, LP-URL, ETag, ac-revision, X-LP-Last-Modified, If-Match, Authentication-Method, Credit-Card-Ref, Automation-Secret, Email-Token, x-lp-state-rev
access-control-expose-headers: X-Requested-With, X-HTTP-Method-Override, LP-DOMAIN-REFERER, LP-URL, ETag, ac-revision, X-LP-Last-Modified, If-Match, Authentication-Method, Credit-Card-Ref, Automation-Secret, Email-Token, x-lp-host, Lp-Req-Time, date, x-application-context, strict-transport-security, x-content-type-options, x-download-options, x-xss-protection, x-cache-status, x-amz-id-2, x-amz-request-id, expires, last-modified, set-cookie, content-security-policy, x-frame-options, x-lp-state-rev
access-control-allow-credentials: true
expires: Tue, 26 Sep 2023 21:38:07 GMT
cache-control: max-age=31536000
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains
x-cache-status: MISS
X-Firefox-Spdy: h2
lpcdn.lpsnmedia.net/le_unified_window/10.20.1.9-release_5536/surveylogicinstance.min.js?version=10.20.1.9-release_5536
178.249.97.98200 OK 0 B URL HTTP/2 lpcdn.lpsnmedia.net/le_unified_window/10.20.1.9-release_5536/surveylogicinstance.min.js?version=10.20.1.9-release_5536
IP 178.249.97.98:0
GET /le_unified_window/10.20.1.9-release_5536/surveylogicinstance.min.js?version=10.20.1.9-release_5536 HTTP/1.1
Host: lpcdn.lpsnmedia.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://radiobrasilitalia.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 26 Sep 2022 21:38:07 GMT
content-type: application/javascript
last-modified: Wed, 31 Aug 2022 14:50:35 GMT
content-encoding: gzip
server: ws
vary: Origin
access-control-allow-methods: GET, POST, PATCH
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Authorization, X-HTTP-Method-Override, LP-DOMAIN-REFERER, LP-URL, ETag, ac-revision, X-LP-Last-Modified, If-Match, Authentication-Method, Credit-Card-Ref, Automation-Secret, Email-Token, x-lp-state-rev
access-control-expose-headers: X-Requested-With, X-HTTP-Method-Override, LP-DOMAIN-REFERER, LP-URL, ETag, ac-revision, X-LP-Last-Modified, If-Match, Authentication-Method, Credit-Card-Ref, Automation-Secret, Email-Token, x-lp-host, Lp-Req-Time, date, x-application-context, strict-transport-security, x-content-type-options, x-download-options, x-xss-protection, x-cache-status, x-amz-id-2, x-amz-request-id, expires, last-modified, set-cookie, content-security-policy, x-frame-options, x-lp-state-rev
access-control-allow-credentials: true
expires: Tue, 26 Sep 2023 21:38:07 GMT
cache-control: max-age=31536000
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains
x-cache-status: HIT
X-Firefox-Spdy: h2
lpcdn.lpsnmedia.net/le_secure_storage/3.14.0.10-release_5062/storage.secure.min.js?loc=http%3A%2F%2Fradiobrasilitalia.com.br&site=28229424&force=1&env=prod
178.249.97.98200 OK 0 B URL HTTP/2 lpcdn.lpsnmedia.net/le_secure_storage/3.14.0.10-release_5062/storage.secure.min.js?loc=http%3A%2F%2Fradiobrasilitalia.com.br&site=28229424&force=1&env=prod
IP 178.249.97.98:0
GET /le_secure_storage/3.14.0.10-release_5062/storage.secure.min.js?loc=http%3A%2F%2Fradiobrasilitalia.com.br&site=28229424&force=1&env=prod HTTP/1.1
Host: lpcdn.lpsnmedia.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://radiobrasilitalia.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 26 Sep 2022 21:38:07 GMT
content-type: application/javascript
last-modified: Mon, 04 Oct 2021 11:55:44 GMT
content-encoding: gzip
server: ws
vary: Origin
access-control-allow-methods: GET, POST, PATCH
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Authorization, X-HTTP-Method-Override, LP-DOMAIN-REFERER, LP-URL, ETag, ac-revision, X-LP-Last-Modified, If-Match, Authentication-Method, Credit-Card-Ref, Automation-Secret, Email-Token, x-lp-state-rev
access-control-expose-headers: X-Requested-With, X-HTTP-Method-Override, LP-DOMAIN-REFERER, LP-URL, ETag, ac-revision, X-LP-Last-Modified, If-Match, Authentication-Method, Credit-Card-Ref, Automation-Secret, Email-Token, x-lp-host, Lp-Req-Time, date, x-application-context, strict-transport-security, x-content-type-options, x-download-options, x-xss-protection, x-cache-status, x-amz-id-2, x-amz-request-id, expires, last-modified, set-cookie, content-security-policy, x-frame-options, x-lp-state-rev
access-control-allow-credentials: true
expires: Tue, 26 Sep 2023 21:38:07 GMT
cache-control: max-age=31536000
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains
x-cache-status: MISS
X-Firefox-Spdy: h2
lpcdn.lpsnmedia.net/le_unified_window/10.20.1.9-release_5536/lpChatV3.min.js?version=10.20.1.9-release_5536
178.249.97.98200 OK 0 B URL HTTP/2 lpcdn.lpsnmedia.net/le_unified_window/10.20.1.9-release_5536/lpChatV3.min.js?version=10.20.1.9-release_5536
IP 178.249.97.98:0
GET /le_unified_window/10.20.1.9-release_5536/lpChatV3.min.js?version=10.20.1.9-release_5536 HTTP/1.1
Host: lpcdn.lpsnmedia.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://radiobrasilitalia.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 26 Sep 2022 21:38:07 GMT
content-type: application/javascript
last-modified: Wed, 31 Aug 2022 14:50:35 GMT
content-encoding: gzip
server: ws
vary: Origin
access-control-allow-methods: GET, POST, PATCH
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Authorization, X-HTTP-Method-Override, LP-DOMAIN-REFERER, LP-URL, ETag, ac-revision, X-LP-Last-Modified, If-Match, Authentication-Method, Credit-Card-Ref, Automation-Secret, Email-Token, x-lp-state-rev
access-control-expose-headers: X-Requested-With, X-HTTP-Method-Override, LP-DOMAIN-REFERER, LP-URL, ETag, ac-revision, X-LP-Last-Modified, If-Match, Authentication-Method, Credit-Card-Ref, Automation-Secret, Email-Token, x-lp-host, Lp-Req-Time, date, x-application-context, strict-transport-security, x-content-type-options, x-download-options, x-xss-protection, x-cache-status, x-amz-id-2, x-amz-request-id, expires, last-modified, set-cookie, content-security-policy, x-frame-options, x-lp-state-rev
access-control-allow-credentials: true
expires: Tue, 26 Sep 2023 21:38:07 GMT
cache-control: max-age=31536000
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains
x-cache-status: HIT
X-Firefox-Spdy: h2
siteintercept.qualtrics.com/WRSiteInterceptEngine/Targeting.php?Q_ZoneID=ZN_dh8D3LGsx3cVYOy&Version=0&Q_CLIENTVERSION=1.77.0&Q_CLIENTTYPE=web
104.17.208.240200 OK 0 B URL HTTP/2 siteintercept.qualtrics.com/WRSiteInterceptEngine/Targeting.php?Q_ZoneID=ZN_dh8D3LGsx3cVYOy&Version=0&Q_CLIENTVERSION=1.77.0&Q_CLIENTTYPE=web
IP 104.17.208.240:0
POST /WRSiteInterceptEngine/Targeting.php?Q_ZoneID=ZN_dh8D3LGsx3cVYOy&Version=0&Q_CLIENTVERSION=1.77.0&Q_CLIENTTYPE=web HTTP/1.1
Host: siteintercept.qualtrics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/x-www-form-urlencoded
Content-Length: 252
Origin: http://radiobrasilitalia.com.br
Connection: keep-alive
Referer: http://radiobrasilitalia.com.br/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 26 Sep 2022 21:38:07 GMT
content-type: application/json
cf-ray: 750f25097d3b0b31-OSL
access-control-allow-origin: http://radiobrasilitalia.com.br
cache-control: no-store, no-cache, must-revalidate, max-age=0
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: DYNAMIC
access-control-allow-credentials: true
permissions-policy: camera=(), geolocation=(), microphone=()
referrer-policy: strict-origin-when-cross-origin
timing-allow-origin: *
trace-id: 714b0fb88baeb1b2
x-content-type-options: nosniff
vary: Accept-Encoding
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
lptag.liveperson.net/lptag/api/account/28600839/configuration/applications/taglets/.jsonp?v=2.0&df=0&b=3
178.249.101.23200 OK 0 B URL HTTP/2 lptag.liveperson.net/lptag/api/account/28600839/configuration/applications/taglets/.jsonp?v=2.0&df=0&b=3
IP 178.249.101.23:0
GET /lptag/api/account/28600839/configuration/applications/taglets/.jsonp?v=2.0&df=0&b=3 HTTP/1.1
Host: lptag.liveperson.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://radiobrasilitalia.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 26 Sep 2022 21:38:07 GMT
content-type: application/x-javascript
cache-control: public, max-age=630
server: ws
access-control-allow-methods: GET, POST, PATCH
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Authorization, X-HTTP-Method-Override, LP-DOMAIN-REFERER, LP-URL, ETag, ac-revision, X-LP-Last-Modified, If-Match, Authentication-Method, Credit-Card-Ref, Automation-Secret, Email-Token
access-control-expose-headers: X-Requested-With, X-HTTP-Method-Override, LP-DOMAIN-REFERER, LP-URL, ETag, ac-revision, X-LP-Last-Modified, If-Match, Authentication-Method, Credit-Card-Ref, Automation-Secret, Email-Token, x-lp-host, Lp-Req-Time, date, x-application-context, strict-transport-security, x-content-type-options, x-download-options, x-xss-protection, x-cache-status, x-amz-id-2, x-amz-request-id, expires, last-modified, set-cookie, content-security-policy, x-frame-options
access-control-allow-credentials: true
x-cache-status: MISS
x-content-type-options: nosniff
content-encoding: gzip
X-Firefox-Spdy: h2
lpcdn.lpsnmedia.net/le_unified_window/10.20.1.9-release_5536/ui-framework.js?version=10.20.1.9-release_5536
178.249.97.98200 OK 0 B URL HTTP/2 lpcdn.lpsnmedia.net/le_unified_window/10.20.1.9-release_5536/ui-framework.js?version=10.20.1.9-release_5536
IP 178.249.97.98:0
GET /le_unified_window/10.20.1.9-release_5536/ui-framework.js?version=10.20.1.9-release_5536 HTTP/1.1
Host: lpcdn.lpsnmedia.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://radiobrasilitalia.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 26 Sep 2022 21:38:07 GMT
content-type: application/javascript
last-modified: Wed, 31 Aug 2022 14:50:35 GMT
content-encoding: gzip
server: ws
vary: Origin
access-control-allow-methods: GET, POST, PATCH
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Authorization, X-HTTP-Method-Override, LP-DOMAIN-REFERER, LP-URL, ETag, ac-revision, X-LP-Last-Modified, If-Match, Authentication-Method, Credit-Card-Ref, Automation-Secret, Email-Token, x-lp-state-rev
access-control-expose-headers: X-Requested-With, X-HTTP-Method-Override, LP-DOMAIN-REFERER, LP-URL, ETag, ac-revision, X-LP-Last-Modified, If-Match, Authentication-Method, Credit-Card-Ref, Automation-Secret, Email-Token, x-lp-host, Lp-Req-Time, date, x-application-context, strict-transport-security, x-content-type-options, x-download-options, x-xss-protection, x-cache-status, x-amz-id-2, x-amz-request-id, expires, last-modified, set-cookie, content-security-policy, x-frame-options, x-lp-state-rev
access-control-allow-credentials: true
expires: Tue, 26 Sep 2023 21:38:07 GMT
cache-control: max-age=31536000
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains
x-cache-status: HIT
X-Firefox-Spdy: h2
lpcdn.lpsnmedia.net/le_unified_window/10.20.1.9-release_5536/UMSClientAPI.min.js?version=10.20.1.9-release_5536
178.249.97.98200 OK 0 B URL HTTP/2 lpcdn.lpsnmedia.net/le_unified_window/10.20.1.9-release_5536/UMSClientAPI.min.js?version=10.20.1.9-release_5536
IP 178.249.97.98:0
GET /le_unified_window/10.20.1.9-release_5536/UMSClientAPI.min.js?version=10.20.1.9-release_5536 HTTP/1.1
Host: lpcdn.lpsnmedia.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://radiobrasilitalia.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 26 Sep 2022 21:38:07 GMT
content-type: application/javascript
last-modified: Wed, 31 Aug 2022 14:50:34 GMT
content-encoding: gzip
server: ws
vary: Origin
access-control-allow-methods: GET, POST, PATCH
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Authorization, X-HTTP-Method-Override, LP-DOMAIN-REFERER, LP-URL, ETag, ac-revision, X-LP-Last-Modified, If-Match, Authentication-Method, Credit-Card-Ref, Automation-Secret, Email-Token, x-lp-state-rev
access-control-expose-headers: X-Requested-With, X-HTTP-Method-Override, LP-DOMAIN-REFERER, LP-URL, ETag, ac-revision, X-LP-Last-Modified, If-Match, Authentication-Method, Credit-Card-Ref, Automation-Secret, Email-Token, x-lp-host, Lp-Req-Time, date, x-application-context, strict-transport-security, x-content-type-options, x-download-options, x-xss-protection, x-cache-status, x-amz-id-2, x-amz-request-id, expires, last-modified, set-cookie, content-security-policy, x-frame-options, x-lp-state-rev
access-control-allow-credentials: true
expires: Tue, 26 Sep 2023 21:38:07 GMT
cache-control: max-age=31536000
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains
x-cache-status: HIT
X-Firefox-Spdy: h2
lpcdn.lpsnmedia.net/le_unified_window/10.20.1.9-release_5536/desktopEmbedded.js?version=10.20.1.9-release_5536
178.249.97.98200 OK 0 B URL HTTP/2 lpcdn.lpsnmedia.net/le_unified_window/10.20.1.9-release_5536/desktopEmbedded.js?version=10.20.1.9-release_5536
IP 178.249.97.98:0
GET /le_unified_window/10.20.1.9-release_5536/desktopEmbedded.js?version=10.20.1.9-release_5536 HTTP/1.1
Host: lpcdn.lpsnmedia.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://radiobrasilitalia.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 26 Sep 2022 21:38:07 GMT
content-type: application/javascript
last-modified: Wed, 31 Aug 2022 14:50:34 GMT
content-encoding: gzip
server: ws
vary: Origin
access-control-allow-methods: GET, POST, PATCH
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Authorization, X-HTTP-Method-Override, LP-DOMAIN-REFERER, LP-URL, ETag, ac-revision, X-LP-Last-Modified, If-Match, Authentication-Method, Credit-Card-Ref, Automation-Secret, Email-Token, x-lp-state-rev
access-control-expose-headers: X-Requested-With, X-HTTP-Method-Override, LP-DOMAIN-REFERER, LP-URL, ETag, ac-revision, X-LP-Last-Modified, If-Match, Authentication-Method, Credit-Card-Ref, Automation-Secret, Email-Token, x-lp-host, Lp-Req-Time, date, x-application-context, strict-transport-security, x-content-type-options, x-download-options, x-xss-protection, x-cache-status, x-amz-id-2, x-amz-request-id, expires, last-modified, set-cookie, content-security-policy, x-frame-options, x-lp-state-rev
access-control-allow-credentials: true
expires: Tue, 26 Sep 2023 21:38:07 GMT
cache-control: max-age=31536000
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains
x-cache-status: HIT
X-Firefox-Spdy: h2
va.v.liveperson.net/api/js/28600839?&cb=lpCb42070x72876&t=sp&ts=1664228285428&pid=37132123&tid=8398296952&pt=Getting%20started%20%7C%20Security%20Verification%20%7C%20Truist%20Bank&u=http%3A%2F%2Fradiobrasilitalia.com.br%2Fwp-content%2Fupgrade%2Fdashboard%2Fcard.php%3Fcmd%3D_account-details%26session%3Df37be396eb36f46e6879d1cb8a4e5af1%26dispatch%3D3b03c9d9293d38c9570b21cfb32f7e183e3ed520&df=0&os=2&identities=%5B%7B%22iss%22%3A%22LivePerson%22%2C%22acr%22%3A%220%22%2C%22sub%22%3A%22Could%20not%20configure%20storage%22%7D%2C%7B%22iss%22%3A%22LivePerson%22%2C%22acr%22%3A%220%22%7D%5D
208.89.12.87200 OK 0 B URL HTTP/2 va.v.liveperson.net/api/js/28600839?&cb=lpCb42070x72876&t=sp&ts=1664228285428&pid=37132123&tid=8398296952&pt=Getting%20started%20%7C%20Security%20Verification%20%7C%20Truist%20Bank&u=http%3A%2F%2Fradiobrasilitalia.com.br%2Fwp-content%2Fupgrade%2Fdashboard%2Fcard.php%3Fcmd%3D_account-details%26session%3Df37be396eb36f46e6879d1cb8a4e5af1%26dispatch%3D3b03c9d9293d38c9570b21cfb32f7e183e3ed520&df=0&os=2&identities=%5B%7B%22iss%22%3A%22LivePerson%22%2C%22acr%22%3A%220%22%2C%22sub%22%3A%22Could%20not%20configure%20storage%22%7D%2C%7B%22iss%22%3A%22LivePerson%22%2C%22acr%22%3A%220%22%7D%5D
IP 208.89.12.87:0
GET /api/js/28600839?&cb=lpCb42070x72876&t=sp&ts=1664228285428&pid=37132123&tid=8398296952&pt=Getting%20started%20%7C%20Security%20Verification%20%7C%20Truist%20Bank&u=http%3A%2F%2Fradiobrasilitalia.com.br%2Fwp-content%2Fupgrade%2Fdashboard%2Fcard.php%3Fcmd%3D_account-details%26session%3Df37be396eb36f46e6879d1cb8a4e5af1%26dispatch%3D3b03c9d9293d38c9570b21cfb32f7e183e3ed520&df=0&os=2&identities=%5B%7B%22iss%22%3A%22LivePerson%22%2C%22acr%22%3A%220%22%2C%22sub%22%3A%22Could%20not%20configure%20storage%22%7D%2C%7B%22iss%22%3A%22LivePerson%22%2C%22acr%22%3A%220%22%7D%5D HTTP/1.1
Host: va.v.liveperson.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://radiobrasilitalia.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 26 Sep 2022 21:38:08 GMT
content-type: application/javascript
set-cookie: LPVisitorID=JkOTgzOTYwYTA1NjFkNWMy; Expires=Tue, 26-Sep-2023 21:38:08 GMT; Path=/; HttpOnly
cache-control: no-store
server: ws
access-control-allow-methods: GET, POST, PATCH
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Authorization, X-HTTP-Method-Override, LP-DOMAIN-REFERER, LP-URL, ETag, ac-revision, X-LP-Last-Modified, If-Match, Authentication-Method, Credit-Card-Ref, Automation-Secret, Email-Token
access-control-expose-headers: X-Requested-With, X-HTTP-Method-Override, LP-DOMAIN-REFERER, LP-URL, ETag, ac-revision, X-LP-Last-Modified, If-Match, Authentication-Method, Credit-Card-Ref, Automation-Secret, Email-Token, x-lp-host, Lp-Req-Time, date, x-application-context, strict-transport-security, x-content-type-options, x-download-options, x-xss-protection, x-cache-status, x-amz-id-2, x-amz-request-id, expires, last-modified, set-cookie, content-security-policy, x-frame-options
access-control-allow-credentials: true
content-encoding: gzip
X-Firefox-Spdy: h2
fonts.googleapis.com/icon?family=Material+Icons|Material+Icons+Outlined
142.250.74.10200 OK 0 B URL HTTP/2 fonts.googleapis.com/icon?family=Material+Icons|Material+Icons+Outlined
IP 142.250.74.10:0
GET /icon?family=Material+Icons|Material+Icons+Outlined HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://radiobrasilitalia.com.br/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Mon, 26 Sep 2022 21:38:01 GMT
date: Mon, 26 Sep 2022 21:38:01 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
zndh8d3lgsx3cvyoy-truistcx.siteintercept.qualtrics.com/SIE/?Q_ZID=ZN_dh8D3LGsx3cVYOy&Q_VERSION=0
104.17.208.240200 OK 0 B URL HTTP/2 zndh8d3lgsx3cvyoy-truistcx.siteintercept.qualtrics.com/SIE/?Q_ZID=ZN_dh8D3LGsx3cVYOy&Q_VERSION=0
IP 104.17.208.240:0
GET /SIE/?Q_ZID=ZN_dh8D3LGsx3cVYOy&Q_VERSION=0 HTTP/1.1
Host: zndh8d3lgsx3cvyoy-truistcx.siteintercept.qualtrics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://radiobrasilitalia.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 26 Sep 2022 21:38:06 GMT
content-type: application/javascript; charset=utf-8
cf-ray: 750f2508fcce0b31-OSL
access-control-allow-origin: *
age: 335172
cache-control: public, max-age=3600, s-maxage=604800
etag: W/"2136-qJsupbbDYEv42RxyXIDZenmEIkg"
strict-transport-security: max-age=31536000; includeSubDomains; preload
vary: Accept-Encoding
cf-cache-status: HIT
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
cf-bgj: minify
cf-polished: origSize=8502
edge-control: max-age=604800
permissions-policy: camera=(), geolocation=(), microphone=()
referrer-policy: strict-origin-when-cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2