r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 37284a837312d6586460a3b86bbe7bd0
6ac0847abd48eb8607597218aaa2cb2d434c012b
6a0e11bb042555d72b397ae0cc3d5e242d3a3fe04418e28ffd222decca7d16ca
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6A0E11BB042555D72B397AE0CC3D5E242D3A3FE04418E28FFD222DECCA7D16CA"
Last-Modified: Wed, 18 Jan 2023 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2905
Expires: Thu, 19 Jan 2023 21:43:50 GMT
Date: Thu, 19 Jan 2023 20:55:25 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash b36ef73c20dffb6bc10194bbd2d0dcfa
a67a4023dc8b4944debaeb92f3ba0f1402c079a6
05a7a4d832cf9e593ca44efea309edcbd80734583bada15fda3e740612eff991
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "05A7A4D832CF9E593CA44EFEA309EDCBD80734583BADA15FDA3E740612EFF991"
Last-Modified: Wed, 18 Jan 2023 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6424
Expires: Thu, 19 Jan 2023 22:42:29 GMT
Date: Thu, 19 Jan 2023 20:55:25 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 6c8239f3894cfba54d1f3a9ea1c85db5
a70f2b3bf79f2aa26b0cc0340dd182565c3eb946
64dc0508d3fcea1ec92fb60310e9b3f5454c0b69f61e8453fd443bc46ab9471b
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "64DC0508D3FCEA1EC92FB60310E9B3F5454C0B69F61E8453FD443BC46AB9471B"
Last-Modified: Tue, 17 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6459
Expires: Thu, 19 Jan 2023 22:43:04 GMT
Date: Thu, 19 Jan 2023 20:55:25 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash ff250d3ef3fa45322bf05039a0122a9f
b3e7a2c383bce1bab807dbe1a03c375258b51f1d
d07f109a96e0ae6ec7b1d46ce8761b3f06fe845769ce65d69e053dd40aa561ba
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Alert, Content-Type, Content-Length, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Thu, 19 Jan 2023 20:34:33 GMT
content-type: application/json
age: 1252
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: /kbzKyTxcamKc7IxocJB7+KxFu9JfuQdjr3+JHcfSO/nNEKXUBnvQ2dCclwxhHCt5W0IL08X1/g=
x-amz-request-id: 0G7ZC5QRN01BJCTT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Thu, 19 Jan 2023 20:46:03 GMT
age: 562
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 19 Jan 2023 20:55:25 GMT
content-type: application/json
content-length: 12
access-control-expose-headers: content-type
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Alert, Retry-After, Expires, Pragma, Content-Type, Backoff, Last-Modified, Cache-Control, ETag
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Thu, 19 Jan 2023 20:48:57 GMT
age: 389
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash dce4a8be753d4a93db03ffca50421c43
068040a8f69777484e545c0053ad54f273710797
7e6dddef8a4a5502c9715f8c20dcb75e132ecc875f13459a967c9e235e9ce3e4
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3649
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 19 Jan 2023 20:55:26 GMT
Last-Modified: Thu, 19 Jan 2023 19:54:37 GMT
Server: ECS (ska/F70F)
X-Cache: HIT
Content-Length: 471
monteazulmg.com.br/files/recaptcha__pt_br.js
51.79.21.85200 OK 4.3 kB URL HTTP/1.1 monteazulmg.com.br/files/recaptcha__pt_br.js
IP 51.79.21.85:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text
Hash 2f194ed388507e9226349a304e28358e
0a4d62846c9703429f11d583353b9a47fae28890
cd53226327389e1b3b5545d737bbe0f849084f65730eaae79e50e3c91df492b0
Analyzer Verdict Alert openphish Lojas Renner
phishtank Other
fortinet Phishing
quad9 Sinkholed
GET /files/recaptcha__pt_br.js HTTP/1.1
Host: monteazulmg.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://monteazulmg.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 19 Jan 2023 20:55:26 GMT
Server: Apache
Last-Modified: Thu, 29 Dec 2022 20:46:00 GMT
ETag: "367e66-10b6-5f0fd92923200"
Accept-Ranges: bytes
Content-Length: 4278
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: application/javascript
push.services.mozilla.com/
44.236.232.139101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 44.236.232.139:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: osQ7fb7GBjK8dLWA6Rp7Cw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: viYXfxeozyiV3vZX0oR03gMZVdM=
monteazulmg.com.br/
51.79.21.85200 OK 667 kB IP 51.79.21.85:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1079)
Size 667 kB (667300 bytes)
Hash 4bd6a822ad58fac37dbd02a99b56183e
ee896c835c6453a4129089ee6f2872318885873b
b557198f16270d2cb6542a053e9b324a0be9f7c46c883b1fff810e5454c03e44
Analyzer Verdict Alert openphish Lojas Renner
phishtank Other
fortinet Phishing
quad9 Sinkholed
GET / HTTP/1.1
Host: monteazulmg.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/1.1 200 OK
Date: Thu, 19 Jan 2023 20:55:25 GMT
Server: Apache
Access-Control-Allow-Origin: *
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
monteazulmg.com.br/files/189e25234ffe70ce_complete.js
51.79.21.85200 OK 4.3 kB URL HTTP/1.1 monteazulmg.com.br/files/189e25234ffe70ce_complete.js
IP 51.79.21.85:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text
Hash 2f194ed388507e9226349a304e28358e
0a4d62846c9703429f11d583353b9a47fae28890
cd53226327389e1b3b5545d737bbe0f849084f65730eaae79e50e3c91df492b0
Analyzer Verdict Alert openphish Lojas Renner
phishtank Other
fortinet Phishing
quad9 Sinkholed
GET /files/189e25234ffe70ce_complete.js HTTP/1.1
Host: monteazulmg.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://monteazulmg.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 19 Jan 2023 20:55:26 GMT
Server: Apache
Last-Modified: Thu, 29 Dec 2022 20:46:00 GMT
ETag: "367d6d-10b6-5f0fd92923200"
Accept-Ranges: bytes
Content-Length: 4278
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/javascript
monteazulmg.com.br/files/analytics.js
51.79.21.85200 OK 4.3 kB URL HTTP/1.1 monteazulmg.com.br/files/analytics.js
IP 51.79.21.85:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text
Hash 2f194ed388507e9226349a304e28358e
0a4d62846c9703429f11d583353b9a47fae28890
cd53226327389e1b3b5545d737bbe0f849084f65730eaae79e50e3c91df492b0
Analyzer Verdict Alert openphish Lojas Renner
phishtank Other
fortinet Phishing
quad9 Sinkholed
GET /files/analytics.js HTTP/1.1
Host: monteazulmg.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://monteazulmg.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 19 Jan 2023 20:55:26 GMT
Server: Apache
Last-Modified: Thu, 29 Dec 2022 20:46:00 GMT
ETag: "367e5c-10b6-5f0fd92923200"
Accept-Ranges: bytes
Content-Length: 4278
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: application/javascript
monteazulmg.com.br/files/tag.js
51.79.21.85200 OK 4.3 kB URL HTTP/1.1 monteazulmg.com.br/files/tag.js
IP 51.79.21.85:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text
Hash 2f194ed388507e9226349a304e28358e
0a4d62846c9703429f11d583353b9a47fae28890
cd53226327389e1b3b5545d737bbe0f849084f65730eaae79e50e3c91df492b0
Analyzer Verdict Alert openphish Lojas Renner
phishtank Other
fortinet Phishing
quad9 Sinkholed
GET /files/tag.js HTTP/1.1
Host: monteazulmg.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://monteazulmg.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 19 Jan 2023 20:55:26 GMT
Server: Apache
Last-Modified: Thu, 29 Dec 2022 20:46:00 GMT
ETag: "367e69-10b6-5f0fd92923200"
Accept-Ranges: bytes
Content-Length: 4278
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: application/javascript
monteazulmg.com.br/files/2.bundle-41738a98a1d8da126ac1.js
51.79.21.85200 OK 4.3 kB URL HTTP/1.1 monteazulmg.com.br/files/2.bundle-41738a98a1d8da126ac1.js
IP 51.79.21.85:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text
Hash 2f194ed388507e9226349a304e28358e
0a4d62846c9703429f11d583353b9a47fae28890
cd53226327389e1b3b5545d737bbe0f849084f65730eaae79e50e3c91df492b0
Analyzer Verdict Alert openphish Lojas Renner
phishtank Other
fortinet Phishing
quad9 Sinkholed
GET /files/2.bundle-41738a98a1d8da126ac1.js HTTP/1.1
Host: monteazulmg.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://monteazulmg.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 19 Jan 2023 20:55:26 GMT
Server: Apache
Last-Modified: Thu, 29 Dec 2022 20:46:00 GMT
ETag: "367e59-10b6-5f0fd92923200"
Accept-Ranges: bytes
Content-Length: 4278
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript
monteazulmg.com.br/files/3.bundle-c48da13579c3bb9243ed.js
51.79.21.85200 OK 4.3 kB URL HTTP/1.1 monteazulmg.com.br/files/3.bundle-c48da13579c3bb9243ed.js
IP 51.79.21.85:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text
Hash 2f194ed388507e9226349a304e28358e
0a4d62846c9703429f11d583353b9a47fae28890
cd53226327389e1b3b5545d737bbe0f849084f65730eaae79e50e3c91df492b0
Analyzer Verdict Alert openphish Lojas Renner
phishtank Other
fortinet Phishing
quad9 Sinkholed
GET /files/3.bundle-c48da13579c3bb9243ed.js HTTP/1.1
Host: monteazulmg.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://monteazulmg.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 19 Jan 2023 20:55:26 GMT
Server: Apache
Last-Modified: Thu, 29 Dec 2022 20:46:00 GMT
ETag: "367e5b-10b6-5f0fd92923200"
Accept-Ranges: bytes
Content-Length: 4278
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/javascript
monteazulmg.com.br/files/gtm.js
51.79.21.85200 OK 4.3 kB URL HTTP/1.1 monteazulmg.com.br/files/gtm.js
IP 51.79.21.85:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text
Hash 2f194ed388507e9226349a304e28358e
0a4d62846c9703429f11d583353b9a47fae28890
cd53226327389e1b3b5545d737bbe0f849084f65730eaae79e50e3c91df492b0
Analyzer Verdict Alert openphish Lojas Renner
phishtank Other
fortinet Phishing
quad9 Sinkholed
GET /files/gtm.js HTTP/1.1
Host: monteazulmg.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://monteazulmg.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 19 Jan 2023 20:55:26 GMT
Server: Apache
Last-Modified: Thu, 29 Dec 2022 20:46:00 GMT
ETag: "367e62-10b6-5f0fd92923200"
Accept-Ranges: bytes
Content-Length: 4278
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: application/javascript
monteazulmg.com.br/files/vendors.bundle-859d26788acf215a201a.js
51.79.21.85200 OK 4.3 kB URL HTTP/1.1 monteazulmg.com.br/files/vendors.bundle-859d26788acf215a201a.js
IP 51.79.21.85:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text
Hash 2f194ed388507e9226349a304e28358e
0a4d62846c9703429f11d583353b9a47fae28890
cd53226327389e1b3b5545d737bbe0f849084f65730eaae79e50e3c91df492b0
Analyzer Verdict Alert openphish Lojas Renner
phishtank Other
fortinet Phishing
quad9 Sinkholed
GET /files/vendors.bundle-859d26788acf215a201a.js HTTP/1.1
Host: monteazulmg.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://monteazulmg.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 19 Jan 2023 20:55:26 GMT
Server: Apache
Last-Modified: Thu, 29 Dec 2022 20:46:00 GMT
ETag: "367e6c-10b6-5f0fd92923200"
Accept-Ranges: bytes
Content-Length: 4278
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/javascript
monteazulmg.com.br/files/main.bundle-83aa0902fe6073347bc6.js
51.79.21.85200 OK 4.3 kB URL HTTP/1.1 monteazulmg.com.br/files/main.bundle-83aa0902fe6073347bc6.js
IP 51.79.21.85:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text
Hash 2f194ed388507e9226349a304e28358e
0a4d62846c9703429f11d583353b9a47fae28890
cd53226327389e1b3b5545d737bbe0f849084f65730eaae79e50e3c91df492b0
Analyzer Verdict Alert openphish Lojas Renner
phishtank Other
fortinet Phishing
quad9 Sinkholed
GET /files/main.bundle-83aa0902fe6073347bc6.js HTTP/1.1
Host: monteazulmg.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://monteazulmg.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 19 Jan 2023 20:55:26 GMT
Server: Apache
Last-Modified: Thu, 29 Dec 2022 20:46:00 GMT
ETag: "367e65-10b6-5f0fd92923200"
Accept-Ranges: bytes
Content-Length: 4278
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/javascript
monteazulmg.com.br/files/api.js
51.79.21.85200 OK 4.3 kB URL HTTP/1.1 monteazulmg.com.br/files/api.js
IP 51.79.21.85:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text
Hash 2f194ed388507e9226349a304e28358e
0a4d62846c9703429f11d583353b9a47fae28890
cd53226327389e1b3b5545d737bbe0f849084f65730eaae79e50e3c91df492b0
Analyzer Verdict Alert openphish Lojas Renner
phishtank Other
fortinet Phishing
quad9 Sinkholed
GET /files/api.js HTTP/1.1
Host: monteazulmg.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://monteazulmg.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 19 Jan 2023 20:55:26 GMT
Server: Apache
Last-Modified: Thu, 29 Dec 2022 20:46:00 GMT
ETag: "367e5d-10b6-5f0fd92923200"
Accept-Ranges: bytes
Content-Length: 4278
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript
monteazulmg.com.br/files/ruxitagentjs_ICA27NVfghjqrux_10255221104040649.js
51.79.21.85200 OK 260 kB URL HTTP/1.1 monteazulmg.com.br/files/ruxitagentjs_ICA27NVfghjqrux_10255221104040649.js
IP 51.79.21.85:0
File type ASCII text, with very long lines (2009)
Size 260 kB (259986 bytes)
Hash d75b7e8b5c1ca412a99e14204940178d
b9577521344819fa192245b811d1ca85bc68a4cb
1170ed3431de17bcda0caaa56195d36a60ffa436b4f459c9a325d4383b6d3a6f
Analyzer Verdict Alert openphish Lojas Renner
phishtank Other
fortinet Phishing
quad9 Sinkholed
GET /files/ruxitagentjs_ICA27NVfghjqrux_10255221104040649.js HTTP/1.1
Host: monteazulmg.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://monteazulmg.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 19 Jan 2023 20:55:26 GMT
Server: Apache
Last-Modified: Thu, 29 Dec 2022 20:46:00 GMT
ETag: "367e68-3f792-5f0fd92923200"
Accept-Ranges: bytes
Content-Length: 259986
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: application/javascript
monteazulmg.com.br/images/celular-login.png
51.79.21.85200 OK 155 kB URL HTTP/1.1 monteazulmg.com.br/images/celular-login.png
IP 51.79.21.85:0
File type PNG image data, 379 x 485, 8-bit/color RGBA, non-interlaced\012- data
Size 155 kB (155176 bytes)
Hash e624d089f9b2fff768b6b592285a4f12
bef94cbbf3c93e3cc8cc45975065216efc046336
7db4ada57262fbacd47bef4e96e3cedda276b9267e6ca4d20adeeb1c24d870b6
Analyzer Verdict Alert openphish Lojas Renner
phishtank Other
quad9 Sinkholed
GET /images/celular-login.png HTTP/1.1
Host: monteazulmg.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://monteazulmg.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 19 Jan 2023 20:55:27 GMT
Server: Apache
Last-Modified: Sat, 31 Dec 2022 18:02:14 GMT
ETag: "367e70-25e28-5f12384941580"
Accept-Ranges: bytes
Content-Length: 155176
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: image/png
monteazulmg.com.br/images/google-play-badge-reverse.svg
51.79.21.85200 OK 11 kB URL HTTP/1.1 monteazulmg.com.br/images/google-play-badge-reverse.svg
IP 51.79.21.85:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (10788)
Hash dd500e2468aecaccb46e64859f38ed87
6922b1027cf980cf19ed84c94732c3b704798cc8
e946d863a136a09089fd275d574ff3346bad8327d4ef378c06af35872d9fe56d
Analyzer Verdict Alert openphish Lojas Renner
phishtank Other
fortinet Phishing
quad9 Sinkholed
GET /images/google-play-badge-reverse.svg HTTP/1.1
Host: monteazulmg.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://monteazulmg.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 19 Jan 2023 20:55:27 GMT
Server: Apache
Last-Modified: Sat, 31 Dec 2022 18:07:46 GMT
ETag: "367e71-2a25-5f123985e0080"
Accept-Ranges: bytes
Content-Length: 10789
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: image/svg+xml
monteazulmg.com.br/images/google-play-badge.svg
51.79.21.85200 OK 11 kB URL HTTP/1.1 monteazulmg.com.br/images/google-play-badge.svg
IP 51.79.21.85:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (10785)
Hash f1a5450f21493625afbc619436ad14e0
e641815fd9bd38b5827c9e65821ed5a8fa05b0fb
8827f96ace2afe4aeff4c33db4ac86193f38a62cb30d9fbba949e0b72c2a55ff
Analyzer Verdict Alert openphish Lojas Renner
phishtank Other
fortinet Phishing
quad9 Sinkholed
GET /images/google-play-badge.svg HTTP/1.1
Host: monteazulmg.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://monteazulmg.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 19 Jan 2023 20:55:27 GMT
Server: Apache
Last-Modified: Sat, 31 Dec 2022 18:06:06 GMT
ETag: "367e73-2a22-5f12392681f80"
Accept-Ranges: bytes
Content-Length: 10786
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: image/svg+xml
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash d202273e867b01591672b07722f430fb
4bbab50550b5b6a583e1fcdeb68c1b6b67b0cd87
5b4ab20a3dc9a884b04e727e6d62a1428984126ea975e308c48a6e9b6581146a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 19 Jan 2023 20:55:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
monteazulmg.com.br/images/app-store-badge.svg
51.79.21.85200 OK 14 kB URL HTTP/1.1 monteazulmg.com.br/images/app-store-badge.svg
IP 51.79.21.85:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (14261)
Hash 34683b771a7e7e258b2aaa2e1d7b37f1
cbd7c1053fe89019d386d1676ffa086ddbf0a8b5
3dd08d21a5c010294a50355af3565a50d08ea4aef83e822114be29171209f109
Analyzer Verdict Alert openphish Lojas Renner
phishtank Other
fortinet Phishing
quad9 Sinkholed
GET /images/app-store-badge.svg HTTP/1.1
Host: monteazulmg.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://monteazulmg.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 19 Jan 2023 20:55:27 GMT
Server: Apache
Last-Modified: Sat, 31 Dec 2022 18:08:10 GMT
ETag: "367e6e-37b6-5f12399cc3680"
Accept-Ranges: bytes
Content-Length: 14262
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: image/svg+xml
www.googletagmanager.com/gtm.js?id=GTM-N2FTFQ
216.58.207.200200 OK 50 kB URL HTTP/2 www.googletagmanager.com/gtm.js?id=GTM-N2FTFQ
IP 216.58.207.200:0
File type ASCII text, with very long lines (3707)
Hash f84bce1efc78425c85ad098d64c4703e
1928ae5a6f9991961fa3608df6ffb25e283ff8ec
0e405313c3dc4ace60014be93f5c1a724ff9370fd9af771d9325078952a01ec1
GET /gtm.js?id=GTM-N2FTFQ HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://monteazulmg.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Thu, 19 Jan 2023 20:55:27 GMT
expires: Thu, 19 Jan 2023 20:55:27 GMT
cache-control: private, max-age=900
last-modified: Thu, 19 Jan 2023 18:50:35 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 50426
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 149a7cdd0e94d31b2237ac241b3bad35
c6e2c3aba0c96ffc26114f79306930a4554964b3
fe9cd8e03a847278924ed338131b5ef16b8ef315db81f3e6387c0621baa46232
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 19 Jan 2023 20:55:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash d202273e867b01591672b07722f430fb
4bbab50550b5b6a583e1fcdeb68c1b6b67b0cd87
5b4ab20a3dc9a884b04e727e6d62a1428984126ea975e308c48a6e9b6581146a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 19 Jan 2023 20:55:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 149a7cdd0e94d31b2237ac241b3bad35
c6e2c3aba0c96ffc26114f79306930a4554964b3
fe9cd8e03a847278924ed338131b5ef16b8ef315db81f3e6387c0621baa46232
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 19 Jan 2023 20:55:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.com/recaptcha/api2/bframe?hl=pt-BR&v=5qcenVbrhOy8zihcc2aHOWD4&k=6LcNwW8UAAAAAJ8eSLfer6Z8Lm28favadVWPryjV
216.58.211.4200 OK 1.1 kB URL HTTP/2 www.google.com/recaptcha/api2/bframe?hl=pt-BR&v=5qcenVbrhOy8zihcc2aHOWD4&k=6LcNwW8UAAAAAJ8eSLfer6Z8Lm28favadVWPryjV
IP 216.58.211.4:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 85d48efda7b6767da475a65b00d40e86
1fd1186f052ede7dc7ace922d6a786331dbb7339
ee547549fd1fc718dfbf975b5f88878d81473767898563bd89f1852c5c8711bd
GET /recaptcha/api2/bframe?hl=pt-BR&v=5qcenVbrhOy8zihcc2aHOWD4&k=6LcNwW8UAAAAAJ8eSLfer6Z8Lm28favadVWPryjV HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://monteazulmg.com.br/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-type: text/html; charset=utf-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Thu, 19 Jan 2023 20:55:27 GMT
content-security-policy: script-src 'nonce-ZTPamfUtnzkoiHAwo54aKA' 'unsafe-inline' 'strict-dynamic' https: http: 'unsafe-eval';object-src 'none';base-uri 'self';report-uri https://csp.withgoogle.com/csp/recaptcha/1
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 1118
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
monteazulmg.com.br/cartoes-renner/vectors/whatsapp.svg
51.79.21.85404 Not Found 315 B URL HTTP/1.1 monteazulmg.com.br/cartoes-renner/vectors/whatsapp.svg
IP 51.79.21.85:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3
Analyzer Verdict Alert openphish Lojas Renner
phishtank Other
fortinet Phishing
quad9 Sinkholed
GET /cartoes-renner/vectors/whatsapp.svg HTTP/1.1
Host: monteazulmg.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://monteazulmg.com.br/
Cookie: dtCookie=v_4_srv_-2D98_sn_IUD0RTQCP7I1UHKUDL08G2GU0AE0VNUG; rxVisitor=16741617268746LN9SJ7MPSUFVRQ5OOAGJK6UC2LEBQMP; dtPC=-98$161726867_803h1vUTUDBMRPOVOKDWMDEFKRFDPTHOJRRKKN-0e0; rxvt=1674163527012|1674161726876; dtLatC=156; dtSa=-
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: same-origin
Sec-Fetch-Site: same-origin
HTTP/1.1 404 Not Found
Date: Thu, 19 Jan 2023 20:55:27 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
www.google.com/recaptcha/api2/anchor?ar=1&k=6LcNwW8UAAAAAJ8eSLfer6Z8Lm28favadVWPryjV&co=aHR0cHM6Ly93d3cucmVhbGl6ZXNvbHVjb2VzZmluYW5jZWlyYXMuY29tLmJyOjQ0Mw..&hl=pt-BR&v=5qcenVbrhOy8zihcc2aHOWD4&size=invisible&badge=inline&cb=8orq27d92f0i
216.58.211.4200 OK 23 kB URL HTTP/2 www.google.com/recaptcha/api2/anchor?ar=1&k=6LcNwW8UAAAAAJ8eSLfer6Z8Lm28favadVWPryjV&co=aHR0cHM6Ly93d3cucmVhbGl6ZXNvbHVjb2VzZmluYW5jZWlyYXMuY29tLmJyOjQ0Mw..&hl=pt-BR&v=5qcenVbrhOy8zihcc2aHOWD4&size=invisible&badge=inline&cb=8orq27d92f0i
IP 216.58.211.4:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (35961)
Hash a5d3e4274454f920fbe5579536274ad7
2550864159deff09a5cab87848507c6856853a4a
843129648aad7c22588e8ef4e9f0891a2c184c6715910b53c847b54ed3ae67ce
GET /recaptcha/api2/anchor?ar=1&k=6LcNwW8UAAAAAJ8eSLfer6Z8Lm28favadVWPryjV&co=aHR0cHM6Ly93d3cucmVhbGl6ZXNvbHVjb2VzZmluYW5jZWlyYXMuY29tLmJyOjQ0Mw..&hl=pt-BR&v=5qcenVbrhOy8zihcc2aHOWD4&size=invisible&badge=inline&cb=8orq27d92f0i HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://monteazulmg.com.br/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-type: text/html; charset=utf-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Thu, 19 Jan 2023 20:55:27 GMT
content-security-policy: script-src 'nonce-cTLYkr5XgPluYpHNOr423A' 'unsafe-inline' 'strict-dynamic' https: http: 'unsafe-eval';object-src 'none';base-uri 'self';report-uri https://csp.withgoogle.com/csp/recaptcha/1
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 23295
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
monteazulmg.com.br/images/bg-login.svg
51.79.21.85200 OK 664 B URL HTTP/1.1 monteazulmg.com.br/images/bg-login.svg
IP 51.79.21.85:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (663)
Hash bbba81daa6feeed173485552f13c0f2a
aa3778c907487f06760a88ed95fa98522512f292
3bb71cec41dd0b3c5782f72d32b1b028fdc9558f0acace778d1a2c312d50f382
Analyzer Verdict Alert openphish Lojas Renner
phishtank Other
fortinet Phishing
quad9 Sinkholed
GET /images/bg-login.svg HTTP/1.1
Host: monteazulmg.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://monteazulmg.com.br/
Cookie: dtCookie=v_4_srv_-2D98_sn_IUD0RTQCP7I1UHKUDL08G2GU0AE0VNUG; rxVisitor=16741617268746LN9SJ7MPSUFVRQ5OOAGJK6UC2LEBQMP; dtPC=-98$161726867_803h1vUTUDBMRPOVOKDWMDEFKRFDPTHOJRRKKN-0e0; rxvt=1674163527012|1674161726876; dtLatC=156; dtSa=-
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 19 Jan 2023 20:55:27 GMT
Server: Apache
Last-Modified: Sat, 31 Dec 2022 18:04:38 GMT
ETag: "367e6f-298-5f1238d295980"
Accept-Ranges: bytes
Content-Length: 664
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: image/svg+xml
monteazulmg.com.br/cartoes-renner/fonts/Roboto-Regular.woff2
51.79.21.85404 Not Found 315 B URL HTTP/1.1 monteazulmg.com.br/cartoes-renner/fonts/Roboto-Regular.woff2
IP 51.79.21.85:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3
Analyzer Verdict Alert openphish Lojas Renner
phishtank Other
fortinet Phishing
quad9 Sinkholed
GET /cartoes-renner/fonts/Roboto-Regular.woff2 HTTP/1.1
Host: monteazulmg.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://monteazulmg.com.br/
Cookie: dtCookie=v_4_srv_-2D98_sn_IUD0RTQCP7I1UHKUDL08G2GU0AE0VNUG; rxVisitor=16741617268746LN9SJ7MPSUFVRQ5OOAGJK6UC2LEBQMP; dtPC=-98$161726867_803h1vUTUDBMRPOVOKDWMDEFKRFDPTHOJRRKKN-0e0; rxvt=1674163527012|1674161726876; dtLatC=156; dtSa=-
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 404 Not Found
Date: Thu, 19 Jan 2023 20:55:27 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
monteazulmg.com.br/cartoes-renner/fonts/Roboto-Black.woff2
51.79.21.85404 Not Found 315 B URL HTTP/1.1 monteazulmg.com.br/cartoes-renner/fonts/Roboto-Black.woff2
IP 51.79.21.85:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3
Analyzer Verdict Alert openphish Lojas Renner
phishtank Other
fortinet Phishing
quad9 Sinkholed
GET /cartoes-renner/fonts/Roboto-Black.woff2 HTTP/1.1
Host: monteazulmg.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://monteazulmg.com.br/
Cookie: dtCookie=v_4_srv_-2D98_sn_IUD0RTQCP7I1UHKUDL08G2GU0AE0VNUG; rxVisitor=16741617268746LN9SJ7MPSUFVRQ5OOAGJK6UC2LEBQMP; dtPC=-98$161726867_803h1vUTUDBMRPOVOKDWMDEFKRFDPTHOJRRKKN-0e0; rxvt=1674163527012|1674161726876; dtLatC=156; dtSa=-
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 404 Not Found
Date: Thu, 19 Jan 2023 20:55:27 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
monteazulmg.com.br/cartoes-renner/fonts/Roboto-Bold.woff2
51.79.21.85404 Not Found 315 B URL HTTP/1.1 monteazulmg.com.br/cartoes-renner/fonts/Roboto-Bold.woff2
IP 51.79.21.85:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3
Analyzer Verdict Alert openphish Lojas Renner
phishtank Other
fortinet Phishing
quad9 Sinkholed
GET /cartoes-renner/fonts/Roboto-Bold.woff2 HTTP/1.1
Host: monteazulmg.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://monteazulmg.com.br/
Cookie: dtCookie=v_4_srv_-2D98_sn_IUD0RTQCP7I1UHKUDL08G2GU0AE0VNUG; rxVisitor=16741617268746LN9SJ7MPSUFVRQ5OOAGJK6UC2LEBQMP; dtPC=-98$161726867_803h1vUTUDBMRPOVOKDWMDEFKRFDPTHOJRRKKN-0e0; rxvt=1674163527012|1674161726876; dtLatC=156; dtSa=-
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 404 Not Found
Date: Thu, 19 Jan 2023 20:55:27 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
monteazulmg.com.br/cartoes-renner/fonts/Roboto-Light.woff2
51.79.21.85404 Not Found 315 B URL HTTP/1.1 monteazulmg.com.br/cartoes-renner/fonts/Roboto-Light.woff2
IP 51.79.21.85:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3
Analyzer Verdict Alert openphish Lojas Renner
phishtank Other
fortinet Phishing
quad9 Sinkholed
GET /cartoes-renner/fonts/Roboto-Light.woff2 HTTP/1.1
Host: monteazulmg.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://monteazulmg.com.br/
Cookie: dtCookie=v_4_srv_-2D98_sn_IUD0RTQCP7I1UHKUDL08G2GU0AE0VNUG; rxVisitor=16741617268746LN9SJ7MPSUFVRQ5OOAGJK6UC2LEBQMP; dtPC=-98$161726867_803h1vUTUDBMRPOVOKDWMDEFKRFDPTHOJRRKKN-0e0; rxvt=1674163527012|1674161726876; dtLatC=156; dtSa=-
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 404 Not Found
Date: Thu, 19 Jan 2023 20:55:27 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 623f341fa3fd0e09d3a2b649ea882919
98c12490034b5633fcc6386b627947806495fc61
edf2873ae5aee565800ffbd38c62519e683adf9f4624bd49af202b64f158f5eb
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 19 Jan 2023 20:55:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 2710e6694429ed2cf5082b6e48eb6ebe
fd6e63ac90e1d86f37e5f46c98c7592a86106217
928ff655e10cf8a01515e4ca9ad5c7128044617acd61fbd46b613b4861aa5379
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 19 Jan 2023 20:55:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 2710e6694429ed2cf5082b6e48eb6ebe
fd6e63ac90e1d86f37e5f46c98c7592a86106217
928ff655e10cf8a01515e4ca9ad5c7128044617acd61fbd46b613b4861aa5379
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 19 Jan 2023 20:55:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 2710e6694429ed2cf5082b6e48eb6ebe
fd6e63ac90e1d86f37e5f46c98c7592a86106217
928ff655e10cf8a01515e4ca9ad5c7128044617acd61fbd46b613b4861aa5379
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 19 Jan 2023 20:55:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.gstatic.com/recaptcha/releases/5qcenVbrhOy8zihcc2aHOWD4/styles__ltr.css
142.250.74.35200 OK 24 kB URL HTTP/2 www.gstatic.com/recaptcha/releases/5qcenVbrhOy8zihcc2aHOWD4/styles__ltr.css
IP 142.250.74.35:0
File type ASCII text, with very long lines (52913), with no line terminators
Hash f4bb161deae4e93f1a82e52f82ea2af9
74cd72b02999ea35cde6dd6c1d58ca9aec94da07
3330fe65fd8dbe742211f1609fbfe70b3b94434ad5639223942d921f085ea589
GET /recaptcha/releases/5qcenVbrhOy8zihcc2aHOWD4/styles__ltr.css HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 24262
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 13 Jan 2023 10:54:29 GMT
expires: Sat, 13 Jan 2024 10:54:29 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 15 Dec 2022 05:24:10 GMT
content-type: text/css
age: 554458
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
monteazulmg.com.br/cartoes-renner/fonts/Roboto-Regular.woff
51.79.21.85404 Not Found 315 B URL HTTP/1.1 monteazulmg.com.br/cartoes-renner/fonts/Roboto-Regular.woff
IP 51.79.21.85:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3
Analyzer Verdict Alert openphish Lojas Renner
phishtank Other
fortinet Phishing
quad9 Sinkholed
GET /cartoes-renner/fonts/Roboto-Regular.woff HTTP/1.1
Host: monteazulmg.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://monteazulmg.com.br/
Cookie: dtCookie=v_4_srv_-2D98_sn_IUD0RTQCP7I1UHKUDL08G2GU0AE0VNUG; rxVisitor=16741617268746LN9SJ7MPSUFVRQ5OOAGJK6UC2LEBQMP; dtPC=-98$161726867_803h1vUTUDBMRPOVOKDWMDEFKRFDPTHOJRRKKN-0e0; rxvt=1674163527076|1674161726876; dtLatC=156; dtSa=-
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 404 Not Found
Date: Thu, 19 Jan 2023 20:55:27 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
monteazulmg.com.br/cartoes-renner/fonts/Roboto-Black.woff
51.79.21.85404 Not Found 315 B URL HTTP/1.1 monteazulmg.com.br/cartoes-renner/fonts/Roboto-Black.woff
IP 51.79.21.85:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3
Analyzer Verdict Alert openphish Lojas Renner
phishtank Other
fortinet Phishing
quad9 Sinkholed
GET /cartoes-renner/fonts/Roboto-Black.woff HTTP/1.1
Host: monteazulmg.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://monteazulmg.com.br/
Cookie: dtCookie=v_4_srv_-2D98_sn_IUD0RTQCP7I1UHKUDL08G2GU0AE0VNUG; rxVisitor=16741617268746LN9SJ7MPSUFVRQ5OOAGJK6UC2LEBQMP; dtPC=-98$161726867_803h1vUTUDBMRPOVOKDWMDEFKRFDPTHOJRRKKN-0e0; rxvt=1674163527076|1674161726876; dtLatC=156; dtSa=-
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 404 Not Found
Date: Thu, 19 Jan 2023 20:55:27 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
monteazulmg.com.br/cartoes-renner/fonts/Roboto-Bold.woff
51.79.21.85404 Not Found 315 B URL HTTP/1.1 monteazulmg.com.br/cartoes-renner/fonts/Roboto-Bold.woff
IP 51.79.21.85:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3
Analyzer Verdict Alert openphish Lojas Renner
phishtank Other
fortinet Phishing
quad9 Sinkholed
GET /cartoes-renner/fonts/Roboto-Bold.woff HTTP/1.1
Host: monteazulmg.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://monteazulmg.com.br/
Cookie: dtCookie=v_4_srv_-2D98_sn_IUD0RTQCP7I1UHKUDL08G2GU0AE0VNUG; rxVisitor=16741617268746LN9SJ7MPSUFVRQ5OOAGJK6UC2LEBQMP; dtPC=-98$161726867_803h1vUTUDBMRPOVOKDWMDEFKRFDPTHOJRRKKN-0e0; rxvt=1674163527076|1674161726876; dtLatC=156; dtSa=-
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 404 Not Found
Date: Thu, 19 Jan 2023 20:55:27 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
www.gstatic.com/recaptcha/releases/5qcenVbrhOy8zihcc2aHOWD4/recaptcha__pt_br.js
142.250.74.35200 OK 166 kB URL HTTP/2 www.gstatic.com/recaptcha/releases/5qcenVbrhOy8zihcc2aHOWD4/recaptcha__pt_br.js
IP 142.250.74.35:0
File type ASCII text, with very long lines (766)
Size 166 kB (165873 bytes)
Hash 4624e3bd959e10e6bcb4a31ee1b01032
2f60917d369c671ac23405fa2db79905942a25b3
a380dd797e095c77205193aa7dae9dbc1b222587ef9740350ab3aafa0b092714
GET /recaptcha/releases/5qcenVbrhOy8zihcc2aHOWD4/recaptcha__pt_br.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 165873
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 15 Jan 2023 04:47:28 GMT
expires: Mon, 15 Jan 2024 04:47:28 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 15 Dec 2022 05:24:10 GMT
content-type: text/javascript
age: 403679
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
monteazulmg.com.br/cartoes-renner/fonts/Roboto-Light.woff
51.79.21.85404 Not Found 315 B URL HTTP/1.1 monteazulmg.com.br/cartoes-renner/fonts/Roboto-Light.woff
IP 51.79.21.85:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3
Analyzer Verdict Alert openphish Lojas Renner
phishtank Other
fortinet Phishing
quad9 Sinkholed
GET /cartoes-renner/fonts/Roboto-Light.woff HTTP/1.1
Host: monteazulmg.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://monteazulmg.com.br/
Cookie: dtCookie=v_4_srv_-2D98_sn_IUD0RTQCP7I1UHKUDL08G2GU0AE0VNUG; rxVisitor=16741617268746LN9SJ7MPSUFVRQ5OOAGJK6UC2LEBQMP; dtPC=-98$161726867_803h1vUTUDBMRPOVOKDWMDEFKRFDPTHOJRRKKN-0e0; rxvt=1674163527076|1674161726876; dtLatC=156; dtSa=-
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 404 Not Found
Date: Thu, 19 Jan 2023 20:55:27 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 2710e6694429ed2cf5082b6e48eb6ebe
fd6e63ac90e1d86f37e5f46c98c7592a86106217
928ff655e10cf8a01515e4ca9ad5c7128044617acd61fbd46b613b4861aa5379
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 19 Jan 2023 20:55:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 7db9f11a1c6ab0117ed3dd1d36e3aecc
61a4de77803ce4ad730c21dd88b5b55a196f26d6
b52c568528f72c5653bad85a1f72fb22f43dcb5d96ad234ab2772a7f95ca6cc2
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B52C568528F72C5653BAD85A1F72FB22F43DCB5D96AD234AB2772A7F95CA6CC2"
Last-Modified: Tue, 17 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6326
Expires: Thu, 19 Jan 2023 22:40:53 GMT
Date: Thu, 19 Jan 2023 20:55:27 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 7db9f11a1c6ab0117ed3dd1d36e3aecc
61a4de77803ce4ad730c21dd88b5b55a196f26d6
b52c568528f72c5653bad85a1f72fb22f43dcb5d96ad234ab2772a7f95ca6cc2
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B52C568528F72C5653BAD85A1F72FB22F43DCB5D96AD234AB2772A7F95CA6CC2"
Last-Modified: Tue, 17 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6326
Expires: Thu, 19 Jan 2023 22:40:53 GMT
Date: Thu, 19 Jan 2023 20:55:27 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 7db9f11a1c6ab0117ed3dd1d36e3aecc
61a4de77803ce4ad730c21dd88b5b55a196f26d6
b52c568528f72c5653bad85a1f72fb22f43dcb5d96ad234ab2772a7f95ca6cc2
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B52C568528F72C5653BAD85A1F72FB22F43DCB5D96AD234AB2772A7F95CA6CC2"
Last-Modified: Tue, 17 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6326
Expires: Thu, 19 Jan 2023 22:40:53 GMT
Date: Thu, 19 Jan 2023 20:55:27 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F57ef64b6-6b9b-4860-a201-58a01048084b.jpeg
34.120.237.76200 OK 9.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F57ef64b6-6b9b-4860-a201-58a01048084b.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 511bbd0c410838e4a978d471d361d876
706be1b2636ad65bf5fe78ef7301af472c015275
e124c1ba6059fb613d0ab8f7ad37f4524323e7bbde851f78e9e5727c7d20f19f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F57ef64b6-6b9b-4860-a201-58a01048084b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9916
x-amzn-requestid: 42bb326d-889c-4b91-b989-47c1fd650afa
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: e96pVF61oAMF76g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c8a4a1-2f33e6be45e298a7120d1119;Sampled=0
x-amzn-remapped-date: Thu, 19 Jan 2023 02:02:09 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 68BfqCCeDzqQURstD87lSuWaXjwrqVQnXX8ws6EeFfQtbu_ad9JEgw==
via: 1.1 f13aef0c4b52f6f681401f232d03eb68.cloudfront.net (CloudFront), 1.1 d6b180eb367f7de26d67a9f3901b96a6.cloudfront.net (CloudFront), 1.1 google
date: Thu, 19 Jan 2023 05:26:43 GMT
etag: "706be1b2636ad65bf5fe78ef7301af472c015275"
content-type: image/jpeg
age: 55724
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe34f344d-12b3-4719-9ecf-6191897f233e.jpeg
34.120.237.76200 OK 6.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe34f344d-12b3-4719-9ecf-6191897f233e.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b015242ebdda9cc22cfe6741d2e926f1
76072223007cd11c6f7b9fda8f01818ab0fea740
b7a72c737cac91c83c39718de999bc6ff0ec4ede63342e86407190d95e60d9a1
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe34f344d-12b3-4719-9ecf-6191897f233e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6908
x-amzn-requestid: 5f0a0b3b-1d4c-450e-bcd5-481bda79f4e1
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: eq1qQHwYIAMF-IQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c1030e-62d053e35c8ab2374fd2fe35;Sampled=0
x-amzn-remapped-date: Fri, 13 Jan 2023 07:06:54 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: WdNoHBL4A3J_FHp8V9HLUMNKmEPIw-lstt0OdqYJtcUGfMRZJXPdwQ==
via: 1.1 c34da255183aa208dd1c722ff211f9b2.cloudfront.net (CloudFront), 1.1 aef00f14752da9aa504d392fd46eff94.cloudfront.net (CloudFront), 1.1 google
date: Thu, 19 Jan 2023 11:03:43 GMT
age: 35504
etag: "76072223007cd11c6f7b9fda8f01818ab0fea740"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F615cf6b9-e57f-4dcf-bca2-b5aeba183614.jpeg
34.120.237.76200 OK 5.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F615cf6b9-e57f-4dcf-bca2-b5aeba183614.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash e0f36db43000ee8718540e4ec34325ac
32f41d8c68360497d71759129e405cb8ed090f9d
1e5d849d9d34c09decf7fc1fcd7bb0693b68ebe131b1cc1f6c0817739fb28ef1
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F615cf6b9-e57f-4dcf-bca2-b5aeba183614.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5606
x-amzn-requestid: 472979c3-6608-4699-ae77-738702a61c15
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: e3f6aGD0oAMFkhA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c61375-2395cd554f19b2bd3f3c0a5b;Sampled=0
x-amzn-remapped-date: Tue, 17 Jan 2023 03:18:13 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: lQtXdsn4UDF60M3LVpC-XIvsQJTnenmc0jXzlhKo_qZCnCugbokZiQ==
via: 1.1 d1151317ba32afe0e6370fd69fed222e.cloudfront.net (CloudFront), 1.1 e66162aafd55b64ba1478ff7105150fa.cloudfront.net (CloudFront), 1.1 google
date: Thu, 19 Jan 2023 03:54:59 GMT
age: 61228
etag: "32f41d8c68360497d71759129e405cb8ed090f9d"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F88cefb6f-1c5c-4b01-a9b7-a36abdbbc20c.png
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F88cefb6f-1c5c-4b01-a9b7-a36abdbbc20c.png
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 884f5d7c3a0ee782d4f3fe9f16099891
1c80645a9b9879d1e4b57c546ba35131ba3c28fd
a7b63d331e09518150e6d9eff0c1d80928185ed0734cf1992af7df0021b6886f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F88cefb6f-1c5c-4b01-a9b7-a36abdbbc20c.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10497
x-amzn-requestid: 3bc349ba-7da8-48c8-aa90-2c48c93a023d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: e3fnEG8mIAMFgMw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c612f9-08e751fc7f0eacb43fc92712;Sampled=0
x-amzn-remapped-date: Tue, 17 Jan 2023 03:16:09 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: f8-pNhxDbAcrbORfT71Y_XAXV3C6Je_9Zi5auLlRNyl7zSRB1_9VzA==
via: 1.1 eece508272520f70691e4eebdc5a6dea.cloudfront.net (CloudFront), 1.1 e66162aafd55b64ba1478ff7105150fa.cloudfront.net (CloudFront), 1.1 google
date: Thu, 19 Jan 2023 04:30:08 GMT
age: 59119
etag: "1c80645a9b9879d1e4b57c546ba35131ba3c28fd"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F873f34de-bef8-46f1-9dc4-d277bf6c1c65.jpeg
34.120.237.76200 OK 7.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F873f34de-bef8-46f1-9dc4-d277bf6c1c65.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash f491398239265c63ac162d47ab006ce6
c95e1bba76e910100e86f8abf789e5b5c1a2baa6
cdada2d9608e9d3f8e03cf9ced211550b6f7c8f7e0b5ee027a96f45af38523f1
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F873f34de-bef8-46f1-9dc4-d277bf6c1c65.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7741
x-amzn-requestid: 9af04340-5be9-42b0-96be-0264661c6dae
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: e6A6LEMtoAMFW_w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c7150d-2348c8846249175e74efc226;Sampled=0
x-amzn-remapped-date: Tue, 17 Jan 2023 21:37:17 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: bYiQLNEiz35_p4_5MV3ky7R5fpl4qUYtf-F2KP0C2gzmeXp5B7kgSQ==
via: 1.1 cd48ffda04934d18865e47e99ea080bc.cloudfront.net (CloudFront), 1.1 98aedae6661e3904540676966998ed88.cloudfront.net (CloudFront), 1.1 google
date: Wed, 18 Jan 2023 22:10:04 GMT
age: 81923
etag: "c95e1bba76e910100e86f8abf789e5b5c1a2baa6"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F99a6337c-ea71-4474-ba67-803997f0f17d.jpeg
34.120.237.76200 OK 7.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F99a6337c-ea71-4474-ba67-803997f0f17d.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 8069887e5e81584380ef3f819bcfab6e
3794126935a3e08de469ea37d29cba7be412d408
934e0982c1d49f06c64f524698b93fb1abf3b8833785d633bad104d052dd3ef0
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F99a6337c-ea71-4474-ba67-803997f0f17d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7871
x-amzn-requestid: 212d220f-c590-4c72-9508-e481cd5045ac
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: e6A1UGmeoAMFzpA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c714ee-273c8bb54acc0f2b6d12b567;Sampled=0
x-amzn-remapped-date: Tue, 17 Jan 2023 21:36:46 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: Xwxzja4wdr7AfJC7BU10NpD4zbhg8MLdQ35gmo9LP75IFy9WDaDInw==
via: 1.1 28a7186077f9b5270d98dd053f31303e.cloudfront.net (CloudFront), 1.1 943c6a4d4ee43b18ee91634536f53eae.cloudfront.net (CloudFront), 1.1 google
date: Wed, 18 Jan 2023 21:54:33 GMT
age: 82854
etag: "3794126935a3e08de469ea37d29cba7be412d408"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
monteazulmg.com.br/cartoes-renner/fonts/Roboto-Black.ttf
51.79.21.85404 Not Found 315 B URL HTTP/1.1 monteazulmg.com.br/cartoes-renner/fonts/Roboto-Black.ttf
IP 51.79.21.85:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3
Analyzer Verdict Alert openphish Lojas Renner
phishtank Other
fortinet Phishing
quad9 Sinkholed
GET /cartoes-renner/fonts/Roboto-Black.ttf HTTP/1.1
Host: monteazulmg.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://monteazulmg.com.br/
Cookie: dtCookie=v_4_srv_-2D98_sn_IUD0RTQCP7I1UHKUDL08G2GU0AE0VNUG; rxVisitor=16741617268746LN9SJ7MPSUFVRQ5OOAGJK6UC2LEBQMP; dtPC=-98$161726867_803h1vUTUDBMRPOVOKDWMDEFKRFDPTHOJRRKKN-0e0; rxvt=1674163527076|1674161726876; dtLatC=156; dtSa=-
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 404 Not Found
Date: Thu, 19 Jan 2023 20:55:27 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
monteazulmg.com.br/cartoes-renner/fonts/Roboto-Regular.ttf
51.79.21.85404 Not Found 315 B URL HTTP/1.1 monteazulmg.com.br/cartoes-renner/fonts/Roboto-Regular.ttf
IP 51.79.21.85:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3
Analyzer Verdict Alert openphish Lojas Renner
phishtank Other
fortinet Phishing
quad9 Sinkholed
GET /cartoes-renner/fonts/Roboto-Regular.ttf HTTP/1.1
Host: monteazulmg.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://monteazulmg.com.br/
Cookie: dtCookie=v_4_srv_-2D98_sn_IUD0RTQCP7I1UHKUDL08G2GU0AE0VNUG; rxVisitor=16741617268746LN9SJ7MPSUFVRQ5OOAGJK6UC2LEBQMP; dtPC=-98$161726867_803h1vUTUDBMRPOVOKDWMDEFKRFDPTHOJRRKKN-0e0; rxvt=1674163527076|1674161726876; dtLatC=156; dtSa=-
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 404 Not Found
Date: Thu, 19 Jan 2023 20:55:27 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
monteazulmg.com.br/cartoes-renner/fonts/Roboto-Bold.ttf
51.79.21.85404 Not Found 315 B URL HTTP/1.1 monteazulmg.com.br/cartoes-renner/fonts/Roboto-Bold.ttf
IP 51.79.21.85:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3
Analyzer Verdict Alert openphish Lojas Renner
phishtank Other
fortinet Phishing
quad9 Sinkholed
GET /cartoes-renner/fonts/Roboto-Bold.ttf HTTP/1.1
Host: monteazulmg.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://monteazulmg.com.br/
Cookie: dtCookie=v_4_srv_-2D98_sn_IUD0RTQCP7I1UHKUDL08G2GU0AE0VNUG; rxVisitor=16741617268746LN9SJ7MPSUFVRQ5OOAGJK6UC2LEBQMP; dtPC=-98$161726867_803h1vUTUDBMRPOVOKDWMDEFKRFDPTHOJRRKKN-0e0; rxvt=1674163527076|1674161726876; dtLatC=156; dtSa=-
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 404 Not Found
Date: Thu, 19 Jan 2023 20:55:27 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
monteazulmg.com.br/cartoes-renner/fonts/Roboto-Light.ttf
51.79.21.85404 Not Found 315 B URL HTTP/1.1 monteazulmg.com.br/cartoes-renner/fonts/Roboto-Light.ttf
IP 51.79.21.85:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3
Analyzer Verdict Alert openphish Lojas Renner
phishtank Other
fortinet Phishing
quad9 Sinkholed
GET /cartoes-renner/fonts/Roboto-Light.ttf HTTP/1.1
Host: monteazulmg.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://monteazulmg.com.br/
Cookie: dtCookie=v_4_srv_-2D98_sn_IUD0RTQCP7I1UHKUDL08G2GU0AE0VNUG; rxVisitor=16741617268746LN9SJ7MPSUFVRQ5OOAGJK6UC2LEBQMP; dtPC=-98$161726867_803h1vUTUDBMRPOVOKDWMDEFKRFDPTHOJRRKKN-0e0; rxvt=1674163527076|1674161726876; dtLatC=156; dtSa=-
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 404 Not Found
Date: Thu, 19 Jan 2023 20:55:27 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
ocsp.sca1b.amazontrust.com/
54.230.245.110200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.110:0
Hash f4c30b32d1713573d464369544693f0d
2dd6e781f10afb174bd7d70d0246fd8a1d234c68
014b912fdf20224d2e77f31f7b1a47e9a8cf2ab9ec54806b2d4d68f2b8d18dfc
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=170525
Date: Thu, 19 Jan 2023 20:55:27 GMT
Etag: "63c99ffb-1d7"
Expires: Sat, 21 Jan 2023 20:17:32 GMT
Last-Modified: Thu, 19 Jan 2023 19:54:35 GMT
Server: ECS (nyb/1D08)
X-Cache: Miss from cloudfront
Via: 1.1 c26775cc34c23943f6f5cfc9a3da9b4a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: N1NnKmMK_Yej7ahZD5KOy2bH0Zxt1g8EnzoXZ5Rxsi4zXT8AsLfhpg==
Age: 1377
ocsp.sca1b.amazontrust.com/
54.230.245.110200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.110:0
Hash c04b6423ad6d4c27fbd7add35344c596
801e8f0cc78463dfe2edb614cdcb4369f7c58386
ce3014a2798150906d3eeb120e204038f293bd29905568ad87a18c04df7eca5b
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=132690
Date: Thu, 19 Jan 2023 20:55:28 GMT
Etag: "63c8fb88-1d7"
Expires: Sat, 21 Jan 2023 09:46:58 GMT
Last-Modified: Thu, 19 Jan 2023 08:12:56 GMT
Server: ECS (nyb/1D24)
X-Cache: Miss from cloudfront
Via: 1.1 fc5e625db631bc657fc73f189d53fa14.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: T5k6VavW526XbfWL0i9CcjYXXmhT57FIUKedi8-Ac7FueT1zNrMvSg==
Age: 5642
www.google-analytics.com/gtm/js?id=GTM-W9SBWRL&cid=554218826.1672335952
142.250.74.14200 OK 44 kB URL HTTP/2 www.google-analytics.com/gtm/js?id=GTM-W9SBWRL&cid=554218826.1672335952
IP 142.250.74.14:0
File type ASCII text, with very long lines (1921)
Hash e6fe48f1f164010e34b4fa773ebee3e5
e05db1a8941608397ec3a0074623eb78591a52e0
c23b95e2ffdca1dce9c977f3d6ebe909a2d2918dd3c12250a0bf919c73a8936f
GET /gtm/js?id=GTM-W9SBWRL&cid=554218826.1672335952 HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://monteazulmg.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Thu, 19 Jan 2023 20:55:28 GMT
expires: Thu, 19 Jan 2023 20:55:28 GMT
cache-control: private, max-age=900
last-modified: Thu, 19 Jan 2023 18:50:35 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 44511
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
monteazulmg.com.br/files/favicon.ico
51.79.21.85200 OK 4.3 kB URL HTTP/1.1 monteazulmg.com.br/files/favicon.ico
IP 51.79.21.85:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text
Hash 2f194ed388507e9226349a304e28358e
0a4d62846c9703429f11d583353b9a47fae28890
cd53226327389e1b3b5545d737bbe0f849084f65730eaae79e50e3c91df492b0
Analyzer Verdict Alert openphish Lojas Renner
phishtank Other
quad9 Sinkholed
GET /files/favicon.ico HTTP/1.1
Host: monteazulmg.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://monteazulmg.com.br/
Cookie: dtCookie=v_4_srv_-2D98_sn_IUD0RTQCP7I1UHKUDL08G2GU0AE0VNUG; rxVisitor=16741617268746LN9SJ7MPSUFVRQ5OOAGJK6UC2LEBQMP; dtPC=-98$161726867_803h1vUTUDBMRPOVOKDWMDEFKRFDPTHOJRRKKN-0e0; rxvt=1674163527076|1674161726876; dtLatC=156; dtSa=-
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 19 Jan 2023 20:55:28 GMT
Server: Apache
Last-Modified: Thu, 29 Dec 2022 20:45:58 GMT
ETag: "367e5e-10b6-5f0fd9273ad80"
Accept-Ranges: bytes
Content-Length: 4278
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: image/x-icon
monteazulmg.com.br/files/lojas-renner.png
51.79.21.85200 OK 4.3 kB URL HTTP/1.1 monteazulmg.com.br/files/lojas-renner.png
IP 51.79.21.85:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text
Hash 2f194ed388507e9226349a304e28358e
0a4d62846c9703429f11d583353b9a47fae28890
cd53226327389e1b3b5545d737bbe0f849084f65730eaae79e50e3c91df492b0
Analyzer Verdict Alert openphish Lojas Renner
phishtank Other
quad9 Sinkholed
GET /files/lojas-renner.png HTTP/1.1
Host: monteazulmg.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://monteazulmg.com.br/
Cookie: dtCookie=v_4_srv_-2D98_sn_IUD0RTQCP7I1UHKUDL08G2GU0AE0VNUG; rxVisitor=16741617268746LN9SJ7MPSUFVRQ5OOAGJK6UC2LEBQMP; dtPC=-98$161726867_803h1vUTUDBMRPOVOKDWMDEFKRFDPTHOJRRKKN-0e0; rxvt=1674163527076|1674161726876; dtLatC=156; dtSa=-
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 19 Jan 2023 20:55:28 GMT
Server: Apache
Last-Modified: Thu, 29 Dec 2022 20:45:58 GMT
ETag: "367e64-10b6-5f0fd9273ad80"
Accept-Ranges: bytes
Content-Length: 4278
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: image/png
s3-sa-east-1.amazonaws.com/frame-image-br/bg.png?x-id=real&x-r=
16.12.0.12200 OK 0 B URL HTTP/1.1 s3-sa-east-1.amazonaws.com/frame-image-br/bg.png?x-id=real&x-r=
IP 16.12.0.12:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /frame-image-br/bg.png?x-id=real&x-r= HTTP/1.1
Host: s3-sa-east-1.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://monteazulmg.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: 5NESd6dmKpWh4+fn4rp0XsEFEX5s658khcW0l1vVzmBtV0ASinEX2YLahUJebxyfaxRqgf3yeU8=
x-amz-request-id: V80PYN4RAQB37TR1
Date: Thu, 19 Jan 2023 20:55:29 GMT
Last-Modified: Thu, 04 May 2017 08:21:21 GMT
ETag: "d41d8cd98f00b204e9800998ecf8427e"
x-amz-meta-s3cmd-attrs: uid:502/gname:staff/uname:user/gid:20/mode:33188/mtime:1493416832/atime:1493796970/md5:d41d8cd98f00b204e9800998ecf8427e/ctime:1493416832
Accept-Ranges: bytes
Content-Type: image/png
Server: AmazonS3
Content-Length: 0
cdn.pmweb.com.br/df/tag.js?id=PM-N2FTFQ
177.71.205.96200 OK 9.2 kB URL HTTP/1.1 cdn.pmweb.com.br/df/tag.js?id=PM-N2FTFQ
IP 177.71.205.96:0
File type ASCII text, with very long lines (22651), with no line terminators
Hash bb462b00b14c20c1058237a188f4033b
6cb3f0724e5b750d6d1ae92518a9126314368e7b
ff1a4463eadc1c7e0bce4edd7635a026f7106130efd1c27bd4bb8af6104edf08
GET /df/tag.js?id=PM-N2FTFQ HTTP/1.1
Host: cdn.pmweb.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://monteazulmg.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=300
Content-Encoding: gzip
Content-Type: application/javascript
Date: Thu, 19 Jan 2023 20:55:28 GMT
ETag: W/"63b8250b-587b"
Expires: Thu, 19 Jan 2023 21:00:28 GMT
Last-Modified: Fri, 06 Jan 2023 13:41:31 GMT
Server: nginx
Strict-Transport-Security: max-age=31536000; includeSubdomains; preload
Vary: Accept-Encoding
Content-Length: 9197
Connection: keep-alive
df.pmweb.com.br/push/?aid=PM-N2FTFQ&cid=845201674161727966&sid=410641674161727966&pvw=cbd0a9dd-2cc0-490b-ac5b-2e46d4e61a9c&v=1.19.0&rs=1280x1024&tt=Cart%C3%B5es%20Renner&ws=1280x1024&os=Linux%20x86_64&ua=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&url=https%3A%2F%2Fmonteazulmg.com.br%2F
54.207.21.48200 OK 2 B URL HTTP/1.1 df.pmweb.com.br/push/?aid=PM-N2FTFQ&cid=845201674161727966&sid=410641674161727966&pvw=cbd0a9dd-2cc0-490b-ac5b-2e46d4e61a9c&v=1.19.0&rs=1280x1024&tt=Cart%C3%B5es%20Renner&ws=1280x1024&os=Linux%20x86_64&ua=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&url=https%3A%2F%2Fmonteazulmg.com.br%2F
IP 54.207.21.48:0
File type ASCII text, with no line terminators
Hash 50585be4e3159a71c874c590d2ba12ec
fb17882585bbfe9c55733a6e46a265ddaea6957a
54d626e08c1c802b305dad30b7e54a82f102390cc92c7d4db112048935236e9c
GET /push/?aid=PM-N2FTFQ&cid=845201674161727966&sid=410641674161727966&pvw=cbd0a9dd-2cc0-490b-ac5b-2e46d4e61a9c&v=1.19.0&rs=1280x1024&tt=Cart%C3%B5es%20Renner&ws=1280x1024&os=Linux%20x86_64&ua=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&url=https%3A%2F%2Fmonteazulmg.com.br%2F HTTP/1.1
Host: df.pmweb.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://monteazulmg.com.br
Connection: keep-alive
Referer: https://monteazulmg.com.br/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://monteazulmg.com.br
Cache-Control: no-cache, no-store, must-revalidate
Content-Type: text/plain
Date: Thu, 19 Jan 2023 20:55:29 GMT
Expires: 0
Pragma: no-cache
Server: nginx
Set-Cookie: _pm_uid=845201674161727966; path=/; domain=pmweb.com.br; secure; Expires=Sat, 18-Jan-2025 20:55:29 GMT
Strict-Transport-Security: max-age=31536000; includeSubdomains; preload
Content-Length: 2
Connection: keep-alive
ocsp.sca1b.amazontrust.com/
54.230.245.110200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.110:0
Hash b9a79b1ad54fffb6ec2ecd5539687fcc
61c9b1c5bc03c3495bbf3fe52c11abd756988973
81984cd0aab6a2602d90efd8884ff03dd322e92766391f53e8a645dc67259ae9
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=98700
Date: Thu, 19 Jan 2023 20:55:29 GMT
Etag: "63c87a20-1d7"
Expires: Sat, 21 Jan 2023 00:20:29 GMT
Last-Modified: Wed, 18 Jan 2023 23:00:48 GMT
Server: ECS (bsa/EB12)
X-Cache: Miss from cloudfront
Via: 1.1 c26775cc34c23943f6f5cfc9a3da9b4a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: mX36lsebM2mm-C6GmYC9g4GK9bWBjHzLOc2OLyiWFgLw4wxC5gl3CA==
Age: 4781
bf73995led.bf.dynatrace.com/bf?type=js3&sn=v_4_srv_-2D98_sn_IUD0RTQCP7I1UHKUDL08G2GU0AE0VNUG&svrid=-98&flavor=cors&vi=UTUDBMRPOVOKDWMDEFKRFDPTHOJRRKKN-0&modifiedSince=1672298987990&rf=https%3A%2F%2Fmonteazulmg.com.br%2F&bp=3&app=189e25234ffe70ce&crc=2942369340&en=ovxxhecl&end=1
52.204.31.54200 OK 702 B URL HTTP/2 bf73995led.bf.dynatrace.com/bf?type=js3&sn=v_4_srv_-2D98_sn_IUD0RTQCP7I1UHKUDL08G2GU0AE0VNUG&svrid=-98&flavor=cors&vi=UTUDBMRPOVOKDWMDEFKRFDPTHOJRRKKN-0&modifiedSince=1672298987990&rf=https%3A%2F%2Fmonteazulmg.com.br%2F&bp=3&app=189e25234ffe70ce&crc=2942369340&en=ovxxhecl&end=1
IP 52.204.31.54:0
File type ASCII text, with very long lines (702), with no line terminators
Hash 061ee07d719ac3fb08c2b6e594f38cf5
1ebf5d5eec781a601663be80c8bcad33eb2f6955
b055af0ad62c386643ff7cecd46bf9253ac02e8643d7fe651e38e795b5db25d3
POST /bf?type=js3&sn=v_4_srv_-2D98_sn_IUD0RTQCP7I1UHKUDL08G2GU0AE0VNUG&svrid=-98&flavor=cors&vi=UTUDBMRPOVOKDWMDEFKRFDPTHOJRRKKN-0&modifiedSince=1672298987990&rf=https%3A%2F%2Fmonteazulmg.com.br%2F&bp=3&app=189e25234ffe70ce&crc=2942369340&en=ovxxhecl&end=1 HTTP/1.1
Host: bf73995led.bf.dynatrace.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 5722
Origin: https://monteazulmg.com.br
Connection: keep-alive
Referer: https://monteazulmg.com.br/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 19 Jan 2023 20:55:29 GMT
content-type: text/plain;charset=utf-8
content-length: 702
set-cookie: dtCookie=v_4_srv_12_sn_527A1C2A77C7C8183C97BC109AD64349_perc_100000_ol_0_mul_1_app-3Aea7c4b59f27d43eb_1; Path=/; Domain=.dynatrace.com
x-oneagent-js-injection: true
access-control-allow-origin: https://monteazulmg.com.br
cache-control: no-cache
X-Firefox-Spdy: h2
bf73995led.bf.dynatrace.com/bf?type=js3&sn=v_4_srv_2_sn_IUD0RTQCP7I1UHKUDL08G2GU0AE0VNUG_app-3A189e25234ffe70ce_1_ol_0_perc_100000_mul_1&svrid=2&flavor=cors&vi=UTUDBMRPOVOKDWMDEFKRFDPTHOJRRKKN-0&modifiedSince=1674156579815&rf=https%3A%2F%2Fmonteazulmg.com.br%2F&bp=3&app=189e25234ffe70ce&crc=1280951352&en=ovxxhecl&end=1
52.204.31.54200 OK 210 B URL HTTP/2 bf73995led.bf.dynatrace.com/bf?type=js3&sn=v_4_srv_2_sn_IUD0RTQCP7I1UHKUDL08G2GU0AE0VNUG_app-3A189e25234ffe70ce_1_ol_0_perc_100000_mul_1&svrid=2&flavor=cors&vi=UTUDBMRPOVOKDWMDEFKRFDPTHOJRRKKN-0&modifiedSince=1674156579815&rf=https%3A%2F%2Fmonteazulmg.com.br%2F&bp=3&app=189e25234ffe70ce&crc=1280951352&en=ovxxhecl&end=1
IP 52.204.31.54:0
File type ASCII text, with no line terminators
Hash 6df2b451c6ae9416bc0668b70a221a1a
a917ea67eb48b540ac100a5fd81e2803a769481d
d0171f30185136e3cffcef176bf0204df3e365c9662a35800e2205d4b2702a88
POST /bf?type=js3&sn=v_4_srv_2_sn_IUD0RTQCP7I1UHKUDL08G2GU0AE0VNUG_app-3A189e25234ffe70ce_1_ol_0_perc_100000_mul_1&svrid=2&flavor=cors&vi=UTUDBMRPOVOKDWMDEFKRFDPTHOJRRKKN-0&modifiedSince=1674156579815&rf=https%3A%2F%2Fmonteazulmg.com.br%2F&bp=3&app=189e25234ffe70ce&crc=1280951352&en=ovxxhecl&end=1 HTTP/1.1
Host: bf73995led.bf.dynatrace.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 4904
Origin: https://monteazulmg.com.br
Connection: keep-alive
Referer: https://monteazulmg.com.br/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 19 Jan 2023 20:55:31 GMT
content-type: text/plain;charset=utf-8
content-length: 210
set-cookie: dtCookie=v_4_srv_5_sn_95F22FDD060ACF3FD1D8B06D21B59682_perc_100000_ol_0_mul_1_app-3Aea7c4b59f27d43eb_1; Path=/; Domain=.dynatrace.com
x-oneagent-js-injection: true
access-control-allow-origin: https://monteazulmg.com.br
cache-control: no-cache
X-Firefox-Spdy: h2