POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
 95.101.11.115
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Server: nginx
Content-Length: 503
ETag: "EBCB744A032452533C000C0A9F193FD2566B2389729C41B6C5ED69B9E4CD42D4"
Last-Modified: Tue, 07 Mar 2023 14:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10602
Expires: Thu, 09 Mar 2023 08:39:44 GMT
Date: Thu, 09 Mar 2023 05:43:02 GMT
Connection: keep-alive
|
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
95.101.11.115
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Server: nginx
Content-Length: 503
ETag: "CC225692CD5966DF2CA08E14A63E3070DB3901FB1F5A129AA75C5FD9A5C6664D"
Last-Modified: Wed, 08 Mar 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15800
Expires: Thu, 09 Mar 2023 10:06:22 GMT
Date: Thu, 09 Mar 2023 05:43:02 GMT
Connection: keep-alive
|
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
95.101.11.115
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Server: nginx
Content-Length: 503
ETag: "84518FA2565F7F63933D3C552E1DC07F84C71F4A3DF5D2821484C371EF57B924"
Last-Modified: Tue, 07 Mar 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3840
Expires: Thu, 09 Mar 2023 06:47:02 GMT
Date: Thu, 09 Mar 2023 05:43:02 GMT
Connection: keep-alive
|
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
95.101.11.115
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Server: nginx
Content-Length: 503
ETag: "560F8228FEDC912E05B84AF1D19FCEFCA3FEC82415180DF5D18C5B2A3F533A68"
Last-Modified: Tue, 07 Mar 2023 19:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8058
Expires: Thu, 09 Mar 2023 07:57:20 GMT
Date: Thu, 09 Mar 2023 05:43:02 GMT
Connection: keep-alive
|
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
|
 35.241.9.150
HTTP/2 200 OK
content-type: application/json
access-control-allow-origin: *
access-control-expose-headers: Backoff, Content-Type, Retry-After, Content-Length, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Thu, 09 Mar 2023 05:13:42 GMT
age: 1760
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
|
GET /chains/remote-settings.content-signature.mozilla.org-2023-04-09-20-28-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
|
34.160.144.191
HTTP/2 200 OK
content-type: binary/octet-stream
x-amz-id-2: rCitgaZh05KAH1W933HBrtY8L9G5RtU9ANM7+xUK0GqbfoH+CFLzaI+VK971AmCh7B4YiZh++LQ=
x-amz-request-id: A6T2HY4NN8TW4XP8
x-amz-server-side-encryption: AES256
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Thu, 09 Mar 2023 05:35:55 GMT
age: 427
last-modified: Sat, 18 Feb 2023 20:28:27 GMT
etag: "b5ba6334e73496995e3e3a9ecd0eb323"
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
|
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
|
34.117.237.239
HTTP/2 200 OK
content-type: application/json
server: nginx
date: Thu, 09 Mar 2023 05:43:02 GMT
content-length: 12
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-expose-headers: content-type
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
|
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
|
35.241.9.150
HTTP/2 200 OK
content-type: application/json
access-control-allow-origin: *
access-control-expose-headers: Pragma, Retry-After, Alert, Content-Length, Backoff, ETag, Content-Type, Cache-Control, Last-Modified, Expires
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Thu, 09 Mar 2023 05:03:42 GMT
age: 2360
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
|
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
95.101.11.115
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Server: nginx
Content-Length: 503
ETag: "A9D8A1030EC5E70745F085F90E35A4B8832956FF20BD6719F3DBE6DD7291FC05"
Last-Modified: Tue, 07 Mar 2023 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12201
Expires: Thu, 09 Mar 2023 09:06:24 GMT
Date: Thu, 09 Mar 2023 05:43:03 GMT
Connection: keep-alive
|
GET /wp-content/themes/twentytwentyone/inc/lkjl/2i0yjm=/dk4owi=/css%20js/a HTTP/1.1
Host: lilicamanequinsfiber.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lilicamanequinsfiber.com.br/wp-content/themes/twentytwentyone/inc/lkjl/2i0yjm=/dk4owi=/jyzntu=/
Cookie: ndsid=ndsadtjl0hkd4w8lf0ok29u
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
|
162.241.203.66
HTTP/2 200 OK
last-modified: Wed, 08 Mar 2023 16:10:07 GMT
accept-ranges: bytes
content-length: 471
date: Thu, 09 Mar 2023 05:43:02 GMT
server: Apache
X-Firefox-Spdy: h2
|
GET /wp-content/themes/twentytwentyone/inc/lkjl/2i0yjm=/dk4owi=/css%20js/nd HTTP/1.1
Host: lilicamanequinsfiber.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lilicamanequinsfiber.com.br/wp-content/themes/twentytwentyone/inc/lkjl/2i0yjm=/dk4owi=/jyzntu=/
Cookie: ndsid=ndsadtjl0hkd4w8lf0ok29u
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
|
162.241.203.66
HTTP/2 200 OK
last-modified: Wed, 08 Mar 2023 16:10:07 GMT
accept-ranges: bytes
content-length: 38396
date: Thu, 09 Mar 2023 05:43:02 GMT
server: Apache
X-Firefox-Spdy: h2
|
GET /wp-content/themes/twentytwentyone/inc/lkjl/2i0yjm=/dk4owi=/css%20js/conutils-6.js HTTP/1.1
Host: lilicamanequinsfiber.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lilicamanequinsfiber.com.br/wp-content/themes/twentytwentyone/inc/lkjl/2i0yjm=/dk4owi=/jyzntu=/
Cookie: ndsid=ndsadtjl0hkd4w8lf0ok29u
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
|
162.241.203.66
HTTP/2 200 OK
content-type: application/javascript
last-modified: Wed, 08 Mar 2023 16:10:07 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 4188
date: Thu, 09 Mar 2023 05:43:03 GMT
server: Apache
X-Firefox-Spdy: h2
|
GET /wp-content/themes/twentytwentyone/inc/lkjl/2i0yjm=/dk4owi=/css%20js/atadun.js HTTP/1.1
Host: lilicamanequinsfiber.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lilicamanequinsfiber.com.br/wp-content/themes/twentytwentyone/inc/lkjl/2i0yjm=/dk4owi=/jyzntu=/
Cookie: ndsid=ndsadtjl0hkd4w8lf0ok29u
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
|
162.241.203.66
HTTP/2 200 OK
content-type: application/javascript
last-modified: Wed, 08 Mar 2023 16:10:07 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 512
date: Thu, 09 Mar 2023 05:43:03 GMT
server: Apache
X-Firefox-Spdy: h2
|
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: prT8bePYCLSIxfU0mdyOew==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
|
54.189.159.75
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: XqCT9EoY8tdoRqXQpiWSq/sNYLE=
|
GET /auth/static/scripts/conutils-6.2.2.js HTTP/1.1
Host: lilicamanequinsfiber.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lilicamanequinsfiber.com.br/wp-content/themes/twentytwentyone/inc/lkjl/2i0yjm=/dk4owi=/jyzntu=/
Cookie: ndsid=ndsadtjl0hkd4w8lf0ok29u
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
|
162.241.203.66
HTTP/2 404 Not Found
content-type: text/html
last-modified: Thu, 06 Oct 2022 20:52:17 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 836
date: Thu, 09 Mar 2023 05:43:03 GMT
server: Apache
X-Firefox-Spdy: h2
|
GET /auth/static/prefs/atadun.js HTTP/1.1
Host: lilicamanequinsfiber.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lilicamanequinsfiber.com.br/wp-content/themes/twentytwentyone/inc/lkjl/2i0yjm=/dk4owi=/jyzntu=/
Cookie: ndsid=ndsadtjl0hkd4w8lf0ok29u
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
|
162.241.203.66
HTTP/2 404 Not Found
content-type: text/html
last-modified: Thu, 06 Oct 2022 20:52:17 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 836
date: Thu, 09 Mar 2023 05:43:03 GMT
server: Apache
X-Firefox-Spdy: h2
|
GET /auth/static/prefs/atadun.js HTTP/1.1
Host: lilicamanequinsfiber.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lilicamanequinsfiber.com.br/wp-content/themes/twentytwentyone/inc/lkjl/2i0yjm=/dk4owi=/jyzntu=/
Cookie: ndsid=ndsadtjl0hkd4w8lf0ok29u
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
|
162.241.203.66
HTTP/2 404 Not Found
content-type: text/html
last-modified: Thu, 06 Oct 2022 20:52:17 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 836
date: Thu, 09 Mar 2023 05:43:03 GMT
server: Apache
X-Firefox-Spdy: h2
|
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
192.229.221.95
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Accept-Ranges: bytes
Age: 6493
Cache-Control: 'max-age=158059'
Date: Thu, 09 Mar 2023 05:43:03 GMT
Last-Modified: Thu, 09 Mar 2023 03:54:50 GMT
Server: ECAcc (ska/F73A)
X-Cache: HIT
Content-Length: 471
|
GET /image/thumb/Purple118/v4/96/c7/76/96c776f8-3a0e-cda9-130d-8feadb33e5a2/source/1200x630bb.jpg HTTP/1.1
Host: is5.mzstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
|
95.101.10.25
HTTP/1.1 200 OK
Content-Type: image/jpeg
Server: daiquiri/3.0.0
Content-Length: 22987
x-apple-jingle-correlation-key: FTJIURWXYVJNSRFBDXD5YAATLE
x-apple-request-uuid: 2cd28a46-d7c5-52d9-44a1-1dc7dc001359
b3: 2cd28a46d7c552d944a11dc7dc001359-8ab2a599beeb4608
x-b3-traceid: 2cd28a46d7c552d944a11dc7dc001359
x-b3-spanid: 8ab2a599beeb4608
apple-seq: 0.0
apple-tk: false
apple-originating-system: UnknownOriginatingSystem
Last-Modified: Tue, 28 Feb 2023 01:04:40 GMT
ETag: "MSwxLjQuMC0yM0IsVmVyc2lvbiAxMi4xIChCdWlsZCAyMUM1MiksMTY3NzU0NjI4MDYxMSxpc0J1aWxkVmVyc2lvbk5vdFNldCw2MDE1NCxub0VmZmVjdA=="
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Length,Content-Type,ETag,Cache-Control,Expires,Last-Modified
Timing-Allow-Origin: *
Strict-Transport-Security: max-age=31536000; includeSubDomains
x-daiquiri-instance: daiquiri:33624002:pv50p00it-hyhk12033901:7987:23RELEASE10:daiquiri-amp-processing-shared-int-001-pv
CDNUUID: 10c745f2-323d-4e04-8f13-8fa0529ba83f-709107294
Cache-Control: no-transform, max-age=15006108
Date: Thu, 09 Mar 2023 05:43:03 GMT
X-Cache: TCP_MEM_HIT from a95-101-10-21.deploy.akamaitechnologies.com (AkamaiGHost/11.0.0-46340752) (-)
Connection: keep-alive
--- Additional Info ---
Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1], baseline, precision 8, 630x630, components 3\012- data
Size: 22987
Md5: 0de02bcccca1f6c60cbe81eb5b29d98c
Sha1: 2da739cec7d4d3cb6a98018ef79239432675d3f1
Sha256: a28ddc4b77e206e26f2f7949deab7b8d3a190f4676e9b59bcdcc004a41c91778
|
GET /jenny/nd HTTP/1.1
Host: connect.secure.wellsfargo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lilicamanequinsfiber.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
|
95.101.10.194
HTTP/1.1 200 OK
Content-Type: application/javascript;charset=ISO-8859-1
X-Frame-Options: DENY
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Vary: accept-encoding
Content-Encoding: gzip
Content-Length: 17879
Date: Thu, 09 Mar 2023 05:43:03 GMT
Connection: keep-alive
Set-Cookie: ADRUM_BTa=R:36|g:6daa7cf4-8dca-4fbf-813a-ee1adedd0918; Expires=Thu, 09-Mar-2023 05:43:33 GMT; Path=/; Secure
ADRUM_BTa=R:36|g:6daa7cf4-8dca-4fbf-813a-ee1adedd0918|n:wellsfargo-prod_43732a1d-9afc-4e95-ad69-f4ac78c780a7; Expires=Thu, 09-Mar-2023 05:43:33 GMT; Path=/; Secure
SameSite=None; Expires=Thu, 09-Mar-2023 05:43:33 GMT; Path=/; Secure
ADRUM_BT1=R:36|i:302812; Expires=Thu, 09-Mar-2023 05:43:33 GMT; Path=/; Secure
ADRUM_BT1=R:36|i:302812|e:4; Expires=Thu, 09-Mar-2023 05:43:33 GMT; Path=/; Secure
ISD_AB_COOKIE=A; Max-Age=7200; path=/; Domain=connect.secure.wellsfargo.com; Secure; httpOnly
DCID=G2bDt9ScVKX+EUOdxqkkveWIXCltSlXGcdPxNk%2fIQBU%3d; Domain=connect.secure.wellsfargo.com; Path=/; Expires=Thu, 09 Mar 2023 05:58:03 GMT;Httponly; Secure
_abck=570A1F1FE351D418EF125C88700C86E7~-1~YAAQvgplXxMW9cCGAQAAq/HkxAneWGRkYa2aFipCAfQC5C6aODkrftbPczVGthm5uBB+/SaWgGr8cMY/dOPLWDNm+2NqYGsKDpBZFbMP0DpgSyQi/MnIU+mA40FzvVd0UoyofsC9Q0fBcrF/3Gpwu4s35i9k/Txsri9/9dOmpKqIYFkrXBI5x9t1rtc7l+CP8GG74bbthWeA5k2Q0723lryCIhpSAUAhmKqKWq2w/f3ay5Ys3IMYWeBUVh3rFa1OdZMDu08/LE0nBMuqN35G7UpedYfmXgLJKINuiUCW439FxORjqRsC3ZbDP+Omj+9ozttjSagzIQlaJtR/jeHlneDiU9v3AkprIa7/Eo77K1gTeQM5PqsZynP0/ZBkCvRGkg==~-1~-1~-1; Domain=.wellsfargo.com; Path=/; Expires=Fri, 08 Mar 2024 05:43:03 GMT; Max-Age=31536000; Secure
bm_sz=58A1D627734BF9B3852AF3459E7301AE~YAAQvgplXxQW9cCGAQAAq/HkxBObqABn62DbbNxiRzWNOy6z3ngLV/ffIYwJELPZjFfWx8kgCYX7GmrAGd6u2HxZFzcEtq0bNG7oIsP7eTRj1Y+f1xpE+OErOTHnvtZ5INb4D1TvT+2G1FanDVGPv3aKb63pK61sfphfPobjkiSNN2NAmhxAkejzRY71WXcRwjQ/i1u4FrogHf9v2iRY8OzembrDGQolbVZ722QZPR9/WCPd5CHV07NmcFDXjcnSQLgD11Fb3oDS8H5eeiPbeCzCererJh2OZ2myPw6mzUgmz4n9OiIC~4600388~3289399; Domain=.wellsfargo.com; Path=/; Expires=Thu, 09 Mar 2023 09:43:03 GMT; Max-Age=14400
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
|
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
95.101.11.115
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Server: nginx
Content-Length: 503
ETag: "8F8B0574EA2DC28302DEE0A9868C1C145F66A6735353D236A8BD024C624F55A1"
Last-Modified: Thu, 09 Mar 2023 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11939
Expires: Thu, 09 Mar 2023 09:02:03 GMT
Date: Thu, 09 Mar 2023 05:43:04 GMT
Connection: keep-alive
|
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
95.101.11.115
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Server: nginx
Content-Length: 503
ETag: "8F8B0574EA2DC28302DEE0A9868C1C145F66A6735353D236A8BD024C624F55A1"
Last-Modified: Thu, 09 Mar 2023 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11939
Expires: Thu, 09 Mar 2023 09:02:03 GMT
Date: Thu, 09 Mar 2023 05:43:04 GMT
Connection: keep-alive
|
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
95.101.11.115
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Server: nginx
Content-Length: 503
ETag: "8F8B0574EA2DC28302DEE0A9868C1C145F66A6735353D236A8BD024C624F55A1"
Last-Modified: Thu, 09 Mar 2023 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11939
Expires: Thu, 09 Mar 2023 09:02:03 GMT
Date: Thu, 09 Mar 2023 05:43:04 GMT
Connection: keep-alive
|
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
95.101.11.115
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Server: nginx
Content-Length: 503
ETag: "8F8B0574EA2DC28302DEE0A9868C1C145F66A6735353D236A8BD024C624F55A1"
Last-Modified: Thu, 09 Mar 2023 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11939
Expires: Thu, 09 Mar 2023 09:02:03 GMT
Date: Thu, 09 Mar 2023 05:43:04 GMT
Connection: keep-alive
|
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc07f45e6-f472-4bb8-a38c-568302947acb.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
|
34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
server: nginx
content-length: 8474
x-amzn-requestid: 7c2323dc-d57c-4ce4-b920-c4950b926012
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: BS7R3GYGoAMF_JA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-64043f3e-67d8f0fb6108a56561de29cf;Sampled=0
x-amzn-remapped-date: Sun, 05 Mar 2023 07:05:34 GMT
x-amz-cf-pop: SEA19-C3
x-cache: Miss from cloudfront
x-amz-cf-id: GDwMpgmL8SdOCPZB9MKYsKXUkRLTyAQTEGWM4WTVNb71wG2gR_p86g==
via: 1.1 9b311162717b41c968f6f00426d88aaa.cloudfront.net (CloudFront), 1.1 548adcda884eed02304ba5d6a1d7f514.cloudfront.net (CloudFront), 1.1 google
date: Wed, 08 Mar 2023 22:09:24 GMT
age: 27220
etag: "1cdaea2ae90ef7272e589444ca10807cf20075fd"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fab5f13a1-64f5-41ac-aa1b-5fb0a6b438d4.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
|
34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
server: nginx
content-length: 4770
x-amzn-requestid: 963dae3d-8336-4a5b-8b25-c3617f946d73
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: BUZkWFhLIAMF6FQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6404d61b-1b705b460f7539f97c3dd7e5;Sampled=0
x-amzn-remapped-date: Sun, 05 Mar 2023 17:49:15 GMT
x-amz-cf-pop: SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: uGH8_fFeonTgrNF5RYeA6pMhKoh24-6W74Vhju3CcJ7A8LEGFse9Sw==
via: 1.1 0005a84c2971ff4f5bbb79e7ebc622a8.cloudfront.net (CloudFront), 1.1 5292c0d5844327feadb38f1efe42ebc6.cloudfront.net (CloudFront), 1.1 google
date: Wed, 08 Mar 2023 21:51:07 GMT
age: 28317
etag: "bc714ee0389e279919dde08149be61c4dc9ab0a7"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F70c6f776-b551-4a5b-8932-4e29593bbbe2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
|
34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
server: nginx
content-length: 9901
x-amzn-requestid: cc48ab79-d2a9-4cf3-a7cd-43500aa05234
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: BWO0AEftIAMFruA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-640591b2-592175a26e7c6d1f12a06045;Sampled=0
x-amzn-remapped-date: Mon, 06 Mar 2023 07:09:39 GMT
x-amz-cf-pop: SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: jbOqyLJfLBr7l3-R-o4_SRSGU7l4E7t85f3DCJVcjIFzg8fPr3efiQ==
via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 5c7981a979abd51ba7e5ca7d464fd048.cloudfront.net (CloudFront), 1.1 google
date: Wed, 08 Mar 2023 08:25:04 GMT
age: 76680
etag: "8234854e81d9c373a29fa53623d3b07f5382a7ce"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F658d3e61-18db-424d-b357-80193db0d290.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
|
34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
server: nginx
content-length: 7377
x-amzn-requestid: 2c87a46e-ecb4-4835-bb25-295cd85fabc6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: BWPJ0F6UoAMFaaQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6405923e-53e010a410121d2424758b79;Sampled=0
x-amzn-remapped-date: Mon, 06 Mar 2023 07:11:58 GMT
x-amz-cf-pop: SEA19-C3
x-cache: Miss from cloudfront
x-amz-cf-id: pIAI17_9wcsY8_IBe9uU2yiQNPuvToI9xycaLKY-USqa2gQzrl6nBA==
via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 31dfa94142c6eaf975b0e5454c00340a.cloudfront.net (CloudFront), 1.1 google
date: Wed, 08 Mar 2023 07:31:12 GMT
age: 79912
etag: "9f102acd9b03628e0f03436d46a3b11442492171"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff126aba3-5053-41e8-9adc-5cb3d542d065.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
|
34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
server: nginx
content-length: 8421
x-amzn-requestid: f161f3bb-2b66-4ec8-a2d0-460296e59d8b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: BezfVHwPoAMF9CQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6408ff95-7fd8848f23e348491da23bc3;Sampled=0
x-amzn-remapped-date: Wed, 08 Mar 2023 21:35:17 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: WhZOgffFrj1iFAfsjgAIAP7uqlu_51nukKxgziuJgMjU8lOxFKKnUg==
via: 1.1 86b676273517904f44af31586adb06ae.cloudfront.net (CloudFront), 1.1 618052a0d9c86c1a3bf663f82d041d1c.cloudfront.net (CloudFront), 1.1 google
date: Wed, 08 Mar 2023 21:45:40 GMT
age: 28644
etag: "ec77a342171a7b2df5b4bb4ff267eb9e7b6fdc9d"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0e099794-4e7d-4d03-a39a-3ce385884bff.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
|
34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
server: nginx
content-length: 7206
x-amzn-requestid: bc793a8e-f967-4a1b-81d2-be45c56bd93b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: BPorOF-CIAMFX6A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6402ee47-3e38c6af4234bd164a429258;Sampled=0
x-amzn-remapped-date: Sat, 04 Mar 2023 07:07:51 GMT
x-amz-cf-pop: SEA19-C3
x-cache: Miss from cloudfront
x-amz-cf-id: XIYfAxm8RWhLOfQCZA5tr3eMhggSG2AHKx9zL_nU2RMP-68t_3HeLg==
via: 1.1 1cc6ed0d2d3dd9529ce544f9dfe61a52.cloudfront.net (CloudFront), 1.1 9adef5b1c5fc9ca80d6f4f8d19e103a2.cloudfront.net (CloudFront), 1.1 google
date: Wed, 08 Mar 2023 19:19:54 GMT
age: 37390
etag: "61075cafcbfe1c763ab0b1c79540d42e7ae63942"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
GET /wp-content/themes/twentytwentyone/inc/lkjl/2i0yjm=/dk4owi=/jyzntu=/ HTTP/1.1
Host: lilicamanequinsfiber.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: ndsid=ndsadtjl0hkd4w8lf0ok29u
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
|
162.241.203.66
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
content-encoding: gzip
date: Thu, 09 Mar 2023 05:43:02 GMT
server: Apache
X-Firefox-Spdy: h2
--- Additional Info ---
Magic:
Size: 0
Md5:
Sha1:
Sha256:
Blocklists:
- openphish: Wells Fargo & Company
- fortinet: Phishing
|
GET /wp-content/themes/twentytwentyone/inc/lkjl/2i0yjm=/dk4owi=/css%20js/login-userprefs.js HTTP/1.1
Host: lilicamanequinsfiber.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lilicamanequinsfiber.com.br/wp-content/themes/twentytwentyone/inc/lkjl/2i0yjm=/dk4owi=/jyzntu=/
Cookie: ndsid=ndsadtjl0hkd4w8lf0ok29u
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
|
162.241.203.66
HTTP/2 200 OK
content-type: application/javascript
last-modified: Wed, 08 Mar 2023 16:10:07 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
date: Thu, 09 Mar 2023 05:43:03 GMT
server: Apache
X-Firefox-Spdy: h2
--- Additional Info ---
Magic:
Size: 0
Md5:
Sha1:
Sha256:
Blocklists:
- fortinet: Phishing
|