r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash dca68db7aea32f6683ce8d542c078f04
19c495238df74fca680e21f18627ff94de5dd2e5
35cab3987fc0e4a41b305cb208c1e33fa38ce8bdfd9f386c3dc0411dd4d5ac61
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "35CAB3987FC0E4A41B305CB208C1E33FA38CE8BDFD9F386C3DC0411DD4D5AC61"
Last-Modified: Mon, 06 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2960
Expires: Wed, 08 Feb 2023 16:17:15 GMT
Date: Wed, 08 Feb 2023 15:27:55 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 565c1bbc5c1c40be1988b3bf6fd9dc1a
cfdba5bc597130461dd67bf6cda53183be592493
60ceb36a8329c92fc49a3caf50daf511a38e01eac21a07d7a0a838166bea058d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "60CEB36A8329C92FC49A3CAF50DAF511A38E01EAC21A07D7A0A838166BEA058D"
Last-Modified: Mon, 06 Feb 2023 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11346
Expires: Wed, 08 Feb 2023 18:37:01 GMT
Date: Wed, 08 Feb 2023 15:27:55 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash bf0c602d32b3c14606f22a86183b5e3c
6eabd8d83475eba731968abe1a05a8bfd272f160
6c6a7c519a9e950c2445ed874a25211a94dd4d3cf3afb0103af9dcd1dbd5ff9e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Retry-After, Backoff, Alert, Content-Length
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Wed, 08 Feb 2023 14:36:40 GMT
content-type: application/json
age: 3075
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash cc14b0d2f7c451f6431dc87ba54d1d60
bab8bfda6fa3e2f17125353f5147211787dc25d0
b58fe18a5cc8fe5aaf49ba7eadd0ef34692892e68e9c52eb5bb56ea27e1300ad
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B58FE18A5CC8FE5AAF49BA7EADD0EF34692892E68E9C52EB5BB56EA27E1300AD"
Last-Modified: Mon, 06 Feb 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7262
Expires: Wed, 08 Feb 2023 17:28:57 GMT
Date: Wed, 08 Feb 2023 15:27:55 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-03-20-18-44-46.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-03-20-18-44-46.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash e76071a28ee566dababb3834f46d68ed
aebb4e68c1ba2de0f90025283e8ed8470944fde0
78b6df2627172e5b35476bc31020f02898cdc412aaf4337af2c3b049a60912b6
GET /chains/remote-settings.content-signature.mozilla.org-2023-03-20-18-44-46.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: xpn4fGqJXmGNIjVBQcNf51nOgQP/IEhKQ/ZwuWoIDF5cIo1cfnX9a8saz3zjXP4b9fD6yhMKG6s=
x-amz-request-id: 95ZWNYPDV0ZFFSRB
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Wed, 08 Feb 2023 14:35:58 GMT
age: 3117
last-modified: Sun, 29 Jan 2023 18:44:47 GMT
etag: "e76071a28ee566dababb3834f46d68ed"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 08 Feb 2023 15:27:55 GMT
content-type: application/json
content-length: 12
access-control-expose-headers: content-type
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Last-Modified, Content-Type, Pragma, ETag, Retry-After, Backoff, Expires, Alert, Cache-Control, Content-Length
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Wed, 08 Feb 2023 14:51:20 GMT
age: 2195
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 9b88bae61bca33aba8aa99f6128db8d9
a07b61fb2458917699613fcae68710941b595416
54915c2f79822732e06a592d027da421ad1e7a6458c545f98333db25612b3dea
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "54915C2F79822732E06A592D027DA421AD1E7A6458C545F98333DB25612B3DEA"
Last-Modified: Mon, 06 Feb 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2161
Expires: Wed, 08 Feb 2023 16:03:56 GMT
Date: Wed, 08 Feb 2023 15:27:55 GMT
Connection: keep-alive
push.services.mozilla.com/
54.187.106.193101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 54.187.106.193:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: Om1IkcYNikzl0yfqHm9BRg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: o4cGgNer522KvtmyL4r9RbcyNDo=
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 1d885cfc22a04f1216c98dd64df5338a
589916a844b81fac40af88a772865b8e28dfb64e
40c0e55533794d72bbba4bc9d0f07fe0741e24ca23fd9b3e31d2830c77a51bf3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "40C0E55533794D72BBBA4BC9D0F07FE0741E24CA23FD9B3E31D2830C77A51BF3"
Last-Modified: Wed, 08 Feb 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3344
Expires: Wed, 08 Feb 2023 16:23:41 GMT
Date: Wed, 08 Feb 2023 15:27:57 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 1d885cfc22a04f1216c98dd64df5338a
589916a844b81fac40af88a772865b8e28dfb64e
40c0e55533794d72bbba4bc9d0f07fe0741e24ca23fd9b3e31d2830c77a51bf3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "40C0E55533794D72BBBA4BC9D0F07FE0741E24CA23FD9B3E31D2830C77A51BF3"
Last-Modified: Wed, 08 Feb 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3344
Expires: Wed, 08 Feb 2023 16:23:41 GMT
Date: Wed, 08 Feb 2023 15:27:57 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 1d885cfc22a04f1216c98dd64df5338a
589916a844b81fac40af88a772865b8e28dfb64e
40c0e55533794d72bbba4bc9d0f07fe0741e24ca23fd9b3e31d2830c77a51bf3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "40C0E55533794D72BBBA4BC9D0F07FE0741E24CA23FD9B3E31D2830C77A51BF3"
Last-Modified: Wed, 08 Feb 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3344
Expires: Wed, 08 Feb 2023 16:23:41 GMT
Date: Wed, 08 Feb 2023 15:27:57 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff6de3153-62d2-494b-8acf-6d3ac8adba7d.jpeg
34.120.237.76200 OK 13 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff6de3153-62d2-494b-8acf-6d3ac8adba7d.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 003fc35e140a75a12b7795c3986426ec
da002b22e2a01f48a545b369d4403eabb17a10d5
bb0754411aa7d0a5036b86b282d0e93d13227765ca9ccaf3a34e8e486cb413d1
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff6de3153-62d2-494b-8acf-6d3ac8adba7d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 13160
x-amzn-requestid: 34aa6dfe-7f14-48d0-89b2-90548621be79
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fzVxSHh7IAMFjAg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63de033b-49587fff75aebe96136137be;Sampled=0
x-amzn-remapped-date: Sat, 04 Feb 2023 07:03:23 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 81DTnHIh40lNEi6l5hC87Vo9R8k4w79Fr71zibyvGP0iJm4kmhWITA==
via: 1.1 e5af640ced3aa8764b82c4bc3f7af38e.cloudfront.net (CloudFront), 1.1 6172bb1a5d00a3b06ae3700570ebe116.cloudfront.net (CloudFront), 1.1 google
date: Wed, 08 Feb 2023 07:53:36 GMT
age: 27261
etag: "da002b22e2a01f48a545b369d4403eabb17a10d5"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F92b2ed55-154e-4ed7-a7ab-1418742cdf6e.jpeg
34.120.237.76200 OK 7.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F92b2ed55-154e-4ed7-a7ab-1418742cdf6e.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 7543be9bef0afb8f61344286b7136dd7
e1537aa408cde39d2a314cc2a14f7f7a04a84eb1
162f0898f88d84c8d06542e48e8ff6a903e638f2a837f32681ae1f5e28ae40d7
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F92b2ed55-154e-4ed7-a7ab-1418742cdf6e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7303
x-amzn-requestid: 081c79e9-2b23-47ad-8b7d-7197c5515c0c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: f58kdHMvIAMFdzg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63e0a7b5-66fca524070e374310920915;Sampled=0
x-amzn-remapped-date: Mon, 06 Feb 2023 07:09:41 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: SU23ljJF5eIu0L9YNQOtZlwuMHs9Ri91iu2-YS9v2pNBA-pkJYU2SA==
via: 1.1 2afae0d44e2540f472c0635ab62c232a.cloudfront.net (CloudFront), 1.1 57a21088b36c69a83578b5a5579df58e.cloudfront.net (CloudFront), 1.1 google
date: Wed, 08 Feb 2023 05:01:33 GMT
age: 37584
etag: "e1537aa408cde39d2a314cc2a14f7f7a04a84eb1"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5708e132-62b1-4b5b-aa88-fe22e522eb0e.jpeg
34.120.237.76200 OK 6.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5708e132-62b1-4b5b-aa88-fe22e522eb0e.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4b327816bc2c6fd7291c75c693685d54
771070be61d0724b1c90ca86ea34c804bd7e501a
d45188239cacc7b228bc75ccc95afb48914aaa434c418cd5b786533e8b9cb983
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5708e132-62b1-4b5b-aa88-fe22e522eb0e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6838
x-amzn-requestid: 54fc5ae9-d37a-46cf-97e0-d05de1417cfb
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: f_O7QEsCoAMFY1w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63e2c514-40de6212468fcd0e78a93708;Sampled=0
x-amzn-remapped-date: Tue, 07 Feb 2023 21:39:32 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: mgfr5wO7Bj5BVjKYY7O0c4ogLognfq09QrA9khZROr2CVyOWgKTz1g==
via: 1.1 efe54e8b68e074d39b2ecd249f85100a.cloudfront.net (CloudFront), 1.1 d8792dbd3191bbe722eba5b536b979c8.cloudfront.net (CloudFront), 1.1 google
date: Tue, 07 Feb 2023 21:52:35 GMT
age: 63322
etag: "771070be61d0724b1c90ca86ea34c804bd7e501a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7f728fd1-646b-418a-ab1a-194a7bf42969.jpeg
34.120.237.76200 OK 6.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7f728fd1-646b-418a-ab1a-194a7bf42969.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash c8f31c82179856e39ee5fc43d7f0b685
5b37f807a19ffc80c0b9334e6d24d5bb717496ce
c099c91c6f2125a8a89ee6e9dc0e37e2c2c9914adadb2c8b77795063baa62037
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7f728fd1-646b-418a-ab1a-194a7bf42969.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6805
x-amzn-requestid: ef7a879d-25be-42b0-a5c5-df6ad8f1482c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: f_R2FFv5IAMFZ7g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63e2c9c0-2f8fa7ef41b70de04cfb5ac6;Sampled=0
x-amzn-remapped-date: Tue, 07 Feb 2023 21:59:28 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: JxJrYYY7fMm_DCBcuC4OEdR62HL5VMvJbt_a6TWp4QfqN0qxgFgj-A==
via: 1.1 112c6b3f9aea37a6cb00b7d933e5af6e.cloudfront.net (CloudFront), 1.1 5565a51537c689d1d16f6b4d41f40082.cloudfront.net (CloudFront), 1.1 google
date: Tue, 07 Feb 2023 22:06:50 GMT
etag: "5b37f807a19ffc80c0b9334e6d24d5bb717496ce"
content-type: image/jpeg
age: 62467
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc6ac124e-27b8-4818-9240-77708d007004.jpeg
34.120.237.76200 OK 4.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc6ac124e-27b8-4818-9240-77708d007004.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 845e4e4051f1162b20d3df5f208e8d3e
076462f67531c60b31ec768a275c96317292306d
40996d8929ab92f342328fc018518d6131c6222b0ec23051775eda276a602026
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc6ac124e-27b8-4818-9240-77708d007004.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4168
x-amzn-requestid: 24814225-0063-49fb-86ff-e78869538b3c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: f_OjQFS_IAMFtLQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63e2c47b-67307c42182089b3096e98b5;Sampled=0
x-amzn-remapped-date: Tue, 07 Feb 2023 21:36:59 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: qLuHdYthPTS7qoVjS783M1Q-RtOluQpKozCi-zABez133FyvgBsBog==
via: 1.1 01c28b52813cd0e82f810c492808b142.cloudfront.net (CloudFront), 1.1 64f86ae1c24221f3a2e4d653d6dbc416.cloudfront.net (CloudFront), 1.1 google
date: Tue, 07 Feb 2023 21:43:37 GMT
age: 63860
etag: "076462f67531c60b31ec768a275c96317292306d"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcf4a5986-35e6-4c6b-9dba-c981908d9ec1.jpeg
34.120.237.76200 OK 8.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcf4a5986-35e6-4c6b-9dba-c981908d9ec1.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 726928e5de19ef978faebbe933c34008
bdaba3ed0c7efb65de88af96063d830683c8499b
c6d208fcee052da80de1bf2dcccbbc48853511b8888c4777799ee676abba51b5
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcf4a5986-35e6-4c6b-9dba-c981908d9ec1.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8644
x-amzn-requestid: d6d71f42-f887-4ad0-a2b7-9073d3857b03
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: f_OjRHBFoAMF4_Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63e2c47b-57490f255d8d30a561fdcd3a;Sampled=0
x-amzn-remapped-date: Tue, 07 Feb 2023 21:36:59 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: qfHMhMAdnYcOa0Xm23enTGXj4CQC-QFHV50Pq6QQdvM5YcIgUZVPRQ==
via: 1.1 a4fe306096165bb1e86e69365dc8fac2.cloudfront.net (CloudFront), 1.1 5565a51537c689d1d16f6b4d41f40082.cloudfront.net (CloudFront), 1.1 google
date: Tue, 07 Feb 2023 21:54:36 GMT
etag: "bdaba3ed0c7efb65de88af96063d830683c8499b"
content-type: image/jpeg
age: 63201
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
delivery.udsbrasil.com.br/public/FYzf0jD1555d8Fr7DbIDjx9loSKcHMZQ
38.105.209.111302 Found 402 B URL HTTP/1.1 delivery.udsbrasil.com.br/public/FYzf0jD1555d8Fr7DbIDjx9loSKcHMZQ
IP 38.105.209.111:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 53b315ea0cf09ce815fbb5a185e7c7a7
c843bbff0d9a036164bdd619a7c78d34b8e0f9b0
7fe654c565aa2cabe13f871515ea60ca000e261996717d26eebded021742a6fe
GET /public/FYzf0jD1555d8Fr7DbIDjx9loSKcHMZQ HTTP/1.1
Host: delivery.udsbrasil.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 302 Found
Date: Wed, 08 Feb 2023 15:27:55 GMT
Server: Apache
Cache-Control: no-cache, private
Set-Cookie: XSRF-TOKEN=eyJpdiI6Iit5WVlCcHdVVCs1MFlTci9MUjVNcWc9PSIsInZhbHVlIjoiMmpRZ05FWXI5NUVpMTRSQ3VSTTcvdWM2cjQ3MnFkNkRkNHNxTElRdytqbk1aTnpXZzFZdm82S2I3SllCWDZsVUFUK2VkMkh4NlJNRVZJSlhET1ZxMGxaMmkyMVBJM29UQXUvdFVWZ2cwQjBxTDRYcVBxMllDbGl0aDBmYjUyS3oiLCJtYWMiOiJmYzQxMjM3NmY0YjBmNThkZDdlNWY2OWI1ZTk2YTM0NTdjMWJiMjk0Y2M2MzFjMDcwMjAyMjA5MjkzYjM2Yzg0IiwidGFnIjoiIn0%3D; expires=Wed, 08-Feb-2023 17:27:57 GMT; Max-Age=7200; path=/; samesite=lax
laravel_session=eyJpdiI6IngyR25hWVZ4cTRjd3kwem1kWkQvYVE9PSIsInZhbHVlIjoiQndVT1B2dHR3Qk9WMjVEZmJ5MHkwOTcvR0NBUElkVHIwY3JROVd3Ykt2QTZ1RzhxTHZZekMyWjRVS1AzRVFCeE1RSGhOcTdNTGt3S1B3Z0dMdStiOHNzTGh1NTA1ajNYV1pkNGVUcG10VWsrOTBqUStFYUJYVjBPZkU1UHJMU0wiLCJtYWMiOiJlYjdjODYzYjIzYzNhY2QwYWYwNTg2YzRkZDIyMDhiYzg1ZjY3OTQ2OGYxOGZkZWE5Mzg4Y2ZmOGNmZDkyOWVlIiwidGFnIjoiIn0%3D; expires=Wed, 08-Feb-2023 17:27:57 GMT; Max-Age=7200; path=/; httponly; samesite=lax
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Location: http://delivery.udsbrasil.com.br/public
Keep-Alive: timeout=5, max=100
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
delivery.udsbrasil.com.br/public
38.105.209.111301 Moved Permanently 248 B URL HTTP/1.1 delivery.udsbrasil.com.br/public
IP 38.105.209.111:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash c09746f729b704495ce760d5ce7fadeb
eceacc767f6ef7a617709f048c407654d87a930a
d451bc55032cd80d190adb769f38ea83d21a2eee08c4b5d6db153d0245cf3db4
GET /public HTTP/1.1
Host: delivery.udsbrasil.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Cookie: XSRF-TOKEN=eyJpdiI6Iit5WVlCcHdVVCs1MFlTci9MUjVNcWc9PSIsInZhbHVlIjoiMmpRZ05FWXI5NUVpMTRSQ3VSTTcvdWM2cjQ3MnFkNkRkNHNxTElRdytqbk1aTnpXZzFZdm82S2I3SllCWDZsVUFUK2VkMkh4NlJNRVZJSlhET1ZxMGxaMmkyMVBJM29UQXUvdFVWZ2cwQjBxTDRYcVBxMllDbGl0aDBmYjUyS3oiLCJtYWMiOiJmYzQxMjM3NmY0YjBmNThkZDdlNWY2OWI1ZTk2YTM0NTdjMWJiMjk0Y2M2MzFjMDcwMjAyMjA5MjkzYjM2Yzg0IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IngyR25hWVZ4cTRjd3kwem1kWkQvYVE9PSIsInZhbHVlIjoiQndVT1B2dHR3Qk9WMjVEZmJ5MHkwOTcvR0NBUElkVHIwY3JROVd3Ykt2QTZ1RzhxTHZZekMyWjRVS1AzRVFCeE1RSGhOcTdNTGt3S1B3Z0dMdStiOHNzTGh1NTA1ajNYV1pkNGVUcG10VWsrOTBqUStFYUJYVjBPZkU1UHJMU0wiLCJtYWMiOiJlYjdjODYzYjIzYzNhY2QwYWYwNTg2YzRkZDIyMDhiYzg1ZjY3OTQ2OGYxOGZkZWE5Mzg4Y2ZmOGNmZDkyOWVlIiwidGFnIjoiIn0%3D
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Wed, 08 Feb 2023 15:27:57 GMT
Server: Apache
Location: http://delivery.udsbrasil.com.br/public/
Content-Length: 248
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
delivery.udsbrasil.com.br/public/
38.105.209.111200 OK 544 B URL HTTP/1.1 delivery.udsbrasil.com.br/public/
IP 38.105.209.111:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text
Hash 14c6e83f311eaaf97f19c172260c7a30
41044105af87d5c1bf4b736ed504f745b2748df8
554d78b2b608b0dd1c7ac505ee5802b2dcd775b6414cb0cb9111f53fc30a4ca1
GET /public/ HTTP/1.1
Host: delivery.udsbrasil.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Cookie: XSRF-TOKEN=eyJpdiI6Iit5WVlCcHdVVCs1MFlTci9MUjVNcWc9PSIsInZhbHVlIjoiMmpRZ05FWXI5NUVpMTRSQ3VSTTcvdWM2cjQ3MnFkNkRkNHNxTElRdytqbk1aTnpXZzFZdm82S2I3SllCWDZsVUFUK2VkMkh4NlJNRVZJSlhET1ZxMGxaMmkyMVBJM29UQXUvdFVWZ2cwQjBxTDRYcVBxMllDbGl0aDBmYjUyS3oiLCJtYWMiOiJmYzQxMjM3NmY0YjBmNThkZDdlNWY2OWI1ZTk2YTM0NTdjMWJiMjk0Y2M2MzFjMDcwMjAyMjA5MjkzYjM2Yzg0IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IngyR25hWVZ4cTRjd3kwem1kWkQvYVE9PSIsInZhbHVlIjoiQndVT1B2dHR3Qk9WMjVEZmJ5MHkwOTcvR0NBUElkVHIwY3JROVd3Ykt2QTZ1RzhxTHZZekMyWjRVS1AzRVFCeE1RSGhOcTdNTGt3S1B3Z0dMdStiOHNzTGh1NTA1ajNYV1pkNGVUcG10VWsrOTBqUStFYUJYVjBPZkU1UHJMU0wiLCJtYWMiOiJlYjdjODYzYjIzYzNhY2QwYWYwNTg2YzRkZDIyMDhiYzg1ZjY3OTQ2OGYxOGZkZWE5Mzg4Y2ZmOGNmZDkyOWVlIiwidGFnIjoiIn0%3D
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Wed, 08 Feb 2023 15:27:57 GMT
Server: Apache
Cache-Control: no-cache, private
Set-Cookie: XSRF-TOKEN=eyJpdiI6ImlUTEZGbEZVNmR0Uzh3d0tjVHY4M3c9PSIsInZhbHVlIjoiSnUyWjFQWnZWVmRMcEU2WmxnUDM1MU1hd0RjMmhjMU9ReW01eWZaQWZEMjd5RkRaQXRxbnRUMWFUMUs3SXExTTd6NWNmSFFSanp5Q0wxdGQ5aHpzekZVVTRHTmRwSGowK2dpQVRHQlRXUE1YOWpaTityYzRSZWJ5R1NaeEVDMDMiLCJtYWMiOiI0OGMxMWM4MzUzNzEwNTcyZGI2ODA2ZjhlMGEzMjRiZDY0MjMxNWY0MDYxNjVjOGUxNzMwZTM2MTZhNGUyZmI1IiwidGFnIjoiIn0%3D; expires=Wed, 08-Feb-2023 17:28:00 GMT; Max-Age=7200; path=/; samesite=lax
laravel_session=eyJpdiI6IlVoVGtYQUExWXFDUVF4U0NaTE4vYXc9PSIsInZhbHVlIjoiODhsb3AxbmlvZ1Fqdkp3TkswWEdTVW9tbk81SVllUDR3SVNVRlNNV3Q5MkkwVUJsZXM5RkhLdHVrUnlpZUtlNXZFK1FNMnRaa2hJNHhpWWpJZXVVcFRPMnlpZGkzekEzR3pTaFVud2VYbkNxRE9NSElMdUp4TkpUcElnaVFuU1UiLCJtYWMiOiIyNjJkY2RlOWE2OTlkYjViZmYyZTNkNmViYTYzODIwOGU2MmM4ZTVjZGFjN2QyZjY2NjE1YWY5YzI1NjQxNzk0IiwidGFnIjoiIn0%3D; expires=Wed, 08-Feb-2023 17:28:00 GMT; Max-Age=7200; path=/; httponly; samesite=lax
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 79d372fcfe4af96deb9eeec35b5a71b6
6eb187a9cf2b731223c401e2701908319e931f10
80a02d0becf0808b3221016fad6fed3adf0493da15bdf7a787fe9690b4307399
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5306
Cache-Control: max-age=99071
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 15:28:00 GMT
Etag: "63e28ac5-117"
Expires: Thu, 09 Feb 2023 18:59:11 GMT
Last-Modified: Tue, 07 Feb 2023 17:30:45 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 279
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 79d372fcfe4af96deb9eeec35b5a71b6
6eb187a9cf2b731223c401e2701908319e931f10
80a02d0becf0808b3221016fad6fed3adf0493da15bdf7a787fe9690b4307399
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5306
Cache-Control: max-age=99071
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 15:28:00 GMT
Etag: "63e28ac5-117"
Expires: Thu, 09 Feb 2023 18:59:11 GMT
Last-Modified: Tue, 07 Feb 2023 17:30:45 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 279
delivery.udsbrasil.com.br/MsJ4plsKeYcGTu9NuS1alkZb5Pqpqyjn/
38.105.209.111301 Moved Permanently 280 B URL HTTP/1.1 delivery.udsbrasil.com.br/MsJ4plsKeYcGTu9NuS1alkZb5Pqpqyjn/
IP 38.105.209.111:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash d6d877acd1802845030febd259f26008
ea7e458c24e9655ff32a4603c9089e2482e60657
e4cb3a2860049f10d19a56272a6d3956e83508317a9825c895acbbbee171d1f4
GET /MsJ4plsKeYcGTu9NuS1alkZb5Pqpqyjn/ HTTP/1.1
Host: delivery.udsbrasil.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://delivery.udsbrasil.com.br/public/
Cookie: XSRF-TOKEN=eyJpdiI6ImlUTEZGbEZVNmR0Uzh3d0tjVHY4M3c9PSIsInZhbHVlIjoiSnUyWjFQWnZWVmRMcEU2WmxnUDM1MU1hd0RjMmhjMU9ReW01eWZaQWZEMjd5RkRaQXRxbnRUMWFUMUs3SXExTTd6NWNmSFFSanp5Q0wxdGQ5aHpzekZVVTRHTmRwSGowK2dpQVRHQlRXUE1YOWpaTityYzRSZWJ5R1NaeEVDMDMiLCJtYWMiOiI0OGMxMWM4MzUzNzEwNTcyZGI2ODA2ZjhlMGEzMjRiZDY0MjMxNWY0MDYxNjVjOGUxNzMwZTM2MTZhNGUyZmI1IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IlVoVGtYQUExWXFDUVF4U0NaTE4vYXc9PSIsInZhbHVlIjoiODhsb3AxbmlvZ1Fqdkp3TkswWEdTVW9tbk81SVllUDR3SVNVRlNNV3Q5MkkwVUJsZXM5RkhLdHVrUnlpZUtlNXZFK1FNMnRaa2hJNHhpWWpJZXVVcFRPMnlpZGkzekEzR3pTaFVud2VYbkNxRE9NSElMdUp4TkpUcElnaVFuU1UiLCJtYWMiOiIyNjJkY2RlOWE2OTlkYjViZmYyZTNkNmViYTYzODIwOGU2MmM4ZTVjZGFjN2QyZjY2NjE1YWY5YzI1NjQxNzk0IiwidGFnIjoiIn0%3D
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Wed, 08 Feb 2023 15:28:00 GMT
Server: Apache
Location: http://delivery.udsbrasil.com.br/public/MsJ4plsKeYcGTu9NuS1alkZb5Pqpqyjn
Content-Length: 280
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
delivery.udsbrasil.com.br/public/MsJ4plsKeYcGTu9NuS1alkZb5Pqpqyjn
38.105.209.111200 OK 22 kB URL HTTP/1.1 delivery.udsbrasil.com.br/public/MsJ4plsKeYcGTu9NuS1alkZb5Pqpqyjn
IP 38.105.209.111:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text
Hash 8c1e5609aece42a83b678cd8c435c035
77fe762ed41407037edcc1be786d9a0513b61701
2900bdf4ef1777957104c5ad0715097d04de6da3a2e74ec130f23be54b572fc4
GET /public/MsJ4plsKeYcGTu9NuS1alkZb5Pqpqyjn HTTP/1.1
Host: delivery.udsbrasil.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://delivery.udsbrasil.com.br/public/
Connection: keep-alive
Cookie: XSRF-TOKEN=eyJpdiI6ImlUTEZGbEZVNmR0Uzh3d0tjVHY4M3c9PSIsInZhbHVlIjoiSnUyWjFQWnZWVmRMcEU2WmxnUDM1MU1hd0RjMmhjMU9ReW01eWZaQWZEMjd5RkRaQXRxbnRUMWFUMUs3SXExTTd6NWNmSFFSanp5Q0wxdGQ5aHpzekZVVTRHTmRwSGowK2dpQVRHQlRXUE1YOWpaTityYzRSZWJ5R1NaeEVDMDMiLCJtYWMiOiI0OGMxMWM4MzUzNzEwNTcyZGI2ODA2ZjhlMGEzMjRiZDY0MjMxNWY0MDYxNjVjOGUxNzMwZTM2MTZhNGUyZmI1IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IlVoVGtYQUExWXFDUVF4U0NaTE4vYXc9PSIsInZhbHVlIjoiODhsb3AxbmlvZ1Fqdkp3TkswWEdTVW9tbk81SVllUDR3SVNVRlNNV3Q5MkkwVUJsZXM5RkhLdHVrUnlpZUtlNXZFK1FNMnRaa2hJNHhpWWpJZXVVcFRPMnlpZGkzekEzR3pTaFVud2VYbkNxRE9NSElMdUp4TkpUcElnaVFuU1UiLCJtYWMiOiIyNjJkY2RlOWE2OTlkYjViZmYyZTNkNmViYTYzODIwOGU2MmM4ZTVjZGFjN2QyZjY2NjE1YWY5YzI1NjQxNzk0IiwidGFnIjoiIn0%3D
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Wed, 08 Feb 2023 15:28:00 GMT
Server: Apache
Cache-Control: no-cache, private
Set-Cookie: XSRF-TOKEN=eyJpdiI6IllwZkZvNWIxUzNPY0lBTzAwN2Jya0E9PSIsInZhbHVlIjoicjFjZDE5cGpLK2xkQW5TQnlySWgxWkpwemU4OXAxZlkvUnVpaUxzWDYvUWRjUWZZUWM5MmtPdW9iTUI5cUlyM1ZNbFZ5UEFtZy85bi9zR0w1TDMwV2JKS3B0Zkk5YlIrTzF0ZjNicnZ3R0JSMEhLb24vNTJKcFlnZFAyMnVyWHoiLCJtYWMiOiJhMDczNTNjOTc3MGI5YjliM2YzZmJkOGJiNmJiODc5OGY2NTM2MGRkNzVlM2EyYzRhNGYzYTNmZGM3ZjY2YjU5IiwidGFnIjoiIn0%3D; expires=Wed, 08-Feb-2023 17:28:03 GMT; Max-Age=7200; path=/; samesite=lax
laravel_session=eyJpdiI6IlZ3Q1IxUVlKckRXcXlaaVRwTDl1UUE9PSIsInZhbHVlIjoiRWZPZXBxYXhDRElqU001RXRrNkVQeXlXZlYwUHc2MkJLZGYweDJ2UHVlTEptTVRzRmVRcEx2MmJLUUZJUXNramRNVFlKaDA3R0Y1TFBHSWRKSDRnNnV2ZDZYSHZ2MVl3enVsd1d4YWlncXFIbkJKaXdubWl0RTJUNVhITHBkWWYiLCJtYWMiOiJmOWRiNDkxYzBhODVhMjM2NGU5NDM1YWVlMWMzMzE4NjUwMzQyZWRhOTI5MDFkMzgxZDNmN2FhNDliNjQzMDllIiwidGFnIjoiIn0%3D; expires=Wed, 08-Feb-2023 17:28:03 GMT; Max-Age=7200; path=/; httponly; samesite=lax
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash 4a2793786b1ce1206b70d285bea47b94
11747c77f2ef56d889b5148834faa184be7cfc07
af406b334b4df19c87a6911d78bbab5bc5628dc7ccac9d7d60050908c770fb52
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4659
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 15:28:03 GMT
Last-Modified: Wed, 08 Feb 2023 14:10:24 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 280
cdnjs.cloudflare.com/ajax/libs/font-awesome/5.8.1/js/all.min.js
104.17.24.14200 OK 338 kB URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/font-awesome/5.8.1/js/all.min.js
IP 104.17.24.14:0
File type ASCII text, with very long lines (65351)
Size 338 kB (338270 bytes)
Hash 5d535c43dade573c71fe3351d29ef3b6
a3ef7cd761afd9f454bd645ae4cfd79e9b6013b1
54d0f4ed17492419c5afdf9b8205c34b98db43c91dbdc342a27ce31f4970b7df
GET /ajax/libs/font-awesome/5.8.1/js/all.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://delivery.udsbrasil.com.br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 08 Feb 2023 15:28:03 GMT
content-type: application/javascript; charset=utf-8
content-length: 338270
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03e60-1125c9"
last-modified: Mon, 04 May 2020 16:10:08 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 382977
expires: Mon, 29 Jan 2024 15:28:03 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=e6u6%2BufBNL03AiZGS8wwM%2Fb79NX0fuIiNVqYmgT4NYYualA0DNCbXVhfeKMWd9JMuntp7joROUnWOkT7OAl94ZNT7QpV%2FqPkwcvEF539fuiINkPdqPaazzL%2FlucwDbMao%2BKWKeYE"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 7965649438380b31-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash 4a2793786b1ce1206b70d285bea47b94
11747c77f2ef56d889b5148834faa184be7cfc07
af406b334b4df19c87a6911d78bbab5bc5628dc7ccac9d7d60050908c770fb52
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4659
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 15:28:03 GMT
Last-Modified: Wed, 08 Feb 2023 14:10:24 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 280
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 471 B IP 142.250.74.163:0
Hash 325a8a10ce2837a8c6820e30572d181c
195d6189f0f10fcb301fce3af4c27028bbcb9eaa
2f1a0e948582fa64266617acc77e9beb71c5031d9cffe1bed1393a554f259810
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 15:28:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash 4a2793786b1ce1206b70d285bea47b94
11747c77f2ef56d889b5148834faa184be7cfc07
af406b334b4df19c87a6911d78bbab5bc5628dc7ccac9d7d60050908c770fb52
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5927
Cache-Control: max-age=110150
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 15:28:03 GMT
Etag: "63e2b3a2-118"
Expires: Thu, 09 Feb 2023 22:03:53 GMT
Last-Modified: Tue, 07 Feb 2023 20:25:06 GMT
Server: ECS (ska/F6FE)
X-Cache: HIT
Content-Length: 280
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash b59eb25ba44789feddca372241afed3f
27881adccea8e1f56f557c43d581fbf15dfaf33c
94031a6e3472d80e32011c78b3cd8cf32a2efad0d0f11b8e40ec45f2c88d490e
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2838
Cache-Control: max-age=170044
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 15:28:03 GMT
Etag: "63e3a9a9-117"
Expires: Fri, 10 Feb 2023 14:42:07 GMT
Last-Modified: Wed, 08 Feb 2023 13:54:49 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 279
delivery.udsbrasil.com.br/public/dinzab/data.js
38.105.209.111200 OK 12 kB URL HTTP/1.1 delivery.udsbrasil.com.br/public/dinzab/data.js
IP 38.105.209.111:0
File type Unicode text, UTF-8 text, with very long lines (9881)
Hash a2b78e86240966cda00a463614e4f3dd
a2606f30f77bb9f235746059db16b0ee8b585c31
55e47db856701715f613de8674bd0c67604cc304514b791bed402866d18c8557
Analyzer Verdict Alert urlquery phishing Phishing - DHL
GET /public/dinzab/data.js HTTP/1.1
Host: delivery.udsbrasil.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://delivery.udsbrasil.com.br/public/MsJ4plsKeYcGTu9NuS1alkZb5Pqpqyjn
Cookie: XSRF-TOKEN=eyJpdiI6IllwZkZvNWIxUzNPY0lBTzAwN2Jya0E9PSIsInZhbHVlIjoicjFjZDE5cGpLK2xkQW5TQnlySWgxWkpwemU4OXAxZlkvUnVpaUxzWDYvUWRjUWZZUWM5MmtPdW9iTUI5cUlyM1ZNbFZ5UEFtZy85bi9zR0w1TDMwV2JKS3B0Zkk5YlIrTzF0ZjNicnZ3R0JSMEhLb24vNTJKcFlnZFAyMnVyWHoiLCJtYWMiOiJhMDczNTNjOTc3MGI5YjliM2YzZmJkOGJiNmJiODc5OGY2NTM2MGRkNzVlM2EyYzRhNGYzYTNmZGM3ZjY2YjU5IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IlZ3Q1IxUVlKckRXcXlaaVRwTDl1UUE9PSIsInZhbHVlIjoiRWZPZXBxYXhDRElqU001RXRrNkVQeXlXZlYwUHc2MkJLZGYweDJ2UHVlTEptTVRzRmVRcEx2MmJLUUZJUXNramRNVFlKaDA3R0Y1TFBHSWRKSDRnNnV2ZDZYSHZ2MVl3enVsd1d4YWlncXFIbkJKaXdubWl0RTJUNVhITHBkWWYiLCJtYWMiOiJmOWRiNDkxYzBhODVhMjM2NGU5NDM1YWVlMWMzMzE4NjUwMzQyZWRhOTI5MDFkMzgxZDNmN2FhNDliNjQzMDllIiwidGFnIjoiIn0%3D
HTTP/1.1 200 OK
Date: Wed, 08 Feb 2023 15:28:03 GMT
Server: Apache
Last-Modified: Tue, 31 May 2022 15:05:50 GMT
Accept-Ranges: bytes
Content-Length: 12100
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: application/javascript
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 471 B IP 142.250.74.163:0
Hash 0333fa3e34f17f01e9829bd8ee662c23
be4c7a8599038facc49c73d6d14451023bc919e7
8b4ad992549334395b268f43cf73150ed0dfe58801cf9595c3e245ea92dea7d9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 15:28:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
delivery.udsbrasil.com.br/public/dinzab/mine.js
38.105.209.111200 OK 1.6 kB URL HTTP/1.1 delivery.udsbrasil.com.br/public/dinzab/mine.js
IP 38.105.209.111:0
Hash f11ee1ccf373dd137b7ad18e4ee2f69e
26baf7db3e340be99ece82b37d294b80c373fd12
71b8a934f8936288d42fe9fd426ff18cbc1fe54070617fd62420025da56b662e
Analyzer Verdict Alert urlquery phishing Phishing - DHL
GET /public/dinzab/mine.js HTTP/1.1
Host: delivery.udsbrasil.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://delivery.udsbrasil.com.br/public/MsJ4plsKeYcGTu9NuS1alkZb5Pqpqyjn
Cookie: XSRF-TOKEN=eyJpdiI6IllwZkZvNWIxUzNPY0lBTzAwN2Jya0E9PSIsInZhbHVlIjoicjFjZDE5cGpLK2xkQW5TQnlySWgxWkpwemU4OXAxZlkvUnVpaUxzWDYvUWRjUWZZUWM5MmtPdW9iTUI5cUlyM1ZNbFZ5UEFtZy85bi9zR0w1TDMwV2JKS3B0Zkk5YlIrTzF0ZjNicnZ3R0JSMEhLb24vNTJKcFlnZFAyMnVyWHoiLCJtYWMiOiJhMDczNTNjOTc3MGI5YjliM2YzZmJkOGJiNmJiODc5OGY2NTM2MGRkNzVlM2EyYzRhNGYzYTNmZGM3ZjY2YjU5IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IlZ3Q1IxUVlKckRXcXlaaVRwTDl1UUE9PSIsInZhbHVlIjoiRWZPZXBxYXhDRElqU001RXRrNkVQeXlXZlYwUHc2MkJLZGYweDJ2UHVlTEptTVRzRmVRcEx2MmJLUUZJUXNramRNVFlKaDA3R0Y1TFBHSWRKSDRnNnV2ZDZYSHZ2MVl3enVsd1d4YWlncXFIbkJKaXdubWl0RTJUNVhITHBkWWYiLCJtYWMiOiJmOWRiNDkxYzBhODVhMjM2NGU5NDM1YWVlMWMzMzE4NjUwMzQyZWRhOTI5MDFkMzgxZDNmN2FhNDliNjQzMDllIiwidGFnIjoiIn0%3D
HTTP/1.1 200 OK
Date: Wed, 08 Feb 2023 15:28:03 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Mon, 17 Oct 2022 16:48:22 GMT
Accept-Ranges: bytes
Content-Length: 1604
Keep-Alive: timeout=5, max=100
Content-Type: application/javascript
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash b59eb25ba44789feddca372241afed3f
27881adccea8e1f56f557c43d581fbf15dfaf33c
94031a6e3472d80e32011c78b3cd8cf32a2efad0d0f11b8e40ec45f2c88d490e
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3090
Cache-Control: max-age=170296
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 15:28:03 GMT
Etag: "63e3a9a9-117"
Expires: Fri, 10 Feb 2023 14:46:19 GMT
Last-Modified: Wed, 08 Feb 2023 13:54:49 GMT
Server: ECS (ska/F6FE)
X-Cache: HIT
Content-Length: 279
delivery.udsbrasil.com.br/public/dinzab/newcc.css
38.105.209.111200 OK 5.2 kB URL HTTP/1.1 delivery.udsbrasil.com.br/public/dinzab/newcc.css
IP 38.105.209.111:0
Hash a8802c7108e75bd512824b11af10a5e7
0af53e81447c67be4d787fea0f6ef8c82008e4ea
6c37a32274d58b55fc113546582236826b279eb6d667ecbf86e73823713da4f9
Analyzer Verdict Alert urlquery phishing Phishing - DHL
GET /public/dinzab/newcc.css HTTP/1.1
Host: delivery.udsbrasil.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://delivery.udsbrasil.com.br/public/MsJ4plsKeYcGTu9NuS1alkZb5Pqpqyjn
Cookie: XSRF-TOKEN=eyJpdiI6IllwZkZvNWIxUzNPY0lBTzAwN2Jya0E9PSIsInZhbHVlIjoicjFjZDE5cGpLK2xkQW5TQnlySWgxWkpwemU4OXAxZlkvUnVpaUxzWDYvUWRjUWZZUWM5MmtPdW9iTUI5cUlyM1ZNbFZ5UEFtZy85bi9zR0w1TDMwV2JKS3B0Zkk5YlIrTzF0ZjNicnZ3R0JSMEhLb24vNTJKcFlnZFAyMnVyWHoiLCJtYWMiOiJhMDczNTNjOTc3MGI5YjliM2YzZmJkOGJiNmJiODc5OGY2NTM2MGRkNzVlM2EyYzRhNGYzYTNmZGM3ZjY2YjU5IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IlZ3Q1IxUVlKckRXcXlaaVRwTDl1UUE9PSIsInZhbHVlIjoiRWZPZXBxYXhDRElqU001RXRrNkVQeXlXZlYwUHc2MkJLZGYweDJ2UHVlTEptTVRzRmVRcEx2MmJLUUZJUXNramRNVFlKaDA3R0Y1TFBHSWRKSDRnNnV2ZDZYSHZ2MVl3enVsd1d4YWlncXFIbkJKaXdubWl0RTJUNVhITHBkWWYiLCJtYWMiOiJmOWRiNDkxYzBhODVhMjM2NGU5NDM1YWVlMWMzMzE4NjUwMzQyZWRhOTI5MDFkMzgxZDNmN2FhNDliNjQzMDllIiwidGFnIjoiIn0%3D
HTTP/1.1 200 OK
Date: Wed, 08 Feb 2023 15:28:03 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Thu, 02 Jun 2022 20:41:52 GMT
Accept-Ranges: bytes
Content-Length: 5211
Keep-Alive: timeout=5, max=100
Content-Type: text/css
delivery.udsbrasil.com.br/public/dinzab/countrySelect.js
38.105.209.111200 OK 37 kB URL HTTP/1.1 delivery.udsbrasil.com.br/public/dinzab/countrySelect.js
IP 38.105.209.111:0
File type Unicode text, UTF-8 text, with very long lines (347)
Hash ee3d5d4880b5dac09d9ca3c23cdd28da
f95728f89723a079442d67ed6aa38abf8ecab4fd
657baddf2724ae4570fa40c00dddefa3379b5709ac06ceb536f6177a1bfc394f
Analyzer Verdict Alert urlquery phishing Phishing - DHL
GET /public/dinzab/countrySelect.js HTTP/1.1
Host: delivery.udsbrasil.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://delivery.udsbrasil.com.br/public/MsJ4plsKeYcGTu9NuS1alkZb5Pqpqyjn
Cookie: XSRF-TOKEN=eyJpdiI6IllwZkZvNWIxUzNPY0lBTzAwN2Jya0E9PSIsInZhbHVlIjoicjFjZDE5cGpLK2xkQW5TQnlySWgxWkpwemU4OXAxZlkvUnVpaUxzWDYvUWRjUWZZUWM5MmtPdW9iTUI5cUlyM1ZNbFZ5UEFtZy85bi9zR0w1TDMwV2JKS3B0Zkk5YlIrTzF0ZjNicnZ3R0JSMEhLb24vNTJKcFlnZFAyMnVyWHoiLCJtYWMiOiJhMDczNTNjOTc3MGI5YjliM2YzZmJkOGJiNmJiODc5OGY2NTM2MGRkNzVlM2EyYzRhNGYzYTNmZGM3ZjY2YjU5IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IlZ3Q1IxUVlKckRXcXlaaVRwTDl1UUE9PSIsInZhbHVlIjoiRWZPZXBxYXhDRElqU001RXRrNkVQeXlXZlYwUHc2MkJLZGYweDJ2UHVlTEptTVRzRmVRcEx2MmJLUUZJUXNramRNVFlKaDA3R0Y1TFBHSWRKSDRnNnV2ZDZYSHZ2MVl3enVsd1d4YWlncXFIbkJKaXdubWl0RTJUNVhITHBkWWYiLCJtYWMiOiJmOWRiNDkxYzBhODVhMjM2NGU5NDM1YWVlMWMzMzE4NjUwMzQyZWRhOTI5MDFkMzgxZDNmN2FhNDliNjQzMDllIiwidGFnIjoiIn0%3D
HTTP/1.1 200 OK
Date: Wed, 08 Feb 2023 15:28:03 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Tue, 31 May 2022 15:05:50 GMT
Accept-Ranges: bytes
Content-Length: 36634
Keep-Alive: timeout=5, max=100
Content-Type: application/javascript
delivery.udsbrasil.com.br/public/dinzab/font-awesome.min.css
38.105.209.111200 OK 31 kB URL HTTP/1.1 delivery.udsbrasil.com.br/public/dinzab/font-awesome.min.css
IP 38.105.209.111:0
File type ASCII text, with very long lines (30837)
Hash 269550530cc127b6aa5a35925a7de6ce
512c7d79033e3028a9be61b540cf1a6870c896f8
799aeb25cc0373fdee0e1b1db7ad6c2f6a0e058dfadaa3379689f583213190bd
Analyzer Verdict Alert urlquery phishing Phishing - DHL
GET /public/dinzab/font-awesome.min.css HTTP/1.1
Host: delivery.udsbrasil.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://delivery.udsbrasil.com.br/public/MsJ4plsKeYcGTu9NuS1alkZb5Pqpqyjn
Cookie: XSRF-TOKEN=eyJpdiI6IllwZkZvNWIxUzNPY0lBTzAwN2Jya0E9PSIsInZhbHVlIjoicjFjZDE5cGpLK2xkQW5TQnlySWgxWkpwemU4OXAxZlkvUnVpaUxzWDYvUWRjUWZZUWM5MmtPdW9iTUI5cUlyM1ZNbFZ5UEFtZy85bi9zR0w1TDMwV2JKS3B0Zkk5YlIrTzF0ZjNicnZ3R0JSMEhLb24vNTJKcFlnZFAyMnVyWHoiLCJtYWMiOiJhMDczNTNjOTc3MGI5YjliM2YzZmJkOGJiNmJiODc5OGY2NTM2MGRkNzVlM2EyYzRhNGYzYTNmZGM3ZjY2YjU5IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IlZ3Q1IxUVlKckRXcXlaaVRwTDl1UUE9PSIsInZhbHVlIjoiRWZPZXBxYXhDRElqU001RXRrNkVQeXlXZlYwUHc2MkJLZGYweDJ2UHVlTEptTVRzRmVRcEx2MmJLUUZJUXNramRNVFlKaDA3R0Y1TFBHSWRKSDRnNnV2ZDZYSHZ2MVl3enVsd1d4YWlncXFIbkJKaXdubWl0RTJUNVhITHBkWWYiLCJtYWMiOiJmOWRiNDkxYzBhODVhMjM2NGU5NDM1YWVlMWMzMzE4NjUwMzQyZWRhOTI5MDFkMzgxZDNmN2FhNDliNjQzMDllIiwidGFnIjoiIn0%3D
HTTP/1.1 200 OK
Date: Wed, 08 Feb 2023 15:28:03 GMT
Server: Apache
Last-Modified: Tue, 31 May 2022 15:05:50 GMT
Accept-Ranges: bytes
Content-Length: 31000
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: text/css
delivery.udsbrasil.com.br/public/dinzab/card.js
38.105.209.111200 OK 59 kB URL HTTP/1.1 delivery.udsbrasil.com.br/public/dinzab/card.js
IP 38.105.209.111:0
File type Unicode text, UTF-8 text, with very long lines (51786)
Hash 30e93a747ba8285615cfbc3643dc1a62
3a55f9d6ac708f519d351ea0b69083457778ec9d
18c4b9b4c27233b541a47300a4ee98239e1f8dec4bbcd9fabb6bdad12ca82025
Analyzer Verdict Alert urlquery phishing Phishing - DHL
GET /public/dinzab/card.js HTTP/1.1
Host: delivery.udsbrasil.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://delivery.udsbrasil.com.br/public/MsJ4plsKeYcGTu9NuS1alkZb5Pqpqyjn
Cookie: XSRF-TOKEN=eyJpdiI6IllwZkZvNWIxUzNPY0lBTzAwN2Jya0E9PSIsInZhbHVlIjoicjFjZDE5cGpLK2xkQW5TQnlySWgxWkpwemU4OXAxZlkvUnVpaUxzWDYvUWRjUWZZUWM5MmtPdW9iTUI5cUlyM1ZNbFZ5UEFtZy85bi9zR0w1TDMwV2JKS3B0Zkk5YlIrTzF0ZjNicnZ3R0JSMEhLb24vNTJKcFlnZFAyMnVyWHoiLCJtYWMiOiJhMDczNTNjOTc3MGI5YjliM2YzZmJkOGJiNmJiODc5OGY2NTM2MGRkNzVlM2EyYzRhNGYzYTNmZGM3ZjY2YjU5IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IlZ3Q1IxUVlKckRXcXlaaVRwTDl1UUE9PSIsInZhbHVlIjoiRWZPZXBxYXhDRElqU001RXRrNkVQeXlXZlYwUHc2MkJLZGYweDJ2UHVlTEptTVRzRmVRcEx2MmJLUUZJUXNramRNVFlKaDA3R0Y1TFBHSWRKSDRnNnV2ZDZYSHZ2MVl3enVsd1d4YWlncXFIbkJKaXdubWl0RTJUNVhITHBkWWYiLCJtYWMiOiJmOWRiNDkxYzBhODVhMjM2NGU5NDM1YWVlMWMzMzE4NjUwMzQyZWRhOTI5MDFkMzgxZDNmN2FhNDliNjQzMDllIiwidGFnIjoiIn0%3D
HTTP/1.1 200 OK
Date: Wed, 08 Feb 2023 15:28:03 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Tue, 31 May 2022 15:05:50 GMT
Accept-Ranges: bytes
Content-Length: 58666
Keep-Alive: timeout=5, max=100
Content-Type: application/javascript
delivery.udsbrasil.com.br/public/dinzab/intlTelInput.css
38.105.209.111200 OK 25 kB URL HTTP/1.1 delivery.udsbrasil.com.br/public/dinzab/intlTelInput.css
IP 38.105.209.111:0
Hash bd1fe63547e380ddfdd79c4cea97cc1e
d5546e0d88b001b6ceb1a06fbf6a47e31214e9de
51198a6581f3fdd8b035268f775b1a6f519ee61b3e2a22da4a6fe2b2647b145b
Analyzer Verdict Alert urlquery phishing Phishing - DHL
GET /public/dinzab/intlTelInput.css HTTP/1.1
Host: delivery.udsbrasil.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://delivery.udsbrasil.com.br/public/MsJ4plsKeYcGTu9NuS1alkZb5Pqpqyjn
Cookie: XSRF-TOKEN=eyJpdiI6IllwZkZvNWIxUzNPY0lBTzAwN2Jya0E9PSIsInZhbHVlIjoicjFjZDE5cGpLK2xkQW5TQnlySWgxWkpwemU4OXAxZlkvUnVpaUxzWDYvUWRjUWZZUWM5MmtPdW9iTUI5cUlyM1ZNbFZ5UEFtZy85bi9zR0w1TDMwV2JKS3B0Zkk5YlIrTzF0ZjNicnZ3R0JSMEhLb24vNTJKcFlnZFAyMnVyWHoiLCJtYWMiOiJhMDczNTNjOTc3MGI5YjliM2YzZmJkOGJiNmJiODc5OGY2NTM2MGRkNzVlM2EyYzRhNGYzYTNmZGM3ZjY2YjU5IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IlZ3Q1IxUVlKckRXcXlaaVRwTDl1UUE9PSIsInZhbHVlIjoiRWZPZXBxYXhDRElqU001RXRrNkVQeXlXZlYwUHc2MkJLZGYweDJ2UHVlTEptTVRzRmVRcEx2MmJLUUZJUXNramRNVFlKaDA3R0Y1TFBHSWRKSDRnNnV2ZDZYSHZ2MVl3enVsd1d4YWlncXFIbkJKaXdubWl0RTJUNVhITHBkWWYiLCJtYWMiOiJmOWRiNDkxYzBhODVhMjM2NGU5NDM1YWVlMWMzMzE4NjUwMzQyZWRhOTI5MDFkMzgxZDNmN2FhNDliNjQzMDllIiwidGFnIjoiIn0%3D
HTTP/1.1 200 OK
Date: Wed, 08 Feb 2023 15:28:03 GMT
Server: Apache
Last-Modified: Tue, 31 May 2022 15:05:50 GMT
Accept-Ranges: bytes
Content-Length: 24631
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
delivery.udsbrasil.com.br/public/dinzab/intlTelInput.js
38.105.209.111200 OK 89 kB URL HTTP/1.1 delivery.udsbrasil.com.br/public/dinzab/intlTelInput.js
IP 38.105.209.111:0
File type Unicode text, UTF-8 text, with very long lines (9885)
Hash 9146aa46d1f409004183b86f202c4607
717a6d53527fe31ec1c4eef9022b06e5d4d6f6a5
b188900aaff98a87fc69519ab04437aa735708b4b92f2adcab6937d2a1d42e37
Analyzer Verdict Alert urlquery phishing Phishing - DHL
GET /public/dinzab/intlTelInput.js HTTP/1.1
Host: delivery.udsbrasil.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://delivery.udsbrasil.com.br/public/MsJ4plsKeYcGTu9NuS1alkZb5Pqpqyjn
Cookie: XSRF-TOKEN=eyJpdiI6IllwZkZvNWIxUzNPY0lBTzAwN2Jya0E9PSIsInZhbHVlIjoicjFjZDE5cGpLK2xkQW5TQnlySWgxWkpwemU4OXAxZlkvUnVpaUxzWDYvUWRjUWZZUWM5MmtPdW9iTUI5cUlyM1ZNbFZ5UEFtZy85bi9zR0w1TDMwV2JKS3B0Zkk5YlIrTzF0ZjNicnZ3R0JSMEhLb24vNTJKcFlnZFAyMnVyWHoiLCJtYWMiOiJhMDczNTNjOTc3MGI5YjliM2YzZmJkOGJiNmJiODc5OGY2NTM2MGRkNzVlM2EyYzRhNGYzYTNmZGM3ZjY2YjU5IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IlZ3Q1IxUVlKckRXcXlaaVRwTDl1UUE9PSIsInZhbHVlIjoiRWZPZXBxYXhDRElqU001RXRrNkVQeXlXZlYwUHc2MkJLZGYweDJ2UHVlTEptTVRzRmVRcEx2MmJLUUZJUXNramRNVFlKaDA3R0Y1TFBHSWRKSDRnNnV2ZDZYSHZ2MVl3enVsd1d4YWlncXFIbkJKaXdubWl0RTJUNVhITHBkWWYiLCJtYWMiOiJmOWRiNDkxYzBhODVhMjM2NGU5NDM1YWVlMWMzMzE4NjUwMzQyZWRhOTI5MDFkMzgxZDNmN2FhNDliNjQzMDllIiwidGFnIjoiIn0%3D
HTTP/1.1 200 OK
Date: Wed, 08 Feb 2023 15:28:03 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Tue, 31 May 2022 15:05:50 GMT
Accept-Ranges: bytes
Content-Length: 89336
Keep-Alive: timeout=5, max=100
Content-Type: application/javascript
delivery.udsbrasil.com.br/public/dinzab/app.js
38.105.209.111200 OK 920 kB URL HTTP/1.1 delivery.udsbrasil.com.br/public/dinzab/app.js
IP 38.105.209.111:0
File type Unicode text, UTF-8 text, with very long lines (7706), with CRLF line terminators
Size 920 kB (920095 bytes)
Hash 508afd6ff9ab52ce8f480d35568038d1
b5d9891100e0dce59cee59b75a098a1ae64c779b
8af18273c1833477cf810c4e3a76f483b6a6064571d25ea7742d8708378c8f09
Analyzer Verdict Alert urlquery phishing Phishing - DHL
GET /public/dinzab/app.js HTTP/1.1
Host: delivery.udsbrasil.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://delivery.udsbrasil.com.br/public/MsJ4plsKeYcGTu9NuS1alkZb5Pqpqyjn
Cookie: XSRF-TOKEN=eyJpdiI6IllwZkZvNWIxUzNPY0lBTzAwN2Jya0E9PSIsInZhbHVlIjoicjFjZDE5cGpLK2xkQW5TQnlySWgxWkpwemU4OXAxZlkvUnVpaUxzWDYvUWRjUWZZUWM5MmtPdW9iTUI5cUlyM1ZNbFZ5UEFtZy85bi9zR0w1TDMwV2JKS3B0Zkk5YlIrTzF0ZjNicnZ3R0JSMEhLb24vNTJKcFlnZFAyMnVyWHoiLCJtYWMiOiJhMDczNTNjOTc3MGI5YjliM2YzZmJkOGJiNmJiODc5OGY2NTM2MGRkNzVlM2EyYzRhNGYzYTNmZGM3ZjY2YjU5IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IlZ3Q1IxUVlKckRXcXlaaVRwTDl1UUE9PSIsInZhbHVlIjoiRWZPZXBxYXhDRElqU001RXRrNkVQeXlXZlYwUHc2MkJLZGYweDJ2UHVlTEptTVRzRmVRcEx2MmJLUUZJUXNramRNVFlKaDA3R0Y1TFBHSWRKSDRnNnV2ZDZYSHZ2MVl3enVsd1d4YWlncXFIbkJKaXdubWl0RTJUNVhITHBkWWYiLCJtYWMiOiJmOWRiNDkxYzBhODVhMjM2NGU5NDM1YWVlMWMzMzE4NjUwMzQyZWRhOTI5MDFkMzgxZDNmN2FhNDliNjQzMDllIiwidGFnIjoiIn0%3D
HTTP/1.1 200 OK
Date: Wed, 08 Feb 2023 15:28:03 GMT
Server: Apache
Last-Modified: Tue, 31 May 2022 15:05:50 GMT
Accept-Ranges: bytes
Content-Length: 920095
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/javascript
delivery.udsbrasil.com.br/public/dinzab/app.css
38.105.209.111200 OK 914 kB URL HTTP/1.1 delivery.udsbrasil.com.br/public/dinzab/app.css
IP 38.105.209.111:0
File type assembler source, ASCII text
Size 914 kB (913520 bytes)
Hash 74d0401d2b753a90be1d872aaa6e94b4
386f08a79bdc853e8a81585efcfc35ca90a49687
0762226aa4722b7c5349c825388089b0e3f8cdde6dd5dbb5f002d4fb014f568f
Analyzer Verdict Alert urlquery phishing Phishing - DHL
GET /public/dinzab/app.css HTTP/1.1
Host: delivery.udsbrasil.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://delivery.udsbrasil.com.br/public/MsJ4plsKeYcGTu9NuS1alkZb5Pqpqyjn
Cookie: XSRF-TOKEN=eyJpdiI6IllwZkZvNWIxUzNPY0lBTzAwN2Jya0E9PSIsInZhbHVlIjoicjFjZDE5cGpLK2xkQW5TQnlySWgxWkpwemU4OXAxZlkvUnVpaUxzWDYvUWRjUWZZUWM5MmtPdW9iTUI5cUlyM1ZNbFZ5UEFtZy85bi9zR0w1TDMwV2JKS3B0Zkk5YlIrTzF0ZjNicnZ3R0JSMEhLb24vNTJKcFlnZFAyMnVyWHoiLCJtYWMiOiJhMDczNTNjOTc3MGI5YjliM2YzZmJkOGJiNmJiODc5OGY2NTM2MGRkNzVlM2EyYzRhNGYzYTNmZGM3ZjY2YjU5IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IlZ3Q1IxUVlKckRXcXlaaVRwTDl1UUE9PSIsInZhbHVlIjoiRWZPZXBxYXhDRElqU001RXRrNkVQeXlXZlYwUHc2MkJLZGYweDJ2UHVlTEptTVRzRmVRcEx2MmJLUUZJUXNramRNVFlKaDA3R0Y1TFBHSWRKSDRnNnV2ZDZYSHZ2MVl3enVsd1d4YWlncXFIbkJKaXdubWl0RTJUNVhITHBkWWYiLCJtYWMiOiJmOWRiNDkxYzBhODVhMjM2NGU5NDM1YWVlMWMzMzE4NjUwMzQyZWRhOTI5MDFkMzgxZDNmN2FhNDliNjQzMDllIiwidGFnIjoiIn0%3D
HTTP/1.1 200 OK
Date: Wed, 08 Feb 2023 15:28:03 GMT
Server: Apache
Last-Modified: Fri, 03 Jun 2022 01:04:20 GMT
Accept-Ranges: bytes
Content-Length: 913520
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
code.jquery.com/jquery-1.12.4.min.js
69.16.175.42200 OK 0 B URL HTTP/2 code.jquery.com/jquery-1.12.4.min.js
IP 69.16.175.42:0
GET /jquery-1.12.4.min.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://delivery.udsbrasil.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 08 Feb 2023 15:28:03 GMT
content-encoding: gzip
content-length: 33738
content-type: application/javascript; charset=utf-8
last-modified: Wed, 16 Feb 2022 10:50:39 GMT
accept-ranges: bytes
server: nginx
etag: W/"620cd6ff-17b8b"
cache-control: max-age=315360000, public
access-control-allow-origin: *
vary: Accept-Encoding
x-hw: 1675870083.dop015.sk1.t,1675870083.cds203.sk1.hn,1675870083.cds251.sk1.c
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Raleway|Rock+Salt|Source+Code+Pro:300,400,600
142.250.74.74200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Raleway|Rock+Salt|Source+Code+Pro:300,400,600
IP 142.250.74.74:0
GET /css?family=Raleway|Rock+Salt|Source+Code+Pro:300,400,600 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://delivery.udsbrasil.com.br/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 08 Feb 2023 15:28:03 GMT
date: Wed, 08 Feb 2023 15:28:03 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.jsdelivr.net/gh/killbot-org/Killbot-JS@latest/dist/main.min.js
104.16.86.20200 OK 0 B URL HTTP/2 cdn.jsdelivr.net/gh/killbot-org/Killbot-JS@latest/dist/main.min.js
IP 104.16.86.20:0
GET /gh/killbot-org/Killbot-JS@latest/dist/main.min.js HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://delivery.udsbrasil.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 08 Feb 2023 15:28:00 GMT
content-type: application/javascript; charset=utf-8
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=604800, s-maxage=43200
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-jsd-version: master
x-jsd-version-type: branch
etag: W/"a7c-kmbumraAtj1yBda8Zbl2dRPRYqU"
x-served-by: cache-fra-eddf8230107-FRA, cache-jnb7025-JNB
x-cache: HIT, MISS
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
cf-cache-status: HIT
age: 39238
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=xDSOBMGKxsaMnq26J%2BrqFboyAmY19k%2BNCjfZ8jdglFvh2K6ojwehuJovQZgANF9GptW0Wln2gjTrpQoRwgLeRRXAgqanNXxrYUZvgBcqym0ZGyZg2dLrSePTSIpxDYdtzq8%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 796564825a69b52d-OSL
content-encoding: br
X-Firefox-Spdy: h2
cdn.lr-in.com/logger-1.min.js
104.21.234.144200 OK 0 B URL HTTP/2 cdn.lr-in.com/logger-1.min.js
IP 104.21.234.144:0
GET /logger-1.min.js HTTP/1.1
Host: cdn.lr-in.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://delivery.udsbrasil.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 08 Feb 2023 15:28:03 GMT
content-type: text/javascript; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=14400
cross-origin-resource-policy: cross-origin
etag: W/"e3883bf6079976fe13b88c5887b853c5fc520d17f4d3b51c6f169e9f1596d4b9"
last-modified: Tue, 07 Feb 2023 23:22:09 GMT
strict-transport-security: max-age=31556926
x-served-by: cache-ams21079-AMS
x-cache: MISS
x-cache-hits: 0
x-timer: S1675812139.601622,VS0,VE32
vary: x-fh-requested-host, accept-encoding
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
cf-cache-status: HIT
age: 279
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=jD%2FfwrjOsCeerna47Nr%2BGzX6Jjd99kH4AtHr6ficy46x0WtbuviTZ%2B0IRQli2SxoZPYS6r6WnpJ%2FdD%2F12ro0zNxGWw%2BvfoqtxrjRNDq3u54dKcTb2e5l48fp7gXCNuPT"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 79656494ed0d7314-LHR
content-encoding: br
X-Firefox-Spdy: h2