r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash a5daf4dc99951793ae2315d4795e8146
4427507ca4d3a5632cc8f598afbc85e2195d00bd
94fb64c1c826ed7099283c0bedb3cea7ac7e1d9526794cb9fad6e761f5989d32
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "94FB64C1C826ED7099283C0BEDB3CEA7AC7E1D9526794CB9FAD6E761F5989D32"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6058
Expires: Wed, 30 Nov 2022 20:18:00 GMT
Date: Wed, 30 Nov 2022 18:37:02 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash f3cf023c797da81728c0ac84c8759331
fa07c5e39e4b0741ea484101cccb2202acea9d9c
5206a0bac8bf78d6b84322519271a1ece2c1039a0090e583de6d6192d88873d0
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5100
Cache-Control: max-age=148757
Content-Type: application/ocsp-response
Date: Wed, 30 Nov 2022 18:37:02 GMT
Etag: "638730f7-1d7"
Expires: Fri, 02 Dec 2022 11:56:19 GMT
Last-Modified: Wed, 30 Nov 2022 10:31:19 GMT
Server: ECS (ska/F70A)
X-Cache: HIT
Content-Length: 471
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 9fce5679881bf302a8978a0b462f01a9
b699fe030ea13ac73813e655c42ed9b531925e2b
a3ec545a8f9364ac9062eddb41279e1465687a1b60f9c1dec6b3a3df8b033eb3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A3EC545A8F9364AC9062EDDB41279E1465687A1B60F9C1DEC6B3A3DF8B033EB3"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17050
Expires: Wed, 30 Nov 2022 23:21:12 GMT
Date: Wed, 30 Nov 2022 18:37:02 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 9ebddc2b260d081ebbefee47c037cb28
492bad62a7ca6a74738921ef5ae6f0be5edebf39
74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5
GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: 7F61fTWPjCP0m3PyZ9hu0J/SIBoz2J6JoFCi1LLFfye3AzKvAQP4QNzAIVf9jBaSUnsXb0hKoF4=
x-amz-request-id: MQK9TRYX5ZNZSYFC
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Wed, 30 Nov 2022 17:45:19 GMT
age: 3103
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/
34.102.187.140200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 14cd9a0afb6ba9a763651d5112760d1e
75d7b104ab9ab11fbb73c3f348b43b0119b5adfa
4e32a117106be587ffcd63239c16a8117eb7840830d4c9decf6527761967532e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Alert, Retry-After, Backoff, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Wed, 30 Nov 2022 18:19:41 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 1041
alt-svc: clear
X-Firefox-Spdy: h2
agileprofessional.com.br/wp-content/auth/a2b30b3ceecf4682f6334cd0731514cb/
172.67.222.251200 OK 5.4 kB URL HTTP/1.1 agileprofessional.com.br/wp-content/auth/a2b30b3ceecf4682f6334cd0731514cb/
IP 172.67.222.251:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Non-ISO extended-ASCII text, with very long lines (466), with CRLF line terminators
Hash ed755473ab7815524e4beda893025750
ab889e5623b4ea724548fc9f6d5329644f6c55cd
bf40540fc321118c694a18afa7e468505b9e722eacb53feefad457905bc01cb3
Analyzer Verdict Alert openphish Navy Federal Credit Union
fortinet Phishing
GET /wp-content/auth/a2b30b3ceecf4682f6334cd0731514cb/ HTTP/1.1
Host: agileprofessional.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Wed, 30 Nov 2022 18:37:02 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
last-modified: Mon, 28 Nov 2022 07:53:35 GMT
vary: Accept-Encoding
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2FDCUoZwnepZdzMrpbbIlxN5Dvh48udrz7T54Ndj9HZGOjHmqdTuyp%2FBHeDRXHIjcqjVgY7mSdyCicb%2Fg2r7zDa7B4Z0wH7ai3lCloyi3VHUFPoOrSrq7p9tD2v%2FBJWYSXh2zXl9kp5X63PQ%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7725b1293b37b4eb-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 30 Nov 2022 18:37:02 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
agileprofessional.com.br/wp-content/auth/a2b30b3ceecf4682f6334cd0731514cb/index_files/css.css
172.67.222.251200 OK 658 B URL HTTP/1.1 agileprofessional.com.br/wp-content/auth/a2b30b3ceecf4682f6334cd0731514cb/index_files/css.css
IP 172.67.222.251:0
Hash b8e0523f47884490e8dd8d25335c1160
8805ce8da01ec802791550bcf1fc65c281cf96f8
f950644cdca8e5b60dfa41e35a0cfb40bd01055878dab34e3169c98e94b363f0
Analyzer Verdict Alert urlquery Phishing - Navy Federal Credit Union
GET /wp-content/auth/a2b30b3ceecf4682f6334cd0731514cb/index_files/css.css HTTP/1.1
Host: agileprofessional.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://agileprofessional.com.br/wp-content/auth/a2b30b3ceecf4682f6334cd0731514cb/
HTTP/1.1 200 OK
Date: Wed, 30 Nov 2022 18:37:02 GMT
Content-Type: text/css
Content-Length: 658
Connection: keep-alive
cache-control: public, max-age=604800
expires: Mon, 05 Dec 2022 16:35:44 GMT
etag: "14d2-638468ff-531b56e;gz"
last-modified: Mon, 28 Nov 2022 07:53:35 GMT
content-encoding: gzip
vary: Accept-Encoding
CF-Cache-Status: HIT
Age: 180076
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=0e0vSaraSn%2FyIlwta9Xlce6fPnYN7HybYoab1wGvNWk7wHudUVyhemqsm3AYRcqiGL2JbVvza%2F7Ic0N5ZBZpnFS0RrS6ppbsE%2BQmowGbInm8vCpvhtuOJrDlzF6tFGHWvV8vTlxhhqHRlJ0%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7725b12b5ef9b4eb-OSL
alt-svc: h2=":443"; ma=60
agileprofessional.com.br/wp-content/auth/a2b30b3ceecf4682f6334cd0731514cb/index_files/recaptcha__en.js
172.67.222.251200 OK 138 kB URL HTTP/1.1 agileprofessional.com.br/wp-content/auth/a2b30b3ceecf4682f6334cd0731514cb/index_files/recaptcha__en.js
IP 172.67.222.251:0
File type ASCII text, with very long lines (549)
Size 138 kB (137483 bytes)
Hash 77cdb837800fca9dca04772c51c3a88d
d73f76d704b7c10fa9bbec2bb5d51bd603a167da
9aa44d5ef96dbd7540640dc45eb0b24e122a1a0a92c63e5474f34ff5db163796
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/auth/a2b30b3ceecf4682f6334cd0731514cb/index_files/recaptcha__en.js HTTP/1.1
Host: agileprofessional.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://agileprofessional.com.br/wp-content/auth/a2b30b3ceecf4682f6334cd0731514cb/
HTTP/1.1 200 OK
Date: Wed, 30 Nov 2022 18:37:02 GMT
Content-Type: application/x-javascript
Content-Length: 137483
Connection: keep-alive
cache-control: public, max-age=604800
expires: Wed, 07 Dec 2022 18:36:39 GMT
etag: "55f9b-638468ff-531b543;gz"
last-modified: Mon, 28 Nov 2022 07:53:35 GMT
content-encoding: gzip
vary: Accept-Encoding
CF-Cache-Status: HIT
Age: 21
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=8yG0KrWFMBRxdCvCwdUcxo1QOBaPYlAnf9Bxkx3TPaXSpyUXjKqu%2FRVWv1KxmDh%2Fu8Nvr7DUFjw1YoO3FuO3ZOJM%2FGK1%2FLcqYlL1sfkryxs7KgUr3X8JrWiYwj6QWnJuDi6zniuVb%2FkNsgA%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7725b12b6a9a0afa-OSL
alt-svc: h2=":443"; ma=60
agileprofessional.com.br/wp-content/auth/a2b30b3ceecf4682f6334cd0731514cb/index_files/nfcu-icons-599150400912c8247ee1872211972b2a.css
172.67.222.251200 OK 1.9 kB URL HTTP/1.1 agileprofessional.com.br/wp-content/auth/a2b30b3ceecf4682f6334cd0731514cb/index_files/nfcu-icons-599150400912c8247ee1872211972b2a.css
IP 172.67.222.251:0
File type ASCII text, with CRLF line terminators
Hash 65b81dd5dc3129e7de261e4e154e8c9c
76ef6e94435ba8615cbd84e17a49d7e8936d3852
5b31ed79d5f3759fb3b32af2543756870f6ee8b81d6aae87b12f862272b121b7
GET /wp-content/auth/a2b30b3ceecf4682f6334cd0731514cb/index_files/nfcu-icons-599150400912c8247ee1872211972b2a.css HTTP/1.1
Host: agileprofessional.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://agileprofessional.com.br/wp-content/auth/a2b30b3ceecf4682f6334cd0731514cb/
HTTP/1.1 200 OK
Date: Wed, 30 Nov 2022 18:37:02 GMT
Content-Type: text/css
Content-Length: 1892
Connection: keep-alive
cache-control: public, max-age=604800
expires: Wed, 07 Dec 2022 18:36:39 GMT
etag: "27eb-638468ff-531b56b;gz"
last-modified: Mon, 28 Nov 2022 07:53:35 GMT
content-encoding: gzip
vary: Accept-Encoding
CF-Cache-Status: HIT
Age: 21
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=MFHg3kioF6l5PhUK8TIpSLc5Pz13tfX7xISVWnMxFFWGdHZ62PXk1TEzwGXDPfpaiQP%2BVmiETTrxXrDI9z1QbpUz96etqm3eJFJAcEanSgQlBHL11KLcZJy2izjm5PTxGsNJThKM3hPMWr0%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7725b12b5d4c1bfe-OSL
alt-svc: h2=":443"; ma=60
agileprofessional.com.br/wp-content/auth/a2b30b3ceecf4682f6334cd0731514cb/index_files/s_code.js
172.67.222.251200 OK 18 kB URL HTTP/1.1 agileprofessional.com.br/wp-content/auth/a2b30b3ceecf4682f6334cd0731514cb/index_files/s_code.js
IP 172.67.222.251:0
File type ASCII text, with very long lines (954)
Hash 57231b4740b08ad5465d629b7e48955d
99945653b924fe4e2b29f1b79794a25e8cb8aae2
26b8ceca4e802045a5828cc200b7c9f56ec15fc0e7249b239bb2a0e916f51bc1
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/auth/a2b30b3ceecf4682f6334cd0731514cb/index_files/s_code.js HTTP/1.1
Host: agileprofessional.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://agileprofessional.com.br/wp-content/auth/a2b30b3ceecf4682f6334cd0731514cb/
HTTP/1.1 200 OK
Date: Wed, 30 Nov 2022 18:37:02 GMT
Content-Type: application/x-javascript
Content-Length: 17956
Connection: keep-alive
cache-control: public, max-age=604800
expires: Mon, 05 Dec 2022 16:35:45 GMT
etag: "b8fe-638468ff-531b546;gz"
last-modified: Mon, 28 Nov 2022 07:53:35 GMT
content-encoding: gzip
vary: Accept-Encoding
CF-Cache-Status: HIT
Age: 180076
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=EKy4my1R%2FE%2FJOFZUlnmF%2B4Vx4N8YOEARigekrn2yreed%2BwpKRlaO51R%2FlD4m%2BT5r5JGycD2VKR5Zhb5CwQoZ2yJ2cbhgn%2Bjh5%2F0UKah2ILVZsHfjDoMcuS75GhkTJDyiRXUKEaxxFuMSCRA%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7725b12b6f19b4eb-OSL
alt-svc: h2=":443"; ma=60
agileprofessional.com.br/wp-content/auth/a2b30b3ceecf4682f6334cd0731514cb/index_files/responsivemain-599150400912c8247ee1872211972b2a.css
172.67.222.251200 OK 22 kB URL HTTP/1.1 agileprofessional.com.br/wp-content/auth/a2b30b3ceecf4682f6334cd0731514cb/index_files/responsivemain-599150400912c8247ee1872211972b2a.css
IP 172.67.222.251:0
File type assembler source, ASCII text, with very long lines (384), with CRLF line terminators
Hash 29a86791a7518efabc7e40b55bb1405a
7347bcf28f8f286288a6209276f1d1f608eadafa
c942346cafbbce97838f5a9ea26413d6f2c3a12004e190c72dc2326b73a22d8c
GET /wp-content/auth/a2b30b3ceecf4682f6334cd0731514cb/index_files/responsivemain-599150400912c8247ee1872211972b2a.css HTTP/1.1
Host: agileprofessional.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://agileprofessional.com.br/wp-content/auth/a2b30b3ceecf4682f6334cd0731514cb/
HTTP/1.1 200 OK
Date: Wed, 30 Nov 2022 18:37:02 GMT
Content-Type: text/css
Content-Length: 21835
Connection: keep-alive
cache-control: public, max-age=604800
expires: Wed, 07 Dec 2022 18:36:39 GMT
etag: "21cdc-638468ff-531b566;gz"
last-modified: Mon, 28 Nov 2022 07:53:35 GMT
content-encoding: gzip
vary: Accept-Encoding
CF-Cache-Status: HIT
Age: 21
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=jfsnV%2BpJFSH2YC4DWekXtxnXSYugAksu85OcGgPZyUwH%2FZESg7NQpFfUA9hm8u9hE6Pn4i29azAV5rxEp6gT6Ma4IV5YR2o3bxk%2BMgJI0oDXeTJTBmYy173itZLnu%2FZFMpnzZhXbh2kPCqY%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7725b12b5b62b50c-OSL
alt-svc: h2=":443"; ma=60
agileprofessional.com.br/wp-content/auth/a2b30b3ceecf4682f6334cd0731514cb/index_files/all-599150400912c8247ee1872211972b2a.css
172.67.222.251200 OK 11 kB URL HTTP/1.1 agileprofessional.com.br/wp-content/auth/a2b30b3ceecf4682f6334cd0731514cb/index_files/all-599150400912c8247ee1872211972b2a.css
IP 172.67.222.251:0
File type ASCII text, with very long lines (50194), with CRLF line terminators
Hash e625984b15bd12ed9b8cd85a99990ad2
a4241955bf78ae6809c39ed48cf8f07b9da2b512
7e12fa3353000af23bfd7c9129b6e8533b4f285e3367387ac443f1f5bb0671ea
GET /wp-content/auth/a2b30b3ceecf4682f6334cd0731514cb/index_files/all-599150400912c8247ee1872211972b2a.css HTTP/1.1
Host: agileprofessional.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://agileprofessional.com.br/wp-content/auth/a2b30b3ceecf4682f6334cd0731514cb/
HTTP/1.1 200 OK
Date: Wed, 30 Nov 2022 18:37:02 GMT
Content-Type: text/css
Content-Length: 11007
Connection: keep-alive
cache-control: public, max-age=604800
expires: Wed, 07 Dec 2022 18:36:39 GMT
etag: "c4cf-638468ff-531b574;gz"
last-modified: Mon, 28 Nov 2022 07:53:35 GMT
content-encoding: gzip
vary: Accept-Encoding
CF-Cache-Status: HIT
Age: 21
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=PQa%2BJ04Tsh3RUEATk34P4jp6J3Ugatd%2FVuh%2BrehwDfnN%2F7u%2BYYE%2BiAXMhz4tapsSBKQeNtpY2RKjDs%2BMG0AA5%2B2NjhkwMZO%2BeD%2BA8Pd6%2BtnhYoNyTJo4kuZ9ADMs4QclMayRddurnWoEqVs%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7725b12b5a83b523-OSL
alt-svc: h2=":443"; ma=60
agileprofessional.com.br/wp-content/auth/a2b30b3ceecf4682f6334cd0731514cb/index_files/nauth-599150400912c8247ee1872211972b2a.css
172.67.222.251200 OK 1.3 kB URL HTTP/1.1 agileprofessional.com.br/wp-content/auth/a2b30b3ceecf4682f6334cd0731514cb/index_files/nauth-599150400912c8247ee1872211972b2a.css
IP 172.67.222.251:0
File type ASCII text, with CRLF line terminators
Hash 798605650e5e2901a56b6e2a03283fd3
b0af61971ce50e4f2abf3cc9aec4a5f1a5606460
a7b4cc299499a198de23b57ad5758b7dd462b911c595501c1275ac5d6429c9a8
Analyzer Verdict Alert urlquery Phishing - Navy Federal Credit Union
GET /wp-content/auth/a2b30b3ceecf4682f6334cd0731514cb/index_files/nauth-599150400912c8247ee1872211972b2a.css HTTP/1.1
Host: agileprofessional.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://agileprofessional.com.br/wp-content/auth/a2b30b3ceecf4682f6334cd0731514cb/
HTTP/1.1 200 OK
Date: Wed, 30 Nov 2022 18:37:02 GMT
Content-Type: text/css
Content-Length: 1334
Connection: keep-alive
cache-control: public, max-age=604800
expires: Mon, 05 Dec 2022 16:35:44 GMT
etag: "1208-638468ff-531b56a;gz"
last-modified: Mon, 28 Nov 2022 07:53:35 GMT
content-encoding: gzip
vary: Accept-Encoding
CF-Cache-Status: HIT
Age: 180076
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=n5XvYfhusE6CR0hHB%2FcoyfYfUNSKnfr%2Boea47kmv%2BjtSe1zruvgPft4tvpjr92yv5ScY3kPsCaggKMMXrpZOkmv%2FbqnFL%2BNnyaidgZu41jkUTDAblfDbdE5GgSnha7V5hDG%2Fw0t%2BMWJmg6s%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7725b12b6c7eb52d-OSL
alt-svc: h2=":443"; ma=60
agileprofessional.com.br/wp-content/auth/a2b30b3ceecf4682f6334cd0731514cb/index_files/common-ec401aee041a200e3dd94ec7982f0f2f.js
172.67.222.251200 OK 2.5 kB URL HTTP/1.1 agileprofessional.com.br/wp-content/auth/a2b30b3ceecf4682f6334cd0731514cb/index_files/common-ec401aee041a200e3dd94ec7982f0f2f.js
IP 172.67.222.251:0
File type ASCII text, with CRLF line terminators
Hash f8614888610451b1c4e0016a05a902ac
65d030323066210a93b2a153d83cdc03f2c8cfc6
d553e5b5f1e9a999e7bc8625785507c7c311d753aede3acb53fcbe2425af0cfd
Analyzer Verdict Alert urlquery Phishing - Navy Federal Credit Union
fortinet Phishing
GET /wp-content/auth/a2b30b3ceecf4682f6334cd0731514cb/index_files/common-ec401aee041a200e3dd94ec7982f0f2f.js HTTP/1.1
Host: agileprofessional.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://agileprofessional.com.br/wp-content/auth/a2b30b3ceecf4682f6334cd0731514cb/
HTTP/1.1 200 OK
Date: Wed, 30 Nov 2022 18:37:02 GMT
Content-Type: application/x-javascript
Content-Length: 2498
Connection: keep-alive
cache-control: public, max-age=604800
expires: Wed, 07 Dec 2022 18:36:39 GMT
etag: "1d3c-638468ff-531b545;gz"
last-modified: Mon, 28 Nov 2022 07:53:35 GMT
content-encoding: gzip
vary: Accept-Encoding
CF-Cache-Status: HIT
Age: 21
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=5iBD5MOW0Qkw3S1ZY7hakSdJOroLxJQAuThmM9X0nOE%2BBNslPIC%2Fa3rde%2FGOhewIjwQkejLp%2BNq5K7Kkwc2SV4w3MP0YpazywlKT5OMmQOIX6KvdrhO9NF249%2F4kkqMFXIy0QdHe%2BkIYclw%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7725b12b7d6a1bfe-OSL
alt-svc: h2=":443"; ma=60
agileprofessional.com.br/wp-content/auth/a2b30b3ceecf4682f6334cd0731514cb/index_files/bootstrap-select.js
172.67.222.251200 OK 9.1 kB URL HTTP/1.1 agileprofessional.com.br/wp-content/auth/a2b30b3ceecf4682f6334cd0731514cb/index_files/bootstrap-select.js
IP 172.67.222.251:0
File type ASCII text, with very long lines (31148), with CRLF, LF line terminators
Hash 2f7b98b35a3a3b663dd3b681f3d12451
58f42c079bf812d4f6b5bdc9321f6ff6c0b17d86
9d20fa930de1fcc6c0399bb453689b60787f68bba6f25d54009e76f0d1e272d9
Analyzer Verdict Alert urlquery Phishing - Navy Federal Credit Union
fortinet Phishing
GET /wp-content/auth/a2b30b3ceecf4682f6334cd0731514cb/index_files/bootstrap-select.js HTTP/1.1
Host: agileprofessional.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://agileprofessional.com.br/wp-content/auth/a2b30b3ceecf4682f6334cd0731514cb/
HTTP/1.1 200 OK
Date: Wed, 30 Nov 2022 18:37:02 GMT
Content-Type: application/x-javascript
Content-Length: 9053
Connection: keep-alive
cache-control: public, max-age=604800
expires: Mon, 05 Dec 2022 16:35:45 GMT
etag: "7aba-638468ff-531b55f;gz"
last-modified: Mon, 28 Nov 2022 07:53:35 GMT
content-encoding: gzip
vary: Accept-Encoding
CF-Cache-Status: HIT
Age: 180075
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=wT9lQ0%2FCamkKb8%2BOwZJSp3zJt1bXZzOZIZ14ne%2FXepLp3vA7Vci0e4WQhWqhZa3ihBaqD%2BPWtzOBUOVWuhSoFeYFe0QSEMn7jJf1i9gIH2EC9ikZUIR00Wa5UJLHBQ%2Fz865KFvsc80pYWWI%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7725b12b8b90b50c-OSL
alt-svc: h2=":443"; ma=60
agileprofessional.com.br/wp-content/auth/a2b30b3ceecf4682f6334cd0731514cb/index_files/login-ec401aee041a200e3dd94ec7982f0f2f.js
172.67.222.251200 OK 1.1 kB URL HTTP/1.1 agileprofessional.com.br/wp-content/auth/a2b30b3ceecf4682f6334cd0731514cb/index_files/login-ec401aee041a200e3dd94ec7982f0f2f.js
IP 172.67.222.251:0
File type ASCII text, with CRLF line terminators
Hash 40ebffa2ac7c3d11a5e12c0e2cc9893a
e8dd3b159cd41371e260d06f96d89190c7179dfd
d279facebbbfb2141abb7f63ddcc5bda7f860b68c03ac6e1b2fad7905e88813c
Analyzer Verdict Alert urlquery Phishing - Navy Federal Credit Union
fortinet Phishing
GET /wp-content/auth/a2b30b3ceecf4682f6334cd0731514cb/index_files/login-ec401aee041a200e3dd94ec7982f0f2f.js HTTP/1.1
Host: agileprofessional.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://agileprofessional.com.br/wp-content/auth/a2b30b3ceecf4682f6334cd0731514cb/
HTTP/1.1 200 OK
Date: Wed, 30 Nov 2022 18:37:02 GMT
Content-Type: application/x-javascript
Content-Length: 1073
Connection: keep-alive
cache-control: public, max-age=604800
expires: Mon, 05 Dec 2022 16:35:45 GMT
etag: "d4a-638468ff-531b556;gz"
last-modified: Mon, 28 Nov 2022 07:53:35 GMT
content-encoding: gzip
vary: Accept-Encoding
CF-Cache-Status: HIT
Age: 180075
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=scoqiH%2FqwiHAUrhW%2FmVo2TJUPwqTvFyfNW9ub2r9AFK6B9vNXfko0akZKVygnOcyP1RaYsZRZjaRn7asznLsOq0Vcf40%2FhaBGGkiiHLlGdBvyIGOlr2DJkMJXX37LL12hYiqUEWKfeM%2BHVA%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7725b12beb1e0afa-OSL
alt-svc: h2=":443"; ma=60
agileprofessional.com.br/wp-content/auth/a2b30b3ceecf4682f6334cd0731514cb/index_files/cookieGenerator-ec401aee041a200e3dd94ec7982f0f2f.js
172.67.222.251200 OK 861 B URL HTTP/1.1 agileprofessional.com.br/wp-content/auth/a2b30b3ceecf4682f6334cd0731514cb/index_files/cookieGenerator-ec401aee041a200e3dd94ec7982f0f2f.js
IP 172.67.222.251:0
File type ASCII text, with CRLF line terminators
Hash e1827f0e630abb3df3b1b09f60151710
b5cfe7dbd791ab73ca2bbefefb1aace022ab1fcc
f1a107da176734cee7cf9ba4c7889e0f19047dfb3545877896f1c97efc7892a3
Analyzer Verdict Alert urlquery Phishing - Navy Federal Credit Union
fortinet Phishing
GET /wp-content/auth/a2b30b3ceecf4682f6334cd0731514cb/index_files/cookieGenerator-ec401aee041a200e3dd94ec7982f0f2f.js HTTP/1.1
Host: agileprofessional.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://agileprofessional.com.br/wp-content/auth/a2b30b3ceecf4682f6334cd0731514cb/
HTTP/1.1 200 OK
Date: Wed, 30 Nov 2022 18:37:02 GMT
Content-Type: application/x-javascript
Content-Length: 861
Connection: keep-alive
cache-control: public, max-age=604800
expires: Mon, 05 Dec 2022 16:35:45 GMT
etag: "95a-638468ff-531b549;gz"
last-modified: Mon, 28 Nov 2022 07:53:35 GMT
content-encoding: gzip
vary: Accept-Encoding
CF-Cache-Status: HIT
Age: 180075
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=073M7qHjj5hUawWisqpvfyiscVReqEHeVKzZQW8vB7v7FIJdGHcemiBucNTXMr2MMaeDSaGR42Usv5f3mawFDoQxuaUbnifNjYVKWL9Fs1BsYAFwvzLjIzE6xRLqbijSQMn8OZazt3uyfR4%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7725b12beded1bfe-OSL
alt-svc: h2=":443"; ma=60
agileprofessional.com.br/wp-content/auth/a2b30b3ceecf4682f6334cd0731514cb/index_files/keypad-ec401aee041a200e3dd94ec7982f0f2f.js
172.67.222.251200 OK 782 B URL HTTP/1.1 agileprofessional.com.br/wp-content/auth/a2b30b3ceecf4682f6334cd0731514cb/index_files/keypad-ec401aee041a200e3dd94ec7982f0f2f.js
IP 172.67.222.251:0
File type HTML document, ASCII text, with very long lines (1213), with CRLF line terminators
Hash 9506101200c6e3ef3d3de3bf5ff1e7f3
1179096634ace29c378be78d819f23a893742529
aa93b1d73f0b88f880df468e1bdd51ee45a32e6839608bc0632e1281d87e9d34
Analyzer Verdict Alert urlquery Phishing - Navy Federal Credit Union
fortinet Phishing
GET /wp-content/auth/a2b30b3ceecf4682f6334cd0731514cb/index_files/keypad-ec401aee041a200e3dd94ec7982f0f2f.js HTTP/1.1
Host: agileprofessional.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://agileprofessional.com.br/wp-content/auth/a2b30b3ceecf4682f6334cd0731514cb/
HTTP/1.1 200 OK
Date: Wed, 30 Nov 2022 18:37:02 GMT
Content-Type: application/x-javascript
Content-Length: 782
Connection: keep-alive
cache-control: public, max-age=604800
expires: Mon, 05 Dec 2022 16:35:45 GMT
etag: "cf2-638468ff-531b552;gz"
last-modified: Mon, 28 Nov 2022 07:53:35 GMT
content-encoding: gzip
vary: Accept-Encoding
CF-Cache-Status: HIT
Age: 180075
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=0uJuJ%2FteMeN9szoUJH%2ByUFWSksIzHDZUBYuS5F8yxHmuOf9vwFfUV6XCT9QdVdP5W3tfvzDiAAmaG4liG2zdgUEkJmR%2FZTudj5rxVUdYWnjU4dscO6gc8SBtOD8mK%2BoMp0wX4aFkkIlLNG8%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7725b12beb13b523-OSL
alt-svc: h2=":443"; ma=60
agileprofessional.com.br/wp-content/auth/a2b30b3ceecf4682f6334cd0731514cb/index_files/api.js
172.67.222.251200 OK 558 B URL HTTP/1.1 agileprofessional.com.br/wp-content/auth/a2b30b3ceecf4682f6334cd0731514cb/index_files/api.js
IP 172.67.222.251:0
File type ASCII text, with very long lines (850), with no line terminators
Hash 2a0fbeaff401daf7f8d961960efa46c4
8c4c3f2d10be69f7fb0fcb659e9232a03f7d7955
8d6f9522208a16b57d9930f7b2b0d828c91492d747c2d9cdd8915abe57842e63
Analyzer Verdict Alert urlquery Phishing - Navy Federal Credit Union
fortinet Phishing
GET /wp-content/auth/a2b30b3ceecf4682f6334cd0731514cb/index_files/api.js HTTP/1.1
Host: agileprofessional.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://agileprofessional.com.br/wp-content/auth/a2b30b3ceecf4682f6334cd0731514cb/
HTTP/1.1 200 OK
Date: Wed, 30 Nov 2022 18:37:02 GMT
Content-Type: application/x-javascript
Content-Length: 558
Connection: keep-alive
cache-control: public, max-age=604800
expires: Mon, 05 Dec 2022 16:35:45 GMT
etag: "352-638468ff-531b571;gz"
last-modified: Mon, 28 Nov 2022 07:53:35 GMT
content-encoding: gzip
vary: Accept-Encoding
CF-Cache-Status: HIT
Age: 180075
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=cWIZSXr3HO6RhQPhAIm0tSXI59V7zE4GXnl8MS3J1yxjGZKaYd5r1l6ttZZxFcCxRm2b2ftqo5m4yuHLUio29QayVDZwWFKLROIC3Lmdsz02GTWdqNhjezeERMgyNqbS%2ByXaRNuRQKcGmWY%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7725b12befd8b4eb-OSL
alt-svc: h2=":443"; ma=60
agileprofessional.com.br/wp-content/auth/a2b30b3ceecf4682f6334cd0731514cb/index_files/tag.js
172.67.222.251200 OK 7.5 kB URL HTTP/1.1 agileprofessional.com.br/wp-content/auth/a2b30b3ceecf4682f6334cd0731514cb/index_files/tag.js
IP 172.67.222.251:0
File type ASCII text, with very long lines (21652), with no line terminators
Hash 3bdf59c9ec85ec43d46e5cf9edda2e96
a06ccc8d75554a7e44dd8ce9656e90420b42f38b
d964494995ee4b7de40b3569370e33773c447c759a21fbb3e746e53b61449b35
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/auth/a2b30b3ceecf4682f6334cd0731514cb/index_files/tag.js HTTP/1.1
Host: agileprofessional.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://agileprofessional.com.br/wp-content/auth/a2b30b3ceecf4682f6334cd0731514cb/
HTTP/1.1 200 OK
Date: Wed, 30 Nov 2022 18:37:02 GMT
Content-Type: application/x-javascript
Content-Length: 7541
Connection: keep-alive
cache-control: public, max-age=604800
expires: Mon, 05 Dec 2022 16:35:45 GMT
etag: "5494-638468ff-531b572;gz"
last-modified: Mon, 28 Nov 2022 07:53:35 GMT
content-encoding: gzip
vary: Accept-Encoding
CF-Cache-Status: HIT
Age: 180075
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=oHDsOX6U1Db8cwCe3l%2FRpIrmFuCGfEmdd68XQXfJcQ7VfNI2KDR60HrFtROF5kcN9L3%2FkrrYvfcTpSJzLJT3Z5NjUfdQDvjmhNTrhswFUqsvBNH%2BcJp%2B6mIKp96NKNs8syZ%2BZabljiH2rFs%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7725b12beb290afa-OSL
alt-svc: h2=":443"; ma=60
agileprofessional.com.br/wp-content/auth/a2b30b3ceecf4682f6334cd0731514cb/index_files/modal-ec401aee041a200e3dd94ec7982f0f2f.js
172.67.222.251200 OK 2.7 kB URL HTTP/1.1 agileprofessional.com.br/wp-content/auth/a2b30b3ceecf4682f6334cd0731514cb/index_files/modal-ec401aee041a200e3dd94ec7982f0f2f.js
IP 172.67.222.251:0
File type ASCII text, with CRLF line terminators
Hash cb3b97cd9cb889c9b4a072b54f1c3830
7d4b209569d923b9bcd422941e848207f401a3e0
986e3218896a5d1fec0ef3737646caa22fd7b09ded0cf4d3359846cb002c4170
Analyzer Verdict Alert urlquery Phishing - Navy Federal Credit Union
fortinet Phishing
GET /wp-content/auth/a2b30b3ceecf4682f6334cd0731514cb/index_files/modal-ec401aee041a200e3dd94ec7982f0f2f.js HTTP/1.1
Host: agileprofessional.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://agileprofessional.com.br/wp-content/auth/a2b30b3ceecf4682f6334cd0731514cb/
HTTP/1.1 200 OK
Date: Wed, 30 Nov 2022 18:37:02 GMT
Content-Type: application/x-javascript
Content-Length: 2701
Connection: keep-alive
cache-control: public, max-age=604800
expires: Mon, 05 Dec 2022 16:35:45 GMT
etag: "2823-638468ff-531b56f;gz"
last-modified: Mon, 28 Nov 2022 07:53:35 GMT
content-encoding: gzip
vary: Accept-Encoding
CF-Cache-Status: HIT
Age: 180075
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=EuALVj9GcACXESOpgz%2ByE4X8JXBo7%2BtyI2CyXGr%2F6jXQ87qqL7zSggzAq1YwvHl0xTBbQec92LRlVaE%2BSFLyIlWtorWJbNo%2FUPRx8XQRHZzL%2FRL4HyENJ67xo2acW6z1TF3xdNG03bNdaPY%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7725b12bed25b52d-OSL
alt-svc: h2=":443"; ma=60
agileprofessional.com.br/wp-content/auth/a2b30b3ceecf4682f6334cd0731514cb/index_files/le2-mtagconfig.js
172.67.222.251200 OK 5.7 kB URL HTTP/1.1 agileprofessional.com.br/wp-content/auth/a2b30b3ceecf4682f6334cd0731514cb/index_files/le2-mtagconfig.js
IP 172.67.222.251:0
File type ASCII text, with very long lines (1788)
Hash 36eb654aef08e98c53c84daf3137e6f2
b5fa1486b0af186d956f18ee52bc0787d9ddc8b2
4872af9b656f713443c14dc3518111cd79244f41f59dcbc0800e2bd12c9d7aa5
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/auth/a2b30b3ceecf4682f6334cd0731514cb/index_files/le2-mtagconfig.js HTTP/1.1
Host: agileprofessional.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://agileprofessional.com.br/wp-content/auth/a2b30b3ceecf4682f6334cd0731514cb/
HTTP/1.1 200 OK
Date: Wed, 30 Nov 2022 18:37:02 GMT
Content-Type: application/x-javascript
Content-Length: 5731
Connection: keep-alive
cache-control: public, max-age=604800
expires: Mon, 05 Dec 2022 16:35:45 GMT
etag: "4e30-638468ff-531b54f;gz"
last-modified: Mon, 28 Nov 2022 07:53:35 GMT
content-encoding: gzip
vary: Accept-Encoding
CF-Cache-Status: HIT
Age: 180075
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=L8Uw5NouFnQD7HZj4PcdSi0fJxfNaIU2k4TPCHv%2B%2B2htXwhZpcST5JFsLGvM7ha1f4nuOIihN3MJZD4zkBoVcBGLvT%2FJVGuqlHkHwTZef03luujjPWFypjqf0eP83cjTsCtb0hF9ye%2FHCLo%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7725b12bec25b50c-OSL
alt-svc: h2=":443"; ma=60
agileprofessional.com.br/wp-content/auth/a2b30b3ceecf4682f6334cd0731514cb/index_files/img_logo-veterans-1d62888b4b662af9142e3c385f423f32.svg
172.67.222.251200 OK 6.1 kB URL HTTP/1.1 agileprofessional.com.br/wp-content/auth/a2b30b3ceecf4682f6334cd0731514cb/index_files/img_logo-veterans-1d62888b4b662af9142e3c385f423f32.svg
IP 172.67.222.251:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (2618), with CRLF line terminators
Hash 6af0c59ecd24f7391c348485c3ef761e
2cad8139cbe910551a123dd55a3419e06694e432
472c03150b5eb8189c417c7dab141f653c9ce938226b14d9270f7641312df720
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/auth/a2b30b3ceecf4682f6334cd0731514cb/index_files/img_logo-veterans-1d62888b4b662af9142e3c385f423f32.svg HTTP/1.1
Host: agileprofessional.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://agileprofessional.com.br/wp-content/auth/a2b30b3ceecf4682f6334cd0731514cb/
HTTP/1.1 200 OK
Date: Wed, 30 Nov 2022 18:37:02 GMT
Content-Type: image/svg+xml
Content-Length: 6104
Connection: keep-alive
cache-control: public, max-age=604800
expires: Wed, 07 Dec 2022 18:36:39 GMT
etag: "55ca-638468ff-531b576;gz"
last-modified: Mon, 28 Nov 2022 07:53:35 GMT
content-encoding: gzip
vary: Accept-Encoding
CF-Cache-Status: HIT
Age: 21
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ADhOuMQ5tJ4fjAtdTv4ZqzJ3aGRqkTaSIZZ53XmyHUM%2Fsrx2jKU%2BOlnQD1Zg6OQW9CLfepotUYeJNOcZxKc3lxczy%2FLt5wxMu37O2gU%2FJaoU3REVV3UdQxR5qPXmJzbLSMTQLbM0sf8yDMc%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7725b12c5b9a0afa-OSL
alt-svc: h2=":443"; ma=60
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 6c84ab982b44868fab9bd9cb08e76b88
238cddf556720f5ea7e30e2c1da69fb00a7b9ce6
cb5f0ca9270b8c6ca217526228f4ef5d9539e2a5f7edcb7d731326407b2523ce
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5038
Cache-Control: max-age=115578
Content-Type: application/ocsp-response
Date: Wed, 30 Nov 2022 18:37:02 GMT
Etag: "6386af9a-1d7"
Expires: Fri, 02 Dec 2022 02:43:20 GMT
Last-Modified: Wed, 30 Nov 2022 01:19:22 GMT
Server: ECS (ska/F70A)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 6c84ab982b44868fab9bd9cb08e76b88
238cddf556720f5ea7e30e2c1da69fb00a7b9ce6
cb5f0ca9270b8c6ca217526228f4ef5d9539e2a5f7edcb7d731326407b2523ce
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5038
Cache-Control: max-age=115578
Content-Type: application/ocsp-response
Date: Wed, 30 Nov 2022 18:37:02 GMT
Etag: "6386af9a-1d7"
Expires: Fri, 02 Dec 2022 02:43:20 GMT
Last-Modified: Wed, 30 Nov 2022 01:19:22 GMT
Server: ECS (ska/F70A)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 6c84ab982b44868fab9bd9cb08e76b88
238cddf556720f5ea7e30e2c1da69fb00a7b9ce6
cb5f0ca9270b8c6ca217526228f4ef5d9539e2a5f7edcb7d731326407b2523ce
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5017
Cache-Control: max-age=115556
Content-Type: application/ocsp-response
Date: Wed, 30 Nov 2022 18:37:02 GMT
Etag: "6386af9a-1d7"
Expires: Fri, 02 Dec 2022 02:42:58 GMT
Last-Modified: Wed, 30 Nov 2022 01:19:22 GMT
Server: ECS (ska/F6FD)
X-Cache: HIT
Content-Length: 471
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 608e4d04a251ebcd51660e801f388303
fcb9aa48fd6ed504a1a9fed7990c5ccde63e6a1d
cc1a34cd0a99e301df97cf184ab0ded2e229659f86f43e4eff479dee221695dc
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 30 Nov 2022 18:37:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
agileprofessional.com.br/wp-content/auth/a2b30b3ceecf4682f6334cd0731514cb/index_files/a.js
172.67.222.251200 OK 16 kB URL HTTP/1.1 agileprofessional.com.br/wp-content/auth/a2b30b3ceecf4682f6334cd0731514cb/index_files/a.js
IP 172.67.222.251:0
Hash c85615b296302af51e683eecb5e371d4
ff7c20b0947804c607759aa46eab666d94cf12ea
efb3cdc5e4582fd67dffab6fc6e5062074ce3f8c51747346af944e97749dc309
Analyzer Verdict Alert urlquery Phishing - Navy Federal Credit Union
fortinet Phishing
GET /wp-content/auth/a2b30b3ceecf4682f6334cd0731514cb/index_files/a.js HTTP/1.1
Host: agileprofessional.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://agileprofessional.com.br/wp-content/auth/a2b30b3ceecf4682f6334cd0731514cb/
HTTP/1.1 200 OK
Date: Wed, 30 Nov 2022 18:37:02 GMT
Content-Type: application/x-javascript
Content-Length: 82655
Connection: keep-alive
cache-control: public, max-age=604800
expires: Wed, 07 Dec 2022 18:36:39 GMT
etag: "4083f-638468ff-531b565;gz"
last-modified: Mon, 28 Nov 2022 07:53:35 GMT
content-encoding: gzip
vary: Accept-Encoding
CF-Cache-Status: HIT
Age: 21
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=VDvOAU6bathsSYcjZLvNnBGcfmPuKjIcsn8VEvGm2MZGSz%2B7PU4k1jnvgwhxYnk72D8iUc07MQT7P8JHHZWULkSV6CuqpXXAgkY4fnTRB450sYCYzfYSPT5fWvqlY%2Bp7TxRLHggtjDDdK3U%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7725b12bee001bfe-OSL
alt-svc: h2=":443"; ma=60
agileprofessional.com.br/wp-content/auth/a2b30b3ceecf4682f6334cd0731514cb/index_files/a_003.htm
172.67.222.251200 OK 116 B URL HTTP/1.1 agileprofessional.com.br/wp-content/auth/a2b30b3ceecf4682f6334cd0731514cb/index_files/a_003.htm
IP 172.67.222.251:0
File type HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash ab868ea2d57aa884dabacc0b5fe6e67e
7888951020722fea401a25c7064ce8e1c6b07c9d
fc5c15abbbcac24900d44a7ba4081648da8dc2d8688fafdcde7d2e5f575ab88d
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/auth/a2b30b3ceecf4682f6334cd0731514cb/index_files/a_003.htm HTTP/1.1
Host: agileprofessional.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://agileprofessional.com.br/wp-content/auth/a2b30b3ceecf4682f6334cd0731514cb/
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Wed, 30 Nov 2022 18:37:03 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
last-modified: Mon, 28 Nov 2022 07:53:35 GMT
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Zj%2BpbYHrecF%2F2124aLJncwmkIApJKuUgI5yxmNGBAsdGekM00FkeQvqpzNDiQTZoYMqvZ57MDzUQ9nQp2qnfqnPirOvnXQiuNSXMLfcIgtNIGh6tuqvBEKyS0Yn%2F77yixpjFnysXS%2F4%2Fs8o%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7725b12cee4cb52d-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
34.102.187.140200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, ETag, Alert, Expires, Cache-Control, Backoff, Content-Length, Content-Type, Pragma, Last-Modified
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Wed, 30 Nov 2022 18:11:14 GMT
cache-control: public,max-age=3600
age: 1549
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2
agileprofessional.com.br/wp-content/auth/a2b30b3ceecf4682f6334cd0731514cb/index_files/f67c327263eti209967cda713cd843baa
172.67.222.251200 OK 72 kB URL HTTP/1.1 agileprofessional.com.br/wp-content/auth/a2b30b3ceecf4682f6334cd0731514cb/index_files/f67c327263eti209967cda713cd843baa
IP 172.67.222.251:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 335f2776eaf4ca7eca9953d2240c3316
5f5702f072d8e721dd3557ccd2a0944b3cc58fa5
ca9ee108c9cd3072864c1fcfe42f8fa40f829a33267388e0adbf41fa8b2da9a5
Analyzer Verdict Alert urlquery Phishing - Navy Federal Credit Union
fortinet Phishing
GET /wp-content/auth/a2b30b3ceecf4682f6334cd0731514cb/index_files/f67c327263eti209967cda713cd843baa HTTP/1.1
Host: agileprofessional.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://agileprofessional.com.br/wp-content/auth/a2b30b3ceecf4682f6334cd0731514cb/
HTTP/1.1 200 OK
Date: Wed, 30 Nov 2022 18:37:02 GMT
Content-Length: 72012
Connection: keep-alive
etag: "1194c-638468ff-531b55a;;;"
last-modified: Mon, 28 Nov 2022 07:53:35 GMT
accept-ranges: bytes
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Sow6wvQw%2BSkQ2Svl7jiIJQaxixA0zPaYJKKfif6diwTB9Hi0fFXon%2FDPv0QbUDZaBEwvg136IgjL6zlqgSXPB4w4abWOrmKMo0LPtyZ4w7stSutY5BWN0oDK0CCodWNkjImX%2FIFjKR6PWDc%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7725b12bfb2fb523-OSL
alt-svc: h2=":443"; ma=60
my.navyfederal.org/NFOAA_Auth/resources/images/Group5166-1d62888b4b662af9142e3c385f423f32.svg
104.88.20.141404 Not Found 1.0 kB URL HTTP/1.1 my.navyfederal.org/NFOAA_Auth/resources/images/Group5166-1d62888b4b662af9142e3c385f423f32.svg
IP 104.88.20.141:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- C source text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with CRLF line terminators
Hash 1536cc36842f2165300106001ee4b19a
d3bd2ed7be7778ebb3fef66672f216982e1d2e45
4ece4a1ee577bdbd46f9f55ee93ad77713bdd635c5a547e575f230fca329ae42
GET /NFOAA_Auth/resources/images/Group5166-1d62888b4b662af9142e3c385f423f32.svg HTTP/1.1
Host: my.navyfederal.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://agileprofessional.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 404 Not Found
X-Powered-By: Servlet/3.0
X-Frame-Options: DENY
$WSEP:
Last-Modified: Wed, 07 Sep 2022 21:50:18 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Type: text/html
Content-Language: en-US
Content-Length: 1018
Date: Wed, 30 Nov 2022 18:37:03 GMT
Connection: keep-alive
Set-Cookie: navyfed-opentoken=; domain=.navyfederal.org; path=/; expires=Thu, 01-Jan-1970 00:00:00 GMT; secure
navyfed-extracted=; domain=.navyfederal.org; path=/; expires=Thu, 01-Jan-1970 00:00:00 GMT; secure
navyfed-deviceprint=; domain=.navyfederal.org; path=/; expires=Thu, 01-Jan-1970 00:00:00 GMT; secure
navyfed-useractive=; domain=.navyfederal.org; path=/; expires=Thu, 01-Jan-1970 00:00:00 GMT; secure
navyfed-pingolb=; domain=.navyfederal.org; path=/; expires=Thu, 01-Jan-1970 00:00:00 GMT; secure
navyfed-obo=; domain=.navyfederal.org; path=/; expires=Thu, 01-Jan-1970 00:00:00 GMT; secure
SMSESSION=; domain=.navyfederal.org; path=/; expires=Thu, 01-Jan-1970 00:00:00 GMT; secure
my_dc=; domain=.navyfederal.org; path=/; expires=Thu, 01-Jan-1970 00:00:00 GMT; secure
acctsvcs_dc=; domain=.navyfederal.org; path=/; expires=Thu, 01-Jan-1970 00:00:00 GMT; secure
my_dc=w; path=/; domain=.navyfederal.org; secure
akaalb_my_navyfederal_ALB=~op=my_100_wch:my_prdw|~rv=11~m=my_prdw:0|~os=ddcfe9c18a053d3068d757a21af73146~id=c7fb6f92586d51646526383be5f64567; path=/; Secure; SameSite=None; Domain=.navyfederal.org
ak_bmsc=0A41675C92114E926A1B5F5FE8AE7DD1~000000000000000000000000000000~YAAQDzIQYG5LvIKEAQAARfnTyRFFm/vFI8cnmxIhKLdn3hdCAU4tjTcP62APfcJclOYEcze0iws2v4CRYcMtPYN+FIn+2PvnYmqjriiyIR8s5paPgI/EFlZWjqN1Mhe2katoN4hXdP9VeUdUCk2WOnbDK/ZiKQ65+XbyM0upKLaHXFxuqw94d6DvN18LY9S+vM/ErMQo8ORqCm7cmpKrvDHhe/vrvoIZUf6Ql2/bHgyUi5TXC5n460O2thgzJLLOz//4YC5LW3beZ1B/viBUmYQzWtcltzulhIjZcXe3wcvMT9JHVTNofmEwXZKwlGYfpSUi/31dfj8qgG379hWunYgo5E1rIKiPofi/CEUqBSTGiEQgfLnjcCdvN/rLPE7BacoV4A==; Domain=.navyfederal.org; Path=/; Expires=Wed, 30 Nov 2022 20:37:02 GMT; Max-Age=7199; HttpOnly
Strict-Transport-Security: max-age=31536000
my.navyfederal.org/NFOAA_Auth/resources/images/contact-us-1d62888b4b662af9142e3c385f423f32.svg
104.88.20.141404 Not Found 1.0 kB URL HTTP/1.1 my.navyfederal.org/NFOAA_Auth/resources/images/contact-us-1d62888b4b662af9142e3c385f423f32.svg
IP 104.88.20.141:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- C source text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with CRLF line terminators
Hash 1536cc36842f2165300106001ee4b19a
d3bd2ed7be7778ebb3fef66672f216982e1d2e45
4ece4a1ee577bdbd46f9f55ee93ad77713bdd635c5a547e575f230fca329ae42
GET /NFOAA_Auth/resources/images/contact-us-1d62888b4b662af9142e3c385f423f32.svg HTTP/1.1
Host: my.navyfederal.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://agileprofessional.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 404 Not Found
X-Powered-By: Servlet/3.0
X-Frame-Options: DENY
$WSEP:
Last-Modified: Wed, 07 Sep 2022 21:50:18 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Type: text/html
Content-Language: en-US
Content-Length: 1018
Date: Wed, 30 Nov 2022 18:37:03 GMT
Connection: keep-alive
Set-Cookie: navyfed-opentoken=; domain=.navyfederal.org; path=/; expires=Thu, 01-Jan-1970 00:00:00 GMT; secure
navyfed-extracted=; domain=.navyfederal.org; path=/; expires=Thu, 01-Jan-1970 00:00:00 GMT; secure
navyfed-deviceprint=; domain=.navyfederal.org; path=/; expires=Thu, 01-Jan-1970 00:00:00 GMT; secure
navyfed-useractive=; domain=.navyfederal.org; path=/; expires=Thu, 01-Jan-1970 00:00:00 GMT; secure
navyfed-pingolb=; domain=.navyfederal.org; path=/; expires=Thu, 01-Jan-1970 00:00:00 GMT; secure
navyfed-obo=; domain=.navyfederal.org; path=/; expires=Thu, 01-Jan-1970 00:00:00 GMT; secure
SMSESSION=; domain=.navyfederal.org; path=/; expires=Thu, 01-Jan-1970 00:00:00 GMT; secure
my_dc=; domain=.navyfederal.org; path=/; expires=Thu, 01-Jan-1970 00:00:00 GMT; secure
acctsvcs_dc=; domain=.navyfederal.org; path=/; expires=Thu, 01-Jan-1970 00:00:00 GMT; secure
my_dc=w; path=/; domain=.navyfederal.org; secure
akaalb_my_navyfederal_ALB=~op=my_100_wch:my_prdw|~rv=21~m=my_prdw:0|~os=ddcfe9c18a053d3068d757a21af73146~id=2799e615c68d42d9c25c3be8762807b4; path=/; Secure; SameSite=None; Domain=.navyfederal.org
ak_bmsc=296CD68F7490A639C883AFF1CC0BE792~000000000000000000000000000000~YAAQDzIQYG9LvIKEAQAASfnTyRHd0ODNsK+oxzevXqVaTCG8lGz3O+O7Q/XBAS95fw+MaUDJZ6w+ySAzoQVyxdiH3KzwgoG0IYx4kk0TmwakAbpfWRooICTJkE4ciHKQcJqnjEyMObCwm44FzIB2IUW3RGjY8GgGURd5+89Rjp5JxMqepG4FmVooBeY0GcO/v7zKulqKn2fJtSAJgfKNPEmeQ2fMdBdyg2+XFlvFpezd/A/9ft3olNA68Z77qF+ntpCTxbUjP8aJKx5iwH/m1bwgDQ5dFvIKDwe5Ntd70DDueICMGfJibS+6sW/JrszrwiaBnBqbTQkUfQYH4MbV5hI8kNB30nnsnInCP0eaPmA9f5Fc97Vc6hFQNVYvQwiEsFyZOg==; Domain=.navyfederal.org; Path=/; Expires=Wed, 30 Nov 2022 20:37:02 GMT; Max-Age=7199; HttpOnly
Strict-Transport-Security: max-age=31536000
my.navyfederal.org/NFOAA_Auth/resources/images/Group5158-1d62888b4b662af9142e3c385f423f32.svg
104.88.20.141404 Not Found 1.0 kB URL HTTP/1.1 my.navyfederal.org/NFOAA_Auth/resources/images/Group5158-1d62888b4b662af9142e3c385f423f32.svg
IP 104.88.20.141:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- C source text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with CRLF line terminators
Hash 1536cc36842f2165300106001ee4b19a
d3bd2ed7be7778ebb3fef66672f216982e1d2e45
4ece4a1ee577bdbd46f9f55ee93ad77713bdd635c5a547e575f230fca329ae42
GET /NFOAA_Auth/resources/images/Group5158-1d62888b4b662af9142e3c385f423f32.svg HTTP/1.1
Host: my.navyfederal.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://agileprofessional.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 404 Not Found
X-Powered-By: Servlet/3.0
X-Frame-Options: DENY
$WSEP:
Last-Modified: Wed, 07 Sep 2022 21:50:18 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Type: text/html
Content-Language: en-US
Content-Length: 1018
Date: Wed, 30 Nov 2022 18:37:03 GMT
Connection: keep-alive
Set-Cookie: navyfed-opentoken=; domain=.navyfederal.org; path=/; expires=Thu, 01-Jan-1970 00:00:00 GMT; secure
navyfed-extracted=; domain=.navyfederal.org; path=/; expires=Thu, 01-Jan-1970 00:00:00 GMT; secure
navyfed-deviceprint=; domain=.navyfederal.org; path=/; expires=Thu, 01-Jan-1970 00:00:00 GMT; secure
navyfed-useractive=; domain=.navyfederal.org; path=/; expires=Thu, 01-Jan-1970 00:00:00 GMT; secure
navyfed-pingolb=; domain=.navyfederal.org; path=/; expires=Thu, 01-Jan-1970 00:00:00 GMT; secure
navyfed-obo=; domain=.navyfederal.org; path=/; expires=Thu, 01-Jan-1970 00:00:00 GMT; secure
SMSESSION=; domain=.navyfederal.org; path=/; expires=Thu, 01-Jan-1970 00:00:00 GMT; secure
my_dc=; domain=.navyfederal.org; path=/; expires=Thu, 01-Jan-1970 00:00:00 GMT; secure
acctsvcs_dc=; domain=.navyfederal.org; path=/; expires=Thu, 01-Jan-1970 00:00:00 GMT; secure
my_dc=w; path=/; domain=.navyfederal.org; secure
akaalb_my_navyfederal_ALB=~op=my_100_wch:my_prdw|~rv=93~m=my_prdw:0|~os=ddcfe9c18a053d3068d757a21af73146~id=a28e4fcdb80547d87a95ab695101a671; path=/; Secure; SameSite=None; Domain=.navyfederal.org
ak_bmsc=F1B3923992EB425528BD7C88BB2620EF~000000000000000000000000000000~YAAQDzIQYHBLvIKEAQAAUPnTyRFR75sOsVnCO7HaeD4s6SJf5hLkNbgU0V9GqjrUhRuISQ9LMBgMHvvFv3fmHEcuWRqMHMESOW4IJ0Z2k3MjA8NlRH7GX5iMSa0MtztAcXrJ7appUQAVYDkRNMqK8UshEH5/iyRlamowL/j22CHa4776gStr9gEeCWlUGMeVL83lfvrUf6O9YSQIOXu/xeM/FgKuFCfSGnOnPM0vIJ4Gk0OM20jSoRRVFwuFca0SpoD0D/e4r+2NrwGyK4PhfOXDusVEvNx52oue4Q5/ACNrj7G1f3zOq/Pu/ysi6zKGmymkM5HP81WJSkX3qHLYTW6zRK3UnP5xXooYhNbWcrRoPMssd3FuXyiknNQoWu5w/xldhA==; Domain=.navyfederal.org; Path=/; Expires=Wed, 30 Nov 2022 20:37:02 GMT; Max-Age=7199; HttpOnly
Strict-Transport-Security: max-age=31536000
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 5f5bfc09dfd8ab12f8d5009c2935687c
813a68f89a645caf709a4dc4412b784e5f31cb1d
6be8d869c5d426a83f73566bcbf0e68d9a0408001c96c7c23b283c3f42faf76a
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3708
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 30 Nov 2022 18:37:03 GMT
Last-Modified: Wed, 30 Nov 2022 17:35:15 GMT
Server: ECS (amb/6B71)
X-Cache: HIT
Content-Length: 471
agileprofessional.com.br/wp-content/auth/a2b30b3ceecf4682f6334cd0731514cb/images/css/toolTip.svg
172.67.222.251500 Internal Server Error 2.6 kB URL HTTP/1.1 agileprofessional.com.br/wp-content/auth/a2b30b3ceecf4682f6334cd0731514cb/images/css/toolTip.svg
IP 172.67.222.251:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text
Hash 3c32982e1f48797d87295a4237971f09
43f38c27234a49505e9bbbd73bd47c2ba47c0ec8
6790fb9a42b6e2ea88a55f1f86db97ce8bef7aeb16be9567831580aeeb1391e4
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/auth/a2b30b3ceecf4682f6334cd0731514cb/images/css/toolTip.svg HTTP/1.1
Host: agileprofessional.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://agileprofessional.com.br/wp-content/auth/a2b30b3ceecf4682f6334cd0731514cb/index_files/responsivemain-599150400912c8247ee1872211972b2a.css
HTTP/1.1 500 Internal Server Error
Date: Wed, 30 Nov 2022 18:37:03 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
x-powered-by: PHP/7.4.28
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: max-age=14400, must-revalidate
vary: Accept-Encoding
CF-Cache-Status: EXPIRED
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=fk47XHbblYzLaETQW%2F8dJUs5fo%2FLwMgHTQhdPqmF0rK7A5twefb1XOTfj59Ql2H2d%2FHSJ9d3evBcTqnRNhUgAU%2BvUjxcQbjF3ao02K4iK8zcctIpnkWQKsuHVD1K%2BCig5hpgObNHf8WCYLI%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7725b12d0daeb50c-OSL
alt-svc: h2=":443"; ma=60
agileprofessional.com.br/wp-content/auth/a2b30b3ceecf4682f6334cd0731514cb/index_files/jquery-ec401aee041a200e3dd94ec7982f0f2f.js
172.67.222.251200 OK 2.6 kB URL HTTP/1.1 agileprofessional.com.br/wp-content/auth/a2b30b3ceecf4682f6334cd0731514cb/index_files/jquery-ec401aee041a200e3dd94ec7982f0f2f.js
IP 172.67.222.251:0
Hash 3c32982e1f48797d87295a4237971f09
43f38c27234a49505e9bbbd73bd47c2ba47c0ec8
6790fb9a42b6e2ea88a55f1f86db97ce8bef7aeb16be9567831580aeeb1391e4
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/auth/a2b30b3ceecf4682f6334cd0731514cb/index_files/jquery-ec401aee041a200e3dd94ec7982f0f2f.js HTTP/1.1
Host: agileprofessional.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://agileprofessional.com.br/wp-content/auth/a2b30b3ceecf4682f6334cd0731514cb/
HTTP/1.1 200 OK
Date: Wed, 30 Nov 2022 18:37:02 GMT
Content-Type: application/x-javascript
Content-Length: 85688
Connection: keep-alive
cache-control: public, max-age=604800
expires: Mon, 05 Dec 2022 16:35:45 GMT
etag: "48e06-638468ff-531b54e;gz"
last-modified: Mon, 28 Nov 2022 07:53:35 GMT
content-encoding: gzip
vary: Accept-Encoding
CF-Cache-Status: HIT
Age: 180076
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=bXLr%2FIwkpYkxaft14U4hnKxFflLWpf5OD3evgJVFvhbY5Ji0Ap8xFm3%2FKzumj054jFIlweaGbQtzxYKIJt40iMY2w4gJmBce36TsXSPSqfRCYhogrWhye8nNgD8TUxOlQybWHEF%2BtHM0ubQ%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7725b12b7aae0afa-OSL
alt-svc: h2=":443"; ma=60
agileprofessional.com.br/wp-content/auth/a2b30b3ceecf4682f6334cd0731514cb/images/css/bg_globe.png
172.67.222.251500 Internal Server Error 2.6 kB URL HTTP/1.1 agileprofessional.com.br/wp-content/auth/a2b30b3ceecf4682f6334cd0731514cb/images/css/bg_globe.png
IP 172.67.222.251:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text
Hash 3c32982e1f48797d87295a4237971f09
43f38c27234a49505e9bbbd73bd47c2ba47c0ec8
6790fb9a42b6e2ea88a55f1f86db97ce8bef7aeb16be9567831580aeeb1391e4
GET /wp-content/auth/a2b30b3ceecf4682f6334cd0731514cb/images/css/bg_globe.png HTTP/1.1
Host: agileprofessional.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://agileprofessional.com.br/wp-content/auth/a2b30b3ceecf4682f6334cd0731514cb/index_files/responsivemain-599150400912c8247ee1872211972b2a.css
HTTP/1.1 500 Internal Server Error
Date: Wed, 30 Nov 2022 18:37:03 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
x-powered-by: PHP/7.4.28
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: max-age=14400, must-revalidate
vary: Accept-Encoding
CF-Cache-Status: EXPIRED
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=BQyKBFs9W5QGiitPHPbmVMIg7sCCCxoghFpy1CLLd9Z715jou1ojQkFw8A5oYrW4XdcT%2F9ZVx%2F1BxdkiqOy2jGBpHoEvbBOkZVPYMvaiTI7T2IQ%2BUaDaz1DYt%2Bp8aT5TNivnWlvzF8fryds%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7725b12cfc500afa-OSL
alt-svc: h2=":443"; ma=60
agileprofessional.com.br/wp-content/auth/a2b30b3ceecf4682f6334cd0731514cb/images/css/icons.png
172.67.222.251500 Internal Server Error 2.6 kB URL HTTP/1.1 agileprofessional.com.br/wp-content/auth/a2b30b3ceecf4682f6334cd0731514cb/images/css/icons.png
IP 172.67.222.251:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text
Hash 3c32982e1f48797d87295a4237971f09
43f38c27234a49505e9bbbd73bd47c2ba47c0ec8
6790fb9a42b6e2ea88a55f1f86db97ce8bef7aeb16be9567831580aeeb1391e4
GET /wp-content/auth/a2b30b3ceecf4682f6334cd0731514cb/images/css/icons.png HTTP/1.1
Host: agileprofessional.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://agileprofessional.com.br/wp-content/auth/a2b30b3ceecf4682f6334cd0731514cb/index_files/responsivemain-599150400912c8247ee1872211972b2a.css
HTTP/1.1 500 Internal Server Error
Date: Wed, 30 Nov 2022 18:37:03 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
x-powered-by: PHP/7.4.28
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: max-age=14400, must-revalidate
vary: Accept-Encoding
CF-Cache-Status: EXPIRED
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=yErEs%2Bo82H8VMBu00YntURPChawqUrsUU%2BzEEyXjIStz4juLNps8VrkwO9eBh7KsQ2%2Fw1OZWuFmX8DKP7S32Il5Fdr6i6IK%2FmVhghG5e8aqkvykWrR36w9A%2ByIb8uVE8LCWu%2B8m1ixV8w5E%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7725b12d09b4b4eb-OSL
alt-svc: h2=":443"; ma=60
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash e7de49da8836d1221462d949e6d9c902
f7bfa20592de96814622531d659c742de0c50edf
4e8405233bb5e4b03a04b6045987670a6e6cd651eafbe3af8378811113f68541
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 30 Nov 2022 18:37:03 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Tue, 29 Nov 2022 04:31:52 GMT
Expires: Tue, 06 Dec 2022 04:31:51 GMT
Etag: "f7bfa20592de96814622531d659c742de0c50edf"
Cache-Control: max-age=467087,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7725b12f2ef4b4ee-OSL
agileprofessional.com.br/wp-content/auth/a2b30b3ceecf4682f6334cd0731514cb/index_files/a_003.htm
172.67.222.251200 OK 116 B URL HTTP/1.1 agileprofessional.com.br/wp-content/auth/a2b30b3ceecf4682f6334cd0731514cb/index_files/a_003.htm
IP 172.67.222.251:0
File type HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash ab868ea2d57aa884dabacc0b5fe6e67e
7888951020722fea401a25c7064ce8e1c6b07c9d
fc5c15abbbcac24900d44a7ba4081648da8dc2d8688fafdcde7d2e5f575ab88d
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/auth/a2b30b3ceecf4682f6334cd0731514cb/index_files/a_003.htm HTTP/1.1
Host: agileprofessional.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://agileprofessional.com.br/wp-content/auth/a2b30b3ceecf4682f6334cd0731514cb/
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Wed, 30 Nov 2022 18:37:03 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
last-modified: Mon, 28 Nov 2022 07:53:35 GMT
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=nZV8IrGnHjTjHvrFyeq7P0GOor77gPh%2BC8dnVmbXN4h8YJzWsFnyWC1XB8ibar7I51%2F1C1ORPz3UVd25iDAQIVsQcI1IO9lc8m3wMFKQaK6V%2FlfI87hfacN3k4MKfhHfyPE8n0Ddo00LOY4%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7725b12f186ab50c-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash cfdd00e67ee6ca21712b867eb5288ab6
b61d5d6ec3b7ad71619e13e32c87f2d01871b88a
f740cac6dfedc1bf0f82efb10dac4f6ffb22f9bb5d4a9b68a4cd971dd2f65793
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5106
Cache-Control: max-age=143694
Content-Type: application/ocsp-response
Date: Wed, 30 Nov 2022 18:37:03 GMT
Etag: "63871d2b-1d7"
Expires: Fri, 02 Dec 2022 10:31:57 GMT
Last-Modified: Wed, 30 Nov 2022 09:06:51 GMT
Server: ECS (ska/F70A)
X-Cache: HIT
Content-Length: 471
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash e7de49da8836d1221462d949e6d9c902
f7bfa20592de96814622531d659c742de0c50edf
4e8405233bb5e4b03a04b6045987670a6e6cd651eafbe3af8378811113f68541
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 30 Nov 2022 18:37:03 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Tue, 29 Nov 2022 04:31:52 GMT
Expires: Tue, 06 Dec 2022 04:31:51 GMT
Etag: "f7bfa20592de96814622531d659c742de0c50edf"
Cache-Control: max-age=467087,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7725b12f2bf30b65-OSL
agileprofessional.com.br/wp-content/auth/a2b30b3ceecf4682f6334cd0731514cb/fonts/nfcu-icons.woff
172.67.222.251500 Internal Server Error 2.6 kB URL HTTP/1.1 agileprofessional.com.br/wp-content/auth/a2b30b3ceecf4682f6334cd0731514cb/fonts/nfcu-icons.woff
IP 172.67.222.251:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text
Hash 3c32982e1f48797d87295a4237971f09
43f38c27234a49505e9bbbd73bd47c2ba47c0ec8
6790fb9a42b6e2ea88a55f1f86db97ce8bef7aeb16be9567831580aeeb1391e4
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/auth/a2b30b3ceecf4682f6334cd0731514cb/fonts/nfcu-icons.woff HTTP/1.1
Host: agileprofessional.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://agileprofessional.com.br/wp-content/auth/a2b30b3ceecf4682f6334cd0731514cb/index_files/responsivemain-599150400912c8247ee1872211972b2a.css
HTTP/1.1 500 Internal Server Error
Date: Wed, 30 Nov 2022 18:37:03 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
x-powered-by: PHP/7.4.28
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: max-age=14400, must-revalidate
vary: Accept-Encoding
CF-Cache-Status: EXPIRED
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Oj0gd0WYnhMcktM1sKVG7%2BXMEBWSGGOrRJNyrkMtm78XBv2eKWsEaX%2BCa1Mp7P5ztkGC4DY1lSmMJ8v9A9lKg41sC89A%2FqETkz5PeL4Aj%2FugNuAvdsUwywE4LZ1XlpqSIHroV4Xdtn4s96M%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7725b12e7836b52d-OSL
alt-svc: h2=":443"; ma=60
agileprofessional.com.br/wp-content/auth/a2b30b3ceecf4682f6334cd0731514cb/fonts/sourcesanspro-semibold-webfont.woff2
172.67.222.251500 Internal Server Error 2.6 kB URL HTTP/1.1 agileprofessional.com.br/wp-content/auth/a2b30b3ceecf4682f6334cd0731514cb/fonts/sourcesanspro-semibold-webfont.woff2
IP 172.67.222.251:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text
Hash 3c32982e1f48797d87295a4237971f09
43f38c27234a49505e9bbbd73bd47c2ba47c0ec8
6790fb9a42b6e2ea88a55f1f86db97ce8bef7aeb16be9567831580aeeb1391e4
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/auth/a2b30b3ceecf4682f6334cd0731514cb/fonts/sourcesanspro-semibold-webfont.woff2 HTTP/1.1
Host: agileprofessional.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://agileprofessional.com.br/wp-content/auth/a2b30b3ceecf4682f6334cd0731514cb/index_files/responsivemain-599150400912c8247ee1872211972b2a.css
HTTP/1.1 500 Internal Server Error
Date: Wed, 30 Nov 2022 18:37:03 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
x-powered-by: PHP/7.4.28
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: max-age=14400, must-revalidate
vary: Accept-Encoding
CF-Cache-Status: EXPIRED
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=wV2fegjEXTF3hufcRvLA9Io75oOxsCxRPBXEOnXiVLvdSPwDVM50FstjgPVuDAkH04NDDznojQUtPqJI6RdBgzaBc%2BCLTLV%2BEFVVcu%2BC3BuXkJGZzTrUJ6gNfsl7DWsDvtlXTi5MkhuvDpk%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7725b12ebf6cb523-OSL
alt-svc: h2=":443"; ma=60
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash 24bf7b60313497c1ca93c30f667c17a1
84267116b359968fdcd30fd213cf1db3d9981ddc
74a9cc8eae0d7e1c344872a978d28990c5e94db8e2a234a5d3f0c4b104db2365
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=114111
Content-Type: application/ocsp-response
Date: Wed, 30 Nov 2022 18:37:03 GMT
Etag: "6386bd8e-116"
Expires: Fri, 02 Dec 2022 02:18:54 GMT
Last-Modified: Wed, 30 Nov 2022 02:18:54 GMT
Server: nginx
Content-Length: 278
agileprofessional.com.br/wp-content/auth/a2b30b3ceecf4682f6334cd0731514cb/index_files/storage.htm
172.67.222.251200 OK 14 kB URL HTTP/1.1 agileprofessional.com.br/wp-content/auth/a2b30b3ceecf4682f6334cd0731514cb/index_files/storage.htm
IP 172.67.222.251:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (32192), with CRLF line terminators
Hash 304997aaec766d326647675aa7849c2c
d3d126b0e597d4f18af52b0ba0719f54d4db3b02
1ef287c6460ae2976b89ad36ea9f2e07e3f132653e9c46cbca489f242dc456c5
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/auth/a2b30b3ceecf4682f6334cd0731514cb/index_files/storage.htm HTTP/1.1
Host: agileprofessional.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://agileprofessional.com.br/wp-content/auth/a2b30b3ceecf4682f6334cd0731514cb/
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Wed, 30 Nov 2022 18:37:03 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
last-modified: Mon, 28 Nov 2022 07:53:35 GMT
vary: Accept-Encoding
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ILLU0oFMQ7qcJtL%2F42DfqejMcjIIKDresE%2BsJ0bHexqqncPfb4NFgQxxnB%2F6QEYvRgC9%2BStReSs45Qnv%2Bg84ouS2Mr5Kai75Jp6w7jKcf0YAScWgxcf3rstd%2FMV7hirgUdn1RHSfI2icG0s%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7725b12f4aaa1bfe-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
rnemsg.navyfederal.org/ci/pta/logout
147.154.117.92302 Found 25 B URL HTTP/1.1 rnemsg.navyfederal.org/ci/pta/logout
IP 147.154.117.92:0
ASN #31898 ORACLE-BMC-31898
Hash 3f8372f15e761c5f9e4ed6515f744df3
81a6e71371d2a46f6116e045fce6feb258b2d9f3
61c08f21cca5983f6f115bd91b9cc97bd29ef835d1cabed197d79fa7e1e7bd76
GET /ci/pta/logout HTTP/1.1
Host: rnemsg.navyfederal.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://agileprofessional.com.br/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Date: Wed, 30 Nov 2022 18:37:03 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
F5_do_compression: yes
Content-Encoding: gzip
RNT-JN-Ext-Machine: 43.2
Strict-Transport-Security: max-age=31536000
Set-Cookie: cp_session=fUX1PskpYRumWkZN~OVphSl8agXtMGaXMQkNLqzYRFJd~YKYOvGz65AJv5XkwgddBza2Ekecetab~skAZ15jeDmSprO1~s5fxxPY2cI3SzPrA5nzXFQd0XWAaLKtwUH5fs3X0nwDp~o7MtDncvB406xCE~hh2NoSNbG2n4PyQEm4xA6ul0z1QG~b3U4ulNCJJof5uwgmIkf5dMmGlyT_zZ5hS2JlhgnGD5X14VyfidMQnHJNM3zKrUbK1Meki1s5~I2MDR5Z9~G_L2YM6LNiWIvPFxafmbtOLhwdon4za9~f1G2q6IUNBIlTOyT7mPybicAhp1q7tr4ZABc64nvizN6l5cql~SKqJcSucp8tiWfnyEJcgStAtktKqhFc~0FwGq9k~4ESQIH2jU1RAl1S5ngqPWYpFsZM4GZPNeSNdZHK34RICpd6xpawB7ALGM7y3B~kkgr9_NVOWL_mJ4159KNjmOeV_bfsljXJahHUC_PK8eBussNCfC3A!!; path=/; httponly; SameSite=None; Secure
cp_session=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/
RNT-JN-Ext-UUID: b1272509-979e-4e37-88b6-5af44034c7f2
RNT-Time: D=196834 t=1669833423380577
Location: https://www.navyfederal.org/images/spacer.gif
RNT-Machine: 0.80
www.navyfederal.org/images/spacer.gif
104.110.18.91301 Moved Permanently 0 B URL HTTP/2 www.navyfederal.org/images/spacer.gif
IP 104.110.18.91:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /images/spacer.gif HTTP/1.1
Host: www.navyfederal.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://agileprofessional.com.br/
Connection: keep-alive
Cookie: akaalb_my_navyfederal_ALB=~op=my_100_wch:my_prdw|~rv=93~m=my_prdw:0|~os=ddcfe9c18a053d3068d757a21af73146~id=a28e4fcdb80547d87a95ab695101a671
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 301 Moved Permanently
server: AkamaiGHost
content-length: 0
location: https://web.navyfederal.org/images/spacer.gif
cache-control: max-age=86400
expires: Thu, 01 Dec 2022 18:37:03 GMT
date: Wed, 30 Nov 2022 18:37:03 GMT
permissions-policy: interest-cohort=()
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
web.navyfederal.org/images/spacer.gif
104.110.18.91200 OK 43 B URL HTTP/2 web.navyfederal.org/images/spacer.gif
IP 104.110.18.91:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
GET /images/spacer.gif HTTP/1.1
Host: web.navyfederal.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://agileprofessional.com.br/
Connection: keep-alive
Cookie: akaalb_my_navyfederal_ALB=~op=my_100_wch:my_prdw|~rv=93~m=my_prdw:0|~os=ddcfe9c18a053d3068d757a21af73146~id=a28e4fcdb80547d87a95ab695101a671
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: Apache
last-modified: Sun, 02 Jun 2013 10:22:19 GMT
etag: "2b-4de29390cacc0"
accept-ranges: bytes
content-length: 43
cache-control: max-age=7776000
expires: Wed, 19 Oct 2022 10:22:27 GMT
content-type: image/gif
date: Wed, 30 Nov 2022 18:37:03 GMT
X-Firefox-Spdy: h2
push.services.mozilla.com/
54.149.219.22101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 54.149.219.22:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: egQs/HJO3Yh8gTc+aw1/xA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: FAWILrQPzbVGgCotjLMOI3eQmfE=
agileprofessional.com.br/wp-content/auth/a2b30b3ceecf4682f6334cd0731514cb/fonts/nfcu-icons.ttf
172.67.222.251500 Internal Server Error 2.6 kB URL HTTP/1.1 agileprofessional.com.br/wp-content/auth/a2b30b3ceecf4682f6334cd0731514cb/fonts/nfcu-icons.ttf
IP 172.67.222.251:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text
Hash 3c32982e1f48797d87295a4237971f09
43f38c27234a49505e9bbbd73bd47c2ba47c0ec8
6790fb9a42b6e2ea88a55f1f86db97ce8bef7aeb16be9567831580aeeb1391e4
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/auth/a2b30b3ceecf4682f6334cd0731514cb/fonts/nfcu-icons.ttf HTTP/1.1
Host: agileprofessional.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://agileprofessional.com.br/wp-content/auth/a2b30b3ceecf4682f6334cd0731514cb/index_files/responsivemain-599150400912c8247ee1872211972b2a.css
HTTP/1.1 500 Internal Server Error
Date: Wed, 30 Nov 2022 18:37:03 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
x-powered-by: PHP/7.4.28
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: max-age=14400, must-revalidate
vary: Accept-Encoding
CF-Cache-Status: EXPIRED
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=VWpsHK1YkGfPIBqzrTCZgyRS%2FwvNS3KsG%2FGZ2zCtr7P6TmH0rX8Awk08V50RdHJK2zjGS4bR9fbsp3Jhxygmrx2p3aZWilTzyZssR9vF2D73Z3p0YitPGlUq2IcFyHDQFUxKIvXObNifYtM%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7725b1308a96b52d-OSL
alt-svc: h2=":443"; ma=60
agileprofessional.com.br/wp-content/auth/a2b30b3ceecf4682f6334cd0731514cb/fonts/sourcesanspro-semibold-webfont.woff
172.67.222.251500 Internal Server Error 2.6 kB URL HTTP/1.1 agileprofessional.com.br/wp-content/auth/a2b30b3ceecf4682f6334cd0731514cb/fonts/sourcesanspro-semibold-webfont.woff
IP 172.67.222.251:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text
Hash 3c32982e1f48797d87295a4237971f09
43f38c27234a49505e9bbbd73bd47c2ba47c0ec8
6790fb9a42b6e2ea88a55f1f86db97ce8bef7aeb16be9567831580aeeb1391e4
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/auth/a2b30b3ceecf4682f6334cd0731514cb/fonts/sourcesanspro-semibold-webfont.woff HTTP/1.1
Host: agileprofessional.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://agileprofessional.com.br/wp-content/auth/a2b30b3ceecf4682f6334cd0731514cb/index_files/responsivemain-599150400912c8247ee1872211972b2a.css
HTTP/1.1 500 Internal Server Error
Date: Wed, 30 Nov 2022 18:37:03 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
x-powered-by: PHP/7.4.28
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: max-age=14400, must-revalidate
vary: Accept-Encoding
CF-Cache-Status: EXPIRED
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=wxLigeFduPeNx3HQKQ8WPc5q7HktZlmN3WueCf7TkbqAVoHF5ozEv6zdkJSbnGk842vn9JDiHIbEAG1J%2BwzoS3u%2F00II8looBt3oWZcakm1yCgDvOv0GTon%2BYJu6IClj7HSNhLC5XSq5oVg%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7725b13128670afa-OSL
alt-svc: h2=":443"; ma=60
agileprofessional.com.br/wp-content/auth/a2b30b3ceecf4682f6334cd0731514cb/fonts/sourcesanspro-semibold-webfont.ttf
172.67.222.251500 Internal Server Error 2.6 kB URL HTTP/1.1 agileprofessional.com.br/wp-content/auth/a2b30b3ceecf4682f6334cd0731514cb/fonts/sourcesanspro-semibold-webfont.ttf
IP 172.67.222.251:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text
Hash 3c32982e1f48797d87295a4237971f09
43f38c27234a49505e9bbbd73bd47c2ba47c0ec8
6790fb9a42b6e2ea88a55f1f86db97ce8bef7aeb16be9567831580aeeb1391e4
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/auth/a2b30b3ceecf4682f6334cd0731514cb/fonts/sourcesanspro-semibold-webfont.ttf HTTP/1.1
Host: agileprofessional.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://agileprofessional.com.br/wp-content/auth/a2b30b3ceecf4682f6334cd0731514cb/index_files/responsivemain-599150400912c8247ee1872211972b2a.css
HTTP/1.1 500 Internal Server Error
Date: Wed, 30 Nov 2022 18:37:04 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
x-powered-by: PHP/7.4.28
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: max-age=14400, must-revalidate
vary: Accept-Encoding
CF-Cache-Status: EXPIRED
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=86NsCfdikS81KRio0LpTJ0c5hTP2Zp8DHrGouxIxafn8vgQEWY34quGt5HNfW750AsCemVc8ohZOSjbDfNMDFKQVGhQ7%2FQcDKwe38MtAPwRuHq97Hw4TBHgw0Mp9INMTjEPPhWbSWwtBnJE%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7725b1333dd9b52d-OSL
alt-svc: h2=":443"; ma=60
accdn.lpsnmedia.net/api/account/11478817/configuration/le-campaigns/zones?fields=id&fields=zoneValue&cb=lpZonesStaticCB
178.249.97.99200 OK 811 B URL HTTP/2 accdn.lpsnmedia.net/api/account/11478817/configuration/le-campaigns/zones?fields=id&fields=zoneValue&cb=lpZonesStaticCB
IP 178.249.97.99:0
Hash b84b14f089ba0819ef63a75ce6196812
09a0a06254df2920d508223754856375242bf991
90d87b75309a313c4ed03dd1812967afd24d625be0715865814296a3fa6ad152
GET /api/account/11478817/configuration/le-campaigns/zones?fields=id&fields=zoneValue&cb=lpZonesStaticCB HTTP/1.1
Host: accdn.lpsnmedia.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://agileprofessional.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 30 Nov 2022 18:37:03 GMT
content-type: application/javascript
set-cookie: ADRUM_BTa=R:32|g:6b5cdb0d-b1a1-42d0-8286-fa7861e86902; Max-Age=30; Expires=Wed, 30-Nov-2022 18:37:33 GMT; Path=/
ADRUM_BTa=R:32|g:6b5cdb0d-b1a1-42d0-8286-fa7861e86902|n:livepersonltd_93a08561-b03e-475e-b29b-9ad4aa207daf; Max-Age=30; Expires=Wed, 30-Nov-2022 18:37:33 GMT; Path=/
SameSite=None; Max-Age=30; Expires=Wed, 30-Nov-2022 18:37:33 GMT; Path=/; Secure
ADRUM_BT1=R:32|i:2241648; Max-Age=30; Expires=Wed, 30-Nov-2022 18:37:33 GMT; Path=/
ADRUM_BT1=R:32|i:2241648|e:3; Max-Age=30; Expires=Wed, 30-Nov-2022 18:37:33 GMT; Path=/
vary: Accept
expires: Wed, 30 Nov 2022 18:38:03 GMT
x-envoy-upstream-service-time: 1
server: ws
strict-transport-security: max-age=99999999999; includeSubDomains
access-control-allow-methods: GET, POST, PATCH
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Authorization, X-HTTP-Method-Override, LP-DOMAIN-REFERER, LP-URL, ETag, ac-revision, X-LP-Last-Modified, If-Match, Authentication-Method, Credit-Card-Ref, Automation-Secret, Email-Token
access-control-expose-headers: X-Requested-With, X-HTTP-Method-Override, LP-DOMAIN-REFERER, LP-URL, ETag, ac-revision, X-LP-Last-Modified, If-Match, Authentication-Method, Credit-Card-Ref, Automation-Secret, Email-Token, x-lp-host, Lp-Req-Time, date, x-application-context, strict-transport-security, x-content-type-options, x-download-options, x-xss-protection, x-cache-status, x-amz-id-2, x-amz-request-id, expires, last-modified, set-cookie, content-security-policy, x-frame-options
access-control-allow-credentials: true
x-cache-status: EXPIRED
x-content-type-options: nosniff
content-encoding: gzip
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 608e4d04a251ebcd51660e801f388303
fcb9aa48fd6ed504a1a9fed7990c5ccde63e6a1d
cc1a34cd0a99e301df97cf184ab0ded2e229659f86f43e4eff479dee221695dc
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 30 Nov 2022 18:37:04 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.sectigo.com/
172.64.155.188200 OK 472 B IP 172.64.155.188:0
Hash f17527290734860e18b0442bd91d3bff
eac39bf60d4d4208287e5696fb9030032ffc6309
ae89cb31845e03f6c810e65f50ef692d67b0c0e55140fbfb73d0b7b1ce5edc6c
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 30 Nov 2022 18:37:04 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Wed, 30 Nov 2022 03:43:24 GMT
Expires: Wed, 07 Dec 2022 03:43:23 GMT
Etag: "eac39bf60d4d4208287e5696fb9030032ffc6309"
Cache-Control: max-age=550578,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7725b135a9ebb4ee-OSL
www.gstatic.com/recaptcha/releases/1AZgzF1o3OlP73CVr69UmL65/recaptcha__en.js
142.250.74.99404 Not Found 1.6 kB URL HTTP/2 www.gstatic.com/recaptcha/releases/1AZgzF1o3OlP73CVr69UmL65/recaptcha__en.js
IP 142.250.74.99:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1136)
Hash 42ce5054207c737a4539726fff1cea32
338e12cc1019e8e080cdb985f9afc817b0eb76b8
54a34b914df3e1ca89045c816c2080c66586977a941d241209038047f1ffea5c
Analyzer Verdict Alert urlquery Phishing - Navy Federal Credit Union
GET /recaptcha/releases/1AZgzF1o3OlP73CVr69UmL65/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://agileprofessional.com.br
Connection: keep-alive
Referer: http://agileprofessional.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 404 Not Found
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
date: Wed, 30 Nov 2022 18:37:04 GMT
content-type: text/html; charset=UTF-8
server: sffe
content-length: 1621
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.sectigo.com/
172.64.155.188200 OK 472 B IP 172.64.155.188:0
Hash f17527290734860e18b0442bd91d3bff
eac39bf60d4d4208287e5696fb9030032ffc6309
ae89cb31845e03f6c810e65f50ef692d67b0c0e55140fbfb73d0b7b1ce5edc6c
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 30 Nov 2022 18:37:04 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Wed, 30 Nov 2022 03:43:24 GMT
Expires: Wed, 07 Dec 2022 03:43:23 GMT
Etag: "eac39bf60d4d4208287e5696fb9030032ffc6309"
Cache-Control: max-age=550578,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7725b135b9e50b65-OSL
lptag.liveperson.net/tag/tag.js?site=11478817
178.249.97.23200 OK 7.6 kB URL HTTP/2 lptag.liveperson.net/tag/tag.js?site=11478817
IP 178.249.97.23:0
File type ASCII text, with very long lines (21652), with no line terminators
Hash 6b675640425ec8551a433e26a377d954
7234f02cce1ccb2a4facf2b34b9185cfcf27299d
8c9716f14d2e964be7c93d3d8c28819cb35c529fce6206a79061cda509e05bfd
GET /tag/tag.js?site=11478817 HTTP/1.1
Host: lptag.liveperson.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://agileprofessional.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 30 Nov 2022 18:37:04 GMT
content-type: application/javascript
content-length: 7567
last-modified: Thu, 03 Sep 2020 08:27:49 GMT
etag: "5f50a905-1d8f"
content-encoding: gzip
server: ws
strict-transport-security: max-age=300; includeSubDomains
access-control-allow-methods: GET, POST, PATCH
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Authorization, X-HTTP-Method-Override, LP-DOMAIN-REFERER, LP-URL, ETag, ac-revision, X-LP-Last-Modified, If-Match, Authentication-Method, Credit-Card-Ref, Automation-Secret, Email-Token
access-control-expose-headers: X-Requested-With, X-HTTP-Method-Override, LP-DOMAIN-REFERER, LP-URL, ETag, ac-revision, X-LP-Last-Modified, If-Match, Authentication-Method, Credit-Card-Ref, Automation-Secret, Email-Token, x-lp-host, Lp-Req-Time, date, x-application-context, strict-transport-security, x-content-type-options, x-download-options, x-xss-protection, x-cache-status, x-amz-id-2, x-amz-request-id, expires, last-modified, set-cookie, content-security-policy, x-frame-options
access-control-allow-credentials: true
cache-control: public, max-age=630
x-content-type-options: nosniff
X-Firefox-Spdy: h2
agileprofessional.com.br/static/f67c327263eti209967cda713cd843baa
172.67.222.251500 Internal Server Error 4.6 kB URL HTTP/2 agileprofessional.com.br/static/f67c327263eti209967cda713cd843baa
IP 172.67.222.251:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- C source text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with CRLF, LF line terminators
Hash 27e220ef2f56b3bdc619bacede7f25df
adb3defab0dbe871a7478d16d0fc3b0f918d443c
b3cf7d37c89abbb918792fe7d6d51dbeacfe6e9baa4207a9b68f606d5979ab17
Analyzer Verdict Alert fortinet Phishing
POST /static/f67c327263eti209967cda713cd843baa HTTP/1.1
Host: agileprofessional.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 1271
Origin: http://agileprofessional.com.br
Connection: keep-alive
Referer: http://agileprofessional.com.br/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 500 Internal Server Error
date: Wed, 30 Nov 2022 18:37:04 GMT
content-type: text/html; charset=UTF-8
x-powered-by: PHP/7.4.28
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=2dI%2Fxa39GhUYOvy5iRZVXIXcc1JkRoW6z503YfYU8uyjRcnRjKvQch1mKvkqug1OXQ83LPS9AbF7n6uZBCedWcTEG15kIcJ8%2FeK2btnC5Bj6c8JTOf5%2FhaKljTGniZh4u0I0UH6dnZKE88I%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7725b1327c06b4ee-OSL
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash ac3edd07bb0a4ebdaae6ec26e91d2079
b6efe3811dfa37cdcde1e9d411c171732ac7e12a
c5dbd471d178ae4505b28e30aee1e8eed77fffd81b9f7815ad2bda1a0d09a02c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C5DBD471D178AE4505B28E30AEE1E8EED77FFFD81B9F7815AD2BDA1A0D09A02C"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9159
Expires: Wed, 30 Nov 2022 21:09:43 GMT
Date: Wed, 30 Nov 2022 18:37:04 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash ac3edd07bb0a4ebdaae6ec26e91d2079
b6efe3811dfa37cdcde1e9d411c171732ac7e12a
c5dbd471d178ae4505b28e30aee1e8eed77fffd81b9f7815ad2bda1a0d09a02c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C5DBD471D178AE4505B28E30AEE1E8EED77FFFD81B9F7815AD2BDA1A0D09A02C"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9159
Expires: Wed, 30 Nov 2022 21:09:43 GMT
Date: Wed, 30 Nov 2022 18:37:04 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash ac3edd07bb0a4ebdaae6ec26e91d2079
b6efe3811dfa37cdcde1e9d411c171732ac7e12a
c5dbd471d178ae4505b28e30aee1e8eed77fffd81b9f7815ad2bda1a0d09a02c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C5DBD471D178AE4505B28E30AEE1E8EED77FFFD81B9F7815AD2BDA1A0D09A02C"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9159
Expires: Wed, 30 Nov 2022 21:09:43 GMT
Date: Wed, 30 Nov 2022 18:37:04 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash ac3edd07bb0a4ebdaae6ec26e91d2079
b6efe3811dfa37cdcde1e9d411c171732ac7e12a
c5dbd471d178ae4505b28e30aee1e8eed77fffd81b9f7815ad2bda1a0d09a02c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C5DBD471D178AE4505B28E30AEE1E8EED77FFFD81B9F7815AD2BDA1A0D09A02C"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9159
Expires: Wed, 30 Nov 2022 21:09:43 GMT
Date: Wed, 30 Nov 2022 18:37:04 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F250668cd-c9db-4014-b576-3aaad4eb9150.jpeg
34.120.237.76200 OK 5.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F250668cd-c9db-4014-b576-3aaad4eb9150.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 59baec8db5ced0210ab766ea5636a5fd
f7cf3a0f89751a02fbcf8d21f505f24a74e8b30b
33ff55891f18c22970804f1b8b2ba6821ddfd7426b01486410bd43f2b4295a8d
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F250668cd-c9db-4014-b576-3aaad4eb9150.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5785
x-amzn-requestid: ee77265b-8e90-4035-8ef1-92a2d26aaefa
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cYgDaHdWoAMFqmw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63867a15-0d10d74030e7aee74804b654;Sampled=0
x-amzn-remapped-date: Tue, 29 Nov 2022 21:31:01 GMT
x-amz-cf-pop: SFO5-P2, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: GydenCzPtpFdVLqN4ssiZ4dKN48WGneS3mwzEdDE81pobtLznfC4VQ==
via: 1.1 38eecd3ca21bf068d69a2f9cfe668d14.cloudfront.net (CloudFront), 1.1 7e87179efaa9e3c316bd3d3a74cfded8.cloudfront.net (CloudFront), 1.1 google
date: Tue, 29 Nov 2022 22:07:59 GMT
age: 73745
etag: "f7cf3a0f89751a02fbcf8d21f505f24a74e8b30b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F13e1db4e-7108-464a-85b6-24ac0c4609f9.webp
34.120.237.76200 OK 9.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F13e1db4e-7108-464a-85b6-24ac0c4609f9.webp
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash bbe350ea797a0fec5a19a450fc5de4b4
2f3a39a528d3b759060203931de33c12303592e1
4d661dac2e19e07ae15d0f8cf00bd268c6c2defb2f5e4de38fcb6e7031dfd605
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F13e1db4e-7108-464a-85b6-24ac0c4609f9.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9330
x-amzn-requestid: 3fad352d-7664-43e0-9395-e840f671ca61
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cYgFQFIdoAMFSmw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63867a21-5e9847852f8435231d401fe6;Sampled=0
x-amzn-remapped-date: Tue, 29 Nov 2022 21:31:13 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: mCEtSOenWKxay4vNy5mN9cexxXKXKt7TMuLaLw-M86tLKwQ2MwuxPg==
via: 1.1 ddd913fbbe7367d44af4ac06097e7a2a.cloudfront.net (CloudFront), 1.1 12a392bc3a7281f8d5d4591bfadc41fc.cloudfront.net (CloudFront), 1.1 google
date: Tue, 29 Nov 2022 22:11:32 GMT
age: 73532
etag: "2f3a39a528d3b759060203931de33c12303592e1"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1c32283b-8309-408e-85df-cad97da6bc80.png
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1c32283b-8309-408e-85df-cad97da6bc80.png
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 03014221d7f49b50ffc2d1b0a0e75457
772d86ad983042a728ee3490630a9cf1134ad0dd
81fb954fa569955907952987e9d8efd1dac80e0e4a682826abf3c5d90eb31771
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1c32283b-8309-408e-85df-cad97da6bc80.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10176
x-amzn-requestid: c2231955-5c78-4073-8399-b8b90f1add78
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cMo3oHpSoAMF5Qw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6381bb63-55a1cb004ac73c8b02f2fb8d;Sampled=0
x-amzn-remapped-date: Sat, 26 Nov 2022 07:08:19 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 7LVxajVjJ1N2W-jxCmKpYHg1rS1MbrRnAVc15QmM0iH94CH1yJnR0w==
via: 1.1 28a7186077f9b5270d98dd053f31303e.cloudfront.net (CloudFront), 1.1 caf6806821bc479b28a6f1ce3043b8a6.cloudfront.net (CloudFront), 1.1 google
date: Wed, 30 Nov 2022 04:53:01 GMT
age: 49443
etag: "772d86ad983042a728ee3490630a9cf1134ad0dd"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff2730750-552d-4852-8ce1-503874565f75.jpeg
34.120.237.76200 OK 9.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff2730750-552d-4852-8ce1-503874565f75.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 05196ec43964cf559caa0c0279148d62
6170d6776615503e3e29f86783febc3e3e78ca66
47f3a5cde661987e3496ce110a0170b10087dd9ba8d4fd691c4830587ba3fa3f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff2730750-552d-4852-8ce1-503874565f75.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9051
x-amzn-requestid: 1032dd9c-a15e-4e8a-9c81-07419e8caf67
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cYhGvEMNIAMFaKw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63867bc4-1005c20a33320dbf6567ca31;Sampled=0
x-amzn-remapped-date: Tue, 29 Nov 2022 21:38:12 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: rtfl896JX35oFFEVmqyH9Nm62iSY6rqwzkLwZMcM45p_ySF6J2QwEQ==
via: 1.1 4d7fa73f804f1c93f20cfc24c4b1266e.cloudfront.net (CloudFront), 1.1 57a21088b36c69a83578b5a5579df58e.cloudfront.net (CloudFront), 1.1 google
date: Tue, 29 Nov 2022 21:44:47 GMT
age: 75137
etag: "6170d6776615503e3e29f86783febc3e3e78ca66"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd170538c-f8cf-4acb-ba33-2ead00b9db73.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd170538c-f8cf-4acb-ba33-2ead00b9db73.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 777ce44582c70bf01a31da4cab366f36
57e1d34f146d5ccd9943aa97bcc3158f7103bb07
fbdc8f65ae74dc13b7aafec464f08fdc9902af519946200ec52432ac3ca55982
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd170538c-f8cf-4acb-ba33-2ead00b9db73.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10958
x-amzn-requestid: abfea5b0-58f5-49e1-b78e-7cf456d03cb3
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cYgFHF9oIAMF5lg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63867a20-5ab719292d440d083b07a478;Sampled=0
x-amzn-remapped-date: Tue, 29 Nov 2022 21:31:12 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: e4GuUolL0WIMXvnF7BZ80j-dMMSILN2gd-1mqFwNns-zCUBsJa8iHQ==
via: 1.1 8f22423015641505b8c857a37450d6c0.cloudfront.net (CloudFront), 1.1 a3bd0eb50c22e4d5fbda56a30b96002c.cloudfront.net (CloudFront), 1.1 google
date: Tue, 29 Nov 2022 21:43:04 GMT
age: 75240
etag: "57e1d34f146d5ccd9943aa97bcc3158f7103bb07"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F67bb1888-5971-4b4a-923b-dc9d4050182b.jpeg
34.120.237.76200 OK 7.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F67bb1888-5971-4b4a-923b-dc9d4050182b.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash e00769bd1391b8f4f5b8ab128a825355
e4ddf955e8ac1986045ed55880c43c69e588a021
81ca4d20c28fed8fd3135515daadc1fdbfb4198535d7c46021b418b8b98e59a5
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F67bb1888-5971-4b4a-923b-dc9d4050182b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7298
x-amzn-requestid: 381e55bb-876b-46ad-84b6-1ddf9f876f56
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cYgDcE3poAMFaAA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63867a15-7c12394600900afc7281e858;Sampled=0
x-amzn-remapped-date: Tue, 29 Nov 2022 21:31:01 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 7mRG070F4NZnewfowUhVhMerJaGjJd4G6O1tvTPiKyvTAzq-Y16-jw==
via: 1.1 470e3fe246a660ba6ace67a79f78d246.cloudfront.net (CloudFront), 1.1 b2f9564ebf9c745cc2ceae96d434977e.cloudfront.net (CloudFront), 1.1 google
date: Tue, 29 Nov 2022 21:56:51 GMT
etag: "e4ddf955e8ac1986045ed55880c43c69e588a021"
content-type: image/jpeg
age: 74413
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 598cdd8d90e16e737a61c7481d9be400
a50a0668d9c63fc83aa8ef1d6bd67cc57aca2ce9
2773f04e42fe215a9cc544018be282eb28434ad2c091853cc50e247ab11eb315
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=137146
Content-Type: application/ocsp-response
Date: Wed, 30 Nov 2022 18:37:05 GMT
Etag: "6387178b-1d7"
Expires: Fri, 02 Dec 2022 08:42:51 GMT
Last-Modified: Wed, 30 Nov 2022 08:42:51 GMT
Server: nginx
Content-Length: 471
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash b64c8a7f1e9d4cb019ee4ea089710921
6e298681df130e8720f09168528040e4165434d6
0d8c8eeb26713f8f158b0602f67a06b7baa452936cf8af5b98ca0f02cd815eec
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 30 Nov 2022 18:37:06 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Mon, 28 Nov 2022 23:37:43 GMT
Expires: Mon, 05 Dec 2022 23:37:42 GMT
Etag: "6e298681df130e8720f09168528040e4165434d6"
Cache-Control: max-age=449436,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7725b13f490eb4ee-OSL
accdn.lpsnmedia.net/api/account/11478817/configuration/setting/accountproperties/?cb=lpCb47623x84001
178.249.97.99200 OK 0 B URL HTTP/2 accdn.lpsnmedia.net/api/account/11478817/configuration/setting/accountproperties/?cb=lpCb47623x84001
IP 178.249.97.99:0
GET /api/account/11478817/configuration/setting/accountproperties/?cb=lpCb47623x84001 HTTP/1.1
Host: accdn.lpsnmedia.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://agileprofessional.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 30 Nov 2022 18:37:03 GMT
content-type: application/javascript
set-cookie: ADRUM_BTa=R:32|g:ed64de01-22c5-47bd-9685-005ab8d0420a; Max-Age=30; Expires=Wed, 30-Nov-2022 18:37:33 GMT; Path=/
ADRUM_BTa=R:32|g:ed64de01-22c5-47bd-9685-005ab8d0420a|n:livepersonltd_93a08561-b03e-475e-b29b-9ad4aa207daf; Max-Age=30; Expires=Wed, 30-Nov-2022 18:37:33 GMT; Path=/
SameSite=None; Max-Age=30; Expires=Wed, 30-Nov-2022 18:37:33 GMT; Path=/; Secure
ADRUM_BT1=R:32|i:2241648; Max-Age=30; Expires=Wed, 30-Nov-2022 18:37:33 GMT; Path=/
ADRUM_BT1=R:32|i:2241648|e:2; Max-Age=30; Expires=Wed, 30-Nov-2022 18:37:33 GMT; Path=/
vary: Accept
expires: Wed, 30 Nov 2022 18:38:03 GMT
x-envoy-upstream-service-time: 1
server: ws
strict-transport-security: max-age=99999999999; includeSubDomains
access-control-allow-methods: GET, POST, PATCH
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Authorization, X-HTTP-Method-Override, LP-DOMAIN-REFERER, LP-URL, ETag, ac-revision, X-LP-Last-Modified, If-Match, Authentication-Method, Credit-Card-Ref, Automation-Secret, Email-Token
access-control-expose-headers: X-Requested-With, X-HTTP-Method-Override, LP-DOMAIN-REFERER, LP-URL, ETag, ac-revision, X-LP-Last-Modified, If-Match, Authentication-Method, Credit-Card-Ref, Automation-Secret, Email-Token, x-lp-host, Lp-Req-Time, date, x-application-context, strict-transport-security, x-content-type-options, x-download-options, x-xss-protection, x-cache-status, x-amz-id-2, x-amz-request-id, expires, last-modified, set-cookie, content-security-policy, x-frame-options
access-control-allow-credentials: true
x-cache-status: EXPIRED
x-content-type-options: nosniff
content-encoding: gzip
X-Firefox-Spdy: h2
agileprofessional.com.br/static/f67c327263eti209967cda713cd843baa
172.67.222.251500 Internal Server Error 0 B URL HTTP/2 agileprofessional.com.br/static/f67c327263eti209967cda713cd843baa
IP 172.67.222.251:0
Analyzer Verdict Alert fortinet Phishing
POST /static/f67c327263eti209967cda713cd843baa HTTP/1.1
Host: agileprofessional.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 1018
Origin: http://agileprofessional.com.br
Connection: keep-alive
Referer: http://agileprofessional.com.br/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 500 Internal Server Error
date: Wed, 30 Nov 2022 18:37:03 GMT
content-type: text/html; charset=UTF-8
x-powered-by: PHP/7.4.28
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=69yd0ase5hQZJNx9fR0aHtOz8NutDhi8l5gurkYAUGt01%2BfJuO0D4j56L7cTb%2Bi%2FVlLHO9o1E7KR1t13h%2Bb6ereYYSorzEPF7EKC9jkuuj4tcxCNfdVEzCsIbXE%2BofnPKrANLVHkh7SnB94%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7725b1313a23b4ee-OSL
X-Firefox-Spdy: h2
agileprofessional.com.br/wp-content/auth/a2b30b3ceecf4682f6334cd0731514cb/index_files/img-BecomeAMember-1d62888b4b662af9142e3c385f423f32.jpg
172.67.222.251200 OK 0 B URL HTTP/1.1 agileprofessional.com.br/wp-content/auth/a2b30b3ceecf4682f6334cd0731514cb/index_files/img-BecomeAMember-1d62888b4b662af9142e3c385f423f32.jpg
IP 172.67.222.251:0
GET /wp-content/auth/a2b30b3ceecf4682f6334cd0731514cb/index_files/img-BecomeAMember-1d62888b4b662af9142e3c385f423f32.jpg HTTP/1.1
Host: agileprofessional.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://agileprofessional.com.br/wp-content/auth/a2b30b3ceecf4682f6334cd0731514cb/
HTTP/1.1 200 OK
Date: Wed, 30 Nov 2022 18:37:02 GMT
Content-Type: image/jpeg
Content-Length: 185745
Connection: keep-alive
cache-control: public, max-age=604800
expires: Wed, 07 Dec 2022 18:36:39 GMT
etag: "2d591-638468ff-531b575;;;"
last-modified: Mon, 28 Nov 2022 07:53:35 GMT
CF-Cache-Status: HIT
Age: 21
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Yo0GLoxyer10W7wXNfeQOmkUjUuUzDTe5wPKY%2FTCLS4tXR%2BIK2e1CWyBpkhiXjKz6Jok7YG%2FmJWwM88joQx5q4rwyH1ITEeHupbGOeydHQGselQua7gTXx3%2F5NyN9t5KPondZnu4F08gxq8%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7725b12c5d9fb52d-OSL
alt-svc: h2=":443"; ma=60
lptag.liveperson.net/lptag/api/account/11478817/configuration/applications/taglets/.jsonp?v=2.0&df=0&b=3
178.249.97.23200 OK 0 B URL HTTP/2 lptag.liveperson.net/lptag/api/account/11478817/configuration/applications/taglets/.jsonp?v=2.0&df=0&b=3
IP 178.249.97.23:0
GET /lptag/api/account/11478817/configuration/applications/taglets/.jsonp?v=2.0&df=0&b=3 HTTP/1.1
Host: lptag.liveperson.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://agileprofessional.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 30 Nov 2022 18:37:04 GMT
content-type: application/x-javascript
cache-control: public, max-age=630
server: ws
strict-transport-security: max-age=300; includeSubDomains
access-control-allow-methods: GET, POST, PATCH
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Authorization, X-HTTP-Method-Override, LP-DOMAIN-REFERER, LP-URL, ETag, ac-revision, X-LP-Last-Modified, If-Match, Authentication-Method, Credit-Card-Ref, Automation-Secret, Email-Token
access-control-expose-headers: X-Requested-With, X-HTTP-Method-Override, LP-DOMAIN-REFERER, LP-URL, ETag, ac-revision, X-LP-Last-Modified, If-Match, Authentication-Method, Credit-Card-Ref, Automation-Secret, Email-Token, x-lp-host, Lp-Req-Time, date, x-application-context, strict-transport-security, x-content-type-options, x-download-options, x-xss-protection, x-cache-status, x-amz-id-2, x-amz-request-id, expires, last-modified, set-cookie, content-security-policy, x-frame-options
access-control-allow-credentials: true
x-cache-status: MISS
x-content-type-options: nosniff
content-encoding: gzip
X-Firefox-Spdy: h2
liveengage.navyfederal.org/le_secure_storage/3.11.0.2-release_5036/storage.secure.min.html?loc=http%3A%2F%2Fagileprofessional.com.br&site=11478817&env=prod
178.249.101.98200 OK 0 B URL HTTP/2 liveengage.navyfederal.org/le_secure_storage/3.11.0.2-release_5036/storage.secure.min.html?loc=http%3A%2F%2Fagileprofessional.com.br&site=11478817&env=prod
IP 178.249.101.98:0
GET /le_secure_storage/3.11.0.2-release_5036/storage.secure.min.html?loc=http%3A%2F%2Fagileprofessional.com.br&site=11478817&env=prod HTTP/1.1
Host: liveengage.navyfederal.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://agileprofessional.com.br/
Cookie: akaalb_my_navyfederal_ALB=~op=my_100_wch:my_prdw|~rv=93~m=my_prdw:0|~os=ddcfe9c18a053d3068d757a21af73146~id=a28e4fcdb80547d87a95ab695101a671
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 30 Nov 2022 18:37:05 GMT
content-type: text/html
last-modified: Tue, 29 Sep 2020 18:27:10 GMT
content-encoding: gzip
server: ws
vary: Origin
access-control-allow-methods: GET, POST, PATCH
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Authorization, X-HTTP-Method-Override, LP-DOMAIN-REFERER, LP-URL, ETag, ac-revision, X-LP-Last-Modified, If-Match, Authentication-Method, Credit-Card-Ref, Automation-Secret, Email-Token, x-lp-state-rev
access-control-expose-headers: X-Requested-With, X-HTTP-Method-Override, LP-DOMAIN-REFERER, LP-URL, ETag, ac-revision, X-LP-Last-Modified, If-Match, Authentication-Method, Credit-Card-Ref, Automation-Secret, Email-Token, x-lp-host, Lp-Req-Time, date, x-application-context, strict-transport-security, x-content-type-options, x-download-options, x-xss-protection, x-cache-status, x-amz-id-2, x-amz-request-id, expires, last-modified, set-cookie, content-security-policy, x-frame-options, x-lp-state-rev
access-control-allow-credentials: true
expires: Thu, 30 Nov 2023 18:37:05 GMT
cache-control: max-age=31536000
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains
x-cache-status: HIT
X-Firefox-Spdy: h2