vk.sv/ISfxSu
172.67.171.70301 Moved Permanently 0 B IP 172.67.171.70:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert mnemonic_dns Sinkholed
GET /ISfxSu HTTP/1.1
Host: vk.sv
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Tue, 29 Nov 2022 00:38:15 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=3600
Expires: Tue, 29 Nov 2022 01:38:15 GMT
Location: https://vk.sv/ISfxSu
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=4hSM0RBPGBu7uPI0putgUrzn7m2oDASqgP2vgrFQbClSJzL761dMKVYg%2B5WrFl37UfEUz7pzrPsyoZd2u7I2MDDpNO4hSEX0ZAM2o%2Ba3z1EdHn0u3n1Ydw%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7717478d2ad9b506-OSL
alt-svc: h2=":443"; ma=60
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 2d2e7649ce9e9ba6fc8b68aa89352e3c
0153d1d3d830a457043e16bb40d48a0b9ddef4b8
8eed57c91b42ef7b2d5eff1309e306e23e13c3de21219af24a693cbf3e8977fc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "8EED57C91B42EF7B2D5EFF1309E306E23E13C3DE21219AF24A693CBF3E8977FC"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14265
Expires: Tue, 29 Nov 2022 04:36:01 GMT
Date: Tue, 29 Nov 2022 00:38:16 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 3b56944f0e5716fd4fad2ec18994d4be
61cafa4de31ba960d1145ec37272f6f6b6944e0c
4fd46b0b6a2ea24f5ce175985a3933c04b4c01bd3e32bee2e50a61a65eef7af4
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4FD46B0B6A2EA24F5CE175985A3933C04B4C01BD3E32BEE2E50A61A65EEF7AF4"
Last-Modified: Sat, 26 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3080
Expires: Tue, 29 Nov 2022 01:29:36 GMT
Date: Tue, 29 Nov 2022 00:38:16 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 9408cc0694fcbea57966c3a3ba906092
fddcee1fdcf3209298e41a4b1b5560357fa165f0
6ef7120d9463f56e3ddfadd5766d02da8523f34061b13bdba54bf9ab72a1e979
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5146
Cache-Control: max-age=127131
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 00:38:16 GMT
Etag: "63848df9-1d7"
Expires: Wed, 30 Nov 2022 11:57:07 GMT
Last-Modified: Mon, 28 Nov 2022 10:31:21 GMT
Server: ECS (ska/F70C)
X-Cache: HIT
Content-Length: 471
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 9ebddc2b260d081ebbefee47c037cb28
492bad62a7ca6a74738921ef5ae6f0be5edebf39
74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5
GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: piytIwf8rpVa0dsmYPwdw3q00gB12L5jA6RcuQl+avW4SYjWdZ8F4BLtNB22ZQF8Z2t+t4ut5jw=
x-amz-request-id: 0P2YPES165Z8SN60
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Mon, 28 Nov 2022 23:45:13 GMT
age: 3183
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/
34.102.187.140200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 14cd9a0afb6ba9a763651d5112760d1e
75d7b104ab9ab11fbb73c3f348b43b0119b5adfa
4e32a117106be587ffcd63239c16a8117eb7840830d4c9decf6527761967532e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Alert, Retry-After, Backoff, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Tue, 29 Nov 2022 00:17:50 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 1226
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash 00f558f87ce1c967594c3f819ae5d221
83d68bbe8360cf8ee5713db49cbf61eaf513f9b4
1e71770c642849baf899ef5af1f292f1f7384daaac89e5f49cbb724443402fce
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=99627
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 00:38:16 GMT
Etag: "638436a3-116"
Expires: Wed, 30 Nov 2022 04:18:43 GMT
Last-Modified: Mon, 28 Nov 2022 04:18:43 GMT
Server: nginx
Content-Length: 278
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 29 Nov 2022 00:38:16 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
vk.sv/ISfxSu
104.21.29.24302 Found 0 B IP 104.21.29.24:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert mnemonic_dns Sinkholed
GET /ISfxSu HTTP/1.1
Host: vk.sv
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 302 Found
date: Tue, 29 Nov 2022 00:38:16 GMT
content-length: 0
location: https://byashi.com.br/jss
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=1QMVuG9P0jG%2Bj5vM6JOriZ0eqFfgRHGAFIWa2c%2B4OjUE0Ss9eSajSFzvsRXfPYZzb7AIJDI8MPPOdPsVXuiGwulYIe2J8y6OPGRVE4%2BaCHRlrv2rGokDJQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7717478f8edafabc-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash 00f558f87ce1c967594c3f819ae5d221
83d68bbe8360cf8ee5713db49cbf61eaf513f9b4
1e71770c642849baf899ef5af1f292f1f7384daaac89e5f49cbb724443402fce
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=99627
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 00:38:16 GMT
Etag: "638436a3-116"
Expires: Wed, 30 Nov 2022 04:18:43 GMT
Last-Modified: Mon, 28 Nov 2022 04:18:43 GMT
Server: nginx
Content-Length: 278
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
34.102.187.140200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, ETag, Alert, Expires, Cache-Control, Backoff, Content-Length, Content-Type, Pragma, Last-Modified
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Tue, 29 Nov 2022 00:08:55 GMT
cache-control: public,max-age=3600
age: 1761
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 7ab2ef968cb6a3078f4b9cb2dda813d4
e669116047ca058a2c1b2999ff0ea8682719162c
6ddecf0b21c44f3851da8efeb6ecdc6c8e9b83d7681153c31952b4ec8c23c940
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5168
Cache-Control: max-age=122087
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 00:38:16 GMT
Etag: "63847a2f-1d7"
Expires: Wed, 30 Nov 2022 10:33:03 GMT
Last-Modified: Mon, 28 Nov 2022 09:06:55 GMT
Server: ECS (ska/F70C)
X-Cache: HIT
Content-Length: 471
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash df966880f91f9fb76435aedfd1f03171
e990da2a88a38872d89e14b71b2b408dbe72c4ef
b0ef71c31ee2d1f3324df8e8f300742f681268630e7f3bd2ae636238caca1aea
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B0EF71C31EE2D1F3324DF8E8F300742F681268630E7F3BD2AE636238CACA1AEA"
Last-Modified: Mon, 28 Nov 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=19076
Expires: Tue, 29 Nov 2022 05:56:12 GMT
Date: Tue, 29 Nov 2022 00:38:16 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 74b3c4b5d48d6555c0534c8480acbb5b
5011274603eec2b474d78658526c4b133ce3ec50
db0d8db80dfa0bd1db365901ba295bfc15194351e6d54069eb58e77b63ad84d5
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DB0D8DB80DFA0BD1DB365901BA295BFC15194351E6D54069EB58E77B63AD84D5"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16570
Expires: Tue, 29 Nov 2022 05:14:27 GMT
Date: Tue, 29 Nov 2022 00:38:17 GMT
Connection: keep-alive
push.services.mozilla.com/
100.20.30.105101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 100.20.30.105:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: XJ8Npt7sqEZFPG+TBDvkjA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: G3oNPqcyU32GPtpOYegmHciYrv0=
byashi.com.br/jss
192.185.210.37301 Moved Permanently 234 B IP 192.185.210.37:0
ASN #46606 UNIFIEDLAYER-AS-1
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 855c86c26b12a8265f4f9fcff1ea1074
316a30002472deee7237c6acaaaa4c16cf27bfda
876ba5434af76e570979f298c24cbabe32e6e7dd695b73c9d0e01d7f6f7fb7a9
Analyzer Verdict Alert fortinet Phishing
GET /jss HTTP/1.1
Host: byashi.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 301 Moved Permanently
location: https://byashi.com.br/jss/
content-length: 234
content-type: text/html; charset=iso-8859-1
date: Tue, 29 Nov 2022 00:38:17 GMT
server: Apache
X-Firefox-Spdy: h2
byashi.com.br/jss/
192.185.210.37302 Found 0 B IP 192.185.210.37:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Phishing
GET /jss/ HTTP/1.1
Host: byashi.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
TE: trailers
HTTP/2 302 Found
location: login.php?&sessionid=35b0bce9d250429df012c0426f88d0bd&securessl=true
content-length: 0
content-type: text/html; charset=UTF-8
date: Tue, 29 Nov 2022 00:38:17 GMT
server: Apache
X-Firefox-Spdy: h2
byashi.com.br/jss/login.php?&sessionid=35b0bce9d250429df012c0426f88d0bd&securessl=true
192.185.210.37200 OK 12 kB URL HTTP/2 byashi.com.br/jss/login.php?&sessionid=35b0bce9d250429df012c0426f88d0bd&securessl=true
IP 192.185.210.37:0
ASN #46606 UNIFIEDLAYER-AS-1
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (2096)
Hash 93410302c25ed067d10c7b81d20885c0
307c62393ab388f23c62e6f86e5cdde427f0ee6d
47d834a126c2136527a62a871c1a2281c8091038c3e94fc8e7e82d54f3cbe6a7
GET /jss/login.php?&sessionid=35b0bce9d250429df012c0426f88d0bd&securessl=true HTTP/1.1
Host: byashi.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
content-length: 11465
content-type: text/html; charset=UTF-8
date: Tue, 29 Nov 2022 00:38:17 GMT
server: Apache
X-Firefox-Spdy: h2
byashi.com.br/jss/login_files/MaskedPassword.js
192.185.210.37200 OK 6.8 kB URL HTTP/2 byashi.com.br/jss/login_files/MaskedPassword.js
IP 192.185.210.37:0
ASN #46606 UNIFIEDLAYER-AS-1
File type Unicode text, UTF-8 text, with CRLF line terminators
Hash c8789a29d1e465c1e33956be5c9e5c99
5029c64bbd35cbf402e324e4a47d81f28b727e7e
26fe2ab21f3ef6555670e1cc34877f43ae367e3809e2e67e8e7b2390564e6885
Analyzer Verdict Alert fortinet Phishing
GET /jss/login_files/MaskedPassword.js HTTP/1.1
Host: byashi.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://byashi.com.br/jss/login.php?&sessionid=35b0bce9d250429df012c0426f88d0bd&securessl=true
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 16 Dec 2017 10:46:12 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 6833
content-type: application/javascript
date: Tue, 29 Nov 2022 00:38:17 GMT
server: Apache
X-Firefox-Spdy: h2
byashi.com.br/jss/login_files/socialMediaBar_alt.css
192.185.210.37200 OK 2.6 kB URL HTTP/2 byashi.com.br/jss/login_files/socialMediaBar_alt.css
IP 192.185.210.37:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (11082), with no line terminators
Hash 18851df041b876d7b69942e55313299c
bbdf602e1b82bbea202e21a8cfdc2d7feaad8145
4de90906158ed0d21fc658617df175a0b7f652c24d8f71c7fcc3c861c2a898e2
GET /jss/login_files/socialMediaBar_alt.css HTTP/1.1
Host: byashi.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://byashi.com.br/jss/login.php?&sessionid=35b0bce9d250429df012c0426f88d0bd&securessl=true
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 03 Apr 2018 03:06:54 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 2642
content-type: text/css
date: Tue, 29 Nov 2022 00:38:17 GMT
server: Apache
X-Firefox-Spdy: h2
byashi.com.br/jss/login_files/prodPc_thumb_catIconFlooding.png
192.185.210.37200 OK 4.2 kB URL HTTP/2 byashi.com.br/jss/login_files/prodPc_thumb_catIconFlooding.png
IP 192.185.210.37:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 33 x 33, 8-bit/color RGBA, non-interlaced\012- data
Hash 5bb7a11fd18ec85fede89708ff8e54c2
be0f75186c9290c8fe78f1a15aefb3e3da6f82b7
75928dae3fb4a6556234e38b37d76bc0054adaf87b01eee1780f37e34aa1176f
GET /jss/login_files/prodPc_thumb_catIconFlooding.png HTTP/1.1
Host: byashi.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://byashi.com.br/jss/login.php?&sessionid=35b0bce9d250429df012c0426f88d0bd&securessl=true
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 03 Apr 2018 02:50:24 GMT
accept-ranges: bytes
content-length: 4245
content-type: image/png
date: Tue, 29 Nov 2022 00:38:17 GMT
server: Apache
X-Firefox-Spdy: h2
byashi.com.br/jss/login_files/enterprise_nav_globalnav_usaalogo.svg
192.185.210.37200 OK 11 kB URL HTTP/2 byashi.com.br/jss/login_files/enterprise_nav_globalnav_usaalogo.svg
IP 192.185.210.37:0
ASN #46606 UNIFIEDLAYER-AS-1
File type SVG Scalable Vector Graphics image\012- SVG XML document\012- XML 1.0 document text\012- SVG XML document\012- XML document text\012- exported SGML document, ASCII text
Hash 6fd96a29c53b5ce705a27b59aea154e5
0d1e25a57f20865e9c338c7aed7e36df1ff08bc3
d1886043ac668fcd2ccb7019ba9b35ef16f7d0c3db9d9dedf3862b036a4ae2d3
Analyzer Verdict Alert fortinet Phishing
GET /jss/login_files/enterprise_nav_globalnav_usaalogo.svg HTTP/1.1
Host: byashi.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://byashi.com.br/jss/login.php?&sessionid=35b0bce9d250429df012c0426f88d0bd&securessl=true
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 03 Apr 2018 02:50:24 GMT
accept-ranges: bytes
content-length: 10902
content-type: image/svg+xml
date: Tue, 29 Nov 2022 00:38:17 GMT
server: Apache
X-Firefox-Spdy: h2
byashi.com.br/jss/login_files/cat_banner.css
192.185.210.37200 OK 2.7 kB URL HTTP/2 byashi.com.br/jss/login_files/cat_banner.css
IP 192.185.210.37:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (10787), with no line terminators
Hash 6333d0192b688673f56dbea14086793f
ae37ac5c56dea56010796b2492aa7bef798d0a0e
8bc2442886a35e69af5f8180f6d0f5e1f3fdaaaead59e1173ceed7e8dfe94d26
GET /jss/login_files/cat_banner.css HTTP/1.1
Host: byashi.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://byashi.com.br/jss/login.php?&sessionid=35b0bce9d250429df012c0426f88d0bd&securessl=true
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 03 Apr 2018 02:50:24 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 2748
content-type: text/css
date: Tue, 29 Nov 2022 00:38:17 GMT
server: Apache
X-Firefox-Spdy: h2
byashi.com.br/jss/login_files/prodPc_thumb_catIconHurricane.png
192.185.210.37200 OK 3.8 kB URL HTTP/2 byashi.com.br/jss/login_files/prodPc_thumb_catIconHurricane.png
IP 192.185.210.37:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 33 x 33, 8-bit/color RGBA, non-interlaced\012- data
Hash b8acabb412e622c0810de9006776e765
62c2571b60ab3ef33b1bf701912b22447945deec
9da63b17283f25ec8e50a536810daff6474d26a9c9d65f2cf27b5cec214ef5de
GET /jss/login_files/prodPc_thumb_catIconHurricane.png HTTP/1.1
Host: byashi.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://byashi.com.br/jss/login.php?&sessionid=35b0bce9d250429df012c0426f88d0bd&securessl=true
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 03 Apr 2018 02:50:24 GMT
accept-ranges: bytes
content-length: 3834
content-type: image/png
date: Tue, 29 Nov 2022 00:38:17 GMT
server: Apache
X-Firefox-Spdy: h2
byashi.com.br/jss/login_files/prodPc_thumb_catIconEarthquake.png
192.185.210.37200 OK 2.4 kB URL HTTP/2 byashi.com.br/jss/login_files/prodPc_thumb_catIconEarthquake.png
IP 192.185.210.37:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 33 x 33, 8-bit/color RGBA, non-interlaced\012- data
Hash 351acfbea2c6ace503bd63e030202d9c
17adfa58521d1edf98a6ec9f91ada0e76af3300b
ec8a1c021ae83316e075859df64364759ff0932c70ea82c7698bb634a312f3b5
GET /jss/login_files/prodPc_thumb_catIconEarthquake.png HTTP/1.1
Host: byashi.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://byashi.com.br/jss/login.php?&sessionid=35b0bce9d250429df012c0426f88d0bd&securessl=true
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 03 Apr 2018 02:50:24 GMT
accept-ranges: bytes
content-length: 2433
content-type: image/png
date: Tue, 29 Nov 2022 00:38:17 GMT
server: Apache
X-Firefox-Spdy: h2
byashi.com.br/jss/login_files/exception_landing_aggregate.css
192.185.210.37200 OK 9.8 kB URL HTTP/2 byashi.com.br/jss/login_files/exception_landing_aggregate.css
IP 192.185.210.37:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (32210), with no line terminators
Hash 4f2f130f52f24e7349a9f71573826a9e
6e70a38326a91e88b59020ca85f5cab0fe87b993
c83fb88d70ea87dc1effa9e36b1763843d4f27ee5498394001b561551ab27f23
GET /jss/login_files/exception_landing_aggregate.css HTTP/1.1
Host: byashi.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://byashi.com.br/jss/login.php?&sessionid=35b0bce9d250429df012c0426f88d0bd&securessl=true
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 03 Apr 2018 02:50:24 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 9786
content-type: text/css
date: Tue, 29 Nov 2022 00:38:17 GMT
server: Apache
X-Firefox-Spdy: h2
byashi.com.br/jss/login_files/prodPc_thumb_catIconSnowstorm.png
192.185.210.37200 OK 4.4 kB URL HTTP/2 byashi.com.br/jss/login_files/prodPc_thumb_catIconSnowstorm.png
IP 192.185.210.37:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 33 x 33, 8-bit/color RGBA, non-interlaced\012- data
Hash b0b033585faa170be4fdde0ade5a58b2
7352610b5d16721efef1beedf7d6754cb97b2ee3
2055e31d6cf01947897f6d64779e62d9a0519fadac47f90d7bd11437cd967723
GET /jss/login_files/prodPc_thumb_catIconSnowstorm.png HTTP/1.1
Host: byashi.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://byashi.com.br/jss/login.php?&sessionid=35b0bce9d250429df012c0426f88d0bd&securessl=true
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 03 Apr 2018 02:50:24 GMT
accept-ranges: bytes
content-length: 4391
content-type: image/png
date: Tue, 29 Nov 2022 00:38:17 GMT
server: Apache
X-Firefox-Spdy: h2
byashi.com.br/jss/login_files/v3-wcm-common.css
192.185.210.37200 OK 1.4 kB URL HTTP/2 byashi.com.br/jss/login_files/v3-wcm-common.css
IP 192.185.210.37:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (3414), with no line terminators
Hash e5a7be7391dad653b0a1c3c465d63331
10a831904ae8feeb920bbf143bc87a5f9508e028
d595a447455044c34c867bff4b50499f427367dbb72fb6051fa91fd2046dc51e
GET /jss/login_files/v3-wcm-common.css HTTP/1.1
Host: byashi.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://byashi.com.br/jss/login.php?&sessionid=35b0bce9d250429df012c0426f88d0bd&securessl=true
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 03 Apr 2018 03:14:24 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 1352
content-type: text/css
date: Tue, 29 Nov 2022 00:38:18 GMT
server: Apache
X-Firefox-Spdy: h2
byashi.com.br/jss/login_files/v3-normalize-ps-template.css
192.185.210.37200 OK 586 B URL HTTP/2 byashi.com.br/jss/login_files/v3-normalize-ps-template.css
IP 192.185.210.37:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (1074), with no line terminators
Hash 1ce2065b0828b1e54b0dddcf982c0df3
d3dd04b1f9edc2d29a37f9ae680eea99425784a6
d6dbbd836c774582b14fff789bfc92594397b79a5e30a73fc8cfde8e23b746fe
GET /jss/login_files/v3-normalize-ps-template.css HTTP/1.1
Host: byashi.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://byashi.com.br/jss/login.php?&sessionid=35b0bce9d250429df012c0426f88d0bd&securessl=true
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 03 Apr 2018 02:50:24 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 586
content-type: text/css
date: Tue, 29 Nov 2022 00:38:18 GMT
server: Apache
X-Firefox-Spdy: h2
byashi.com.br/jss/login_files/prodPc_thumb_catIconWildfire.png
192.185.210.37200 OK 3.9 kB URL HTTP/2 byashi.com.br/jss/login_files/prodPc_thumb_catIconWildfire.png
IP 192.185.210.37:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 33 x 33, 8-bit/color RGBA, non-interlaced\012- data
Hash 1119b6dc58d645ed0cd0c003294a9edf
d23519ebbd0da56e91ba549c2660a9c7a81596cd
f99ebf59293dcd9103529732717462f05efc783427b4a9695da1d7e6ec446b22
GET /jss/login_files/prodPc_thumb_catIconWildfire.png HTTP/1.1
Host: byashi.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://byashi.com.br/jss/login.php?&sessionid=35b0bce9d250429df012c0426f88d0bd&securessl=true
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 03 Apr 2018 02:50:24 GMT
accept-ranges: bytes
content-length: 3905
content-type: image/png
date: Tue, 29 Nov 2022 00:38:18 GMT
server: Apache
X-Firefox-Spdy: h2
byashi.com.br/jss/login_files/icon-dollar-circle-100.svg
192.185.210.37200 OK 1.5 kB URL HTTP/2 byashi.com.br/jss/login_files/icon-dollar-circle-100.svg
IP 192.185.210.37:0
ASN #46606 UNIFIEDLAYER-AS-1
File type SVG Scalable Vector Graphics image\012- SVG XML document\012- XML 1.0 document text\012- SVG XML document\012- XML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash f34c880eb307aa0d22b197f2382782f0
751de7c71aceb234159c66c641a6897e05e5b516
954285e7584bf2cc1747d1227a9537f365007c4717fb732708f1245e8679695f
Analyzer Verdict Alert fortinet Phishing
GET /jss/login_files/icon-dollar-circle-100.svg HTTP/1.1
Host: byashi.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://byashi.com.br/jss/login.php?&sessionid=35b0bce9d250429df012c0426f88d0bd&securessl=true
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 03 Apr 2018 02:50:24 GMT
accept-ranges: bytes
content-length: 1476
content-type: image/svg+xml
date: Tue, 29 Nov 2022 00:38:18 GMT
server: Apache
X-Firefox-Spdy: h2
byashi.com.br/jss/login_files/prodPc_thumb_catIconTornado.png
192.185.210.37200 OK 3.6 kB URL HTTP/2 byashi.com.br/jss/login_files/prodPc_thumb_catIconTornado.png
IP 192.185.210.37:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 33 x 33, 8-bit/color RGBA, non-interlaced\012- data
Hash ad4c673f5c59e2b1cba356b646bc1af1
ae468600a84ff31ceaffe31820d0f52589d080b1
6f06555b461438ac44370b3bb1321a413f4727e4ee3bd24c668e8f26f5d2eeb9
GET /jss/login_files/prodPc_thumb_catIconTornado.png HTTP/1.1
Host: byashi.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://byashi.com.br/jss/login.php?&sessionid=35b0bce9d250429df012c0426f88d0bd&securessl=true
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 03 Apr 2018 02:50:24 GMT
accept-ranges: bytes
content-length: 3560
content-type: image/png
date: Tue, 29 Nov 2022 00:38:18 GMT
server: Apache
X-Firefox-Spdy: h2
byashi.com.br/jss/login_files/pub-home-brand-banner-flourish.svg
192.185.210.37200 OK 586 B URL HTTP/2 byashi.com.br/jss/login_files/pub-home-brand-banner-flourish.svg
IP 192.185.210.37:0
ASN #46606 UNIFIEDLAYER-AS-1
File type SVG Scalable Vector Graphics image\012- SVG XML document\012- XML 1.0 document text\012- SVG XML document\012- XML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash bcf08b4c2f94a593d44b1d546fc26e53
55b382397eb820339f9f7fb88f2ebccd6ce51fad
2e3986729f3b89c9a85cefc59080f487e6eea82cbf965549be957a402157751b
Analyzer Verdict Alert fortinet Phishing
GET /jss/login_files/pub-home-brand-banner-flourish.svg HTTP/1.1
Host: byashi.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://byashi.com.br/jss/login.php?&sessionid=35b0bce9d250429df012c0426f88d0bd&securessl=true
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 03 Apr 2018 02:50:24 GMT
accept-ranges: bytes
content-length: 586
content-type: image/svg+xml
date: Tue, 29 Nov 2022 00:38:18 GMT
server: Apache
X-Firefox-Spdy: h2
byashi.com.br/jss/login_files/SocMedIcon_facebook_v2.png
192.185.210.37200 OK 1.3 kB URL HTTP/2 byashi.com.br/jss/login_files/SocMedIcon_facebook_v2.png
IP 192.185.210.37:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 35 x 35, 8-bit/color RGBA, non-interlaced\012- data
Hash b92edde73a19bf66494978bec90968ff
3c783d2217ce302a5d916b24360743a6a50e4ec7
e9a681648676dcb7d958f77bed911c7a8a30dabe8ef0265b5ee894205c8aef60
GET /jss/login_files/SocMedIcon_facebook_v2.png HTTP/1.1
Host: byashi.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://byashi.com.br/jss/login.php?&sessionid=35b0bce9d250429df012c0426f88d0bd&securessl=true
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 03 Apr 2018 02:50:24 GMT
accept-ranges: bytes
content-length: 1304
content-type: image/png
date: Tue, 29 Nov 2022 00:38:18 GMT
server: Apache
X-Firefox-Spdy: h2
byashi.com.br/jss/login_files/icon-house-100.svg
192.185.210.37200 OK 942 B URL HTTP/2 byashi.com.br/jss/login_files/icon-house-100.svg
IP 192.185.210.37:0
ASN #46606 UNIFIEDLAYER-AS-1
File type SVG Scalable Vector Graphics image\012- SVG XML document\012- XML 1.0 document text\012- SVG XML document\012- XML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash adf624a91e9783ad36ae01f047612024
064a6f53f114346d970771d48d01c98ab6fc1254
7d75d05fce155dd2de68d3e0b2e4ee29a1d3a729d3a737faab3a2ed87af8a24c
Analyzer Verdict Alert fortinet Phishing
GET /jss/login_files/icon-house-100.svg HTTP/1.1
Host: byashi.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://byashi.com.br/jss/login.php?&sessionid=35b0bce9d250429df012c0426f88d0bd&securessl=true
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 03 Apr 2018 02:50:24 GMT
accept-ranges: bytes
content-length: 942
content-type: image/svg+xml
date: Tue, 29 Nov 2022 00:38:18 GMT
server: Apache
X-Firefox-Spdy: h2
byashi.com.br/jss/login_files/v3-cards.css
192.185.210.37200 OK 929 B URL HTTP/2 byashi.com.br/jss/login_files/v3-cards.css
IP 192.185.210.37:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (2627), with no line terminators
Hash a447586bed4b92eae4dd107deafde379
d11a07eb1d8066a26579d064a4cb9b0259a1d7cb
8e050d3cb715e0313f1a36b857599ad43033a69a8910a151b219bea5530d7f06
GET /jss/login_files/v3-cards.css HTTP/1.1
Host: byashi.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://byashi.com.br/jss/login.php?&sessionid=35b0bce9d250429df012c0426f88d0bd&securessl=true
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 03 Apr 2018 02:50:24 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 929
content-type: text/css
date: Tue, 29 Nov 2022 00:38:18 GMT
server: Apache
X-Firefox-Spdy: h2
byashi.com.br/jss/login_files/landingPage_ProspectHome.css
192.185.210.37200 OK 855 B URL HTTP/2 byashi.com.br/jss/login_files/landingPage_ProspectHome.css
IP 192.185.210.37:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (1924), with no line terminators
Hash ef9655c2108c36a48468ef9475b3660d
e3652fb51f717a1a505694aee0ceaae5c4f6429c
1c7b4b18f207d69047a9e2f563a5710f57452ef54bbcddee73af711e802cc087
GET /jss/login_files/landingPage_ProspectHome.css HTTP/1.1
Host: byashi.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://byashi.com.br/jss/login.php?&sessionid=35b0bce9d250429df012c0426f88d0bd&securessl=true
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 03 Apr 2018 03:10:08 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 855
content-type: text/css
date: Tue, 29 Nov 2022 00:38:18 GMT
server: Apache
X-Firefox-Spdy: h2
byashi.com.br/jss/login_files/v3-link-farm.css
192.185.210.37200 OK 416 B URL HTTP/2 byashi.com.br/jss/login_files/v3-link-farm.css
IP 192.185.210.37:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (954), with no line terminators
Hash fd8c507b490f329ec8111e4a8bc73c30
50dab31c831b3fcf520a60a147eafb98458e8a9f
3facd518f5b9c13a89851230754590ff6b7d82b1bbe5f296552c7beced415836
GET /jss/login_files/v3-link-farm.css HTTP/1.1
Host: byashi.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://byashi.com.br/jss/login.php?&sessionid=35b0bce9d250429df012c0426f88d0bd&securessl=true
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 03 Apr 2018 02:50:24 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 416
content-type: text/css
date: Tue, 29 Nov 2022 00:38:18 GMT
server: Apache
X-Firefox-Spdy: h2
byashi.com.br/jss/login_files/mkt_memberHome_exception.css
192.185.210.37200 OK 1.7 kB URL HTTP/2 byashi.com.br/jss/login_files/mkt_memberHome_exception.css
IP 192.185.210.37:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (5058), with no line terminators
Hash 8090ad6eb485a567f703e5e59a2313ff
bbdc417254d6636c2328600e79e2fa439a85cdac
51f111d8907dfc1cb2f31f73c7b3c50e88cb37d43a6ade3a050f381d883248ac
GET /jss/login_files/mkt_memberHome_exception.css HTTP/1.1
Host: byashi.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://byashi.com.br/jss/login.php?&sessionid=35b0bce9d250429df012c0426f88d0bd&securessl=true
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 03 Apr 2018 02:50:24 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 1691
content-type: text/css
date: Tue, 29 Nov 2022 00:38:18 GMT
server: Apache
X-Firefox-Spdy: h2
byashi.com.br/jss/login_files/v3-brand-banner.css
192.185.210.37200 OK 2.9 kB URL HTTP/2 byashi.com.br/jss/login_files/v3-brand-banner.css
IP 192.185.210.37:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (9266), with no line terminators
Hash 46cc9149fad6e623a3556d239c54c410
60efa130dea08f5ac2f65e72bbd6a99f92308c13
7a989e17a0740ce7d15f9fbda081c3493f3ac61e2689e9faac244ce0e8a29f79
GET /jss/login_files/v3-brand-banner.css HTTP/1.1
Host: byashi.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://byashi.com.br/jss/login.php?&sessionid=35b0bce9d250429df012c0426f88d0bd&securessl=true
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 03 Apr 2018 03:13:32 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 2929
content-type: text/css
date: Tue, 29 Nov 2022 00:38:18 GMT
server: Apache
X-Firefox-Spdy: h2
byashi.com.br/jss/login_files/icon-bank-100.svg
192.185.210.37200 OK 1.0 kB URL HTTP/2 byashi.com.br/jss/login_files/icon-bank-100.svg
IP 192.185.210.37:0
ASN #46606 UNIFIEDLAYER-AS-1
File type SVG Scalable Vector Graphics image\012- SVG XML document\012- XML 1.0 document text\012- SVG XML document\012- XML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash 4097270f68a2baa0bcedb6c0ebe832a4
1a0c9cfc06e6fc9a21cece375ed23634e94dddb4
95fb4eab3bcc02b79173e84cd85d8ce146009756430002cadad7676605500cbd
Analyzer Verdict Alert fortinet Phishing
GET /jss/login_files/icon-bank-100.svg HTTP/1.1
Host: byashi.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://byashi.com.br/jss/login.php?&sessionid=35b0bce9d250429df012c0426f88d0bd&securessl=true
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 03 Apr 2018 02:50:24 GMT
accept-ranges: bytes
content-length: 1039
content-type: image/svg+xml
date: Tue, 29 Nov 2022 00:38:18 GMT
server: Apache
X-Firefox-Spdy: h2
byashi.com.br/jss/login_files/icon-car-100.svg
192.185.210.37200 OK 1.9 kB URL HTTP/2 byashi.com.br/jss/login_files/icon-car-100.svg
IP 192.185.210.37:0
ASN #46606 UNIFIEDLAYER-AS-1
File type SVG Scalable Vector Graphics image\012- SVG XML document\012- XML 1.0 document text\012- SVG XML document\012- XML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash 458e61d47ff9908a693abfe79e83d078
6a3a069548265c450430385653edfd2881b23dfb
7c124e02ae76bb3c92b86be6b38d6a94a2cc75b94c40ecd8a0089ba850987848
Analyzer Verdict Alert fortinet Phishing
GET /jss/login_files/icon-car-100.svg HTTP/1.1
Host: byashi.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://byashi.com.br/jss/login.php?&sessionid=35b0bce9d250429df012c0426f88d0bd&securessl=true
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 03 Apr 2018 02:50:24 GMT
accept-ranges: bytes
content-length: 1868
content-type: image/svg+xml
date: Tue, 29 Nov 2022 00:38:18 GMT
server: Apache
X-Firefox-Spdy: h2
byashi.com.br/jss/login_files/SocMedIcon_youtube_v2.png
192.185.210.37200 OK 1.4 kB URL HTTP/2 byashi.com.br/jss/login_files/SocMedIcon_youtube_v2.png
IP 192.185.210.37:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 35 x 35, 8-bit/color RGBA, non-interlaced\012- data
Hash b17aee805c95fc4762e350c8875f1182
f33292c1ae2e547174498216f82bee07f0c6772e
d317c2e6324cdd35249a3d5b6370b68d5b018fdddecc1dec0b9660f2affff0bd
GET /jss/login_files/SocMedIcon_youtube_v2.png HTTP/1.1
Host: byashi.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://byashi.com.br/jss/login.php?&sessionid=35b0bce9d250429df012c0426f88d0bd&securessl=true
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 03 Apr 2018 02:50:24 GMT
accept-ranges: bytes
content-length: 1434
content-type: image/png
date: Tue, 29 Nov 2022 00:38:18 GMT
server: Apache
X-Firefox-Spdy: h2
byashi.com.br/jss/login_files/SocMedIcon_twitter_v2.png
192.185.210.37200 OK 1.4 kB URL HTTP/2 byashi.com.br/jss/login_files/SocMedIcon_twitter_v2.png
IP 192.185.210.37:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 35 x 35, 8-bit/color RGBA, non-interlaced\012- data
Hash 0e0c7aaf13e0181348f20f30b1712c56
4c7bc4014af6c2eb77caadb649f8c32c5fd54d0d
ad5980cb9d5ad82571e49366d26c086e2c2bbe7efe6feb729c12f9594948ba21
GET /jss/login_files/SocMedIcon_twitter_v2.png HTTP/1.1
Host: byashi.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://byashi.com.br/jss/login.php?&sessionid=35b0bce9d250429df012c0426f88d0bd&securessl=true
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 03 Apr 2018 02:50:24 GMT
accept-ranges: bytes
content-length: 1415
content-type: image/png
date: Tue, 29 Nov 2022 00:38:18 GMT
server: Apache
X-Firefox-Spdy: h2
byashi.com.br/jss/login_files/SocMedIcon_more.png
192.185.210.37200 OK 3.8 kB URL HTTP/2 byashi.com.br/jss/login_files/SocMedIcon_more.png
IP 192.185.210.37:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 35 x 35, 8-bit/color RGBA, non-interlaced\012- data
Hash f11c723f01e6df49c1df767355e16194
e2a1ab64705be9f3194a4ba1ec5f85c2f69692d5
fda9dc9b1feb432da051add9ca8ccdcdedfe460e5e1be4df5f3d17e0bde69c87
GET /jss/login_files/SocMedIcon_more.png HTTP/1.1
Host: byashi.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://byashi.com.br/jss/login.php?&sessionid=35b0bce9d250429df012c0426f88d0bd&securessl=true
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 03 Apr 2018 02:50:24 GMT
accept-ranges: bytes
content-length: 3765
content-type: image/png
date: Tue, 29 Nov 2022 00:38:18 GMT
server: Apache
X-Firefox-Spdy: h2
byashi.com.br/jss/login_files/ehl-blk.svg
192.185.210.37200 OK 3.8 kB URL HTTP/2 byashi.com.br/jss/login_files/ehl-blk.svg
IP 192.185.210.37:0
ASN #46606 UNIFIEDLAYER-AS-1
File type SVG Scalable Vector Graphics image\012- HTML document text\012- HTML document, ASCII text, with very long lines (3771), with no line terminators
Hash b59e55d9d830ec44fcf62cc98aaeff08
b7aa9504db4970ba5724ef2916f2a2ec6da09109
61e8a805163515bc3f9e456d6a414bf6b45e8ff4d9df9a90ef3ec24cf4b10ef2
Analyzer Verdict Alert fortinet Phishing
GET /jss/login_files/ehl-blk.svg HTTP/1.1
Host: byashi.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://byashi.com.br/jss/login.php?&sessionid=35b0bce9d250429df012c0426f88d0bd&securessl=true
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 03 Apr 2018 02:50:24 GMT
accept-ranges: bytes
content-length: 3771
content-type: image/svg+xml
date: Tue, 29 Nov 2022 00:38:18 GMT
server: Apache
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash aebda342a81ad83f60d2523f54ccda67
e590d9326e4a283e0929a8ffccb13cc4308af0e6
bd123fe3fce93216e2635f9dbc356f081b7599784fb6b67984032f11d82bc7cb
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BD123FE3FCE93216E2635F9DBC356F081B7599784FB6B67984032F11D82BC7CB"
Last-Modified: Sat, 26 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2441
Expires: Tue, 29 Nov 2022 01:18:59 GMT
Date: Tue, 29 Nov 2022 00:38:18 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash aebda342a81ad83f60d2523f54ccda67
e590d9326e4a283e0929a8ffccb13cc4308af0e6
bd123fe3fce93216e2635f9dbc356f081b7599784fb6b67984032f11d82bc7cb
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BD123FE3FCE93216E2635F9DBC356F081B7599784FB6B67984032F11D82BC7CB"
Last-Modified: Sat, 26 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2441
Expires: Tue, 29 Nov 2022 01:18:59 GMT
Date: Tue, 29 Nov 2022 00:38:18 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash aebda342a81ad83f60d2523f54ccda67
e590d9326e4a283e0929a8ffccb13cc4308af0e6
bd123fe3fce93216e2635f9dbc356f081b7599784fb6b67984032f11d82bc7cb
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BD123FE3FCE93216E2635F9DBC356F081B7599784FB6B67984032F11D82BC7CB"
Last-Modified: Sat, 26 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2441
Expires: Tue, 29 Nov 2022 01:18:59 GMT
Date: Tue, 29 Nov 2022 00:38:18 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash aebda342a81ad83f60d2523f54ccda67
e590d9326e4a283e0929a8ffccb13cc4308af0e6
bd123fe3fce93216e2635f9dbc356f081b7599784fb6b67984032f11d82bc7cb
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BD123FE3FCE93216E2635F9DBC356F081B7599784FB6B67984032F11D82BC7CB"
Last-Modified: Sat, 26 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2441
Expires: Tue, 29 Nov 2022 01:18:59 GMT
Date: Tue, 29 Nov 2022 00:38:18 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash aebda342a81ad83f60d2523f54ccda67
e590d9326e4a283e0929a8ffccb13cc4308af0e6
bd123fe3fce93216e2635f9dbc356f081b7599784fb6b67984032f11d82bc7cb
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BD123FE3FCE93216E2635F9DBC356F081B7599784FB6B67984032F11D82BC7CB"
Last-Modified: Sat, 26 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2441
Expires: Tue, 29 Nov 2022 01:18:59 GMT
Date: Tue, 29 Nov 2022 00:38:18 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9ad01b94-5d16-49b9-bf3e-5742e02ae8b6.jpeg
34.120.237.76200 OK 8.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9ad01b94-5d16-49b9-bf3e-5742e02ae8b6.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 7e44c46db2ac9917110dc47aa38fdc85
b5b245c90705ad80c31d457c0d7c96709ca31e96
5024225a583b188860eaf21f7196c06cef8b2e89389ae4b1df6e314399f3b2ae
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9ad01b94-5d16-49b9-bf3e-5742e02ae8b6.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8796
x-amzn-requestid: 2eed036c-fcda-425b-8c5d-0b0ff31214a0
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cGDTEEWMIAMFwKA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637f18e0-5cb071a2098d43d909eb8d5c;Sampled=0
x-amzn-remapped-date: Thu, 24 Nov 2022 07:10:24 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: uWzs8gOBoczTeYXB7-FfJemWbh-hYHwNcR3b9BM5VtJ55NRUzCZeTQ==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 9046e5a276a05e60ee34c8475e92b8e6.cloudfront.net (CloudFront), 1.1 google
date: Mon, 28 Nov 2022 09:53:45 GMT
age: 53073
etag: "b5b245c90705ad80c31d457c0d7c96709ca31e96"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1f728a04-45b0-4726-b646-628601e2ebbc.jpeg
34.120.237.76200 OK 8.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1f728a04-45b0-4726-b646-628601e2ebbc.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4b7d3821d0bd11c196724846a7b9fe22
5b1700fa9cd4f1aaafda28ac28a0e2086fa8499c
b4f820555c4daf6e112c1a395bc57e22f0ef8e2e4299a0ffbb54e0bf18c87f47
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1f728a04-45b0-4726-b646-628601e2ebbc.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8578
x-amzn-requestid: 4f948bb9-74db-4a5d-927d-a6b893735531
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cFxnWHq-IAMF4LQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637efc95-2f9e98ca2dad65a80e2195c2;Sampled=0
x-amzn-remapped-date: Thu, 24 Nov 2022 05:09:41 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: vSvGc0JIh4JOWTlagt4uDD_CDPiWOSfYYEI4lUBPsQb4qJMOEbBcmw==
via: 1.1 5a1753718d8b33365e5f693dd338c510.cloudfront.net (CloudFront), 1.1 7022a5bbf9872d4a09d63e6cdb457dfe.cloudfront.net (CloudFront), 1.1 google
date: Mon, 28 Nov 2022 04:09:24 GMT
age: 73734
etag: "5b1700fa9cd4f1aaafda28ac28a0e2086fa8499c"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffdef9eb6-c1f1-4337-aff8-0986561782c7.jpeg
34.120.237.76200 OK 9.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffdef9eb6-c1f1-4337-aff8-0986561782c7.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 5d574c4db20a68295dbd06cb08f5990b
433061bbb226048765a711deca3026ee3e52372f
8cc1a4d18e242f8bfc8ab94637f635b73554b903462c29b06d0ec67872542afb
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffdef9eb6-c1f1-4337-aff8-0986561782c7.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9203
x-amzn-requestid: 8cba52d6-3c1c-495c-bb9d-3ba6f0adc7e1
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cHcHmGmQoAMF6dQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637fa6fd-73abfa592ff223061401af9a;Sampled=0
x-amzn-remapped-date: Thu, 24 Nov 2022 17:16:45 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: UmhWm03jrsV8dFagrzIA0E-8eL8dykoO5kw3cYOBd172dCGqNdAX-Q==
via: 1.1 a20e81b65d2465c729ce2f6bfe539dd0.cloudfront.net (CloudFront), 1.1 36810aa1793ee589dc8c194860296078.cloudfront.net (CloudFront), 1.1 google
date: Mon, 28 Nov 2022 03:31:58 GMT
age: 75980
etag: "433061bbb226048765a711deca3026ee3e52372f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe059c7ce-454d-453b-aead-18fae338f84c.jpeg
34.120.237.76200 OK 4.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe059c7ce-454d-453b-aead-18fae338f84c.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash a4058fd62595d15c58b3d3266de9865a
d0dff35eb78f129b5da407043037bcf9c27e55c0
ab996c23d58871a2ad53f0c34688c87f0d7c0eac5d0c1d8265b86951248449fe
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe059c7ce-454d-453b-aead-18fae338f84c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4871
x-amzn-requestid: e2dfa7b8-ded7-4104-a913-1b84746a3c6f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cLDUUEy_oAMFgSQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638118e8-0b229e0f60ff019d26800dd9;Sampled=0
x-amzn-remapped-date: Fri, 25 Nov 2022 19:35:04 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 9BUuT9WFwAQMnl8JiTDKo-zHgDL0AdjAAAIh0Mx405zbGwhvRouebQ==
via: 1.1 4d7fa73f804f1c93f20cfc24c4b1266e.cloudfront.net (CloudFront), 1.1 a847181d425b7fc57e81eb3c800bfdf2.cloudfront.net (CloudFront), 1.1 google
date: Mon, 28 Nov 2022 12:30:42 GMT
age: 43656
etag: "d0dff35eb78f129b5da407043037bcf9c27e55c0"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
byashi.com.br/jss/login_files/aggregator.css
192.185.210.37200 OK 61 kB URL HTTP/2 byashi.com.br/jss/login_files/aggregator.css
IP 192.185.210.37:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash 75ddad93f84465410f837ce7f87bf041
4b1957100d3dce4eeecd30d8385fbb7e00541c4c
1c5c064cddae26db194ba2ab7cc3d965d10811a1542d0d16d8dd43046a8a3044
GET /jss/login_files/aggregator.css HTTP/1.1
Host: byashi.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://byashi.com.br/jss/login.php?&sessionid=35b0bce9d250429df012c0426f88d0bd&securessl=true
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 03 Apr 2018 02:50:24 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/css
date: Tue, 29 Nov 2022 00:38:17 GMT
server: Apache
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 17c9251f8ba70b81b8125fe62663bb02
a74b718f0b771124a67176bb1e555ad6bcc058b6
d75593736a6343634236915b30de716349ab0bda14c8a6102e3b3fb06233f0bb
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5588
Cache-Control: max-age=94453
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 00:38:18 GMT
Etag: "63840c9c-1d7"
Expires: Wed, 30 Nov 2022 02:52:31 GMT
Last-Modified: Mon, 28 Nov 2022 01:19:24 GMT
Server: ECS (ska/F71B)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 17c9251f8ba70b81b8125fe62663bb02
a74b718f0b771124a67176bb1e555ad6bcc058b6
d75593736a6343634236915b30de716349ab0bda14c8a6102e3b3fb06233f0bb
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3415
Cache-Control: max-age=92281
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 00:38:18 GMT
Etag: "63840c9c-1d7"
Expires: Wed, 30 Nov 2022 02:16:19 GMT
Last-Modified: Mon, 28 Nov 2022 01:19:24 GMT
Server: ECS (ska/F70C)
X-Cache: HIT
Content-Length: 471
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9868f6d6-e29b-42b5-89c4-eec4771663b2.jpeg
34.120.237.76200 OK 8.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9868f6d6-e29b-42b5-89c4-eec4771663b2.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash faf3524970b0c3256eb5708f4ccf11ce
47295f2cf1b039c4b85cbe463d7893671a563989
ba0c2ce23eae865936caa7fb47dd1ef6346b8a7bc8340db700df6e2f5e27ec27
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9868f6d6-e29b-42b5-89c4-eec4771663b2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8402
x-amzn-requestid: d2d62f85-b6be-4394-9668-1d913e4120d8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cPYeaGbgoAMFdCA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6382d45c-2b6bfdcc72011cf01ddbd66b;Sampled=0
x-amzn-remapped-date: Sun, 27 Nov 2022 03:07:08 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: cI-Pu4bHJfVrF5BHt5BW1qlrjMtbQlYexvxJEHmipD39D4yyu94mKg==
via: 1.1 01c28b52813cd0e82f810c492808b142.cloudfront.net (CloudFront), 1.1 324a68a6c25ee50d774953f3e15a611c.cloudfront.net (CloudFront), 1.1 google
date: Mon, 28 Nov 2022 04:18:06 GMT
age: 73212
etag: "47295f2cf1b039c4b85cbe463d7893671a563989"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 17c9251f8ba70b81b8125fe62663bb02
a74b718f0b771124a67176bb1e555ad6bcc058b6
d75593736a6343634236915b30de716349ab0bda14c8a6102e3b3fb06233f0bb
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5588
Cache-Control: max-age=94453
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 00:38:18 GMT
Etag: "63840c9c-1d7"
Expires: Wed, 30 Nov 2022 02:52:31 GMT
Last-Modified: Mon, 28 Nov 2022 01:19:24 GMT
Server: ECS (ska/F71B)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 17c9251f8ba70b81b8125fe62663bb02
a74b718f0b771124a67176bb1e555ad6bcc058b6
d75593736a6343634236915b30de716349ab0bda14c8a6102e3b3fb06233f0bb
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3415
Cache-Control: max-age=92281
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 00:38:18 GMT
Etag: "63840c9c-1d7"
Expires: Wed, 30 Nov 2022 02:16:19 GMT
Last-Modified: Mon, 28 Nov 2022 01:19:24 GMT
Server: ECS (ska/F70C)
X-Cache: HIT
Content-Length: 471
byashi.com.br/jss/login_files/usaa-sprite-globalNav_v2.png
192.185.210.37200 OK 58 kB URL HTTP/2 byashi.com.br/jss/login_files/usaa-sprite-globalNav_v2.png
IP 192.185.210.37:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 962 x 270, 8-bit/color RGBA, non-interlaced\012- data
Hash 9617699ab943557ecbe3b8eae10ffe09
461f5561a94f24cdd1ac6d400bf931c5259949f9
522a5fe0b1921acbaa0925b2a50fa141b0719797d5c552ffc150415c7c44d23b
GET /jss/login_files/usaa-sprite-globalNav_v2.png HTTP/1.1
Host: byashi.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://byashi.com.br/jss/login.php?&sessionid=35b0bce9d250429df012c0426f88d0bd&securessl=true
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 03 Apr 2018 02:50:24 GMT
accept-ranges: bytes
content-length: 57674
content-type: image/png
date: Tue, 29 Nov 2022 00:38:18 GMT
server: Apache
X-Firefox-Spdy: h2
content.usaa.com/mcontent/static_assets/Fonts/9ECBC8FFB535D0532.woff2?cacheid=579254377_p
104.110.3.249200 OK 22 kB URL HTTP/2 content.usaa.com/mcontent/static_assets/Fonts/9ECBC8FFB535D0532.woff2?cacheid=579254377_p
IP 104.110.3.249:0
File type Web Open Font Format (Version 2), TrueType, length 22088, version 1.19726\012- data
Hash 3978a25659ccf40e136fefc4a3f1d4af
6e8f8d356dd36e89fe2059b4bff6e58869333f68
947dad01228bb6787ad0218540575dfafe48c76c0623fcb492b6d0b0cfc62e0b
GET /mcontent/static_assets/Fonts/9ECBC8FFB535D0532.woff2?cacheid=579254377_p HTTP/1.1
Host: content.usaa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://byashi.com.br
Connection: keep-alive
Referer: https://byashi.com.br/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
last-modified: Tue, 28 Nov 2017 23:28:20 GMT
etag: "5648-55f135fcf6d00"
accept-ranges: bytes
content-length: 22088
content-type: font/woff2
cache-control: max-age=555072
date: Tue, 29 Nov 2022 00:38:18 GMT
set-cookie: akmachineid=akmalEamOaPP/9fl2TECcvbjk8WtW85kmm9uMFSk1rYd/p8o8xfYshTL/i3BP29Cb6PDKwy/FYZzO8tPOm+9v1xhfw==; expires=Fri, 26-Nov-2032 00:38:18 GMT; Secure; Path=/; domain=.usaa.com
akusaa=akusaatIMZTmAGM3boSpmH2pTtm6XTq8txpkPCz4fgX/iYEFO52ySRCJuYuVRZ+t+ZcvEkbXUcV8nwFL5gIlwETZAy+g==; expires=Fri, 26-Nov-2032 00:38:18 GMT; Secure; Path=/; domain=.usaa.com
strict-transport-security: max-age=31536000
server: USAA-Service
X-Firefox-Spdy: h2
content.usaa.com/mcontent/static_assets/Media/background_general_fb.png?cacheid=2934981489_p
104.110.3.249200 OK 2.8 kB URL HTTP/2 content.usaa.com/mcontent/static_assets/Media/background_general_fb.png?cacheid=2934981489_p
IP 104.110.3.249:0
File type PNG image data, 1 x 700, 8-bit/color RGB, non-interlaced\012- data
Hash 9276c35dc16aecb16790d9c2a262ef70
072b3f31ddd9e514151c83e913d9a59d30ab7f1e
e2e04a8e937f5b74a4c50cb7592a8e0bba54b40818d44e43ffd5c40c6b4fe72a
GET /mcontent/static_assets/Media/background_general_fb.png?cacheid=2934981489_p HTTP/1.1
Host: content.usaa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://byashi.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
last-modified: Mon, 16 Sep 2013 11:24:14 GMT
etag: "b13-4e67e71a8d380"
accept-ranges: bytes
content-length: 2835
content-type: image/png
cache-control: max-age=552920
date: Tue, 29 Nov 2022 00:38:18 GMT
set-cookie: akmachineid=akmatoNyLzr/vTTj7XNc4C+fhj3JTjUUqGyXMLUHfVggii2o4oKbvKKdGnjAuYHOgkJGca+TNlhowoOipWEdKlO0Ow==; expires=Fri, 26-Nov-2032 00:38:18 GMT; Secure; Path=/; domain=.usaa.com
akusaa=akusaa9KvCr6QCbpd7EfehZ5KOYy4EhI/RUUsmyPW1Zf11jRUjWiVB93LyH3C10NAyweUoVYZfpeKgwzu3y4XKgIyxIw==; expires=Fri, 26-Nov-2032 00:38:18 GMT; Secure; Path=/; domain=.usaa.com
strict-transport-security: max-age=31536000
server: USAA-Service
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 17c9251f8ba70b81b8125fe62663bb02
a74b718f0b771124a67176bb1e555ad6bcc058b6
d75593736a6343634236915b30de716349ab0bda14c8a6102e3b3fb06233f0bb
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5588
Cache-Control: max-age=94453
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 00:38:18 GMT
Etag: "63840c9c-1d7"
Expires: Wed, 30 Nov 2022 02:52:31 GMT
Last-Modified: Mon, 28 Nov 2022 01:19:24 GMT
Server: ECS (ska/F71B)
X-Cache: HIT
Content-Length: 471
content.usaa.com/mcontent/static_assets/Fonts/F68DD4439278D0467.woff2?cacheid=1757877387_p
104.110.3.249200 OK 23 kB URL HTTP/2 content.usaa.com/mcontent/static_assets/Fonts/F68DD4439278D0467.woff2?cacheid=1757877387_p
IP 104.110.3.249:0
File type Web Open Font Format (Version 2), TrueType, length 22892, version 1.19726\012- data
Hash 890566a4fd4453d50c19ab3c37ddf1dc
f2a9afc95e99600061027305ef229f1d8802713d
b47c74b16a02f8df070e4bd91b1b542ba2765624e8ec56a59305a91559a83682
GET /mcontent/static_assets/Fonts/F68DD4439278D0467.woff2?cacheid=1757877387_p HTTP/1.1
Host: content.usaa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://byashi.com.br
Connection: keep-alive
Referer: https://byashi.com.br/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
last-modified: Tue, 28 Nov 2017 23:28:39 GMT
etag: "596c-55f1360f157c0"
accept-ranges: bytes
content-length: 22892
content-type: font/woff2
cache-control: max-age=555199
date: Tue, 29 Nov 2022 00:38:19 GMT
set-cookie: akmachineid=akmadntNrkW3Zm3mvYSNXZOfs6G2to+wQDLQgNB9Qqx9q5rXyrfD+tJx5k5dudT407i3GbI/sQ5IHDP5/ebW2yZlIw==; expires=Fri, 26-Nov-2032 00:38:19 GMT; Secure; Path=/; domain=.usaa.com
akusaa=akusaae64CED+EYOuedCMU6N2tUOirj7TzfGrwlwQ5Bf3xEH52HSQGjVDYqCV9J3wrpKkb1YUGYoJNO9CftrIIa4MHeQ==; expires=Fri, 26-Nov-2032 00:38:19 GMT; Secure; Path=/; domain=.usaa.com
strict-transport-security: max-age=31536000
server: USAA-Honesty
X-Firefox-Spdy: h2
content.usaa.com/mcontent/static_assets/Fonts/CC8B46FD41C3A5502.woff2?cacheid=2159110100_p
104.110.3.249200 OK 22 kB URL HTTP/2 content.usaa.com/mcontent/static_assets/Fonts/CC8B46FD41C3A5502.woff2?cacheid=2159110100_p
IP 104.110.3.249:0
File type Web Open Font Format (Version 2), TrueType, length 21788, version 1.19726\012- data
Hash 99dfcf935e69f0fd3bf10a8f9920d71f
0329a65bbf246a88dd421520a3b43676d8cd1b53
6920b95f2b38b405f9932005eb14a44556c32fec22efb5d7a58e22f959a13282
GET /mcontent/static_assets/Fonts/CC8B46FD41C3A5502.woff2?cacheid=2159110100_p HTTP/1.1
Host: content.usaa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://byashi.com.br
Connection: keep-alive
Referer: https://byashi.com.br/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
last-modified: Tue, 28 Nov 2017 23:28:34 GMT
etag: "551c-55f1360a50c80"
accept-ranges: bytes
content-length: 21788
content-type: font/woff2
cache-control: max-age=554760
date: Tue, 29 Nov 2022 00:38:19 GMT
set-cookie: akmachineid=akmaJVqkc4KQ3BZafPm6xaDpcpdaxxf0ZSz4HjoySPJGWGMCRIVKqgBKOLbJ54dwT12pKg+QfYWeGV4Rdalr6QdhGA==; expires=Fri, 26-Nov-2032 00:38:19 GMT; Secure; Path=/; domain=.usaa.com
akusaa=akusaa1ztD6fhGJk1lY1qV6hwjswYseLVhJ8d1Sk0HervgTFsqWIYJeI4JOI3a1769H11VZT+YpEg0gHtRp0d878HdFw==; expires=Fri, 26-Nov-2032 00:38:19 GMT; Secure; Path=/; domain=.usaa.com
strict-transport-security: max-age=31536000
server: USAA-Honesty
X-Firefox-Spdy: h2
content.usaa.com/mcontent/static_assets/Fonts/E83D71A074DF776F4.woff2?cacheid=1643979810_p
104.110.3.249200 OK 22 kB URL HTTP/2 content.usaa.com/mcontent/static_assets/Fonts/E83D71A074DF776F4.woff2?cacheid=1643979810_p
IP 104.110.3.249:0
File type Web Open Font Format (Version 2), TrueType, length 21772, version 1.19726\012- data
Hash 44b3494f8911fb677721629bb389f472
bc7a73021fea8900614b3645113b03c582067928
008889d286feafdf1773721c82309aeef1573bc92096f12e43674ddaae27b1c6
GET /mcontent/static_assets/Fonts/E83D71A074DF776F4.woff2?cacheid=1643979810_p HTTP/1.1
Host: content.usaa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://byashi.com.br
Connection: keep-alive
Referer: https://byashi.com.br/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
last-modified: Tue, 28 Nov 2017 23:28:49 GMT
etag: "550c-55f136189ee40"
accept-ranges: bytes
content-length: 21772
content-type: font/woff2
cache-control: max-age=510729
date: Tue, 29 Nov 2022 00:38:19 GMT
set-cookie: akmachineid=akmaUQKt15cfmXonycnFEr4gj0S+1HexB/VED2rLhYEU0nVm1YX7W6M/d8Zb2o6cUogXYrtO4GrSf4rnVIO4xTkJnQ==; expires=Fri, 26-Nov-2032 00:38:19 GMT; Secure; Path=/; domain=.usaa.com
akusaa=akusaaST9HB1dl083zrxj0xeZmYIQWpjgP63tPM1VNc3VuUMGTxKU9vqFS4RWzhIHhWxlNsDhiZkBDYtujLGRWv6kRGg==; expires=Fri, 26-Nov-2032 00:38:19 GMT; Secure; Path=/; domain=.usaa.com
strict-transport-security: max-age=31536000
server: USAA-Honesty
X-Firefox-Spdy: h2
content.usaa.com/mcontent/static_assets/Fonts/9ECBC8FFB535D0532.woff?cacheid=2704893946_p
104.110.3.249200 OK 28 kB URL HTTP/2 content.usaa.com/mcontent/static_assets/Fonts/9ECBC8FFB535D0532.woff?cacheid=2704893946_p
IP 104.110.3.249:0
File type Web Open Font Format, TrueType, length 28201, version 1.0\012- data
Hash 48a2c0645c1a1b0af7f2f961b448dcc9
e3e70317a9d5a996a05e08ffb0c92bb12600c9b3
9bdae78a8c509f414cffdb7fee422988979841a09925b891b95a10d9088bd75f
GET /mcontent/static_assets/Fonts/9ECBC8FFB535D0532.woff?cacheid=2704893946_p HTTP/1.1
Host: content.usaa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://byashi.com.br
Connection: keep-alive
Referer: https://byashi.com.br/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 28 Nov 2017 23:28:19 GMT
etag: "6e29-55f135fc02ac0"
accept-ranges: bytes
content-length: 28201
content-type: text/plain
cache-control: max-age=451344
date: Tue, 29 Nov 2022 00:38:19 GMT
set-cookie: akmachineid=akmaH/h2CqoA080chyh649C1W19P5hwpz9mpQC6HnQ9/Jwgt/bBLlcZ3EAlXsnU8dHgCqI06NhIQX7dj+Y9L8iIMaA==; expires=Fri, 26-Nov-2032 00:38:19 GMT; Secure; Path=/; domain=.usaa.com
akusaa=akusaa9/5eN/cngBQVi9jrnIvNFQrdjf1v9Gvz1IHNHgEfPx4JufIwQXvph9wOsgls0MBWyDQjEWaKda4EPW5E+66GuA==; expires=Fri, 26-Nov-2032 00:38:19 GMT; Secure; Path=/; domain=.usaa.com
strict-transport-security: max-age=31536000
server: USAA-Honesty
X-Firefox-Spdy: h2
content.usaa.com/mcontent/static_assets/Fonts/12C383965421BC56F.woff?cacheid=1553179615_p
104.110.3.249200 OK 17 kB URL HTTP/2 content.usaa.com/mcontent/static_assets/Fonts/12C383965421BC56F.woff?cacheid=1553179615_p
IP 104.110.3.249:0
File type Web Open Font Format, CFF, length 16835, version 1.0\012- data
Hash 011f6e6a5603cbcabd996e4193ecf46e
766959c25fc1448c2ba185668867b85bf6aa40a5
e1a4d363aa34a9253ccca92fed02d19e7769737d18b34f402f181992429a39ed
GET /mcontent/static_assets/Fonts/12C383965421BC56F.woff?cacheid=1553179615_p HTTP/1.1
Host: content.usaa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://byashi.com.br
Connection: keep-alive
Referer: https://byashi.com.br/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 28 Nov 2017 23:27:35 GMT
etag: "41c3-55f135d20c7c0"
accept-ranges: bytes
content-length: 16835
content-type: text/plain
cache-control: max-age=465172
date: Tue, 29 Nov 2022 00:38:19 GMT
set-cookie: akmachineid=akmargvjevoDRbPmXkssnkB7ui0LDqyHlZoHw3w1UW9NLaGLQq0QZxqFDJs5h0LUu230mYsbQuB7UnxxIqcYgCaSDA==; expires=Fri, 26-Nov-2032 00:38:19 GMT; Secure; Path=/; domain=.usaa.com
akusaa=akusaaeKO1DasmTt5+YDrT2aL/cgM5/YwvSvYUOwmGBZZ2rcomYCzpjrG+wdw7rxP8UTxOM7476YcMmEzs6k2PrVVTxA==; expires=Fri, 26-Nov-2032 00:38:19 GMT; Secure; Path=/; domain=.usaa.com
strict-transport-security: max-age=31536000
server: USAA-Honesty
X-Firefox-Spdy: h2
content.usaa.com/mcontent/static_assets/Fonts/9C7F15704715916A9.woff?cacheid=2612443474_p
104.110.3.249200 OK 17 kB URL HTTP/2 content.usaa.com/mcontent/static_assets/Fonts/9C7F15704715916A9.woff?cacheid=2612443474_p
IP 104.110.3.249:0
File type Web Open Font Format, CFF, length 17443, version 1.0\012- data
Hash 0ae90578ca1e9d134d44a1a3282bae64
5e6e22ae5a59cda1c0876d3376a1656e866d7e3b
73494b42cbe09cef2382099e45afd65dbf99af4ab4ced0072be19163ff748846
GET /mcontent/static_assets/Fonts/9C7F15704715916A9.woff?cacheid=2612443474_p HTTP/1.1
Host: content.usaa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://byashi.com.br
Connection: keep-alive
Referer: https://byashi.com.br/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 28 Nov 2017 23:28:14 GMT
etag: "4423-55f135f73df80"
accept-ranges: bytes
content-length: 17443
content-type: text/plain
cache-control: max-age=496227
date: Tue, 29 Nov 2022 00:38:19 GMT
set-cookie: akmachineid=akmaZSaKUZmWvbv5c58helhy+cPW8igf3Xxn1Lc2KXTg69hQavQw1V0lQXlDvyxhAVarCAzoKfTbT//bVR4s2Sw9Hw==; expires=Fri, 26-Nov-2032 00:38:19 GMT; Secure; Path=/; domain=.usaa.com
akusaa=akusaazoupBgHP6ZBS+qJAWXDsWAIee+mYh4CUiDBXShA7r8LQWocoosGV76MXn6ncoQj+6f4jg6XzlMaV1OiimBYAnA==; expires=Fri, 26-Nov-2032 00:38:19 GMT; Secure; Path=/; domain=.usaa.com
strict-transport-security: max-age=31536000
server: USAA-Honesty
X-Firefox-Spdy: h2
byashi.com.br/jss/login_files/aggregator(2).css
192.185.210.37200 OK 76 kB URL HTTP/2 byashi.com.br/jss/login_files/aggregator(2).css
IP 192.185.210.37:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash c75d1e733297110fe930e5249facde89
e8f9166a0e5d27ab066fb65b05084be9b094e519
c15aa9be19fed02a3cfb27da3d5ad66edb86a016b6e4333f88073050b033de05
GET /jss/login_files/aggregator(2).css HTTP/1.1
Host: byashi.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://byashi.com.br/jss/login.php?&sessionid=35b0bce9d250429df012c0426f88d0bd&securessl=true
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 03 Apr 2018 02:50:24 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/css
date: Tue, 29 Nov 2022 00:38:18 GMT
server: Apache
X-Firefox-Spdy: h2
byashi.com.br/jss/login_files/ent-mainBnr-father-daughter-hug.png
192.185.210.37200 OK 367 kB URL HTTP/2 byashi.com.br/jss/login_files/ent-mainBnr-father-daughter-hug.png
IP 192.185.210.37:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 1658 x 1106, 8-bit colormap, non-interlaced\012- data
Size 367 kB (366594 bytes)
Hash ce7d1f992bcc0e5011f5162c4ee6574e
4fec719a49892f19235c57ce35de69db977e496c
aaa0237d406be851009f22a217f5d847dc04d4ba529c69e6a3b46dcc40c1c27d
GET /jss/login_files/ent-mainBnr-father-daughter-hug.png HTTP/1.1
Host: byashi.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://byashi.com.br/jss/login.php?&sessionid=35b0bce9d250429df012c0426f88d0bd&securessl=true
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 03 Apr 2018 02:50:24 GMT
accept-ranges: bytes
content-length: 366594
content-type: image/png
date: Tue, 29 Nov 2022 00:38:18 GMT
server: Apache
X-Firefox-Spdy: h2
byashi.com.br/jss/login_files/prodOther_thumb_primary-link-icon.svg
192.185.210.37200 OK 587 B URL HTTP/2 byashi.com.br/jss/login_files/prodOther_thumb_primary-link-icon.svg
IP 192.185.210.37:0
ASN #46606 UNIFIEDLAYER-AS-1
File type SVG Scalable Vector Graphics image\012- SVG XML document\012- XML 1.0 document text\012- SVG XML document\012- XML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash a88195bb9797428555ffc4b97cb46516
fb5c75643a6ef72dbb34ac3987fbe709e10e14b6
934b6c746f0af225cb7ed9cab48353ae67f51af3eb0b74bca465fe02105310cd
Analyzer Verdict Alert fortinet Phishing
GET /jss/login_files/prodOther_thumb_primary-link-icon.svg HTTP/1.1
Host: byashi.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://byashi.com.br/jss/login_files/v3-wcm-common.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 03 Apr 2018 03:05:46 GMT
accept-ranges: bytes
content-length: 587
content-type: image/svg+xml
date: Tue, 29 Nov 2022 00:38:18 GMT
server: Apache
X-Firefox-Spdy: h2
byashi.com.br/jss/login_files/misc_accent_socMedia.png
192.185.210.37200 OK 8.8 kB URL HTTP/2 byashi.com.br/jss/login_files/misc_accent_socMedia.png
IP 192.185.210.37:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 201 x 378, 8-bit/color RGBA, non-interlaced\012- data
Hash 2aa62eca80d27a3d0207d5cc909ccdb5
c7f72c3df6f58b2db7029a85b712dcef656ecb70
70cc16695978690e74938cae7f3a5f0de6ee23b1837bddca169316c7001eecd7
GET /jss/login_files/misc_accent_socMedia.png HTTP/1.1
Host: byashi.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://byashi.com.br/jss/login_files/socialMediaBar_alt.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 03 Apr 2018 03:05:00 GMT
accept-ranges: bytes
content-length: 8781
content-type: image/png
date: Tue, 29 Nov 2022 00:38:18 GMT
server: Apache
X-Firefox-Spdy: h2
content.usaa.com/mcontent/static_assets/Fonts/F68DD4439278D0467.woff?cacheid=1249096365_p
104.110.3.249200 OK 29 kB URL HTTP/2 content.usaa.com/mcontent/static_assets/Fonts/F68DD4439278D0467.woff?cacheid=1249096365_p
IP 104.110.3.249:0
File type Web Open Font Format, TrueType, length 28825, version 1.0\012- data
Hash 027d2b41b8117a0170ad5608a28f8447
f2a742f624fb9e46e9b56ff85e0d57572c193d87
9b510b9bfbcfeb026714418a2c004399ca1ab07385bd782e8ede083b94689f27
GET /mcontent/static_assets/Fonts/F68DD4439278D0467.woff?cacheid=1249096365_p HTTP/1.1
Host: content.usaa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://byashi.com.br
Connection: keep-alive
Referer: https://byashi.com.br/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 28 Nov 2017 23:28:37 GMT
etag: "7099-55f1360d2d340"
accept-ranges: bytes
content-length: 28825
content-type: text/plain
cache-control: max-age=451333
date: Tue, 29 Nov 2022 00:38:19 GMT
set-cookie: akmachineid=akma6lPI1rW5csKkxpBYxIifiu4l4YEuB2oDU5MiGXSSGrswO2uFRIS4J3jixle9vtM+T98As7t2jNMDLcCsSFt24w==; expires=Fri, 26-Nov-2032 00:38:19 GMT; Secure; Path=/; domain=.usaa.com
akusaa=akusaanj6GzAQe1lc+1srB+uYqMzDm9cuy9unsuRdSmo7RFNyWUpu3rUhD+z0Bld+9DZWrqfqUAMNNPqnaM2R22YsTDA==; expires=Fri, 26-Nov-2032 00:38:19 GMT; Secure; Path=/; domain=.usaa.com
strict-transport-security: max-age=31536000
server: USAA-Honesty
X-Firefox-Spdy: h2
content.usaa.com/mcontent/static_assets/Fonts/CC8B46FD41C3A5502.woff?cacheid=1373003117_p
104.110.3.249200 OK 28 kB URL HTTP/2 content.usaa.com/mcontent/static_assets/Fonts/CC8B46FD41C3A5502.woff?cacheid=1373003117_p
IP 104.110.3.249:0
File type Web Open Font Format, TrueType, length 27731, version 1.0\012- data
Hash fc610f6c5d17b03d0613cde4df6e6f11
494713d3d1026ae75c9839c28b94bb379cb09824
d815893ea34e5805c4cfb5e497b666f690fa80a5153bb757437bf6bfd3abb47c
GET /mcontent/static_assets/Fonts/CC8B46FD41C3A5502.woff?cacheid=1373003117_p HTTP/1.1
Host: content.usaa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://byashi.com.br
Connection: keep-alive
Referer: https://byashi.com.br/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 28 Nov 2017 23:28:32 GMT
etag: "6c53-55f1360868800"
accept-ranges: bytes
content-length: 27731
content-type: text/plain
cache-control: max-age=458666
date: Tue, 29 Nov 2022 00:38:19 GMT
set-cookie: akmachineid=akmaA06D9GtXTVgPwqXssQvtIKkd93cPvyoVaVLCp7L64hH9svAdQwmDZdZN3ZwWsJTUnxAYwFHmuQEQ0zjFqc0k9Q==; expires=Fri, 26-Nov-2032 00:38:19 GMT; Secure; Path=/; domain=.usaa.com
akusaa=akusaaVKPtMK6ROxBCXATcLilQnwpEilMKktg86tjk7RMjeVQ3fwYWfSUj4e+JeraZL84BziVH5IrqtOO60WNWzvOOzA==; expires=Fri, 26-Nov-2032 00:38:19 GMT; Secure; Path=/; domain=.usaa.com
strict-transport-security: max-age=31536000
server: USAA-Honesty
X-Firefox-Spdy: h2
byashi.com.br/jss/login_files/pub-home-tools-and-support-promo.jpg
192.185.210.37200 OK 121 kB URL HTTP/2 byashi.com.br/jss/login_files/pub-home-tools-and-support-promo.jpg
IP 192.185.210.37:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=12, height=806, bps=158, PhotometricIntepretation=RGB, orientation=upper-left, width=970], baseline, precision 8, 970x806, components 3\012- data
Size 121 kB (120784 bytes)
Hash 1fa0a020210a827fabee32d05afe0a54
0cf258744933d5e98147959c94ebf65fc5319d9f
5d5892815ea8a90798073f3d386c11c5528eb5628ce602cf4552538c1d7aa9a2
GET /jss/login_files/pub-home-tools-and-support-promo.jpg HTTP/1.1
Host: byashi.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://byashi.com.br/jss/login_files/landingPage_ProspectHome.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 03 Apr 2018 03:05:20 GMT
accept-ranges: bytes
content-length: 120784
content-type: image/jpeg
date: Tue, 29 Nov 2022 00:38:18 GMT
server: Apache
X-Firefox-Spdy: h2
byashi.com.br/jss/login_files/prodOther_accent_brandBanner_diamondBackground.svg
192.185.210.37200 OK 1.9 kB URL HTTP/2 byashi.com.br/jss/login_files/prodOther_accent_brandBanner_diamondBackground.svg
IP 192.185.210.37:0
ASN #46606 UNIFIEDLAYER-AS-1
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document, ASCII text
Hash 7b6d4e628dec2e60dc40a7e3c434491d
182bf4243bb159679579b7b795e65933796f72b5
e3724f77ddf0adecd6d84ac71bc5e2d614b8df720b5de8b0ddecfcdd938c5847
Analyzer Verdict Alert fortinet Phishing
GET /jss/login_files/prodOther_accent_brandBanner_diamondBackground.svg HTTP/1.1
Host: byashi.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://byashi.com.br/jss/login_files/v3-brand-banner.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 03 Apr 2018 03:05:10 GMT
accept-ranges: bytes
content-length: 1906
content-type: image/svg+xml
date: Tue, 29 Nov 2022 00:38:18 GMT
server: Apache
X-Firefox-Spdy: h2
byashi.com.br/jss/login_files/primary-link-icon-inverted.svg
192.185.210.37200 OK 587 B URL HTTP/2 byashi.com.br/jss/login_files/primary-link-icon-inverted.svg
IP 192.185.210.37:0
ASN #46606 UNIFIEDLAYER-AS-1
File type SVG Scalable Vector Graphics image\012- SVG XML document\012- XML 1.0 document text\012- SVG XML document\012- XML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash 044f289e122bcd4d269f4dd1ad35a1e2
0515adbdc57150d02ec6e3bc01da831cdfbedcfd
fcd5170f9ebd31c331c74c9b8d0de6a7f6c99b920fa8768b648f30f429c2debd
Analyzer Verdict Alert fortinet Phishing
GET /jss/login_files/primary-link-icon-inverted.svg HTTP/1.1
Host: byashi.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://byashi.com.br/jss/login_files/v3-brand-banner.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 03 Apr 2018 03:05:28 GMT
accept-ranges: bytes
content-length: 587
content-type: image/svg+xml
date: Tue, 29 Nov 2022 00:38:18 GMT
server: Apache
X-Firefox-Spdy: h2
byashi.com.br/jss/login_files/prodOther_accent_brandBanner_stripesAndStar.svg
192.185.210.37200 OK 682 B URL HTTP/2 byashi.com.br/jss/login_files/prodOther_accent_brandBanner_stripesAndStar.svg
IP 192.185.210.37:0
ASN #46606 UNIFIEDLAYER-AS-1
File type SVG Scalable Vector Graphics image\012- , ASCII text
Hash ff0e5c1cf75579a97e32b619b66e7681
19568dff658082a23bf915c69d67988fe5d6e577
df8c1e7626f991c34245cec27a7a1a9ac72ac57a40d5f3c241364357c043d7ca
Analyzer Verdict Alert fortinet Phishing
GET /jss/login_files/prodOther_accent_brandBanner_stripesAndStar.svg HTTP/1.1
Host: byashi.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://byashi.com.br/jss/login_files/v3-brand-banner.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 03 Apr 2018 03:05:38 GMT
accept-ranges: bytes
content-length: 682
content-type: image/svg+xml
date: Tue, 29 Nov 2022 00:38:18 GMT
server: Apache
X-Firefox-Spdy: h2
byashi.com.br/jss/login_files/background_general_fb.png
192.185.210.37200 OK 2.8 kB URL HTTP/2 byashi.com.br/jss/login_files/background_general_fb.png
IP 192.185.210.37:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 1 x 700, 8-bit/color RGB, non-interlaced\012- data
Hash 9276c35dc16aecb16790d9c2a262ef70
072b3f31ddd9e514151c83e913d9a59d30ab7f1e
e2e04a8e937f5b74a4c50cb7592a8e0bba54b40818d44e43ffd5c40c6b4fe72a
GET /jss/login_files/background_general_fb.png HTTP/1.1
Host: byashi.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://byashi.com.br/jss/login_files/styles_member.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 03 Apr 2018 03:06:00 GMT
accept-ranges: bytes
content-length: 2835
content-type: image/png
date: Tue, 29 Nov 2022 00:38:19 GMT
server: Apache
X-Firefox-Spdy: h2
byashi.com.br/jss/login_files/bgFooter_v2.png
192.185.210.37200 OK 496 B URL HTTP/2 byashi.com.br/jss/login_files/bgFooter_v2.png
IP 192.185.210.37:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 970 x 20, 8-bit/color RGBA, non-interlaced\012- data
Hash 3930e517d4089677f730f59a1481ecc9
916684432bc36c1b21ae8ca9cf9490a369d4ab40
09fe494df49bb50492a87d2670d9839f3f4220f300b146809d36b7e805db52a3
GET /jss/login_files/bgFooter_v2.png HTTP/1.1
Host: byashi.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://byashi.com.br/jss/login_files/styles_member.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 03 Apr 2018 03:05:52 GMT
accept-ranges: bytes
content-length: 496
content-type: image/png
date: Tue, 29 Nov 2022 00:38:19 GMT
server: Apache
X-Firefox-Spdy: h2
content.usaa.com/mcontent/static_assets/Media/enterprise_nav_globalnav_sprite.svg?cacheid=3121332548_p
104.110.3.249200 OK 3.1 kB URL HTTP/2 content.usaa.com/mcontent/static_assets/Media/enterprise_nav_globalnav_sprite.svg?cacheid=3121332548_p
IP 104.110.3.249:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document, ASCII text, with CRLF line terminators
Hash 1b25e4405d690c5c78d6111329f6b230
3d6d16d702332dcd4f60ca8306e59834813978cb
32a78d62b883ff9ad4da5253ea3390908f472a71835a46d387b88bcfda209ea6
GET /mcontent/static_assets/Media/enterprise_nav_globalnav_sprite.svg?cacheid=3121332548_p HTTP/1.1
Host: content.usaa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://byashi.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
last-modified: Mon, 14 Dec 2015 20:44:26 GMT
etag: "c2a-526e1bd1f5e80"
accept-ranges: bytes
content-length: 3114
content-type: image/svg+xml
cache-control: max-age=501476
date: Tue, 29 Nov 2022 00:38:19 GMT
set-cookie: akmachineid=akmaQwf23xrpHei81eJndbUKbvTi8VyWXcBjBhqj0TJhNmevhwhboofr7wpW9z+fQV8EbH/e/Svv7o9VH+fsR8fA6w==; expires=Fri, 26-Nov-2032 00:38:19 GMT; Secure; Path=/; domain=.usaa.com
akusaa=akusaaz2NSKl7EdxhUvdZ2Qs+90omwvbq3QfYC0XzxYxBApCKdxfZrc6++BWf0nOSa0J4peFDI5TGSJBiSezRmJXr7OA==; expires=Fri, 26-Nov-2032 00:38:19 GMT; Secure; Path=/; domain=.usaa.com
strict-transport-security: max-age=31536000
server: USAA-Honesty
X-Firefox-Spdy: h2
content.usaa.com/mcontent/static_assets/Fonts/E83D71A074DF776F4.woff?cacheid=22813289_p
104.110.3.249200 OK 28 kB URL HTTP/2 content.usaa.com/mcontent/static_assets/Fonts/E83D71A074DF776F4.woff?cacheid=22813289_p
IP 104.110.3.249:0
File type Web Open Font Format, TrueType, length 27799, version 1.0\012- data
Hash afd03596db023de5faee9977d78619a5
8e7dcd0e0b6a7e522a7d643fd289dabb3b687e15
862eff8a57590f8e85dd621b011f688df35f8efea22f441abedef959721cc979
GET /mcontent/static_assets/Fonts/E83D71A074DF776F4.woff?cacheid=22813289_p HTTP/1.1
Host: content.usaa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://byashi.com.br
Connection: keep-alive
Referer: https://byashi.com.br/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 28 Nov 2017 23:28:35 GMT
etag: "6c97-55f1360b44ec0"
accept-ranges: bytes
content-length: 27799
content-type: text/plain
cache-control: max-age=602106
date: Tue, 29 Nov 2022 00:38:19 GMT
set-cookie: akmachineid=akma9jKVlSXhJ/kKtG36T6Odcsdm1BO/0yfdWf8g3KSrDqAIGZBWdUQ1R+gfivTNDM/pJrucEu7aRz2Zj3T/HwFCOw==; expires=Fri, 26-Nov-2032 00:38:19 GMT; Secure; Path=/; domain=.usaa.com
akusaa=akusaaODv3bBV2bGJvbT4Oo5KbwXJSSt2boSiLL682fFbngv10WdmAuJDucc1ZLc1dd3cKQeJv8HgHn7r3GjpF8Nz21A==; expires=Fri, 26-Nov-2032 00:38:19 GMT; Secure; Path=/; domain=.usaa.com
strict-transport-security: max-age=31536000
server: USAA-Honesty
X-Firefox-Spdy: h2
byashi.com.br/jss/login_files/usaaicon.ico
192.185.210.37200 OK 2.2 kB URL HTTP/2 byashi.com.br/jss/login_files/usaaicon.ico
IP 192.185.210.37:0
ASN #46606 UNIFIEDLAYER-AS-1
File type MS Windows icon resource - 2 icons, 32x32, 16 colors, 16x16, 255 colors\012- data
Hash 50960e8d24dcda4d3e8dd7874ce54daa
60b54e4a9b641ff189ee9d200a778d75181907f0
74c40e570ddf14c6cbb32abe077a862e4d9478ee2ec25cdae80ef7ef9a9e295a
Analyzer Verdict Alert fortinet Phishing
GET /jss/login_files/usaaicon.ico HTTP/1.1
Host: byashi.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://byashi.com.br/jss/login.php?&sessionid=35b0bce9d250429df012c0426f88d0bd&securessl=true
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 03 Apr 2018 03:20:48 GMT
accept-ranges: bytes
content-length: 2166
cache-control: max-age=604800
expires: Tue, 06 Dec 2022 00:38:19 GMT
content-type: image/x-icon
date: Tue, 29 Nov 2022 00:38:19 GMT
server: Apache
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5049b423-1bbd-4caa-891e-b46234fc1a6a.jpeg
34.120.237.76200 OK 15 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5049b423-1bbd-4caa-891e-b46234fc1a6a.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash df665be3ae1347cb9bb1443a6a1a33e6
e0617845684a8f7586b37e8be8976bbe6a93563e
15155df8643daa0408633922e15691a3b00b393ee433e1162cf031024e84d0a4
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5049b423-1bbd-4caa-891e-b46234fc1a6a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 14856
x-amzn-requestid: 22ec3d7a-91f5-4b67-9621-a93b1e5d09e3
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cPYejFKxoAMFe0A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6382d45c-34ffa40356825a715a7eb5cc;Sampled=0
x-amzn-remapped-date: Sun, 27 Nov 2022 03:07:09 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: dVt3gUrJDvRWXxbs32sGuoyZI0Qo3-Dlut29Sref8Qjy2NXrJkhvNg==
via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 d6a002c70d55f415107618b0750d493c.cloudfront.net (CloudFront), 1.1 google
date: Mon, 28 Nov 2022 03:26:27 GMT
age: 76318
etag: "e0617845684a8f7586b37e8be8976bbe6a93563e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
byashi.com.br/jss/login_files/gotham-mercury-base-aggregate.css
192.185.210.37200 OK 0 B URL HTTP/2 byashi.com.br/jss/login_files/gotham-mercury-base-aggregate.css
IP 192.185.210.37:0
ASN #46606 UNIFIEDLAYER-AS-1
GET /jss/login_files/gotham-mercury-base-aggregate.css HTTP/1.1
Host: byashi.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://byashi.com.br/jss/login.php?&sessionid=35b0bce9d250429df012c0426f88d0bd&securessl=true
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 03 Apr 2018 02:50:24 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/css
date: Tue, 29 Nov 2022 00:38:18 GMT
server: Apache
X-Firefox-Spdy: h2
content.usaa.com/mcontent/static_assets/Fonts/12C383965421BC56F.woff2?cacheid=794739246_p
104.110.3.249200 OK 0 B URL HTTP/2 content.usaa.com/mcontent/static_assets/Fonts/12C383965421BC56F.woff2?cacheid=794739246_p
IP 104.110.3.249:0
GET /mcontent/static_assets/Fonts/12C383965421BC56F.woff2?cacheid=794739246_p HTTP/1.1
Host: content.usaa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://byashi.com.br
Connection: keep-alive
Referer: https://byashi.com.br/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
last-modified: Tue, 28 Nov 2017 23:27:37 GMT
etag: "3848-55f135d3f4c40"
accept-ranges: bytes
content-length: 14408
content-type: font/woff2
cache-control: max-age=579716
date: Tue, 29 Nov 2022 00:38:18 GMT
set-cookie: akmachineid=akmafxNK9Hxx4Rpld0dWBYOGAwrhZk8EqM6DM+ru3O5DXNumfW3sF00Wn9zNG8vgA+y8NlGCJxwuzcYxGuH3mEZYfg==; expires=Fri, 26-Nov-2032 00:38:18 GMT; Secure; Path=/; domain=.usaa.com
akusaa=akusaaJ33ozk144Q8+jj2FY2lQ9HlI/JbAF/x0C1mMLftPCnaBAacG4V7dn4IewBkDQnGjOt29Ib7cZKdABRNGRHtdQg==; expires=Fri, 26-Nov-2032 00:38:18 GMT; Secure; Path=/; domain=.usaa.com
strict-transport-security: max-age=31536000
server: USAA-Service
X-Firefox-Spdy: h2
content.usaa.com/mcontent/static_assets/Fonts/9C7F15704715916A9.woff2?cacheid=172997152_p
104.110.3.249200 OK 0 B URL HTTP/2 content.usaa.com/mcontent/static_assets/Fonts/9C7F15704715916A9.woff2?cacheid=172997152_p
IP 104.110.3.249:0
GET /mcontent/static_assets/Fonts/9C7F15704715916A9.woff2?cacheid=172997152_p HTTP/1.1
Host: content.usaa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://byashi.com.br
Connection: keep-alive
Referer: https://byashi.com.br/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
last-modified: Tue, 28 Nov 2017 23:28:17 GMT
etag: "3a40-55f135fa1a640"
accept-ranges: bytes
content-length: 14912
content-type: font/woff2
cache-control: max-age=585777
date: Tue, 29 Nov 2022 00:38:19 GMT
set-cookie: akmachineid=akmaArivjzdGOwE2nU6LpOUq1SSAWkJ4tVIVpV02dAekuCgn5WafquvBfGkZGN9kTngFH1I0N89Uac4txPxQTMLOcg==; expires=Fri, 26-Nov-2032 00:38:19 GMT; Secure; Path=/; domain=.usaa.com
akusaa=akusaaj5IqJjdtxqexiGCW2/qlt1U4wcWs7nX/aygkJZU8Ui1ttvnl80cfYy4ETR1fn4VXL3XMnv8HEPnN+fmQoIMnZg==; expires=Fri, 26-Nov-2032 00:38:19 GMT; Secure; Path=/; domain=.usaa.com
strict-transport-security: max-age=31536000
server: USAA-Honesty
X-Firefox-Spdy: h2
data14.kemono.party/data/ea/aa/eaaa0522279f475fb6822f5c11204996161291bb5253516bf3e247aaaf13d95b.zip?f=DvR%20[2].zip
190.115.31.142200 OK 0 B URL HTTP/2 data14.kemono.party/data/ea/aa/eaaa0522279f475fb6822f5c11204996161291bb5253516bf3e247aaaf13d95b.zip?f=DvR%20[2].zip
IP 190.115.31.142:0
ASN #262254 DDOS-GUARD CORP.
GET /data/ea/aa/eaaa0522279f475fb6822f5c11204996161291bb5253516bf3e247aaaf13d95b.zip?f=DvR%20[2].zip HTTP/1.1
Host: data14.kemono.party
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: __ddg1_=qSsggovQEuEuvt7lyUty
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Tue, 29 Nov 2022 00:35:02 GMT
content-type: application/zip
content-length: 92699414
last-modified: Fri, 10 Sep 2021 12:03:12 GMT
etag: "613b4980-5867b16"
content-disposition: inline; filename=DvR%20[2].zip
accept-ranges: bytes
age: 196
ddg-cache-status: HIT,HIT
X-Firefox-Spdy: h2
byashi.com.br/jss/login_files/styles_member.css
192.185.210.37200 OK 0 B URL HTTP/2 byashi.com.br/jss/login_files/styles_member.css
IP 192.185.210.37:0
ASN #46606 UNIFIEDLAYER-AS-1
GET /jss/login_files/styles_member.css HTTP/1.1
Host: byashi.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://byashi.com.br/jss/login.php?&sessionid=35b0bce9d250429df012c0426f88d0bd&securessl=true
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 03 Apr 2018 03:18:58 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/css
date: Tue, 29 Nov 2022 00:38:18 GMT
server: Apache
X-Firefox-Spdy: h2